Collin Clark

Member Since: Sep 17, 2009

User Badges:
  • Purple, 4500 points or more

English
Collin Clark commented on Sending Logs in Other Network Infrastructure Subjects 1 month ago

You just need to define both of the syslog servers logging host 192.168.12.9logging host 10.3.3.12

Collin Clark commented on Question about ASA ACL Redirect to Firepower in Firewalling 1 month ago

You will need to define both directions in the ACL. Even though the ASA is stateful, the traffic...

Collin Clark commented on How I can cross check IOS image for any known bugs. in Firewalling 1 month ago

Check out the Bug Toolkit- https://bst.cloudapps.cisco.com/bugsearch/?referring_site=bstib

Collin Clark commented on Replacement for Cisco AS5400 in Other Service Provider Subjects 1 month ago

There isn't one that I know of and probably never will be. Dial up is legacy and it would be a...

Collin Clark commented on Replacement for Cisco AS5400 in Other Service Provider Subjects 1 month ago

Yes you can.  http://www.cisco.com/c/en/us/tech/dial-access/asynchronous-connections/t...

Collin Clark commented on this host: secondary - failed in Firewalling 1 month ago

Can you post the failover portion of your config, the results of a show failover, and a show...

Collin Clark commented on Upgrade plain old ASA5512X's and ASA5515X's to FirePower in Firewalling 1 month ago

JB-  IMO the upgrade kit is the way to go (and is what Cisco suggests). Per the ordering guide-...

Collin Clark commented on 2 DMVPN Tunnels with MPLS in WAN, Routing and Switching 1 month ago

Run a routing protocol (EIGRP or iBGP is suggested) and let the routing protocol handle the...

Collin Clark commented on ASA Automatically Blacklist from a list of IPs? in Firewalling 1 month ago

If I had to do it, I would more than likely use the ASA's REST API. There are a couple of examples...

Collin Clark commented on Restricted Web GUI Access & Login Reset on Cisco 3650 in LAN, Switching and Routing 1 month ago

Cisco3650# debug ip http secure-server Cisco3650# configuration terminal CIsco3650(config)# logging...

Collin Clark commented on Restricted Web GUI Access & Login Reset on Cisco 3650 in LAN, Switching and Routing 1 month ago

Going off the top of my head... debug ip http logging buff 50000 loggiing buff 7

Collin Clark commented on Suggestion for the most suitable part number. in LAN, Switching and Routing 2 months ago

Take a look at the 4500-X. https://www.cisco.com/c/en/us/products/collateral/switches/catalyst-4500...

Collin Clark commented on Restricted Web GUI Access & Login Reset on Cisco 3650 in LAN, Switching and Routing 2 months ago

Can you debug https and try and connect then post the results?

Collin Clark commented on Restricted Web GUI Access & Login Reset on Cisco 3650 in LAN, Switching and Routing 2 months ago

When you browse to the switches IP address you get Page cannot be found or 505 error?

Collin Clark commented on Restricted Web GUI Access & Login Reset on Cisco 3650 in LAN, Switching and Routing 2 months ago

And this command too please. show ip http server secure status

Collin Clark commented on Restricted Web GUI Access & Login Reset on Cisco 3650 in LAN, Switching and Routing 2 months ago

Strange. Can you try this command from configuration mode? sw(config)# crypto key generate rsa

Collin Clark commented on How do I get a switch out of eigrp stub mode? in LAN, Switching and Routing 2 months ago

You have the IP Base license which restricts EIGRP to operate in stub mode. You will have to...

Collin Clark commented on Cisco 3850 switch, if IOS boot fails at startup does it boot up to other ios in LAN, Switching and Routing 2 months ago

If you have more than IOS image in flash then you need to specify which one to boot. If it fails to...

Collin Clark commented on Restricted Web GUI Access & Login Reset on Cisco 3650 in LAN, Switching and Routing 2 months ago

Good. Do you see SSH keys from the following command? show crypto key rsa mypubkey

Collin Clark commented on L3 etherchannel Problem in LAN, Switching and Routing 2 months ago

Did you create the port-channel interface or did you let the channel-group command create it?

Collin Clark commented on Cisco 3850 switch, if IOS boot fails at startup does it boot up to other ios in LAN, Switching and Routing 2 months ago

It will do that automatically. If you type 'show run | i boot' does it show only the new IOS image...

Collin Clark commented on Restricted Web GUI Access & Login Reset on Cisco 3650 in LAN, Switching and Routing 2 months ago

Try this- access-list 1 permit host xxx.xxx.198.134

Collin Clark commented on I can ping sites but not browse the Internet in Firewalling 2 months ago

Your NAT interfaces are backwards. Should be object network obj_any nat (inside,outside) dynamic...

Collin Clark commented on Cisco 3850 switch, if IOS boot fails at startup does it boot up to other ios in LAN, Switching and Routing 2 months ago

Have you set the boot statement? boot system flash:/ios_file.name

Collin Clark commented on Apply service policy inbound or outbound? in Firewalling 2 months ago

Without actually seeing the policy, I would say the best place to apply would be internet facing...

Collin Clark commented on IOS ACL to restrict DNS except to OpenDNS in Other Security Subjects 2 months ago

Updated ACL w/ Karsten's IP's/Protocols. I would put that on the firewall or the internet edge- ip...

Collin Clark commented on IOS ACL to restrict DNS except to OpenDNS in Other Security Subjects 2 months ago

Interesting reads. Thanks!

Collin Clark commented on Pull switch config from Nexus 9000 in LAN, Switching and Routing 2 months ago

Why not have the switch automatically backup it's config to the server? archive log config...

Collin Clark commented on NX7K ACL Configuration in WAN, Routing and Switching 2 months ago

I would specifically allow BGP first, then block, then permit. object-group network BGP_LOCAL_IP...

Collin Clark commented on IOS ACL to restrict DNS except to OpenDNS in Other Security Subjects 2 months ago

Karsten- Why TCP? Typically only zone transfers use TCP....or is Cisco doing something different...

Collin Clark commented on Restricted Web GUI Access & Login Reset on Cisco 3650 in LAN, Switching and Routing 2 months ago

You have the crypto image, so you are good there. Lets get HTTP working then we'll move over to...

Collin Clark commented on Restricted Web GUI Access & Login Reset on Cisco 3650 in LAN, Switching and Routing 2 months ago

It just alerting you that the command will change allowing for both IPv4 and IPv6. What does your...

Collin Clark commented on NAT Overload from Multiple Inside VRFs in WAN, Routing and Switching 2 months ago

It sounds like you are not sharing any routes between the VRF's. The CONTRACTOR and GUEST need to...

Collin Clark commented on Restricted Web GUI Access & Login Reset on Cisco 3650 in LAN, Switching and Routing 2 months ago

1. ip http authentication local     ip http access-class [ACL number [same as your vty acl]] e.g ip...

Collin Clark commented on Cisco ASA Upgrading the Firepower module in Firewalling 2 months ago

I use the scheduler in FPM to upgrade the sensors. I set it for after hours upgrade and It's worked...

Collin Clark commented on ASA5520 Restrict Users based on LDAP/AD group to certain ACL's or IP Pool? in Remote Access 2 months ago

Yeah, that's not a problem. Easiest way (IMO) is to map LDAP group to ASA Group Policy. http://www....

Collin Clark commented on ISP Failover with Default Routes. Whats my best options? in WAN, Routing and Switching 2 months ago

I would not use IPSLA, too many things to go wrong cause routes to move when not necessary. Keep it...

Collin Clark commented on IOS 15 from 2960 to 3560Gplatforms in LAN, Switching and Routing 2 months ago

No you cannot. Those are two different hardware platforms that require different IOS's

Collin Clark commented on ASA 5520 - Allowing Access to port 1433 from outside in Firewalling 2 months ago

I don't believe SQL uses 1433 as the source port. It should be using an ephemeral port. Also I don...

Collin Clark commented on ASA Failover support in Firewalling 2 months ago

There is the rub. The ASA's will not establish a (routing) peering relationship across the VPN...

Collin Clark commented on Cisco Asa Firepower in Firewalling 2 months ago

By default that is the correct behavior. If you need to restrict access then you will have to...

Collin Clark commented on ASA Failover support in Firewalling 2 months ago

HSRP is not supported on the ASA. You could do some IPSLA/tracking to achieve the failover. Could...

Collin Clark commented on Cisco Asa Firepower in Firewalling 2 months ago

In the ASA.

Collin Clark commented on ASA Failover support in Firewalling 2 months ago

What you read is correct, the platforms must match.

Collin Clark commented on ASA 5520 - Allowing Access to port 1433 from outside in Firewalling 2 months ago

You're allowing everyone access to your SQL server? That's what we call an RGE. Require your...

Collin Clark commented on cisco asa traffic not going through VPN in VPN 2 months ago

Is the tunnel up? What does your IPSec crypto stats show for encrypted/decrypted packets?

Collin Clark commented on DMVPN design limitations in WAN, Routing and Switching 2 months ago

The Configuration Guide and CVD have a lot of great info on designing and scaling DMVPN. Here's a...

Collin Clark commented on is AX License can use C2921-V/K9? in WAN, Routing and Switching 2 months ago

Yes you can purchase the AX license separately and apply to a voice router. Feature set can be...

Collin Clark commented on NX7K Mgmt Interface Security in Security Management 2 months ago

The way I set them up is to only enable services on the Admin VDC and from there I can jump to the...

Bio

First things first: Please, please do not use the services of Presidio Solutions. They are unprofessional and unethical, from the top down. Never have I been treated so poorly as I have with this company. Email me and I would love to give you the details. If I have provided any help to you through the Support Forums, then please, use any other partner than Presidio.

I have been working in IT since 1997 and working with Cisco products since 2000. I have held a variety of jobs from Helpdesk to Senior Network Engineer. I like working with Cisco because they are a market leader and an innovator in the networking field. They develop products and technologies that lead all of IT to the future. There are not a lot of other companies that do that and I'm lucky to have been exposed to Cisco and to have the opportunity to work with them.

User Badges:
  • Badge.
    Purple
    4500 points or more
  • Badge.
    Community Spotlight Award

    Doc/Video January 2014

  • Badge.
    Community Spotlight Award

    Questions Answered December 2013

  • Badge.
    Cisco Designated VIP

    2011 LAN

Collin Clark's Stats

Points5604
Discussion started 50
Answers marked as Correct 547
Endorsed 2
Content Rated 104
Website: