Cisco VPN Problem with Windows 7 on 3g usb device

As per title , we notice that users who are using cisco VPN on windows 7 connection via 3g USB device are not able to utilize the VPN connectivity , symptom as follow they are connected but no send or receive from VPN Box nothing showing and its normal .

well after a long read it is a common problem , due to DNE with cisco VPN . to fix it download winfix ( Citrix one ) .

steps are easy , uninstall cisco vpn , run the citrix DNE fix , restart your machine ,and install cisco VPN again .

Cool Huh ?

Download DNE fix from below

http://www.citrix.com/lang/English/lp/lp_1680845.asp

Advertisements

Protection : Harden Cisco IOS Devices

brief useful guides to protect your Router/Switch .

http://www.cisco.com/en/US/tech/tk648/tk361/technologies_tech_note09186a0080120f48.shtml

http://www.infosecisland.com/blogview/3309-How-to-secure-a-Cisco-router.html

Cisco TACACS “ACS” Redundency

Well if you want to have TACACS redundancy it is easy to be configured if you have two tacacs servers .

you might think there is no way to sync data from one server to another , guess what there is !

you can make one as primary and whatever configuration on the primary will be replicated to the secondary or as many ones you want .

will explain it later .

Aside

i searched the Net a lot and didn’t find any document on how to configure it , Yes solarwinds site advise you to enable certain fields but they dont provide an example .

lets make it simple , note all commands in configuration terminal

1. you need to define a record filter as below:

 flow record Orion

 match ipv4 protocol

 match ipv4 source address

 match ipv4 destination address

 match transport source-port

 match transport destination-port

 match interface input

 match interface output

 collect counter bytes

 collect counter packets

2.Define Exporter , where you want to send the Net Flow Data

flow exporter Orion_Exporter

description Export_To_Orion

destination 10.1.1.1 ( your netflow server ip )

source Loopback0 ( you need to choose your source )

transport udp 2055 ( define the port of netflow listener )

3.Create the Flow Monitor ( the main template which will include the exporter and record filter )

flow monitor Solarwinds

record Orion

exporter Orion_Exporter

4.apply the template to the interface you want to include in netflow , example the loop back

interface loopback 0

ip flow monitor Solarwinds input ( you can choose whether input or output or both )

by this it should  be working , troubleshooting is different story if needed it can be explained later

Cisco netflow v9 with solarwinds

Cisco Core Power Supply Upgrade !

changing a core power supply , first thought YES i need downtime ! and how long it will take to reboot …

intrest part is no need for downtime , if Cisco power set to HA . then ….

just swap one by one with no effect hopefully …( remove old one put new one and power it up , give few min to verify , then same to the other power supply )

First time to know that, and to try it live !

 

 

add to that this even works fine for downgrading power supply .. tested

Cisco Nexus vPC – Virtual Port Channel –

A great feature in Cisco nexus switches now is the vPC a virtual port channel , where if you have two switches Nexus you can create port channel  between them to the desired system . it somehow similar to VSS , but the Switches this time not combined .. advantage small example you have a firewall and want to maintenance redundancy or load balancer etc . you want to bind the interfaces to 2 switches for failover .  and hello this is the solution .

what do u need , of course Nexus switch .

configuration beginning feel difficult but it is easy .

1- you need to create keep a live interface – using the management interfaces of the switch is a good idea,

2-configurate a port channel ,between the two nexus , make sure same Vlans match in both Nexus or it won’t work properly .

3- this port channel use option as VPC data

4- check your setup and u are done .

details can be found in

http://www.cisco.com/en/US/prod/collateral/switches/ps9441/ps9670/configuration_guide_c07-543563.html

someone need assistance we can help

Nexus 5K OS upgrade

Well if you have nexus os and want to update it , it is similar to cisco ios.

1.download the image from cisco.com , this time you need to download two images , the kick start , and the OS image ( note they must match in ver )

2.u need ftp , tftp , scp whatever

3.login to the Nexus 5k , type copy tftp: bootflash: … if you are using management interface make sure when it ask for you which vrf to type management or u will get confused as it will give error not reachable

4. copy both files the start kick and the OS

5.now type install all kickstart bootflash://n5000-uk9-kickstart.bin system:n500-uk.n1.bin

thats all 🙂