Perform Linear Hashing In Databases On Given Values?
Dec 10, 2012how to perform Linear Hashing in databases on given values?
View 2 Replieshow to perform Linear Hashing in databases on given values?
View 2 RepliesWhat are the best values for "mac address-table aging-time" and "arp timeout" by following scenarios?:- single sg300-10 as layer3-switch with a maximum of 10 local (direct connected) hosts - and a 3750x-stack with 100 local hosts + hsrp with a other stack of the same sort or for asa 5520 as internet gateway for 500 clients?I use at the moment a mac aging-time from 300 seconds and a arp timeout from 3600 seconds.
View 6 Replies View RelatedI am trying to setup a remote-access vpn (client device is an iphone or PC) on asa 8.0 with a transform-set without encryption and without hashing ( crypto ipsec transform-set noenc esp-null esp-none ). In this scenario, it does not work and all gives me "phase 2 mismatch" ...below is the debug of isakmp and ipsec.
i tried to change the transform set by using hashing without encryption (crypto ipsec transform-set myset esp-null esp-sha-hmac). it worked on the PC but not the iphone. my target is for the iphone to work.
ciscoasa# sh cryciscoasa# sh crypto isa sa
There are no isakmp sasciscoasa# ter monciscoasa# May 29 23:33:44 [IKEv1]: IP = 91.232.100.3, IKE_DECODE RECEIVED Message (msgid=0) with payloads : HDR + SA (1) + KE (4) + NONCE (10) + ID (5) + VENDOR (13) + VENDOR (13) + VENDOR (13) + VENDOR (13) + VENDOR (13) + VENDOR (13) + VENDOR (13) + VENDOR (13) + VENDOR (13) + VENDOR (13) + VENDOR (13) + VENDOR (13) + VENDOR (13) + NONE (0) total length : 741May 29 23:33:44 [IKEv1 DEBUG]: IP = 91.232.100.3, processing SA payloadMay 29 23:33:44 [IKEv1 DEBUG]: IP = 91.232.100.3, processing ke payloadMay 29 23:33:44 [IKEv1 DEBUG]: IP = 91.232.100.3, processing ISA_KE payloadMay 29 23:33:44 [IKEv1 DEBUG]: IP = 91.232.100.3, processing nonce payloadMay 29 23:33:44 [IKEv1 DEBUG]: IP = 91.232.100.3, processing ID payloadMay 29 23:33:44 [IKEv1
[code]....
Questions / Integration Adapter Cisco Prime.There is an integration adapter for HP uCMDB to get CI information from Cisco Works (Prime whatever ….).We set up a user for CW according to “Open Database Schema Support in Cisco Prime LAN Management Solution 4.2” , page 1ff.According to this document we created a user lmsdatafeed. If we run this integration from HP uCMDB / DDM we can connect to rmeng database using jmx to port 43455, but we have not sufficient privileges to get all the needed information. We tried to connect with a user that has full rights (Admin User), but we cannot connect at all with this user. We use Cisco Prime LMS 4.2 and we want to have our network devices as Configuration Items (CI's) in our HP uCMDB Our question:Would it be save to give more privileges to the user lmsdatafeed ? And if yes: How can this be done ?Is it possible to give an admin user the rights to connect by jmx/jdbc ?Below I post the communication protocol of the adapter, connection is OK and the first select statement to, but them this user doesn't have enough privileges. The error messages are in german for some reason ... (means: "User has not sufficient privileges to selet from DM_Dev_State")
==== snip =====
execution jobId="DS_CiscoPrime_CiscoWorks NetDevices" destinationid="e6ac2661c751b23929fb1cf4f97a536f">
<destination>
<destinationData name="id">e6ac2661c751b23929fb1cf4f97a536f</destinationData>
<destinationData name="ip_address">172.28.193.55</destinationData>
[code].....
We currently use ACS 4.2 for authentication of corporate users who are accessing the network in 2 different ways:
1) VPN client (via ASA5510)
2) Wireless (EAP-PEAP)
For all users who currently access the network via either of the above 2 methods, the Password Authentication under User Account settings in ACS is set to query an RSA SecurID Token Server.
We would like to try achieve the following in ACS:
IF an access request comes from the ASA (VPN clients), THEN we would like the user's password authentication to be handled by the RSA SecurID Token Server as it currently is. IF an access request comes from the Wireless LAN controllers THEN we would like to use EAP-TLS authentication. (We are aware that we would obviously need to configure the WLC, clients, PKI infrastructure etc accordingly for eap-tls).
I am support one client for, whom falls under Security scans mandatory for new implementation of ASA 5520 device. The client uses Nessus Scan and the test results are attached.The Nessus scanner hit on 1 Medium vulnerabilities.
View 2 Replies View RelatedOur company has a Server in the office to which we all map network drives.This server is backed up to a Cloud Server (egnyte.com). Whenever I am working on a database on the mapped network drive, it freezes up after 5-10 minutes with the alert "Your network access was interrupted.To continue, close the database,and then open it again."
This problem does not occur with any other Office Products,only Access.It happens to all databases on the server and to all users.
It does not do this when the file is saved on my desktop or when I am working on it directly through the cloud server. When working on the cloud server, however, I went to Compact and Repair my database and a window came up saying the file location did not exist and my whole database disappeared. It was already saved in the file location, I was just compacting and repairing.
Is there some problem with using a local server that backs up to a cloud that makes it lose connectivity every few minutes? Why is this only happening with Access?
I want to perform log in ASDM if there is some one remote to server inside ASA by vpn. Does ASA 5050 able to show the log from ASDM.
View 1 Replies View RelatedI work for a company that buys used cisco equipment and we are trying to get a basic test center set up. What is the best way to perform basic router testing? We have been trying to come up with something for about 3 weeks and so far all we can do is get in the configuration and play around.
View 1 Replies View RelatedI have to load balance traffic between 2 servers sitting behind the LB. The webservices are on HTTPS/8443. I followed the end to end configuration guide for SSL. No success.
Here is my configuration -
rserver host nms1
ip address 10.29.36.31
conn-limit max 4000000 min 4000000
[Code].....
I have 5 public, static IP's provided by my ISP. I read on another page that to use the 2nd, 3rd, 4th and 5th IPs, I must first 'register' them by entering them on the WAN page and I must wait until I can successfully PING them from an external network. Then I can set the WAN IP back to the one I want to use to administer the router. Then I can use those other IP's on the various Access Rules or Port Forwarding pages where there is a spot to enter 'alternate WAN IP address'. I'm trying to determine if this is true because I'm having a heck of a time getting port forwarding to work. My BIOS is 1.0.3.5.
View 7 Replies View RelatedI am attempting to configure an ACE4710 to perform SSL end-to-end confguration. i.e. SSL termination - load balance - SSL initiate to backend server.The configuration appears to work fine in a test lab using any old web server, however when I peform the same configuration in the production environment it does not work. It appeatrs from a capture run on the ace that the ace is reseting the tcp connections after communicating with the back end server. The main difference I can think of in this environment is that the cert and key pair the ace is using where exported from the backend server, i.e. both the ace and the backend server have the same certificates and keys. Is this allowed? how to troubleshoot why the ace resets the connection.
View 6 Replies View RelatedI'm new and just entered in the world of studying my certification for Cisco, since I'm curious I see that there are switches that can perform task depending on the layer? I see some with specifics for Layer 2, some other for layer 3 and even some others with router capabilities!I know this is a rookie question but how do I know what the best switch for a network? or how can I identify them?
View 3 Replies View RelatedWe have 3200 logical devices configured on CiscoWorks and CiscoWorks is running very very slow. CiscoWorks installed on server with Windows Server 2003 32-bit and this version of windows it can only support RAM up to 4GB, which is already installed. In order to increase the RAM we have to upgrade the windows version as well. Which versions of Window can perform best with CiscoWorks. E.g. Windows Server 2003 with Service Pack 1 (SP1), Standard Edition 64-bit: or Windows server 2008 etc. We are currently using the LMS 3.2, RME 4.3.0, CM 5.2.1
View 2 Replies View RelatedCan you configure multiple next-hop entries and have it perform load balancing?
Example
route-map test
match ip address test
set ip next-hop 1.1.1.1
set ip next-hop 2.2.2.2
I have an Aironet 1231G that I'm trying to recover an image on. I'm following the cisco directions of reloading the AP image file from an active TFTP server (which is myPC). My PC has a static ip address of 10.0.0.2 with the TFTP server running. I've verfied that the TFTP server works by upgrading a switch IOS.The issue I'm encountering is the 1231G does not see the TFTP server correctly. url...
View 2 Replies View RelatedI want to mark company owned laptops with a registry setting and have our ASA 5520 identify these systems when connecting via SSL and IPSEC remotely, and allow broader access to the internal network than the telecommuter that use their personal PCs. For the users that connect with their personal PCs, I want to only allow RDP access to their company PCs on the internal network.
Can I accomplish this with the current VPN Plus license and Anyconnect Essentials feature enabled? If not, what license/features do I need installed/ enabled to accomplish these objectives?
I have copied status codes from show ip bg command output and its explanation (from Cisco documentation site)., d and h (suppressed, dampened and history). I read somewhere that these are to control flapping routes. But not able to understand it completly.Raised this question in a couple of forums but didnt get a proper reply.The table entry is suppressed.??The table entry is dampened. ??The table entry history. The table entry is validThe table entry is the best entry to use for that network.
View 2 Replies View RelatedType of Wireless Adapter I have: Intel WiFi Link 1000 BGN When I click on (Properties) and then click the (Advanced) tab, there is a list of properties on the left and a list of values to choose from on the right. I'm curious on what each property does and, which property/value would be most "effective" or "appropriate" for a certain location/situation I'm in.
View 1 Replies View RelatedNow, with all the unified communications, voice, video and data are in the same device, and I try to give priority to voice and some applications, but in the WLC I can not find the way to mark all that kind of packets.
Is it possible to do that? like in a LAN making the marking as voice, signaling and any kind of application? as I marked in all the LAN.
the equipment:
WLC 5508 v7.0.116
AP 1142N
I am running ACS 5.2 (more detail below) eval demo version for a proof of concept and noticed an oddity.. It appears that if you create a Endstation Filter and click the CLI/DNIS tab, click Create and then click DNIS and enter your info ex: *coolssid and hit submit it shows everything correctly, but if you go back and edit it. it swaps them.
Version : 5.2.0.26Internal Build ID : B.3075.EVAL..If you have the webex recording viewer you can watch the little Webex Recording I did showing the steps and the issue.
We purchased a Cisco 541w router for one of our customers.
The main reason was to provide them with 3g backup solution for their business.
In order for the router to recognise the 3G router the firmware was upgraded SRP540_1.02.01_023_081211_1136.
We arrived on site last night to do the install but couldn't make any changes to the already configured router. Every time we attempted add a vlan or adjust the dhcp scope the router would return "The values are invalid".
Worked at this for over 1 hour and then decided to factory reset the router to see if that would revert the router to use the original firmware.
This didn't revert to the previous firmware but we magically could now make network changes without problem.
So everything was good, we reconfigured the router, tested 3G and failed the wan1 interface back and forth and the customer was very happy.
Customer arrived onsite this morning and the router was running on 3G. Every 8 - 10 minutes it was attempting a failover between connections.
I decided to turn off the failover for the time being and investigate further but yet again i was back to "the values are invalid"
We've had to pull the router as the customer is about 2hours away and revert back to their BT router.
Found this document for another SRP model - A warning message may appear in the Basic Wireless Settings screen with the text “The values are invalid” when modifying the wireless profile. Set the SRP 521W to its default setting (CSCtd49614).
[URL]
Will firmware SRP540_1.2.4_003_011112_1847 released only 2 days ago cure the problem?
I am slowly working my way though the setup and configuration of our new 4900m switch. The switch will have a pretty basic operational configuration. We are simply going to network 3 servers together through the swtich. Anyhow, I have been fallowing the guide at this site: [URL]
Basically the switch is brand new and I just setup things such as the clock, the banner, and the hostname. Anyhow, at various points in the guide such as the configuration of the telnet password and especially the interface gigabitethernet I get the "invalid input detected at '^' marker". I also did a show interfaces and noticed there was not any gigabitethernet interfaces but there was a
"FastEthernet1 is down, line protocol is down Hardware is Fast Ethernet for out of band management, address i"
Anyhow, my thinking is continuing on with the guide and at least try to setup the interface for the management port so I can then use the cisco network assistant gui to then configure the rest of the switch.
I upgraded to ASA 9, and asdm 7, everything went perfect except AnyConnect IKEV2 doesnt work anymore, I have a lot of errors under my event viewer:
When it goes to install I get this error: Failed to perform required client update checks. Contact your system administrator
Under Eventviewer I find:
Function: CDownloadTask::Run
File: .DownloadTask.cpp
Line: 413
[Code].....
I have a WLC 2106 with 3 APs. Everything works and users can connect, but the throughput seem to be lower than it should (it is around 8Mbps and should be around 30-50Mbps). And all speed and duplex has been accounted for.
I am trying to understand the stats that I see for the 802.11 MAC counters I under the Wireless APs.on the controller.
That screenshot is attached. I see high numbers for the following areas:
- Tx Failed Count
- RTS Failure Count
- FCS Error Count
what these mean and what could cause this? Maybe these are normal and not a concern.
my cisco 2611 series router is showing garbage value at start up and not allowing me to enter in Romon mode I check the bitrate in console .it is 9600/8N till then i am unable to start the router Can you tell me how to change configuration register value without entering in rommon mode
View 6 Replies View RelatedI am scanning the documentation for CPI 1.2, trying to get it to use CSACS 5.3 for my authentication/Authorization. The docs say to create a TACACS Shell Profile, and add the TACACS A/V Pairs as needed... . nowhere could I find a listing of AV Pairs I can use to grant authorization. I did see that what ever pairs I did use, I must keep the menu chain in tact..
View 6 Replies View Relatedi am searching for the right SNMP-OID to poll the values of the CPU-load from a VSS (6509E)here a OID for VSS-Switch1 and a other OID for VSS-Switch2 values like cli-command "sh proc cpu" of the supervisor-module in slot 5.
View 1 Replies View RelatedWe are in need to perform a site survey with the Aironet 1041N Access Point.
Upon reviewing the site survey software, it seems you need to use an Aironet adapter. However from what i can tell, all the Aironet adapters are PCMICA cards, which most modern laptops do not have, and the PCMICA cards that do exist don't have drivers for windows 7.
Are there USB adapters w/ Windows 7 drivers that can be used to perform a site survey?
this is ASA5520 associate with 8.4(1). very simple scenario , three ports: inside . outside . DMZ my problem is how to use network object NAT to perform Regular Dynamic PAT and Identity NAT.
for example, this is my configuration
**** first i configured Regular Dynamic PAT****
object network myinside
subnet 10.200.11.0 255.255.255.0
nat (inside,outside) dynamic interface
**** then , i met problem when i want to make identity NAT between inside and DMZ****
**** if i add below CLI , the first nat line will be replaced ****
**** SO IF I ADD THIS****
[code]......
I have a VIP, which is listening on port 8312 in ACE LB and NO probes attached to it. In this scenario how does the ACE module perform the health monitoring ?
View 4 Replies View RelatedI have a WS- C2924C-XL switch that I would like to upgrade the IOS version on. The IOS version in question can only be installled on an 8MB version of this switch, I have tried to confirm the amount of memory present in the device but I am getting conflicting values depending on where I look.The model number would indicate that this device is a 4MB version, therefore not compatable with the upgrade.Running the show version command from the CLI shows Processor having 8192K/1024K bytes of memory.Accessing the switch via the VMS management interface displays a value of 4MB.
View 5 Replies View RelatedI'm looking at a stack of WAP200 and WAP4410N APs. I'd like to use Cacti to track number of associations on each AP.What's the OID I should be querying? Are there multiple OIDs that would correspond to the multiple SSIDs? I'm running 2 SSIDs on all of them, and it would be extra nice to be able to track number of stations on each SSID, though the total number would also be acceptable as well.
View 4 Replies View Related