cancel
Showing results for 
Search instead for 
Did you mean: 

Answer Questions

  • Exchange Server is not accessible by other vlans. - ( 9m ago )
  • Switching
  • Hi everyone,   I have this network that all workstations and servers are all in the same vlan(default vlan). From this point exchange is reachable and accessible because they are all in the same vlan.   But since this network wants to upgrade their network to have vlans separating users per floor, servers and printers, I will just have to migrate the workstations to designated vlans ensured that all these vlan still reachable to each other. I have done this successfully by ip routing on the core and trunk allowed on switch to switch connections. Also there is no existing ACL on core.   I'm a network engineer so I don't have any knowledge with servers. On my testing, I retain the servers on the default vlan and migrate one workstation to other vlan. I am not able to reach exchange server/OWA but other servers like lex is reachable and accessible.   I just want to ask if there's a changes that needs to be done on the side of exchange server, so that it can be seen by other vlan or there is something that I haven't done.   Feel free to ask if there's some information you need to know about the network thanks.   Would greatly appreciate any help. Thanks!
    View more
9m ago
Cancel Post

  • Dying 79xx phones: erase flash entirely and repartition? - ( 2 hours ago )
  • IP Telephony and Phones
  • Is there any public documentation available on how to logon to the root shell of the Cisco Native Unix (CNU) that runs on the 7945 phones?   I believe I have discovered why the flash eventually fails on these phones... the problem is flash memory bit rot which is just a normal part of how flash data is stored.   There are file system data structures (Partition table, static Unix partition data) written once during the phone manufacturing that are apparently never rewritten for the life of the phone, not even when a new phone load is installed. Eventually these flash cells lose their charge, the Unix partition table evaporates, and the phone will never boot again.   So, to fix this problem, it appears that what I need to do is to fully erase the flash file system and then build a new partition table and filesystem. This will then refresh and rewrite those data cells with new electric charges that then extends the life of the phone for many more years.   Apparently the only way to do this is to logon directly to the root shell of the CNU that runs on the phones, and potentially see if there is some way to enable or possibly even boot from NFS, so that the flash can be fully erased and rewritten without killing CNU and bricking the phone.    Does anyone know more about this?
    View more
2 hours ago
Cancel Post

  • Calling on real word Cisco CMX users - ( 3 hours ago )
  • Wireless and Mobility
  • I'm reaching out to this community in hopes that I can contact an actual user of CMX Connect, Engage, Presence and Locate services whether you are using CMX in the cloud or on-premise. I am a senior network engineer for a large retail organization with locations across the US from stores in major shopping malls, strip malls, to free standing locations. We have an opportunity to deploy CMX in a test store to validate and test its analytics and ROI as well as ease of use. I am wanting to learn from you lessons learned, gothchas you encountered, deployment, etc. Some of the wireless infrastructure that I am working with is 3702i access points with the hyperLocation Antenna Array and a RM3010L module running Flexconnect, Cisco 5520 WLC running 8.5.x and CMX Presence 10.4.1-15 and CMX Locate 10.4.1-15.   Thanks in advance
    View more
3 hours ago
Cancel Post

  • why mac suppresion works in ISE? - ( 3 hours ago )
  • Identity Services Engine (ISE)
  • in the last month we have been receiving many requests regarding the one of the corporate SSIDs. Users get the following error message "Unable to connect to the network"  even if the credentials are correct via AD.   One of the processes that we found is doing a Bypass suppression on the ISE tool after that the users have access.   I would like to understand why this happens and what could be the cause of it, since just by bypassing the user or mac address it works.   the only thing I can see in the logs via ISE is the following,   have you experienced this kind of experience before? if so, what is the fix for this since I dont want to be keeping adding like if Im whitelisting and this seems to be that works only as work around    Event 5440 Endpoint abandoned EAP session and started new Failure Reason 5440 Endpoint abandoned EAP session and started new Resolution Verify known NAD or supplicant issues and published bugs. Verify NAD and supplicant configuration. Root cause Endpoint started new authentication while previous is still in progress. Most probable that supplicant on that endpoint stopped conducting the previous authentication and started the new one. Closing the previous authentication.       Event 5411 Supplicant stopped responding to ISE Failure Reason 12934 Supplicant stopped responding to ISE during PEAP tunnel establishment Resolution Verify that supplicant is configured properly to conduct a full EAP conversation with ISE. Verify that NAS is configured properly to transfer EAP messages to/from supplicant. Verify that supplicant or NAS does not have a short timeout for EAP conversation. Check the network that connects the Network Access Server to ISE. Verify that ISE local server certificate is trusted on supplicant. Root cause Supplicant stopped responding to ISE during PEAP tunnel establishment   please let me know if you need further info about it  
    View more
3 hours ago
Cancel Post

  • Adding multiple phones/users to CUCM 11.5 - ( 4 hours ago )
  • IP Telephony and Phones
  • Hi all, I have users (about 21) in new location that I need to add to CUCM 11.5. All the users are in LDAP. I also got new DID numbers. The users/phones are in different location then I. I would like to know the easy and simple way to add users/phones to CUCM. I am thinking of creating phones/users template in Bulk Administration and then export the files, I luck the experience and would like some help to achieve that.   Thanks
    View more
4 hours ago
Cancel Post

  • disable uccx cluster HA - ( 5 hours ago )
  • Contact Center
  • Client need temporary breaking the UCCX v9 cluster HA to finish the DRS backup, and re-associate HA again, as need getting the database DRS backup first before rebooting the UCCX cluster servers. what is the better process without re-installing the uccx secondary server and only temporary disable the uccx cluster HA?Thanks,Richard
    View more
5 hours ago
Cancel Post

  • BGP Community - ( 5 hours ago )
  • Routing
  • Hi Everyone,   I have a question about BGP.   I would like to adapt the BGP community sent by my router based on an ACL.   I have 2 routers   R1 sets a community of 0 on all routes and R2 sets 10095 on all routes. R1 is the primary router and R2 the secondary.   For 3 ip's I would like R2 to become the preferred router. In and out traffic. So on R1 in my router bgp xxxx config I have created a route-map      "neighbor x.x.x.x route-map BGP-FILTER-OUT out"   This route map sets the community of all routes to 0          route-map BGP-FILTER-OUT permit 10       match ip address bgp-routes       set community xxxx:0       ! How do I add the second part? Can I add it to sequence 10?       match ip address bgp-3ips       set community xxxx:10095.   If I create a sequence 20. I will never be executed since sequence 10 always has a hit. I tried creating the sequence 20 and adding "continue 20" in sequence 10, but without success.   Any tips? Thanks, J.
    View more
5 hours ago
Cancel Post

  • Multipod with IPN in global table - ( 5 hours ago )
  • Application Centric Infrastructure
  • I understand Multipod IPN should a dedicated network or in a VRF. However customer has a Multipod implementation with IPN in the global table because of some technical issues with the DCI link capability. It hasn't had any issue until the regular L3Out for user tenant was brought up. It appeared that the both Multipod L3Out and regular L3Out started advertising TEP Pool IP's, IPN subnets and regular BD subnets and caused routing loops between ACI, IPN and legacy networks.   Is Multipod via non-dedicated or non-VRF IPN a supported implementation? Is it the expected behavior that ACI advertises TEP pool and regular BD subnets through Multipod L3Out and regular L3Out which seemed strange? Any advice is much appreciated.   Thanks, David  
    View more
5 hours ago
Cancel Post

  • Password recovery on Cisco 1941 - Command authorization failed - ( 5 hours ago )
  • Network Management
  • I got a 1941 router and trying to do a password recovery.  I recycle the router and do a CTRL-Break on it, then I do a confreg 0x2142Next, I do ENABLEFrom there, I'm at the Privleged Mode and should be able to do copy start run and configure terminal, so I can clear out the enable password.  This is what happens.R1#conf t%authorization failed.I tried other command but got the same message. any idea?
    View more
5 hours ago
Cancel Post

5 hours ago
Cancel Post

  • CUIC error while adding Stored Procedure - ( 6 hours ago )
  • Contact Center
  • I'm trying to add very basic stored procedure that I have created icm_hds database. It gives results of TCD tables for the time frame of 5minutes.   Have also given cuic user the permission to execute it. Now when I goto report definition and try to add that stored procedure, I click on create parameters I'm getting below error.   Error message: Stored procedure doesn't exist or syntax is invalid. Please provide a valid stored procedure and click on create parameters.   Can someone help me what I am missing?   We are using UCCE v11.0 and CUIC v11.0
    View more
6 hours ago
Cancel Post

  • Informix ODBC Driver on Windows 10 not working - ( 6 hours ago )
  • Unified Communications Infrastructure
  • Hi   We have problems running Cisco Unity Tools on our Windows10 Computers   We downloaded Informix ODBC driver from http://ciscounitytools.com/Applications/CxN/InformixODBC/InformixODBC.html We followed the procedure to install it on windows 8 - Add C:\WINDOWS\SysWOW64\ to the path environment - Set the installation to run as administrator with Windows 7 compatibility   The driver installation doesn't present any error.  Looks like the installation is successful but when we run the tool "Audio Text Manager" we receive an ODBC      
    View more
6 hours ago
Cancel Post

  • UCCX 9 Queue music with option to leave voicemail. Can only press key when playing menu step - ( 6 hours ago )
  • Contact Center
  • Hi, I'm having an issue with callers being able to exit the queue when all agents are busy to leave a VM. Queued callers get a message- agents busy, please hold, press 1 to leave VM" then they get 30s of MOH from CUCM as I'm using call hold/unhold to play the canned music as below.               However, callers can only press one when the prompt is playing, not when the on hold music is playing. My thought is, they're on hold, so that's why they can't press a key. I followed another post to set this up: https://community.cisco.com/t5/contact-center/add-an-option-to-break-out-of-the-call-queue-and-leave-a-vm/td-p/2415172 and it seem to work for that poster, but not for me. In that linked post, it recommends blanking the Input/Timeout, but when I do that the leavevoicemessage prompt just repeats over and over. It seems like my DP(30000) isn't delaying.   If I had my druthers, I'd get rid of the hold/unhold and play the queue music as prompts, but my scripting fu is weak, because I haven't figured out how to add a step to let the caller exit to VM on command, either.   Thanks in advance!  
    View more
6 hours ago
Cancel Post

  • Script Assistance CCX - ( 6 hours ago )
  • Contact Center
  • Hello Folks,    I need a help in scripting. My clients want this way   Step 1 - Customer enters and ID. Then we have to match with the DB  Step 2 - if the above ID matches, then script prompt to enter the account # Step 3 - Combine both ID and Account number and populate in the finesse.   I simply dont have a clue, how to do that. Can someone help me creating a script or send me a sample script.   I am stuck and need to configure by next week. Please, apologies for shortcuts   Thanks in advance    
    View more
6 hours ago
Cancel Post

  • Passive ID DC upgrade procedure - ( 6 hours ago )
  • Identity Services Engine (ISE)
  • What is the process for upgrading the Passive ID Agent that is installed on the DC's? I do not see a separate download for the Passive ID Agent in the ISE software downloads, so I'm assuming if the agent is updated, it is included in the ISO of the ISE release (or in a patch)? If that is the case, would we need to perform a manual uninstall of the Passive ID Agent on each DC and then re-deploy it from ISE?
    View more
6 hours ago
Cancel Post

  • Same WAN IP on secondary ASA. Is this possible? - ( 6 hours ago )
  • Firewalls
  • Hello Everyone, I am configuring two ASAs in fail over mode but there's is a constrain. We only have one public IP. Will it be possible to configure the same WAN IP on both primary and secondary ASAs? If the primary ASA fails, I plan on just moving the ISP cable over to the secondary. I know this is not ideal but I have to work with this for now.   I tried to add the IP on the secondary ASA but it does not show in the "show interfaces ip brief" It does show under the show run int.   Thank you,
    View more
6 hours ago
Cancel Post

  • When Outbound Private listener is suspended will it cause queues at internal servers? - ( 6 hours ago )
  • Email Security
  • Hi Team,  Please clarify, when we suspend the outbound pvt listener on Ironport will the message queues will be occurring on internal network servers like (DLP, Domino & Exchange) end?( as they will relay messages to outbound relay Iron-port)?. Is relay failure messages (bounce back messages) will be send to internal servers? Please clarify what will be the general behavior from Ironport to internal servers and vise versa hear?      
    View more
6 hours ago
Cancel Post

  • ASA 5512 Windows 2016 VPN error contacting host - ( 7 hours ago )
  • Firewalls
  • We upgraded our file servers from Windows 2012 r2 to Windows 2016.  We we try to access our file shares through the web client, we receive and error message "error contacting host".   We are on version 9.4(4)20 ASA. Has anyone else run across this error message before, or know of a fix?
    View more
7 hours ago
Cancel Post

  • Vlans and Internet connection - ( 7 hours ago )
  • Switching
  • Vlans and internet connection So, I'm a little confused. So i have 3 Vlans created. Vlan 1 - Port 1 - 16 Vlan 50 Port 17 - 32 Vlan 100 Port 33 - 48 They each have their own dhcp server etc. Which port should i connect my comcast cable to.  Should I have configured 1 port not to be apart of any vlan and connect it there.  Please advise.  Not sure where to go from here See configuration below. Thanks   Switch#show configUsing 4362 out of 524288 bytes!version 12.2no service padservice timestamps debug datetime msecservice timestamps log datetime msecno service password-encryption!hostname Switch!boot-start-markerboot-end-marker!!no aaa new-modelswitch 1 provision ws-c3750g-48tssystem mtu routing 1500ip subnet-zerono ip dhcp use vrf connected!ip dhcp pool vlan50 network 192.168.50.0 255.255.255.0 default-router 192.168.50.1!ip dhcp pool vlan100 network 192.168.100.0 255.255.255.0 default-router 192.168.100.1!!!!!!!!!!spanning-tree mode pvstspanning-tree etherchannel guard misconfigspanning-tree extend system-id!vlan internal allocation policy ascending!!!!interface GigabitEthernet1/0/1!interface GigabitEthernet1/0/2!interface GigabitEthernet1/0/3!interface GigabitEthernet1/0/4!interface GigabitEthernet1/0/5!interface GigabitEthernet1/0/6!interface GigabitEthernet1/0/7!interface GigabitEthernet1/0/8!interface GigabitEthernet1/0/9!interface GigabitEthernet1/0/10!interface GigabitEthernet1/0/11!interface GigabitEthernet1/0/12!interface GigabitEthernet1/0/13!interface GigabitEthernet1/0/14!interface GigabitEthernet1/0/15!interface GigabitEthernet1/0/16!interface GigabitEthernet1/0/17 switchport access vlan 100 switchport mode access!interface GigabitEthernet1/0/18 switchport access vlan 100 switchport mode access!interface GigabitEthernet1/0/19 switchport access vlan 100 switchport mode access!interface GigabitEthernet1/0/20 switchport access vlan 100 switchport mode access!interface GigabitEthernet1/0/21 switchport access vlan 100 switchport mode access!interface GigabitEthernet1/0/22 switchport access vlan 100 switchport mode access!interface GigabitEthernet1/0/23 switchport access vlan 100 switchport mode access!interface GigabitEthernet1/0/24 switchport access vlan 100 switchport mode access!interface GigabitEthernet1/0/25 switchport access vlan 100 switchport mode access!interface GigabitEthernet1/0/26 switchport access vlan 100 switchport mode access!interface GigabitEthernet1/0/27 switchport access vlan 100 switchport mode access!interface GigabitEthernet1/0/28 switchport access vlan 100 switchport mode access!interface GigabitEthernet1/0/29 switchport access vlan 100 switchport mode access!interface GigabitEthernet1/0/30 switchport access vlan 100 switchport mode access!interface GigabitEthernet1/0/31 switchport access vlan 100 switchport mode access!interface GigabitEthernet1/0/32 switchport access vlan 100 switchport mode access!interface GigabitEthernet1/0/33 switchport access vlan 50 switchport mode access!interface GigabitEthernet1/0/34 switchport access vlan 50 switchport mode access!interface GigabitEthernet1/0/35 switchport access vlan 50 switchport mode access!interface GigabitEthernet1/0/36 switchport access vlan 50 switchport mode access!interface GigabitEthernet1/0/37 switchport access vlan 50 switchport mode access!interface GigabitEthernet1/0/38 switchport access vlan 50 switchport mode access!interface GigabitEthernet1/0/39 switchport access vlan 50 switchport mode access!interface GigabitEthernet1/0/40 switchport access vlan 50 switchport mode access!interface GigabitEthernet1/0/41 switchport access vlan 50 switchport mode access!interface GigabitEthernet1/0/42 switchport access vlan 50 switchport mode access!interface GigabitEthernet1/0/43 switchport access vlan 50 switchport mode access!interface GigabitEthernet1/0/44 switchport access vlan 50 switchport mode access!interface GigabitEthernet1/0/45 switchport access vlan 50 switchport mode access!interface GigabitEthernet1/0/46 switchport access vlan 50 switchport mode access!interface GigabitEthernet1/0/47 switchport access vlan 50 switchport mode access!interface GigabitEthernet1/0/48 switchport access vlan 50 switchport mode access!interface GigabitEthernet1/0/49!interface GigabitEthernet1/0/50!interface GigabitEthernet1/0/51!interface GigabitEthernet1/0/52!interface Vlan1 ip address 192.168.1.254 255.255.255.0!interface Vlan50 ip address 192.168.50.1 255.255.255.0!interface Vlan100 ip address 192.168.100.1 255.255.255.0!ip classlessip http serverip http secure-server!!!!control-plane!!line con 0line vty 5 15!end    
    View more
7 hours ago
Cancel Post

  • Customer Success Workshop: AMP Unity and API Integrations - ( 7 hours ago )
  • Advanced Threats
  •   If you recently attended the Customer Success Workshop to learn more about AMP Unity and API Integrations, and you're looking for a recap of what was discussed - then look no further. Not only are we able to provide you with a summary of what was shared during the workshop, but we can also provide you with the presentation deck that was shared during the session here.   And if you weren't able to attend the Customer Success Workshop focusing on AMP Unity and API Integrations, then here's what you can catch up on from the presentation deck:   AMP Unity Overview API Integration Use Cases Additional Resources
    View more
7 hours ago
Cancel Post

  • Which log file stores coreing or errors in virtual WSA? - ( 7 hours ago )
  • Web Security
  • We had a strange hiccup in internet connectivity but yet our endpoints did not log any downtime or issues.  In front of that is the WSA so I was wondering if there was a log in the WSA where it could show me when it does a core dump or has an application error of sort.  I'm not sure which one of these would be it, as I tried status and system_logs and they had nothing to do. Where can I find this type of information in WSA? 1. "accesslogs" Type: "Access Logs" Retrieval: FTP Poll2. "amp_logs" Type: "AMP Engine Logs" Retrieval: FTP Poll3. "archiveinspect_logs" Type: "ArchiveInspect Logs" Retrieval: FTP Poll4. "audit_logs" Type: "Audit Logs" Retrieval: FTP Poll5. "authlogs" Type: "Authentication Framework Logs" Retrieval: FTP Poll6. "avc_logs" Type: "AVC Engine Logs" Retrieval: FTP Poll7. "bypasslogs" Type: "Proxy Bypass Logs" Retrieval: FTP Poll8. "cli_logs" Type: "CLI Audit Logs" Retrieval: FTP Poll9. "configdefragd_logs" Type: "Configuration Logs" Retrieval: FTP Poll10. "dca_logs" Type: "DCA Engine Logs" Retrieval: FTP Poll11. "external_auth_logs" Type: "External Authentication Logs" Retrieval: FTP Poll12. "feedback_logs" Type: "Feedback Logs" Retrieval: FTP Poll13. "feedsd_logs" Type: "Feedsd Logs" Retrieval: FTP Poll14. "fips_logs" Type: "FIPS Logs" Retrieval: FTP Poll15. "ftpd_logs" Type: "FTP Server Logs" Retrieval: FTP Poll16. "gui_logs" Type: "GUI Logs" Retrieval: FTP Poll17. "haystackd_logs" Type: "Haystack Logs" Retrieval: FTP Poll18. "httpslog" Type: "HTTPS Logs" Retrieval: FTP Poll19. "idsdataloss_logs" Type: "Data Security Logs" Retrieval: FTP Poll20. "logderrorlogs" Type: "Logging Logs" Retrieval: FTP Poll21. "mcafee_logs" Type: "McAfee Logs" Retrieval: FTP Poll22. "musd_logs" Type: "AnyConnect Secure Mobility Daemon Logs" Retrieval: FTP Poll23. "ocspd_logs" Type: "OCSP Logs" Retrieval: FTP Poll24. "pacd_logs" Type: "PAC File Hosting Daemon Logs" Retrieval: FTP Poll25. "proxylogs" Type: "Default Proxy Logs" Retrieval: FTP Poll26. "reportd_logs" Type: "Reporting Logs" Retrieval: FTP Poll27. "reportqueryd_logs" Type: "Reporting Query Logs" Retrieval: FTP Poll28. "saas_auth_log" Type: "SaaS Auth Logs" Retrieval: FTP Poll29. "shd_logs" Type: "SHD Logs" Retrieval: FTP Poll30. "snmp_logs" Type: "SNMP Logs" Retrieval: FTP Poll31. "sntpd_logs" Type: "NTP Logs" Retrieval: FTP Poll32. "sophos_logs" Type: "Sophos Logs" Retrieval: FTP Poll33. "status" Type: "Status Logs" Retrieval: FTP Poll34. "system_logs" Type: "System Logs" Retrieval: FTP Poll35. "trafmon_errlogs" Type: "Traffic Monitor Error Logs" Retrieval: FTP Poll36. "trafmonlogs" Type: "Traffic Monitor Logs" Retrieval: FTP Poll37. "uds_logs" Type: "UDS Logs" Retrieval: FTP Poll38. "updater_logs" Type: "Updater Logs" Retrieval: FTP Poll39. "upgrade_logs" Type: "Upgrade Logs" Retrieval: FTP Poll40. "wbnp_logs" Type: "WBNP Logs" Retrieval: FTP Poll41. "webcat_logs" Type: "Web Categorization Logs" Retrieval: FTP Poll42. "webrootlogs" Type: "Webroot Logs" Retrieval: FTP Poll43. "welcomeack_logs" Type: "Welcome Page Acknowledgement Logs" Retrieval: FTP Poll  
    View more
7 hours ago
Cancel Post

  • Question about Encrypted Traffic Analytic and StealthWatch - ( 7 hours ago )
  • Security Analytics and Management
  • Hi Guys,   Recently my company purchased 2 Cisco Catalyst 9000 switches with DNA Advantage software license, I noticed the DNA Advantage software included Encrypted Traffic Analytic(ETA) feature, but we don't have any NetFlow collector like StealthWatch, so how can I use this function? If we buy a StealthWatch virtual edition, I think the DNA Advantage software not supports StealthWatch, right?   Please kindly inform me if I wrong. Thanks!     Kind Regards, Chang
    View more
7 hours ago
Cancel Post

7 hours ago
Cancel Post

7 hours ago
Cancel Post

  • UCCX upgrade licenses - ( 8 hours ago )
  • Contact Center
  • How do I apply UCCX upgrade licenses?  Is it similar LIC file as when i spin up new server or is there something special I trade in old ones and then get new LIC file?  This is for UCCX 11.6
    View more
8 hours ago
Cancel Post