We've had problems with our internet router losing connection to the internet. All traffic stops, a reboot resolves the problem. The router only has a public IP and it's connect through a dummy switch to the ASA as shown. I want to be able to monitor netflow or something and wondered if I could add a static route to the 10.x.x.x network and then add the netflow commands. Here is kind of how it looks, I simplified it some by removing unnecessary devices
I'm thinking of switching to another ISP which is faster and cheaper than who I'm currently with. Only problem is they have data caps. Any way to log inbound/outbound traffic usage with this router so that I can make sure I'm not going to hit monthly limits?
I have a questions about protecting my network. My parent's have rented out my room, since I'm going to college, and I was wondering if there was a way to monitor the traffic that is going on in my network. Once the guy moved in, the wireless connection speed drastically decreased. I was barely able to sure the internet on my laptop. I currently have about 8 devices connected to my network. I am running a wired connection for my desktop so I don't feel any lag, but everything else runs on wifi.
how can I monitor and prioritise traffic on a ASR 1002? Currently we have allowed another organization to use our 1GB link and we would like to monitor what sort of traffic flows through it and want to prioritise the traffic depending on the applications.
I have a L3 core switch with multiple VLANs setup. Is there a way to place an IPS so as to monitor the traffic passing between, lets say, VLANS 1-3 and VLANs 4-10?
I am new to the PIX firewall. And recently implemented the PIX 506e in my network. I wants to know how we can monitor the system that is generating the more traffic on Network through Firewall.
We currently have a 3/3 Etherloop. We dont have any internal IT as we are still small and while not a networking guy I can at least understand what is going on. Right now at peaks we are hitting 100% utilization.
We run a call center in house so I am trying to determine at the very least how much of this traffic is from voice data compared to everything else.Was running through our networking configuration and it just seems off to me. The following is the flow.
-Etherloop Demarcation > -Cisco Integrated Access Device > -D-Link DIR 655 Wireless Router > -24port HP Procurve switch > -24port HP Procruve switch >
Everything up to the first switch is a single line. The first switch has all ports running out except 1 which goes to the second switch. The second switch runs out to machines as well.
I am at the networking level where I understand a switch but have no idea what the IAD really does between the etherloop modem and the wireless router.
For some reason I feel like the router should not be setup in that manner and should be off of the switch. With the cisco IAD running directly to the first switch. So my 2 big questions are.
1. Does this setup even make sense.
2. Whats the easiest way to monitor traffic, at the very least it would be nice to see real time up/down and be able to log in. Then I guess using ports figure out what is being used by voice. My first guess was just putting a machine between the IAD and first switch and monitor and log the traffic.
I have a requirement to monitor all traffic going from the internal LAN to the cloud. The LAN is a layer 2 VLAN which spans multiple Cisco 4507 switched and other smaller switches.
The VLAN has an IP address which the hosts use as the default gateway.
The exit port is on a Cisco 3600X switch connecrted to 4507 #1 via a 10G fiber link. 4507 #1 connects the rest of the LAN. Those switches interconnect via 10G fiber and 1G copper links.
Currently the monitor host is connected to a 1G copper port, configured as a monitor port, on one of the backside 4507s The switch manager says he has the switches configured so that I can see all traffic on the VLAN.
We have an SG300 managed switch located in a small business of less than 10 PCs. There has been an ongoing issue with Internet speed. Is there any way that I can monitor the router for traffic so that I can see what might be causing the problem? I would like to focus on the WAN port and Internet activity particularly.
how do I monitor temperature of my 1921 router? Which commands do I need to put on router and which MIBs to use. I am using PRTG network monitor as a monitoring system.
using my wireless router (and my dsl internet connection)?My router is a Linksys WRT54G. I have a Windows 7 desktop, a Windows XP SP3 desktop and a Windows XP SP3 laptop that connect to the router.
but when i configure the poller i believe the data i mixed up somehow. I for example i don't get all neighbor in the ospfNbrState. i tried with snmp context configuration but i am not sure if this right what i did.
I have a ea4500 router with 3 pc's, 4 iphones, 2 playstations, ipad, ps vita, house cat, and a printer all wired into the internet. There are four of us in the family all using the internet but I suspect one of us is using considerably more than the other. I live in the country and my current isp has us on the max available account - 50 gigs / month. Lately we have been hitting 45 in less than 3 weeks into the month. I would like to know which of the things connected or which person is using the most of the bandwidth up. Is there a program that doesn't require a phd in quantum physics and networking that can monitor this for me and spit out a report.
We just recently purchased a 3945 ISR G2 router and have a SRE-910 module (with two hard drives) configured in a Raid 1. We are running a stand-alone version of ESXi on the service module and I'm trying to figure out how to monitor the status of the Raid on the drives (along with other health issues). SNMP has revealed nothing so far and even opening a support case for which MIB's to use has proved fruitless. All the documents I find on monitoring the modules say to use LMS which is now Cisco Prime. I've downloaded the trial copy, put in the SNMP settings and scanned the router. I get device results and it shows that I have the SRE-910 module installed, but I get no other configuration / device informaiton from the module itself.
I tried to create a new Monitoring template using the NAM health as the base template (which I'm assuming this is the correct template). Unfortunately, when I actually try to deploy the template against the discovered router, I get an 'Unexpected end of list' error which makes me assume I'm still doing something wrong.
We have cisoc 2821 at one of branch and created five sub inetrfaces for different vlans.Output of Show interface shows very frequent increase in the input error count.I have changed the physical cable and switch port on the other side.But still error rate is increasing.When the traffic is less error rate is low but with high traffic it is increasing drastically.My router process is very less(4%) only.What could be possible reason. [code]
We are looking to implement traffic shaping/policing primarily for P2P traffic. As natively the ASA5550 is only capable of p2p inspection if the traffic is tunneled via port 80 is the AIP-SSM the way forward? We have 2 5550s in active/active failover config. As a side note we are also looking to implement an IDS/IPS system so could this module cover all?Is this module going to provide the desired outcome or is there another module/device out there better suited for this? I would prefer to use the ASA5550s as opposed to implementing another product if only that we can make use of the investment we already made on these devices.
I am testing limit bandwith using my ASA 8.2, i am trying to limit internet access for certains users , i order to save Bandwith for the important things but i can´t get any limitation
My configuration is the following, the acces list is just for my pc in order to test, and the service policy is applied to outside interface (called internet in my case) for incoming traffic
access-list Internet_mpc_1 extended permit ip host 172.16.127.70 any class-map Internet-class-TEST match access-list Internet_mpc_1 policy-map Internet-policy-web class Internet-class-TEST police output 1024000 1500
service-policy Internet-policy-web interface Internet
With show service policy i can´t see any activity on the policy , but if i do a similar configuration for inside interface outgoing traffic i can see packets allowed and dropped
I have a SMTP relay deployed on the DMZ for mailing. I have also a mail servers installed in the internal lan,
I want to allow trafic from dmz to reach internal lan, and i want normally also allow stmp relay from dmz to reach Internet.
How can i block trafic from DMZ to reach Internal Lan (instead of smtp) if the to allow trafic from dmz to internet i must put ANY in the policy?
For allowing trafic from DMZ to reach Internet, the policy must be DMZ -----> ANY ----->Services., this policy means DMZ can implicity reach Internal Lan?
We have a Cisco 2811 running ITP IOS. On that router we run the SMPP service. A client on the network connects to this service, and we need to capture the traffic for debug.
I've tried traffic-export, but I cannot see any outbound traffic.I'm guessing that this is due to the fact that the outbound SMPP traffic is not transit traffic as it is generated by the router itself.
I am trying to come up with the best way to traffic shape traffic with 3750 Me switches. the traffic will be coming from a 6504 Sup-7203b downstream and going out the wan. Core---L3---->6504--intvlan80--trunkport to--->3750Me---g/1/1/1-trunkport to---MetroE network--->int f0/0.80--branch router. The idea is to use the 3750 to traffic shape the traffic going towards the wan/branch to 500 to match the contracted rate and then to use qos on shaped rate. I tried to apply it to g1/1/1 using port based policies but it did not shape the traffic. I changed everything to IP interfaces and it worked. I need to break up the metroe into different vlans so I can bring branch offices in on different vlans.c
I live in a shared flat. And all 20 rooms are connected to this switch I believe. Is there any method to prevent the landlord/tech guy monitoring our internet activity (e.g. bandwidith activity, websites we looked at, etc.
Licenses are activated on a total of 31 devices (nexus 5000 and 3000 series), data is being monitored, graphics are drawn. However under the Web user interface of DCNM, under Health, Virtual Port Channels (vPC) no data is shown. Performance, vPC is also empty. No vPC errors/notifications are displayed. The installed advanced-eval licenses should support all the bells and whistles (including vPC), but still- no monitoring is done about vPC-s. vPC-s are up and active. network is discovered and monitored via snmp v2c only. could this be limiting vPC discovery- needing snmpv3/ssh access?
I was wondering if there is a way to monitor the total bandwidth available at any given time? My ISP claims and is charging me for a certain amount of bandwidth but I suspect that during the day I am getting much less.
I would like to track available bandwidth continuously (or every 5, 10, 15 minutes) and log that data so I can show them the results. I'm on a Mac 10.7 but can use Windows XP also.
Does any know why the ASA will monitor physical interfaces by default, but monitoring of logical interfaces is disabled by default? Or better yet, is anybody doing a monitor-interface for a subint without issue? I'd imagine it isn't enabled by default for a reason.
I wanted to setup some type of free software to do monitoring from my laptop on my home network. I'm using a Linksys WRT54GL with DD-WRT that provides decent monitoring but I wanted to start becoming more familiar with the mainstream products.
My ISP provide me with Thomson TG799vn (Gateway). The modem can be used with LAN cable and wifi function on it too.
The only computer that's directly connected to it is mine and I am currently using Ubuntu Oneiric and Windows 7. Is there anyway that I could monitor user (disconnect / ban any unwanted connection) connected to my modem.
From the gateway page I can see the below info but do not know how to use it :
user-0efb5820d0 Information Status:Active Type:Generic Device Connected To:WLAN (Wireless) Allowed on WLAN:Yes Addressing Physical Address:00:1a:13:b6:4d:ce IP Address Assignment:DHCP IP Address:192.168.1.70 Always use the same IP address:No DHCP Lease Time:0 days, 23:03:02
I have downloaded many software but it's useless because it provide me with none of the function I required.
Is there any free tool like lanvisor ???I have 50 computers in my lan and wish to monitor all those computers during their online examinations ... I need a free tool which will autostart in all clients so that i can sit in one computer monitoring everyone.