Firewall between WAAS 7341s and Central Manager.

Similar Messages

• WAAS installed without Central Manager. not compressing traffic

  Hi,
  I installed 2 SRE modules in 2 ISR G2 router and configure them without Central Manager, but they are not doing compression, Traffic is going to Branch to Head Office but without compression.
  My configuration is similar to this link
  http://2and2is5.wordpress.com/2011/03/30/configuring-cisco-waas-on-a-sre/
  I want to compress http, exchange and cifs traffic.
  I don't have Central Manager, could WAAS works without Central Manager ?
  Can anyone help me with that.
  Thanks in Advanced.

  Hi Arslan
  WAAS requires a Central Manager however once they are setup it doesn;t technically require one in order to continue to to optimise traffic. If your WAAS environment is setup correctly and is intercepting the traffic http and CIFS should automatically been compressed with LZ compression. WAAS can accelerate Exchange however it depends on how your Exchange environment is setup and whether it is encrypted? If its encrypted via SSL you will need a WAAS Central manager to accelerate it.
  To check if you WAE's are running correctly type in "show cms info" on the WAAS and you will probably see your WAE is status is not online:
  WAE2#sh cms info
  Device registration information :
  Device Id                            = 3107921                            
  Device registered as                 = WAAS Application Engine            
  Current WAAS Central Manager         = ##.##.##.##                       
  Registered with WAAS Central Manager = ##.##.##.## 
  Status                               = Online                             
  Time of last config-sync             = Mon Sep 24 13:18:51 2012           
  CMS services information :
  Service cms_ce is running
  You can check the accelerator status with the below command:
  WAE2#sh accelerator
  Accelerator     Licensed        Config State    Operational State            
  cifs            Yes             Enabled         Running   
  epm             Yes             Enabled         Running   
  http            Yes             Enabled         Running   
  mapi            Yes             Enabled         Running   
  nfs             Yes             Enabled         Running   
  ssl             Yes             Enabled         Running   
  video           No              Disabled        Shutdown  

• Difference between controlling budgetting and funds management

  Hi All,
  Can any one please explain me about the differece between controlling budgeting and funds management.
  What are the additioanl features available in funds management when compared to budgetting in controllin
  Thanks in Advance
  Raka

  Hi Raka,
  FUNDS MANAGEMENT
  The mySAP Public Sector solution plans and controls the flow
  of revenues and expenditures, guides you through planning and
  creating budgets, and uses active availability control to monitor
  management appropriation. Funds management capabilities
  simplify the design of budget plans using special planning techniques
  and make it possible to differentiate provisional budget
  plans. The solution supports centralized and decentralized
  planning and budget execution of funds.
  Controlling budgets is a headache for businesses of all sizes. Many smaller businesses start off
  on the right foot by putting in place a good book-keeping system, but then fail to exercise
  proper financial control and end up in trouble. The only way to make sure that you make a
  profit is to control the budget efficiently. To do this, you need to estimate your sales income
  reasonably accurately, estimate your costs precisely, and keep both under control. You also
  need to charge the right price for your end product in your chosen market(s). It is important
  systematically to collect all financial documents in a methodical way, and keep all your figures
  up to date on a daily basis. This actionlist will look at some of the most common problems in
  controlling a budget, and suggest ways to tackle them
  Regards,
  Srinivas Muthyala

• User synchronization issue between Active Directory and Solution manager.

  Requirement:
  Synchronize the users between Active directory and solution manager system.
  <u>What we did:</u>
  1.     Created RFC connection (LDAP_RFC) for LDAP connector.
  2.     Created new LDAP connector that utilize the RFC (LDAP_RFC).
  3.     Created new logical LDAP Server(CUA).Here we have to maintain the connection
  details to the physical directory.
  4.     We maintained the communication user that is used by the LDAP connector to bind the LDAP Directory Server.
  5.     In transaction LDAPMAP specific SAP data fields, we mapped to the desired
  directory attributes.
  6.     Testing from LDAP transaction working fine. We are able to see the attributes and
  values       from Active directory.
  <b><u>Issue:</u></b>
  When executed the program RSLDAPSYNC_USER for user synchronization from t-code se38 with below selection .
  LDAP Server = CUA (created earlier)
  LDAP Connector = LDAP_RFC (RFC connection created created ealier)
  In the tab: (Object that exist both in the directory and in the Database:)
  Selected: Compare Time Stamp.
  In the tab: (Objects the only exist in the Directory.)
  Selected : Create in Database.
  In the tab(Objects that only Exist in the Database:
  Selected: Ignore Object.
  Result from the report shows that connection to LDAP server is fine and ‘0’(zero) objects in Directory.
  The program does not create any new user in the Solution Manager system.
  Any help on this issue greatly appreciated.
  Thanks & Regards,
  Harish

  where did you see this error ? is there anymore details.
  i think the account you are using for Sync does not have Replicate Directory Changes permission in AD. follow below article and give Replicate directory changes permission.
  http://technet.microsoft.com/en-us/library/hh296982(v=office.15).aspx
  Thanks, Noddy

• Difference between application server and central instance

  Hi everyone,
  whats the difference between application server and central instance and message server. where it will be installed. and how?
  Regards
  Basis Fresher

  Hi,
  just want to clarify that is is not correct that only one enqueue process can be configured on the CI.
  Please see the documentation within transaction RZ11 for the parameter Parameter : rdisp/wp_no_enq
  Short description : number of enqueue work processes
  Parameter description :
  You can use this parameter to define the number of enqueue work processes for the instance.
  Ensure that a value >0 is only set on the central instance that provides the enqueue server (instance rdisp/enqname ). One enqueue work process on the central instance is normally sufficient (rdisp/wp_no_enq = 1); only in very large systems can a higher value be useful.
  Kind Regards
  Thomas Alt

• What is the difference between personnel development and performance management

  Hi,
  What is the difference between personnel development and performance management in terms of configuration and in  portal level .
  Thanks
  Srikant

  HI Srikant,
  Personnel development is PD module where u can configure the qualification catalog with the proficiency which can be attached to the position or job as a requirement and the same can be attached to the person as a qualification and then you can do the profile matchup and find any qualification deficit and can propose any trraining required to impart the qualification.And also you can do succession planing, career planing and also development plan.
  Performance management is an appraisal cycle in a company . All appraisal process between manager and the employee will be taken care via portal with the appraisal template.(form)
  hope this will help you.
  regards,
  DInesh

• What is the difference between Serial numbers and Batch management.

  Hi Gurus,
  Can anyone explain the difference between Serial Number and Batch Management in breif.
  Regards
  Ravi

  Hi,
  Serial number management and batch management are different functions that can be
  used in conjunction with each other.
  A batch represents a non-reproducible subset
  of the total quantity of a material held in stock, which is managed separately from
  other subsets of the same material.
  For Example  Different production lots
  (for example, paints, wallpapers, pharmaceutical products), delivery lots or quality
  grades of a material.
  whereas a serial number is a number that you give to an individual item of material in addition
  to the material number, in order to differentiate between this individual piece and all
  other items of the material. The combination of material number and serial number
  is unique. It is not necessary to use the batch management function to use serial
  number management.
  Regards
  VIjay.

• Difference between Consolidation, Harmonization and Central master data man

  Hi ..Expertise
  Consolidation is use to identify duplicate records and merge them into one record.
  Harmonization is the process of pushing the new cleansed data back out to your partner systems.
  Central master data management means you create records within MDM and then you distribute (Syndicate) this centrally created data to your Remote Systems.
  My Question is her after Consolidation both Harmonization and Central master data management is doing the same thing i.e. sending the clean data to the other system. What is the difference between these two? Please explain me with an example or scenario..

  Hi Yugandhar,
  There are three basic scenarios that we follow in MDM:
  Data Consolidation
  Data Harmonization
  Central Master Data Management
  Consolidation :
  Conolidation (matching , normalization, cleansing) and storage of master data imported from client system. Entails capabilities to identify identical and similar objects spread across the local systems , build consolidated master data.
  Key Capabilities:
  1. Cleansing and de-duplication
  2. Data normalization including categorization and taxonomy management
  3. New interactive consolidation capabilities
  Data Harmonization :
  In case of Harmonization we generally aim at reaching high quality master data within heterogeneous system landscapes. Here the main focus is on ensuring high quality of master data within the connected systems and then distributing the Master data
  Key Capabilities:
  1. Automated synchronization of globally relevant master data information
  2. New Interactive distribution capabilities
  Central Master Data Management :
  In case of CMDM, it is not always the scenario that the Client wants to go for the above two scenario`s, but CMDM is always required as it helps us to maintain the Business data effectively and efficiently.
  After MDM is put into the business scenario all the operations related to the Master records are done in MDM only. For Eg: Creating a record, Deleting a record, Distributing a record etc.
  Now it is the work of CMDM to centrally maintain the data and check that no duplicate enteries can be created.
  And all the various systems that are attached to MDM gets the updates from CMDM with the help of Syndication Process or Distribution Process.
  Key Capabilities:
  1. Central creation and maintenance of data
  2. Ongoing master data quality
  Hope this would be helpful !!!!!!!!!
  Regards,
  Parul

• Difference between SAP SLD and SAP Management console

  Hello,
  It seems that both System landscape directory and SAP management console have some overlapping features. The services can be started or stopped in both. Is it true? Does anyone know the difference between these 2 and where does Solution manager fit in?
  Thanks
  Shailik

  Hi,
  SAP SLD  is the central information provider in a system landscape.this contains both Component information and Landscape description.COMPONENT Info in sense all the sap products and components along with their versions, And also third party products also.LANDSCAPE desc in sense the description of all the systems in particular landscape.
  Example:This can shows exact idea for you.Components like CAF,Webdynpo(WD-java),BPM etc info.And the host names,Message server ports etc.Here we dont have start/stop functionality.
  SAP MC provides a common framework for centralized system management. It allows you to monitor and perform basic administration tasks on the SAP system centrally, thus simplifying system administration. Using the SAP MC you can
  1.Monitor and control (start, stop, or restart) the SAP system and its instances with a single tool
  2.Monitor system alerts
  3.Display the list of all access points to an SAP system etc.
  We can see difference by looking into http://<host name>:<port>/index.html
  Look and feel are also differ.
  For more info you can go through these links of sap help.
  For SAP SLD:http://help.sap.com/saphelp_nw04/helpdata/en/fe/39ae3d47afd652e10000000a114084/frameset.htm
  For SAP MC:http://help.sap.com/saphelp_nwce10/helpdata/en/44/c707c053550f2ce10000000a1553f7/frameset.htm
  Thanks,
  Murthy.

• WAAS 4.1 central management

  Hi All,
  Base on my understanding, we can run CM on 274 appliance with enterprise license. my question is: if company wants to save money and use 274 as AA, is it possible to implement waas 4.1 solution without even have CM? or CM is the mandatory piece of design?
  thanks
  Alex

  The use of a Central manager is not required to accelerate traffic. However, without, you will not have access statistics reporting, CM software updates, GUI configuration and more.
  All AA will have a default policy, but will need to use CLI to implement any advanced features. Highly recommended to utilize a CM in optimization environment as number of site deployments grow. Without CM each branch / core node needs to be administered individually as opposed to centrally using group policies.
  Taking the cost into effect of admin for each device vs. ~6k for a manager kind of pays for itself.
  The WAVE274 allows for up to 1000 managed devices.

• WAAS - behavior if central manager is down

  We would like to move our 4.1.3 central manager to a different city. I understand that the waas devices dependent on the CM continue to operate if the CM is down, but if a waas device reboots while the CM is down, will it continue to operate?

  The easy way to do this would be to add a Standby CM and fail over to it while the Primary is offline during the move.
  However, if a box is rebooted while a single CM is offline, it should be okay unless you have disk encryption enabled. Then it won't be able to access the disk cache until it can reach a CM during the boot cycle for the encryption key.
  Also, another thing to consider: Are you using a dns host name (waascm.cisco.com) in your WAE configs for the "central manager address" or are you using an IP address that will be changing? If you are using an IP address and are NOT using the Standby CM failover technique, then you have to change it on the WAEs manually when the CM comes up with a new IP address.
  Hope that helps,
  Dan

• How can I enable GUI in WAAS Stand By Central Manager

  Hi guys,
  I'm testing the stand by central manager, the situation is as follows:
  When the active central manager goes down I try to access the GUI in stand by central manager but it always sends me the following error
  Graphical user interface is not enabled in this standby CM.
  Please close  this window and go to the Primary CM.
  So I think that I have to enable anything but I don't know what, can anybody help me?
  Thanks in advance!
  Lenin

  Currently the switch to a standby CM requires manual intervention.
  The benefit of the Central Manager is that it provides configuration management, device management (software upgrades, etc.), reporting, and security services from a single, central location.  Note that the security services, such as disk encryption keys, SSL certificates, etc., are available from the Standby CM (in the event that the Primary CM is unavailable) without the need to promote the Standby to Primary.
  Regards,
  Zach

• 3945 Router Issue between WAAS Module and IOS Firewall

  I have a new 3945 router with a SM-SRE-900 module for WAAS. The 3945 also has IP inspection configured. When IP inspection and WCCP redirection running at the same time, user connections to data center were all lost. If just IP inspection or WCC Rredirection but not both, user connections were good.
  I'm feeling the problem is IP inspection not WAAS aware. I tried "ip inpsect waas enable", but the command was not available. The 3945 router, SM-SRE module, and the IOS code, are all newest versions. So I was wondering if anyone has seen the similar issues and had experience of enabling WAAS through IP inspection on those new products.
  Here is the configuration info:
  3945 G2 ISR: IOS 15.1(1)T1;
  SM-SRE-900: WAAS 4.2.3 build7;
  3945 LAN interface: ip inspection in and ip wccp 61 redirect in
  3945 WAN interface: ip wccp 62 redirect in
  3945 SM 1/0 interface: internal connection to SM-SRE module
  Between 3945 and SM-SRE module: WCCP GRE redirection and IP Forwarding return.
  If you are aware of any 15.1(1)T1 bugs that may be related, please let me know too.
  Thanks for any help.

  Hi,
     This is in general for IOS / ISR. On CCO we have a very good document for ZBFW and WAAS intigration, see below
  http://www.cisco.com/en/US/docs/ios/sec_data_plane/configuration/guide/sec_zone_polcy_firew_ps10592_TSD_Products_Configuration_Guide_Chapter.html#wp1118498
  If you still need to run CBAC, then recommended solution in my first post should work for you.
  If the router is in the middle of TCP optamization path, then depending upon optamization product you need to configure the firewall feature like anyother firewall. for Cisco WAAS we have "ip inspect WAAS enable".
  Hope this has answer your question. Thanks.
  Ahsan Khan

• What's the difference between Screen Sharing and Remote Management?

  As the title asks. What is the difference between the two?
  Because heres the thing. I set Screen Sharing on in Sharing. Then a few days later I will go back to the Sharing preferences and instead of Screen Sharing being checked. Remote Management is now checked, not Screen Sharing. What's the deal? Is that normal?
  I was wondering if it was because I log into my iMac sometimes using my iPhone with that Mocha VNC program. Its the only program I use to remotely control my computer. Is that it?
  Any help I can get is appreciated! Thanks!

  Remote Management provides support for the additional functionality of Apple Remote Desktop as compared to a standard VNC setup. The options are otherwise identical.
  (35284)

• "Connection reset by peer" using firewall between iFS API and Database

  Hi ..
  We have a webapplication running on a websphere server using the iFS API to connect to a iFS schema through a firewall ( PIX ). The firewall will close idle connections after a while, and this results in "Connection reset by peer" errors in our application.
  Firewall guys says that configuring the firewall not to close connections, is not an option.
  Does anybody have experiences with this, suggestions on how to deal with this?
  We are running iFS 9.0.1.
  Thanks
  Anders Monrad
  Danisco IT

  I'm having the same problem, using a PIX firewall, however, I have the firewall setup between OHS & OC4J, also between OC4J and our application database.
  I have a solution for the OC4J and app DB. If I set the expire_time = 10 in sqlnet.ora, this will ensure that sqlnet will ping the connection between OC4j and the DB every 10 minutes, thus the firewall will not close the connection due to inactivity.
  However, does anyone have a solution for the OHS & OC4J connection? Can this be resolved with configuration rather than having to use an app to ping it?
  [I realise I could write an app to retrieve a page every so often to keep the connection open, but I want to do it with configuration]
  Thanks in Advance.