Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for
- Cisco Community
- :
- About hanyawad
Stats
Member since
07-12-2009
117
Posts
12
Helpful
0
Solutions
02-06-2019
09:38 AM
I mean those equipment in Sandbox environment. it's pre-setup topology for testing. not sure why Cisco doesn't have technical support channel for Sandbox.
... View more
02-05-2019
12:12 PM
I can reach to the GUI of Firepower chassis 1 and 2 ( 10.10.20.30-31) but Firepower ASA/10.10.20.41 not reachable at all. i tired HTTPs, HTTP, and SSH. none worked. any help would be appreciated. Thanks
... View more
07-11-2013
12:14 PM
please access this link below for the full solution. thanks! http://www.cisco.com/en/US/prod/collateral/routers/ps5853/prod_qas0900aecd8016c026_ps5855_Products_Q_and_A_Item.html Labib
... View more
07-11-2013
11:57 AM
Hi everyone, i got the solution for this problem. and discovered that: Only 2 HWIC or EtherSwitch network modules can be used in this platform and to let them communicate with eachother we have to stack them physically by an ethernet cable to use one port on each card as a trunk. and also we have to issue the command switchport stacking-partner on these trunk port to let the two HWIC cards have L2 connectivity. please rate if you find it helpful. thanks! Labib
... View more
07-11-2013
08:22 AM
Hi Leo, please find the boot process output that pasted below. BTW when i connect two hosts on the same HWIC they reach each other but the problem is when i connect them on different HWIC cards. thanks IOS Image Load Test ___________________ Digitally Signed Release Software program load complete, entry point: 0x81000000, size: 0x5e65400 Self decompressing the image : ############################################################################################################################################################################################################################################################################################################################################################################################################################################################################################################################################################################################################ [OK] Smart Init is enabled smart init is sizing iomem TYPE MEMORY_REQ HWIC Slot 2 0x00200000 HWIC Slot 3 0x00200000 Onboard devices & buffer pools 0x0228F000 ----------------------------------------------- TOTAL: 0x0268F000 Rounded IOMEM up to: 40Mb. Using 7 percent iomem. [40Mb/512Mb] Cisco IOS Software, C2900 Software (C2900-UNIVERSALK9-M), Version 15.2(4)M3, RELEASE SOFTWARE (fc2) Technical Support: http://www.cisco.com/techsupport Copyright (c) 1986-2013 by Cisco Systems, Inc. Compiled Tue 26-Feb-13 03:42 by prod_rel_team This product contains cryptographic features and is subject to United States and local country laws governing import, export, transfer and use. Delivery of Cisco cryptographic products does not imply third-party authority to import, export, distribute or use encryption. Importers, exporters, distributors and users are responsible for compliance with U.S. and local country laws. By using this product you agree to comply with applicable laws and regulations. If you are unable to comply with U.S. and local laws, return this product immediately. A summary of U.S. laws governing Cisco cryptographic products may be found at: http://www.cisco.com/wwl/export/crypto/tool/stqrg.html If you require further assistance please contact us by sending email to export@cisco.com. Installed image archive Cisco CISCO2901/K9 (revision 1.0) with 909312K/40960K bytes of memory. Processor board ID FTX145000GS 8 FastEthernet interfaces 2 Gigabit Ethernet interfaces 1 terminal line 1 Virtual Private Network (VPN) Module DRAM configuration is 64 bits wide with parity enabled. 255K bytes of non-volatile configuration memory. 254464K bytes of ATA System CompactFlash 0 (Read/Write)
... View more
07-10-2013
12:31 PM
Hello, i have a 2901 router (IOS version 15.3) and after i plugged the Ethernet module into one of its EHWIC i found that the router doesn't detect it and the other router detected it and no traffice is passed through it. does any one know why that happened. BTW this Router should support 2 4-port Cisco Gigabit Ethernet EHWICs. thank you! Makar
... View more
- Tags:
- 2901
Labels:
06-24-2013
08:30 AM
Hello, i've been implementing our DMVPN tunnels and i have on tunnel doesn't form its crypto sa or peer. below is the output of some debug regarding the crypto isakmp negotiation to establish IPSEC tunnel. by the way, before i assigned the tunnel protection command to the interface tunnel i've checked the nhrp peers and made sure that the nhrp peer for that end point has been established successfully. so i think the problem in crypto config. please find the output below of my debug and let me know why they don't form crypto peers. thanks and appreciate your quick response. rtrq1301#sh crypto isakmp sa IPv4 Crypto ISAKMP SA dst src state conn-id status 64.x.x.x 24.x.x.x MM_NO_STATE 0 ACTIVE 65.5.x.x 24.x.x.x QM_IDLE 1012 ACTIVE 65.5.x.x 24.x.x.x QM_IDLE 1013 ACTIVE IPv6 Crypto ISAKMP SA rtrq1301# debug crypto isakmp Jun 24 11:05:54: ISAKMP:(0): retransmitting phase 1 MM_NO_STATE... Jun 24 11:05:54: ISAKMP (0): incrementing error counter on sa, attempt 5 of 5: retransmit phase 1 Jun 24 11:05:54: ISAKMP:(0): retransmitting phase 1 MM_NO_STATE Jun 24 11:05:54: ISAKMP:(0): sending packet to 64.x.x.x my_port 500 peer_port 500 (I) MM_NO_STATE Jun 24 11:05:54: ISAKMP:(0):Sending an IKE IPv4 Packet. Jun 24 11:06:04: ISAKMP:(0): retransmitting phase 1 MM_NO_STATE... Jun 24 11:06:04: ISAKMP:(0):peer does not do paranoid keepalives. Jun 24 11:06:04: ISAKMP:(0):deleting SA reason "Death by retransmission P1" state (I) MM_NO_STATE (peer 64.x.x.x) Jun 24 11:06:04: ISAKMP:(0):deleting SA reason "Death by retransmission P1" state (I) MM_NO_STATE (peer 64.x.x.x) Jun 24 11:06:04: ISAKMP: Unlocking peer struct 0x232134D8 for isadb_mark_sa_deleted(), count 0 Jun 24 11:06:04: ISAKMP: Deleting peer node by peer_reap for 64.x.x.x: 232134D8 Jun 24 11:06:04: ISAKMP:(0):deleting node -1304092906 error FALSE reason "IKE deleted" Jun 24 11:06:04: ISAKMP:(0):deleting node 132230039 error FALSE reason "IKE deleted" Jun 24 11:06:04: ISAKMP:(0):Input = IKE_MESG_INTERNAL, IKE_PHASE1_DEL Jun 24 11:06:04: ISAKMP:(0):Old State = IKE_I_MM1 New State = IKE_DEST_SA Jun 24 11:06:05: ISAKMP:(0): SA request profile is (NULL) Jun 24 11:06:05: ISAKMP: Created a peer struct for 64.x.x.x, peer port 500 Jun 24 11:06:05: ISAKMP: New peer created peer = 0x23222160 peer_handle = 0x800000A5 Jun 24 11:06:05: ISAKMP: Locking peer struct 0x23222160, refcount 1 for isakmp_initiator Jun 24 11:06:05: ISAKMP: local port 500, remote port 500 Jun 24 11:06:05: ISAKMP: set new node 0 to QM_IDLE Jun 24 11:06:05: ISAKMP: Find a dup sa in the avl tree during calling isadb_insert sa = 3D973ECC Jun 24 11:06:05: ISAKMP:(0):Can not start Aggressive mode, trying Main mode. Jun 24 11:06:05: ISAKMP:(0):found peer pre-shared key matching 64.x.x.x Jun 24 11:06:05: ISAKMP:(0):Input = IKE_MESG_FROM_IPSEC, IKE_SA_REQ_MM Jun 24 11:06:05: ISAKMP:(0):Old State = IKE_READY New State = IKE_I_MM1 Jun 24 11:06:05: ISAKMP:(0): beginning Main Mode exchange Jun 24 11:06:05: ISAKMP:(0): sending packet to 64.x.x.x my_port 500 peer_port 500 (I) MM_NO_STATE Jun 24 11:06:05: ISAKMP:(0):Sending an IKE IPv4 Packet. Jun 24 11:06:15: ISAKMP:(0): retransmitting phase 1 MM_NO_STATE... Jun 24 11:06:15: ISAKMP (0): incrementing error counter on sa, attempt 1 of 5: retransmit phase 1 Jun 24 11:06:15: ISAKMP:(0): retransmitting phase 1 MM_NO_STATE Jun 24 11:06:15: ISAKMP:(0): sending packet to 64.x.x.x my_port 500 peer_port 500 (I) MM_NO_STATE Jun 24 11:06:15: ISAKMP:(0):Sending an IKE IPv4 Packet. Jun 24 11:06:25: ISAKMP:(0): retransmitting phase 1 MM_NO_STATE... Jun 24 11:06:25: ISAKMP (0): incrementing error counter on sa, attempt 2 of 5: retransmit phase 1 Jun 24 11:06:25: ISAKMP:(0): retransmitting phase 1 MM_NO_STATE Jun 24 11:06:25: ISAKMP:(0): sending packet to 64.x.x.x my_port 500 peer_port 500 (I) MM_NO_STATE Jun 24 11:06:25: ISAKMP:(0):Sending an IKE IPv4 Packet. Jun 24 11:06:35: ISAKMP:(0): retransmitting phase 1 MM_NO_STATE... Jun 24 11:06:35: ISAKMP (0): incrementing error counter on sa, attempt 3 of 5: retransmit phase 1 Jun 24 11:06:35: ISAKMP:(0): retransmitting phase 1 MM_NO_STATE Jun 24 11:06:35: ISAKMP:(0): sending packet to 64.x.x.x my_port 500 peer_port 500 (I) MM_NO_STATE Jun 24 11:06:35: ISAKMP:(0):Sending an IKE IPv4 Packet. Jun 24 11:06:35: ISAKMP: set new node 0 to QM_IDLE Jun 24 11:06:35: ISAKMP:(0):SA is still budding. Attached new ipsec request to it. (local 24.x.x.x, remote 64.x.x.x) Jun 24 11:06:35: ISAKMP: Error while processing SA request: Failed to initialize SA Jun 24 11:06:35: ISAKMP: Error while processing KMI message 0, error 2. Jun 24 11:06:45: ISAKMP:(0): retransmitting phase 1 MM_NO_STATE... Jun 24 11:06:45: ISAKMP (0): incrementing error counter on sa, attempt 4 of 5: retransmit phase 1 Jun 24 11:06:45: ISAKMP:(0): retransmitting phase 1 MM_NO_STATE Jun 24 11:06:45: ISAKMP:(0): sending packet to 64.x.x.x my_port 500 peer_port 500 (I) MM_NO_STATE Jun 24 11:06:45: ISAKMP:(0):Sending an IKE IPv4 Packet. Jun 24 11:06:54: ISAKMP:(0):purging node -1304092906 Jun 24 11:06:54: ISAKMP:(0):purging node 132230039 Jun 24 11:06:55: ISAKMP:(0): retransmitting phase 1 MM_NO_STATE... Jun 24 11:06:55: ISAKMP (0): incrementing error counter on sa, attempt 5 of 5: retransmit phase 1 Jun 24 11:06:55: ISAKMP:(0): retransmitting phase 1 MM_NO_STATE Jun 24 11:06:55: ISAKMP:(0): sending packet to 64.x.x.x my_port 500 peer_port 500 (I) MM_NO_STATE Jun 24 11:06:55: ISAKMP:(0):Sending an IKE IPv4 Packet. Jun 24 11:07:04: ISAKMP:(0):purging SA., sa=22EE34C8, delme=22EE34C8 Jun 24 11:07:05: ISAKMP:(0): retransmitting phase 1 MM_NO_STATE... Jun 24 11:07:05: ISAKMP:(0):peer does not do paranoid keepalives. Jun 24 11:07:05: ISAKMP:(0):deleting SA reason "Death by retransmission P1" state (I) MM_NO_STATE (peer 64.x.x.x) Jun 24 11:07:05: ISAKMP:(0):deleting SA reason "Death by retransmission P1" state (I) MM_NO_STATE (peer 64.x.x.x) Jun 24 11:07:05: ISAKMP: Unlocking peer struct 0x23222160 for isadb_mark_sa_deleted(), count 0 Jun 24 11:07:05: ISAKMP: Deleting peer node by peer_reap for 64.x.x.x: 23222160 Jun 24 11:07:05: ISAKMP:(0):deleting node 748913332 error FALSE reason "IKE deleted" Jun 24 11:07:05: ISAKMP:(0):deleting node 1936642054 error FALSE reason "IKE deleted" Jun 24 11:07:05: ISAKMP:(0):Input = IKE_MESG_INTERNAL, IKE_PHASE1_DEL Jun 24 11:07:05: ISAKMP:(0):Old State = IKE_I_MM1 New State = IKE_DEST_SA
... View more
- Tags:
- dmvpn
Labels:
05-28-2013
07:21 AM
Hi Shine, thanks for your reply! i'm using two tunnel interfaces on the same source physical interface with different destination ip addresses and different NHRP IDs and also different GRE IDs. so in this case i should use share word at the end of this command or not? thank you! Labb
... View more
05-27-2013
08:55 PM
Hello, what the impact of share word when i type it at the end of this command under interface tunnel mode in DMVPN configuration? tunnel protection ipsec profile share in other words, if i have two tunnels on the same physical interface with two different clouds and didn't type share word at the end of that command will cause any problem communicating with their peers? please treat this as urgent. thank you for your help! Labib
... View more
Labels:
12-29-2012
09:09 AM
fischer, thanks for your reply. acually i understand it is good thing for generating a TCN but in my scinario it happens continuously and also the major issue i have is the random brownout in my network. so one of the causes which i'm suspecting is STP storm that might happens from continuous flapping links like fa4/40 and then makes the trunk links in this VLAN to go through the blocking state at the point of the brownout. does what i say make sense or i'm confused? Makar
... View more
12-28-2012
07:46 PM
hello, my client has a switched network of 2 core switches of 4506 and 6 access layer switches most of them are 2960s. every few days my client experience a random brownout in the network for few minutes. today they had a brownout for few minutes started at 3:14pm. i took a look at the trap report i found continuous events of bridge topology changes. i attached this file i hope any one has experienced this before to share his knowledge and experience. regards, Makar
... View more
Labels:
12-27-2012
01:52 PM
you can use NAT configuration in overlapping networks. you can follow the link below for more inforamtion regarding the configuration. http://www.cisco.com/en/US/tech/tk648/tk361/technologies_configuration_example09186a0080093f30.shtml rate please if it is helpful! regards, Labib
... View more
12-21-2012
07:47 AM
most of the switches have been up for 43 days. these ports connected to desktop coputers or servers ( but i don't know yet what kind of applications installed on them. attached is the top interfaces with errors for yesterday. the cause of these errors might be DHCP snooping or kind of broadcasting? because i checked the utilization it looks normal most of the times. thanks for sharing your knowledge and experience. regards, Labib
... View more
12-20-2012
03:39 PM
Hello to all, have anyone experienced outage in a random timings while he had this issue? because i've been monitoring my client's switched network for the outage he has and i noticed in the reports that i have the same problem on few switches ports. i apprecaite your recommendation. regards, Labib
... View more
12-20-2012
08:09 AM
Hi Leolaohoo, thanks for your reply. attached is the show commands for three interfaces i noticed big numbers of errors. Gi/3/11 and Gi3/14 connected to fiber cable but fa4/40 to rj45. all of them in vlan1. i'm suspecting the probably reason for errors on Gi3/11 and Gi3/14 the fiber cable should be cleaned or replaced. but what about Fa4/40. and is the huge number of these errors on these interfaces causing a brownout in the network?!. i'm confused a little bit. regards, Labib
... View more
02-06-2019
I mean those equipment in Sandbox environment. it's pre-setup topology
for testing. not sure why Cis...
02-05-2019
I can reach to the GUI of Firepower chassis 1 and 2 (10.10.20.30-31) but
Firepower ASA/10.10.20.41 n...
07-11-2013
please access this link below for the full solution.
thanks!http://www.cisco.com/en/US/prod/collater...
07-11-2013
Hi everyone,i got the solution for this problem. and discovered
that:Only 2 HWIC or EtherSwitch netw...
07-11-2013
Hi Leo,please find the boot process output that pasted below.BTW when i
connect two hosts on the sam...
07-10-2013
Hello,i have a 2901 router (IOS version 15.3) and after i plugged the
Ethernet module into one of it...
06-24-2013
Hello,i've been implementing our DMVPN tunnels and i have on tunnel
doesn't form its crypto sa or pe...
05-28-2013
Hi Shine,thanks for your reply!i'm using two tunnel interfaces on the
same source physical interface...
05-27-2013
Hello,what the impact of share word when i type it at the end of this
command under interface tunnel...
12-21-2012
most of the switches have been up for 43 days. these ports connected to
desktop coputers or servers ...
12-20-2012
Hello to all,have anyone experienced outage in a random timings while he
had this issue? because i'v...
Public Statistics
| Date Registered | 07-12-2009 03:13 AM |
| Date Last Visited | 07-31-2019 12:34 AM |
| Total Messages Posted | 117 |
| Total Helpful Votes Received | 12 |
Helpful Votes Given To
.jpg "VIP Expert"){kind=icon}
.jpg "Hall of Fame Master"){kind=icon}
