Dan-Ciprian Cicioiu

Member Since: Jul 09, 2010

English
Dan-Ciprian Cicioiu commented on NAT for local originated packet in WAN, Routing and Switching 4 years ago

Hi Carlo,As far as I know "ip nat outside destination" is not available. Destination keyword is...

Dan-Ciprian Cicioiu commented on ipv4 and ipv6 addresses run on same interface in LAN, Switching and Routing 4 years ago

Hi, You can have a look at this document :http://docwiki.cisco.com/wiki/...

Dan-Ciprian Cicioiu commented on How to Block Ping of Big size in LAN, Switching and Routing 4 years ago

Hi, You can use a class-map / policy-map. class-map match-all ICMP-BIG match protocol icmp match...

Dan-Ciprian Cicioiu commented on ACL on inside LAN - to allow only reply to outside interface request in WAN, Routing and Switching 4 years ago

Hi, The thing is that the trojan is initiating the traffic from inside , so there is no real use to...

Dan-Ciprian Cicioiu commented on VRF-Lite using RIP and redistribute connected in MPLS 4 years ago

Hi, You could try to disable split-horizont on that interface ;Router Ainterface GigabitEthernet0/0...

Dan-Ciprian Cicioiu commented on HTTP not working after NAT setup in WAN, Routing and Switching 4 years ago

Hi, I would try to exempt 1.1.1.4 from nat :no access-list 1 access-list 1 deny host 1.1.1.4access-...

Dan-Ciprian Cicioiu commented on access lists for vpn site to site in Firewalling 4 years ago

Hi Carl, Yes. Supposingly your flows that should be tunneled are initiated only from remote Office...

Dan-Ciprian Cicioiu commented on AS path filter in WAN, Routing and Switching 4 years ago

Hi a ) If the requiremnet is to advertise to 100 ONLY AS 2 :ip as-path access-list 100 permit _2$...

Dan-Ciprian Cicioiu commented on switch with sla in LAN, Switching and Routing 4 years ago

Hi, Yes it does support, ip sla. From Lan Base to Adv Ip Serv.Dan

Dan-Ciprian Cicioiu commented on Vlan1 to Vlan2 through Outside interface in Firewalling 4 years ago

Pete first of all Anyway if you want this traffic get nat-ed, it will not happend for sure with if...

Dan-Ciprian Cicioiu commented on Vlan1 to Vlan2 through Outside interface in Firewalling 4 years ago

Hi Pete, Please post :show run staticshow run routeshow access-list  inside_outbound_nat0_aclAnyway...

Dan-Ciprian Cicioiu commented on EEM help in LAN, Switching and Routing 4 years ago

Duplicate

Dan-Ciprian Cicioiu commented on EEM help with ethernet port shut down ... in LAN, Switching and Routing 4 years ago

Hi Mark,Two applets , one shut , one no shut, both using cron timer.Shutdown ad 23:59 and un-shut...

Dan-Ciprian Cicioiu commented on Access list issue in Network Management 4 years ago

Hi , You can use CBAC/IOS Firewallhttp://www.cisco.com/en/US/products/sw/secursw/ps1018/...

Dan-Ciprian Cicioiu commented on BGP Routing -- Need Help in LAN, Switching and Routing 4 years ago

My pleasure, Sabby.Dan

Dan-Ciprian Cicioiu commented on tool for mapping out network - help in LAN, Switching and Routing 4 years ago

Hi, It uses snmp. Displays ...

Dan-Ciprian Cicioiu commented on BGP Routing -- Need Help in LAN, Switching and Routing 4 years ago

Hi,From R1 to R4 the issue is that R2 is advertising the prefixes from R4 without changing the next...

Dan-Ciprian Cicioiu commented on EIGRP Flapping through Subinterface in WAN, Routing and Switching 4 years ago

Hi Jason, Your phisical interface is flapping :9 00:37:37.787: %LINK-3-UPDOWN: Interface...

Dan-Ciprian Cicioiu commented on tool for mapping out network - help in LAN, Switching and Routing 4 years ago

Hi Carl,Opnet netmapperhttp://www.opnet.com/solutions/network_performance/netmapper.htmlDan

Dan-Ciprian Cicioiu commented on BGP Routing -- Need Help in LAN, Switching and Routing 4 years ago

Hi, your issue is related to the next-hop of the eBGP prefixes between iBGP peers - currently the...

Dan-Ciprian Cicioiu commented on Legacy Backbonefast... in LAN, Switching and Routing 4 years ago

Hi, Backbone fast has nothing to do with this. If we check the mode = RPVST , we already know that...

Dan-Ciprian Cicioiu commented on Logging buffered not working in Application Networking 4 years ago

Hi, This is because your global pool is full. Go to one of your other contexts clear logg , and...

Dan-Ciprian Cicioiu commented on Can't ping the default gateway in LAN, Switching and Routing 4 years ago

Not quite , on HQ_Rtrrouter ospf 1net 10.1.200.1 0.0.0.0 area 0Dan

Dan-Ciprian Cicioiu commented on 2 smtp server using 2 different public address in WAN, Routing and Switching 4 years ago

You also have a issue with the input acl on the Dialer0     access-list 102 deny   ip 192.168.2.0 0...

Dan-Ciprian Cicioiu commented on Can't ping the default gateway in LAN, Switching and Routing 4 years ago

If this is the Hq_Rtr routing table :     10.0.0.0/8 is variably subnetted, 8 subnets, 3 masksC...

Dan-Ciprian Cicioiu commented on Need some help with a fundamental concept of nat'ing/routing in Firewalling 4 years ago

Paul , Without any doubt the permision will be checked against the access-list applied ( in or out...

Dan-Ciprian Cicioiu commented on reading policy-map output in WAN, Routing and Switching 4 years ago

Hi Paul/JohnThe class-map upstream_rtp will match the access-list 177 , and will trust the dscp...

Dan-Ciprian Cicioiu commented on Can't ping the default gateway in LAN, Switching and Routing 4 years ago

The switch and the server are on 10.1.200.0/24 ?Dan

Dan-Ciprian Cicioiu commented on Can't ping the default gateway in LAN, Switching and Routing 4 years ago

The router does not have a route back to the server.You can try to test ping 10.1.200.1 source...

Dan-Ciprian Cicioiu commented on Need some help with a fundamental concept of nat'ing/routing in Firewalling 4 years ago

Paul , 1) please post : show run access-group2) Let's take "nat (Production) 0 access-list no-nat...

Dan-Ciprian Cicioiu commented on ACL_Difference in Firewalling 4 years ago

Hi Ibrahim, Source IP 10.10.10.10 source port 80 -> any IP destination any port...

Dan-Ciprian Cicioiu commented on Connection between Router and Switch in LAN, Switching and Routing 4 years ago

Hi Angel , You must set the gi1/0/25 to trunkinterface GigabitEthernet1/0/25swi tru enca dotswi...

Dan-Ciprian Cicioiu commented on Need some help with a fundamental concept of nat'ing/routing in Firewalling 4 years ago

Hi Paul, As you already said the traffic matched by the access-list will not be NATed, so this...

Dan-Ciprian Cicioiu commented on 2 smtp server using 2 different public address in WAN, Routing and Switching 4 years ago

Hi,You can try using static PAT :ip nat inside source static tcp 192.168.2.136 25 x.x.x.98 25...

Dan-Ciprian Cicioiu commented on Help on a NAT question in Firewalling 4 years ago

Hi, You might try :object network OTHERhost 192.168.5.91 nat (inside,primaryisp) static interface...

Dan-Ciprian Cicioiu commented on BGP Multihoming/FullorPartial routes in WAN, Routing and Switching 4 years ago

Hi Ibrahim , Sergey, I think that Ibrahim question is related to the global internet routing table...

Dan-Ciprian Cicioiu commented on show int status | options in LAN, Switching and Routing 4 years ago

Paul , There is a character that will ease your matching work This is "_" ( underscore ) = that ,...

Dan-Ciprian Cicioiu commented on show int status | options in LAN, Switching and Routing 4 years ago

Hi Paul, In order to match AND you can use .* Like in your...

Dan-Ciprian Cicioiu commented on VPN Client To ASA 5505 then back out through tunnel to other ASA 5505 in Security Management 4 years ago

That's right. Also please check the VPN access-list.Dan

Dan-Ciprian Cicioiu commented on 8.3 object oriented NAT/PAT and address pool use. in Firewalling 4 years ago

Hi, You might try to exempt the VPN from being nat-edobject-group network VPN network-object x.x.x....

Dan-Ciprian Cicioiu commented on conexion vss 6506 in LAN, Switching and Routing 4 years ago

Hi, First of all you will need Sup720-10G. Futhermore the VSL link is treated as a systems control...

Dan-Ciprian Cicioiu commented on Configuring Dyn Nat on different subnet than the outside network in Firewalling 4 years ago

My understanding is that the ASA is used for internet access - this means the traffic is...

Dan-Ciprian Cicioiu commented on VPN Client To ASA 5505 then back out through tunnel to other ASA 5505 in Security Management 4 years ago

Hi Arvo, As I see it on      site 1 you should have 2 nat exempts...

Dan-Ciprian Cicioiu commented on VPN Client To ASA 5505 then back out through tunnel to other ASA 5505 in Security Management 4 years ago

Hi Arvo, Shouldnt you do nat exempt also for Site3 - Site2  on both ASAs Site 1 and Site 2 ? As I...

Dan-Ciprian Cicioiu commented on Configuring Dyn Nat on different subnet than the outside network in Firewalling 4 years ago

There is no issue. The ISP should route all the packets to the new public IP to the ASA's outside...

Dan-Ciprian Cicioiu commented on EIGRP router wont UPDATE its neighbor with a new network in LAN, Switching and Routing 4 years ago

Hi Kevin,First of all I have to explain why I do think that you need to filter :when you create a...

Dan-Ciprian Cicioiu commented on PIX Configuration Advice in Firewalling 4 years ago

Hi Ahmad,The only issue that I see with your config is the INBOUND access-list which permits...

Dan-Ciprian Cicioiu commented on match-any in WAN, Routing and Switching 4 years ago

Hi, Yes it will match any of your match acl.Mainly :     match any will match if...

Dan-Ciprian Cicioiu commented on PIX Configuration Advice in Firewalling 4 years ago

Hi Ahmad, Oho 6.3, you might take into consideration upgrading this image.Yes it's correct , but...

Bio












Dan-Ciprian Cicioiu's Stats

Points828
Discussion started 1
Answers marked as Correct 99
Endorsed 0
Content Rated 1