Cisco PIX is a dedicated hardware firewall appliance; the Cisco Adaptive Security Appliance (ASA) is a firewall and anti-malware security appliance that provides unified threat management and protection the PIX does not. Other Cisco devices and systems include routers, switches, storage networking, wireless and the software and hardware for PIX Firewall Manager (PFM), PIX Device Manager (PDM) and Adaptive Security Device Manager (ASDM).

Share tech news, updates, or what's on your mind.

Sign up to Post

We delivered MMD handoff instead of Electrical to customer and they think we should bring media converter, their end device is Cisco 6509E. Does this device have optical ports for connections?
Ensure you’re charging the right price for your IT
Ensure you’re charging the right price for your IT

Do you wonder if your IT business is truly profitable or if you should raise your prices? Learn how to calculate your overhead burden using our free interactive tool and use it to determine the right price for your IT services. Start calculating Now!

I would like to setup multiple VLAN's but not quite sure how to get VLAN 4 working.

Scenario is as follows:

1. - VLAN ID:1 - This will be used for clients that are connected to Ports 1-18, 20-52 on the HP-2530-48G Switch
2. - VLAN ID:4 - This will be used for a single PC that will be connected to Port 19 on the HP-2530-48G Switch
3. I currently have a Windows Server 2016 DHCP setup already (on IP Address: for the VLAN ID:1 but dont have anything setup for VLAN 4
4. VLAN's have been configured on the HP-2530-48G Switch (See screenshot for more details)
5. Cisco Router is configured as the Gateway and is on

HP 2530 Switch
Equipment I have is the following:

1. HP 2530-48G Switch
2. Cisco ASA-5506
3. Cisco 4000 Series Router

Questions are as follows:

1. I want to be able to setup a DHCP Scope for VLAN ID: 4 on the Windows Server 2016 DHCP Server so the PC (that is connected to port 19) is issued an IP Address of but when I setup a scope other users on VLAN ID: 1 are issued an IP Address from the DHCP Server Scope

What do i need to configure either on the switch, ASA or router so only the PC that is connected to port 19 on the switch is issued a 192.168.15.x IP Address?

2. Is it possible to lockdown the VLAN ID: 4 so it only has access to the internet and no access to internal resources on VLAN ID:1 ?
I am trying to export a list of all Directory Numbers and their Description from CUCM into an excel spread sheet.  I don't need all  the fields,  just the description and extension
Hi guys,
For monitoring purpose I need to statically set IPs for all Cisco APs throughout my company
I know I can easily turn it to static via the GUI (Just a tick on the static IP field), but this takes a lot of manual effort.
Is there any way to do it via CLI without having to add all the IP parameters (subnet, gateway, Controller IP) along the way?
Hello ,

I would like some assistance ,maybe some example configs for multihoming BGP connection involving two local Cisco routers ,one ASN, /22 Public prefix with upstream again with two routers. I would like for local routers to do both load Balancing and redundancy. I am guessing will need to use OSPF between local routers for proper routing between them .I would suppose too that would need to make use of loopback interfaces instead of the physical interface address for both eBGP and iBGP. Please help.
We are adding optus phones network at our office, I need to open up two ports on firewall. i.e.

FTP(XMPP) Port (1081) is Closed

How can I add this rule under Meraki MX?

Hi I have a client that has an older phone system.  The vendor wants us to disable Application Layer Gateway.  I think it's also called SIP.  Not sure.  The router they have is a Cisco rv042g-k9-na.  I found on the firewall where I can turn off sip.

Question is SIP the same as ALG?

The problem is that at exactly the 10 minute mark their calls drop.

Thanks all
We have an Access database that runs ok on a Windows Server, but we have significant performance issues when attempting to use the database when working from home over our VPN via Cisco AnyConnect. Since we all have laptops, and bring them home when working from home, there is no PC in the office to use RDP.

How do people normally get good performance when running MS Access remotely if they aren't using RDP?
Using this command to add switch  to stack: 2960 stand-alone switch:

switch 1 renumber 4

this was done before actually adding to stack

now when i look at running config or sh switch I have the following:
appears as 2 switches:

L3switch4#sh switch
Switch/Stack Mac Address : b8be.bf73.6500
                                           H/W   Current
Switch#  Role   Mac Address     Priority Version  State
 1       Member 0000.0000.0000     0      0       Provisioned
*4       Master b8be.bf73.6500     12     1       Ready

and i have interfaces for 1/0/1-51  and 4/0/1-51     the 4 being the active 1

Just want to understand this behavior ? I'm guessing that when I add it to the 3 switch stack that the 1/0/1-51  switch 1 will disappear? - I gave it(switch4) a lower priority as well to ensure it did not become master. Thanks for helping me understand this.  Why did it create what seems to be 2 switches?
I had this question after viewing Office 365 Hybrid Exchange 2013 with Cisco Unity Connection 9.1.2 Single Inbox.

I am continually getting a Failed to locate a Domain Controller via DNS when setting up UM. I am currently in a hybrid setup and all accounts for Exchange 2010 are working fine, but migrated users that I try to setup in Office365
Everything is correct in Office365 and Unity according to numerous instructions, and I have triple checked the password on the account.

I know Exchange fairly well but have never touched Unity admin.  Is there a way to check why it can't resolve DNS?
Rowby Goren Makes an Impact on Screen and Online
LVL 13
Rowby Goren Makes an Impact on Screen and Online

Learn about longtime user Rowby Goren and his great contributions to the site. We explore his method for posing questions that are likely to yield a solution, and take a look at how his career transformed from a Hollywood writer to a website entrepreneur.

We are working on implementing Microsoft's MultiFactor authentication within our organization. When modern authentication is enabled in the Office 365 portal it seems to effectively block Cisco Jabber/Webex outlook integration with Outlook.

We need to be able to enable to MFA in some capacity for both Outlook 2016, Office 365 Web applications and retain Cisco product integrations.

I'm having some difficulty finding information on compatibility or "howto" information on how to get this working accordingly. Any help would be appreciated.

I have a pretty short timeline to implement this solution.
Hello Experts,

We are planning for a network infrastructure upgrade. It includes structured cabling and active systems.
The network is currently running Cat5e cables, patch panels and faceplate modules.
Cisco Catalyst 3560 is deployed at edge and 6506 at Core.
We want to upgrade the infrastructure to Cat6a structured cabling, Fiber cabling supporting 10g and Cisco Switches with  SD-Access.
Therefore, we are looking for tips and suggestions to start preparing the plan.
I am visiting a client tomorrow (50 WAPs, 5 Switches) to assist them in their wireless dropout issues.
They have cordless wireless phones which were on 2ghz, they upgraded it 5ghz, it didnt resolve the issue.
They have meraki switches and waps, and cisco asa.
Meraki waps they are using are MR 42; 

I have worked on Meraki SWs and WAPs but never had any issues with them.
Should i start with disabling SSIDs and enable one by one?
Which tools / apps i can install on my computer to diagnose an issue like this?
The phone is Polycom VVX 350, provisioned by RingCentral.

Is it possible to somehow program the Polycom phone to produce a distinctive ring if a specific number calls.  A mobile phone can do this.  I wondered if there is any way that I can get this feature? If not Polycom, is there another brand of VOIP desk phone that has this ability?

I have a problem with Cisco network equipment.
I have a working Cisco catalyst network with about 30 switches (2960, 3750). This network has about 25 different VLANs.
We also have a Cisco WLC2504 connected to this Catalyst network. We are using about 8 SSIDs connected to different VLANs.

This has been working for a while now.

But now I want to install a Cisco Nexus 3524 10GBit switch to get better performance for the VMware servers in the network.
The switch has been installed, and is attached to the Catalyst switches by a 10GBit trunk.
Everything looks nice.....but suddenly we see that clients on one of the SSIDs are not able to find servers in the VMware environment.
I did observe that the WLAN client does not find the MAC-address for the servers, and therefore is not able to ping it.
The ARP-table on the client does not include the server.
If I make a workaround so that the WLAN client finds the MAC-address for the server, and then switch back again, the client is still able to ping the server. But if I delete the ARP-table on the client, it does not find the server anymore.
I know that the WLC2504 does some kind of ARP-caching....but I cannot understand why this only applies to one WLAN (SSID).
I just purchased a Cisco RV130 to replace a Netgear R6400v2 wireless router. The Netgear router drops the internet at least once per day.  I have attached the Cisco router to a laptop and configured it exactly as the Netgear router. Spectrum is the ISV so both routers were set to Dynamically get the IP address. The only minor change is that both routers are set to be DHCP servers with a starting IP address of The problem is when I finish and have the setup wizard test everything, after the WAN test finishes successfully it tells me the Cisco router cannot detect your internet connection. Any clue how to get passed this? I have the Netgear plugged back in so I can submit this question.

I have three Cisco firepower. Two of them are FPR2120-NGFW-K9 and the third one is FPR4110-NGFW-K9. I want to buy Cisco firepower management center. What type of License do I need? And what is the estimate price for it?

We are planning to upgrade old fashioned Network infrastructure and this primarily includes deploying new evolving Cisco SDA
The existing infrastructure is having Cisco switches.
The current is design is very simple. It consists of two 6509 Cisco switches as Collapsed core and Edge Switches consists of mixed 2960s and 3560s
Core switches are configured as HSRP Active/Standby and Active Core switch is root bridge for all vlans.

VLANs are segmented  as per department wise and all vlans are configured and spanned through out all switches.

The plan is to:
- Upgrade all switches
- Migrate from traditional network to SDA.
- Prepare

Hence, we need experts here to guide us on above points.
What strategies need to be considered?
How to perform the migration?

Appreciating any help and suggestions
Hi, I've noticed all our access switch interfce LEDs blinking rapidly which suggests there's a broadcast storm going on, the switches are all Cisco and mainly 2960X, there are two stacks formed with 4 switches each and three other standalone access switches together with six storage and server switches.

Any ideas on the best way to analyse and identify the cause (without disconnecting cables as this is a live environment).

Why Diversity in Tech Matters
LVL 13
Why Diversity in Tech Matters

Kesha Williams, certified professional and software developer, explores the imbalance of diversity in the world of technology -- especially when it comes to hiring women. She showcases ways she's making a difference through the Colors of STEM program.

If I want to setup SD-WAN between HQ & Branch Office, what are the requirements in terms of devices and licensing. Firstly, we need to setup POC by ourselves for demo purposes.
Both HQ and branch have 100 Mbps broadband internet connection. HQ also have dedicated leased for business use. As hardware is concerned, currently we got only ESXI hosts at both sites.

Any suggestions and ideas are welcomed.

Just wondering if anyone knows if there is a way to recover the certificate/CSR that was created and in pending state along with the key on the Cisco ASA.  Somehow the trustpoint was accidentally deleted while installing the root\intermediate certificate.  I no longer see the Trustpoint for that certificate that was in pending state so now I have the certificate, not sure how I can get it installed.
I am looking for a way for users/extensions to have the ability  to login/logout their particular hunt groups (on-demand) in CME 8.6. The main purpose is to have all calls forwarded to an answering service when all users/extensions are logged out the hunt group

Has anyone setup something like this?

I have 4 Cisco 350 network switches on a small closed network.
I am running quite a lot of multicast network audio and video.
I understand I need to enable IGMP, but am confused about what I need to enable on the 'master' switch, and what I need to enable on the other 3.

Can anyone help?
Issue: Some SPA502G Cisco phones freeze without any warning,

Some users have found that their phone does not work and must restart it to recover it.
About 20 cases reported in the last two weeks (before this had not happened). We have almost 300 devices spa502g.
The trigger of this issue was not found, so the scenario cannot be reproduced.

Software version 7.5.6a
Hardware version 1.0.4


No recent updates have been made.
Dear Experts, we have problem of high CPU process in Cisco 2960 switch (core 3).

We saw the problem is due to the HULC LED process but dont know how to fix it. Can you please suggest?

CORE3#sh process cpu sorted
CPU utilization for five seconds: 31%/1%; one minute: 31%; five minutes: 31%
 PID Runtime(ms)     Invoked      uSecs   5Sec   1Min   5Min TTY Process
 160    68678432    12264266       5599 14.88% 14.87% 14.88%   0 Hulc LED Process
 205      711476     5789330        122  0.47%  0.28%  0.25%   0 IP Input
 130     1192777      490653       2430  0.29%  0.29%  0.29%   0 hpm counter proc
  15      664721     2320338        286  0.29%  0.33%  0.35%   0 ARP Input
 166        1468         660       2224  0.23%  0.02%  0.00%   1 SSH Process
 171      718708       97952       7337  0.11%  0.12%  0.11%   0 HQM Stack Proces
 191      124439      218366        569  0.05%  0.02%  0.00%   0 CDP Protocol
 218      343549     4363165         78  0.05%  0.04%  0.05%   0 Spanning Tree
   8           0           1          0  0.00%  0.00%  0.00%   0 DiscardQ Backgro
   9           0           2          0  0.00%  0.00%  0.00%   0 Timers
  10          16         668         23  0.00%  0.00%  0.00%   0 WATCH_AFS

Open in new window

Besides, we also noticed the flapping in log. And all LED lights are blinking like crazy
CORE3#sh logg
Syslog logging: enabled (0 messages dropped, 1 messages rate-limited, 0 flushes, 0 overruns, xml disabled, filtering disabled)

No Active Message 

Open in new window







Cisco PIX is a dedicated hardware firewall appliance; the Cisco Adaptive Security Appliance (ASA) is a firewall and anti-malware security appliance that provides unified threat management and protection the PIX does not. Other Cisco devices and systems include routers, switches, storage networking, wireless and the software and hardware for PIX Firewall Manager (PFM), PIX Device Manager (PDM) and Adaptive Security Device Manager (ASDM).