Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
About SimonT
Community Record
8
Posts
1
Kudos
0
Solutions
Badges
Dec 29 2021
5:54 AM
Thanks I added the NTP servers in as network objects read that its only supported in firewall rules and not group policies so set it up as a firewall rule. Looking at my NTP logs I have it set to try 5 ntp servers and its getting at least 2 to 5 most of the time. Is the FQDN-Object updated differently to how I was doing it ?
... View more
Dec 28 2021
5:37 AM
Hi @KarstenI would you be able to point me at a RTFM article for this ? Are FQDN objects only updated by the API ?
... View more
Dec 27 2021
6:47 PM
I was talking more NTP for the devices rather than the firewall it's self. I have a standard windows environment where the there is a FSMO DC that is in change of domain time. We are using public internet facing NTP server to sync with. The DC server looks up the NTP servers IP address that IP address might not match the IP address the firewall gets due to the pool of ip address that can behind a NTP server that is using a round robin up address. We use umbrella as well and I was wondering if there is a way for the device and the firewall to get the same resolved IP address. Or from your comment can the Meraki be treated as a NTP server ? But this will happen again with any other service that uses round robin DNS.
... View more
Dec 27 2021
3:49 PM
So I wanted to create a NTP Policy for one of my servers The server users a pool of NTP servers eg pool.ntp.org time.windows.com I set the firewall rules up as Allow ,UDP, destination pool.ntp.org and time.windows.com Port 123 I then created a final block rule Due to the nature of NTP pools not every request is accepted as I am assuming that the server does a DNS look up and returns a round robin IP. The firewall then does a DNS lookup and is returned a IP address. As the ip's are coming from a pool of several hundred they are not always matching. I could just allow UDP 123 out but there are many other services that use round robin dns what's the best way to address this
... View more
Feb 19 2020
3:02 PM
On Monday I logged in to find that the port was now active, strange that nothing changed between Saturday and Monday but the port is showing as active and I can ping the remote host.
... View more
Feb 15 2020
4:20 PM
I have requested the logs for the other device, my guess is that its a port negotiation issue as soon as I am back on site I can test and confirm what happens when a notebook is plugged in as well as the port speed.
... View more
Feb 15 2020
11:12 AM
Thanks Dave for the idea's I was thinking it might be a port speed setting after reading a few more forum post. I will keep reading and then try your recommendations.
... View more
Feb 15 2020
10:19 AM
1 Kudo
I am trying to patch a MX84 to another cisco switch and using a copper connection on one of the standard ports. The port is set to a Access port but wont come up in the interface. Patching a laptop to the same cisco switch port comes up right away. Is there any tracing that can be done on the MX84 to see why the port is not coming up
... View more
My Top Kudoed Posts
| Subject | Kudos | Views |
|---|---|---|
| 1 | 3804 |
© 2024 Cisco Systems, Inc.
