Cisco ISA 500 Series - Intervlan routing via 801.2q (Router on a stick)

Similar Messages

• Connecting two cisco ESW 500 series switches.

  Hi Experts,
  I have a basic knowledge of network and need some help.
  I have two cisco ESW 500 series switches and i want to connect them together.
  Q1 # Which type of cable i should use to connect these two switches CrossOver or fiber...What is the advantage of using Fiber over CrossOver. ?
  Q2 # What are the marked ports in the image used for...???

  tech spec,
  Traditionally you would use crossover to connect switches. Most modern network devices have Auto-MDIX which allows the device to connect using either crossover or straight through.
  The ports on the right can be used for uplink or as regular network ports. On the 10/100 versions the ports on the right are usually Gigabit, thus making them more suitable for uplink to another switch, etc.
  Please mark this thread as answered or reply if you have any additional questions.
  - Marty

• Cisco 4000 & 3000 series ip route & ip default gateway

  Dear all ;
  I have Enterprise Network Contain :
  - Foundry Big Iron work on layer 3 , and Combination of 4000 and 3000 and 2000 cisco switches work on layer 2;
  management network for the switches is 192.168.100.0
  Foundry Big Iron is 192.168.100.1
  i use ip default-gateway 192.168.100.1 on all cisco switches.
  all other subnets route through the foundry.
  but when i ping from any subnet (192.168.15.0) to any 3000 or 2000 switches series it replay and when i ping to 4000 series it don't replay.
  when i use default route command on 4000 series it replay.
  i need some explanation
  Kind Regards

  In the original post it describes the Cisco switches as operating as layer 2 switches and I assume that in terms of how they are configured to forward traffic all the Cisco switches including the 4000 are configured only for layer 2 forwarding. But with IP routing enabled (as seems to have been the case on the 4000) the behavior of the switch becomes a bit different. In particular is the difference in how you identify the default route. For a switch that is layer 2 only you use the default-gateway command (which apparently worked fine for the 2000 and 3000 switches). But when you enable IP routing then the switch does not use the default-gateway to learn its default route and would look for some other mechanism to learn its default route. I am assuming that there was not any other mechanism and so the 4000 basically did not have a default route. When you configure no ip routing (which was good advice from Paul) then the 4000 stops working as layer 2 switch and at that point will use default-gateway to determine its default route.
  HTH
  Rick

• How to erase all configuration in Cisco ESW 500 Series Switches

  Hi anybody,
  Anyone show me how to erase or remove  configuration file from ESW 500 Series Switches?
  Thanks
  Thuc

  Hi Thuc,
  The restart / reset function will allow for local or remote reset of the  the unit to Factory defaults, see screen capture below. ;
  Alternatively, the Switch can be reset by inserting a paper clip into the RESET opening on the friont of the switch.
  Pressing the manual reset for 0 to 10 seconds only  reboots the switch.
  Pressing the manual reset for longer than 10 seconds results in the switch being reset to factory defaults.
  does this answer your question, not exactly sure it does ?
  regards Dave

• ISA 500 series maximum password lenght

  Hello,
  What is the maximum password lenght that the new ISA500 series supports for users, both local database and with RADIUS server? Our two factor identification needs 44 characters + PIN.
  Thanks.

  Hi John, thank you for using our forum, my name is Johnnatan I am part of the Small business Support community. To answer your question the maximum password length that the ISA500 series supports for users is 1-64 characters and the port range is  from 1 to 65535. I hope you find this answer useful
                                                                            "GuideMe"
  Cisco has a very useful tool called GuideMe, is made for small business products, and your device is in this category, you can use this address for accessing the tool:  http://sbkb.cisco.com/CiscoSB/Loginr.aspx?alt1=&pid=4&eroute=Super , is very easy to use, just complete the 3  spaces on this way:
  Select a category: (Select the device type on request), e.g. Routers
  Enter model: (Type the model on request), e.g. RV042
  Question: (Type what you want to know  about the device), e.g. VPN
  And it'll be showing all the information you need about what you wrote.
  “Please rate useful posts so other users can benefit from it”
  Greetings, 
  Johnnatan Rodriguez Miranda.
  Cisco Network Support Engineer.

• ISA 500 Series Remote Administration Certificates

  Hi,
  I've enabled remote management of an ISA550w and I'm only allowing https connections.  Is it possible to provide a certificate for remote admin of the device?  I have uploaded a certificate from a trusted CA to the device, but it only seems to present the default self signed certificate when connecting from an external IP.  I would prefer to see a proper certificate when connecting.
  Thanks in advance for any advise you can offer on this.

  Hi Brandon,
  Sorry for the delayed response, I'm the only tech person in the firm (small business! ), and have been focussed on client issues.  This device is for my firm though so took lower priority.
  The certificate was issued by GoDaddy/Starfield.
  The support case number is: 626848971
  One question from my side... I'm usually dealing with clients during normal UK business hours which is the time when the Cisco UK support centre is open.  Is it acceptable to use the US support centre given that this is more of a software issue rather than something that would require the device to be returned to Cisco?  I tend to deal with my firm's own admin after the end of the UK business day.  I also find that when I do find a few minutes to attempt to contact the UK centre, it takes a long time to get a response via live chat - understandable if call volumes are high, but I often have to go off to work with my clients before I can get through.
  Many Thanks,
  Dominic

• ISA 500 Series - NEEDS Safe Search option

  We have a number of schools we would like to place the ISA 550/570 devices in - but there is no current means to enable Safe Search in the UTM section of the config.  SonicWall and Fortinet offer this option - but we prefer using the Cisco appliance due to the other features - which are excellent and for the price point - which also fits well with school budgets.
  QUESTION: When can we expect to see the option to enable Safe Search (Yahoo, Bing, Google) on the ISA 550/570 appliance?
  This is a CRITICAL feature that we really need to have access to.
  Thanks,
  DOBS Tech Support
  The Diocese of Bridgeport Schools
  Bridgeport, CT

  Wrong forum.

• ISA 500 Series DHCP Options 66,67 and 150 does NOT work

  Options 66,67 and 150 on both the ISA 550 and 570 does not work. I've tested it and ran a packet capture, there's nothign showing these options being issues by a client ACK.
  Has anyone have this working as yet, see image for an example

  I use option 66 on ISA 550 1.2.15  When you do packet capture are you seeing other dhcp items as expected?

• Como configurar SPA941 no Cisco Unified 500 Series - UC500

                   Comprei Um UC 500 mas não consigo configurar aparelhos do Modelo SPA 941, no modelo SPA502G configura corretamete, verifiquei que tem como fazer upload de outros modelos de telefone mas não encontro em lugar algum, alquem tem ideia onde posso encontrar, configurar esses aparelhos 941 ?

  You have to look for "third party SIP phone" examples, as there is no direct support for SPA 9xx in UC500.

• SA 500 Series Static Route Question

  Can you enter a static route to go out a specific interface rather than an IP?
  Example:
  172.16.1.1 ---> WAN1
  172.16.100.1 ---> WAN2
  Can this be accomplished?

  See that's where it gets a little fuzzy.
  The 172.16.x.x address's exist on modems on the WAN side.
  The actual WAN (or gateway in this case) IPs on the modems are dynamic so I really don't want to specify a fixed IP for the "gateway".
  Really, if it just went out WAN1 or WAN2 the appropriate modem would pick it up.
  How would I accomplish this?
  Would I give it Quad Z's or something like that?

• I want your valuabale opininon on ESW 500 series switches

  In my offiec i want to connect 8 accesspoints and 8 smart boad and 8 pcs to a switch the access points are cisco 1240g series and controlled by a wlan controller.
  this switch should be connected to a core switch 4507 using fiber.
  can i use these esw switches for this

  Not sure what you mean by 8 smart boad - can you be more clear on that?
  Couple of comments:
  - Please note that we recommend the ESW in a Cisco Small Business type deployment with products such as UC500, SR500, AP500. Also, management is via a configuration utility GUI or CCA, not CLI as you would use for the Cisco Catalyst switches. Check this discussion which has a PDF that goes over positioning of the switches- https://www.myciscocommunity.com/message/8385#8385
  - Please check the POE requirements you need against the ESW switches - check the question on at Q & A
  Q. How many devices can the Cisco ESW 500 Series PoE switches power?

• Cisco 500 Series 802.1x Requirements

  Hello,
  Does anyone have a guide on how to setup 802.1x on the Cisco 500 Series Switches.
  I have done the whole implamentation in the past with Catalysts and ACS.
  But would like to see a guide for the 500 series.
  Do we need the Cisco ACS or can we use RADIUS on Windows?

  Hi Peter, you may use IAS or any radius you prefer. To my knowledge the admin guide is the only documentation. You may check the Cisco knowledgd base as well.

• Cisco 500 series switches

  Dear support,
  Can Cisco 500 series switches deliver 24V on the access port for POE operation?
  Best Regards

  I belive the 802..2F and 802.2at poe standard is strictly 48v.  I haven't found anything to the contrary.  There are inline convertes 48v-24v or something like this that can be used with a non poe switch: http://www.digital-loggers.com/poe24.html but that means all conected device would be off the same access port / vlan. 

• Cisco 500 Series Fiber Optic connector issues

  I have a 500 Series express with a Cisco GE SFP, LC connector SX transeiver and a belkin dual LC to ST cable plugged into it.
  The unit is stating the cable is misconfigured. Is there anything I have to do besides configuring the port to switch in the smart role settings to get this fiber interface to work?

  Hi
  If you are getting any error logs in your switch is it possible for you to paste the same here ?
  Also are you connecting your server on the SFP or any other device ..
  regds

• Ask the Experts: Understanding Cisco ASR 9000 Series Aggregation Services Routers Platform Architecture and Packet Forwarding Troubleshooting

  With Xander Thuijs
  Welcome to the Cisco Support Community Ask the Expert conversation. This is an opportunity to learn how to Cisco ASR 9000 Series Aggregation Services Routers with Cisco expert Xander Thuijs. The Cisco ASR 9000 Series Aggregation Services Routers product family offers a significant added value compared to the prior generations of carrier Ethernet routing offerings. The Cisco ASR 9000 Series is an operationally simple, future-optimized platform using next-generation hardware and software. The ASR 9000 platform family is composed of the Cisco ASR 9010 Router, the Cisco ASR 9006 Router, the Cisco ASR 9922 Router, Cisco ASR 9001 Router and the Cisco ASR 9000v Router.
  This is a continuation of the live Webcast.
  Xander Thuijs is a principal engineer for the Cisco ASR 9000 Series and Cisco IOS-XR product family at Cisco. He is an expert and advisor in many technology areas, including IP routing, WAN, WAN switching, MPLS, multicast, BNG, ISDN, VoIP, Carrier Ethernet, System Architecture, network design and many others. He has more than 20 years of industry experience in carrier Ethernet, carrier routing, and network access technologies. Xander  holds a dual CCIE certification (number 6775) in service provider and voice technologies. He has a master of science degree in electrical engineering from Hogeschool van University in Amsterdam.
  Remember to use the rating system to let Xander know if you have received an adequate response.
  Xander might not be able to answer each question because of the volume expected during this event. Remember that you can continue the conversation on the Service Providers community XR OS And Platforms  shortly after the event. This event lasts through Friday, May 24, 2013. Visit this forum often to view responses to your questions and the questions of other Cisco Support Community members.
  Webcast  related links:
  Slides
  Webcast  Video Recording
  FAQ

  Is there a Cisco lab available for ASR 9000
  we have "XR4U" stations coming available soon when XR 511 comes alive. The plan is for a downloadable play image like that. In the interim we have 2 demo systems available, and they can be booked via your account manager representative.
  How will MOD160 perform with multiple 9000NVS?
  very well. the mod 160 has 4 NPU's, 2 per bay. So if you have a 4x10 MPA to serve a satellite, you effectively have a single NPU per 20 1Gigs from the satellite. The pps performance will be stellar. However it might be price technically more ideal to connect satellite with a 36x10. Since the MOD-x has native MPA's with 1G also.
       2. Is there a shortcut for a Bundle-EthernetX interface, such as port-channel interface (poX), in Cisco IOS® ?.
  usability enhancement is there, we are trying to push this into a new reasonable release. follow CSCuh04526
       3. What  is the revolutions per minute (RPM) on these hard disk drives (HDDs)  compared to the solid state drives (SDDs)? Will the spinning drives be  slow?
  depends on the type we had avaialble at time of production, you will see different sizes and disks on the RSP2. the rpm of the HD is not so much an issue as much as the buffered writing we used to do in XR. This is fixed up with XR43 where the disk writing performance is much better. the HD/SDD is used for logging storage only (and maybe your pictures) but other then that we're not that concerned with write perf of the HD.
  regards
  xander