I have a node with one physical wireless interface and I need it to offer AP service to other nodes, connect to an existed AP, and connect to other nodes in ad hoc mode. If I create 3 logical wireless interfaces of that interface and configure each one respectively to the modes above, would this work? do they use the same MAC address or each needs to be configured a different one?
View 2 RepliesWe have to enable FIPS 140-2 on our ASA5520's for all our IPSEC VPN connections. We currently have failover on our 5520's. I found a lot of information out there but some seems to conflict one another.What are the things I need to look out for - caveats? Does the clients that connect to the VPN had to use different clients once the FIPS was enabled.Do we need to recreate logical interfaces for each physical interface we have?
View 1 Replies View RelatedFor years I have received occasional complaints about users being dropped from WiF and then reconnecting like a minute or two later. I wondered what tools people on the Forum used to troubleshoot this transient problem. Cisco APs like the 1200 don't seem to inform about why someone left. One thing that has been very useful over time is using Network Sumbler to see what WAPs are in a vicinity and make sure there is not channel overlap. How to troubleshoot transient wireless network drops?
View 1 Replies View RelatedDoes any know why the ASA will monitor physical interfaces by default, but monitoring of logical interfaces is disabled by default? Or better yet, is anybody doing a monitor-interface for a subint without issue? I'd imagine it isn't enabled by default for a reason.
View 2 Replies View RelatedI have a query on natting on 8.4 ASA. We are going to configure IPsec tunnel with our client. Our client has provided a single ip(192.168.32.11) which would be the source at his end. Is it possible to Nat my end network(10.130.20.0/24) with logical ip (192.168.32.11) which is not configured anywhere.
here are details.
my end internal network(inside) : (10.130.20.0/24)
logical ip to be natted my internal ip: (192.168.32.11)
Client end network : (10.100.10.0/24)
I currently terminate my L2L VPN sessions on the "OUTSIDE" interface via the actual IP address assigned to that interface. Can I assign the OUTSIDE interface a second address (VIP, Logical, Virtual etc.) and then terminate my L2L VPN sessions on that second address?
View 3 Replies View RelatedI have purchased two catalyst 3560 switches (with 24 interfaces) on Ebay to prepare for ccnp switch exam. It would be great if I have 4 switches. Is it any possibillity to create two logical switches from one? I mean, not by assigning interfaces to different vlans?
View 1 Replies View RelatedI recently bought 2 SRP527W for customer and i am trying to install them. I have updated the firmware to the latest version.
Problem: It can detect BTs business ADSL but the Logical Link is not picking up. I have checked and rechecked the setting with BT but no joy. the original BT router works.
We have two logical connection which are connected via 1 physical Ethernet interface to 2 routers in central sites. Both connections are 2 Mb/s. How can i classify the output traffic in order to shape both direction to 2-2 Mb/s.
There are not suitable "match" command!!! ??The branch routers are 2650xm and 2811.
I am installing a connection between Brocade MLX and Cisco 4503 using SE and SVI's. Below is the config for each. Am I missing anything like MTU Ignore or something along that nature?
*** Cisco 4503 (v15.01) Config ***
VLAN 35
name EOC_Gi1/2
[Code].....
I have 2 devices which need to communicate through Logical Link Control. Each device functions like this: they have a built in network switch that allows their internal components to communicate with TCP/IP which is then encapsulated inside LLC frames and sent out a special port. The LLC frames from each device all come from a single source MAC address and are broadcast out the network. The receiving deivce receives the LLC frames, unencapsulates the data and uses it directly.
Using it this way through a single 2960 (such that device 1 is connected to fa0/2 and device 2 is connected to fa0/23) with its own dedicated VLAN and no other traffic on the switch (all other ports shutdown), the two devices are unable to "connect". Using a SPAN session, I can clearly see them exchanging LLC frames, but if I connect my computer to the internal device switch and try to ping the other device through the LLC encapsulated link, I get anywhere from a 25% to 100% loss with response times between 2ms and 15ms.
When I connect the special ports of each device together directly with a straight through cat-5e cable, they can connect and I can successfully ping through the link with sub-millisecond response times. The same goes if I connect them through an old unmanaged Linksys switch. I have toggled everything on the 2960 I can think of, including STP, CDP, LLDP, storm control, keepalives, IGMP snooping, management interface VLAN1, and QoS. In general, the more of those that I turned off, the faster the ping responses became, but nothing seems to stop the data loss.
I was wondering if I can stack WS-C3750E-48TD with WS-C3750G-12S together to created a single logical switch.
View 3 Replies View RelatedI am interesting how ASA 5585-X with SSP-60 operates in dual firewall mode, if I install two SSP-60 modules in chassi, do I get one logical firewall with doubled performance of (SSP-60) ?
View 1 Replies View Relatedi have a 1841 cisco router and i recently purchased a 1 port HWIC wan interface card. My problem is that I cannot see the interface in my config file. Is there something i am missing?
View 8 Replies View RelatedI share a modem and router with my building, and connect to the internet using an ethernet cable which plus right into the wall in my apartment. When I hover over the network/internet icon it tells me that I have a local connection only and can't get online. No changes were made to my computer between it working and not working - I have not installed any new software and the modem+router have not been changed.
When I try ipconfig/release is says it can't perform the operation while the media is disconnected. It also tells me that "an error occurred while releasing interface Loopback Pseudo-Interface 1: The system cannot find the fie specified".
[code]...
I have a Cisco ASA 5505 and I have my internal and external interfaces configured but I currently cannot ping from the inside to an IP Address on the outside. I had this setup and working and I have another set of equirement that I am replacing that is working with my service provider so I know it is a configuration issue. When I ping 4.2.2.2 for example I get:
Destination host unreachable
Do I need to add a static route from my inside interface to my outside interfaces?
: Saved
:
ASA Version 8.2(5)
!
hostname pxasa
[Code].....
Is it possible to set up a WAN interface on a FastEthernet interface of a Cisco 877 Adsl Router ?Due to my ISP, i've to use an external VDSL modem and must connect it to my cisco 877 router (and leave it's adsl interface unused).But i don't know how to set up a wan port, other than the adsl interface itself (dialer0), on my cisco.
View 7 Replies View RelatedWe are having Cisco ASA 5540 having Cisco Adaptive Security Appliance Software Version 8.0(5)23 at certain time of moment daily wer are facing latency and packetdrop wherin when I checked for ASA Interface which gives me " Input Errors" on outside interface ,so can any one tell me what are the causes to get input errors on cisco asa outisde interface.
View 2 Replies View RelatedI have a 1t3/e3 card in a new 2951. When I statred the router, I found no interface corresponding to this module when do "show ip interface brief"
View 3 Replies View RelatedI have Pix 501 firewall and I'm just configuring the device for "Email Server" to allowing POP/SMTP.
Inside Interface Address: 132.147.162.14/255.255.0.0
Outside Interface Address: ISP provided IP address
My question is can my traffic goes from inside interface to outside interface? (because the inside interface address not from 10.0/172./192.168 private address)Also I'm allowing internet from this email server (132.147.162.14) so what my access list to be configured? and what my subnet mask shoud be there?
Pix(config)#access-list outbound permit tcp 132.147.162.14 255.255.0.0 any eq 80
Pix(config)#access-list outbound permit udp 132.147.162.14 255.255.0.0 any eq 53
Pix(config)#access-group outbound in interface inside
I've got a ASA 5550 firewall interface failover issue. (File attached).
when I shut down the inside interface Gi 1/1 of the left firewall(Active firewall), It failed to failover. but when I shut down the Gi 1/12 of the Core 1 switch, The firewall failover very well.
I followed this guide but I was not able to failover. [URL]
how can I configure so that when the Gi 1/1 or Gi 1/0 interface goes down, it can failover ? Code...
Needing to bridge from my wic interface to an ethernet interface on a 2900 series router so that I can pass through the ip address given to the WIC, to my ASA so that I don't have to give my ASA a private range address. (Just like a service provider might do when bringing a T1 with managed router in to my prem)
View 1 Replies View RelatedI have five 877 routers connected to ADSL circuits provided by Vodafone. Each has a VPN tunnel back to a PIX.
Occasionally one of the sites will lose it's connection to the PIX.
When we check the log, we find entries like these:-
Apr 5 01:31:54.085 UTC: %LINEPROTO-5-UPDOWN: Line protocol on Interface Virtual-Access2, changed state to downApr 5 01:33:19.344 UTC: %CRYPTO-
[Code].....
As you can see, the physical interface (ATM0) is not being reported as changing state to down, neither is the Dialer interface.
When the router is in this state we have to SSL to the public IP address of it and manually restart the ISAKMP SA.
When the router sees the ATM interface go down and subsequently come back up, the VPN connection to the PIX also recovers.
So - in a long winded way I think I'm asking....why does the Virtual interface go down and is there anything I can do to stop it happening?
what difference is between these two ports?
I have a router with ISDN/BRI interface and i am planning to buy router with E1/PRI interface. Will i be able to connect them?
When mls qos is disabled, how much of an interface buffer is available to the single output queue?is a single switch port able to consume as much as required of the common memory pool.
View 7 Replies View RelatedDoes the ACS Express have the same GUI interface that the full ACS appliance? I mean if I know one I know the other?
View 4 Replies View RelatedIP Address : 192.168.1.0 /24
I need 50 hosts
I need to subnet for f 0/0 and s 0/0
I know for f 0/0 its 192.168.1.1 /26, but after hours and hours i can't seem how to subnet for the s 0/0
Search for 'DIR-825 timeout' only returned a half page and none were relevant.
DIR-825 2.03NA - The web interface has a ridiculously low timeout value. 60 seconds maybe?
I can't build a list of MAC addresses, e.g., before it reaches the timeout. I try to save.... and I have to log back in. And my changes are gone.
What's maddening is that it WAS working the way I wanted, with seemingly no timeout, until recently when I had to basically re-do my network.
i can't access to the router interface page at 192.168.0.1 and not from ddns account. but the internet connection working good, and i'm downloading a lot of torrents in background. i just want to check something on the router and can't access to it, until i disconnect from the power adapter and restart it. maybe he's overloaded or something? how to solve this issue?
View 3 Replies View RelatedWhen I log in to my router (192.168.1.1) refuses to communicate with me in IE8 or Chrome. It seems to work 'OK' with Firefox (not as smooth as it used to up until couple of weeks ago, but still works).I am getting either no response when I click on specific links under STATUS, or a very slow one. I also get no details at all.For example - I click on Wireless where you can see 'Wireless clients that are connected' and nothing appears even though there are at least 5 devices that are currently connected.
View 10 Replies View RelatedI've been able to activate and configure the Cisco 819 router to connect to Verizon via interface Cellular 0 but when I connect a laptop to the router, int Cell 0 goes down.
Here's a snippet of what happens after I connect a laptop:
rt1#ping 8.8.8.8
Type escape sequence to abort.
Sending 5, 100-byte ICMP Echos to 8.8.8.8, timeout is 2 seconds:
[Code].....
I've got a 1U server that has Citrix XenServer 5.6 installed on it. It has 2 physical ethernet interfaces, both connected to the same network switch, one interface has a public IP address on it and the 2nd interface has a private rfc1918 address on it (this can be changed if necessary). I use the private1918 interface to do administrative tasks, transfer data amongst the servers and guest VMs, etc. I'm given a /29 IP address allocation by a friend to use for my servers (using his FTTP internet connection). I want to set up a few guest VMs, but really most of them do not need to be using public IP addresses.
Is there a way to NAT the public interface on XenServer so that guest VMs can use rfc1918 addresses & get online, instead of using the few IP addresses I am given? Also how would I enable portforwards so that I can get applications to work like asterisk, SMTP, etc.?
Listing of interfaces on the Xenserver:
Code...
Well, I've been using my DGL 4300 as a switch, but now I need to use the wireless capabilities it has. I tried going to 192.168.0.1 but it timed out. I pushed down the reset button in the back and hold it for 15 seconds, tried the IP again and nothing but timeout. I unplugged the power cable, held down the reset for 15 seconds, plugged back the power, and still nothing. I've tried various methods, various IP's, and nothing.
View 1 Replies View Related