Re: CCNA 2.0 Cert.
No, you don't have to take CCNA 2.0, and NO, you do not get any NEW certificates if you clear 2.0. As far as Cisco is concerned, there are no differences between 1.0 2.0 CCNAs - they all get the same CCNA certificate and will have to recertify in 2 years. If you are already a CCNA, taking the CCNA 2.0 (640-507) will not get you ANOTHER CCNA certificate, imho. Correct me if I'm wrong :-) Bharat Suneja "godonizuka" [EMAIL PROTECTED] wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... no, you don't have to take the ccna 2.0 ___ UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html FAQ, list archives, and subscription info: http://www.groupstudy.com Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] --- ___ UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html FAQ, list archives, and subscription info: http://www.groupstudy.com Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Which access-list increase load the most?
It depends (well, what did you expect??) As a general rule, you're better off putting the access list on the outgoing interface. That way you don't waste bandwidth by transmitting traffic you're just going to throw away anyway. BUT, your *first* priority is to make sure the access list does what you want. To do this, you may need to use an incoming access list instead. Example... rtrA rtrB Let's say you want to prevent telnet traffic from rtrA to rtrB. Assume for now that the link between the routers is a serial link (int S0 on both routers). You could put an outgoing access list on S0 on rtrA: rtrA: access-list 101 deny tcp any any eq 23 access-list 101 permit ip any any int s 0 access-class 101 out This will work fine (assuming my syntax is correct which I am making no guarantees about - I haven't checked it). You could put the same access list on rtrB as an incoming access list instead, and it would have the same effect, but your telnet traffic would cross the serial link before being dropped - generally not very efficient. OK, what if it's not a serial link, but an ethernet? Time to throw another router into the mix... rtrA rtrB | rtrC Now, putting that same outgoing access list on rtrA has a different effect to putting it as an incoming access list on rtrB. If you put the outgoing access list on rtrA, you will not be able to telnet from rtrA to rtrB *or to rtrC*. If you put it as an incoming access list on rtrB, you will not be able to telnet from rtrA to rtrB but you will be able to telnet from rtrA to rtrC. In this case, where should you put the access list? That depends completely on what you are trying to achieve with your access list. Regardless of where you are putting your access list, try to put the lines that will get the most hits near the top (again, make sure you don't change the meaning of the access list if you change the order of statements). The lines of an access list are checked in order, and once a match for a packet is found, the rest of the list isn't checked - so if most of your packets match the first line, rather than the last, your router will spend less time checking access lists. Here endeth the chapter :-) JMcL -- Forwarded by Jenny Mcleod/NSO/CSDA on 27/06/2000 16:28 --- "K.FUJIWARA" [EMAIL PROTECTED] on 26/06/2000 15:59:31 Please respond to "K.FUJIWARA" [EMAIL PROTECTED] To: "[EMAIL PROTECTED]" [EMAIL PROTECTED] cc:(bcc: JENNY MCLEOD/NSO/CSDA) Subject: Which access-list increase load the most? Hi, all. Though the null interface is the best solution for load in the ruter CPU, which extended / standard access-list is the best to reduce the load? Extended one's result may be depends on where it will be put or the case, so where should it be configured? Destination? If you have some good examples, please show me. And then, do you know good tools or utility to monitor the routers performance on CPU or RAM in real time? Kazuyo Fujiwara MCSE/CCNA Japan Kobe ___ UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html FAQ, list archives, and subscription info: http://www.groupstudy.com Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] ___ UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html FAQ, list archives, and subscription info: http://www.groupstudy.com Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Frame Relay and DE bit
(OK, let's see if this one gets through to the list...) Asynchronous CIRs are offered by some carriers but not all of them. It just means that you can get two different CIRs on the same PVC - one upstream, one downstream (however you want to define upstream and downstream :-) So if you have a lot of traffic going from your central site to remote sites (interactive, software downloads, whatever), but not much going the other way, it may be more economical to have say a 256Kbps CIR from the central site out to a remote site, but only 128Kbps from the remote site to the central site (using the same PVC). JMcL -- Forwarded by Jenny Mcleod/NSO/CSDA on 20/06/2000 09:21 --- "M Z" [EMAIL PROTECTED] on 20/06/2000 08:08:38 Please respond to "M Z" [EMAIL PROTECTED] To: [EMAIL PROTECTED] [EMAIL PROTECTED] cc:(bcc: JENNY MCLEOD/NSO/CSDA) Subject: Re: Frame Relay and DE bit what is an asynchronous CIR? From: "Kishor Bhagwat" [EMAIL PROTECTED] Reply-To: "Kishor Bhagwat" [EMAIL PROTECTED] To: [EMAIL PROTECTED] Subject: Re: Frame Relay and DE bit Date: Fri, 16 Jun 2000 21:22:01 +0530 hello.. the ratio shld definitely be a cause for concern, since too many of ur incoming packets are in burst mode. and on the outgoing side, either the CIR is correct or underutilised. see if ur FR provider gives ya an asynchronous CIR? regards, kishor Date: Thu, 15 Jun 2000 07:27:57 -0500 From: "Chance, Larry" [EMAIL PROTECTED] Subject: Frame Relay and DE bit What's the significance of the DE (Discard Eligible) with this Frame Relay sample shown here? Considering the volume of 'out bytes', is this ratio to be expected or feared? And what would I do to correct it? ===SAMPLE= Router1#sh frame pvc 33 PVC Statistics for interface Serial5/0 (Frame Relay DTE) DLCI = 33, DLCI USAGE = LOCAL, PVC STATUS = ACTIVE, INTERFACE = Serial5/0.7 input pkts 29768862 output pkts 16948699 in bytes 1918568914 out bytes 2217045339 dropped pkts 5 in FECN pkts 0 in BECN pkts 3717out FECN pkts 0 out BECN pkts 0 in DE pkts 21408982 out DE pkts 0 out bcast pkts 399406 out bcast bytes 31994284 pvc create time 29w4d, last time pvc status changed 12:58:55 Router1# == Later, Larry ___ __ Do You Yahoo!? Talk to your friends online with Yahoo! Messenger. http://im.yahoo.com ___ UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html FAQ, list archives, and subscription info: http://www.groupstudy.com Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] Get Your Private, Free E-mail from MSN Hotmail at http://www.hotmail.com ___ UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html FAQ, list archives, and subscription info: http://www.groupstudy.com Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] ___ UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html FAQ, list archives, and subscription info: http://www.groupstudy.com Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Differences between ACRC 1.0 and BSCN 2.0 Exam?
ACRC covers more things, queueing, bridging, ISDN, appletalk, IPX, etc. BSCN/Routing 2.0 focuses almost all on dynamic IP routing protocols, route-maps, access-lists, and so on.. The test follows the class corriculum, so I'd suggest checking out the course outlines on the training and certification sections of cisco's web site. If you take ACRC you'll have to recertify eventually, so you might as well sit down for a really long time and get to know BGP, EIGRP, OSPF, route-maps, access-lists, etc and take the Routing 2.0 exam. the BSCN Cisco Press book will be out next month, I'd suggest you get that when it comes out. I was able to pass it without it, but I also have a fair amount of hands on experience working with many of the covered subjects which helped me out tremendously. I'm no to BCMSN right now, only about 1/3 through the book.. I'm not too sure if getting my CCNP cert by the end of september is still going to happen :) Paul On Sat, 8 Jul 2000, rtc wrote: What are the differences between the two Exams? I prepared for the ACRC 1.0 which I'll take at the end-of-the-month but some have advised taking the BSCN 2.0. ___ UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html FAQ, list archives, and subscription info: http://www.groupstudy.com Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] ___ UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html FAQ, list archives, and subscription info: http://www.groupstudy.com Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
BCRAN Tips
All, I am due to sit the BCRAN test very soon. I have the necessary reading material and Boson test, however would appreciate any good tips and suggestions. Cheers. ___ UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html FAQ, list archives, and subscription info: http://www.groupstudy.com Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: CCNA 2.0 Cert.
Hello, I have completed CCNP and CCDP 1.0, What if i recert now and get CCNP and CCDP 2.0 will i get two times certificate ? ( twice ) and get ciscoreward twice also ? Thanks Regards, Leonard Ong, CCNP, CCDP Leonard Advanced Research,Inc Leonard Ong | A Wise Man said : " Life is Full of Sufferings, (Íõ¶°ºÀ) | Therefor Living as a Human is a Suffering " Cisco| [EMAIL PROTECTED] - Share Knowledge together! FreeBSD/Linux| UIN : 1041402 == http://www.poboxes.com/Leonard_Ong Powered| 68FB C87E 8A0D EC9F EC82 A6FC C547 B4E4 CA46 94DB -- ___ UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html FAQ, list archives, and subscription info: http://www.groupstudy.com Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
ip duplicates
I have a couple of catalyst 6500 with supervisors that have msfc. These msfc are performing the routing functions for the different vlans that I have setup. HSRP is running between the msfc for each vlan. Each msfc have a different ip address for each vlan. For instance, one msfc will have a 10.20.20.5 for vlan 200 and another will have 10.20.20.6 for vlan 200 also. Of course hsrp is running between them with an ip address of 10.20.20.1 for vlan 200. I notice that on the msfc, the mac on all the vlans are the same. My logs don't show me any errors, but when I use the Fluke to do a scan, it reports that several of the macs on the vlans on the msfc have duplicate ip of 10.20.20.5 which is ip address on one of the vlan on the msfc. Can someone shed some light on this. Thanks. Get Your Private, Free E-mail from MSN Hotmail at http://www.hotmail.com ___ UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html FAQ, list archives, and subscription info: http://www.groupstudy.com Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Which access-list increase load the most?
Jenny- My understanding was that you should apply them inbound, so the traffic doesn't have to go through a route lookup process, just to be dropped. Am I missing something here? -Tom At 05:06 PM 6/27/2000 +1000, you wrote: It depends (well, what did you expect??) As a general rule, you're better off putting the access list on the outgoing interface. That way you don't waste bandwidth by transmitting traffic you're just going to throw away anyway. BUT, your *first* priority is to make sure the access list does what you want. To do this, you may need to use an incoming access list instead. Example... rtrA rtrB Let's say you want to prevent telnet traffic from rtrA to rtrB. Assume for now that the link between the routers is a serial link (int S0 on both routers). You could put an outgoing access list on S0 on rtrA: rtrA: access-list 101 deny tcp any any eq 23 access-list 101 permit ip any any int s 0 access-class 101 out This will work fine (assuming my syntax is correct which I am making no guarantees about - I haven't checked it). You could put the same access list on rtrB as an incoming access list instead, and it would have the same effect, but your telnet traffic would cross the serial link before being dropped - generally not very efficient. OK, what if it's not a serial link, but an ethernet? Time to throw another router into the mix... rtrA rtrB | rtrC Now, putting that same outgoing access list on rtrA has a different effect to putting it as an incoming access list on rtrB. If you put the outgoing access list on rtrA, you will not be able to telnet from rtrA to rtrB *or to rtrC*. If you put it as an incoming access list on rtrB, you will not be able to telnet from rtrA to rtrB but you will be able to telnet from rtrA to rtrC. In this case, where should you put the access list? That depends completely on what you are trying to achieve with your access list. Regardless of where you are putting your access list, try to put the lines that will get the most hits near the top (again, make sure you don't change the meaning of the access list if you change the order of statements). The lines of an access list are checked in order, and once a match for a packet is found, the rest of the list isn't checked - so if most of your packets match the first line, rather than the last, your router will spend less time checking access lists. Here endeth the chapter :-) JMcL -- Forwarded by Jenny Mcleod/NSO/CSDA on 27/06/2000 16:28 --- "K.FUJIWARA" [EMAIL PROTECTED] on 26/06/2000 15:59:31 Please respond to "K.FUJIWARA" [EMAIL PROTECTED] To: "[EMAIL PROTECTED]" [EMAIL PROTECTED] cc:(bcc: JENNY MCLEOD/NSO/CSDA) Subject: Which access-list increase load the most? Hi, all. Though the null interface is the best solution for load in the ruter CPU, which extended / standard access-list is the best to reduce the load? Extended one's result may be depends on where it will be put or the case, so where should it be configured? Destination? If you have some good examples, please show me. And then, do you know good tools or utility to monitor the routers performance on CPU or RAM in real time? Kazuyo Fujiwara MCSE/CCNA Japan Kobe ___ UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html FAQ, list archives, and subscription info: http://www.groupstudy.com Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] ___ UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html FAQ, list archives, and subscription info: http://www.groupstudy.com Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] Tom Holbrook Network Engineer Earthlink ___ UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html FAQ, list archives, and subscription info: http://www.groupstudy.com Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: BCRAN Tips
I would read the BCRAN book from Mc Graw Hill ISBN 00721244806 it's GREAT, it tells you alot of good things about the test and plus you will learn so much more. Brian Email Address [EMAIL PROTECTED] ___ UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html FAQ, list archives, and subscription info: http://www.groupstudy.com Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Fresh Virginal CCNP
Hello Passed the Support 2.0 exam on friday 07th 800 and somthing and then went and got truly mullered. I could teach Euan Blair a thing or two... Anyway i now am the proudish owner of a CCNP and for those who are wondering here's how i got it. DEC 1999 CCNA 1.0 (Thought this was quite tough) Feb 2000 ACRC (not too bad really but I did study a lot for this) March 2000 CLSC (The worst exam in the world) May 2000 BCRAN (easy peasy) July 2000 Support 2.0 (better than i expected but like the ACRC had expected it to be hard so studied hard). Not sure were to go from here, but happy to not feel guilty about not studying for a change. Best of luck to all here and thanks to words of wisdom that fills most of this list. Paul Doyle Get Your Private, Free E-mail from MSN Hotmail at http://www.hotmail.com ___ UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html FAQ, list archives, and subscription info: http://www.groupstudy.com Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Switch question
hi all I am a switch newbie. while i was studying about cisco switch, I came accross basic question. Q: Can a port belong to more than one VLAN? Does it have to belong to only one VLAN? port: VLAN1:1 relationship? or port: VLAN1:many relationship? or port: VLANmany:1 relationship? or port: VLANmany:many relationship? I was just curious about this relationships. I will appreciate your reply. Thanks. iWon.com http://www.iwon.com why wouldn't you? ___ UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html FAQ, list archives, and subscription info: http://www.groupstudy.com Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Fresh Virginal CCNP
Congragulations Paul! And thanks for the input - it keeps the rest of us "wannabes" going... :-) Bharat Suneja ""paul doyl"" [EMAIL PROTECTED] wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... Hello Passed the Support 2.0 exam on friday 07th 800 and somthing and then went and got truly mullered. I could teach Euan Blair a thing or two... Anyway i now am the proudish owner of a CCNP and for those who are wondering here's how i got it. DEC 1999 CCNA 1.0 (Thought this was quite tough) Feb 2000 ACRC (not too bad really but I did study a lot for this) March 2000 CLSC (The worst exam in the world) May 2000 BCRAN (easy peasy) July 2000 Support 2.0 (better than i expected but like the ACRC had expected it to be hard so studied hard). Not sure were to go from here, but happy to not feel guilty about not studying for a change. Best of luck to all here and thanks to words of wisdom that fills most of this list. Paul Doyle Get Your Private, Free E-mail from MSN Hotmail at http://www.hotmail.com ___ UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html FAQ, list archives, and subscription info: http://www.groupstudy.com Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] --- ___ UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html FAQ, list archives, and subscription info: http://www.groupstudy.com Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Switch question
Leongwoo- Indeed a port can belong to many VLANs in theory. This capability is vendor specific, though. Many ports can of course be in one VLAN. So,...port:vlan = many:many. BTW, I would recommend Perlman's book for this type of info. Cisco LAN Switching is good too. -Tom At 02:37 PM 7/9/2000 -0400, you wrote: [EMAIL PROTECTED] Tom Holbrook Network Engineer Earthlink ___ UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html FAQ, list archives, and subscription info: http://www.groupstudy.com Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
CCNA1.0
Are there any Appletalk questions in the CCNA1.0? Thanks for your reply. ___ UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html FAQ, list archives, and subscription info: http://www.groupstudy.com Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: MS Exchange and Outlook 97
From the workstations, can you ping the Exchange server by netbios name? By hostname? Is anything else slowing down? Why forward udp broadcasts? If you are using WINS this will do nothing for you but send unnecessary traffic across the backbone. I wouldn't say its a "network" issue as the 6500 will be able to handle anything ( but a spantree loop ) you throw at it. Since it's the core I assume you are trunking. Are your trunks setup properly? What about routing? Have you used a sniffer yet to trace an Outlook session? Just a couple questions that come to mindKenny - Original Message - From: "Bartlett, DS1" [EMAIL PROTECTED] To: [EMAIL PROTECTED] Sent: Sunday, July 09, 2000 3:04 PM Subject: MS Exchange and Outlook 97 After our recent upgrade to our backbone (6500's) we are now pushing traffic at incredible speeds. Unfortunately my users only notice that it now takes forever for their outlook to open up. We use Exchange 5.5 (sp2) and Outlook 97. We do not have messenger services loaded. We have Novell servers on-line, but the Exchange servers do not have IPX client software loaded. Sometimes it takes as much as 2 minutes for mail to come up. I have allowed all udp traffic to be forwarded so netbios will work. Any thoughts would be appreciated to an extremely frustrated administrator who is fed up with users. Daryn ___ UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html FAQ, list archives, and subscription info: http://www.groupstudy.com Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] ___ UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html FAQ, list archives, and subscription info: http://www.groupstudy.com Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
CCIE written last moments advice...!
Hi Group members, I am finilizing my preparations for the CCIE written exam. Hoping I have the courage to book the exam somewhere in the next week. For the last moments I am asking any member who have and tips, any special whitepapers, example questions, or good links to e-mail me that. Thanks for all of you. Regards Sheref [EMAIL PROTECTED] Get Your Private, Free E-mail from MSN Hotmail at http://www.hotmail.com ___ UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html FAQ, list archives, and subscription info: http://www.groupstudy.com Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: routername(boot)
What about seting the register to 0x2141, this should work, this register setings is for disater recovery. --Original Message-- From: "Kenny Sallee" [EMAIL PROTECTED] To: Jorge Rodriguez [EMAIL PROTECTED], kenny [EMAIL PROTECTED], [EMAIL PROTECTED] Sent: July 10, 2000 12:08:56 AM GMT Subject: Re: routername(boot) Actually that depends on why you ended up there in the first place. If flash is corrupt, setting the config-register to 0x2102 will do nothing. You can check the flash from rommon and make sure it is not corrupt. You can also check the config-register to see what it is set at. I'm not going to tell you how so you can figure it out. Good luck. Kenny - Original Message - From: "Jorge Rodriguez" [EMAIL PROTECTED] To: "kenny" [EMAIL PROTECTED]; [EMAIL PROTECTED] Sent: Saturday, July 08, 2000 3:54 PM Subject: RE: routername(boot) If yopu are in RomMonitor type Routero/r0x2102 ENTER and reboot --Original Message-- From: "kenny" [EMAIL PROTECTED] To: [EMAIL PROTECTED] Sent: July 8, 2000 10:23:33 PM GMT Subject: routername(boot) Hi , When router boot up , it show routername(boot) What can i do to make it boot up from flash again ?? Thanks ken ___ UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html FAQ, list archives, and subscription info: http://www.groupstudy.com Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] Jorge Rodriguez /CCNA Network Analyst RS Networks Inc 1112 Boylston Street Suite 222 Boston, MA 02115 1-781-614-1294 1-617-989-8634 Evenings http://www.netwire.n3.net/ http://www.learncisco.n3.net/ iWon.com http://www.iwon.com why wouldn't you? ___ UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html FAQ, list archives, and subscription info: http://www.groupstudy.com Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] ___ UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html FAQ, list archives, and subscription info: http://www.groupstudy.com Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] Jorge Rodriguez /CCNA Network Analyst RS Networks Inc 1112 Boylston Street Suite 222 Boston, MA 02115 1-781-614-1294 1-617-989-8634 Evenings http://www.netwire.n3.net/ http://www.learncisco.n3.net/ iWon.com http://www.iwon.com why wouldn't you? ___ UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html FAQ, list archives, and subscription info: http://www.groupstudy.com Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
CCNA 1.0
Are there any Appletalk questions in the CCNA 1.0? Thanks for your reply. ___ UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html FAQ, list archives, and subscription info: http://www.groupstudy.com Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
lan switching ( helpful to have )
LAN switching This documentation on LAN switching includes a discussion of switching basics, switching in the Ethernet environment, switching in virtual LANs and switch configuration. SOURCE: Cisco Systems http://www.cisco.com/univercd/cc/td/doc/cisintwk/ics/cs010.htm ___ UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html FAQ, list archives, and subscription info: http://www.groupstudy.com Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: CCNP! Just in the nick of time!
I agree with you.The ACRC is the hardest one for CCNP. ___ UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html FAQ, list archives, and subscription info: http://www.groupstudy.com Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: lan switching ( helpful to have )
It's helpful.Thank you. ___ UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html FAQ, list archives, and subscription info: http://www.groupstudy.com Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Which access-list increase load the most?
I agree. Using the scenario that Jenny used: rtrA --rtrB If you wanted to block telnet traffic from going from RouterA to RouterB, you could put the access list on the outgoing interface of router A and save bandwidth across the link between A and B. However, the traffic attempting to travel from RouterA to RouterB came from somewhere (unless you are "in" RouterA attempting to telnet to RouterB). Assuming the traffic came from somewhere, our picture would look more like this NetA (connects to Ethernet0 on RtrA) | RtrA---RtrB | NetB (connects to Ethernet1 on RtrA) Since the traffic you want to block is coming from NetworkA or NetworkB, you could apply that same access list to the two Ethernet interfaces to filter traffic as it comes in from the two networks. That way the traffic wouldn't even enter the router and have to be dealt with. So, yes, you are correct Tom. The best bet would be to apply them inbound on the interfaces where the traffic you want to block is originating. Mike W. Tom Holbrook [EMAIL PROTECTED] wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... Jenny- My understanding was that you should apply them inbound, so the traffic doesn't have to go through a route lookup process, just to be dropped. Am I missing something here? -Tom At 05:06 PM 6/27/2000 +1000, you wrote: It depends (well, what did you expect??) As a general rule, you're better off putting the access list on the outgoing interface. That way you don't waste bandwidth by transmitting traffic you're just going to throw away anyway. BUT, your *first* priority is to make sure the access list does what you want. To do this, you may need to use an incoming access list instead. Example... rtrA rtrB Let's say you want to prevent telnet traffic from rtrA to rtrB. Assume for now that the link between the routers is a serial link (int S0 on both routers). You could put an outgoing access list on S0 on rtrA: rtrA: access-list 101 deny tcp any any eq 23 access-list 101 permit ip any any int s 0 access-class 101 out This will work fine (assuming my syntax is correct which I am making no guarantees about - I haven't checked it). You could put the same access list on rtrB as an incoming access list instead, and it would have the same effect, but your telnet traffic would cross the serial link before being dropped - generally not very efficient. OK, what if it's not a serial link, but an ethernet? Time to throw another router into the mix... rtrA rtrB | rtrC Now, putting that same outgoing access list on rtrA has a different effect to putting it as an incoming access list on rtrB. If you put the outgoing access list on rtrA, you will not be able to telnet from rtrA to rtrB *or to rtrC*. If you put it as an incoming access list on rtrB, you will not be able to telnet from rtrA to rtrB but you will be able to telnet from rtrA to rtrC. In this case, where should you put the access list? That depends completely on what you are trying to achieve with your access list. Regardless of where you are putting your access list, try to put the lines that will get the most hits near the top (again, make sure you don't change the meaning of the access list if you change the order of statements). The lines of an access list are checked in order, and once a match for a packet is found, the rest of the list isn't checked - so if most of your packets match the first line, rather than the last, your router will spend less time checking access lists. Here endeth the chapter :-) JMcL -- Forwarded by Jenny Mcleod/NSO/CSDA on 27/06/2000 16:28 --- "K.FUJIWARA" [EMAIL PROTECTED] on 26/06/2000 15:59:31 Please respond to "K.FUJIWARA" [EMAIL PROTECTED] To: "[EMAIL PROTECTED]" [EMAIL PROTECTED] cc:(bcc: JENNY MCLEOD/NSO/CSDA) Subject: Which access-list increase load the most? Hi, all. Though the null interface is the best solution for load in the ruter CPU, which extended / standard access-list is the best to reduce the load? Extended one's result may be depends on where it will be put or the case, so where should it be configured? Destination? If you have some good examples, please show me. And then, do you know good tools or utility to monitor the routers performance on CPU or RAM in real time? Kazuyo Fujiwara MCSE/CCNA Japan Kobe ___ UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html FAQ, list archives, and subscription info: http://www.groupstudy.com Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] ___ UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html FAQ, list archives, and subscription info: http://www.groupstudy.com Report misconduct and Nondisclosure violations to [EMAIL
network mangement program...
im looking for a good network program...something suited for automated network fault and alarm management, simplifies network troubleshooting by notifying the appropriate personnel of the true root cause of a failure when a network outage occurs ( ie dhcp fails broadcast fails, switch port is down, etc... this is the only ok one i can find..does any1 have any more suggestions??? and has any1 use this program in the network business environment http://www.tavve.com/pages/product/EventWatch.html thanks a bunch Deepak
ccna 1.0
One of my friend will take the CCNA 1.0 next week.He want to know are there any Appletalk questions in the 640-407 exam.Because I have passed CCNA2.0, I can't answer him.Could someone help me? Thanks!!! ___ UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html FAQ, list archives, and subscription info: http://www.groupstudy.com Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Fresh Virginal CCNP
Congratulations!!! ___ UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html FAQ, list archives, and subscription info: http://www.groupstudy.com Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: CCIE Written
Yes ,Cisco is trickly. ___ UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html FAQ, list archives, and subscription info: http://www.groupstudy.com Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
CCNA1.0
Are there any Appletalk questions in the CCNA1.0? Thanks!!! ___ UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html FAQ, list archives, and subscription info: http://www.groupstudy.com Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: MS Exchange and Outlook 97
Just as a test you might want to put a host file on a workstation ( 192.76.x.x myexchange ). Upon resetting the nbtstat, see if your Outlook 97 message doesn't pop up very quickly. If it does ( it probably will ) you either need to modify your DNS or main hosts file. Good Luck!! George H. York "Bartlett, DS1" wrote: After our recent upgrade to our backbone (6500's) we are now pushing traffic at incredible speeds. Unfortunately my users only notice that it now takes forever for their outlook to open up. We use Exchange 5.5 (sp2) and Outlook 97. We do not have messenger services loaded. We have Novell servers on-line, but the Exchange servers do not have IPX client software loaded. Sometimes it takes as much as 2 minutes for mail to come up. I have allowed all udp traffic to be forwarded so netbios will work. Any thoughts would be appreciated to an extremely frustrated administrator who is fed up with users. Daryn ___ UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html FAQ, list archives, and subscription info: http://www.groupstudy.com Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] --- ___ UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html FAQ, list archives, and subscription info: http://www.groupstudy.com Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]