Heads Up :
The post you are writing will appear in a public forum. Please ensure all content is appropriate for public consumption. Review the employee guidelines for the community here.
I am running a Cisco 5585 ASA Firewall version 9.1. I am running the context mode to cater for my different cloud customers. I have a new customer who needs a Site-to-Site VPN to a remote location. The remote location have three peers IPs configured ...
I have deployed the Cisco ME3400 in the access part of my network (we are a big ISP providing WIMAX fixed internet connectivity). Recently, several sites have been having issues with packet drops whereas the bandwith provisioned is more than the exis...
Below is the an output from terminal monitor in my VSS 6506 Switches.Please help me interprate what could be going wrong here.Apr 10 07:20:09.701: DFC1: Switch mode info received by DFC..!000139: Apr 10 07:20:11.185: %SYS-DFC1-5-RESTART: System res...
Hello,I have configured VSS on my distribution (6509) and my Core (6506). I am now encountering an issue where by one of the chassis boots in rommon mode. This system ahs been stable but this has arised and needs urgent attention.What is the cause of...
Hi,Am planning to deploy VPN from a clients HQ where i have proposed either ASA 5520 firewall and 2800 series routers for three others branches. This will be site-to-site VPN with the HQ as the hub.The client want us to reserve a specific bandwidth e...
The above is correct. The firewall context is the same as the non-context firewall and below is a sample congifuration that worked for me.# set peer XXX.XXX.XXX.145 XXX.XXX.XXX.156 XXX.XXX.XXX.29# tunnel-group XXX.XXX.XXX.145 type ipsec-l2l# tunnel-g...
Hi Marius,This is possible and have done it in a router or an ASA without the context. You are able to create the different crypto maps for each of the failover peers.But how about in a context firewall? Anyone who has done it and has worked?
Hello,The traffic flows to and from Fa0/23 and Fa0/22.Below is the output of the command and the interface configuration;TST_SWITCH#sh platform qos statistics interface fastEthernet 0/22FastEthernet0/22 (All statistics are in packets) dscp: incoming...
Thanks Wael.I had already done that and did not have any effect.Also they were no queue drops on the interface.Are you able to decrypt the show tech support output??
Hello,Its possible to migrate to Cisco VSS without interupting the network operations but its advisable to do it during offline hours just incase anything happens. This is simple process but requires one to fullyunderstand the VSS technology.The belo...
