Heads Up :
The post you are writing will appear in a public forum. Please ensure all content is appropriate for public consumption. Review the employee guidelines for the community here.
Hoping I am missing something simple here. I need to have a backup VPN connection work, but routing isn't propagating. My topology: I have three locations, A, B, and C. Site A is the main location and has an ASA and a 2921 routerSite B also as an ASA...
I have a Cat9k that I've connecting into an Azure Express Route circuit via my ISP. They have told me that it is ready to do and that my customer VLAN is 4001. I've setup the VLAN in Azure as 1001. To me, that means that the outer tag is 4001 and the...
New to Firepower, have a net new setup with some very basic rules in place. Encountering an issue with one URL and not sure how to resolve. The URL is a vendor on HTTPS but port 4433. When going to this URL, there is a redirect to another URL at 443....
I've got a 3850 with QoS configured that has suddenly decided to stop allowing commands to be added/altered. I go into the policy-map, drop into the class within that policy and no matter the command it will not register. No errors will pop up, no sy...
I'm rusty with QoS. Really haven't had to work with it much since a lot of the networks I work on have bandwidth to spare. I've been working with some MPLS sites that have lower bandwidth connections, around 10Mbps is typical for these sites. There h...
Thanks for the input! I do understand what should be happening with AD (170 for external, 90 for internal). I'm just not seeing the redistributed routes go beyond site B 2921. Here's what I'm currently seeing: At site A ASA, no redistribution. static...
Turns out it was an issue with Megaport. They had some weird stuff going on, lots of hops along the way. But, you are correct. It was just a trunk port heading to them and us tagging on the internal VLAN setup in Azure.Thanks!
That's what I figured as well but it doesn't seem to be working. They gave me the outside "s-tag" as being 4001 and I setup the private tag in Azure as 1001. So that would lead me to believe we need to participate in the QinQ process. Their support h...
The service provider is setup like this: interface GigabitEthernet0/0/0/17mtu 9216transceiver permit pid all!interface GigabitEthernet0/0/0/17.4001 l2transportencapsulation dot1q 4001rewrite ingress tag pop 1 symmetric
