I am very confused with the following Crypto Map question:
In the MCNS book (by Cisco Press), it said that if a static crypto map entry
sees outbound IP traffic that should be protected and the crypto map
specifies the use of IKE, then a Security Assoication is negotiated with the
remote peer
Hugo,
Your sh ver looks promising. The definitive way is to look at the BOTTOM
and see if they are p.n.: 17-4840 rev 03 or later.
I believe that they contain System Bootstrap Version 12.0(6r)T4.
By the way the 12.0(6r)T4 is the WBOOT code that you need to support 32
Mb Flash.
You will need
Hugo,
If you are after some e.g. configs take a look at my earlier post in the
GroupStudy ccielab archives. Posting 200111/msg01481.
Peter
article , [EMAIL PROTECTED]
writes
Peter,
Thank you for replying. Great info that the IOS image should contain
v5 feature set. ;-))
The box is an
TFTP does not provide any security for file transfers, so it should not be
available to a public firewall interface. Unauthorized users can upload new
config files to your router, as well as download your current stored configs
for analysis.
How can you configure the router to accept TFTP file
TFTP does not provide any security for file transfers, so it should not be
available to a public firewall interface. Unauthorized users can upload new
config files to your router, as well as download your current stored
configs
for analysis.
How can you configure the router to accept TFTP
OK it all depends on when you use dynamic crypto maps and the rule is that
dynamic maps are used for remote users who need occasional access and for
whom you do not have all the necessary information to create a staic crypto
map, sich as IP address.
So
a. You always create dynamic crypto maps
May be. But if you use L2TP or Layer 3 transport on VPN, all your
mobile users could be Local. Thus you don't need to additional
security on your Mobile user (I mean firewall or anti-virus app.)
SentinuS
Friday, November 30, 2001, 6:07:02 PM, you wrote:
KH Your right, but it is nearly
As long as you initiate it. There are ActiveX filters and other filters you
can enable on the PIX to block most malicious web server traffic. In any
type of NAT it will allow inside users full access to the internet unless
blocked or unsupported by NAT.
Allen
- Original Message -
From:
VXR = voice exchange. VXR routers have a TDM bus in them.
Patrick Bass wrote in message
[EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
Anybody know what VXR stands for? As in Cisco 7200 VXR.
Message Posted at:
http://www.groupstudy.com/form/read.php?f=7i=27917t=27855
Nicolas,
It is a lot saver and easy to manage if you just use a PC, I do not see why
you would want to use your router as tftp server.
JP
Nicolas FEVRIER wrote in message
[EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
TFTP does not provide any security for file transfers, so it should not
be
Hi,
Can anybody remember how to decrease the amount of packets generated when
using Telnet.
ie fewer packets with more than 1 byte of data inside them.
I can remember only been told this as a 'by-the-way' in a course, I can't
find this info again anywhere.
Any suggestions greatfully received,
Team,
if you all remember my questions regarding the Mobley BGP class being
offered in my area. Well, my 1 week class ended yesterday and all I have to
say is WOW!!! We went through 25 labs and a 350 page manual that Larry
Mobley (teacher) provided. We were also given a free copy of Halabi's
I bought a cheap Cisco switch to run the network within the house and it does
work, but I have nothing when Console-ing into the Admin port (not even modem
string to tell me I have the wrong cable).
Any ideas- it autosenses and negotiates fine, but I'd like to configure a few
things too
Thanks
Sorry- CDP neighbors when connected to my 3524 doesn't work either.
Phil
- Original Message -
From: Circusnuts
To: [EMAIL PROTECTED]
Sent: Saturday, December 01, 2001 2:02 PM
Subject: WS-C1200 Switch
I bought a cheap Cisco switch to run the network within the house and it does
work,
Try service nagle.
-John
Get your own 800 number
Voicemail, fax, email, and a lot more
http://www.ureach.com/reg/tag
On Sat, 1 Dec 2001, phil perry ([EMAIL PROTECTED])
wrote:
Hi,
Can anybody remember how to decrease the amount of
Thanks, but that's not really what I'm after.
There is a specific way of telling the router to wait for 'x' amounts of
characters, then transmit them in one packet.
Message Posted at:
http://www.groupstudy.com/form/read.php?f=7i=27924t=27919
--
Good work, Gaz. Still, I wouldn't necessarily go too much farther in,
for example, playing with the K values.
Load balancing, on a per-hop basis, is a very limited solution.
Paradoxically, by considering actual load (the K value), you may make
it worse.
Let's first look at the problem of
sh cdp entry *
should give you the ip, and mac adress of the switch. you can then contact
the cisco tac with the mac addres to get the factory password.
- Original Message -
From: Circusnuts
To:
Sent: Saturday, December 01, 2001 12:58 PM
Subject: WS-C1200 Switch Part II [7:27922]
12/1/2001 2:45pm Saturday
Where do you live ?
Richard
//
Bruce Evry wrote in message
[EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
Hello,
I am a Cisco Instructor and have been toying with the idea of
running very low-cost classes that would be affordable for those not
sponsored by a
If the show interface serial 0 command is executed and the message Serial
Line is up and line protocol is up appears then the exact correct
interpretation of this is
A) The frame relay connection is active
B) The connection is sending and receiving data
-
Answer is given in next message with
The answer given by CISCO is A
Is this really correct?!
I hate to doubt the experts, but I just need re-assurance.
Thanks
---
If the show interface serial 0 command is executed and the message Serial
Line is up and line protocol is up appears then the exact correct
interpretation of this is
Phil,
I think you can try service nagle
HTH
Kent
phil perry wrote in message
[EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
Hi,
Can anybody remember how to decrease the amount of packets generated when
using Telnet.
ie fewer packets with more than 1 byte of data inside them.
I can
Maybe this will explain it..Just because a serial int is UP/UP, it doesn't
necessarily mean that data is able to be xfered. The serial int could be
connected to a CSU/DSU which might give the int the correct control signal
states to make the serial int appear to be up (example would be that the
As always thank for you for your input and ideas Cisco people.
Situation: I have 3 Cat 6500's (Cat A,Cat B, Cat C) Cat A and B are the
main backbone and have a Gigabit Channel between then. Cat A and B's
MSFC's are routing and each MSFC has a priority routing for a vlan and HSRP
for fail
Hi,all
Last Friday,I go out to solve a cat6k's boot problem,Its a Cat6K with
6006 chassis,supervisor 1a msfc2 and one ws-x6408 line card,the
boot problem is:after it decompress the image and displays four lines of
diag message ,the system is halted at boot bootflash:cat6000-xxx.bin,at
that
Does Cat6K also using an NVRAM for keeping the configuring or simulating the
flash link 2900xl.
and if the config is in NVRAM what the nomally bootvar is?
I can only enter the rommon mode, the system cannot boot correctly.
I have try to use boot bootflash:cat6000xxx.bin and confreg 0x2142
I found a doc about howto use xmodem to recover the image of cat50004000,it
says you can use the xmodem -s 38400 to download via console.And I also
found a topic says recommand not to set the speed upper than 19200,the
xmodem command has some option:
-c to use crc16
-s set speed
I am using the
Gaz Howard,
Thanks for the input. I really appreciate it. I'm still a little curious.
Based upon the link Gaz included, we know that variance is factor based.
Consider the following. 3 paths; 56 Kbps, 128 Kbps and 256 Kbps. If we use
variance of 2, the 128K and 256K paths will be used in a
28 matches
Mail list logo
