Frame-Relay switching ISDN question [7:43206]
Hi all, I have a question regarding a Cisco 2503 acting as a Frame-Relay switch. For the serial ports I already managed to configure it as a FR switch. Now I'm trying to use the ISDN port to for FR switching to so I can connect 3 FR DTE routers to it. (2x serial + 1x ISDN) Does anybody know how to configure this + which IOS feature set to use ? Currently I'm using 12.1.9.a IP only. I've seen 1 document on the Guru site (cisco.com) :-) but that did not help unfortunately. Can somebody help me out with this ? Best regards, Ronald The Netherlands Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=43206t=43206 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: CISCO 2600 NAT [7:43139]
yes it's opened on the server Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=43209t=43139 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: CISCO 2600 NAT [7:43139]
yes it's open on the server Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=43207t=43139 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: CISCO 2600 NAT [7:43139]
yes it's opened on the server Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=43208t=43139 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: CISCO 2600 NAT [7:43139]
Here is the config I'm using: interface FastEthernet0/0 description connected to Internet ip address 195.250.218.18 no ip directed-broadcast ip nat outside speed 100 half-duplex ! interface FastEthernet0/1 description connected to EthernetLAN ip address 192.168.99.1 255.255.255.0 no ip directed-broadcast ip nat inside speed 100 half-duplex ip nat inside source list 7 interface FastEthernet0/0 overload ip nat inside source static tcp 192.168.99.102 5080 195.250.218.181 5080 extendable ip nat inside source static tcp 192.168.99.100 80 195.250.218.181 80 extendable ip classless ip route 0.0.0.0 0.0.0.0 195.246.218.177 no ip http server ! access-list 7 permit 192.168.99.0 0.0.0.255 ! Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=43210t=43139 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Serial number [7:43211]
Hello, May i have a link on web Cisco for how to get chassis's serial numbers because it's differents According to equipements. Someone is strange like CISCO7200VXR (show c7200)!! Kind Regards. Thierry Inginieur Support Support Engineer Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=43211t=43211 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
CCIE lAB Scenario [7:43212]
Hi Group, I am planning for to purchase CCIE practise LAB scenarios for CCIE lab preparation..Pls let me know which one are the best and who sells it. Kind Regards /Thangavel 186K Reading,Brkshire Direct No -0118 9064259 Mobile No -07796292416 Post code: RG16LH www.186k.co.uk -- The greatest glory in living lies not in never falling, but in rising every time we fall . -- Nelson Mandela ** This e-mail is from 186k Ltd and is intended only for the addressee named above. As this e-mail may contain confidential or priveleged information, if you are not the named addressee or the person responsible for delivering the message to the named addressee, please advise the sender by return e-mail. The contents should not be disclosed to any other person nor copies taken. 186k Ltd is a Lattice Group company, registered in England Wales No. 3751494 Registered Office 130 Jermyn Street London SW1Y 4UR ** Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=43212t=43212 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: BGP update-source question [7:43043]
use show ip bgp neighbor Kind Regards /Thangavel 186K Reading,Brkshire Direct No -0118 9064259 Mobile No -07796292416 Post code: RG16LH www.186k.co.uk -- The greatest glory in living lies not in never falling, but in rising every time we fall . -- Nelson Mandela Daniel Lafraia To: [EMAIL PROTECTED] Fax to: Sent by: Subject: Re: BGP update-source question [7:43043] nobody@groups tudy.com 02/05/2002 21:03 Please respond to Daniel Lafraia That's the weird thing. I don't see it in the routing table even with a route to the 4.4.4.0/30 network. RouterB#show ip route Codes: C - connected, S - static, I - IGRP, R - RIP, M - mobile, B - BGP D - EIGRP, EX - EIGRP external, O - OSPF, IA - OSPF inter area N1 - OSPF NSSA external type 1, N2 - OSPF NSSA external type 2 E1 - OSPF external type 1, E2 - OSPF external type 2, E - EGP i - IS-IS, L1 - IS-IS level-1, L2 - IS-IS level-2, ia - IS-IS inter area * - candidate default, U - per-user static route, o - ODR P - periodic downloaded static route Gateway of last resort is 2.2.2.1 to network 0.0.0.0 102.0.0.0/25 is subnetted, 1 subnets B 102.102.102.0 [20/0] via 2.2.2.1, 21:29:29 103.0.0.0/25 is subnetted, 1 subnets D EX103.103.103.0 [170/2297856] via 3.3.3.1, 21:29:47, Serial0 2.0.0.0/8 is variably subnetted, 2 subnets, 2 masks D EX2.2.2.0/30 [170/2681856] via 3.3.3.1, 21:29:47, Serial0 D EX2.2.2.1/32 [170/2681856] via 3.3.3.1, 21:29:47, Serial0 3.0.0.0/8 is variably subnetted, 2 subnets, 2 masks D 3.0.0.0/8 is a summary, 21:29:48, Null0 C 3.3.3.0/30 is directly connected, Serial0 101.0.0.0/25 is subnetted, 1 subnets B 101.101.101.0 [20/0] via 2.2.2.1, 21:29:29 4.0.0.0/8 is variably subnetted, 2 subnets, 2 masks C 4.4.4.0/30 is directly connected, Serial1 C 4.4.4.2/32 is directly connected, Serial1 C192.168.254.0/24 is directly connected, Ethernet0 104.0.0.0/25 is subnetted, 1 subnets C 104.104.104.0 is directly connected, Loopback0 B* 0.0.0.0/0 [20/0] via 2.2.2.1, 21:29:30 RouterB#show ip bgp BGP table version is 5, local router ID is 104.104.104.1 Status codes: s suppressed, d damped, h history, * valid, best, i - internal Origin codes: i - IGP, e - EGP, ? - incomplete Network Next HopMetric LocPrf Weight Path * 0.0.0.0 2.2.2.10 65000 i * i101.101.101.0/25 5.5.5.2 0100 0 65000 i * 2.2.2.10 65000 i * i102.102.102.0/25 5.5.5.2 0100 0 65000 i * 2.2.2.1 0 0 65000 i * 104.104.104.0/25 0.0.0.0 0 32768 i * i105.105.105.0/25 4.4.4.2 0100 0 i Kane, Christopher A. wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... Wouldn't it be because the IP address you see in your BGP table is indeed the next-hop. If you instead look at a specific route sh ip rou x.x.x.x I would think you would see the BGP neig as you have listed (loopback1's ip address) and then the router has to do a recursive-lookup to find out how to get to that loopback address. -chris -Original Message- From: Steven A. Ridder [mailto:[EMAIL PROTECTED]] Sent: Wednesday, May 01, 2002 6:12 PM To: [EMAIL PROTECTED] Subject: Re: BGP update-source question [7:43043] Did you restart BGP? -- RFC 1149 Compliant. Get in my head: http://sar.dynu.com Daniel Lafraia wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... Hello, How come I see the interface address in the show ip bgp if I've specified an update-source for a neighbor? Thanks! Daniel Here is the config: RouterA interface Loopback0 ip address 105.105.105.1 255.255.255.128 interface Loopback1 ip address 41.41.41.1
Re: Content Switching and Keepalives [7:43141]
Hi, You should change the keepalive type in the content switch to HTTP or SSL which ever your webserver is using.For example it should be like the one below. For http service webserver1 ip address x.x.x.x keepalive port 80 keepalive type http active For SSL ervice webserver1 ip address x.x.x.x keepalive port 443 keepalive type tcp active Kind Regards /Thangavel 186K Reading,Brkshire Direct No -0118 9064259 Mobile No -07796292416 Post code: RG16LH www.186k.co.uk -- The greatest glory in living lies not in never falling, but in rising every time we fall . -- Nelson Mandela Patrick Donlon To: [EMAIL PROTECTED] Fax to: Sent by: Subject: Content Switching and Keepalives [7:43141] nobody@groupst udy.com 02/05/2002 18:15 Please respond to Patrick Donlon Hi All I have two web servers which are being load balanced behind a CSS, this is working fine. Currently we're using the default ICMP keepalive, this is OK if the failure is at this level but when the web services process is stopped by the DBA the CSS thinks it's up and running. I've seen the different options, tcp, http gets, etc, and would like to know anyone else's experience in what is the best balance over performance and detecting the lost of service Cheers Pat [EMAIL PROTECTED] ** This e-mail is from 186k Ltd and is intended only for the addressee named above. As this e-mail may contain confidential or priveleged information, if you are not the named addressee or the person responsible for delivering the message to the named addressee, please advise the sender by return e-mail. The contents should not be disclosed to any other person nor copies taken. 186k Ltd is a Lattice Group company, registered in England Wales No. 3751494 Registered Office 130 Jermyn Street London SW1Y 4UR ** Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=43214t=43141 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Digital modems - software upgrade [7:43216]
Hi, I read that the digital modems can be software upgraded. I have a requirement for v.110 for GSM access. Does anyone have the URL where I can see what the most recent level of software is for these modems. I am battling to find this info on CCO I currently have: MICA-6DM Firmware: CP ver 2730 - 5/23/2001, SP ver 2730 - 5/23/2001. Thanks Andrew Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=43216t=43216 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
PIX SSH problem [7:43215]
Hi all, maybe some PIX guru can shed some light here. While I was uploading the pix621.bin software to a lab PIX, after a reload, I found out that the new software does not like an underscore(_) in the hostname. I changed the hostname LAB_PIX to LAB-PIX. This then complained about the rsa key pair used for SSH access. No problem here. I removed the key pair and regenerated it, saved, all ok. I used no ca save all and ca zeroize rsa. Key pair was successfully regenerated and saved. Problem now is that I can not SSH from here in any more. I get a message that says: Decrypting packet: received/computed checksum error from my secureCRT client. I can still get into the PIX via the internal router and then telnet to the internal cards IP address. So this is SSH only that is a problem. Any ideas here Thanks in advance Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=43215t=43215 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Digital modems - software upgrade [7:43216]
After logging into CCO, from Cisco's main page, click Software Center, then click Access Software, then you'll see Cisco 3600 56Kbps MICA Modem Firmware. The only newer version than the one you have is 2910 which adds V.92 and V.44. http://www.cisco.com/pcgi-bin/tablebuild.pl/mica HTH, Mike W. Andrew Larkins wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... Hi, I read that the digital modems can be software upgraded. I have a requirement for v.110 for GSM access. Does anyone have the URL where I can see what the most recent level of software is for these modems. I am battling to find this info on CCO I currently have: MICA-6DM Firmware: CP ver 2730 - 5/23/2001, SP ver 2730 - 5/23/2001. Thanks Andrew Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=43218t=43216 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Running routing protocols on Windows [7:43124]
Howard, thanks for the reply. I've already been playing with Zebra a little bit and I like it so far. I was hoping to find any Windows-based routing services to have one more tool in the toolbox. A Unix/Linux server is not always around when you need one... John Dorffler CCIE #6677 Howard C. Berkowitz wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... At 11:28 AM -0400 5/2/02, John Dorffler wrote: Does anybody know whether there is software available somewhere that lets you run IP routing protocols on a Windows computer? I know that Windows 2000 supports RIP and OSPF, while UNIX/Linux supports BGP. Is there something that lets you run IGRP, EIGRP, or BGP on Windows? I think that would be useful if you needed to inject routes into a lab environment when a spare router is not available. Thank you, John Dorffler CCIE #6677 Let me answer a little indirectly. I forget the name of it, but Microsoft does have a licensed port of Bay RS, which at least runs RIP and OSPF. The Bay software does support BGP, but I don't know if Microsoft's implementation does. If you're willing to use the PC with *NIX, you have some major alternatives. There is the Multithreaded Routing Toolkit (MRT) and old versions of GateD at www.merit.edu. There is GNU Zebra at www.zebra.org. Last time I looked, these both supported RIP, OSPF, ISIS, and BGP. Might be some multicast. There are commercial-grade versions of both: see www.nexthop.com and www.ipinfusion.com. These are apt to have more recent stuff such as traffic engineering extensions, MPLS, etc. Most of the early development was on NetBSD, but you're pretty safe assuming they will run on Linux or FreeBSD. Of the two, I most recently used Zebra, which has a command language more Cisco-like than GateD, which is Juniper-like (there's a fair bit of GateD tradition in JunOS heritage). At the time, Zebra's BGP was probably a little stranger than GateD, but both have pros and cons. Merit also has something called BGPsim, which specifically generates BGP updates but is not a BGP routing process -- it lets you do things, however, such as generating bad routes or arbitrary AS paths. I should be working with Zebra and BGPsim in the next couple of weeks to set up an Internet simulator, along with routers. I'll have more recent data then. -- What Problem are you trying to solve? ***send Cisco questions to the list, so all can benefit -- not directly to me*** Howard C. Berkowitz [EMAIL PROTECTED] Chief Technology Officer, GettLab/Gett Communications http://www.gettlabs.com Technical Director, CertificationZone.com http://www.certificationzone.com retired Certified Cisco Systems Instructor (CID) #93005 Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=43217t=43124 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: BGP question [7:43163]
Customer needs to get their own AS. Daniel Ladrach CCNA, CCNP WorldCom -Original Message- From: Junkie [mailto:[EMAIL PROTECTED]] Sent: Thursday, May 02, 2002 9:48 PM To: [EMAIL PROTECTED] Subject: RE: BGP question [7:43163] You shouldn't have a problem at all. I have done this a few times, just make sure that both ISP's know you have a multihomed network and what block the other ISP provided. Just like Jason mentioned, it's AS to AS...but we had a situation where the ISP had to add the other ISP's block into an access list. Most of the bigger providers will have a form to fill out, with Sprint and WCOM they ask if you are multihomed and also ask for all of the public blocks You're good with it... -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] On Behalf Of Steven A. Ridder Sent: Thursday, May 02, 2002 4:28 PM To: [EMAIL PROTECTED] Subject: BGP question [7:43163] Here's a question I can't seem to answer. I came up with a scenario in my head, and now I can't find a solution. Example: I have a dual homed network via BGP. I have ISP 1 and they give me 209.21.220.1/20 for use, and ISP gives me 199.33.23.1/21. Say I use the 209.x.x.x for my web servers, mail server, etc, and advertise that back out to the Internet via ISP 1 (the ISP that assigned me the block) and in DNS. I'm assuming ISP 2 will not advertise that block for me, as it's ISP 1's block. So, now the whole world knows to get to me via ISP 1. Then let's say ISP 1 goes down, how would the world know how to get to me, if they only knew how to get to me Via ISP 1 and it's IP's? -- RFC 1149 Compliant Get in my head: http://sar.dynu.com Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=43219t=43163 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
test [7:43220]
test for a new member. Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=43220t=43220 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
CCIE written [7:43221]
Hi, Can any body tell me is there is formula to figure out the maximum frame size in a RIF packet, or do I have to memorize all these numbers?. Thanks 000 516 001 1500 010 2052 011 4472 Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=43221t=43221 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
IGRP to EIGRP redistribute problem (VLSM to FLSM) [7:43222]
HI all, Need some advise on the following IGRP to Eigrp route distribute problem. Problem: 137.33.0.0 is possible down after a while at both r5 and r6. End result to achieve: r6 can ping r5 loopback0 or r5 to r6. Both R5 and R6 have a loopback ip address(137.33.5.5/32 and 137.33.6.6/32) which using Host subnet. The problem seem to be FLSM to VLSM route distribute and I have try all the possible way(e.g. summary, policy route, distribute-list and tunnel) but still have not idea how to resolve the above problem. R6 is running both IGRP and EIGRP. Below is the configuration. R5 - host r5 interface Loopback0 ip address 137.33.5.5 255.255.255.0 ! interface Ethernet0 no ip address no keepalive ! interface Serial0 no ip address no keepalive shutdown no fair-queue clockrate 64000 ! interface Serial1 bandwidth 64000 backup delay 3 3 backup interface BRI0 ip address 134.1.56.5 255.255.255.0 clockrate 64000 ! interface Serial2 no ip address shutdown ! interface Serial3 no ip address shutdown ! interface BRI0 description ISDN No 7952 1478 bandwidth 64000 ip address 134.1.35.5 255.255.255.0 encapsulation ppp dialer map ip 134.1.35.3 name r3 79529389 dialer load-threshold 192 outbound dialer watch-group 1 dialer-group 1 isdn switch-type basic-net3 ppp authentication chap callin ppp multilink ! router igrp 10 timers basic 5 5 5 5 redistribute connected network 134.1.0.0 network 137.33.0.0 metric weights 0 1 1 1 0 0 ! ip local policy route-map pol1 ip kerberos source-interface any ip classless no ip http server ! access-list 1 permit 137.24.0.0 access-list 1 permit 137.33.6.6 access-list 1 permit 137.33.2.2 access-list 1 permit 137.33.1.1 access-list 1 permit 137.33.3.3 access-list 1 permit 137.33.4.4 dialer-list 1 protocol ip permit route-map loopback permit 10 match interface Loopback0 ! route-map pol1 permit 10 match ip route-source 1 set interface Serial1 ! route-map pol1 permit 20 r5#sir Codes: C - connected, S - static, I - IGRP, R - RIP, M - mobile, B - BGP D - EIGRP, EX - EIGRP external, O - OSPF, IA - OSPF inter area N1 - OSPF NSSA external type 1, N2 - OSPF NSSA external type 2 E1 - OSPF external type 1, E2 - OSPF external type 2, E - EGP i - IS-IS, L1 - IS-IS level-1, L2 - IS-IS level-2, ia - IS-IS inter area * - candidate default, U - per-user static route, o - ODR P - periodic downloaded static route Gateway of last resort is not set I202.6.6.0/24 [100/2656] via 134.1.56.6, 00:00:03, Serial1 137.33.0.0/24 is subnetted, 1 subnets C 137.33.5.0 is directly connected, Loopback0 I202.2.2.0/24 [100/2656] via 134.1.56.6, 00:00:03, Serial1 134.1.0.0/24 is subnetted, 1 subnets C 134.1.56.0 is directly connected, Serial1 hostname r6 ! logging rate-limit console 10 except errors ! ip subnet-zero no ip finger no ip domain-lookup ! cns event-service server ! ! ! dlsw local-peer peer-id 134.1.6.6 dlsw remote-peer 0 frame-relay interface Serial0 604 pass-thru ! ! interface Loopback0 ip address 137.33.6.6 255.255.255.0 ! interface Loopback1 ip address 202.6.6.6 255.255.255.0 ! interface Loopback2 description ATM Emulation interface ip address 202.2.2.2 255.255.255.0 ! interface Ethernet0 ip address 150.100.6.6 255.255.255.0 ! interface Serial0 ip address 134.1.34.6 255.255.255.0 encapsulation frame-relay ip ospf message-digest-key 1 md5 hackme ip ospf network point-to-multipoint shutdown no fair-queue clockrate 64000 frame-relay map dlsw 604 broadcast frame-relay map ip 134.1.34.3 604 broadcast frame-relay map ip 134.1.34.4 604 broadcast no frame-relay inverse-arp ! interface Serial1 ip address 134.1.26.6 255.255.255.0 ip policy route-map pol1 shutdown clockrate 64000 ! interface Serial2 ip address 134.1.56.6 255.255.255.0 ! interface Serial3 no ip address shutdown ! interface BRI0 no ip address shutdown ! router eigrp 100 redistribute igrp 10 metric 1000 100 255 1 1500 network 134.1.26.0 0.0.0.255 no auto-summary no eigrp log-neighbor-changes ! router ospf 1 log-adjacency-changes area 1 authentication message-digest passive-interface Loopback0 passive-interface Loopback1 passive-interface Loopback2 passive-interface Serial1 passive-interface Serial2 network 134.1.34.0 0.0.0.255 area 1 network 150.100.6.0 0.0.0.255 area 1 default-metric 50 ! router igrp 10 timers basic 5 5 5 5 redistribute eigrp 100 metric 1000 100 255 1 1500 passive-interface Loopback0 passive-interface Serial0 passive-interface Serial1 network 134.1.0.0 network 137.33.0.0 network 202.2.2.0 network 202.6.6.0 ! ip kerberos source-interface any ip classless no ip http server ! access-list 1 permit 137.33.5.5 access-list 2 deny 137.33.0.0 0.0.255.255 access-list 2 permit any access-list 3 permit 134.1.13.0 0.0.0.255 access-list 3 permit 150.100.0.0 0.0.255.255 route-map pol1 permit 10 match ip address 1 set interface Serial2 ! route-map pol1 permit 20 ! ! alias
RE: Serial number [7:43211]
Hello, May i have a link on web Cisco for how to get chassis's serial numbers because it's differents According to equipements. Someone is strange like CISCO7200VXR (show c7200)!! You can always use show version and get the same info. Marko. Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=43223t=43211 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: CCIE written [7:43221]
I don't know of a formula that you can use because the bits in the RIF tell you what the maximum frame size is. I would just memorize the numbers since there are only eight different combinations that you can have with three bits (000, 001, 010, etc.). If there is a formula other than memorizing the numbers, I would be interested in knowing what it is. Shawn K. -Original Message- From: Sharifi, Reza [mailto:[EMAIL PROTECTED]] Sent: Friday, May 03, 2002 9:11 AM To: [EMAIL PROTECTED] Subject: CCIE written [7:43221] Hi, Can any body tell me is there is formula to figure out the maximum frame size in a RIF packet, or do I have to memorize all these numbers?. Thanks 000 516 001 1500 010 2052 011 4472 Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=43225t=43221 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Serial number [7:43211]
Have you compared the serial numbers you find when you do a show c7200 with the actual serial number on the chassis of the router? I think that you are getting the serial numbers of cards in the box. On the larger point I am not aware of any CLI command that will output the box serial number. Some folks configure the serial number into a banner. Others create a named access list and then add a remark line with the serial number. Obviously they don't apply the list. I seem to remember that our SNMP experts have ways of finding or storing serial numbers. -Original Message- From: Dion, Thierry [mailto:[EMAIL PROTECTED]] Sent: Friday, May 03, 2002 5:14 AM To: [EMAIL PROTECTED] Subject: Serial number [7:43211] Hello, May i have a link on web Cisco for how to get chassis's serial numbers because it's differents According to equipements. Someone is strange like CISCO7200VXR (show c7200)!! Kind Regards. Thierry Inginieur Support Support Engineer Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=43226t=43211 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: CCIE Written Beta [7:43164]
I forgot, another thing I noticed is that I was told how many answers to choose. For example, on every question I was asked to Select the best answer or Select the two best answers, etc. I remember the 350-001 didn't tell you how many answers to choose. Shawn K. P.S. I also noticed that in my previous post I wrote Cisco ISO when I meant Cisco IOS. Fat finger! -Original Message- From: Michael L. Williams [mailto:[EMAIL PROTECTED]] Sent: Thursday, May 02, 2002 11:17 PM To: [EMAIL PROTECTED] Subject: Re: CCIE Written Beta [7:43164] Interesting. As far as the back button goes, here's what I remember. Back when, all of the Cisco exams had the back button... (someone correct me, but the CCIE was around before CCNA/NP, etc). At some point (around the time I started taking Cisco exams) they removed the use of the back button from the Cisco Career Certs (CCNA/DA, CCNP/DP exams) because they realized that some of the questions would give away answers that could have been asked in previous questions but they left the back button in the 350-001. AFAIK, they never removed use of the back button for the CCIE written but I am surprised that they didn't remove it in the new incarnation. Good info ... I'm s'posed to take the beta tomorrow. I know MPLS is going to be probably my biggest weak point as I haven't read hardly anything about it but the rest I may have a good chance at doing alright at.. Wish me luck! (pleeze pleeze wish me luck... LOL) Mike W. Kaminski, Shawn G wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... What I found interesting about this exam was that I was able to go back to previous questions. I can't remember if the 350-001 was like that. I wonder if all the Cisco beta exams are like that? Another interesting thing was that they had commands on this test that probably have been used only once in the history of networking, and that one and only time was on this exam :-) I thought it was a good test to make people realize that anything in the Cisco ISO is fair game on the one-day lab. Shawn K. -Original Message- From: Daniel Lafraia [SMTP:[EMAIL PROTECTED]] Sent: Thursday, May 02, 2002 4:28 PM To: [EMAIL PROTECTED] Subject: CCIE Written Beta [7:43164] Hello, I just took the new CCIE Written Beta test. That's really a very hard test (everything that we've been hearing about this test is true ). You have 180 minutes (I've used 179 minutes and a few seconds! YES, that's full 3 hours without going to the bathroom ) for 150 questions. It really seems that everything in networking is covered in this test. From some basic questions to the most complex questions about IPX, MPLS, VLAN, BGP, OSPF, EIGRP, DLSw+, ATM, LANE, NAT, Queueing (all WFQ, RSVP, Traffic Shaping and Load Balancing), VoIP, Frame Relay, ISDN, Token Ring, EtherChannels, IPSec and everything else you can think. I didn't get any type the command type of question, altough you may find some questions like what's the command that likely would fix this problem. Basically more than 60% of these questions have its own lab scenario. For those who will take this test: Even though that's the new format (351-001), you really should take a look at the blueprint for the (350-001) before taking this test http://www.cisco.com/warp/public/625/ccie/certifications/rsblueprint.html I've used Boson tests CCIE practice test #2, Caslow's book, Routing TCP/IP volume I and II, Halabi's book and a lot of reserch on cisco.com :) Well. I hope this helps! :) Now I have to wait 6-8 weeks for the result :) cya Daniel Lafraia Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=43228t=43164 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: PIX SSH problem [7:43215]
You have to regenerate your rsa keys after changing your host name or domain You also have to remove the saved key out of your ssh client for that device -Original Message- From: Andrew Larkins [mailto:[EMAIL PROTECTED]] Sent: Friday, May 03, 2002 7:38 AM To: [EMAIL PROTECTED] Subject: PIX SSH problem [7:43215] Hi all, maybe some PIX guru can shed some light here. While I was uploading the pix621.bin software to a lab PIX, after a reload, I found out that the new software does not like an underscore(_) in the hostname. I changed the hostname LAB_PIX to LAB-PIX. This then complained about the rsa key pair used for SSH access. No problem here. I removed the key pair and regenerated it, saved, all ok. I used no ca save all and ca zeroize rsa. Key pair was successfully regenerated and saved. Problem now is that I can not SSH from here in any more. I get a message that says: Decrypting packet: received/computed checksum error from my secureCRT client. I can still get into the PIX via the internal router and then telnet to the internal cards IP address. So this is SSH only that is a problem. Any ideas here Thanks in advance * DISCLAIMER: The information contained in this e-mail may be confidential and is intended solely for the use of the named addressee. Access, copying or re-use of the e-mail or any information contained therein by any other person is not authorized. If you are not the intended recipient please notify us immediately by returning the e-mail to the originator. Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=43229t=43215 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Running routing protocols on Windows [7:43124]
Well, depends what you have in mind by route injection. There's a difference between a full routing implementation, and something like BGPsim, which can play back (or generate) updates. Now, I can't speak to a specific product, but many of the standalone protocol analyzers I've worked with let you send prerecorded traffic. That's probably your only alternative for (E)IGRP. At 8:20 AM -0400 5/3/02, John Dorffler wrote: Howard, thanks for the reply. I've already been playing with Zebra a little bit and I like it so far. I was hoping to find any Windows-based routing services to have one more tool in the toolbox. A Unix/Linux server is not always around when you need one... John Dorffler CCIE #6677 Howard C. Berkowitz wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... At 11:28 AM -0400 5/2/02, John Dorffler wrote: Does anybody know whether there is software available somewhere that lets you run IP routing protocols on a Windows computer? I know that Windows 2000 supports RIP and OSPF, while UNIX/Linux supports BGP. Is there something that lets you run IGRP, EIGRP, or BGP on Windows? I think that would be useful if you needed to inject routes into a lab environment when a spare router is not available. Thank you, John Dorffler CCIE #6677 Let me answer a little indirectly. I forget the name of it, but Microsoft does have a licensed port of Bay RS, which at least runs RIP and OSPF. The Bay software does support BGP, but I don't know if Microsoft's implementation does. If you're willing to use the PC with *NIX, you have some major alternatives. There is the Multithreaded Routing Toolkit (MRT) and old versions of GateD at www.merit.edu. There is GNU Zebra at www.zebra.org. Last time I looked, these both supported RIP, OSPF, ISIS, and BGP. Might be some multicast. There are commercial-grade versions of both: see www.nexthop.com and www.ipinfusion.com. These are apt to have more recent stuff such as traffic engineering extensions, MPLS, etc. Most of the early development was on NetBSD, but you're pretty safe assuming they will run on Linux or FreeBSD. Of the two, I most recently used Zebra, which has a command language more Cisco-like than GateD, which is Juniper-like (there's a fair bit of GateD tradition in JunOS heritage). At the time, Zebra's BGP was probably a little stranger than GateD, but both have pros and cons. Merit also has something called BGPsim, which specifically generates BGP updates but is not a BGP routing process -- it lets you do things, however, such as generating bad routes or arbitrary AS paths. I should be working with Zebra and BGPsim in the next couple of weeks to set up an Internet simulator, along with routers. I'll have more recent data then. -- What Problem are you trying to solve? ***send Cisco questions to the list, so all can benefit -- not directly to me*** Howard C. Berkowitz [EMAIL PROTECTED] Chief Technology Officer, GettLab/Gett Communications http://www.gettlabs.com Technical Director, CertificationZone.com http://www.certificationzone.com retired Certified Cisco Systems Instructor (CID) #93005 Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=43230t=43124 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
351-001 [7:43231]
Hello all, I just got finished with the beta written exam and thought I'd comment while it's still fresh. This test was far and away the most difficult Cisco exam I have ever seen and probably the toughest cert exam period. Out of 150 questions I would say that there were thirty that I just guessed at, very heavy on multicasting and MPLS, two things in which I have no realworld exposure. Some BGP scenarios that were beyond my imagination and certainly farfetched even in a large ISP. Bottom line is they have taken some of us at our word that the original written exam was too easy. I have yet to take the 350-001 but I have been studying towards it for the last four months with practice exams and have the CCDP, this new test is not for rookies. The worst part of this is that after probably failing my first Cisco exam I came away knowing that I am a long way from being ready for the lab. I am not going to give up by a long shot but I have to re-think my strategy, I need more training. Between my home lab and work I have probably touched about fifty percent of what is covered. Back to the drawing board for me. BTW. This test did allow you to go backwards. I did not have a single type in the command question and only one decipher the RIF question. Lots of scenarios and network illustrations. Doug Mizell CCNP/CCDP _ MSN Photos is the easiest way to share and print your photos: http://photos.msn.com/support/worldwide.aspx Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=43231t=43231 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Content Switching and Keepalives [7:43141]
Hi I tested it and for some reason it didn't work, I configured the following on the service: keepalive port 81, keepalive method get, keepalive type http keepalive frequency 25, keepalive retry 25 keepalive uri www.blahblah.com/index.html I then activated the service (and re-activated it a few times just in case) Any thing obviously wrong and what should I check in the log cheers Pat Patrick Donlon wrote: Hi All I have two web servers which are being load balanced behind a CSS, this is working fine. Currently we're using the default ICMP keepalive, this is OK if the failure is at this level but when the web services process is stopped by the DBA the CSS thinks it's up and running. I've seen the different options, tcp, http gets, etc, and would like to know anyone else's experience in what is the best balance over performance and detecting the lost of service Cheers Pat [EMAIL PROTECTED] Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=43232t=43141 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
How can I measure traffic through a 2600 router (over time/1 [7:43224]
I have a client that wants to know how much traffic is passing through his router. They are ordering new service and want to know how much bandwidth to order. What utility should I use? Thanks Wayne Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=43224t=43224 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Content Switching and Keepalives [7:43141]
I'm not positive about this but I don't believe you're supposed to include the domain name in the URI. We simply use 'keepalive uri /index.htm' and that works well. Give that a shot and see if it works for you. John Patrick Donlon 5/3/02 9:54:47 AM Hi I tested it and for some reason it didn't work, I configured the following on the service: keepalive port 81, keepalive method get, keepalive type http keepalive frequency 25, keepalive retry 25 keepalive uri www.blahblah.com/index.html I then activated the service (and re-activated it a few times just in case) Any thing obviously wrong and what should I check in the log cheers Pat Patrick Donlon wrote: Hi All I have two web servers which are being load balanced behind a CSS, this is working fine. Currently we're using the default ICMP keepalive, this is OK if the failure is at this level but when the web services process is stopped by the DBA the CSS thinks it's up and running. I've seen the different options, tcp, http gets, etc, and would like to know anyone else's experience in what is the best balance over performance and detecting the lost of service Cheers Pat [EMAIL PROTECTED] Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=43233t=43141 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
2500 Boot-ROM's [7:43234]
After finishing my latest upgrades I have 3 sets of 2500 Boot-Rom's left over. They are the latest 11.0(10c)XB2 I have saw a couple post on here asking for some. If your interested drop me a line off the list. Thanks Rick Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=43234t=43234 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Serial number [7:43211]
Nop you cannot get chassis serial number on C7000 series router without this command. how can i get chassis serial on GSR 12000 series Router (show version don't give it) -- show c7200 -- Network IO Interrupt Throttling: throttle count=0, timer count=0 active=0, configured=0 netint usec=4000, netint mask usec=200 C7200 Midplane EEPROM: Hardware revision 2.0 Board revision A0 -- Serial number 18281725 Part number73-3905-03 Test history 0x0 RMA number 00-00-00 MAC=0001.6457.5000, MAC Size=1024 EEPROM format version 1, Model=0x4 EEPROM contents (hex): 0x20: 01 04 02 00 01 16 F4 FD 49 0F 41 03 00 01 64 57 0x30: 50 00 04 00 00 00 00 00 00 02 22 50 00 00 FF 00 C7204VXR CPU EEPROM: Hardware revision 4.2 Board revision A0 Serial number 23322824 Part number73-3409-08 Test history 0x7 RMA number 07-37-36 EEPROM format version 1 EEPROM contents (hex): 0x20: 01 AE 04 02 01 63 E0 C8 49 0D 51 08 07 07 25 24 0x30: 50 00 00 00 00 00 00 00 00 00 FF FF FF FF FF 00 But look at the show version -- show version -- Cisco Internetwork Operating System Software IOS (tm) 7200 Software (C7200-IS-M), Version 12.0(7)T, RELEASE SOFTWARE (fc2) Copyright (c) 1986-1999 by cisco Systems, Inc. Compiled Tue 07-Dec-99 16:36 by phanguye Image text-base: 0x60008900, data-base: 0x613D8000 ROM: System Bootstrap, Version 12.1(2824:081033) [dbeazley-cosmos_e_LATEST 1 01], DEVELOPMENT SOFTWARE BOOTFLASH: 7200 Software (C7200-BOOT-M), Version 12.0(4)XE, EARLY DEPLOYMENT REL EASE SOFTWARE (fc1) Router uptime is 2 hours, 6 minutes System returned to ROM by reload at 14:19:15 Tue Mar 5 2002 System restarted at 14:20:36 Tue Mar 5 2002 System image file is slot0:c7200-is-mz.120-7.bin cisco 7204VXR (NPE300) processor with 40960K/24576K bytes of memory. R7000 CPU at 262Mhz, Implementation 39, Rev 2.1, 256KB L2, 2048KB L3 Cache 4 slot VXR midplane, Version 2.0... the show version don't work for every components. Kind regards -Message d'origine- De : Marko Milivojevic [mailto:[EMAIL PROTECTED]] Envoyi : vendredi 3 mai 2002 16:08 @ : [EMAIL PROTECTED] Objet : RE: Serial number [7:43211] Importance : Faible Hello, May i have a link on web Cisco for how to get chassis's serial numbers because it's differents According to equipements. Someone is strange like CISCO7200VXR (show c7200)!! You can always use show version and get the same info. Marko. Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=43227t=43211 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
VoIP Call Detail Reporting [7:43238]
I have a network of about 21 offices that each have a MC3810 doing VoIP between them. Now, I'm wanting to setup Call Detail Reporting (CDR) so that I can basically just get a total number of minutes each month that the VoIP lines are in use so that I can build some sort of dollar savings report. I'm planning on writing my own system by setting the CDR information to log to a linux box's syslog, parsing out the fields with utilities like awk and 'cut', and entering them into a MySQL database where I can then use PHP to generate pages on usage statistics. Sounds like a lot, hmm? Therefore, I'm wondering if anything exists that does this already before I start working on the project. I've looked at CallManager product literature, but it seems to be overkill for just generating CDR reports since we don't have IP phones. Does anyone have any suggestions? Thanks, James Willard, CCNA [EMAIL PROTECTED] Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=43238t=43238 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Content Switching and Keepalives [7:43141]
This is correct. The domain name is not necessary. Since the CSS knows the ip address of the box it's watching it doesn't have to rely on a domain name to find the location of the server. However it is important that the css know the path to reach the reference page. I've used the following: service blah_blah ip address 10.1.1.1 keepalive frequency 8 keepalive type http keepalive uri /.reference/arrowpoint-keepalive.html active I usually use the default head method vs the get. Depends on whether the file you are watching is static or dynamic. Dave -Original Message- From: John Neiberger [mailto:[EMAIL PROTECTED]] Sent: Friday, May 03, 2002 12:19 PM To: [EMAIL PROTECTED] Subject: Re: Content Switching and Keepalives [7:43141] I'm not positive about this but I don't believe you're supposed to include the domain name in the URI. We simply use 'keepalive uri /index.htm' and that works well. Give that a shot and see if it works for you. John Patrick Donlon 5/3/02 9:54:47 AM Hi I tested it and for some reason it didn't work, I configured the following on the service: keepalive port 81, keepalive method get, keepalive type http keepalive frequency 25, keepalive retry 25 keepalive uri www.blahblah.com/index.html I then activated the service (and re-activated it a few times just in case) Any thing obviously wrong and what should I check in the log cheers Pat Patrick Donlon wrote: Hi All I have two web servers which are being load balanced behind a CSS, this is working fine. Currently we're using the default ICMP keepalive, this is OK if the failure is at this level but when the web services process is stopped by the DBA the CSS thinks it's up and running. I've seen the different options, tcp, http gets, etc, and would like to know anyone else's experience in what is the best balance over performance and detecting the lost of service Cheers Pat [EMAIL PROTECTED] Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=43240t=43141 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Serial number [7:43211]; FYI Dion, Thierry [7:43236]
You can try: sh diag This will give you several serials! BTW I am a new comer so please no flame. Galo - Original Message - From: Dion, Thierry To: Sent: Friday, May 03, 2002 11:00 AM Subject: RE: Serial number [7:43211] Nop you cannot get chassis serial number on C7000 series router without this command. how can i get chassis serial on GSR 12000 series Router (show version don't give it) -- show c7200 -- Network IO Interrupt Throttling: throttle count=0, timer count=0 active=0, configured=0 netint usec=4000, netint mask usec=200 C7200 Midplane EEPROM: Hardware revision 2.0 Board revision A0 -- Serial number 18281725 Part number73-3905-03 Test history 0x0 RMA number 00-00-00 MAC=0001.6457.5000, MAC Size=1024 EEPROM format version 1, Model=0x4 EEPROM contents (hex): 0x20: 01 04 02 00 01 16 F4 FD 49 0F 41 03 00 01 64 57 0x30: 50 00 04 00 00 00 00 00 00 02 22 50 00 00 FF 00 C7204VXR CPU EEPROM: Hardware revision 4.2 Board revision A0 Serial number 23322824 Part number73-3409-08 Test history 0x7 RMA number 07-37-36 EEPROM format version 1 EEPROM contents (hex): 0x20: 01 AE 04 02 01 63 E0 C8 49 0D 51 08 07 07 25 24 0x30: 50 00 00 00 00 00 00 00 00 00 FF FF FF FF FF 00 But look at the show version -- show version -- Cisco Internetwork Operating System Software IOS (tm) 7200 Software (C7200-IS-M), Version 12.0(7)T, RELEASE SOFTWARE (fc2) Copyright (c) 1986-1999 by cisco Systems, Inc. Compiled Tue 07-Dec-99 16:36 by phanguye Image text-base: 0x60008900, data-base: 0x613D8000 ROM: System Bootstrap, Version 12.1(2824:081033) [dbeazley-cosmos_e_LATEST 1 01], DEVELOPMENT SOFTWARE BOOTFLASH: 7200 Software (C7200-BOOT-M), Version 12.0(4)XE, EARLY DEPLOYMENT REL EASE SOFTWARE (fc1) Router uptime is 2 hours, 6 minutes System returned to ROM by reload at 14:19:15 Tue Mar 5 2002 System restarted at 14:20:36 Tue Mar 5 2002 System image file is slot0:c7200-is-mz.120-7.bin cisco 7204VXR (NPE300) processor with 40960K/24576K bytes of memory. R7000 CPU at 262Mhz, Implementation 39, Rev 2.1, 256KB L2, 2048KB L3 Cache 4 slot VXR midplane, Version 2.0... the show version don't work for every components. Kind regards -Message d'origine- De : Marko Milivojevic [mailto:[EMAIL PROTECTED]] Envoyi : vendredi 3 mai 2002 16:08 @ : [EMAIL PROTECTED] Objet : RE: Serial number [7:43211] Importance : Faible Hello, May i have a link on web Cisco for how to get chassis's serial numbers because it's differents According to equipements. Someone is strange like CISCO7200VXR (show c7200)!! You can always use show version and get the same info. Marko. Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=43236t=43236 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: How can I measure traffic through a 2600 router (over [7:43235]
I have a client that wants to know how much traffic is passing through his router. They are ordering new service and want to know how much bandwidth to order. What utility should I use? MRTG is fairly standard tool for this purpose. It is widely use, quite simple to setup and free. Marko. Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=43235t=43235 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
network management systems [7:43237]
Scenario builders (and users), If you're looking for scenarios that need attention, consider network management (Semester 8 of the Cisco Academy curriculum, for example). Using just a few cisco routers (say, 2-4), one can build and use reasonably simple scenarios. But there's a need for more complex internetworks in the range of at least 5-10 routers. The question then becomes, How to get the routers affordably? A previous thread dealt with routing support on Windows. One could also use old hardware (486, for example) to run Linux Router Project from a floppy in addition to a small CCNP lab of 2-3 routers. Does anyone have experience with LRP? Would people who are familiar with cisco IOS have much difficulty configuring LRP? This would be a tres inexpensive solution to building larger labs for learning SNMP network management: * Get a core of 2-3 Cisco routers, and a couple Cisco VLAN switches. * Resurrect some old PCs and put LRP on them. * Configure the LRP routers. * Total number of routers: 5-10 or more depending on how many PCs you can find in your basement. * Get an SNMP-based NMS like OpenNMS (opennms.org) or whatever. If there's an affordable version of CiscoWorks that's available, that would be just great. But I don't think there is. * Learn to use the NMS and MIBs in a complex environment. Does anyone have experience with this? -- TT Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=43237t=43237 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: VoIP Call Detail Reporting [7:43238]
OK, if you don't have IP Phones, I assume that means you don't have CallManager. The question then is what are you using for a PBX. The easiest place to pull that information is from the phone switch. I haven't seen that information being collected at the voice gateway. Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=43239t=43238 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Pix questions [7:43241]
I am setting up a Pix 515 Unlimited I got the failover unit. If I want to use the 4-port DMZ card, do I need one for each chassis? What about a 1 Port? If I do need on each, how would you configure a web server to be redundant as well? I know you cant use the Same IP on both cards.. Is there some special software that you need to use to load balance between the DMZ interfaces? Maybe like a virtual IP? Also, what does Pix stand for, is it an Acronym for something? Or just the name of the proprietary embedded OS? Thanks for your help everyone. Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=43241t=43241 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: 351-001 [7:43231]
Interesting, because my test allowed me to go back to previous questions. Who knows what the hell Cisco is doing? Do they know what they're doing? :-) I think they enjoy driving us nuts. :-) Shawn K. -Original Message- From: douglas mizell [mailto:[EMAIL PROTECTED]] Sent: Friday, May 03, 2002 11:51 AM To: [EMAIL PROTECTED] Subject: 351-001 [7:43231] Hello all, I just got finished with the beta written exam and thought I'd comment while it's still fresh. This test was far and away the most difficult Cisco exam I have ever seen and probably the toughest cert exam period. Out of 150 questions I would say that there were thirty that I just guessed at, very heavy on multicasting and MPLS, two things in which I have no realworld exposure. Some BGP scenarios that were beyond my imagination and certainly farfetched even in a large ISP. Bottom line is they have taken some of us at our word that the original written exam was too easy. I have yet to take the 350-001 but I have been studying towards it for the last four months with practice exams and have the CCDP, this new test is not for rookies. The worst part of this is that after probably failing my first Cisco exam I came away knowing that I am a long way from being ready for the lab. I am not going to give up by a long shot but I have to re-think my strategy, I need more training. Between my home lab and work I have probably touched about fifty percent of what is covered. Back to the drawing board for me. BTW. This test did allow you to go backwards. I did not have a single type in the command question and only one decipher the RIF question. Lots of scenarios and network illustrations. Doug Mizell CCNP/CCDP _ MSN Photos is the easiest way to share and print your photos: http://photos.msn.com/support/worldwide.aspx Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=43242t=43231 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: DC Meeting - Router Roast Saturday [7:4657]
Ladies and Gentlemen, Bruce is unable to host the DC Meeting - Router Roast Saturday this weekend. He will reschedule for another weekend. He does not know the grading status from the CCIE Lab Thursday. Tom Bruce Evry wrote: Hello, I am taking a break from studying for my Lab, which is coming up Thursday in RTP, to let everyone know that they are invited to come over for good food and good routing this coming Saturday. If I pass the food will be even grander than usual, so please - wish me luck! Saturday, May 4, 2002 10 am to 4 pm At Bruce's House 1607 Thomas Rd, Fort Washington, MD 20744 The past few times Howard Berkowitz has been kind enough not only to attend and bring food but also to let us play on one of the GETTLABs racks. Very cool equipment, I am using it for most of my later than the last minute desperate studying. Bring equipment and/or laptops as well as such snack and sodas. There is still no charge, fees, dues and all are welcome as long as they like talking about routing and switching. Yours Truly - Bruce Evry DIRECTIONS TO THE HOUSE 1607 Thomas Road, Fort Washington, MD 20744 From Maryland take I-95 to exit 3a in MD, From Virginia take Exit 2 in MD To the Indian Head Highway South. Go about 3 miles, turn Left on Old Fort Road. Go exactly 2 miles on Old Fort Road, Turn Right on Thomas Road. We are 1607 Thomas Rd, almost all the way down the street on the left. Look for bright signs a long gravel driveway With no House visible from street! If lost, our phone # is 301-292-5231, call us! Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=43244t=4657 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: DC Meeting - Router Roast Saturday [7:4657]
Ladies and Gentlemen, Bruce is unable to host the DC Meeting - Router Roast Saturday this weekend. He will reschedule for another weekend. He does not know the grading status from the CCIE Lab Thursday. Tom Bruce Evry wrote: Hello, I am taking a break from studying for my Lab, which is coming up Thursday in RTP, to let everyone know that they are invited to come over for good food and good routing this coming Saturday. If I pass the food will be even grander than usual, so please - wish me luck! Saturday, May 4, 2002 10 am to 4 pm At Bruce's House 1607 Thomas Rd, Fort Washington, MD 20744 The past few times Howard Berkowitz has been kind enough not only to attend and bring food but also to let us play on one of the GETTLABs racks. Very cool equipment, I am using it for most of my later than the last minute desperate studying. Bring equipment and/or laptops as well as such snack and sodas. There is still no charge, fees, dues and all are welcome as long as they like talking about routing and switching. Yours Truly - Bruce Evry DIRECTIONS TO THE HOUSE 1607 Thomas Road, Fort Washington, MD 20744 From Maryland take I-95 to exit 3a in MD, From Virginia take Exit 2 in MD To the Indian Head Highway South. Go about 3 miles, turn Left on Old Fort Road. Go exactly 2 miles on Old Fort Road, Turn Right on Thomas Road. We are 1607 Thomas Rd, almost all the way down the street on the left. Look for bright signs a long gravel driveway With no House visible from street! If lost, our phone # is 301-292-5231, call us! Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=43243t=4657 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: How can I measure traffic through a 2600 router (over [7:43245]
MRTG, it is free! Daniel Ladrach CCNA, CCNP WorldCom -Original Message- From: Wayne Jang [mailto:[EMAIL PROTECTED]] Sent: Friday, May 03, 2002 10:39 AM To: [EMAIL PROTECTED] Subject: How can I measure traffic through a 2600 router (over time/1 [7:43224] I have a client that wants to know how much traffic is passing through his router. They are ordering new service and want to know how much bandwidth to order. What utility should I use? Thanks Wayne Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=43245t=43245 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: VoIP Call Detail Reporting [7:43238]
Right, I was saying that I looked at CallManager but it seemed like overkill since we don't use IP phones. Logging from the PBX is definitely not the easiest place to pull information when we're talking about 21 PBXs where it's hard to find two that are alike or even offer call logging. Searching around on the Internet, I've found a syslog daemon called msyslogd that has a MySQL module for direct insertion into a SQL database. This should help out a little bit, but I'll still have to parse the data. James - Original Message - From: Chris Charlebois To: Sent: Friday, May 03, 2002 1:41 PM Subject: RE: VoIP Call Detail Reporting [7:43238] OK, if you don't have IP Phones, I assume that means you don't have CallManager. The question then is what are you using for a PBX. The easiest place to pull that information is from the phone switch. I haven't seen that information being collected at the voice gateway. Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=43247t=43238 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Serial number [7:43211]
on 12000's it's show gsr chassis-info --- Mike Bernico [EMAIL PROTECTED] Illinois Century Network http://www.illinois.net (217) 557-6555 -Original Message- From: Dion, Thierry [mailto:[EMAIL PROTECTED]] Sent: Friday, May 03, 2002 10:01 AM To: [EMAIL PROTECTED] Subject: RE: Serial number [7:43211] Nop you cannot get chassis serial number on C7000 series router without this command. how can i get chassis serial on GSR 12000 series Router (show version don't give it) -- show c7200 -- Network IO Interrupt Throttling: throttle count=0, timer count=0 active=0, configured=0 netint usec=4000, netint mask usec=200 C7200 Midplane EEPROM: Hardware revision 2.0 Board revision A0 -- Serial number 18281725 Part number73-3905-03 Test history 0x0 RMA number 00-00-00 MAC=0001.6457.5000, MAC Size=1024 EEPROM format version 1, Model=0x4 EEPROM contents (hex): 0x20: 01 04 02 00 01 16 F4 FD 49 0F 41 03 00 01 64 57 0x30: 50 00 04 00 00 00 00 00 00 02 22 50 00 00 FF 00 C7204VXR CPU EEPROM: Hardware revision 4.2 Board revision A0 Serial number 23322824 Part number73-3409-08 Test history 0x7 RMA number 07-37-36 EEPROM format version 1 EEPROM contents (hex): 0x20: 01 AE 04 02 01 63 E0 C8 49 0D 51 08 07 07 25 24 0x30: 50 00 00 00 00 00 00 00 00 00 FF FF FF FF FF 00 But look at the show version -- show version -- Cisco Internetwork Operating System Software IOS (tm) 7200 Software (C7200-IS-M), Version 12.0(7)T, RELEASE SOFTWARE (fc2) Copyright (c) 1986-1999 by cisco Systems, Inc. Compiled Tue 07-Dec-99 16:36 by phanguye Image text-base: 0x60008900, data-base: 0x613D8000 ROM: System Bootstrap, Version 12.1(2824:081033) [dbeazley-cosmos_e_LATEST 1 01], DEVELOPMENT SOFTWARE BOOTFLASH: 7200 Software (C7200-BOOT-M), Version 12.0(4)XE, EARLY DEPLOYMENT REL EASE SOFTWARE (fc1) Router uptime is 2 hours, 6 minutes System returned to ROM by reload at 14:19:15 Tue Mar 5 2002 System restarted at 14:20:36 Tue Mar 5 2002 System image file is slot0:c7200-is-mz.120-7.bin cisco 7204VXR (NPE300) processor with 40960K/24576K bytes of memory. R7000 CPU at 262Mhz, Implementation 39, Rev 2.1, 256KB L2, 2048KB L3 Cache 4 slot VXR midplane, Version 2.0... the show version don't work for every components. Kind regards -Message d'origine- De : Marko Milivojevic [mailto:[EMAIL PROTECTED]] Envoyi : vendredi 3 mai 2002 16:08 @ : [EMAIL PROTECTED] Objet : RE: Serial number [7:43211] Importance : Faible Hello, May i have a link on web Cisco for how to get chassis's serial numbers because it's differents According to equipements. Someone is strange like CISCO7200VXR (show c7200)!! You can always use show version and get the same info. Marko. Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=43246t=43211 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: IGRP to EIGRP redistribute problem (VLSM to FLSM) [7:43222]
If an IGRP process and an EIGRP process have the same process IDs, they will redistribute automatically. Change your router eigrp 100 to router eigrp 10. Doyle Volume 1 has some good information in it. Daniel Ladrach CCNA, CCNP WorldCom -Original Message- From: Tey Haw Ching [mailto:[EMAIL PROTECTED]] Sent: Friday, May 03, 2002 9:53 AM To: [EMAIL PROTECTED] Subject: IGRP to EIGRP redistribute problem (VLSM to FLSM) [7:43222] HI all, Need some advise on the following IGRP to Eigrp route distribute problem. Problem: 137.33.0.0 is possible down after a while at both r5 and r6. End result to achieve: r6 can ping r5 loopback0 or r5 to r6. Both R5 and R6 have a loopback ip address(137.33.5.5/32 and 137.33.6.6/32) which using Host subnet. The problem seem to be FLSM to VLSM route distribute and I have try all the possible way(e.g. summary, policy route, distribute-list and tunnel) but still have not idea how to resolve the above problem. R6 is running both IGRP and EIGRP. Below is the configuration. R5 - host r5 interface Loopback0 ip address 137.33.5.5 255.255.255.0 ! interface Ethernet0 no ip address no keepalive ! interface Serial0 no ip address no keepalive shutdown no fair-queue clockrate 64000 ! interface Serial1 bandwidth 64000 backup delay 3 3 backup interface BRI0 ip address 134.1.56.5 255.255.255.0 clockrate 64000 ! interface Serial2 no ip address shutdown ! interface Serial3 no ip address shutdown ! interface BRI0 description ISDN No 7952 1478 bandwidth 64000 ip address 134.1.35.5 255.255.255.0 encapsulation ppp dialer map ip 134.1.35.3 name r3 79529389 dialer load-threshold 192 outbound dialer watch-group 1 dialer-group 1 isdn switch-type basic-net3 ppp authentication chap callin ppp multilink ! router igrp 10 timers basic 5 5 5 5 redistribute connected network 134.1.0.0 network 137.33.0.0 metric weights 0 1 1 1 0 0 ! ip local policy route-map pol1 ip kerberos source-interface any ip classless no ip http server ! access-list 1 permit 137.24.0.0 access-list 1 permit 137.33.6.6 access-list 1 permit 137.33.2.2 access-list 1 permit 137.33.1.1 access-list 1 permit 137.33.3.3 access-list 1 permit 137.33.4.4 dialer-list 1 protocol ip permit route-map loopback permit 10 match interface Loopback0 ! route-map pol1 permit 10 match ip route-source 1 set interface Serial1 ! route-map pol1 permit 20 r5#sir Codes: C - connected, S - static, I - IGRP, R - RIP, M - mobile, B - BGP D - EIGRP, EX - EIGRP external, O - OSPF, IA - OSPF inter area N1 - OSPF NSSA external type 1, N2 - OSPF NSSA external type 2 E1 - OSPF external type 1, E2 - OSPF external type 2, E - EGP i - IS-IS, L1 - IS-IS level-1, L2 - IS-IS level-2, ia - IS-IS inter area * - candidate default, U - per-user static route, o - ODR P - periodic downloaded static route Gateway of last resort is not set I202.6.6.0/24 [100/2656] via 134.1.56.6, 00:00:03, Serial1 137.33.0.0/24 is subnetted, 1 subnets C 137.33.5.0 is directly connected, Loopback0 I202.2.2.0/24 [100/2656] via 134.1.56.6, 00:00:03, Serial1 134.1.0.0/24 is subnetted, 1 subnets C 134.1.56.0 is directly connected, Serial1 hostname r6 ! logging rate-limit console 10 except errors ! ip subnet-zero no ip finger no ip domain-lookup ! cns event-service server ! ! ! dlsw local-peer peer-id 134.1.6.6 dlsw remote-peer 0 frame-relay interface Serial0 604 pass-thru ! ! interface Loopback0 ip address 137.33.6.6 255.255.255.0 ! interface Loopback1 ip address 202.6.6.6 255.255.255.0 ! interface Loopback2 description ATM Emulation interface ip address 202.2.2.2 255.255.255.0 ! interface Ethernet0 ip address 150.100.6.6 255.255.255.0 ! interface Serial0 ip address 134.1.34.6 255.255.255.0 encapsulation frame-relay ip ospf message-digest-key 1 md5 hackme ip ospf network point-to-multipoint shutdown no fair-queue clockrate 64000 frame-relay map dlsw 604 broadcast frame-relay map ip 134.1.34.3 604 broadcast frame-relay map ip 134.1.34.4 604 broadcast no frame-relay inverse-arp ! interface Serial1 ip address 134.1.26.6 255.255.255.0 ip policy route-map pol1 shutdown clockrate 64000 ! interface Serial2 ip address 134.1.56.6 255.255.255.0 ! interface Serial3 no ip address shutdown ! interface BRI0 no ip address shutdown ! router eigrp 100 redistribute igrp 10 metric 1000 100 255 1 1500 network 134.1.26.0 0.0.0.255 no auto-summary no eigrp log-neighbor-changes ! router ospf 1 log-adjacency-changes area 1 authentication message-digest passive-interface Loopback0 passive-interface Loopback1 passive-interface Loopback2 passive-interface Serial1 passive-interface Serial2 network 134.1.34.0 0.0.0.255 area 1 network 150.100.6.0 0.0.0.255
RE: Serial number [7:43211]; FYI Dion, Thierry [7:43211]
To my knowledge, the Serial Number info you get from Show Diag, Show Ver, or other similar Show commands on the different platforms only displays the PCB number (PC BOARD)... ie., the system board, the accessory/daughter cards that are plugged into the system board, etc ... but it doesn't show the Chassis Serial For the Chassis Serial, which is the Serial you refer to for SmartNet Maintenance agreements, you must plan ahead of time, and put in in some kind of comments that the IOS will save with the config, if you want to access this info remotely. such examples would be the Banner MOTD message, the Description command on one of the Interfaces, and I think someone mentioned Description command capability in the Access-List configs... though I haven't tried the last one, so who knows. Welcome to the group Galo! Mark -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of maximus Sent: Friday, May 03, 2002 12:13 PM To: [EMAIL PROTECTED] Subject: Re: Serial number [7:43211]; FYI Dion, Thierry [7:43236] You can try: sh diag This will give you several serials! BTW I am a new comer so please no flame. Galo - Original Message - From: Dion, Thierry To: Sent: Friday, May 03, 2002 11:00 AM Subject: RE: Serial number [7:43211] Nop you cannot get chassis serial number on C7000 series router without this command. how can i get chassis serial on GSR 12000 series Router (show version don't give it) -- show c7200 -- Network IO Interrupt Throttling: throttle count=0, timer count=0 active=0, configured=0 netint usec=4000, netint mask usec=200 C7200 Midplane EEPROM: Hardware revision 2.0 Board revision A0 -- Serial number 18281725 Part number73-3905-03 Test history 0x0 RMA number 00-00-00 MAC=0001.6457.5000, MAC Size=1024 EEPROM format version 1, Model=0x4 EEPROM contents (hex): 0x20: 01 04 02 00 01 16 F4 FD 49 0F 41 03 00 01 64 57 0x30: 50 00 04 00 00 00 00 00 00 02 22 50 00 00 FF 00 C7204VXR CPU EEPROM: Hardware revision 4.2 Board revision A0 Serial number 23322824 Part number73-3409-08 Test history 0x7 RMA number 07-37-36 EEPROM format version 1 EEPROM contents (hex): 0x20: 01 AE 04 02 01 63 E0 C8 49 0D 51 08 07 07 25 24 0x30: 50 00 00 00 00 00 00 00 00 00 FF FF FF FF FF 00 But look at the show version -- show version -- Cisco Internetwork Operating System Software IOS (tm) 7200 Software (C7200-IS-M), Version 12.0(7)T, RELEASE SOFTWARE (fc2) Copyright (c) 1986-1999 by cisco Systems, Inc. Compiled Tue 07-Dec-99 16:36 by phanguye Image text-base: 0x60008900, data-base: 0x613D8000 ROM: System Bootstrap, Version 12.1(2824:081033) [dbeazley-cosmos_e_LATEST 1 01], DEVELOPMENT SOFTWARE BOOTFLASH: 7200 Software (C7200-BOOT-M), Version 12.0(4)XE, EARLY DEPLOYMENT REL EASE SOFTWARE (fc1) Router uptime is 2 hours, 6 minutes System returned to ROM by reload at 14:19:15 Tue Mar 5 2002 System restarted at 14:20:36 Tue Mar 5 2002 System image file is slot0:c7200-is-mz.120-7.bin cisco 7204VXR (NPE300) processor with 40960K/24576K bytes of memory. R7000 CPU at 262Mhz, Implementation 39, Rev 2.1, 256KB L2, 2048KB L3 Cache 4 slot VXR midplane, Version 2.0... the show version don't work for every components. Kind regards -Message d'origine- De : Marko Milivojevic [mailto:[EMAIL PROTECTED]] Envoyi : vendredi 3 mai 2002 16:08 @ : [EMAIL PROTECTED] Objet : RE: Serial number [7:43211] Importance : Faible Hello, May i have a link on web Cisco for how to get chassis's serial numbers because it's differents According to equipements. Someone is strange like CISCO7200VXR (show c7200)!! You can always use show version and get the same info. Marko. Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=43249t=43211 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Pix questions [7:43241]
Both PIX's should be Identical hardware and software wise. Depending upon which code version that you are using, the configuration is slightly different. On the primary you will assigns an interface IP address as well as a failover IP address. The secondary(failover) PIX will pull its IP's from the primary config. On older versions of code (5.x,4.x) you will need to connect every interface regardless of whether it Is enabled or shutdown. This is not a simple thing to understand so I don't want to just post the appropriate commands. If done incorrectly, nothing works. I will however provide some good links! http://www.cisco.com/univercd/cc/td/doc/product/iaabu/pix/index.htm http://www.cisco.com/warp/public/110/top_issues/pix/pix_index.shtml In the case of a failover, the secondary PIX will assume the IP address assigned to the primary. If configured properly with statefull failover, You will maintain all your sessions through the FW. Private Internetwork eXchange. Thanks Larry -Original Message- From: Brian Zeitz [mailto:[EMAIL PROTECTED]] Sent: Friday, May 03, 2002 12:59 PM To: [EMAIL PROTECTED] Subject: Pix questions [7:43241] I am setting up a Pix 515 Unlimited I got the failover unit. If I want to use the 4-port DMZ card, do I need one for each chassis? What about a 1 Port? If I do need on each, how would you configure a web server to be redundant as well? I know you cant use the Same IP on both cards.. Is there some special software that you need to use to load balance between the DMZ interfaces? Maybe like a virtual IP? Also, what does Pix stand for, is it an Acronym for something? Or just the name of the proprietary embedded OS? Thanks for your help everyone. Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=43250t=43241 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: How can I measure traffic through a 2600 router (over [7:43251]
Thanks. I installed Perl and MRTG and it's cool. Marko Milivojevic wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... I have a client that wants to know how much traffic is passing through his router. They are ordering new service and want to know how much bandwidth to order. What utility should I use? MRTG is fairly standard tool for this purpose. It is widely use, quite simple to setup and free. Marko. Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=43251t=43251 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: How can I measure traffic through a 2600 router (over [7:43252]
Got it, I installed Perl and MRTG and it works great. Ladrach, Daniel E. wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... MRTG, it is free! Daniel Ladrach CCNA, CCNP WorldCom -Original Message- From: Wayne Jang [mailto:[EMAIL PROTECTED]] Sent: Friday, May 03, 2002 10:39 AM To: [EMAIL PROTECTED] Subject: How can I measure traffic through a 2600 router (over time/1 [7:43224] I have a client that wants to know how much traffic is passing through his router. They are ordering new service and want to know how much bandwidth to order. What utility should I use? Thanks Wayne Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=43252t=43252 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: network management systems [7:43237]
At 1:24 PM -0400 5/3/02, Tom Scott wrote: Scenario builders (and users), If you're looking for scenarios that need attention, consider network management (Semester 8 of the Cisco Academy curriculum, for example). Using just a few cisco routers (say, 2-4), one can build and use reasonably simple scenarios. But there's a need for more complex internetworks in the range of at least 5-10 routers. The question then becomes, How to get the routers affordably? A previous thread dealt with routing support on Windows. One could also use old hardware (486, for example) to run Linux Router Project from a floppy in addition to a small CCNP lab of 2-3 routers. Does anyone have experience with LRP? Would people who are familiar with cisco IOS have much difficulty configuring LRP? Zebra (I assume it's the same project to which you refer--it's the GNU router) language is very close to IOS. The other major freeware dialect, GateD, is much more like JunOS. You can also increase the complexity by using route generators, as distinct from pure routers. This would be a tres inexpensive solution to building larger labs for learning SNMP network management: * Get a core of 2-3 Cisco routers, and a couple Cisco VLAN switches. Not sure how you'd be using the switches, but it might turn out to be cheaper to use a router as an FR switch. If you want SNMP experience on switches, of course, then they are quite appropriate. Don't limit the approach to Cisco routers. Bay RS routers really are architected internally with MIBs as a very basic part of their OS, rather than interfacing via an agent as I understand the IOS approach to be. You just might be able to get them cheaper, and I think there's value in seeing an interoperability trial. * Resurrect some old PCs and put LRP on them. * Configure the LRP routers. * Total number of routers: 5-10 or more depending on how many PCs you can find in your basement. * Get an SNMP-based NMS like OpenNMS (opennms.org) or whatever. If there's an affordable version of CiscoWorks that's available, that would be just great. But I don't think there is. * Learn to use the NMS and MIBs in a complex environment. Does anyone have experience with this? Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=43253t=43237 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Pix questions [7:43241]
For failover to work both PIXen must be the same model, have the same OS, and same number of interfaces. I would suggest using switches to connect like PIX interfaces. i.e. one switch (or VLAN) for the outside PIX interfaces, one switch for the DMZ interfaces, one switch for the inside interfaces. If you used that topology then the web server would only need one NIC which would connect to the DMZ switch. Check out the PIX OS documentation for the meaning of PIX. Something like Packet Internet eXchange. -Original Message- From: Brian Zeitz [mailto:[EMAIL PROTECTED]] Sent: Friday, May 03, 2002 12:59 PM To: [EMAIL PROTECTED] Subject: Pix questions [7:43241] I am setting up a Pix 515 Unlimited I got the failover unit. If I want to use the 4-port DMZ card, do I need one for each chassis? What about a 1 Port? If I do need on each, how would you configure a web server to be redundant as well? I know you cant use the Same IP on both cards.. Is there some special software that you need to use to load balance between the DMZ interfaces? Maybe like a virtual IP? Also, what does Pix stand for, is it an Acronym for something? Or just the name of the proprietary embedded OS? Thanks for your help everyone. Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=43254t=43241 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Pix questions [7:43241]
I am setting up a Pix 515 Unlimited I got the failover unit. If I want to use the 4-port DMZ card, do I need one for each chassis? What about a 1 Port? If I do need on each, how would you configure a web server to be redundant as well? I know you cant use the Same IP on both cards.. Is there some special software that you need to use to load balance between the DMZ interfaces? Maybe like a virtual IP? If you are using PIX firewalls in failove configuration, they need to be identical in hardware configuration. Note that they work in standby failover configuration NOT in load balancing/load sharing configuration! To load balance services, you need some other device (LocalDirector comes to my mind). Also, what does Pix stand for, is it an Acronym for something? Or just the name of the proprietary embedded OS? PIX stands for Private Internet eXchange, if I remember well.. Marko. Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=43255t=43241 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: network management systems [7:43237]
It sounds like you are going down the right path. My suggestion is to get a 5000 or 2900 (orginal, not XL series) switch (or as many as you can afford). Connect at least one 3620 with FE to the switch (again, whatever you can afford) and use dot1q trunks. Connect a FreeBSD or Linux box running Zebra and with tagged VLAN support (dot1q). Now you can have a lot of interfaces on both sides. You can play around a lot with that, but for NMS you might have little success since there are still some problems with subinterfaces and the Cisco MIB's in some cases. I believe newer code will solve this problem. In the Linux case, you might even be able to setup MPLS for learning. It might be a lot more difficult to learn ATM or Frame- Relay or xDSL or Cable/DOCSIS management techniques without a lot of specialized (read: expensive) hardware. Then again, if you really want to learn ATM network management, an LS1010 and/or 3600 ATM, and/or Cat5k ATM blade aren't going to cost too too much (if you absolutely must learn ATM specifically, this is probably your best bet). I'd avoid ATM and other WAN technologies, and concentrate on LAN network management first, because it costs a lot less. In any case, a single router and a single switch allow you to learn a lot about NMS applications and general configuration ability. Have a look at some of these tools (do a search, I don't want to get all the URL's): net-snmp, rancid, tool, jffnms, msyslog, nmis, ncat/rat, argus, mrtg, mhtg, pancho, rtrmon, scli, seafelt, wandoc, rrdtool, etc I think ncat/rat, rancid, pancho, mrtg, and net-snmp will interest you much more than opennms. They will allow you to do all the neat management features of CiscoWorks but these tools actually work really well and you can get inside of them and play around with things. These books will also help a lot: http://www.amazon.com/exec/obidos/ASIN/1578701805/qid%3D1020453609/ref%3Dsr% 5F11%5F0%5F1/103-7458544-1431031 http://www.amazon.com/exec/obidos/ASIN/0079137822/qid=1020453551/sr=1-3/ref= sr_1_3/103-7458544-1431031 http://www.amazon.com/exec/obidos/ASIN/0072122625/qid=1020453523/sr=1-1/ref= sr_1_1/103-7458544-1431031 http://www.amazon.com/exec/obidos/ASIN/059600186X/qid=1020453510/sr=1-1/ref= sr_1_1/103-7458544-1431031 http://www.amazon.com/exec/obidos/ASIN/0596000200/ref=pd_bndl_img_2/103-7458 544-1431031 -dre Tom Scott wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... If you're looking for scenarios that need attention, consider network management (Semester 8 of the Cisco Academy curriculum, for example). Using just a few cisco routers (say, 2-4), one can build and use reasonably simple scenarios. But there's a need for more complex internetworks in the range of at least 5-10 routers. The question then becomes, How to get the routers affordably? * Get an SNMP-based NMS like OpenNMS (opennms.org) or whatever. If there's an affordable version of CiscoWorks that's available, that would be just great. But I don't think there is. * Learn to use the NMS and MIBs in a complex environment. Does anyone have experience with this? Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=43256t=43237 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: DC Meeting - Router Roast Saturday [3:4657] CANCELED [7:43257]
Ladies and Gentlemen, Bruce has canceled the DC Meeting - Router Roast Saturday this weekend. He is unable to host event. He will reschedule for another weekend. He does not know the grading status from the CCIE Lab he took on Thursday. Tom Bruce Evry wrote: Hello, I am taking a break from studying for my Lab, which is coming up Thursday in RTP, to let everyone know that they are invited to come over for good food and good routing this coming Saturday. If I pass the food will be even grander than usual, so please - wish me luck! Saturday, May 4, 2002 10 am to 4 pm At Bruce's House 1607 Thomas Rd, Fort Washington, MD 20744 The past few times Howard Berkowitz has been kind enough not only to attend and bring food but also to let us play on one of the GETTLABs racks. Very cool equipment, I am using it for most of my later than the last minute desperate studying. Bring equipment and/or laptops as well as such snack and sodas. There is still no charge, fees, dues and all are welcome as long as they like talking about routing and switching. Yours Truly - Bruce Evry DIRECTIONS TO THE HOUSE 1607 Thomas Road, Fort Washington, MD 20744 From Maryland take I-95 to exit 3a in MD, From Virginia take Exit 2 in MD To the Indian Head Highway South. Go about 3 miles, turn Left on Old Fort Road. Go exactly 2 miles on Old Fort Road, Turn Right on Thomas Road. We are 1607 Thomas Rd, almost all the way down the street on the left. Look for bright signs a long gravel driveway With no House visible from street! If lost, our phone # is 301-292-5231, call us! Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=43257t=43257 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Pix questions [7:43241]
Cisco Systems' PIX (Private Internet Exchange) Firewall ... Now you know, and knowing is half the battle. Mark -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Brian Zeitz Sent: Friday, May 03, 2002 12:59 PM To: [EMAIL PROTECTED] Subject: Pix questions [7:43241] I am setting up a Pix 515 Unlimited I got the failover unit. If I want to use the 4-port DMZ card, do I need one for each chassis? What about a 1 Port? If I do need on each, how would you configure a web server to be redundant as well? I know you cant use the Same IP on both cards.. Is there some special software that you need to use to load balance between the DMZ interfaces? Maybe like a virtual IP? Also, what does Pix stand for, is it an Acronym for something? Or just the name of the proprietary embedded OS? Thanks for your help everyone. Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=43258t=43241 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: 351-001 [7:43231]
You're right. I think I'm going nuts! :-) Shawn K. -Original Message- From: Bernard [mailto:[EMAIL PROTECTED]] Sent: Friday, May 03, 2002 3:00 PM To: 'Kaminski, Shawn G' Subject: RE: 351-001 [7:43231] Shawn, You misunderstood the original e-mail. It said This test did allow you to go backwards... Cheers, Bernard Omrani -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] On Behalf Of Kaminski, Shawn G Sent: Friday, May 03, 2002 10:59 AM To: [EMAIL PROTECTED] Subject: RE: 351-001 [7:43231] Interesting, because my test allowed me to go back to previous questions. Who knows what the hell Cisco is doing? Do they know what they're doing? :-) I think they enjoy driving us nuts. :-) Shawn K. -Original Message- From: douglas mizell [mailto:[EMAIL PROTECTED]] Sent: Friday, May 03, 2002 11:51 AM To: [EMAIL PROTECTED] Subject: 351-001 [7:43231] Hello all, I just got finished with the beta written exam and thought I'd comment while it's still fresh. This test was far and away the most difficult Cisco exam I have ever seen and probably the toughest cert exam period. Out of 150 questions I would say that there were thirty that I just guessed at, very heavy on multicasting and MPLS, two things in which I have no realworld exposure. Some BGP scenarios that were beyond my imagination and certainly farfetched even in a large ISP. Bottom line is they have taken some of us at our word that the original written exam was too easy. I have yet to take the 350-001 but I have been studying towards it for the last four months with practice exams and have the CCDP, this new test is not for rookies. The worst part of this is that after probably failing my first Cisco exam I came away knowing that I am a long way from being ready for the lab. I am not going to give up by a long shot but I have to re-think my strategy, I need more training. Between my home lab and work I have probably touched about fifty percent of what is covered. Back to the drawing board for me. BTW. This test did allow you to go backwards. I did not have a single type in the command question and only one decipher the RIF question. Lots of scenarios and network illustrations. Doug Mizell CCNP/CCDP _ MSN Photos is the easiest way to share and print your photos: http://photos.msn.com/support/worldwide.aspx Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=43259t=43231 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: How can I measure traffic through a 2600 router (over [7:43261]
CiscoWorks, MRTG, etc.. -- RFC 1149 Compliant. Get in my head: http://sar.dynu.com Wayne Jang wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... I have a client that wants to know how much traffic is passing through his router. They are ordering new service and want to know how much bandwidth to order. What utility should I use? Thanks Wayne Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=43261t=43261 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Cisco IOS [7:43262]
I need the IOS v c2500-is-l.121-14.bin Does someone has a copy i can download or can assist me at the Cisco site where to download from. Also, is there a tool to determine the IOS required on the router. Thanks Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=43262t=43262 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: network management systems [7:43237]
You mentioned the other area that I neglected to list: the CCIP MPLS certification option. James Leu's MPLS For Linux project would run on the LInux boxes. I don't know what he requires for a kernel. It might not be supported on LRP. -- TT dre wrote: It sounds like you are going down the right path. My suggestion is to get a 5000 or 2900 (orginal, not XL series) switch (or as many as you can afford). Connect at least one 3620 with FE to the switch (again, whatever you can afford) and use dot1q trunks. Connect a FreeBSD or Linux box running Zebra and with tagged VLAN support (dot1q). Now you can have a lot of interfaces on both sides. You can play around a lot with that, but for NMS you might have little success since there are still some problems with subinterfaces and the Cisco MIB's in some cases. I believe newer code will solve this problem. In the Linux case, you might even be able to setup MPLS for learning. It might be a lot more difficult to learn ATM or Frame- Relay or xDSL or Cable/DOCSIS management techniques without a lot of specialized (read: expensive) hardware. Then again, if you really want to learn ATM network management, an LS1010 and/or 3600 ATM, and/or Cat5k ATM blade aren't going to cost too too much (if you absolutely must learn ATM specifically, this is probably your best bet). I'd avoid ATM and other WAN technologies, and concentrate on LAN network management first, because it costs a lot less. In any case, a single router and a single switch allow you to learn a lot about NMS applications and general configuration ability. Have a look at some of these tools (do a search, I don't want to get all the URL's): net-snmp, rancid, tool, jffnms, msyslog, nmis, ncat/rat, argus, mrtg, mhtg, pancho, rtrmon, scli, seafelt, wandoc, rrdtool, etc I think ncat/rat, rancid, pancho, mrtg, and net-snmp will interest you much more than opennms. They will allow you to do all the neat management features of CiscoWorks but these tools actually work really well and you can get inside of them and play around with things. These books will also help a lot: http://www.amazon.com/exec/obidos/ASIN/1578701805/qid%3D1020453609/ref%3Dsr% 5F11%5F0%5F1/103-7458544-1431031 http://www.amazon.com/exec/obidos/ASIN/0079137822/qid=1020453551/sr=1-3/ref= sr_1_3/103-7458544-1431031 http://www.amazon.com/exec/obidos/ASIN/0072122625/qid=1020453523/sr=1-1/ref= sr_1_1/103-7458544-1431031 http://www.amazon.com/exec/obidos/ASIN/059600186X/qid=1020453510/sr=1-1/ref= sr_1_1/103-7458544-1431031 http://www.amazon.com/exec/obidos/ASIN/0596000200/ref=pd_bndl_img_2/103-7458 544-1431031 -dre Tom Scott wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... If you're looking for scenarios that need attention, consider network management (Semester 8 of the Cisco Academy curriculum, for example). Using just a few cisco routers (say, 2-4), one can build and use reasonably simple scenarios. But there's a need for more complex internetworks in the range of at least 5-10 routers. The question then becomes, How to get the routers affordably? * Get an SNMP-based NMS like OpenNMS (opennms.org) or whatever. If there's an affordable version of CiscoWorks that's available, that would be just great. But I don't think there is. * Learn to use the NMS and MIBs in a complex environment. Does anyone have experience with this? Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=43263t=43237 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
PIX OS upgrade [7:43264]
Hello. I need to upgrade an old PIX 520 to a version of the PIX OS that will support VPN-DES. Cisco says I need PIX OS v5.0(3) or greater. I only have 2MB of flash RAM, so I can't run v5.2(x) or greater. Cisco has removed pix503.bin from their CCO download site. Does anyone have pix503.bin that you can send me? I also have pix514.bin, but it's too large to fit on a floppy disk so I need a boothelper file. As my luck would go, Cisco has also removed all the v5.1(x) boothelpers from their download site. If anyone has a bh51?.bin, that should work for me as well. Thanks in advance. Sam Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=43264t=43264 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
VLAN Load balancing [7:43265]
Does anyone do any VLAN load balancing via STP in the real world? I've never seen it yet, and am just curious if it's ever done. -- RFC 1149 Compliant. Get in my head: http://sar.dynu.com Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=43265t=43265 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Cisco IOS [7:43262]
If you have a contract you can go the the Cisco software center: http://www.cisco.com/kobayashi/sw-center/ There are tools, HW/SW compatibity matrix and IOS feature navigator. The IOS required on a router depends on the hardware and features YOU want. http://www.cisco.com/cgi-bin/front.x/Support/HWSWmatrix/hwswmatrix.cgi http://www.cisco.com/cgi-bin/Support/FeatureNav/FN.pl Dave S M wrote: I need the IOS v c2500-is-l.121-14.bin Does someone has a copy i can download or can assist me at the Cisco site where to download from. Also, is there a tool to determine the IOS required on the router. Thanks -- David Madland Sr. Network Engineer CCIE# 2016 Qwest Communications Int. Inc. [EMAIL PROTECTED] 612-664-3367 Emotion should reflect reason not guide it Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=43266t=43262 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: VLAN Load balancing [7:43265]
At 5:04 PM -0400 5/3/02, Steven A. Ridder wrote: Does anyone do any VLAN load balancing via STP in the real world? I've never seen it yet, and am just curious if it's ever done. Could you clarify a bit more what you are trying to do? 802.1D specifically picks a single path, which is the antithesis of load balancing. Assigning multiple VLANs, each with their own STP, to different facilities...sure. Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=43269t=43265 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: VLAN Load balancing [7:43265]
yes..we use load balancing, if you call it that, in data centers.. Larry Letterman Cisco Systems [EMAIL PROTECTED] - Original Message - From: Steven A. Ridder To: Sent: Friday, May 03, 2002 2:04 PM Subject: VLAN Load balancing [7:43265] Does anyone do any VLAN load balancing via STP in the real world? I've never seen it yet, and am just curious if it's ever done. -- RFC 1149 Compliant. Get in my head: http://sar.dynu.com Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=43267t=43265 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: VLAN Load balancing [7:43265]
Yes. An example would be two core 6500 trunked together. You have switches in the closets, one uplink to 6500A the other to 6500B. Set priority on even VLAN/s to A odd to B. Dave Steven A. Ridder wrote: Does anyone do any VLAN load balancing via STP in the real world? I've never seen it yet, and am just curious if it's ever done. -- RFC 1149 Compliant. Get in my head: http://sar.dynu.com -- David Madland Sr. Network Engineer CCIE# 2016 Qwest Communications Int. Inc. [EMAIL PROTECTED] 612-664-3367 Emotion should reflect reason not guide it Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=43268t=43265 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: VLAN Load balancing [7:43265]
-- RFC 1149 Compliant. Get in my head: http://sar.dynu.com Howard C. Berkowitz wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... At 5:04 PM -0400 5/3/02, Steven A. Ridder wrote: Does anyone do any VLAN load balancing via STP in the real world? I've never seen it yet, and am just curious if it's ever done. Could you clarify a bit more what you are trying to do? 802.1D specifically picks a single path, which is the antithesis of load balancing. Assigning multiple VLANs, each with their own STP, to different facilities...sure. That's what I was talking about, I'm just curios to see how common it is. Sounds like it's pretty common. Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=43270t=43265 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Content Switching and Keepalives [7:43141]
A little off topic, but has anybody tried similar with Foundry. Got it to work yet? Got it to fail properly when the service is unavailable or does it pass the ICMP health check, then fail the layer 7 check and flap forever. Can't believe how flaky Foundry is turning out to be recently. I've got a bee in my bonnet... Layer 3 filtering on Foundry NetIrons contained in all the documentation. Tried to implement it, didn't work, reported to Foundry. Informed that NetIrons do not now support it. Sure enough, the documentation was almost immediately updated. They've just binned it - one of many. Bit late when you've sold it. Tried adding/removing ports from VLAN's with the web management. Doh! We're looking at stripping out ServerIrons and putting in CSS, partly due to the extra flexibility available with the Cisco health checking, but mainly because the support works! You can knock Cisco all you like, but we keep coming back to them. Anybody got any views on this? Gaz David Harrison wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... This is correct. The domain name is not necessary. Since the CSS knows the ip address of the box it's watching it doesn't have to rely on a domain name to find the location of the server. However it is important that the css know the path to reach the reference page. I've used the following: service blah_blah ip address 10.1.1.1 keepalive frequency 8 keepalive type http keepalive uri /.reference/arrowpoint-keepalive.html active I usually use the default head method vs the get. Depends on whether the file you are watching is static or dynamic. Dave -Original Message- From: John Neiberger [mailto:[EMAIL PROTECTED]] Sent: Friday, May 03, 2002 12:19 PM To: [EMAIL PROTECTED] Subject: Re: Content Switching and Keepalives [7:43141] I'm not positive about this but I don't believe you're supposed to include the domain name in the URI. We simply use 'keepalive uri /index.htm' and that works well. Give that a shot and see if it works for you. John Patrick Donlon 5/3/02 9:54:47 AM Hi I tested it and for some reason it didn't work, I configured the following on the service: keepalive port 81, keepalive method get, keepalive type http keepalive frequency 25, keepalive retry 25 keepalive uri www.blahblah.com/index.html I then activated the service (and re-activated it a few times just in case) Any thing obviously wrong and what should I check in the log cheers Pat Patrick Donlon wrote: Hi All I have two web servers which are being load balanced behind a CSS, this is working fine. Currently we're using the default ICMP keepalive, this is OK if the failure is at this level but when the web services process is stopped by the DBA the CSS thinks it's up and running. I've seen the different options, tcp, http gets, etc, and would like to know anyone else's experience in what is the best balance over performance and detecting the lost of service Cheers Pat [EMAIL PROTECTED] Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=43272t=43141 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: PIX OS upgrade [7:43264]
Hi Sam, I take it that you have a CCO log on. Go to the URL below: http://www.cisco.com/cgi-bin/Software/SWSearch/SWSearch.cgi and do a software search for files containing Pix. You should get everything you need. Regards, Gaz Sam Wong wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... Hello. I need to upgrade an old PIX 520 to a version of the PIX OS that will support VPN-DES. Cisco says I need PIX OS v5.0(3) or greater. I only have 2MB of flash RAM, so I can't run v5.2(x) or greater. Cisco has removed pix503.bin from their CCO download site. Does anyone have pix503.bin that you can send me? I also have pix514.bin, but it's too large to fit on a floppy disk so I need a boothelper file. As my luck would go, Cisco has also removed all the v5.1(x) boothelpers from their download site. If anyone has a bh51?.bin, that should work for me as well. Thanks in advance. Sam Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=43273t=43264 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: ISDN dial problem [7:43071]
As you get the message waiting for acrrier timeout,I would act on the following order: - Check the cable (try 1 or 2 cables) between the Nt1 and the 1600 router - If this does not work then I am 90 % sure that it is a Telco problem. Have them check the ISDN switch (near the 1600) and the NT1. note: there is a third possibility, and that is having the bri interface broken. But I have never found one, and I have installed and configured a lot of them. Hope this helps. Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=43274t=43071 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: VLAN Load balancing [7:43265]
Care to share those configs? Larry Letterman wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... yes..we use load balancing, if you call it that, in data centers.. Larry Letterman Cisco Systems [EMAIL PROTECTED] - Original Message - From: Steven A. Ridder To: Sent: Friday, May 03, 2002 2:04 PM Subject: VLAN Load balancing [7:43265] Does anyone do any VLAN load balancing via STP in the real world? I've never seen it yet, and am just curious if it's ever done. -- RFC 1149 Compliant. Get in my head: http://sar.dynu.com Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=43275t=43265 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
IPTT (IP Telephony Troubleshooting [7:43276]
This is a brand new exam ... I was wondering if any took this yet? - D.L. __ Do You Yahoo!? Yahoo! Health - your guide to health and wellness http://health.yahoo.com Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=43276t=43276 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
SCEP - x.509 Certificates and IOS [7:43277]
Ok, so with all the 'gurus' out here, there must be someone that has done this before. I've gone through all the documentation I can find on Microsoft's web site and Cisco's web site looking for information on setting up a CA on Windows 2000 and having a Cisco router use SCEP to register for a certificate. I've loaded the SCEP plug in, upgraded the version to the most recent on the Windows box, but I'm still haveing troubles with registration. Using IOS 12.1(9)e on a 7206VXR and/or 12.2(4)YB on a 1760. After setting the hostname, domain name and creating the RSA keys on the router I do the following (config)#crypto ca identity YourCA (ca-identity)#enrollment url http://IP.ADD.RES.S:80/certsrv/mscep/mscep.dll (ca-identity)#enrollment mode ra (ca-identity)#query url ldap://IP.ADD.RES.S Then authenticate... all is well (config)#crypto ca authenticate YourCA I get the fingerprint, accept the cert. Then enrolling: (config)#crypto ca enroll YourCA Starts the enrollment, provide the challenge password for revocation purposesaccept the defaults for the certificate name, ect Fingerprint comes up like it should... then BAM! %CRYPTO-6-CERTREJECT message The microsoft cert server is set up as a stand alone root CA, and the web enrollment for certificates is working just fine(user type certs). Ideas? Thoughts? Thanks! Bill Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=43277t=43277 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: VLAN Load balancing [7:43265]
Correct me if I'm wrong, but VLAN priorization isn't really load balancing- you are just forcing VLANS over a preselected path. It does not take into consideration that one VLAN may utilize more bandwidth than another. Sean -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of MADMAN Sent: Friday, May 03, 2002 3:05 PM To: [EMAIL PROTECTED] Subject: Re: VLAN Load balancing [7:43265] Yes. An example would be two core 6500 trunked together. You have switches in the closets, one uplink to 6500A the other to 6500B. Set priority on even VLAN/s to A odd to B. Dave Steven A. Ridder wrote: Does anyone do any VLAN load balancing via STP in the real world? I've never seen it yet, and am just curious if it's ever done. -- RFC 1149 Compliant. Get in my head: http://sar.dynu.com -- David Madland Sr. Network Engineer CCIE# 2016 Qwest Communications Int. Inc. [EMAIL PROTECTED] 612-664-3367 Emotion should reflect reason not guide it [EMAIL PROTECTED] Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=43278t=43265 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: VLAN Load balancing [7:43265]
Dave has described the switch blocks as given in the BCMSM course. Further details would be that the Distribution Layer 65xx switches would have routing capability. They would also use HSRP on the VLANs so that each trunk link to the Access Layer switches would be the primary for one set of VLANs and the secondary for the other set. In case of a link failure all traffic would failover to the remaining link. Each switch block is a unique VTP domain. Traffic between switch blocks is routed. HTH -Original Message- From: MADMAN [mailto:[EMAIL PROTECTED]] Sent: Friday, May 03, 2002 5:05 PM To: [EMAIL PROTECTED] Subject: Re: VLAN Load balancing [7:43265] Yes. An example would be two core 6500 trunked together. You have switches in the closets, one uplink to 6500A the other to 6500B. Set priority on even VLAN/s to A odd to B. Dave Steven A. Ridder wrote: Does anyone do any VLAN load balancing via STP in the real world? I've never seen it yet, and am just curious if it's ever done. -- RFC 1149 Compliant. Get in my head: http://sar.dynu.com -- David Madland Sr. Network Engineer CCIE# 2016 Qwest Communications Int. Inc. [EMAIL PROTECTED] 612-664-3367 Emotion should reflect reason not guide it Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=43279t=43265 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: VLAN Load balancing [7:43265]
Yes... that's true it's not true load balancing but it let's call it load sharing... =) Actually, of the many things we consider load balancing, many aren't true load balancing but a load sharing that under certain circumstances could be equal like Etherchannel and EIGRP (and other routing protocols) load balancing.. Even under the best configuration Etherchannel has to rely on the source and/or destination MAC or IP addresses to determine which pipe it takes, unless the statistics of IP and/or MAC addr distribution close to random, Etherchannel isn't true balancing. For equal-cost load balancing with routing protocols, if you're using fast-switching, you only get per-destination load balancing, not per packet. To get per-packet load balancing, you must disable fast switching (i.e. use process switching... ewww) So if you have a router at a remote site with two T1s back to the home office where the server is, if most of your traffic is PCs talking to the server, then all of that traffic to that server will choose one of the two T1s (per-destination) and leave the other relatively unused unless you enable process-switching.. (see http://www.cisco.com/warp/public/105/46.html) It appears that CEF is an exception that can indeed do per-packet load-balancing without a hit in performance (process switching) by default it allows up to 4 paths (1 for BGP) but can be changed... (see http://www.cisco.com/warp/public/cc/pd/ifaa/pa/much/tech/althb_wp.htm) (watch for URL wrap) As for Multilink PPP, I can't find any documentation on Cisco's site or otherwise that specifically says that it does per-packet load balancing, however, one of the functions of MLPPP is that it can perform fragmentation and reassembly of packets over a given size, so if it can do that, I would assume that it can do per-packet load balancing... Anyway.. weren't looking for that long winded response, were ya? =) Mike W. Sean Knox wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... Correct me if I'm wrong, but VLAN priorization isn't really load balancing- you are just forcing VLANS over a preselected path. It does not take into consideration that one VLAN may utilize more bandwidth than another. Sean -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of MADMAN Sent: Friday, May 03, 2002 3:05 PM To: [EMAIL PROTECTED] Subject: Re: VLAN Load balancing [7:43265] Yes. An example would be two core 6500 trunked together. You have switches in the closets, one uplink to 6500A the other to 6500B. Set priority on even VLAN/s to A odd to B. Dave Steven A. Ridder wrote: Does anyone do any VLAN load balancing via STP in the real world? I've never seen it yet, and am just curious if it's ever done. -- RFC 1149 Compliant. Get in my head: http://sar.dynu.com -- David Madland Sr. Network Engineer CCIE# 2016 Qwest Communications Int. Inc. [EMAIL PROTECTED] 612-664-3367 Emotion should reflect reason not guide it [EMAIL PROTECTED] Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=43280t=43265 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
351-001 Beta comments [7:43281]
As many have said before, t'was a bitch. However, I must say that is wasn't quite the nightmare that I anticipated. I knew I was weak on MPLS although, just from flipping through my MPLS book today, I got some of the terms and stuff that let me get some questions right that I would have totally missed. It does indeed cover virtually every networking technology out there (luckily t'was light on IPX, and no X.25, Appletalk, etc). As with the others, no type-the-commands. Finished in about 145 minutes, but just as many before, I found myself having to give a best guess on some of the questions and moving on. I haven't taken the current written (yet) but from what I've been reading the Boson exams (particularly #3, which I have) is very similar. Comparing that to this beta, I can say this beta is definitely more challenging simply because instead of mostly quizzing you on definitions or command basics, you would be given a scenario, not so complex it would take 10 minutes to analyze, but enough to make you analyze the (sometimes) multiple exhibits for a single questions' answer. I definitely want to take the current written, however, if I do wait, I can say that I'm not near as freightened to take it as I was. As someone else has already said, this new exam is definitely do-able, but you need to be up on QoS, MPLS, Voice, etc in *detail* including commands. 2 other things. It did indeed have the back button, but I got to wondering if it would be there when the exam was release since it could have been left there on the beta so one could go back and put comments (which there would be no need for on the exam once released) Also, it did tell you how many answers to choose, however, again I wonder if this is something just for the beta or if they're making it more like the CCNP exams in that respect. Anway, thanks to all for their input before I took it it helped me prepare. For the record, I (seriously) doubt that I passed, but that wasn't really my goal.. Thanks again! Mike W. Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=43281t=43281 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: VLAN Load balancing [7:43265]
At 8:52 PM -0400 5/3/02, Sean Knox wrote: Correct me if I'm wrong, but VLAN priorization isn't really load balancing- you are just forcing VLANS over a preselected path. It does not take into consideration that one VLAN may utilize more bandwidth than another. Sean Remember that the network designer is going to force VLANs over paths. The design should reflect actual traffic measurements, or at least estimates. This isn't a one-time decision. There should be regular utilization measurement and adjustments as indicated by measurement. -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of MADMAN Sent: Friday, May 03, 2002 3:05 PM To: [EMAIL PROTECTED] Subject: Re: VLAN Load balancing [7:43265] Yes. An example would be two core 6500 trunked together. You have switches in the closets, one uplink to 6500A the other to 6500B. Set priority on even VLAN/s to A odd to B. Dave Steven A. Ridder wrote: Does anyone do any VLAN load balancing via STP in the real world? I've never seen it yet, and am just curious if it's ever done. -- RFC 1149 Compliant. Get in my head: http://sar.dynu.com -- David Madland Sr. Network Engineer CCIE# 2016 Qwest Communications Int. Inc. [EMAIL PROTECTED] 612-664-3367 Emotion should reflect reason not guide it [EMAIL PROTECTED] Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=43283t=43265 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Upgrade Local Director 416 [7:43284]
This is supposedly what it runs @ Local Director 416 Hardware: _ Three 10/100BaseT interface cards 32 MB of RAM 2 MB of flash memory 300 MHz processor DB-9 EIA/TIA-323 console interface port 3.5-inch diskette drive 19-inch rack-mount enclosure Performance: 8000 virtual and real IP addresses 90-Mbps throughput (maximum) 700,000 simultaneous TCP connections _ Question: Does anyone know if I can just throw a faster PII inside (say a 450Mhz) and up the ram to 128MB. (I already peeked inside the case, it has 4 DIMM Slots. Will this work ? (I dont need to change any interfaces) Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=43284t=43284 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: How can I measure traffic through a 2600 router (over [7:43285]
What version of PERL did you install? Wayne Jang wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... Got it, I installed Perl and MRTG and it works great. Ladrach, Daniel E. wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... MRTG, it is free! Daniel Ladrach CCNA, CCNP WorldCom -Original Message- From: Wayne Jang [mailto:[EMAIL PROTECTED]] Sent: Friday, May 03, 2002 10:39 AM To: [EMAIL PROTECTED] Subject: How can I measure traffic through a 2600 router (over time/1 [7:43224] I have a client that wants to know how much traffic is passing through his router. They are ordering new service and want to know how much bandwidth to order. What utility should I use? Thanks Wayne Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=43285t=43285 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: IPTT (IP Telephony Troubleshooting [7:43276]
Yes, it is as ugly as they come. I thought the DQoS exam was pretty fair though. Carlton -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Dave Luancing Sent: Friday, May 03, 2002 7:47 PM To: [EMAIL PROTECTED] Subject: IPTT (IP Telephony Troubleshooting [7:43276] This is a brand new exam ... I was wondering if any took this yet? - D.L. __ Do You Yahoo!? Yahoo! Health - your guide to health and wellness http://health.yahoo.com Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=43286t=43276 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
IBM 8228 MAU Token Ring [7:43287]
Anyone interested in buying 3 IBM 8228 Token Ring MAU and 6 cables? MAU $12 each cables $8 each. Thanks. [EMAIL PROTECTED] Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=43287t=43287 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
cisco 2502 2504 [7:43288]
Anyone interested in a cisco 2502 or 2504? They have IOS c2500-jos56i-l.120-15.bin, 16MB flash, 16MB DRAM, Boot ROM ver 11.0.10c(XB2). It was used just to pass the ccna ccnp. Thank you. [EMAIL PROTECTED] Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=43288t=43288 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
