IDSM data port status down

Similar Messages

• 1300 Bridge fa0 port status down

  I have a remote 1300 bridge whose fa0 port consistently goes down after working well for over a week. It shows the port as admin up but line status down - no carrier. It plugs directly into a 1200 ap. I have tried to hard code the speed and duplex but the option to hard code the speed is not available. Any ideas?

  Hi
  yes the console port on the power injector is is console port for the AP. probably the best way to recover the bridge is to connect the 1310 to a laptops etherernet port and use the console port to learn the IP of the 1310 then manage the 1310 with the GUI it can be done with the CLI but if you have not done a wireless bridge before stick with the GUI. Both 1310's need to be on the same subnet, this is for management not for bridging. the bridging is at level 2 unless you use VLANS but with the routers that should not be an issue. once you have configured the Root router save the config and use it to to congigure the non-root router changing the IP address and the role to Non Root. plug the network cables into the the apropriate router ports and you should be set.
  this is assuming you know the userid/passwords for the AP's  the default was Cisco/Cisco.
  if the antennas are alinged your bridge should be reliable.
  based on the signal level between the AP's i would disable the B data rates use the G data rates and possibley disable the higher data rates if the radio stats show to many retrys, mor than 10%.
  Bill

• IDSM-2(5.0)inline mode- Pair Status=down??

  I have trouble with configuring idsm-2 inline mode(5.0).
  it seems that traffic doesn't go through idsm.
  I chechked it on command: sh interfac gi0/7(idsm mode)
  the 'pair Status=down'(below) shows that, i think.
  moreover, total packet received doesn't increase.
  how do i solve it?
  Please help!
  xxsystems# sh int gigabitEthernet0/7
  MAC statistics from interface GigabitEthernet0/7
  Media Type = backplane
  Missed Packet Percentage = 0
  Inline Mode = Paired with interface GigabitEthernet0/8
  Pair Status = Down
  Link Status = Up
  Link Speed = Auto_1000
  Link Duplex = Auto_Full
  Total Packets Received = 38
  Total Bytes Received = 2584
  Total Multicast Packets Received = 38
  Total Broadcast Packets Received = 0
  Total Jumbo Packets Received = 0
  Total Undersize Packets Received = 0
  Total Receive Errors = 0
  Total Receive FIFO Overruns = 0
  Total Packets Transmitted = 12
  Total Bytes Transmitted = 1152
  Total Multicast Packets Transmitted = 0
  Total Broadcast Packets Transmitted = 12
  Total Jumbo Packets Transmitted = 0
  Total Undersize Packets Transmitted = 0
  Total Transmit Errors = 0
  Total Transmit FIFO Overruns = 0

  You can only pair interfaces on your sensor if your sensor is capable of inline monitoring.
  http://www.cisco.com/en/US/products/sw/secursw/ps2113/products_installation_and_configuration_guide_chapter09186a00803eb069.html

• IDSM-2 data-ports

  Hi,
  I have taken over managing a 6500 IDSM-2 implementation, as far as I can see it has been configured in
  Promiscuous  Mode with a single virtual sensor assigned to both data ports 0/7 & 0/8.
  The switch has been configured with the following commands:
  intrusion-detection module 8 management-port access-vlan 507
  intrusion-detection module 8 data-port 1 access-vlan 507
  monitor session 66 source vlan 501 - 509 , 518 - 520 , 601 - 613
  monitor session 66 destination intrusion-detection-module 8 data-port 2
  can anyone tell me why the second command utilsed data port 1 and the bottom command utilises data port 2, is this valid and recommended?
  Thanks
  D

  So a little bit about IDSM architecture.
  IDSM has one management or command and control port (gig0/2) and 2 data ports (gig0/7 & gig0/8)
  These ports on IDSM connect to the 6500 over the backplane.
  IDSM Gig0/7 connects to Data-port 1 on 6500.
  IDSM Gig0/8 connects to Data-port 2 on 6500.
  The configuration involves two things:
  1. Configuring IDSM (Date, Time, Assigning virtual sensors to interfaces, signature tuning etc...)
  2. Configuring 6500 to send traffic to IDSM.
  Are you planning to put the IDSM in promiscuous or inline mode ?
  The configuration on the 6500 is different for both the modes.
  Configuration:
  intrusion-detection module 8 management-port access-vlan 507
  This puts the management port in vlan 507
  intrusion-detection module 8 data-port 1 access-vlan 507
  Puts data-port 1 in vlan 507. This is typically done in inline mode.
  monitor session 66 source vlan 501 - 509 , 518 - 520 , 601 - 613
  monitor  session 66 destination intrusion-detection-module 8 data-port 2
  This is a span configuration which is sending a copy of the data from the vlans to data-port 2.
  This is done when IDSM operates in promiscuous mode.
  So in your case, the correct configuration on 6500 to send traffic to IDSM depends which mode you want the IDSM to run in.
  Please check the link below which will explain how to configure 6500 for promiscuous or inline mode IDSM configuration.
  http://www.cisco.com/en/US/docs/security/ips/7.0/configuration/guide/cli/cli_idsm2.html
  Let me know if you have any questions.
  - Sid

• Some question on IDOC (Control Record/Data Record/Status Record)

  Dear all,
  I am new in this area, and would like to enquire some question on this topic.
  When I view a IDOC via WE02, each of the IDOC record will consist of Control Record/Data Record/Status Record).
  Questions:
  I notice that the data records consists of many segment (i.e. E1EDK01, etc) which are use to store application data.
  1 - My question is do I have to manually create all these segment and do a mapping to my application field one by one (i.e. that is when I want to create a brand new message type from scratch)?
  2 - If question no. 1 is Yes, how to do it, what are the transaction code to create it? can you show me the step by step.
  3 - I don't have to create the Control record and the status record for my new message type right ? because those field value will automatically pull out from partner profile and system status message, am I correct?
  Thanks.
  Tuff

  Hi Tuff,
  As everything in SAP, with IDOCs too there are
  1) Standard IDOCs
  2) Standard IDOCs(Extending - Enhancement to an IDOC, to accomodate for custom values)
  3) Custom IDOCs
  And every IDOC has,
  Control record - EDIDC Structure - This mostly reflects the partner profile information, along with few more details which are used for IDOC extension, Sequencing etc
  Data Records - EDID4 Structure - These records contain the actual business data of the document in concern. So for ORDERS05 it would contain order details, INVOIC02 - Invoice details so on...
  Status Records - These records capture the status of an IDOC from the time it is received/sent from your system and a corresponding business document is created/changed. So this will have messages like "IDOC sent to the port OK" etc which are status from the communication layer(ALE) to application specific messages like "Sales Order XXX created" or "Invalid Material" etc.
  You would have noticed something called as Process code in the partner profile, this is associated with a FM(or work flow task etc) which has the business logic coded in.
  So in case of an Inbound IDOC, the sending system updates the IDOC - Control and Data records, and sends it to the receiving system. On the receiving system the IDOC's control record is validated against the partner profiles set, if an entry is found then using the process code it finds the associated FM which will decode the data from the IDOC data records as per the IDOC type and then use it to post data into SAP (VIA BDC, Batch Input, BAPI etc).
  And all this while the Status records are being updated accordingly.
  So with the above context will try to answer your questions,
  1 - My question is do I have to manually create all these segment and do a mapping to my application field one by one (i.e. that is when I want to create a brand new message type from scratch)?
  In case of a custom IDOC, yes you will have  to.
  In case of a standard IDOC, you wouldn't have you just have set up the necessary configuration (Partner Profile, Process code etc)
  In case of a standard IDOC extended to accommodate for some custom values(for which there are no fields in standard IDOC - Let us say you have added some new fields on VA01) - In this case you can still use the standard Process code and Standard FM associated with it, SAP provides several Function exits in these FM's which you can leverage to add your custom logic.
  2 - If question no. 1 is Yes, how to do it, what are the transaction code to create it? can you show me the step by step.
  There are several documents available on the net and on SDN detailing step by step approach for all the above three cases,
  just search for step by step guide for IDOCS - sap.
  3 - I don't have to create the Control record and the status record for my new message type right ? because those field value will automatically pull out from partner profile and system status message, am I correct?
  Again it depends, in case of using a standard IDOC you wouldn't have to. But in case you have some customizations/enhancements then you might have to.
  For Ex: updating the control record accordingly for indicating that you have extended the standard IDOC. Or append custom messages to the status record as per the business logic.
  Try out the examples you find on the net and post any specific questions you might have.
  Regards,
  Chen

• OLTP to OLTP data porting

  Hi ,
  I have to start new data porting project which is having new source system in sybase and target DB in oracle uisng Oracle Ware House Builder.
  The source and Target Data models are not the same.
  Can any one guide me about how to approach to data port between these two DBs in terms of:
  1.What are the major steps to follow to achieve this ?
  2.What all the intermediate DBs i need to mainitain?
  3.What are the key issues on which i need to focus?
  Is there any other things i need to focus on this.
  Please guide me here
  Regards
  Rajesh

  OWB_Rajesh wrote:
  Hi DarthVader,
  I am very thankful to you for your guidence here.
  i have quick point to say about the below one:
  *3. Yes - Yyour load strategy will define this. I assume that you only want to load the data that has been added/modified so do tabfles in source(sybase) tell you what data has been modified/isnerted since the last run, are there history tables in sybase which logs this information if not then you will need to sit with the guys who understand the source data and pick up only modified data and you should maintain a history table at target(oracle) end to know what is the last date/time for which you have fetched the data so your next run should get everything from sybase which has been modified/inserted after the last fetch date.*
  here i have to pull 5 years of source data from sybase where they are using the old system which was developed using
  Sybase and Powerbuilder and planning to replace this with new system which was built now in .Net and Oracle.
  the both data models are differing at source as well target so i need to pull data directly from Sybase to Oracle then they start working with this new system by decommsiong the old one.
  Hope i am clear about what i need to do as part of Data Porting activity.
  As i need to pull 5 years of data from source to target which includes Historical data,Do i need to maintian AUDIT tables?
  Also what kind mapping excericse i need to do as Source(Sybase) and Target (Oracle) are differing in their data structures or Meta Data.
  As part of Tool selection which one is the best tool in OWB and OMWB?
  Can you please tell me what are all the major business questionnair i need to focus when i sit with end users?
  Regards
  RajeshThis is a one time exercise of getting historic data and would not require audit tables unless you intend to do it for a 10 million records at a time. I dont know what volume is involved here but if we are taling about few milion rows(around 50 million) then you can do this using owb provided your infrastructure,heardware and mapping is well tuned.
  Your mapping should only have target load type of "insert" all the times , do not create indexes on target table. first load the data and then create index on target oracle tables.
  not sure if it is wise to export large amount of data over the network if not then you will have to dump the datafrom sybase into a csv or flat file and then use external tables or sqlloader to import the data into oracle.
  unbderstanding the type of data(attributes) and amount of data from source is very crucial.
  Do not create any Pk/FK /triggers on target as this can slow down the process of load. I am assuming that the source tables are constrained.
  For migration i dont think u need to ask any business question except why do you want to port all 5 years data into oracle. Can you not port last two years data into oracle for MI or any other reason and leave the rest in sybase, the statutory requirements will only be to have the data secure irrespective of the system for 6,8 or 10 years.
  You might want to explore these before you start porting the data.
  Hope this helps

• Fastethernet hardware status down

  I have a 1400 Bridge connected to 1300 AP using 2940 switch. Things were working fine. When I reveiwed the IOS the fastethernet hardware status was DOWN. What some things to resolve this and bring back UP?

  WHICH Fastethernet port is down (AP, Switch, or Bridge)?
  Check the cabling, check the power injector / brick, try doing a shut / no shut on the affected interface, try another port of the switch (for both bridge and AP) ...
  Some details would help a lot
  Let us know
  Scott

• Wlan controller distribution port link down

  I have one wlc 4402 and in one distribution is a 1000Base T modul from 3Com (3CS93FP).
  I have a fast ethernet switch, but i couldn?t configure the port. i see only link status down. What could happened.
  Thank?s in advance
  tempomat

  If you are referring to connecting the 1000BaseT to your FastEthernet port, it is not possible: Although the 1000BaseT is spec'ed as 10/100/1000, the wlc4400 does not currently support anything other than 1000 (1GB) connection.

• Layer 2 trunk ports went down due to cisco 4500 core switch !!!

  Hi Everyone,
  My 2 Layer 2 2960 switchTrunk Ports went down due to cisco 4500 switch. It happening everytime . I rebbot the switch 4500 . then problem disappears but after sometime facing same issue.
  Please help.

  My 2 Layer 2 2960 switchTrunk Ports went down due to cisco 4500 switch. It happening everytime . I rebbot the switch 4500 . then problem disappears but after sometime facing same issue.
  Hmmmm ... You won't be able to determine anything if you won't provide any addition information.  I mean what do you mean by "went down"?  Did the port go into "error disable"? 
  If it went into error disable, console in both switches and post the output to the command "sh interface status err".

• Adtran with voice and data port

  I have an ADTRAN (remote location) with a voice and data port (internet). Does the ethernet port plugs into a serial or ethernet interface?
  The provider is telling me to plugg it into a hub...I've never heard of that and was curious if anyone has implemented this configuration before.

  Options are limited but include.
  1. Get a new SIM card from AT&T and reset your voicemail, see if that helps.
  2. Reset your iPhone (holding down the top button and home button for ~10 seconds until the Apple logo appears on the screen).
  3. Restore your iPhone. If restoring from backup does nothing then next try restore as new and start over.
  4. If nothing else works then call Apple or go to an Apple store and they will replace it.

• Intrusion-detection-module 7 data-port 2: Capture not allowed on a SPAN destination port

  Hi all
  I have 2 switches Cat6509E. each with IDSM module
  I have on first switch this commands
  intrusion-detection module 7 data-port 1 capture
  intrusion-detection module 7 data-port 2 capture
  intrusion-detection module 7 data-port 1 capture allowed-vlan 4,6,16,17,66
  intrusion-detection module 7 data-port 2 capture allowed-vlan 68,70,74,134,145
  And when I trying to put the same on second switch I will get this error message
  Intrusion-detection-module 7 data-port 2:  Capture not allowed on a SPAN destination port
  What does it mean?
  Output "sh monitor" is the same on both switches
  Session 1
  Type                   : Service Module Session
  Modules allowed        : 1-9
  Modules active         : 1,7
  BPDUs allowed          : Yes
  Session 2
  Type                   : Local Session
  Source VLANs           :
      Both               : 4
  Destination Ports      : analysis-module 8 data-port 1
  Peter

  Hi Peter,
       The first switch that you mention is configured (judging from the "intrusion-detection" commands) to use the VACL capture method of sending traffic to the IDSM-2 for inspection.  You can read about this method here:
  http://www.cisco.com/en/US/docs/security/ips/7.0/configuration/guide/cli/cli_idsm2.html#wp1030828
  In short, you configure a VACL to define the traffic you want to capture and apply it to the appropriate VLANs.  When traffic matches the VACL, it's copied to the IDSM-2 ports that have been configured with the "intrusion-detection module 7 data-port 1  capture" commands.
  On the second switch it appears that there is a monitor session setup SPANing traffic to the IDSM-2 port.  This is an alternative method of sending trafic to the IDSM-2 for inspection and is mutually exclusive with the VACL method on a particular IDSM-2 interface.  You can read about the SPAN method here:
  http://www.cisco.com/en/US/docs/security/ips/7.0/configuration/guide/cli/cli_idsm2.html#wp1030816
  This method, in short, simply involves configuring a SPAN session with the IDSM-2 interface as the desination.
  You'll need to choose one method or the other for configuring the second switch.  If you want it to match the configuration on the first switch, simply remove the monitor (SPAN) session that's currently configured.
  Best Regards,
  Justin

• E3200 Port Status Questions

  Hi,
  On my E3200 (Firmware v1.0.04) I have a gigabit service (Versa Technology Vx-200E) plugged in to the WAN port and 4 lines plugged in to the LAN ports.
  The "Internet Port"  shows 10/100 Mbps   (Why might that be?)
  LAN Port Status's:
  1 - Shows Gigabit.  (Connected to a Netgear GS108 Gigabit switch)
  2 - Shows no status at all (Connected to a TP-Link TL-SG10005D gigabit switch)
  3 - Shows no status at all (Connected to a TP-Link TL-SG10005D gigabit switch)
  4 - Shows no status at all (Connected to a TP-Link TL-SG10005D gigabit switch)
  Why does the Internet Port show 10/100 when a Gigabit is connected to it?
  Why do LAN ports 2-4 show no status at all?
  Thanks.
  Paul
  Solved!
  Go to Solution.

  Hey there, Paul! The WAN port of this router is not gigabit capable so there's no way it'll go beyond 10/100. The LAN ports will only show status if data packets are being transferred.

• Can not retrieve data source status

  I have 3 DPS (6.3) running fine with 3 (6.2) DS downstream, running fine as well, on RHAS 4 U4 .
  I don't understand why the DPS console always report it can not retrieve the data sources status. I checked the DS access logs, and I see each DPS
  default monitoring request (on the "" DN) every 30 seconds, which returns one entry, and no obvious error in any DPS or DS error log .
  Any idea ?

  Hi,
  it looks like a a known problem to me that may appear in the following situation:
  In somes cases, the proxy and the DSCC (console) uses different hostnames: For instance, the proxy may be registered to the admin framework as myhost.sun.com and the proxy itself may use only myhost. Operation status is exposed by the proxy as an LDAP entry with dn cn=myhost,.....,cn=monitor. When there is a naming mismatch, the console search for cn=myhost.sun.com,...., cn=monitor and can't find the entry, so the status is unknown.
  Don't know if you are in this situation but it might worth checking this.
  Hope this helps
  -Sylvain

• Data Mart Status of the request is not ticked

  Hello Everybody,
  I am the first time to deal with BW.
  After I loaded the data to the ODS, the request in the manage data view was not ticked as the others although the job was completed successfully.
  Does anyone can help?
  Many Thanks
  F-B-I

  Hi,
  have you deleted the data mart status in ods .
  u need to follow these steps
  1, if you chenged the status to red no need to delete the datamart status in ods .you can load the data from ods to infocube.
  2, if the status green and need to delete the datamart symbol in ods.
  regards
  sivaraju

• Unable to capture data from drop down list in custom added field in migo tcode at item level

  Hi guys,
  need bit help in resolving query related to custom added field in Tcode migo.
  i have added a field in migo at item level ,in this i have used drop down list
  to get data but unable to capture data from drop down list.gown through
  many blogs in scn but unable to resolve.
  Please help me out in this.
  Thanks,
  Umakant.

  Hi,
  U can use following code to fill the list box
  write this code in PBO
  In layout editor please select listbox in dropdown attribute of input field and put some fctcode attribute
  TYPE-POOLS vrm.
    DATA values TYPE vrm_values WITH HEADER LINE.
    TABLES: <ur custom Database table>.
    clear values, values[].
    SELECT * FROM <ur custom Database table>.
      values-text = <TABLE FIELD TO DISPLAY IN DROPDOWN> .
      values-key = <TABLE KEY FIELD TO DISPLAY IN DROPDOWN>.
      APPEND values.
    ENDSELECT.
    CALL FUNCTION 'VRM_SET_VALUES'
      EXPORTING
        id              = '<SCREEN INPUT FIELD NAME>'
        values          = values[]
      EXCEPTIONS
        id_illegal_name = 1
        OTHERS          = 2.
  Also please define the following before accessing the listbox value
  data: <listbox input field name> type <table field name>,
          <inputfield name where text to display> type string  in top include
  In PAI, select the text from the table into <inputfield name where text to display>  depending on value selected which will be called when enter key is pressed or any vale is selected