I was always under the impression that the Total output drops was a counter that goes up until it resets (or maybe wraps around 4 billion). However, this seems to indicate otherwise, or something is just messed up: ny-swstack01#show int GigabitEthernet2/0/25 | inc Total output drops Input queue: 0/75/0/0 (size/max/drops/flushes); Total output drops: 14456 ny-swstack01#show int GigabitEthernet2/0/25 | inc Total output drops Input queue: 0/75/0/0 (size/max/drops/flushes); Total output drops: 3614 ny-swstack01#show int GigabitEthernet2/0/25 | inc [...]

Please bear with me, I’m a developer and hardly any skills in networking. We are trying to configure our Cisco 5505, and it has been done through ASDM. There is one big problem that we’re not able to solve, and that’s when you go from inside to outside and back in again. Example, we have a server “inside” and we want to be able to reach this server with the same adress if we’re on [...]

This is probably something extreamly simple but I am executing the following code to block usage of port 80 on ip 192.168.1.50 and it does not seem to be working. The interface is right and I am using a Cisco Router 2820. Here is the code I used: (config) access-list 101 deny tcp any host 192.168.1.50 eq 80 (config) access-list 101 permit ip any any (config-if) ip access-group 101 in (config-if) ip access-group 101 out [...]

When I connect to a Cisco 2801 with the Cisco rollover (lt blue) cable, the output via putty shows a bunch of garbled text. Here is a sample: £·£²>±Ï¶³5ï46§4·´³´³µ»´f5£¶³4¯µ>3þ0¯´£µ³·4£ô3¾²°&1÷´«¶¯4ç´¿3þµ§44´»5£5ï6§µ¯4³³4«´¯4¶6³·³3¾4¯4¿¶Ï6Ï5Ï·¯[£5£4»´·´³4ß7£´³44«6³4³5«6£3ò3þ´«4£´62¿3Ï7ï6³¶£´>55O´»6£56«6×7£´£5»´ò²>1«4³´»7«´£41«5¿7¯µn6¯5î6ç0¿°´61°4®5²>0«¶5³´F4»5»4ï4·>µ«·³µ»·»¶ It seems as though it might be a cable/Putty serial settings issue, but I was able to us the same console cable/putty serial settings on a cisco switch and I could read the output. I get the same output whether I’m using Minicom on Linux or [...]

Quick and simple question, but I’ve not been able to find an answer around. I have a Cisco ADSL router (model 877). I don’t have any Cisco support contract. How can I obtain an updated firmware for it? I know which firmware I want, and it’s a minor update from my current one (15.0 -> 15.1) with the same feature set; so I should be entitled to have it. And yet, Cisco doesn’t let me [...]

I am looking for some information in regards DDoS in the follow scenario: I have a server that is behind a Cisco Guard and it will be DDoS’ed, I only care about a set list of IPS that by not means are the attackers. Is it possible to null all other ips but this list to actually get any response to my server or in the long run no matter what I do if they [...]

I’ve a Cisco ASA 5505 50-user firewall in a co-location facility. The systems at this location are performing monitoring of additional remote sites (also running Pix or ASA devices) I’ve established site-to-site tunnels, but have hit the limit of the device. The ASA 5505 model is limited to 10 simultaneous IPsec tunnels. I am curious about my options here. Ideally, I’d like to be able to handle 15-20 connections. From research, it appears that I [...]

I am attempting to configure a Cisco 2901 router using IOS 15 to properly perform NAT/PAT translation between LAN and the internet connection. I’ve configured DHCP pool for the local interface, which works properly (even using an additional switch, wireless access point, …). Likewise, the WAN interface is configured to obtain its own IP by DHCP from the ISP. I can work on the LAN computers and I can access the internet directly from the [...]

I have a humble Cisco SF302-08MP managed PoE switch that I’m trying to use for powering an old Cisco 7902G IP phone. This phone uses the proprietary Cisco pre-standard (i.e., non-802.3af) PoE detection method. Connecting the IP phone to the switch results in the phone staying off. The switch has been updated with the latest firmware, but it still doesn’t work. I couldn’t find any CLI command to activate pre-standard PoE detection on the switch. [...]

I need to be able to see how long a VPN tunnel has been up from my ASA. sh crypto ipsec sa peer xxx.xxx.xxx.xxx doesn’t show me show vpn-sessiondb l2l filter name xxx.xxx.xxx.xxx | incl Duration Will show you duration for that tunnel Check more discussion of this question. Bookmark on Delicious Digg this post Recommend on Facebook share via Reddit Share with Stumblers Tweet about it Print for later Bookmark in Browser Tell a [...]