Determine If A Switch Is Between A Host And A Target?
Nov 23, 2011
I was attempting to troubleshoot a logon problem with some machines, when it was finally revealed that there was a managed switch between the host and the target preventing this.
How would I detect this in the future? (A tracert showed nothing between host and target.) Would Wireshark show me this info, with reduced TTLs?
getting a picture of all devices between a host and a target?
I'm the sole IT worker at this company and I specialize in everything but big, corporate networking so here's a dumb question. How do I determine the IP address of one of our two switches? I need a list of MAC addresses of connected devices so I can relabel all the cables that were mislabeled (and this is a managed switch). For the other switch, which was put in by someone who knew what they were doing, you just type ss3900 into a browser and tada, 3com Superstack 3900 login so apparently someone did some fancy DNS stuff or whatever.
For this HP Procurve, the idiot before me who got fired for completely screwing up everything didn't leave any documentation or labeling and didn't use the same IP address as the Cisco switch that was pulled out. Obviously the switch is invisible to my PC from an IP standpoint
I'm trying to access the CMS administration page from my browser. I've already tried 192.168.0.1 and that brings up my gateway (cable modem from Time Warner).
How is it possible to connect a host to a switch when they're in different subnets? I'm new to Networking and was thinking it may be achievable through VLAN configuration?
Web auth redirect URL gets dropped if stateful firewall is between webauth host and switch management interface. Aaron at Cisco live london kinda hinted about maybe Cisco working on this ? We can't disable stateful inspection. Is there any other solutions or workarounds ?
"Although this approach introduces additional hops in the return path from the switch to the host, it produces negligible load on the default router and intervening infrastructure since only the WebAuth traffic from the switch to the host follows this path. In campus designs that do not use SVIs on the data VLAN,6 a default route is typically already configured. In this case, no additional configuration is required to support WebAuth.
However, problems may arise in the case in which traffic to the default router is bridged through a stateful firewall. The original SYN packet in the TCP handshake is consumed by the access switch, so the first packet that the firewall sees is the SYN-ACK packet from the access switch. Stateful firewalls typically drop SYN-ACK packets if they have not seen the original SYN packet.In this case, you will need to turn off stateful inspection for ports 80 and 443 on the firewall."
Is there any way to Mirror a CISCO C3750 Switch Port Taffic to a remote Host IP Address?I know Port Mirror (SPAN/RSPAN) can copy one Interface Packet to another Interface. But I am looking for a way to miror Switch Port Packets to a remote Host (having Public IP Address and running Wirehark). Is it possible?
Why can't I connect to the website for Target Stores? Each time I try to connect to Target Store website the small box fills up at the bottom of the screen, then the hour glass appears and Windows Internet Explorer says "program not responding". No other websites give me this problem, only Target
My company recently purchased a custom domain name through In Motion Hosting (inmotionhosting.com) which has worked great up until today. As of this morning we are not able to view our webpage online (ronnysinc.com) or any inmotionhosting pages including our email accounts. However, we can view any other website and computers outside of our network seem to be able to view those pages without any problem. [code] As you can see it works fine with any other website such as google. My initial thought was it was being blocked by our firewall but when I log into the router I do not see any firewall settings that would create this block. I also tried resetting the router and flushing the DNS with no success.
I have two ACS 5.2 running as primary and secondary instances respectively. When I try to delete a remote log target under System Administration > ... > Configuration > Log Configuration > Remote Log Targets I get the following error message...."The item you trying to delete is referenced by other items. You must remove all references to this item before it can be deleted".
I have searched the configuration within the web gui and was unable to find anything that reference the object that I'm trying to delete.
i have two servers that is Primary domain Controller and File Server. When i remove the client computer from the domain and try to rejoin the domain again it refuses, when i ping it replies. i can not assess files in the file server It prompt"Logon Failure: the target account name is incorrect" Suprisingly When i logon in other clients its OK. but some clients give ths said error though the communication with the server is fine
I am using an ASA 5520 running 8.2(4). My objective is to get a VPN client to access more than one network on the inside of the network, i.e., I need to VPN in with an IPSec client and be able to establish tcp connections to servers at 192.168.210.x and 10.21.9.x and 10.21.3.x, I believe I am close to having this resolved, but seem to have a routing issue.
I would like to limit the bandwidth available to a different target machine. I have been trying to do this on a Cisco 3750, but first I came across this message:
% QoS: policy-map with police action at parent level not supported ...
Then this:
% QoS: policy-map child ... ClassMap BackLimit only support MATCH-INPUT INTERFACE
Is there any documentation, I searched the forum but all I see are complex solutions, I just wanted to limit the bandwidth for a machine that is in a different site. I wanted to apply the policy on an interface SVI.
I have a host that can successfully connect to a PIX 515E (7.x OS) via VPN Client; however, I have no IP routing to the LAN from the remote host.The VPN IP pool works finem,The LAN default gateway is the inside interface on the PIX; the network is flat L2 behind it.The default route on the PIX points out; no other routes are defined,The VPN remote host can be pinged from LAN hosts, but the VPN remote host cannot ping any LAN host, not even the PIX inside interface.
Today when we run one applcation to access a target server with IP address 10.2.2.13, the application cannot run through and appearing error message related networking.The target server has two network ports whereby another one with IP 10.2.2.14 is running OK with the same application. All these two connections are connected to the same Cisco switch 3750, after the switch then go to Cisco ASA firewall which has no access control rule for this 10.2.2.13 and its subnet, and then the firewall connect directly to the application server.We can ping, remote desktop access and telent port for the application to the target server by using 10.2.2.13.We swapped the cable connection of the ports from one another and try the application again, the IP with 10.2.2.13 is still fail and IP with 10.2.2.14 is OK.We then change the IP from 10.2.2.13 to 10.2.2.12 or 10.2.2.155, all are OK. We changed back to 10.2.2.13, it is failed again.The switch is in running real time production and so we cannot power cycle or reload the switch.
I'm configuring a console server for configuring remote devices. This is working well except for the fact that if a target device is in ROMMON mode, the console server refuses to displays the target device console. It does open the connection but the ROMMON prompt is not shown on the console server . This is essential for this device as we will need to use it to reset passwords remotely and thus need to be able to access ROMMON mode from the console server.
Parts used are a 2951 router and a HWIC-8A serial card. Posted my config below:
I have and 880 W router. The LAN members can get out t o the internet. Now I want to configure NAT such that outside computers can access a couple of the machines using Remote Desktop (RDP). I am using Configuration Professional.
When I configure inside to outside, the remote computers can't connect to the target machines.When I configure outside to inside, the target machines acn't get to the internet.
When I try to use the advanced NAT definition wizard, I can't complete the task because the only inside pool (?) or LAN (?) is "designated" and not available to select. I can't free it up without deleting the one working NAT entry which is the one that enables all computers to reach the internet.
I have a site with a 1700 router connected to a 2960 switch. For some of the computers on site I want to determine how much traffic is local to the LAN and how much is going across the WAN.
One strategy I've come up with is to reset the interface counters on the switch ports to the machines in question and after some time compare the total bytes in and out of the interface with netflow data from the router. My only concern is that netflow is not completely accurate about the amount of data that has passed through an interface.
Is there a better or more accurate way to accomplish my goal?
J've just bought an Asus RT-N66U router and I'm setting up a broadband credit card machine to go into it (rather than transmitting data over the phone line).I need to know what the status of DHCP and MAC are on the router but I'm not sure how to find it.DHCP needs to be on and MAC needs to be off.
Do you know an easy way to determine the physical location of the device were an IP address is attached? IP Geo location doesn't work well.Is something like this possible? I know it could be if you are the network administrator and know the location of your equipment and stuff.
my husband gave my son a sim card for his phone and I have no idea what the number is. This is what I found on the sim card and need the number for this to see if it is valid.
problem is my brother has been playing with its config page. he changed the IP Address of the modem and disabled DHCP. he forgot what IP Address he inputted on the config page. I tried resetting the router with the small button on its side. Nothing happens. all the lights blink when i pushed the reset button for 10 sec. but nothing happens. i still can't access its default IP which is 192.168.1.1 IS there anyway to determine its IP Address even if DHCP is disabled ?
Should the DIR-655 list all devices that are accessing either my WAN or another device on the LAN, assuming there are no other switches on the network, and all traffic is going through the DIR-655?
I was trying to determine the IP, and MAC address of an AT&T Microcell connected to my network. I have no physical access to Microcell. I have been able to find the IP address, in the logs of the DIR-655, but nowhere else. Shouldn't it be listed under SETUP -> NETWORK SETTINGS -> NUMBER OF DYNAMIC DHCP CLIENTS?
I'm am using Google Analytics for my webpage, and I want to exclude(filter) the IP range of my router's external IP addresses from the Analytics data. How do I determine the IP range of my router's public IP?
The support and registration pages for the E4200 wireless router ask whether I have a V1 or V2 router. There is no place on the actual router that identifies it as V1 or V2, and the Cisco Connect application doesn't display this infomation either. What I do know is the following:
Model name: Linksys E4200 Model number: E4200 Serial number: 01C10C18104423 Firmware version: 1.0.03 build 14 Software version: 1.4.12005.2
How do I determine if this is a V1 or V2 router? The software updates are version specific.
I have a list of email addresses, people who have subscribed to a free electronic newsletter. The email address is all the information we have about each subscriber.A satellite office is going to begin handling print and electronic subscriptions for subscribers in Peru. Is there any way to determine which of these email addresses are from Peru?