Heads Up :
The post you are writing will appear in a public forum. Please ensure all content is appropriate for public consumption. Review the employee guidelines for the community here.
Hi,I've just purchased two ASA5516's and deployed them both together in a HA pair. I've configured RADIUS correctly but they will not sign in when you try to use your RADIUS credentials. If I do a AAA Test on the RADIUS server in question, the test i...
I've worked on ASA's before and always felt fairly confident with them in the past, however, I've been tasked with building a new ASA firewall HA cluster for where I now work and I've hit a problem. I found we've already got an existing ASA sitting e...
I have just enabled logging of interface state changes on my switch and noticed one in particular is making state changes frequently, at least once an hour sometimes more, like this:Jun 24 08:14:31: %LINK-SW1-3-UPDOWN: Interface GigabitEthernet1/8/21...
I'm trying to configure syslog to show interface state changes on the VTY lines and the console lines (I don't have a syslog server). My configuration is as follows:My-SW#show run | i logginglogging console informationallogging monitor informationall...
The company I recently started working for is undergoing a network refresh. Geographically, it's just a single but extremely large campus LAN with zero branch offices. The current LAN architecture is a full cisco shop, classic 3 tier core, distributi...
All that aside, FTD is a better and more modern OS. It would be an equally good or even better choice to just use it (after upgrading to the current recommended release of 6.6.1).Can you point me to some resources that would help me understand the be...
Upon closer inspection, it appears I need to remove the following command from the CLI of the ASA:no service password-recoveryHowever, I have no idea how to configure this. It's not straight forward at all.It's not a normal IOS CLI. Can anyone help?
@Reza Sharifi wrote:There is really no need to distribution switches all all. You can simply connect the access switches to the core directly as long as the core switches have enough port capacity. Keep the access switches as layer-2 and the core as ...
