Heads Up :
The post you are writing will appear in a public forum. Please ensure all content is appropriate for public consumption. Review the employee guidelines for the community here.
Many times, SXP connections must be established between devices through a firewall. A perfect example is when building a connection between Network Devices such as access switches and the Cisco Identity Services Engine. In order to configure this, a ...
@ahengst So Flexible NetFlow (NetFlow v9) which is what ETA is based on can match IP Addresses on L2 interfaces. As a matter of fact, the recommendation for ETA is to configure it on the switch access port.
For SXP the source can be any L3 address on the 4500. Typically though, it would be highly recommended to use a loopback interface as the source. The SUP7/SUP8 will always make the enforcement decisions regardless of having receive tagged traffic or ...
Hi Mark,The closest CVD we have is here http://www.cisco.com/c/dam/en/us/td/docs/solutions/CVD/Apr2016/User-to-DC_Access_Control_Using_TrustSec_Deployment_April… It does not however discuss straight IPsec. Actually configuration of same is very simpl...
Hi Chris,Also, the 1375 that Karthik mentions is ONLY for an L3 ACL. For L4 which is what will be used for SGACLs that number is actually cut in half.Mike
Hi Jason,GRE supports inline tagging much the same as an Ethernet interface. This will allow you to propagate the tags over the service provider MPLS WAN. So all traffic will leave one side of the WAN and arrive at the other side with the original ta...
