Answer Questions

i recently bought the webex starter version of webex. and was told in order to use a toll free number for people to dial into meeting with, i was to add on call back, which i did. and i have no option to select a toll free number just toll numbers. did i get the wrong version?

Hi! How to config BGP on IOS XR to don`t advertise my prefix to my ISP global upstream providers using its cummunity? Example of my ISP community from RIPE records: 2xxx4:96 Don't advertise to global upstream providers How can I set this on IOS XR? I try: prefix-set MYPREFIX    xx.yy.yy.xx/23end-set!route-policy RPL   if destination in MYPREFIX then      set community (2xxx4:96) additive      pass    else      dropendifend-policyneighbor xx.xx.xx.xx    remote-as 2xxx4    update-source Bundle-Ether1    address-family ipv4 unicast        send-community-ebgp        maximum-prefix 1000000 75        route-policy RPL out        send-extended-community-ebgp        soft-reconfiguration inbound always But this don`t work. Any ideas? Best regards, Kamil

I have  issues connecting to devnet VPN since morning :    4:09:55 PM    Contacting devnetsandbox-emea-gwy.cisco.com:20232.    4:10:40 PM    Connection attempt has failed.    4:10:40 PM    Unable to contact devnetsandbox-emea-gwy.cisco.com. I'm working on SD-WAN POD. Please let me know if th

Hi allhope this is correct placeCan you tell me what is the product id of FCoE NPV license onN9K-C93180YC-EX ?  BR,

Hello,I have upgraded the SG200-26 to 1.3.7.18 but before then the boot code option to upgrade the boot version was greyed out. Is there any reason or solution to that? Im trying to upgrade the firmware on that to 1.4.x but its not taking 1.4.0.88 version showing that the file is too big. Im trying to upgrade through HTTPS. Please help with any suggestion, solution advice.  Thank you

Hi,  I am interested in using the yang 1.1. feature for multiple leafrefs in a union. I am using NSO 5.3.1.1 and it compiles fine but:1. In the CLI, it just prompts with <string> instead of the list entries.2. Webui-one does not let me enter Commit Manager so the webui is basically crashed at that point. Any thoughts on this? Thanks in Advance.Jim module loadbalancers {yang-version 1.1;namespace "http://com/something/slfloadbalancers";prefix loadbalancers;import ietf-inet-types {prefix inet;}import tailf-common {prefix tailf;}import tailf-ncs {prefix ncs;}import tailf-ned-f5-bigip {prefix bigip;}import f5-bigip-gen-3.9 {prefix f5-bigip-gen-3.9;}typedef joint-device-paths {type union {type leafref {path "/ncs:devices/ncs:device[ncs:name=current()/../devices/by-devgroup/device/name]/ncs:config/bigip:ltm/bigip:profile/bigip:http/bigip:name";}type leafref {path "/ncs:devices/ncs:device[ncs:name=current()/../devices/device/name]/ncs:config/bigip:ltm/bigip:profile/bigip:http/bigip:name";}}}augment "/ncs:services" {description "TBD";container loadbalancers {description "TBD";list loadbalancer {key "name";description"Load Balancer Service";leaf some-f5-netconf-list {when"derived-from-or-self(/ncs:devices/ncs:device[ncs:name=current()/../devices/by-devgroup/device/name]/ncs:device-type/ncs:netconf/ncs:ned-id, 'f5-bigip-gen-3.9:f5-bigip-gen-3.9')";type leafref {path "/ncs:devices/ncs:device[ncs:name=current()/../devices/by-devgroup/device/name]/ncs:config/bigip:ltm/bigip:profile/bigip:http/bigip:name";}}leaf some-f5-generic-list {when"derived-from-or-self(/ncs:devices/ncs:device[ncs:name=current()/../devices/by-devgroup/device/name]/ncs:device-type/ncs:generic/ncs:ned-id, 'f5-bigip-gen-3.9:f5-bigip-gen-3.9')";type leafref {path "/ncs:devices/ncs:device[ncs:name=current()/../devices/by-devgroup/device/name]/ncs:config/bigip:ltm/bigip:profile/bigip:http/bigip:name";}}//Only prompts with <string>leaf joint-f5-crypto-cert-list {type joint-device-paths;}//Works greatleaf f5-crypto-cert-list {type leafref {path "/ncs:devices/ncs:device[ncs:name=current()/../devices/by-devgroup/device/name]/ncs:config/bigip:sys/bigip:crypto/bigip:cert/bigip:name";}}//Works greatleaf f5-crypto-key-list {type leafref {path "/ncs:devices/ncs:device[ncs:name=current()/../devices/by-devgroup/device/name]/ncs:config/bigip:sys/bigip:crypto/bigip:key/bigip:name";}}container devices {description "TBD";choice by-dev-or-devgroup {description "TBD";case by-devgroup {description "TBD";container by-devgroup {description "TBD";leaf device-group {type leafref {path "/ncs:devices/ncs:device-group/ncs:name";}description "TBD";tailf:info "The device-group name of the network devices doing the load balance";}list device {key "name";min-elements 1;max-elements "2";ordered-by user;description "TBD";leaf name {type leafref {path "/ncs:devices/ncs:device/ncs:name";}tailf:info "The name of the network devices doing the load balance";tailf:non-strict-leafref {path "/ncs:devices/ncs:device-group[ncs:name = current()/../../loadbalancers:device-group]/ncs:member";}}}}}case by-dev {description "TBD";list device {key "name";min-elements 1;max-elements "2";ordered-by user;description "TBD";leaf name {type leafref {path "/ncs:devices/ncs:device/ncs:name";}description "TBD";tailf:info "The name of the network devices doing the load balance";}}}}tailf:info "Configure Devices";}  

I'm looking from the following model stencil for Visio model Nexus 93360YC-FX2 the front and back view of the switch  I downloaded the Visio stencils from Cisco but they don't have the model Nexus 93360YC-FX2 any suggestions ?​[ https://www.cisco.com/c/en/us/products/visio-stencil-listing.htmlProducts - Visio StencilsProducts & Services - Visio StencilsThank you, 

I am trying to verify if an ASR 1006 with RP2 (8GB RAM), ESP 20 and SIP10 cards can support the current full BGP table (roughly 820k IPv4 prefixes and 84k IPv6 prefixes) without issue. We want to be able to grow over the next few years as well, of course. It seems quite difficult to verify this capability from documentation so far. I have found information on the ASR 9000 series that indicated different interface/line cards can have different max table sizes so I need to make sure I am looking at the right platform and parts for this upgrade. We are currently on 7606 with RSP720 and have a few months before we expect the route table size to exceed the maximum we can support on this hardware (over 1024k total prefixes). Any experience or documentation you can provide will be very helpful!Thanks 

Hello, I am unable to connect using Cisco Anyconnect Version 4.7.02036 to a corporate VPN server using the provided company CA certificate. Our outsourced corporate IT is not able to solve the problem for the last 4 weeks after 6 Skype attempts to check what is wrong. I look for any help from the community or Cisco to solve the problem.  Background information:- VPN connectivity worked fine on my PC for 4-5 years until in Feb. 2020 my PC was upgraded from Windows 7 to Windows 10 with a new VPN CA certificate issued simultaneously. All functions worked fine after update to Windows 10 except for VPN connectivity using Cisco Anyconnect Version 4.7.02036. If you look at the error case, then in Cisco Anyconnect message history after you press "Connect" it ends after 3 -10 minutes (the time really varies) with message box "Connection attempt has timed out. Please verify Internet connectivity". and this list of events:21:28:22 Ready to connect.21:38:22 Contacting <Company> Europe SSL.21:47:54 Unable to contact <xxx.yyy.zzz>.com. What was done by IT department so far to find out what is the problem:- Internet connectivity was checked and I tried 2 different Internet providers, but no success.- All profile settings including security settings for Cisco Anyconnect Version 4.7.02036 on my PC were checked and I could see it via Skype session.- Cisco Anyconnect Version 4.7.02036 was re-installed.- Various Windows "Services" related to networking were tried out.- The VPN CA certificate was checked at least 2 times and compared with the information on the VPN server - OK.- A few other things.Result: No success. At least 6 sessions were done so far. None of the changes however changed the following behavior:1. I can see in the Windows log in the beginning this error (after "Connect" is pressed):********************Function: COpenSSLCertificate::VerifyKeyUsageFile: Certificates\OpenSSLCertificate.cppLine: 1848Invoked Function: COpenSSLCertUtils::VerifyKeyUsageReturn Code: -31391723 (0xFE210015)Description: CERTIFICATE_ERROR_VERIFY_KEYUSAGE_NOT_FOUND:No Key Usages were found in the certificate************************2. Later continuously this error in Windows event log comes until "Connect" attempts expires. It depends and can last up to 10 min as mentioned before until I also get the error message box "Connection attempt has timed out. Please verify Internet connectivity". as GUI.***************Function: CCapiCertUtils::VerifyCertPolicyFile: Certificates\CapiCertUtils.cppLine: 1761Invoked Function: CertGetIntendedKeyUsageReturn Code: 0 (0x00000000)Description: unknown**************** The CA certificate includes definitely "Key Usage" item and it was checked by IT and myself in Windows and using Internet Explorer functionality. I have in total 3 certificates on my machine:User:1. Microsoft certificate for Windows and it has no "Key Usage" item.2. User related CA for VPN which is supposed to be used by Cisco Anyconnect and it has "Key Usage" item. Machine:3. Machine related CA for VPN and it has "Key Usage" item.  Could it be that Microsoft certificate (with no Key Usage) is taken by Cisco Anyconnect instead of the right one corporate CA for VPN? If "Yes" how could it be and how to fix this? If "No", what could be other reason why Cisco Anyconnect starts looping until it expires with:******************unction: CCapiCertUtils::VerifyCertPolicyFile: Certificates\CapiCertUtils.cppLine: 1761Invoked Function: CertGetIntendedKeyUsageReturn Code: 0 (0x00000000)Description: unknown******************* Any help is very welcome because slowly I become hopeless with this issue and would like to avoid new Windows re-installation on my PC!

Recently imported a SSL certificate (*.domain.tld) to a SG300 Switch. Worked fine, certificates shows up with the correct name in the SSL Server Key Table (Security - SSL Server - SSL Server Authentication Settings). But when i enter the URL https://switchname.domain.tld in the browser the switch rewrites it to https://IP-address-of-switch and the browser shows a (correct) certificate warning. With this behaviour it makes no sense to import named certificates. Does anybody knows a solution to this problem/wrong behaviour of the switchs internal webserver? Thanks,Woger 

Greetings allI have received a secure email that is protected by securedoc. I followed the directions to log into this service. The final step is to reply to an activation email to confirm my email address. It has been over an hour and I still have not received the activation email. I did get the activation email to be able to post to this community, so that much is working. I tried calling tech support, but they sent me here. Can anyone help me?ThanksBill

Meraki order number:5S2337530Cisco order number:110047400Dashboard license key:Z2EY-6XR2-CKWG LIC-MS120-24P-3YR  needs to be set up for the following client.JMF Development LLC448 S Hill St Suite 608Los Angeles, CA 90013contact: Joseph Cahill213-873-4449joseph.cahill@citrusmgt.com

I have a MacBook Pro running High Sierra 10.13.6 and Webex meetings 40.2.12.18 desktop app.  I have recently been unable to get Webex to work when I "Go to Meeting".  I get a spinning wheel and a message that it is having problems accessing the network.  I have numerous other Apps that can access the net and the browser version of Webex works.  I have tried re-installing the app to no avail.  Has anyone else encounter this?

Is there any way in CUIC version 12 to get an AGENT report (similar to agent call summary report) in an interval - 60 minute - report?  My customer would like a report that shows how many calls an agent handled, etc. per hour on a certain day.

I after implement dynamic NAT i loose connectivity. It translates but nothing goes out. 

 Hola, quiero que los usuarios se comuniquen mediante internet a webex on-premise de mi empresa, tengo una IP publica que esta nateada a la IP publica de webex asi como en internet el dominio de webex esta asociado a mi IP publica, tengo la siguiente topologia: Topologia de red de horizonte dividido https://www.cisco.com/c/en/us/td/docs/collaboration/CWMS/2_7/Planning_Guide/cwms_b_cwms-planning-system-requirements-2-7/cwms_b_cwms-planning-system-requirements-2-7_chapter_010.html Tengo toda la configuracion correcta y puedo hacer conferencias de manera interna solo que cambiamos de ISP y se tuvo que cambiar la IP publica y el nateo y cuando intento desde internet ingresar a webex me sale que la IP publica de mi webex no puede abrir, escaneo los puertos de esta IP y descubri que estan cerrados, con el personal del SOC ya valide que funciona el nateo y se abrieron todos los puertos asi que quizas el problema es que mi IP publica virtual del IRP con la que hago el nat a la IP publica tiene los puertos 80 y 443 apagados, estos puertos en el servidor y en la maquina virtual estan abiertos, me gustaria saber como abrir los puertos 80 y 443 de la IP publica virtual del IRP Dejo algunas pantallas de informacion y esta es mi version de webex on-premiseVersion 2.7.1, inatalacion para 50 usuario simultaneos Quedo atento a sus comentarios.

Dear all, I've configured authentication Using Ldap server but Failed.After save the configuration and logout to test, I can't access to my FMC with both Local and External User :( Please help me procedure to rollback my FMC configuration from CLI . Many thanks  

Hello. i was wondering why this setup im using doesnt work. I have an asa 5506-x with traffic policing on. I have a service policy rule to limit port tcp/8080 to 3MBit traffic. I have tried to set it up under global, inside and outside interfaces. There is nothing special here, a simple NAT to the internet with 1 ip inside and outside. when I turn it on, it works only for the return traffic. what I did as a test is I set it up to shape Speedtest.net. the download side never works, but the upload works as expected. What I found was that the initiation port is 8080 and then it uses a high port to finish the communication. the asa probably shapes the first part correct regardless in or out but misses the higher 1024+ port. I did one additional test where I included everything to be shaped and it worked as expected. but I want to limit it to just port tcp8080. ive tried every combo of interfaces and direction but im not getting the sense that the firewall is detecting the 8080 and then the return high port flow. at least not for the policing. any thoughts? thank you.

This is what i am trying to design new network, this is just on paper nothing finalized and i am sure it has lots of issue like firewall should be on leaf not border leaf etc. so that is why i am here to clear all those doubts. I have following question related Spine-leaf design.If we use anycast gateway in this design in that case leaf would be my edge gateway for all hosts connected to that leaf so how does Host-A will send traffic to Host-B via firewall?Should i disable anycast gateway so each VLAN traffic route via firewall (my firewall is gateway for all VLANs)what do you think about this design or this is not something i should be using?

I have gateway to gateway VPN between an RV340 and RV320. Inside this tunnel is a unicast video stream. It's stable and works most of the time without issue. HOWEVER once an hour enough packets get dropped that the stream goes down. it's only about 20 seconds for the stream to re-establish but this is rather bothersome!The VPN tunnel is backup VERY quick, but the video stream takes longer because of the lost packets. The time is in line with the Phase 2 SA lifetime. I can of course just increase this value on both ends, to reduce the number of times it happens. But there must be a way to have the SA's renew without dropping any packets? Can anyone point me in the right direction please?

What happens if mandatory Cisco DNA license (includes SWSS) is not renewed? Does ELLW provide network stack (Network Essentials or Network Advantage) software updates?

According to the multicasting idea over the entire Internet, I have been read that  DVMRP protocol is the multicasting protocol used in the multicast backbone area. What are the reasons that stand behind preferring DVMRP, over other multicasting protocols in the backbone area?  

Hi, I am trying my hands on pyats. So I have set up a basic script wherein I've a testbed file having device details in it. so when I am trying to connect to the device, it is giving me following error:Password: Password: Password: root@10.121.12.36's password: Traceback (most recent call last): File "src/unicon/statemachine/statemachine.py", line 701, in unicon.statemachine.statemachine.StateMachine.go_to File "src/unicon/statemachine/statetransition.py", line 479, in unicon.statemachine.statetransition.AnyStateTransition.do_transitions File "src/unicon/eal/dialogs.py", line 419, in unicon.eal.dialogs.Dialog.process File "src/unicon/eal/dialog_processor.py", line 285, in unicon.eal.dialog_processor.SimpleDialogProcessor.process File "src/unicon/eal/dialog_processor.py", line 224, in unicon.eal.dialog_processor.SimpleDialogProcessor.expect_eval_statements File "/usr/local/lib/python3.6/dist-packages/unicon/plugins/generic/statements.py", line 144, in password_handler raise UniconAuthenticationError('Too many password retries') unicon.core.errors.UniconAuthenticationError: Too many password retries The above exception was the direct cause of the following exception: Traceback (most recent call last): File "src/unicon/bases/connection.py", line 532, in unicon.bases.connection.Connection.connect File "src/unicon/bases/routers/connection_provider.py", line 146, in unicon.bases.routers.connection_provider.BaseSingleRpConnectionProvider.connect File "src/unicon/bases/routers/connection_provider.py", line 169, in unicon.bases.routers.connection_provider.BaseSingleRpConnectionProvider.establish_connection File "src/unicon/statemachine/statemachine.py", line 704, in unicon.statemachine.statemachine.StateMachine.go_to unicon.core.errors.StateMachineError: Failed while bringing device to "any" state The above exception was the direct cause of the following exception: Traceback (most recent call last): File "<console>", line 1, in <module> File "src/pyats/connections/manager.py", line 305, in pyats.connections.manager.ConnectionManager.connect File "src/unicon/bases/connection.py", line 538, in unicon.bases.connection.Connection.connect unicon.core.errors.ConnectionError: failed to connect to nexus_devicedevice details are correct, as I am able to login via netmiko library. Please help!!

Does anyone know if there is still a limitation on the number of nodes a call can flow through before it is disconnected/timed out?I know back in version 8.0/8.5 this limit was set to 999.  As I understand it, this limit is now configurable, but is there a high side threshold that customers can use?  Such as >2000, etc.....Or is there a limitation at all any longer?