Cisco Community
English
Register
Register
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Announcements
Join Customer Connection to register!
1119
Views
0
Helpful
7
Replies
Highlighted
Garrison Botts
Enthusiast
Enthusiast
‎02-15-2018 01:06 AM
‎02-15-2018 01:06 AM

ISR 4331 missing comands

Hello,

 

New to the ISR 4400s and I'm finding that there are some commands that seem to be missing.. I'm trying to do very simple things like prevent snmp,ssh, etc.. to any IP other than the management interface (G0).. 

I've tried using MPP - the "control-plane host" command is missing. 

I've tried using ACL/Class Map/Policy Map/ Service-Policy -  the "drop" command is missing from the Policy Map ... 

Is there something I've not done? This routers are right out the box and have the  version of code isr4400-universalk9.03.16.04b.S.155-3.S4b-ext.SPA.bin... 

Thanks for any help..

 

 

Labels:
1 person had this problem
0 Helpful
Reply
1 ACCEPTED SOLUTION

Accepted Solutions
Highlighted
Mark Malone
VIP Mentor VIP Mentor
VIP Mentor
In response to Garrison Botts
‎02-15-2018 02:23 AM
‎02-15-2018 02:23 AM

id say its in the sec license but the feature navigator link i provided should show you exactly you can pick the software and license version and see what features are available for that platform/software

View solution in original post

0 Helpful
Reply
7 REPLIES 7
Highlighted
Mark Malone
VIP Mentor VIP Mentor
VIP Mentor
‎02-15-2018 01:14 AM
‎02-15-2018 01:14 AM

MPP should be in that code i use it , what does it show you when you check the help ?
i have 155.3 in flash but moved up slightly recently

 


XXX(config)#control-plane host
XXX(config-cp-host)#?
Control Plane host configuration commands:
exit Exit from control-plane host configuration mode
management-interface Configure interface for receiving network management traffic
no Negate or set default values of a command

XXX(config-cp-host)#do sh ver | i 15
Cisco IOS Software, ISR Software (X86_64_LINUX_IOSD-UNIVERSALK9-M), Version 15.5(3)S5a, RELEASE SOFTWARE (fc3)
System image file is "bootflash:isr4300-universalk9.03.16.05a.S.155-3.S5a-ext.SPA.bin"
XXX(config-cp-host)#


0 Helpful
Reply
Highlighted
Garrison Botts
Enthusiast
Enthusiast
In response to Mark Malone
‎02-15-2018 01:39 AM
‎02-15-2018 01:39 AM

That's what's so crazy... I'm only seeing :

nR-IR-02(config-cp)#?
Control Plane configuration commands:
exit Exit from control-plane configuration mode
no Negate or set default values of a command
service-policy Configure QOS Service Policy

 

nR-IR-02(config-cp)#do sh ver | i 15
Cisco IOS Software, ISR Software (X86_64_LINUX_IOSD-UNIVERSALK9-M), Version 15.5(3)S4b, RELEASE SOFTWARE (fc1)
System image file is "bootflash:isr4400-universalk9.03.16.04b.S.155-3.S4b-ext.SPA.bin"

0 Helpful
Reply
Highlighted
Mark Malone
VIP Mentor VIP Mentor
VIP Mentor
In response to Garrison Botts
‎02-15-2018 01:44 AM
‎02-15-2018 01:44 AM

hmm what license you got running i got appxk9, securityk9,ipbasek9 and voice but it wouldnt be in the uck

 

feature navigator

http://cfn.cloudapps.cisco.com/ITDIT/CFN/jsp/index.jsp

0 Helpful
Reply
Highlighted
Garrison Botts
Enthusiast
Enthusiast
In response to Mark Malone
‎02-15-2018 02:17 AM
‎02-15-2018 02:17 AM

Cisco just checked and it looks like just the base license... one would think that the control plane configuration would be on that seeing as how it's to secure the router... I'm gonna have to do a little research with the customer to see what the deal is.. 

0 Helpful
Reply
Highlighted
Mark Malone
VIP Mentor VIP Mentor
VIP Mentor
In response to Garrison Botts
‎02-15-2018 02:23 AM
‎02-15-2018 02:23 AM

id say its in the sec license but the feature navigator link i provided should show you exactly you can pick the software and license version and see what features are available for that platform/software

View solution in original post

0 Helpful
Reply
Highlighted
Garrison Botts
Enthusiast
Enthusiast
In response to Mark Malone
‎02-19-2018 11:56 AM
‎02-19-2018 11:56 AM

I'm pretty much in agreement here...  I'm looking at the security license... It's crazy to me that "securing" the actual control plane would require a different license nowadays... 

 

0 Helpful
Reply
Highlighted
Garrison Botts
Enthusiast
Enthusiast
‎02-15-2018 01:50 AM
‎02-15-2018 01:50 AM

I've got Cisco TAC verifying that supposedly as we speak.... 

0 Helpful
Reply
Latest Contents
Cisco SD-WAN Global Forum : Quick Guide to Design, Deploy, O...
Created by ciscomoderator on 03-05-2021 12:50 PM
0
0
0
0
To participate in this event, please use the  button to ask your questions * Note: The link to join the discussion will be activated on March 8 All the knowledge of these four experts at your disposal! Cisco Software-Defined Wide Area Network (SD-WAN... view more
Community Live Event- ISR1100X-4G and ISR1100X-6G Platform O...
Created by Cisco Moderador on 03-02-2021 05:23 AM
1
0
1
0
Community Live- ISR1100X-4G and ISR1100X-6G Platform Overview and Architecture (Live event -  Tuesday, 23 March, 2021 at 10:00 am Pacific/ 1:00 pm Eastern / 7:00 pm Paris)- This event will have place on Tuesday 23rd, March 2021 at 10:00 hrs PDT&... view more
Cisco Secure Network Access Bridges the Gap
Created by Kelli Glass on 02-26-2021 04:19 PM
0
0
0
0
Cisco Secure Network Access is helping IT to bridge the gap between what is essential to the business and what the network delivers and to build the next-generation campus network for an unplugged and uninterrupted experience. Learn more about how these w... view more
Community Live Video - New Additions to the Catalyst 8000 Fa...
Created by Cisco Moderador on 02-24-2021 08:49 AM
0
0
0
0
(view in My Videos) Community Live- New Additions to the Catalyst 8000 Family (Live event -  Tuesday, 23 February, 2021 at 10:00 am Pacific/ 1:00 pm Eastern / 7:00 pm Paris)- This event had place on Tuesday 23rd, February 2021 at 10:00 hrs PDT... view more
New Additions to the Catalyst 8000 Family- FAQ
Created by Cisco Moderador on 02-24-2021 07:23 AM
0
0
0
0
This event had place on Tuesday 23rd, February 2021 at 10hrs PDT  Introduction Designed for an intent-based network, the Cisco Catalyst 8000 Edge Platforms family offers best-in-class networking and security combined. The platforms, available in b... view more
Content for Community-Ad