IPS 4240 management interface MAC address

Similar Messages

• VNIC Manager arbitrary MAC addresses?

  Hi,
  is there a way to enter arbitrary MAC addresses using the VNIC Manager in OVM Manager 3.0.3? I need to migrate a few machines to OVM (both physical and virtual) where I need to maintain the existing MAC address. Unfortunately the WUI only allows to specify the last 3 words of the MAC. Is there any way around this so I can specify the complete MAC?
  Thanks,
  Bernd

  This is going to depend on how Oralce numerates the PCI BUS.  That will dictate which PCI device the OS sees in which order.
  You can try manipulating the order using a vNIC placement policy.  This will allow you to ensure certain vNIC/vHBAs appear first on the PCI BUS for the host.
  Regards,
  Robert

• IPS 4240 USB Interfaces

  Hello All,
  I am using a 4240 IPS sensor - I have noticed that there are 2 USB interfaces on the unit and I have a couple questions about their use that I was hoping someone could answer for me (this is the first time I am using a Cisco IPS product):
  1.  Can the USB ports be used to load a license key (rather than using an FTP or SCP server)?
  2.  How can I disable the USB ports to prevent someone from loading something malicious or unauthorized into the sensor?
  Thanks for your time!

  monitor session 1 source vlan 10 , 20 , 30, 40
  monitor session 1 destination interface Gi0/1
  The above commands will span the traffic (tx/rx) traffic in ALL the vlans 10,20,30,40 , but this will be limited to traffic only the switch on which this is configured.
  For getting traffic in the same vlans but on other switches, you will have to configure RSPAN.
  Refer to this link for more details.
  http://www.cisco.com/en/US/products/hw/switches/ps708/products_tech_note09186a008015c612.shtml

• Setting management interface WLC 7.4.121.0

  Hello.
  I have a problem setting Management interface IP in new controller 5508. I get the error "Error in setting management interface IP".I can not place a management controller IP.
  Starting IPv6 Services: ok
  Starting Config Sync Manager : ok
  Starting Hotspot Services: ok
  Starting PMIP Services: ok
  Starting Portal Server Services: ok
  Starting mDNS Services: ok
  Starting Management Services: 
     Web Server:    CLI: ok
     Secure Web: Web Authentication Certificate not found (error). If you cannot access management interface via HTTPS please reconfigure Virtual Interface.
     License Agent: ok
  (Cisco Controller) 
  Welcome to the Cisco Wizard Configuration Tool
  Use the '-' character to backup
  Would you like to terminate autoinstall? [yes]: -
  Invalid response
  Would you like to terminate autoinstall? [yes]: no
  System Name [Cisco_bf:dd:c4] (31 characters max): 
  AUTO-INSTALL: process terminated -- no configuration loaded
  Enter Administrative User Name (24 characters max): admin
  Enter Administrative Password (3 to 24 characters): ********
  Re-enter Administrative Password                 : ********
  Service Interface IP Address Configuration [static][DHCP]: none
  Service Interface IP Address: 1.1.1.1
  Service Interface Netmask: 255.255.255.0
  Enable Link Aggregation (LAG) [yes][NO]: no
  Management Interface IP Address: 192.168.10.1
  Management Interface Netmask: 255.255.255.0
  Management Interface Default Router: 192.168.10.10
  Error in setting management interface IP 
  Management Interface IP Address: 10.10.10.1
  Management Interface Netmask: 255.255.255.0
  Management Interface Default Router: 10.10.10.100
  Error in setting management interface IP 
  Management Interface IP Address: 
  Does anyone faced this issue?
  Thanks. 

  Hi,
  Try these:
  1. With the WLC, Please set flow control(in SecureCRT or hperterminal) to none. Once the changes are made, CLI will start working as usual.
   2. Another  common reason can be related to the virtual interface configuration of the controller. In order to resolve this problem, remove the virtual interface and then re-generate it with this command:
  WLC>config interface address virtual 1.1.1.1
  Then, reboot the controller. After the controller is rebooted, re-generate the webauth certificate locally on the controller with this command:
  WLC>config certificate generate webauth
  In the output of this command, you should see this message: Web Authentication certificate has been generated.
  Now, you should be able to access the secure web mode of the controller upon reboot.
  3. Try to use some diff IP address for service interface don't use 1.1.1.1.
  Regards
  Dont forget to rate helpful posts

• VNic Mac addresses not associated correctly when installing OVM Server

  We are trying to get our first Oracle VM environment running and noticed that on the UCS the mac assocated with eth0 ended with 0B but on the  Oracle install the eth0 interface mac address ends with 08.  The mac for eth3 on the Oracle install lines up with what the UCS sees as eth0.  How do we correct this and ensure the interfaces line up so that eth0 on the UCS is eth0 on the Oracle service profile ?

  This is going to depend on how Oralce numerates the PCI BUS.  That will dictate which PCI device the OS sees in which order.
  You can try manipulating the order using a vNIC placement policy.  This will allow you to ensure certain vNIC/vHBAs appear first on the PCI BUS for the host.
  Regards,
  Robert

• LAP registration with ap-manager interface only

  Hi, is it possible to register an APs with no visibility of the management interface? The WLC would have a separate ap-manager interface but in a different vfr then management interface. APs can see the ap-manager interface one but not the management one.

  I don't mind to use for example service port for the isolated management. But i heared the service port has restrictions under HA design.
  Exactly what firmware or model of WLC are you using? 
  You can't use ther Service Port for production.  This port is primarily used for Out-of-Band-Management and for HA SSO.
  The document is dated five years ago and describes the 4.0 SW. My question was if there is any trick or possibility to arrange it under present HW & SW.
  The document may be five years old, but when you are dealing with WLC 4400, WiSM or 2000/2100 then it's still valid.  The APs talk to the controller using the AP-manager interface.  This is the main reason why AP-manager interface and management interface IP addresses is recommended to be in the same subnet.  It will work if either one is on a different subnet but you'll need to do some routing work done.

• Configure active and standby mac address in failover

  Hi guys, 
  I just have a doubt that, if I configure the active and standby mac address in failover, does it will cause any downtime? 
  As I planning to configure the active and standby mac addresses in failover during production time and not wish that it will bring any downtime to me. 
  Besides that, just need some guideline that do I need to put all the interfaces' mac addresses in failover?
  failover mac address GigabitEthernet0/0 0022.90fe.2000 0022.90fe.2001 
  failover mac address GigabitEthernet0/1 0022.90fe.3000 0022.90fe.3001
  failover mac address GigabitEthernet0/2 0022.90fe.4000 0022.90fe.4001
  failover mac address GigabitEthernet0/3 0022.90fe.5000 0022.90fe.5001

  Hi Marius, 
  Seem like set the failover MAC address was not working for me. 
  Last friday I was tested the failover MAC address.
  TEST 1
  1, Power off primary ASA and secondary ASA work as active.
  2, 2821 router able to learn the correct arp entries.
  TEST 2
  1, Power on primary ASA and failover from secondary to primary. 
  2, 2821 router able to learn the correct arp entries from ASA.
  3, Set failover MAC address, power off primary ASA and secondary ASA be active.
  4, 2821 router unable to learn the correct arp entries.
  TEST 3
  1, Removed failover MAC address from secondary ASA.
  2, 2821 router still unable to learn the correct arp entries from ASA.
  3, Power up primary ASA and secondary ASA still in active.
  4, 2821 router still unable to learn the correct arp entries from ASA.
  5, Reboot 2821 router and it able to learn the arp entries from ASA.
  I am not sure this issue from router or from the ASA. But I guess I will try to upgrade the router in term of software and hardware. 

• Change mac address on wre54g

  is possible to change the default wireless interface mac address of this expander?Message Edited by maxym on 11-27-200604:56 AM

  however , it may be possible using a 3rd party firmware try at your own risk .

• WLC - How to block a single client MAC address?

  Hi Sir,
  On a WLC (software version 4.1.185.0), how to block a single client MAC address?
  I thought of using the SECURITY -> Disabled Clients. Is it right?
  There are currently 250 users connected to the WLC. MAC Filtering is not a scalable solution because as I understand it, we have to specify all the legitimate MAC addresses in the local database.
  Thank you.
  B.Rgds,
  Lim TS

  Hi Lim,
  As you have discovered, the Mac filtering on the WLC is an Allow (based on Mac address) rather than what you need which is a Deny (based on Mac address). I have not tried this feature but I think you are on the right track in using the Exclusion List (Blacklist) feature. Have a look;
  Use SECURITY > AAA > Disabled Client then click New or MONITOR > Clients then click Disable to navigate to this page.
  This page allows you to manually Exclusion List (blacklist) a client by MAC address.
  Add the MAC Address and an optional Client Description for the client to be disabled.
  Note When you enter a client MAC address to be disabled, the Operating System checks that the MAC address is not one of the known Local Net clients ( Local Net Users), Authorized clients ( MAC Filtering), or Local Management users ( Local Management Users) MAC addresses. If the entered MAC address is on one of these three lists, the Operating System does not allow the MAC address to be manually disabled.
  Hope this helps! Let us know.
  Rob

• How to see mac address in IPS 4240 ???

  Hi all,
  How to see mac-address of inline-vlan-pair ?  and how to see mac-address of management interface in IPS ?
  Regards,
  Kiran

  Hello Kiran,
  The inline-vlan-pair itself is tied to a particular interface. So you're really asking for the MAC address of the interface associated with the inline-vlan-pair.
  The MAC address of sensing ports will be added to a "show interfaces" via CSCse84414. You can currently view the MAC address of sensing interfaces by doing an "ifconfig -a" from the service account.
  Thank you,
  Blayne Dreier
  Cisco TAC IDS Team
  **Please check out our Podcast**
  TAC Security Show: http://www.cisco.com/go/tacsecuritypodcast

• WLC Duplicate IP address detected for AP-Manager Interface

  I am getting an error log in the WLC saying, its IP address is duplicate by another machine with MAC address A.B.C.D
  But this MAC address A.B.C.D is the MAC address of the AP-Manager Interface in the same controller.
  Model No.                   AIR-WLC2106-K9
  Software Version                 7.0.116.0
  %LWAPP-3-DUP_IP: spam_lrad.c:27626 Adding client 58:b0:35:83:72:86 to  exclusion list due to IP Address conflict with AP 'AP_DUXO_3'
  %LWAPP-3-DUP_AP_IP: spam_lrad.c:27612 Duplicate IP address  detected for AP AP_DUXO_3, IP address of AP  10.184.1.224, this is a  duplicate of IP on another machine (MAC address 58:b0:35:83:72:86)
  Cisco AP Identifier.............................. 1
  Cisco AP Name.................................... AP_DUXO_3
  Country code..................................... US  - United States
  Regulatory Domain allowed by Country............. 802.11bg:-A     802.11a:-A
  AP Country code.................................. US  - United States
  AP Regulatory Domain............................. 802.11bg:-A    802.11a:-N
  Switch Port Number .............................. 1
  MAC Address...................................... cc:ef:48:1a:e4:af
  IP Address Configuration......................... Static IP assigned
  IP Address....................................... 10.184.1.224
  IP NetMask....................................... 255.255.0.0
  Gateway IP Addr.................................. 10.184.20.2
  Domain...........................................
  Name Server......................................
  NAT External IP Address.......................... None
  CAPWAP Path MTU.................................. 1485
  Telnet State..................................... Enabled
  Ssh State........................................ Disabled
  Cisco AP Location................................ DUXO_BOX
  Cisco AP Group Name.............................. default-group
  Does anyone have an issue like this ?

  Are you sure this MAC address 58:b0:35:83:72:86 isn't some type of Apple device?  Its OUI is registered to apple.  How do clients get ip addresses DHCP?  It appears that the IP 10.184.1.224 is statically assigned to your ap-manager and that this client 58:b0:35:83:72:86 is either getting that same IP from DHCP or the client is statically assigning it themselves. 

• Management Interaface IPS 4240

  The management interface of IPS 4240 is disabled by default can anyone tell me how to enable this interface.
  I hv just done the basic setup and not able to access the IPS through Web browser

  management interfaces are disabled by default and they always are
  on the cisco ips run
  setup and once you setup an Ip for the ips you will be able to connect to the web interface
  here is a example of how a command-control should look like
  ex:
  name: FastEthernet0/1
  media-type: tx
  description:
  admin-state: disabled
  duplex: full default: auto
  speed: auto
  alt-tcp-reset-interface
  none
  subinterface-type
  none
  command-control: FastEthernet0/1
  bypass-mode: auto
  interface-notifications
  missed-percentage-threshold: 0 percent
  notification-interval: 30 seconds
  idle-interface-delay: 30 seconds
  as you see they are "protected" so you cannot change the state from disable to enable

• IDS-4210 picks up what IPS-4240 misses, strange duplex/interface problems

  I just installed a IPS-4240 inline on our primary internet inbound connection. I decided to leave the 4210 in place for a week or two while I tuned the signatures. It is receiving a span of the same traffic that the 4240 is receiving.
  I noticed today that the 4210 is picking up sig 3250 and the 4240 is no. The first thing I checked to make sure that the 4240 has this signature enabled, and it is. Anyone have any thoughts? BTW, All sensors are on the same version 5.1.1 and running s211 and managed through VMS.
  I would also like to mention that I had issues on the 4240 and its interfaces. Management only runs at half duplex and the interfaces that connect to our PIX. I ended up having to put a switch between the 4240 and the Pix 515e to solve the duplex issues.
  Anyone have any thoughts on this part

  I had the same duplex problem with my 4240 sensor connecting to my PIX. The only way I could get it to work without errors is to set both the sensor and the PIX interfaces to auto/auto. I worked with Cisco on this problem. No resolution, just the workaround. As far as sig 3250, IPS and IDS signatures may be a little different. I assume you span from the inside and run your in-line outside your firewall? If this is the case, then the 4240 sensor may see different traffic than the 4210.

• MAC address management

  Does anyone have more information on how Sun is generating MAC adresses for guest/IO/service domains and is their concern that this method will potentilly create duplicates in the enterprise.
  I have seen where there is a range of MAC addrs Sun has set aside for manual assignment to LDOMs, however that does not solve the issue of managing MAC addresses across potentially thousands of LDOMs to prevent duplicates?

  I'll have to look again, but I believe there is a calculation that is explained in the admin guide or in the Blueprints doc. Obviously this means there is the potential of MAC address collision. You can manually edit the MAC address, which is also in one of the docs I mentioned.

• Fails to learn mac address on Fiber interface with ISP

  Hi,
  We have a problem to bring a new 3750 switch interface up with the ISP.
  Current interface configuration on the router 7500 with SC/Single mode 1000 Base LX is
  interface GigabitEthernet4/0/0
  description ###### ISP #######
  ip address 1.1.1.2 255.255.255.252
  no ip redirects
  no ip unreachables
  load-interval 30
  no negotiation auto
  no cdp enable
  end
  works perfectly fine.
  we are trying to move this link to a Cisco 3750G on SFP single mode 1000 baase LX with the same configuration as below
  interface GigabitEthernet1/0/51
  no switchport
  ip address 1.1.1.2 255.255.255.252
  load-interval 30
  no ip redirects
  no ip unreachables
  no cdp enable
  speed nonegotiate
  we dont get any errors on the link but it fails to learn the mac address from the isp.
  checked the following.
  1. tried changing the SFP and the fiber.
  2. checked internally connecting back to back with another cisco device - works fine .
  3. checked with the isp for any static arp on their side and it is a no.
  I am wondering why it fails to learn the mac-address when it can self ping its own ip address and also the layer stays up with no errors on both the sides.
  Thanks

  Doesn't feel like a fiber/optical issue but a configuration mismatch on one of the end devices.