cancel
Showing results for 
Search instead for 
Did you mean: 

Answer Questions

  • AP AIR-CAP702W can't join cisco WLC 2504 - ( 9m ago )
  • Wireless and Mobility
  • Hello everyone,My 3 air-ap1815w-E can join the wlc 2504 controller without problem, but not my air-CAP702W.the log from the CAP702W:------------------------------------------------------------------------------------------------------Translating "CISCO-CAPWAP-CONTROLLER"...domain server (255.255.255.255) Not in Bound state.*Mar  1 01:01:35.459: %CAPWAP-3-DHCP_RENEW: Could not discover WLC. Either IP address is not assigned or assigned IP is wrong. Renewing DHCP IP.*Mar  1 01:01:45.575: %DHCP-6-ADDRESS_ASSIGN: Interface BVI1 assigned DHCP address 192.168.15.105, mask 255.255.255.0, hostname APf0b2.e5c4.6610 Translating "CISCO-CAPWAP-CONTROLLER"...domain server (255.255.255.255)----------------------------------------------------------- wlc interface for the AP management : 192.168.15.254dhcp pool: 192.168.15.0 So the ap can get an ip from the pool, and can ping the correct interface but can not discover it.My guess is that the version on my WLC (8.5.131.0) can not support the cap702w-E (https://www.cisco.com/c/en/us/td/docs/wireless/compatibility/matrix/compatibility-matrix.html) If i am correct i have to change every CAP702W-E by a AP1815 or is there an another solution ?
    View more
9m ago
Cancel Post

  • RA VPN FTD 6.2.3 - No SSL Connection - ( 13m ago )
  • FirePOWER
  • Hello,   I am configuring a new RA VPN Policy on FTD 6.2.3 software based on 2 x ASA 5500-X hardware.   I have two ISP connection with SLA monitor for route tracking.    At first I made the configuration for the Security Zone (include my two ISP) and no result.   Then, I delete this configuration and create another one with an interface group which contains only the first ISP connection. For each case my problem is :   When connecting to https://public_ip : no SSL error, no connection, only a timeout.   I attach some screenshot of my RA VPN Policy.   Some CLI outputs : show webvpn group-aliasTunnel Group: VPN-********* Group Alias: VPN-********* enabled   show webvpn statisticsTotal number of objects served 0 html 0 js 0 css 0 vb 0 java archive 0 java class 0 image 0 undetermined 0Server compression statistics Decompression success from server 0 Unsolicited compression from server 0 Unsupported compression algorithm used by server 0 Decompression failure for server responses 0   interface Port-channel1.220 vlan 220 nameif OUTSIDE-NOMINAL1 cts manual propagate sgt preserve-untag policy static sgt disabled trusted security-level 0 ip address 46.X.X.X 255.255.255.240   webvpn enable OUTSIDE-NOMINAL1 anyconnect image disk0:/csm/anyconnect-linux64-4.6.03049-webdeploy-k9.pkg 1 regex "Linux" anyconnect image disk0:/csm/anyconnect-macos-4.6.03049-webdeploy-k9.pkg 2 regex "Mac OS" anyconnect image disk0:/csm/anyconnect-win-4.6.03049-webdeploy-k9.pkg 3 regex "Windows" anyconnect enable tunnel-group-list enable cache no disable error-recovery disable   group-policy POLICY-VPN-**** attributes banner none wins-server value 172.30.X.X 172.30.X.X dns-server value 172.30.X.X 172.30.X.X dhcp-network-scope none vpn-simultaneous-logins 3 vpn-idle-timeout 30 vpn-idle-timeout alert-interval 1 vpn-session-timeout none vpn-session-timeout alert-interval 1 vpn-filter none vpn-tunnel-protocol ssl-client split-tunnel-policy tunnelspecified ipv6-split-tunnel-policy tunnelspecified split-tunnel-network-list value ACL-********* default-domain value *********** split-dns none split-tunnel-all-dns enable client-bypass-protocol disable vlan none address-pools value POOL-VPN webvpn anyconnect ssl dtls enable anyconnect mtu 1406 anyconnect firewall-rule client-interface public none anyconnect firewall-rule client-interface private none anyconnect ssl keepalive 20 anyconnect ssl rekey time none anyconnect ssl rekey method none anyconnect dpd-interval client 30 anyconnect dpd-interval gateway 30 anyconnect ssl compression none anyconnect dtls compression none anyconnect modules value dart anyconnect ask none default anyconnect anyconnect ssl df-bit-ignore disable   I don't see what's wrong with my SSL port <> SSL VPN on this interface. Someone already encounter this behavior ? Any advice ?
    View more
13m ago
Cancel Post

  • Cisco NAT type - ( 26m ago )
  • Routing
  • Good day to everyone! Could someone tell me what type of NAT Cisco implements?As far as I know there are 4 types of NAT: Symmetric, Full Cone, Address Restricted, Port Restricted. To be more precise:I have Cisco 881 router with overloaded NAT and no ACL on external interface.Supposing that some host from internal network has connected to external host, and the router created translation: internal host address iAddr:iPort is mapped to router's external address eAddr:ePort: Which packets will router accept?1) Packets from any external host destined to eAddr:ePort2) Packets from the external host to which the internal one was previously connected, destined to eAddr: any port3) Packets from the external host to which the internal one was previously connected, destined to eAddr: ePort Thanks in advance! Best regards, 
    View more
26m ago
Cancel Post

  • IP Communictor blocking bluetooth headset - ( 29m ago )
  • IP Telephony and Phones
  • Good morning,I'm using the IP communictor with my bluetooth headset Sennheiser PXC550 on a Dell laptop with the built in bluetooth device. The issue I'm facing, IP Communicator blocks continuosly the Bluetooth Device. So I can't hear Music or use the headset for other applications. Anybody an Idea what I'm doing wrong? Kind Regards Christian
    View more
29m ago
Cancel Post

  • InterdigitTimeout & NoMatchTimeout Settings in VVB - ( 41m ago )
  • Contact Center
  • Issue :- VVB Version :- System version: 11.6.1.10000-14 Default interdigit timeout settings in VVB is 3 seconds . With default settings , VVB is considering 3 seconds to trigger NoMatch event while using Menu Elements.We updated interdigittimeout at VXML Root Level (Application Settings) to 10 sec for Digits Elements, doing so VVB is considering same timeout for NoMatch as well at Menu Element. Is there any way we can define NoMatchTimeout explicitly ? Is this behavior of VVB expected ? I mean considering interdigittimeout settings to trigger NoMatchEvent ?   I have attached logs for both with Interdigittimeout settings and without Interdigittimeout settings.
    View more
41m ago
Cancel Post

50m ago
Cancel Post

  • Device Mobility + 911 Caller ID + Centralized SIP - ( 57m ago )
  • IP Telephony and Phones
  • Hello Friends,   We have a centralized 11.5 CUCM cluster with multiple remote offices in US. We currently use Calling Party Transformation Mask for every site to display the corresponding site's main number for all outbound PSTN calls. We have centralized SIP circuits that transports all the PSTN traffic from all remote offices.   We would like to implement device mobility but trying to figure out the below two items.   1. When a phone roams and makes outbound PSTN, the CLID should be the visiting site's main number. We are trying to present the correct CLID especially if the calls is made to 911 while roaming. 2. The OnNet calls should still display internal DNs as CLID.   Please suggest how this can be achieved.    Thanks in advance.
    View more
57m ago
Cancel Post

  • UCCE - Detecting ICM Failover - ( yesterday )
  • Contact Center
  • Dears, This is a UCCE environment version 11.5 Could you please advise how to monitor the ICM components when they moved between Side A and B? I know there is the Diagnostic Framework Portico, but what we need is to get a notification in case of a failover. Any help is highly appreciated. Thank you in advance. Lara
    View more
yesterday
Cancel Post

  • AnyConnect V4.7: Management VPN Tunnel - ( yesterday )
  • VPN and AnyConnect
  • Hi,   in the release notes of AC 4.7 there is one new feature: " Management VPN Tunnel—(Requires ASDM 7.10.1) Ensures connectivity to the corporate network whenever the client system is powered up, not just when a VPN connection is established by the end user. This feature allows patch management on systems which may not come in to the office frequently. Endpoint OS login scripts requiring corporate network connectivity will also benefit from this feature."   has anyone tried this and can tell me how to test it? I can't see the menue to activate (I've got all the requirements)   thanks   karl
    View more
yesterday
Cancel Post

  • cisco wlc authentication - ( yesterday )
  • Other Wireless - Mobility Subjects
  • Hi Team, wlc version : 8.2.166.0while checking the wlan configuration found that layer2  wpa2 encryption  option was greyed out.(screenshot enclosed)we were facing issue in the mac users connecting to the same ssid.Please confirm whether the issue is because of these greyd out. regards,Thushara 
    View more
yesterday
Cancel Post

  • vlan bandwith limit - ( yesterday )
  • Switching
  • Hi, I there any way how to restrict or shape maximum bandwith for specific vlan? I would like to set the maximum speed of 2Mbps. This vlan is used for WiFi connection,for internet access only. Thx
    View more
yesterday
Cancel Post

yesterday
Cancel Post

  • No connectivity after installing new AnyConnect client - ( yesterday )
  • VPN and AnyConnect
  • Hi all,   We have a corporate windows 10 machine testing a new version of anyconnect secure mobility client. I installed version 4.6 package with NAM module and VPN profiles built from the profile editor. The new profiles closely mirrors the existing profiles the machine had. Before the update to 4.6 the machine was running 4.2. I uninstalled AnyConnect 4.2 and proceeded to install the new package 4.6 with the profiles.    After upgrading to 4.6 I am no longer able to ping the machines IP address from itself or the default gateway, this is without using VPN from outside but plugged directly into the internal corporate network. Pinging from the command prompt gives "general failure" error message.   Is there some setting I missed or accidentally selected in the profile editor which may cause this issue? Any log in particular I should be looking at in the DART logs?    
    View more
yesterday
Cancel Post

yesterday
Cancel Post

  • Redistribution between Static Network and OSPF Network - ( yesterday )
  • Routing
  • I am working on Packet Tracer Toplogy where i have three routers on right where i configure static routig and i have three routers on left where ospf area 0 is configured. I redistribute static network into ospf with the command  Router(config-router)#redistribute static subnetsi can see all the static routers loopbacks as OE2 network in OSPF routers but unfortuantely i am unable to ping on both sides as  there is no route available for OSPF in static network domain. I want to know how can i make mutual redistribution in order both network will be reachable.  Thanks, 
    View more
yesterday
Cancel Post

  • mesh access point on forklift - ( yesterday )
  • Wireless and Mobility
  • I assume this request will be more common in the near future. There is a warehouse with deployed access points on ceiling, but some employees are sitting inside forklifts (perhaps in metal cabin) and signal for their scan gun is very unstable. Can in existing infrastructure some additional access points be deployed to form mesh network (along with existing access points in "local" mode) and one of access points be deployed on a forklift to provide good signal for scan gun?!Or maybe other solutions exist.
    View more
yesterday
Cancel Post

  • RADIUS Configurations - ( yesterday )
  • Routing
  • Hi,Can anyone please help me configuring RADIUS configuration between Cisco RTR and Cisco Switch? What configurations are required to enable authentication for client or host.I've connected a cisco router with cisco switch what configurations I have to do on both switch and router? I will be very thankful for you help.Regards,Anon
    View more
yesterday
Cancel Post

yesterday
Cancel Post

  • UCCX Script XML - Duplicated Variable - ( yesterday )
  • Contact Center
  • Assume the following XML document exists:       <con:consultaSaldosTarjetaCreditoResponse>          <CARD_NUMBER>111111111111</CARD_NUMBER>          <CARD_HOLDER_NAME>#################</CARD_HOLDER_NAME>          <CREDIT_LIMIT>5000</CREDIT_LIMIT>          <CREDIT_LIMIT_CCY>USD</CREDIT_LIMIT_CCY>          <MAX_PAYMENT_DATE>20181005</MAX_PAYMENT_DATE>          <LAST_CUTOFF_DATE>20180910</LAST_CUTOFF_DATE>          <con:consultaSaldosTarjetaCreditoResponseType>             <con:consultaSaldosTarjetaCreditoResponseRecordType>                <OVERDUE_BALANCE>0</OVERDUE_BALANCE>                <FLOATING_BALANCE>0</FLOATING_BALANCE>                <CURRENT_BALANCE>100.00</CURRENT_BALANCE>                <PURCHASES_LIMIT>42955</PURCHASES_LIMIT>                <WITHDRAWAL_LIMIT>32216</WITHDRAWAL_LIMIT>                <PAYMENTS_TODAY>0</PAYMENTS_TODAY>             </con:consultaSaldosTarjetaCreditoResponseRecordType>             <con:consultaSaldosTarjetaCreditoResponseRecordType>                <OVERDUE_BALANCE>0</OVERDUE_BALANCE>                <FLOATING_BALANCE>0</FLOATING_BALANCE>                <CURRENT_BALANCE>200.00</CURRENT_BALANCE>                <PURCHASES_LIMIT>5681.88</PURCHASES_LIMIT>                <WITHDRAWAL_LIMIT>4261.41</WITHDRAWAL_LIMIT>                <PAYMENTS_TODAY>0</PAYMENTS_TODAY>             </con:consultaSaldosTarjetaCreditoResponseRecordType>          </con:consultaSaldosTarjetaCreditoResponseType>       </con:consultaSaldosTarjetaCreditoResponse>     For the "Get XML Document Data" step i am using the following XML Path: "//*[local-name()='CURRENT_BALANCE']" What would be the appropriate "xml path" way to obtain the value of both variables (CURRENT_BALANCE).
    View more
yesterday
Cancel Post

  • CSCus84706 Error when attempting to renew node system cert - ( yesterday )
  • Identity Services Engine (ISE)
  • Hi, I'm running version 2.2 patch 9 and I'm hitting an error when I attempt to renew the system cert. The cert is a 3rd party signed wildcard. The current one expires on 12/22/18, and the new one I have was valid as of 10/22/18. The bug causes ISE to throw an error stating that there is already a cert with the same subject name but a different serial number. The bug report says that it has been 'fixed' but does not list a working version. The work around is to remove the old cert and then import the new one. This is not really and option when it is the admin, eap, and portal cert. Has anyone figured out how to get past this issue? Thanks, Greg
    View more
yesterday
Cancel Post

  • PVST+ Rapid Spanning Tree Convergence Issue - ( yesterday )
  • Switching
  • I am having a hard time getting my PVST+ Rapid Spanning Tree to converge in less than 15 or 20 seconds. I am using a Cisco IE-5000 as the root bridge and there are loops and subloops involved so I am not saying this is a simple mesh. The way it goes is:IE5000A<------------------->IE5000B<----------------------->IE5000C      |                                              |       |                                                |       |     \/                                            \/       \/                                              \/      \/  IE4000A<->IE4000B<->IE4000C        IE4000D<->IE4000E<->IE4000F       IE4000G<->IE4000H---end So you can see the loops.I just configured normal PVST+ Rapid spanning tree.  The ports between all the switches are trunked. The root is the IE5000A.  I unplug between IE5000A and IE5000B and I lose packets between a laptop plugged into 5000A and 5000C for 20 seconds. And then I plug the fiber back in and I drop packets again for 20 seconds. Is there a standard config I should look at or am I missing something.  Do I have to play with timers> I thought Rapid would have 2 seconds failover. James
    View more
yesterday
Cancel Post

  • UCCX Script XML - Variable with the same name - ( yesterday )
  • Contact Center
  • Assume the following XML document exists:  <con:consultaSaldosTarjetaCreditoResponse>       <CARD_NUMBER>111111111111</CARD_NUMBER>       <CARD_HOLDER_NAME>#################</CARD_HOLDER_NAME>       <CREDIT_LIMIT>5000</CREDIT_LIMIT>       <CREDIT_LIMIT_CCY>USD</CREDIT_LIMIT_CCY>       <MAX_PAYMENT_DATE>20181005</MAX_PAYMENT_DATE>       <LAST_CUTOFF_DATE>20180910</LAST_CUTOFF_DATE>      <con:consultaSaldosTarjetaCreditoResponseType>            <con:consultaSaldosTarjetaCreditoResponseRecordType>                  <OVERDUE_BALANCE>0</OVERDUE_BALANCE>                  <FLOATING_BALANCE>0</FLOATING_BALANCE>                  <CURRENT_BALANCE>100.00</CURRENT_BALANCE>                  <PURCHASES_LIMIT>42955</PURCHASES_LIMIT>                  <WITHDRAWAL_LIMIT>32216</WITHDRAWAL_LIMIT>                  <PAYMENTS_TODAY>0</PAYMENTS_TODAY>             </con:consultaSaldosTarjetaCreditoResponseRecordType>             <con:consultaSaldosTarjetaCreditoResponseRecordType>                   <OVERDUE_BALANCE>0</OVERDUE_BALANCE>                   <FLOATING_BALANCE>0</FLOATING_BALANCE>                   <CURRENT_BALANCE>200.00</CURRENT_BALANCE>                   <PURCHASES_LIMIT>5681.88</PURCHASES_LIMIT>                   <WITHDRAWAL_LIMIT>4261.41</WITHDRAWAL_LIMIT>                   <PAYMENTS_TODAY>0</PAYMENTS_TODAY>             </con:consultaSaldosTarjetaCreditoResponseRecordType>      </con:consultaSaldosTarjetaCreditoResponseType> </con:consultaSaldosTarjetaCreditoResponse>      For the "Get XML Document Data" step i am using the following XML Path: "//*[local-name()='CURRENT_BALANCE']"   What would be the appropriate "xml path" way to obtain the value of both variables (CURRENT_BALANCE).
    View more
yesterday
Cancel Post

  • Prime 3.4 - Alerting and Monitoring HelP - ( yesterday )
  • Wireless Security and Network Management
  • Hi Everyone,   Need your help methods to accomplish the following items using Prime 3.4. I upgraded my Prime Infra to version 3.4. Can you please let me know your thoughts on how these items can be done? Appreciate some details.   I want to configure Alerting for all the following items using Prime, is it doable and if so, what is your recommendations to accomplish them, i am happy to provide any info required:   Non-Wifi Interferer Alert for an AP Rogue AP Detection High Channel Utilization for an AP Access Point Up/down notification Authentication Failures (to our Radius server) Best Practices for Security Alerts (Your recommendations) User Experience (Your recommendations) Thanks in Advance, a.
    View more
yesterday
Cancel Post

  • snmp-server location command for IE-5000 - ( yesterday )
  • Other Network Architecture Subjects
  • I am currently testing with IE-5000 and IE-2000 switches. I have booted them using the SD cards. I tried below command in all the switches; snmp-server location in Abcd Efgh I don't face any issue in IE-2000s. But with IE-5000 I can configure this command. When I copy the running-configuration to startup-configuration I can see this appear in both configurations. But after I reload the switch it is not appearing in the running-configuration. It is appearing only in the startup-configuration. I don't face any issue with other snmp-server commands like community definitions, enabling traps etc. When I sync sdflash: flash: and reload the switch it has gone even from startup-configuration. I tried this with 2 IE-5000 switches and I faced the issue in both the switches. I don't face any issue with IE-2000s. Any advice would be highly appreciated.
    View more
yesterday
Cancel Post

yesterday
Cancel Post