Cisco 2960 as L3

February 18th, 2017 Comments off

12.2(55)SE, 2960s are layer 3 switches

SwitchA(config)#sdm prefer lanbase-routing
Changes to the running SDM preferences have been stored, but cannot take effect until the next reload.
Use ‘show sdm prefer’ to see what SDM preference is currently active.
SwitchA(config)#^Z
SwitchA#reload
System configuration has been modified. Save? [yes/no]: y
Proceed with reload? [confirm]

for Verification

SwitchA#show sdm prefer
The current template is “lanbase-routing” template.
The selected template optimizes the resources in
the switch to support this level of features for
8 routed interfaces and 255 VLANs.
number of unicast mac addresses: 4K
number of IPv4 IGMP groups + multicast routes: 0.25K
number of IPv4 unicast routes: 4.25K
number of directly-connected IPv4 hosts: 4K
number of indirect IPv4 routes: 0.25K
number of IPv4 policy based routing aces: 0
number of IPv4/MAC qos aces: 0.125k
number of IPv4/MAC security aces: 0.375k

Categories: CISCO, IOS, Network, SWITCH Tags:

ASA CLI in FTDv

February 14th, 2017 Comments off

Accessing ASA CLI in Firepower Threat Defence

>system support diagnostic-cli

Last login: Sun Feb 12 12:05:21 2017 from ss50.sglab.info

Copyright 2004-2016, Cisco and/or its affiliates. All rights reserved.
Cisco is a registered trademark of Cisco Systems, Inc.
All other trademarks are property of their respective owners.

Cisco Fire Linux OS v6.1.0 (build 37)
Cisco Firepower Threat Defense for VMWare v6.1.0.2 (build 57)
>
> expert
admin@FTDv65:~$ sudo lina_cli

We trust you have received the usual lecture from the local System
Administrator. It usually boils down to these three things:

#1) Respect the privacy of others.
#2) Think before you type.
#3) With great power comes great responsibility.

Password:
Attaching to ASA console … Press ‘Ctrl+a then d’ to detach.
Type help or ‘?’ for a list of available commands.

firepower> en
Password:
firepower# sh ver

———————[ FTDv65 ]———————
Model : Cisco Firepower Threat Defense for VMWare (75) Version 6.1.0.2 (Build 57)
UUID : 998d3610-f032-11e6-832a-be758aa44ffe
Rules update version : 2016-03-28-001-vrt
VDB version : 279
—————————————————-

Cisco Adaptive Security Appliance Software Version 9.6(2)4

Compiled on Tue 08-Nov-16 22:03 PST by builders
System image file is “boot:/asa962-smp-k8.bin”
Config file at boot was “startup-config”

firepower up 12 hours 55 mins

Hardware: ASAv, 8192 MB RAM, CPU Xeon 5600 series 2666 MHz, 1 CPU (4 cores)
Model Id: ASAv30
Internal ATA Compact Flash, 50176MB
Slot 1: ATA Compact Flash, 50176MB
BIOS Flash Firmware Hub @ 0x0, 0KB
0: Int: Internal-Data0/0 : address is 0050.5699.da8f, irq 10
1: Ext: GigabitEthernet0/0 : address is 0050.5699.21ed, irq 5
2: Ext: GigabitEthernet0/1 : address is 0050.5699.cd05, irq 9
3: Ext: GigabitEthernet0/2 : address is 0050.5699.c24c, irq 11
4: Int: Internal-Control0/0 : address is 0000.0001.0001, irq 0
5: Int: Internal-Data0/0 : address is 0000.0000.0000, irq 0
6: Ext: Management0/0 : address is 0050.5699.da8f, irq 0
7: Int: Internal-Data0/1 : address is 0000.0000.0000, irq 0

Serial Number: 9ANMJK86HM3

Image type : Release
Key version : A

Configuration last modified by enable_1 at 14:12:54.969 UTC Tue Feb 14 2017
firepower#

Categories: ASA, CISCO, FirePower, Network Tags:

BROCADE ZONING USING THE CLI

February 11th, 2017 Comments off
Categories: Brocade, SAN Tags:

CheckPoint ClusterXL Multicast & Cisco Router / Switch

February 7th, 2017 Comments off
Categories: Failover, Network, R65, R75 Tags: ,

Adding disk space to /var/log in CP

December 29th, 2016 Comments off

> show volume logs
Logical volume (logs) size:18.00GB, free:17.33GB
Free space for future backup images: 5.84GB

>set volume logs
Set new size (GB) for logical volume.
Parameter: logical volume size <size>

Categories: Check Point, R75 Tags: , , ,

IPSec VPN ( ASA – SSG )

December 10th, 2016 Comments off

192.168.12.0/24-SSG-10.20.12.3 —– 10.20.14.61-ASA-192.168.14.0/24 Read more…

Categories: ASA, CISCO, SSG5, VPN Tags:

Guest CWA on vWLC8.x & ISE2.1

September 18th, 2016 Comments off
Categories: CISCO, ISE2.x, Others, SEC_v5.0, Security, Wireless, WLC8.x Tags:

Changing VMware ESXi host logging level

August 21st, 2016 Comments off

http://vmwaredepot.blogspot.sg/2012/06/changing-vmware-esxi-host-logging-level.html Read more…

Categories: 5.x, Esxi, Log, Monitoring, syslog, VMware Tags:

TraceRoute in Cisco ASA

June 8th, 2016 Comments off

http://www.islandearth.com/articles/2011/10/31/allowing-traceroute-through-a-cisco-asa-firewall-using-asdm.html Read more…

Categories: ASA, CISCO, Monitoring, Network, Others Tags:

WCCP with Bluecoat ProxySG and ASA

June 2nd, 2016 Comments off

ASA – 10.9.0.1 , ProxySG-10.9.109.169

issue at proxysg- config#return-to-sender inbound (disable|enable|overwrite-static-route)

http://bluecoat.force.com/knowledgebase/articles/Solution/WCCPReturntoSenderandCiscoASAFirewallRouters Read more…

Categories: ASA, Bluecoat ProxySG, CISCO, Network, WCCP Tags: