How To Configure Network Traffic Loads
Apr 26, 2012
My first time attempting this so excuse my wrong use of terms..i believe its load balancing...new company site is going to have 2 separate connections:
con 1: 15 up/2 down coax connection
con 2: 6 up/ 6 down dish
con 1 needs to simply have http and https traffic.
con 2 will have security surveillance, SNMP, and VoIP (PBX)
the hardware i know that will be at that location when i fly up there is a Sonicwall TZ210 and a 48-port Netgear gigabit...where do i start?
View 6 Replies
ADVERTISEMENT
Apr 24, 2012
When my ASA5505 starts it loads into rommon. I enter "boot" and everything boots fine. How do I make that load by default whenever it starts. Any correct command syntax to make that happen ?
View 0 Replies
View Related
Jun 28, 2011
I have an AC 3.0 connection that works fine prior to CSD. Once I've enabled CSD I get CSD to load and then the AC tunnel fails. Ive attached the DART bundle and a few screen shots.
View 3 Replies
View Related
Nov 29, 2011
After configuring the router and enabling a load of functions to secure our LAN, the download speed halved! Even disabling AcitveX "eats" 10Mbs! I understand that enabling IPsec will drag the speed down to 25Mbps, but I have disabled this.
Even setting the QoS to speeds equal or higher then the ISP's promissises drags the speed down!
View 2 Replies
View Related
Jan 24, 2011
Lenovo T61P
Win 7
Wireless Connection (Router Linksys WRT54G2)
I installed Comodo's Firewall and during installation I accepted to install the Secure DNS too. Afterward I noticed my web-pages loaded slower than usual. They weren't extremely slow but definitely slower than what I've been accustomed. I tried some OPENDNS servers and others to see if it made any difference but it didn't. I also went to my router's setup page((http://192.168.1.1/)so I could manually add the previously mentioned DNS servers. I finally decided to revert back to my old DNS list. To disable using the Comodo DNS servers I did the following:Wireless Network Connection Properties-> Internet Protocol Ver 4 (TCP/IPv4)-> Properties -> Select "Obtain DNS server address automatically"I also went into to my router's setup page (http://192.168.1.1/) to set my DNS list to zeros so that I can get back my default ISP's DNS servers (207.69.188.185,186,187). However, website loading is still sluggish.I thought the issue might just be a temporary hiccup from my ISP but my roommate doesn't have these issues. We tried a speed test at dslreports.com and the results were weird. On my laptop the results were 8500+ Kb/s with a 279ms latency. I was 10 ft away from my router.
View 4 Replies
View Related
Sep 7, 2011
my internet speed is fast but page loads very slow
View 1 Replies
View Related
May 9, 2011
We have a business need that we have to set up a IPsec L2L tunnel (from multiple locations) to a business partner, we require that the connection can only be initiated from our side, not business partner side. I searched the web, one option is configure our side ASA to initate IKE only, this does not seem to meet our requirement, because once IPsec SA is up, IP layer traffic will flow freely in either direction; the other option people suggested is to use VPN filter in tunnel group policy, but the documention of how to use this vpn-filter to enforce one way traffic policy is not crystal clear to me; I actually configured reflexive ACL on core L3 switch before the traffic hits ASA to reflect/evalulate specific traffic to businness partner's LAN network, that worked well. However one of our branch office's core L3 switch is Cat4K which does not support reflexive ACL with the image it is currently running, so I am stuck again .
View 1 Replies
View Related
Apr 16, 2013
I have a firewall ASA 5520. In this time I have connected 3 networks (192.168.1.0 INSIDE, 192.168.2.0 INSIDE2, 10.0.1.0 OUTSIDE). I follow the article [URL] to configure my firewall, but the ASA no permit traffic (ip, udp, icmp, etc) between the networks.
The configuration that i have is:
ASA Version 8.2(1)
!
hostname Firewall
domain-name xxxxxx.com
[Code].....
View 1 Replies
View Related
Jan 24, 2012
In QoS, voice traffic is usually marked EF and placed in a priority queue. But interactive video traffic, like VTC, should also receive priority treatment. Can I put both classes in their own priority queues in the same policy map? I thought there could only be one LLQ, but I'm not sure about it. An example of the config I'm thinking of is below. Voice would be marked EF, VTC would be marked AF41.
View 6 Replies
View Related
Aug 9, 2011
I have an application behind an ASA 5505 that needs to access a mysql database over the Internet. How do IO configure the ASA to allow this remote mysql connection?
View 1 Replies
View Related
Nov 14, 2011
I would like to properly configure my L3 to support iSCSi traffic. My L3 acts as an internal router between 4 different sub nets.
I have a iSCSi SAN on my network. A Windows server has Microsoft iSCSi initiators connecting to the SAN.
View 3 Replies
View Related
Mar 18, 2012
When trying to configure ERSPAN on a ASR1006, I'm not getting any traffic on the destination port. ERSPAN flavour is LOCAL SPAN, as described in:
[URL]
Configuration used, is the following:
monitor session 1 type erspan-source
no shut
source interface GigabitEthernet0/0/2
destination
erspan-id 10
ip address 10.10.10.1
[code].....
Apparently everything is configured in the proper way, however I’m not getting any traffic in the destination port. Also I’ve noticed the following in the details from ‘Session 1’:
Destination IP Address : 10.10.10.1
how to configure Local SPAN using ERSPAN?
View 2 Replies
View Related
Aug 11, 2010
I am trying to configure my ASA 7.2(4) to inspect SCCP traffic from a CUCM v7.I have been advised that the ASA device needs to support the version of Skinny I am running.What version of Skinny does ASA 7.2(4) support? How can I find out what version my phones are using?
View 3 Replies
View Related
Feb 16, 2012
I am looking for the way to define an idle timeout for specific flows on an ASA5580 by using Cisco security manager. For ex I needed to define a specific idle timeout for connections beetween specific devices (Devices in vlan1, Device2 in vlan2).To test it I did following changes by CLI and it works fine. access-list L1 extended permit ip <@IP1> <mask1> host <@IP2> class-map CM1 match access-list L1 policy-map PM1 class CM1 set connection timeout idle 02:00:00
I try do do the same configuration with CSM in order to be able to manage each changes only by using CSM.So I defined Access control list, Traffic flow and then I define timeout in CSM --> PIX/ASA/FWSM Platform --> Service Policy Rules --> IPS, QoS and Connections Rules -> connections settings -> Traffic flow idle time-out. The problem is that each time I deploy the configuration with CSM I loose the timeout config line which is the most important for my application..
View 2 Replies
View Related
Jan 27, 2013
I am wondering if this is possible. We have multiple internet connections with fixed IP's coming into the office. We'd like to use one for FTP backup and another to service our websites. From what i have read a 5510 doesn't do policy based routing, but we'd like to configure our ftp server to use one of the internet pipes and our webserver to use another internet pipe. Is that possible?
We'd have two outside fixed IP interfaces and two internal interfaces. I could then use one of the internal interfaces for the web server and the other for the FTP server. consequently if the internal web server and FTP server use the fixed IP"s corresponding DNS server wouldn't that effectively route all FTP traffic out one interface and all web traffic out the other?
Then the FTP traffic would be NAT'ed to an internal interface and the HTTP & HTTPS traffic would be NAT'ed to a separate internal interface.
Then if each of the internal servers used the corresponding internal NIC on the ASA as it's gateway and the fixed IP's that correspond to the external DNS server, then it would affectively only use that gatway out for traffic? Would that work? Does it should route traffic out those pipes correct? Will the asa support two different next hop routers for the two different interfaces?
View 2 Replies
View Related
Oct 30, 2012
I'm configuring CoPP for an ASR 1001 router with consolidated IOS XE Version: 03.07.01.S. And I'm trying to use 'DROP' command under policy map to drop.un wanted traffic. But the drop command is not listed.
[code]...
View 6 Replies
View Related
Aug 8, 2012
Multicasting. The configuration is I have a 6506 as my core switch receiving multicasts from an interface assigned to VLAN10. I have a monitor port setup with a PC running Observer which says multicasts are being received on the core switch. On a different interface on the core switch I have a 2960G switch connected to it and this interface is on VLAN 10. The 2960G switch has a workstation connected to it that needs to receive the multicasts. How do I configure the 6506 and/or the 2960G to process the multicast traffic?
View 0 Replies
View Related
Jan 1, 2013
I'm looking for a way to configure Cisco ACE4710 loadbalancer to bypass traffic that is initiated from server side to Internet?Are there any way to configure this, so that the loadbalancer will not maintain session for this bypass traffic to maximize throughput?
View 1 Replies
View Related
Apr 18, 2013
I have a an ASA 5520 connected to a Layer 3 (3750) switch (Inside) and a connection to a 2960 switch (Outside) to get to the internet. . I have created vlan interfaces on the 3750 switch and enabled ip routing on the switch to enable the vlans to communicate with each other.
Vlan Interfaces on the switch:
Vlan 100 172.17.1
Vlan 200 172.18.1
Vlan 300 192.168.3.1
I want the devices connected to the 3 vlans to be able to pass through the firewall and get out to the internet.I have connected the ASA to the 3750 by routed interfaces (10.10.10.1) --------- (10.10.10.2) and they are able to ping each other.I have also put a default route on the 3750 sending all traffic from the switch to the ASA inside interface (10.10.10.1)The issue that i am having is that the ASA also connects to a 2960 which has a connection to the Internet, and they are handing off an ethernet connection from the 2960 that sits in VLAN 55 (Vlan 55 is the Internet accessible vlan).How do I configure my ASA to send all traffic from my (3) vlans to the interfaces that connects to the 2960 switch?
View 21 Replies
View Related
Jun 20, 2011
is this possible to configure HTTP traffic to ISP2 and Static NAT to ISP1 on ASA5520?
View 2 Replies
View Related
Aug 20, 2012
I have the following setup: Private network <-> SW <-> CISCO VPN <-> ISP MODEM
I have configured VPN part and is working correctly. I have a computer in the private network at static address 192.168.1.100 and an application is running on it on 8100 tcp port for clients.
Now I need to connect from the Internet to the application on 192.168.1.100 on port 8100.
How to configure CISCO router to forward traffic coming in tcp port 8100 to machine 192.168.1.100?? ISP Modem is going to handover all the traffic to CISCO device.
View 8 Replies
View Related
Jun 11, 2012
We have configured ASA 5510. We have configure Ethernet 0/0 ( Outside ) connected with ADSL line and Ethernet 0/1 ( Inside ) Local LAN. we have configured NAT and all the traffic is passing through outside interface. Now we have connected ethernet 0/3 ( leasedline ) interface with static public IP. Now we want to allow SMTP traffic to pass through from this interface.
How to configure it if we want our local lan SMTP traffic sending through new leased line ( Static Public IP ).
View 2 Replies
View Related
Jul 7, 2012
How to configure traffic flow between computers inside VLANs and a routed port? Here is the setup details:
1. Switch 3750-X
2. VLAN 100 - ( SVI IP address 192.168.100.1 /24)
3. VLAN 200 - ( SVI IP address 192.168.200.1 /24)
4. routed port gi1/0/48 (IP address 192.168.150.1 /24). Note: this port is directly connected to a firewall ASA 5520 port IP 192.168.150.100 /24
Ip routing is enabled on the switch and inter vlan traffic is flowing ok. I can ping the routed port gi1/0/48 from any computer connected in the VLAN 100 or 200. For example computer with IP 192.168.100.25 can ping the routed port 192.168.150.1. Switch can ping firewall port 192.168.150.100 and the 'sh ip route' command shows the network 192.168.150.0 /24 as directly connected network.
any computer in the two VLANs CANNOT ping firewall ASA port 192.168.150.100 Is it because inter VLAN routing does not work with a routed port on L3 switch? I looked up fallback bridging, but it is meant for non IP traffic.The goal is I am trying to set the ASA port as an internet gateway for VLANs.
View 4 Replies
View Related
Jul 25, 2011
I see that Application protection - blocking peer-to-peer file sharing traffic is a capability of Cisco IOS Firewall. How do i configure my Cisco 2911 ISR to block peer-to-peer file sharing traffic?
View 1 Replies
View Related
Jun 16, 2011
I want to configure QoS for voice traffic over a site-to-site VPN tunnel. I have a Cisco 851 router on the branch end and a Cisco 1800 router at the HQ. The setup is an Avaya Gateway located at the HQ and the idea is that the phones at the branch office are connected over the VPN tunnel to the gateway at the HQ.
I have a 1MB internet link at the HQ from a service provider and 256kbps internet link (from a different service provider) at the branch office. The branch office has just 3 users.
View 12 Replies
View Related
Apr 5, 2011
I'm trying to configure my BRI interface in "network protocol-emulate network" and "layer1-emulate network" but i don't have this second command.Is someone have allready to that with this type of interface ?I've to configure this because the ISDN line of my telco is in user mode only.
View 5 Replies
View Related
May 16, 2011
I have tried to understand these TCP traffic and NAT network but not sure if what I write is correct. Refer to the TCP traffic in cap1a.cap and cap1b.cap. They were captured on the two network interfaces of computer A, and record Network address translation (NAT) traffic that is propagated between network 45 and network 3 by computer A. Figure 1 shows the network configuration.
View 19 Replies
View Related
Aug 22, 2012
i have a vpn and want to test the way traffic goes when i connect and disconnect vpn try some stuf, how can i see where my info is transiting , i want to test my vpn reactions to changes ill do.
View 1 Replies
View Related
Apr 26, 2012
Are there any routers out there that allow for traffic logging? I'm not just looking for URLs, but I want to capture the actual traffic (filtering down of course for specific key words, etc...)
View 1 Replies
View Related
Aug 5, 2012
I have a questions about protecting my network. My parent's have rented out my room, since I'm going to college, and I was wondering if there was a way to monitor the traffic that is going on in my network. Once the guy moved in, the wireless connection speed drastically decreased. I was barely able to sure the internet on my laptop. I currently have about 8 devices connected to my network. I am running a wired connection for my desktop so I don't feel any lag, but everything else runs on wifi.
View 1 Replies
View Related
Aug 21, 2011
I am using OPEN VPN in order to connect to a Canadian VPN server.I want ALL internet traffic to ONLY use the VPN connection and no traffic shall pass through my local ISP under any circumstance.In the event the VPN disconnects, I DO NOT want any internet traffic automatically sent via my LOCAL ISP connection. Can I simply disable my LAN network adapter in windows AFTER the vpn is connected? (since vpn uses its own TAP adapter?)
View 2 Replies
View Related
May 6, 2012
How to view all network traffic on your router not just your computer? Using wireshark. Window 7 and Ubuntu.Without using any enhancements like airPcap or Turbo cap.
View 4 Replies
View Related
Jul 4, 2012
check the traffic produced by different hosts in a local network. In other words: which hosts uses how much of the bitrate.For example: We have a wifi network with four computers connected to. Lets say one is running skype, one is surfing in the internet and both left are just in idle mode. Is there a way to monitor the use of our bitrate such that I could see:"Ahh IP 10 is using 80%, IP 11 is using 10% and IP 12 and 13 are using 5% each on average!"
View 3 Replies
View Related
