r/Cisco

During an reset and upgrade of the above ap i had a brainfart and erased the nvram, so when the device boots, it now says board not initialized.

is there anyone with the above model of AP that would be willing to give me the following information from UBOOT about the board id?

Board Id (0-18) :

Number of MAC Addresses (1-32) :

Base MAC Address : (not needed)

PSI Size (1-128) KBytes :

Enable Backup PSI [0|1] :

System Log Size (0-256) KBytes :

Auxillary File System Size Percent:

flow memory allocation (MB) :

buffer memory allocation (MB) :

DHD 0 memory allocation (MB) :

DHD 1 memory allocation (MB) :

DHD 2 memory allocation (MB) :

Partition 1 Size (MB) :

Partition 2 Size (MB) :

Partition 3 Size (MB) :

Partition 4 Size (MB) (Data) :

Hello guys,

I’m new to Meraki and recently bought two Cisco MX67C devices from a company that went bankrupt. The company's assets were sold via a public auction, and I managed to get these two units for 20€.

Since I’ve never worked with Meraki before, I thought it would be worth 20 bucks to play around with them at home, but the devices are still claimed by the previous company. (Funny side note: they even left active SIM cards in the devices, so I technically have free internet access through them).

Since I have a bill of sale, can I contact Meraki support to have them unlock these devices for me?

Hey, how explained in the title. I wanted to ask how you do an upgrade from different Version. Is their any upgrade path oder Matrix from Cisco? i never upgraded a Stackwise and wanted to now about your experience and how you do this

Hi,

I have been tasked with upgrading a pair of Cisco Catalyst 9500-24Q in StackWise virtual from firmware 17.3.3 to 17.15.5 (recommended release).

I have created a TAC case for what the best upgrade path would be. I'm only getting replies from the Cisco TAC AI bot.

Has anybody done an upgrade like this recently and figured out what the best path would be?

The Cisco AI SH said I could just go to 17.15.5 directly, but that would mean that both of the nodes would reload at the same time, and that means all traffic would be impacted.

Is there a way I can do this upgrade with minimal impact? Everything is set up with the two switches in a redundant way. We could normally lose 1 without having impact.

I have seen the ISSU page, but I hear some different stories about this process.

Does somebody have some real-life experience with this upgrade?

Thanks for all the help and insights.

I had a VPN set up and working perfectly fine in Packet Tracer, but forgot to save it. Now, I have the config recreated exactly, but the tunnel won't start. Can someone please help me understand the debug output in the comments? It may as well be martian to me...

Also in the comments is the running config of the 2 routers that should be communicating properly. Any help is appreciated.

I am chasing intermittent packet loss for days now. It affects different VLANs at different times causing RDP disconnects and random lag.

No interface errors no drops on counters no STP changes nothing obvious in logs. I even swapped hardware in one segment just to rule that out.

Monitoring shows packet loss occasionally but it is hard to correlate where it actually starts. By the time i dig deeper everything is back to normal.

Feels like i always one step behind the issue.

Any tips on how to catch the root cause in these situations?

Test Environment Scenario:

9166AXI on a 9800-CL controller. Controller firmware at 17.5.5

6th gen iPad Pro 12.9" (supports WPA3 and 6Ghz), at firmware 26.4.2

I set up a test SSID, 6Ghz only, WPA3 only. Initial setup choices: GCMP256, FT enabled, FT + SAE-EXT-KEY, PMF required.

iPad refuses to connect. iPhone 7 at the exact same software level connects perfectly. Android devices connect perfectly. This iPad is the only device that flatly refuses.

Have tried everything I can think of - FT on, FT off. All four encryption suite options, all four AKM options, MAC on the iPad at floating, fixed and off - no change.

From reading, this appears to be an ongoing issue. Just reaching out to see if anyone has any insights to share / has faced and beaten this problem. Thanks!

Hi!

DIA circuit 2/2 gbps, super stable except for IPTV. I have been able to capture intermittent packet loss (easily reproducible on wireshark), the actual drops become visible only in extreme cases (green artifacts, buffering, black screens). Different sources tested.

I'm monitoring everything locally with Grafana, no drops on the path, Cisco is clean, no dropped or paused frames.

Local paths appear clean on the monitoring, cables checked, SFPs checked. The rest of the network works flawlessly even at the time of the drops.

The drops happen even when an app is used, no STB, nothing like that. However, the worst part is, some services work well, while others drop almost instantly on this very network.

Working - Netflix, Youtube, Pickbox Amazon...
Not working - 3 separate provider streaming services with live TV channels. Some unicast, others multicast, tested, all exhibit packet loss.

Nat translations look ok, only a few thousand at the time of issues

C8300, 17.12.2, issue has persisted across multiple FW versions. QoS in place to prioritize IPTV traffic coming from the STB/PC IP did not help. WAN side shaping did not help.
IPTV does not require separate VLANs, plug and play or log in if app.

Prior to this, ISR4331 was in place, no issues could be observed. The only other addition was the 504, which has proven too slow CPU wise, therefore 804 has been put into place. Now CPU usage is normal and no CPU spikes can be observed.

Topology as an overview.

504 and 518 are now 804 and 812, 312 fully decommissioned.

This has persisted for years at this point and everybody is clueless.

Any assistance is very much appreciated.

https://preview.redd.it/v2ru1x8xyixg1.jpg?width=1441&format=pjpg&auto=webp&s=0d48d8e56abb650388c7c111a96421039c8c9fa1

https://preview.redd.it/bgq9dxstzixg1.png?width=1813&format=png&auto=webp&s=df0692471fd14beba9cccdb1def87579efe9c788

Hi everyone,

I’ll be joining Cisco soon as a Software Engineer, and I’m really excited about the opportunity!

I wanted to reach out to this community to understand what I should focus on before joining and during the initial months.

A few things I’d love insights on:

What tech stack or concepts should I brush up on?

How is the learning curve for new joiners?

Any tips to perform well in the first 3–6 months?

Things you wish you knew before joining Cisco

Work culture, expectations, or anything that might not be obvious initially

I’d really appreciate any advice, resources, or personal experiences you can share.

Thanks in advance! 😊

Short version: Do I manually set POE output for this camera? If so, is there any danger to setting it higher?

We just installed a demo camera from Verkada yesterday. It's a pretty slick unit, CH63-E. It's got 4 cameras in it, running off of 1 ethernet cable. The camera documentation says it requires 802.3at PoE+.

After plugging the camera in, the camera kept rebooting and the switch logs said "CONTROLLER_PORT_ERR: Controller port error, Interface Tw1/0/28: Power Controller reports power Imax error detected". Cabling is good, so, it appears the camera/switch are not negotiating a power level.

The camera documentation does say "Power sources for Verkada cameras must conform to IEEE 802.3 standards. Devices will not negotiate properly on UPOE or other proprietary PoE methods, regardless of whether those methods can deliver sufficient wattage."

Verkada support has not been helpful. They send me a link to POE requirements and basically said "figure it out".

I set the interface to 30W with the command "power inline static max 30000" which got the camera up and running. We aimed the cameras and buttoned it up, video is streaming fine. The documentation says the camera can draw as little at 19W and as much as 51W in "extended temperature range". Do you think there is any danger in setting the power output to 51000? It's never been quite clear to me what this interface setting actually does.

I suppose if I burn up the camera, it's only a demo unit lol.

Hello guys is just me or our 240AC AP is slow. weve been having a trouble with our AP, it slow and sometime is disconnecting even Im just 2 meters away from the AP. there are some interference in wifi. and Im even because every time I access with via IP the controller(web UI) is slow to respond. Any suggestion or tips to fix things. Sorry Im NOOB.

Thank you

Hi all ladies and gentlemen!

I have a trouble with my Cisco Catalyst 9200. We have a RADIUS server (FreeRADIUS) in our corp LAN. Authenticating PCs is going good but troubles with voice VLAN. I am trying to use MAB for authenticating SIP devices. "files" in authorize section of "default" tunnel is also present. Cisco port configuration:

interface GigabitEthernet3/0/20
 description LAN_MAIN
 switchport access vlan 422
 switchport mode access
 switchport voice vlan 1902
 authentication event fail action next-method
 authentication host-mode multi-domain
 authentication order mab dot1x
 authentication priority dot1x mab
 authentication port-control auto
 mab
 dot1x pae authenticator
 spanning-tree portfast
end

/etc/freeradius/3.0/users (xxxx.yyyy.zzzz is a MAC-address):

xxxx.yyyy.zzzz Auth-Type := Accept

PC connected to PC port of SIP phone, LAN connected to Internet port. After SIP phone startup i have a security violation on Cisco port in log and port shutdown:

Apr 25 14:37:42.879: %PM-4-ERR_DISABLE: security-violation error detected on Gi3/0/20, putting Gi3/0/20 in err-disable state
Apr 25 14:37:42.898: %AUTHMGR-5-SECURITY_VIOLATION: Security violation on the interface GigabitEthernet3/0/20, new MAC address (xxxx.yyyy.zzzz) is seen.AuditSessionID lg|g|H0o]^K^X_#
Apr 25 14:37:43.882: %LINEPROTO-5-UPDOWN: Line protocol on Interface GigabitEthernet3/0/20, changed state to down
Apr 25 14:37:44.881: %LINK-3-UPDOWN: Interface GigabitEthernet3/0/20, changed state to down

So what am i doing wrong?

https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-asaftd-persist-CISAED25-03

I am graduating university in a couple months and I am looking to get a job in networking. We did one networking module but it was not the most comprehensive and I have forgotten most of it as it was in the second year and I took a gap year.

Should I go with CCST or straight to CCNA? I've heared CCNA recommends taking it if you already have experience but I have also never seen a networking role or network help desk role ask for CCST so is it really needed?

I don't know what I did, but when I go into things like the web browser in an endpoint system and open up a website like a gateway, all of the text is white on a white background, or if I go to the IP config, the text is black on a black background, and I can't read anything. Is there a way to fix this?