I tried to replace 2 port Cisco 2960 switch(WS-C2960x-24ps-L) with Cisco WS-3850-48PS. I configured it in a simlar way as we just needed to upgrade to 48 port switch we had no spare 3750 2960 with 48 ports.
However when the switch was shipped to s...
Hi ,I need some help in dividing the network to a different subnet and allow them to access internet only.
Currently we access internet via Palo Altos in the AWS.
Connectivity is from Floor switches (4506) to Nexus (5K) at distribution to Cisco ...
so you mean if i am coming from Vlan 115 i can only access internet ??
Secondly if it like this is there a better way if we change the subnet on VLan 115 completely like give it 192.168.2.X/24 and advertise in ospf and then block all 10.0.0.0/8 ??
...
Just to clarify further ospf routing is used between floor switches and Nexus and Nexus to Edge.
so VLAN may not be seen in Nexus due to that as OSPF is serving the purpose of reachibility
Hi,
I am particulary trying to isolate qv-rtr-51 and qv-rtr-54 to internet access only. VLans on qv-rtr-51 are as below as per config. i cant see that in Nexus config(I have not config Nexus myself, done by the guy before me)
qv-rtr-51#sh run int vla...
aaa group server tacacs+ acs
server 10.70.30.3
server 10.70.30.4
source-interface loopback0
ip access-list Bulk
permit tcp any any eq ftp
permit tcp any any eq ftp-data
permit tcp any any eq pop3
permit tcp any any eq smtp
permit tcp any a...
ACtually Floor switches are also Layer 3 and Nexus as well and we are using OSPF on floor switches.
Redistribution into BGP and and ospf so it is a bot tricky , may be i have to use acl on Nexus??
