Hi all,
sorry for the late answer and not posting the sanitized config. The issue
was a crypto map on one ASA.
Thank you all for your replies.
On Tue, Sep 6, 2016 at 6:53 AM, Murat Kaipov <mkkai...@gmail.com> wrote:
> Hello, it looks like NAT rules issue.
>
>
> > 6 сент. 2
Hi guys,
I have a big problem in my setup and I don't know how to solve it plus it's
urgent :(
I have ASA1 and ASA2 and L2L IPSec tunnel. Everything working fine. Now, I
have vpn users that use l2tp over ipsec to dialin in ASA1. They tunnel all
traffic to ASA1. Everything is working fine, thay
| Phone: 914-460-4039
>> aim: matthewbhuff| Fax: 914-694-5669
>>
>>
>> > -Original Message-
>> > From: cisco-nsp [mailto:cisco-nsp-boun...@puck.nether.net] On Behalf Of
>> > Pavel Dimow
>> > Sent: Friday, February 26
Anyone? :)
On Thu, Feb 25, 2016 at 11:32 PM, Pavel Dimow <paveldi...@gmail.com> wrote:
> Hi,
>
> I have a very strange problem (well at least to me).
>
> I have a cisco 1921 which serves as PPTP server. On server I have two
> different ISP's connections, ISP1 and ISP2
Hi,
I have a very strange problem (well at least to me).
I have a cisco 1921 which serves as PPTP server. On server I have two
different ISP's connections, ISP1 and ISP2. I have a default route to ISP1
and default route to ISP2 with tracking and higher metric. I have
configured local policy
Hi Lukasz,
I have already contacted our local Cisco office, we will see what they have
to say.
Thank you for your help. :)
On Fri, Apr 25, 2014 at 11:22 PM, Łukasz Bromirski luk...@bromirski.netwrote:
Pavel,
On 25 Apr 2014, at 14:07, Pavel Dimow paveldi...@gmail.com wrote:
Hi Lukasz
Hi,
Does CGN on ASR 1001 refers to NAT44 only or it can be used for statefull
NAT64 also?
___
cisco-nsp mailing list cisco-nsp@puck.nether.net
https://puck.nether.net/mailman/listinfo/cisco-nsp
archive at http://puck.nether.net/pipermail/cisco-nsp/
license and have 50 NAT64 sessions or CGN is NAT44
sessions only?
On Fri, Apr 25, 2014 at 11:17 AM, Łukasz Bromirski luk...@bromirski.netwrote:
Pavel,
On 25 kwi 2014, at 10:43, Pavel Dimow paveldi...@gmail.com wrote:
Hi,
Does CGN on ASR 1001 refers to NAT44 only or it can be used
Yes, I want to configure our brand new nexus 5500 switch and surprise
surprise for almost a week now cisco doc i broken. I am the only one
experiencing this or not?
http://www.cisco.com/c/en/us/support/switches/nexus-5000-series-switches/products-installation-and-configuration-guides-list.html
Hello,
I have a trouble understanding the problem I have with mGRE on 7206VXR with
NPE-G1 on one side and Cisco ASR 1001 on another. The problem is random
packet loss for example:
7206 - ASR
Sending 1, 1300-byte ICMP Echos to 192.168.0.2, timeout is 2 seconds:
with the
provider should do it.
kind regards
Pshem
On 12 July 2013 07:49, Pavel Dimow paveldi...@gmail.com javascript:;
wrote:
Hi Phil,
the main problem is that I have 3560 at branch offices which I can not
change. The 3560 have a very poor GRE tunnel performance (when it acts as
endpoint). I have
I don't use any vpn service from provider and I have addresses from private
address space. I think I need a tunnel.
On Friday, July 12, 2013, Phil Mayers wrote:
On 12/07/13 14:13, Adam Greene wrote:
Why is the GRE performance so bad? Perhaps you need to adjust MTU ...
3560 is, I presume
to change 3560 but I want to be sure that
there is nothing else I can do with those boxes..
On Thu, Jul 11, 2013 at 11:15 AM, Phil Mayers p.may...@imperial.ac.ukwrote:
On 10/07/13 21:18, Pavel Dimow wrote:
Hi,
I have a a few branch offices and I want to connect them with central
site.
Now I have
Hi,
I have a a few branch offices and I want to connect them with central site.
Now I have a few problems. First at every branch I have the same provider
but it is very expensive to use any kind of their L2 or L3 MPLS services
hence I have only internet access. Also, at every branch we have cisco
Hi,
Does anyone use DPI solution in network? Some rumors say that Cisco is
going to abandon SCE and that DPI is not a way to go for carriers. Now I am
in position that I need to upgrade SCE to 10G
but I am wondering should I do that at all? What are you using in network
for DPI or do you need
.
--
*From:* Pavel Dimow paveldi...@gmail.com javascript:_e({}, 'cvml',
'paveldi...@gmail.com');
*To:* cisco-nsp@puck.nether.net javascript:_e({}, 'cvml',
'cisco-nsp@puck.nether.net'); cisco-nsp@puck.nether.netjavascript:_e({},
'cvml', 'cisco-nsp@puck.nether.net');
*Sent:* Tuesday, 4 June
.
--
*From:* Pavel Dimow paveldi...@gmail.com
*To:* Tony td_mi...@yahoo.com
*Cc:* cisco-nsp@puck.nether.net cisco-nsp@puck.nether.net
*Sent:* Tuesday, 4 June 2013 7:58 PM
*Subject:* Re: Combine two 2-wire DSL
Yes the circuit in question is SDSL. Is there any
Hi,
is it possible to combine two 2-wire DSL's into one 4-wire DSL using Cisco
4-wire DSL card on 1841?
___
cisco-nsp mailing list cisco-nsp@puck.nether.net
https://puck.nether.net/mailman/listinfo/cisco-nsp
archive at
multilink queue depth qos 255
Any thoughts on this? Any help/ideas are highly appriciated
On Sun, Jan 27, 2013 at 3:55 AM, Anton Kapela tkap...@gmail.com wrote:
On Sat, Jan 26, 2013 at 4:21 AM, Pavel Dimow paveldi...@gmail.com wrote:
Hi,
I have a strange trouble with MLPP with four SHDSL links
Hi,
I have a strange trouble with MLPP with four SHDSL links. The problem
is that a few seconds or shall I say a minute everything works fine,
then we suddenly experience huge latency ie from 14ms to 1000ms and
then everything back to normal and then again after a few sec to
minute everything is
Hello,
I am considering using Cisco 7200/7300 series with NPE-G2 as a PE
router. Now my question is there any limit about
number of rate-limit commands on subinterfaces? For example every
customer will be delivered to this PE in a separate VLAN
and I want to terminate ip on subinterface on ge0/1
Hello,
we have WLC in our corporate network as wireless solution and we use
certificates for client autentification (eap-tls). Now there are a few
colleagues with apple devices (iphone/ipad) and I can't find a way to
authenticate them as all other clients. I have tried to use iphone
configuration
Hello,
did anyone tested 2651XM l2tpv3 performance? I can't find a good Cisco
doc about this but to me
4-5Mbps looks as a very very bad result for this platform. Or I am
missing something?
___
cisco-nsp mailing list cisco-nsp@puck.nether.net
Hi,
I am trying to understand what does it mean when cisco says that we
need es+20 card for 7600 facing the core.
Does it mean that we must use 7600 as access switch in order to
provide VPLS to our customeers or we could use
for example 2960 as access with trunks to 7600?
I guess not, but ...
.
Lars Christensen
CCIE #20292
Den 21/01/2012 kl. 16.49 skrev Pavel Dimow:
Hi,
I am trying to understand what does it mean when cisco says that we
need es+20 card for 7600 facing the core.
Does it mean that we must use 7600 as access switch in order to
provide VPLS to our customeers
:48 AM, Mark Tinka mti...@globaltransit.net wrote:
On Saturday, May 21, 2011 05:32:24 AM Pavel Dimow wrote:
I'am thinking of using CAT6524 as access switches for our
pure l2vpn customers. I have started reading about rate
limiting capabilities of those switches but it I can't
find a way to do
Hello,
I'am thinking of using CAT6524 as access switches for our pure l2vpn
customers. I have started reading about rate limiting
capabilities of those switches but it I can't find a way to do a per
port or per vlan rate limit. With MQC I can limit the speed in
inbound but not in outbound
Is this possible at all? I ended in pretty ugly scenario (for a short
time period I hope) where I must pass VLAN through router (yes router
not L3 switch). The scenario is:
SW1-trunk-R1-trunk-R2-trunk-L3SWITCH
I don't have control over SW1 and R1, but I do know that I
Hi,
I just found out that 7600 does not support VPLS without correct
line cards. Now I'am trying to find a solution
how to xconnect SVI on 7600 (physical L3 int works just fine) in point-to-point.
I tried to use vfi in point-to-point configuration but without success
as I can't find on cisco.com
Hello,
I would like to know what you guys are using as FTTH access switches?
I guess Juniper and Cisco are a bit pricey considering per port cost,
so many ISPs are using cheap switches with
lots of (cheap again) optical sfp.
Any recommendations for ftth access sw? I think that we can also use
Hi Tarko,
I know for multicast router guard on Cisco ASR also, but no luck on
3560. It seams that I must switch to PIM
On Mon, Oct 25, 2010 at 8:35 PM, Tarko Tikan ta...@lanparty.ee wrote:
hey,
Forgot to say, it's Cisco 3560.
What you are looking for is called multicast router guard
Hi Roman,
Already tried, but with no success, because I am not sure what to
enter as mrouter port considering fact that in normal scenario mrouter
is the switch itself.
On Mon, Oct 25, 2010 at 8:51 PM, Roman A. Nozdrin drr...@ya.ru wrote:
Dear Pavel,
I have some strange situation (not that I
PM, Pavel Dimow paveldi...@gmail.com wrote:
Hi Roman,
Already tried, but with no success, because I am not sure what to
enter as mrouter port considering fact that in normal scenario mrouter
is the switch itself.
On Mon, Oct 25, 2010 at 8:51 PM, Roman A. Nozdrin drr...@ya.ru wrote:
Dear Pavel
Forgot to say, it's Cisco 3560.
On Mon, Oct 25, 2010 at 3:17 PM, Pavel Dimow paveldi...@gmail.com wrote:
Hello,
I have some strange situation (not that I really understand how it
works), but I want to prevent device connected to a port to become
IGMP querier because
it has a lower ip
the
querier?
Dale
Thus spake Pavel Dimow (paveldi...@gmail.com) on Mon, Oct 25, 2010 at
03:17:35PM +0200:
Hello,
I have some strange situation (not that I really understand how it
works), but I want to prevent device connected to a port to become
IGMP querier because
it has a lower ip
Hello,
I am planning VSS installation with one ACE and FWSM per physical
chassis. As FWSM is behind the ACE I have
no problem using RHI, but I was wondering is RHI supported in VSS
scenario or not? I found some information about
FWSM not supporting RHI, but in my setup I think I should not worry
Hi,
is there any recommended/best practices for module placement in
CAT6509 chassis? For example, FWSM in slot 3, ACE in slot 2 etc etc..
___
cisco-nsp mailing list cisco-nsp@puck.nether.net
https://puck.nether.net/mailman/listinfo/cisco-nsp
archive
Hi,
Am I missing something or Nexus 5000 is unable to do policing on ethernet ports?
As far as I can see, the only similar option is bandwidth command
(under class type)
but it will not do policing, instead it will guarantee the given
bandwidth, (which is ok
if you want to share the available bw
Hello,
we are planing migration from C6500 to Nexus 5000 (and FEX 2148T). I
was wondering if someone
have experience that is willing to share especially in QoS context.
Any gotchas, unsupported features
or any kind of staff that would be useful in migration (features that
are worth to try (like
, 2010 17:13
To: Pavel Dimow
Cc: cisco-nsp@puck.nether.net
Subject: Re: [c-nsp] portchannel load balancing between L3 switch and
router
Re Pavel,
paveldi...@gmail.com (Pavel Dimow) wrote:
port-channel load-balancing vlan-manual
and I understand that I can't have one vlan loadbalanced across
interfaces... I can provide more details if
relevant.
Arie
-Original Message-
From: cisco-nsp-boun...@puck.nether.net
[mailto:cisco-nsp-boun...@puck.nether.net] On Behalf Of Pavel Dimow
Sent: Wednesday, April 07, 2010 18:32
To: cisco-nsp@puck.nether.net
Subject: Re: [c-nsp] portchannel
Hello,
I am trying to find a best way to perform portchannel load balancing
between ASR and 7600.
As far as I can see, ASR only has an option for manual per vlan load
balancing ie
port-channel load-balancing vlan-manual
and I understand that I can't have one vlan loadbalanced across two
Well... what to say except..
Thank you :)
On Tue, Apr 6, 2010 at 1:41 PM, Oliver Boehmer (oboehmer)
oboeh...@cisco.com wrote:
I am trying to find a best way to perform portchannel load balancing
between ASR and 7600.
As far as I can see, ASR only has an option for manual per vlan load
Hi,
as I am not native english speaker I don't know how to name my problem
but I will try to give as much details as possible.
Here it is, I have Cisco 7600 wich is core switch, and it have one
uplink to our edge router (it is SVI interface). Now, I would like to
insert
a transparent cache
Hello all,
thank you for your suggestions, but as this is transparent device (ie
it acts just like a wire) wccp is not and option. Beside that, it can
cache bittorrent traffic which I belive is not wccp friendly :)
On Wed, Feb 24, 2010 at 11:19 PM, Ryan West rw...@zyedge.com wrote:
Pavel,
Is there any way to put tunnel interface (not dot1qtunnel) to vlan on cat 7600?
Or anyother way to force traffic from tunnel interface to pass via
specific port on switch?
___
cisco-nsp mailing list cisco-nsp@puck.nether.net
46 matches
Mail list logo
