Heads Up :
The post you are writing will appear in a public forum. Please ensure all content is appropriate for public consumption. Review the employee guidelines for the community here.
hi,I'm trying to debug an intermittent STP problem in an L2 network with a combination of C2924XL-EN and C2950-24 switches.I see the following error:ds-17-19.p 6483: 1y18w: %RTD-CLUSTER_MEMBER_1-1-ADDR_FLAP: FastEthernet0/1 relearning 17 addrs per mi...
I'm looking for a way to let our PIX 525s (running OS 6.2(1)) use a select global range of addresses when the users in our network are trying to reach select external sites.Situation:On the inside interface we're using 10.194.134.0/23- When trying t...
We've deployed two pixes in a failover configuration and placed them in front of a farm of webservers. The servers generate some 20 Mbit of traffic at peak times, many different sites are hosted in this webfarm.Pretty much all traffic that is allowed...
You don't need to setup a secondary IP address on the PIX. The 'static' command will tell the pix to listen on that external address.Your router and/or cablemodemsetup must be configured to route those packets to the external IP address of your firew...
for some reason my first response didn't make it here, so I'll try again:Answer 1:extend the access-list inside_access_in in interface to allow for browsing traffic:access-list inside_access_in permit udp any any eq 53access-list inside_access_in per...
In 6.2(1) you can do LAN-based failover, but it'll only span between sites if you have an ethernet subnet between your sites. The feature was built to overcome the 6 feet length limitation of the serial cable - I think it'll be put to use mostly by p...
Configure each firewall to log with a different 'logging facility' and configure your syslog.conf to use different logfiles for each facility. Don't forget to restart syslog after making the changes.On most *nix systems, you'll find the names of faci...
Assuming that you're using Cisco's VPN Client, you should look into 'split-tunnel' as described on:http://www.cisco.com/univercd/cc/td/doc/product/iaabu/pix/pix_62/config/basclnt.htmBasically the split-tunnel info that is defined in the vpngroup stat...
