Re: [c-nsp] ME3600X/ME3800X/ASR903 9K Interop CCO Design Guide Announcement
Many thanks, Waris. Cheers, Mark. On Friday, November 01, 2013 08:19:36 PM Waris Sagheer (waris) wrote: Hi Team, Sometime back I had sent out an email with the subject ME3800X/ME3600X/ME3600X-24CX/ASR903/ASR901 Deployment Simplification Feedback. Thank you for all your responses and feedback. Based on the feedback, I am happy to announce the following documents on Cisco.com. Please provide your feedback. - ME3600X, ME3800X and ME3600X-24CX Solutions Design Guide http://www.cisco.com/en/US/products/ps10956/products_imp lementation_design_guides_list.htmlPosted on ME3600X/ME3600X-24CX Cisco.com page http://www.cisco.com/en/US/partner/products/ps10965/prod ucts_implementation_design_guides_list.html Posted on ME3800X Cisco.com page - ASR903 Solutions Design Guide http://www.cisco.com/en/US/products/ps11610/products_impl ementation_design_guides_list.html Posted on ASR903 Cisco.com page - ME3600X, ME3600-24CX, ME3800X, ASR903 and ASR9000 Interoperability Document http://www.cisco.com/en/US/docs/switches/metro/me3600x_3 800x/software/design/guide/ASR9K_interop_white_paper.pdf The document is posted on ME3600X, ME3800X and ASR903 Cisco.com pages Upcoming Documents - ME3600X, ME3800X ASR903 Platform Best Practices - CE2.0 certification on ME3600X, ME3800X ASR903 Whitepaper - Cisco Carrier Ethernet Solution Whitepaper Another announcement, Release 3.10.S1 for ME3600X, ME3800X, ME3600X-24CX ASR903 is posted on CCO. For new deployments, this would be the recommended release. Your feedback is very important to us. Thank you. Best Regards, [http://www.cisco.com/web/europe/images/email/signature/h orizontal06.jpg] Waris Sagheer Technical Marketing Manager Service Provider Access Group wa...@cisco.commailto:wa...@cisco.com Phone: +1 408 853 6682 Mobile: +1 408 835 1389 CCIE - 19901 http://www.cisco.com/ [Think before you print.] Think before you print. This email may contain confidential and privileged material for the sole use of the intended recipient. Any review, use, distribution or disclosure by others is strictly prohibited. If you are not the intended recipient (or authorized to receive for the recipient), please contact the sender by reply email and delete all copies of this message. For corporate legal information go to: http://www.cisco.com/web/about/doing_business/legal/cri/i ndex.html ___ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/ signature.asc Description: This is a digitally signed message part. ___ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/
[c-nsp] TAC hits a new record level of aggravation...
I had the opportunity to open a TAC case last week... and was greeted by the new website... I use Firefox with NoScript, Ghostery, AdBlock, and some other plugins that require their own unique whitelisting to get cisco.com to work at all, and even more if you need to login to anything. I have the most current Java 1.7 installed as of the last round of updates. So... going to open a TAC case... I'm presented by at least four (maybe five?) Java permissions warnings/windows asking me if they can run. I bear with this, enter a case, and everything I carefully formatted and pasted into the case was compressed down into a block of continuous text, forget my newlines, everything crammed into one piece. I submit the case, and more Java permissions windows. I go to review the case... still MORE permissions windows. Of course I have to go upload a show tech (first request for any case)... and STILL MORE permissions windows. THIS IS RIDICULOUS !!! Anyone else had the pleasure of hitting the new case management site? I have NEVER experienced such a technical challenge such as that presented by the TAC website... I also now get Java warnings/permissions windows for ASDM for ASA, ASDM for FWSM, oh the list just keeps on growing for this Java crap. Jeff ___ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/
[c-nsp] ASA 8.4 error 305006 regular translation creation failed
Not having fun with TAC, let me ask the real experts :) ASA-5585X running 8.4(7), recent upgrade in response to last month's security advisories against the 8.4 code we were running... Now getting a number of the %ASA-3-305006 regular translation creation failed errors logged, typically for plain vanilla TCP connections. Checking the logs for the internal IPs being flagged, in every case I'm seeing the internal IP having no translation, and the 305006 is almost immediately followed by a %ASA-6-305009: Built dynamic translation for the address in question. We have plenty of IPs in our outside pool. We're not close to our xlate or connection table limits. This seems to just happen out of the blue. For the failed 305006, it will list source-IP/source-port to external-IP/external-port that failed. This connection will never be established. The follow-up 305009 will create the translation, then there will be a normal connection logged from the same source-IP/different-source-port. So the original attempt fails and the subsequent retry succeeds. We only have a handful of these in a given day... but I'm not sure of our xlate creation/teardown rate. Connection-wise we're doing close to 1000 connections/second at peak. I saw some of these errors in earlier 8.4 code, but they seem to have gotten worse with 8.4(7) [and/or our traffic has increased accordingly]. Anyone else? Jeff ___ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/
Re: [c-nsp] ME3600X/ME3800X/ASR903 9K Interop CCO Design Guide Announcement
If only there were a Waris in every BU... On Saturday, November 2, 2013, Mark Tinka wrote: Many thanks, Waris. Cheers, Mark. On Friday, November 01, 2013 08:19:36 PM Waris Sagheer (waris) wrote: Hi Team, Sometime back I had sent out an email with the subject ME3800X/ME3600X/ME3600X-24CX/ASR903/ASR901 Deployment Simplification Feedback. Thank you for all your responses and feedback. Based on the feedback, I am happy to announce the following documents on Cisco.com. Please provide your feedback. - ME3600X, ME3800X and ME3600X-24CX Solutions Design Guide http://www.cisco.com/en/US/products/ps10956/products_imp lementation_design_guides_list.htmlPosted on ME3600X/ME3600X-24CX Cisco.com page http://www.cisco.com/en/US/partner/products/ps10965/prod ucts_implementation_design_guides_list.html Posted on ME3800X Cisco.com page - ASR903 Solutions Design Guide http://www.cisco.com/en/US/products/ps11610/products_impl ementation_design_guides_list.html Posted on ASR903 Cisco.com page - ME3600X, ME3600-24CX, ME3800X, ASR903 and ASR9000 Interoperability Document http://www.cisco.com/en/US/docs/switches/metro/me3600x_3 800x/software/design/guide/ASR9K_interop_white_paper.pdf The document is posted on ME3600X, ME3800X and ASR903 Cisco.com pages Upcoming Documents - ME3600X, ME3800X ASR903 Platform Best Practices - CE2.0 certification on ME3600X, ME3800X ASR903 Whitepaper - Cisco Carrier Ethernet Solution Whitepaper Another announcement, Release 3.10.S1 for ME3600X, ME3800X, ME3600X-24CX ASR903 is posted on CCO. For new deployments, this would be the recommended release. Your feedback is very important to us. Thank you. Best Regards, [http://www.cisco.com/web/europe/images/email/signature/h orizontal06.jpg] Waris Sagheer Technical Marketing Manager Service Provider Access Group wa...@cisco.com javascript:;mailto:wa...@cisco.com javascript:; Phone: +1 408 853 6682 Mobile: +1 408 835 1389 CCIE - 19901 http://www.cisco.com/ [Think before you print.] Think before you print. This email may contain confidential and privileged material for the sole use of the intended recipient. Any review, use, distribution or disclosure by others is strictly prohibited. If you are not the intended recipient (or authorized to receive for the recipient), please contact the sender by reply email and delete all copies of this message. For corporate legal information go to: http://www.cisco.com/web/about/doing_business/legal/cri/i ndex.html ___ cisco-nsp mailing list cisco-nsp@puck.nether.net javascript:; https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/ -- Tim: ___ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/
Re: [c-nsp] TAC hits a new record level of aggravation...
Have you try using MS Explorer? Sent from my iPhone On 2013/11/03, at 7:53, Jeff Kell jeff-k...@utc.edu wrote: I had the opportunity to open a TAC case last week... and was greeted by the new website... I use Firefox with NoScript, Ghostery, AdBlock, and some other plugins that require their own unique whitelisting to get cisco.com to work at all, and even more if you need to login to anything. I have the most current Java 1.7 installed as of the last round of updates. So... going to open a TAC case... I'm presented by at least four (maybe five?) Java permissions warnings/windows asking me if they can run. I bear with this, enter a case, and everything I carefully formatted and pasted into the case was compressed down into a block of continuous text, forget my newlines, everything crammed into one piece. I submit the case, and more Java permissions windows. I go to review the case... still MORE permissions windows. Of course I have to go upload a show tech (first request for any case)... and STILL MORE permissions windows. THIS IS RIDICULOUS !!! Anyone else had the pleasure of hitting the new case management site? I have NEVER experienced such a technical challenge such as that presented by the TAC website... I also now get Java warnings/permissions windows for ASDM for ASA, ASDM for FWSM, oh the list just keeps on growing for this Java crap. Jeff ___ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/ ___ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/
Re: [c-nsp] TAC hits a new record level of aggravation...
So Cisco is now sleeping with Microsoft? The human network suddenly requires Internet Explorer? And specific Java for the Oracle contingent? Years ago, it just worked. Might not have been HTML5 or Ajax or Web2.0 but the damned thing worked. Everytime. Jeff On 11/2/2013 9:23 PM, Engel wrote: Have you try using MS Explorer? Sent from my iPhone On 2013/11/03, at 7:53, Jeff Kell jeff-k...@utc.edu wrote: I had the opportunity to open a TAC case last week... and was greeted by the new website... I use Firefox with NoScript, Ghostery, AdBlock, and some other plugins that require their own unique whitelisting to get cisco.com to work at all, and even more if you need to login to anything. I have the most current Java 1.7 installed as of the last round of updates. So... going to open a TAC case... I'm presented by at least four (maybe five?) Java permissions warnings/windows asking me if they can run. I bear with this, enter a case, and everything I carefully formatted and pasted into the case was compressed down into a block of continuous text, forget my newlines, everything crammed into one piece. I submit the case, and more Java permissions windows. I go to review the case... still MORE permissions windows. Of course I have to go upload a show tech (first request for any case)... and STILL MORE permissions windows. THIS IS RIDICULOUS !!! Anyone else had the pleasure of hitting the new case management site? I have NEVER experienced such a technical challenge such as that presented by the TAC website... I also now get Java warnings/permissions windows for ASDM for ASA, ASDM for FWSM, oh the list just keeps on growing for this Java crap. Jeff ___ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/ ___ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/
Re: [c-nsp] TAC hits a new record level of aggravation...
Also make sure you use IE6, because apparently thats what most users prefer. Those pesky newer version and non MS browsers can be a real heachache. :) On Sat, Nov 2, 2013 at 9:23 PM, Engel engel.lab...@gmail.com wrote: Have you try using MS Explorer? Sent from my iPhone On 2013/11/03, at 7:53, Jeff Kell jeff-k...@utc.edu wrote: I had the opportunity to open a TAC case last week... and was greeted by the new website... I use Firefox with NoScript, Ghostery, AdBlock, and some other plugins that require their own unique whitelisting to get cisco.com to work at all, and even more if you need to login to anything. I have the most current Java 1.7 installed as of the last round of updates. So... going to open a TAC case... I'm presented by at least four (maybe five?) Java permissions warnings/windows asking me if they can run. I bear with this, enter a case, and everything I carefully formatted and pasted into the case was compressed down into a block of continuous text, forget my newlines, everything crammed into one piece. I submit the case, and more Java permissions windows. I go to review the case... still MORE permissions windows. Of course I have to go upload a show tech (first request for any case)... and STILL MORE permissions windows. THIS IS RIDICULOUS !!! Anyone else had the pleasure of hitting the new case management site? I have NEVER experienced such a technical challenge such as that presented by the TAC website... I also now get Java warnings/permissions windows for ASDM for ASA, ASDM for FWSM, oh the list just keeps on growing for this Java crap. Jeff ___ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/ ___ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/ ___ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/
Re: [c-nsp] TAC hits a new record level of aggravation...
On Sat, 2013-11-02 at 21:37 -0400, Jeff Kell wrote: So Cisco is now sleeping with Microsoft? When I read the original post it seemed to me that Cisco sure as you know what wanted you to use a Windows box to access their T.A.C. site. I really hope I am wrong because I will never use Windows, and maybe not Cisco again. I hope you could get assistance from the TAC with only having to jump through the hoops you did. Sincerely, Richard ___ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/
Re: [c-nsp] TAC hits a new record level of aggravation...
It's the new java update - unsigned code gets user verification windows. Cisco (and everybody else) will need to update all their java delivered user interfaces to avoid this annoyance. Sent from mobile; please excuse brevity typos. On Nov 2, 2013, at 19:46, chris tknch...@gmail.com wrote: Also make sure you use IE6, because apparently thats what most users prefer. Those pesky newer version and non MS browsers can be a real heachache. :) On Sat, Nov 2, 2013 at 9:23 PM, Engel engel.lab...@gmail.com wrote: Have you try using MS Explorer? Sent from my iPhone On 2013/11/03, at 7:53, Jeff Kell jeff-k...@utc.edu wrote: I had the opportunity to open a TAC case last week... and was greeted by the new website... I use Firefox with NoScript, Ghostery, AdBlock, and some other plugins that require their own unique whitelisting to get cisco.com to work at all, and even more if you need to login to anything. I have the most current Java 1.7 installed as of the last round of updates. So... going to open a TAC case... I'm presented by at least four (maybe five?) Java permissions warnings/windows asking me if they can run. I bear with this, enter a case, and everything I carefully formatted and pasted into the case was compressed down into a block of continuous text, forget my newlines, everything crammed into one piece. I submit the case, and more Java permissions windows. I go to review the case... still MORE permissions windows. Of course I have to go upload a show tech (first request for any case)... and STILL MORE permissions windows. THIS IS RIDICULOUS !!! Anyone else had the pleasure of hitting the new case management site? I have NEVER experienced such a technical challenge such as that presented by the TAC website... I also now get Java warnings/permissions windows for ASDM for ASA, ASDM for FWSM, oh the list just keeps on growing for this Java crap. Jeff ___ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/ ___ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/ ___ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/ ___ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/
Re: [c-nsp] TAC hits a new record level of aggravation...
On 11/2/2013 11:20 PM, Alex Presse wrote: It's the new java update - unsigned code gets user verification windows. Cisco (and everybody else) will need to update all their java delivered user interfaces to avoid this annoyance. And we need Java to submit a case, exactly why? Plain old school FORM text box worked wonders. Jeff ___ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/
Re: [c-nsp] TAC hits a new record level of aggravation...
On Sat, 2 Nov 2013, Jeff Kell wrote: I had the opportunity to open a TAC case last week... and was greeted by the new website... Try many of these same tasks on a Mac, and you get to add the great Apple/Oracle Java pissing contest on top of it. Fun times... :( It would be great if Cisco focus-group tested these 'enhancements' before rolling them out, and knock it off with the Java nonsense. jms ___ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/
Re: [c-nsp] TAC hits a new record level of aggravation...
+1 for please remove the need for java or any plugins and go the elegance of simplicity On Sat, Nov 2, 2013 at 11:30 PM, Jeff Kell jeff-k...@utc.edu wrote: On 11/2/2013 11:20 PM, Alex Presse wrote: It's the new java update - unsigned code gets user verification windows. Cisco (and everybody else) will need to update all their java delivered user interfaces to avoid this annoyance. And we need Java to submit a case, exactly why? Plain old school FORM text box worked wonders. Jeff ___ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/ ___ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/
Re: [c-nsp] TAC hits a new record level of aggravation...
On Nov 3, 2013, at 7:29 AM, Justin M. Streiner strei...@cluebyfour.org wrote: It would be great if Cisco focus-group tested these 'enhancements' before rolling them out, and knock it off with the Java nonsense. They've been going in this direction for the last 10 years - it's doubtful that anything's going to change. --- Roland Dobbins rdobb...@arbor.net // http://www.arbornetworks.com Luck is the residue of opportunity and design. -- John Milton ___ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/
Re: [c-nsp] TAC hits a new record level of aggravation...
On 11/3/2013 12:52 AM, Dobbins, Roland wrote: On Nov 3, 2013, at 7:29 AM, Justin M. Streiner strei...@cluebyfour.org wrote: It would be great if Cisco focus-group tested these 'enhancements' before rolling them out, and knock it off with the Java nonsense. They've been going in this direction for the last 10 years - it's doubtful that anything's going to change. If enough of us complain... maybe. Meanwhile, their marketing droids think it's an improvement. Jeff ___ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/
Re: [c-nsp] TAC hits a new record level of aggravation...
It would be great if Cisco focus-group tested these 'enhancements' before rolling them out, and knock it off with the Java nonsense. It was in beta for months before they released it publicly. I think the current version is vastly better than when I first saw it. But I guess they didn't have any Mac users in the beta. :) ___ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/
Re: [c-nsp] TAC hits a new record level of aggravation...
The annoyance could be avoided by removing Java requirements from the website. On 11/02/2013 08:20 PM, Alex Presse wrote: It's the new java update - unsigned code gets user verification windows. Cisco (and everybody else) will need to update all their java delivered user interfaces to avoid this annoyance. Sent from mobile; please excuse brevity typos. On Nov 2, 2013, at 19:46, chris tknch...@gmail.com wrote: Also make sure you use IE6, because apparently thats what most users prefer. Those pesky newer version and non MS browsers can be a real heachache. :) On Sat, Nov 2, 2013 at 9:23 PM, Engel engel.lab...@gmail.com wrote: Have you try using MS Explorer? Sent from my iPhone On 2013/11/03, at 7:53, Jeff Kell jeff-k...@utc.edu wrote: I had the opportunity to open a TAC case last week... and was greeted by the new website... I use Firefox with NoScript, Ghostery, AdBlock, and some other plugins that require their own unique whitelisting to get cisco.com to work at all, and even more if you need to login to anything. I have the most current Java 1.7 installed as of the last round of updates. So... going to open a TAC case... I'm presented by at least four (maybe five?) Java permissions warnings/windows asking me if they can run. I bear with this, enter a case, and everything I carefully formatted and pasted into the case was compressed down into a block of continuous text, forget my newlines, everything crammed into one piece. I submit the case, and more Java permissions windows. I go to review the case... still MORE permissions windows. Of course I have to go upload a show tech (first request for any case)... and STILL MORE permissions windows. THIS IS RIDICULOUS !!! Anyone else had the pleasure of hitting the new case management site? I have NEVER experienced such a technical challenge such as that presented by the TAC website... I also now get Java warnings/permissions windows for ASDM for ASA, ASDM for FWSM, oh the list just keeps on growing for this Java crap. Jeff ___ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/ ___ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/ ___ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/ ___ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/ ___ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/
Re: [c-nsp] TAC hits a new record level of aggravation...
On Nov 3, 2013, at 12:08 PM, Jeff Kell jeff-k...@utc.edu wrote: If enough of us complain... maybe. Plenty of people inside and outside of Cisco have complained vociferously, to no avail. It's unlikely to change. --- Roland Dobbins rdobb...@arbor.net // http://www.arbornetworks.com Luck is the residue of opportunity and design. -- John Milton ___ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/
