Buy or Renew
Buy or Renew
Join the Catalyst Center Onboarding Ask Me Anything event happening now!
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
468
Views
0
Helpful
2
Replies

Connectivity between ISE and cisco switch

Ib_Reda
Level 1
Level 1

‎08-28-2023 04:47 AM

Dears

I tried to install lab for ISE on EVE, ISE1,2, and AD installed on Server, Windows, and switch installed on EVE-eg, I configured int VLAN 1 on the switch with 10.10.10.100, as per attached I can ping Windows from the switch but I can not ping ISE although when I connected the client on the cloud, I was reached to ISE1,2 and A

there is any configuration that must be set on the interface that connects with the cloud to reach ISE1,2 and AD

Labels:
Preview file
118 KB
0 Helpful
2 Replies 2

pieterh
VIP
VIP

‎08-29-2023 01:26 AM

your drawing suggests a "flat" network , a single vlan-1 / subnet 10.10.10.0/24 between client and ISE 
if this is correct there seems no extra configuration needed (no ACL's no firewalls , no routing)
if it is not a flat network then you need to specify more details

it may be the ISE and AD server itself have their local firewall enabled ?
this would explain that ISE and AD services respond normally
then you and add firewall rules on these servers to be "open" for icmp (ping)

It may also be the connection to the "cloud" is NOT using vlan-1 but another vlan?
this explains connectivity locally within vlan-1 but not to the cloud
then you need to correct your switch configuration correspondingly

0 Helpful

Ib_Reda
Level 1
Level 1

‎08-29-2023 02:52 AM

thanks, it solved

I disabled STP on VLAN between the switch and the cloud.

spanning-tree portfast edge bpdufilter default
no spanning-tree vlan 103

 

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card