Heads Up :
The post you are writing will appear in a public forum. Please ensure all content is appropriate for public consumption. Review the employee guidelines for the community here.
Hello,I have C8300 router with T1 licence. I am on version 17.14.1a so i have 500mbps aggregate. I upgrade router on recommended version 17.15.4c, and than output of command show version shows: The current crypto throughput level is 2000000 kbps (Agg...
Hi,
I have redundant cisco ise deployment (primary and secondary).To test redundancy i disable network for ise-1. Than i shut/no shut interfaces on switch where dot1x and mab is configured.
I see on console/debugs that switch mark ise-1 as DEAD, and ...
Hi,
I have Anyconnect on Cisco FTD. It is integrated with Microsoft AD via LDAP and i do LDAP attribute mapping based on AD group and FTD policy so different user have different privileges. I need to setup to this user 2FA with DUO so i installed Duo...
Hi,
I have dmvpn network with 2 hubs and spokes. Spokes have 2 separate mgre tunnel to the each hub (primary and secondary). For routing i am using eigrp.On the Primary Hub i see route to the network which is network between secondary hub and spokes ...
Hello,
I have dmvpn with hub and spoke topology. I route all traffic from spoke to HUB. So i have phsyical wan interface in vrf internet, point tunnel interface source vrf Internet, and have default route in that vrf internet. When i test speed it is...
Hi @Htonieto Before upgrade the output of command above show correct value and showed that crypto throughput will be rate limited at 500M (aggregated).
Hi @Htonieto On version 14.14.1a is 500M aggregate and that is also showed in output of "show version" and "show platform hardware throughput crypto"After upgrade on latest recommended 17.15.4c, this is output.Even T1 is configured and it should show...
Hi @Htonieto I read that suplicant can start proces with eapol start, but also that switch can start authentication with eapol request identity.The switch initiates authetication when link change state from down to up or periodicaly. I am not sure j...
Hi @Htonieto This makes sense. Because i have setup after 4 tries to mark server as DEAD, and really capturing packets after shut/no shut interface i see 2 acc requst and 2 auth request. After that 4 messages and timeout really ise-1 is marked DEAD. ...
Hi @Stefan Mihajlov
Sorry for late reply and sorry for the longer answers but this is observing from debugs and wireshark.
Regarding your first part of answer icmp unreach and skips retransmission i didnt understand who is sending to who icmp?This s...
