Answer Questions

Hello Team, on site A i have one virtual fmc managing 2 physical ftd - site A, and one virtual ftd site-B. Both ofcourse have different policies since they are in different sites.I have introduced a virtual fmc on site B, and would wish to have virtual ftd currently managed by fmc on site A to be managed by this new virtual fmc on site b.are there ways to migrate vftd specific configs to the new fmc? kindly provide a guideline if any.Thank you.

 Hi , We have installed CML for network simulation but we want to do some set up for monitoring of topology created in CML using Nagios or solarwinds. Is it possible to monitor CML devices using any monitoring tool?

Hi I need to connect with CCBU team to show them a demo of our products to list them in market place. is there any email id or contact person whom i can reach?

Hello,I have 2 Rooms with 2 Samsung Flip 2 and a Cisco Room Bar Pro and a Cisco Room Kit EQ.Now i have the problem that the Flip 2 wakeup the Cisco Codec every 10 minutes when the system is in Sleep Mode.If i unplug the USB Connection from the Codec to the Flip the Power settings working normal and the codec don't will wake up after 10 Minutes.I think its an option in the Flip 2 settings but dont know witch one.have you an Idea?BrChristian 

Hello everyone,  Could anyone explain me, please, about the difference between Egress and Ingress PCC. While reading RFC about the PCEP protocol can't catch the real meaning of these two terminologies.  Thank you in advance!

Hi there.  I have a customer that has issues to download the certificate from the SNTC for the CSPC Wizard. Could you help me? Kind regards, Josué GS

I am trying to use a Desk Phone instead of My Computer for Calling in Webex app with UCM. I have this working on several systems, but this latest one I cannot get to work. CUCM version 14.0 SU3.Using the latest Webex app. The End User is the Owner of both the CSF device and the desk phone (CP-8851).The Desk Phone is added as a Controlled Device for the End User.The End User has the following permissions:-Standard CTI Enabled-Standard CCM End Users-Standard CTI Allow Control of Phones supporting Connected Xfer and conf-Standard CTI Allow Control of Phones supporting Rollover Mode-Standard CCM Super User Allow Control of Device from CTI is set on the Desk Phone and on the End User.  When we select the Desk Phone, Webex app pops a message that says: “Cannot call using your device”And asks me to Disconnect the device. I have seen reference to setting the Owner on the Directory Number.I have not tried this here, as I have it working on other systems without this. Below is a screenshot of the error message.I tried searching for this message but found nothing. Thanks

Hello Dears   I hope you are doing well   We wan to modify a Contact Header in an inbound REGISTER message in the CUCM, since that REGISTER message is coming from third party telephones (AVAYA). From this one   Contact: <sip:72012@10.17.101.191:43881;transport=tcp>;q=1;expires=3600;+sip.instance="<urn:uuid:d84492bc-8df5-41db-839d-965183f765c0>";reg-id=1;mobility="fixed";+av.sip.iptolerance;+av.sip.sig=4;avaya-actions="presence.initiate-pubsub, presence.redirect" To this one Contact: <sip:72012@10.17.101.191:43881;transport=tcp>;q=1 The Script is the following. M = {} trace.enable() function M.inbound_REGISTER(msg)local contacto = msg:getHeader("Contact")if contactothenlocal parametro = "q=1"contact1 = contact:gsub("(.*<sip:.*>;).*", "%1" .. parametro)trace.format("Contact header, setting to: %s", contact1)msg:modifyHeader ("Contact", contact1)endend return M Is this script edited correctly for the aforementioned purpose?   Kind regards,

Does anyone know if the Genie Library Pull Requests are still being reviewed and approved?  I see 56 open PRs for review, many dating back to early 2023.  I know I submitted one for a simple ASA parser fix months ago and nobody has looked at it yet.https://github.com/CiscoTestAutomation/genieparser  

Some users in our org (seemingly at random) are encountering a 7 or 8 second delay when answering calls.User1: Model 7841 - Delay on an external outbound call.User2: Model 7841 -  Delay on an internal inbound call.User3: Model 7841 - Delay on an external outbound call.Call Manager: System version: 12.5.1.13900-152.So, far the only common denominator, is that all the users have a model 7841 phone, but I've replaced User3's phone with a new phone & she encountered the issue again. I did also take User3's old 7841 phone & brought it to my desk & the 1st call I received from an internal number had the delay, but none after. I've got a TAC case open, but figure I'd check the community as well, incase someone else found a possible cause that I haven't seen.  Thanks

We are seeing quite a few emails in message tracking that are missing the recipient and subject. Any ideas on why this would be happening?

There have been updates to the ThousandEyes Changelog over the last few days. You can review the changes here, or by using the link on the right hand side of our forum page titled "Quick Links".  A photograph of the ThousandEyes forum page, with the changelog Quick Link circled in orange.

Background:I have a vManager (Manager), a vBond (Validator) and a couple of edge routers (1100-series running 17.12.x and 17.13.x) setup in the lab for testing SD-Routing ("SD-WAN lite"). vSmart (Controller) is not necessary for SD-Routing. Everything is up and running, connected and working as expected.Late April, Cisco released a new version for the controllers, 20.14.x (https://software.cisco.com/download/home/286320995/type/286321394/release/20.14.1). This new version comes with some new features compared to 20.13.x, which is currently under investigation in the lab. So, naturally, I wanted to explore the new features and started the upgrade. I have followed the upgrade procedure in this guide: https://www.cisco.com/c/en/us/support/docs/wan/dpt/220424-upgrade-sd-wan-controllers-with-the-use.html. I have successfully managed to upgrade the controllers from 20.12.x to 20.13.x, just some weeks earlier, following this guide.The problem:I have successfully installed the new vManage version, but in the next step, when I initiate the activation of the new version, it fails with the following message in the GUI log:[13-May-2024 14:43:19 UTC] Checking the configuration-dbStatus it may take up to 40 mins or longer[13-May-2024 14:43:19 UTC] Change Partition action submitted for execution[13-May-2024 14:43:20 UTC] Executing device action Change Partition[13-May-2024 14:43:20 UTC] Checking available software image on the device[13-May-2024 14:43:20 UTC] Failure in triggering upgrade coordinator service, please retry activate.Actions taken:I have retried many times to activate, even rebooted vManager and then retried, but still the same message.I have not found any clues online to this error message, or what the possible solution could be.Future actions:Maybe I need to do some more extensive debugging, to get the details about what exactly is not working and why?Hopefully, someone here can point me in the right direction! Any help is much appreciated!

When trying to add an additonal extension on a clerks 8841 phone that belongs to his supervisor I get this message...I remove an Item but still not able to add the new line. Any help on this is appreciated. 

Hello,As I am studiying for my ENCORE I am using the Cisco e-learning module. There I came across this part of a paragraph:"In the traditional network design, the distribution layer has two standalone switches for resiliency. It is recommended that you restrict a Layer 2 VLAN to a single wiring closet or access an uplink pair to reduce or eliminate topology loops that STP must block, which are a common point of failure in LANs."Does this really mean that every vLAN should have its own switch per design? That feel wrong. Part of the vLAN 'technique' is that you can use multiple vLANs on a switch..Or am I misreading this? 

I have been looking the data sheets for the IE-3400H-24T and it only gives a power consumption for a range of 9 to 60 volts DC. Which is 4.6A at 9 DC down to .75A at 60VDC. Does anyone know what the power consumption would be for 24VDC?thanks

  Is multiprocessing supported on NSO versions: 5.4.6 and 5.7.6 ?

Dear all,I am running in to very strange problem - currently busy with preparation in our LAB for a migration of EVPN/VXLAN setup from single-site to multi-site. During the testing in our LAB I have discovered the following.The LAB is already in multi-site setup, within the local site we use multicast replication and the multi-site interconnect uses ingress-replication.The lab consists of 2 sites, Site A has a single BGW-Spine with 2 leafs in Fabric VPC setup, Site B has the same setup 1 BGW-Spine and 2 leafs in Fabric VPC. In every site I have a single homed client connected to one leaf, the clients sit in the same VLAN.The problem is the following. When I try to ping Client B from Client A in the same VLAN the traffic does not work unless  arp-suppression is enabled. When I want to ping let's say from client A to a client in Site-B in a different VLAN (Layer3 traffic) the connection works without arp-suppression. Generally, I want to understand why arp-suppression seams mandatory in my case in order to achieve Layer 2 reachability between the sites. In the past we had serious problems with arp-suppression and our single site fabric.Any ideas would be highly appreciated.  

Hello Bro,            I have an issue when I am trying to support my personel laptops, they have limited access to the windows "users not admins" and whatever I set the UAC window setting, I am still unable to enter the admin password in UAC popup window.Again, I can see the popup in the remote device but cant enter the required admin password.Any ideas?

We have an SG350-28P as the core switch at one of our sites and intermittently, users connected to VLAN 7 (192.168.9.0/24) advise that they lose internet access. At the time of the issue, the switch cannot ping the router (Cisco 887VA, 10.1.9.1, VLAN7 192.168.9.1).This has happened three times in the past fortnight and remains unresolved until the switch is powercycled.There's one SF302-08PP behind, but this is just used for phones on VLAN 101, not using VLAN 7 at all.There was an ACL attached to this VLAN, I have temporarily disabled that for troubleshooting purposes. Detailed in the config below, but not attached to the VLAN.Feels like routing, but the default route is configured the same as our other sites. This config is virtually identical to that of other sites.FW: 2.5.9.54 (current).Recent changes:This was sitting on 2.4.5.71 for a long time, but updated within the past month to improve security. I haven't seen this problem with any other sites upgraded to 2.5.9.54.The SF302-08PP was reconfigured from an access VLAN 101 switch to L2 with VLAN 1/101 for manageability, but it's not used on VLAN 7.Some assistance would be greatly appreciated.I can't do a swap just yet, it's a 4 hour round trip and I don't have any spare SG350s to rule out hardware, and I don't have space in this rack to replace it with a CBS350 (deeper).Config follows, business-identifying and other irrelevant data have been removed & port configs condensed.config-file-headersw-sitename-adminv2.5.9.54 / RCBS3.1_930_871_120CLI v1.0file SSD indicator encrypted@ssd-control-start ssd config ssd file passphrase control unrestricted no ssd file integrity control ssd-control-end cb0a3fdb1f3a1af4e4430033719968c0 !!unit-type-control-start unit-type unit 1 network gi uplink none unit-type-control-end !vlan databasevlan 7,55,101 exit...ip dhcp server ...ip dhcp excluded-address 192.168.9.1 192.168.9.30ip dhcp excluded-address 192.168.9.250 192.168.9.254ip dhcp pool network BUSINESS-DHCP-POOLaddress low 10.1.9.1 high 10.1.9.254 255.255.255.0 lease 7 domain-name domainname.com.audefault-router 10.1.9.1dns-server 10.1.3.58 10.1.3.59 10.1.1.48 10.1.1.49exitip dhcp pool network FREEWIFI-DHCP-POOLaddress low 192.168.9.1 high 192.168.9.254 255.255.255.0 lease 7 domain-name freewifi.domainname.com.audefault-router 192.168.9.1dns-server 1.1.1.1 1.0.0.1 8.8.8.8 8.8.4.4exit...no boot host auto-config no boot host auto-update bonjour interface range vlan 1...ip access-list extended ACL-IN-VLAN7permit ip any 172.24.0.44 0.0.0.0 ace-priority 20permit ip any 10.1.3.56 0.0.0.0 ace-priority 25permit ip any 10.1.3.147 0.0.0.0 ace-priority 30deny ip any 10.1.0.0 0.0.255.255 ace-priority 40deny ip any 10.55.0.0 0.0.255.255 ace-priority 60deny ip any 10.101.0.0 0.0.255.255 ace-priority 80permit ip any any ace-priority 160exit...ip domain name [removed]ip name-server [removed]ip domain polling-interval 8!interface vlan 1ip address 10.1.9.254 255.255.255.0 no ip address dhcp !interface vlan 7name PUBLIC_WIFI ip address 192.168.9.254 255.255.255.0 !...interface range GigabitEthernet1-8, 11-19power inline never [these are access VLAN 1 ports]!interface range GigabitEthernet9-10,20-22description TRUNK-TO-APswitchport mode trunk switchport trunk allowed vlan 1,7,55 !interface GigabitEthernet23switchport access vlan 101 power inline never !interface GigabitEthernet24description LINK-TO-PHONE-SWITCHip dhcp snooping trust switchport mode trunk switchport trunk allowed vlan 1,101 power inline never !interface GigabitEthernet26description LINK-TO-ROUTERswitchport mode trunk switchport trunk allowed vlan 1,7,55,101 !exitip dhcp snooping ip dhcp snooping vlan 1 ip dhcp snooping vlan 7 ip dhcp snooping vlan 55 ip dhcp snooping vlan 101 ip route 0.0.0.0 /0 10.1.9.1 metric 1 

Dear Cisco Community,This is regarding availability of latest firmware for below-listed Cisco CBS Segment Switches. Basically, I'm performing Manual Network Audit where I need to provide a list of latest firmware(s) with date & time stamp of release against the currently installed, according to which the end user needs to perform further firmware level updates on an immediate basis.The Cisco Make/Models are as follows along with the "currently installed firmware version".1) Cisco CBS350-24P - Cisco Firmware 3.2.1.1, Cisco Firmware 3.0.0.692) Cisco CBS350-24T-4X - Cisco Firmware 3.0.0.69, Cisco Firmware 3.0.0.843) Cisco CBS48P-4G - Cisco Firmware 3.0.2.844) Cisco CBS48T-4X - Cisco Firmware 3.0.0.695) Cisco CBS350-8FP-E-2G - Cisco Firmware 3.0.0.696) Cisco CBS350-8P-E-2G - Cisco Firmware 3.2.1.1, Cisco Firmware 3.0.0.69Kindly Acknowledge,N.Vyas

Hi,If we want to renew license of cisco ESA, CCW needed or not? 

Hi. We had weird problem.   - vManage, vSmart, vBond : 20.9.4 (Manage 20.9.4.1) - C1111-4P SD-WAN Mode : 17.9.4a   Only 3 traffic go to SIG by traffic policy (O365, Webex, Windows Update) But one of our custom application which was defined as a internal app went to SIG. Of course, We had service loss. (It shouldnt go to SIG) Is it false positive of NBAR ?   I would appreciate anyone gives me reply. Thank you.  

hi everyone, We are implementing a project and will integrate ACI with VMware NSX. I have a question: when integrating APIC with VMware NSX, is it necessary to first integrate with vCenter so that APIC automatically creates VDS, and then Integrate with NSX Manager?