|
I am totally new to Cisco gear, but I managed to pick up a brand new 7912G for £28, looking at this guide: http://www.voip-info.org/wiki/view/Cisco+7905%252F7912+IP+Phones It says I need a service contact to be able to download the latest firmware for it. Where can I buy these service contracts from, and what's the part number I'm after? Cisco's CCO site is less than helpful.
|
# ¿ Apr 18, 2007 14:00 |
|
|
# ¿ May 2, 2024 06:40 |
|
Here's hopefully a simple problem. I've recently bought an 867VAE for a remote site that has ADSL and an old router that is dieing slowly, and they wanted something a little more robust. I know nothing about IOS and figured that CP Express / Configuration Professional would sort the basic configuration out for me, but they seem to be completely useless. This is the config I'm running at the moment, built with Configuration Professional 2.6. code:
I'm aware that I should probably be using the CLI and not any of the terrible GUI tools, and it's my intention to learn and get my employer to put me through a CCNA course, but for now I just need this thing working.
|
# ¿ Feb 20, 2013 18:50 |
|
I think that's left over from me testing it at my desk using GE1 as the WAN, the WAN now is/should be the ADSL modem (PPPoA).
|
# ¿ Feb 20, 2013 19:13 |
|
lol internet. posted:I know this is a Cisco thread but I didn't want to create a new thread for this question and since Cisco bought out Meraki, I figured I'd ask here. You need the license for it to be usable. I've had some Meraki kit, the MX60 arrived with a dead port and it took a while to convince the support guy I wasn't an idiot and to swap it. Then an MR16 died and it took two weeks to get the replacement shipped. The management is nice and it's really easy, but the quality control of the products and the support sucks poo poo.
|
# ¿ Mar 2, 2013 17:55 |
|
Would the 867VAE not do what you want?
|
# ¿ May 6, 2013 00:43 |
|
NetExtender is the Sonicwall SSL VPN solution, and it's pretty bad.
|
# ¿ Dec 5, 2014 23:14 |
|
http://msdn.microsoft.com/en-us/library/azure/dn133793.aspx
|
# ¿ Dec 22, 2014 18:54 |
|
Look very carefully at the throughput figures. The Netgear stuff is a completely different class and if you had a reason to purchase 5515-X's there is nothing in the Netgear range that won't be slower than your internet connection once you turn up the security features. CLIs for networking kit is nearly all IOS-esque, at least as far as switching goes. Thanks Ants fucked around with this message at 20:29 on Dec 22, 2014 |
# ¿ Dec 22, 2014 20:25 |
|
I think you'd be better off sticking with the ASAs and pushing for some training rather than chucking them out and buying something worse, it will serve you better for the future. The 5515-X supports failover, so if you have a pair then they might already be set up like that.
|
# ¿ Dec 23, 2014 01:17 |
|
DHCP assigns the search suffixes for you. For the reasons you're finding I massively prefer VPNs that come with a client because then there's something at the other end to configure the endpoint, and you can do split tunnelling without having to manually add routes. But yes, if you're doing DHCP over the VPN then that should be able to push a suffix for you, as well as the DNS servers.
|
# ¿ Jan 15, 2015 22:30 |
|
You can have one primary suffix and then a list of others. I think it's option 119 or something.
|
# ¿ Jan 16, 2015 00:29 |
|
MTU mismatch?
|
# ¿ Feb 9, 2015 22:41 |
|
cheese-cube posted:Are there any other options? Send someone else to do it?
|
# ¿ Feb 13, 2015 21:35 |
|
Tremblay posted:The number of cases that come in are staggering, and the range from mundane, to holy poo poo wtf is happening is pretty wide too. I think I one point I was working 100 cases simultaneously. There was another guy on my team that was up around 140.
|
# ¿ Feb 16, 2015 21:08 |
|
If your switches are crashing then they are broken or are running a buggy firmware. The fix for either of those problems is not a power strip to reset them. Edit: That came across a bit harsh. You should definitely have monitoring in place so you know when poo poo fucks up, but having stuff in place so you know when things crash isn't a substitute for having an environment that doesn't randomly fall over. Thanks Ants fucked around with this message at 18:32 on May 28, 2015 |
# ¿ May 28, 2015 18:26 |
|
This http://www.hp.com/rnd/support/manuals/pdf/release_06628_07110/Bk2_Ch5_STP.pdf seems to suggest they use 0-65535 as well, but doesn't mention the multiples. What does the running config show as the spanning tree priority? If you don't get an error typing in "spanning-tree priority 11" then I guess it's rounding somewhere. Come to think of it, surely if these switches are stacked then the stack is the root bridge? STP confuses me.
|
# ¿ May 28, 2015 20:57 |
|
Nice firewall
|
# ¿ Jun 4, 2015 20:01 |
|
If you want that then you deploy Aironet or not-Cisco. Aerohive strike a decent balance - cloud managed but the APs don't require the cloud to be available. If you stop paying your bills then the APs chug on as usual, and you can configure them through SSH if you really want to.
|
# ¿ Jun 9, 2015 20:24 |
|
Are the firewalls still horrific to configure rules on? Last I checked you couldn't do port translation in a 1:1 NAT scenario, and there was no concept of service groups.
|
# ¿ Jun 11, 2015 20:24 |
|
Throw the Netgears away before they send you crazy.
|
# ¿ Jun 15, 2015 18:24 |
|
I just had a Netgear bonfire with some switches that randomly wouldn't pass broadcast traffic and kept dropping packets and shutting ports down at random. gently caress those things.
|
# ¿ Jun 15, 2015 20:06 |
|
Do you find the performance of the VPNs over "the Internet" and contended links is acceptable in terms of latency/jitter etc? Or are your FTTC lines generally from the same providers as the other circuits so you don't have to deal with peering congestion?
|
# ¿ Jul 13, 2015 20:56 |
|
Normally the point of a demarc is that your service provider can monitor it to be able to manage the circuit effectively. An unmanaged one being supplied by yourself sort of defeats the purpose of it.
|
# ¿ Jul 23, 2015 22:05 |
|
That's given to you by the service provider though, and they get to decide what is their problem and what is yours. Whether this is an NTE or just a dumb socket on a wall. Are you a service provider looking for equipment to deploy or something?
|
# ¿ Jul 23, 2015 22:34 |
|
Unless it's a really old CGA monitor
|
# ¿ Aug 5, 2015 08:01 |
|
Because it's a website maintained by Cisco would be my guess
|
# ¿ Aug 26, 2015 23:37 |
|
SFP+ direct attach confuses me. If you're connecting an Intel NIC to a Cisco switch then do you have to use Cisco cables or what? How about if you need to connect two different brands of switches together? Just use anything you want and disable the compatibility checks?
|
# ¿ Aug 26, 2015 23:56 |
|
Are you sure the Windows (I assume) DHCP server is bound to the new adapter? You might also be performing DHCP snooping, so look at that.
|
# ¿ Sep 12, 2015 19:57 |
|
You will also need to add a default route pointing at your router IP/virtual IP if you're running HSRP or whatever. And update your DHCP pools to use this address for the gateway.
|
# ¿ Sep 17, 2015 00:26 |
|
http://www.cisco.com/c/en/us/td/docs/switches/lan/catalyst6500/ios/15-1SY/release_notes.html#pgfId-2560852
|
# ¿ Sep 22, 2015 22:47 |
|
I have no real issues with ISP handing off with a port set manually, but tell me what you set it to in your circuit documentation! I've even had issues where I've been told to use 100/Full and it turns out their documentation was out of date and autonegotiate was the way to go. Come on guys, this is important. Incidentally, I'm quite new to all this (going through my CCNA at the moment) - are the console messages about duplex mismatch a feature of CDP, or does Cisco stuff use some other voodoo to work out that you might have an issue?
|
# ¿ Sep 23, 2015 22:51 |
|
show firewall Just by itself?
|
# ¿ Sep 25, 2015 00:19 |
|
Why do you want layer 3 switches for running two VLANs across a couple of switches? It doesn't sound like there's much requiring routing between the voice and data VLAN so it's fine to let the ASA do that. As for models, I see a lot of 2960-X being used.
|
# ¿ Sep 25, 2015 21:32 |
|
It could be as complicated as a public IP address in a /31 subnet and then another subnet of routable IP addresses to use on the inside interface to sit in front of your firewall, but it's probably 30 minutes work including flashing an IOS image if required. Just make sure that whatever you buy can cope with 100Mbps throughput at Internet-typical packets (I think 512 bytes are used as an average to turn PPS into Mbps numbers). Normal suggestions if you want to take more of a hobbyist approach are Mikrotik as stated already, or an Ubiquiti EdgeRouter. I would expect handoff on copper Ethernet from a piece of NTE equipment.
|
# ¿ Sep 28, 2015 21:33 |
|
Martytoof posted:I've got an ASA at work that I've got set up behind a NAT. I've got a Fortigate at home that I have set up using a dynamic DNS name. Can you set the far end IP to 0.0.0.0 and use something other than the IP address as the IKE ID?
|
# ¿ Sep 29, 2015 20:16 |
|
Would running a virtual router on a cloud provider and pointing your work ASA and home Fortigate at that be an option?
|
# ¿ Sep 30, 2015 21:17 |
|
I'm intrigued into what you're doing where you can set up an ASA to tunnel back out to your home with no issues from corporate, but running a VPN client on your PC and cracking open an RDP session isn't an option.
|
# ¿ Sep 30, 2015 22:49 |
|
Are you sure you aren't over-thinking this if it's just for a home network? Is is going to cause you problems if your switches are blowing warm air at the front of your rack? Could you just open the switches up and flip the fans around?
|
# ¿ Oct 11, 2015 19:31 |
|
Did I dream something about the Sourcefire and ASDM stuff being rolled into a new web UI later this year?
|
# ¿ Oct 19, 2015 22:54 |
|
|
# ¿ May 2, 2024 06:40 |
|
psydude posted:2016. Cool. Do you have any idea what I should be throwing into Google to keep up-to-date with this? I've failed miserably so far.
|
# ¿ Oct 19, 2015 23:33 |