I recently installed a 2951 with a security plus license..I hate it (security featuers not router) and would like to put the asa back in place.how to integrate the asa with the 2951, I believe I need to run it in multi context mode.
We have a core 6500 switch that has a PRI module in it that binds (4) T1 lines together and we also have a 2600 Rtr that binds 4 other T1 lines together and pipes them into a ASA5520. We are changing WAN vendors but still have to maintain the (8) T1 connections until our contract runs out, which will be in a few years. The 8 T1's are not enough bandwith for our operation and we will be adding a 20meg WAN link in the next month. What I am trying to figure out is how to best integrate 3 different WAN links into one LAN. What I am thinking of doing is to leave the 6500 core switch as is and then to purchase a router that can hold (4) T1 wics and the 20meg link. Is it possible to bind those 5 links together even though they are different vendors?
We have LMS 4.1 in our network. We had recently installed Remote Syslog Collector on a new Server to collect logs from all the devices. How can we integrate the Remote Syslog Collector with the LMS Server?
We are looking at possibly adding a second 5508 controller to our network and running in HA mode. I see now that there are 5760's available that run on IOS. Is there any way we can integrate a 5760 into our existing network instead of going with a second 5508? I would prefer to invest in newer hardware whenever possible.
I have a question. What is the requirement of integrate ACS 4.2 Appliance and AD about CA server? it has to be windows 2003 server enterprice o windows 2008 enterprice? or it can be windows 2003 and 2008 stand alone? another question is about multi domain, i have domain father and children. the installation of CA Server is in domain father to enable 802.1x with AD with all domain children integrate? or I can be install the CA server in the server of domain children and is it work (CA server installed in server in domain child and it working all domains child and father)?
I planning to integrate cisco asa5505 device in runing enviornment for filter ip traffic.Internet ----router----ciscoasa----lan.Ip series is public(25.263.25.0/24) througout of network (no privateIP)now how do I set asa in such case and filter traffic from comming into lan and going out to internet.
We having ACS version 5.2 0.26 with Active/Standby. We need to integrate active directory with ACS. Domain name given by Server team was as xyzcompy.local. When I tried to resolve the same domain name I got five servers ip address against the same domain name. however we given the ip reachability to only for two servers. We we try to save we get error saying that "Can not resolve the network address".
So my questions are;
- does ACS should have ip reachaibility to all five servers
- does the username/password we entered in the ACS should have domain admin rights?.
- the given AD is configured with windows NTP [URL] but when we configured ACS as windows NTP it was taking local server as active NTP..?
When we check the ACS logs, we saw the following error;
in acsLocalStore: AdminName=acsadmin, DomainName=qatarconvention.local, ADOperationResult=unable to create secured connection against AD server, switching to non-secured connection. javax.naming.CommunicationException: simple bind failed: qnccad02.xxxxconvention.local:636 [Root exception is java.net.SocketException: Connection reset], in ACSADAgent; 32484]: INFO dns.findsrv FindSrvFromDns failed: res_query failed _ldap._tcp.xxxxconvention.local Sep 4 12:43:20 acs01-cc4 adjoin: INFO cli.adjoin Join to domain 'xxxxconvention.local', zone 'null' failed.
I attached some screen print which saw the error and output of nslookup for the domain name.
I cannot integrate Virtual MSE 7.3.101 with my Prime Infrastructure 1.2 After I setup MSE via its wizard, I make a change on WCS username and password. When I try to integrate MSE with Prime Infrastructure, Prime notify me about the mismatch username/password.
I would like to integrate our intranet web page with Cisco WLC 2500. Is it possible to integrate custom web page with WLC. I know, that I can create custom authentication page, but what about creation of the user?
I need to integrate Cisco ISE and WLC5508 with FlexConnect (local switching) using EAP-TLS security for wireless clients across multiple floors (dynamic VLAN assignments based on floor level). The AP model used is 3602.
- What RADIUS Attribute can be used for dynamic VLAN assignments based on floor level? Is there an option where I can group all LWAPs in same floor for getting certain VLAN from ISE?
- I intend to use WLC software version 7.2 since 7.3 is latest version. Has someone use WLC software version 7.3 without any major bugs/issues pertaining to FlexConnect and EAP-TLS?
- I read some documents saying L3 roaminig is where the associated WLC has changed. However if user move to different subnet but still associated to the same WLC, would this be consider as L3 roaming too?
I have a 2821 ciso router and i want to setup a vpn for my windows domain users , they must to reach the domain from outside. There is posibile to intregrate Active directory auth with pptp running on 2821 router? kind of dialin via radius server(IAS running on windows server 2003).
I'm new to the Cisco WLCs and recently implemented a wireless infrastructure using a WLC 2100 with 1262 LWAPs. I have two of the 1262s plugged into ports 7/8 using crossover cables. They're functioning correctly with the exception of the inability SSH and send pings to the LWAPs behind the WLC. Is there anyway to ping/shh through the WLCs to the LWAPs behind it? I use an NMS (Nagios) to monitor the status of the LWAPs and it can't monitor them if it cannot ping them. Also, is there anyway to configure the WLC to monitor the status of LWAPs?
I am trying to config my wireless lan controller (WLC) 2106 to discover my new 3500 access points.I followed the example Cisco configuration doc.69719.I am using a Cisco 3760 switch to interconnect the AP and WLC.I set up DHCP in the switch. [code]
Since few days the WLC 2100 series controller and 3x LAP1131AG are getting disconnected and the controller gets offline via the local ip address. At that point I have to reboot. To get anywhere and after I connect wirelessly to the AP before I know it it disconnects. It worked for 3 years straight no fuss. And now nothing. I reconfigured the WLC 10times and no diffference.
I have a cisco AIR-LAP1262N-A-K9 and AIR-LAP1142N-A-K9, and i would like to join to Cisco WLC2106 (software version 184.108.40.206)My ap 1262N have 3 antennas externals with 7dbi of ganancy,Is possible to do it?
I'd WLC 2100 series and 9 access point LAP1142N .8 LAP1142N can work fine and join a capwap controller is ok but only one LAP1142 is can not . Part of LAP is AIR-LAP1142N-A-K9
Apr 2 10:52:42.284: LWAPP_CLIENT_EVENT: spamResolveStaticGateway - gateway found *Apr 2 10:52:42.284: LWAPP_CLIENT_EVENT: spamResolveStaticGateway - gateway found *Apr 2 10:52:42.284: LWAPP_CLIENT_EVENT: Dropping discovery in LWAPP. This AP model is not supported by LWAPP WLC. *Apr 2 10:52:42.284: status of voice_diag_test from WLC is false *Apr 2 10:52:52.284: %CAPWAP-3-ERRORLOG: Go join a capwap controller
We have two 2100 WLC's that support 12 access points. One has been sitting in a box for some time, but we're at the point where we need to add additional access points that will put us in excess of the 12 limitation. What is the best way to go for installing the second WLC?
I have a problem with our WLC 2100 series (2125). Basycally internal DHCP server configured on WLC is not working. I have one AP connected to port no 7 (PoE) to bypass and eliminate problem with other equipment.
I have a fairly simple WLC 2100 configured to control two APs. We had a power outage a few days ago, and though the WLC was on a surge protector, it did not come back up properly after the outage. The STATUS light sticks at amber and I can't get any console response. At this point I'm not sure what to do except replace the WLC, though I'm loathed to do that as our budget was just cut substantially for next year and we're trying to turn nickels into pennies.
I am having trouble on setting up a WLC2100 ver 7. we need to implement a private and public network. private network authenticate to IAS - RADIUS (windows server 2003 server) while the public network is open but when a client connect to AP it will redirect to a 3rd party web athentication - HotSpot Server. the challenge is we want to broadcast a single SSID.
1. when a user/guest connect to the AP a radius server will authenticate thru IAS - Radius.
2. when a user is authenticate via radius a dhcp server will give an ip address of the private network.
3. if the user is not authenticate a dhcp server will give the public ip address and netowrk traffic must go to a different VLAN.
my question is, is it possible to broadcast a single SSID for the two network? is there a document which is related to our scenario?
The operating temperature for 2100 wireless lan controllers is up to a miximum of 40 degrees celsius according to the datasheet. We deployed some 2112 controllers all displaing a temperature above 50 degrees celsiun. This during normal operation and deployed proper enviromet (aroco ...)
I have a Killer Nic 2100 installed on an 1155 setup under Windows 8. I can upload large files to anywhere on my home network .. but when I pull large files off of my main computer with the Killer Nic in it .. the connection drops out on my main rig... no network connection of any kind on my main rig until I reboot ..
I don't have this problem with the onboard nic ..
sometimes the network will drop when the power flutters .. all the other computers I have will have internet connection .. but my rig won't ..