I have 2 racks in a DC that cross connected together. Now, the datacenter gives me 1 port and I would like to put 1 switch at each rack. I have successfully set up 1 switch and connect to the internet. But, I am unable to set up the other.
Since now I utilize Cisco 2924 in my racks, now I am going to install a new rack and I want to know if to install again 2924 or you recommend me 2950? what important differences (pros and cons) offers the 2950 front to 2924?
I'm trying to learn about network. I bought Cisco 2950 for testing. I set it up and finding out the way to cap its ports at 20Mbps or 50Mbps. Do you know what command or how to do this?
Also what command to check the port speed or to uncap the port?
Is there much advantage to going with the 2960 series switches vs. the 2950 series? Basically I'm looking at 24 port and 48 port switches (10/100) with GBIT (copper) uplinks.
I am looking at picking up a switch to mess around with at home. I found the following within driving distance but have no idea of which one will give me more up to date, hands on experience. Any feedback is greatly appreciated.
Used Cisco WS-C5509 Chassis with power supply ( POWER SUPPLY 34-0870-01), and fan (WSC5509FAN) Cisco WS-X5530-E2 Supervisor Engine III Modules Cisco Systems WS-U5537-FETX CISCO 4 PORT 100BASETX UPLINK MODULE Cisco WS-X5234-RJ45 Switch Modules X 8
$160 each.
Cisco WS-C5500 Chassis POWER SUPPLY 34-0773-03 Cisco Ws-x5550 Supervisor Engine Iii G-series WS-X5234-RJ45 X 11
For $200
Cisco WS-C5505 Chassis Cisco WS-X5530-E2 Supervisor Engine III Modules Cisco WS-U5533-FEFX-MMF Supervisor Engine III Uplink Modules Cisco WS-X5225R Switch Modules X 2
I'm switching my colo and I currently am going to be hosting in my own colo; therefore I'm going to be switching IP addresses for all my servers.
I have a cisco switch, an APC and a few servers ... I know how to change the IP addresses within linux, but I do not know how to assign them within the switch.
Does anyone know how to do this?
Also, since I'm changing everything, does anyone know if the gateway IP address on each server has to be changed? If so, then how do you do it?
This is probably an easy and simple task for someone that have a good knowledge in Cisco, BGP and Blackhole/Synchole communities.
We do have a Cisco 2948G that is our border and through this equipment we apply Blackhole (a sequence of commands to filter all the traffic from the world except our country, this is done by communities that is setup in cisco).
These are the sequence of the commands to apply it for IP 189.1.XXX.40 Enter configuration commands, one per line. End with CNTL/Z. asw-hl01(config)#router bgp 184XX asw-hl01(config-router)#network 189.1.XXX.40 mask 255.255.255.255 asw-hl01(config-router)#exit asw-hl01(config)#access-list 50 permit 189.1.XXX.40 asw-hl01(config)#ip route 189.1.XXX.40 255.255.255.255 Null0 250 asw-hl01(config)# I have another Cisco 2948G that is connected in a FastEthernet port of the border above, and this other cisco is holding another subnet. To make it clear, Border - I have 189.1.XXX.1 ~ 189.1.XXX.127 (subnet 255.255.255.128) Cisco2 - I have 189.1.XXX.128 ~ 189.1.XXX.255 (subnet 255.255.255.128) This is being done through a ip route from Border to Cisco2 to forward subnet 128 ~ 255 to the switch, ip route 189.1.XXX.128 255.255.255.128 172.16.1.2 Ps: 172.16.1.2 is the internal IP for switch2 Now we go to the problem. If I want to apply a Blackhole (those sequence of commands for an IP located at subnet 128 ~ 255 switch2) it block all the traffic for that given IP, and I cant get access from national backbones. To make it clear, Blackhole for IP 1 ~ 128 - It works fine Blackhole for IP 128 ~ 255 - It doesnt work correctly, instead of blocking only international traffic its blocking everything in the world
I recently acquired a 2950 switch brand new, this is now on production but I needed several things to be setup on the switch such as SNMP, setup an IP to access it over a browser, etc. etc.
Do you know somebody who offers a setup service for cisco switches?
This week connectswitch's service has not been that good. Basically first they restart the node without prior notice and our vps was down for 7 hours. and now we buy our cPanel license via them and they havent paid it so the license is now expired although we have paid them for it.
Right im about to invest in some new equipment for the business and am looking at one of the 2 above servers. Does anyone have any experience with both or either?
The spec of the machine to start is as follows:
HP Proliant DL380 G5 Intel Quad-Core Xeon 2.5Ghz 4GB Ram 3x 146GB SAS Hotswap RAID5 (OS) 5x 146GB SAS Hotswap RAID5 (Storage)
Dell Poweredge 2950 III Intel Quad-Core Xeon 2.5Ghz 4GB Ram 3x 146GB SAS RAID5 (OS) 5x 146GB SAS RAID5 (Storage)
Both are near identical specs and the price of the HP is slightly more, is it worth it?
We are looking to replace our existing WatchGuard Firebox's with a hopefully more reliable firewall from Cisco's range although I'm a bit lost when it comes to the different ranges.
Could somebody suggest a firewall that is capable of:
1: Both NAT & Drop-in (bridge) mode 2: Pretty low bandwidth requirements, no more than 10mbit/s traffic 3: SNMP Monitoring 4: High availability pairing
I see a lot of DDos related articles here at WHT. We've got hit multiple times by DDos and had to handle those attacks everytime with a different approach.
The largest one and the most well know one (we were in Times Mag, AP news, CNN, slashdot, you name it - just do a search about us on WHT) was Russian botnet cyberattack - we had to anaylyze netflow and then block everything on our edge routers, then on the firewall and then locally on the servers.
Since then we had number of other attacks, some of them we were not able to defend on the server level, while, as you can understand we can't do netwflow and manual intervention evey time somebody gets an attach.
We have very good scripts which allow to mitigate huge number of DDos attack, whet our scripts are finding attacking IPs and blocking them automatically - still some attacks could be blocked only on the router level.
I've read that Cisco Guard (I am interesed in 65xx version of it) suppose to mitigate DDos attacks in automatic mode.
after months of disruption moving servers into a new data centre, our once reliable colocation company has now had nearly 6 hours downtime in the last 16 hours. So much for network redundancy.
I am setting up a small ccna lab and i have RIP working and i can ping my lan from both routers, but only certain hosts on the lan from the one router the setup is
1) I was recommended to chose the XL-EN model switches because it seems they have more Memory, but the second one in the list (Catalyst) is not a XL-EN, is that going to have any affect performance wise? or it doesn't really matter?
2) I was also recommended to choose managed switches because that way I can use the SNMP features to measure bandwidth, are any of the switches above unmanaged?
3) I also want to be able to manage the switch remotely, web managed, are any of the switches above web-manageable?
4) Most importantly, when my datacenter give me a 100mbit drop, I dont know which port to plug it in in the 29** series. In the 35** I see it clearly but I am not able to see it in the 29**, any ideas?
5) On some of these switches I see a special port called "Console", what is it? where does that connect to?
6) Do any of the switches above not have a console port?
I have a single /24 and my firewall is on x.2 and routes traffic for each of the servers.
Now i have a new Cisco ASA 5510 that i want to replace the aging firewall currently in place, however i dont want to put the firewall into transparent mode because i dont want to lose all the functionality.
Now with most firewalls your outside subnet cannot be the same as your inside subnet, which is fine if you are using NAT but i dont want to NAT. I need all of my servers to remain with their public ip addresses.
So what is the ideal way to setup something like this? Request my ISP give me a /30 for the ASA outside interface or something? And then ask them to route my /24 through the /30 new subnet?
whether I can grant a specific vlan priority over all other traffic..and if so does anyone know an appropriate site where I can find documentation on how to do so?
From the posts in this forum it would appear that a number of forumites are colocation service providers and web hosters that use Cisco gear.
I was reviewing the Cisco End User License Agreement that was included in the router box. Under the General Limitations section, "Customer shall have no right, and Customer specifically agrees not to:", item (iv) states, "use or permit the Software to be used to perform services for third parties, whether on a service bureau basis or time sharing basis or otherwise, without the express written authorization of Cisco".
Does this mean that a service provider is required to acquire a separate license similar to the Microsoft Service provider license?