Cisco WAAS-Global policy for VMware Vsphere and/or 3par replication

Similar Messages

• VNIC Placement Policy for VMWare

  I'm setting up a new UCS system to run ESXi 5.0 and would like to set up the service profile so that the vNICs get placed in a particular order. I've looked at the vNIC/vHBA placement policy and I think that between this and the service profile this is where I want to configure the required placement. What I'm not sure of is how to configure the placement policy for optimal efficiency.
  I have a VIC 1280 card in each B230 M2 blade. I have 12 vNICs (6 on Fabric A and 6 on Fabric B) that I'm creating for the various networks (Prod, DMZ, Management, vMotion, etc...) on each server. When I look at my current vNIC placement on one of the ESXi hosts where I let the system place the vNICs it looks like they are all on vCon1.
  Shouldn't my vNICs be split across the vCons? If so how should I split them? Any best practices or suggestions on how I should configure my placement?
  Thanks.

  This question has been answered pretty heavily here on CSC and on other blogs - so I wont go into great detail. 
  In short:
  vCon's refer to Adapters.  One adapter (1280) = 1 vCon.
  PCI ordering is managed within the vCon by vNIC/vHBA placement Policy.
  Regards,
  Robert

• Share Global structure for different module and include

  Hi,
    How can shared the data declaration for different module and include??
  Regards,
  Kit

  Declare your variables in TOP include of the function group.
  a®

• ISE Authentication Policy for RSA Securid and LDAP for VPN

  We are working on replacing our existing ACS server with ISE.  We have 2 groups of users, customers and employees.  The employee's utilize RSA securid for authentication while the customers use Window authentication.  We have integrated the AD into ISE using LDAP and this has been tested.  We are now working on trying to get the rsa portion to work.  We are wanting to utilize the authorization policy to assign the group-policy/IP for both clients via the LDAP user attributes.
  Here is my question:
  Under the authentication policy should we look @ an identity store that has RSA securid users, LDAP users and then internal users.  I assume if the user isn't present in the RSA store it will then look @ the LDAP, will this present an issue with overhead in our RSA environment.  With the legacy ACS the descsion on where to authenticate the user was done on the ACS, either Windows or RSA.  The employee users will still also be present in the LDAP so we can utilize the attributes for IP address/group policy.  The number of customer vpn's is several times larger than employees and I am afraid that if we have to query the securid servers for every authentication vpn authentication attempt this could cause issues.  Our utilimate goal is to move to any connect and utilize a single url for all authentication but allow ise to instruct the asa what attributes to hand to the client such as dns/Dacl. 
  Thanks,
  Joe

  That is not what I want. I want user "test1" to be able to do this:
  C
  Username: test1
  Enter PASSCODE:
  C2960>en
  Enter PASSCODE:
  C2960#
  In other words, test1 user has to type in his/her RSA token password to get
  into exec mode. After that, he/she has to use the RSA token password to
  get into enable mode. Each user can get into "enable" mode with his/her
  RSA token mode.
  The way you descripbed, it seemed like anyone in this group can go directly
  into enable mode without password. This is not what I have in mind.
  Any other ideas? Thanks.

• Global Switches for Frame Blend and Motion Blur aren't working with the newest version of After Effects 2014.1.1

  I have been using After Effects regularly since 1995. So this isn't an operator error.
  I am on a new Mac Pro six core with OSX 10.9.5 and 32 gigs of RAM.
  Is anyone else having trouble with activating frame blend and motion blur?
  Occasionally I am able to get the global switch to appear to be on. It still won't activate motion blur or frame blend.

  I'll answer my own issue. The global switches actually work. The distinct dark boxes that indicate when the global switches are enabled have been removed and replaced by a light blue outline of the switch icon.

• How to create a group policy for a group not to logout from rdp

  there is already a global policy for all users in OU which will disconnect a rdp session after 15 min of inactivity and log user out in another 15 min, (logout 30minutes)
  how do I create another policy  for a group in that OU so that group user will not be logged out ( executives are asking for this)?

  Hi,
  In addition to Martin’s suggestions, we can also choose to change the scope of the existing GPO with Security Filtering.
  Regarding Security Filtering, the following article can be referred to for more information.
  Security filtering using GPMC
  http://technet.microsoft.com/en-us/library/cc781988(v=WS.10).aspx
  Filter Using Security Groups
  http://technet.microsoft.com/en-us/library/cc752992.aspx
  Best regards,
  Frank Shen

• Cisco WAAS Prepositioning 0.0 bytes Copied........ :-(

  Good Evening All,
  I am having my first attempt of using the prepositioning function within Cisco WAAS running version 4.1.7a and its not going very well at all.........:-(
  We are trying to test a preposition of Microsoft Updates to a selection of Branch WAE devices but the "Amount Copied" is constantly sat on 0.0 bytes and never changes.
  Clearly i am doing something wrong and im hoping someone can advise, basically i create the Preposition task via the CM (also running 4.1.7a), i see the root folder i need (which has further subfolders benieth it) and select the folder, i submit this and it takes this with no problem, i assign the branch WAE's to this and its also submitted and accepted, i select schedule for "Now" and the preposition appears in the statuc tab however no matter how many hours its left it constantly sits at 0.0 Bytes - Clear something is wrong.
  Doing a "Sh run" on the branch WAE it sees the preposition task at the end of the config but still nothing. I am assuming this is down to the fact that the Data Centre WAE is not loading the files in the "staging" area, the Data Centre WAE has flows for the chosen Server when you do a "sh stat con" and can ping the server by name and ip address.
  Im at a lost of what to check next, we are not running the "legacy" WAFS as we first started running 4.1.3b and recently upgraded to 4.1.7a.
  Can anyone help......??
  Thanks in advance
  Craig

  Hi Mike,
  Thanks for your quick reply on this, i have a feeling you may have hit the nail on the head already with your first comment...... Doh.
  Ill give you an example of how the branch site is setup:-
  e.g. (not actual addressing used but gives you the idea)
  Branch Site
  int vlan 10
  ip address 10.10.10.1 255.255.255.192
  ip wccp 61 redirect in
  int vlan 11
  ip address 10.10.10.65 255.255.255.192
  ip wccp 61 redirect in
  int fa0/1
  description *** BRANCH WAE WAAS Device ***
  ip address 1.1.1.5 255.255.255.248
  Int se0/1/0
  172.1.1.1 255.255.255.252
  ip wccp 62 redirect in
  ip wccp 61 redirect-list 161
  ip wccp 62 redirect-list 162
  access-list 161 permit tcp 10.10.10.0 0.0.0.127 192.168.1.0 0.0.0.255
  access-list 162 permit tcp 192.168.1.0 0.0.0.255 10.10.10.0 0.0.0.127
  Data centre end:-
  This access-list is then replicated but in data centre but with the access-list 161 & 162 swapped - the 192.168.1.0 subnet is acting as the Data Centre server subnets.
  In the data centre the WAE will have an address of say 172.21.1.5 255.255.255.248.
  Is there any risk/implication of including the ip address ranges of the WAE devices themselves? currently we dont do this on any site where we have a WAE device and we are seeing great benefits still but i guess this will explain why the prepositioning is not working as the devices are not matching the ACL and therefore being denied redirection.
  Cheers
  Craig

• Password Policy - Mixed servers 2003 and 2008

  I Need help!!!!
  So this is my situation. I'm trying to enforce a Company Wide Password Policy via GPO but running into problems. We have no current Password Policy in place (This is the only one). I'm attempting to use the default global policy in Server 2008 and I'm
  testing the GPO on a specific security group, but does not seem to work. It will prompt to change the password, but the other requirements aren't being enforced.
  This is what I'm trying to enforce.
  Expire after: 90 days
  Complexity: Enabled
  Cant reuse last: 12 password
  Lockout time: 15 minutes
  Lock out after: 5 attempts
  Minimum of :8 characters
  Infrastructure: We have a mix of 2003 and 2008 servers. I'm using our 2008 server to enforce the GPO.
  Once I apply the GPO to a specific security group, it will prompt to change the password for the users in that group, but will not enforce all the other policies. This is a major project and we cant deploy this policy all at once (Helpdesk wouldn't
  be able to handle the call volume) so we decided to deploy it by departments/Security groups. We also tried
  We also tried using a fine-grained password policy but just like the GPO, it was only enforcing the password change aspect and not the other requirements like a minimum of 8 characters. Can any help!!!!

  > What if I apply the GPO on the domain root level, and then in the
  > delegation tab, exclude certain groups until we are ready for it to
  > apply to that department?   Will hat work?
  No. Read again - in 2003, there is ONE password policy for the DOMAIN,
  not for individual accounts.
  Technically this works the following way: Password policies are picked
  up by every member computer. But on these, password policies only apply
  to LOCAL accounts, not to domain accounts.
  On the other hand, there are Domain Controllers. The PDC emulator is the
  only one of these that will pick up Password policies - and only if they
  are linked to the domain. And so, these apply to all "local" accounts on
  the PDC, which in fact are the domain accounts.
  Martin
  Mal ein
  GUTES Buch über GPOs lesen?
  NO THEY ARE NOT EVIL, if you know what you are doing:
  Good or bad GPOs?
  And if IT bothers me - coke bottle design refreshment :))

• Certified training Center for vmware courses

  Hi,
  I am planning to take a course for vmware vsphere 5.5 to get certified later, is there a site or URL to check if the training center its certified by vmware in order to qualify for the exam after taking the course, its for VCP exam VMware Certified Professional 5 – Data Center Virtualization (VCP5-DCV)
  regards and thanks
  David P.

  Thanks lbourque for your reply,
  I found this information for the partner using the instructions you gave me, it has the below solution competencies but does not appear as training center, does this mean if I take the course there I wont be able to take the VCP exam as it does not fill the pre-requsites?
  Partner Program:     Solution Provider  
  Solution Competencies:    Business Continuity, Cloud IaaS, Infrastructure Virtualization
  Regards and thanks
  David Peña

• Set Global Properties for ADF components

  Hi everyOne....
  My question is the following .... let me know how I can set global properties for a component and not have to set the same property in each of them.
  Thanks
  Edmar

  Let me know if this answers your question:
  For Attributes : set the properties in EO or VO. [You can set all UI properties too]
  For labels: use Resource bundle
  For Layout Components to set the look and feel. CSS/Skinning would be the best.
  I guess this should cover most part of application.
  Amit

• VMware tools and hardware version for Cisco vWLC

  I am currently running a Cisco vWLC (v8.0.100.0) on VMware vSphere 5.5U2 supporting about 20 APs. I just recently upgraded to vSphere 5.5U2 and I was working my way through updating the VMware tools and VM Versions on all my VMs when I glanced at this info for the vWLC. The vWLC shows a VM version of 1 with the VMware tools not running and not installed. I am curious if it is necessary or even possible to update the VMware tools and VM version for the vWLC. The vWLC is working perfectly fine and I have no issue with leaving well enough alone, but this just kind of peeked my curiosity as I really couldn't find any concrete answers in any online documentation. Does anyone have any insight on this matter?

  If it's working, then leave it alone. Some of the Cisco virtual, well maybe most, don't support the VMWARE tools. Updating the version to the latest will make you have to use vCenter as the sphere client will not allow you to edit the VM anymore. 
  -Scott

• What's the difference between OEM and standart licensing of VMware vSphere for users?

  Good day,
  Could you please explain me,
  What's the difference between OEM and standart licensing of VMware vSphere for users?

  The difference is usually the support you get. With OEM versions you'll often get support from the OEM and not from VMware directly.
  André

• Cisco WAAS MIB for CPU AND MEMORY

  Hi,
  I am looking to query Cisco WAAS WAVE and SRE device for basic stuff cpu, memory, interface.
  I managed to get the CPU stats via SNMP using HOST-RESOURCES-MIB, however i cannot use the memory usage utilisation.
  Can you please help.
  Furthermore, I wanted to have some environmental values, temperature. Is there any MIB for that purpose.
  Thanks

  There's a "Show cpu " commmand availabe. Type help or '?' for a list of available commands.

• – Enable high availability and redundancy for Cisco WAAS

  How this is available
  – Enable high availability and redundancy for Cisco WAAS appliances in data centers.
  Thank you.

  Hi,
  You can serially cluster two WAE devices with the Cisco WAE Inline  Network Adapter installed to provide higher availability in the data  center if a device fails. If the current optimizing device fails, the  inline group shuts down, or the device becomes the overloaded, the  second WAE device in the cluster provides the optimization services.  Deploying WAE devices in a serial inline cluster for scaling or load  balancing is not supported.
  More deatils here: Clustering Inline WAEs
  Hope this helps.
  Regards.
  PS: Please mark this as Answered, if this answers your question.

• Where i can get a Cisco VMware Vsphere ESXi 4.1 update 1 installable media

  Hi All,
  can someone from cisco tell me how to get cisco vmware vsphere ESXi 4.1 update 1 that was certified by Cisco ?
  because the last release from the vmware website still 4.1 without update 1.
  http://downloads.vmware.com/d/details/esxi41_cisco_oem_iso/ZHcqYnRkdHdiZCpwcA==
  Thanks.
  Berwin H.

  Sorry for any spelling errors:
  What is working well for us, is to always get the latest ESX(i) release from vmware, apply all patches and then make sure to install the newest drivers for Cisco fnic (hba) and enic (lan) that can be found on the vmware site.
  During our first UCS upgrade (we did not have installed the Cisco drivers) we experienced some issues. A lot of our VMs lost connectivity to storage for about 2-3 minutes during the reboot of the primary FI. After opening a support request at vmware and Cisco, vmware sent us a newer fnic driver, as the standard driver included in the ESX iso did not handle hba failover very well.
  Since that upgrade we always keep up to date the enic and fnic drivers for Cisco UCS. They can be found on the VMWare ESX download site.
  Newer drivers are also available on the Cisco UCS driver CD, but those are not yet signed by vmware, so it may be a better idea to use those tested by vmware.
  Since we are handling ESX updates like this, every UCS upgrade and everything else worked like a charm and my pulse during upgrades got divided by 2
  BTW: Also with other server manufacturers we could have saved us a lot of trouble if we simply had upgraded adapter drivers earlier.