Filtering on CISCO 350 (b)

Similar Messages

• Filtering on CISCO 350 (a)

  Hi,
  I'm trying to set up filters on a CISCO 350 and am a bit confused with the configuration.
  1) Is it so that the "Default disposition" defines how all protocols will be handled while for each protocols defined in the "special cases" in a filter set definition, another action "per protocol" can be defined (kind of :DISCARD ALL but FORWARD only ones in Special cases)
  Thanks and best regards,
  Guy

  Since there has been no response to your post, it appears to be either too complex or too rare an issue for other forum members to assist you. If you don't get a suitable response to your post, you may wish to review our resources at the online Technical Assistance Center (http://www.cisco.com/tac) or speak with a TAC engineer. You can open a TAC case online at http://www.cisco.com/tac/caseopen
  If anyone else in the forum has some advice, please reply to this thread.
  Thank you for posting.

• Web filtering on Cisco 867 VAE K9 router

  Hi,
  how do I enable web filtering on Cisco 867 VAE K9 router with 15.1(4)M4 release? i have a message on the router : Content Filter unvailable ....
  thanks.

  Anthony,
  Yes it does https inspection and the portal also block based on categories (Social Networking, Gamblin; to tell a few samples), IP address and domain name.
  Get in touch with your Cisco Account Team or Cisco Partner/Reseller and get an evalution.
  HTH
  Luis Silva
  "If you need PDI (Planning, Design, Implement) assistance feel free to reach us"
  http://www.cisco.com/web/partners/tools/pdihd.html

• CISCO 350 Wireless LAN Module on Solaris

  I am running Solaris 8 (6/00) for Intel platform with xFree86 version 4.0.3 on my laptop. My CISCO 350 PCMCIA Wireless LAN module work cannot be used nor detected in Solaris. Can anyone help me with that?

  Are you running any other Vm's on the host server?
  Are they working? Did you enable your BIOS to support VM?
  Then with regards to the install make sure you follow the guide as it can get tricky.
  I forgot to add Promiscuous personally. Make double check you Network Backing. I am not running a VM anymore - just recalling where I had issues.
  http://www.cisco.com/c/en/us/support/docs/wireless/virtual-wireless-controller/113677-virtual-wlan-dg-00.html

• 802.1x, enterasys roamabout R2, cisco 350 aironet without win2k active dir.

  Can I set up a win2k 802.1x client authentication (win2k OS) using a cisco 350 aironet adapter via a roamabout r2 AP and get authenticated with a cisco ACS 3.0 radius server without having a win2k active directory domains ( i guess without using certificates)? I'm currently still using NT domains and having a WinNT PDC which I believe it will be a hassle to migrate win2k. If so, are there any documentation out there that can help me?

• Cisco 350 WB security

  I need info on the security issues and solutions for a building to building wireless wan using Cisco 350 Wireless Bridges. Everything I'm finding on the subject is for WLAN applications.

  Access points and bridges use the same radio technology, so security concerns as far as physical location are similar.

• HELP: symbol netvision phone w/cisco 350

  Hello
  I am having trouble setting up a symbol netvision phone with my cisco ap 350 that is running 12.01T. Basically, when the phone powers up it finds the SSID for my network (if i enable the broadcast SSID). It does not seem to get an IP Address/mask. It constantly displays "No Network". I have read the caveats for this release...there is mention that the symbol phone may display this message and there is no workaround present. If anyone has a working config on the AP, please email me at [email protected] Also it would be good to know if anyone has gotten this to work with release 12.01T. I have symbol extensions enable and the preamble is set to long....Thanks!

  I think the only thing you can do is to use Cisco Aironet 1100/1200 AP,instead of Cisco 350 series AP.
  This isssue is not present in 1200 and 1100AP.

• How many event actions filters a cisco ips can support

  we are running cisco ips 7.0(2) E4, and we are planning to tune some of the traffic everyday.......any idea how many event action filters can be applied to a sensor or is there is any maximum limit on the number of filters?

  There is no limit to how many event action filters you can configure. I assume that you also know that event action filters is ordered list:
  http://www.cisco.com/en/US/docs/security/ips/7.0/configuration/guide/idm/idm_event_action_rules.html#wp2033432
  Also, found this bug FYI: bugID: CSCtf78755:
  http://tools.cisco.com/Support/BugToolKit/search/getBugDetails.do?method=fetchBugDetails&bugId=CSCtf78755
  (When over 495 event action filters are configured via CLI, it's corrupting "rules0.xml" file)
  Hope that answers your question.

• Cisco internet filtering for cisco asa 5515x

  hi all,
  i know either websense or smartfilter (btw, mcaffee is now not selling smart filter anymore) can be used in 5515x internet filtering but does cisco have it's own filtering software for its product?  please don't give an appliance, my company is small.
  I'm tempting to use the default CLI command but there's no reporting on it i think.  Can it provide reporting for user access?  If it yes, please provide on how to do that.
  thanks!

  I just installed the ASA CX (http://www.cisco.com/en/US/products/ps12521/index.html) onto my software module on the ASA 5512-X. All it required was a SSD and license for the software. If you know anything about the Ironport Web Security Appliances, ASA CX is basically the IronPort WSA running on the sw-module of the ASA.
  The on-box version of the reporting/configuration engine (Cisco Prime Security Manager "PRSM") is simple but effective. Longer-term storage and drill-down reports requires an appliance or VMware virtual machine with the full-blown PRSM.
  The neat thing about the CX is the ability to block not just domains, but drill down and block specific application features. Say you want to block Facebook Games but not Facebook itself, it is a simple configuration on the ASA CX.
  I believe there is also a cloud version of it you can purchase, but I'm not sure of the details.
  Good luck!

• Sniffer for CISCO 350 PCMCIA card

  Heloo,
  I need some sniffer for this card. I can't test that traffic is encrypted. I need show the encryption to customer that is realy working good.
  Do you know anyone about some sniffer fo WIN??
  Thank you

  Don't know what to tell you, it's working great for us on both 2k and xp. You might want to get in touch with wildpackets support. We had no trouble with either of the above at anytime. We've had it about 6 months. We've been successful on a Dell Latitude, and 600e, T23 and T30 IBM's. Normal LEAP and wireless connectivity work after the wildpackets drivers are installed too so we're way happy replacing the way overpriced NA sniffer and support.

• Using WEP w/ DOS based PC and 350 card.

  We are currently using a DOS based PC that runs only a 5250 emulator. We connect to the network via a Cisco 350 card on a wide open wireless network. We have successfully set one of these units up to run of WEP side of our wireless. But all other units we cannot get to connect. We have tried loading all the different firmwares for the 350 card. All of the 4.x firmwares load fine and sets WEP key but won't connect to network. When we load the 5.x versions of the firmware, we get a Error Accessing Card: 8007 error when loading WEP key. We are wondering how to be able to get around this 8007 error, to be able to successfully try to connect with the newest firmware of the 350 card. Any thoughts?

  If you have windows version you can use that to setup the WEP keys.For the version 5.x there is no explicit mention for the support of DOS.For using DOS version 4.x seems to work fine.The DOS utilities run well under MS-DOS 6.22. For the PCM350 and LM350 PCMCIA cards, the DOS utilities do not use card and socket services for configuring the cards; they program the PCMICIA socket directly. Therefore, an 82365-compatible socket controller is required for proper operation. Many, but not all, socket controllers have this capability. Refer URL
  http://www.cisco.com/univercd/cc/td/doc/product/wireless/airo_350/350cards/msdos/instlcfg/dosutil.htm#wp1004697

• 350 Bridge thinks it is a 340

  I upgraded my 350 series Wireless Bridges to 12.03T, one of them is working fine, the other says:
  **PCMCIA Card in Socket 0 is not recognized
  **Failed to load driver for device entry #2
  when it boots up and the wireless interface is not showing up under Network ports or the setup page. Also in the bottom left area it says "Cisco BR340 12.03T" instead of "Cisco 350 Series 12.03T" like my other one. unfortunately I dont have a service contract on it, so I am hoping it is easy to troubleshoot.

  Can anybody help?

• PEAP/IAS - 350 Card driver problems

  Hi,
  When I update the drivers for the Cisco 350 wireless card IAS fails user authentication.
  We are using:
  Win2003(IAS) - PEAP MSCHAPv2
  Cisco AP 1200 - 12.2(13)JA1
  WinXPSP1
  Driver version 7.50.01 works OK
  Driver version 8.5.24.0 FAILS
  We have tried updating firmware and have installed MS patches on XP: KB826942, KB822725
  Any ideas?

  I found the problem:
  Disable "Enable Fast Reconnect" - problem with XPSP1
  Microsoft will fix in SP2
  In IAS configuration select Vendor as Cisco not "RADIUS Standard".

• Cisco AP350 Vxwork to IOS Conversion

  Hi,
  I'm trying to convert my cisco 350 from VxWorks to IOS. In the middle of uploading I received an error. Unable to detect source AP: Check: 1. Network connectivity, 2. User's Capability and 3. Whether SNMP is enabled in the source AP. However I'm unable to connect back to the AP using the browser interface. I also tried using the IPSU tool to get the IP address from the MAC address and that return a message "Device does not answer." Is there any other way to connect to the AP and reconfigure it? Any help is appreciated.
  Thanks,
  Mike

  Not sure what status screen you are referring to but if you follow the procedure below verbatim, you should be able to recover it.
  Recover from a Failure
  The menu that displays after the boot process is the VxWorks bootloader, which is functionally equivalent to ROM monitor (ROMmon) in Cisco IOS Software. Neither of the full operating systems is loaded or available, so neither of the full command sets is available.
  Note: If the VxWorks bootloader has been upgraded to Cisco IOS Software ROMmon but Flash memory has no operating system available, the unit displays the ap: prompt. In order to recover from this condition, refer to the Using the MODE button section in the Troubleshooting chapter of the Configuration Guide.
  Use these steps to restart the conversion process and get the unit back up:
  1.
  If there is an 802.11a radio module installed (AIR-RM20A), remove it during the rest of this procedure.
  2.
  Verify that the connection settings in the terminal application are 9600-8-None-1 and NO flow control (not hardware or software).
  3.
  Format the Flash memory for the unit to accept the VxWorks upgrade image:
  1.
  Press Ctrl-Z in order to bring up the hidden Format menu.
  2.
  Press exclamation point (!, Shift-1) in order to choose Format.
  3.
  Press 3 in order to choose Flash memory.
  Note: 3 is usually the choice for Flash memory. But you may have to enter a different number, which depends on your setup.
  4.
  Press Y (Shift-y) in order to confirm the decision to reformat the Flash memory.
  The reformat takes a few moments, after which the bootloader menu appears again.
  4.
  Transfer the upgrade image onto the AP.
  Complete these steps in order to start the transfer of the upgrade image:
  1.
  Press l (lowercase L) in order to put the AP into receive mode.
  The file transfer protocol appears, and characters scroll across the line as the unit waits for data to flow to it.
  2.
  In Microsoft Windows HyperTerminal, choose Transfer > Send.
  3.
  Choose an appropriate file transfer protocol.
  4.
  Browse to the location of the AP1200-Cisco-IOS-Upgrade-Image-v3.img file on the hard drive.
  5.
  Select the AP1200-Cisco-IOS-Upgrade-Image-v3.img file and click Send.
  When the file transfer is complete, the bootloader menu appears again. A file list also appears, which shows that the files that are compressed inside of the AP1200-Cisco-IOS-Upgrade-Image-v3.img file are now located in DRAM in the AP.
  5.
  Transfer the files to Flash with the copy process.
  Note: The files must be in Flash memory.
  Complete these steps:
  1.
  Press c in order to copy.
  2.
  Press 3 in order to choose the Flash memory as the destination.
  3.
  Choose the appropriate option for each of the files that are listed in DRAM.
  4.
  Repeat Steps 5a through 5c (the c ... 3 ... file option cycle) for each of the files that are in DRAM.
  Each time that you repeat the cycle, the bootloader menu and file list appear and show the progress of file copies from DRAM into Flash memory.
  6.
  Power cycle the AP.
  The upgrade proceeds as expected. During a successful upgrade, you see output that is similar to this:
  flashfs[0]: Checking block 25...bad block number (-1)
  flashfs[0]: erasing block 25...done.
  flashfs[0]: Checking block 26...bad block number (-1)
  flashfs[0]: erasing block 26...done.
  flashfs[0]: Checking block 27...bad block number (-1)
  flashfs[0]: erasing block 27...done.
  7.
  After the upgrade finishes successfully, reinstall the RM20A as needed.

• Administration of ASA5520 and cisco router mpls 1900

  Hi
  i just want to administor cisco
  ASA5520 and cisco router mpls 1900
  can some tell me as admin what to check as u get into office /reguraly in cisco asa 5520 and vpn mpls router for administrator ,right now its working as configured by supplier for remote sites to connect HQ and access several server
  My interest to know what are the basic day to day checkup on cisco asa5520 working as ips and cisco asa 5520 working as content filtering and cisco vpn mpls
  thx ,attached pic for ur view
  J

  Hello Malai,
  This question is subjective, I mean you can check the statistics on the CSC module for logs of the users going to blacklisted sites.
  You can check the CPU for the ASA's and IPS.
  You can monitor the amount of traffic traversing the interfaces of the ASA, you can determine witch host is using most of the bandwith,etc.
  Its pretty basic administration stuff
  Regards,
  Julio
  Rate all the helpful posts