I don't really know how this things work, but somehow i know that when you summarized few subnets into 1 in RIPv1 protocol in router, you would need this command, but how this things actually works?
View 5 RepliesI have 3750 switch and there are couple of vlans.....i dont want to run the instance on all vlans....so i have decided that i will run passive intreface default command....now my lan link is layer three and i want to run eigrp on that so the command shd be as under?
no passive interface default interface gig1/0/10
no passive interface default interface gig1/0/22
(as i have 2 conections) and want to have two neibours.
I've been having a problem with my cisco routers (7600s) where sub-interfaces that we create for ldp tunnels are added automatically to the main ospf process as no passive when created. In order, here is how to reproduce the issue:
- Configure ospf process as "passive-interface default"
- Configure interfaces that have to be active as "no passive-interface blah"
- ospf works as expected.
- Create new sub- interface somewhere with encapsulation on a certain vlan for xconnect.
- New sub-interface gets added as "no passive-interface" in main ospf process.
- When adding a new port-channel interface, behavior is the same.
Is that normal for cisco, should I continue removing sub-interfaces manually every time from the ospf process?
Currently l have two ASA 5520's in a active/passive failover scenario. Currently the interfaces for the inside and outside are fixed at 100/FULL.I want to repatch them into GigE ports setup as Auto Negotiate.Is there anyway of keeping the connections through the firewall active in this type of scenrio or will l have downtime disconnecting and repatching? or could l possibly disable failover and reconfigure each ?
View 6 Replies View RelatedI'm currently working on a plan to migrate our 6500's over to our new 7010's. At the time of the migration I want to tighten up our OSPF design and configure OSPF for "passive-interface default" then allow only those interfaces that should have OSPF neighbors to send the hellos. The issue is that the command is not showing up under the OSPF process. What's even more interesting is that the Nexus 5.x Unicast Routing Configuration Guide shows that the "passive-interface default" command should be an option to enter.
I'm currently running version 5.1(4) (though looking to upgrade to 5.2 during my migration testing). I would rather configure the passive-interface via the routing process versus having to enter it on every interface.
I am running a wired and wireless home network..using a G 2.4 router and access point. I purchased an Linksys E2500 N 5Ghz wiresless router can I still effectively use my Linksys G 2.4 g access point? Will I still have to get a linksys N 5Ghz access point to properly obtain the most speed and security?
I use the wireless with a cable service and use wireless access only for the cell phones via WiFi.I rarely use the desktops on the home network, I want to increase the speed for the cell phone via Wi-fi, Currently speedtest results were 4.80 for downloads and 2.0 for uploads. I have not much use for uploading except for sending photos via wi-fi.
I am using ASA 5520 Image in GNS3, when i come in Configuration Mode and try to create Tunnel through command "interface Tunnel 0", but this command doesn't exist. I need this command to create Tunnel for GRE Lab.
View 2 Replies View Relatedwhat happens internally when no shut command is given on the interface of router.The router interface goes up. How? What happen internally on the interface of the router?
View 8 Replies View RelatedI'm trying to troubleshoot one of our site today and can't seem to issue the show dsl interface command on a 1841 router. Does the same command is used for SHDSL or am I running with an IOS bug?
#sh dsl?
% Unrecognized command
#sh ver
Cisco IOS Software, 1841 Software (C1841-BROADBAND-M), Version 12.4(15)T7, RELEASE SOFTWARE (fc3)
Technical Support: {URL}
Compiled Wed 13-Aug-08 15:42 by prod_rel_team
#sh inv
NAME: "chassis", DESCR: "1841 chassis"
PID: CISCO1841 , VID: V05 , SN: FHK13212639
NAME: "WIC/HWIC 0", DESCR: "WAN Interface Card - ATM (With multi line G.SHDSL module)"
PID: WIC-1SHDSL-V3 , VID: V02 , SN: FOC132041KD
I am looking for the command of rate-limit on a sub-interface in cisco asr 1013.
Cisco IOS Software,
IOS-XE Software (X86_64_LINUX_IOSD-ADVENTERPRISEK9-M),
Version 15.2(2)S, RELEASE SOFTWARE (fc1)
IOS XE Version: 03.06.00.S
If it is possible in Cisco asr 1013. If yes then what are the commands.
I had insatalled the ACS 5.2 on Vmware . As per my requirement i need to configure a user to restricted privilege so that he should be able to execute only the below commands on the switch .
-Show ver
-Show interfaces
-Show ip Interface Brief
-Configure terminal
-Interface <interface name >
-Shutdown
-No shutdown
The users should not be authorized to execute any other commands than above listed one .After the configuration i was not able to restrict the config mode commands . Once the user is authoized for Configure terminal access he will have full access on the device. How to configure the command set only to allow interface access and he should be able to apply Shutdown and No shutdown command .
I am using cisco packet tracer to configure the hsrp on 3560 (c3560-advipservicesk9-mz.122-37.SE1.bin) but the standby ip Command is not available on the interface the problem in that IOS or in config
View 1 Replies View RelatedI want to know if WAG325N supports cisco's IOS so that i can configure it using command line interface? Is it possible?If not, how would i change ethernet interface speed setting so that it can support 100 mbps of speed. Because when i connect through LAN i'm always getting a full dulplex 10 mbps LAN connection automatically.
View 1 Replies View Related12 users, 3 servers, 5 smartphones/tables on the WiFi (existing AP), future VPN server (maybe 5 simultaneous inbound VPN connections at the most with at least one client using a Mac), Cisco Gigabit small business switch.Internet access, VPN connectivity, and firewall (reporting, close/open ports for custom applications as needed)I was originally going to select an ASA5505-50 user device for the above client. The device is highly regarded on the Internet, offers a command line interface, priced right for the budget and should perform all duties required by the client.However, the addition of the RV180W to the Cisco product line has me questioning my choice.
1)Does the RV180W offer a command-line interface?
2)Is the RV180W limited in the number of users it can support without having to purchase additional user licenses?
3)How are firmware/software upgrades handled with the RV180W?
4)What will the client be giving up if they choose the RV180W vs. the ASA5505?
Any Cisco command similar to Junipers monitor interface interface type / number. It's handy seeing real time interface stats. monitor interface?
View 5 Replies View RelatedI have a sitecom 3G ready wireless router but does not support the local telephone company. i would like to know how to access its modem config from a command line inorder to configure the modem commands with local company settings. Its model no is WL-326v1001
View 1 Replies View Relatedhow to open the Linksys E4200 command line interface? Ive tried using telnet but i get this message:Could not open connection to the host, on port 23.
View 3 Replies View Relatedwhen will be the command "default interface x/x" on the Nexus 5000 platform available? Even with latest software version (5.1.3.N2.1a) it is not possible. For Nexus7000 it's working fine with 5.2 train.Is there a feature request for it? If not here it is!!It's horrible to deconfigure many interfaces especially in N5k environments with many FEXes.
View 3 Replies View RelatedI config my E0/0 Interface with "ip ospf network non-broadcast" command, I want this interface to use uni cast to hello neighbor.
As I issue "neighbor x.x.x.x" under ospf process, it told me that: OSPF: Neighbor command is allowed only on NBMA and point-to-multipoint networks. I am sure that there are no any typo, and show ip ospf interface e0/0 says it's been an NBMA interface, so what's wrong with this router?
IOS information:
(C3620-J1S3-M), Version 12.3(18), RELEASE SOFTWARE (fc3)
I'm probably overlooking something very simple but is there a command to show the uptime of a router interface in days,hours,minutes?
View 3 Replies View Relatedwe're having an issue with the command "cts dot1x" when applied to an uplink interface. It basically kils the connection with this command is applied. Once you remove it, everything is back to normal, the platform is a cisco 3750x.
View 0 Replies View RelatedIf you have a headsite with multiple EZVPN clients (PIX 501 & 515) connected in a star configuration can you have one remote site connect to another remote site using the intra-interface command and modifying the encryption domain on the EZVPN Server?
View 3 Replies View RelatedI am switching a switch connecting to the ASA5550 tomorrow. My current switch is using fiber connecting to the ASA. The new one only support copper. If I switch between fiber to copper on the ASA (change media-type command on interface) will it cause a down time? I have VPN tunnel on the ASA and don't want the session to reset.
View 2 Replies View RelatedI have configured the ip telnet source-interface Loopback 0 command on a Nexus7010, but when I telnet to another device and do a show users, the ip address is of the closest interface to the device I telnet to, not the ip address of the Loopback. All interfaces are in vrf default. I am running 5.1(6) NXOS.
View 6 Replies View RelatedI'm working with AnyConnect for the first time (my prior experience is with IPSec client) and I have multiple remote users who connect to a 5520 via AnyConnect client; they need to print to each others' shared printers but currently have no connectivity between each other.
Can I configure the 'intra-interface' command to enable connectivity between remote clients, or is there more that needs to be done to enable this, presuming that it can be done at all?
I have a question about SNMP OIDs for the command "show counters interface intx/y delta" on Catalyst6500. The customer wants to create graphs for the following values:Overruns, qos0Outlost, InErrors, OutErrors, InDiscards, OutDiscards etc..Is possible to get these values using SNMP?
View 3 Replies View RelatedI have 1x Cisco 6509 with Sup2 and MSFC2 and it is running on IOS (c6k222-jk9sv-mz.122-17d.SXB11). I have following policy map :
Policy Map VOIP
Class IP PHONE
priority percent 75
and the following command on each interface: service-policy output VOIP those configuration are working fine on SUP2 with MSFC2 but last week I tried to upgrade the SUP2 to SUP32 on the switch and upgrade the IOS to the latest version (s3223-adventerprisek9-mz.122-33.SXJ4) but when I try to put service-policy output VOIP on each physical interface I am getting the following error:
"Priority command is not supported in output direction for this interface" and when I try to add service-policy output VOIP on a V LAN interface I am getting following error:
MQC features are not supported in output direction for this interface. Will I need to change something after upgrading to SUP32..
we just received 5 new SF200-48 Smart Switches for small business. I noticed only way I can configure them is by using the web gui. Is there a way to enable good old CLI?
View 6 Replies View RelatedI have a few remote locations that use a Cisco 5505 to connect to my server through a VPN Tunnel. When they establish a connection through the tunnel they use FTP with the PASV command and successfully send and receive data. No issues. The same remote locations will connect to external FTP sites without a VPN tunnel and attempt to use FTP with PASV and the connection fails after the PASV command is issued.Also, when these sites connect to my FTP server all their internal addresses are configured with a Dynamic HIDE NAT. They don't use this NAT rule when they connect to other FTP sites.
The question is why would an FTP connection through a VPN Tunnel work with PASV, but on a non-tunneled connection the Cisco 5505 blocks the connection.I would think that the connection should drop in both scenarios. What makes the VPN Tunnel connection special to prevent the connection drop? (I just learned about the fixup protocol with the group policy change to resolve the problem. So I can resolve the issue. But I'm interested in knowing why there is a discrepancy.)I did ask our network team and they thought it was somewhat strange too.
How can I allow passive ftp communication in PIX 6.3(5)106.
View 5 Replies View Relatedsetting up ASA to allow passive FTP connection! I can get the FTP client to connect but it does not pull the directories. I have opened 21 and range of 55536-55566. I had some trouble gettting the range opened and saved. Normally with other small business routers (GUI) I make sure those ports are forwarded and ftp works.
Is the ftp inspection killing connection or is it my config?
ASA Version 8.4(2)
!
hostname ciscoasa
enable password vRLm0eRL2O14iLM6 encrypted
passwd 2KFQnbNIdI.2KYOU encrypted
[Code].....
what is active/passive port-channel..? and how it will do load balancing when my network traffic is flowing on both the ports.
View 5 Replies View RelatedUsers cannot download some files from a FTP in a software over VPN Explanation users work with a program and inside the program they download claim (the software goes to the FTP and download the file)
But the program returns an error 3018 in FTPGET. If the user goes to the old PPTP VPN it works like a charm so the problem is the Cisco VPN.
I cannot post my complete config but we use the filter vpn value to associate a special access-list to a user.
The user that has this problem has this as an access-list.
access-list 201 extended ip permit 10.250.128.0 255.255.255.0 192.168.202.0 255.255.255.0
I've made some research and i've added this info
policy-map global_policy
class inspection_default
Inspection ftp
Still doesn't work.
I have to add that normally the internal network is 2.0 and not 202.0 but since we have user with 2.0 at home we had to do this.
So when a user sends a request to 202. the cisco fowards it to the Juniper inside the network and it translate it back to 2.0 Also that is the ONLY thing that doesn't work. The client can work all day on that program and it will work #1 exept when she does the claims
I am also been working on this VPN for 2-3 months without any problems.