Search results for query: *

Dear all, do you experienced this: We have two C6509 in our back bone which have absolutely the same hardware config. The IOS level is: "Cisco IOS Software, s72033_rp Software (s72033_rp-ADVIPSERVICESK9_WAN-M), Versio n 12.2(33)SXH2, RELEASE SOFTWARE (fc1) Technical Support...

Hi TheLad, Yes I agree with you about "Negociation" problem: indeed if 2 devices are on "negociate" mode, then if the negociation fail then one of the device will drop to the lowest speed (10 Mb). But the problem I 'm experiencing here is that everything work well until a week ago, and nothing...

Dear all, thanks for your feedback. Here are some deteils: 1. we use switch on each floor (layer 2) with uplink gigabit to core switch (layer3)where reside the servfarm (all servers) 2. Each floor : only PCs XT. Cabling system is systemix gigabit. (equivalent to Cat5e) 3. The symptoms are as...

Dear all, does anybody experience the "High rate of collisions on 100-megabit networks". Some NIC on the same physical segment resend the packet too quickly (?) Thanks for any feedback

Following is my suggestion: 1. Allow ICMP in your FW for at least on host 2. The internal routing should have default route to your FW 3. Your FW should have default route to the Internet router. 4. Then the internet router should route all packets to the external interface (leased line, etc...

Have you perform thoses steps? 1. External User databases 2. COnfigure external database with Windows 3. Authorize user to dial-in in Domain COntroller?

I think that C2950 is a layer-2 Switch: all hosts from all vlanx can communicate together. (You need to test this point). If you create vlanx, FW will have ip / MAC address and Vip will have MAC address too. I dont think you need trunking if you dont have uplink. Normally, we use other switch...

Hi Tomii, The vlanX you create is the gateway to your FWs. one vlanX is enough. All unknown destinations requested by hosts in vlan1,2,3, etc... will be directed to virtual IP (belonging to vlanX) and then will be routed by the FWs to Internet or somewhere else. Hope this help.

Following, I tried to give a rough idea of what you need to do: 1. create a new vlanX , assign port to this vlanX. 2. Connect that port to FW interface that you have create in the same range than vlanx. FW1 will have IP1 and FW2 will have IP2 address. 3. Create Virtual IP (Vip/vrrp) for both...

If you succeed to reach from the CLient VPN to hosts on your Lan, so everything works fine. I don't understand your term "rest of the Network", What is between Lan and rest of the network? Lequang

Hi there, we experience the vpn like this: Client-> FWexternal -> C3005VPN box -> FW intern ->ACS 1. C3005 is a AAA/Radius Client of ACS 2. Define groups and users on ACS. 3. Define IP pools on ACS for each group You can define fixed IP for a particular user. In your case, you FW must be a...

Hi Stukked, In fact this is the context: We allow users to connect remotely to our network. But the policy states that from home they cannot use WiFi, or their private Lan (Split-tunneling)with their PC or portable to connect to our network. So my questions are: 1. Do we have a mean to detect...

HI all, here are the issues: As our organization autorize laptop and remote wrkstation to access remotely (dialin, via VPN/IPSec, .... 1. How can we know if user at home is using Wi-fi or not. 2. Is there anyway to disable wifi and modem at the configuration step? Thanks Lequang

you might have 3750 24 10/100/1000 ports for you servers + uplink gigabit to 2950 10/100 for users

Where is located your RAS, on your internal lan or outside of your Firewall? 1. Check routing for RAS session 2. Check rules in the firewall to view all network the workstation should be in the domain and user also

That's theory. But when negociation is not good then speed will goes down and network problems appears. Often negociate is ok when the devices belonng to the same brand. With 2 different brand , you have to be very carefull ... That what I just want to tell.

DOn't set 'auto-negaciate'on host and Switch. If the negaciation fail you will drop down to 10mb and probably less than. So set 'auto detect' on PC.

Tha architecture should be : - one Vlan per floor (stack of C2950 for users) - one Vlan for serverfarm (in data center ) - Vlan 1 is Management Vlan for all switch - DNS, DHCP in serverfarm: one DHCP server + redundancy - DHCP scope should be defined for each Vlan (PC, Printer, ...) - IP helper...

Hi there, it just what we did when we rebuild our network with gigabit backbone. Each floor has a separate Vlan with 2 24-switch with to uplink to the core switch. Server are concentrated in data center on Servfarm Vlan. Be carefull when assigning priority and spanning-tree, and Multicast...

You might create a special Vlanxxx with range a.b.c.d / 32 and default route 0.0.0.0 to a.b.c.x which is the IP of your FW. This will help you the day you add a second FW for redundancy using vrrp, master /slave....