Heads Up :
The post you are writing will appear in a public forum. Please ensure all content is appropriate for public consumption. Review the employee guidelines for the community here.
Hi, I have a fairly complex request. I would like to setup a high availability Internet connection and control my routing paths without accepting the whole Internet routing table. Here is a scenario. I have two ISPs A and B. Each provides me with ...
Today I was reconfiguring a 2950 switch and had erased the flash and reloaded the ios. (vlan.dat erased). When I reloaded the switch, to my surprise it had learned my VTP domain and had joined it as a server. All my vlan information had been propag...
I have a lab setup with a 1721 connected to the Internet. I have enabled ip inspection with several engines including http and https, on the outside interface out bound. I also have an access list on the outside interface blocking inbound traffic. ...
Hello,We are converting service providers and a new local company has installed a PRI line to replace our existing PRI from our old provider. We are trying to test the new PRI line before we disconnect the old one, but the new PRI will not carry dat...
Hi,Could someone please post a location for some good examples on how to configure a site-to-site vpn using IOS routers, that provides for QoS / prioritization for Voice traffic. I have seen some in the past, but I am curious if new enhancements hav...
Your situation sounds very similar to ours. We have two ISPs and each provided us a /24 network, the minimum to advertise via BGP. Both providers agreed to advertise both networks. So should a failure occur, the other will still advertise a path i...
That is an interesting approach. I have used virtual interfaces for the DMZ's but I didn't think to use it on the outside interface. As you probably see from my first post, I am just addressing the ASA's with the primary ISP numbering, and using NA...
Thanks for the reply. I actually did some testing with the deny's and that worked well, in my testing. Thanks for the information.The GLBP could really be replaced with HSRP, as you are right, since the only device using the gateway is the firewall....
Thanks, I'll try that. One other question. I was looking on Cisco.com and found some sample configs, and they all had the inspect on the inside interface coming in to it. Is this a preferred method, as opposed to having it on the outside going out...
Ok here are some PPP debugs. Seems like there is something wrong with the line. The hub site is not able to get packets back to the remote site. All the packets upstream are getting dropped, lost, whatever.NEW PRI (FAILS)See atachement (bad)OLD PR...
