Heads Up :
The post you are writing will appear in a public forum. Please ensure all content is appropriate for public consumption. Review the employee guidelines for the community here.
I have VPN 3005 concentrator which has damaged console port and am not sure of any private IP address configured, or for that matter any configuration that exists on that box. Is there any other way to recover access to the box?Vinod
Is it possible to achieve load balancing on switch where we can group multiple IP address to be addressed with one virtual ip address and same will distribute to real IP's based on round robin fashion.ThanksV
I have configured FWSM as inter chassis Active Active failover. The failover works just fine only for 10 mins before both context on both units shows active and peer context as failed.I am not sure what the issue is. The failover and Stateful Vlan ar...
I have configured the FWSM for Active Active failover. 2 VLANS (VLAN 7 and VLAN8) have been created for failover and state information to be replicated to other unit.Issue: Replication does not happen. Secondary switch drops VLAN packets (see output ...
I am trying to inspect vlan 100 using Dynamic ARP inspection feature. My fwsm blade provides dhcp services to Vlan 100 users. Below is my configuration.ip dhcp snooping vlan 100ip dhcp snoopingip arp inspection vlan 100vlan 100,200,300 !!interface Gi...
IDSM-2 logs are sent using the management interface gig0/2. Depending on your management VLAN (either on FWSM or MSFC) where your IDSM-2 is placed, you might need to do the configuration accordingly.Vinod
Your FWSM configuration will not change and will remain as it is.FWSM configurationfirewall module 1 vlan-group 1,2,3 firewall vlan-group 2 10 100 MSFC ConfigurationVlan 101intrusion-detection module "slot-number" data-port "1/2" trunk allowed-vlan 1...
your dummy vlan (for every fwsm vlan) will be the actual end user vlan. (switchport access vlan command). IDSM-2 will just bridge the dummy vlan with the actual vlan in pair.Vinod
You can use inline VLAN pair mode to monitor traffic coming on specific VLANS. For egYou have VLAN 100,200 and 300 on MSFC that you intend to monitor inline.You need to configure VLAN 101,201 and 301 (L2 only) and send VLAN 100-101,200-201,300-301 to...
The dropped packets is normal, they are broadcast and multicast packets which is normal. Is your failover up and running or the other module shows failed?
