Heads Up :
The post you are writing will appear in a public forum. Please ensure all content is appropriate for public consumption. Review the employee guidelines for the community here.
Wanted to ask the community about an inconsistency, in the behaviour of IP address assignment for SDA L3 links, we are seeing between LAN Automation vs Add Link automation. And to ask how the community deals with this behaviour, if others see the sam...
Hi,So first this is NOT a question about integrating ISE and DNAC / CatC. It is about after that.The most confusing thing I have found is understanding what CatC will setup for you on ISE and what you need to configure on ISE yourself. I have not bee...
Hi,I have two questions on the behaviour of 3100 Secure firewalls in a cluster and interface health checks.We have a pair of 3100 secure firewalls (running FTD), that we have setup in a cluster, managed by FMC. All devices connected to the two FW's u...
Hi,As part of our SD-Access roll out, we wanted to keep some functionality we had on our legacy Cisco network where access to the management interfaces of our Fabric switches is locked down to certain remote addresses and the address of DNA-C. Though...
Hi,I am a bit stuck with DNA-C and the interrelation of DHCP and DNS settings in different areas of DNA-C. We mainly segregate our network between Corporate and Guest Traffic as a gross simplification. This is our main VN segregation. We have separat...
In the mean time have upgraded FMC to lastest 7.4x version. FMC has extra dialogs for interface monitoring now, This was global to all interfaces in ver 7.2x. Either on or off for all or none. To support this is there is extra documentation in FMC th...
Think I have answered my second question after some playing. The CLI command 'show cluster history' gives detail down to the port / etherchannel that is causing the issue. The issue is that it matters what FW you run the command on. If run on the FW ...
No Spanned Etherchannels are supported with the firewalls in this clustering setup, as from the document I linked:Cisco Secure Firewall Management Center Device Configuration Guide, 7.2 - Clustering for the Secure Firewall 3100 [Cisco Secure Firewall...
Not sure the portchannel / etherchannel config has much to do with it, but here is is the topology.Edited: Did not document the cluster control link layout we have properly.
