Heads Up :
The post you are writing will appear in a public forum. Please ensure all content is appropriate for public consumption. Review the employee guidelines for the community here.
HiI have been tasked with upgrading our distributed ISE deployment running version 3.3 up to version 3.4 for the new workload connectors featureMy question is, if I upgrade using the cli method then do i need to regenerate the Root CA has the old SEC...
HiI have been testing in my lab but having no joy at all, do i have to use network statements in FTD BGP in order to advert prefixesI can not get it working using just prefix-list/route-maps.????
HII have been upgrading our Cisco 9500 SVL Switches and our 9300 stacks and have just found something online regarding CPLD/FPGA firmware upgrades, 1.Is this a manual upgrade or is it in the IOS upgrade procedure2. Can this cause issues if it isnt up...
HiIf I have a route based VPN configured on my FTD and I want to run BGP with the peer device then what IP address do I use for the peering is it the peers VTI IP or the peers interface IP address please.?? Thanks
@Arne Bier So are the queue link errors disruptive to normal clients in anyway or just between the ISE nodes? and how disruptive is regen of ISE ROOT CA ??Thanks
@Rob Ingram Yes i tried that and worked, but I ma now redistributing static in BGP and using a prefix-list and /RM to control what I sed to peer, Thanks
@Rob Ingram Ok thanks does the below look like a valid Nat exemption ??111 (STAFF_INTERNET) to (any) source static STAFF-Network STAFF-Network destination static any -ipv4 any-ipv4