Heads Up :
The post you are writing will appear in a public forum. Please ensure all content is appropriate for public consumption. Review the employee guidelines for the community here.
Hello everyone,this post is not so much a question as an exchange of knowledge and experience about an issue we had with device tracking.We were having issues on our network that sometimes, not reproducibly, connections between endpoint and server wa...
Hello everybody,I just wanted to share an experience we made with auto-smartport macro. Maybe someone has made similar experience or has an idea. Our Cisco ISE environment is profiling our Meraki AP´s and sending a Radius message to apply Auto-Smartp...
Hello everybody,we have ~1000 catalyst switches in our network which are operated by 4 people. We use a template to deploy switches but I´m searching for a Software that helps me to ensure that the configuration is compliant .For example I want to kn...
Hello everybody, we are currently testing Softwareversion 17.06.3 and see log messages on the switch from "Switch Integrated Security Features (SISF)". I guess those messages are related to device-tracking or dhcp snooping. %SISF-4-ENTRY_BLOCKED: Ent...
Hello, has anybody made the experience that ODBC lookups might lead to "High Authentication Delay" on ISE PSN Nodes ? And has anybody a possible solutuion for that potential issue ? We have an ODBC connection to lookup MAC Addresses for NAC. Yesterd...
Yes, there is a related bug ID: CSCwm87264.According to Cisco, the issue was caused by the execution of macro commands and BPDU Guard when applied to a range of ports. They provided us with a private image and informed us that the fix is planned for...
That was not what I meant I want to have a tool that compares text (configuration template) with the configuration of all 1000 switches automatically.So for example I want to know if everyhere the SVI´s are configured correct in respect to our templ...
Hi TomBaz83,we figured out that those messages were caused only on ports to Accesspoints (we only use Meraki AP´s). We deactivated device-tracking on those ports and the message was is gone (trusted-port, device-role switch). We had the feelding that...
C9200-48PWe migrated two switches in production environment to 17.06.03 and both Switches are logging the same. Device-Tracking policy is as following for "host" ports:device-tracking policy DEV-TRACKINGno protocol ndpno protocol dhcp6no protocol udp...
Yes, we know this article.But we don’t use IPv6 and also disabled protocol dhcpv6 learning in device-tracking policy already. would be great to know the command to checke size und utilization of the binding table.best regards
