RIP configuration Error , please guide me
Hi Everyone , I am facing a problem configuring RIP as a dynamic routing protocol for my 2 Cisco Routers , my scenrio is as follows : On my first Cisco Router named Cisco2620 , my configuration for two ports is as follows: 1) Ethernet Port Ip address assigned : 200.100.10.1 2)Serial Wan Port Ip address assigned : 192.168.1.2 On the second router named Cisco2610 , I have the following ports configrurations : 1) Ethernet Port Ip address assigned : 10.100.10.1 2) Serial Wan Port IP address : 192.168.1.1 I am not able to set up my routing table by configuring RIP on both of the routers , ie when i give the command ' router rip ' and specify the interfaces on both of the routers , it does not show me the dynamic routing tables built when I give the command 'show ip route '. But when I configure the routing protocol with IGRP , I am able to configure it and build the routing tables as well . When I give the command 'show protocols ' , It gives me the details of RiP configured on my system but there are no details in the routing table and I am not able to ping from one end of ethernet to the other . I have deleted all the static routing enteries which were there as well . Why am I not able to configure the tables using RIP and successfully do so using IGRP , please let me know . thanking you in advance , Navin Parwal Technosys _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: classless to classfull routing issue
you'll just have to use the 24 bit masks that are default in the IGRP routing protocol. Or establish and redistribute static routes into your IGRP routing process. see http://www.cisco.com/warp/public/105/52.html for some other direction -e- Prasanna <[EMAIL PROTECTED]> wrote in message 983mlr$unf$[EMAIL PROTECTED]">news:983mlr$unf$[EMAIL PROTECTED]... > Hi Guys > > I was trying to redistribute from OSPF Domain ( has variable subnets ,/24, > /28 , /26 & /25 ) to IGRP domain ( /24 ) , i got severe masking issue as > IGRP is classfull and i could able to redistribute only /24 subnets .I was > trying to implement summary address with /24 towards IGRP but i could not > able to summarize the subnets. > > OSPF subnets - 192.168.112.0/24 > 192.168.113.192/26 > 192. 168.114.128/25 >192.168.115. 240/28 > > > > IGRP subnet - 192.168.110.0/24 > 192.168.111.0/24 > > > > What is the elegant way to solve this problem > > > _ > FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
please remove me from the mailing list
_ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: How to upgrade IOS remotely?
A 2600 can be upgraded while on line. The router copies the image to the flash, but the systems runs on memory. On a reload the new software is activated A 2500 will go into a "boot mode" to receive the flash file. when you enter copy tftp flash, the router restarts and enter this mode, then copies the flash and only then reboots again -Original Message- From: Jason Baker [mailto:[EMAIL PROTECTED]] Sent: 07 March 2001 03:07 To: 'Thomas'; [EMAIL PROTECTED] Subject: RE: How to upgrade IOS remotely? setup up a Tftp server on your network. Copy the ios from the tftp server adn then simply reload. Regards, Jason Baker Network Engineer -Original Message- From: Thomas [mailto:[EMAIL PROTECTED]] Sent: Wednesday, March 07, 2001 11:40 AM To: [EMAIL PROTECTED] Subject: How to upgrade IOS remotely? Hi Group - I have couple of 2600 and 2500 routers in production. I wonder if there is a way to upgrade the IOS for these router remotely (or through the modem...)? I know that I cannot upgrade the IOS when I am running on the running-config Thanks in advance! _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: IP subnetting
If your inclined to buy a book- the best IP workbook I've found is Cisco & IP Addressing. I break it out before every interview & have used it to teach from on more than handful of occasions. The first 3 chapters have great worksheets for getting you back on track. The rest of the book is very dry, but I've found it invaluable. .02 Phil http://www.bestwebbuys.com/books/compare/isbn/0071349251 - Original Message - From: "Daniel Cotts" <[EMAIL PROTECTED]> To: "'Studying_to_BE_CCIE'" <[EMAIL PROTECTED]>; "cisco" <[EMAIL PROTECTED]> Sent: Wednesday, March 07, 2001 12:39 AM Subject: RE: IP subnetting > This is a great tutorial. > http://www.3com.com/nsc/501302s.html > > Check the archives for related threads. > > > -Original Message- > > From: Studying_to_BE_CCIE [mailto:[EMAIL PROTECTED]] > > Sent: Tuesday, March 06, 2001 7:38 PM > > To: cisco > > Subject: IP subnetting > > > > > > Does anyone have a good site, or can show me the math, to > > quickly figure > > out subnetting and determining a address when asked for X amount of > > host. > > > > A person had showed me the math using 256 base and subtracting bits or > > mask or something. I did not take notes and can't remember the math. > > > > As you can tell I am not a mathematician. > > > > > > > > _ > > FAQ, list archives, and subscription info: > > http://www.groupstudy.com/list/cisco.html > > Report misconduct > > and Nondisclosure violations to [EMAIL PROTECTED] > > > > _ > FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] > _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
cistron radius
Hi , My anologue and isdn users log on well,But when i enable aaa authorisation network default radius my anolugue users log on properly but isdn users dont. Is there any specific settings required on the cistron radius pls help thanks _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Pls remove my e-mail address
Hi, Can you pls remove my email address from the distribution list. My email address is [EMAIL PROTECTED] I'll re-join the list soon. Thanks in advance. Madhu S _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Inside Cisco IOS Architecture - A must have ??????
Actually, here's what I've been doing as of last week (only *after* I've spent like $500 on books...) Take a notebook to the bookstore, and write down the names of all the chapters. Then come back home and look up all those chapter names on CCO. You'll find a *lot* of what's in those books can be found on CCO - I found pretty much the bulk of "Dial 12.0 Solutions" on CCO and saved myself 70 bucks. :-) BJ - Original Message - From: Sammi Newsgroups: groupstudy.cisco To: [EMAIL PROTECTED] Sent: Tuesday, March 06, 2001 9:59 PM Subject: Re: Inside Cisco IOS Architecture - A must have ?? On 6 Mar 2001 22:50:06 -0500, [EMAIL PROTECTED] (Curtis Call) mentioned: > an essential like Halabi's or >Doyle's book. Could you provide the titles? I've been ordering my books according to suggestions at www.groupstudy.com but don't see these authors identified. _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Monitoring Network
Hi, Guys, i have any question for you. I would know what are the main parameters for measure the network loading in an Intranet? It's right that the main software for the management and monitoring of the network , for the Cisco Tecnology, are : Cisco Works ? Cisco NetFlow Analyzer ? Thanks, for any help that you give me Regards, Carmelo _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Off Topic: Any interest in new Sniffer Certification?
Eh, big deal. The original post's header indicated it was Off topic. Plenty of threads on this list are about non Cisco certifications. Protocol Analysis is a skill reserved for experts. Some people on this list are CNX certified which is a certification being superceded by the new cert program.it will be interesting to see how they react to the new program. Therefore the post has relevance to the list. Even if it came from Sniffer's Marketing team, it wouldnt change that. .personally, I think protocol analysis is going to be extremely important in Wireless environments as a security measure. Andy <[EMAIL PROTECTED]> wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > > Gee, thanks for spamming a Cisco cert list with your marketing jizz > propaganda crap press release. If you want to spam a cert list, start your > own.. > > > > > > On Tue, 6 Mar 2001, info wrote: > > > http://biz.yahoo.com/prnews/010305/sfm057.html > > > > Was wondering if any of you had comments or interest > > in the new Sniffer Cerficication just announced. See > > link above or article below. > > > > > > Sniffer Certification Program to Accredit IT Professionals With First-Class > > Troubleshooting and Protocol Analysis Skills for Managing Enterprise > > Networks > > > > SANTA CLARA, Calif., March 5 /PRNewswire/ -- Sniffer Technologies, a > > business unit of Network Associates (Nasdaq: NETA - news), today is setting > > a worldwide standard by introducing its IT certification program for network > > management called the Sniffer Certified Professional Program (SCPP). While > > meeting the industry's demand for network professionals with vendor-specific > > certification, the SCPP will identify IT professionals with first-class > > Sniffer-specific troubleshooting and protocol analysis skills to protect and > > optimize networks across the enterprise. > > > > Developed through close collaboration with Sniffer University, the Sniffer > > Certified Professional Program will help employers identify professionals > > within their organizations who are equipped with the knowledge and skills to > > implement, operate and troubleshoot networks effectively. At the same time, > > SCPP will provide network professionals industry-recognized accreditation as > > experts in their field. > > > > ``The rapidly changing landscape of internetworking technologies is creating > > a shortage of qualified, trained professionals to manage business-critical > > networks,'' said Rich Baich, Director of Sniffer University's Educational > > Services, Sniffer Technologies. ``Companies recognize the critical role > > network availability plays in the success of their business, and the Sniffer > > Certified Professional Program ensures they have trained professionals to > > ensure maximum uptime of their network.'' > > > > The Sniffer Certified Professional Program was developed using proven > > psychometric processes to create quality tests targeted at network > > professionals with in-depth knowledge of Sniffer technologies and > > significant hands-on experience in real world environments. Each exam tests > > objectives and content that maps to Sniffer University's existing curriculum > > ensuring clear learning paths between product and technology emphasis areas. > > > > The Sniffer Certified Professional program consists of three levels. The > > first level, the Sniffer Certified Professional (SCP), includes a 60-minute > > required core exam designed to test a candidate's knowledge in the use of > > Sniffer Technologies' network analyzer. The SCP credential is the basis for > > the entire program. > > > > The following levels, the Sniffer Certified Expert (SCE) and the Sniffer > > Certified Master (SCM), evaluate a candidate's knowledge in their choice of > > a combination of other Sniffer products and technologies in various > > networking environments. Additional SCPP exams validate skills for products > > such as DSS/RMON Pro or the new Wireless LAN product as well as technology > > emphasis areas: Ethernet, TCP/IP, Windows NT and 2000, WAN and ATM. > > > > According to industry research, Sniffer Technologies is the industry-leader > > in providing top-quality software solutions for monitoring, analyzing and > > managing network availability and performance. To date, Sniffer Technologies > > holds customer agreements with over 80 percent of Fortune 100 customers. > > > > The Sniffer Certified Professional Program exams will be available worldwide > > through Prometric Testing Centers at www.2test.com starting April 2, 2001. > > > > To obtain further information about the Sniffer Certified Professional > > Program go to http://www.sniffer.com/education/ or contact Sniffer > > University at [EMAIL PROTECTED] Candidates who hold CNX > > certifications are encouraged to contact [EMAIL PROTECTED] for details about > > transitioning their current CNX certification into the Sniffer Certified > > Professional Program. > > > > Sniffe
AW: Monitoring Network
The cisco Works family include: VPN/Security Management Solution. Includes: VPN Monitor Resource Manager Essentials 3.2 CiscoView 5.2 Cisco Secure Policy Manager Lite LAN Management Solution. Includes: Campus Manager Device Fault Manager Content Flow Monitor CiscoView Resource Manager Essentials Routed WAN Management Solution. Includes: Access Control List Manager Internetwork Performance Monitor CiscoView This are the essentials for your LAN Management For more informations see: http://www.cisco.com/warp/public/cc/pd/wr2k/ cu Udo -Ursprungliche Nachricht- Von: carmelo Garofalo [mailto:[EMAIL PROTECTED]] Gesendet: Mittwoch, 7. Marz 2001 12:03 An: [EMAIL PROTECTED] Betreff: Monitoring Network Hi, Guys, i have any question for you. I would know what are the main parameters for measure the network loading in an Intranet? It's right that the main software for the management and monitoring of the network , for the Cisco Tecnology, are : Cisco Works ? Cisco NetFlow Analyzer ? Thanks, for any help that you give me Regards, Carmelo _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Snapshot Routing and Interesting traffic
Hi All, I was just making my way through a couple ISDN/DDR Snapshot = routing scenarios and made a unlikely observation. For reference purposes I was making use of my CZone = privileges(disclaimer) in mocking up David wolsefer ISDN lab exercise = and got the following results. Before attempting this lab I worked = through another BGP related lab. In saying so I moved right into this = scenario without performing a write erase on the routers. To my benefit = one of the routers I used in this ISDN mock up was clean and not used in = the previous lab. =20 OK, so I get everything all configured baseline snapshot (just the ISDN = circuit and 1 loopback) and it works great. I progressed to follow the = requirements of David's scenario which makes use of the Ethernet circuit = and commands to support ISDN backup of the Ethernet line. Here is where = things get interesting The ISDN line keep flapping up..down..up.. = down. =20 The "debug ip packet", "debug dialer packet" , and debug dialer events" = revealed that the client-side of the snapshot circuit was trying to make = a connection to 11.1.1.2 (eth0). As mentioned before I was doing a BGP = lab and the Snapshot server router was one of the routers used in that = scenario. Although there was no ip configurations for the address = 11.1.1.2, the bgp process on the snapshot server keep trying to make a = tcp connection on the segment(11.1.1.2). This caused the ISDN line to = try and route packets to that address as defined in the running bgp = process (neighbor 11.1.1.2 remote-as 1).=20 Once I removed the bgp process everything worked as it should. My = questions now go to the fact that I have an ospf process running that = hasn't caused any problems at all. I'm trying to understand what I = experienced. =20 In knowing BGP uses protocol TCP port 179, OSPF IP port 89, and RIP UDP = port 520. Now I recognize that the "dialer-list" used in the exercise = is baseline(dialer-list 1 protocol ip permit), but does this make any = sense at all. Why would this non-active bgp connection cause the ISDN = line to flap... There was no redistribution being performed so isn't = this a good example of "ships in the night" routing? =20 Thoughts anyone. TIA Nigel _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Star Wars
These are excellent or perhaps I'm just getting old and sad. http://www5b.biglobe.ne.jp/~mbsf/sworde.htm At 13:16 06/03/2001 -0500, Howard C. Berkowitz wrote: >In the Star Wars universe, the Force: > > Has a light side > Has a dark side > Holds the universe together. > >In our universe, this is a fair description of duct tape. > >_ >FAQ, list archives, and subscription info: >http://www.groupstudy.com/list/cisco.html >Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ Do You Yahoo!? Get your free @yahoo.com address at http://mail.yahoo.com _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Confuse about Fast Switching and Layer 3 switching
Hi, Brief: Fast switching is as follows, 1st packet is processed switched, 2 packet to destination is fast switched. i.e. it never goes through the cpu. L3 switching , MLS, Multi layer switching, This is based on traffic flows, ie we could swich on a certain tcp flow, or certain source/detination and destination port. as defined by access lists. The three flow masks are as follows: destination-ipThe least-specific flow mask. The MLS-SE maintains one MLS entry for each destination IP address. All flows to a given destination IP address use this MLS entry. This mode is used if there are no access lists configured on any of the MLS-RP interfaces. source-destination-ipThe MLS-SE maintains one MLS entry for each source and destination IP address pair. All flows between a given source and destination use this MLS entry regardless of the IP protocol ports. This mode is used if there is a standard access list on any of the MLS-RP interfaces. ip-flowThe most-specific flow mask. The MLS-SE creates and maintains a separate MLS cache entry for every IP flow. An ip-flow entry includes the source IP address, destination IP address, protocol, and protocol ports. This mode is used if there is an extended access list on any of the MLS-RP interfaces. http://www.cisco.com/univercd/cc/td/doc/product/lan/cat5000/rel_5_2/layer3/m ls.htm#xtocid171391 http://www.cisco.com/warp/customer/473/55.html /Stuart. - | | Stuart Potts ||| ||| Customer Support Engineer .|. .|. .:|:.:|:. c i s c o S y s t e m s Email: [EMAIL PROTECTED] "Empowering the Internet Generation" - -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Dove Sent: Wednesday, March 07, 2001 7:02 AM To: [EMAIL PROTECTED] Subject: Confuse about Fast Switching and Layer 3 switching Hi, I have some confuse about the "Fast Switching" and "Layer 3 switching". Both of them are mentioned that route first packet and switch others. Could anyone please help me? Regards. dovelet _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
TFTP Error
Hi , I am getting a regular error on my 2610 cisco router which keeps on coming regularly in intervals in between , the error says : % Error opening tftp://255.255.255.255 /network-config(Timed-out) % Error opening tftp://255.255.255.255 /cisconet.cfg % Error opening tftp://255.255.255.255 /cisco2610-confg % Error opening tftp://255.255.255.255 /cisco261.cfg How do i disable or correct this error which is coming on my router regularly . thanks, Navin Parwal _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
AW: TFTP Error
I think you didn't specify your tftp servers ip address Udo -Ursprungliche Nachricht- Von: Navin Parwal [mailto:[EMAIL PROTECTED]] Gesendet: Mittwoch, 7. Marz 2001 12:55 An: [EMAIL PROTECTED] Betreff: TFTP Error Hi , I am getting a regular error on my 2610 cisco router which keeps on coming regularly in intervals in between , the error says : % Error opening tftp://255.255.255.255 /network-config(Timed-out) % Error opening tftp://255.255.255.255 /cisconet.cfg % Error opening tftp://255.255.255.255 /cisco2610-confg % Error opening tftp://255.255.255.255 /cisco261.cfg How do i disable or correct this error which is coming on my router regularly . thanks, Navin Parwal _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: TFTP Error
conf t no service config That is all i can think of! good luck. rod - Original Message - From: "Navin Parwal" <[EMAIL PROTECTED]> Newsgroups: groupstudy.cisco To: <[EMAIL PROTECTED]> Sent: Wednesday, March 07, 2001 11:55 AM Subject: TFTP Error > Hi , > I am getting a regular error on my 2610 cisco router which keeps on > coming regularly in intervals in between , the error says : > % Error opening tftp://255.255.255.255 /network-config(Timed-out) > % Error opening tftp://255.255.255.255 /cisconet.cfg > % Error opening tftp://255.255.255.255 /cisco2610-confg > % Error opening tftp://255.255.255.255 /cisco261.cfg > > How do i disable or correct this error which is coming on my router > regularly . > thanks, > > Navin Parwal > > > > _ > FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] > _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Monitoring Network
it depends on your setup . but as a temporary mesure ...why don`t you download an eval copy of sniffer pro 2.5and plug it into switch connected closest to your server`s and see what it has to say it can be very informative...and if you like it buy it... the cisco packages are good ...very good ,but maybe a little overpowering to start with if i`m looking at a network i use sniffer ...tracking that sort of thing...if i want detailed stats on cisco equipment ...then i go for works.. But every body does it differently Anybody?? hth steve >From: "carmelo Garofalo" <[EMAIL PROTECTED]> >Reply-To: "carmelo Garofalo" <[EMAIL PROTECTED]> >To: [EMAIL PROTECTED] >Subject: Monitoring Network >Date: Wed, 7 Mar 2001 12:02:52 +0100 > >Hi, Guys, >i have any question for you. > >I would know what are the main parameters for measure the network loading >in >an Intranet? > >It's right that the main software for the management and monitoring of the >network , for the Cisco Tecnology, are : > >Cisco Works ? >Cisco NetFlow Analyzer ? > >Thanks, for any help that you give me > >Regards, Carmelo > > >_ >FAQ, list archives, and subscription info: >http://www.groupstudy.com/list/cisco.html >Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ Get Your Private, Free E-mail from MSN Hotmail at http://www.hotmail.com. _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: TFTP Error
That's the one - it will work -Original Message- From: Rod M Rodericks [mailto:[EMAIL PROTECTED]] Sent: 07 March 2001 15:13 To: Navin Parwal Cc: [EMAIL PROTECTED] Subject: Re: TFTP Error conf t no service config That is all i can think of! good luck. rod - Original Message - From: "Navin Parwal" <[EMAIL PROTECTED]> Newsgroups: groupstudy.cisco To: <[EMAIL PROTECTED]> Sent: Wednesday, March 07, 2001 11:55 AM Subject: TFTP Error > Hi , > I am getting a regular error on my 2610 cisco router which keeps on > coming regularly in intervals in between , the error says : > % Error opening tftp://255.255.255.255 /network-config(Timed-out) > % Error opening tftp://255.255.255.255 /cisconet.cfg > % Error opening tftp://255.255.255.255 /cisco2610-confg > % Error opening tftp://255.255.255.255 /cisco261.cfg > > How do i disable or correct this error which is coming on my router > regularly . > thanks, > > Navin Parwal > > > > _ > FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] > _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
SNMP variable of *IP* octets and not layer#2 octets
Hello All SNMP variables that are known to me, including the show interface command, show me the number of octets (bytes) that passed at layer#2 i.e. including the HDLC/PPP header. Does anybody know a SNMP variable (regardless which IOS it would need) that counts only IP bytes (non-IP is filtered anyway so we can ignore it). thanks in advance, -christian- _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
BSCN....
Anybody could suggest the type of questions in BSCN exam What is the level of BSCN Thanks Manish _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: BSCN....
What is your background, for comparison? Martijn -Oorspronkelijk bericht- Van: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]Namens mbgupta Verzonden: woensdag 7 maart 2001 13:29 Aan: [EMAIL PROTECTED] Onderwerp: BSCN Anybody could suggest the type of questions in BSCN exam What is the level of BSCN Thanks Manish _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ Get Your Private, Free E-mail from MSN Hotmail at http://www.hotmail.com. _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: next test?
Justin, I completed both of those tests as well and started the CCNP and CCDP track. My plan is to take the following exams in this order: BCSN BCMSN CID BCRAN CIT I just completed the BCSN exam this week. I plan to wrap all this up (ccnp/ccdp) by the end of this year. Take care! Robert Robert M. Lopez Network Planning Ann Arbor Data Center Pfizer Global Research & Development Phone 734-622-3948 Fax 734-622-1690 -Original Message- From: Justin M. Clark [mailto:[EMAIL PROTECTED]] Sent: Tuesday, March 06, 2001 6:13 PM To: [EMAIL PROTECTED] Subject: next test? i just finished my CCNA and CCDA, i was wondering if anyone had an opinion on the next test i should work towards. thanks, Justin _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: IP subnetting
check out www.catspace.com excellent site and some good lessions of what you are looking for. bob Studying_to_BE_CCIE wrote: > Does anyone have a good site, or can show me the math, to quickly figure > out subnetting and determining a address when asked for X amount of > host. > > A person had showed me the math using 256 base and subtracting bits or > mask or something. I did not take notes and can't remember the math. > > As you can tell I am not a mathematician. > > _ > FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: strange question about dce setting?
Have you tried to use a special crossover cable... that is db60 both ends but wired with one end dce and the other dte. To make it work you add the command clockrate 64000 (for example) on the interface that has the dce end. If you try to add clockrate on the dte end ..it will not allow you to do so. If you do a show controler serial (port no) it will tell you what type of end is attached. ps I sell these specials cables on ebay and direct. bob...aka barronvonpuppy Eric ding wrote: > two 2500 routers,routerA and routerB, back-to-back connection .both of > them use serial 0,when i set routerA's serial for dce,i got the output > below: > routerA(config-if)#dce-terminal-timing-enable > %not allowed on dte interface > but if i use the command below: > routerA(config-if)#no dce-terminal-timing-enable > routerA(config-if)#dce-terminal-timing-enable > it does work. > i was confused about it! > any suggestion will be appreciated! > > _ > FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
CiscoPress Books Cover Wallpaper
Hi Group Could anyone tell me where I can find the Cisco Press books cover wallpaper?? Thanks in advance. _ Get Your Private, Free E-mail from MSN Hotmail at http://www.hotmail.com. _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
problem upgrading 2610 flash
Hi everyone Just wondered if anyone has heard of this problem as I am waiting for Kingston Technology for over a month to resolve this problem. I am trying to upgrade a 2610 from 8mb flash to 16 mb flash. I ordered the memory expansion kit product no: KCS-F2600/16 from Kingston. Once the new chip was installed I received: System Bootstrap, Version 11.3(2)XA4, RELEASE SOFTWARE (fc1) Copyright (c) 1999 by cisco Systems, Inc. TAC:Home:SW:IOS:Specials for info C2600 platform with 32768 Kbytes of main memory device does not contain a valid magic number boot: cannot open "flash:" boot: cannot determine first file name on device "flash:" System Bootstrap, Version 11.3(2)XA4, RELEASE SOFTWARE (fc1) Copyright (c) 1999 by cisco Systems, Inc. TAC:Home:SW:IOS:Specials for info C2600 platform with 32768 Kbytes of main memory device does not contain a valid magic number boot: cannot open "flash:" boot: cannot determine first file name on device "flash:" System Bootstrap, Version 11.3(2)XA4, RELEASE SOFTWARE (fc1) Copyright (c) 1999 by cisco Systems, Inc. TAC:Home:SW:IOS:Specials for info C2600 platform with 32768 Kbytes of main memory rommon 1 > Kingston advised that this is a known problem and that I should be using bootstrap version 11.3, But I am already running this on the router! Now I have to wait for them to re-create the problem in the U.S. Any suggestions welcome. Thanks in advance. Avril _ Get Your Private, Free E-mail from MSN Hotmail at http://www.hotmail.com. _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Static route Configuration Error
Hi , My network design is as follows : I have two 2610 routers which are interconnected , on the first router (Cisco2610) the configuration is as follows : 1) Serial0/0- Ip address 192.168.1.1 Ethernet 10.100.10.1 On the second router (cisco2620) the configurations are as follows : 2) Serial0/0 - 192.168.1.2 Ethernet - 200.100.10.1 I am able to successfully set the static route from the first router to the second router by giving the command : ip route 200.100.10.0 255.255.255.0 192.168.1.2 and ping the interfaces on the side of ethernet of 200.100.10.1 but when I give the command for the second router ie. ip route 10.100.10.1 255.0.0.0 192.168.1.1 , I get an error which states as follows : " % Inconsistent address and mask " and I am unable to ping to 193.168.0.1 why am I getting this error and how can I correct this error . I can sucessfully set up my routing tables dynamically using either RIP or IGRP , but I am unable to do so statically Will I have to change any configurations on the second router. thanks in advance . Navin Parwal _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Snapshot Routing and Interesting traffic
Nigel Was the BGP router process still running. Even if you delete the nieghbor statements etc and you leave the BGP process running, the router will require clear ip bgp * to remove all references. Johnny Dedon Senior Staff Consultant Exodus Professional Services [EMAIL PROTECTED] www.exodus.net - Original Message - From: "Nigel Taylor" <[EMAIL PROTECTED]> To: "CCIE_Lab Group Study" <[EMAIL PROTECTED]>; "Cisco Group Study" <[EMAIL PROTECTED]> Cc: "Bryant Andrews" <[EMAIL PROTECTED]> Sent: Wednesday, March 07, 2001 5:40 AM Subject: Snapshot Routing and Interesting traffic > Hi All, > I was just making my way through a couple ISDN/DDR Snapshot = > routing scenarios and made a unlikely observation. > > For reference purposes I was making use of my CZone = > privileges(disclaimer) in mocking up David wolsefer ISDN lab exercise = > and got the following results. Before attempting this lab I worked = > through another BGP related lab. In saying so I moved right into this = > scenario without performing a write erase on the routers. To my benefit = > one of the routers I used in this ISDN mock up was clean and not used in = > the previous lab. =20 > > OK, so I get everything all configured baseline snapshot (just the ISDN = > circuit and 1 loopback) and it works great. I progressed to follow the = > requirements of David's scenario which makes use of the Ethernet circuit = > and commands to support ISDN backup of the Ethernet line. Here is where = > things get interesting The ISDN line keep flapping up..down..up.. = > down. =20 > > The "debug ip packet", "debug dialer packet" , and debug dialer events" = > revealed that the client-side of the snapshot circuit was trying to make = > a connection to 11.1.1.2 (eth0). As mentioned before I was doing a BGP = > lab and the Snapshot server router was one of the routers used in that = > scenario. Although there was no ip configurations for the address = > 11.1.1.2, the bgp process on the snapshot server keep trying to make a = > tcp connection on the segment(11.1.1.2). This caused the ISDN line to = > try and route packets to that address as defined in the running bgp = > process (neighbor 11.1.1.2 remote-as 1).=20 > > Once I removed the bgp process everything worked as it should. My = > questions now go to the fact that I have an ospf process running that = > hasn't caused any problems at all. I'm trying to understand what I = > experienced. =20 > > In knowing BGP uses protocol TCP port 179, OSPF IP port 89, and RIP UDP = > port 520. Now I recognize that the "dialer-list" used in the exercise = > is baseline(dialer-list 1 protocol ip permit), but does this make any = > sense at all. Why would this non-active bgp connection cause the ISDN = > line to flap... There was no redistribution being performed so isn't = > this a good example of "ships in the night" routing? =20 > > Thoughts anyone. > > TIA > Nigel > > > > > > ___ > To unsubscribe from the CCIELAB list, send a message to > [EMAIL PROTECTED] with the body containing: > unsubscribe ccielab _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
DTE side clock speed
For leased line, our router is on DTE side. How to check the clock speed we buy from the service provider ? thanks. Regards, YY _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Monitoring Network
>Hi, Guys, >i have any question for you. > >I would know what are the main parameters for measure the network loading in >an Intranet? Years ago, I was a product architect for a now-defunct company called Tesdata, which made all sorts of performance measurement equipment, primarily for the mainframe environment. (Side note: the company was quite successful for a number of years, but to "maximize shareholder value," they cut back on R&D. IBM eventually implemented most of what we did as part of IBM's OS, and our niche went away). Anyway, one of my jobs was evaluating customer requests for nonstandard measurements. While we did charge customers for special software, we did specials primarily to keep them happy; we would much rather have spent our developer resources on improving the mainline product. So, as part of my analysis, I was always trying to see if the special request had general relevance. My analysis refined to a standard question: "Let's assume that we made changes and gave you exactly the measurement you asked for. Having that number in hand, and knowing it is absolutely accurate, how would you change your network based on the value of that number(s)?" More often than not, the customer couldn't answer this question, and would mumble something about their thinking the information would be nice to have. Our account teams often used that to talk them out of wasting money, which is always a good long-term customer relations strategy. So to come back to the question of this original post, I would ask first, "what are your service level goals? what are the likely bottlenecks in your specific network?" Only then can I even begin to suggest what might be useful to measure, and what tools to use. It's also important to know what the skill level of the people looking at the analysis output will be -- for smaller enterprises, this is often a very practical area to do with a consultant. Work with the consultant to establish the measurement system, have in-house personnel do the day-to-day measurements and troubleshooting, and bring in the consultant every month or so to get a capacity planning vies. > >It's right that the main software for the management and monitoring of the >network , for the Cisco Tecnology, are : > >Cisco Works ? >Cisco NetFlow Analyzer ? > >Thanks, for any help that you give me > >Regards, Carmelo > > >_ >FAQ, list archives, and subscription info: >http://www.groupstudy.com/list/cisco.html >Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: next test?
I went according to a commonly recommended track: CCNA, BSCN, BCMSN, BCRAN, CIT and that was fine for me, but I have seen some people take BSCN as their second course/test and not enjoy it at all. I would recommend that you consider your experience and think about taking the next course (between BSCN, BCMSN and BCRAN) based on what you already know and/or enjoy. I think that the very practically-oriented people I know prefer to take BCMSN or BCRAN before BSCN. YMMV Arthur Stewart "Justin M. Clark" wrote in message ... >i just finished my CCNA and CCDA, i was wondering if anyone had an opinion >on the next test i should work towards. > >thanks, >Justin > >_ >FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html >Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] > _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Snapshot Routing and Interesting traffic
I'll defer to David on this, since, in part, I don't have the exact lab in front of me. But remember that BGP is there both to advertise your routes to other AS, and to accept routes from other AS. Could your configuration have been trying to bring up a session to listen to the other AS, even if it didn't have anything to announce? Also, remember that BGP does have a keepalive, although the keepalive often is disabled in practice because other mechanisms will detect failures faster. >Hi All, > I was just making my way through a couple ISDN/DDR Snapshot = >routing scenarios and made a unlikely observation. > >For reference purposes I was making use of my CZone = >privileges(disclaimer) in mocking up David wolsefer ISDN lab exercise = >and got the following results. Before attempting this lab I worked = >through another BGP related lab. In saying so I moved right into this = >scenario without performing a write erase on the routers. To my benefit = >one of the routers I used in this ISDN mock up was clean and not used in = >the previous lab. =20 > >OK, so I get everything all configured baseline snapshot (just the ISDN = >circuit and 1 loopback) and it works great. I progressed to follow the = >requirements of David's scenario which makes use of the Ethernet circuit = >and commands to support ISDN backup of the Ethernet line. Here is where = >things get interesting The ISDN line keep flapping up..down..up.. = >down. =20 > >The "debug ip packet", "debug dialer packet" , and debug dialer events" = >revealed that the client-side of the snapshot circuit was trying to make = >a connection to 11.1.1.2 (eth0). As mentioned before I was doing a BGP = >lab and the Snapshot server router was one of the routers used in that = >scenario. Although there was no ip configurations for the address = >11.1.1.2, the bgp process on the snapshot server keep trying to make a = >tcp connection on the segment(11.1.1.2). This caused the ISDN line to = >try and route packets to that address as defined in the running bgp = >process (neighbor 11.1.1.2 remote-as 1).=20 > >Once I removed the bgp process everything worked as it should. My = >questions now go to the fact that I have an ospf process running that = >hasn't caused any problems at all. I'm trying to understand what I = >experienced. =20 > >In knowing BGP uses protocol TCP port 179, OSPF IP port 89, and RIP UDP = >port 520. Now I recognize that the "dialer-list" used in the exercise = >is baseline(dialer-list 1 protocol ip permit), but does this make any = >sense at all. Why would this non-active bgp connection cause the ISDN = >line to flap... There was no redistribution being performed so isn't = >this a good example of "ships in the night" routing? =20 > >Thoughts anyone. > >TIA >Nigel > > > > > >_ >FAQ, list archives, and subscription info: >http://www.groupstudy.com/list/cisco.html >Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Static route Configuration Error
Set the 10.100.10.1 255.0.0.0 192.168.1.1 route to this: 10.0.0.0 255.0.0.0 192.168.1.1 Try that !! -Original Message- From: Navin Parwal [mailto:[EMAIL PROTECTED]] Sent: Wednesday, March 07, 2001 9:10 AM To: [EMAIL PROTECTED] Subject: Static route Configuration Error Hi , My network design is as follows : I have two 2610 routers which are interconnected , on the first router (Cisco2610) the configuration is as follows : 1) Serial0/0- Ip address 192.168.1.1 Ethernet 10.100.10.1 On the second router (cisco2620) the configurations are as follows : 2) Serial0/0 - 192.168.1.2 Ethernet - 200.100.10.1 I am able to successfully set the static route from the first router to the second router by giving the command : ip route 200.100.10.0 255.255.255.0 192.168.1.2 and ping the interfaces on the side of ethernet of 200.100.10.1 but when I give the command for the second router ie. ip route 10.100.10.1 255.0.0.0 192.168.1.1 , I get an error which states as follows : " % Inconsistent address and mask " and I am unable to ping to 193.168.0.1 why am I getting this error and how can I correct this error . I can sucessfully set up my routing tables dynamically using either RIP or IGRP , but I am unable to do so statically Will I have to change any configurations on the second router. thanks in advance . Navin Parwal _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Static route Configuration Error
on 2nd router: ip route 10.0.0.0 255.0.0.0 192.168.1.1 -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Navin Parwal Sent: Wednesday, March 07, 2001 10:10 PM To: [EMAIL PROTECTED] Subject: Static route Configuration Error Hi , My network design is as follows : I have two 2610 routers which are interconnected , on the first router (Cisco2610) the configuration is as follows : 1) Serial0/0- Ip address 192.168.1.1 Ethernet 10.100.10.1 On the second router (cisco2620) the configurations are as follows : 2) Serial0/0 - 192.168.1.2 Ethernet - 200.100.10.1 I am able to successfully set the static route from the first router to the second router by giving the command : ip route 200.100.10.0 255.255.255.0 192.168.1.2 and ping the interfaces on the side of ethernet of 200.100.10.1 but when I give the command for the second router ie. ip route 10.100.10.1 255.0.0.0 192.168.1.1 , I get an error which states as follows : " % Inconsistent address and mask " and I am unable to ping to 193.168.0.1 why am I getting this error and how can I correct this error . I can sucessfully set up my routing tables dynamically using either RIP or IGRP , but I am unable to do so statically Will I have to change any configurations on the second router. thanks in advance . Navin Parwal _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: 1750 and cable modem
set a ip helper address for DNS ! -Original Message- From: Natasha [mailto:[EMAIL PROTECTED]] Sent: Wednesday, March 07, 2001 9:12 AM To: CCIE Group study list Subject: 1750 and cable modem I am trying to setup a 1750 router and am stuck. From the router ( telnet session) I am able to ping cisco.com or its ip address. When I try to browse the internet or ping and internet address (cisco.com) it fails. See the attached config. Please help. ! version 12.1 no service single-slot-reload-enable service timestamps debug uptime service timestamps log uptime service password-encryption ! hostname Wethersfield ! no logging buffered no logging buffered logging rate-limit console 10 except errors enable secret 5 password enable password 7 password ! memory-size iomem 15 ip subnet-zero no ip finger ! ip audit notify log ip audit po max-events 100 mgcp modem passthrough voaal2 mode nse no mgcp timer receive-rtcp ! interface Ethernet0 ip address dhcp ip nat outside no ip mroute-cache half-duplex ! interface FastEthernet0 ip address 192.168.1.2 255.255.255.0 ip nat inside no ip mroute-cache speed auto half-duplex ! ip kerberos source-interface Ethernet0 ip classless no ip http server ! line con 0 password 7 password login transport input none line aux 0 password 7 password login line vty 0 4 password 7 password login ! no scheduler allocate end -- Natasha Flazynski 440.949.1399 http://www.ciscobot.com My Cisco information site. http://www.botbuilders.com Artificial Intelligence and Linux development "Out of Clutter, find Simplicity. >From Discord, find harmony. In the middle of difficulty, lies opportunity." - Albert Einstein _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Static route Configuration Error
Your subnet mask is not correct. If you want a static route for the host 10.100.10.1 then do it like this: ip route 10.100.10.1 255.255.255.255 192.168.1.1. If you want to permit the 10.x.x.x network do it like this: ip route 10.0.0.0 255.0.0.0 192.168.1.1 work? roger -Original Message- From: Navin Parwal [mailto:[EMAIL PROTECTED]] Sent: Wednesday, March 07, 2001 07:10 To: [EMAIL PROTECTED] Subject: Static route Configuration Error Hi , My network design is as follows : I have two 2610 routers which are interconnected , on the first router (Cisco2610) the configuration is as follows : 1) Serial0/0- Ip address 192.168.1.1 Ethernet 10.100.10.1 On the second router (cisco2620) the configurations are as follows : 2) Serial0/0 - 192.168.1.2 Ethernet - 200.100.10.1 I am able to successfully set the static route from the first router to the second router by giving the command : ip route 200.100.10.0 255.255.255.0 192.168.1.2 and ping the interfaces on the side of ethernet of 200.100.10.1 but when I give the command for the second router ie. ip route 10.100.10.1 255.0.0.0 192.168.1.1 , I get an error which states as follows : " % Inconsistent address and mask " and I am unable to ping to 193.168.0.1 why am I getting this error and how can I correct this error . I can sucessfully set up my routing tables dynamically using either RIP or IGRP , but I am unable to do so statically Will I have to change any configurations on the second router. thanks in advance . Navin Parwal _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: DSL internet with PPPoE
>no wise man would disagree with Howard ;-) > >I agree that there is no financial incentive for Cisco to implement PPPOE >support for home/SOHO and I'm sure the carriers who sell other services >aimed at let's say, branch offices, are more than happy with the >shortcomings of DSL. Cisco does have a product line that targets places like >realty, law, automotive (mom & pop) or other small business that require >only sporadic dialup use from more than one PC and now we see PPPOE client >side support for 1600 and 1700 models. As an aside, and unfortunately I can't get into the specific networks, I have seen situations where PPPoE has scalability issues in large access networks, and where L2TP may be a better long-term solution. >I'm confident that this base is not a >major source of revenue, and I am sure there are businesses that need to >keep their overhead as low as possible for which DSL could be an attractive >compromise that vastly out performs dialup. Availability aside, there are >very attractive business packages where one wouldn't need to feel guilty >about trying to swindle a residential account for business use ;-), which >you may not be able to get in a "proper" place of business anyway. Any ethical issues aside, just be aware that the carriers are getting more and more proactive about detecting violations of the terms of service they define, and shutting down customers that violate them. You have to make a case-by-case decision if that risk is acceptable to the business. That's not to say that Cisco has never deployed features that go around carrier business models. I've heard several developers mention that the X25 PVC parameter, which allows parallel VCs to be established to circumvent a maximum window size limitations, was introduced to get around the restrictions of the French PTT. >Although >I live in Germany, I am American (and, BTW, will return shortly) and DSL is >sh*t hot over here. I've had it for almost a year and the first 6 months >there were one or two 1-12 hour outages a month and now I can't remember any >outages in the last couple months at all. I was also over here during the >big ISDN rollout in the early 90's and they really got that right, you can >live on a farm miles from town and still get ISDN. We use DSL at work for an >office that requires additional bandwidth and needless to say there was a >problem right after installation. The tech showed up the next day and I made >a joke about if this was my home installation I would still be waiting for >the callback and he joked back that we don't screw around with our business >customers. Yes, Germany pretty much has a telephony monopoly (even though >there are now competitors), but that's a whole different conversation I >won't get into here... When the German Vodaphone cellular company took over several British cellular companies, there were industry rumors that the new sales slogan would be "Vee haff ways of making you talk." >back on topic: I still think it would be a proactive >move on Cisco's part to integrate PPPOE support in the models that are >specifically targeted at SOHO and even those at the branch office level. Why >wait for an increased demand IF (and only if) the implementation would/could >be fairly straightforward (it may not be, I'm no programmer). Possibly this >is a litmus test and will propagate to the 2500s. I of course want it solely >for selfish, personal at home use ;-) Doesn't everyone have at least a >couple of 2500s at home?? (that was a JOKE). > >I kinda think Cisco might be experimenting in this arena anyway (the home >perspective): > >Cisco Announces Program to Connect with Homebuilders >Cisco's Connected Communities program helps developers integrate the >Internet Lifestyle into master planned communities > >http://newsroom.cisco.com/dlls/corp_020901.html Right. But there's a key word here: planned. The DSL provider(s) initially in those communities is cooperating in the business model, and they are going to offer services that give customers what they want at a price they can afford to support. There will be economies of scale. It's no secret that the DSL wholesaler market in the US is having terrible financial problems, along with the ISPs whose service is primarily via DSL. Part of that problem is that the services were priced based on an assumption that the level of customer support required would be comparable to that of a single dialup user (at least for single ADSL modem accounts). When the use of the DSL connection gets more and more critical, the waiting times for service and/or the cost of support have been escalating. My home office connectivity uses 768 Kbps SDSL to a provider-supplied router. I've had terrible problems both with downtime in the DSL proper/ISP router interconnect, and with failures of such things as netnews. Executives of my DSL ISP have said, quite frankly, that there are several things getting in the way of service (e.g.,
Re: DSL internet with PPPoE
If you want to talk about an all-in-one unit for the home then Linksys has it. (I should stock buy I guess) A new product has their popular cable/dsl router built in (which does the PPPoE thing) which by the way the latest firmware upgrade allows you to set the MAC address on the WAN side for those providers that expect to see a "real" nic mac address. Also built in is a print server and it has a wireless access point that supports 802.11b - built in! 3 for one, one unit. I have just seen this on their web, don't know a price and I think the wireless part requires a PCMCIA card but I haven't gotten that far into the specs. Kevin Wigle - Original Message - From: "Bruce Bateman" <[EMAIL PROTECTED]> To: "Howard C. Berkowitz" <[EMAIL PROTECTED]>; <[EMAIL PROTECTED]> Sent: Wednesday, March 07, 2001 1:40 AM Subject: RE: DSL internet with PPPoE > I have replaced my 2500 with a 2Wire HomePortal, it has PPPoE/PPPoA in it. > Also has HomePNA, Ethernet and I have a beta wireless unit (802.11b) that I > have connected to my Cisco Aironet PCcard. All works great, and they have a > commercial firewall but without a command line interface (consumer product). > Bruce > > -Original Message- > From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of > Howard C. Berkowitz > Sent: Tuesday, March 06, 2001 8:24 PM > To: [EMAIL PROTECTED] > Subject: RE: DSL internet with PPPoE > > > Continuing to consider why Cisco would or would not support this > application of PPPoE, think about the market for it. Who would want > the capability to plug the router into a DSL modem and support NAT > access for a LAN behind it? > > Not the DSL carriers, who are having significant financial problems > as things stand. xDSL pricing tends to range from (lowest to > highest): > >Single modem, ADSL, dynamic address. intended for single client > ONLY. >Single router, ADSL >Single router, SDSL. This is what the carriers construe as > "business grade" DSL. Where ADSL's bandwidth is asymmetrical and > optimized for a client going outwards to the Internet, SDSL is more > appropriate for server applications, and is generally more > predictable with multiple devices. > > So, who is the market for Cisco implementing this feature? Surely > not the carriers themselves. The carriers, indeed, are getting > smarter and smarter about using statistics and filters to know when > an ADSL subscriber is a single client, a group of clients, or one or > more servers. > > Implementing this feature would alienate the DSL providers from > Cisco. Sorry, individuals don't buy enough from Cisco to show up on > its product radar screen. Even SOHO xDSL users aren't a large market. > > PPPoE has some legitimate applications, such as open access (although > I have doubts about its scalability). But if I understand what the > original poster wants the router to do, I see no incentive for Cisco > to do it, and indeed incentives for Cisco to prevent it. > > > >I guess all we can do is hope for PPPOE support in a future IOS. DSL is a > >great (and cheap) solution for a SOHO or small branch office. Add a VPN and > >you're set... but I would guess that until Cisco sees some of the current > >solutions as a threat to their client base that nothing will be done. This > >is not a slam on Cisco just how businesses think in general. > > > >Tim > > > >> -Original Message- > >> From: Rizzo Damian [mailto:[EMAIL PROTECTED]] > >> Sent: Tuesday, March 06, 2001 8:59 PM > >> To: 'Rahul Kachalia'; Timothy Metz; Rizzo Damian; [EMAIL PROTECTED] > >> Subject: RE: DSL internet with PPPoE > >> > >> > >> I don't see how any of this will provide me with what I desire. I > >> desire to > >> plug my DSL modem directly into my router and use that router's address > as > >> the gateway for my LAN. There's no reason that with only ONE registered > IP > >> address that every PC in my LAN can't access the internet. There are > many > >> solutions for this, I would probably use PAT on the router for > >> instance. The > >> only thing that stands between me and my desire, is this friggin, > useless, > >> does nothing but supply accounting info to the ISP, waste of > >> bandwidth of a > >> protocol, PPPoE! Once you plug the Modem into the router, you somehow > have > >> to authenticate to the ISP PPPoE server with a name and password. > >> I have not > >> found a way to implement this yet. This make me mad! > >> > >> Thanks for the ideas... > >> > >> > >> > >> > >> > >> -Original Message- > >> From: Rahul Kachalia [mailto:[EMAIL PROTECTED]] > >> Sent: Tuesday, March 06, 2001 2:48 PM > >> To: Timothy Metz; Rizzo Damian; [EMAIL PROTECTED] > >> Subject: Re: DSL internet with PPPoE > >> > >> > >> Tim, PPPoE fundamentals are pretty much similar to PPP over WAN links > but > >> PPPoE breaks the boundary on router/modem & brings down to host > >> level where > >> PPP is initiated just like a router but instead
Good CCNP site
Hi, Check with the site www.sureshhomepage.com got good amount of free = questions in .pdf format. Last week I bought a full test pack and made = good my Routing2.0 test absolutely I was on mere amazement and was = zapped fully to find about 40 odd questions appeared very close to the = real test...got 985! thanks Stepehn Revolta CNE,MCSE,CCNA,CCNP(2 down) _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
1750 and cable modem
I am trying to setup a 1750 router and am stuck. From the router ( telnet session) I am able to ping cisco.com or its ip address. When I try to browse the internet or ping and internet address (cisco.com) it fails. See the attached config. Please help. ! version 12.1 no service single-slot-reload-enable service timestamps debug uptime service timestamps log uptime service password-encryption ! hostname Wethersfield ! no logging buffered no logging buffered logging rate-limit console 10 except errors enable secret 5 password enable password 7 password ! memory-size iomem 15 ip subnet-zero no ip finger ! ip audit notify log ip audit po max-events 100 mgcp modem passthrough voaal2 mode nse no mgcp timer receive-rtcp ! interface Ethernet0 ip address dhcp ip nat outside no ip mroute-cache half-duplex ! interface FastEthernet0 ip address 192.168.1.2 255.255.255.0 ip nat inside no ip mroute-cache speed auto half-duplex ! ip kerberos source-interface Ethernet0 ip classless no ip http server ! line con 0 password 7 password login transport input none line aux 0 password 7 password login line vty 0 4 password 7 password login ! no scheduler allocate end -- Natasha Flazynski 440.949.1399 http://www.ciscobot.com My Cisco information site. http://www.botbuilders.com Artificial Intelligence and Linux development "Out of Clutter, find Simplicity. >From Discord, find harmony. In the middle of difficulty, lies opportunity." - Albert Einstein _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: 1750 and cable modem
What DNS server does your host point at? Rob./ >From: "Ramachandran, Ranjit" <[EMAIL PROTECTED]> >Reply-To: "Ramachandran, Ranjit" <[EMAIL PROTECTED]> >To: "'Natasha'" <[EMAIL PROTECTED]>,CCIE Group study list ><[EMAIL PROTECTED]> >Subject: RE: 1750 and cable modem >Date: Wed, 7 Mar 2001 07:33:48 -0700 > >set a ip helper address for DNS ! > >-Original Message- >From: Natasha [mailto:[EMAIL PROTECTED]] >Sent: Wednesday, March 07, 2001 9:12 AM >To: CCIE Group study list >Subject: 1750 and cable modem > > >I am trying to setup a 1750 router and am stuck. From the router ( >telnet session) I am able to ping cisco.com or its >ip address. When I try to browse the internet or >ping and internet address (cisco.com) it fails. See the attached config. >Please help. > > ! > version 12.1 > no service single-slot-reload-enable > service timestamps debug uptime > service timestamps log uptime > service password-encryption > ! > hostname Wethersfield > ! > no logging buffered > no logging buffered > logging rate-limit console 10 except errors > enable secret 5 password > enable password 7 password > ! > memory-size iomem 15 > ip subnet-zero > no ip finger > ! > ip audit notify log > ip audit po max-events 100 > mgcp modem passthrough voaal2 mode nse > no mgcp timer receive-rtcp > ! > interface Ethernet0 > ip address dhcp > ip nat outside > no ip mroute-cache > half-duplex > ! > interface FastEthernet0 > ip address 192.168.1.2 255.255.255.0 > ip nat inside > no ip mroute-cache > speed auto > half-duplex > ! > ip kerberos source-interface Ethernet0 > ip classless > no ip http server > ! > line con 0 > password 7 password > login > transport input none > line aux 0 > password 7 password > login > line vty 0 4 > password 7 password > login > ! > no scheduler allocate > end >-- >Natasha Flazynski >440.949.1399 >http://www.ciscobot.com >My Cisco information site. >http://www.botbuilders.com >Artificial Intelligence and Linux development > >"Out of Clutter, find Simplicity. >From Discord, find harmony. >In the middle of difficulty, lies >opportunity." > - Albert Einstein > >_ >FAQ, list archives, and subscription info: >http://www.groupstudy.com/list/cisco.html >Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] > >_ >FAQ, list archives, and subscription info: >http://www.groupstudy.com/list/cisco.html >Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ Get Your Private, Free E-mail from MSN Hotmail at http://www.hotmail.com. _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: DTE side clock speed
What is your CSU set at??? How many channels are you using of what speed? That should answer your question. -Brad www.optsys.net ""YY"" <[EMAIL PROTECTED]> wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > For leased line, our router is on DTE side. How to check the clock speed we buy from the service provider ? > thanks. > > Regards, > YY > > _ > FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] > _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: next test?
Well, my own experience was I took BCRAN as the first of the CCNP tests. Mostly because at the time I was doing a lot of ISDN BRI, Frame Relay and NATing on my job so it just made sense to take it. I plan on taking the BSCN this month and then the switching and troubleshooting exams in that order. Heather Buri -Original Message- From: Arthur Stewart [mailto:[EMAIL PROTECTED]] Sent: Wednesday, March 07, 2001 8:19 AM To: [EMAIL PROTECTED] Subject: Re: next test? I went according to a commonly recommended track: CCNA, BSCN, BCMSN, BCRAN, CIT and that was fine for me, but I have seen some people take BSCN as their second course/test and not enjoy it at all. I would recommend that you consider your experience and think about taking the next course (between BSCN, BCMSN and BCRAN) based on what you already know and/or enjoy. I think that the very practically-oriented people I know prefer to take BCMSN or BCRAN before BSCN. YMMV Arthur Stewart "Justin M. Clark" wrote in message ... >i just finished my CCNA and CCDA, i was wondering if anyone had an opinion >on the next test i should work towards. > >thanks, >Justin > >_ >FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html >Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] > _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Snapshot Routing and Interesting traffic
I'll defer to David on this, since, in part, I don't have the exact lab in front of me. But remember that BGP is there both to advertise your routes to other AS, and to accept routes from other AS. Could your configuration have been trying to bring up a session to listen to the other AS, even if it didn't have anything to announce? Also, remember that BGP does have a keepalive, although the keepalive often is disabled in practice because other mechanisms will detect failures faster. >Hi All, > I was just making my way through a couple ISDN/DDR Snapshot = >routing scenarios and made a unlikely observation. > >For reference purposes I was making use of my CZone = >privileges(disclaimer) in mocking up David wolsefer ISDN lab exercise = >and got the following results. Before attempting this lab I worked = >through another BGP related lab. In saying so I moved right into this = >scenario without performing a write erase on the routers. To my benefit = >one of the routers I used in this ISDN mock up was clean and not used in = >the previous lab. =20 > >OK, so I get everything all configured baseline snapshot (just the ISDN = >circuit and 1 loopback) and it works great. I progressed to follow the = >requirements of David's scenario which makes use of the Ethernet circuit = >and commands to support ISDN backup of the Ethernet line. Here is where = >things get interesting The ISDN line keep flapping up..down..up.. = >down. =20 > >The "debug ip packet", "debug dialer packet" , and debug dialer events" = >revealed that the client-side of the snapshot circuit was trying to make = >a connection to 11.1.1.2 (eth0). As mentioned before I was doing a BGP = >lab and the Snapshot server router was one of the routers used in that = >scenario. Although there was no ip configurations for the address = >11.1.1.2, the bgp process on the snapshot server keep trying to make a = >tcp connection on the segment(11.1.1.2). This caused the ISDN line to = >try and route packets to that address as defined in the running bgp = >process (neighbor 11.1.1.2 remote-as 1).=20 > >Once I removed the bgp process everything worked as it should. My = >questions now go to the fact that I have an ospf process running that = >hasn't caused any problems at all. I'm trying to understand what I = >experienced. =20 > >In knowing BGP uses protocol TCP port 179, OSPF IP port 89, and RIP UDP = >port 520. Now I recognize that the "dialer-list" used in the exercise = >is baseline(dialer-list 1 protocol ip permit), but does this make any = >sense at all. Why would this non-active bgp connection cause the ISDN = >line to flap... There was no redistribution being performed so isn't = >this a good example of "ships in the night" routing? =20 > >Thoughts anyone. > >TIA >Nigel > > > > > >_ >FAQ, list archives, and subscription info: >http://www.groupstudy.com/list/cisco.html >Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Fw: PIX question
OK a little more info. We have a PIX-PIX VPN set up so encryption only pertains to connections between the two office locations over a dedicated connection. In our location, there is a network outside the PIX before it goes to the Router to the other location. The box sitting on the outside the pix but inside the router is the one that needs to have a port opened to a syslog server on the inside interface of the PIX. Tried setting a static IP so the syslog server has an IP on the outside interface subnet. Opened a conduit for that VIP for syslog. Added to the ACL of the PIX-PIX VPN when the above 2 didn't work (& it should because the VPN is only for destined traffic between the 2 sites). Anything else? Ports I missed? I believe it was 514 but the PIX translates it to syslog when you open that port. - Original Message - From: "Allen May" <[EMAIL PROTECTED]> To: <[EMAIL PROTECTED]> Sent: Tuesday, March 06, 2001 4:23 PM Subject: PIX question > I have a PIX using IPSec for a VPN tunnel between 2 networks. On the > outside interface is a box using SYSLOG trying to write to a box on the > inside interface. I made an external static IP for the internal box, added > a conduit to permit udp-syslog...nothing. Tried adding access-list # permit > udp host host eq syslog. > > The access list is the one used in the IPSec VPN. Any ideas why I get > denied in logging? > > > _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Question on HSRP
Thanks to everyone for the help. My questions have been answered (for now). What I'm trying to do is; I have multiple remote offices where I want to create a VPN tunnel across one provider to the corporate office. In case that the provider goes down, I need to have the second provider take over (with a new tunnel of course). The fail-over with BGP is the easy part. The other guy working on this thinks everything should be running in HSRP, and I don't/didn't think HSRP would allow the stand-by router to become active with the failure being somewhere in the providers network. I thought that I could run them in parallel and let a dynamic routing protocol do the deciding. However, I heard IPSEC breaks routing protocols. I also heard that you can run them throught a GRE tunnel and not encrypt them. This is all still theory until we get some equipment in to do the pilot. Has anyone tried doing this? I'll try this out (track command) and thanks again for the info. Collin P.S. Priscilla your book rocks. ""NetEng"" <[EMAIL PROTECTED]> wrote in message 98423i$l2e$[EMAIL PROTECTED]">news:98423i$l2e$[EMAIL PROTECTED]... > Does HSRP work at the interface level or is the entire router on > acvtive/stand-by? In other words, if I have two routers working in HSRP and > a link goes down somewhere down the line, will the first router know to > fail-over to the second router (with a good link)? I have one router > connected to one ISP and a second router connected to a second ISP. Can > these routers be run in HSRP or must they be running in parallel and let a > dynamic routing protocol (BGP on the outside and let's say EIGRP on the > inside) decide? TIA. > > > _ > FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] > _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Monitoring Network
>Hi, Guys, >i have any question for you. > >I would know what are the main parameters for measure the network loading in >an Intranet? Years ago, I was a product architect for a now-defunct company called Tesdata, which made all sorts of performance measurement equipment, primarily for the mainframe environment. (Side note: the company was quite successful for a number of years, but to "maximize shareholder value," they cut back on R&D. IBM eventually implemented most of what we did as part of IBM's OS, and our niche went away). Anyway, one of my jobs was evaluating customer requests for nonstandard measurements. While we did charge customers for special software, we did specials primarily to keep them happy; we would much rather have spent our developer resources on improving the mainline product. So, as part of my analysis, I was always trying to see if the special request had general relevance. My analysis refined to a standard question: "Let's assume that we made changes and gave you exactly the measurement you asked for. Having that number in hand, and knowing it is absolutely accurate, how would you change your network based on the value of that number(s)?" More often than not, the customer couldn't answer this question, and would mumble something about their thinking the information would be nice to have. Our account teams often used that to talk them out of wasting money, which is always a good long-term customer relations strategy. So to come back to the question of this original post, I would ask first, "what are your service level goals? what are the likely bottlenecks in your specific network?" Only then can I even begin to suggest what might be useful to measure, and what tools to use. It's also important to know what the skill level of the people looking at the analysis output will be -- for smaller enterprises, this is often a very practical area to do with a consultant. Work with the consultant to establish the measurement system, have in-house personnel do the day-to-day measurements and troubleshooting, and bring in the consultant every month or so to get a capacity planning vies. > >It's right that the main software for the management and monitoring of the >network , for the Cisco Tecnology, are : > >Cisco Works ? >Cisco NetFlow Analyzer ? > >Thanks, for any help that you give me > >Regards, Carmelo > > >_ >FAQ, list archives, and subscription info: >http://www.groupstudy.com/list/cisco.html >Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Star Wars
Do they make yin yang duck tape? -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Howard C. Berkowitz Sent: Tuesday, March 06, 2001 12:16 PM To: [EMAIL PROTECTED] Subject: Re: Star Wars In the Star Wars universe, the Force: Has a light side Has a dark side Holds the universe together. In our universe, this is a fair description of duct tape. _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Fw: PIX question
Crap..typo below. Box sitting outside the pix needs to log to the syslog server inside the pix. - Original Message - From: "Allen May" <[EMAIL PROTECTED]> To: <[EMAIL PROTECTED]> Sent: Wednesday, March 07, 2001 9:17 AM Subject: Fw: PIX question > OK a little more info. We have a PIX-PIX VPN set up so encryption only > pertains to connections between the two office locations over a dedicated > connection. In our location, there is a network outside the PIX before it > goes to the Router to the other location. The box sitting on the outside > the pix but inside the router is the one that needs to have a port opened to > a syslog server on the inside interface of the PIX. > > Tried setting a static IP so the syslog server has an IP on the outside > interface subnet. > Opened a conduit for that VIP for syslog. > Added to the ACL of the PIX-PIX VPN when the above 2 didn't work (& it > should because the VPN is only for destined traffic between the 2 sites). > > Anything else? Ports I missed? I believe it was 514 but the PIX translates > it to syslog when you open that port. > > > - Original Message - > From: "Allen May" <[EMAIL PROTECTED]> > To: <[EMAIL PROTECTED]> > Sent: Tuesday, March 06, 2001 4:23 PM > Subject: PIX question > > > > I have a PIX using IPSec for a VPN tunnel between 2 networks. On the > > outside interface is a box using SYSLOG trying to write to a box on the > > inside interface. I made an external static IP for the internal box, > added > > a conduit to permit udp-syslog...nothing. Tried adding access-list # > permit > > udp host host eq syslog. > > > > The access list is the one used in the IPSec VPN. Any ideas why I get > > denied in logging? > > > > > > > > _ > FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] > _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: RIP configuration Error , please guide me
Why don't you post your full RIP configs? That would make it easier for others on the list to help you. At 01:18 AM 3/7/01, you wrote: >Hi Everyone , >I am facing a problem configuring RIP as a dynamic routing >protocol for my 2 Cisco Routers , my scenrio is as follows : > >On my first Cisco Router named Cisco2620 , my configuration for two >ports is as follows: >1) Ethernet Port Ip address assigned : 200.100.10.1 >2)Serial Wan Port Ip address assigned : 192.168.1.2 > >On the second router named Cisco2610 , I have the following ports >configrurations : >1) Ethernet Port Ip address assigned : 10.100.10.1 >2) Serial Wan Port IP address : 192.168.1.1 > > I am not able to set up my routing table by configuring RIP on both of >the routers , ie when i give the command ' router rip ' and specify the >interfaces on both of the routers , it does not show me the dynamic routing >tables built when I give the command 'show ip route '. >But when I configure the routing protocol with IGRP , I am able to >configure it and build the routing tables as well . > When I give the command 'show protocols ' , It gives me the details of >RiP configured on my system but there are no details in the routing table >and I am not able to ping from one end of ethernet to the other . I have >deleted all the static routing enteries which were there as well . >Why am I not able to configure the tables using RIP and successfully do >so using IGRP , please let me know . > >thanking you in advance , > >Navin Parwal >Technosys > > >_ >FAQ, list archives, and subscription info: >http://www.groupstudy.com/list/cisco.html >Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: classless to classfull routing issue
Once solution would be to define multiple subinterfaces with the respective /28, /26, and /25 network masks. Classful protocols assume that the subnet mask being used on the router is the subnet mask that a protocol update is using as well, if there is no matching mask they default to the standard classful network mask. So putting these other netmasks on the router should fix the problem since then the router will know which updates belong in which subnet. I haven't tried it, but it seems like it would work to me :-) At 01:45 AM 3/7/01, you wrote: >you'll just have to use the 24 bit masks that are default in the IGRP >routing protocol. Or establish and redistribute static routes into your >IGRP routing process. > >see http://www.cisco.com/warp/public/105/52.html for some other direction > >-e- > >Prasanna <[EMAIL PROTECTED]> wrote in message >983mlr$unf$[EMAIL PROTECTED]">news:983mlr$unf$[EMAIL PROTECTED]... > > Hi Guys > > > > I was trying to redistribute from OSPF Domain ( has variable subnets >,/24, > > /28 , /26 & /25 ) to IGRP domain ( /24 ) , i got severe masking issue as > > IGRP is classfull and i could able to redistribute only /24 subnets .I was > > trying to implement summary address with /24 towards IGRP but i could not > > able to summarize the subnets. > > > > OSPF subnets - 192.168.112.0/24 > > 192.168.113.192/26 > > 192. 168.114.128/25 > >192.168.115. 240/28 > > > > > > > > IGRP subnet - 192.168.110.0/24 > > 192.168.111.0/24 > > > > > > > > What is the elegant way to solve this problem > > > > > > _ > > FAQ, list archives, and subscription info: >http://www.groupstudy.com/list/cisco.html > > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] > > >_ >FAQ, list archives, and subscription info: >http://www.groupstudy.com/list/cisco.html >Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: 1750 and cable modem
Thank you but DUH on my part. I forgot the DNS line lol Robert Nelson-Cox wrote: > > What DNS server does your host point at? > > Rob./ > > >From: "Ramachandran, Ranjit" <[EMAIL PROTECTED]> > >Reply-To: "Ramachandran, Ranjit" <[EMAIL PROTECTED]> > >To: "'Natasha'" <[EMAIL PROTECTED]>,CCIE Group study list > ><[EMAIL PROTECTED]> > >Subject: RE: 1750 and cable modem > >Date: Wed, 7 Mar 2001 07:33:48 -0700 > > > >set a ip helper address for DNS ! > > > >-Original Message- > >From: Natasha [mailto:[EMAIL PROTECTED]] > >Sent: Wednesday, March 07, 2001 9:12 AM > >To: CCIE Group study list > >Subject: 1750 and cable modem > > > > > >I am trying to setup a 1750 router and am stuck. From the router ( > >telnet session) I am able to ping cisco.com or its > >ip address. When I try to browse the internet or > >ping and internet address (cisco.com) it fails. See the attached config. > >Please help. > > > > ! > > version 12.1 > > no service single-slot-reload-enable > > service timestamps debug uptime > > service timestamps log uptime > > service password-encryption > > ! > > hostname Wethersfield > > ! > > no logging buffered > > no logging buffered > > logging rate-limit console 10 except errors > > enable secret 5 password > > enable password 7 password > > ! > > memory-size iomem 15 > > ip subnet-zero > > no ip finger > > ! > > ip audit notify log > > ip audit po max-events 100 > > mgcp modem passthrough voaal2 mode nse > > no mgcp timer receive-rtcp > > ! > > interface Ethernet0 > > ip address dhcp > > ip nat outside > > no ip mroute-cache > > half-duplex > > ! > > interface FastEthernet0 > > ip address 192.168.1.2 255.255.255.0 > > ip nat inside > > no ip mroute-cache > > speed auto > > half-duplex > > ! > > ip kerberos source-interface Ethernet0 > > ip classless > > no ip http server > > ! > > line con 0 > > password 7 password > > login > > transport input none > > line aux 0 > > password 7 password > > login > > line vty 0 4 > > password 7 password > > login > > ! > > no scheduler allocate > > end > >-- > >Natasha Flazynski > >440.949.1399 > >http://www.ciscobot.com > >My Cisco information site. > >http://www.botbuilders.com > >Artificial Intelligence and Linux development > > > >"Out of Clutter, find Simplicity. > >From Discord, find harmony. > >In the middle of difficulty, lies > >opportunity." > > - Albert Einstein > > > >_ > >FAQ, list archives, and subscription info: > >http://www.groupstudy.com/list/cisco.html > >Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] > > > >_ > >FAQ, list archives, and subscription info: > >http://www.groupstudy.com/list/cisco.html > >Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] > > _ > Get Your Private, Free E-mail from MSN Hotmail at http://www.hotmail.com. > > _ > FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] -- Natasha Flazynski 440.949.1399 http://www.ciscobot.com My Cisco information site. http://www.botbuilders.com Artificial Intelligence and Linux development "Out of Clutter, find Simplicity. >From Discord, find harmony. In the
No Subject
Anyone know of a site that would list all ports? Or a specific link on the cisco site? I've looked through pages upon pages with no luck. Heidi __ Do You Yahoo!? Get email at your own domain with Yahoo! Mail. http://personal.mail.yahoo.com/ _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Off Topic RE: strange question about dce setting?
Robert, Where have you been..? Haven't seen you in the group for sometime. I was also wondering about Bob Envry of VA/DC/MD CPAW fame haven't heard from him in a while as well. Anyway, good to see that you're still around..(our famous cable guy):-) Nigel.. - Original Message - From: robert lowery <[EMAIL PROTECTED]> Newsgroups: groupstudy.cisco To: <[EMAIL PROTECTED]>; Eric ding <[EMAIL PROTECTED]> Sent: Wednesday, March 07, 2001 8:58 AM Subject: Re: strange question about dce setting? > Have you tried to use a special crossover cable... that is db60 both ends but wired with > one end dce and the other dte. To make it work you add the command clockrate 64000 (for > example) on the interface that has the dce end. If you try to add clockrate on the dte > end ..it will not allow you to do so. If you do a show controler serial (port no) it > will tell you what type of end is attached. > > ps I sell these specials cables on ebay and direct. > > bob...aka barronvonpuppy > > > Eric ding wrote: > > > two 2500 routers,routerA and routerB, back-to-back connection .both of > > them use serial 0,when i set routerA's serial for dce,i got the output > > below: > > routerA(config-if)#dce-terminal-timing-enable > > %not allowed on dte interface > > but if i use the command below: > > routerA(config-if)#no dce-terminal-timing-enable > > routerA(config-if)#dce-terminal-timing-enable > > it does work. > > i was confused about it! > > any suggestion will be appreciated! > > > > _ > > FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html > > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] > > _ > FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] > _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Inside Cisco IOS Architecture - A must have ??????
I think it is a great source of information that is normally not understood. I would give the book a 9.5, but do not believe it played a part in passing the CCIE written. /n Ray Smith wrote: > Guys, > > Those of you whom have read the book entitled "Inside Cisco IOS Architecture > (CCIE Professional Development Series)" before or are familiar with any > previous work of the Author, how would you rate this book on a scale from > 1-10? > > How significant is it to the preparation process for the CCIE written and/or > Lab? Please say ...Peace! > > Ray > _ > Get your FREE download of MSN Explorer at http://explorer.msn.com > > _ > FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Routing Exam
Can anyone tell me the minimum passing grade for the Routing 640-503 exam? mike _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: CCO practice questions
Actually, http://www.cisco.com/wwtraining/colt">www.cisco.com/wwtraining/colt will work. And yes, this is the best web site for any Cisco exam prep. - a few errors. :-) >From: "Greg Macaulay" <[EMAIL PROTECTED]> >Reply-To: "Greg Macaulay" <[EMAIL PROTECTED]> >To: "Fred Danson" <[EMAIL PROTECTED]>, <[EMAIL PROTECTED]> >Subject: RE: CCO practice questions >Date: Tue, 6 Mar 2001 13:11:31 -0500 > >http://www.cisco.com/pcgi-bin/colt/ColtLogin.pl?MODULEID=2467&SUBMIT=Take+Te > >Check this site out. It's called COLT -- For Cisco OnLine Testing. As you >note, you do need CCO access for entry. I used the testing assessment for >CIT/Support -- which was very good. Every question was drawn from the Cisco >Official Materials -- verbatim. > >Good luck! > >-Original Message- >From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of >Fred Danson >Sent: Monday, March 05, 2001 2:48 AM >To: [EMAIL PROTECTED] >Subject: CCO practice questions > > >Hi, > >Could anyone give me the directions to get to the practice question section >on the Cisco website? I have CCO access, but I can't seem to find the >questions. Also, please include directions instead of just a link, I would >like to be able to see what else is offered in the section. > >Thanks in advance, >Fred > >_ >Get your FREE download of MSN Explorer at http://explorer.msn.com > >_ >FAQ, list archives, and subscription info: >http://www.groupstudy.com/list/cisco.html >Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] > >_ >FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html >Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] Get your FREE download of MSN Explorer at http://explorer.msn.com">http://explorer.msn.com _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: classless to classfull routing issue
I don't think that would work because I remember reading somewhere that it compares the subnet to the subnet on the interface that the update was received on so I don't think the loopback with different subnet would help. Cory -Original Message- From: Curtis Call [mailto:[EMAIL PROTECTED]] Sent: Wednesday, March 07, 2001 9:44 AM To: [EMAIL PROTECTED] Subject: Re: classless to classfull routing issue Once solution would be to define multiple subinterfaces with the respective /28, /26, and /25 network masks. Classful protocols assume that the subnet mask being used on the router is the subnet mask that a protocol update is using as well, if there is no matching mask they default to the standard classful network mask. So putting these other netmasks on the router should fix the problem since then the router will know which updates belong in which subnet. I haven't tried it, but it seems like it would work to me :-) At 01:45 AM 3/7/01, you wrote: >you'll just have to use the 24 bit masks that are default in the IGRP >routing protocol. Or establish and redistribute static routes into your >IGRP routing process. > >see http://www.cisco.com/warp/public/105/52.html for some other direction > >-e- > >Prasanna <[EMAIL PROTECTED]> wrote in message >983mlr$unf$[EMAIL PROTECTED]">news:983mlr$unf$[EMAIL PROTECTED]... > > Hi Guys > > > > I was trying to redistribute from OSPF Domain ( has variable subnets >,/24, > > /28 , /26 & /25 ) to IGRP domain ( /24 ) , i got severe masking issue as > > IGRP is classfull and i could able to redistribute only /24 subnets .I was > > trying to implement summary address with /24 towards IGRP but i could not > > able to summarize the subnets. > > > > OSPF subnets - 192.168.112.0/24 > > 192.168.113.192/26 > > 192. 168.114.128/25 > >192.168.115. 240/28 > > > > > > > > IGRP subnet - 192.168.110.0/24 > > 192.168.111.0/24 > > > > > > > > What is the elegant way to solve this problem > > > > > > _ > > FAQ, list archives, and subscription info: >http://www.groupstudy.com/list/cisco.html > > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] > > >_ >FAQ, list archives, and subscription info: >http://www.groupstudy.com/list/cisco.html >Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Load Balancing Across Multiple PIX
Hello Everyone, Does anybody know if it is possible to load balance across multiple PIX firewalls? I have looked at numerous Cisco web pages, but never any mention of load balancing. I have talked to a sales engineer and he has said that to get 1GB of throughput from a PIX firewall, you need to install 3 PIX firewalls and do load balancing across them. The max throughput from one PIX is 370MBps. Of course, I can't get the sales engineer to return my call now. Doe anyone know if this is true? Do you have to have 3 PIX to do load balancing? I would like to just do load balancing across 2 PIX firewalls. Is this possible? Thanks in advance. Thanks Stan Rossetti NASA - PriSMS Advanced Technology Group Voice: (256) 544-5031 Email: [EMAIL PROTECTED] Beeper: 544-1183 pin 0112 CCDA, CCNA, CCSE _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: RIP configuration Error , please guide me
>From: "Navin Parwal" <[EMAIL PROTECTED]> >Reply-To: "Navin Parwal" <[EMAIL PROTECTED]> >To: [EMAIL PROTECTED] >Subject: RIP configuration Error , please guide me >Date: Wed, 7 Mar 2001 13:48:43 +0530 > >Hi Everyone , >I am facing a problem configuring RIP as a dynamic routing >protocol for my 2 Cisco Routers , my scenrio is as follows : > >On my first Cisco Router named Cisco2620 , my configuration for two >ports is as follows: >1) Ethernet Port Ip address assigned : 200.100.10.1 >2)Serial Wan Port Ip address assigned : 192.168.1.2 > >On the second router named Cisco2610 , I have the following ports >configrurations : >1) Ethernet Port Ip address assigned : 10.100.10.1 >2) Serial Wan Port IP address : 192.168.1.1 > > I am not able to set up my routing table by configuring RIP on both of >the routers , ie when i give the command ' router rip ' and specify the >interfaces on both of the routers , it does not show me the dynamic routing >tables built when I give the command 'show ip route '. 1. Assign IP addresses first to the router interfaces. 2. Do the following: 1st router Router(config)#router rip Router(config-router)#network 200.100.10.0 Router(config-router)#network 192.168.1.0 2nd router Router(config)router rip Router(config-router)#network 10.0.0.0 Router(config-router)#network 192.168.1.0 After configuring the routers, "Router#copy run start" to save your configurations. And to check your rip configuration, do "show run". Finally, do "show ip route" to check the rip routing. Let me know how it worked out. Regards, Arthur _ Get your FREE download of MSN Explorer at http://explorer.msn.com _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: DSL internet with PPPoE
Yes I reviewed the linksys but it only had NAT, I didn't want to put BlackIce on all my computers. I needed a box that also did Packet inspections. bruce -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Kevin Wigle Sent: Wednesday, March 07, 2001 6:40 AM To: Bruce Bateman; Howard C. Berkowitz; [EMAIL PROTECTED] Subject: Re: DSL internet with PPPoE If you want to talk about an all-in-one unit for the home then Linksys has it. (I should stock buy I guess) A new product has their popular cable/dsl router built in (which does the PPPoE thing) which by the way the latest firmware upgrade allows you to set the MAC address on the WAN side for those providers that expect to see a "real" nic mac address. Also built in is a print server and it has a wireless access point that supports 802.11b - built in! 3 for one, one unit. I have just seen this on their web, don't know a price and I think the wireless part requires a PCMCIA card but I haven't gotten that far into the specs. Kevin Wigle - Original Message - From: "Bruce Bateman" <[EMAIL PROTECTED]> To: "Howard C. Berkowitz" <[EMAIL PROTECTED]>; <[EMAIL PROTECTED]> Sent: Wednesday, March 07, 2001 1:40 AM Subject: RE: DSL internet with PPPoE > I have replaced my 2500 with a 2Wire HomePortal, it has PPPoE/PPPoA in it. > Also has HomePNA, Ethernet and I have a beta wireless unit (802.11b) that I > have connected to my Cisco Aironet PCcard. All works great, and they have a > commercial firewall but without a command line interface (consumer product). > Bruce > > -Original Message- > From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of > Howard C. Berkowitz > Sent: Tuesday, March 06, 2001 8:24 PM > To: [EMAIL PROTECTED] > Subject: RE: DSL internet with PPPoE > > > Continuing to consider why Cisco would or would not support this > application of PPPoE, think about the market for it. Who would want > the capability to plug the router into a DSL modem and support NAT > access for a LAN behind it? > > Not the DSL carriers, who are having significant financial problems > as things stand. xDSL pricing tends to range from (lowest to > highest): > >Single modem, ADSL, dynamic address. intended for single client > ONLY. >Single router, ADSL >Single router, SDSL. This is what the carriers construe as > "business grade" DSL. Where ADSL's bandwidth is asymmetrical and > optimized for a client going outwards to the Internet, SDSL is more > appropriate for server applications, and is generally more > predictable with multiple devices. > > So, who is the market for Cisco implementing this feature? Surely > not the carriers themselves. The carriers, indeed, are getting > smarter and smarter about using statistics and filters to know when > an ADSL subscriber is a single client, a group of clients, or one or > more servers. > > Implementing this feature would alienate the DSL providers from > Cisco. Sorry, individuals don't buy enough from Cisco to show up on > its product radar screen. Even SOHO xDSL users aren't a large market. > > PPPoE has some legitimate applications, such as open access (although > I have doubts about its scalability). But if I understand what the > original poster wants the router to do, I see no incentive for Cisco > to do it, and indeed incentives for Cisco to prevent it. > > > >I guess all we can do is hope for PPPOE support in a future IOS. DSL is a > >great (and cheap) solution for a SOHO or small branch office. Add a VPN and > >you're set... but I would guess that until Cisco sees some of the current > >solutions as a threat to their client base that nothing will be done. This > >is not a slam on Cisco just how businesses think in general. > > > >Tim > > > >> -Original Message- > >> From: Rizzo Damian [mailto:[EMAIL PROTECTED]] > >> Sent: Tuesday, March 06, 2001 8:59 PM > >> To: 'Rahul Kachalia'; Timothy Metz; Rizzo Damian; [EMAIL PROTECTED] > >> Subject: RE: DSL internet with PPPoE > >> > >> > >> I don't see how any of this will provide me with what I desire. I > >> desire to > >> plug my DSL modem directly into my router and use that router's address > as > >> the gateway for my LAN. There's no reason that with only ONE registered > IP > >> address that every PC in my LAN can't access the internet. There are > many > >> solutions for this, I would probably use PAT on the router for > >> instance. The > >> only thing that stands between me and my desire, is this friggin, > useless, > >> does nothing but supply accounting info to the ISP, waste of > >> bandwidth of a > >> protocol, PPPoE! Once you plug the Modem into the router, you somehow > have > >> to authenticate to the ISP PPPoE server with a name and password. > >> I have not > >> found a way to implement this yet. This make me mad! > >> > >> Thanks for the ideas... > >> > >> > >> > >> > >> > >> -Original Message- > >> From: Rahul Kachalia [mailto:[E
RE: Well Known Ports
This might bewhat you want. http://www.isi.edu/in-notes/iana/assignments/port-numbers > -Original Message- > From: Heidi white [mailto:[EMAIL PROTECTED]] > Sent: Wednesday, March 07, 2001 9:54 AM > To: [EMAIL PROTECTED] > Subject: > > > Anyone know of a site that would list all ports? Or a > specific link on the cisco site? I've looked through > pages upon pages with no luck. > Heidi > > __ > Do You Yahoo!? > Get email at your own domain with Yahoo! Mail. > http://personal.mail.yahoo.com/ > > _ > FAQ, list archives, and subscription info: > http://www.groupstudy.com/list/cisco.html > Report misconduct > and Nondisclosure violations to [EMAIL PROTECTED] > _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE:
http://www.isi.edu/in-notes/iana/assignments/port-numbers > -Original Message- > From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of > Heidi white > Sent: Wednesday, March 07, 2001 4:54 PM > To: [EMAIL PROTECTED] > Subject: > > > Anyone know of a site that would list all ports? Or a > specific link on the cisco site? I've looked through > pages upon pages with no luck. > Heidi > > __ > Do You Yahoo!? > Get email at your own domain with Yahoo! Mail. > http://personal.mail.yahoo.com/ > > _ > FAQ, list archives, and subscription info: > http://www.groupstudy.com/list/cisco.html > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
HSRP and Load balancing on two Cat 5500
Does anyone have configuration examples of standby tracking and load balancing between two Cat 5500's with a RSM? Thanks Wm. Spencer Plantier LAN Engineer (919) 474-1300 ext 0873 Office (919) 474-1056 Fax (919)696-8848 Cell [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re:
Have a look at RFC 1700 http://www.ietf.org/rfc/rfc1700.txt Tim - Original Message - From: "Heidi white" <[EMAIL PROTECTED]> To: <[EMAIL PROTECTED]> Sent: Wednesday, March 07, 2001 10:53 AM Anyone know of a site that would list all ports? Or a specific link on the cisco site? I've looked through pages upon pages with no luck. Heidi __ Do You Yahoo!? Get email at your own domain with Yahoo! Mail. http://personal.mail.yahoo.com/ _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Monitoring Network
www.sniffer.com product evaluations ...link on main page HTH steve >From: Fermanis Tim G WANG USAFE CSS/SCOG <[EMAIL PROTECTED]> >To: "'Stephen Skinner'" <[EMAIL PROTECTED]> >Subject: RE: Monitoring Network >Date: Wed, 7 Mar 2001 13:54:16 +0100 > >Where do you get sniffer pro 2.5 from? > > >Tim Fermanis >GCCS System Administrator >Getronics Government Solutions >USAFE CSS/SCOG >DSN: 314-480-3883 > > -Original Message- >From: Stephen Skinner [mailto:[EMAIL PROTECTED]] >Sent: Wednesday, March 07, 2001 1:24 PM >To:[EMAIL PROTECTED]; [EMAIL PROTECTED] >Subject: Re: Monitoring Network > > >it depends on your setup . > >but as a temporary mesure ...why don`t you download an eval copy of sniffer >pro 2.5and plug it into switch connected closest to your server`s and >see what it has to say it can be very informative...and if you like it buy >it... > >the cisco packages are good ...very good ,but maybe a little overpowering >to > >start with if i`m looking at a network i use sniffer ...tracking that >sort of thing...if i want detailed stats on cisco equipment ...then i go >for > >works.. > >But every body does it differently > > >Anybody?? > >hth > >steve > > >From: "carmelo Garofalo" <[EMAIL PROTECTED]> > >Reply-To: "carmelo Garofalo" <[EMAIL PROTECTED]> > >To: [EMAIL PROTECTED] > >Subject: Monitoring Network > >Date: Wed, 7 Mar 2001 12:02:52 +0100 > > > >Hi, Guys, > >i have any question for you. > > > >I would know what are the main parameters for measure the network loading > >in > >an Intranet? > > > >It's right that the main software for the management and monitoring of >the > >network , for the Cisco Tecnology, are : > > > >Cisco Works ? > >Cisco NetFlow Analyzer ? > > > >Thanks, for any help that you give me > > > >Regards, Carmelo > > > > > >_ > >FAQ, list archives, and subscription info: > >http://www.groupstudy.com/list/cisco.html > >Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] > >_ >Get Your Private, Free E-mail from MSN Hotmail at http://www.hotmail.com. > >_ >FAQ, list archives, and subscription info: >http://www.groupstudy.com/list/cisco.html >Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ Get Your Private, Free E-mail from MSN Hotmail at http://www.hotmail.com. _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Email Server through NAT
Stupid question: 2 connections. S1/0 to frame-relay to branches. S1/1 to ISP. S1/1 uses Nat with overload. If I have an email server within my internal network, how can I get it to send/receive messages with ISP through the NAT interface? Will I have to set up another outside address just for this server? How will email messages come through the NAT to get to the server? Thanks _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Load Balancing Across Multiple PIX
They won't load balance natively. The problem with getting a load balancer before the PIX is that you either have it on the inside balancing outbound traffic or outside balancing inbound traffic. The PIX needs a static route for traffic going the other direction and you can't have multiple default routes on a PIX. The interface without the load balancer would have to have some kind of rigged BGP or something like that to distribute coming to the pixes or you'll have routing issues. I could be wrong...just my first thougth on the situationwithout COFFEE. I don't think there's any easy way to do this... - Original Message - From: "Rossetti, Stan" <[EMAIL PROTECTED]> To: <[EMAIL PROTECTED]> Sent: Wednesday, March 07, 2001 10:01 AM Subject: Load Balancing Across Multiple PIX > Hello Everyone, > > Does anybody know if it is possible to load balance across multiple PIX > firewalls? I have looked at numerous Cisco web pages, but never any mention > of load balancing. I have talked to a sales engineer and he has said that > to get 1GB of throughput from a PIX firewall, you need to install 3 PIX > firewalls and do load balancing across them. The max throughput from one > PIX is 370MBps. Of course, I can't get the sales engineer to return my call > now. Doe anyone know if this is true? Do you have to have 3 PIX to do load > balancing? I would like to just do load balancing across 2 PIX firewalls. > Is this possible? > > Thanks in advance. > > > > > Thanks > > Stan Rossetti > > > NASA - PriSMS > Advanced Technology Group > Voice: (256) 544-5031 > Email: [EMAIL PROTECTED] > Beeper: 544-1183 pin 0112 > > CCDA, CCNA, CCSE > > _ > FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] > _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: 1750 and cable modem
Hey Natasha If I'm not mistaken, it looks like a simple thing of missing a NAT Pool to allow other workstations to proxy from. though you've set up the NAT on the interfaces, you've not completed the NAT config. I'll let you stew on this, and see if you figure it out. Let us know if your still stuck. mark - Original Message - From: "Natasha" <[EMAIL PROTECTED]> To: "CCIE Group study list" <[EMAIL PROTECTED]> Sent: Wednesday, March 07, 2001 8:12 AM Subject: 1750 and cable modem > I am trying to setup a 1750 router and am stuck. From the router ( > telnet session) I am able to ping cisco.com or its > ip address. When I try to browse the internet or > ping and internet address (cisco.com) it fails. See the attached config. > Please help. > > ! > version 12.1 > no service single-slot-reload-enable > service timestamps debug uptime > service timestamps log uptime > service password-encryption > ! > hostname Wethersfield > ! > no logging buffered > no logging buffered > logging rate-limit console 10 except errors > enable secret 5 password > enable password 7 password > ! > memory-size iomem 15 > ip subnet-zero > no ip finger > ! > ip audit notify log > ip audit po max-events 100 > mgcp modem passthrough voaal2 mode nse > no mgcp timer receive-rtcp > ! > interface Ethernet0 > ip address dhcp > ip nat outside > no ip mroute-cache > half-duplex > ! > interface FastEthernet0 > ip address 192.168.1.2 255.255.255.0 > ip nat inside > no ip mroute-cache > speed auto > half-duplex > ! > ip kerberos source-interface Ethernet0 > ip classless > no ip http server > ! > line con 0 > password 7 password > login > transport input none > line aux 0 > password 7 password > login > line vty 0 4 > password 7 password > login > ! > no scheduler allocate > end > -- > Natasha Flazynski > 440.949.1399 > http://www.ciscobot.com > My Cisco information site. > http://www.botbuilders.com > Artificial Intelligence and Linux development > > "Out of Clutter, find Simplicity. > From Discord, find harmony. > In the middle of difficulty, lies > opportunity." > - Albert Einstein > > _ > FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Frame-relay
Could someone please clarify something for me about Frame-relay? I had always understood that traffic over frame-relay was unsecure and needed to be encrypted if it was of a critical nature. Is frame-relay always a shared network? I had thought so but I have recently had a someone explain to me that they did not need to encrypt the data because they "owned" the cloud that the pvc ran through. He said that it was a point to point connection and therefore not over a shared network. All of our connections are setup using sub-interfaces and point to point. I still thought that it was over a shared network. This did not make a lot of sense to me. Any help would be appreciated. Any links to good documentation would be helpful as well. Thanks, John [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Question on HSRP
One more comment, though. Tracking an additional interface may not meet his needs since he said he was hoping for a router failover in the event "a link goes down somewhere down the line." For that kind of behavior, you would need a routing protocol. Routing protocols track failures in routes, whereas HSRP only tracks failures in interfaces. Let me know if I'm wrong. Obviously my HSRP knowledge is a bit dated. Thanks, Priscilla >At 06:59 PM 3/6/01, Clayton Price wrote: > >The first router would not necassarily have to lose connectivity to the > >second router in order to fail over. HSRP can be configured to track an > >additional interface. For example you could track the link to the ISP. If > >that link goes down the router decrements its priority (default decrease is > >10) the other router at that point will see that it has a higher priority > >based on the hello packets from the first router. At this point it will > >become the active router. > > > >Clayton Price > > > > > >"Priscilla Oppenheimer" <[EMAIL PROTECTED]> wrote in message > >[EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > > > At 06:07 PM 3/6/01, NetEng wrote: > > > >Does HSRP work at the interface level or is the entire router on > > > >acvtive/stand-by? In other words, if I have two routers working in HSRP > >and > > > >a link goes down somewhere down the line, will the first router know to > > > >fail-over to the second router (with a good link)? > > > > > > Interesting question. The first router would have to lose its > connectivity > > > to the second router. Routers that are running HSRP send and receive > > > multicast UDP-based hello packets to detect router failure and to > >designate > > > active and standby routers. HSRP detects when the designated active > router > > > fails because of the lack of hello packets, at which point a selected > > > standby router assumes control of the Hot Standby group's MAC and IP > > > addresses. A new standby router is also selected at that time. > > > > > > Remember HSRP stands for Hot Standby Router Protocol, not Hot Standby > > > Routing protocol. It's the default router for LAN devices that's on > > > standby. If you think of HSRP as a routing protocol, then you will > tend to > > > think it does more than it does. I think to solve your problem you need a > > > "real" routing protocol, although without more info, it's hard to say for > > > sure. > > > > > > Priscilla > > > > > > > I have one router > > > >connected to one ISP and a second router connected to a second ISP. Can > > > >these routers be run in HSRP or must they be running in parallel and let > >a > > > >dynamic routing protocol (BGP on the outside and let's say EIGRP on the > > > >inside) decide? TIA. > > > > > > > > Priscilla Oppenheimer http://www.priscilla.com _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE:
This is the most up-to-date list. http://www.isi.edu/in-notes/iana/assignments/port-numbers -Original Message- From: Tim O'Brien [mailto:[EMAIL PROTECTED]] Sent: Wednesday, March 07, 2001 10:24 AM To: Heidi white Cc: [EMAIL PROTECTED] Subject: Re: Have a look at RFC 1700 http://www.ietf.org/rfc/rfc1700.txt Tim - Original Message - From: "Heidi white" <[EMAIL PROTECTED]> To: <[EMAIL PROTECTED]> Sent: Wednesday, March 07, 2001 10:53 AM Anyone know of a site that would list all ports? Or a specific link on the cisco site? I've looked through pages upon pages with no luck. Heidi __ Do You Yahoo!? Get email at your own domain with Yahoo! Mail. http://personal.mail.yahoo.com/ _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Off Topic: Any interest in new Sniffer Certification?
It was a very interesting post. The poster probably should have used a private e-mail address so it wouldn't appear to be marketing spam, but it was still a relevant and important piece of news for the clueful people on the list. Priscilla At 06:00 AM 3/7/01, info wrote: >Eh, big deal. The original post's header indicated it was >Off topic. Plenty of threads on this list are about non Cisco >certifications. Protocol Analysis is a skill reserved for experts. >Some people on this list are CNX certified which is a certification >being superceded by the new cert program.it will be interesting >to see how they react to the new program. >Therefore the post has relevance to the list. Even if it came >from Sniffer's Marketing team, it wouldnt change that. > >.personally, I think protocol analysis is going to be extremely >important in Wireless environments as a security measure. > > > >Andy <[EMAIL PROTECTED]> wrote in message >[EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > > > > Gee, thanks for spamming a Cisco cert list with your marketing jizz > > propaganda crap press release. If you want to spam a cert list, start your > > own.. > > > > > > > > > > > > On Tue, 6 Mar 2001, info wrote: > > > > > http://biz.yahoo.com/prnews/010305/sfm057.html > > > > > > Was wondering if any of you had comments or interest > > > in the new Sniffer Cerficication just announced. See > > > link above or article below. > > > > > > > > > Sniffer Certification Program to Accredit IT Professionals With >First-Class > > > Troubleshooting and Protocol Analysis Skills for Managing Enterprise > > > Networks > > > > > > SANTA CLARA, Calif., March 5 /PRNewswire/ -- Sniffer Technologies, a > > > business unit of Network Associates (Nasdaq: NETA - news), today is >setting > > > a worldwide standard by introducing its IT certification program for >network > > > management called the Sniffer Certified Professional Program (SCPP). >While > > > meeting the industry's demand for network professionals with >vendor-specific > > > certification, the SCPP will identify IT professionals with first-class > > > Sniffer-specific troubleshooting and protocol analysis skills to protect >and > > > optimize networks across the enterprise. > > > > > > Developed through close collaboration with Sniffer University, the >Sniffer > > > Certified Professional Program will help employers identify >professionals > > > within their organizations who are equipped with the knowledge and >skills to > > > implement, operate and troubleshoot networks effectively. At the same >time, > > > SCPP will provide network professionals industry-recognized >accreditation as > > > experts in their field. > > > > > > ``The rapidly changing landscape of internetworking technologies is >creating > > > a shortage of qualified, trained professionals to manage >business-critical > > > networks,'' said Rich Baich, Director of Sniffer University's >Educational > > > Services, Sniffer Technologies. ``Companies recognize the critical role > > > network availability plays in the success of their business, and the >Sniffer > > > Certified Professional Program ensures they have trained professionals >to > > > ensure maximum uptime of their network.'' > > > > > > The Sniffer Certified Professional Program was developed using proven > > > psychometric processes to create quality tests targeted at network > > > professionals with in-depth knowledge of Sniffer technologies and > > > significant hands-on experience in real world environments. Each exam >tests > > > objectives and content that maps to Sniffer University's existing >curriculum > > > ensuring clear learning paths between product and technology emphasis >areas. > > > > > > The Sniffer Certified Professional program consists of three levels. The > > > first level, the Sniffer Certified Professional (SCP), includes a >60-minute > > > required core exam designed to test a candidate's knowledge in the use >of > > > Sniffer Technologies' network analyzer. The SCP credential is the basis >for > > > the entire program. > > > > > > The following levels, the Sniffer Certified Expert (SCE) and the Sniffer > > > Certified Master (SCM), evaluate a candidate's knowledge in their choice >of > > > a combination of other Sniffer products and technologies in various > > > networking environments. Additional SCPP exams validate skills for >products > > > such as DSS/RMON Pro or the new Wireless LAN product as well as >technology > > > emphasis areas: Ethernet, TCP/IP, Windows NT and 2000, WAN and ATM. > > > > > > According to industry research, Sniffer Technologies is the >industry-leader > > > in providing top-quality software solutions for monitoring, analyzing >and > > > managing network availability and performance. To date, Sniffer >Technologies > > > holds customer agreements with over 80 percent of Fortune 100 customers. > > > > > > The Sniffer Certified Professional Program exams will be available >worldwide > > > through Prometr
RE: Routing Exam
It is 690. I don't want to scare you but it is the hardest of the 4. I found that Switching 2.0 was the easiest. Good luck. -Original Message- From: Mike Bowlin [mailto:[EMAIL PROTECTED]] Sent: Wednesday, March 07, 2001 10:47 AM To: '[EMAIL PROTECTED]' Subject: Routing Exam Can anyone tell me the minimum passing grade for the Routing 640-503 exam? mike _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] * DISCLAIMER: The information contained in this e-mail may be confidential and is intended solely for the use of the named addressee. Access, copying or re-use of the e-mail or any information contained therein by any other person is not authorized. If you are not the intended recipient please notify us immediately by returning the e-mail to the originator. _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Passing score
Group, What is the passing score for 640-504 BCMSN? Thanks, Wayne _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Passing score
699 It was the easiest of the four. Good luck. Edward -Original Message- From: Roan, Wayne [mailto:[EMAIL PROTECTED]] Sent: Wednesday, March 07, 2001 12:28 PM To: '[EMAIL PROTECTED]' Subject: Passing score Group, What is the passing score for 640-504 BCMSN? Thanks, Wayne _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] * DISCLAIMER: The information contained in this e-mail may be confidential and is intended solely for the use of the named addressee. Access, copying or re-use of the e-mail or any information contained therein by any other person is not authorized. If you are not the intended recipient please notify us immediately by returning the e-mail to the originator. _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Passing score
699 Neil Schneider ""Roan, Wayne"" <[EMAIL PROTECTED]> wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > Group, > > What is the passing score for 640-504 BCMSN? > > Thanks, > > Wayne > > _ > FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] > _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Email Server through NAT
One options is if your NAT supports port forwarding. Any SMTP requests are forwarded to your internal e-mail server. Otherwise you will need another IP address. Keith Townsend MCSE, CNE, CCNA Townsend Consulting www.townsendconsulting.com ""Jon"" <[EMAIL PROTECTED]> wrote in message 985rti$ikl$[EMAIL PROTECTED]">news:985rti$ikl$[EMAIL PROTECTED]... > Stupid question: > 2 connections. S1/0 to frame-relay to branches. S1/1 to ISP. > S1/1 uses Nat with overload. If I have an email server within my internal > network, how can I get it to send/receive messages with ISP through the NAT > interface? Will I have to set up another outside address just for this > server? How will email messages come through the NAT to get to the server? > > Thanks > > > _ > FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] > _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Load Balancing Across Multiple PIX
You may need a combination of devices to get optimal load balancing, and the solution may very well depend on the protocols involved. One of the problems in our industry is to try to get a single box, with a single processor, to do everything well. It may be appropriate to treat the PIXen (informal plural I just invented, after the plural of DEC VAX being VAXen) as a cluster (boy, am I sounding VAX-ish). The actual load balancing would be done on Local Directors (or similar TCP session level load distributors) between the PIXen and the routers, potentially both on the inside and outside. If your management demands that everything be done on the PIX, you might quote Samuel Johnson to them: "the important thing about a dog walking on his hind legs is not how well he does it, but that he does it at all." >They won't load balance natively. The problem with getting a load balancer >before the PIX is that you either have it on the inside balancing outbound >traffic or outside balancing inbound traffic. The PIX needs a static route >for traffic going the other direction and you can't have multiple default >routes on a PIX. The interface without the load balancer would have to have >some kind of rigged BGP or something like that to distribute coming to the >pixes or you'll have routing issues. Remember that the finest granularity of which BGP is aware is a subnet, ignoring global prefix length issues. As soon as you start to deal with things on a server level, you are talking about things that operate at Layer 4 or 7, and that standard routing doesn't understand (ignoring the ill-defined term content routing, which simply injects layer 7 information into the routing system). > >I could be wrong...just my first thougth on the situationwithout COFFEE. > >I don't think there's any easy way to do this... > >- Original Message - >From: "Rossetti, Stan" <[EMAIL PROTECTED]> >To: <[EMAIL PROTECTED]> >Sent: Wednesday, March 07, 2001 10:01 AM >Subject: Load Balancing Across Multiple PIX > > >> Hello Everyone, >> >> Does anybody know if it is possible to load balance across multiple PIX >> firewalls? I have looked at numerous Cisco web pages, but never any >mention >> of load balancing. I have talked to a sales engineer and he has said that >> to get 1GB of throughput from a PIX firewall, you need to install 3 PIX >> firewalls and do load balancing across them. The max throughput from one >> PIX is 370MBps. Of course, I can't get the sales engineer to return my >call >> now. Doe anyone know if this is true? Do you have to have 3 PIX to do >load >> balancing? I would like to just do load balancing across 2 PIX firewalls. >> Is this possible? >> >> Thanks in advance. >> >> >> >> >> Thanks >> >> Stan Rossetti >> >> >> NASA - PriSMS >> Advanced Technology Group >> Voice: (256) 544-5031 >> Email: [EMAIL PROTECTED] >> Beeper: 544-1183 pin 0112 >> >> CCDA, CCNA, CCSE >> >> _ >> FAQ, list archives, and subscription info: >http://www.groupstudy.com/list/cisco.html >> Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] >> > >_ >FAQ, list archives, and subscription info: >http://www.groupstudy.com/list/cisco.html >Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Serial Interfaces
Hello everyone, What serial interfaces can get up to 4 Mbps? Is it just the HSSI or the regular serial Interfaces work at that rate? TIA, Raoni. _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Question on HSRP
Now, this is the kind of situation the various design certs should test on! &;-) Regarding your actual question, have you considered a Layer-8 solution? Depending on who you talk to, Layer 8 deals with money, politics, planning, etc. My thinking is that you should select a provider that gives you peace of mind regarding resiliency within the provider's network. Howard talked about scope. Worrying about routes failing within your provider's network should be outside your scope. Sure, you might have to pay extra for this "peace of mind." But can you get a service-level agreement that gives you this? Now, if your link to the provider dies, then you should be able to failover to the other provider. That much is within your scope. But worrying about routes within your providers' networks should theoretically be outside your scope. Priscilla At 09:10 AM 3/7/01, NetEng wrote: >Thanks to everyone for the help. My questions have been answered (for now). >What I'm trying to do is; I have multiple remote offices where I want to >create a VPN tunnel across one provider to the corporate office. In case >that the provider goes down, I need to have the second provider take over >(with a new tunnel of course). The fail-over with BGP is the easy part. The >other guy working on this thinks everything should be running in HSRP, and I >don't/didn't think HSRP would allow the stand-by router to become active >with the failure being somewhere in the providers network. I thought that I >could run them in parallel and let a dynamic routing protocol do the >deciding. However, I heard IPSEC breaks routing protocols. I also heard that >you can run them throught a GRE tunnel and not encrypt them. This is all >still theory until we get some equipment in to do the pilot. Has anyone >tried doing this? I'll try this out (track command) and thanks again for the >info. > >Collin > >P.S. Priscilla your book rocks. > >""NetEng"" <[EMAIL PROTECTED]> wrote in message >98423i$l2e$[EMAIL PROTECTED]">news:98423i$l2e$[EMAIL PROTECTED]... > > Does HSRP work at the interface level or is the entire router on > > acvtive/stand-by? In other words, if I have two routers working in HSRP >and > > a link goes down somewhere down the line, will the first router know to > > fail-over to the second router (with a good link)? I have one router > > connected to one ISP and a second router connected to a second ISP. Can > > these routers be run in HSRP or must they be running in parallel and let a > > dynamic routing protocol (BGP on the outside and let's say EIGRP on the > > inside) decide? TIA. > > > > > > _ > > FAQ, list archives, and subscription info: >http://www.groupstudy.com/list/cisco.html > > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] > > > > >_ >FAQ, list archives, and subscription info: >http://www.groupstudy.com/list/cisco.html >Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] Priscilla Oppenheimer http://www.priscilla.com _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Load Balancing Across Multiple PIX
I don't think you can load-balance on a PIX. Someone mentioned Cisco is working on Ver. 6.0 , I wonder if this might be a feature included. Nabil -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Allen May Sent: Wednesday, March 07, 2001 11:35 AM To: Rossetti, Stan; [EMAIL PROTECTED] Subject: Re: Load Balancing Across Multiple PIX They won't load balance natively. The problem with getting a load balancer before the PIX is that you either have it on the inside balancing outbound traffic or outside balancing inbound traffic. The PIX needs a static route for traffic going the other direction and you can't have multiple default routes on a PIX. The interface without the load balancer would have to have some kind of rigged BGP or something like that to distribute coming to the pixes or you'll have routing issues. I could be wrong...just my first thougth on the situationwithout COFFEE. I don't think there's any easy way to do this... - Original Message - From: "Rossetti, Stan" <[EMAIL PROTECTED]> To: <[EMAIL PROTECTED]> Sent: Wednesday, March 07, 2001 10:01 AM Subject: Load Balancing Across Multiple PIX > Hello Everyone, > > Does anybody know if it is possible to load balance across multiple PIX > firewalls? I have looked at numerous Cisco web pages, but never any mention > of load balancing. I have talked to a sales engineer and he has said that > to get 1GB of throughput from a PIX firewall, you need to install 3 PIX > firewalls and do load balancing across them. The max throughput from one > PIX is 370MBps. Of course, I can't get the sales engineer to return my call > now. Doe anyone know if this is true? Do you have to have 3 PIX to do load > balancing? I would like to just do load balancing across 2 PIX firewalls. > Is this possible? > > Thanks in advance. > > > > > Thanks > > Stan Rossetti > > > NASA - PriSMS > Advanced Technology Group > Voice: (256) 544-5031 > Email: [EMAIL PROTECTED] > Beeper: 544-1183 pin 0112 > > CCDA, CCNA, CCSE > > _ > FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] > _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Tacacs+ Trouble
J, First, you need to know what configuration file is being used. If you don't know, use "ps -ef | grep tac". (it might be ps -aux, I always get my solaris and linux mixed up) Once you know what the config file is, you need to understand the syntax. If the tacacs version your using is the standard Cisco freeware, there should be a text file called users_guide in the directory where the file was unzipped. This will tell you just about everything you need to know to interpret the config file. If you can't find the users_guide file, just download a current tacacs tar file from the Cisco ftp site at ftp-eng.cisco.com/pub/tacacs and you can find it there. HTH, Kent On 4 Mar 2001, at 21:20, joshandlaura wrote: > Hello everyone, > > I have a question regarding TACACS+. I have a server up and > running > already but I've been having trouble administering the box > (adding/deleting users, changing passwords, etc...it's a Dell PC > w/128m and Red Hat 7.0. It runs like a champ but I would like some > better understanding on how TACACS+ server is built up, because our > Network Engineer was "let go" I inherited the box. I have tried to > find some strait-forward answers/configs on the web but haven't seen > anything remotely directional. I can give more info if anyone would > like to take a shot at it... > > > J. Way > Network Technician, CCNA > > > _ > FAQ, list archives, and subscription info: > http://www.groupstudy.com/list/cisco.html Report misconduct and > Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Firewall & Vlan Problem update: Still a problem
Update: I know that the Firewall does not know that the 10.25.192.0 /19 exists. I tried to put in a route statement on the pix but it would not accept it. This was the command: "route inside 10.25.192.0 255.255.224.0 10.25.223.2 1" When I put in a route to the secondary Address of VLAN 1, it accepted it, but I still could not ping anything in the 10 network from the firewall. This was the command:"route inside 155.102.0.0 255.255.0.0 155.102.127.26 1" I am completely stumped! These were some of the previous comments I received and my original statement is below. Thank you for amy insight you ma have on this! Rob comment: "It sounds like your PIX doesn't know about 10.25.192.0/19 subnets. It knows about the directly-connected 155 subnet, but not any past the 6506. It seems like you'll need some routes on the PIX (but I'm not really familiar with those boxes). Your PIX is probably defaulting to its outside interface. You need a route for 10.25.192.0/19 to 155.102.127.26 (if that is the 6506) on the PIX." comment: "First, you have to understand that the PIX, out of the box, will not route any packets. So you have to add static route statements pointing at interfaces so packets get to their destination. Example: route inside 10.0.0.0 255.0.0.0 10.1.1.1 1 route outside 1.2.3.4 255.255.255.0 5.6.7.8 1 The PIX probably doesn't know how to get to the other VLAN. What are your route statements in the PIX?" Original: Overview. I am upgrading a network which has a 155.102.0.0 255.255.0.0 network. It is flat. I have implemented a new IP Scheme to be used in several VLAN's and am trying to migrate to it. IP range is 10.25.192.0 - 10.25.223.254 broken up into several /24's. There are 600 devices. Now to the nitty gritty. Network Description The 6506 has seven VLAN's configured as follows: VLAN 1 - 10.25.223.2 /24 Primary & 155.102.127.26 /16 secondary. VLAN 2 - 10.25.215.254 /24 VLAN 3 - 10.25.216.254 /24 to - VLAN 7 - 10.25.220.254 /24 There are 2 2600's which are routing to an ASP. Their addresses are router A - 10.25.223.3 & B - .4 with .5 as HSRP. There is a Pix 515 using address 155.102.18.191 Nating to the internet. The 2600's have an extended access list on them which directs Port 80 traffic from the 159.102.x.x network between the ASP WAN and the internet. They are also doing NAT from the ASP to the 155.102.x.x network. 1 class C NAT pool for each router. A- 10.25.213.0 /24, B - 10.25.214.0 /24. Problem I cannot ping the firewall interface from the MFSC or the 6506 or from any workstation that is using ANY of the VLAN default gateways. I have full connectivity to the asp wan. I have full connectivity to the other VLAN's. When devices use the 2600's HSRP address as default gateway, they have access to the firewall, the asp and the VLAN's. I have no access to the 2600's as they do not belong to us. I spoke with the Cisco TAC a few times. They gave up and wouldn't escalate it because they could not find our service contract that we purchased. They were anxious to close the case. The trick to this migration is to maintain connectivity to all devices as they are being migrated to the new IP scheme. I will be very grateful to any serious replies to this situation. Thanks for your expertise! Rob _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Load Balancing Across Multiple PIX
Stan, As pointed out by others, your best bet for load-balancing across multiple PIX boxes is an external load-balancer ala local-director, arrowpoint, foundry, etc. However, in regards to throughput, Cisco claims 1Gbps cleartext throughput on the new PIX 535. At that speed, its doubtful you need load-balancing for most environments. HTH, Kent On 7 Mar 2001, at 10:01, Rossetti, Stan wrote: > Hello Everyone, > > Does anybody know if it is possible to load balance across multiple > PIX firewalls? I have looked at numerous Cisco web pages, but never > any mention of load balancing. I have talked to a sales engineer and > he has said that to get 1GB of throughput from a PIX firewall, you > need to install 3 PIX firewalls and do load balancing across them. > The max throughput from one PIX is 370MBps. Of course, I can't get > the sales engineer to return my call now. Doe anyone know if this is > true? Do you have to have 3 PIX to do load balancing? I would like > to just do load balancing across 2 PIX firewalls. Is this possible? > > Thanks in advance. > > > > > Thanks > > Stan Rossetti > > > NASA - PriSMS > Advanced Technology Group > Voice: (256) 544-5031 > Email: [EMAIL PROTECTED] > Beeper: 544-1183 pin 0112 > > CCDA, CCNA, CCSE > > _ > FAQ, list archives, and subscription info: > http://www.groupstudy.com/list/cisco.html Report misconduct and > Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Frame-relay
AFAIK, this can be true if only one customer is using all the VCs in a frame network. If nobody else has VCs on that network, it would not be an issue unless, of course, somebody physically compromises the media (copper tapping). Is this accurate?? :> --- John Jarrett <[EMAIL PROTECTED]> wrote: > Could someone please clarify something for me about > Frame-relay? > > I had always understood that traffic over > frame-relay was unsecure and > needed to be encrypted if it was of a critical > nature. Is frame-relay > always a shared network? I had thought so but I > have recently had a > someone explain to me that they did not need to > encrypt the data because > they "owned" the cloud that the pvc ran through. He > said that it was a > point to point connection and therefore not over a > shared network. All > of our connections are setup using sub-interfaces > and point to point. I > still thought that it was over a shared network. > This did not make a > lot of sense to me. > > Any help would be appreciated. Any links to good > documentation would be > helpful as well. > > Thanks, > John > > [EMAIL PROTECTED] > > _ > FAQ, list archives, and subscription info: > http://www.groupstudy.com/list/cisco.html > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] = from The Big Lebowski... The Dude: You sure he won't mind? Bunny: Dieter doesn't care about anything. He's a nihilist. The Dude: Ohhh, that must be exhausting... __ Do You Yahoo!? Get email at your own domain with Yahoo! Mail. http://personal.mail.yahoo.com/ _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: TFTP Error
Thanks for the info. I am also getting the same error. This works fine but when you do "erase nvram" and "reload", it goes back to the same problem. How can you do this so that it works even after "reload"? Can this be done at the config register? TIA. Arthur >From: "Rod M Rodericks" <[EMAIL PROTECTED]> >Reply-To: "Rod M Rodericks" <[EMAIL PROTECTED]> >To: "Navin Parwal" <[EMAIL PROTECTED]> >CC: <[EMAIL PROTECTED]> >Subject: Re: TFTP Error >Date: Wed, 7 Mar 2001 13:13:07 - > >conf t >no service config > >That is all i can think of! > >good luck. > >rod > > _ Get your FREE download of MSN Explorer at http://explorer.msn.com _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Serial Interfaces
I believe that regular serial interfaces max out at 2.048 Mbps. >>> "Raoní" <[EMAIL PROTECTED]> 3/7/01 11:00:12 AM >>> Hello everyone, What serial interfaces can get up to 4 Mbps? Is it just the HSSI or the regular serial Interfaces work at that rate? TIA, Raoni. _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Load Balancing Across Multiple PIX
Be VERY careful of sales pitches... 1Gbps cleartext may well be only a few Mbps in a full encryption mode. Case in point, after much research and many sales pitches, my site settled on Alcatel TimeStep VPN's to replace older Motorola NES's. Alcatel's pitch was that their top of the line series could pass a consistent 70Mbps Encrypted. (With Fast Ethernet input and output, 100Mbps cleartext. As one of the few devices that were FIPS 140-1 certified at the time, (A requirement we made from the beginning), we went with them. When we started in house testing, we found that when configured in FIPS mode, 3DES, SHA1,(As required by us) they would only pass 6Mbps When we finally got to talk to someone that truly had a clue, we were informed that in order to meet FIPS certification, that all data must pass through a FIPS certified module on the mainboard. This module was the same one that was used on their lower speed units, and the throughput was 6Mbps! But we had failed to ask the proper questions so they had done nothing wrong. Needless to say, we are now stuck with equipment that will still improve our throughput from what it was, but it's no where near what we thought we were going to get. Pay very close attention, and do your homework. Brad Stanfield CCNA/CCDA Network/Integration Engineer [EMAIL PROTECTED] Government Micro Resources Network Operations Control Center Norfolk Naval Shipyard Bldg 33 NAVSEA NCOE 757-393-9526 1-800-626-6622 -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] Sent: Friday, February 16, 2001 3:57 PM To: '[EMAIL PROTECTED]'; Rossetti, Stan Subject: Re: Load Balancing Across Multiple PIX Stan, As pointed out by others, your best bet for load-balancing across multiple PIX boxes is an external load-balancer ala local-director, arrowpoint, foundry, etc. However, in regards to throughput, Cisco claims 1Gbps cleartext throughput on the new PIX 535. At that speed, its doubtful you need load-balancing for most environments. HTH, Kent On 7 Mar 2001, at 10:01, Rossetti, Stan wrote: > Hello Everyone, > > Does anybody know if it is possible to load balance across multiple > PIX firewalls? I have looked at numerous Cisco web pages, but never > any mention of load balancing. I have talked to a sales engineer and > he has said that to get 1GB of throughput from a PIX firewall, you > need to install 3 PIX firewalls and do load balancing across them. > The max throughput from one PIX is 370MBps. Of course, I can't get > the sales engineer to return my call now. Doe anyone know if this is > true? Do you have to have 3 PIX to do load balancing? I would like > to just do load balancing across 2 PIX firewalls. Is this possible? > > Thanks in advance. > > > > > Thanks > > Stan Rossetti > > > NASA - PriSMS > Advanced Technology Group > Voice: (256) 544-5031 > Email: [EMAIL PROTECTED] > Beeper: 544-1183 pin 0112 > > CCDA, CCNA, CCSE > > _ > FAQ, list archives, and subscription info: > http://www.groupstudy.com/list/cisco.html Report misconduct and > Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Gigabit ports on cat5500/5000 Switches
Hi folks, Just need to know how many maximum giga ports these switches can support. I know that the backplane capacity for cat5500 is 3.6 gbps. Does that mean I can only populate 3 giga ports on this switch. Thanks ANIDIL Netliant, Redwood City, 650 730 8200 _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: TFTP Error
Navin, This is the result of the autoinstall feature of the cisco IOS used to provide a configuration from the tftp server when no configuration is found in NVRAM, or the config register is set to 0xnn4n to ignore the contents of NVRAM. This does not occur automatically in all versions of the IOS. To eliminate autoinstall and the messages: Router# config t Router(config)# no service config Router(config)#end Hope this helps. Bill Burton -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Navin Parwal Sent: Wednesday, March 07, 2001 6:55 AM To: [EMAIL PROTECTED] Subject: TFTP Error Hi , I am getting a regular error on my 2610 cisco router which keeps on coming regularly in intervals in between , the error says : % Error opening tftp://255.255.255.255 /network-config(Timed-out) % Error opening tftp://255.255.255.255 /cisconet.cfg % Error opening tftp://255.255.255.255 /cisco2610-confg % Error opening tftp://255.255.255.255 /cisco261.cfg How do i disable or correct this error which is coming on my router regularly . thanks, Navin Parwal _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Serial Interfaces
Yes, Reg serial is 2.048Mbps, and the HSSI is good to 45Mbps with a T3 and higher with SONET. http://www.cisco.com/univercd/cc/td/doc/pcat/hssi__a1.htm Ken -Original Message- From: John Neiberger [mailto:[EMAIL PROTECTED]] Sent: Wednesday, March 07, 2001 2:17 PM To: [EMAIL PROTECTED] Cc: [EMAIL PROTECTED] Subject: Re: Serial Interfaces I believe that regular serial interfaces max out at 2.048 Mbps. >>> "Raoni" <[EMAIL PROTECTED]> 3/7/01 11:00:12 AM >>> Hello everyone, What serial interfaces can get up to 4 Mbps? Is it just the HSSI or the regular serial Interfaces work at that rate? TIA, Raoni. _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Confuse about Fast Switching and Layer 3 switching
Stuart, I do not think any packets could be switched without CPU. Fast switching needs CPU, it just does not need the CPU to call the ip input process. If the router needs to search the routing table, it will need ip input process, other than that, the CPU can use cache during one interrupt. As you mentioned there are different cache, it all depends on how the router creats them. Just my 2 cents. Thanks Jack ""Stuart Potts"" <[EMAIL PROTECTED]> wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > Hi, > > Brief: > > Fast switching is as follows, 1st packet is processed switched, 2 packet to > destination is fast switched. i.e. it never goes through the cpu. > > L3 switching , MLS, Multi layer switching, This is based on traffic flows, > ie we could swich on a certain tcp flow, or certain source/detination and > destination port. as defined by access lists. > > The three flow masks are as follows: > > destination-ipThe least-specific flow mask. The MLS-SE maintains one MLS > entry for each destination IP address. All flows to a given destination IP > address use this MLS entry. This mode is used if there are no access lists > configured on any of the MLS-RP interfaces. > > source-destination-ipThe MLS-SE maintains one MLS entry for each source and > destination IP address pair. All flows between a given source and > destination use this MLS entry regardless of the IP protocol ports. This > mode is used if there is a standard access list on any of the MLS-RP > interfaces. > > ip-flowThe most-specific flow mask. The MLS-SE creates and maintains a > separate MLS cache entry for every IP flow. An ip-flow entry includes the > source IP address, destination IP address, protocol, and protocol ports. > This mode is used if there is an extended access list on any of the MLS-RP > interfaces. > > > > http://www.cisco.com/univercd/cc/td/doc/product/lan/cat5000/rel_5_2/layer3/m > ls.htm#xtocid171391 > > http://www.cisco.com/warp/customer/473/55.html > > /Stuart. > > > - > > | | Stuart Potts > ||| ||| Customer Support Engineer > .|. .|. >.:|:.:|:. > c i s c o S y s t e m s Email: [EMAIL PROTECTED] > > "Empowering the Internet Generation" > - > > > > > > > > -Original Message- > From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of > Dove > Sent: Wednesday, March 07, 2001 7:02 AM > To: [EMAIL PROTECTED] > Subject: Confuse about Fast Switching and Layer 3 switching > > > Hi, > > I have some confuse about the "Fast Switching" and "Layer 3 switching". Both > of them are mentioned that route first packet and switch others. Could > anyone please help me? > > Regards. > dovelet > > > _ > FAQ, list archives, and subscription info: > http://www.groupstudy.com/list/cisco.html > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] > > _ > FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] > _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
New CCIE Tracks
I am anxiously waiting for the arrival of the CCIE Service Provider track. Has anyone heard anything at all about the status of this track? Cisco Web site says basically the same thing about it that they said three months ago. How about CCIE Design? Bruce Williams [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: DTE side clock speed
Show controllers -Original Message- From: YY [mailto:[EMAIL PROTECTED]] Sent: Wednesday, March 07, 2001 8:22 AM To: [EMAIL PROTECTED] Subject: DTE side clock speed For leased line, our router is on DTE side. How to check the clock speed we buy from the service provider ? thanks. Regards, YY _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Off Topic: Any interest in new Sniffer Certification?
Before we had all the great books that we had today, the SnifferU courses were a great source for information. A lot of the low level stuff that it is hard to find information on, like what is B8ZS, how does it work and how does it differ from D4AMI. I don't know if I'll go for the certification but I'm glad to see they are bringing it back. It is definatly worth a look. -Original Message- From: Priscilla Oppenheimer [mailto:[EMAIL PROTECTED]] Sent: Wednesday, March 07, 2001 9:10 AM To: info; [EMAIL PROTECTED] Subject: Re: Off Topic: Any interest in new Sniffer Certification? It was a very interesting post. The poster probably should have used a private e-mail address so it wouldn't appear to be marketing spam, but it was still a relevant and important piece of news for the clueful people on the list. Priscilla At 06:00 AM 3/7/01, info wrote: >Eh, big deal. The original post's header indicated it was >Off topic. Plenty of threads on this list are about non Cisco >certifications. Protocol Analysis is a skill reserved for experts. >Some people on this list are CNX certified which is a certification >being superceded by the new cert program.it will be interesting >to see how they react to the new program. >Therefore the post has relevance to the list. Even if it came >from Sniffer's Marketing team, it wouldnt change that. > >.personally, I think protocol analysis is going to be extremely >important in Wireless environments as a security measure. > > > >Andy <[EMAIL PROTECTED]> wrote in message >[EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > > > > Gee, thanks for spamming a Cisco cert list with your marketing jizz > > propaganda crap press release. If you want to spam a cert list, start your > > own.. > > > > > > > > > > > > On Tue, 6 Mar 2001, info wrote: > > > > > http://biz.yahoo.com/prnews/010305/sfm057.html > > > > > > Was wondering if any of you had comments or interest > > > in the new Sniffer Cerficication just announced. See > > > link above or article below. > > > > > > > > > Sniffer Certification Program to Accredit IT Professionals With >First-Class > > > Troubleshooting and Protocol Analysis Skills for Managing Enterprise > > > Networks > > > > > > SANTA CLARA, Calif., March 5 /PRNewswire/ -- Sniffer Technologies, a > > > business unit of Network Associates (Nasdaq: NETA - news), today is >setting > > > a worldwide standard by introducing its IT certification program for >network > > > management called the Sniffer Certified Professional Program (SCPP). >While > > > meeting the industry's demand for network professionals with >vendor-specific > > > certification, the SCPP will identify IT professionals with first-class > > > Sniffer-specific troubleshooting and protocol analysis skills to protect >and > > > optimize networks across the enterprise. > > > > > > Developed through close collaboration with Sniffer University, the >Sniffer > > > Certified Professional Program will help employers identify >professionals > > > within their organizations who are equipped with the knowledge and >skills to > > > implement, operate and troubleshoot networks effectively. At the same >time, > > > SCPP will provide network professionals industry-recognized >accreditation as > > > experts in their field. > > > > > > ``The rapidly changing landscape of internetworking technologies is >creating > > > a shortage of qualified, trained professionals to manage >business-critical > > > networks,'' said Rich Baich, Director of Sniffer University's >Educational > > > Services, Sniffer Technologies. ``Companies recognize the critical role > > > network availability plays in the success of their business, and the >Sniffer > > > Certified Professional Program ensures they have trained professionals >to > > > ensure maximum uptime of their network.'' > > > > > > The Sniffer Certified Professional Program was developed using proven > > > psychometric processes to create quality tests targeted at network > > > professionals with in-depth knowledge of Sniffer technologies and > > > significant hands-on experience in real world environments. Each exam >tests > > > objectives and content that maps to Sniffer University's existing >curriculum > > > ensuring clear learning paths between product and technology emphasis >areas. > > > > > > The Sniffer Certified Professional program consists of three levels. The > > > first level, the Sniffer Certified Professional (SCP), includes a >60-minute > > > required core exam designed to test a candidate's knowledge in the use >of > > > Sniffer Technologies' network analyzer. The SCP credential is the basis >for > > > the entire program. > > > > > > The following levels, the Sniffer Certified Expert (SCE) and the Sniffer > > > Certified Master (SCM), evaluate a candidate's knowledge in their choice >of > > > a combination of other Sniffer products and technologies in various > > > networking environments. Additional SCPP exams validate skills for >products
Backup or redundant Router
Hello everyone: I got 2620 serving 10 ISDN sites, I am wondering if How can I backup this router by 7505. So 7505 will comes online or connects ISDN sites when 2620 goes down. Thanks Inamul _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
1720 w/VPN module and VPN client
We are trying to setup a 1720 w/VPN module, Firewall feature set, and Cisco VPN client software in a "secure gateway tunnel" mode. The questions I have, is will we need the 3DES feature set also? And can we used a "preshared key" instead of certificates? _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Serial Interfaces
See: http://www.cisco.com/univercd/cc/td/doc/product/cable/cab_rout/cfig_nts/4159 m4tp/4159over.htm On the PA-4T+ Port Adapter you can go up to 8 Mbs on a single serial port. Read the documentation for a complete explanation. Note that you need a 7x00 series router to run this puppy. For the 36x0 series see: This is the NM-4T http://www.cisco.com/univercd/cc/td/doc/product/access/acs_mod/cis2600/net_m od2/conntser.htm#xtocid621711 The module provides a synchronous data rate of 8 MB/sec on port 0, 4 MB/sec each on port 0 and port 2, or 2 MB on all four ports simultaneously. > -Original Message- > From: Raoní [mailto:[EMAIL PROTECTED]] > Sent: Wednesday, March 07, 2001 12:00 PM > To: [EMAIL PROTECTED] > Subject: Serial Interfaces > > > Hello everyone, > > What serial interfaces can get up to 4 Mbps? > Is it just the HSSI or the regular serial Interfaces work at > that rate? > > TIA, Raoni. > > _ > FAQ, list archives, and subscription info: > http://www.groupstudy.com/list/cisco.html > Report misconduct > and Nondisclosure violations to [EMAIL PROTECTED] > _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
