|
langer34 posted:Does anyone have any experience configuring multiple SSID's using different security protocols on a Cisco 1130 Aironet Access Point? Yes. (This is handwritten and might have some errors!) code:
|
# ¿ Apr 15, 2007 13:53 |
|
|
# ¿ May 2, 2024 00:44 |
|
Funnylink posted:I am having trouble with interference with my wireless security camera creating interference on the wireless channel. code:
|
# ¿ Apr 19, 2007 20:49 |
|
Ray_ posted:So switching to Aironet 1131AG for the WAP and a 4400 series for the WLC sounds about right? Just keep in mind that the WLC 4400 needs a gigabit port. ior fucked around with this message at 08:14 on May 4, 2007 |
# ¿ May 4, 2007 08:09 |
|
inignot posted:There's a hardware dependency on support for AES/CCMP. When I messed around with that a year ago it was only supported in the access points. The integrated wireless in the 800/1800 and the wireless WIC didn't support it. Cisco dances around mentioning this in their documentation. If you look on the 1800 data sheet page; WPA2 is mentioned several times, but AES/CCMP isn't listed in the Wireless LAN Security Features table.
|
# ¿ Jun 24, 2007 17:20 |
|
One think has always annoyed me with access-lists on cisco gear, namely editing them. I´m aware that I can add / remove lines from it, but what about remarks, they are not numbered, so I guess it cant be done without cut ´n pasting the whole thing. Any suggestions?
|
# ¿ Jul 5, 2007 09:58 |
|
XakEp posted:Learning Mac addys is core to STP. XakEp posted:With STP off, what does the switch do in absence of this?
|
# ¿ Aug 1, 2007 17:04 |
|
conntrack posted:For future reference, i did some simple testing on an 2621 and found that it maxes out Keep in mind that packet sizes and number of flows matters. My 871 is rated for the same amount of PPS that a 2621. When maxing out my connection (10Mbit) with torrent traffic it hovers at about 50% cpu. In theory mine would therefore max out at about 20Mbits simplex with my traffic patterns. But yes, a 2621 is a great home / learning router.
|
# ¿ Aug 1, 2007 18:17 |
|
jwh posted:I've just been put on a wireless project, and I'd be interested in hearing from people that are using any combination of 2106 controllers, lightweight AP's, or WCS. Oh, stay away from anchoring and guest-tunneling on the 2106 if you plan on deploying it from the WCS until the next release.
|
# ¿ Nov 24, 2007 00:40 |
|
jwh posted:How is WCS at administering multiple client / sites from one installation? This is what WCS does good, however with just 300 radios why not go with a WISM and H-REAP? Administrating 120 controllers vs 1 is just going to cause you lots and lots of pain. CrazyLittle posted:How often do any of you guys configure loopback interfaces on your routers, and what do you tend to use them for? Always as source interfaces for routing protocols, as loopback interfaces never go down with interfaces.
|
# ¿ Dec 2, 2007 02:17 |
|
ionn posted:What I have at the moment are a pair of 2801's, not sure how much they can take though I can definitely try with encryption as well. mtu 1400 changes the mtu on the interface. ip tcp adjust-mss 1400 alters TCP SYN packets flowing through the router so that the mss option is always lower then your specified value. Edit: goddamnit, seems im hitting a caching proxy at my ISP, no replies to what I answer until I´ve written my answer, then BAM, a whole new page of replies.
|
# ¿ Dec 12, 2007 13:47 |
|
Does anyone have a working anyconnect sslvpn configuration for IOS? (damnit I want search back!)
|
# ¿ Jun 11, 2008 11:44 |
|
atticus posted:shutting down DFC's isn't something you really want to do. Running without DFC´s works just fine, 90% of my customers are running CFC mode with no ill effects, just keep in mind that you loose out on local switching and is therefore limited by the 40Gbps/slot backplane.
|
# ¿ Jun 24, 2008 23:16 |
|
BoNNo530 posted:Longshot: That should be enough, gigastack is a special module with 2 connectors made for building ring-structures. Partno: WS-X3500-XL http://www.cisco.com/warp/public/cc/pd/si/casi/ca3550/prodlit/gbic_ds/gbic_ds3.gif ior fucked around with this message at 15:30 on Jul 8, 2008 |
# ¿ Jul 8, 2008 15:27 |
|
BoNNo530 posted:Thanks guys for the quick replies.. Unfortunately for you there is no gigastack for the 2960 (which has SFP ports, not GBIC). The correct SX partno for your 2960 would be GLC-SX-MM.
|
# ¿ Jul 8, 2008 15:46 |
|
M@ posted:Does anyone here fancy themselves an Aironet expert? We have a customer that's having a problem with a couple access points (AIR-AP1030-A-K9) that we sold them a while back. Try config auth-list add mic 00:0b:85:5f:15:e0 and so on with the mac-addresses found in the auth failure messages.
|
# ¿ Aug 12, 2008 01:12 |
|
code:
Edit: removed the serials to protect the guilty. ior fucked around with this message at 23:53 on Aug 25, 2008 |
# ¿ Aug 25, 2008 23:48 |
|
jbusbysack posted:Wow, I dunno why I called that DTP, but my question remains. Why allow it to negotiate instead of forcing the port bundling? Because when someone makes a mistake while patching and patches a users laptop into the channel it will effectively blackhole 50% of the traffic going through it. Happy times were had troubleshooting why someone could access website x but not y while someone else could access y but not x.
|
# ¿ Aug 31, 2008 10:30 |
|
hybr1d posted:I have a Cisco ASA in my office, and even light usage of legitimate torrents kills the internet connection about once a week. Can anyone point me in the right direction for a setting to adjust to keep this from happening? I´d say memory leak, upgrade to 8.0(4).
|
# ¿ Jan 5, 2009 18:33 |
|
Powercrazy posted:How to stop ARP Spam? So I get home from work and my internet is going slow as poo poo. I assume it is my roomate bit torrenting so I log into my Cisco851w just to look at the traffic. But then I notice something odd: Don´t. You wont gain any measurable performance from it and it will break your connectivity with people in the same subnet as you (which tends to be quite big with cable).
|
# ¿ Feb 4, 2009 11:24 |
|
InferiorWang posted:Using a WLAN 4400 series controller, what's the difference between using a GUEST-LAN WLAN and a normal WLAN? I'm under the impression that for the GUEST-LAN I'll still have to build the ACLs for the VLAN just as I would with a normal WLAN? Is it just a matter of having the web authentication presented? Guest LAN is for making a cable based webauth.
|
# ¿ Feb 13, 2009 22:16 |
|
gwon posted:I started another thread and got pointed here Most WAAS config is done from the central manager. So a installation basically is plug it in (either inline or with 1 leg for WCCP or layer2 redirect). And run the setup script which sets ip-addresses and tells it to contact the central manager. Basically the box does compression and caching of data going through it. So it it detects data patterns it has seen before it can drop sending it out over the WAN and have the WAAS on the other end of the WAN spit it out to the LAN side. It also acts as a transparent proxy for some protocols reducing problems with high RTT. (mapi, cifs, nfs, http/https) Furthermore the new WAVE applicances also can do some virtualization and run Windows2008 on it, making it possible to have a virtualized print-server, AD, dhcp etc server on the remote site) ior fucked around with this message at 20:20 on Feb 26, 2009 |
# ¿ Feb 26, 2009 20:10 |
|
FatCow posted:Just had an interesting problem. I wasn't getting ARP responses on a few devices, switch had entries for the IPs and after clearing entries they would re-populate so ARP seemed to be good from the switch to the device. Are you using DFCs on the linecards?
|
# ¿ Feb 27, 2009 15:18 |
|
Syano posted:What sort of performance can I expect from an 1130ag radio? What I mean is for instance what is the maximum number of connected clients and what sort of bandwidth can this thing chug out with multiple clients connected? I have a vendor that is trying to steer me away from running multiple VLANs on a set of these things because of the potential for it to impact business application performance. I am trying to figure out if he is just trying to sell me more stuff or if his fear holds water. We try to limit the number if concurrent users to max 20 but there really is no limit. However they all share the available bandwidth in the (im assuming) 2.4ghz band which will give you about 22Mbit/s per non-overlapping channel. In the 5ghz band there are lots and lots of channels, but the same applies there.
|
# ¿ Jul 7, 2009 07:48 |
|
Weissbier posted:Is there any way to find these devices without ssh'ing into every switch to find that hostname? Use the 'detail' parameter to sh cdp nei. code:
|
# ¿ Aug 22, 2009 14:58 |
|
brent78 posted:
Make sure RTS/CTS is turned off on your serialport. This tends to make it 'read only'.
|
# ¿ Aug 22, 2009 14:59 |
|
inignot posted:I can't claim credit for this, as I've only been at this place a year: Actually I just upgraded a similar box, it has 9 years of uptime when i shut it down. A drat miracle all the linecards booted back up.
|
# ¿ Aug 22, 2009 15:01 |
|
Harry Totterbottom posted:Trying to decide between a Cataalyst 3750G-48TS and a 4948(which is cheaper than the 3750) are there any major differences? Just glancing through the CDW networking readout It says that ACL's are supported on the 3750, but on the 4948 model I'm looking at it doesn't have them listed. These will be our core switches / routers in the DC so I want to make sure that we have a pretty wide feature set available. The 4948 is a more capable switch in every way (except for stacking ). Yes ACLs are supported on it.
|
# ¿ Sep 11, 2009 17:18 |
|
Harry Totterbottom posted:Awesome, we're a small enough shop that we aren't even looking at stacking for that location. Thanks! On another note, if you want to save money, go for a 3560 instead, it is the same as a 3750 but without stacking.
|
# ¿ Sep 11, 2009 18:28 |
|
Slickdrac posted:
Try: int gig0/0 keepalive 10
|
# ¿ Dec 15, 2009 14:19 |
|
Richard Noggin posted:Is there any way to change the command prompt in IOS? RANCID doesn't like prompts that end with # instead of > I hope you are aware that the # means you are in privileged mode and the > means you are not. Kinda doubt you can change it.
|
# ¿ Jan 28, 2010 20:53 |
|
Richard Noggin posted:Yup, I'm aware. Let me rephrase the question: does anyone experienced with RANCID know how to make the parser correctly interpret the 3560's priv mode prompt of # correctly? From the RANCID FAQ: Give your rancid user a privilege of 1 instead of 15 (in ios) and it will be placed in unprivileged mode at login hence giving you a > prompt.
|
# ¿ Jan 28, 2010 21:09 |
|
Look what I just got in my LAB, 1 x OC768 (40G) and 2 x 8 10GbE. Going to be used at 'The Gathering' terminating the 30Gb/s internet connection
|
# ¿ Mar 13, 2010 00:10 |
|
Xenomorph posted:What command would I use to see what MAC is on which interface? Is there such a command to help me find where this MAC is? code:
|
# ¿ May 13, 2010 20:27 |
|
Bardlebee posted:Oh ok, thanks for clearing that up. Will show xlate only work when its connected to the wire? show xlate is for pix / ASA, you want show ip nat trans
|
# ¿ Jun 28, 2010 18:25 |
|
Pudgygiant posted:Great guess, but no it's no shut on the config. Can't believe I didn't think of that though. Are you powering the AP via POE, if so, try swapping out the injector.
|
# ¿ Jul 25, 2010 11:51 |
|
mrbucket posted:I have an 871w running IOS 15.1, the advanced IP services bundle. No luck here, i had to bring home a 1252 instead.
|
# ¿ Jul 26, 2010 11:37 |
|
para posted:Has anyone received any new 4500's? We've been waiting months for the ones we ordered to be delivered but they keep saying there's a back order a mile long. Is anyone seeing these actually being delivered? I am waiting for one I ordered on the 13th of July, expected ship-date is the 8th of September. However I am happy to see that the status finally has changed to 'Building in Progress'.
|
# ¿ Aug 12, 2010 22:53 |
|
Tsaven Nava posted:I was putting a few ports into a VLAN on one of the 24-port Catalyst 2950 switches at work the other day, and I noticed that when I do "show vlan", it lists a total of 48 ports, even though it's a 24-port switch. Why? Could you show us that output? Sounds strange. Tsaven Nava posted:In the same vein, we have a mix of 24-port and 48-port 2950s, which each have 2x gigabit ports. Are these ports for uplink/trunking only, or can I plug a server into them? They are normal ports and can be used both for uplinking / trunking / servers.
|
# ¿ Aug 18, 2010 17:36 |
|
CrazyLittle posted:Catalyst 3560, 3650, 3750's are pretty kickass too, ya know... they just cost way too much brand new. Unfortunately the 3560/3750s suck in many scenarios because of their lack of buffers Disregarding that specific caveat they are pretty sweet. Edit; also they suck at policing. <rant> It blows to upgrade a customers network, going from 3550 to 3560 and get into trouble because the new shiny box does not perform as well as the old one. Solution? Replace them with 4948s, new caveat; no IPv6.. %"#%#" Cisco.</rant> Edit again; yes they are great switches, just beware of the caveats. I am actually running some 800Mbit/s of WCCP traffic through one of mine. No problem ior fucked around with this message at 23:37 on Aug 18, 2010 |
# ¿ Aug 18, 2010 23:28 |
|
|
# ¿ May 2, 2024 00:44 |
|
Jimmy Carter posted:Welp. Your config is missing the following; ip nat inside source list 1 interface FastEthernet4 overload Also the thing about mac-addresses. Try cloning your last used device.
|
# ¿ Aug 19, 2010 22:20 |