Connecting Cisco 7906 to asterisk

Similar Messages

• Connect Cisco Process Orchestrator in IAC 4.0

  During the execution of the 'Connect Cisco Process Orchestrator' task in the Day 0 Wizard, many miss out on the underlying note to
  'Start all other agents'   Please start all other agents 2 minutes after executing connect Cisco Process Orchestrator
  thus resulting in errors in the configuration of the HTTP/WS adapter based agents, in particular the ones that communicate with CPO.
  The way this service works is the following:
  The requestor is prompted with a form to populate related info (hostname, port, URL, credentials, etc.)
  Upon ‘submit order’ the request will use the ‘REX Set HTTP Agent Properties’ to configured all the agents that need to communicate with CPO (it modifies their outbound properties).
  Once all the agents are configured, the service will pause until ‘start all other agents’ is ordered. Only then will the last step of onboarding CPO take place, where it will communicate with CPO to configure the respective targets, etc. and finalize the request.
  If you are still on task ‘Connect Cisco Process Orchestrator’, then you should be able to observer in PSC, Service Link > View Transactions the progress of the request.
  The highlighted task should be in a 'waiting' state, before you execute 'Start All Other Agents'
  In the event you have not been patient or have not read the instructions (like myself), the following is the process to get you back on track ...
  Manually:                           Stop all the agents apart from the ones starting with ‘REX’
  Manuall or Wizard Step 1:   Start DB Agent (Agent Name: Insert Default Parameters & Portal Page Assignment to OU)
  Manuall or Wizard Step 1:   Start nsAPI Agent (Agent Name: Retrieve OU ID on Name)
  Wizard Step 2:                   Connect Cisco Process Orchestrator AND WAIT/ monitor that all configurations are complete before proceeding to the next step 
  Regards,
  Dimitris

  up

• Can you Connect Cisco switch modules for to N2K?

  I have not seen anything about connecting Cisco Switch modules for Blade Chassis to fex.  Does anybody now if you can do that?
  thank you.

  thank you Lucien.
  I think you got a right name for N2Ks, a NIC card extender.  In my opion N2K should be able to support Blade switches. Not every company has just rack mount servers, most enviroment is mixed. In my case, I run out ports on N5K, but plenty available on N2K.  I want add two more blade centers with gig switch modules in them. now I have to buy a N5K!!!.  I'm sure Cisco can make N2K to support switches too.

• Configuration of Cisco 2911 for Asterisk

  Hi all
  I use Cisco 2911 for Asterisk phone system communicate with external.
  However, sometime I can make call in and out. Sometime, just call in or out. Sometime, cannot make any call.
  I think it is the NAT, PAT and ACL in Cisco 2911 problem.  This Cisco is also a gateway to internet for users.
  Please any advice
  Thanks a lot
  Here is the configuration:
  Router#show run
  Building configuration...
  Current configuration : 1981 bytes
  ! Last configuration change at 20:06:06 UTC Thu Nov 14 2013
  ! NVRAM config last updated at 15:04:59 UTC Tue Nov 5 2013
  ! NVRAM config last updated at 15:04:59 UTC Tue Nov 5 2013
  version 15.1
  service timestamps debug datetime msec
  service timestamps log datetime msec
  no service password-encryption
  hostname Router
  boot-start-marker
  boot-end-marker
  enable secret 5 xxxxx
  no aaa new-model
  memory-size iomem 20
  no ipv6 cef
  ip source-route
  ip cef
  multilink bundle-name authenticated
  crypto pki token default removal timeout 0
  license udi pid CISCO2911/K9 sn FTX1603AH9C
  interface Embedded-Service-Engine0/0
  no ip address
  interface GigabitEthernet0/0
  description internal-LAN
  ip address 172.x.x.x 255.255.0.0
  ip nat inside
  ip virtual-reassembly in
  duplex auto
  speed auto
  interface GigabitEthernet0/1
  no ip address
  duplex auto
  speed auto
  interface GigabitEthernet0/1.1
  encapsulation dot1Q 11
  ip address 172.16.x.x 255.255.240.0
  interface GigabitEthernet0/2
  description internet
  ip address 50.240.x.x 255.255.255.240
  ip nat outside
  ip virtual-reassembly in
  duplex auto
  speed auto
  ip forward-protocol nd
  no ip http server
  no ip http secure-server
  ip nat inside source list 100 interface GigabitEthernet0/2 overload
  ip route profile
  ip route 0.0.0.0 0.0.0.0 50.240.x.x
  ip route 0.0.0.0 0.0.0.0 172.10.0.30 name ROUTE-VPN-REMOTE
  ip route 172.16.240.0 255.255.254.0 172.10.x.x
  access-list 100 permit ip 172.10.0.0 0.0.255.255 any
  access-list 100 permit ip 172.16.240.0 0.0.0.255 any
  access-list 100 permit udp any any range 5004 5090
  access-list 100 permit udp any any range 10000 20000
  control-plane
  line con 0
  line aux 0
  line 2
  no activation-character
  no exec
  transport preferred none
  transport input all
  transport output pad telnet rlogin lapb-ta mop udptn v120 ssh
  stopbits 1
  line vty 0 4
  login
  transport input all
  scheduler allocate 20000 1000
  end

  There are some VSP where they do the NAT.  If your VSP (like mine) do the NAT, then you need to globally disable NAT in your Asterisk.
  My VSP also recommends I disable ALG on my router.
  So you need to ask you VSP.

• What is maximuam site to site connection cisco router 2821

  Hi, i want to setup multiple site to site connection, between my headoffice and remote offices.
  on HeadOffice, i've cisco router 2821, with IOS model:
  c2800nm-adventerprisek9-mz.124-20.T.bin
  There is no extra hardware module on this router, and i want to know the number>
  What i've found on internet, is that is support up to 10 Cisco VPN Clients, but i've already tested it with 14 simultanious users, so i'm in doubt.
  let me know

  Duplicate posts. :P
  GO here: https://supportforums.cisco.com/discussion/12135781/what-maximuam-site-site-connection-cisco-router-2821

• Connect Cisco IP Phone 7941G-GE to asterisk

  I have a cisco IP PHONE 7941G-GE already with SIP firmware, but when i upload the config file with asterisk extension, etc the phone keeps saying "Registering" and never finish registering.
  My SIP Configuration File : http://pastebin.com/SB6XPiXD
  There are any log that i cant use to see if asterisk is blocking the phone or something like that ?
  Can anyone help me out ?
  Regards ;)

  Note - you started the thread in SPA IP Phones / XML Phone Applications
  But 7941G is not member of SPA product line and your's question has nothing to do with XML Application at all. So you are off-topic here. Please consider drop of this thread here (red button on top of page) and create it in more appropriate forum (you should add information mentioned by Leo Laohoo as well as information mentioned by me in next paragraph).
  According the question itself - best way to analyze registration problem is packet capture. You need to catch SIP REGISTER packets sent from your phone to Asterisk and responses sent in opposite direction. Use a packet catcher (tcpdump, wireshark or so) or display them on Asterisk's console (sip set debug peer ...)

• Connecting Cisco VPN client v5 to asa 5505

  I am having problem configuring remote vpn between ASA5505 and Cisco VPN client v5. I can successfully establish connection between ASA and Vpn client and receive IP address from ASA. VPN client statistics windows shows that packets are send and encrypted but none of the packets is Received/Decrypted.
  Can not ping asa 5505
  Any ideas on what I have missed?

  Your NAT configuration is incomplete, enter the following commands to your configuration:
  access-list nonat extended permit ip 192.168.1.0 255.255.255.0 192.168.0.0 255.255.255.0
  nat (inside) 0 access-list nonat
  This tells the ASA that the traffic destined for the VPN Client should not be NATted and should be sent directly to the client via the VPN Tunnel!
  Please rate if the post helps!
  Regards,
  Michael

• Sype connect Cisco UC520 authentication problem

  hi, 
  i havce configurated a skype connect account with credit and a sip profile. I have it configurated in my pbx cisco uc-520 but  dont works....
  skype page account said "El usuario de SIP no está registrado aún en sip.skype.com" and the log of my pbx said the same.
  i have a static nat ( bridging) with a dedicated public ip address. 
  i think is a problem with the configuration.
  please i need help
  thanks a lot
  Roman

  rwelsch wrote:
  hi, 
  i havce configurated a skype connect account with credit and a sip profile. I have it configurated in my pbx cisco uc-520 but  dont works....
  skype page account said "El usuario de SIP no está registrado aún en sip.skype.com" and the log of my pbx said the same.
  i have a static nat ( bridging) with a dedicated public ip address. 
  i think is a problem with the configuration.
  please i need help
  thanks a lot
  Roman
  If I understand your issue correctly, you are using User Registration and are unable to register your Cisco UC-520.
  Please verify that the following settings are correct in your PBX:
  Proxy Server (primary): sip.skype.com
  Registrar Server: sip.skype.com 
  Digest Authentication:  SIP User (99051000XXX)& password from Skype Connect sip profile.
  Note, if you cut and  paste the password, sometimes a space gets added to the field. If this happens registration will fail.
  Hope this helps.
  GaryB
  Skype Enterprise Support

• Tell me how to connect cisco 2505 and Asmi52

  my network structure would be like this ,
  ISP-------->RAD modem(asmi52)---------->cisco 2505
  RAD modem has E1/T1, 10/100 eth  and V.35 port support ,
  cisco 2505 has eth & serial port support
  now tell me what devices and cable will required to connect 2 mbps leased line connection .
  Thanks
  sumit

  Do you know what the wi-fi connection indicator looks like, which will appear in the iPad's status bar when connected via an avaialble wi-fi network vs the 3G or E for EDGE indicator available in the iPad's status bar when connected to your carrier's 3G or EDGE network?
  To join an avaialble wi-fi network, on your iPad go to Settings > Wi-Fi.
  Make sure wi-fi is on followed by selecting the avaialble wi-fi network listed below that you want to join.
  Message was edited by: Allan Sampson

• Connect cisco 3750X and Dell N4032F

  Hi,
  I need to connect 2 diferent networks (192.168.x.x vs 10.44.x.x). this connection will be temporal because network 192.168.x.x will be migrated to 10.44.x.x.
  On one side I have a Dell N4032F (L3) and on the other side a Cisco 3750X. What I need is just visibility between them? Wich is the best way to do it.
  Thanks

  Hi,
  On the 3750X, you need to configure the IP address on the interface connecting to Dell.
  example:
  config t
  interface gix/x
  ip address 10.44.1.1 255.255.255.0
  no sh
  Not sure what you need on the Dell side.
  HTH

• Connecting Cisco AIR-CAP2602E over WAN with WLC - Procedural Details

  Hi,
  I have a Wireless LAN Controller Installed in one of the subnets where some AIR-CAP2602E's are connected with the WLC. WLC acts as DHCP for the AIR-CAP2602E Devices.
  I have additional AIR-CAP2602E access-points at other location (Subnet) and Need to connect them with WLC. 
  Challange faced by me is creating DHCP on Cisco 2950 (L2) or 3750 (L3) with DHCP option 43. Can any one has detailed configuration of enabling DHCP for specific VLAN on Cisco L2 and L3 Devices. 

  If you have control of the DNS environment for these network segments, just make an entry for :
  cisco-lwapp-controller aliases cisco-capwap-controller (IP list) as the CAP will hunt for those two name sets.
  My WLC provides DHCP support only to the wlans supported by the AP but not the AP it self..
  hope this helps

• Cisco 871W eZVPN is unable to connect Cisco PIX vpn server

  crypto ipsec client ezvpn TEST
  connect auto
  group Cisco key cisco123
  mode client
  peer 172.1.1.1
  xauth userid mode interfactive
  interface FastEthernet4
  ip address 10.1.1.1 255.255.255.0
  ip access-group 101 in
  ip nat outside
  crypto ipsec client ezvpn TEST
  Internet Vlan1
  ip address 192.168.1.1 255.255.255.0
  ip access-group 100 out
  ip nat inside
  crypto ipsec client ezvpn TEST inside
  ip route 0.0.0.0. 0.0.0.0 192.168.1.254
  ip nat inside source route-map EzVPN1 interface FastEthernet4 overload
  access-list 100 permit ip any any
  access-list 101 permit ip any any
  access-list 103 permit ip 192.168.1.0 0.0.0.255 any
  route-map EzVPN1 permit 1
  match ip address 103
  These are the following commands I applied in my Router, It is able to connect but unable to access any other servers. The same user name & password I tried with the VPN dialer it works on my Laptop. Anything I am missing on the router configuration. The VPN server is Cisco PIX 515E.
  Cisco IOS on 871W is 12.3(8)Y12

  1) Isn't your default route supposed to be pointing towards the external interface?
  ip route 0.0.0.0. 0.0.0.0 192.168.1.254 ?
  2) Can you change the 'mode client' to 'mode network-extension'. Also the PIX will need 'nem enable'.
  Have a look at the following (I'm assuming you already have as your config seems to be similar):
  http://www.cisco.com/en/US/tech/tk583/tk372/technologies_configuration_example09186a0080809222.shtml
  For old 6.x code on PIX, have a look at:
  http://www.cisco.com/en/US/products/hw/vpndevc/ps2030/products_configuration_example09186a0080241a0d.shtml
  Regards
  Farrukh

• VPN stops forwarding traffic on subsequent connections (Cisco 861)

  Hello everyone,
  I have a very strange problem on 2 (independent) Cisco 861 routers in different places.
  They are both configured as easyVPN servers. One uses UDP, the other TCP. VPN clients connect by using Cisco VPN client software. This cannot be changed because the customer expects it this way. Both routers have the same problem:
  * the first VPN connection after a reset works fine. Traffic passes through and it is perfectly usable. I can ping the internal network interface on the router side from the client without problems.
  * the second connection (and all subsequent ones from different client machines etc.) connects fine, no errors on the client whatsoever (not sure I evaluated all possible debug output on the "server" side). However,  no traffic passes through. Pings do not come back from the 861 anymore through the VPN tunnel.
  I already enabled ICMP debugging and saw that pings are actually answered by the 861, but do not reach the client.The same seems to happen to any and all other packets as well.
  * If I restart the 861 the very same thing happens: first VPN connection works fine. You disconnect, try another connection from the very same client computer, and it does not work anymore until the next router reset.
  I append the configuration for sake of completeness. confidential parts are represented by XXX. Some ACLs are not in use right now; I used them for testing.
  Quite frankly, I am out of ideas (and desperate).
  Any ideas?
  Best Regards
  Mike
  version 15.0
  no service pad
  service tcp-keepalives-in
  service tcp-keepalives-out
  service timestamps debug datetime msec localtime show-timezone
  service timestamps log datetime msec localtime show-timezone
  service password-encryption
  service sequence-numbers
  hostname XXX
  boot-start-marker
  boot-end-marker
  logging buffered 51200
  logging console critical
  enable secret 5 XXX
  enable password 7 XXX
  aaa new-model
  aaa authentication login default local
  aaa authentication login ciscocp_vpn_xauth_ml_1 local
  aaa authorization exec default local
  aaa authorization network ciscocp_vpn_group_ml_1 local
  aaa session-id common
  memory-size iomem 10
  clock timezone Berlin 1
  crypto pki trustpoint TP-self-signed-2638506017
  enrollment selfsigned
  subject-name cn=IOS-Self-Signed-Certificate-2638506017
  revocation-check none
  rsakeypair TP-self-signed-2638506017
  no ip source-route
  ip cef
  no ip bootp server
  ip domain name local
  license udi pid CISCO861-K9 sn XXX
  archive
  log config
    hidekeys
  no spanning-tree vlan 1
  username root privilege 15 secret 5 XXX
  username remote secret 5 XXX
  crypto ctcp port 10000
  ip tcp synwait-time 10
  ip ssh time-out 60
  ip ssh authentication-retries 2
  crypto isakmp policy 1
  encr 3des
  authentication pre-share
  group 2
  crypto isakmp nat keepalive 20
  crypto isakmp client configuration group vpn
  key XXX
  pool SDM_POOL_1
  acl 104
  netmask 255.255.255.0
  crypto isakmp profile ciscocp-ike-profile-1
     match identity group vpn
     client authentication list ciscocp_vpn_xauth_ml_1
     isakmp authorization list ciscocp_vpn_group_ml_1
     client configuration address respond
     client configuration group vpn
     virtual-template 1
  crypto ipsec transform-set ESP-3DES-SHA esp-3des esp-sha-hmac
  crypto ipsec profile CiscoCP_Profile1
  set transform-set ESP-3DES-SHA
  set isakmp-profile ciscocp-ike-profile-1
  interface Loopback0
  ip address 192.168.234.1 255.255.255.0
  interface FastEthernet0
  interface FastEthernet1
  interface FastEthernet2
  interface FastEthernet3
  interface FastEthernet4
  ip address dhcp
  no ip redirects
  no ip unreachables
  no ip proxy-arp
  ip flow ingress
  duplex auto
  speed auto
  interface Virtual-Template1 type tunnel
  ip unnumbered Loopback0
  tunnel mode ipsec ipv4
  tunnel protection ipsec profile CiscoCP_Profile1
  interface Vlan1
  description $ETH-SW-LAUNCH$$INTF-INFO-HWIC 4ESW$
  ip address 192.168.233.1 255.255.255.0
  no ip redirects
  no ip unreachables
  no ip proxy-arp
  ip flow ingress
  ip virtual-reassembly
  ip tcp adjust-mss 1452
  ip local pool SDM_POOL_1 192.168.234.2 192.168.234.127
  ip forward-protocol nd
  no ip http server
  ip http secure-server
  ip http timeout-policy idle 60 life 86400 requests 10000
  ip route 10.179.232.0 255.255.255.0 192.168.233.2
  ip route 172.16.0.0 255.255.0.0 192.168.233.2
  ip access-list log-update threshold 10
  logging trap debugging
  access-list 1 remark INSIDE_IF=Vlan1
  access-list 1 remark CCP_ACL Category=2
  access-list 1 permit 192.168.233.0 0.0.0.255
  access-list 100 remark XXX
  access-list 100 permit ip 192.168.233.0 0.0.0.255 any
  access-list 100 permit ip 192.168.234.0 0.0.0.255 any
  access-list 101 remark CCP_ACL Category=4
  access-list 101 permit ip 192.168.233.0 0.0.0.255 any
  access-list 101 permit ip 192.168.234.0 0.0.0.255 any
  access-list 102 permit ip 192.168.233.0 0.0.0.255 192.168.234.0 0.0.0.255
  access-list 103 permit ip 192.168.233.0 0.0.0.255 192.168.234.0 0.0.0.255 log
  access-list 103 permit ip 192.168.234.0 0.0.0.255 192.168.233.0 0.0.0.255 log
  access-list 104 permit ip 192.168.233.0 0.0.0.255 any log-input
  access-list 104 permit ip 192.168.234.0 0.0.0.255 any log-input
  no cdp run
  control-plane
  banner exec ^CCC
  XXX
  ^C
  banner login ^CCC
  XXX
  ^C
  line con 0
  no modem enable
  transport output telnet
  line aux 0
  transport output telnet
  line vty 0 4
  privilege level 15
  transport input ssh
  scheduler max-task-time 5000
  scheduler allocate 4000 1000
  scheduler interval 500
  end

  Hi,
  I addded a dynamic crypto map to the configuration according to the document you sent. However, it does not work yet.
  There must be some stupid mistake or mixup with the old config.
  The router logs:
  000038: *Mar  1 01:19:24.047 Berlin: %CRYPTO-6-IKMP_MODE_FAILURE: Processing of Aggressive mode failed with peer at XXX
  000039: *Mar  1 01:19:29.403 Berlin: CTCP: cTCP connection entry not found. Dropping the packet
  Correspondingly, the client retransmits a few times during a connection attempt and then fails.
  The current configuration is:
  version 15.0
  no service pad
  service tcp-keepalives-in
  service tcp-keepalives-out
  service timestamps debug datetime msec localtime show-timezone
  service timestamps log datetime msec localtime show-timezone
  service password-encryption
  service sequence-numbers
  hostname XXX
  boot-start-marker
  boot-end-marker
  logging buffered 51200
  logging console critical
  enable secret XXX
  enable password XXX
  aaa new-model
  aaa authentication login default local
  aaa authentication login ciscocp_vpn_xauth_ml_1 local
  aaa authorization exec default local
  aaa authorization network ciscocp_vpn_group_ml_1 local
  aaa session-id common
  memory-size iomem 10
  clock timezone Berlin 1
  crypto pki trustpoint TP-self-signed-2638506017
  enrollment selfsigned
  subject-name cn=IOS-Self-Signed-Certificate-2638506017
  revocation-check none
  rsakeypair TP-self-signed-2638506017
  no ip source-route
  no ip cef
  no ip bootp server
  ip domain name local
  license udi pid CISCO861-K9 sn XXX
  archive
  log config
    hidekeys
  no spanning-tree vlan 1
  username root privilege 15 secret 5 XXX
  username remote secret 5 XXX
  crypto ctcp keepalive 10
  crypto ctcp port 10000
  ip tcp synwait-time 10
  ip ssh time-out 60
  ip ssh authentication-retries 2
  crypto isakmp policy 1
  encr 3des
  authentication pre-share
  group 2
  crypto isakmp nat keepalive 20
  crypto isakmp client configuration group vpn
  key XXX
  pool SDM_POOL_1
  acl 105
  netmask 255.255.255.0
  crypto isakmp client configuration group testgroup
  key XXX
  pool SDM_POOL_1
  crypto isakmp profile ciscocp-ike-profile-1
     match identity group vpn
     client authentication list ciscocp_vpn_xauth_ml_1
     isakmp authorization list ciscocp_vpn_group_ml_1
     client configuration address respond
     client configuration group vpn
  crypto isakmp profile VPNclient
     description VPN clients profile
     match identity group testgroup
     client authentication list clientauth
     isakmp authorization list groupauthor
     client configuration address respond
  crypto ipsec transform-set ESP-3DES-SHA esp-3des esp-sha-hmac
  crypto ipsec profile CiscoCP_Profile1
  set transform-set ESP-3DES-SHA
  set isakmp-profile ciscocp-ike-profile-1
  crypto dynamic-map dynmap 5
  set transform-set ESP-3DES-SHA
  set isakmp-profile VPNclient
  crypto map mymap 10 ipsec-isakmp dynamic dynmap
  interface Loopback0
  ip address 192.168.234.1 255.255.255.0
  interface FastEthernet0
  interface FastEthernet1
  interface FastEthernet2
  interface FastEthernet3
  interface FastEthernet4
  mtu 1300
  ip address dhcp
  no ip redirects
  no ip unreachables
  no ip proxy-arp
  ip flow ingress
  duplex auto
  speed auto
  interface Virtual-Template1 type tunnel
  ip unnumbered Loopback0
  tunnel mode ipsec ipv4
  crypto map mymap
  interface Vlan1
  description $ETH-SW-LAUNCH$$INTF-INFO-HWIC 4ESW$
  ip address 192.168.233.1 255.255.255.0
  no ip redirects
  no ip unreachables
  no ip proxy-arp
  ip flow ingress
  ip virtual-reassembly
  ip tcp adjust-mss 1452
  ip local pool SDM_POOL_1 192.168.234.2 192.168.234.127
  ip forward-protocol nd
  no ip http server
  ip http secure-server
  ip http timeout-policy idle 60 life 86400 requests 10000
  ip route 10.179.232.0 255.255.255.0 192.168.233.2
  ip route 172.16.0.0 255.255.0.0 192.168.233.2
  ip access-list log-update threshold 10
  logging trap debugging
  access-list 1 remark INSIDE_IF=Vlan1
  access-list 1 remark CCP_ACL Category=2
  access-list 1 permit 192.168.233.0 0.0.0.255
  access-list 100 remark XXX
  access-list 100 permit ip 192.168.233.0 0.0.0.255 any
  access-list 100 permit ip 192.168.234.0 0.0.0.255 any
  access-list 101 remark CCP_ACL Category=4
  access-list 101 permit ip 192.168.233.0 0.0.0.255 any
  access-list 101 permit ip 192.168.234.0 0.0.0.255 any
  access-list 102 permit ip 192.168.233.0 0.0.0.255 192.168.234.0 0.0.0.255
  access-list 103 permit ip 192.168.233.0 0.0.0.255 192.168.234.0 0.0.0.255 log
  access-list 103 permit ip 192.168.234.0 0.0.0.255 192.168.233.0 0.0.0.255 log
  access-list 104 permit ip 192.168.233.0 0.0.0.255 any log-input
  access-list 104 permit ip 192.168.234.0 0.0.0.255 any log-input
  access-list 105 permit ip 192.168.233.0 0.0.0.255 192.168.234.0 0.0.0.255
  no cdp run
  control-plane
  banner exec ^CCC
  XXX
  ^C
  banner login ^CCC
  XXX
  ^C
  line con 0
  no modem enable
  transport output telnet
  line aux 0
  transport output telnet
  line vty 0 4
  privilege level 15
  transport input ssh
  scheduler max-task-time 5000
  scheduler allocate 4000 1000
  scheduler interval 500
  end

• Help, error connection Cisco Identity Services Engine with AD, global catalog port status error

  Dear all,
  I have Cisco Indentity Services Engine, that  connected to Active Directory. When I test connection detailed,
  the result is error, said:
  Test Connection Results
  This dialog shows the detailed logs for the operation for: idsv0018.
  Status: FAILED: Global Catalog port status error.
  Can anyone help?
  I believe,  because this error, I can't search group of AD, at Cisco ISE.
  FYI: the connection from Cisco ISE to AD, joined with successful result.
  Thanks,
  Jerri

  It's clears that when ISE tries to  find the GC using the _gc._tcp. DNS query. It doesn't find that  information on the Domain controller. The GC information is missing on  the DC.
  gc._tcp.DnsForestName
  Allows a client to locate a Global Catalog (gc) server for this domain.
  Jatin Katyal
  - Do rate helpful posts -

• Poblem connecting CISCO anyconnect secure mobility client ver. 3.1.04 versus Windows VISTA SP2: Login denied

  Hi,
  Suddenly I have this error with my client cisco AnnyConnect ver. 3.1.04063 connecting with my computer:windows vista SP2.
  Message appeared: "Login denied. "name_company" security policies have rejected your login" and nothing else.
  I tried to uninstall and reinstall the client annyconect ver.3.1.04063 but not success, the same message, I think it's a problem with my computer because my user id with other computer colleagues runs ok and I can authenticate perfectly.
  Few days ago and always I have worked without problems then I don't know what happens...perhaps an automatically update of windows vista¿?
  Anyone of you with similar issue or problem?
  Thanks in advance.

  I have another computer with windows 8.1 and Cisco VPN Anyconnect version 3.1 works fine ! what is wrong with this computer. After a little bit of research I realised that this issue is from cisco hostscan. Interesting enough comp A(computer A) where vpn client works does not have cisco host csan folder in program files (x86). On this computer I did saw that folder and deleted it.
  I found the following information
  C:\Users\<user>\AppData\Local\Cisco\Cisco HostScan\lib has some sort of .libs for various antivirus.... I have AVG Antivirus 2015 and Spy Bot ...
  I have attached log files, if anybody wants to investigate then you are more than happy to investigate. Happy to be of help in case if you need any further input.
  Tired of breaking my head...