Heads Up :
The post you are writing will appear in a public forum. Please ensure all content is appropriate for public consumption. Review the employee guidelines for the community here.
Hi all, I have just inherited a setup where there are 2x AIR-CT3504-K9 managing 53x AIR-AP2802I-S-K9 access points. For the 3504 WLCs i notice there are 2x license subscription as indicated below that will be due soon. Will it cause any wifi outage i...
Hi all, I have a cluster of 2x FTDs running on 2130 with version 6.4.0.9 which is managed by my FMC. In the threat defense policy which is applied to my FTD cluster, the Secure shell settings in my platform settings is blank but i am able to ssh into...
Hi all,I am trying to configure login to my checkpoint and firepower firewalls using cisco ISE ver2.7 as radius.Can anyone share any link or sample as to how can i configure my policy on Cisco ISE to facilitate the administrative login to my firewall...
Hi all, I have a site to site vpn between Cisco ASA 5540 (with private subnet 192.168.2.0/24 connected to this firewall) and Checkpoint firewall (with private subnet 192.168.1.0/24 connected to this firewall). Site to site vpn is configured to be est...
Hi all, My 802.1x environment consist of 2x Cisco ISE (primary and secondary) units with windows AD. My AD is configured with GPO which is applied to my users machine to dictate how they would authenticate against my cisco ISE as shown below.1) usin...
Hi Scott, Thank you for the clarification. This means that as long as my WLCs manage less than 150 APs, i do not need the following subscription right?1) LIC-CT3504-1A (Cisco 3504 Wireless Controller 1 AP Adder License)
Hi Rob, Tested and verified that enabling NAT exemption resolve the connectivity issue from 192.168.2.0/24 (ASA) to 192.168.1.0/24 (Checkpoint). But curious why return traffic from 192.168.2.0/24 (ASA) is able to work whenever 192.168.1.0/24 (checkpo...
Hi Rob, If NAT exemption is the case, then traffic frm 192.168.2.0/24 (ASA) shld have an issue whenever 192.168.1.0/24 (checkpoint) initiated traffic to 192.168.2.0/24. But 192.168.1.0/24 can access 192.168.2.0/24 successfully for Web service and fi...
Hi Marvin, With reference to my attached logs, there were no failure of any kind for my primary node. But "dynamic authorization failed" is still seen on my secondary node which is puzzling.
Hi Baqari, No port-channel configuration for both affected interfaces. Both interfaces are connected to different network. Fiber cabling and fiber module have been removed and tested for other connectivity and verified working. Thanks.
