Category Archives: CISCO

AAA configuration using TACACS+ (Cisco IOS and HP Procurve)

Basic configuration in IOS aaa new-model tacacs-server host 192.168.1.1 timeout 10 key sup36s3c63t tacacs-server directed-request aaa authentication login default group tacacs+ local enable aaa authentication login SSH group tacacs+ aaa authentication login CONSOLE local aaa authentication enable default group tacacs+ enable none aaa authorization exec default group tacacs+ none aaa authorization commands 15 default group… Read More »

Loading

TACACS+ Config

Lab environment/requirement Ubuntu/Debian server Tacacs+ software from Shruberry Cisco Catalyst switches User id: advanxer Password: helloword Enable password: ciscoenable Download and install tacacs+ wget ftp://ftp.shrubbery.net/pub/tac_plus/tacacs+-F4.0.4.27a.tar.gz Extract it tar -zxvf tacacs+-F4.0.4.27a.tar.gz Go into extracted folder cd tacacs+-F4.0.4.27a Install dependencies (if needed) apt-get install build-essential flex bison libwrap0-dev Install tacacs+ ./configure make install Check tacacs+ is installed… Read More »

Loading

Cisco IOS DNS/DHCP overview and troubleshooting

You can learn basic configuration and troubleshooting for Cisco IOS DNS/DHCP. PDF Slides Original source: https://supportforums.cisco.com/docs/DOC-13740 http://www.cisco.com/en/US/tech/tk648/tk361/technologies_problem_troubleshooting09186a0080093fad.shtml

Loading

Troubleshooting ASA high memory issues

Problem Category: Security – Network Firewalls and Intrusion Prevention Systems Problem Subcategory: Adaptive Security Appliance (ASA) non-VPN problem Problem Type: Product Feature/Function Question Problem Details: We suspected there is a memory leak on our ASA 5585-X. Can you guide me where to look for the “fragment size” value from the “show memory detail” output. TAC… Read More »

Loading

EtherChannel vs LACP vs PAgP

What is EtherChannel? EtherChannel links formed when two or more links budled together for the purposes of aggregating available bandwidth and providing a measure of physical redundancy. Without EtherChannel, only one link will be available while the rest of the links will be disabled by STP, to prevent loop. p/s# Etherchannel is a term normally… Read More »

Loading