Management traffic load over the WAN

Management process(include monitoring and security) with the central WCS system will cause Management traffic over the WAN links.
Can you tell me more about the traffic load over the WAN links if we will use it as only as Wifi detection and prevention system(inclue location and not for wireless services..for now).
We will use 150 air-AP1000(lwapp)on AIR-MONITOR mode over the WAN and 4400 controllers one in each remote sites(10 sites).

I think the following documents might provide you with some good information.
http://www.cisco.com/en/US/products/ps6305/products_configuration_guide_chapter09186a008059c98b.html
http://www.cisco.com/en/US/products/ps6305/products_configuration_guide_chapter09186a008059ca16.html

Similar Messages

  • Export Release Build Flash Builder 4.5 fails to load over the web.

    Exported Release Build Application fails to load over the web.  You can reproduce using the following steps:
    1. Create New Flex Project in Trial Flash Builder 4.5.
    2. Use the default Flex 4.5 sdk.
    3. Configure as a web application.
    3. Place the following MXML code in the main application file:
    <?xml version = "1.0" encoding = "utf-8"?>
    <s:Application xmlns:fx = "http://ns.adobe.com/mxml/2009"
    xmlns:s = "library://ns.adobe.com/flex/spark"
    xmlns:mx = "library://ns.adobe.com/flex/mx"
    minWidth = "955"
    minHeight = "600">
    <fx:Declarations>
    <!-- Place non-visual elements (e.g., services, value objects) here -->
    </fx:Declarations>
    <s:TextArea text = "Hello World!" width = "100%" height = "100%">
    </s:TextArea>
    </s:Application>
    3. Save the main application file and Export Release Build to bin-release.
    4. Place all files in bin-release on IIS web server in a web accessible location.
    5. Go to the web accessible location in any browser with newest flash player and view the application's html page.
    Actual Results:
    Flash movie appears blank. Context menu shows Movie Not Loaded. Network traffic shows application main swf downloaded. Framework dependent swfs not downloaded.
    Expected Results:
    Movie loads. Hello World! appears in text box. Context menu does not show Movie Not Loaded. Framework dependent swfs downloaded.
    Workaround (if any):
    Deploy on an Apache web server.
    The tests were run on IIS 7.x (7.0 for one, and 7.5)
    Flex application was built using Flex 4.5.0 SDK pre-bundled release (built-in flex 4.5 with Flash Builder 4.5 trial) on Mac OS X 10.6.7 (10J869)
    Flash Player 10.3.181.14
    Example failing website:
    http://staging.ibenergy.com/Test.html
    Any idea as to why my exported release build fails? Any help would be appreciated.

    Just tried this out on an IIS server with Flash player 10.3.181.14 - it worked.
    Are you using the release version of Flash Builder 4.5 with the release version of Flex SDK (not a prior SDK build)?
    The URL you mentioned gives me a 403 forbidden error.
    -Anirudh

  • REMOTE RECORDINGS OVER THE WAN IN CCX 7

    We have a customer
    with CCX 7 local agents and recording services ( BUT NO QUALITY MONITORING)
    Normally records all local agents calls ( colocated with CCX.
    Now customer has remote agents via WAN and needs to record their conversations.
    According specifications and PDI case the sutiationis:
    "This deployment model can support silent monitoring and recording for agents at any WAN-connected site by using desktop monitoring. (Refer the Cisco Unified CCX Software and Hardware Compatibility Guide for a list of phones that support desktop monitoring). It can also support SPAN port monitoring for agents on the VLAN segment local to Cisco Unified CCX server. This deployment model does not incorporate additional remote Monitoring components, so silent monitoring and recording is not possible for agents who are using the Cisco IP Phone Agent at remote sites. Similarly, silent monitoring and recording is not possible for agents at remote sites who are using phones that do not support desktop monitoring."
    http://www.cisco.com/en/US/docs/voice_ip_comm/cust_contact/contact_center/crs/express_7_0/design/guide/uccx70srnd.pdf
    page 4-6
    The list of phones not supported for desktop monitoring is listed in the compatibility guide.
    http://www.cisco.com/en/US/docs/voice_ip_comm/cust_contact/contact_center/crs/express_compatibility/matrix/crscomtx.pdf
    In other words CCX can support "silent monitoring and recording for agents at any WAN-connected site by using desktop monitoring"
    But assume you use an IP Phone that supports desktop monitoring
    AS RECORDING OPTION WITHOUT QUALITY MONITORING NEEDS MAC ADRESS OF AGENT how can CCX record agent calls taking into accoutn that MAC address is lost when traversing the WAN ...
    So the question for this dsicussion is :
    IS QUALITY MONITORING THE ONLY WAY TO RECORD REMOTE AGENTS OVER THE WAN OR ARE TEHRE OTHER OPTIONS WITHOUT IT??
    Pease reply to [email protected]

    It is possible without QM. When using desktop monitoring, the phone is configured to Span to PC port. The agent must be running CAD and the PC running it must be attached to the PC port on the phone. CAD sees the spanned packets from the phone and then forwards them to the recording service on the CCX server. The big gotcha is that the NIC in the PC must not discard 802.1q-tagged packets. If the NIC discards them instead of forwarding them into the NDIS stack, CAD will never see them. Sometimes this takes a Google search and a registry setting change to fix if it doesn't work at first.

  • DNS: Client can't connect because .local domain isn't in DNS. How can I connect over the WAN to server.domain.local?

    So my 2012 server is set up on the LAN with a .local domain name. 
    Remote Desktop Services are set up and remoteapp stuff works fine on the LAN.
    I've set up port forwarding so I can connect to the server over the WAN too, but remoteapp stuff is a bit different. I can connect to the server by specifying the correct IP address. Giving a Web browser the address
    https://serverIPAddress/RDWeb
    lets me get the login screen and see the range of apps for me to run. I select one, the connectoid is downloaded correctly (in Chrome) and I click on the downloaded connectoid. 
    Unfortunately, rather than pursuing the sensible IP-address approach that I started with, the connectoid has been given the server's name on the LAN:  server.domain.local. Clearly, the client machine tries to look this up but DNS hasn't heard of
    it because it's a .local address. 
    I cannot be the only one to have come across this apparent oversight on Microsoft's part. Any ideas as to how this can sensibly be overcome? Obviously, I could put the IP address translation into every client's hosts file (and I've done this and shown it
    works) but I've got too many clients to mess about like this. Anybody know 'the Microsoft way' to fix this?
    Thank you for checking this out -- I am confident the details of the problem are completely specified in this query but, if I'm wrong, please ask.
    Many thanks again,
    Biffo

    Hi,
    I would like to suggest you to follow the checklist.
    Checklist: Make RemoteApp Programs Available from the Internet
    http://technet.microsoft.com/en-us/library/cc772415.aspx
    Thanks.
    Jeremy Wu
    TechNet Community Support

  • HT1476 I got my new phone in Dec and just now had the time to sync it. I was given the option of using as a new iphone or restoring to a previous and I hit restore and  now everything i dwn loaded over the last few months is gone. What can I do?

    I got my new phone in Dec and just now had the time to sync it. I was given the option of using as a new iphone or restoring to a previous and I hit restore and  now everything i dwn loaded over the last few months is gone along w all sms and photos. What can I do?

    Well, unless you made a backup BEFORE you hit the restore button, your data is gone.

  • How can I turn off inherent features of Firefox? (Specifically, it automatically loads and displays the next page, but it will load OVER the current page)

    With this version of Firefox, it automatically loads the 'next' page. When I'm reading blogs, when I click to go back, it automatically loads the first page of the blog as the 'next' page I want to go to. However, it will load this page OVER the page I am on, so that I cannot see it. With some blogs, it is so extreme, I cannot use Firefox on them at all. This isn't an add-on or anything, and I cannot find it in the preferences panel. Can I turn it off somehow/is there a way to in Firefox 4?

    That is not standard behavior. You may have installed an extension that causes it.
    Start Firefox in [[Safe Mode]] to check if one of the add-ons is causing the problem (switch to the DEFAULT theme: Tools > Add-ons > Appearance/Themes).
    * Don't make any changes on the Safe mode start window.
    See:
    * [[Troubleshooting extensions and themes]]

  • Multi-Master Replication over the WAN

    DS verison: 5.1 sp1
    Did any one implement multi-master replication across the WAN or different IP subnets?

    Sun does mention about DS 5.2 being better than DS 5.1 in WAN based Muli-Master replication with respect to replication performance. I wanted to see if any one out there had implemented (or even played with this topology in their labs) it with out any major hickups.
    Thank you!

  • Deploying a large client partition over the WAN.

    Hi there,
    I have a straight forward question on deployments. Here is the scenario:
    I have a large number of machines (around 200) onto which I have to
    deploy our client partition. The catch is this:
    a) these machines (NT4.0 Workstations) are on a WAN, (64K line)
    b) the client partition is huge (about 12MB),
    c) and we would like to do regular upgrades to the system.
    I looked at Applets and it is not going to buy us anything. What would
    have helped is if Forte could compress the distribution files before
    sending them across the WAN. As far as I know, this is not a feature of
    Forte (we are using 3.0.G.2). I guess there must be something that I'm
    overlooking.
    Is there anyone out there willing to share his knowledge on this subject
    with us?
    Regards.
    Jaco Fouche
    ==============================================
    Jaco Fouch&eacute; - MD Systems (PTY) Ltd
    LOCAL INTERNATIONAL
    Tel: 011 454 3760 +27 11 454 3760
    Fax: 011 454 3780 +27 11 454 3780
    Cell: 082 451 3242 +27 82 451 3242
    Internet: [email protected]
    To unsubscribe, email '[email protected]' with
    'unsubscribe forte-users' as the body of the message.
    Searchable thread archive <URL:http://pinehurst.sageit.com/listarchive/>

    Hi there,
    I have a straight forward question on deployments. Here is the scenario:
    I have a large number of machines (around 200) onto which I have to
    deploy our client partition. The catch is this:
    a) these machines (NT4.0 Workstations) are on a WAN, (64K line)
    b) the client partition is huge (about 12MB),
    c) and we would like to do regular upgrades to the system.
    I looked at Applets and it is not going to buy us anything. What would
    have helped is if Forte could compress the distribution files before
    sending them across the WAN. As far as I know, this is not a feature of
    Forte (we are using 3.0.G.2). I guess there must be something that I'm
    overlooking.
    Is there anyone out there willing to share his knowledge on this subject
    with us?
    Regards.
    Jaco Fouche
    ==============================================
    Jaco Fouch&eacute; - MD Systems (PTY) Ltd
    LOCAL INTERNATIONAL
    Tel: 011 454 3760 +27 11 454 3760
    Fax: 011 454 3780 +27 11 454 3780
    Cell: 082 451 3242 +27 82 451 3242
    Internet: [email protected]
    To unsubscribe, email '[email protected]' with
    'unsubscribe forte-users' as the body of the message.
    Searchable thread archive <URL:http://pinehurst.sageit.com/listarchive/>

  • The whole configure over WAN thing is confusing me I don't want anyone to be able to access my airport extreme over the WAN.  How can I check to make sure that is the way I have it setup?

    I just bought a new airport extreme and I want to make sure that is NOT set up for "configure over WAN".  How do I check to make sure that is how I have it set up?  I only want access to the base via WPA2 password

    Open AirPort Utility, select the AirPort Extreme, and click Manual Setup
    Click the Base Station tab located just below the row of icons
    Remove any check mark that might be in the box next to Allow Setup over WAN
    Click Update to save your settings and the AirPort Extreme will restart in 25-30 seconds
    For what it is worth, if you leave the box checked, any computer that tries to access the settings on the Airport Extreme will be asked for the device password....not the wireless network password.

  • Inter-pbx sig' bandwidth over the WAN

    need to interconnect two similar pbx's across a wan.Using PRI. i vaguely recall reading the signalling channel (CCS) needs to be uncompressed. Is this configured or default. Any examples ?

    See this doc for what (I think) you are looking for:
    http://www.cisco.com/en/US/products/sw/iosswrel/ps1834/products_feature_guide09186a00800e9761.html#wp1019465
    Aaron

  • Distributed deployment migration to Clustering over the WAN

    Hello All,
    The existing deployment is distributed with different CM versions running on each of them i.e 6.1.3(2 Clusters), 7.1.5(1 Cluster) and 8.6(1Cluster). It has been requested to get these clusters migrated to version 10.x in either centralized or CoW deployment. However, some of the clusters have around 1700 and 2600 phones in the cluster and because of SRST gateway sizing limitation, we have to approach CoW deployment. We have CUCM, UCxn(new dep) and MediaSense(new dep) applications. There are currently around 8000 users registered to the CM but considering future expansion, it must be proposed for about 20K users. My questions are :
    1) With UCSS in place, how does the Migration work for different versions? I am not aware of the existing used and unused DLU's in 6.1.3 version and methinks it has to be taken into account to convert into type of Users for UCL.
    2) Without UCSS in place, how tricky does the migration become?
    2) There are 8 sites, with 5 sites having at least 2000 users. Considering future expansion for 20K users, how do we position the number of subscribers in each site for CoW deployment? I understand there are BHCA and bandwidth calculations involved, 1PuB, 1 SuB, 1 TFTP/MOH servr in DC, 1 SUB each in other sites and an additional TFTP server in one of the sites?
    Appreciate the help!
    Q

    Q,
    The first place to start is to look at the cucm 10.X SRND. Look in detail at capacity planning and call processing.
    http://www.cisco.com/c/en/us/td/docs/voice_ip_comm/cucm/srnd/collab10/collab10/callpros.html
    Each cucm 10.X node can support a total of 10,000 users/devices using the 10,000 OVA template. The cluster can support a total of 40,000 users/devices. I am sure this will meet your present and future needs.
    Next you need to look at sizing. The cisco virtualization wiki details what to do in this case..
    http://docwiki.cisco.com/wiki/Unified_Communications_in_a_Virtualized_Environment#How_to_Design
    Download the sizing tool from here
    http://tools.cisco.com/cucst/faces/landing.jsp
    Then use the placement tool to determine how you should place your VMs..
    You  may want to send your final output to Cisco to verify your design. Virtualization is not so straight forward as bare metal server deployments, so you need to design carefully.
    From what you have said, looking at about 20,000 users I would suggest the following
    1. 4 cucm subscribers--each deployed with 5,000 users/devices. This setup will allow for one to one backup
    2. 2 dedicated tftp/moh servers
    3. 1 publisher
    That gives you a total of 7 virtual machines. This means that you will need two UCS servers-C series servers
    Although the sizing tool suggested 12 VMs with six subscribers.. (this means that you will need three UCS servers-C series)
    For SRST, depending on how critical the phone system is you either do the ff
    1. Use the voice gateway at the site to support SRST. This obviously is limited to the capacity of the voice gateway at the site
    2. Re-use the existing cucm servers and deploy them at the local site just for SRST. This will ensure you can support the whole site in SRST
    It is advisable to place your UCS servers in your DC. If you have a single DC, then you place one there and then the other at another site (Hq)

  • HT201210 my Iphone was working fine and then I plugged it into Itunes for the update and now it says I have to restore to orignal factory settings.  I will lose my contacts, photos and anything else I have loaded over the past two years.  REALLY?? WHY

    This is so frustrating!  I plugged my Iphone 4S into my computer to update it via Itunes and now it says I have to restore to factory settings and will lose all of my contacts, photos, and applications I have downloaded.  All I was really wanted to do was delete photos that uploaded from my home computer and took up all the space on my phone!  GRRRR I hate this

    If you are using the iphone as designed then you should lose very little or nothing.
    You should be syncing contacts with your computer regularly, so all of your contacts should be on your computer and you can sync them back.
    You should be importing all pics taken with the iphone to your computer regularly as you would with any digital camera, most especially before any attempt to update.
    You should be transferring all purchases made on your iphone to your computer: File>Devices>Transfer Purchases
    You can redownload some itunes purchases in some countries:
    Downloading past purchases from the App Store, iBookstore, and iTunes Store

  • Management traffic to the ACE

    Do i need to explicitly define management traffic coming to the ace module, i see in a lot of configurations that they allow managerment traffic in a special class to the ace?
    also it is necessary to apply an access-list to the ace module to accept traffic for the vip, what if i do not use any access-list on the ace, will the traffic go through?

    Yes you need to define allowed traffic to the ace. The ace acts as an implicit deny. It will block everything until you allow it. The first policy/class match that you should define is the management traffic class.
    access-list ALL line 8 extended permit ip any any
    class-map type management match-any remote_access
    2 match protocol xml-https any
    4 match protocol icmp any
    5 match protocol telnet any
    6 match protocol ssh any
    7 match protocol http any
    8 match protocol https any
    policy-map type management first-match remote_mgmt_allow_policy
    class remote_access
    permit
    interface vlan 121
    ip address
    access-group input ALL
    service-policy input remote_mgmt_allow_policy
    no shutdown

  • LWAP to WLC over the internet

    Hi,
    Does anyone know if its possible for an LWAP to connect to a vWLC directly over the internet? (not a VPN/WAN link).
    While I appreciate there is a security risk involved (as the data CAPWAP is unencrypted) but this is purely for a Research and development project relating to SDN). There will be no corporate traffic passing over the tunnel.
    I see this as almost a backwards OEAP deploy.
    I'm trying to avoid shipping an AP to him configuring OEAP, shipping it back and deploying it here. Or working out some kind of Lan 2 Lan Deployment.
    We have a home based developer with virtual Prime, MSE and a WLC but would like to connect an AP from our HQ which has significantly more footfall than his remote site to his local WLC.
    I've consoled into the LWAP i have in our sandbox network here in the office and manually configured settings to define his public address as the WLC (which in turn has port forwarding enabled to forward CAPWAP traffic to his WLC).
    However what appears to be happening is the WLC is responding to the AP correctly and asks the AP to create a DTLS tunnel (i assume for the management connection) but the AP is trying to build this tunnel to the WLCs Private IP which of course is not rotatable over the Internet. Does the WLC provide the IP address of its management interface in its join response to the AP?
    AP7426.ac51.b3c1#show capwap ip config
    LWAPP Static IP Configuration
    IP Address         172.16.1.240
    IP netmask         255.255.255.0
    Default Gateway    172.16.1.253
    Primary Controller 123.123.123.123 (edited to hide real public address)
    AP7426.ac51.b3c1#show capwap client rcb
    AdminState                  :  ADMIN_ENABLED
    SwVer                       :  7.5.1.73
    NumFilledSlots              :  0
    Name                        :  AP7426.ac51.b3c1
    Location                    :  default location
    MwarName                    :  Cisco_8c:8f:8f
    MwarApMgrIp                 :  192.168.0.20
    MwarHwVer                   :  0.0.0.0
    ApMode                      :  Local
    ApSubMode                   :  Not Configured
    OperationState              :
    CAPWAP Path MTU             :  576
    LinkAuditing                :  disabled
    AP Rogue Detection Mode     :  Enabled
    AP Tcp Mss Adjust           :  Disabled
    Predownload Status          :  None
    Auto Immune Status          :  Disabled
    RA Guard Status             :  Disabled
    Efficient Upgrade State     :  Disabled
    Efficient Upgrade Role      :  None
    TFTP Server                 :  Disabled
    To summarize;
    Is it possible to connect a LWAP to a WLC located in a different private subnet by manually configuring the AP to connect to a public IP address configured with NAT translation/ Port forwarding. Or does the WLC management IP address need to be directly route-able from the AP?
    Thanks In Advance and sorry for such an unorganized post
    Zak

    You need to setup the WLC like it was an OEAP.  You need to enter the nat ip address in the management interface and also have a NAT translation that forwards UDP 5246 & UDP 5247 to the management ip of the WLC.  DTLS doesn't need to be enabled if you don't want.  This works, because I have had my peers connect an AP from their home to my home lab all over the USA.  If you have local AP's, which you probably don't, then you also need to configure this:
    config network ap-discovery nat-ip-only disable
    Scott

  • HT203167 I have purchased lot of music over the years, but I cannot find them in my iTunes account

    Hey, I cannot find my music in iTunes - I have purchased loads over the years but it isn;t there? shouldn't ALL purchased music be there in my account?

    Using iTunes 11.0.1. Although listed in recent purchase in the Store, I cannot find the album on my MacBook Pro. And I cannot find any option to sort the library by "Date Added."

Maybe you are looking for