About kclark

kclark · 01-27-2010

I've read about version of this scenario, but have been unable to achieve the desired results from previous examples. I have a 2811 with an on-board interface on my LAN (L3), and an HWIC-4ESW interface (L2) connecting to a metro Ethernet WAN. Out ac...

kclark · 07-10-2009

I have a 2811 with 3 ISP's, and am trying to set up equal-cost routes for load-balancing. The ISP interfaces and firewall interface are in a "PUBLIC" vrf. All other interfaces are in the global config. Everything is fine with a single default rout...

kclark · 06-20-2009

I have 2 routers connected by an HP switch. The 2 routers have incomplete ARP entries for each other. The switch sees the correct MAC address on their respective ports. I've changed cables on both sides, moved switch ports for both devices, and ha...

AD user filtering with ASA+Websense? · 08-26-2008

I know Websense can perform AD-based user filtering, but I've only found information on URL-filtering when Websense is used on the ASA. Can the ASA pass AD user information to Websense so Websense can filter based on user ID? Is there another way t...

kclark · 02-14-2007

I'm in a situation where I need the following:1. I need the IP address for a remote system to appear to me as an address range I assign (doing it today, no problems). This allows me to connect to multiple overlapping address ranges (i.e. 5 customer...

kclark · 01-28-2010

Found the issue. Our 3750 (acting as layer 2 only) was stripping the DSCP value from the router and egressing it with default values. Once I added "mls qos trust dscp" to the switch interface connecting to the site A router, DSCP values from Site B...

kclark · 01-27-2010

Hi Raj,Thanks for your reply. Traffic is marked from the endpoint at Site A and carried modified to endpoints at Site B. That appears to be working correctly. The servers at 172.30.2.46 and 172.30.2.49 are at Site A, so server-to-endpoint DSCP val...

kclark · 07-10-2009

If I were trying to access internal hosts, perhaps, but I'm simply trying to SSH to any of the public interfaces within the VRF from a non-local public ip address. I didn't think NAT played a part there. I have been known to be wrong before, though...

kclark · 06-22-2009

Problem solved!Turned out that HP Procurve switches do not run spanning tree by default. I was able to fix it two ways: (1) Enable spanning tree on the HP, or (2) Disable spanning tree on the 2801 HWIC-4ESW. Either way, it's happy now.

kclark · 06-21-2009

Thanks everyone for your replies. All ports are treated as access ports. These are the interfaces in question that cannot seem to ARP. It acts as if they are in the wrong vlan, but the HP switch has both ports in vlan 500 as untagged (i.e. access ...

Member Since	‎07-15-2006 11:55 AM
Date Last Visited	‎04-30-2020 08:05 AM
Posts	19
Total Helpful Votes Received	5

User Statistics

User Activity

L3/L2 interface QoS question

VRF with multiple default routes?

ARP/L1 issue?

AD user filtering with ASA+Websense?

2-way NAT? Is it possible?

Re: L3/L2 interface QoS question

Re: L3/L2 interface QoS question

Re: VRF with multiple default routes?

Re: ARP/L1 issue?

Re: ARP/L1 issue?