Heads Up :
The post you are writing will appear in a public forum. Please ensure all content is appropriate for public consumption. Review the employee guidelines for the community here.
Hi,
For our production implementation of Cisco Nexus Data Broker on Nexus 3100 series switches we are using centralised mode and OpenFlow. In order to secure the connection between the controller and switch we require TLS and the use of our enterp...
Hi, Had a strange issue where we had some Avaya IP Phones dropping off the network (losing DHCP IP) which I tracked down to an issue caused by an IP Phone causing an STP loop.Often in meeting rooms uneducated users patch the IP Phone downlink cable b...
Hi, I've done the usual search engine and forum crawl in search of the answer, but can't find anything definitive.Is it possible for AnyConnect to utilise the backup server defined in the connection profile when the session limit is hit on an ASA? E...
Hi,I have setup a trunk between a WS-X4306-GB line card and a dual-media uplink port on a WS-CBS3020-HPQ blade switch. However, when I enable the port it flaps every minute or so and after the flap reports runts on the interface.The WS-X4306-GB line ...
Hi,Setup as below:-Cisco ASA 5505Cisco Adaptive Security Appliance Software Version 8.3(2)Device Manager Version 6.3(3)Cisco AnyConnect Client 2.5.0217 Basically I have the DefaultWEBVPNGroup connection profile configured for AAA only authentication ...
Hi,
I had this issue also when using our internal PKI and openssl, I believe it is down to the private key being encrypted with a passphrase.
You need to have the certificate private key unencrypted.
To remove the private key password follow thi...
Hi Bilal, I'm curious as to why you define the native VLAN as 1103. Is this to protect against misconfiguration on the F5 side?My understanding is that in 'Pass Through' mode the LTM drops all BPDUs unless they arrive on an untagged VLAN. So as you ...
You need to be careful with this configuration.Violation restrict will not shutdown the port, and can potentially block the BPDUs hence bpduguard will not kick in and you will create a loop.Better to use "switchport port-security violation shutdown" ...
Confirming this behavour on 5548UP running NX-OS 5.2(1)N1(3)1/30 is a normal access port, 1/13 is a member of a non-vpc port-channel.5548UP(config)# int e 1/305548UP(config-if)# vpc ? orphan-port Orphan-port (non-vpc port)5548UP(config-if)# vpc orp...
