Configuring Management VLAN for standalone Nexus 5k

Similar Messages

• Configuration Managment Pack for Non Oracle Systems (new)

  Hi ,
  There is a pack called "Configuration Management" for the database. This pack manage hardware , software , updates, patches, etc for host that have installed any Oracle Software.
  Now, in EM Release 2 there is a new pack "Configuration Managment Pack for Non Oracle Systems" wich basically will allow me to the same but without the requirement to have any Oracle software installed.
  The question is : Where can i find a white paper about it? i been looking around and there is only mentions of the product, but not extra info. I know is out already 3k p/processor..
  Any ideas?
  Sergio Benavides

  Found this dated Oct 2005
  (Note the "priced in Advance of Availability" piece)
  Standalone Managers
  Configuration Management Pack for Non-Oracle Systems (priced in Advance of Availability) 2.375 522,59 Per Processor -
  Provisioning Pack (priced in Advance of Availability) 2.375 522,59 Per Processor -
  Service Level Management Pack (priced in Advance of Availability) 79 17,42 Test -
  (Must license with Beacon Plus Test pricing) 2.375 522,59 Beacon -
  System Monitoring Plug-in for Hosts (priced in Advance of Availability) 1.188 261,29 Per Processor -
  System Monitoring Plug-in for Non Oracle Databases (priced in Advance of Availability) 1.188 261,29 Per Processor -
  System Monitoring Plug-in for Non Oracle Middleware (priced in Advance of Availability)
  25 1.188 261,29 Per Processor -
  System Monitoring Plug-in for Network Devices (priced in Advance of Availability)
  26 1.188 261,29 Per Network Device -
  System Monitoring Plug-in for Storage (priced in Advance of Availability)
  27

• Configuring XML Publisher for Standalone EnterpriseOne 8.12

  Could someone please help me in configuring XML Publisher for Standalone EnterpriseOne 8.12.
  As per the installation guide for 8.12, I have created a new data source to SQL Server named EnterpriseOne Local.
  Also, I have used "With Windows NT authentication using the network login ID" for this ODBC.
  Now I tried :
  Data Source Name : EnterpriseOne Local
  URL : jdbc:microsoft:sqlserver://localhost:1433
  User : My NT domain ID
  Password : MY NT domain password
  Database Driver Class : com.microsoft.jdbc.sqlserver.SQLServerDriver
  in XML publishers admin tab, but it doesnt work.
  Is the above setting correct?

  make sure you can connect with "my NT domain ID"/"my NT domain password" in SQLserver Mangement studio express using SQL server authenication.
  Try the setting using JDeveloper for DB conncection. If not successful then u must add the
  sqljdbc.jar into your JAVA_HOME/lib
  HTH
  Shaun

• Question in regard to management VLAN for each Context in ACE module

  Dear Pros,
  I know this will be a simple questions to answer, and I have searched the forum, but I am not able to find the answer I need.
  1) Does the ACE module require an Management IP address for each Context? Should the same VLAN be applied to each context, with larger size subnet to supply host address?
  2) If it does require that, what IP address should I used for default route in each context.
  I will be utilizing "Bridge Mode" for my application to transition the current network from Foundry to ACE. I will later on apply the "Routed Mode" model.
  Each ACE module will have 3 seperate Context, for a total of 4 including the Admin.
  Any suggestions or if you can point me to location as always will be greatly apprecaited.
  Thanks and best regards.
  Raman Azizian

  Hi,
  you have several options to choose from.
  1. Use Admin context for management
  You can use the Admin context for management. Give it an IP address in your managment VLAN, default route to upstream router, and login and change to contexts from there.
  + Easy and straightforward
  - snmp and syslog are using the ip from each individual context and not the management IP
  2. Use a Large subnet and assign an IP address in each context for management.
  You can configure 1 managment VLAN and assign an IP address to each context in this subnet. Create static routes to the management stations that need to access this management address.
  + each context has its own managment address
  - static routes need to be added
  3. Use your client-side ip address (or BVI) as management address.
  You management traffic will be inline and use the same path as your data. Default route is already configured and also valid for the management.
  + no static routes needed
  - inline management
  Personally, I choose option 1. That is, if the people that need to manage the ACE is the same team.
  If other teams (serverteam for context 1, other serverteam for context 2) need to manage the ACE, than I would choose option 3.
  HTH,
  Dario

• Management VLAN for Catalyst 3524

  Hi,
  I'm currently using VLAN30 as my management VLAN (172.16.xxx.xxx) and would like to use VLAN20 for the management VLAN. After configuring VLAN20 as my management VLAN, the changes didn't get updated in the running-config. The IOS commands used are:
  config t
  int vlan 20
  ip address 149.199.xxx.xxx 255.255.252.0
  no shutdown

  Hi Ankur,
  This switch is in VTP client mode. When I did a show vlan, the output is as follows. VLAN 20 is already active.
  VLAN Name Status
  1 default active
  20 core-network active
  When I did a sh ip int brief, the output is as follows:
  VLAN1 unassigned YES manual up
  VLAN20 149.xx.xx.xx YES manual deleted
  VLAN30 172.xx.xx.xx YES manual up
  The VLAN 20 showed as deleted. I think this was because I issued the no int vlan 20 command as shown below:
  config t
  int vlan 20
  ip address 149.xx.xx.xx.255.255.255.0 (For setting it as the management VLAN)
  no int vlan 20
  How do I set VLAN20 as the Management VLAN again?
  What is the difference between the following:
  i) int vlan 20
  shutdown
  ii) no int vlan 20

• Is Oracle Configuration Manager Available for Hyperion Planning Servers?

  The "My Oracle Support" site (https://support.oracle.com) describes the values of installing the Oracle Configuration Manager on servers.
  Question: is this available for the Hyperion products or just Oracle databases? If available for Hyperion products, does it add value to tech support?
  Any comments would be appreciated.

  John
  This is partially correct. If you user12136418 are looking for a way to monitor health automatically and get access to web ex session technical support from one console OCM is a great tool. The fact that it is not a thick client in nature nor a windows service makes it ideal for having agents monitor network traffic SNMP and still have all hyperion health monitored without having to run a tool like SCOM. I have been waiting for this tool for a year . Now if only Hyperion would work with IE8. But we all can not have egg in our beer.
  Thank you
  Michael Worthylake
  Systems Analyst
  DJO, LLC
  1430 Decision St.
  Vista, CA 92081-8553 U.S.A.
  Direct: 760-734-5631
  Cell: 760-445-0746
  www.djortho.com
  [email protected]

• Configuration Manager & Licenses for AIX, Linux

  All,
  I have read the SCCM 2012 licensing document (System Center
  2012 Licensing Pricing and SKU Overview) but I'm still unable to understand the content. Does one pay, having a datacenter license, for every configuration manager client used on each device (based on cpu) and does this also count for the SCOM
  client?Or having paid for the scom client means that the configuration manager client is covered as well.
  Also, how does this model applies when installing a client on an AIX LPAR which is part of a Power 5 or Power 6 system. (with for example 64 cpu's). Does this simply mean the need to have 32 CAL's ?
  Bit confused about the following statement in the document "SC 2012 Datacenter allows for any # of managed OSEs per license."
  thanks

  Hi,
  to get a valid legal answer, I would recommend to contact your licensing Partner.
  But from my Point of view:
  You are right, for the Server with 64 cpu's, you will Need 32 System Center 2012 R2 Datacenter/Standard Server Management Licenses. But then, all available Clients are usable (SCOM, SCCM, DPM)
  The Statement simply means: When you have a datacenter license, which only has to cover the requirements of the cpu's, it doesn't matter, how many virtualized Systems (OSE) are running on this Server, on all of those OSE's you can use the System
  Center Clients (or manage them without). Other than with Standard, where you got to check, if you have to license the cpu's or the OSE's.
  I hope I could Point that out.
  www.sccmfaq.ch

• Configuration Manager 2007 - For multiple forest.

  I have a primary server in a forest A. Now i've a client requirement that it should be able to manage clients on forest B.
  The trust between these forest is 1 way trust.  Could someone please guide me how to do this...
  Gopikrishnan.J

  Yes, I know this is an old post, but I’m trying to clean them up.
  Please read the docs on the subject.
  http://technet.microsoft.com/en-ca/library/bb694003.aspx
  Garth Jones | My blogs: Enhansoft and
  Old Blog site | Twitter:
  @GarthMJ

• Kerberos Configuration Manager for SQL Server is available

  This thread describes the Microsoft Kerberos Configuration Manager diagnostic tool for SQL Server. This tool is available for download from the Microsoft Download Center: 
  Download the  package now.
  About Kerberos Configuration Manager
  The Kerberos Configuration Manager for SQL Server is a diagnostic tool that helps troubleshoot Kerberos related connectivity issues with SQL Server, SQL Server Reporting Services (SSRS), and SQL Server Analysis Services (SSAS). It can perform the following
  functions:
  Collect information on operating systems and Microsoft SQL Server instances that are installed on a server.
  Report on all Service Principal Name (SPN) and delegation configurations on the server.
  Identify potential problems in SPNs and delegations.
  Fix potential SPN problems.
  More information
  This tools helps troubleshoot the following exceptions:
  401
  Note: This error message is for http errors, SSRS errors, and some other similar errors.
  Login failed for user 'NTAUTHORITY\ANONYMOUS'
  Login failed for user '(null)'
  Login failed for user ''
  Cannot generate SSPI Context
  For more information about Kerberos Configuration Manager, go to the following related blogs:
  Released: Kerberos Configuration Manager for SQL Server
  Kerberos Configuration Manager updated for Reporting Services
  Kerberos Configuration Manager updated for Analysis Services and SQL Server 2014
  Reference from the following KB article: Kerberos Configuration Manager for SQL Server is available
  Elvis Long
  TechNet Community Support

  Thanks for posting, Elvis. Can you post this to the SQL Security forum too?
  Dan Guzman, SQL Server MVP, http://www.dbdelta.com

• Managment VLAN 1

  Hi Everyone,
  I m working with a leading ISP in India.The issue is that our engineering team has come up with the plan of migrating all management vlans for metro and other switches to vlan1.Presently we are using spearate vlans for management.Somethig like below.
  Aggregation router#show runn inter gi0/2.137
  Building configuration...
  Current configuration : 250 bytes
  interface GigabitEthernet0/2.137
  description Connectivity for ABC
  encapsulation dot1Q 137
  ip address 203.154.26.97 255.255.255.240
  ip policy route-map ABC
  no cdp enable
  end
  Switch 1 end:(2950)
  interface Vlan137
  ip address 203.154.26.101 255.255.255.240
  no ip route-cache
  ip default-gateway 203.154.26.97
  switch 2:(2950)
  interface Vlan137
  ip address 203.154.26.103 255.255.255.240
  no ip route-cache
  ip default-gateway 203.154.26.97
  The router inter gi0/3 is connected to the trunk port on summit switch and a wireless device provides connectivity to the switch 1 and further another oen to switch 2.
  The entire pasth is on layer 2.
  Please suggest as to how can i migrate to mgmt vlan 1.
  Can it be something like
  inter gi0/2.1
  encapsulation dot1q 1
  ip addres
  since 2950s dont support more thane one active mgmt vlan wat can be the best way of migration???

  This is a tricky proposition. Best way you mean without getting disconnected, right? Cause when you start to change the mgmt interface via telnet, you are risking of getting disconnected once the mgmt inteface is change. for example, you know that there can only be one active interface vlan on 2950 for mgmt purpose. If you are changing the interface vlan from vlan 237 to vlan 1, if they will have the same ip address, you'll have to shut down one of them. Let's say you are able to do that, then how will you bring up the other interface with getting disconnected? remember you are telneted in. the best way will be to console in when you make changes on the mgmt vlan. You'll probably have to walk to the switch anyway if you made the change via telnet. changing the mgmt vlan will not affect the switch's ability to switch packets.

• Communication lost - Same installation, same version of client (.exe), but client has different configuration in Configuration Manager properties

  Hi, I can't understand how I get the following different between old and newly installed client. On the left side it is the original client configuration and on the right side it is what client gets after installing the same version of CCMSETUP.EXE (5.00.7958.1000)
  with SCCM 2012 R2.
  Differences noticed:
  -Catalog's name (in Software center) are different. New client has "IT Ogarnization" as name for their catalog.
  -Configuration Manager Properties for new client doesn't have "Configurations" Tab.
  -Many Components status in the components tab are different: CCM Notification Agent, Compliance and Settings Managment, Hardware Inventory Agent, Out of Band Mangement Agent...
  With all this, I can't send Windows updates or any applications to ANY clients. The client status in the monitoring deployment always shows "Unknown". 
  I don't think it is on the client side, because I return to older VMware snapshot and see the different, after uninstalled and re-installed the SCCM agent, I get the new "problematic" client configuration.
  Any suggestion to resolve my problem? Thank you in advance.
  bsuperkid

  Here the all three logs. Sorry to give them like that but I think it is best way to let you take a look. I did change some name and reference to hide my environment. 
  Also, I don't know if there a link with my problem, but I guess so.
  - I noticed in Monitoring\System Status\Components Status\"Warning SMS_WSUS_SYNC_MANAGER", the following message (ID 6703):
  WSUS Synchronization failed.
  Message: Thread was being aborted.
  Source:
  Microsoft.SystemsManagementServer.SoftwareUpdatesManagement.WsusSyncAction.WSyncAction.SyncWSUS.
  - I noticed in Monitoring\System Status\Components Status\ "Warning SMS_AD_SYSTEM_DISCOVERY_AGENT", the following message (ID 5203):
  Active Directory System Discovery Agent reported errors for 2074 objects. DDRs were generated for 0 objects that had errors while reading non-critical properties. DDRs were not generated for 2074 objects that had errors while reading
  critical properties.
  Possible cause: The site server might not have access to some properties of this object. The container specified might not have the properties available.
  Solution: Please verify the Active Directory schema for properties that are not replicated or locked.
  Refer to the discovery logs for more information.
  I'll upload a print screen of all three logs files. If you need it in text format, I'll upload them as the code Block.
  Thank you again!
  bsuperkid

• Wireless AP Management VLAN and BVIs

  Hi All,
  I've been looking around and I can't find a solution to what I am trying to achieve and I was hoping the community may have had more luck than I have.
  I'm looking to have my management VLAN for my AP setup as a tagged BVI but I'm struggling to get it setup. I can set it up fine using BVI1 and having it just accessed on the native VLAN but I see this as a security flaw, I don't really want direct access into my management network on the switch.
  Now there may be a better way of preventing this but I am, at least compared to many, still fairly new to Cisco and this seems to be the best approach. Please see below for my current config, hopefully you can let me know where I am going wrong.
  Also, as a note, at the moment I am mainly focusing on the management security of the AP before I check the wifi config, hence the radios still being shutdown so there may also be small errors in this. I have also removed some elements which are not relevant.
  version 15.3
  no service pad
  service timestamps debug datetime msec
  service timestamps log datetime msec
  service password-encryption
  hostname AP01
  no ip source-route
  no ip cef
  dot11 syslog
  dot11 ssid <Guest secure network SSID>
     vlan 30
     authentication open
     authentication key-management wpa version 2
     guest-mode
     wpa-psk ascii <key>
  dot11 ssid <Internal Secure SSID>
     vlan 10
     authentication open
     authentication key-management wpa version 2
     wpa-psk ascii <key>
  ip ssh version 2
  bridge irb
  interface Dot11Radio0
   no ip address
   no ip route-cache
   shutdown
   encryption vlan 10 mode ciphers aes-ccm tkip
   encryption vlan 30 mode ciphers aes-ccm tkip
   ssid <Guest secure network SSID>
   ssid <Internal Secure SSID>
   antenna gain 0
   packet retries 64 drop-packet
   channel 2437
   station-role root
   bridge-group 1
   bridge-group 1 subscriber-loop-control
   bridge-group 1 spanning-disabled
   bridge-group 1 port-protected
   bridge-group 1 block-unknown-source
   no bridge-group 1 source-learning
   no bridge-group 1 unicast-flooding
  interface Dot11Radio0.10
   encapsulation dot1Q 10
   no ip route-cache
   bridge-group 10
   bridge-group 10 subscriber-loop-control
   bridge-group 10 spanning-disabled
   bridge-group 10 block-unknown-source
   no bridge-group 10 source-learning
   no bridge-group 10 unicast-flooding
  interface Dot11Radio0.30
   encapsulation dot1Q 30
   no ip route-cache
   bridge-group 30
   bridge-group 30 subscriber-loop-control
   bridge-group 30 spanning-disabled
   bridge-group 30 block-unknown-source
   no bridge-group 30 source-learning
   no bridge-group 30 unicast-flooding
  interface Dot11Radio1
   no ip address
   no ip route-cache
   shutdown
   encryption vlan 10 mode ciphers aes-ccm tkip
   encryption vlan 30 mode ciphers aes-ccm tkip
   ssid <Guest secure network SSID>
   ssid <Internal Secure SSID>
   antenna gain 0
   peakdetect
   no dfs band block
   packet retries 64 drop-packet
   channel dfs
   station-role root
   bridge-group 1
   bridge-group 1 subscriber-loop-control
   bridge-group 1 spanning-disabled
   bridge-group 1 port-protected
   bridge-group 1 block-unknown-source
   no bridge-group 1 source-learning
   no bridge-group 1 unicast-flooding
  interface Dot11Radio1.10
   encapsulation dot1Q 10
   no ip route-cache
   bridge-group 10
   bridge-group 10 subscriber-loop-control
   bridge-group 10 spanning-disabled
   bridge-group 10 block-unknown-source
   no bridge-group 10 source-learning
   no bridge-group 10 unicast-flooding
  interface Dot11Radio1.30
   encapsulation dot1Q 30
   no ip route-cache
   bridge-group 30
   bridge-group 30 subscriber-loop-control
   bridge-group 30 spanning-disabled
   bridge-group 30 block-unknown-source
   no bridge-group 30 source-learning
   no bridge-group 30 unicast-flooding
  interface GigabitEthernet0
   no ip address
   no ip route-cache
   duplex auto
   speed auto
   no keepalive
  interface GigabitEthernet0.10
   encapsulation dot1Q 10
   no ip route-cache
   bridge-group 10
   bridge-group 10 spanning-disabled
   no bridge-group 10 source-learning
  interface GigabitEthernet0.30
   encapsulation dot1Q 30
   no ip route-cache
   bridge-group 30
   bridge-group 30 spanning-disabled
   no bridge-group 30 source-learning
  interface GigabitEthernet0.100
   encapsulation dot1Q 100
   no ip route-cache
   bridge-group 100
   bridge-group 100 spanning-disabled
   no bridge-group 100 source-learning
  interface GigabitEthernet0.101
   encapsulation dot1Q 999 native
   no ip route-cache
   bridge-group 1
   bridge-group 1 spanning-disabled
   no bridge-group 1 source-learning
  interface BVI1
   no ip address
   no ip route-cache
   shutdown
  interface BVI100
   mac-address <Actual ethernet address>
   ip address 10.33.100.101 255.255.255.0
   no ip route-cache
  ip default-gateway 10.33.100.254
  ip forward-protocol nd
  ip http server
  no ip http secure-server
  ip http help-path http://www.cisco.com/warp/public/779/smbiz/prodconfig/help/eag
  bridge 1 route ip
  bridge 100 protocol ieee
  bridge 100 route ip
  line con 0
   logging synchronous
  line vty 0 4
   transport input ssh
  end
  As you can see I am using BVI100 as the management VLAN for the device and BVI1 is shutdown with vlan 999/int gi0/101 holding bridge group 1.
  With this setup I can't get any IP communication, send or receive but I can see the MAC address on the switch in the MAC address table on vlan100. There is also no entries in the ARP table of the AP.
  The switch is setup with vlan 999 untagged and vlans 10,30,100 as tagged.
  Hope you can help! Thanks for any advice in advanced.
  Many thanks,
  Martin.

  Yea that would work and I have set it up like this without issue but I'm trying to limit access to the management VLAN, I don't want someone to be able to plug directly into the switch and be on the same broadcast domain as alll of the other equipment.
  There are otherways of achieving this but I felt like I was so close with the above config but I was just missing something.

• Version control and configuration management

  How is version control and configuration management done for iPlanet6 web
  and app servers?

  I'm not sure if I understand exactly what you are asking. Neither iWS or
  iAS have built in version control or configuration management. But
  pretty much everyone integrates them with version control or SCM in some
  way. Ranging from the complex (say integrating iAS and Interwoven) to
  the simplistic (using CVS to track HTML documents or source code).
  David
  Chris Valliere wrote:
  How is version control and configuration management done for iPlanet6 web
  and app servers?

• No SQL Server Configuration Manager

  i have an instance of SQL on a 32bit Windows 2003 server, there is no configuration manager loaded, can I make the following changes with a command line?
  \\.\pipe\MSSQL$MICROSOFT##SSEE\sql\query
  Change the flag Hide Instance to No in SQL Server Configuration Manager→Protocols
  for MachineName\Microsoft##SSEE.
  Ensure that the SQL Server Browser service is running in SQL Server Configuration Manager→SQLServer
  2005 Services.
  Ensure that Named Pipes is enabled in SQL Server Configuration Manager→Protocols
  for MachineName\Microsoft##SSEE.

  SQL Server management STudio Express version is 9.00.2047.00
  Microsoft SQL Server Management Studio Express
  9.00.2047.00
  Microsoft Data Access Components (MDAC) 2000.086.3959.00 (srv03_sp2_rtm.070216-1710)
  Microsoft MSXML 2.6 3.0 4.0 5.0 6.0 
  Microsoft Internet Explorer 7.0.5730.11
  Microsoft .NET Framework 2.0.50727.3662
  Operating System 5.2.3790
  Seems you have just installed SQL Server management studio. You also have to install database engine component. Unless you install that you wont be able to connect. Browse
  this link and click on download when you click please download
  SQLEXPR.EXE. Install it and then you would be able to connect
  Please mark this reply as answer if it solved your issue or vote as helpful if it helped so that other forum members can benefit from it
  My Technet Wiki Article
  MVP

• Boadcast control in management vlan

  Hi...
  I faced a problem where the management vlan was down due to exessive broadcast caused by some fiber uplink going bad.
  I can use udld but not sure whether it can be used where the uplink is UTP.
  I am thinkung of having several mamangement vlans, instead o keeping all my switches in a single one.
  Is that a good practise? Any other ideas?
  Thanks.

  You can enable UDLD with UTP. Creating multiple management VLANs depends on how much broadcast traffic is there within that vlan under normal circumstances, how many nodes are in the vlan, how many trunks are there, are there any hubs in use and a few other factors. It doesn't hurt to create another management vlan for management and the reason why many networks out there just have one management vlan is for simplification.
  Pls. rate all helpful posts.
  --Sundar