Heads Up :
The post you are writing will appear in a public forum. Please ensure all content is appropriate for public consumption. Review the employee guidelines for the community here.
Hi All,Found a weird behaviour with a C7200 VXR with ACL on the vty access.To explain the setup, one of the interfaces on the router is setup with a VRF for "out of band" management (sorta-kinda, if you see what I mean).The other interfaces are all ...
Hi All, While I find IOS XR to be very powerful and flexible, especially with the RPL, I have found a few things that appear to be missing, which are completely possible under the classic IOS... For example, performing OSPF route filtering based on t...
Hi All, I have come across a possible bug with ACL processing on the 6500 with the VS-S720-10G-3CXL (in VSS mode) running 12.2(33)SXI2a.In this example access list:ip access-list extended VLAN42_OUT permit tcp any any established permit udp 10.0.0...
Hi All, Wonder if anyone has come across this issue. We use tacacs authentication across the whole of our infrastructure, and have indentified an issue with some of our 7200vxr 's suddenly failing to communicate with the TACACS server after a period...
Hi All,We're experiencing a strange situation on a 3750G PoE switch running advanced IP Services featureset whereby frames switched solely at layer 2 (e.g. between IPv6 hosts within the same vlan), but as soon as the frame is forwarded at layer3 thro...
oh yes.. one other thing... security policy INTER-VLAN in the corporate office LANs is applied on both the pfsense firewalls AND the 7204 VXRs (again, a double layer of security). It's a little more complex than it looks on paper, but once you figu...
I forgot to mention that I do, nevertheless, perform some intial filtering on the 7204 VXRs as well using outbound ACLs on the subinterfaces to the VLANs... but they are relatively generic, and it's the pfsense firewalls that perform the bulk of the ...
to clarify, within the pfsense firewalls, the bridge interface for vlan 10 (outside) is "bridged" to the bridge interface for vlan 100 (inside), and so-on. The firewall rules are applied in "transparent" mode across that bridged connection between ...
In my case, I have two 7204 VXRs as the gateways with HSRP (I would use GLBP, but the guest vlan is NATed, so would cause some issues with sessions)... they both connect into the access switch (actually a 3750G stack with 4 switches).The subinterface...
