Heads Up :
The post you are writing will appear in a public forum. Please ensure all content is appropriate for public consumption. Review the employee guidelines for the community here.
Hi there, I'm having problems with the genie parser library in robot framework. I'm basically copying the approach from the example in https://pubhub.devnetcloud.com/media/genie-docs/docs/userguide/robot/index.html If I try this .robot file to parse...
Hi,Using an ASA 8.2(3) I'm trying to use local command authorization to restrict users in a multiple context, multi-tenant firewall from executing commands which could negatively impact other contexts. Ideally I will not use radius/tacacs for this. ...
I'd be very interested to hear others opinions on this. You have a datacenter environment with L2 boundaries at end of row aggregators, then L3 back to the core and edge. You have 6500 service module switches hanging off the core housing ACE and FW...
Hi,I am considering a network design that will have ACE and FWSM modules in end of row 6500 distribution switches. The server farms would have their gateways set to a vlan SVI on the 6500, with a PBR map on the SVI so that reply traffic to load-bala...
I've put together a test network in order to test that when an uplink from a 3560 to a 6500 switch saturated by traffic my QOS configuration reserves some bandwidth for management protocols, e.g telnet/ssh. This is because I have a potential oversub...
Thanks Jon,Just to clarify, this is a potential design not an existing network.Some server Vlans would be firewalled from eachother via multi context FWSMs with a context per server Vlan. Some server Vlans would just have router ACLs and Vlan ACLs.A...
Hi Jon,Many thanks for your advice so far!I'm getting confused here, but I think thats due to lack of experience on my part with this type of design The design I'm considering would look something like this:Edge |L3 |Core-L3-6500-ACE/FWSM |L3 |End-o...
For anyone considering a similar design, I have labbed this up and all appears to work Ok, though you need to disable TCP normalization on the ACE (disclaimer: this affects/disables some security features) in order for it to route return traffic that...
Hi,I have seen a similar issue using RSTP when the STP domain exceeds 10k. Sounds like a similar environment, RSTP on the 6500s, high no of vlans + trunks.Check the spanning-tree port count on the 6500s with 'show spanning-tree summary' and look at ...
