Heads Up :
The post you are writing will appear in a public forum. Please ensure all content is appropriate for public consumption. Review the employee guidelines for the community here.
When we cycled our ISE 3.3p4 deployment for p4 updates, specifically when cycling the PSNs our network took a big hit that took about a week to fully recover from. We are still in a bad way since what we've found/identified in our environment is stil...
Does anyone know/have links to design/engineering guides for DHCP snooping and Dynamic ARP inspection for IOS? I've found implementation guides which don't seem terribly in depth.Environment is metropolitan/campus area network with over 1000 L2 switc...
How to see what ROMMON variables are set while in a working 9K IOS-XE CLI? Remember sh ver no longer works on these.Based on reading below links, it appears that 9K devices no longer have the ability to show the ROMMON boot variables from IOS CLI. ...
Hello all,20+ years ago I used debug all the time, however not so much so in the last decade. Seems like last time I called TAC on the 3850 debug command they gave me some silly answer that debug was a Cisco TAC command. WFIW All the Cisco.com debug...
We migrated to RSTP long ago with normal/expected tweaks. I've never taken the time to review things in detail because the end result was the same thing STP did decades ago, prevent L2 loops. However we recently noticed slow convergence times durin...
Morning,We still believe that there is something wrong within IOS-XE, however without deep code debug and the like to investigate it at the IOS-XE and hardware level it's difficult to say. We have gotten around this by improving the overall throughp...
Arne, as usual you are already on the case of our latest problem. We just crashed an ISE TACACS server (only TACACS in this deployment). We've noticed since DNAC/Cat Center that the PAN (also a PSN persona) had slowed and then the PAN filled the /...
Only because I often find posts that I really wished had the ending details, I am adding this (I think) final post. From what I've found, what is being seen is the switch internal VRF doing a redirected stack console session (192.168.1.5, ttyx). Th...
Clarification in above post. You seem to be able to not only log on to non-master console ports of the 9300 stack, but also issue commands. That is assuming your ISE TACACS policies match in some way.
For the next person who runs into this and wonders what is going on, I found the following. If you've been around Cisco for decades like myself, you'll have run into stack switch members that you cannot log onto because someone didn't set the stack ...
