Reviews for iSCSI NFS e 3100 & Catalyst 2960-S vs?

Similar Questions

• Reviews for iSCSI NETWORK card

  Hello, this is my first post so please excuse me if I violate no forum label.

  I would like some advice on the EP 12 G rack range NIC.

  There someone of any quad 1 GB port card a TOE NETWORK interface? It seems that the standard 5720/5719 Broadcome that comes with tell the R420 - r.620 has only TSO and no TOE. And none of the cards 1 GB iSCSI unloading.

  However Cisco servers have a NIC called Broadcom 5709 1G and TOE.

  Only 10 GB NIC/NAC has full TOE/iSCSI unloading.

  Please advice :)

  Kind regards

  Hosni

  unloading iSCSI is probably relatively expensive for a 1 Gbit NIC, which is a reason why Dell does not offer this (more (I remember older Dell Broadcom NIC offering him)).

  Add $50 to $ 100 NIC solution (1 GB dual port) is a fairly significant increase, but adding $50 to $500 (dual port 10 GB) card NETWORK solution is a lot less impacting. Reference Dell seems often to look at it this way.

  Also; unloading iSCSI doesn't seem to be useful in some situations; boot-from-SAN and if you want to put a file on a volume of SAN. These two have some major drawbacks when there is (much more difficult to solve) SAN connectivity problems.

  Add iSCSI unloading to record the power CPU, in my opinion, is worth it because the use of the CPU by the Broadcom or Intel NIC driver is very low on the modern servers than the total processing power of the server.

  If you really want the iSCSI unloading, I would suggest that you consider a Qlogic solution, or go with a solution of 10 GB.

• Cisco Catalyst 2960-S switch configured for 802. 1 x sends a query to access the Radius Server Radius

  Setup

  Cisco Catalyst 2960-S running 15.0.2 - SE8

  Under Centos freeRadius 6.4 RADIUS server

  Client (supplicant) running Windows 7

  When Windows client is connected to the port (port 12 in my setup) with authentication of 802. 1 x active switch, show of Wireshark that catalyst sends ask EAP and the client responds with EAP response. But it made not the request to the Radius server. The RADIUS test utility 'aaa RADIUS testuser password new-code test group' works.
  Here is my config running. Any advice would be greatly appreciated.
  #show running mySwitch-
  mySwitch #show running-config
  Building configuration...

  Current configuration: 2094 bytes
  !
  version 12.2
  no service button
  horodateurs service debug datetime msec
  Log service timestamps datetime msec
  no password encryption service
  !
  hostname myswitch
  !
  boot-start-marker
  boot-end-marker
  !
  activate the password secret 5 $1$ Z1z6$ kqvVYRQdVRZ0h8aDTV5DR0 enable password!
  !
  !
  AAA new-model
  !
  !
  AAA dot1x group group radius aaa accounting dot1x default start-stop radius authentication group!
  !
  !
  AAA - the id of the joint session
  1 supply ws-c2960s-24ts-l switch
  !
  !
  !
  !
  !
  control-dot1x system-auth
  pvst spanning-tree mode
  spanning tree extend id-system
  !
  !
  !
  !
  internal allocation policy of VLAN no ascendant interface FastEthernet0 no stop ip address!
  GigabitEthernet1/0/1 interface
  !
  interface GigabitEthernet1/0/2
  !
  interface GigabitEthernet1/0/3
  !
  interface GigabitEthernet1/0/4
  !
  interface GigabitEthernet1/0/5
  !
  interface GigabitEthernet1/0/6
  !
  interface GigabitEthernet1/0/7
  !
  interface GigabitEthernet1/0/8
  !
  interface GigabitEthernet1/0/9
  !
  interface GigabitEthernet1/0/10
  !
  interface GigabitEthernet1/0/11
  !
  interface GigabitEthernet1/0/12
  switchport mode access
  Auto control of the port of authentication
  dot1x EAP authenticator
  !
  interface GigabitEthernet1/0/13
  !
  interface GigabitEthernet1/0/14
  !
  interface GigabitEthernet1/0/15
  !
  interface GigabitEthernet1/0/16
  !
  interface GigabitEthernet1/0/17
  !
  interface GigabitEthernet1/0/18
  !
  interface GigabitEthernet1/0/19
  !
  interface GigabitEthernet1/0/20
  !
  interface GigabitEthernet1/0/21
  !
  interface GigabitEthernet1/0/22
  !
  interface GigabitEthernet1/0/23
  !
  interface GigabitEthernet1/0/24
  !
  interface GigabitEthernet1/0/25
  !
  interface GigabitEthernet1/0/26
  !
  interface GigabitEthernet1/0/27
  !
  interface GigabitEthernet1/0/28
  !
  interface Vlan1
  IP 10.1.2.12 255.255.255.0
  !
  IP http server
  IP http secure server
  activate the IP sla response alerts
  recording of debug trap
  10.1.2.1 host connection tcp port 514 RADIUS-server host 10.1.2.1 transport auth-port 1812 acct-port 1646 timeout 3 retransmit testing123 key 3.
  Line con 0
  line vty 0 4
  password password
  line vty 5 15
  password password
  !
  end

  interface GigabitEthernet1/0/16
  !
  interface GigabitEthernet1/0/17
  !
  interface GigabitEthernet1/0/18
  !
  interface GigabitEthernet1/0/19
  !
  interface GigabitEthernet1/0/20

  Have you run wireshark on the server because the request to switch? If so you make sure that there is a response from the server? For Windows network POLICY Server (I've never tried Centos), you must ensure that the request is related to a policy which then authenticates, or denies access. Usually, it is a matter of such attributes and the seller.

  Regarding the configuration, it seems a bit out of the AAA. Try to remove the:

  line "aaa dot1x group service radius authentication" and this by using instead:

  "aaa dot1x default radius authentication group". After the dot1x word you are supposed to provide a list of the authentication or the default Word if you do not want to use a list.

• 6248 FI Cisco's UCS with Cisco catalyst 2960 connectivity

  In our environment, UCS, connects the two fabric as a Cisco Nexus 9 k switch upstream with vPC and it works well. But we need to isolate some virtual servers on the blades of the UCS on an entirely separate DMZ switch which is Cisco catalyst 2960.

  (1) so can we connect cables separate physical twinax of FI uplink ports to catalyst 2960 and connectivity to the servers in the DMZ keeping YEW to nexus connectivity as it is?

  (2) in this case, as there are 2 switches to nexus core 1 and 2 so we will require 2 cisco catalyst 2960 for disjoint such a network? or otherwise we can connect A FI and FI B to one on his 2 numbers 2960 switch. Gig SFP ports + 10?

  (3) also suggest things must be taken in charge, the best guides practice or an illustration in this context.

  The assignment is static and cannot be changed.

  location 1 - uplink 1

  slot 2 - uplink 2...

  If a property has no blade, the corresponding uplink is not used and that can not be changed!

  This dedication of uplinks of IOM is of course a lot of resources: cables, ports on FI, allowed port,...

• Aironet 1252 with catalyst 2960-8TC-L & 1841 router compatibility

  Hello

  First of all they are togther a good combination?

  I'll buy new ap 1252 and switch catalyst 2960-8TC-L my question can I connect the access point to 1 x 10/100/1000Base-T/SFP (mini-GBIC) (uplink) port?

  because to work on ap with capacity 300 Mbps, it needs port 1000, I will use to power ap powerinjector.

  It will be 15 sereve pc as a working group and 60 customers on wlan.

  Concerning

  Saher

  Depending on the type of traffic and bandwidth customer requirements demand, you might need a couple more of ap which means you may have to settle for a switch of 24 ports. Cisco recommends 15-25 users by so, but still, you can have more if it's just e-mail and web browsing.

• Dot1x multidomain on Catalyst 2960

  Hello

  I improved my 2960 with the latest basic version of LAN 12.2 (46) which includes the authentication of domain Multi (MDA) and I tried to configure what is described here:

  http://www.Cisco.com/en/us/Tech/tk389/tk814/technologies_configuration_example09186a00808abf2d.shtml

  I have the following exceptions in my configuration:

  (1) SE - cat 2960 with the latest version of IOS 12.2 (46) that supports the MDA;

  (2) using the Win2K IAS as a server radius. and

  (3) third party (Avaya) with active begging dot1x IP phone. I have a PC with ability to dot1x connected to the second port of the IP phone.

  That's what I set up on the phone IP port:

  interface FastEthernet0/9

  switchport access vlan 221

  switchport mode access

  switchport voice vlan 222

  dot1x EAP authenticator

  self control-port dot1x

  multi-domain host-mode dot1x

  protect the dot1x violation-mode

  dot1x reauth-deadline 30

  dot1x re-authentication

  spanning tree portfast

  I also configured the server Radius IAS Win2K to send RADIUS 'cisco-av-pair attribute' tell the authenticator (Cisco Catalyst 2960) that a supplicant (IP phone) is authorized on the voice VLAN as described in config-notes above link.

  When the supplicant IP phone starts to authenticate, he succeeds, but that the port does not allow the field of VOICE, even though the 2960 receives the attribute "cisco-av-pair" of the Radius Server RADIUS. I confirmed the reception of this attribute of debugging on the switch.

  RADIUS: Receipt of id 160.2.100.74:1645 1645/64, Access-Accept, len

  110

  17:02:38: RADIUS: authenticator 7 d AC 50 FE 14 B4 FC DC - 3A A4 E5 3F 1E 76 62

  C3

  17:02:38: RADIUS: EAP-Message [79] 6

  17:02:38: RADIUS: 03 05 00 04

  17:02:38: RADIUS: [25] in class 32

  17:02:38: RADIUS: 44 05 05 A2 00 00 01 37 00 01 A0 02 64 4A C9 01 1 33 79 52

  D8 58 00 00 00 00 00 00 1 b E7 [D7dJ3yRX]

  17:02:38: RADIUS: seller, Cisco [26] 34

  17:02:38: RAY: Cisco-AVpair [1] 28 'device-traffic-class = voice.

  17:02:38: RADIUS: Message-Authenticato [80] 18

  17:02:38: RADIUS: D9 42 78 88 26 5A 65 83 68 B0 E0 C7 AF 5TH 0F 51 [B

  [x & Zeh ^ Q]

  17:02:38: RADIUS (00000009): receipt of id 1645/64

  17:02:38: RADIUS/DECODE: EAP-Message fragments, 4, total 4 bytes

  Cat2960 #show dot1x int fa0/9 details

  Dot1x FastEthernet0/9 information

  -----------------------------------

  EAP AUTHENTICATOR =

  PortControl = AUTO

  ControlDirection = both

  HostMode = MULTI_DOMAIN

  Violation mode = PROTECT

  A re-authentication = on

  QuietPeriod = 60

  ServerTimeout = 0

  SuppTimeout = 30

  ReAuthPeriod = 30 (configured locally)

  ReAuthMax = 2

  MaxReq = 2

  TxPeriod = 30

  RateLimitPeriod = 0

  Dot1x authenticator customer list

  -------------------------------

  Domain = DATA

  "Supplicant" = 0004.0d9b.46d8

  AUTH State = AUTHENTICATED SM

  AUTH BEND State IDLE = SM

  Port status = AUTHORIZED

  ReAuthPeriod = 30

  ReAuthAction = is re-authenticated

  TimeToNextReauth = 20

  Authentication method = Dot1x

  Authorized by = authentication server

  Policy of VLAN = n/a

  I don't think I need CDP to allow the field of voice, if the Radius server sends the attribute "cisco-av-pair".

  Have I misunderstood the concept?

  Thank you!

  You can share the config switch?

  Missing for example aaa authorization network default radius group?

• not visible on the switch Catalyst 2960 vNIC...

  Dear all,

  I configured the UCS chassis with 5 blades and installed the esxi on all five blades...

  I created a VNIC 10 per server and by now I have ip for esxi management by combining two NICs for and YEW is connected to the switch catalyst 2960. The uplinks are 1 Gig at the END and at the end of the switch... and I made these trunk at the end of the switch, all permitted the VLAN on the trunk link

  I have configured all the VLANS on during vNIC based on a model and all of those selected. vlan1 is the vlan by default & selected the same.

  Please help me to solve the problem... I got tired of all the means & could not able to find a solution.

  Kind regards

  Gopi G

  Greetings.

  Please confirm you learn your esxi mgmt addresses (VMK0 will inherit mac vnic UCSM) on FI: #connect nxos

  #See table of mac addresses

  Do the same on your 2960 switches.  You see the mac addresses on the ports of 2960 connected for the UCSM uplinks?

  Your uplinks UCSM go the 2960 into a port channel?

  Thank you

  Kirk

• Button Mode Catalyst 2960

  Hello

  Can someone tell me a method of turning off the function of the Mode button on a catalyst 2960 to stop this reboot of the switch after being detained for 10 seconds? Even with a config full on the switch, the function "reset" always seems to bypass the config and clear/reload the switch.

  Is it possible to disable this feature in the software?

  Thank you very much

  Charlie Read

  Try the following command: no express installation

  See the following link for more details on the order.

  http://www.Cisco.com/en/us/products/hw/switches/ps628/products_command_reference_chapter09186a00801a6c4a.html#3549999

  I hope this helps.

  Steve

• The Catalyst 2960 G switch configuration

  Is it possible to configure a Catalyst 2960 G Switch to act as / be an unmanaged (no router) switch?  If so, please provide detailed and simple instructions.

  Hi @lcbalogh1,

  I think that these switches are not routing compatible, but one thing... What you want to do is to have the switch set in a single broadcast domain (all ports in the same VLAN), right? If so, follow these steps:

  • Disable the routing features with the configuration command global "don'tno ip Routing.
  • If the first command is not accepted, type the "No dsm prefer lanbase-routing.

  These two steps above to disable the routing features.

  OK, to mark all the ports of the members of the same VLAN, you have a few options:

  • You can leave all the default ports VLAN (VLAN 1)
  • Or, you can configure all ports in another VLAN different
    • switchport mode access
    • access switchport vlan id - vlan>

  Hope this is useful for you.

  Rgrds,

  Martin, computer scientist

• NETWORK share for storing NFS

  Hi guys,.

  Although this may be so temporarily, I would like to know how to go for in the best way.

  I want to add the NFS storage to my hosts to store and virtual disk to store backups of vDR. Ideally I would put NFS on its own dedicated NETWORK adapter, but I can't do it right now. I need to place the vmkernel NFS on an existing vswitch and

  wondered what would be the best option.

  ISCSI and Vmotion network is not a real option I think. They are dedicated subnets and not routable, I think. NFS storage is located on the same network as the service

  network data and the console.

  Since VDR on CIFS is nothing that trouble, I want to create a vmdk and attach it to the camera VDR. This VMDK sat on NFS storage

  and if it works fine it will be used daily.

  Any thoughts?

  See you soon

  Please consider my response as 'useful' or 'proper' marking

  If its temporary for being correct but suggest using maps different network and networks dedicated to iSCSI, NFS, VMotion, SC, OOB network you know.  It would be better to describe your ESX and NIC hosts how much and what types of groups of ports configured and what are your plans to create NFS traffic using that existing vNIC?  If you use NFS with the existing, I would use SC or VMotion switches/vNIC because they are less traffic.

  If you found this information useful, please consider awarding points to 'Correct' or 'useful '. Thank you!!!

  Kind regards

  Stefan Nguyen

  VMware vExpert 2009

  iGeek Systems Inc.

  VMware, Citrix, Microsoft Consultant

• Change STP UME in RSTP mode on two stacked powerconnect 6224 configured for iSCSI during normal operation

  Hello

  I'll do a fw upgrade during normal operation on a stack of 6224 circulating BPMH, I am currently aware of recommendations Dells run RSTP on switches configured for iSCSI traffic connected to Equallogic SAN.

  I intend to set up another pile with two 6224 to failover and then perform the upgrade on the stack of "old." My question is if it's possible to run BPMH on the 'old' stack RSTP executing on the new stack when LAG is configured between the two batteries?

  Another option would be if it is possible to reconfigure the 'old' UME to RSTP stack without interruption between the hosts and the SAN first?

  Guidance on this subject would be greatly appreciated

  Cree

  Multiple Spanning Tree Protocol is based on RSTP and is backward compatible with

  RSTP and STP. So, you should be able to run BPMH on the old and RSTP on the new.

• Web authentication Catalyst 2960

  Hello

  I am trying to configure Web authentication relief on a catalyst 2960 switch. The goal is to authenticate customers via web authentication that are consistent (the part of 802. 1 x works fine) not 802. 1 x and allow them access to the network. The problem is that the web authentication seems to fail.

  The equipment about my question: switch catalyst 2960 (version: 122 - 37.SE) and a FreeRadius.

  Here's what happens:

  The authentication window will appear in my browser and the access request is sent to the RADIUS.

  The term RADIUS replies with an Access-Accept. Debugging running on the switch show that all this information is coming properly authentication and switch outputs debug a 'status = PASS' and permission to debug outputs a 'status = PASS_ADD'. Despite this the browser on the client generates a message "authentication failure".

  I have read the manual and the Cisco attribute value pairs are mentioned: ' priv-lvl = 15' and «proxyacl...»» ». They are required to make it work? Given that I'm not setting up any authentication switch connection via RADIUS.

  Any suggestions?

  Thanks in advance

  Yes, they are mandatory.

  If priv-lvl = 15 is not returned to the switch, the user will see? Authentication failed? and the access list will not apply. If the source in the statements of proxyacl field is not? everything? or there are other errors of syntax, the user will see? Successful authentication? but the access list will not apply and the user will be denied access to the network.

  Not sure about the configuration of specific FreeRADIUS, but you need to set up the? [026\009\001] Cisco av pair VSA. It should look like:

  Priv-lvl = 15

  proxyacl #10 = ip permit a whole

  Let me know if this lets you squared

• How acess catalyst 2960-s

  How acess catalyst 2960-s

  The main method of management is the Cisco Network Assistant however if you need to use the console port, then use the supplied RJ45 to DB9 cable to connect to a local serial port.

  Software wise, that it is possible to extract the 2 files HyperTerminal from a CD in Windows XP to run on a Win7 PC. The best alternative is a PuTTY terminal emulator.

• How a policy without moving can be configured for iSCSI traffic in Nexus 5548UP? Are there side effects?

  How a policy without moving can be configured for iSCSI traffic in Nexus 5548UP? Are there side effects?

  Hello

  Side effect depends on your network config, but I can tell you how config no iscsi traffic reduction policy...

  We have three-stage configuration in link below is image...

  1. QOS class - for the first traffic ranking

  2 queue (INPUT/OUTPUT) - this is where you book or traffic police

  3 Netwrok QOS - where you key or setting MTU for classified traffic at the bottom of the basket which tissue in the nexus program

  

  (config) # class-map type qos myTraffic / / traffic ISCSI of Match
  (config-WCPA-qos) # match iscsi Protocol

  #policy - type myQoS-QoS policy map / / qos Set group 2 ISCSI traffic so that it can be recognized
  class myTraffic
  the value of qos-Group 2

  (config-WCPA-may) # class-map type networks myTraffic
  (nq-WCPA-config) # match qos-Group 2

  (nq-WCPA-config) # type network-qos policy-map myNetwork-QoS-policy
  (nq-pmap-config) # class type networks myTraffic
  (config-pmap-nq-c) # break without moving
  (config-pmap-nq-c) # mtu 2158
  (config-pmap-nq-c) # sh type of network-qos policy-map myNetwork-QoS-policy

  (config-pmap-c-qos) # class-map type myTraffic queues
  (config-WCPA-may) # match qos-Group 2

  (config-pmap-nq-c) # policy - map type queues myQueuing-policy
  (config-pmap-may) # class type myTraffic queues
  % of bandwidth (config-pmap-c-only) # 50
  (config-pmap-c-only) # class type class default queues
  % of bandwidth (config-pmap-c-only) # 25
  (config-pmap-c-only) # sh policy-map type myQueuing-policy Queuing

  (config-sys-qos) # type of service-QoS policy entry strategy myQoS
  (config-sys-qos) # type of service-network-qos myNetwork-QoS-policy policy
  -service policy (qos-sys-config) # type myQueuing-policy input queues
  (config-sys-qos) # type of service-policy output myQueuing-policy queuing

  Let me know your concerns

• Wrote a review for application on the surface rt

  I'm writing a review for an application on the windows store I use windows done rt area someone has an idea how do?

  Come on...

  There are several ways to do so.

  -First, that you did not clearly, doing a simple Internet search to understand.

  -the second is to launch the application, open the charm of settings and using the applicable rating and review option.

  -the third is to find the app in the store and use the appropriate rate and examine the area is generally located next to the app description.

  I am inclined to believe that you haven't looked around (?) because it is very easy to know how to do.