.
On Fri, May 21, 2021 at 3:15 PM Jerry Bacon wrote:
> I think the NAT might be the problem. Also you need to add the 192.168.4.1
> gateway.
>
> --
> Jerry Bacon
> StarTouch - Senior Network Engineer
> Sent from my iPhone
>
> > On May 21, 2021, at 11:30 AM, Scott Mi
Wondering if anyone has configured a 901 as a DHCP server. It's being used
in a multi-tenant location, other customers are static public /30 and work
fine, but we have a customer who wants us to do DHCP for them. So instead
of adding another box, I was trying to get the 901 to be the DHCP server.
I have multiple set up between a single ASR910 and various other ASR920's.
My config seems to work each time I turn up a new customer:
ASR920:
!
! Cisco IOS XE Software, Version 16.06.05a
!
l2 vfi xxx_Customer_VPLS manual
vpn id 3938
bridge-domain 3938
mtu 9000
neighbor xx.xx.xx.xx
Ya, gotta open it up. Take the top off and can't miss it.
On Fri, Dec 4, 2020, 8:10 PM Shawn L wrote:
> Where is the SD card? I’m guessing you need to open the chassis to get at
> it?
>
> On Fri, Dec 4, 2020 at 7:06 PM Scott Miller wrote:
>
> > This worked! I pulled
g the new filename
> to the one it's looking for. Long shot, but who knows, might work?
>
> On Thu, Dec 3, 2020 at 5:24 PM Scott Miller wrote:
>
>> Ya I tried that too, it still tries to find the wrong ios file and start's
>> its loop again. This one might be a brick.
&g
Long shot, but who knows, might work?
>
> On Thu, Dec 3, 2020 at 5:24 PM Scott Miller wrote:
>
>> Ya I tried that too, it still tries to find the wrong ios file and start's
>> its loop again. This one might be a brick.
>>
>> On Thu, Dec 3, 2020 at 5:15 PM Aaron wrote
>
> On Thursday, December 3, 2020, Aaron wrote:
>
>> Looks like you need to talk to TAC. The password recovery being disabled
>> is not your friend.
>>
>> https://community.cisco.com/t5/routing/asr-920-boot-fail/td-p/3834996
>>
>>
>> On Thursday, De
"boot
bootflash:asr920-universalk9_npe.16.06.05a.SPA.bin"
autoboot: boot failed, restarting...
On Thu, Dec 3, 2020 at 4:32 PM Scott Miller wrote:
> I have a ASR-920-12SZ-IM, which I inadvertently entered the wrong boot
> command in the config, saved the config and rebooted.
Do you have the control-plane set up?
tacacs source-interface Loopback100 vrf default
tacacs-server host 11.11.11.11 port 49
key 7
!
tacacs-server host 22.22.22.22 port 49
key 7
!
aaa accounting exec default start-stop group acs-tacacs
aaa
d find this
>
>
> It appears that NAT is only supported on the 12SZ-IM
>
> https://community.cisco.com/t5/routing/nat-on-cisco-asr920/td-p/3023788
>
> With that being said, I haven't tried it on any of the ASR920s that we've
> purchased
>
>
> On Wed, Oct 21, 2020 at 3:13 PM S
Hello all, I'm trying to configure NAT on an ASR920
running 16.06.05a [Everest]
GW-01#show license
Index 1 Feature: advancedmetroipaccess
Period left: Life time
License Type: Permanent
License State: Active, In Use
License Count: Non-Counted
License
On the 3850, can you do something like:
mpls ldp router-id Loopback0
would probably take bouncing all the ldp neighbors for it to take effect.
On Mon, Oct 12, 2020 at 12:38 PM Shawn L wrote:
> I have kind of a strange situation. Trying to figure out what to do moving
> forward, and not sure
Hello all, I’m looking for some recommendations. I have a customer, an
ISP, who is doing PPPoE for residential and “some” smaller business
accounts. PPPoE terminated on an ASR9010, DaloRadius for authentication
and IP assignments. DaloRadius is configured for static IP per customer.
All that is
atively you could use 'server-private x.x.x.x auth-port Y acct-port
> Z' in the RADIUS server group, this will specify the server for just the
> group you are using and not require it to be in the global config as well.
>
> Regards,
> Tom
> -Original Message-
> From: cisco-n
Hello all. We have an ASR9010 we're using as a PE router, and we'd like to
migrate our PPPoE off of an ASR1002x onto the 9010. Reading the
documentation here:
Have you tried adding peering rt rd to the default vrf, and vice versa?
On Fri, Jan 3, 2020, 7:37 AM Bryan Holloway wrote:
> I've been attempting to lab up an ASR9001 running 5.3.4 for a PoC
> scenario of routing between two internal VRFs: "default" and "peering".
> You can probably guess the
We just went through the same over the course of the last 2 years.
Replaced our 4G/8G's with 440's or 880's (depending on box load). 440's
work great, we have them in both PE's and ASBR's. We run pretty much the
full gamut of services. We even accidentally upgraded a PE with 440's to
6.5.3
The 920 would be a rock star for me if they could be used as a BRAS.
On Sun, Dec 15, 2019, 8:57 AM Brian Knight wrote:
> We’re about to get a few of these boxes in our shop. One limitation of
> these units is no modular PSUs, and the AC model is limited to one power
> input. (The DC model, the
Doesn't necessarily need to be the loopback, but whatever IP is configured
as the MPLS LDP ROUTER-ID.
It's just that most of us use the loopback for the MPLS LDP ROUTER-ID.
On Thu, Nov 7, 2019 at 2:50 PM Mark Tinka wrote:
>
>
> On 7/Nov/19 18:37, Shawn L wrote:
> > A-ha. Gave both routers
I'm doing this now between ASR920's, works fine.
Here's an example of what I'm doing:
ASR-920-1
interface GigabitEthernet0/0/22
description xx
mtu 9000
no ip address
load-interval 30
carrier-delay msec 0
negotiation auto
!
service instance 3936 ethernet
description
Maybe you don't have a license for it? Check your licenses:
ASR920#show license
Index 1 Feature: advancedmetroipaccess
Period left: Life time
License Type: Permanent
License State: Active, In Use
License Count: Non-Counted
License Priority: Medium
Index 2
Do you know what version you're running?
I have dozens of ASR920's, and a hand full of ME3600's doing MPLS just fine
for years.
ASR9201#show run | i mpls
mpls label protocol ldp
no mpls ip propagate-ttl
mpls ldp nsr
mpls ldp explicit-null
mpls ldp graceful-restart
mpls traffic-eng tunnels
mpls
We're using IS-IS Wide all over, mostly ASR9K's, NCS's and 920's, but no
ASR 1000's. Working well, starting to implement segment-routing.
On Fri, Jul 6, 2018 at 8:50 AM, Alex K. wrote:
> Hello all,
>
> We're about to get MTR for IS-IS on, on Cisco ASR 1000 gear (IOS XE 3.x.x
> train). Any
Just a quick poll question. I've recently acquired a network with a bunch
of PPPoE Business and Residential customers. Anyone still using PPPoE for
business customers? I'm opting to convert all the business customers to a
/30 P2P for ease of management/troubleshooting/etc ... Thoughts?
- 3825 Fe0/0/0 192.168.11.2 (vrf)
So the router is connected to the 2960 switch via it's gig port to port 48
trunk, and the WIC card fe0/0/0 to gi1/0/1 which is only vlan 100
Both are set up the same.
On Tue, Jun 19, 2018 at 1:48 PM, Scott Miller wrote:
> I'm trying to come up with a con
I'm trying to come up with a config for have both MPLS (within a vrf) and
DIA on the same router,. I have what I thought would work all lab'd up,
but it's not all the way there and i'm not sure what i'm missing, or if it
will even work this way.
All Cisco equipment: (configs attached)
p4500 if applicable?
>
>
>
>
>
> From: Emille Blanc <emi...@abccommunications.com>
> To: Scott Miller <sc...@ip-routing.net>
> Cc: cisco-nsp <cisco-nsp@puck.nether.net>
> Sent: Tuesday, May 1, 2018 10:51 AM
> Subject: Re: [c-nsp] VPN tunnel between two C
gt; From: Emille Blanc <emi...@abccommunications.com>
> To: Scott Miller <sc...@ip-routing.net>
> Cc: cisco-nsp <cisco-nsp@puck.nether.net>
> Sent: Tuesday, May 1, 2018 10:51 AM
> Subject: Re: [c-nsp] VPN tunnel between two Cisco 3825's
>
>
>
> Forgive the obv
n
> my humble opinion, you can safely put it aside, till VPN reached so-called
> QM_IDLE state.
>
> Alex.
>
>
> בתאריך יום ג׳, 1 במאי 2018, 19:02, מאת Scott Miller <sc...@ip-routing.net
> >:
>
>> I'm trying to create a VPN on two Cisco 3825's, on the same ISP in
I'm trying to create a VPN on two Cisco 3825's, on the same ISP in order to
have access to eachother's network.
On each side, I have them built as follows:
Site WTC Inside network
192.168.1.0/24
192.168.2.0/24
Site RPA Inside network
192.168.3.0/24
192.168.4.0/24
WTC:
crypto isakmp policy 11
l Message-
> From: cisco-nsp [mailto:cisco-nsp-boun...@puck.nether.net] On Behalf Of
> Scott Miller
> Sent: Saturday, March 3, 2018 12:47 AM
> To: cisco-nsp@puck.nether.net
> Subject: [c-nsp] SSH through ASA to switch inside
>
> This message originates from outside
Good day all, not sure if this is the right list for a question such as
this, but my google searching has hit a dead end.
What I'm try to accomplish is ssh from the outside world, through an ASA,
to a switch for remote access to the switch for maintenance and such
SSH is enable don the switch.
Does anyone know if the ASR 901 supports net-flow? I can't find any
documentation on it as of yet (only been searching about 30 min or so). I
did read a couple posts in odd-ball places stating it's not supported on
the 901. Can anyone confirm this?
Thanks,
Scott
Does the edge have the appropriate service policy in an outbound direction
to you applied?
What is the CPE?
On most CPE's, I prefer to apply the outbound service policy to the
physical interface - it acts like a catch-all for all outgoing traffic.
(personal preference I guess)
You can verify
I use a policy-map that looks like this, and works great:
policy-map eox_10_mb_in_TEST
class class-default
service-policy Child_UNI_Ingress_TEST -really not needed except for QoS
shape average 10 mbps
!
end-policy-map
!
policy-map eox_10_mb_out_TEST
class class-default
service-policy
Micro-bursting?
Run a real-time bandwidth monitor on the interface, polling every second.
SolarWinds has a good Free one I use:
http://www.solarwinds.com/products/freetools/network_analyzer_bandwidth_monitoring_bundle.aspx
Scott
On Mon, Mar 16, 2015 at 2:31 PM, Aaron aar...@gvtc.com wrote:
It will be enabled for all interfaces - but only actively advertising the
10.10.10.0/30 network. Passive interfaces accept routing updates, but do
not send them (if explicitly configured and included in the network
command).
I haven't tried OSPF on a per-interface other than an IOS-XR and the
I use one of these - they work great:
http://www.iogear.com/product/GUC232A/
On Mon, Mar 2, 2015 at 9:21 AM, Matthew Huff mh...@ox.com wrote:
Since Newer PC laptops and all Mac Laptops no longer have a serial port,
what are people using to connect to Cisco console ports from laptops? Does
Try to increase the amount of memory allocated to the VBox XR. I had the
same error a while back, the bumped it up to 2gig and away it went.
Scott
On Wed, Feb 18, 2015 at 8:50 AM, Aaron aar...@gvtc.com wrote:
Harold, et al, I have XRv running nicely on a laptop Windows 7. I imported
XRv
disregard - I thought I read IOS-XR - yours is IOS-XE - it can be done the
way you suggest.
On Tue, Jan 13, 2015 at 9:19 PM, Scott Miller fordl...@gmail.com wrote:
The proper steps for upgrading an IOS-XR are the following:
1. install upgrade
2. install add
3. install activate
4
The proper steps for upgrading an IOS-XR are the following:
1. install upgrade
2. install add
3. install activate
4. install commit
5. install deactivate
6. install remove
You can not simply boot system flash bootflash:NAME-OF-NEW-RELEASE
In my setup, each ASA has a different IP. When the failover becomes
active, it assumes the IP of the active unit, and when the primary comes
back online, it assumes the IP of the failover unit. The documentation for
this setup can also be found here:
://puck.nether.net/mailman/listinfo/cisco-nsp
archive at http://puck.nether.net/pipermail/cisco-nsp/
--
Scott Miller
___
cisco-nsp mailing list cisco-nsp@puck.nether.net
https://puck.nether.net/mailman/listinfo/cisco-nsp
archive at http://puck.nether.net
show inventory
or
show inventory raw
On Thu, Aug 14, 2014 at 6:02 PM, CiscoNSP List cisconsp_l...@hotmail.com
wrote:
Hi Everyone,
Have some remote 7200's with Single mode ATM cards, and need to purchase
some spares
I *think* the part number is PA-A3-OC3SMI= - Is there Any command I can
When you do a show bundle-ether 2 does the output say both members are in
an active state?
RP/0/RSP0/CPU0:IOS-XR-2#show int bundle-ether 2
..
..
No. of members in this bundle: 2
GigabitEthernet0/0/0/1 Full-duplex 1000Mb/s Active
GigabitEthernet0/1/0/1 Full-duplex
45 matches
Mail list logo