cancel
Showing results for 
Search instead for 
Did you mean: 

Answer Questions

  • IP Prefix List Question - ( 08-18-2019 )
  • Routing
  • Hi all,Quick question about prefix lists. I'm peering with a partner and injecting a route map IN (BGP), which restricts the prefixes advertised to us, but a quick question, because I'm trying to save the amount of config to be written up. The partner is advertising a lot of /23 and /24s.Example: Let's say the partner is advertising 192.168.206.0/23 and 192.168.207.0/24 as two separate prefixes.  To save 2 entries for both prefixes, I thought of writing up a config in this manner:ip prefix-list CISCO seq 5 permit 192.168.206.0/23 le 24.My understand is that this will allow both the 192.168.206.0/23 and 192.168.207.0/24.Does this look correct?Thanks
    View more
08-18-2019
Cancel Post

08-18-2019
Cancel Post

  • ASA 5510 ACL VLAN to Internet Issue... - ( 08-18-2019 )
  • Firewalls
  • Hi New to using  Cisco ACL's, I have an ASA 5510 (Cisco Adaptive Security Appliance Software Version 9.1(7)13 ) I have nat'd subnets on Ethernet0/1 & Ethernet0/3, security-level 100 and these work correctly. I have a sub interface, Ethernet0/1.1 (vlan 201) when this is SL 100 everything works as expected, however when I drop this to SL 0 and create my ACL's I am running into issues. I have tried various permutations of ACL, I am beginning to wonder if I am missing the obvious now.... My intention is to restrict the VLAN to specific URLs/IP/ports later on, for VOIP only access. Here is my current ACL (as said I have tried various permutations, as the ACL shows) access-list voip line 1 extended permit tcp any any (hitcnt=1761) 0xb531f850access-list voip line 2 extended permit udp any any (hitcnt=2261) 0x3f6ed024access-list voip line 3 extended permit tcp 192.168.201.0 255.255.255.0 any eq www (hitcnt=0) 0x7cbe745baccess-list voip line 4 extended permit tcp 192.168.201.0 255.255.255.0 any eq https (hitcnt=0) 0x48fa2e74access-list voip line 5 extended permit tcp 192.168.201.0 255.255.255.0 any eq domain (hitcnt=0) 0xbcdc5a8caccess-list voip line 6 extended permit ip host 192.168.201.10 any (hitcnt=2) 0x24ce17dc  sh int ip bInterface IP-Address OK? Method Status ProtocolEthernet0/0 192.168.8.100 YES CONFIG up upEthernet0/1 unassigned YES unset up upEthernet0/1.1 192.168.201.1 YES manual up upEthernet0/2 unassigned YES unset administratively down downEthernet0/3 192.168.200.254 YES CONFIG down downManagement0/0 192.168.100.254 YES CONFIG down down  Many thanks in advance; Config is below:  ASA-Home(config-subif)# sh run: Saved:: Serial Number: xxxxxxxxxxx: Hardware: ASA5510, 1024 MB RAM, CPU Pentium 4 Celeron 1599 MHz:ASA Version 9.1(7)13!hostname ASA-Homedomain-name localenable password xxxxxxxxxxx encryptedxlate per-session deny tcp any4 any4xlate per-session deny tcp any4 any6xlate per-session deny tcp any6 any4xlate per-session deny tcp any6 any6xlate per-session deny udp any4 any4 eq domainxlate per-session deny udp any4 any6 eq domainxlate per-session deny udp any6 any4 eq domainxlate per-session deny udp any6 any6 eq domainnames!interface Ethernet0/0nameif outsidesecurity-level 0ip address 192.168.8.100 255.255.255.0!interface Ethernet0/1no nameifno security-levelno ip address!interface Ethernet0/1.1vlan 201nameif vlanvoipsecurity-level 100ip address 192.168.201.1 255.255.255.0!interface Ethernet0/2shutdownno nameifno security-levelno ip address!interface Ethernet0/3nameif insidesecurity-level 100ip address 192.168.200.254 255.255.255.0!interface Management0/0nameif managementsecurity-level 0ip address 192.168.100.254 255.255.255.0!ftp mode passivedns server-group DefaultDNSdomain-name localobject network inside-subnetsubnet 192.168.200.0 255.255.255.0object network vlanvoip-subnetsubnet 192.168.201.0 255.255.255.0access-list voip extended permit tcp any anyaccess-list voip extended permit udp any anyaccess-list voip extended permit tcp 192.168.201.0 255.255.255.0 any eq wwwaccess-list voip extended permit tcp 192.168.201.0 255.255.255.0 any eq httpsaccess-list voip extended permit tcp 192.168.201.0 255.255.255.0 any eq domainaccess-list voip extended permit ip host 192.168.201.10 anypager lines 24mtu outside 1500mtu inside 1500mtu management 1500mtu vlanvoip 1500no failovericmp unreachable rate-limit 1 burst-size 1no asdm history enablearp timeout 14400no arp permit-nonconnected!object network inside-subnetnat (inside,outside) dynamic interfaceobject network vlanvoip-subnetnat (vlanvoip,outside) dynamic interfaceaccess-group voip out interface outsideroute outside 0.0.0.0 0.0.0.0 192.168.8.1 1timeout xlate 3:00:00timeout pat-xlate 0:00:30timeout conn 1:00:00 half-closed 0:10:00 udp 0:02:00 icmp 0:00:02timeout sunrpc 0:10:00 h323 0:05:00 h225 1:00:00 mgcp 0:05:00 mgcp-pat 0:05:00timeout sip 0:30:00 sip_media 0:02:00 sip-invite 0:03:00 sip-disconnect 0:02:00timeout sip-provisional-media 0:02:00 uauth 0:05:00 absolutetimeout tcp-proxy-reassembly 0:01:00timeout floating-conn 0:00:00dynamic-access-policy-record DfltAccessPolicyuser-identity default-domain LOCALno snmp-server locationno snmp-server contactcrypto ipsec security-association pmtu-aging infinitecrypto ca trustpool policytelnet timeout 5ssh stricthostkeycheckssh timeout 5ssh key-exchange group dh-group1-sha1console timeout 0dhcpd dns 8.8.8.8 8.8.4.4!dhcpd address 192.168.200.40-192.168.200.50 insidedhcpd enable inside!dhcpd address 192.168.201.10-192.168.201.50 vlanvoipdhcpd dns 8.8.8.8 8.8.4.4 interface vlanvoipdhcpd enable vlanvoip!threat-detection basic-threatthreat-detection statistics access-listno threat-detection statistics tcp-interceptwebvpnanyconnect-essentialscachedisable!class-map inspection_defaultmatch default-inspection-traffic!!policy-map type inspect dns preset_dns_mapparametersmessage-length maximum client automessage-length maximum 512policy-map global_policyclass inspection_defaultinspect dns preset_dns_mapinspect ftpinspect h323 h225inspect h323 rasinspect ip-optionsinspect netbiosinspect rshinspect rtspinspect skinnyinspect esmtpinspect sqlnetinspect sunrpcinspect tftpinspect xdmcp!service-policy global_policy globalprompt hostname contextno call-home reporting anonymouscall-homeprofile CiscoTAC-1no activedestination address http https://tools.cisco.com/its/service/oddce/services/DDCEServicedestination address email callhome@cisco.comdestination transport-method httpsubscribe-to-alert-group diagnosticsubscribe-to-alert-group environmentsubscribe-to-alert-group inventory periodic monthlysubscribe-to-alert-group configuration periodic monthlysubscribe-to-alert-group telemetry periodic dailyCryptochecksum:c2b39920961d3a9cc954f4065cf13d4a: endASA-Home(config-subif)
    View more
08-18-2019
Cancel Post

08-18-2019
Cancel Post

  • ISE Monitor and low-impact mode and trustsec - ( 08-18-2019 )
  • Identity Services Engine (ISE)
  • HelloWith ISE monitor mode and low impact mode, you can have a interface ACL on switch. When you switch to trustsec, how do you implement something like that. Is there a way to have a initial trustsec group for example for low impact mode to put the user into before they are authenticated or a device is profiled ? initially they would need minimal access in low impact mode - then they would get moved into the right SGT. Please share your thoughts on this
    View more
08-18-2019
Cancel Post

  • HDLC VS eoMPLS /MPLS - ( 08-18-2019 )
  • Network Management
  • HI im learning ccent from the cisco booki cant understand what the differen betweent HDLC to eoMPLS /MPLSif someone can explain this and if someone can explain to me what they do (i know what they do but perfectly) just so i will understand this 100% thanks (:
    View more
08-18-2019
Cancel Post

  • CWA for guest Failure to redirect domain traffic on a cat 2960-x - ( 08-18-2019 )
  • Policy and Access
  • Hello Team, I have a 2960-x switch and it has failed to redirect domain traffic to ise using the redirect ACL, but when i type in something like 1.1.1.1 in the client computer, the redirection takes place and it redirects to the ISE's guest portal but when i enter www.google.com the redirection fails to happen Please note that in the cwa profile i enable a static ip of the ISE not the FQDN,Please note that the ISE has no internet access because its in the segment of the network which is not allowed to have internet access. I need assistance with how to make the redirection automatic.The DACL ispermit tcp any any eq wwwpermit tcp any any eq 443permit tcp any any eq 8443permit udp any any eq domaindeny ip any any  below is the running configuration of the switch. !version 15.2aaa new-model!!aaa group server radius ISEserver name ISEserver 172.16.1.35!aaa group server tacacs+ ISE_SWserver name Cisco-ISEip tacacs source-interface Vlan175!aaa authentication login default group ISE_SW localaaa authentication login CONSOLE noneaaa authentication dot1x default group ISEaaa authorization config-commandsaaa authorization exec default group ISE_SW local if-authenticatedaaa authorization exec CONSOLE noneaaa authorization commands 1 default group ISE_SW local if-authenticatedaaa authorization commands 15 default group ISE_SW local if-authenticatedaaa authorization network default group ISEaaa authorization auth-proxy default group ISEaaa accounting update periodic 5aaa accounting dot1x default start-stop group ISEaaa accounting exec default start-stop group ISE_SWaaa accounting commands 1 default start-stop group ISE_SWaaa accounting commands 15 default start-stop group ISE_SW!!!!!aaa server radius dynamic-authorclient 172.16.1.35 server-key xxxxxaaa session-id commonswitch 1 provision ws-c2960x-24ps-l!device-sensor filter-list lldp list LLDP_LISTtlv name system-descriptiondevice-sensor filter-spec lldp include list LLDP_LISTdevice-sensor accountingdevice-sensor notify all-changesip routing!!!!!!!authentication mac-move permit!dot1x system-auth-controllldp runinterface GigabitEthernet1/0/19switchport access vlan 192switchport mode accessip access-group webauth inauthentication event fail action next-methodauthentication event server dead action authorizeauthentication event server dead action authorize voiceauthentication event server alive action reinitializeauthentication host-mode multi-authauthentication order dot1x mabauthentication priority dot1x mabauthentication port-control autoauthentication violation restrictmabdot1x pae authenticatordot1x timeout tx-period 10!!interface GigabitEthernet1/0/23switchport access vlan 192switchport mode accessip access-group webauth inauthentication event fail action next-methodauthentication event server dead action authorizeauthentication event server dead action authorize voiceauthentication event server alive action reinitializeauthentication host-mode multi-authauthentication order dot1x mabauthentication priority dot1x mabauthentication port-control autoauthentication violation restrictmabdot1x pae authenticatordot1x timeout tx-period 10!interface Vlan10ip address 10.1.1.13 255.255.255.0!interface Vlan175ip address 172.16.1.209 255.255.255.0!interface Vlan192ip address 192.168.2.209 255.255.255.0!ip default-gateway 10.1.1.1ip http serverip http secure-server!ip tacacs source-interface Vlan175!ip access-list extended redirectdeny ip any host 172.16.1.35permit tcp any any eq wwwpermit tcp any any eq 443ip access-list extended webauthpermit ip any anyip radius source-interface Vlan175!tacacs server Cisco-ISEaddress ipv4 172.16.1.35key xxxxxxx!radius-server attribute 6 on-for-login-authradius-server attribute 6 support-multipleradius-server attribute 8 include-in-access-reqradius-server dead-criteria time 30 tries 3radius-server deadtime 30!radius server ISEaddress ipv4 172.16.1.35 auth-port 1812 acct-port 1813key xxxxxx       
    View more
08-18-2019
Cancel Post

  • vRealize Orchestrator UCSC plugin addVnicInterface - ( 08-17-2019 )
  • Cisco Developed UCS Integrations Discussions
  • I use vRealize Orchestrator to create workflows everyday and was given a task to integrate with UCSC plugin and work on creating VLANs on our B200 M4 blades.I see that there are only a few sample workflows but I have made my way to figuring out some of the issues I had initially. To add a VLAN there is already a workflow available. But to add that VLAN to vnic templates, I am having issues.To add VLAN to vnic templates I used to use my Powershell script which is broken down to these steps -1. Create VLAN in UCSC using “Add-UcsCentralVlan” cmdlet and then “Add-UcsCentralFabricVlanReq”. In vRO the included workflow did this part.2. Add VLAN to vnic templates by using “Get-UcsCentralVnicTemplate” cmd and pipe “Add-UcsCentralVnicInterface” to it.3. Add the port group in VMware using PowerCLI.Step 2 is where I am stuck. When using “System.getModule(“com.cisco.ucs.central.vnic”).addVnicInterface() cmd, I have included these parameters - Ucsc handle, parent Vnic template, defaultnet, vlan name, etc.Here is my code -var name = "G-3490-Test"; var sID = name.split("-")[1]; var ID = parseInt(sID, 10); //Get LanCloud var UCSC = UcscActionUtils.getAllUcsCentral(); var ep = System.getModule("com.cisco.ucs.central.fabric").getFabricEp(UCSC[0]); var lanCloud = System.getModule("com.cisco.ucs.central.fabric").getLanCloud(UCSC[0],ep); //Create VLAN var vlan = System.getModule("com.cisco.ucs.central.fabric").addVlan(UCSC[0],lanCloud,null,null,ID,null,name,null,null,null,null,null); //Create VLAN req var org = System.getModule("com.cisco.ucs.central.org").getOrg(UCSC[0],null,null,null,null,"root",null,null); var vlanReq = System.getModule("com.cisco.ucs.central.fabric").addFabricVlanReq(UCSC[0],org,name,null,null); //Create Vnic Interfaces var vnictemplates = System.getModule("com.cisco.ucs.central.vnic").getVnicTemplate(UCSC[0]); var vnics = []; for each (vnictemplate in vnictemplates) { if (vnictemplate.name.match("-a") || vnictemplate.name.match("-b")) vnics.push(vnictemplate); } for each (vnic in vnics) { System.getModule("com.cisco.ucs.central.vnic").addVnicInterface(UCSC[0],vnic,null,name,false,false); } I get this error -“InternalError: No Object Added. (Dynamic Script Module name : addVnicInterface#31)”. What am I doing wrong?
    View more
08-17-2019
Cancel Post

08-17-2019
Cancel Post

  • Help before buying Cisco SG350 series switch - ( 08-17-2019 )
  • Switching
  • Hi, I am looking at a Cisco managed switch to do the following:- have 3 or 4 VLANs: private, office, guest and optionally shared (that could go in private and be shared via ACL rules)- Each VLAN in a different subnet- private VLAN: PC to manage all VLANs and connected devices, NAS-1, router, WLAN-AP, shared clients (NAS-2, printer...), have internet access- office VLAN: have access to internet and some shared clients (NAS-2, printer...)- guest VLAN: internet access only- shared : NAS-2, printer, have internet access The switch will be cable wired mainly to:- a home/SOHO router non VLAN aware where the DHCP server will be disabled. It will have the DNS service configured on it- a UniFi AP AC LR that is VLAN aware and that will broadcast 3 SSIDs: private, office and guest for each VLAN- the management PC The Switch should be able to:- work as a DHCP server for all the VLANs- do inter-VLAN routing- have ACL rules if I want to put the shared resources in the private VLAN and allow access via ACL Exp:               Cable Modem                         |      Home/SOHO Router WAN port                         +      Home/SOHO Router LAN 1                192.168.1.1                         |             Managed Switch + DHCP server                    + Port 1: VLAN 1 (private / management): 10.0.1.0/24                    + Ports 2-4: VLAN 2 (office): 10.0.2.0/24                    + Ports 5-7: VLAN 3 (shared): 10.0.3.0/24                    + Port 8: VLAN 4 (guest): 10.0.4.0/24 Will the SG350 series fulfil my needs or should I look at another model ?If yes, I read the manual and I am really uncertain if the DHCP server will serve all the VLANs via dedicated pools:- what would be the "Default Router IP Address" and the "Domain Name Server IP Address" for each DHCP pool ?- for my use, do I need to configure the NetBIOS, SNTP and TFTP entries as I am not sure about their purpose in the DHCP setup Many thanks for your help
    View more
08-17-2019
Cancel Post

  • License required for 3rd party IP Phone - ( 08-17-2019 )
  • IP Telephony and Phones
  • Hi, Refer to below BoM would you kindly guide with the right license for 3rd party IP Phone to sync with the existing infra.?  Call Manager Hardware  21.0BE6M-M4-K9=Cisco Business Edition 6000M Svr (M4), Export Restricted SWN/A121.0.1CON-SNT-BE6M4M4KSNTC-8X5XNBD Cisco Business Edition 6000M Svr (M4), E12.0 month(s)121.1CAB-250V-10A-IDAC Power Cord - 250V, 10A , IndiaN/A121.2VMW-VS6-HYPPLS-K9Embedded License, Cisco UC Virt. Hypervisor Plus 6.x (2-cpu)N/A121.3CIT-PSU1-770W770W AC Hot-Plug Power Supply for 1U C-Series Rack ServerN/A121.4CIT-CPU-E52630D2.40 GHz E5-2630 v3/85W 8C/20MB Cache/DDR4 1866MHzN/A121.5CIT-MR-1X161RV-A16GB DDR4-2400-MHz RDIMM/PC4-19200/single rank/x4/1.2vN/A221.6R2XX-RAID5Enable RAID 5 SettingN/A121.7CIT-MRAID12GCisco 12G SAS Modular Raid ControllerN/A121.8CIT-MRAID12G-1GBCisco 12Gbps SAS 1GB FBWC Cache module (Raid 0/1/5/6)N/A1  Call Manager Software  22.0R-CBE6K-K9Cisco Business Edition 6000-Electronic SW Delivery-Top LevelN/A122.0.1CON-ECMU-RCBE6KKSWSS UPGRADES Cisco Business Editi12.0 month(s)122.1BE6K-START-UWL35BE6000 Starter Bundle with 35 UWL Standard LicensesN/A122.2JABBER-GUESTJabber Guest SessionN/A10022.3UCXN-11X-SCPORTSBE6K - Unity Connection 11x - VM Speech Connect PortsN/A222.4JAB-GUEST-RTU-K9Jabber Guest Right to UseN/A122.5LIC-EXP-E-PAKExpressway Series, Expressway-E PAKN/A122.6LIC-EXP-GWEnable GW Feature (H323-SIP)N/A422.7LIC-EXP-EEnable Expressway-E Feature SetN/A222.8LIC-EXP-TURNEnable TURN Relay OptionN/A222.9LIC-EXP-ANEnable Advanced Networking OptionN/A222.10LIC-SW-EXP-K9License Key Software EncryptedN/A422.11LIC-EXP-SERIESEnable Expressway Series Feature SetN/A422.12EXPWY-VE-E-K9Cisco Expressway-E Server, Virtual EditionN/A222.13BE-11X-UWLS-STRBE6000 v11 UWL Standard Starter licensesN/A122.13.0.1CON-ECMU-BE11WXURSWSS UPGRADES BE6000 v11 UWL Standard Starter licenses12.0 month(s)122.14BE6K-UXL-STARTBE6K Starter Pack - Single Fulfillment EnforcementN/A122.15EXPWY-VE-C-K9Cisco Expressway-C Server, Virtual EditionN/A222.16SW-EXP-8.X-K9Software Image for Expressway with Encryption, Version X8N/A122.17BE6K-PAKCisco Business Edition 6000 - PAK - Single FulfillmentN/A122.18LIC-EXP-DSKExpressway Desktop Endpoint LicenseN/A50022.19BE6K-SW-11.5Business Edition 6000 v11.5 export restricted softwareN/A122.20BE6K-UCL-ENHPCisco Business Edition 6000 - Enhanced Plus User Connect LicN/A46522.21UCM-11X-ENHP-UCLBE6K UCM 11X Enhanced Plus User Connect Lic - Single FulfillN/A46522.21.0.1CON-ECMU-UCMUCENHSWSS UPGRADES BE6K UCM 10X Enhance12.0 month(s)465 Thank you in advance, for your guidance.Rgds.Subrata
    View more
08-17-2019
Cancel Post

  • Mobile data hotspot necessary or is a phone just fine? - ( 08-17-2019 )
  • Network Management
  • On most of my weekends i have to go stay in a small village in france where there is no dsl or fiber line conection possible (the village is just to small not really interesting for the isp's)Bit I managed to put a Lte advanced antenna to catch some lte signals from 2 villages away and well repeat it into my hous wich works great and i have up to 30mbps down and 15mbps up wich I use mostly for gaming 40-60ping. But I was wondering if there is any mobile data hotspot device that would be better than using an old phone the huawei p8 lite 2017 would it amke a difference if yes woch device should I buy and I would really love if it had a lan cabel connection possibility instead of a usb tethering. Thanks in advance. Sry my english isnt the best. Im only 15 :)
    View more
08-17-2019
Cancel Post

  • Hearing voice chat-like sounds through computer - ( 08-17-2019 )
  • Network Management
  • i have been having problems with my computer for past year, but i never really payed any attention to them, until now.I had issues where mouse would randomly jump during usage, attributing this only to generic mouse jumpiness, more often, computer acting as if CTR or ALT or windows key was being pressed, this appearing completely randomly and apparently unrelated to any running software - i have read somewhere that windows 10 had some kind of this issue, and i could easily fix it with pressing both ctrl/alt/windows keys at the same time few times to relieve this, so i wasnt particularly concerned, even though i did a repair of windows once, which didnt help for long.However, what happend today, scared me somewhat, as i have never ever crossed path with anything similar.I have been watching youtube and chatting with a friend over steam, when i put my headphones on instead of speakers after months, and noticed strange sounds. I could clearly hear someone, as if over voice chat, not talking, just sitting at computer. I could hear keypresses, clicks and what sounded like someone drinking water and putting down the glass on wooden table.I first checked if my mic was disabled, then looked through playback devices, nothing looking like producing sound.At first i have writtent to friend over steam, to say something, thinking its some new steam chat feature or something, but i couldnt hear him say anything when he tried.Then i clearly heard someone receive a message on phone - three beeps of some kind, a pause, then a crackling click, like when you pull the speakers out of jack connector, and since then nothing.
    View more
08-17-2019
Cancel Post

  • Classification based on MPLS EXP on egress - ( 08-16-2019 )
  • MPLS
  • Hi, I have a problem in my small PBB-EVPN lab installation.Two PE routers (ASR9904) are directly connected via a 100GE link. On these two routers, a full and correct operating PBB-EVPN configuration is implemented.The ingress ports on the access side receive 802.1q- or Q-in-Q-tagged ethernet frames with 802.1p CoS marking in 5 different classes.Class-maps are defined as follows (example CoS 4): class-map match-any COS4match cos 4match mpls experimental topmost 4match qos-group 4end-class-map The ingress policy:policy-map UNI-N_INGRESSclass COS6set mpls experimental imposition 6!class COS5set mpls experimental imposition 5!class COS4set mpls experimental imposition 4!class COS2set mpls experimental imposition 2!class COS1set mpls experimental imposition 1!class COS0set mpls experimental imposition 0!class class-default!end-policy-map This policy reflects the default behaviour (mapping CoS to MPLS EXP), but I have configured this for better readability of the configuration.On the NNI interface (the link to the other PE), an egress policy is configured for class-based queuing.On the other PE I've configured an ingress "test policy" to check the correct MPLS EXP marking. All is ok at this point. The classification counters in all classes showing the right bandwidth usages (like sent from the tester) in each class.But the classification counter on the egress interface of this router (facing the non-MPLS access device) shows the whole traffic in the class-default because there are no matches in the different classes.What may be wrong in my installation?Two check some possibilities, I've configured explicit-null label to preserve the MPLS shim header with the EXP bits inside.But there is no difference. Or I have configured qos-groups on the ingress policy for each class. But also the qos-group didn't match on the egress policy.It would be great if I could get some helpful advice to break the loop in my mind  :-) Regards,Jens  
    View more
08-16-2019
Cancel Post

  • 403 Access Denied when using CSAPI - ( 08-16-2019 )
  • Services Discussions
  • Hello,  I got 403 Access Denied when access CSAPI.I can access to service portal and have been granted as API developer. And, my application added the two APIs csapi-customer and csapi-alerts. I do a get from postman https://apx.cisco.com/cs/api/v1/product-alerts/field-notice-bulletins with the bearer token is generated by client id and client secret. The postman says 403 Forbidden.  I don't know what's wrong. Could anyone get me a direction?Best Regards, SH Shao  
    View more
08-16-2019
Cancel Post

  • Upgrading Cisco MDS code from 6.2(11b) to 6.2(23) - ( 08-16-2019 )
  • Cisco Software Discussions
  • I am trying to upgrade my CISCO MDS switch from the version 6.2(11b) to 6.2 (23).Is it directly upgradable to the target version (6.2(233)) or do I need to upgarde it first to some other version(s) in the middle and then to the target version (6.2(233))??Please assist on this asap.
    View more
08-16-2019
Cancel Post

  • CUE Script - ( 08-16-2019 )
  • Unified Communications Infrastructure
  • I am trying to configure a script that has a time of day component Building menus one for school hours and one for After hours During 8:00 am to 3:00 no teacher should get a phone call from a  parent After 3:00 pm parents should be able to call the classroom directly. Classroom number are 3 digits. How can I send a parent directly to teachers voicemail during school hours and ring the phone after school hours.
    View more
08-16-2019
Cancel Post

  • Cannot upgrade AP1852i in rommon mode - Mobility Express version - ( 08-16-2019 )
  • Wireless and Mobility
  • Dear all, I cannot reimage AP1852i through rommon mode .I tried below commands but it doesn't work. When it boot, it will load the old image (the old image has an issue so I cannot access to controller cli or webui)tftpboot AIR-AP1850-K9-8-5-151-0.tarortftpboot AIR-AP1850-K9-8-5-151-0.zip Anyone can help me? thank you.
    View more
08-16-2019
Cancel Post

08-16-2019
Cancel Post

08-16-2019
Cancel Post

  • Sample apps for XR VRF using CRUD/gNMI - ( 08-16-2019 )
  • YANG Development Kit (YDK)
  • Hello,I have added sample applications to configure VRFs for XR data model using the CRUD service and the gNMI provider.This set includes four boilerplate applications and thee custom applications as follows:gn-create-xr-infra-rsi-cfg-10-ydk.py - create boilerplate gn-create-xr-infra-rsi-cfg-20-ydk.py - IPv4 VRF gn-create-xr-infra-rsi-cfg-21-ydk.py - IPv6 VRF gn-delete-xr-infra-rsi-cfg-10-ydk.py - delete boilerplate gn-delete-xr-infra-rsi-cfg-20-ydk.py - delete all VRF configuration gn-read-xr-infra-rsi-cfg-10-ydk.py - read boilerplate gn-update-xr-infra-rsi-cfg-10-ydk.py - update boilerplate  Please visit the following link to get a full shot of all the python files, CLI files, and JSON files: https://github.com/CiscoDevNet/ydk-py-samples/tree/master/samples/basic/crud/gnmi/models/cisco-ios-xr/Cisco-IOS-XR-infra-rsi-cfg Give it a try :D
    View more
08-16-2019
Cancel Post

  • Downloading Cisco Jabber Softphone for Ubuntu - ( 08-16-2019 )
  • Collaboration Applications
  • I use Ubuntu as my desktop at home and log in to my work VDI desktop via Citrix that has Cisco Jabber Softphone.  At work I connect to the same VDI via an Ubuntu thin client and the softphone works fine but not from home.  I thin what I need is install the Cisco Jabber Softphone for Ubuntu here however I am not allowed to download this unless I am a corporate client with a support contract.  I am sure that my huge corporate company has such a contract and pays a significant amount of money to Cisco but I have no idea who I would need to ask internally.  Is there a way for someone to get hold of this software for personal use?
    View more
08-16-2019
Cancel Post

  • Need assistance with pass through normalization script - ( 08-16-2019 )
  • Call Control
  • This is my normalization script.  We are trying to pass the X-ECKOH-CALLID through call manager from the inbound Invite to the outbound invite M = {}M.allowHeaders = {"X-ECKOH-CALLID"}function M.inbound_INVITE(msg)  local eckohcallid = msg:getHeader("X-ECKOH-CALLID")  if eckohcallid  then    pt = msg:getPassThrough()    pt:addHeader("X-ECKOH-CALLID", eckohcallid)  endendreturn MThis is the inbound Invite that has the header21775952.000 |11:53:03.170 |SdlSig   |DbObjectCacheTimer                     |initialized                    |Db(2,100,213,1)                  |SdlTimerService(2,100,3,1)       |2,100,150,1.1^*^*                        |[T:H-H:0,N:0,L:0,V:0,Z:0,D:0]  AppCorr: 021775953.000 |11:53:04.188 |SdlSig   |DbObjectCacheTimer                     |initialized                    |Db(2,100,213,1)                  |SdlTimerService(2,100,3,1)       |2,100,150,1.1^*^*                        |[T:H-H:0,N:0,L:0,V:0,Z:0,D:0]  AppCorr: 021775954.000 |11:53:04.439 |SdlSig   |SIPTimer                               |wait                           |SIPHandler(2,100,82,1)           |SdlTimerService(2,100,3,1)       |2,100,10,1.1897352^10.246.180.99^*       |[T:H-H:0,N:0,L:0,V:0,Z:0,D:0]  TimerType=SIP_TIMER_REMOVE_TRANSACTION value=32000 numRetries=021775954.001 |11:53:04.439 |AppInfo  |//SIP/SIPHandler/ccbId=0/scbId=0/wait_SIPTimer: TimerExpired type=SIP_TIMER_REMOVE_TRANSACTION value=32000 retries=021775954.002 |11:53:04.439 |AppInfo  |//SIP/SIPHandler/ccbId=0/scbId=0/sip_stop_timer: timerContext=0xdddd700 type=SIP_TIMER_REMOVE_TRANSACTION value=32000 retries=021775954.003 |11:53:04.439 |AppInfo  |//SIP/Stack/Info/0x0xdddc720/sipSPIFlushEventBufferQueue: There are 0 events on the internal queue that are going to be21775954.004 |11:53:04.439 |AppInfo  |//SIP/Stack/Transport/0x0/sipConnectionManagerUnregisterCtxtInCon: gConnTab=0xe118990, addr=10.246.180.99, port=5060, unregistering context=21775954.005 |11:53:04.439 |AppInfo  |//SIP/Stack/Transport/0x0xdddc720/sipSPITransportContextCleanup: Could not purge context gcb=0xdddc720 from the connection; gcb21775954.006 |11:53:04.439 |AppInfo  |//SIP/Stack/Info/0x0xdddc720/sipSPIUfreeOneCCB: Freeing ccb dddc72021775955.000 |11:53:04.830 |SdlSig   |SdlDataInd                             |wait                           |SIPUdp(2,100,73,1)               |SdlUDPConnection(2,100,10,1)     |2,100,10,1.1897368^10.246.180.52^*       |*TraceFlagOverrode21775955.001 |11:53:04.830 |AppInfo  |//SIP/Stack/Error/0x0/httpish_cache_header_val: DROPPING unregistered header X-Wireless-Orig: yes21775955.002 |11:53:04.830 |AppInfo  |//SIP/Stack/Error/0x0/httpish_cache_header_val: DROPPING unregistered header Cisco-Gucid: 50C464D001E9C0419FE8000000A6305621775955.003 |11:53:04.830 |AppInfo  |//SIP/Stack/Error/0x0/httpish_cache_header_val: DROPPING unregistered header App-Info: <10.246.178.174:7000:7443>21775955.004 |11:53:04.830 |AppInfo  |//SIP/SIPUdp/wait_SdlDataInd: Incoming SIP UDP message size 1469 from 10.246.180.52:[5060]:[3794706,NET]INVITE sip:1811002@10.10.10.10:5060;user=phone SIP/2.0Via: SIP/2.0/UDP 10.10.10.10:5060;branch=z9hG4bKsik9qi0060bh9vp8tkj0.2Max-Forwards: 65To: <sip:1811002@10.10.10.10;transport=udp>From: 9131111111 <sip:9131111111@10.10.10.10:5060>;tag=SDrk3ba01-dsb4c66d21Call-ID: SDrk3ba01-f8a9dde999d4787215d566496d0eb711-agt5rg1050CSeq: 1 INVITEContent-Length: 252Contact: <sip:9131111111@10.10.10.10:5060;transport=udp>Expires: 18User-Agent: CVP 11.6 (1) ES-7 Build-81Allow: INVITE,ACK,CANCEL,BYE,REGISTER,REFER,INFO,SUBSCRIBE,NOTIFY,PRACK,UPDATE,OPTIONS,MESSAGE,PUBLISHAccept: application/sdp, application/isup, application/dtmf, application/dtmf-relay, multipart/mixedP-Preferred-Identity: <sip:9131111111@10.10.10.10:5060>X-ECKOH-CALLID: SD3tk3c01-2c5e778c4fabf5817c86c2587bef2e91-v300g00NX-Wireless-Orig: yesSession-Expires: 1800Min-SE: 90Content-Disposition: session; handling=requiredReferred-By: <sip:CVP@10.246.177.176:5060>Cisco-Guid: 1355048144-0032096321-2682781696-0010891350Cisco-Gucid: 50C464D001E9C0419FE8000000A63056Supported: preconditionSupported: replaces
    View more
08-16-2019
Cancel Post

08-16-2019
Cancel Post

  • Install Webex 39.6.2.9 via SCCM but without the Outlook Add-in - ( 08-16-2019 )
  • Collaboration Applications
  • Hi, I am using SCCM to deploy the Webex Meetings install to end users (end users are not admins on their laptops/desktops), but for those that have a registered account it will add the outlook add-in automatically.  Is there a switch that can be added within the powershell install script that will disable to auto-loading of the add-in/toolbar?  This is being deployed to Windows 10 (1709 to 1903) and Windows 7 Enterprise 32 & 64-bit. Thanks in advance for any insight! -Dizzy 
    View more
08-16-2019
Cancel Post