difficult ccna question

[George]

if you have a class B network with a 10-bit subnet mask, how many subnet and
how many hosts do you have?

a. 1022 subnets, 62 hosts
b. 62 subnets, 8190 hosts
c. 8190 subnets, 254 hosts
d. 254 subnets , 126 hosts


_
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Refurbished/used cisco equipment

[bigmo]

I am thinking of buying some used cisco equipment (cisco 2514, catalyst
1924 & 2924XL,...). Anybody knows the address of a site where they offer
such hardware?

Regards.
MF

_
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

AGS to 2500 serial cable

[Albert Lu]

Does anyone know where I can get cheap serial cables for AGS to 2500
(preferably in Australia)? I need to get 8.

Thanks

Albert

_
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: difficult ccna question

[Larry Osei-Kwaku]

George,
you will find answers here

http://www.3com.com/nsc/501302s.html

cheers
Larry

--- George <[EMAIL PROTECTED]> wrote: > if you have
a class B network with a 10-bit subnet
> mask, how many subnet and
> how many hosts do you have?
> 
> a. 1022 subnets, 62 hosts
> b. 62 subnets, 8190 hosts
> c. 8190 subnets, 254 hosts
> d. 254 subnets , 126 hosts
> 
> 
> _
> FAQ, list archives, and subscription info:
> http://www.groupstudy.com/list/cisco.html
> Report misconduct and Nondisclosure violations to
> [EMAIL PROTECTED]
> 
> 
> 


=
"Wear a smile and have friends; wear a scowl and  have wrinkles."
  - George Eliot

"the greatest glory is not in never falling, but rising up each time we fall."

"The greatest man is not he who does not fall but he who falls and rises again to win"

__
Do You Yahoo!?
Get email at your own domain with Yahoo! Mail. 
http://personal.mail.yahoo.com/

_
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Problem with my BRI interface

[Javier Castillo Alcibar]

Hi all,

you know what these messages mean??

13w4d: ISDN BR3/1: Incoming call id =3D 0x1DDE
13w4d: ISDN BR3/1: received HOST_INCOMING_CALL call_id 0x1DDE
13w4d: ISDN BR3/1: Incoming call rejected due to screening.
13w4d: ISDN BR3/1: received HOST_DISCONNECT_ACK call_id 0x1DDE
13w4d: ISDN BR3/1: Error: Unexpected Disconnect_Ack - call id
0x1DDE937192228

A remote router can not connect to my router, and I see these
messages when I debug isdn events

Any ideas?


Javier Castillo Alc=EDbar - [EMAIL PROTECTED]
Alhambra Systems, S.A. - www.alhsys.com
c/Albasanz 14, 28037 Madrid
Tel.:  +34 91 787 23 00
Fax.: +34 91 787 23 01




_
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: characters echoed when I connect to Cisco 7206

[Arun]

Hi
the characters echoed might be due to the debug tools ..if ur seeing it
running across ur screen again and agian then it has something to do with
small servers tcp or udp ..
i think this will solve ur problem...but i am not sure
<[EMAIL PROTECTED]> wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
> Hi,
>
> I get the characters echoed when I connect to Cisco 7206 and don't get it
on
> others. Is this configurable or dose it lay on my Reflection program.
>
> Tarry
>
> --
> GMX - Die Kommunikationsplattform im Internet.
> http://www.gmx.de
>
> _
> FAQ, list archives, and subscription info:
http://www.groupstudy.com/list/cisco.html
> Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
>


_
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Wanted CAB-OCTAL-ASYNC !!

[Tey Haw Ching]

Hi ,
 I am looking for a  used CAB-OCTAL-ASYNC for sales in Malaysia ? I have
a 2511 router without any cable. Try to make ourselves by a SCSI-2 Cable
but not successful. The Pin is too small   If you have the cable,
pls contact me at [EMAIL PROTECTED] Tx.


_
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: Whew! Can you smell that VLan?

[Arun]

Hi
You can use the set span command to mirror the traffic of the desired ports
to a particular port

Arun
""The.rock"" <[EMAIL PROTECTED]> wrote in message
99c060$vl9$[EMAIL PROTECTED]">news:99c060$vl9$[EMAIL PROTECTED]...
> I believe that the 3500 Catalyst series will even let you monitor ports on
> other switches if you want. Check into it, but I think you can.
>
> ""NetEng"" <[EMAIL PROTECTED]> wrote in message
> 99bbkk$p8a$[EMAIL PROTECTED]">news:99bbkk$p8a$[EMAIL PROTECTED]...
> > We have had a pissing match lately and here's the details. One person
> states
> > that a VLan can not be sniffed because it is on a different subnet. The
> > other person says it can becuase it's physically on the same switch. I
> think
> > you can to a point. Here's what I mean; let's say we have a 3524 with
two
> > Vlans, VLAN1 (we'll call it InfoSys), and VLAN2 (called HR). If I have a
> > sniffer running on InfoSys, I should be able to sniff traffic on my
subnet
> > as well as traffic from HR to InfoSys (ie HR employee accessing mail
> server
> > on InfoSys), right? The only difference is that the source MAC address
> would
> > change. I should not be able to sniff traffic local to HR (ie an
employee
> > accessing accounting software) right? What's the rub?
> >
> >
> >
> >
> > _
> > FAQ, list archives, and subscription info:
> http://www.groupstudy.com/list/cisco.html
> > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
> >
>
>
> _
> FAQ, list archives, and subscription info:
http://www.groupstudy.com/list/cisco.html
> Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
>


_
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

RE: difficult CCNA question

[Andrew Larkins]

Class be is a 255.255.0.0
with 10 subnet bit ( bits over and above the default mask) is a
255.255.255.192

that is host portions of 62 ip addresses ( 64 available IPs less broadcast
and networks address)
Therefore answer is A

-Original Message-
From: Larry Osei-Kwaku [mailto:[EMAIL PROTECTED]]
Sent: 22 March 2001 11:56
To: George; [EMAIL PROTECTED]
Subject: Re: difficult ccna question


George,
you will find answers here

http://www.3com.com/nsc/501302s.html

cheers
Larry

--- George <[EMAIL PROTECTED]> wrote: > if you have
a class B network with a 10-bit subnet
> mask, how many subnet and
> how many hosts do you have?
> 
> a. 1022 subnets, 62 hosts
> b. 62 subnets, 8190 hosts
> c. 8190 subnets, 254 hosts
> d. 254 subnets , 126 hosts
> 
> 
> _
> FAQ, list archives, and subscription info:
> http://www.groupstudy.com/list/cisco.html
> Report misconduct and Nondisclosure violations to
> [EMAIL PROTECTED]
> 
> 
> 


=
"Wear a smile and have friends; wear a scowl and  have wrinkles."
  - George Eliot

"the greatest glory is not in never falling, but rising up each time we
fall."

"The greatest man is not he who does not fall but he who falls and rises
again to win"

__
Do You Yahoo!?
Get email at your own domain with Yahoo! Mail. 
http://personal.mail.yahoo.com/

_
FAQ, list archives, and subscription info:
http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

_
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Cat6k vlan configuration

[Karl Brenner]

Hi,

I've to upgrade a tokenring network with 1500 users to
a gigabit backbone ethernet network.

I worked my way trough the SAFE network design, but
this is not quite finanzable.

The network looks like this:

Core/distribution: two cat6500 one native IOS the
other hybride connected to a 7200 Wan router.

The access layer switches are cat6000 with inlinepower
for ip phones.
There're is a data VLAN and an aux VLAN per switch.
I have four of this switches in each building (there
are two buildings). The buildings are connected via
fibre.
I'm looking for some demo solutions.

Here is a demo config of the access layer switch,

Cat6k-acc-usr> (enable) set timezone PST -0
Cat6k-acc-usr> (enable) set summertime PST
Cat6k-acc-usr> (enable) set summertime recurring
Cat6k-acc-usr> (enable) set ntp server 10.10.0.12
Cat6k-acc-usr> (enable) set client enable

Cat6k-acc-usr> (enable) set cdp disable
Cat6k-acc-usr> (enable) set ip http server disable
Cat6k-acc-usr> (enable) set logging server 10.10.0.12
Cat6k-acc-usr> (enable) set logging timestamp enable

Cat6k-acc-usr> (enable) set port inlinepower 5/1-48
auto (module/ports)
Cat6k-acc-usr> (enable) set port speed 5/1-48 auto
Cat6k-acc-usr> (enable) set port host 5/1-48
Cat6k-acc-usr> (enable) set port inlinepower 6/1-48
auto (module/ports)
Cat6k-acc-usr> (enable) set port speed 6/1-48 auto
Cat6k-acc-usr> (enable) set port host 6/1-48
Cat6k-acc-usr> (enable) set vlan 10 floor1
10.1.10.0_data
Cat6k-acc-usr> (enable) set vlan 110 floor1
10.1.110.0_voice
Cat6k-acc-usr> (enable) set vlan 10 5/1-48
Cat6k-acc-usr> (enable) set vlan 10 6/1-48
Cat6k-acc-usr> (enable) set port auxiliaryvlan 5/1-48
110
Cat6k-acc-usr> (enable) set port auxiliaryvlan 6/1-48
110
Cat6k-acc-usr> (enable) set qos enable
Cat6k-acc-usr> (enable) set port qos 5/1-48 trust-ext
untrusted
Cat6k-acc-usr> (enable) set port qos 6/1-48 trust-ext
untrusted
Cat6k-acc-usr> (enable) set port qos 5/1-48 trust
trust-cos
Cat6k-acc-usr> (enable) set port qos 6/1-48 trust
trust-cos
Cat6k-acc-usr> (enable) set qos acl ip ACL_IP-PHONES
trust-cos ip any any
Cat6k-acc-usr> (enable) set port qos 5/1-48 vlan-based
Cat6k-acc-usr> (enable) set port qos 6/1-48 vlan-based
Cat6k-acc-usr> (enable) commit qos acl all
Cat6k-acc-usr> (enable) set qos acl map ACL_IP-PHONES
110
Cat6k-acc-usr> (enable) set qos map 2q2t tx 2 1 cos 3
Cat6k-acc-usr> (enable) set port qos 1/1 trust
trust-dscp

can you think of anything else?

thanks for your help.

Karl

=
Karl Brenner
112 Belfield Park
Stllorgen
Co. Dublin
Tel. ++353 (1) 260 12 98


Do You Yahoo!?
Get your free @yahoo.co.uk address at http://mail.yahoo.co.uk
or your free @yahoo.ie address at http://mail.yahoo.ie

_
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: 2504 At what price to buy???????

[Fred Danson]

Most of the 2504 routers on ebay for no less than $500-550. $425 would be a 
good deal.


>From: "Circusnuts" <[EMAIL PROTECTED]>
>Reply-To: "Circusnuts" <[EMAIL PROTECTED]>
>To: "RamG" <[EMAIL PROTECTED]>, "cisco GroupStudy" <[EMAIL PROTECTED]>
>Subject: Re: 2504 At what price to buy???
>Date: Wed, 21 Mar 2001 23:26:40 -0200
>
>Not killer- but reasonable if the routers clean
>
>Phil
>
>- Original Message -
>From: "RamG" <[EMAIL PROTECTED]>
>To: "cisco GroupStudy" <[EMAIL PROTECTED]>
>Sent: Wednesday, March 21, 2001 8:28 PM
>Subject: 2504 At what price to buy???
>
>
> >
> > Hello Gang,
> >
> > I am trying to negotiate the price for above router at USD.425 + 
>shipping.
> > Is the price reasonable. The router comes with 16R/8F and power cord. No
> > other accessories included. Your input would be appreciated.
> >
> > Thanks
> >
> >
> > RamG
> >
> > _
> > FAQ, list archives, and subscription info:
>http://www.groupstudy.com/list/cisco.html
> > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
>
>_
>FAQ, list archives, and subscription info: 
>http://www.groupstudy.com/list/cisco.html
>Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

_
Get your FREE download of MSN Explorer at http://explorer.msn.com

_
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Anyone tried setting up a Linux TFTP Server for Cisco?

[Brian Kimsey-Hickman]

I was wondering if anyone had tried to set up to Linux box as a TFTP server
for Cisco configurations and images.  I have tried in.tftp but don't seem to
be having a lot of luck.

Thanks,

Brian

_
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

RE: Wierd PIX issue - Long

[Gil Shulman]

Hi,

   Try disabling the fix option for the SMTP, as far as I remember there is
a bug regarding fixup protocols in the 5.3(1)  PIX version.

  Gil

-Original Message-
From: Eric McMasters [mailto:[EMAIL PROTECTED]]
Sent: ??? ? 22 ??? 2001 03:59
To: [EMAIL PROTECTED]
Subject: Wierd PIX issue - Long


I have PIX 515 w/5.3(1) IOS running and I ran into a problem with SMTP 
connectivity between two Exchange servers.  I have the FW opened up to allow

SMTP between Server 1 and Server 2 and everything seemed okay.  Now here is 
the freaky problem.  Server 1 receives inbound email just fine, but its 
outbound email to Server 2 will sit in the queue for a random amount of time

before being sent.  I hooked up a Sniffer between Server 1 and the FW and 
the majority of the traffic between the two servers showed "No Response".  
When I decoded the traffic it looked like Server 1 was sending a reset 
(RSET) to Server 2 and that is what was causing the problem.  After some 
research on CCO I found an incompatibility with older PIX IOS versions and 
the "Mailguard" feature.  It seems that the Mailguard feature didn't support

"ESMTP", which these Exchange servers are using.  I thought I had found the 
problem until I did a little bit more digging and found that this was fixed 
in IOS 5.2(2) and later with the new support of RFC 1869 for SMTP Service 
Extensions.  So this shouldn't be an issue.  The thing that is throwing me 
off is that A.) Inbound email to Server 1 has no problem.  B.) The server 
admin setup a test servers and both inbound and outbound traffic worked fine

through the PIX.  C.) Server 2 isn't having any problems getting through the

FW.  Now here is the kicker...D.) When I disabled "Mailguard" everything is 
said to be working normally!!

I might be paranoid, but I'm starting to think the Exchange guys made some 
changes on Server 1 and are trying to lead me to believe that it was my FW, 
but I'm having a hard time dealing with that.  The whole denial thing of 
nothing ever going wrong with Cisco :-|, and the fact that I wasn't involved

in the final stage of the troubleshooting.  I don't trust many people.  
Anywayif anyone has ever run into this problem or something similar I 
would like to hear your story.

TIA for all and any responses to my incoherent pleas for mercy!

Eric
_
Get your FREE download of MSN Explorer at http://explorer.msn.com

_
FAQ, list archives, and subscription info:
http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

_
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

AW: Anyone tried setting up a Linux TFTP Server for Cisco?

[Udo Konstantin]

Please can you more specify 
A unix system is more secure than a Wxx system.
So you need to configure your linux box for an nsecure connect.

Udo

-Ursprungliche Nachricht-
Von: Brian Kimsey-Hickman [mailto:[EMAIL PROTECTED]]
Gesendet: Donnerstag, 22. Marz 2001 14:18
An: [EMAIL PROTECTED]
Betreff: Anyone tried setting up a Linux TFTP Server for Cisco?


I was wondering if anyone had tried to set up to Linux box as a TFTP server
for Cisco configurations and images.  I have tried in.tftp but don't seem to
be having a lot of luck.

Thanks,

Brian

_
FAQ, list archives, and subscription info:
http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

_
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: CCNP Qualification Card

[Jianfeng Wang]

Quality of MCSE card is much better than CCXX.

Scott Ramos wrote:

> >Date: Wed, 21 Mar 2001 17:45:32 -
> >From: "Washington Rico" <[EMAIL PROTECTED]>
> >Subject: CCNP Qualification Card
> >
> >  I passed all my tests (Thanks to this group) and I am know a CCNP.  I
> >was wondering although after passing the test do you receive a
> >qualification card or something ??
> >_
> >Get Your Private, Free E-mail from MSN Hotmail at http://www.hotmail.com.
>
> My CCNP Certificate and wallet card took about a month to arrive.
>
> _
> FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
> Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

_
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: AW: Anyone tried setting up a Linux TFTP Server for Cisco?

[Drew Simonis]

Udo Konstantin wrote:
> 
> Please can you more specify
> A unix system is more secure than a Wxx system.
> So you need to configure your linux box for an nsecure connect.
> 

I know its off topic, but I hate such narrow minded comments...
If you have ever installed any *ix system, you'd be darn well
aware that the thing isw  i  d  e   open.  There is almost
no security there.  It has to be added and maintained.  Win32
systems are similar.  Very trusting and friendly until they are
properly taken care of.  Is *ix inherently more secure?  no way.

I challenge anyone to make a valid, non-ideological based 
comparison of a base Win32 and a base Liux install.  If Linux
were so damned secure in its current state, I woulnd't see IDS
logs filling up with folks scanning for obvious Linux vulns, now
would I?  Bottom dollar is, without proper administration, both
Win32 and *ix suck big time.  With proper care and feeding, they
can both become releatively secure.

_
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: AW: Anyone tried setting up a Linux TFTP Server for Cisco?

[Scott M. Trieste]

Drew,

Bravo!  Very well said.  Both *nix and Winbloze systems all have services
turned on by default, when it's installed.  IE- ftp, nis, isa, www, tftp,
terminal, etc.  These services all have corresponding ports that are
listening on the box.  If services aren't being used their should be no good
reason to leave them turned on.  Poorly configured/administered servers are
the reason for vulnerabilities, not because one is "just" better.

My $.02.

-Scott

"Drew Simonis" <[EMAIL PROTECTED]> wrote in message
[EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
> Udo Konstantin wrote:
> >
> > Please can you more specify
> > A unix system is more secure than a Wxx system.
> > So you need to configure your linux box for an nsecure connect.
> >
>
> I know its off topic, but I hate such narrow minded comments...
> If you have ever installed any *ix system, you'd be darn well
> aware that the thing isw  i  d  e   open.  There is almost
> no security there.  It has to be added and maintained.  Win32
> systems are similar.  Very trusting and friendly until they are
> properly taken care of.  Is *ix inherently more secure?  no way.
>
> I challenge anyone to make a valid, non-ideological based
> comparison of a base Win32 and a base Liux install.  If Linux
> were so damned secure in its current state, I woulnd't see IDS
> logs filling up with folks scanning for obvious Linux vulns, now
> would I?  Bottom dollar is, without proper administration, both
> Win32 and *ix suck big time.  With proper care and feeding, they
> can both become releatively secure.
>
> _
> FAQ, list archives, and subscription info:
http://www.groupstudy.com/list/cisco.html
> Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
>


_
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: using cisco cd without network , why cant i? - need more details

[Rik]

Beth, you can also call Cisco TAC for free help on this installation.

"beth shriver" <[EMAIL PROTECTED]> wrote in message
[EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
> put this where ? can someone give me details?
> Thanks
> Bethy
> --- "Rogell, Dennis" <[EMAIL PROTECTED]> wrote:
> >  You have to put the address 127.0.0.1
> >
> > -Original Message-
> > From: beth shriver
> > To: [EMAIL PROTECTED]
> > Sent: 03/17/2001 12:54 PM
> > Subject: using cisco cd without network  , why cant
> > i?
> >
> > I know this is a silly question and im  too
> > embarrassed to ask the guys at the office... buy
> > every
> > time i try to user my doc cd it gives me a blank
> > page
> > unless im connected to a network how do i look at
> > this
> > if im on a plane or something. I know this is simple
> > and pray no one from my office ever sees this! :)
> > can anyone discreetly help? hahaha
> > Thanks
> > Bethy
> >
> > __
> > Do You Yahoo!?
> > Get email at your own domain with Yahoo! Mail.
> > http://personal.mail.yahoo.com/
> >
> > _
> > FAQ, list archives, and subscription info:
> > http://www.groupstudy.com/list/cisco.html
> > Report misconduct and Nondisclosure violations to
> [EMAIL PROTECTED]
>
>
> __
> Do You Yahoo!?
> Get email at your own domain with Yahoo! Mail.
> http://personal.mail.yahoo.com/
>
> _
> FAQ, list archives, and subscription info:
http://www.groupstudy.com/list/cisco.html
> Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
>


_
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: Cat6k vlan configuration

[Rik]

I am concerned with your numbers.  1500 users on an IP (I assume) subnet is
way too many!  Remember, a VLAN will propagae all broadcasts.  Each and
every ARP, BOOTP, etc. will traverse the entire backbone.  I would suggest
you break this down into at least 3, preferably 5 VLANs to minimize the
affect that all of that broadcast traffic will have on your hosts.  Setting
up one of the switches to be a VTP server will greatly minimize your
administrative efforts with VLANs.

Why would you disable CDP?  This is a great resource for troubleshooting
Cisco equipment and produces no noticeable overhead.  I would turn it back
on.  What about trunking?  Are the 2 VLANs going to need to talk to each
other?  You can designate 2 separate switch ports/ router interfaces for
this and not use any trunking, or you could setup a single trunk port for
connecting to a single router interface and use less ports, which is
probably the more common way to do it.  Of course, if you have an RSM, so
much the better.

What about Spanning Tree?  I always purposely select the root bridge by
adjusting the bridge priority value.  Typically do this with the switch that
will handle the most traffic.  You can also setup a secondary root in case
the rpimary ever fails.  By doing this, your root bridges are not selected
randomly.  As a related topic, if you should happen to have any redundant
paths (which you hopefully do, especially between buildings), I suggest
putting them into a port group (Etherchannel, FastEtherchannel, etc.).  No
sense letting Spanning Tree keep one down when you can benefit from the
added bandwidth from the additional link(s).  If one fails, you still have
the redundancy.

Oh yeah, remember this: turn on portfast and turn off PAGP on ALL ports with
end hosts (servers, workstations, etc.) on them.  Otherwise, you will have
problems.  Trust me ;-}

Rik

"Karl Brenner" <[EMAIL PROTECTED]> wrote in message
[EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
> Hi,
>
> I've to upgrade a tokenring network with 1500 users to
> a gigabit backbone ethernet network.
>
> I worked my way trough the SAFE network design, but
> this is not quite finanzable.
>
> The network looks like this:
>
> Core/distribution: two cat6500 one native IOS the
> other hybride connected to a 7200 Wan router.
>
> The access layer switches are cat6000 with inlinepower
> for ip phones.
> There're is a data VLAN and an aux VLAN per switch.
> I have four of this switches in each building (there
> are two buildings). The buildings are connected via
> fibre.
> I'm looking for some demo solutions.
>
> Here is a demo config of the access layer switch,
>
> Cat6k-acc-usr> (enable) set timezone PST -0
> Cat6k-acc-usr> (enable) set summertime PST
> Cat6k-acc-usr> (enable) set summertime recurring
> Cat6k-acc-usr> (enable) set ntp server 10.10.0.12
> Cat6k-acc-usr> (enable) set client enable
>
> Cat6k-acc-usr> (enable) set cdp disable
> Cat6k-acc-usr> (enable) set ip http server disable
> Cat6k-acc-usr> (enable) set logging server 10.10.0.12
> Cat6k-acc-usr> (enable) set logging timestamp enable
>
> Cat6k-acc-usr> (enable) set port inlinepower 5/1-48
> auto (module/ports)
> Cat6k-acc-usr> (enable) set port speed 5/1-48 auto
> Cat6k-acc-usr> (enable) set port host 5/1-48
> Cat6k-acc-usr> (enable) set port inlinepower 6/1-48
> auto (module/ports)
> Cat6k-acc-usr> (enable) set port speed 6/1-48 auto
> Cat6k-acc-usr> (enable) set port host 6/1-48
> Cat6k-acc-usr> (enable) set vlan 10 floor1
> 10.1.10.0_data
> Cat6k-acc-usr> (enable) set vlan 110 floor1
> 10.1.110.0_voice
> Cat6k-acc-usr> (enable) set vlan 10 5/1-48
> Cat6k-acc-usr> (enable) set vlan 10 6/1-48
> Cat6k-acc-usr> (enable) set port auxiliaryvlan 5/1-48
> 110
> Cat6k-acc-usr> (enable) set port auxiliaryvlan 6/1-48
> 110
> Cat6k-acc-usr> (enable) set qos enable
> Cat6k-acc-usr> (enable) set port qos 5/1-48 trust-ext
> untrusted
> Cat6k-acc-usr> (enable) set port qos 6/1-48 trust-ext
> untrusted
> Cat6k-acc-usr> (enable) set port qos 5/1-48 trust
> trust-cos
> Cat6k-acc-usr> (enable) set port qos 6/1-48 trust
> trust-cos
> Cat6k-acc-usr> (enable) set qos acl ip ACL_IP-PHONES
> trust-cos ip any any
> Cat6k-acc-usr> (enable) set port qos 5/1-48 vlan-based
> Cat6k-acc-usr> (enable) set port qos 6/1-48 vlan-based
> Cat6k-acc-usr> (enable) commit qos acl all
> Cat6k-acc-usr> (enable) set qos acl map ACL_IP-PHONES
> 110
> Cat6k-acc-usr> (enable) set qos map 2q2t tx 2 1 cos 3
> Cat6k-acc-usr> (enable) set port qos 1/1 trust
> trust-dscp
>
> can you think of anything else?
>
> thanks for your help.
>
> Karl
>
> =
> Karl Brenner
> 112 Belfield Park
> Stllorgen
> Co. Dublin
> Tel. ++353 (1) 260 12 98
>
> 
> Do You Yahoo!?
> Get your free @yahoo.co.uk address at http://mail.yahoo.co.uk
> or your free @yahoo.ie address at http://mail.yahoo.ie
>
> _
> FAQ, list archives, and subscription info:
http://www.groupstudy.com/list/cisco.html
>

Strange connectivity problem

[Davis, Scott [ISE/RAC]]

I have 2 IBM AS/400s connected to 10/100 copper ports in a 6348rj45 blade in
a Cat6509. When the AS/400s are IPLed (rebooted) over the weekend, AS/400 1
comes back up and works fine but AS/400 2 comes up normally but the switch
seems to forget where it is. If you try to ping it or connect via tn5250 the
6509 forwards the traffic to the default gateway. However, if I open a DOS
prompt on a MS workstation and do a ping with the -r switch (path/route
information displayed by hop) it starts responding normally until we IPL the
next Sunday. The ports are configured the same and are on the same VLAN. The
NICs are configured the same on both AS/400. I am at a loss. Any ideas are
greatly appreciated.

Scott

_
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Free Training Materials for CCNA, CCDA, CCNP, CCDP and CCIE

[CiscoDiety]

http://www.gdd.net/cisco


Clayton Dukes
CCNA, CCDA, CCDP, CCNP


_
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: ccbootcamp lab8b bridging and BGP

[Ronald Ramcharran]

Actuall all IP routing is not working R1 and any other Router thats not
directly connected to R1.

Here are my Configs:

R5

ROUTER-5#wri t
Building configuration...

Current configuration:
!
version 12.0
service timestamps debug datetime localtime show-timezone
service timestamps log datetime localtime show-timezone
no service password-encryption
!
hostname ROUTER-5
!
memory-size iomem 10
ip subnet-zero
no ip domain-lookup
ipx routing 0005.0005.0005
frame-relay de-list 5 protocol ip list 105
isdn switch-type basic-ni
!
voice-port 1/0/0
!
voice-port 1/1/0
!
voice-port 1/0/1
!
voice-port 1/1/1
!
!
!
clock timezone EST -5
bridge irb
!
!
!
!
interface Loopback0
 ip address 137.20.81.5 255.255.240.0
 no ip directed-broadcast
!
interface Ethernet0/0
 ip address 137.20.144.5 255.255.240.0
 no ip redirects
 no ip directed-broadcast
 ipx network 144
 standby 100 timers 5 10
 standby 100 priority 105
 standby 100 preempt
 standby 100 authentication cisco
 standby 100 ip 137.20.144.1
!
interface Serial0/0
 no ip address
 no ip directed-broadcast
 encapsulation frame-relay
 no ip mroute-cache
 logging event subif-link-status
 logging event dlci-status-change
 no fair-queue
!
interface Serial0/0.1 multipoint
 ip address 137.20.129.5 255.255.255.224
 no ip directed-broadcast
 ip ospf network point-to-multipoint
 ipx network 129
 no ipx split-horizon eigrp 99
 frame-relay de-group 5 102
 frame-relay map ip 137.20.129.2 102 broadcast
 frame-relay map ip 137.20.129.3 103 broadcast
 frame-relay map ipx 129.0002.0002.0002 102 broadcast
 frame-relay map ipx 129.0003.0003.0003 103 broadcast
!
interface Serial0/0.2 point-to-point
 ip address 137.20.130.5 255.255.255.240
 no ip directed-broadcast
 ipx network 130
 frame-relay interface-dlci 104
!
interface BRI0/0
 ip address 137.20.161.5 255.255.240.0
 no ip directed-broadcast
 ip ospf demand-circuit
 dialer map ip 137.20.161.6 broadcast 8358661
 dialer-group 1
 ipx network 161
 isdn switch-type basic-ni
 isdn spid1 0835866201 8358662
 isdn spid2 0835866401 8358664
!
interface Ethernet0/1
 no ip address
 no ip directed-broadcast
 shutdown
!
interface Serial0/1
 ip address 137.20.33.5 255.255.255.0
 no ip directed-broadcast
 ip ospf message-digest-key 1 md5 cisco
 ip ospf cost 100
 priority-group 1
 bridge-group 2
!
interface BVI2
 no ip address
 no ip directed-broadcast
 ipx network 33A
!
router ospf 100
 area 1 virtual-link 137.20.65.23
 area 1 virtual-link 137.20.2.2
 area 2 authentication message-digest
 redistribute igrp 40 metric 100 metric-type 1 subnets route-map igrp-ospf
 network 137.20.33.5 0.0.0.0 area 2
 network 137.20.81.5 0.0.0.0 area 0
 network 137.20.129.0 0.0.0.31 area 1
 network 137.20.144.0 0.0.15.255 area 0
 network 137.20.161.5 0.0.0.0 area 0
!
router igrp 40
 redistribute ospf 100 metric 1 100 100 100 1500
 passive-interface Ethernet0/0
 passive-interface Serial0/0.1
 passive-interface BRI0/0
 passive-interface Serial0/1
 passive-interface Loopback0
 network 137.20.0.0
!
ip classless
ip default-network 200.200.200.0
ip route 137.20.226.0 255.255.255.0 137.20.177.6
ip route 137.20.227.0 255.255.255.0 137.20.177.6
!
access-list 8 permit 137.20.129.2
access-list 8 permit 137.20.20.2
access-list 55 permit 137.20.160.0 0.0.15.255
access-list 105 permit tcp any host 137.20.129.2 eq telnet
access-list 109 permit ip host 137.20.129.2 host 137.20.33.1
access-list 109 permit ip host 137.20.20.2 host 137.20.33.1
access-list 155 permit tcp host 137.20.34.7 host 137.20.144.6 eq telnet log
access-list 155 permit tcp host 137.20.34.7 host 137.20.161.6 eq telnet log
access-list 155 permit tcp host 137.20.34.7 host 137.20.228.8 eq telnet log
access-list 155 permit udp any any eq ntp
access-list 155 permit icmp any any
access-list 155 permit ospf any any
access-list 155 permit tcp host 137.20.33.1 any eq bgp
access-list 155 permit udp host 137.20.34.1 host 137.20.40.17 eq snmptrap
log
access-list 155 deny   ip any any log
queue-list 1 protocol ipx 1
queue-list 1 protocol ip 2
queue-list 1 default 3
queue-list 1 queue 1 byte-count 1000
queue-list 1 queue 2 byte-count 1000
queue-list 1 queue 3 byte-count 2000
dialer-list 1 protocol ip permit
route-map igrp-ospf deny 10
 match ip address 55
!
route-map igrp-ospf permit 20
!
!
!
!
ipx router eigrp 99
 network 144
 network 129
 network 130
!
!
ipx router rip
 no network 144
 no network 129
 no network 130
!
!
!
bridge 2 protocol ieee
 bridge 2 route ip
 bridge 2 route ipx
 no bridge 2 bridge ip


R1
ROUTER-1#wri t
Building configuration...

Current configuration:
!
! Last configuration change at 22:19:13 EST Wed Mar 21 2001
! NVRAM config last updated at 22:19:16 EST Wed Mar 21 2001
!
version 12.0
service timestamps debug datetime localtime show-timezone
service timestamps log datetime localtime show-timezone
no service password-encryption
!
hostname ROUTER-1
!
memory-size iomem 15
ip subnet-zero
no ip domain-lookup
!
!
!
clock timezone EST -5
!
!
!
!
interface Loopback0
 ip address 200.200.200.1 255.255.255.0
 no ip direct

Re: AW: Anyone tried setting up a Linux TFTP Server for Cisco?

[Brian]

sweeping broad incorrect generalizations, here we go..

Bri

- Original Message -
From: "Drew Simonis" <[EMAIL PROTECTED]>
To: <[EMAIL PROTECTED]>
Sent: Thursday, March 22, 2001 6:00 AM
Subject: Re: AW: Anyone tried setting up a Linux TFTP Server for Cisco?


> Udo Konstantin wrote:
> >
> > Please can you more specify
> > A unix system is more secure than a Wxx system.
> > So you need to configure your linux box for an nsecure connect.
> >
>
> I know its off topic, but I hate such narrow minded comments...
> If you have ever installed any *ix system, you'd be darn well
> aware that the thing isw  i  d  e   open.  There is almost
> no security there.  It has to be added and maintained.  Win32
> systems are similar.  Very trusting and friendly until they are
> properly taken care of.  Is *ix inherently more secure?  no way.
>
> I challenge anyone to make a valid, non-ideological based
> comparison of a base Win32 and a base Liux install.  If Linux
> were so damned secure in its current state, I woulnd't see IDS
> logs filling up with folks scanning for obvious Linux vulns, now
> would I?  Bottom dollar is, without proper administration, both
> Win32 and *ix suck big time.  With proper care and feeding, they
> can both become releatively secure.
>
> _
> FAQ, list archives, and subscription info:
http://www.groupstudy.com/list/cisco.html
> Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
>

_
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Looking for used cisco equipment

[Jim Newton]

Can anyone send me some online places to buy used equipment. I am looking
for higher end stuff like 3640 or 3660. I know that there is probably not
much out there, but need to look anyway.



_
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

RE: Looking for used cisco equipment

[Fermanis Tim G Contr/WANG USAFE CSS/SCOG]

ebay is a good starting point

-Original Message-
From: Jim Newton [mailto:[EMAIL PROTECTED]]
Sent: Thursday, March 22, 2001 4:04 PM
To: Group Study
Subject: Looking for used cisco equipment


Can anyone send me some online places to buy used equipment. I am looking
for higher end stuff like 3640 or 3660. I know that there is probably not
much out there, but need to look anyway.



_
FAQ, list archives, and subscription info:
http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

_
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: ccbootcamp lab8b bridging and BGP

[Ronald Ramcharran]

> Actuall all IP routing is not working R1 and any other Router thats not
> directly connected to R1.
>
> Here are my Configs:
>
> R5
>
> ROUTER-5#wri t
> Building configuration...
>
> Current configuration:
> !
> version 12.0
> service timestamps debug datetime localtime show-timezone
> service timestamps log datetime localtime show-timezone
> no service password-encryption
> !
> hostname ROUTER-5
> !
> memory-size iomem 10
> ip subnet-zero
> no ip domain-lookup
> ipx routing 0005.0005.0005
> frame-relay de-list 5 protocol ip list 105
> isdn switch-type basic-ni
> !
> voice-port 1/0/0
> !
> voice-port 1/1/0
> !
> voice-port 1/0/1
> !
> voice-port 1/1/1
> !
> !
> !
> clock timezone EST -5
> bridge irb
> !
> !
> !
> !
> interface Loopback0
>  ip address 137.20.81.5 255.255.240.0
>  no ip directed-broadcast
> !
> interface Ethernet0/0
>  ip address 137.20.144.5 255.255.240.0
>  no ip redirects
>  no ip directed-broadcast
>  ipx network 144
>  standby 100 timers 5 10
>  standby 100 priority 105
>  standby 100 preempt
>  standby 100 authentication cisco
>  standby 100 ip 137.20.144.1
> !
> interface Serial0/0
>  no ip address
>  no ip directed-broadcast
>  encapsulation frame-relay
>  no ip mroute-cache
>  logging event subif-link-status
>  logging event dlci-status-change
>  no fair-queue
> !
> interface Serial0/0.1 multipoint
>  ip address 137.20.129.5 255.255.255.224
>  no ip directed-broadcast
>  ip ospf network point-to-multipoint
>  ipx network 129
>  no ipx split-horizon eigrp 99
>  frame-relay de-group 5 102
>  frame-relay map ip 137.20.129.2 102 broadcast
>  frame-relay map ip 137.20.129.3 103 broadcast
>  frame-relay map ipx 129.0002.0002.0002 102 broadcast
>  frame-relay map ipx 129.0003.0003.0003 103 broadcast
> !
> interface Serial0/0.2 point-to-point
>  ip address 137.20.130.5 255.255.255.240
>  no ip directed-broadcast
>  ipx network 130
>  frame-relay interface-dlci 104
> !
> interface BRI0/0
>  ip address 137.20.161.5 255.255.240.0
>  no ip directed-broadcast
>  ip ospf demand-circuit
>  dialer map ip 137.20.161.6 broadcast 8358661
>  dialer-group 1
>  ipx network 161
>  isdn switch-type basic-ni
>  isdn spid1 0835866201 8358662
>  isdn spid2 0835866401 8358664
> !
> interface Ethernet0/1
>  no ip address
>  no ip directed-broadcast
>  shutdown
> !
> interface Serial0/1
>  ip address 137.20.33.5 255.255.255.0
>  no ip directed-broadcast
>  ip ospf message-digest-key 1 md5 cisco
>  ip ospf cost 100
>  priority-group 1
>  bridge-group 2
> !
> interface BVI2
>  no ip address
>  no ip directed-broadcast
>  ipx network 33A
> !
> router ospf 100
>  area 1 virtual-link 137.20.65.23
>  area 1 virtual-link 137.20.2.2
>  area 2 authentication message-digest
>  redistribute igrp 40 metric 100 metric-type 1 subnets route-map igrp-ospf
>  network 137.20.33.5 0.0.0.0 area 2
>  network 137.20.81.5 0.0.0.0 area 0
>  network 137.20.129.0 0.0.0.31 area 1
>  network 137.20.144.0 0.0.15.255 area 0
>  network 137.20.161.5 0.0.0.0 area 0
> !
> router igrp 40
>  redistribute ospf 100 metric 1 100 100 100 1500
>  passive-interface Ethernet0/0
>  passive-interface Serial0/0.1
>  passive-interface BRI0/0
>  passive-interface Serial0/1
>  passive-interface Loopback0
>  network 137.20.0.0
> !
> ip classless
> ip default-network 200.200.200.0
> ip route 137.20.226.0 255.255.255.0 137.20.177.6
> ip route 137.20.227.0 255.255.255.0 137.20.177.6
> !
> access-list 8 permit 137.20.129.2
> access-list 8 permit 137.20.20.2
> access-list 55 permit 137.20.160.0 0.0.15.255
> access-list 105 permit tcp any host 137.20.129.2 eq telnet
> access-list 109 permit ip host 137.20.129.2 host 137.20.33.1
> access-list 109 permit ip host 137.20.20.2 host 137.20.33.1
> access-list 155 permit tcp host 137.20.34.7 host 137.20.144.6 eq telnet
log
> access-list 155 permit tcp host 137.20.34.7 host 137.20.161.6 eq telnet
log
> access-list 155 permit tcp host 137.20.34.7 host 137.20.228.8 eq telnet
log
> access-list 155 permit udp any any eq ntp
> access-list 155 permit icmp any any
> access-list 155 permit ospf any any
> access-list 155 permit tcp host 137.20.33.1 any eq bgp
> access-list 155 permit udp host 137.20.34.1 host 137.20.40.17 eq snmptrap
> log
> access-list 155 deny   ip any any log
> queue-list 1 protocol ipx 1
> queue-list 1 protocol ip 2
> queue-list 1 default 3
> queue-list 1 queue 1 byte-count 1000
> queue-list 1 queue 2 byte-count 1000
> queue-list 1 queue 3 byte-count 2000
> dialer-list 1 protocol ip permit
> route-map igrp-ospf deny 10
>  match ip address 55
> !
> route-map igrp-ospf permit 20
> !
> !
> !
> !
> ipx router eigrp 99
>  network 144
>  network 129
>  network 130
> !
> !
> ipx router rip
>  no network 144
>  no network 129
>  no network 130
> !
> !
> !
> bridge 2 protocol ieee
>  bridge 2 route ip
>  bridge 2 route ipx
>  no bridge 2 bridge ip
>
>
> R1
> ROUTER-1#wri t
> Building configuration...
>
> Current configuration:
> !
> ! Last configuration change at 22:19:13 EST Wed Mar 21 2001
> ! NVRAM config last

Re: Anyone tried setting up a Linux TFTP Server for Cisco?

[W. Alan Robertson]

Rather than get into a Holy War about why Linux is better than Windows, I
figured I'd just answer your question.

in.tftpd doesn't constantly run like other processes, like a http server, as an
example.

in.tftpd is typically started as needed, and terminated when finished.  The
controlling process is inetd.  The configuration file for inetd can be found at
'/etc/inetd.conf'.

Edit that file...

Scroll down to a line that reads like this (the exact line varies by Linux
distribution):

#tftp   dgram   udp waitnobody  /usr/sbin/tcpd
/usr/sbin/in.tftpd /tftpboot

The # means that this line is commented out.  If you remove the hash mark,
leaving:

tftp   dgram   udp waitnobody  /usr/sbin/tcpd
/usr/sbin/in.tftpd /tftpboot

you will have enabled the tftp service for the box.  The "/tftpboot" reference
refers to the tftp service home directory, so make certain that it exists.  You
can also move the location if you'd like.  Just specify a different path, and
ensure that it exists.

Finally, you need to restart the inetd process, so that it will be aware of that
fact that you want it to manage tftp services.

Do a 'ps ax | grep inetd'.  That will something like:

yavin:/etc# ps ax | grep inet
  252 ?S  0:00 /usr/sbin/inetd
  369 ?SW 0:00 [rinetd]
 7945 pts/1S  0:00 grep inet
yavin:/etc#

To restart it, type this:  'kill -HUP [pid]'

In my example, 252 is the pid (Process ID).

I almost forgot...  One thing you also need to check is the directory pemissions
of /tftpboot...

Make sure that the directory is World Readable, and World Writable.  Tftp does
no user authentication, so you have to give global read/write access to it's
directory.  Also, before sending a file up to the tftp server, you will need to
'touch filename'.  Generally, the service will allow you to overwrite a file
that exists, but it will not allow you to create a wholly new file.  Silly,
isn't it?

Best of luck...

Alan

- Original Message -
From: "Brian Kimsey-Hickman" <[EMAIL PROTECTED]>
To: <[EMAIL PROTECTED]>
Sent: Thursday, March 22, 2001 8:17 AM
Subject: Anyone tried setting up a Linux TFTP Server for Cisco?


> I was wondering if anyone had tried to set up to Linux box as a TFTP server
> for Cisco configurations and images.  I have tried in.tftp but don't seem to
> be having a lot of luck.
>
> Thanks,
>
> Brian
>
> _
> FAQ, list archives, and subscription info:
http://www.groupstudy.com/list/cisco.html
> Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

_
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: CCNP Qualification Card

[Kevin Wigle]

To the first poster, yes - be patient.  If you completed your NDA on the
Galton web site (probably since you must also be a CCNA - right??) you will
receive a wallet card and a certificate.

For the second poster, I agree that the Cisco wallet cards are none too
fancy. (which wasn't even an issue in the first post)

But then - which set of initials look better on a resume??

Kevin Wigle

- Original Message -
From: "Jianfeng Wang" <[EMAIL PROTECTED]>
To: "Scott Ramos" <[EMAIL PROTECTED]>
Cc: <[EMAIL PROTECTED]>
Sent: Thursday, March 22, 2001 8:43 AM
Subject: Re: CCNP Qualification Card


> Quality of MCSE card is much better than CCXX.
>
> Scott Ramos wrote:
>
> > >Date: Wed, 21 Mar 2001 17:45:32 -
> > >From: "Washington Rico" <[EMAIL PROTECTED]>
> > >Subject: CCNP Qualification Card
> > >
> > >  I passed all my tests (Thanks to this group) and I am know a CCNP.  I
> > >was wondering although after passing the test do you receive a
> > >qualification card or something ??


_
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

RE: difficult ccna question

[Joshua Beining]

Just remember the following fomulas:

(2^# of masked bits) - 2 = Total # of subnets
(2^# of unmasked bits - 2 = Total # of hosts

Based on this the correct answer is A.

-Original Message-
From: George [mailto:[EMAIL PROTECTED]]
Sent: Thursday, March 22, 2001 12:16 AM
To: [EMAIL PROTECTED]
Subject: difficult ccna question


if you have a class B network with a 10-bit subnet mask, how many subnet and
how many hosts do you have?

a. 1022 subnets, 62 hosts
b. 62 subnets, 8190 hosts
c. 8190 subnets, 254 hosts
d. 254 subnets , 126 hosts


_
FAQ, list archives, and subscription info:
http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

_
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: What is DHCP+ ?

[Allen May]

All I"m finding that could possibly be it are DHCP IPv6 pages.  Maybe that's
what the new DHCP for IPv6 is??

- Original Message -
From: "jap_e" <[EMAIL PROTECTED]>
To: <[EMAIL PROTECTED]>
Sent: Wednesday, March 21, 2001 8:05 PM
Subject: Re: What is DHCP+ ?


> The term "DHCP+" was thrown at me from a client who insist that it's a =
> new version of DHCP which has something to do with authentication =
> capabilities. =20
>
> It's supposed to be some crappy claim from a certain vendor, but i don't =
> know which.
>
> I tried seaching on the web for hours on this topic, but to no avail.  =
> Hmm...
>
> Cheers, Eve
>
>   - Original Message -=20
>   From: jap_e=20
>   To: [EMAIL PROTECTED]=20
>   Sent: Wednesday, March 21, 2001 10:56 AM
>   Subject: OT: What is DHCP+ ?
>
>
>   Hello,
>
>   Does anyone know what DHCP+ is?=3D20
>   Is it another improvement on the existing DHCP protocol or something =
> =3D
>   else altogether?
>   Another "invention" by Microsoft?
>   Any links that can point me to the right direction?
>
>   Thanks for the help!
>
>   Cheers, Eve
>
>   _
>   FAQ, list archives, and subscription info: =
> http://www.groupstudy.com/list/cisco.html
>   Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
>
>
> _
> FAQ, list archives, and subscription info:
http://www.groupstudy.com/list/cisco.html
> Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
>

_
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: RJ45 ethernet to cisco Serial conversion?

[Neil Schneider]

Priscilla,

I usually look forward to your posts,  but I think you are way off base with
this response.  Pointing to the cisco page describing different technologies
does absolutely nothing to answer my original question.  I also relize that
a converter/transiever such as this would have limited use in a real world
situation, but that certainly does not mean it doesnt exist.
Obvoiusly we can move data between ethernet and serial, that is what is
being done in the router itself, so your train/bus senario is meaningless.
What I was looking for was an external device that can do this without
resorting to using another router such as -->>

ethernet -->routerA rj45 routerA serial --->routerB serial routerB
rj45--->ethernet

I want to do:

ehternet ---> external converter >routerA serial---routerA
rj45 --->ethernet

Neil Schneider




Priscilla Oppenheimer <[EMAIL PROTECTED]> wrote in message
[EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
> The question doesn't even make sense. It would be like asking "what could
I
> use to convert a train station to a bus station?"
>
> Read the document.
>
> http://www.cisco.com/univercd/cc/td/doc/cisintwk/ito_doc/index.htm
>
> Priscilla
>
> At 10:19 AM 3/22/01, you wrote:
> >whoever comes up with the converter will be rich...
> >
> >-Original Message-
> >From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of
> >Priscilla Oppenheimer
> >Sent: Thursday, March 22, 2001 9:29 AM
> >To: [EMAIL PROTECTED]
> >Subject: RE: RJ45 ethernet to cisco Serial conversion?
> >
> >
> >At 12:27 AM 3/22/01, Lim Jit Cheng wrote:
> > >it's not all gone..   there is such converter
> > >
> > >http://www.lanode.com/tier2/et10.htm
> >
> >That's not a converter. It's a bridge.
> >
> >Here's a good document to help you and the person who asked the original
> >question:
> >
> >http://www.cisco.com/univercd/cc/td/doc/cisintwk/ito_doc/index.htm
> >
> >Priscilla
> >
> >
> >
> >
> > >i wonder how much is the price.. i am interested too.
> > >
> > >
> > >-Original Message-
> > >From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of
> > >John Neiberger
> > >Sent: Wednesday, March 21, 2001 11:51 PM
> > >To: [EMAIL PROTECTED]
> > >Cc: [EMAIL PROTECTED]
> > >Subject: Re: RJ45 ethernet to cisco Serial conversion?
> > >
> > >
> > >There is no way to connect an ethernet interface to a serial interface,
> > >they are entirely different technologies.  Your only option would be to
> > >add another router to do the media conversion.
> > >
> > >Or, you could buy a hub/switch and use that to connect the dsl router,
> > >the lan, and your 2501.  However, that's not the greatest solution and
> > >it doesn't really accomplish your goal.
> > >
> > >HTH,
> > >John
> > >
> > > >>> "Neil Schneider" <[EMAIL PROTECTED]> 3/21/01 8:28:06
> > >AM >>>
> > >I want to be able to plug my DSL modem into the serial port on my
> > >2501,
> > >leaving the ethernet port available for my lan.  Does anyone know of a
> > >converter/transiever that will allow me to do this?
> > >Thanks in advance.
> > >
> > >Neil
> > >
> > >
> > >_
> > >FAQ, list archives, and subscription info:
> > >http://www.groupstudy.com/list/cisco.html
> > >Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
> > >
> > >
> > >
> > >_
> > >FAQ, list archives, and subscription info:
> > >http://www.groupstudy.com/list/cisco.html
> > >Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
> > >
> > >_
> > >FAQ, list archives, and subscription info:
> > >http://www.groupstudy.com/list/cisco.html
> > >Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
> >
> >
> >
> >
> >Priscilla Oppenheimer
> >http://www.priscilla.com
> >
> >_
> >FAQ, list archives, and subscription info:
> >http://www.groupstudy.com/list/cisco.html
> >Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
>
>
> 
>
> Priscilla Oppenheimer
> http://www.priscilla.com
>
> _
> FAQ, list archives, and subscription info:
http://www.groupstudy.com/list/cisco.html
> Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
>


_
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: way off-topic: has anyone seen this w/ios w/ids?

[Allen May]

Wouldn't a properly configured firewall block the IP address at the first
sign of an attack & prevent this?  I'm wondering if it's been tested this
way or if it was just against a wide open IDS box.

- Original Message -
From: "Henry Rollins" <[EMAIL PROTECTED]>
To: <[EMAIL PROTECTED]>
Sent: Thursday, March 22, 2001 2:25 AM
Subject: way off-topic: has anyone seen this w/ios w/ids?


> http://www.msnbc.com/news/544860.asp?0nm=T21D
>
> --
> FREE ANONYMOUS EMAIL!  Sign up now.
> http://www.subdimension.com/freemail
>
> _
> FAQ, list archives, and subscription info:
http://www.groupstudy.com/list/cisco.html
> Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
>

_
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

RE: CCNP Qualification Card

[Ole Drews Jensen]

I have a Randalls shopping card that looks better than my MCSE and CCNA card
together :-)

It looks best with both of the on the resume, but it also depends on what
you're applying for. A company that are looking for a person to administer
their Windows NT servers and workstations would probably prefer the MCSE (or
even MCP) before the CCNP.

Just my two cents,

Ole


 Ole Drews Jensen
 Systems Network Manager
 CCNA, MCSE, MCP+I
 RWR Enterprises, Inc.
 [EMAIL PROTECTED]
 http://www.oledrews.com/ccnp

 NEED A JOB ???
 http://www.oledrews.com/job




-Original Message-
From: Kevin Wigle [mailto:[EMAIL PROTECTED]]
Sent: Thursday, March 22, 2001 9:30 AM
To: Jianfeng Wang; Scott Ramos
Cc: [EMAIL PROTECTED]
Subject: Re: CCNP Qualification Card


To the first poster, yes - be patient.  If you completed your NDA on the
Galton web site (probably since you must also be a CCNA - right??) you will
receive a wallet card and a certificate.

For the second poster, I agree that the Cisco wallet cards are none too
fancy. (which wasn't even an issue in the first post)

But then - which set of initials look better on a resume??

Kevin Wigle

- Original Message -
From: "Jianfeng Wang" <[EMAIL PROTECTED]>
To: "Scott Ramos" <[EMAIL PROTECTED]>
Cc: <[EMAIL PROTECTED]>
Sent: Thursday, March 22, 2001 8:43 AM
Subject: Re: CCNP Qualification Card


> Quality of MCSE card is much better than CCXX.
>
> Scott Ramos wrote:
>
> > >Date: Wed, 21 Mar 2001 17:45:32 -
> > >From: "Washington Rico" <[EMAIL PROTECTED]>
> > >Subject: CCNP Qualification Card
> > >
> > >  I passed all my tests (Thanks to this group) and I am know a CCNP.  I
> > >was wondering although after passing the test do you receive a
> > >qualification card or something ??


_
FAQ, list archives, and subscription info:
http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

_
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: way off-topic: has anyone seen this w/ios w/ids?

[Mask Of Zorro]

Sure, it will work... There are many ways to crush an IDS, Cisco's or 
anybody else's. You don't need stick to do it (though it would make it easy 
for kidz). Halfway decent C programmers or PERL writers can do it without 
much thought.

Z

>From: Henry Rollins <[EMAIL PROTECTED]>
>Reply-To: Henry Rollins <[EMAIL PROTECTED]>
>To: [EMAIL PROTECTED]
>Subject: way off-topic:  has anyone seen this w/ios w/ids?
>Date: Thu, 22 Mar 2001 03:25:51 -0500
>
>http://www.msnbc.com/news/544860.asp?0nm=T21D
>
>--
>FREE ANONYMOUS EMAIL!  Sign up now.
>http://www.subdimension.com/freemail
>
>_
>FAQ, list archives, and subscription info: 
>http://www.groupstudy.com/list/cisco.html
>Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

_
Get your FREE download of MSN Explorer at http://explorer.msn.com

_
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: CCNP Qualification Card

[Mask Of Zorro]

Neither one gives you a secret decoder ring! Maybe the new Sniffer certs 
will (seems appropriate, doesn't it???)

Z

>From: "Kevin Wigle" <[EMAIL PROTECTED]>
>Reply-To: "Kevin Wigle" <[EMAIL PROTECTED]>
>To: "Jianfeng Wang" <[EMAIL PROTECTED]>,"Scott Ramos" 
><[EMAIL PROTECTED]>
>CC: <[EMAIL PROTECTED]>
>Subject: Re: CCNP Qualification Card
>Date: Thu, 22 Mar 2001 10:29:32 -0500
>
>To the first poster, yes - be patient.  If you completed your NDA on the
>Galton web site (probably since you must also be a CCNA - right??) you will
>receive a wallet card and a certificate.
>
>For the second poster, I agree that the Cisco wallet cards are none too
>fancy. (which wasn't even an issue in the first post)
>
>But then - which set of initials look better on a resume??
>
>Kevin Wigle
>
>- Original Message -
>From: "Jianfeng Wang" <[EMAIL PROTECTED]>
>To: "Scott Ramos" <[EMAIL PROTECTED]>
>Cc: <[EMAIL PROTECTED]>
>Sent: Thursday, March 22, 2001 8:43 AM
>Subject: Re: CCNP Qualification Card
>
>
> > Quality of MCSE card is much better than CCXX.
> >
> > Scott Ramos wrote:
> >
> > > >Date: Wed, 21 Mar 2001 17:45:32 -
> > > >From: "Washington Rico" <[EMAIL PROTECTED]>
> > > >Subject: CCNP Qualification Card
> > > >
> > > >  I passed all my tests (Thanks to this group) and I am know a CCNP.  
>I
> > > >was wondering although after passing the test do you receive a
> > > >qualification card or something ??
>
>
>_
>FAQ, list archives, and subscription info: 
>http://www.groupstudy.com/list/cisco.html
>Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

_
Get your FREE download of MSN Explorer at http://explorer.msn.com

_
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

osfp master/slave synchronization

[Anand Ghody]

I was wonder if someone could clarify this for me, I am a little
confused.

My understanding is that the Master controls the synchronization and
that the slave only sends DD packets in response to DD packets from the
master w/ the sequence number the master set in the dd packet.

It seems like R1(master) says "I got A", "did you get A"
R2(slave)  responds "yeah I got A"

When does R2  tell R1 "I also got B",  I am assuming it is during the
his DD response of  "yeah I got A".
How does R1 react in this master/slave scenario?  I am also assuming
that he is making an LSA request to the slave during the DD exchange.

I have also assumed that neighbor with the lowest Router ID becomes the
slave, is a correct assumption.

In an OSPF network where you have DR (and may be a BDR)  what happens if
neither of these is chosen to be the Master.

If all of these assumptions are correct, in the above scenario can you
ever have a situation where R1 says "that all folks", while R2 still has
something to say. (the master is not sending any more DD packets for the
slave to respond to.)
Would this lead to false neighbor state of full?



_
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

RE: Anyone tried setting up a Linux TFTP Server for Cisco?

[Elijah Savage]
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RE: 2514, DHCP and cable modem

[Medley, Tim]

Juan,

you do not need a cco login to search cisco's site. A cco login is needed to
open a tac case, and download ios images.

Here are a couple of links that will provide more information.


IOS DHCP
http://www.cisco.com/univercd/cc/td/doc/product/software/ios120/120newft/120
t/120t1/easyip2.htm

NAT
http://www.cisco.com/warp/public/cc/pd/iosw/ioft/iofwft/prodlit/iosnt_qp.htm
http://www.cisco.com/warp/public/cc/pd/iosw/ioft/ionetn/prodlit/1195_pp.htm

NAT enhcaements to 12.1(x) T
http://www.cisco.com/univercd/cc/td/doc/product/software/ios121/121newft/121
t/121t5/dtnipcm.htm
http://www.cisco.com/univercd/cc/td/doc/product/software/ios121/121newft/121
t/121t5/dtncsm.htm


I hear and I forget
I see and I believe
I do and I understand
 -Confucius


Tim Medley - CCNA, CCDA
VoIP Engineer
704-943-3615 - Phone
704-525-9119 - Fax
877-6-iReady - Helpdesk



-Original Message-
From: Juan Valdez [mailto:[EMAIL PROTECTED]]
Sent: Thursday, March 22, 2001 4:02 AM
To: ""Medley; Tim"
Subject: Re: 2514, DHCP and cable modem


Tim,

I don't have a CCO login.  Could you send a sample config (without pswds or
real IPs)?  This might be easier.  I am interested in how to do DHCP NAT
overload, access list rules on the DHCP IP, etc.

Thanks,

--juan

- Original Message -
From: ""Medley, Tim"" <[EMAIL PROTECTED]>
Newsgroups: groupstudy.cisco
Sent: Thursday, March 22, 2001 2:06 PM
Subject: RE: 2514, DHCP and cable modem


> Juan,
>
> This is pretty easy to implement.
>
> I am running a 2621 w/ 12.1.(5)T at home. The 2621 is getting an IP
address
> from roaddrunner via DHCP and runs IOS DHCP Server and NAT overload. I
also
> have some static NAT translations added in and I am also using some of the
> new NAT features added in 12.1(2) where H323 and Skinny Station Protocol
can
> be tunneled through NAT.
>
> Check out the 12.1(2) or 12.1(5)T release notes or do a cco search. Holler
> if you get stuck.
>
> tim
>
> I hear and I forget
> I see and I believe
> I do and I understand
>  -Confucius
>
>
> Tim Medley - CCNA, CCDA
> VoIP Engineer
> 704-943-3615 - Phone
> 704-525-9119 - Fax
> 877-6-iReady - Helpdesk
>
>
>
> -Original Message-
> From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of
> Juan Valdez
> Sent: Wednesday, March 21, 2001 10:12 AM
> To: [EMAIL PROTECTED]
> Subject: 2514, DHCP and cable modem
>
>
> Hello,
>
> A quick check of the archive didn't show this one, hope I'm not the first
> though...
>
> I have a 2514 which I'd like to connect to my cable modem and get an IP
over
> the ethernet interface through DHCP.
> IOS is 12.1(2)T.
>
> Internet  --CATV-->  cable_modem   --10bT-->  2514_E0  ///
>  2514_E1 --10bT--> home_pc
>
> Then of course do NAT overload from DHCP address to E1 with RFC-1918
address
> for my internal network.  Am I asking too much of EasyIP, or is this
> do-able?
>
> Thanks in advance.
>
> --john
>
>
> _
> FAQ, list archives, and subscription info:
> http://www.groupstudy.com/list/cisco.html
> Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
>
> _
> FAQ, list archives, and subscription info:
http://www.groupstudy.com/list/cisco.html
> Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
>

_
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: RJ45 ethernet to cisco Serial conversion?

[John Neiberger]

There are two separate issues that need to be dealt with to accomplish
your goal.  First you need to deal with the physical issue, which in a
way is what that bridging device does for you.  It allows you to place
ethernet data onto a WAN link, but it also requires the same device to
be on the other end of the link to convert this serialized-ethernet to
standard ethernet.  This is just bridging, not true media conversion.

There are yet other physical issues like clocking and encoding.  A
synchronous serial link places bits on the wire in a way that would be
completely incomprehensible to an ethernet speaker and vice versa.  To
handle the clocking issue you certainly would need a device that can
provide clocking for the serial port, which that bridging unit does.

The second issue is the datalink encapsulation.  In ethernet, you're
using Ethernet v2 or 802.3 frames as your encapsulation, whereas the
serial link is using either HDLC, PPP, or frame relay.  Again, these are
so much different than ethernet that it requires some intelligence to
convert between them.

This is why a router is necessary and no simple converter can handle
it.  A two-port router would be needed to successfully accomplish this
task.  I think that is why Priscilla pointed you to that link.  Instead
of answering the question outright, she pointed you to material
that--upon digestion--would lead to the answer.

HTH,
John

>>> "Neil Schneider" <[EMAIL PROTECTED]> 3/22/01 9:06:57
AM >>>
Priscilla,

I usually look forward to your posts,  but I think you are way off base
with
this response.  Pointing to the cisco page describing different
technologies
does absolutely nothing to answer my original question.  I also relize
that
a converter/transiever such as this would have limited use in a real
world
situation, but that certainly does not mean it doesnt exist.
Obvoiusly we can move data between ethernet and serial, that is what
is
being done in the router itself, so your train/bus senario is
meaningless.
What I was looking for was an external device that can do this without
resorting to using another router such as -->>

ethernet -->routerA rj45 routerA serial --->routerB serial
routerB
rj45--->ethernet

I want to do:

ehternet ---> external converter >routerA serial---routerA
rj45 --->ethernet

Neil Schneider




Priscilla Oppenheimer <[EMAIL PROTECTED]> wrote in message
[EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
> The question doesn't even make sense. It would be like asking "what
could
I
> use to convert a train station to a bus station?"
>
> Read the document.
>
> http://www.cisco.com/univercd/cc/td/doc/cisintwk/ito_doc/index.htm 
>
> Priscilla
>
> At 10:19 AM 3/22/01, you wrote:
> >whoever comes up with the converter will be rich...
> >
> >-Original Message-
> >From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf
Of
> >Priscilla Oppenheimer
> >Sent: Thursday, March 22, 2001 9:29 AM
> >To: [EMAIL PROTECTED] 
> >Subject: RE: RJ45 ethernet to cisco Serial conversion?
> >
> >
> >At 12:27 AM 3/22/01, Lim Jit Cheng wrote:
> > >it's not all gone..   there is such converter
> > >
> > >http://www.lanode.com/tier2/et10.htm 
> >
> >That's not a converter. It's a bridge.
> >
> >Here's a good document to help you and the person who asked the
original
> >question:
> >
> >http://www.cisco.com/univercd/cc/td/doc/cisintwk/ito_doc/index.htm 
> >
> >Priscilla
> >
> >
> >
> >
> > >i wonder how much is the price.. i am interested too.
> > >
> > >
> > >-Original Message-
> > >From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On
Behalf Of
> > >John Neiberger
> > >Sent: Wednesday, March 21, 2001 11:51 PM
> > >To: [EMAIL PROTECTED] 
> > >Cc: [EMAIL PROTECTED] 
> > >Subject: Re: RJ45 ethernet to cisco Serial conversion?
> > >
> > >
> > >There is no way to connect an ethernet interface to a serial
interface,
> > >they are entirely different technologies.  Your only option would
be to
> > >add another router to do the media conversion.
> > >
> > >Or, you could buy a hub/switch and use that to connect the dsl
router,
> > >the lan, and your 2501.  However, that's not the greatest solution
and
> > >it doesn't really accomplish your goal.
> > >
> > >HTH,
> > >John
> > >
> > > >>> "Neil Schneider" <[EMAIL PROTECTED]> 3/21/01
8:28:06
> > >AM >>>
> > >I want to be able to plug my DSL modem into the serial port on my
> > >2501,
> > >leaving the ethernet port available for my lan.  Does anyone know
of a
> > >converter/transiever that will allow me to do this?
> > >Thanks in advance.
> > >
> > >Neil
> > >
> > >
> > >_
> > >FAQ, list archives, and subscription info:
> > >http://www.groupstudy.com/list/cisco.html 
> > >Report misconduct and Nondisclosure violations to
[EMAIL PROTECTED] 
> > >
> > >
> > >
> > >_
> > >FAQ, list archives, and subscription info:
> > >http://www.groupstudy.com/list/cisco.html 
> > >Report misconduct and Nondisclosure violations to
[EMAI

Policy routing: CPU util and counter-measures.

[Curtis Phillips]

I was wondering whether anyone has been able to determine the approximate 
level of increased CPU utilization that is introduced by policy routing.

Also, whether Netflow, CEF or any other known means has been used 
successfully to establish flow information and faster switching using
policy routing. If so, does the process base it's flow/cache information 
exclusively on the the source IP? or does it need to establish an individual 
entry for each source/destination pair?

Thanks,

Curtis
_
Get your FREE download of MSN Explorer at http://explorer.msn.com

_
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Vlan Question

[Brad Shifflett]

Scenario:
Got a client who has a person on the network that does not want to
be on the network but wants access to the server. My thought was to install
a switch, setup to Vlans, one for all the users (10 or so) and the second
Vlan for the 1 user by himself. This way no one can get to his machine, then
setup an access list to permit his Vlan to access the first Vlan and deny
all the other users to his Vlan. Does this sound right? Anything I am
missing? Seeing if I understand Vlans correctly or not.

Brad Shifflett 
[EMAIL PROTECTED] 
Micromenders, Inc. 


_
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Linux Security

[Elijah Savage]

I know its off topic, but I hate such narrow minded comments...

> If you have ever installed any *ix system, you'd be darn well

> aware that the thing is w i d e open. There is almost

> no security there. It has to be added and maintained. Win32

> systems are similar. Very trusting and friendly until they are

> properly taken care of. Is *ix inherently more secure? no way.

No holy war here either. But I could not resist the reply to this
comment. Of course it depends on the administrator of the box, but it
depends also how you install it. I have never installed a linux box with
ftp or telnet by default(openssh). Because these boxes I setup are
usually dns or web servers you can install them so that they run in a
chrooted environments which tends to be a tad bit more secure. This is
one reason I like nix over any win platform because I can install what I
want and how I want it, which usually makes a nix box more secure than
any win platform. So to me how I stated above nix is more secure, but of
course you have to know what you are doing. You probably will say well
this is not a base install. And my reply is well if you do a custom
install which you can do right out of the box without recompiling the
kernel or anything fancy nix will me more secure than win32 platforms
out of the box. I would like to see a custom install on win32 instead of
click here to continue.

I challenge anyone to make a valid, non-ideological based

> comparison of a base Win32 and a base Liux install. If Linux

> were so damned secure in its current state, I woulnd't see IDS

> logs filling up with folks scanning for obvious Linux vulns, now

> would I? Bottom dollar is, without proper administration, both

> Win32 and *ix suck big time. With proper care and feeding, they

> can both become releatively secure.

>

You are seeing IDS logs filling up due to the fact that most script
kiddies out there are learning nix and what vulnerabilities are
associated with it. And from my years of experience and dealing with
these individuals it is more of a challenge for them, like a notch in
their belt if they compromise a nix box rather than a win32 platform.
They will be readily accepted by their peers if this is accomplished and
shunned away for saying hey I cracked a nt server. Due to the fact and
the latest security survey (I can't remeber right off hand by whom) that
show due to the recent influx of MCSE certified individuals that lack
experience on securing these boxes that get broken into its not a
challenge to them any more. It showed there were a very high number of
individuals out there that did not even have the known IIS patch
applied. I am not knocking MCSE individuals here because I myself am a

MCSE+I we all have to start some where. But there are more individuals

out there in the industry with NT boxes than there are with Unix boxes
under their control.

If you ask me this is some of the reason why you see so many entries in
your log for nix vulnerabilities than you do for the win32 platform.

-Original Message- 

From: W. Alan Robertson 

Sent: Thu 3/22/2001 10:23 AM 

To: Brian Kimsey-Hickman; [EMAIL PROTECTED] 

Cc: 

Subject: Re: Anyone tried setting up a Linux TFTP Server

for Cisco?

Rather than get into a Holy War about why Linux is

better than Windows, I

figured I'd just answer your question.

in.tftpd doesn't constantly run like other processes,

like a http server, as an

example.

in.tftpd is typically started as needed, and terminated

when finished. The

controlling process is inetd. The configuration file

for inetd can be found at

'/etc/inetd.conf'.

Edit that file...

Scroll down to a line that reads like this (the exact

line varies by Linux

distribution):

#tftp dgram udp wait nobody

/usr/sbin/tcpd

/usr/sbin/in.tftpd /tftpboot

The # means that this line is commented out. If you

remove the hash mark,

leaving:

tftp dgram udp wait nobody

/usr/sbin/tcpd

/usr/sbin/in.tftpd /tftpboot

you will have enabled the tftp service for the box. The "/tftpboot"
reference

refers to the tftp service home directory, so make

certain that it exists. You

can also move the location if you'd like. Just specify

a different path, and

ensure that it exists.

Finally, you need to restart the inetd process, so that

it will be aware of that

fact that you want it to manage tftp services.

Do a 'ps ax | grep inetd'. That will something like:

yavin:/etc# ps ax | grep inet

252 ? S 0:00 /usr/sbin/inetd

369 ? SW 0:00 [rinetd]

7945 pts/1 S 0:00 grep inet

yavin:/etc#

To restart it, type this: 'kill -HUP [pid]'

In my example, 252 is the pid (Process ID).

I almost forgot... One thing you also need to check is

the directory pemissions

of /tftpboot...

Make sure that the directory is World Readable, and

World Writable. Tftp does

no user authentication, so you have to give global

read/write access to it's

directory. Also, before sending a file up to the tftp server, you will
need to

'touch filename'. Ge

RE: Cat6k vlan configuration

[Brant Stevens]

Rik, the set port host command turns off PAGP and DTP...

As far as the number of subnets, I am totally with you...  You will want at
least 5 different VLANs, with my preference being for 8, for 1500 users
(leave yourself some room on each VLAN)...  You can just use a 24-bit mask
for simplicitys' sake...

Separate the SC0 interfaces from production traffic by making use of
VLAN1...

In a campus environment, I would make the connections between the buildings
routed links... make each gig connection a separate subnet that connects the
MSFCs in each building... That way, in conjunction with CEF you can load
share across multiple links, eliminate spanning tree in the core, and make
use of faster routing protocol convergence...

-Brant

-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of
Rik
Sent: Thursday, March 22, 2001 9:32 AM
To: [EMAIL PROTECTED]
Subject: Re: Cat6k vlan configuration


I am concerned with your numbers.  1500 users on an IP (I assume) subnet is
way too many!  Remember, a VLAN will propagae all broadcasts.  Each and
every ARP, BOOTP, etc. will traverse the entire backbone.  I would suggest
you break this down into at least 3, preferably 5 VLANs to minimize the
affect that all of that broadcast traffic will have on your hosts.  Setting
up one of the switches to be a VTP server will greatly minimize your
administrative efforts with VLANs.

Why would you disable CDP?  This is a great resource for troubleshooting
Cisco equipment and produces no noticeable overhead.  I would turn it back
on.  What about trunking?  Are the 2 VLANs going to need to talk to each
other?  You can designate 2 separate switch ports/ router interfaces for
this and not use any trunking, or you could setup a single trunk port for
connecting to a single router interface and use less ports, which is
probably the more common way to do it.  Of course, if you have an RSM, so
much the better.

What about Spanning Tree?  I always purposely select the root bridge by
adjusting the bridge priority value.  Typically do this with the switch that
will handle the most traffic.  You can also setup a secondary root in case
the rpimary ever fails.  By doing this, your root bridges are not selected
randomly.  As a related topic, if you should happen to have any redundant
paths (which you hopefully do, especially between buildings), I suggest
putting them into a port group (Etherchannel, FastEtherchannel, etc.).  No
sense letting Spanning Tree keep one down when you can benefit from the
added bandwidth from the additional link(s).  If one fails, you still have
the redundancy.

Oh yeah, remember this: turn on portfast and turn off PAGP on ALL ports with
end hosts (servers, workstations, etc.) on them.  Otherwise, you will have
problems.  Trust me ;-}

Rik

"Karl Brenner" <[EMAIL PROTECTED]> wrote in message
[EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
> Hi,
>
> I've to upgrade a tokenring network with 1500 users to
> a gigabit backbone ethernet network.
>
> I worked my way trough the SAFE network design, but
> this is not quite finanzable.
>
> The network looks like this:
>
> Core/distribution: two cat6500 one native IOS the
> other hybride connected to a 7200 Wan router.
>
> The access layer switches are cat6000 with inlinepower
> for ip phones.
> There're is a data VLAN and an aux VLAN per switch.
> I have four of this switches in each building (there
> are two buildings). The buildings are connected via
> fibre.
> I'm looking for some demo solutions.
>
> Here is a demo config of the access layer switch,
>
> Cat6k-acc-usr> (enable) set timezone PST -0
> Cat6k-acc-usr> (enable) set summertime PST
> Cat6k-acc-usr> (enable) set summertime recurring
> Cat6k-acc-usr> (enable) set ntp server 10.10.0.12
> Cat6k-acc-usr> (enable) set client enable
>
> Cat6k-acc-usr> (enable) set cdp disable
> Cat6k-acc-usr> (enable) set ip http server disable
> Cat6k-acc-usr> (enable) set logging server 10.10.0.12
> Cat6k-acc-usr> (enable) set logging timestamp enable
>
> Cat6k-acc-usr> (enable) set port inlinepower 5/1-48
> auto (module/ports)
> Cat6k-acc-usr> (enable) set port speed 5/1-48 auto
> Cat6k-acc-usr> (enable) set port host 5/1-48
> Cat6k-acc-usr> (enable) set port inlinepower 6/1-48
> auto (module/ports)
> Cat6k-acc-usr> (enable) set port speed 6/1-48 auto
> Cat6k-acc-usr> (enable) set port host 6/1-48
> Cat6k-acc-usr> (enable) set vlan 10 floor1
> 10.1.10.0_data
> Cat6k-acc-usr> (enable) set vlan 110 floor1
> 10.1.110.0_voice
> Cat6k-acc-usr> (enable) set vlan 10 5/1-48
> Cat6k-acc-usr> (enable) set vlan 10 6/1-48
> Cat6k-acc-usr> (enable) set port auxiliaryvlan 5/1-48
> 110
> Cat6k-acc-usr> (enable) set port auxiliaryvlan 6/1-48
> 110
> Cat6k-acc-usr> (enable) set qos enable
> Cat6k-acc-usr> (enable) set port qos 5/1-48 trust-ext
> untrusted
> Cat6k-acc-usr> (enable) set port qos 6/1-48 trust-ext
> untrusted
> Cat6k-acc-usr> (enable) set port qos 5/1-48 trust
> trust-cos
> Cat6k-acc-usr> (enable) set port qos 6/

RE: difficult ccna question

[Joshua Beining]

Based on the subnet mask (255.255.192.0) subtract 256 from 192 which is 64.
Therefore 64 is your first subnet.  To get the second subnet, add 64 to the
first subnet.  To get the third add 64 to the second subnet and so on.
Continue in this fashion until you reach 192.  Remember that you cannot use
the ranges 172.16.0.1  -  172.16.0.62 and 172.16.255.193  -  172.16.255.254
(network and broadcast respectively) unless your router is configured to do
so.  

Subnet  Host Range
1   172.16.0.65  -  172.16.0.126
2   172.16.0.129  -  172.16.0.190
3   172.16.0.193  -  172.16.0.254
4   172.16.1.1  -  172.16.1.62
5   172.16.1.65  -  172.16.1.126
6   172.16.1.129  -  172.16.1.190
7   172.16.1.193  -  172.16.1.254
8   172.16.2.1  -  172.16.2.62
9   172.16.2.65  -  172.16.2.126
   10   172.16.2.129  -  172.16.2.190
.
.
.
.
.
.

 1015   172.16.253.193  -  172.16.253.254
 1016   172.16.254.1  -  172.16.254.62
 1017   172.16.254.65  -  172.16.254.126
 1018   172.16.254.129  -  172.16.254.190
 1019   172.16.254.193  -  172.16.254.254
 1020   172.16.255.1  -  172.16.255.62
 1021   172.16.255.65  -  172.16.255.126
 1022   172.16.255.129  -  172.16.255.190

-Joshua
-Original Message-
From: Lowell Sharrah [mailto:[EMAIL PROTECTED]]
Sent: Thursday, March 22, 2001 8:14 AM
To: [EMAIL PROTECTED]
Subject: RE: difficult ccna question


how do you know where the first subnet begins?

>>> Joshua Beining <[EMAIL PROTECTED]> 03/22/01 10:34AM >>>
Just remember the following fomulas:

(2^# of masked bits) - 2 = Total # of subnets
(2^# of unmasked bits - 2 = Total # of hosts

Based on this the correct answer is A.

-Original Message-
From: George [mailto:[EMAIL PROTECTED]] 
Sent: Thursday, March 22, 2001 12:16 AM
To: [EMAIL PROTECTED] 
Subject: difficult ccna question


if you have a class B network with a 10-bit subnet mask, how many subnet and
how many hosts do you have?

a. 1022 subnets, 62 hosts
b. 62 subnets, 8190 hosts
c. 8190 subnets, 254 hosts
d. 254 subnets , 126 hosts


_
FAQ, list archives, and subscription info:
http://www.groupstudy.com/list/cisco.html 
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] 

_
FAQ, list archives, and subscription info:
http://www.groupstudy.com/list/cisco.html 
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

_
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: Anyone tried setting up a Linux TFTP Server for Cisco?

[Allen May]

You should spell check your emails before sending. ;)

- Original Message -
From: "Elijah Savage" <[EMAIL PROTECTED]>
To: "W. Alan Robertson" <[EMAIL PROTECTED]>; "Brian Kimsey-Hickman"
<[EMAIL PROTECTED]>; <[EMAIL PROTECTED]>
Sent: Thursday, March 22, 2001 10:16 AM
Subject: RE: Anyone tried setting up a Linux TFTP Server for Cisco?


>
SSBrbm93IGl0cyBvZmYgdG9waWMsIGJ1dCBJIGhhdGUgc3VjaCBuYXJyb3cgbWluZGVkIGNvbW1l
>
bnRzLi4uDQo+IElmIHlvdSBoYXZlIGV2ZXIgaW5zdGFsbGVkIGFueSAqaXggc3lzdGVtLCB5b3Un
>
ZCBiZSBkYXJuIHdlbGwNCj4gYXdhcmUgdGhhdCB0aGUgdGhpbmcgaXMgICAgdyAgaSAgZCAgZSAg
>
IG9wZW4uICBUaGVyZSBpcyBhbG1vc3QNCj4gbm8gc2VjdXJpdHkgdGhlcmUuICBJdCBoYXMgdG8g
>
YmUgYWRkZWQgYW5kIG1haW50YWluZWQuICBXaW4zMg0KPiBzeXN0ZW1zIGFyZSBzaW1pbGFyLiAg
>
VmVyeSB0cnVzdGluZyBhbmQgZnJpZW5kbHkgdW50aWwgdGhleSBhcmUNCj4gcHJvcGVybHkgdGFr
>
ZW4gY2FyZSBvZi4gIElzICppeCBpbmhlcmVudGx5IG1vcmUgc2VjdXJlPyAgbm8gd2F5Lg0KDQog
>
DQpObyBob2x5IHdhciBoZXJlIGVpdGhlci4gQnV0IEkgY291bGQgbm90IHJlc2lzdCB0aGUgcmVw
>
bHkgdG8gdGhpcw0KY29tbWVudC4gT2YgY291cnNlIGl0IGRlcGVuZHMgb24gdGhlIGFkbWluaXN0
>
cmF0b3Igb2YgdGhlIGJveCwgYnV0IGl0DQpkZXBlbmRzIGFsc28gaG93IHlvdSBpbnN0YWxsIGl0
>
LiBJIGhhdmUgbmV2ZXIgaW5zdGFsbGVkIGEgbGludXggYm94IHdpdGgNCmZ0cCBvciB0ZWxuZXQg
>
YnkgZGVmYXVsdChvcGVuc3NoKS4gQmVjYXVzZSB0aGVzZSBib3hlcyBJIHNldHVwIGFyZQ0KdXN1
>
YWxseSBkbnMgb3Igd2ViIHNlcnZlcnMgeW91IGNhbiBpbnN0YWxsIHRoZW0gc28gdGhhdCB0aGV5
>
IHJ1biBpbiBhDQpjaHJvb3RlZCBlbnZpcm9ubWVudHMgd2hpY2ggdGVuZHMgdG8gYmUgYSB0YWQg
>
Yml0IG1vcmUgc2VjdXJlLiBUaGlzIGlzDQpvbmUgcmVhc29uIEkgbGlrZSBuaXggb3ZlciBhbnkg
>
d2luIHBsYXRmb3JtIGJlY2F1c2UgSSBjYW4gaW5zdGFsbCB3aGF0IEkNCndhbnQgYW5kIGhvdyBJ
>
IHdhbnQgaXQsIHdoaWNoIHVzdWFsbHkgbWFrZXMgYSBuaXggYm94IG1vcmUgc2VjdXJlIHRoYW4N
>
CmFueSB3aW4gcGxhdGZvcm0uIFNvIHRvIG1lIGhvdyBJIHN0YXRlZCBhYm92ZSBuaXggaXMgbW9y
>
ZSBzZWN1cmUsIGJ1dCBvZg0KY291cnNlIHlvdSBoYXZlIHRvIGtub3cgd2hhdCB5b3UgYXJlIGRv
>
aW5nLiBZb3UgcHJvYmFibHkgd2lsbCBzYXkgd2VsbA0KdGhpcyBpcyBub3QgYSBiYXNlIGluc3Rh
>
bGwuIEFuZCBteSByZXBseSBpcyB3ZWxsIGlmIHlvdSBkbyBhIGN1c3RvbQ0KaW5zdGFsbCB3aGlj
>
aCB5b3UgY2FuIGRvIHJpZ2h0IG91dCBvZiB0aGUgYm94IHdpdGhvdXQgcmVjb21waWxpbmcgdGhl
>
DQprZXJuZWwgb3IgYW55dGhpbmcgZmFuY3kgbml4IHdpbGwgbWUgbW9yZSBzZWN1cmUgdGhhbiB3
>
aW4zMiBwbGF0Zm9ybXMNCm91dCBvZiB0aGUgYm94LiBJIHdvdWxkIGxpa2UgdG8gc2VlIGEgY3Vz
>
dG9tIGluc3RhbGwgb24gd2luMzIgaW5zdGVhZCBvZg0KY2xpY2sgaGVyZSB0byBjb250aW51ZS4N
>
CiANCkkgY2hhbGxlbmdlIGFueW9uZSB0byBtYWtlIGEgdmFsaWQsIG5vbi1pZGVvbG9naWNhbCBi
>
YXNlZA0KPiBjb21wYXJpc29uIG9mIGEgYmFzZSBXaW4zMiBhbmQgYSBiYXNlIExpdXggaW5zdGFs
>
bC4gIElmIExpbnV4DQo+IHdlcmUgc28gZGFtbmVkIHNlY3VyZSBpbiBpdHMgY3VycmVudCBzdGF0
>
ZSwgSSB3b3VsbmQndCBzZWUgSURTDQo+IGxvZ3MgZmlsbGluZyB1cCB3aXRoIGZvbGtzIHNjYW5u
>
aW5nIGZvciBvYnZpb3VzIExpbnV4IHZ1bG5zLCBub3cNCj4gd291bGQgST8gIEJvdHRvbSBkb2xs
>
YXIgaXMsIHdpdGhvdXQgcHJvcGVyIGFkbWluaXN0cmF0aW9uLCBib3RoDQo+IFdpbjMyIGFuZCAq
>
aXggc3VjayBiaWcgdGltZS4gIFdpdGggcHJvcGVyIGNhcmUgYW5kIGZlZWRpbmcsIHRoZXkNCj4g
>
Y2FuIGJvdGggYmVjb21lIHJlbGVhdGl2ZWx5IHNlY3VyZS4NCj4NCg0KWW91IGFyZSBzZWVpbmcg
>
SURTIGxvZ3MgZmlsbGluZyB1cCBkdWUgdG8gdGhlIGZhY3QgdGhhdCBtb3N0IHNjcmlwdA0Ka2lk
>
ZGllcyBvdXQgdGhlcmUgYXJlIGxlYXJuaW5nIG5peCBhbmQgd2hhdCB2dWxuZXJhYmlsaXRpZXMg
>
YXJlDQphc3NvY2lhdGVkIHdpdGggaXQuIEFuZCBmcm9tIG15IHllYXJzIG9mIGV4cGVyaWVuY2Ug
>
YW5kIGRlYWxpbmcgd2l0aA0KdGhlc2UgaW5kaXZpZHVhbHMgaXQgaXMgbW9yZSBvZiBhIGNoYWxs
>
ZW5nZSBmb3IgdGhlbSwgbGlrZSBhIG5vdGNoIGluDQp0aGVpciBiZWx0IGlmIHRoZXkgY29tcHJv
>
bWlzZSBhIG5peCBib3ggcmF0aGVyIHRoYW4gYSB3aW4zMiBwbGF0Zm9ybS4NClRoZXkgd2lsbCBi
>
ZSByZWFkaWx5IGFjY2VwdGVkIGJ5IHRoZWlyIHBlZXJzIGlmIHRoaXMgaXMgYWNjb21wbGlzaGVk
>
IGFuZA0Kc2h1bm5lZCBhd2F5IGZvciBzYXlpbmcgaGV5IEkgY3JhY2tlZCBhIG50IHNlcnZlci4g
>
RHVlIHRvIHRoZSBmYWN0IGFuZA0KdGhlIGxhdGVzdCBzZWN1cml0eSBzdXJ2ZXkgKEkgY2FuJ3Qg
>
cmVtZWJlciByaWdodCBvZmYgaGFuZCBieSB3aG9tKSB0aGF0DQpzaG93IGR1ZSB0byB0aGUgcmVj
>
ZW50IGluZmx1eCBvZiBNQ1NFIGNlcnRpZmllZCBpbmRpdmlkdWFscyB0aGF0IGxhY2sNCmV4cGVy
>
aWVuY2Ugb24gc2VjdXJpbmcgdGhlc2UgYm94ZXMgdGhhdCBnZXQgYnJva2VuIGludG8gaXRzIG5v
>
dCBhDQpjaGFsbGVuZ2UgdG8gdGhlbSBhbnkgbW9yZS4gSXQgc2hvd2VkIHRoZXJlIHdlcmUgYSB2
>
ZXJ5IGhpZ2ggbnVtYmVyIG9mDQppbmRpdmlkdWFscyBvdXQgdGhlcmUgdGhhdCBkaWQgbm90IGV2
>
ZW4gaGF2ZSB0aGUga25vd24gSUlTIHBhdGNoDQphcHBsaWVkLiBJIGFtIG5vdCBrbm9ja2luZyBN
>
Q1NFIGluZGl2aWR1YWxzIGhlcmUgYmVjYXVzZSBJIG15c2VsZiBhbSBhDQpNQ1NFK0kgd2UgYWxs
>
IGhhdmUgdG8gc3RhcnQgc29tZSB3aGVyZS4gQnV0IHRoZXJlIGFyZSBtb3JlIGluZGl2aWR1YWxz
>
DQpvdXQgdGhlcmUgaW4gdGhlIGluZHVzdHJ5IHdpdGggTlQgYm94ZXMgdGhhbiB0aGVyZSBhcmUg
>
d2l0aCBVbml4IGJveGVzDQp1bmRlciB0aGVpciBjb250cm9sLg0KSWYgeW91IGFzayBtZSB0aGlz
>
IGlzIHNvbWUgb2YgdGhlIHJlYXNvbiB3aHkgeW91IHNlZSBzbyBtYW55IGVudHJpZXMgaW4NCnlv
>
dXIgbG9nIGZvciBuaXggdnVsbmVyYWJpbGl0aWVzIHRoYW4geW91IGRvIGZvciB0aGUgd2luMzIg
>
cGxhdGZvcm0uDQogDQogDQogDQogDQoNCgktLS0tLU9yaWdpbmFsIE1lc3NhZ2UtLS0tLSANCglG
>
cm9tOiBXLiBBbGFuIFJvYmVydHNvbiANCglTZW50OiBUaHUgMy8yMi8yMDAxIDEwOjIzIEFNIA0K
>
CVRvOiBCcmlhbiBLaW1zZXktSGlja21hbjsgY2lzY29AZ3JvdXBzdHVkeS5jb20gDQoJQ2M6IA0K
>
CVN1YmplY3Q6IFJlOiBBbnlvbmUgdHJpZWQgc2V0dGluZyB1cCBhIExpbnV4IFRGVFAgU2VydmVy
>
IGZvcg0KQ2lzY28/DQoJDQoJDQoNCglSYXRoZXIgdGhhbiBnZXQgaW50byBhIEhvbHkgV

Re: RJ45 ethernet to cisco Serial conversion?

[Neil Schneider]

oops,  the first sentance got cut off of my last post.  should have read...

I agree with you about the issues.  I wasn't ever asking a question about
how the technologies worked, just whether anyone had heard or seen of such a
device.  Again,  I am not saying it would make sense, just asking whether it
exists.



Neil Schneider <[EMAIL PROTECTED]> wrote in message
AF134B55E3C8D111B56B0020AFE9717587A471@MAIL">news:AF134B55E3C8D111B56B0020AFE9717587A471@MAIL...
> how the technologies worked, just whether anyone had heard or seen of such
a
> device.  Again,  I am not saying it would make sense, just whether it
> exists.
>
> Neil
>
>
>
> -Original Message-
> From: John Neiberger
> To: [EMAIL PROTECTED]
> Cc: [EMAIL PROTECTED]
> Sent: 3/22/01 11:28 AM
> Subject: Re: RJ45 ethernet to cisco Serial conversion?
>
> There are two separate issues that need to be dealt with to accomplish
> your goal.  First you need to deal with the physical issue, which in a
> way is what that bridging device does for you.  It allows you to place
> ethernet data onto a WAN link, but it also requires the same device to
> be on the other end of the link to convert this serialized-ethernet to
> standard ethernet.  This is just bridging, not true media conversion.
>
> There are yet other physical issues like clocking and encoding.  A
> synchronous serial link places bits on the wire in a way that would be
> completely incomprehensible to an ethernet speaker and vice versa.  To
> handle the clocking issue you certainly would need a device that can
> provide clocking for the serial port, which that bridging unit does.
>
> The second issue is the datalink encapsulation.  In ethernet, you're
> using Ethernet v2 or 802.3 frames as your encapsulation, whereas the
> serial link is using either HDLC, PPP, or frame relay.  Again, these are
> so much different than ethernet that it requires some intelligence to
> convert between them.
>
> This is why a router is necessary and no simple converter can handle
> it.  A two-port router would be needed to successfully accomplish this
> task.  I think that is why Priscilla pointed you to that link.  Instead
> of answering the question outright, she pointed you to material
> that--upon digestion--would lead to the answer.
>
> HTH,
> John
>
> >>> "Neil Schneider" <[EMAIL PROTECTED]> 3/22/01 9:06:57
> AM >>>
> Priscilla,
>
> I usually look forward to your posts,  but I think you are way off base
> with
> this response.  Pointing to the cisco page describing different
> technologies
> does absolutely nothing to answer my original question.  I also relize
> that
> a converter/transiever such as this would have limited use in a real
> world
> situation, but that certainly does not mean it doesnt exist.
> Obvoiusly we can move data between ethernet and serial, that is what
> is
> being done in the router itself, so your train/bus senario is
> meaningless.
> What I was looking for was an external device that can do this without
> resorting to using another router such as -->>
>
> ethernet -->routerA rj45 routerA serial --->routerB serial
> routerB
> rj45--->ethernet
>
> I want to do:
>
> ehternet ---> external converter >routerA serial---routerA
> rj45 --->ethernet
>
> Neil Schneider
>
>
>
>
> Priscilla Oppenheimer <[EMAIL PROTECTED]> wrote in message
> [EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
> > The question doesn't even make sense. It would be like asking "what
> could
> I
> > use to convert a train station to a bus station?"
> >
> > Read the document.
> >
> > http://www.cisco.com/univercd/cc/td/doc/cisintwk/ito_doc/index.htm
> >
> > Priscilla
> >
> > At 10:19 AM 3/22/01, you wrote:
> > >whoever comes up with the converter will be rich...
> > >
> > >-Original Message-
> > >From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf
> Of
> > >Priscilla Oppenheimer
> > >Sent: Thursday, March 22, 2001 9:29 AM
> > >To: [EMAIL PROTECTED]
> > >Subject: RE: RJ45 ethernet to cisco Serial conversion?
> > >
> > >
> > >At 12:27 AM 3/22/01, Lim Jit Cheng wrote:
> > > >it's not all gone..   there is such converter
> > > >
> > > >http://www.lanode.com/tier2/et10.htm
> > >
> > >That's not a converter. It's a bridge.
> > >
> > >Here's a good document to help you and the person who asked the
> original
> > >question:
> > >
> > >http://www.cisco.com/univercd/cc/td/doc/cisintwk/ito_doc/index.htm
> > >
> > >Priscilla
> > >
> > >
> > >
> > >
> > > >i wonder how much is the price.. i am interested too.
> > > >
> > > >
> > > >-Original Message-
> > > >From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On
> Behalf Of
> > > >John Neiberger
> > > >Sent: Wednesday, March 21, 2001 11:51 PM
> > > >To: [EMAIL PROTECTED]
> > > >Cc: [EMAIL PROTECTED]
> > > >Subject: Re: RJ45 ethernet to cisco Serial conversion?
> > > >
> > > >
> > > >There is no way to connect an ethernet interface to a serial
> interface,
> > > >they are entirely different technologies.  Your only option would
> be to
> 

RE: RJ45 ethernet to cisco Serial conversion?

[Neil Schneider]

how the technologies worked, just whether anyone had heard or seen of such a
device.  Again,  I am not saying it would make sense, just whether it
exists.

Neil



-Original Message-
From: John Neiberger
To: [EMAIL PROTECTED]
Cc: [EMAIL PROTECTED]
Sent: 3/22/01 11:28 AM
Subject: Re: RJ45 ethernet to cisco Serial conversion?

There are two separate issues that need to be dealt with to accomplish
your goal.  First you need to deal with the physical issue, which in a
way is what that bridging device does for you.  It allows you to place
ethernet data onto a WAN link, but it also requires the same device to
be on the other end of the link to convert this serialized-ethernet to
standard ethernet.  This is just bridging, not true media conversion.

There are yet other physical issues like clocking and encoding.  A
synchronous serial link places bits on the wire in a way that would be
completely incomprehensible to an ethernet speaker and vice versa.  To
handle the clocking issue you certainly would need a device that can
provide clocking for the serial port, which that bridging unit does.

The second issue is the datalink encapsulation.  In ethernet, you're
using Ethernet v2 or 802.3 frames as your encapsulation, whereas the
serial link is using either HDLC, PPP, or frame relay.  Again, these are
so much different than ethernet that it requires some intelligence to
convert between them.

This is why a router is necessary and no simple converter can handle
it.  A two-port router would be needed to successfully accomplish this
task.  I think that is why Priscilla pointed you to that link.  Instead
of answering the question outright, she pointed you to material
that--upon digestion--would lead to the answer.

HTH,
John

>>> "Neil Schneider" <[EMAIL PROTECTED]> 3/22/01 9:06:57
AM >>>
Priscilla,

I usually look forward to your posts,  but I think you are way off base
with
this response.  Pointing to the cisco page describing different
technologies
does absolutely nothing to answer my original question.  I also relize
that
a converter/transiever such as this would have limited use in a real
world
situation, but that certainly does not mean it doesnt exist.
Obvoiusly we can move data between ethernet and serial, that is what
is
being done in the router itself, so your train/bus senario is
meaningless.
What I was looking for was an external device that can do this without
resorting to using another router such as -->>

ethernet -->routerA rj45 routerA serial --->routerB serial
routerB
rj45--->ethernet

I want to do:

ehternet ---> external converter >routerA serial---routerA
rj45 --->ethernet

Neil Schneider




Priscilla Oppenheimer <[EMAIL PROTECTED]> wrote in message
[EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
> The question doesn't even make sense. It would be like asking "what
could
I
> use to convert a train station to a bus station?"
>
> Read the document.
>
> http://www.cisco.com/univercd/cc/td/doc/cisintwk/ito_doc/index.htm 
>
> Priscilla
>
> At 10:19 AM 3/22/01, you wrote:
> >whoever comes up with the converter will be rich...
> >
> >-Original Message-
> >From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf
Of
> >Priscilla Oppenheimer
> >Sent: Thursday, March 22, 2001 9:29 AM
> >To: [EMAIL PROTECTED] 
> >Subject: RE: RJ45 ethernet to cisco Serial conversion?
> >
> >
> >At 12:27 AM 3/22/01, Lim Jit Cheng wrote:
> > >it's not all gone..   there is such converter
> > >
> > >http://www.lanode.com/tier2/et10.htm 
> >
> >That's not a converter. It's a bridge.
> >
> >Here's a good document to help you and the person who asked the
original
> >question:
> >
> >http://www.cisco.com/univercd/cc/td/doc/cisintwk/ito_doc/index.htm 
> >
> >Priscilla
> >
> >
> >
> >
> > >i wonder how much is the price.. i am interested too.
> > >
> > >
> > >-Original Message-
> > >From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On
Behalf Of
> > >John Neiberger
> > >Sent: Wednesday, March 21, 2001 11:51 PM
> > >To: [EMAIL PROTECTED] 
> > >Cc: [EMAIL PROTECTED] 
> > >Subject: Re: RJ45 ethernet to cisco Serial conversion?
> > >
> > >
> > >There is no way to connect an ethernet interface to a serial
interface,
> > >they are entirely different technologies.  Your only option would
be to
> > >add another router to do the media conversion.
> > >
> > >Or, you could buy a hub/switch and use that to connect the dsl
router,
> > >the lan, and your 2501.  However, that's not the greatest solution
and
> > >it doesn't really accomplish your goal.
> > >
> > >HTH,
> > >John
> > >
> > > >>> "Neil Schneider" <[EMAIL PROTECTED]> 3/21/01
8:28:06
> > >AM >>>
> > >I want to be able to plug my DSL modem into the serial port on my
> > >2501,
> > >leaving the ethernet port available for my lan.  Does anyone know
of a
> > >converter/transiever that will allow me to do this?
> > >Thanks in advance.
> > >
> > >Neil
> > >
> > >
> > >_
> > >FAQ, list archives, and subscription info:

OT - 2513 For Sale

[Luke Ellezer]

Hello all,


Sorry for the out of topic post.  I figured someone
maybe looking for a 2513 to add to their practice lab.


I have 1 2513 with 16 MB ram, 16 MB Flash, 1 Ethernet,
1 Token Ring.  I will include the media filter cable
and 1 Ethernet AUI Transceiver.

I'm asking for $1000.00 obo.

thanks!




__
Do You Yahoo!?
Get email at your own domain with Yahoo! Mail. 
http://personal.mail.yahoo.com/

_
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: RJ45 ethernet to cisco Serial conversion?

[Mask Of Zorro]

Neil, understanding the technologies involved, however, is fundamental to 
answering your question. Given your drawing below, the "external converter" 
you refer to translates to a "layer 2 device connecting Ethernet and Serial 
interfaces", most likely you want to connect 10BaseT interface to V.35. This 
device DOES exist - it is called a bridge.

The simplest, most readily available, and obvious implementation of the 
device you seek is a Cisco 2501. But you have stated that a 2501 is not what 
you want.

I get the impression that what you want is a device about the size of a 
cigarette pack, with one RJ45 jack and one DB60 jack, that will perform this 
bridging function on a "plug-and-play" basis. You never mentioned cost, but 
I also get the impression that you'd like the price to be low, like under 
$100 or something... My guess would be that it won't happen this decade...

Ever seen a gender changer? How about a serial dongle that changes the 
connector end from DB9 to DB25? I think that Priscilla wanted to warn you 
and others that there is no possibility of such a dongle to enable you to 
plug your Cat5 cable into one side and your V.35 cable into the other and 
have Ethernet to Serial communications work. It just ain't that simple. It's 
gonna take circuitry to perform a bridging fuction.

If you understand that, fine. Looking at some of the other replies to your 
post it seems clear that others do not, and a quick read of the Cisco link 
Priscilla offers should clear things up for them.

Now - if you can contract the folks at RonCo to get cracking on that "Pocket 
Bridge" you may be on to something. If you can't wait that long, there might 
be another 2501 in your future - though it looks like the LanNode bridge 
referenced in the link below might do the job for ya. It is a bit bigger 
than a cigarrette pack, more like the size of a carton of smokes.

Z


>From: "Neil Schneider" <[EMAIL PROTECTED]>
>Reply-To: "Neil Schneider" <[EMAIL PROTECTED]>
>To: [EMAIL PROTECTED]
>Subject: Re: RJ45 ethernet to cisco Serial conversion?
>Date: Thu, 22 Mar 2001 11:06:57 -0500
>
>Priscilla,
>
>I usually look forward to your posts,  but I think you are way off base 
>with
>this response.  Pointing to the cisco page describing different 
>technologies
>does absolutely nothing to answer my original question.  I also relize that
>a converter/transiever such as this would have limited use in a real world
>situation, but that certainly does not mean it doesnt exist.
>Obvoiusly we can move data between ethernet and serial, that is what is
>being done in the router itself, so your train/bus senario is meaningless.
>What I was looking for was an external device that can do this without
>resorting to using another router such as -->>
>
>ethernet -->routerA rj45 routerA serial --->routerB serial routerB
>rj45--->ethernet
>
>I want to do:
>
>ehternet ---> external converter >routerA serial---routerA
>rj45 --->ethernet
>
>Neil Schneider
>
>
>
>
>Priscilla Oppenheimer <[EMAIL PROTECTED]> wrote in message
>[EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
> > The question doesn't even make sense. It would be like asking "what 
>could
>I
> > use to convert a train station to a bus station?"
> >
> > Read the document.
> >
> > http://www.cisco.com/univercd/cc/td/doc/cisintwk/ito_doc/index.htm
> >
> > Priscilla
> >
> > At 10:19 AM 3/22/01, you wrote:
> > >whoever comes up with the converter will be rich...
> > >
> > >-Original Message-
> > >From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of
> > >Priscilla Oppenheimer
> > >Sent: Thursday, March 22, 2001 9:29 AM
> > >To: [EMAIL PROTECTED]
> > >Subject: RE: RJ45 ethernet to cisco Serial conversion?
> > >
> > >
> > >At 12:27 AM 3/22/01, Lim Jit Cheng wrote:
> > > >it's not all gone..   there is such converter
> > > >
> > > >http://www.lanode.com/tier2/et10.htm
> > >
> > >That's not a converter. It's a bridge.
> > >
> > >Here's a good document to help you and the person who asked the 
>original
> > >question:
> > >
> > >http://www.cisco.com/univercd/cc/td/doc/cisintwk/ito_doc/index.htm
> > >
> > >Priscilla
> > >
> > >
> > >
> > >
> > > >i wonder how much is the price.. i am interested too.
> > > >
> > > >
> > > >-Original Message-
> > > >From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf 
>Of
> > > >John Neiberger
> > > >Sent: Wednesday, March 21, 2001 11:51 PM
> > > >To: [EMAIL PROTECTED]
> > > >Cc: [EMAIL PROTECTED]
> > > >Subject: Re: RJ45 ethernet to cisco Serial conversion?
> > > >
> > > >
> > > >There is no way to connect an ethernet interface to a serial 
>interface,
> > > >they are entirely different technologies.  Your only option would be 
>to
> > > >add another router to do the media conversion.
> > > >
> > > >Or, you could buy a hub/switch and use that to connect the dsl 
>router,
> > > >the lan, and your 2501.  However, that's not the greatest solution 
>and
> > > >it doesn't really accomplish your goal.
> > > >
> > 

RE: RJ45 ethernet to cisco Serial conversion?

[John Neiberger]

I suppose we were making it more difficult than it needed to be.  If you
were simply asking if it exists, then the answer is yes.  It's called a
router.There is no simple interface converter alone that can
handle all the issues.  Something with more intelligence is necessary.

>>> "Neil Schneider" <[EMAIL PROTECTED]> 3/22/01 9:48:07
AM >>>
 I agree with you about the issues.  I wasn't ever asking a question
about
how the technologies worked, just whether anyone had heard or seen of
such a
device.  Again,  I am not saying it would make sense, just whether it
exists.

Neil



-Original Message-
From: John Neiberger
To: [EMAIL PROTECTED] 
Cc: [EMAIL PROTECTED] 
Sent: 3/22/01 11:28 AM
Subject: Re: RJ45 ethernet to cisco Serial conversion?

There are two separate issues that need to be dealt with to accomplish
your goal.  First you need to deal with the physical issue, which in a
way is what that bridging device does for you.  It allows you to place
ethernet data onto a WAN link, but it also requires the same device to
be on the other end of the link to convert this serialized-ethernet to
standard ethernet.  This is just bridging, not true media conversion.

There are yet other physical issues like clocking and encoding.  A
synchronous serial link places bits on the wire in a way that would be
completely incomprehensible to an ethernet speaker and vice versa.  To
handle the clocking issue you certainly would need a device that can
provide clocking for the serial port, which that bridging unit does.

The second issue is the datalink encapsulation.  In ethernet, you're
using Ethernet v2 or 802.3 frames as your encapsulation, whereas the
serial link is using either HDLC, PPP, or frame relay.  Again, these
are
so much different than ethernet that it requires some intelligence to
convert between them.

This is why a router is necessary and no simple converter can handle
it.  A two-port router would be needed to successfully accomplish this
task.  I think that is why Priscilla pointed you to that link. 
Instead
of answering the question outright, she pointed you to material
that--upon digestion--would lead to the answer.

HTH,
John

>>> "Neil Schneider" <[EMAIL PROTECTED]> 3/22/01 9:06:57
AM >>>
Priscilla,

I usually look forward to your posts,  but I think you are way off
base
with
this response.  Pointing to the cisco page describing different
technologies
does absolutely nothing to answer my original question.  I also relize
that
a converter/transiever such as this would have limited use in a real
world
situation, but that certainly does not mean it doesnt exist.
Obvoiusly we can move data between ethernet and serial, that is what
is
being done in the router itself, so your train/bus senario is
meaningless.
What I was looking for was an external device that can do this without
resorting to using another router such as -->>

ethernet -->routerA rj45 routerA serial --->routerB serial
routerB
rj45--->ethernet

I want to do:

ehternet ---> external converter >routerA serial---routerA
rj45 --->ethernet

Neil Schneider




Priscilla Oppenheimer <[EMAIL PROTECTED]> wrote in message
[EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
> The question doesn't even make sense. It would be like asking "what
could
I
> use to convert a train station to a bus station?"
>
> Read the document.
>
> http://www.cisco.com/univercd/cc/td/doc/cisintwk/ito_doc/index.htm 
>
> Priscilla
>
> At 10:19 AM 3/22/01, you wrote:
> >whoever comes up with the converter will be rich...
> >
> >-Original Message-
> >From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf
Of
> >Priscilla Oppenheimer
> >Sent: Thursday, March 22, 2001 9:29 AM
> >To: [EMAIL PROTECTED] 
> >Subject: RE: RJ45 ethernet to cisco Serial conversion?
> >
> >
> >At 12:27 AM 3/22/01, Lim Jit Cheng wrote:
> > >it's not all gone..   there is such converter
> > >
> > >http://www.lanode.com/tier2/et10.htm 
> >
> >That's not a converter. It's a bridge.
> >
> >Here's a good document to help you and the person who asked the
original
> >question:
> >
> >http://www.cisco.com/univercd/cc/td/doc/cisintwk/ito_doc/index.htm 
> >
> >Priscilla
> >
> >
> >
> >
> > >i wonder how much is the price.. i am interested too.
> > >
> > >
> > >-Original Message-
> > >From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On 
Behalf Of
> > >John Neiberger
> > >Sent: Wednesday, March 21, 2001 11:51 PM
> > >To: [EMAIL PROTECTED] 
> > >Cc: [EMAIL PROTECTED] 
> > >Subject: Re: RJ45 ethernet to cisco Serial conversion?
> > >
> > >
> > >There is no way to connect an ethernet interface to a serial
interface,
> > >they are entirely different technologies.  Your only option would
be to
> > >add another router to do the media conversion.
> > >
> > >Or, you could buy a hub/switch and use that to connect the dsl
router,
> > >the lan, and your 2501.  However, that's not the greatest
solution
and
> > >it doesn't really accomplish your goal.
> > >
> > >HTH,
> > >John
> > >
> > >

CID BETA WHEN?

[Andrei Hladki]

so when those exams will appear on tracking sys?
do anyone recieved the results?


_
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: Cat6k vlan configuration

[Darren Crawford]

I agree with Rik regarding your subnet size.  It's way too big.  Divide people
up by floor, wing or business function, whatever makes sense.   Also you'll
save yourself quite a few headaches by hard coding your speed and duplex at the
switch.

HTH

Darren

At 12:37 PM 03/22/2001 +, Karl Brenner wrote:
>Hi,
>
>I've to upgrade a tokenring network with 1500 users to
>a gigabit backbone ethernet network.
>
>I worked my way trough the SAFE network design, but
>this is not quite finanzable.
>
>The network looks like this:
>
>Core/distribution: two cat6500 one native IOS the
>other hybride connected to a 7200 Wan router.
>
>The access layer switches are cat6000 with inlinepower
>for ip phones.
>There're is a data VLAN and an aux VLAN per switch.
>I have four of this switches in each building (there
>are two buildings). The buildings are connected via
>fibre.
>I'm looking for some demo solutions.
>
>Here is a demo config of the access layer switch,
>
>Cat6k-acc-usr> (enable) set timezone PST -0
>Cat6k-acc-usr> (enable) set summertime PST
>Cat6k-acc-usr> (enable) set summertime recurring
>Cat6k-acc-usr> (enable) set ntp server 10.10.0.12
>Cat6k-acc-usr> (enable) set client enable
>
>Cat6k-acc-usr> (enable) set cdp disable
>Cat6k-acc-usr> (enable) set ip http server disable
>Cat6k-acc-usr> (enable) set logging server 10.10.0.12
>Cat6k-acc-usr> (enable) set logging timestamp enable
>
>Cat6k-acc-usr> (enable) set port inlinepower 5/1-48
>auto (module/ports)
>Cat6k-acc-usr> (enable) set port speed 5/1-48 auto
>Cat6k-acc-usr> (enable) set port host 5/1-48
>Cat6k-acc-usr> (enable) set port inlinepower 6/1-48
>auto (module/ports)
>Cat6k-acc-usr> (enable) set port speed 6/1-48 auto
>Cat6k-acc-usr> (enable) set port host 6/1-48
>Cat6k-acc-usr> (enable) set vlan 10 floor1
>10.1.10.0_data
>Cat6k-acc-usr> (enable) set vlan 110 floor1
>10.1.110.0_voice
>Cat6k-acc-usr> (enable) set vlan 10 5/1-48
>Cat6k-acc-usr> (enable) set vlan 10 6/1-48
>Cat6k-acc-usr> (enable) set port auxiliaryvlan 5/1-48
>110
>Cat6k-acc-usr> (enable) set port auxiliaryvlan 6/1-48
>110
>Cat6k-acc-usr> (enable) set qos enable
>Cat6k-acc-usr> (enable) set port qos 5/1-48 trust-ext
>untrusted
>Cat6k-acc-usr> (enable) set port qos 6/1-48 trust-ext
>untrusted
>Cat6k-acc-usr> (enable) set port qos 5/1-48 trust
>trust-cos
>Cat6k-acc-usr> (enable) set port qos 6/1-48 trust
>trust-cos
>Cat6k-acc-usr> (enable) set qos acl ip ACL_IP-PHONES
>trust-cos ip any any
>Cat6k-acc-usr> (enable) set port qos 5/1-48 vlan-based
>Cat6k-acc-usr> (enable) set port qos 6/1-48 vlan-based
>Cat6k-acc-usr> (enable) commit qos acl all
>Cat6k-acc-usr> (enable) set qos acl map ACL_IP-PHONES
>110
>Cat6k-acc-usr> (enable) set qos map 2q2t tx 2 1 cos 3
>Cat6k-acc-usr> (enable) set port qos 1/1 trust
>trust-dscp
>
>can you think of anything else?
>
>thanks for your help.
>
>Karl
>
>=
>Karl Brenner
>112 Belfield Park
>Stllorgen
>Co. Dublin
>Tel. ++353 (1) 260 12 98
>
>
>Do You Yahoo!?
>Get your free @yahoo.co.uk address at http://mail.yahoo.co.uk
>or your free @yahoo.ie address at http://mail.yahoo.ie
>
>_
>FAQ, list archives, and subscription info: 
>http://www.groupstudy.com/list/cisco.html
>Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]


Darren S. Crawford
Lucent Technologies Worldwide Services 
2377 Gold Meadow WayPhone: (916) 859-5200 x310 
Suite 230   Fax: (916) 859-5201 
Sacramento, CA 95670Pager: (800) 467-1467 
Email: [EMAIL PROTECTED] Epager: [EMAIL PROTECTED] 
http://www.lucent.com   Network Systems
Consultant - CCNA

_
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Links or Url to PEC 0r REWARD sites

[IST . EPNL-CT-BELAIKS]

Hi guys,
Could you please provide me with the Links or URL to PEC or REWARD 
sites.
I am in need to do some pratice test for my ccna coming up soon.
THANKS

P. JOE

_
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

No Subject

[cartera]

HI
does anybody know of a study group in Orange County, CA? Please respond.
Greatly appreciated.

Adela P. Carter
Network Support Specialist 
(949)794- #125
[EMAIL PROTECTED]


International Education Corporation.
http://www.IECGLOBAL.COM.



_
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: Whew! Can you smell that VLan?

[Robert Padjen]

I cannot speak to the 3500 series, but in the Cat
5000/6000 line, you span a port to either copy the
contents of a port or an entire VLAN. The membership
of the port that has the Sniffer is moot in this
instance. It is further possible, although I can't
think of too many good reasons to do this, that you
can set the switch to receive packets from the
Sniffer, which would allow use of the port membership
VLAN in addition to the receipt of frames from the
span process. In essence you would get two VLANs in
one, but, again, :(  Typically I set the span port to
a 'defunct' VLAN with no other members and no
representation on the RSM/MSFC. I may see BPDUs and
CDP packets, but the majority will be the traffic I
desire.


--- "The.rock" <[EMAIL PROTECTED]> wrote:
> I believe that the 3500 Catalyst series will even
> let you monitor ports on
> other switches if you want. Check into it, but I
> think you can.
> 
> ""NetEng"" <[EMAIL PROTECTED]> wrote in
> message
> 99bbkk$p8a$[EMAIL PROTECTED]">news:99bbkk$p8a$[EMAIL PROTECTED]...
> > We have had a pissing match lately and here's the
> details. One person
> states
> > that a VLan can not be sniffed because it is on a
> different subnet. The
> > other person says it can becuase it's physically
> on the same switch. I
> think
> > you can to a point. Here's what I mean; let's say
> we have a 3524 with two
> > Vlans, VLAN1 (we'll call it InfoSys), and VLAN2
> (called HR). If I have a
> > sniffer running on InfoSys, I should be able to
> sniff traffic on my subnet
> > as well as traffic from HR to InfoSys (ie HR
> employee accessing mail
> server
> > on InfoSys), right? The only difference is that
> the source MAC address
> would
> > change. I should not be able to sniff traffic
> local to HR (ie an employee
> > accessing accounting software) right? What's the
> rub?
> >
> >
> >
> >
> > _
> > FAQ, list archives, and subscription info:
> http://www.groupstudy.com/list/cisco.html
> > Report misconduct and Nondisclosure violations to
> [EMAIL PROTECTED]
> >
> 
> 
> _
> FAQ, list archives, and subscription info:
> http://www.groupstudy.com/list/cisco.html
> Report misconduct and Nondisclosure violations to
[EMAIL PROTECTED]


=
Robert Padjen

__
Do You Yahoo!?
Get email at your own domain with Yahoo! Mail. 
http://personal.mail.yahoo.com/

_
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

RE: Vlan Question

[Leigh Anne Chisholm]

Why wouldn't you just put the one person on a different subnet and then use
ACL's to control traffic flow?  What will deploying VLANs get you that
subnetting wouldn't?

> -Original Message-
> From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of
> Brad Shifflett
> Sent: March 22, 2001 9:27 AM
> To: Groupstudy (E-mail)
> Subject: Vlan Question
>
>
> Scenario:
>   Got a client who has a person on the network that does not want to
> be on the network but wants access to the server. My thought was to install
> a switch, setup to Vlans, one for all the users (10 or so) and the second
> Vlan for the 1 user by himself. This way no one can get to his machine, then
> setup an access list to permit his Vlan to access the first Vlan and deny
> all the other users to his Vlan. Does this sound right? Anything I am
> missing? Seeing if I understand Vlans correctly or not.
>
> Brad Shifflett
> [EMAIL PROTECTED]
> Micromenders, Inc.
>
>
> _
> FAQ, list archives, and subscription info:
> http://www.groupstudy.com/list/cisco.html
> Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

_
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Cisco support for VRRP any platform ?

[Curtis Phillips]

Does anyone know if any IOS version supports VRRP on any of the standard platforms?


Thanks,

Curtis

__
Get your own FREE, personal Netscape Webmail account today at 
http://webmail.netscape.com/

_
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: Vlan Question

[ciscosis]

Brad

I expect you know - but you must have a layer3 device (router) between the
two Vlans
you can then apply access lists to the vlan interfaces on the router.
What about dual NIC's in the server one connected to the Lan the other to
the single user   It would be a lot cheeper just don't allow the cards on
the same network and don't let them forward (route) between each other.

hope that's of some help


- Original Message -
From: "Brad Shifflett" <[EMAIL PROTECTED]>
To: "Groupstudy (E-mail)" <[EMAIL PROTECTED]>
Sent: Thursday, March 22, 2001 4:26 PM
Subject: Vlan Question


> Scenario:
> Got a client who has a person on the network that does not want to
> be on the network but wants access to the server. My thought was to
install
> a switch, setup to Vlans, one for all the users (10 or so) and the second
> Vlan for the 1 user by himself. This way no one can get to his machine,
then
> setup an access list to permit his Vlan to access the first Vlan and deny
> all the other users to his Vlan. Does this sound right? Anything I am
> missing? Seeing if I understand Vlans correctly or not.
>
> Brad Shifflett
> [EMAIL PROTECTED]
> Micromenders, Inc.
>
>
> _
> FAQ, list archives, and subscription info:
http://www.groupstudy.com/list/cisco.html
> Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
>

_
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: Linux Security

[Drew Simonis]

Elijah Savage wrote:
> 
> 
> No holy war here either. But I could not resist the reply to this
> comment. Of course it depends on the administrator of the box, but it
> depends also how you install it. I have never installed a linux box with
> ftp or telnet by default(openssh). Because these boxes I setup are
> usually dns or web servers you can install them so that they run in a
> chrooted environments which tends to be a tad bit more secure. This is
> one reason I like nix over any win platform because I can install what I
> want and how I want it, which usually makes a nix box more secure than
> any win platform. So to me how I stated above nix is more secure, but of
> course you have to know what you are doing. You probably will say well
> this is not a base install. And my reply is well if you do a custom
> install which you can do right out of the box without recompiling the
> kernel or anything fancy nix will me more secure than win32 platforms
> out of the box. I would like to see a custom install on win32 instead of
> click here to continue.
> 


These examples prove my point.  You have provided examples of a properly
configured system.  These are not, however, the norm.  You can just as
secure a Win32 system, maybe not during the installation process, but
does that make a difference?  Most Unix systems require alot of post-
installation work to be secured, so the difference is moot.  And just
for an FYI, I am a Sun Certified SysAdmin and Network Admin, as well as
a IBM Certified AIX admin, so I feel I know a thing or two about Unix.

_
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: Looking for used cisco equipment

[Rik]

You would do yourself an injustice if you didn't check with Brad Ellis
before buying anything.  Brad is a CCIE and very knowledgeable about just
about everything Cisco.  Not only that, but he is very honest and his prices
are competetive.  I don't have any affiliation with him except as a
customer.

Here's the URL:http://www.optsys.net

Rik

""Jim Newton"" <[EMAIL PROTECTED]> wrote in message
[EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
> Can anyone send me some online places to buy used equipment. I am looking
> for higher end stuff like 3640 or 3660. I know that there is probably not
> much out there, but need to look anyway.
>
>
>
> _
> FAQ, list archives, and subscription info:
http://www.groupstudy.com/list/cisco.html
> Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
>


_
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: OT - 2513 For Sale

[Bill Cropper]

Too much Luke.  Refer to:

http://search-completed.ebay.com/search/search.dll?query=cisco+2513&ebaytag1=ebayreg&ht=1&SortProperty=MetaEndSort

I will offer $800.00.


-- 
 
  Bill Cropper
  [EMAIL PROTECTED]




On Thu, 22 Mar 2001, Luke Ellezer wrote:

> Hello all,
> 
> 
> Sorry for the out of topic post.  I figured someone
> maybe looking for a 2513 to add to their practice lab.
> 
> 
> I have 1 2513 with 16 MB ram, 16 MB Flash, 1 Ethernet,
> 1 Token Ring.  I will include the media filter cable
> and 1 Ethernet AUI Transceiver.
> 
> I'm asking for $1000.00 obo.
> 
> thanks!
> 
> 
> 
> 
> __
> Do You Yahoo!?
> Get email at your own domain with Yahoo! Mail. 
> http://personal.mail.yahoo.com/
> 
> **NOTE** All LAB SWAP messages should now be sent to the
> LAB SWAP Message board on groupstudy.com.
> ___
> To unsubscribe from the CCIELAB list, send a message to
> [EMAIL PROTECTED] with the body containing:
> unsubscribe ccielab
> 

_
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: Linux Security

[Allen May]

Crap...I don't want a holy war either.

But sheesh...don't say things like the following statement:

> out of the box. I would like to see a custom install on win32 instead of
> click here to continue.

Have you even installed Windows?  There is.  It's called 'Custom' install
and you only select operating system and utilities you want.  There is no
ftp, telnet, http, or ANY client accessible services unless you check the
'Install IIS' box.  There is authenticated login for shares such as c$ which
only administrator of the local box or if it's on domain, admin group of
domain can attach to.  Even then, it requires guessing password and guest is
disabled by default.  X strikes you're out if you go into user manager & set
it.  I'm not saying it's more secure, but more secure than non NT people
give it credit to be.

My install has the O/S, hyperterminal, telnet client, and an unconfigured
web browser as a standalone box with no shares.  Netbios is disabled so the
box isn't even seen on the browse list.  Packet filters deny all except the
ports I want coming in.  Last I read, Redhat was right up there with NT as
preferred box to hack.

Sigh...I hesitate to send this but the "narrow minded" comment was followed
by another one with a false statement.

- Original Message -
From: "Elijah Savage" <[EMAIL PROTECTED]>
To: <[EMAIL PROTECTED]>
Sent: Thursday, March 22, 2001 10:36 AM
Subject: Linux Security


> I know its off topic, but I hate such narrow minded comments...
>
> > If you have ever installed any *ix system, you'd be darn well
>
> > aware that the thing is w i d e open. There is almost
>
> > no security there. It has to be added and maintained. Win32
>
> > systems are similar. Very trusting and friendly until they are
>
> > properly taken care of. Is *ix inherently more secure? no way.
>
> No holy war here either. But I could not resist the reply to this
> comment. Of course it depends on the administrator of the box, but it
> depends also how you install it. I have never installed a linux box with
> ftp or telnet by default(openssh). Because these boxes I setup are
> usually dns or web servers you can install them so that they run in a
> chrooted environments which tends to be a tad bit more secure. This is
> one reason I like nix over any win platform because I can install what I
> want and how I want it, which usually makes a nix box more secure than
> any win platform. So to me how I stated above nix is more secure, but of
> course you have to know what you are doing. You probably will say well
> this is not a base install. And my reply is well if you do a custom
> install which you can do right out of the box without recompiling the
> kernel or anything fancy nix will me more secure than win32 platforms
> out of the box. I would like to see a custom install on win32 instead of
> click here to continue.
>
> I challenge anyone to make a valid, non-ideological based
>
> > comparison of a base Win32 and a base Liux install. If Linux
>
> > were so damned secure in its current state, I woulnd't see IDS
>
> > logs filling up with folks scanning for obvious Linux vulns, now
>
> > would I? Bottom dollar is, without proper administration, both
>
> > Win32 and *ix suck big time. With proper care and feeding, they
>
> > can both become releatively secure.
>
> >
>
> You are seeing IDS logs filling up due to the fact that most script
> kiddies out there are learning nix and what vulnerabilities are
> associated with it. And from my years of experience and dealing with
> these individuals it is more of a challenge for them, like a notch in
> their belt if they compromise a nix box rather than a win32 platform.
> They will be readily accepted by their peers if this is accomplished and
> shunned away for saying hey I cracked a nt server. Due to the fact and
> the latest security survey (I can't remeber right off hand by whom) that
> show due to the recent influx of MCSE certified individuals that lack
> experience on securing these boxes that get broken into its not a
> challenge to them any more. It showed there were a very high number of
> individuals out there that did not even have the known IIS patch
> applied. I am not knocking MCSE individuals here because I myself am a
>
> MCSE+I we all have to start some where. But there are more individuals
>
> out there in the industry with NT boxes than there are with Unix boxes
> under their control.
>
> If you ask me this is some of the reason why you see so many entries in
> your log for nix vulnerabilities than you do for the win32 platform.
>
> -Original Message-
>
> From: W. Alan Robertson
>
> Sent: Thu 3/22/2001 10:23 AM
>
> To: Brian Kimsey-Hickman; [EMAIL PROTECTED]
>
> Cc:
>
> Subject: Re: Anyone tried setting up a Linux TFTP Server
>
> for Cisco?
>
> Rather than get into a Holy War about why Linux is
>
> better than Windows, I
>
> figured I'd just answer your question.
>
> in.tftpd doesn't constantly run like other processes,
>
> like a http ser

RE: CCNA Pass Mark

[Snow Jr., Jim]

75 boss.  Just took/passed it in January and, contrary to some of the
others emails, I took almost every minute to get through it.  Nothing like
the transcender and cisco press exam preps, with different scenarios and,
often, more choices than the usual A, B, C and D!

Good luck

Jim

-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of
Tuan Heng
Sent: Thursday, March 22, 2001 1:57 AM
To: [EMAIL PROTECTED]
Subject: Re: CCNA Pass Mark


So i can conclude that the passing mark is 849/1000 and the number of
questions is 65.

But some ppl say the time given is 75 as oppose to some that mention 90.

So which is it guys?

TIA

Tuan
- Original Message -
From: "Brad Shifflett" <[EMAIL PROTECTED]>
To: <[EMAIL PROTECTED]>
Sent: Wednesday, March 21, 2001 5:12 AM
Subject: RE: CCNA Pass Mark


> I can verify the same, 849 to pass, 65 questions, I believe the time is 90
> minutes. Tough exam, but passed with a 881.
>
> Brad Shifflett
> CCNA, MCSE, CNA
> [EMAIL PROTECTED]
> Micromenders, Inc.
>
>
>
> -Original Message-
> From: Dan Kline [mailto:[EMAIL PROTECTED]]
> Sent: Tuesday, March 20, 2001 12:52 PM
> To: [EMAIL PROTECTED]
> Subject: Re: CCNA Pass Mark
>
>
> 849 to pass is correct. I took the test a little over a week ago and 849
is
> passing according to the Score Report that prints out.
>
> Dan Kline
>
> "Liang Mark J Civ AFRL/PROI" <[EMAIL PROTECTED]> wrote in message
> [EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
> > No anymore! It is 65 questions, 849 to pass.
> >
> > -Original Message-
> > From: Traceroute [mailto:[EMAIL PROTECTED]]
> > Sent: Tuesday, March 20, 2001 7:30 AM
> > To: Tuan Heng; [EMAIL PROTECTED]
> > Subject: Re: CCNA Pass Mark
> >
> > 65 questions, 822 to pass
> > - Original Message -
> > From: "Tuan Heng" <[EMAIL PROTECTED]>
> > To: <[EMAIL PROTECTED]>
> > Sent: Tuesday, March 20, 2001 12:04 AM
> > Subject: CCNA Pass Mark
> >
> >
> > > Hi All,
> > >
> > > I have read 2 conflicting reports on the number of questions and
passing
> =
> > > mark for CCNA 2.0, one from Examcram while another from Que.
> > >
> > > Could someone tell me the ACTUAL number of questions,time frame given
=
> > > and passing mark?
> > >
> > > TIA
> > >
> > > Tan
> > >
> > > _
> > > FAQ, list archives, and subscription info:
> > http://www.groupstudy.com/list/cisco.html
> > > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
> >
> > _
> > FAQ, list archives, and subscription info:
> > http://www.groupstudy.com/list/cisco.html
> > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
> >
> > _
> > FAQ, list archives, and subscription info:
> http://www.groupstudy.com/list/cisco.html
> > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
> >
>
>
> _
> FAQ, list archives, and subscription info:
> http://www.groupstudy.com/list/cisco.html
> Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
>
> _
> FAQ, list archives, and subscription info:
http://www.groupstudy.com/list/cisco.html
> Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

_
FAQ, list archives, and subscription info:
http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

_
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

RE: RJ45 ethernet to cisco Serial conversion?

[Howard C. Berkowitz]

about the closest thing I can think of is an Apple LocalTalk to
Ethernet bridge.  These are cigarette-pack-sized and around
$100.  Do note that these are bridges, not physical converters.

But there's also a visible requirement for them, which, in
turn, means the market will respond.   One of the things that
comes with experience is having a sense of what realistically
is available and affordable, and when it just doesn't make sense
to spend the effort on searching.


At 10:03 AM 3/22/2001 -0700, you wrote:
>I suppose we were making it more difficult than it needed to be.  If you
>were simply asking if it exists, then the answer is yes.  It's called a
>router.There is no simple interface converter alone that can
>handle all the issues.  Something with more intelligence is necessary.
>
> >>> "Neil Schneider" <[EMAIL PROTECTED]> 3/22/01 9:48:07
>AM >>>
>  I agree with you about the issues.  I wasn't ever asking a question
>about
>how the technologies worked, just whether anyone had heard or seen of
>such a
>device.  Again,  I am not saying it would make sense, just whether it
>exists.
>
>Neil
>
>
>
>-Original Message-
>From: John Neiberger
>To: [EMAIL PROTECTED]
>Cc: [EMAIL PROTECTED]
>Sent: 3/22/01 11:28 AM
>Subject: Re: RJ45 ethernet to cisco Serial conversion?
>
>There are two separate issues that need to be dealt with to accomplish
>your goal.  First you need to deal with the physical issue, which in a
>way is what that bridging device does for you.  It allows you to place
>ethernet data onto a WAN link, but it also requires the same device to
>be on the other end of the link to convert this serialized-ethernet to
>standard ethernet.  This is just bridging, not true media conversion.
>
>There are yet other physical issues like clocking and encoding.  A
>synchronous serial link places bits on the wire in a way that would be
>completely incomprehensible to an ethernet speaker and vice versa.  To
>handle the clocking issue you certainly would need a device that can
>provide clocking for the serial port, which that bridging unit does.
>
>The second issue is the datalink encapsulation.  In ethernet, you're
>using Ethernet v2 or 802.3 frames as your encapsulation, whereas the
>serial link is using either HDLC, PPP, or frame relay.  Again, these
>are
>so much different than ethernet that it requires some intelligence to
>convert between them.
>
>This is why a router is necessary and no simple converter can handle
>it.  A two-port router would be needed to successfully accomplish this
>task.  I think that is why Priscilla pointed you to that link.
>Instead
>of answering the question outright, she pointed you to material
>that--upon digestion--would lead to the answer.
>
>HTH,
>John
>
> >>> "Neil Schneider" <[EMAIL PROTECTED]> 3/22/01 9:06:57
>AM >>>
>Priscilla,
>
>I usually look forward to your posts,  but I think you are way off
>base
>with
>this response.  Pointing to the cisco page describing different
>technologies
>does absolutely nothing to answer my original question.  I also relize
>that
>a converter/transiever such as this would have limited use in a real
>world
>situation, but that certainly does not mean it doesnt exist.
>Obvoiusly we can move data between ethernet and serial, that is what
>is
>being done in the router itself, so your train/bus senario is
>meaningless.
>What I was looking for was an external device that can do this without
>resorting to using another router such as -->>
>
>ethernet -->routerA rj45 routerA serial --->routerB serial
>routerB
>rj45--->ethernet
>
>I want to do:
>
>ehternet ---> external converter >routerA serial---routerA
>rj45 --->ethernet
>
>Neil Schneider
>
>
>
>
>Priscilla Oppenheimer <[EMAIL PROTECTED]> wrote in message
>[EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
> > The question doesn't even make sense. It would be like asking "what
>could
>I
> > use to convert a train station to a bus station?"
> >
> > Read the document.
> >
> > http://www.cisco.com/univercd/cc/td/doc/cisintwk/ito_doc/index.htm
> >
> > Priscilla
> >
> > At 10:19 AM 3/22/01, you wrote:
> > >whoever comes up with the converter will be rich...
> > >
> > >-Original Message-
> > >From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf
>Of
> > >Priscilla Oppenheimer
> > >Sent: Thursday, March 22, 2001 9:29 AM
> > >To: [EMAIL PROTECTED]
> > >Subject: RE: RJ45 ethernet to cisco Serial conversion?
> > >
> > >
> > >At 12:27 AM 3/22/01, Lim Jit Cheng wrote:
> > > >it's not all gone..   there is such converter
> > > >
> > > >http://www.lanode.com/tier2/et10.htm
> > >
> > >That's not a converter. It's a bridge.
> > >
> > >Here's a good document to help you and the person who asked the
>original
> > >question:
> > >
> > >http://www.cisco.com/univercd/cc/td/doc/cisintwk/ito_doc/index.htm
> > >
> > >Priscilla
> > >
> > >
> > >
> > >
> > > >i wonder how much is the price.. i am interested too.
> > > >
> > > >
> > > >-Original Message-
> > > >From: [EMAIL PR

password recovery

[cdmb]

I am trying to recover or reset a password on a 5500. =20

When I connected to change passord I got the following:
CORE2_prod> (enable) set password ?
  
CORE2_prod> (enable) set password blabla
Usage: set password
CORE2_prod> (enable) set password =20
Enter old password:=20
Sorry password incorrect.

After time-out of line I can not seem to log back into the switch.


Thoughts: Is there a way to change the pass via snmp with out loading =
and entire new config or to change password w/ out reboot.

I am uncertain if I tftp a config  containing the new password (via =
snmp) would it merge the command in to running or will it blank or =
overwrite it.

_
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: Looking for used cisco equipment

[Brian]

There are tons of ads in the back of magazines like pc magazine and
sun/workstation expert.  www.mce.com and www.recurrent.com are a couple
shops I have dealt with.

Bri


"Rik" <[EMAIL PROTECTED]> wrote in message
99dh2e$sh1$[EMAIL PROTECTED]">news:99dh2e$sh1$[EMAIL PROTECTED]...
> You would do yourself an injustice if you didn't check with Brad Ellis
> before buying anything.  Brad is a CCIE and very knowledgeable about just
> about everything Cisco.  Not only that, but he is very honest and his
prices
> are competetive.  I don't have any affiliation with him except as a
> customer.
>
> Here's the URL:http://www.optsys.net
>
> Rik
>
> ""Jim Newton"" <[EMAIL PROTECTED]> wrote in message
> [EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
> > Can anyone send me some online places to buy used equipment. I am
looking
> > for higher end stuff like 3640 or 3660. I know that there is probably
not
> > much out there, but need to look anyway.
> >
> >
> >
> > _
> > FAQ, list archives, and subscription info:
> http://www.groupstudy.com/list/cisco.html
> > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
> >
>
>
> _
> FAQ, list archives, and subscription info:
http://www.groupstudy.com/list/cisco.html
> Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
>


_
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

RE: Cisco support for VRRP any platform ?

[Chris Lemagie]

Not yet.  We are working on a VRRP implementation though.

HSRP offers much more functionality than VRRP, but of course it is limited
to usage with other Cisco devices.

Chris Lemagie
-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of
Curtis Phillips
Sent: Thursday, March 22, 2001 9:19 AM
To: [EMAIL PROTECTED]; [EMAIL PROTECTED]
Subject: Cisco support for VRRP any platform ?


Does anyone know if any IOS version supports VRRP on any of the standard
platforms?


Thanks,

Curtis

__
Get your own FREE, personal Netscape Webmail account today at
http://webmail.netscape.com/

_
FAQ, list archives, and subscription info:
http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

_
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

RE: Looking for used cisco equipment

[Dennis Laganiere]

Here, here...

I would agree totally.  I've done quite a bit of business with Brad, and
he's always done me right.  He has the equipment, he knows what he's talking
about, the price is good, and it gets here quick.  

Good guy to do business with...

--- Dennis

-Original Message-
From: Rik [mailto:[EMAIL PROTECTED]]
Sent: Thursday, March 22, 2001 9:34 AM
To: [EMAIL PROTECTED]
Subject: Re: Looking for used cisco equipment


You would do yourself an injustice if you didn't check with Brad Ellis
before buying anything.  Brad is a CCIE and very knowledgeable about just
about everything Cisco.  Not only that, but he is very honest and his prices
are competetive.  I don't have any affiliation with him except as a
customer.

Here's the URL:http://www.optsys.net

Rik

""Jim Newton"" <[EMAIL PROTECTED]> wrote in message
[EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
> Can anyone send me some online places to buy used equipment. I am looking
> for higher end stuff like 3640 or 3660. I know that there is probably not
> much out there, but need to look anyway.
>
>
>
> _
> FAQ, list archives, and subscription info:
http://www.groupstudy.com/list/cisco.html
> Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
>


_
FAQ, list archives, and subscription info:
http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

_
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: Vlan Question

[Howard C. Berkowitz]

At 08:26 AM 3/22/2001 -0800, you wrote:
>Scenario:
> Got a client who has a person on the network that does not want to
>be on the network but wants access to the server.

I'm somewhat confused. First, if he is somehow hidden, how does the server
send back to the client?

Second, if he is on one VLAN/subnet and the server is on another,
sounds like a fairly basic routing application.  Another would be to
have a VLAN-aware NIC on the server.

Without further information, this sounds like a user whim rather than
a real requirement.  There's a flavor of the user wanting security
by obscurity.

>My thought was to install
>a switch, setup to Vlans, one for all the users (10 or so) and the second
>Vlan for the 1 user by himself. This way no one can get to his machine, then
>setup an access list to permit his Vlan to access the first Vlan and deny
>all the other users to his Vlan. Does this sound right? Anything I am
>missing? Seeing if I understand Vlans correctly or not.
>
>Brad Shifflett
>[EMAIL PROTECTED]
>Micromenders, Inc.
>
>
>_
>FAQ, list archives, and subscription info: 
>http://www.groupstudy.com/list/cisco.html
>Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

_
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

RE: Cisco support for VRRP any platform ?

[Leah Lynch]

Someone has mentioned that Juniper supports Cisco HSRP too. I have not
confirmed that.


Leah

-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of
Chris Lemagie
Sent: Thursday, March 22, 2001 9:57 AM
To: Curtis Phillips; [EMAIL PROTECTED]; [EMAIL PROTECTED]
Subject: RE: Cisco support for VRRP any platform ?


Not yet.  We are working on a VRRP implementation though.

HSRP offers much more functionality than VRRP, but of course it is limited
to usage with other Cisco devices.

Chris Lemagie
-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of
Curtis Phillips
Sent: Thursday, March 22, 2001 9:19 AM
To: [EMAIL PROTECTED]; [EMAIL PROTECTED]
Subject: Cisco support for VRRP any platform ?


Does anyone know if any IOS version supports VRRP on any of the standard
platforms?


Thanks,

Curtis

__
Get your own FREE, personal Netscape Webmail account today at
http://webmail.netscape.com/

_
FAQ, list archives, and subscription info:
http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

**NOTE** All LAB SWAP messages should now be sent to the
LAB SWAP Message board on groupstudy.com.
___
To unsubscribe from the CCIELAB list, send a message to
[EMAIL PROTECTED] with the body containing:
unsubscribe ccielab

_
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: password recovery

[cdmb]

In addition:


Having an old copy of the config and comparing it to the last sh conf that
took place before I got timed out



>From saved config
set password $2$DgrG$Htli9koaQU733mDiAWhY70
set enablepass $2$XIgz$h1pOGFyddveGlVAFCdrrk/


>From running before lockout
set password $1$DgrG$Htli9koaQU733mDiAWhY70
set enablepass $2$XIgz$h1pOGFyddveGlVAFCdrrk/

the only diff I can see is the $1 and $2






- Original Message -
From: "cdmb" <[EMAIL PROTECTED]>
To: <[EMAIL PROTECTED]>
Sent: Thursday, March 22, 2001 12:51 PM
Subject: password recovery


> I am trying to recover or reset a password on a 5500. =20
>
> When I connected to change passord I got the following:
> CORE2_prod> (enable) set password ?
>   
> CORE2_prod> (enable) set password blabla
> Usage: set password
> CORE2_prod> (enable) set password =20
> Enter old password:=20
> Sorry password incorrect.
>
> After time-out of line I can not seem to log back into the switch.
>
>
> Thoughts: Is there a way to change the pass via snmp with out loading =
> and entire new config or to change password w/ out reboot.
>
> I am uncertain if I tftp a config  containing the new password (via =
> snmp) would it merge the command in to running or will it blank or =
> overwrite it.
>
> _
> FAQ, list archives, and subscription info:
http://www.groupstudy.com/list/cisco.html
> Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
>

_
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

RE: Anyone tried setting up a Linux TFTP Server for Cisco?

[Elijah Savage]
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Re: RE: Cisco support for VRRP any platform ?

[Curtis Phillips]

Juniper definitely does not support HSRP as it is Cisco proprietary.


"Leah Lynch" <[EMAIL PROTECTED]> wrote:
>
> Someone has mentioned that Juniper supports Cisco HSRP too. I have not
> confirmed that.
> 
> 
> Leah
> 
> -Original Message-
> From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of
> Chris Lemagie
> Sent: Thursday, March 22, 2001 9:57 AM
> To: Curtis Phillips; [EMAIL PROTECTED]; [EMAIL PROTECTED]
> Subject: RE: Cisco support for VRRP any platform ?
> 
> 
> Not yet.  We are working on a VRRP implementation though.
> 
> HSRP offers much more functionality than VRRP, but of course it is limited
> to usage with other Cisco devices.
> 
> Chris Lemagie
> -Original Message-
> From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of
> Curtis Phillips
> Sent: Thursday, March 22, 2001 9:19 AM
> To: [EMAIL PROTECTED]; [EMAIL PROTECTED]
> Subject: Cisco support for VRRP any platform ?
> 
> 
> Does anyone know if any IOS version supports VRRP on any of the standard
> platforms?
> 
> 
> Thanks,
> 
> Curtis
> 
> __
> Get your own FREE, personal Netscape Webmail account today at
> http://webmail.netscape.com/
> 
> _
> FAQ, list archives, and subscription info:
> http://www.groupstudy.com/list/cisco.html
> Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
> 
> **NOTE** All LAB SWAP messages should now be sent to the
> LAB SWAP Message board on groupstudy.com.
> ___
> To unsubscribe from the CCIELAB list, send a message to
> [EMAIL PROTECTED] with the body containing:
> unsubscribe ccielab
> 
> **NOTE** All LAB SWAP messages should now be sent to the
> LAB SWAP Message board on groupstudy.com.
> ___
> To unsubscribe from the CCIELAB list, send a message to
> [EMAIL PROTECTED] with the body containing:
> unsubscribe ccielab
> 
__
Get your own FREE, personal Netscape Webmail account today at 
http://webmail.netscape.com/

_
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Orange County group

[EA LOUIE]

You can check with the OCCUG (Orange County Cisco Users Group)

http://www.occug.com/

-e-

[EMAIL PROTECTED] wrote:
> HI
> does anybody know of a study group in Orange County, CA? Please respond.
> Greatly appreciated.
> 
> Adela P. Carter
> Network Support Specialist 
> (949)794- #125
> [EMAIL PROTECTED]
> 
> 
> International Education Corporation.
> http://www.IECGLOBAL.COM.
> 
> 
> 
> _
> FAQ, list archives, and subscription info:
http://www.groupstudy.com/list/cisco.html
> Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]



Get free email and a permanent address at http://www.netaddress.com/?N=1

_
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

CCDA # of questions and passing score?

[Daniel Serna]

Hello,

I looked through recent archives of this list to find the answer but
didn't. Does anyone know aprox how many questions there are on the CCDA
test and what the passing score is? I get the "joy" of taking tomorrow and
would like to get as much info as possible.

Thanks,

-Daniel-

_
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Autonomous Systems

[Alassar, Sonia]

Can someone tell me why a single autonomous system (AS) is better than
having multiple autonomous systems?

Sonia

_
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

monitoring PIX

[Florin Mechetiuc]

Hi all,

Do you guys know a tool that you can monitor a PIX firewall with?
I mean something that you can monitor memory , CPU, bandwidth usage, etc...

Thanks,

Florin Mechetiuc
[EMAIL PROTECTED]




_
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Netflow

[Clay McSpadden]

Has anybody had exp with netflow and the possibility of it's integration with 
micomuse's netcool? I could use some help with the minimum requirements to implement 
it. after browsing cisco i'm still confused about what all I need to implement it. TIA

_
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: RJ45 ethernet to cisco Serial conversion?

[Priscilla Oppenheimer]

At 11:06 AM 3/22/01, Neil Schneider wrote:
>Priscilla,
>
>I usually look forward to your posts,  but I think you are way off base with
>this response.  Pointing to the cisco page describing different technologies
>does absolutely nothing to answer my original question.

I'm sorry I was snide, but I was serious. That document describes 
internetworking, not just technologies. Internetworking is what you need to 
do what you are talking about. You need a bridge or a router.

>I also relize that
>a converter/transiever such as this would have limited use in a real world
>situation, but that certainly does not mean it doesnt exist.
>Obvoiusly we can move data between ethernet and serial, that is what is
>being done in the router itself, so your train/bus senario is meaningless.

A device that would convert between a train station and a bus station would 
be analogous to a router or a bridge in the internetworking world.

Think about a train station. A train station is where trains arrive. Trains 
are different than buses. They run on different tracks than buses. They go 
at different speeds than buses. They hold cargo differently. They have 
different headers and footers (caboose, engine). That is analogous to the 
differences between serial and Ethernet. Serial and Ethernet use different 
physical layer bit representations. They use different frames. They use 
different clocking and run at different speeds. They user different 
physical interfaces. They have different error correction methods. There 
are many more differences that I won't get into because I'm in a bit of a rush.

I still suggest reading that document! Seriously.

Priscilla

>What I was looking for was an external device that can do this without
>resorting to using another router such as -->>
>
>ethernet -->routerA rj45 routerA serial --->routerB serial routerB
>rj45--->ethernet
>
>I want to do:
>
>ehternet ---> external converter >routerA serial---routerA
>rj45 --->ethernet
>
>Neil Schneider
>
>
>
>
>Priscilla Oppenheimer <[EMAIL PROTECTED]> wrote in message
>[EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
> > The question doesn't even make sense. It would be like asking "what could
>I
> > use to convert a train station to a bus station?"
> >
> > Read the document.
> >
> > http://www.cisco.com/univercd/cc/td/doc/cisintwk/ito_doc/index.htm
> >
> > Priscilla
> >
> > At 10:19 AM 3/22/01, you wrote:
> > >whoever comes up with the converter will be rich...
> > >
> > >-Original Message-
> > >From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of
> > >Priscilla Oppenheimer
> > >Sent: Thursday, March 22, 2001 9:29 AM
> > >To: [EMAIL PROTECTED]
> > >Subject: RE: RJ45 ethernet to cisco Serial conversion?
> > >
> > >
> > >At 12:27 AM 3/22/01, Lim Jit Cheng wrote:
> > > >it's not all gone..   there is such converter
> > > >
> > > >http://www.lanode.com/tier2/et10.htm
> > >
> > >That's not a converter. It's a bridge.
> > >
> > >Here's a good document to help you and the person who asked the original
> > >question:
> > >
> > >http://www.cisco.com/univercd/cc/td/doc/cisintwk/ito_doc/index.htm
> > >
> > >Priscilla
> > >
> > >
> > >
> > >
> > > >i wonder how much is the price.. i am interested too.
> > > >
> > > >
> > > >-Original Message-
> > > >From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of
> > > >John Neiberger
> > > >Sent: Wednesday, March 21, 2001 11:51 PM
> > > >To: [EMAIL PROTECTED]
> > > >Cc: [EMAIL PROTECTED]
> > > >Subject: Re: RJ45 ethernet to cisco Serial conversion?
> > > >
> > > >
> > > >There is no way to connect an ethernet interface to a serial interface,
> > > >they are entirely different technologies.  Your only option would be to
> > > >add another router to do the media conversion.
> > > >
> > > >Or, you could buy a hub/switch and use that to connect the dsl router,
> > > >the lan, and your 2501.  However, that's not the greatest solution and
> > > >it doesn't really accomplish your goal.
> > > >
> > > >HTH,
> > > >John
> > > >
> > > > >>> "Neil Schneider" <[EMAIL PROTECTED]> 3/21/01 8:28:06
> > > >AM >>>
> > > >I want to be able to plug my DSL modem into the serial port on my
> > > >2501,
> > > >leaving the ethernet port available for my lan.  Does anyone know of a
> > > >converter/transiever that will allow me to do this?
> > > >Thanks in advance.
> > > >
> > > >Neil
> > > >
> > > >




Priscilla Oppenheimer
http://www.priscilla.com

_
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: RE: Cisco support for VRRP any platform ?

[dre]

http://www.rfc-editor.org/rfc/rfc2281.txt

"Curtis Phillips" <[EMAIL PROTECTED]> wrote in message
[EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
> Juniper definitely does not support HSRP as it is Cisco proprietary.
>
>
> "Leah Lynch" <[EMAIL PROTECTED]> wrote:
> >
> > Someone has mentioned that Juniper supports Cisco HSRP too. I have not
> > confirmed that.
> >
> >
> > Leah
> >
> > -Original Message-
> > From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of
> > Chris Lemagie
> > Sent: Thursday, March 22, 2001 9:57 AM
> > To: Curtis Phillips; [EMAIL PROTECTED]; [EMAIL PROTECTED]
> > Subject: RE: Cisco support for VRRP any platform ?
> >
> >
> > Not yet. We are working on a VRRP implementation though.
> >
> > HSRP offers much more functionality than VRRP, but of course it is
limited
> > to usage with other Cisco devices.
> >
> > Chris Lemagie
> > -Original Message-
> > From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of
> > Curtis Phillips
> > Sent: Thursday, March 22, 2001 9:19 AM
> > To: [EMAIL PROTECTED]; [EMAIL PROTECTED]
> > Subject: Cisco support for VRRP any platform ?
> >
> >
> > Does anyone know if any IOS version supports VRRP on any of the standard
> > platforms?
> >
> >
> > Thanks,
> >
> > Curtis
> >
> > __
> > Get your own FREE, personal Netscape Webmail account today at
> > http://webmail.netscape.com/
> >
> > _
> > FAQ, list archives, and subscription info:
> > http://www.groupstudy.com/list/cisco.html
> > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
> >
> > **NOTE** All LAB SWAP messages should now be sent to the
> > LAB SWAP Message board on groupstudy.com.
> > ___
> > To unsubscribe from the CCIELAB list, send a message to
> > [EMAIL PROTECTED] with the body containing:
> > unsubscribe ccielab
> >
> > **NOTE** All LAB SWAP messages should now be sent to the
> > LAB SWAP Message board on groupstudy.com.
> > ___
> > To unsubscribe from the CCIELAB list, send a message to
> > [EMAIL PROTECTED] with the body containing:
> > unsubscribe ccielab
> >
> __
> Get your own FREE, personal Netscape Webmail account today at
http://webmail.netscape.com/
>
> _
> FAQ, list archives, and subscription info:
http://www.groupstudy.com/list/cisco.html
> Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
>


_
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Pix: intercept and redirect

[Doug Roberts]

I've had a request to have our Pix firewall catch inbound traffic headed 
for host A and redirect it to host B. We do not have NAT enabled on the Pix 
(ver 5.1).

Am I missing something? I don't see a way to do this.


Doug
==
"There are a lot of interesting people here, a pretty high concentration of 
creative, interesting, smart people. You just have to make an effort to 
group them together, because they're interspersed with a lot of morons."

Aimee Mann as quoted in The Onion
==

_
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

RE: RE: Cisco support for VRRP any platform ?

[Mark Stover]

RFC2281 -- Cisco Hot Standby Router Protocol, coauthored by two Juniper and two Cisco 
employees

-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of
Curtis Phillips
Sent: Thursday, March 22, 2001 1:36 PM
To: [EMAIL PROTECTED]
Cc: [EMAIL PROTECTED]; [EMAIL PROTECTED];
[EMAIL PROTECTED]; [EMAIL PROTECTED]
Subject: Re: RE: Cisco support for VRRP any platform ?


Juniper definitely does not support HSRP as it is Cisco proprietary.


"Leah Lynch" <[EMAIL PROTECTED]> wrote:
>
> Someone has mentioned that Juniper supports Cisco HSRP too. I have not
> confirmed that.
> 
> 
> Leah
> 
> -Original Message-
> From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of
> Chris Lemagie
> Sent: Thursday, March 22, 2001 9:57 AM
> To: Curtis Phillips; [EMAIL PROTECTED]; [EMAIL PROTECTED]
> Subject: RE: Cisco support for VRRP any platform ?
> 
> 
> Not yet.  We are working on a VRRP implementation though.
> 
> HSRP offers much more functionality than VRRP, but of course it is limited
> to usage with other Cisco devices.
> 
> Chris Lemagie
> -Original Message-
> From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of
> Curtis Phillips
> Sent: Thursday, March 22, 2001 9:19 AM
> To: [EMAIL PROTECTED]; [EMAIL PROTECTED]
> Subject: Cisco support for VRRP any platform ?
> 
> 
> Does anyone know if any IOS version supports VRRP on any of the standard
> platforms?
> 
> 
> Thanks,
> 
> Curtis
> 
> __
> Get your own FREE, personal Netscape Webmail account today at
> http://webmail.netscape.com/
> 
> _
> FAQ, list archives, and subscription info:
> http://www.groupstudy.com/list/cisco.html
> Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
> 
> **NOTE** All LAB SWAP messages should now be sent to the
> LAB SWAP Message board on groupstudy.com.
> ___
> To unsubscribe from the CCIELAB list, send a message to
> [EMAIL PROTECTED] with the body containing:
> unsubscribe ccielab
> 
> **NOTE** All LAB SWAP messages should now be sent to the
> LAB SWAP Message board on groupstudy.com.
> ___
> To unsubscribe from the CCIELAB list, send a message to
> [EMAIL PROTECTED] with the body containing:
> unsubscribe ccielab
> 
__
Get your own FREE, personal Netscape Webmail account today at 
http://webmail.netscape.com/

**NOTE** All LAB SWAP messages should now be sent to the
LAB SWAP Message board on groupstudy.com.
___
To unsubscribe from the CCIELAB list, send a message to
[EMAIL PROTECTED] with the body containing:
unsubscribe ccielab

_
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: CCDA # of questions and passing score?

[Mask Of Zorro]

You'll be given this information as you begin the test. Of what use is it 
before then?

It only serves to distract you from the material. Know the material, and you 
can answer with confidence. Then you will pass... If you worry about the 
numbers, or watch the clock too much, etc. you may end up failing...

Z

>From: Daniel Serna <[EMAIL PROTECTED]>
>Reply-To: Daniel Serna <[EMAIL PROTECTED]>
>To: [EMAIL PROTECTED]
>Subject: CCDA # of questions and passing score?
>Date: Thu, 22 Mar 2001 10:38:08 -0800 (PST)
>
>Hello,
>
>I looked through recent archives of this list to find the answer but
>didn't. Does anyone know aprox how many questions there are on the CCDA
>test and what the passing score is? I get the "joy" of taking tomorrow and
>would like to get as much info as possible.
>
>Thanks,
>
>-Daniel-
>
>_
>FAQ, list archives, and subscription info: 
>http://www.groupstudy.com/list/cisco.html
>Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

_
Get your FREE download of MSN Explorer at http://explorer.msn.com

_
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Do I Need More Than This To Complete A Fairly Decent Home Lab ????

[Ray Smith]

Guys,
 
I have the following equipment and need to know what type of upgrades and/or 
modifications are needed:-
 
1. Cisco Series 4000 (4 serial, 1 Ethernet)
2. Cisco Series 4000-M (4 serial, 2 Ethernet, and 1 Token-ring interface)
3. Cisco Series 4700 (4 serial, 6 Ethernet, 1 Token-ring interface)
4. Cisco Series 2525 (4 wire 56k/64k DSU/CSU, 1 ISDN BRI, 1 Token-ring)
5. Cisco Series 2501
 
Should I be looking for somethings else.
 Get your FREE download of MSN Explorer at http://explorer.msn.com">http://explorer.msn.com

_
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

RE: difficult ccna question

[David A. Lauer]

Wouldn't the first subnet be 172.16.0.0?

-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of
Joshua Beining
Sent: Thursday, March 22, 2001 11:43 AM
To: 'Lowell Sharrah'
Cc: '[EMAIL PROTECTED]'
Subject: RE: difficult ccna question


Based on the subnet mask (255.255.192.0) subtract 256 from 192 which is 64.
Therefore 64 is your first subnet.  To get the second subnet, add 64 to the
first subnet.  To get the third add 64 to the second subnet and so on.
Continue in this fashion until you reach 192.  Remember that you cannot use
the ranges 172.16.0.1  -  172.16.0.62 and 172.16.255.193  -  172.16.255.254
(network and broadcast respectively) unless your router is configured to do
so.

Subnet  Host Range
1   172.16.0.65  -  172.16.0.126
2   172.16.0.129  -  172.16.0.190
3   172.16.0.193  -  172.16.0.254
4   172.16.1.1  -  172.16.1.62
5   172.16.1.65  -  172.16.1.126
6   172.16.1.129  -  172.16.1.190
7   172.16.1.193  -  172.16.1.254
8   172.16.2.1  -  172.16.2.62
9   172.16.2.65  -  172.16.2.126
   10   172.16.2.129  -  172.16.2.190
.
.
.
.
.
.

 1015   172.16.253.193  -  172.16.253.254
 1016   172.16.254.1  -  172.16.254.62
 1017   172.16.254.65  -  172.16.254.126
 1018   172.16.254.129  -  172.16.254.190
 1019   172.16.254.193  -  172.16.254.254
 1020   172.16.255.1  -  172.16.255.62
 1021   172.16.255.65  -  172.16.255.126
 1022   172.16.255.129  -  172.16.255.190

-Joshua
-Original Message-
From: Lowell Sharrah [mailto:[EMAIL PROTECTED]]
Sent: Thursday, March 22, 2001 8:14 AM
To: [EMAIL PROTECTED]
Subject: RE: difficult ccna question


how do you know where the first subnet begins?

>>> Joshua Beining <[EMAIL PROTECTED]> 03/22/01 10:34AM >>>
Just remember the following fomulas:

(2^# of masked bits) - 2 = Total # of subnets
(2^# of unmasked bits - 2 = Total # of hosts

Based on this the correct answer is A.

-Original Message-
From: George [mailto:[EMAIL PROTECTED]]
Sent: Thursday, March 22, 2001 12:16 AM
To: [EMAIL PROTECTED]
Subject: difficult ccna question


if you have a class B network with a 10-bit subnet mask, how many subnet and
how many hosts do you have?

a. 1022 subnets, 62 hosts
b. 62 subnets, 8190 hosts
c. 8190 subnets, 254 hosts
d. 254 subnets , 126 hosts


_
FAQ, list archives, and subscription info:
http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

_
FAQ, list archives, and subscription info:
http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

_
FAQ, list archives, and subscription info:
http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

_
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: Anyone tried setting up a Linux TFTP Server for Cisco?

[Allen May]

It did have an artistic beauty to it until the >inserts messed it up tho ;)

- Original Message - 
From: "Elijah Savage" <[EMAIL PROTECTED]>
To: "Allen May" <[EMAIL PROTECTED]>; <[EMAIL PROTECTED]>
Sent: Thursday, March 22, 2001 12:22 PM
Subject: RE: Anyone tried setting up a Linux TFTP Server for Cisco?


> I can't believe you make fun of my giberish native language. lol :)
> 
> -Original Message- 
> From: Allen May 
> Sent: Thu 3/22/2001 11:45 AM 
> To: Elijah Savage; [EMAIL PROTECTED] 
> Cc: 
> Subject: Re: Anyone tried setting up a Linux TFTP Server for
> Cisco?
> 
> 
> 
> You should spell check your emails before sending. ;)
> 
> - Original Message -
> From: "Elijah Savage" <[EMAIL PROTECTED]>
> To: "W. Alan Robertson" <[EMAIL PROTECTED]>; "Brian
> Kimsey-Hickman"
> <[EMAIL PROTECTED]>; <[EMAIL PROTECTED]>
> Sent: Thursday, March 22, 2001 10:16 AM
> Subject: RE: Anyone tried setting up a Linux TFTP Server for
> Cisco?
> 
> 
> >
> 
> SSBrbm93IGl0cyBvZmYgdG9waWMsIGJ1dCBJIGhhdGUgc3VjaCBuYXJyb3cgbWluZGVkIGNv
> bW1l
> >
> 
> bnRzLi4uDQo+IElmIHlvdSBoYXZlIGV2ZXIgaW5zdGFsbGVkIGFueSAqaXggc3lzdGVtLCB5
> b3Un
> >
> 
> ZCBiZSBkYXJuIHdlbGwNCj4gYXdhcmUgdGhhdCB0aGUgdGhpbmcgaXMgICAgdyAgaSAgZCAg
> ZSAg
> >
> 
> IG9wZW4uICBUaGVyZSBpcyBhbG1vc3QNCj4gbm8gc2VjdXJpdHkgdGhlcmUuICBJdCBoYXMg
> dG8g
> >
> 
> YmUgYWRkZWQgYW5kIG1haW50YWluZWQuICBXaW4zMg0KPiBzeXN0ZW1zIGFyZSBzaW1pbGFy
> LiAg
> >
> 
> VmVyeSB0cnVzdGluZyBhbmQgZnJpZW5kbHkgdW50aWwgdGhleSBhcmUNCj4gcHJvcGVybHkg
> dGFr
> >
> 
> ZW4gY2FyZSBvZi4gIElzICppeCBpbmhlcmVudGx5IG1vcmUgc2VjdXJlPyAgbm8gd2F5Lg0K
> DQog
> >
> 
> DQpObyBob2x5IHdhciBoZXJlIGVpdGhlci4gQnV0IEkgY291bGQgbm90IHJlc2lzdCB0aGUg
> cmVw
> >
> 
> bHkgdG8gdGhpcw0KY29tbWVudC4gT2YgY291cnNlIGl0IGRlcGVuZHMgb24gdGhlIGFkbWlu
> aXN0
> >
> 
> cmF0b3Igb2YgdGhlIGJveCwgYnV0IGl0DQpkZXBlbmRzIGFsc28gaG93IHlvdSBpbnN0YWxs
> IGl0
> >
> 
> LiBJIGhhdmUgbmV2ZXIgaW5zdGFsbGVkIGEgbGludXggYm94IHdpdGgNCmZ0cCBvciB0ZWxu
> ZXQg
> >
> 
> YnkgZGVmYXVsdChvcGVuc3NoKS4gQmVjYXVzZSB0aGVzZSBib3hlcyBJIHNldHVwIGFyZQ0K
> dXN1
> >
> 
> YWxseSBkbnMgb3Igd2ViIHNlcnZlcnMgeW91IGNhbiBpbnN0YWxsIHRoZW0gc28gdGhhdCB0
> aGV5
> >
> 
> IHJ1biBpbiBhDQpjaHJvb3RlZCBlbnZpcm9ubWVudHMgd2hpY2ggdGVuZHMgdG8gYmUgYSB0
> YWQg
> >
> 
> Yml0IG1vcmUgc2VjdXJlLiBUaGlzIGlzDQpvbmUgcmVhc29uIEkgbGlrZSBuaXggb3ZlciBh
> bnkg
> >
> 
> d2luIHBsYXRmb3JtIGJlY2F1c2UgSSBjYW4gaW5zdGFsbCB3aGF0IEkNCndhbnQgYW5kIGhv
> dyBJ
> >
> 
> IHdhbnQgaXQsIHdoaWNoIHVzdWFsbHkgbWFrZXMgYSBuaXggYm94IG1vcmUgc2VjdXJlIHRo
> YW4N
> >
> 
> CmFueSB3aW4gcGxhdGZvcm0uIFNvIHRvIG1lIGhvdyBJIHN0YXRlZCBhYm92ZSBuaXggaXMg
> bW9y
> >
> 
> ZSBzZWN1cmUsIGJ1dCBvZg0KY291cnNlIHlvdSBoYXZlIHRvIGtub3cgd2hhdCB5b3UgYXJl
> IGRv
> >
> 
> aW5nLiBZb3UgcHJvYmFibHkgd2lsbCBzYXkgd2VsbA0KdGhpcyBpcyBub3QgYSBiYXNlIGlu
> c3Rh
> >
> 
> bGwuIEFuZCBteSByZXBseSBpcyB3ZWxsIGlmIHlvdSBkbyBhIGN1c3RvbQ0KaW5zdGFsbCB3
> aGlj
> >
> 
> aCB5b3UgY2FuIGRvIHJpZ2h0IG91dCBvZiB0aGUgYm94IHdpdGhvdXQgcmVjb21waWxpbmcg
> dGhl
> >
> 
> DQprZXJuZWwgb3IgYW55dGhpbmcgZmFuY3kgbml4IHdpbGwgbWUgbW9yZSBzZWN1cmUgdGhh
> biB3
> >
> 
> aW4zMiBwbGF0Zm9ybXMNCm91dCBvZiB0aGUgYm94LiBJIHdvdWxkIGxpa2UgdG8gc2VlIGEg
> Y3Vz
> >
> 
> dG9tIGluc3RhbGwgb24gd2luMzIgaW5zdGVhZCBvZg0KY2xpY2sgaGVyZSB0byBjb250aW51
> ZS4N
> >
> 
> CiANCkkgY2hhbGxlbmdlIGFueW9uZSB0byBtYWtlIGEgdmFsaWQsIG5vbi1pZGVvbG9naWNh
> bCBi
> >
> 
> YXNlZA0KPiBjb21wYXJpc29uIG9mIGEgYmFzZSBXaW4zMiBhbmQgYSBiYXNlIExpdXggaW5z
> dGFs
> >
> 
> bC4gIElmIExpbnV4DQo+IHdlcmUgc28gZGFtbmVkIHNlY3VyZSBpbiBpdHMgY3VycmVudCBz
> dGF0
> >
> 
> ZSwgSSB3b3VsbmQndCBzZWUgSURTDQo+IGxvZ3MgZmlsbGluZyB1cCB3aXRoIGZvbGtzIHNj
> YW5u
> >
> 
> aW5nIGZvciBvYnZpb3VzIExpbnV4IHZ1bG5zLCBub3cNCj4gd291bGQgST8gIEJvdHRvbSBk
> b2xs
> >
> 
> YXIgaXMsIHdpdGhvdXQgcHJvcGVyIGFkbWluaXN0cmF0aW9uLCBib3RoDQo+IFdpbjMyIGFu
> ZCAq
> >
> 
> aXggc3VjayBiaWcgdGltZS4gIFdpdGggcHJvcGVyIGNhcmUgYW5kIGZlZWRpbmcsIHRoZXkN
> Cj4g
> >
> 
> Y2FuIGJvdGggYmVjb21lIHJlbGVhdGl2ZWx5IHNlY3VyZS4NCj4NCg0KWW91IGFyZSBzZWVp
> bmcg
> >
> 
> SURTIGxvZ3MgZmlsbGluZyB1cCBkdWUgdG8gdGhlIGZhY3QgdGhhdCBtb3N0IHNjcmlwdA0K
> a2lk
> >
> 
> ZGllcyBvdXQgdGhlcmUgYXJlIGxlYXJuaW5nIG5peCBhbmQgd2hhdCB2dWxuZXJhYmlsaXRp
> ZXMg
> >
> 
> YXJlDQphc3NvY2lhdGVkIHdpdGggaXQuIEFuZCBmcm9tIG15IHllYXJzIG9mIGV4cGVyaWVu
> Y2Ug
> >
> 
> YW5kIGRlYWxpbmcgd2l0aA0KdGhlc2UgaW5kaXZpZHVhbHMgaXQgaXMgbW9yZSBvZiBhIGNo
> YWxs
> >
> 
> ZW5nZSBmb3IgdGhlbSwgbGlrZSBhIG5vdGNoIGluDQp0aGVpciBiZWx0IGlmIHRoZXkgY29t
> cHJv
> >
> 
> bWlzZSBhIG5peCBib3ggcmF0aGVyIHRoYW4gYSB3aW4zMiBwbGF0Zm9ybS4NClRoZXkgd2ls
> bCBi
> >
> 
> ZSByZWFkaWx5IGFjY2VwdGVkIGJ5IHRoZWlyIHBlZXJzIGlmIHRoaXMgaXMgYWNjb21wbGlz
> aGVk
> >
> 
> IGFuZA0Kc2h1bm5lZCBhd2F5IGZvciBzYXlpbmcgaGV5IEkgY3JhY2tlZCBhIG50IHNlcnZl
> ci4g
> >
> 
> RHVlIHRvIHRoZSBmYWN0IGFuZA0KdGhlIGxhdGVzdCBzZWN1cml0eSBzdXJ2ZXkgKEkgY2Fu
> J3Qg
> >
> 
> cmVtZWJlciByaWdodCBvZmYgaGFuZCBieSB3aG9tKSB0aGF0DQpzaG93IGR1ZSB0byB0aGUg
> cmVj
> >
> 
> ZW50IGluZmx1eCBvZiBNQ1NFIGNlcnRpZmllZCBpbmRpdmlkdWFscyB0aGF0IGxhY2sNCmV4
> cGVy
> >
> 
> aWVuY2Ugb24gc2VjdXJpbmcgdGhlc2UgYm94ZXMgdGhhdCBnZXQgYnJva2VuIGludG8gaXRz
> IG5v
> >
> 
> dCBhDQpjaGFsbGVuZ

CCIE Written - No IGRP Topics ?

[Abdul Kadir]

Hello Gang !,

Does anyone know or sure that there would be no IGRP topics on the CCIE 
written.  I was going through the Blueprint and could not find anything 
regarding IGRP.  I saw EIGRP but no IGRP.

Any comments ??
Thanks

Abdul


_
Get your FREE download of MSN Explorer at http://explorer.msn.com

_
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: Autonomous Systems

[John Neiberger]

In what context are you using the term "autonomous system"?  Are we
talking about routing in the internet with BGP?  or maybe breaking a
single enterprise network into multiple eigrp AS?  The purposes of "AS"
are different in those two contexts.  Let's assume you mean BGP.

An autonomous system in BGP refers to a group of BGP speaking routers
with a single unified routing policy.  If all of your routers have the
same policy, why would you want another AS number?  That would
accomplish nothing except to cause confusion.  Perhaps if we knew why
you were asking we could answer better.

Using Howard's absolutely wonderful phrase:  What problem are you
trying to solve?  In your case, why would you want more than a single
AS?  Does it provide any advantage?  If so, what are the disadvantages? 


Give us some more information and we'll be able to answer more
intelligently.

HTH,
John

>>> "Alassar, Sonia" <[EMAIL PROTECTED]> 3/22/01 11:47:20 AM >>>
Can someone tell me why a single autonomous system (AS) is better than
having multiple autonomous systems?

Sonia

_
FAQ, list archives, and subscription info:
http://www.groupstudy.com/list/cisco.html 
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]



_
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: Anyone tried setting up a Linux TFTP Server for Cisco?

[Allen May]

Hey it looks like the Windows 2000 CD key!

I think you're cursing at us and it's rude.  ;)

- Original Message -
From: "Elijah Savage" <[EMAIL PROTECTED]>
To: "Allen May" <[EMAIL PROTECTED]>; <[EMAIL PROTECTED]>
Sent: Thursday, March 22, 2001 12:22 PM
Subject: RE: Anyone tried setting up a Linux TFTP Server for Cisco?


>
SSBjYW4ndCBiZWxpZXZlIHlvdSBtYWtlIGZ1biBvZiBteSBnaWJlcmlzaCBuYXRpdmUgbGFuZ3Vh
>
Z2UuIGxvbCA6KQ0KDQoJLS0tLS1PcmlnaW5hbCBNZXNzYWdlLS0tLS0gDQoJRnJvbTogQWxsZW4g
>
TWF5IA0KCVNlbnQ6IFRodSAzLzIyLzIwMDEgMTE6NDUgQU0gDQoJVG86IEVsaWphaCBTYXZhZ2U7
>
IGNpc2NvQGdyb3Vwc3R1ZHkuY29tIA0KCUNjOiANCglTdWJqZWN0OiBSZTogQW55b25lIHRyaWVk
>
IHNldHRpbmcgdXAgYSBMaW51eCBURlRQIFNlcnZlciBmb3INCkNpc2NvPw0KCQ0KCQ0KDQoJWW91
>
IHNob3VsZCBzcGVsbCBjaGVjayB5b3VyIGVtYWlscyBiZWZvcmUgc2VuZGluZy4gOykNCgkNCgkt
>
LS0tLSBPcmlnaW5hbCBNZXNzYWdlIC0tLS0tDQoJRnJvbTogIkVsaWphaCBTYXZhZ2UiIDxlc2F2
>
YWdlQGRpZ2l0YWxyYWdlLm9yZz4NCglUbzogIlcuIEFsYW4gUm9iZXJ0c29uIiA8d2Fyb2JlcnRz
>
b25AZWFydGhsaW5rLm5ldD47ICJCcmlhbg0KS2ltc2V5LUhpY2ttYW4iDQoJPGtpbWhpY2tAbXBp
>
bmV0Lm5ldD47IDxjaXNjb0Bncm91cHN0dWR5LmNvbT4NCglTZW50OiBUaHVyc2RheSwgTWFyY2gg
>
MjIsIDIwMDEgMTA6MTYgQU0NCglTdWJqZWN0OiBSRTogQW55b25lIHRyaWVkIHNldHRpbmcgdXAg
>
YSBMaW51eCBURlRQIFNlcnZlciBmb3INCkNpc2NvPw0KCQ0KCQ0KCT4NCgkNClNTQnJibTkzSUds
>
MGN5QnZabVlnZEc5d2FXTXNJR0oxZENCSklHaGhkR1VnYzNWamFDQnVZWEp5YjNjZ2JXbHVaR1Zr
>
SUdOdg0KYlcxbA0KCT4NCgkNCmJuUnpMaTR1RFFvK0lFbG1JSGx2ZFNCb1lYWmxJR1YyWlhJZ2FX
>
NXpkR0ZzYkdWa0lHRnVlU0FxYVhnZ2MzbHpkR1Z0TENCNQ0KYjNVbg0KCT4NCgkNClpDQmlaU0Jr
>
WVhKdUlIZGxiR3dOQ2o0Z1lYZGhjbVVnZEdoaGRDQjBhR1VnZEdocGJtY2dhWE1nSUNBZ2R5QWdh
>
U0FnWkNBZw0KWlNBZw0KCT4NCgkNCklHOXdaVzR1SUNCVWFHVnlaU0JwY3lCaGJHMXZjM1FOQ2o0
>
Z2JtOGdjMlZqZFhKcGRIa2dkR2hsY21VdUlDQkpkQ0JvWVhNZw0KZEc4Zw0KCT4NCgkNClltVWdZ
>
V1JrWldRZ1lXNWtJRzFoYVc1MFlXbHVaV1F1SUNCWGFXNHpNZzBLUGlCemVYTjBaVzF6SUdGeVpT
>
QnphVzFwYkdGeQ0KTGlBZw0KCT4NCgkNClZtVnllU0IwY25WemRHbHVaeUJoYm1RZ1puSnBaVzVr
>
YkhrZ2RXNTBhV3dnZEdobGVTQmhjbVVOQ2o0Z2NISnZjR1Z5YkhrZw0KZEdGcg0KCT4NCgkNClpX
>
NGdZMkZ5WlNCdlppNGdJRWx6SUNwcGVDQnBibWhsY21WdWRHeDVJRzF2Y21VZ2MyVmpkWEpsUHlB
>
Z2JtOGdkMkY1TGcwSw0KRFFvZw0KCT4NCgkNCkRRcE9ieUJvYjJ4NUlIZGhjaUJvWlhKbElHVnBk
>
R2hsY2k0Z1FuVjBJRWtnWTI5MWJHUWdibTkwSUhKbGMybHpkQ0IwYUdVZw0KY21Wdw0KCT4NCgkN
>
CmJIa2dkRzhnZEdocGN3MEtZMjl0YldWdWRDNGdUMllnWTI5MWNuTmxJR2wwSUdSbGNHVnVaSE1n
>
YjI0Z2RHaGxJR0ZrYldsdQ0KYVhOMA0KCT4NCgkNCmNtRjBiM0lnYjJZZ2RHaGxJR0p2ZUN3Z1lu
>
VjBJR2wwRFFwa1pYQmxibVJ6SUdGc2MyOGdhRzkzSUhsdmRTQnBibk4wWVd4cw0KSUdsMA0KCT4N
>
CgkNCkxpQkpJR2hoZG1VZ2JtVjJaWElnYVc1emRHRnNiR1ZrSUdFZ2JHbHVkWGdnWW05NElIZHBk
>
R2dOQ21aMGNDQnZjaUIwWld4dQ0KWlhRZw0KCT4NCgkNCllua2daR1ZtWVhWc2RDaHZjR1Z1YzNO
>
b0tTNGdRbVZqWVhWelpTQjBhR1Z6WlNCaWIzaGxjeUJKSUhObGRIVndJR0Z5WlEwSw0KZFhOMQ0K
>
CT4NCgkNCllXeHNlU0JrYm5NZ2IzSWdkMlZpSUhObGNuWmxjbk1nZVc5MUlHTmhiaUJwYm5OMFlX
>
eHNJSFJvWlcwZ2MyOGdkR2hoZENCMA0KYUdWNQ0KCT4NCgkNCklISjFiaUJwYmlCaERRcGphSEp2
>
YjNSbFpDQmxiblpwY205dWJXVnVkSE1nZDJocFkyZ2dkR1Z1WkhNZ2RHOGdZbVVnWVNCMA0KWVdR
>
Zw0KCT4NCgkNClltbDBJRzF2Y21VZ2MyVmpkWEpsTGlCVWFHbHpJR2x6RFFwdmJtVWdjbVZoYzI5
>
dUlFa2diR2xyWlNCdWFYZ2diM1psY2lCaA0KYm5rZw0KCT4NCgkNCmQybHVJSEJzWVhSbWIzSnRJ
>
R0psWTJGMWMyVWdTU0JqWVc0Z2FXNXpkR0ZzYkNCM2FHRjBJRWtOQ25kaGJuUWdZVzVrSUdodg0K
>
ZHlCSg0KCT4NCgkNCklIZGhiblFnYVhRc0lIZG9hV05vSUhWemRXRnNiSGtnYldGclpYTWdZU0J1
>
YVhnZ1ltOTRJRzF2Y21VZ2MyVmpkWEpsSUhSbw0KWVc0Tg0KCT4NCgkNCkNtRnVlU0IzYVc0Z2NH
>
eGhkR1p2Y20wdUlGTnZJSFJ2SUcxbElHaHZkeUJKSUhOMFlYUmxaQ0JoWW05MlpTQnVhWGdnYVhN
>
Zw0KYlc5eQ0KCT4NCgkNClpTQnpaV04xY21Vc0lHSjFkQ0J2WmcwS1kyOTFjbk5sSUhsdmRTQm9Z
>
WFpsSUhSdklHdHViM2NnZDJoaGRDQjViM1VnWVhKbA0KSUdSdg0KCT4NCgkNCmFXNW5MaUJaYjNV
>
Z2NISnZZbUZpYkhrZ2QybHNiQ0J6WVhrZ2QyVnNiQTBLZEdocGN5QnBjeUJ1YjNRZ1lTQmlZWE5s
>
SUdsdQ0KYzNSaA0KCT4NCgkNCmJHd3VJRUZ1WkNCdGVTQnlaWEJzZVNCcGN5QjNaV3hzSUdsbUlI
>
bHZkU0JrYnlCaElHTjFjM1J2YlEwS2FXNXpkR0ZzYkNCMw0KYUdsag0KCT4NCgkNCmFDQjViM1Vn
>
WTJGdUlHUnZJSEpwWjJoMElHOTFkQ0J2WmlCMGFHVWdZbTk0SUhkcGRHaHZkWFFnY21WamIyMXdh
>
V3hwYm1jZw0KZEdobA0KCT4NCgkNCkRRcHJaWEp1Wld3Z2IzSWdZVzU1ZEdocGJtY2dabUZ1WTNr
>
Z2JtbDRJSGRwYkd3Z2JXVWdiVzl5WlNCelpXTjFjbVVnZEdoaA0KYmlCMw0KCT4NCgkNCmFXNHpN
>
aUJ3YkdGMFptOXliWE1OQ205MWRDQnZaaUIwYUdVZ1ltOTRMaUJKSUhkdmRXeGtJR3hwYTJVZ2RH
>
OGdjMlZsSUdFZw0KWTNWeg0KCT4NCgkNCmRHOXRJR2x1YzNSaGJHd2diMjRnZDJsdU16SWdhVzV6
>
ZEdWaFpDQnZaZzBLWTJ4cFkyc2dhR1Z5WlNCMGJ5QmpiMjUwYVc1MQ0KWlM0Tg0KCT4NCgkNCkNp
>
QU5Da2tnWTJoaGJHeGxibWRsSUdGdWVXOXVaU0IwYnlCdFlXdGxJR0VnZG1Gc2FXUXNJRzV2Ymkx
>
cFpHVnZiRzluYVdOaA0KYkNCaQ0KCT4NCgkNCllYTmxaQTBLUGlCamIyMXdZWEpwYzI5dUlHOW1J
>
R0VnWW1GelpTQlhhVzR6TWlCaGJtUWdZU0JpWVhObElFeHBkWGdnYVc1eg0KZEdGcw0KCT4NCgkN
>
CmJDNGdJRWxtSUV4cGJuVjREUW8rSUhkbGNtVWdjMjhnWkdGdGJtVmtJSE5sWTNWeVpTQnBiaUJw
>
ZEhNZ1kzVnljbVZ1ZENCeg0KZEdGMA0KCT4NCgkNClpTd2dTU0IzYjNWc2JtUW5kQ0J6WldVZ1NV
>
UlREUW8rSUd4dlozTWdabWxzYkdsdVp5QjFjQ0IzYVhSb0lHWnZiR3R6SUhOag0KWVc1dQ0KCT4N
>
CgkNCmFXNW5JR1p2Y2lCdlluWnBiM1Z6SUV4cGJuVjRJSFoxYkc1ekxDQnViM2NOQ2o0Z2QyOTFi
>
R1FnU1Q4Z0lFSnZkSFJ2YlNCaw0KYjJ4cw0KCT4NCgkNCllYSWdhWE1zSUhkcGRHaHZkWFFnY0hK
>
dmNHVnlJR0ZrYldsdWFYTjBjbUYwYVc5dUxDQmliM1JvRFFvK0lGZHBiak15SUdGdQ0KWkNBcQ0K
>
CT4N

RE: intercept and redirect

[Buri, Heather H]

This would be a classic situation for Policy Based routing but I am not sure
if this would work on a PIX.  I am curious to see what others have to say
who are more experienced with the PIX functionality.

Heather Buri   
CSC Technology Services - Houston

Phone:  (713)-961-8592
Fax:(713)-961-8249
Mobile: 
Alpha Page: 

Mailing:1360 Post Oak Blvd
  Suite 500
  Houston, TX 77056



-Original Message-
From: Doug Roberts [mailto:[EMAIL PROTECTED]]
Sent: Thursday, March 22, 2001 12:58 PM
To: [EMAIL PROTECTED]
Subject: Pix: intercept and redirect


I've had a request to have our Pix firewall catch inbound traffic headed 
for host A and redirect it to host B. We do not have NAT enabled on the Pix 
(ver 5.1).

Am I missing something? I don't see a way to do this.


Doug
==
"There are a lot of interesting people here, a pretty high concentration of 
creative, interesting, smart people. You just have to make an effort to 
group them together, because they're interspersed with a lot of morons."

Aimee Mann as quoted in The Onion
==

_
FAQ, list archives, and subscription info:
http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

_
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

RE: monitoring PIX

[Ian Stong]

Try mrtg.   
http://ee-staff.ethz.ch/~oetiker/webtools/mrtg/

Enable snmp on your pix and viola.


Ian

-Original Message-
From: Florin Mechetiuc [mailto:[EMAIL PROTECTED]]
Sent: Thursday, March 22, 2001 1:49 PM
To: [EMAIL PROTECTED]
Subject: monitoring PIX


Hi all,

Do you guys know a tool that you can monitor a PIX firewall with?
I mean something that you can monitor memory , CPU, bandwidth usage, etc...

Thanks,

Florin Mechetiuc
[EMAIL PROTECTED]




_
FAQ, list archives, and subscription info:
http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

_
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

RE: interface utilization ??

[jbullock]

hey listers!

anyone know a quick and dirty way to parse some info from the sho interface
command, like interface utilization, etc ?  I tried that cisco tool, but it
only tells you what is possibly wrong not the interface utilization.

thanks,
jason

this is from a 2924 catalyst switch.

FastEthernet0/9 is up, line protocol is up
  Hardware is Fast Ethernet, address is 00d0.baaa.bc0a (bia 00d0.baaa.bc0a)
  Description: BIG IP
  MTU 1500 bytes, BW 10 Kbit, DLY 100 usec, rely 255/255, load 1/255
  Encapsulation ARPA, loopback not set, keepalive not set
  Half-duplex, 100Mb/s, 100BaseTX/FX
  ARP type: ARPA, ARP Timeout 04:00:00
  Last input never, output 00:00:00, output hang never
  Last clearing of "show interface" counters 03:12:31
  Queueing strategy: fifo
  Output queue 0/40, 0 drops; input queue 0/75, 0 drops
  5 minute input rate 298000 bits/sec, 87 packets/sec
  5 minute output rate 218000 bits/sec, 79 packets/sec
 2789509 packets input, 1003512202 bytes, 0 no buffer
 Received 1319 broadcasts, 0 runts, 0 giants, 0 throttles
 4 input errors, 4 CRC, 0 frame, 0 overrun, 0 ignored, 0 abort
 0 watchdog, 0 multicast
 0 input packets with dribble condition detected
 2693936 packets output, 753564104 bytes, 0 underruns
 0 output errors, 33701 collisions, 0 interface resets
 0 babbles, 0 late collision, 25705 deferred
 0 lost carrier, 0 no carrier
 0 output buffer failures, 0 output buffers swapped out


_
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

RE: IOS version 13.xxx ?? and a Rant...

[Shannon Murphy]

I recently attended an IP Telephony class at Mentor Technologies and it was
a terrible class.  The instructor (who turned out to be the VP of sales) was
not very knowledgable about the product, although he did have a good deal of
background on CVOICE.  The entire class was very frustrated and I know the
three of us from my company complained to both Cisco and our Mentor rep.
After a few months of going back and forth, we've finally been a free class
to replace the one we took.

Shannon

-Original Message-
From: Circusnuts [mailto:[EMAIL PROTECTED]]
Sent: Tuesday, March 20, 2001 2:06 AM
To: Priscilla Oppenheimer; [EMAIL PROTECTED]
Subject: Re: IOS version 13.xxx ?? and a Rant...


No Way Priscilla...

"wr" is all it takes when hammering across the Hyper Term window ;-)  I
agree- that class sounds like a bummer.  With you time in the field, what
have you heard about refunds or complaints in cases such as this ???

Phil

- Original Message -
From: "Priscilla Oppenheimer" <[EMAIL PROTECTED]>
To: <[EMAIL PROTECTED]>
Sent: Monday, March 19, 2001 10:47 PM
Subject: RE: IOS version 13.xxx ?? and a Rant...


> Sounds like your instructor didn't know BGP either. What a shame. You
could
> ask for your money back...
>
> BTW, I like "cop run start" much better than "write mem." It's more
> intuitive. Not. &;-)
>
> Priscilla
>
> At 12:39 PM 3/19/01, Buri, Heather H wrote:
> >Well, it may be like Z said earlier and that is...my instructor did not
know
> >what he was talking about.  I thought 12.1 was still the most recent
version
> >but then again, I have not been on CCO recently upgrading my IOS's
either.
> >And...been too busy the past couple of days trying to get caught up from
> >being gone for a week from work.  I will check it out tonight.  :-)
> >
> >Heather Buri
> >CSC Technology Services - Houston
> >
> >Phone:  (713)-961-8592
> >Fax:(713)-961-8249
> >Mobile:
> >Alpha Page:
> >
> >Mailing:1360 Post Oak Blvd
> >  Suite 500
> >  Houston, TX 77056
> >
> >
> >
> >-Original Message-
> >From: John Neiberger [mailto:[EMAIL PROTECTED]]
> >Sent: Monday, March 19, 2001 12:08 PM
> >To: [EMAIL PROTECTED]
> >Subject: Re: IOS version 13.xxx ?? and a Rant...
> >
> >
> >Wow, 13 already?  That's pretty surprising since 12.1 isn't GD yet and
> >12.2 isn't even out yet.
> >
> > >>> "Buri, Heather H" <[EMAIL PROTECTED]> 3/19/01 10:41:14 AM >>>
> >Hi Everyone.
> >
> >Well, I finished my BSCN course through Global Knowledge last week.  I
> >have
> >to say I was kind of disappointed.  I really was wanting to spend some
> >good
> >time on BGP and OSPF but we had to rush through it because we wasted a
> >whole
> >day going over RIP???  I thought this was supposed to be an advanced
> >class!
> >My opinion is the only refresher we should have been given on RIP is:
> >
> >Router Rip
> >
> >Anyways, the instructor said they started making the labs easier
> >because too
> >many people complained about them being too difficult???  :::sigh:::
> >
> >Oh well.  Thank God for this list and I guess I will be saving myself
> >$2000
> >on the CIT course now.
> >
> >I will be taking my exam on April 5.  I wanted to study BGP and Policy
> >Based
> >routing some more.
> >
> >My instructor did mention Cisco was up to IOS release 13 already.  This
> >was
> >news to me.  He said it had been out for some time.  My question is,
> >has
> >anyone been using it yet?  My instructor did say that they finally did
> >away
> >with my favorite command... write mem.  A sad, sad day!  Well, I knew
> >it was
> >coming.  I don't suppose "c r s" will work at the command line??  :-)
> >
> >Heather Buri
> >CSC Technology Services - Houston
> >
> >Phone:  (713)-961-8592
> >Fax:(713)-961-8249
> >Mobile:
> >Alpha Page:
> >
> >Mailing:1360 Post Oak Blvd
> >  Suite 500
> >  Houston, TX 77056
>
>
> 
>
> Priscilla Oppenheimer
> http://www.priscilla.com
>
> _
> FAQ, list archives, and subscription info:
http://www.groupstudy.com/list/cisco.html
> Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

_
FAQ, list archives, and subscription info:
http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

_
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

RE: Autonomous Systems

[Alassar, Sonia]

Yes, I am speaking about routing on the internet with BGP-4. If I am a
carrier that has 1 AS and I purchase another network (that has multiple
ASes) from another carrier, should I integrate them into a single AS, or
keep them as multiple AS? It is not that I want to have multiple AS,
however, I will have them via the acquisition. The question is should I keep
them separate, or migrate them into one. What added benefit do I get if I
have one? A second question is if 1 AS is so great, why do Sprint, WorldCom,
AT&T,  and Genuity all have multiple AS?

Sonia



_
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

RE: difficult ccna question

[Joshua Beining]

Technically yes.  But like most things you cannot get something for free.
There is a price for subnetting which is that you loose the first subnet
(network - all zeros) and the last subnet (broadcast - all ones).  Note that
with some routers you can configure them to use these subnets.  But be
careful, because some OS's and devices do not react well to using then.
HTH.

-Joshua

-Original Message-
From: David A. Lauer [mailto:[EMAIL PROTECTED]]
Sent: Thursday, March 22, 2001 11:14 AM
To: [EMAIL PROTECTED]
Subject: RE: difficult ccna question



Wouldn't the first subnet be 172.16.0.0?

-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of
Joshua Beining
Sent: Thursday, March 22, 2001 11:43 AM
To: 'Lowell Sharrah'
Cc: '[EMAIL PROTECTED]'
Subject: RE: difficult ccna question


Based on the subnet mask (255.255.192.0) subtract 256 from 192 which is 64.
Therefore 64 is your first subnet.  To get the second subnet, add 64 to the
first subnet.  To get the third add 64 to the second subnet and so on.
Continue in this fashion until you reach 192.  Remember that you cannot use
the ranges 172.16.0.1  -  172.16.0.62 and 172.16.255.193  -  172.16.255.254
(network and broadcast respectively) unless your router is configured to do
so.

Subnet  Host Range
1   172.16.0.65  -  172.16.0.126
2   172.16.0.129  -  172.16.0.190
3   172.16.0.193  -  172.16.0.254
4   172.16.1.1  -  172.16.1.62
5   172.16.1.65  -  172.16.1.126
6   172.16.1.129  -  172.16.1.190
7   172.16.1.193  -  172.16.1.254
8   172.16.2.1  -  172.16.2.62
9   172.16.2.65  -  172.16.2.126
   10   172.16.2.129  -  172.16.2.190
.
.
.
.
.
.

 1015   172.16.253.193  -  172.16.253.254
 1016   172.16.254.1  -  172.16.254.62
 1017   172.16.254.65  -  172.16.254.126
 1018   172.16.254.129  -  172.16.254.190
 1019   172.16.254.193  -  172.16.254.254
 1020   172.16.255.1  -  172.16.255.62
 1021   172.16.255.65  -  172.16.255.126
 1022   172.16.255.129  -  172.16.255.190

-Joshua
-Original Message-
From: Lowell Sharrah [mailto:[EMAIL PROTECTED]]
Sent: Thursday, March 22, 2001 8:14 AM
To: [EMAIL PROTECTED]
Subject: RE: difficult ccna question


how do you know where the first subnet begins?

>>> Joshua Beining <[EMAIL PROTECTED]> 03/22/01 10:34AM >>>
Just remember the following fomulas:

(2^# of masked bits) - 2 = Total # of subnets
(2^# of unmasked bits - 2 = Total # of hosts

Based on this the correct answer is A.

-Original Message-
From: George [mailto:[EMAIL PROTECTED]]
Sent: Thursday, March 22, 2001 12:16 AM
To: [EMAIL PROTECTED]
Subject: difficult ccna question


if you have a class B network with a 10-bit subnet mask, how many subnet and
how many hosts do you have?

a. 1022 subnets, 62 hosts
b. 62 subnets, 8190 hosts
c. 8190 subnets, 254 hosts
d. 254 subnets , 126 hosts


_
FAQ, list archives, and subscription info:
http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

_
FAQ, list archives, and subscription info:
http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

_
FAQ, list archives, and subscription info:
http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

_
FAQ, list archives, and subscription info:
http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

_
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

SDM: STP Port and Path Cost formula/calculation

[jldeabreu]

[EMAIL PROTECTED] has requested SecureDelivery of a Yahoo! Mail message.

If you do not view this message by Mar 29, 2001 @ 13:47 (CST), then
this message will be deleted and the sender will be notified.

When you click the link below and view this message securely,
[EMAIL PROTECTED] will be notified by email that you have picked
up this message.

https://y1.securedelivery.com/s/e?m=ABC5iX30uhSlsP4E7dVGkSqn

If your email program does not support active links, please cut and
paste the link displayed above into the "address" or
"location" field of your browser and press "Enter" or "Go".


_
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

RE: difficult ccna question

[David A. Lauer]

Can you give examples of OSs that don't support all ones?

-Original Message-
From: Joshua Beining [mailto:[EMAIL PROTECTED]]
Sent: Thursday, March 22, 2001 2:44 PM
To: 'David A. Lauer'
Cc: '[EMAIL PROTECTED]'
Subject: RE: difficult ccna question


Technically yes.  But like most things you cannot get something for free.
There is a price for subnetting which is that you loose the first subnet
(network - all zeros) and the last subnet (broadcast - all ones).  Note that
with some routers you can configure them to use these subnets.  But be
careful, because some OS's and devices do not react well to using then.
HTH.

-Joshua

-Original Message-
From: David A. Lauer [mailto:[EMAIL PROTECTED]]
Sent: Thursday, March 22, 2001 11:14 AM
To: [EMAIL PROTECTED]
Subject: RE: difficult ccna question



Wouldn't the first subnet be 172.16.0.0?

-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of
Joshua Beining
Sent: Thursday, March 22, 2001 11:43 AM
To: 'Lowell Sharrah'
Cc: '[EMAIL PROTECTED]'
Subject: RE: difficult ccna question


Based on the subnet mask (255.255.192.0) subtract 256 from 192 which is 64.
Therefore 64 is your first subnet.  To get the second subnet, add 64 to the
first subnet.  To get the third add 64 to the second subnet and so on.
Continue in this fashion until you reach 192.  Remember that you cannot use
the ranges 172.16.0.1  -  172.16.0.62 and 172.16.255.193  -  172.16.255.254
(network and broadcast respectively) unless your router is configured to do
so.

Subnet  Host Range
1   172.16.0.65  -  172.16.0.126
2   172.16.0.129  -  172.16.0.190
3   172.16.0.193  -  172.16.0.254
4   172.16.1.1  -  172.16.1.62
5   172.16.1.65  -  172.16.1.126
6   172.16.1.129  -  172.16.1.190
7   172.16.1.193  -  172.16.1.254
8   172.16.2.1  -  172.16.2.62
9   172.16.2.65  -  172.16.2.126
   10   172.16.2.129  -  172.16.2.190
.
.
.
.
.
.

 1015   172.16.253.193  -  172.16.253.254
 1016   172.16.254.1  -  172.16.254.62
 1017   172.16.254.65  -  172.16.254.126
 1018   172.16.254.129  -  172.16.254.190
 1019   172.16.254.193  -  172.16.254.254
 1020   172.16.255.1  -  172.16.255.62
 1021   172.16.255.65  -  172.16.255.126
 1022   172.16.255.129  -  172.16.255.190

-Joshua
-Original Message-
From: Lowell Sharrah [mailto:[EMAIL PROTECTED]]
Sent: Thursday, March 22, 2001 8:14 AM
To: [EMAIL PROTECTED]
Subject: RE: difficult ccna question


how do you know where the first subnet begins?

>>> Joshua Beining <[EMAIL PROTECTED]> 03/22/01 10:34AM >>>
Just remember the following fomulas:

(2^# of masked bits) - 2 = Total # of subnets
(2^# of unmasked bits - 2 = Total # of hosts

Based on this the correct answer is A.

-Original Message-
From: George [mailto:[EMAIL PROTECTED]]
Sent: Thursday, March 22, 2001 12:16 AM
To: [EMAIL PROTECTED]
Subject: difficult ccna question


if you have a class B network with a 10-bit subnet mask, how many subnet and
how many hosts do you have?

a. 1022 subnets, 62 hosts
b. 62 subnets, 8190 hosts
c. 8190 subnets, 254 hosts
d. 254 subnets , 126 hosts


_
FAQ, list archives, and subscription info:
http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

_
FAQ, list archives, and subscription info:
http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

_
FAQ, list archives, and subscription info:
http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

_
FAQ, list archives, and subscription info:
http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

_
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: Vlan Question

[The.Rock]

We'll he could be wanting to isolate consultants to their own VLAN but have
a need to update files on the server. In our case we have auditors come in
from time to time and so we don't want them in with the rest of the world so
we isolate them in their own VLAN and then setup an access list. They are
only here temporary. So I could see how this is a legit question.

""Howard C. Berkowitz"" <[EMAIL PROTECTED]> wrote in message
[EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
> At 08:26 AM 3/22/2001 -0800, you wrote:
> >Scenario:
> > Got a client who has a person on the network that does not want
to
> >be on the network but wants access to the server.
>
> I'm somewhat confused. First, if he is somehow hidden, how does the server
> send back to the client?
>
> Second, if he is on one VLAN/subnet and the server is on another,
> sounds like a fairly basic routing application.  Another would be to
> have a VLAN-aware NIC on the server.
>
> Without further information, this sounds like a user whim rather than
> a real requirement.  There's a flavor of the user wanting security
> by obscurity.
>
> >My thought was to install
> >a switch, setup to Vlans, one for all the users (10 or so) and the second
> >Vlan for the 1 user by himself. This way no one can get to his machine,
then
> >setup an access list to permit his Vlan to access the first Vlan and deny
> >all the other users to his Vlan. Does this sound right? Anything I am
> >missing? Seeing if I understand Vlans correctly or not.
> >
> >Brad Shifflett
> >[EMAIL PROTECTED]
> >Micromenders, Inc.
> >
> >
> >_
> >FAQ, list archives, and subscription info:
> >http://www.groupstudy.com/list/cisco.html
> >Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
>
> _
> FAQ, list archives, and subscription info:
http://www.groupstudy.com/list/cisco.html
> Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
>


_
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: intercept and redirect

[Allen May]

Not sure exactly what kind of traffic or how your network is set up.  If
it's using virtual IPs then just remap to the other internal address with
that VIP.  If not you could try creating a VIP on the pix (static/conduit or
ACL) and have it redirect like that.  I don't see why this wouldn't work.

- Original Message -
From: "Buri, Heather H" <[EMAIL PROTECTED]>
To: "'Doug Roberts'" <[EMAIL PROTECTED]>; <[EMAIL PROTECTED]>
Sent: Thursday, March 22, 2001 1:23 PM
Subject: RE: intercept and redirect


> This would be a classic situation for Policy Based routing but I am not
sure
> if this would work on a PIX.  I am curious to see what others have to say
> who are more experienced with the PIX functionality.
>
> Heather Buri
> CSC Technology Services - Houston
>
> Phone: (713)-961-8592
> Fax: (713)-961-8249
> Mobile:
> Alpha Page:
>
> Mailing: 1360 Post Oak Blvd
>   Suite 500
>   Houston, TX 77056
>
>
>
> -Original Message-
> From: Doug Roberts [mailto:[EMAIL PROTECTED]]
> Sent: Thursday, March 22, 2001 12:58 PM
> To: [EMAIL PROTECTED]
> Subject: Pix: intercept and redirect
>
>
> I've had a request to have our Pix firewall catch inbound traffic headed
> for host A and redirect it to host B. We do not have NAT enabled on the
Pix
> (ver 5.1).
>
> Am I missing something? I don't see a way to do this.
>
>
> Doug
> ==
> "There are a lot of interesting people here, a pretty high concentration
of
> creative, interesting, smart people. You just have to make an effort to
> group them together, because they're interspersed with a lot of morons."
>
> Aimee Mann as quoted in The Onion
> ==
>
> _
> FAQ, list archives, and subscription info:
> http://www.groupstudy.com/list/cisco.html
> Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
>
> _
> FAQ, list archives, and subscription info:
http://www.groupstudy.com/list/cisco.html
> Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
>

_
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

CCIE lab date swap.

[John Mistichelli]

Hey folks,

I have a lab date for May 14th and 15th in Sao Paulo, Brazil. Is anyone
interested in swapping for continental US or Halifax. I prefer a swap for a
date around the same time frame if possible. If anyone is interested, please
contact me at [EMAIL PROTECTED]   Thanks to all.

John


_
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]