Re: IP Relay in IPX/IGX
Hi Said, DLCI is locally significant to the router. However, from the switch point of view, the DLCI defined on the port is actually pointing to the router on other end of the PVC. I was told this was called SWAP DLCI. Is that true ? Also, I was told there are some PVCs are called gateway PVC. What is it ? From: "Said Khomsi" [EMAIL PROTECTED] To: [EMAIL PROTECTED], [EMAIL PROTECTED], [EMAIL PROTECTED] Subject: Re: IP Relay in IPX/IGX Date: Mon, 26 Mar 2001 10:12:21 +0200 Before you start to change the IP address, you should validate Standby processor card function. start the process to download the config from the active processor card to the standbay card, Verify CC redundancy in the node Verify that one of the CC cards is in standby dspcd x (where x is the active) dspcd xx (where xx is the standby) once this update will be completed, you can start the IP address modification, thus if the node would "switch cc" by itself, the standby card will be already updated and contains the same database as the active card, the "switchcc" will be transparent and do not cause a failure.(this pb has been seen on software release 8.x.xx/9.x.xx, no idea if it's still exist..). "cnflan" command is a SuperUser command. Command: cnflan IP_Address IP_Subnet_Mask Maximum LAN Transmit Unit TCP Service Port Regarding the second question, could you be more specific? - From: "Charles Peter" [EMAIL PROTECTED] Reply-To: "Charles Peter" [EMAIL PROTECTED] To: [EMAIL PROTECTED], [EMAIL PROTECTED], [EMAIL PROTECTED] Subject: Re: IP Relay in IPX/IGX Date: Fri, 23 Mar 2001 05:41:53 - If there is a need to change the IP Address, what is the proper procedure without causing node failure ? Also, do you have any idea about SWAP DLCI and Gateway PVC ? From: "Said Khomsi" [EMAIL PROTECTED] Reply-To: "Said Khomsi" [EMAIL PROTECTED] To: [EMAIL PROTECTED], [EMAIL PROTECTED], [EMAIL PROTECTED] Subject: Re: IP Relay in IPX/IGX Date: Mon, 19 Mar 2001 17:50:32 +0100 Each IPX/IGX node to be managed by StrataView Plus (NMS : still called SV+) must be configured with an IP Relay IP Address (cnfnwip). The gateway node must be configured with both LAN and IP Relay IP Addresses. The IPX/IGX routing and IPX/AF feeder modes must be configured with read and write SNMP community names. The SNMP community names "public" and "private" are configured in SV+ for GET and SET respectively as defaults. The directly attached node (Gateway node) must be configured with IP Relay IP address before starting StrataView Plus. You must prepare a list of all nodes in the network that will be collecting statistics for display on this StrataView Plus workstation. If there is only one StrataView Plus workstation attached to the network, this list will consist of all nodes in the network. Every node without a LAN IP address must have an IP Relay IP address assigned. Use the "cnfnwip" command to assign IP Relay addresses. Note Do not assign the same number to a LAN IP address and an IP Relay IP address. Each address must be unique. Note: if the node is in production and you want to modify the IP address using a command:"cnflan", this may cause a node failure "switch cc" node become unreachable, be careful then. Try the following URL: http://www.cisco.com/univercd/cc/td/doc/product/wanbu/svplus/9_1/aixig/config.htm Regards, Said. From: "Charles Peter" [EMAIL PROTECTED] Reply-To: "Charles Peter" [EMAIL PROTECTED] To: [EMAIL PROTECTED], [EMAIL PROTECTED] Subject: Re: IP Relay in IPX/IGX Date: Wed, 14 Mar 2001 06:05:07 - Can i say this is a kind of routing protocol running on WAN switch ? Is it a proprietary protocol on Cisco IPX/BPX ? From: Pamela Forsyth [EMAIL PROTECTED] Reply-To: Pamela Forsyth [EMAIL PROTECTED] To: [EMAIL PROTECTED] Subject: Re: IP Relay in IPX/IGX Date: Tue, 13 Mar 2001 17:22:15 -0500 (EST) As I recall, it is a method for the switches to relay IP traffic amongst themselves, within the "cloud" only, for management purposes such as SNMP and telnet sessions. Each switch gets an IP address so you can telnet to it and so it can be managed by the NMS (used to be called StrataView, don't know what they call it now--my info is almost 3 years old). It is a good idea to assign the IP addresses to the switches from among one of the private IP networks such as 172.16.0.0, but not one that you're using for any other purpose within your organization. The switches will be isolated as far as IP goes, but you don't want the management station to get confused about which addresses are where. HTH Pamela On Tue, 13 Mar 2001, Charles
SSH Debug Question
Has anyone else noticed the "05:07:31: SSH0: SSH_SMSG_FAILURE message sent" message generated (also below) before you can type in a password? As soon as I am prompted for a password, I enter it and all is well with authentication/use, this just seemed odd. I have not tried another SSH client yet (that may be the problem). Begin capture -- NY# 05:07:26: SSH: RSA decrypt finished 05:07:26: SSH: RSA decrypt started 05:07:27: SSH: RSA decrypt finished 05:07:27: SSH0: sending encryption confirmation 05:07:27: SSH0: keys exchanged and encryption on NY# 05:07:31: SSH0: SSH_CMSG_USER message received 05:07:31: SSH0: authentication request for userid E_CARTMAN 05:07:31: SSH0: SSH_SMSG_FAILURE message sent NY# 05:07:34: SSH0: SSH_CMSG_AUTH_PASSWORD message received 05:07:34: SSH0: authentication successful for E_CARTMAN 05:07:35: SSH0: requesting TTY 05:07:35: SSH0: setting TTY - requested: length 24, width 80; set: length 24, width 80 NY# 05:07:35: SSH0: SSH_CMSG_EXEC_SHELL message received NY# End capture -- -- FREE ANONYMOUS EMAIL! Sign up now. http://www.subdimension.com/freemail _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Cisco 800 Configuration
Hi All !! I need some help and advice if you have a moment.. I am going to use two Cisco 800 routers to bridge via an ISDN BRI line between two offices. I have configured the routers to do this using some configs which I apapted from the cisco site. it works reasonably well. thing is the routers tend to keep a channel up constantly even when no traffic is being sent.. When I first power up the routers channel 1 will be activated and it will stay like this until I send some traffic when traffic is sent channel 1 is dropped briefly and then channels 1 and 2 are brought up. I experience about a 15 second delay in bringing up the connection initially and then its fine. I want to try to keep costs down while this temporary solution is in place can anyone tell me is there is any refinements I can make to the configs below ?? Kind Regards, Peter. Current configuration: ! version 12.1 no service pad service timestamps debug uptime service timestamps log uptime no service password-encryption ! hostname dubtest ! enable password cisco ! username remotertr password 0 secret ! ! ! ! ! ! ip subnet-zero no ip routing ! isdn switch-type basic-net3 ! ! ! interface Ethernet0 ip address 129.212.156.21 255.255.255.0 no ip route-cache bridge-group 1 ! interface BRI0 description ISDN to remote router ip address 129.212.156.21 255.255.255.0 encapsulation ppp no ip route-cache dialer idle-timeout 9 dialer map bridge name remotertr broadcast 807 dialer hold-queue 75 dialer load-threshold 2 outbound dialer-group 1 isdn switch-type basic-net3 ppp authentication chap no ppp chap wait ppp multilink bridge-group 1 bridge-group 1 priority 2 ! no ip http server ip classless ! dialer-list 1 protocol bridge permit bridge 1 protocol ieee bridge 1 priority 1 ! line con 0 transport input none stopbits 1 line vty 0 4 password cisco login ! no rcapi server ! ! end --- Current configuration: ! version 12.0 no service pad service timestamps debug uptime service timestamps log uptime no service password-encryption ! hostname remotertr ! enable password cisco ! username dubtest password 0 secret ! ! ! ! ! ip subnet-zero no ip routing ! isdn switch-type basic-net3 ! ! process-max-time 200 ! interface Ethernet0 ip address 129.212.156.22 255.255.255.0 ip directed-broadcast no ip route-cache bridge-group 1 ! interface BRI0 description ISDN line to dubtest ip address 129.212.156.22 255.255.255.0 no ip directed-broadcast encapsulation ppp no ip route-cache dialer idle-timeout 9 dialer map bridge name dubtest broadcast 813 dialer hold-queue 75 dialer load-threshold 1 outbound dialer-group 1 isdn switch-type basic-net3 ppp authentication chap callin ppp multilink bridge-group 1 bridge-group 1 priority 10 ! no ip http server ip classless ! dialer-list 1 protocol bridge permit bridge 1 protocol ieee bridge 1 priority 10 ! line con 0 transport input none stopbits 1 line vty 0 4 login ! end _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
isdn
ip route 0.0.0.0 0.0.0.0 Serial2/0 ip route 0.0.0.0 0.0.0.0 Dialer1 2 ip route 0.0.0.0 0.0.0.0 BRI0/0 4 just check out this .. is there any mistake in this. I am new to isdn dial back up. please help me. Atul _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: CHAP authentication w/ dialer profiles
Post your configs. I got this scenario to work. We even proved it out in ECP1. Bill -Original Message- From: Frank B [mailto:[EMAIL PROTECTED]] Sent: Tuesday, March 27, 2001 3:13 AM To: [EMAIL PROTECTED]; [EMAIL PROTECTED] Cc: Me @ Work Subject:CHAP authentication w/ dialer profiles Reference Caslow's 2d ed. Ch 5 pg 187-190 - Just when I thought I was really understanding CHAP with dialer profiles, after getting the example begining on pg 188 to work as advertised and reading the debugs. BTW-I had to remove the command dialer remote-name policy-1 from HEADQUARTERS dialer1 interface in order to get it to work. But anyway, I felt I was grasping an understaning of the relationship of the routers' hostname, the ppp chap hostname to the opposite end dialer remote-name etc...however, out of curiosity I tried to ping both interfaces on the HEADQUARTERS router from the SATELLITE-1 router and for dialer1 I get the message below (note the DDR error on the 14th line.) The funny thing is, the successful ping to dialer0 had identical chap messages, leading me to believe the chap went "OK"??? Is that possible? What did I miss? Can anyone assist me in understanding why this didn't work? and perhaps, if possible, how can I get it to work both ways with 2 dialer ints to the same destination in opposite directions?? Thanks, Frank 12:11:56: BR0 DDR: rotor dialout [priority] 12:11:56: BR0 DDR: Dialing cause ip (s=172.16.1.2, d=172.16.1.1) 12:11:56: BR0 DDR: Attempting to dial 8358663 12:11:242683684308: %LINK-3-UPDOWN: Interface BRI0:1, changed state to up 12:11:242683684412: BR0:1: interface must be fifo queue, force fifo 12:11:242683684228: %DIALER-6-BIND: Interface BR0:1 bound to profile Di1 12:11:242665652197: BR0:1 PPP: Treating connection as a callout 12:11:56: BR0:1 CHAP: O CHALLENGE id 102 len 23 from "SATELLITE-1" 12:11:56: BR0:1 CHAP: I CHALLENGE id 95 len 23 from "HEADQUARTERS" 12:11:56: BR0:1 CHAP: O RESPONSE id 95 len 23 from "SATELLITE-1" 12:11:56: BR0:1 CHAP: I SUCCESS id 95 len 4 12:11:56: BR0:1 CHAP: I RESPONSE id 102 len 23 from "backup" 12:11:56: BR0:1 CHAP: O SUCCESS id 102 len 4 12:11:56: BR0:1 DDR: Host name (backup) does not match Di1 configuration 12:11:56: BR0 DDR: has total 0 call(s), dial_out 0, dial_in 0 **NOTE** All LAB SWAP messages should now be sent to the LAB SWAP Message board on groupstudy.com. ___ To unsubscribe from the CCIELAB list, send a message to [EMAIL PROTECTED] with the body containing: unsubscribe ccielab _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Router problem
On Tue, Mar 27, 2001 at 07:09:06AM +, Shane Stockman wrote: I have a 1720 with a serial wic at a remote site. I see the interface on my side as up/up but I cannot telnet nor ping the remote site successfully. I have had the guy on the remote side check the config line by line and clear ip routes , and it does not show all the routes even though the 1720 is using eigrp and has ip classless.He can see his side as up/up as well. EIGRP dosn't support discontiguous subnets or fully classess routing by default. What are the exact IP addresses in use and what routes are missing? -- Ryan O'Connell - [EMAIL PROTECTED] - http://www.complicity.co.uk I'm not losing my mind, no I'm not changing my lines, I'm just learning new things with the passage of time _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: 2514 Upgrade Problem!!
in router boot mode, last time i checked, you still could do a normal tftp file transfer. Try it again. -Original Message- From: Niraj Palikhey [mailto:[EMAIL PROTECTED]] Sent: 27 March 2001 07:45 To: [EMAIL PROTECTED]; [EMAIL PROTECTED] Subject: 2514 Upgrade Problem!! Hi, When I was upgrading the IOS on a 2514 router via tftp, the connection was lost while the router was trying to download the new ios from the tftp server(after having erased the existing ios!!). The router retried a couple of times and I was finally forced to reboot the router. The routers now boots to the mini-ios(gives me the Router(boot) prompt. What can I do to successfully upgrade the ios on this router. Thank you for your help. Regards, [EMAIL PROTECTED] _ Get your FREE download of MSN Explorer at http://explorer.msn.com _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Cisco 800 Configuration
Paul, I understand this but sadly in this case I do not have a choice as I am 'borrowing' some IP addressing from one of the subnets at one of our offices on our WAN... I think eventually they will run a 1 meg circuit from the WAN into the remote office... there are only six users at this remote office now... Regards, Peter. Paul Began [EMAIL PROTECTED] on 27/03/2001 12:03:07 To: [EMAIL PROTECTED] cc: Subject: RE: Cisco 800 Configuration Bridging over isdn will always be connected. The average LAN has many broadcasts per second. All broadcasts cross bridges. As a rule never bridge over ISDN if you don't want the line up 24hours a day. -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] Sent: 27 March 2001 11:19 To: [EMAIL PROTECTED] Subject: Cisco 800 Configuration Hi All !! I need some help and advice if you have a moment.. I am going to use two Cisco 800 routers to bridge via an ISDN BRI line between two offices. I have configured the routers to do this using some configs which I apapted from the cisco site. it works reasonably well. thing is the routers tend to keep a channel up constantly even when no traffic is being sent.. When I first power up the routers channel 1 will be activated and it will stay like this until I send some traffic when traffic is sent channel 1 is dropped briefly and then channels 1 and 2 are brought up. I experience about a 15 second delay in bringing up the connection initially and then its fine. I want to try to keep costs down while this temporary solution is in place can anyone tell me is there is any refinements I can make to the configs below ?? Kind Regards, Peter. Current configuration: ! version 12.1 no service pad service timestamps debug uptime service timestamps log uptime no service password-encryption ! hostname dubtest ! enable password cisco ! username remotertr password 0 secret ! ! ! ! ! ! ip subnet-zero no ip routing ! isdn switch-type basic-net3 ! ! ! interface Ethernet0 ip address 129.212.156.21 255.255.255.0 no ip route-cache bridge-group 1 ! interface BRI0 description ISDN to remote router ip address 129.212.156.21 255.255.255.0 encapsulation ppp no ip route-cache dialer idle-timeout 9 dialer map bridge name remotertr broadcast 807 dialer hold-queue 75 dialer load-threshold 2 outbound dialer-group 1 isdn switch-type basic-net3 ppp authentication chap no ppp chap wait ppp multilink bridge-group 1 bridge-group 1 priority 2 ! no ip http server ip classless ! dialer-list 1 protocol bridge permit bridge 1 protocol ieee bridge 1 priority 1 ! line con 0 transport input none stopbits 1 line vty 0 4 password cisco login ! no rcapi server ! ! end --- Current configuration: ! version 12.0 no service pad service timestamps debug uptime service timestamps log uptime no service password-encryption ! hostname remotertr ! enable password cisco ! username dubtest password 0 secret ! ! ! ! ! ip subnet-zero no ip routing ! isdn switch-type basic-net3 ! ! process-max-time 200 ! interface Ethernet0 ip address 129.212.156.22 255.255.255.0 ip directed-broadcast no ip route-cache bridge-group 1 ! interface BRI0 description ISDN line to dubtest ip address 129.212.156.22 255.255.255.0 no ip directed-broadcast encapsulation ppp no ip route-cache dialer idle-timeout 9 dialer map bridge name dubtest broadcast 813 dialer hold-queue 75 dialer load-threshold 1 outbound dialer-group 1 isdn switch-type basic-net3 ppp authentication chap callin ppp multilink bridge-group 1 bridge-group 1 priority 10 ! no ip http server ip classless ! dialer-list 1 protocol bridge permit bridge 1 protocol ieee bridge 1 priority 10 ! line con 0 transport input none stopbits 1 line vty 0 4 login ! end _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Router problem
- Original Message - From: Groupstudy To: [EMAIL PROTECTED] Sent: Tuesday, March 27, 2001 2:53 AM Subject: Re: Router problem Show us your configs. Hey now, this isn't Mardi Gras... ;-) _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
My CCNA test -Tips to follow
Hi, As I promise this afternoon I am giving my thoguhts about my CCNA test.=20 Passed CCNA 2.0 this morning, if you know your stuff it isn't that = difficult. I took the ICND instructor led class with Global Knowledge = and found it very good. The only other study guide I used were Sybex = book and the Suresh's CCNA Test Kit. Prior to this course I had my MCSE, = just note that the way questions are asked in the CISCO exam is very = different from Microsoft, not harder just different which may throw some = people. The global course gave 40 hours of hands on with a Catalyst = Switch a Cisco Router with pretty good labs (you actually learn, not = like Microsoft Labs)=20 Go to the Cisco site and download the objectives. The objectives outline = what you need to know. Cisco does not play games with the tests as = Microsoft does. The test was true to the objectives! Purchased the CCNA = Preparation Kit from www.sureshshomepage.com and Todd Lammle's Sybex = book. Suresh has got good amount stuffs really you can make use of it. = To tell you the truth, out of the 65 questons I was asked at the real = test, about 40Qs line-by-line were from Suresh's kit. I was really = zapped.=20 I passed the first time and I have very little (configured two Cisco = routers) experience. One shortcut was to understand the concepts in the = foundation summaries in the Certification Guide. Good luck!=20 No. Of Questions: 65 In Total. Time: 75 Minutes Exam format: cannot = review questions. command to enable RIP protocol command to see the hostname command to turn off enhanced editing No. of channels in ISDN BRI circuit five steps of Encapsulation Command to monitor Frame-relay activity on a Cisco router Changing the Enable password Command to display IPX interface e0 IP-class that provides the least number of Hosts layer that converts data into Packets 'backoff' and Ethernet network what is 'Base' in 100BaseT functionality of RARP protocol ways to prevent routing loops devices involved in collision and broadcast domains IGRP metric why OSI model, the objectives ISDN encapsulations? FasterEthernet Vs 10BaseT load the IOS command to show all access lists applied in all interfaces. broadcast address of 802.3 press ctrl Z in subinterface mode, where will you be now? Resources I used are www.sureshhomepage.com Toad Lamelle's Sybex book Global Knowledge CCNA Course material www.brainbuzz.com www.techrepublic.com www.3com.com (Excellant whitepaper on subnetting) thanks Paul Anderson MCSE, CCNA _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
3600 Serial Interface Puzzler
Further to my post regarding 2600's a few days ago. I received an e-mail from Rick Thompson (Thanks) as below: I have run across the same thing with the 3600 routers. It counts the first serial card as 0, no matter if it is in slot 0 or 1. Rick Thompson so I decided to drag a 3600 out and try a few things. Working with an NM1E2W: Inserted a WIC1T into slot w1 - This becomes S2/0 (Strange but agreeing with previous findings). Configured S2/0 with IP address and WR MEM. Powered down and inserted another WIC1T into slot w0. The new WIC1T now becomes S2/0. With both interfaces configured I powered down and removed w0. The card in w1 becomes S2/0 again. Is this a standard fact for all modular routers that the first card inserted will become 0, no matter which slot it's in, or is this platform/IOS specific? Cheers, Gareth _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Question about Spanningtree port costs/priorities etc.. on catalyst switches
if for example switch port 1/1 has a port cost of 10 and a port priority of 32 and switch port 1/2 has a port cost of 20 and a port priority of 16 which port forwards which port blocks does port priority take presidence over port cost? first correct answer wins ! _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Please help - this is quiet urgent
Hello I have a strange problem here. WE upgraded our AS400 system. The AS 400 is equipped with a fddi card and a fast ethernet card both on 2 different vlans. When I try to connect from my NT server to the AS400 the session keeps timing out. This problem occured only after the upgradation. out of 34 branches ( this is a banking environment) only 3 servers can connect. When i try to sniff at the nt server, the output shows that there is a SYN from the nt server and RST from AS400. IBM guys are here, but we dont seem to get across a solution. The NT server are running service pack 3. Is this related to any session time out ?? If anybody has come across a similar problem please share your ideas. CAnt seem to decide whether at all this is a network problem Thanks _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Course Recommendation
In my experience with Cisco Training Providers (6 classes) and other training providers, "Prerequisites" is a misnomer, "recommended background or training" would be closer to correct. The only folks worse at describing what the "prerequisites" should be are the cisco course manual writers, most of their suggested "prerequisites" would make some or all of the specific course unnecessary or of marginal use. If you have a CCNA, you have an entirely adequate background for BCMSN, if your concerned about CCNA v1 vs. v2, do some reading (say, on VLANs). Training is precious, get as much out of it as you can, and enjoy. Sammi wrote in message [EMAIL PROTECTED]... Thanks for the recommendations. The BCMSN seems the consensus and was also the one I had thought be best for my situation. However, it seems they want ISND as a prerequisite. Perhaps I can contact them and see if my CCNA will suffice. In the month or so prior to the course I can get hands on and bring myself up to speed via study. On 26 Mar 2001 15:46:26 -0500, [EMAIL PROTECTED] (Sammi) wrote: Hello all, I have been given the go ahead to attend a one week course of my choice, to be scheduled in May. In the meantime I have been doing home study via books recommended on the groupstudy.com page. I have been doing research and am leaning towards a course offered by globalknowledge; Interconnecting Cisco Network Devices . My background; I have CCNA 1.0 (is it even valid anymore?), but no hands on. I am now in an environment where I must quickly bring myself up to speed on switches, 1900-2800 series, and basic router config. I am particularly interested in V-LAN. Can anyone provide perspective on my choice, or recommend other avenues? I very much want to get the most bang for the buck and be able to apply the knowledge upon course completion. All thoughts, comments, advice greatly appreciated. _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Great Lakes Cisco Users Group Meeting
Topic: Network Security and Intrusion Detection Presented by: Justin Peltier, CISSP, SSCP Date: Wednesday March 28, 2001 Location: Compuware Cafeteria Time: 6:30 PM Attendance: Everyone is welcomed For More info: http://www.glcug.com/ = Paul M. Immo CCDP CCNP MCSE ___ Imagination is more important than knowledge Albert Einstein __ Do You Yahoo!? Get email at your own domain with Yahoo! Mail. http://personal.mail.yahoo.com/?.refer=text _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Great Lakes Cisco Users Group Meeting
Topic: Network Security and Intrusion Detection Presented by: Justin Peltier, CISSP, SSCP Date: Wednesday March 28, 2001 Location: Compuware Cafeteria Time: 6:30 PM Attendance: Everyone is welcomed For More info: http://www.glcug.com/ = Paul M. Immo CCDP CCNP MCSE ___ Imagination is more important than knowledge Albert Einstein __ Do You Yahoo!? Get email at your own domain with Yahoo! Mail. http://personal.mail.yahoo.com/?.refer=text _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Please help - this is quiet urgent
what kind of upgrade was done on the AS400??. How does the AS400 connect to the network?? STUN, DLSW -Original Message- From: Gayathri [mailto:[EMAIL PROTECTED]] Sent: 27 March 2001 14:41 To: [EMAIL PROTECTED] Subject: Please help - this is quiet urgent Hello I have a strange problem here. WE upgraded our AS400 system. The AS 400 is equipped with a fddi card and a fast ethernet card both on 2 different vlans. When I try to connect from my NT server to the AS400 the session keeps timing out. This problem occured only after the upgradation. out of 34 branches ( this is a banking environment) only 3 servers can connect. When i try to sniff at the nt server, the output shows that there is a SYN from the nt server and RST from AS400. IBM guys are here, but we dont seem to get across a solution. The NT server are running service pack 3. Is this related to any session time out ?? If anybody has come across a similar problem please share your ideas. CAnt seem to decide whether at all this is a network problem Thanks _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Router problem
- Original Message - From: Groupstudy To: [EMAIL PROTECTED] Sent: Tuesday, March 27, 2001 2:53 AM Subject: Re: Router problem Show us your configs. Hey now, this isn't Mardi Gras... ;-) Do you get beads with SmartNet? _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Question about Spanningtree port costs/priorities etc.. on catalyst switches
On Tue, Mar 27, 2001 at 01:25:03PM -, ciscosis wrote: if for example switch port 1/1 has a port cost of 10 and a port priority of 32 and switch port 1/2 has a port cost of 20 and a port priority of 16 which port forwards which port blocks does port priority take presidence over port cost? Depends on the root bridge configuration and topology. If the configuration of the switch this switch is connected to is default and both ports are conneted to the same switch, port 1/2 wins. (Lowest port ID, calculated as port priority plus the port slot/number. Default priority is 32) Port cost is added outbound, not inbound, so the port cost on this switch is irrelevant. If you really meant that the received port costs are 10 and 20, rather than the locally set costs, the answer is 1/1 as lower cost wins. -- Ryan O'Connell - [EMAIL PROTECTED] - http://www.complicity.co.uk I'm not losing my mind, no I'm not changing my lines, I'm just learning new things with the passage of time _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
CCNP Material: What's better?
I live in Argentina. There are not many Academies where to take the courses for CCNP. So I wonder if it's enough just to study from the books, and do the labs at work. Anyway, I want to know which are the best books. Cisco Press or Todd Lammle? Daniel Lob Buenos Aires Argentina _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Cisco router is running very slow when SSh is implmented
Hi everyone, Is it just me or anyone in the group experiencing the same thing? I've implemented SSH features on one of our ACCESS servers and I notice that it is very slow. The access server is a Cisco 3640 with 128MB RAM. I notice the performance is quited slow even on a Fast Ethernet LAN. I don't have any performance issues with Unix servers. Another thing, now that I have SSH running on the access server, how can I turn off telnet completely on the router? I check Cisco website but didn't see any solutions for it. Any ideas? Thanks. Sean _ Get your FREE download of MSN Explorer at http://explorer.msn.com _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Router problem
Beads are optional unless take the top off of the router; then you tend to get lots of beads for some reason. :) It must have to do with the fact that now you can see the FLASH! :) -Original Message- From: Howard C. Berkowitz [mailto:[EMAIL PROTECTED]] Sent: Tuesday, March 27, 2001 7:29 AM To: [EMAIL PROTECTED] Subject: Re: Router problem - Original Message - From: Groupstudy To: [EMAIL PROTECTED] Sent: Tuesday, March 27, 2001 2:53 AM Subject: Re: Router problem Show us your configs. Hey now, this isn't Mardi Gras... ;-) Do you get beads with SmartNet? _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Please help - this is quiet urgent
The connectivity is like this: AS400 (Fast Ether) - CAT55 Switch --? Router The branches connect to the AS400 thru a NT Server , client access is used - sna connectivity "Andrew Larkins" [EMAIL PROTECTED] wrote in message 8F5F72F80EF5D311ADE600A0C9DCF8620112C11B@UBDCCOMJHBEX">news:8F5F72F80EF5D311ADE600A0C9DCF8620112C11B@UBDCCOMJHBEX... what kind of upgrade was done on the AS400??. How does the AS400 connect to the network?? STUN, DLSW -Original Message- From: Gayathri [mailto:[EMAIL PROTECTED]] Sent: 27 March 2001 14:41 To: [EMAIL PROTECTED] Subject: Please help - this is quiet urgent Hello I have a strange problem here. WE upgraded our AS400 system. The AS 400 is equipped with a fddi card and a fast ethernet card both on 2 different vlans. When I try to connect from my NT server to the AS400 the session keeps timing out. This problem occured only after the upgradation. out of 34 branches ( this is a banking environment) only 3 servers can connect. When i try to sniff at the nt server, the output shows that there is a SYN from the nt server and RST from AS400. IBM guys are here, but we dont seem to get across a solution. The NT server are running service pack 3. Is this related to any session time out ?? If anybody has come across a similar problem please share your ideas. CAnt seem to decide whether at all this is a network problem Thanks _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: 2514 Upgrade Problem!!
If I remember correctly, in that mode on a 2500 series router, routing is disabled. If your TFTP server is not directly attached to the ethernet port then you need to set a default gateway using the "ip default-gateway" command to provide connectivity to the network. If you can ping your TFTP server from the router you should be able to try the upgrade again. HTH, John "Niraj Palikhey" [EMAIL PROTECTED] 3/26/01 10:44:58 PM Hi, When I was upgrading the IOS on a 2514 router via tftp, the connection was lost while the router was trying to download the new ios from the tftp server(after having erased the existing ios!!). The router retried a couple of times and I was finally forced to reboot the router. The routers now boots to the mini-ios(gives me the Router(boot) prompt. What can I do to successfully upgrade the ios on this router. Thank you for your help. Regards, [EMAIL PROTECTED] _ Get your FREE download of MSN Explorer at http://explorer.msn.com _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: 2500 Flash ?
I have a similar problem, but it's the other way around (sorta)... I added a 4M flash chip to a 2500 that originally had only 8M. But after the upgrade, "show version" shows there are 16M, not 12M. Also, I can not copy an IOS version that's larger than 12M to the flash, so that shows the added chip is indeed only 4M. Is there something I need to do so it shows the correct size of the flash? ROM upgrade? Thanks, Rog -Original Message- From: John Chang [mailto:[EMAIL PROTECTED]] Sent: Monday, March 26, 2001 10:25 PM To: [EMAIL PROTECTED] Subject: 2500 Flash ? I have a 2504 and I put in a 8MB flash but when it starts up it says it's a 4MB flash. Is there something I need to do so that it sees it correctly? Thank you. _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Course Recommendation
I'd also suggest for course prep that he purchase "Cisco LAN Switching" by Clark and Hamilton. Cisco Press ISBN: 1-57870-94-9 -Original Message- From: Arthur Stewart [mailto:[EMAIL PROTECTED]] Sent: Tuesday, March 27, 2001 6:44 AM To: [EMAIL PROTECTED] Subject: Re: Course Recommendation In my experience with Cisco Training Providers (6 classes) and other training providers, "Prerequisites" is a misnomer, "recommended background or training" would be closer to correct. The only folks worse at describing what the "prerequisites" should be are the cisco course manual writers, most of their suggested "prerequisites" would make some or all of the specific course unnecessary or of marginal use. If you have a CCNA, you have an entirely adequate background for BCMSN, if your concerned about CCNA v1 vs. v2, do some reading (say, on VLANs). Training is precious, get as much out of it as you can, and enjoy. Sammi wrote in message [EMAIL PROTECTED]... Thanks for the recommendations. The BCMSN seems the consensus and was also the one I had thought be best for my situation. However, it seems they want ISND as a prerequisite. Perhaps I can contact them and see if my CCNA will suffice. In the month or so prior to the course I can get hands on and bring myself up to speed via study. On 26 Mar 2001 15:46:26 -0500, [EMAIL PROTECTED] (Sammi) wrote: Hello all, I have been given the go ahead to attend a one week course of my choice, to be scheduled in May. In the meantime I have been doing home study via books recommended on the groupstudy.com page. I have been doing research and am leaning towards a course offered by globalknowledge; Interconnecting Cisco Network Devices . My background; I have CCNA 1.0 (is it even valid anymore?), but no hands on. I am now in an environment where I must quickly bring myself up to speed on switches, 1900-2800 series, and basic router config. I am particularly interested in V-LAN. Can anyone provide perspective on my choice, or recommend other avenues? I very much want to get the most bang for the buck and be able to apply the knowledge upon course completion. All thoughts, comments, advice greatly appreciated. _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Please help - this is quiet urgent
Seems like your "upgradation" resulted in a "degradation"... [=`) Seriously, this does not appear to be a "network" problem. Especially since it does not seem that the "network" has been changed (I am assuming that the "upgradation" of the AS400 iincluded only software). The network appears to be functioning, in that the request from the NT server for a TCP session is reaching the AS400. The fact that it is being met with a RST is another matter altogether. In fact, that is where I would begin. What are the criteria required for the NT servers to successfully establish a session with the AS400? Do they include specific addresses (IP, or MAC), authentication issues, etc? An RST (reset) message from the AS400 is essentially equivalent to the AS400 hanging up the phone... What are the time deltas between the SYN and the RST? If you attempt to connect a number of times in a row, are the deltas consistent? Do pings display the same sorts of delta's? What are the characteristics of those servers that DO connect and how do they differ from those that cannot? I have asked a number of questions here - please DO NOT send me the answers. I simply want to point you toward some things to think about. Bottom line - there are a number of criteria for establishing a connection to the AS400, and those criteria are no longer being met. Determine what those criteria are and which ones are not met, then deterimine why not. This will lead you to the solution. Good luck! Z PS - I hope this isn't my bank... From: Andrew Larkins [EMAIL PROTECTED] Reply-To: Andrew Larkins [EMAIL PROTECTED] To: Gayathri [EMAIL PROTECTED], [EMAIL PROTECTED] Subject: RE: Please help - this is quiet urgent Date: Tue, 27 Mar 2001 15:12:57 +0200 what kind of upgrade was done on the AS400??. How does the AS400 connect to the network?? STUN, DLSW -Original Message- From: Gayathri [mailto:[EMAIL PROTECTED]] Sent: 27 March 2001 14:41 To: [EMAIL PROTECTED] Subject: Please help - this is quiet urgent Hello I have a strange problem here. WE upgraded our AS400 system. The AS 400 is equipped with a fddi card and a fast ethernet card both on 2 different vlans. When I try to connect from my NT server to the AS400 the session keeps timing out. This problem occured only after the upgradation. out of 34 branches ( this is a banking environment) only 3 servers can connect. When i try to sniff at the nt server, the output shows that there is a SYN from the nt server and RST from AS400. IBM guys are here, but we dont seem to get across a solution. The NT server are running service pack 3. Is this related to any session time out ?? If anybody has come across a similar problem please share your ideas. CAnt seem to decide whether at all this is a network problem Thanks _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ Get your FREE download of MSN Explorer at http://explorer.msn.com _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: voice teleconference
So, you'd like us to design a voice solution that includes the customer's PBX, their ISP's connectivity, appropriate Cisco hardware for an assumed capacity? No problem. My bill rate is $150/hour US dollars. How soon would you like to contract me? :) Z PS - an alternative might be www.cisco.com From: Mihai Dumitru [EMAIL PROTECTED] Reply-To: Mihai Dumitru [EMAIL PROTECTED] To: [EMAIL PROTECTED] Subject: voice teleconference Date: Tue, 27 Mar 2001 10:54:59 +0200 Hi! I have never done VoIP so far and I'm wondering what Cisco equipment do I have to provision for a central site to accomodate voice teleconference with ten concurrent client sites. Basically, I want to use the existing data channels (within the same ISP) only as transport for voice. The customer has its own PBXs and wants to make use of them, if possible. Thanks, Mihai _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ Get your FREE download of MSN Explorer at http://explorer.msn.com _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Please help - this is quiet urgent
This is a wild guess, but perhaps you have some assymetrical routing problems. By that I mean that after the upgrade the AS400 might be "routing" differently than it was before. If it has two connections to the network, maybe it is using the wrong one for return traffic to the NT server. From the NT server's point of view it would be seeing return traffic from the wrong IP address and would not be able to establish a tcp connection. That's just a guess, but it's something worth looking into. Regards, John "Gayathri" [EMAIL PROTECTED] 3/27/01 5:40:30 AM Hello I have a strange problem here. WE upgraded our AS400 system. The AS 400 is equipped with a fddi card and a fast ethernet card both on 2 different vlans. When I try to connect from my NT server to the AS400 the session keeps timing out. This problem occured only after the upgradation. out of 34 branches ( this is a banking environment) only 3 servers can connect. When i try to sniff at the nt server, the output shows that there is a SYN from the nt server and RST from AS400. IBM guys are here, but we dont seem to get across a solution. The NT server are running service pack 3. Is this related to any session time out ?? If anybody has come across a similar problem please share your ideas. CAnt seem to decide whether at all this is a network problem Thanks _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: TFTP Error - 3
It's trying to do autoinstall. Here's the Cisco documentation: http://www.cisco.com/univercd/cc/td/doc/product/software/ios121/121cgcr/fun_ c/fcprt1/fcd102.htm Jay ""Arthur Simplina"" [EMAIL PROTECTED] wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... This is a continuation of my earlier posting. I am doing hands-on lab exercises during my off-class hours. Normally, in one chapter there 7-9 different router set-ups which involve 3-5 routers and 2-3 switches (2900XL). So after,completing one lab exercise, I have to erase all the router configurations and do a reload to have a clean start for the next lab exercise. As shown below, the router is booting up and there is this "%error opening tftp:...", this takes a while waiting before I can start configuring the router. I compared the "show ver" of this router and the other router (Router-A) which does not exhibit this tftp error and there are no differences in the image files, configuration registers, etc. Another router has the same problem and again there are no differences. But this behavior is not consistent. At one time, after the reload and rebooting, the router will not show this tftp error and then in another instance, this tftp error appears. The command "#no service config" will be effective only for that session but after clearing up and reloading, this tftp error appears. Did anybody experience this before? I would highly appreciate if you can share your solution. Thanks. Arthur PS: As suggested, we performed a password recovery on the routers to remove the "%tftp error... it also did not work. _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Book on Voice over Ip and Voice over Frame Relay
Hi every body, Can anyone provide me some info on which books are better for Voip and VoFr. Thanks and regards Rajeev Bharadwaj _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: banner problem
Older version of the IOS only display 265 characters of the banner! Per Cisco you need to upgrade to a newer version! Good luck! -Original Message- From: michael liu [mailto:[EMAIL PROTECTED]] Sent: Monday, March 26, 2001 3:40 PM To: [EMAIL PROTECTED] Subject: banner problem htmlDIVHi, Guys:/DIV DIVnbsp;/DIV DIVnbsp; I setup banner on one of the router, when I login in, it only displays half the banner, but/DIV DIVin the configuation I have full banner. I checked process utilization is very low, and I have/DIV DIVenough memory on the router./DIV DIVnbsp;/DIV DIVAny ideas?/DIV DIVnbsp;/DIV DIVThx,/DIV DIVnbsp;/DIV DIVml/DIVbr clear=allhrGet your FREE download of MSN Explorer at a href="http://explorer.msn.com"http://explorer.msn.com/abr/p/html _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Cisco router is running very slow when SSh is implmented
This is my configuration line con 0 logging synchronous login authentication usetacacs transport input lat pad v120 lapb-ta mop telnet rlogin udptn nasi ssh line aux 0 line vty 0 4 exec-timeout 0 0 authorization commands 1 usetacacs1 login authentication usetacacs ! even when I set the "exec-timeout 0 0", I still can telnet to the router which is something I would like to avoid. I only want ssh to work. By the way, I use TACACS+ to authenticate users. Anymore ideas? Sean From: "John Neiberger" [EMAIL PROTECTED] To: [EMAIL PROTECTED] CC: [EMAIL PROTECTED] Subject: Re: Cisco router is running very slow when SSh is implmented Date: Tue, 27 Mar 2001 08:20:26 -0700 I don't know about the performance issue, that sounds like a "feature" since a 3640 shouldn't have much trouble handling that. As far as disabling telnet, the only way I know of is not to set a vty password. While not disabling the telnet server, it will prevent any attempts to telnet to the router. John "Sean Young" [EMAIL PROTECTED] 3/27/01 7:58:37 AM Hi everyone, Is it just me or anyone in the group experiencing the same thing? I've implemented SSH features on one of our ACCESS servers and I notice that it is very slow. The access server is a Cisco 3640 with 128MB RAM. I notice the performance is quited slow even on a Fast Ethernet LAN. I don't have any performance issues with Unix servers. Another thing, now that I have SSH running on the access server, how can I turn off telnet completely on the router? I check Cisco website but didn't see any solutions for it. Any ideas? Thanks. Sean _ Get your FREE download of MSN Explorer at http://explorer.msn.com _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ Get your FREE download of MSN Explorer at http://explorer.msn.com _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Free Training Materials for CCNA, CCDA, CCNP, CCDP and CCIE
A site like that is a very good idea, actually. It was just that wording that seemed to encourage plagiarism that bothered me. But as was pointed out to me several times yesterday, I was being grumpy for no apparent reason. I promise to be in a better mood today! Regards, John "CiscoDiety" [EMAIL PROTECTED] 3/26/01 5:39:35 PM Hey guys, Do with it what you want. Some people use it as a reference, others outright plagarize the work. It's not for me to decide what you do with it, I just put it there. I have an 18 year old High School Senior in my house, and I do know this; Some teachers check for plagarism. He uses it as a starting point to write his papers from, and for that, it works VERY well. Also, the Website is more for me to hone my skills with (Yes, I do know more than just Cisco stuff ;-))than anything else. The Essays were only a mere excuse to build it :-) Clayton Dukes - Download Free Essays, Term Papers and Cisco Training from http://www.gdd.net - Original Message - From: "John Neiberger" [EMAIL PROTECTED] To: [EMAIL PROTECTED] Cc: [EMAIL PROTECTED] Sent: Monday, March 26, 2001 6:48 PM Subject: Re: Free Training Materials for CCNA, CCDA, CCNP, CCDP and CCIE Hey, don't get me wrong. I'm all for as much education as possible. I was specifically referring to the section designated for sharing term papers. If you read it again you'll notice that they are grouped by school and geographical area so that you don't submit the same paper as someone else! They are asking for people to post term papers for the sole purpose of getting out of doing it themselves. Do you really think that is helpful to the educational process? I don't think so. Lad. :-) If you think that giving your work to someone else so that they can do better in a class without doing the work themselves is okay, then that's the website for you. But I don't think you feel that way. Hopefully, you would agree that that form of information sharing is not constructive. Somebody pointed out to me that I seem really grumpy today. He must be right because I seem to be ruffling feathers without intending to! :-) Good thing it's almost time to go home. Regards, John "hal9001" [EMAIL PROTECTED] 3/26/01 4:14:34 PM Is that what they do at your Grade School, I think anything that helps.helps.I think he was just helping. F for SocialisationLad. Karl - Original Message - From: "John Neiberger" [EMAIL PROTECTED] To: [EMAIL PROTECTED] Sent: Monday, March 26, 2001 8:33 PM Subject: Re: Free Training Materials for CCNA, CCDA, CCNP, CCDP and CCIE Wow, cool. I can just copy term papers from the website without having to do the work! Is there going to be a subscriber-only service to have someone take my tests for me as well? I can see how that might have an extra cost associated with it since we'd have to print up some good fake IDs. "CiscoDiety" [EMAIL PROTECTED] 3/26/01 11:14:10 AM http://www.gdd.net Clayton Dukes CCNA, CCDA, CCDP, CCNP _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: 2500 Flash ?
I think that the flash chips have to match - in other words, you have to have 2 8's not 1 8MB and 1 4MB... Z From: "Wang, Roger" [EMAIL PROTECTED] Reply-To: "Wang, Roger" [EMAIL PROTECTED] To: [EMAIL PROTECTED] Subject: RE: 2500 Flash ? Date: Tue, 27 Mar 2001 10:11:32 -0500 I have a similar problem, but it's the other way around (sorta)... I added a 4M flash chip to a 2500 that originally had only 8M. But after the upgrade, "show version" shows there are 16M, not 12M. Also, I can not copy an IOS version that's larger than 12M to the flash, so that shows the added chip is indeed only 4M. Is there something I need to do so it shows the correct size of the flash? ROM upgrade? Thanks, Rog -Original Message- From: John Chang [mailto:[EMAIL PROTECTED]] Sent: Monday, March 26, 2001 10:25 PM To: [EMAIL PROTECTED] Subject: 2500 Flash ? I have a 2504 and I put in a 8MB flash but when it starts up it says it's a 4MB flash. Is there something I need to do so that it sees it correctly? Thank you. _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ Get your FREE download of MSN Explorer at http://explorer.msn.com _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Cisco router is running very slow when SSh is implmented
Enter a "no login" under the vty config and that will disable telnet authentication, effectively shutting off telnet... From: "Sean Young" [EMAIL PROTECTED] Reply-To: "Sean Young" [EMAIL PROTECTED] To: [EMAIL PROTECTED] CC: [EMAIL PROTECTED] Subject: Re: Cisco router is running very slow when SSh is implmented Date: Tue, 27 Mar 2001 10:38:38 -0500 This is my configuration line con 0 logging synchronous login authentication usetacacs transport input lat pad v120 lapb-ta mop telnet rlogin udptn nasi ssh line aux 0 line vty 0 4 exec-timeout 0 0 authorization commands 1 usetacacs1 login authentication usetacacs ! even when I set the "exec-timeout 0 0", I still can telnet to the router which is something I would like to avoid. I only want ssh to work. By the way, I use TACACS+ to authenticate users. Anymore ideas? Sean From: "John Neiberger" [EMAIL PROTECTED] To: [EMAIL PROTECTED] CC: [EMAIL PROTECTED] Subject: Re: Cisco router is running very slow when SSh is implmented Date: Tue, 27 Mar 2001 08:20:26 -0700 I don't know about the performance issue, that sounds like a "feature" since a 3640 shouldn't have much trouble handling that. As far as disabling telnet, the only way I know of is not to set a vty password. While not disabling the telnet server, it will prevent any attempts to telnet to the router. John "Sean Young" [EMAIL PROTECTED] 3/27/01 7:58:37 AM Hi everyone, Is it just me or anyone in the group experiencing the same thing? I've implemented SSH features on one of our ACCESS servers and I notice that it is very slow. The access server is a Cisco 3640 with 128MB RAM. I notice the performance is quited slow even on a Fast Ethernet LAN. I don't have any performance issues with Unix servers. Another thing, now that I have SSH running on the access server, how can I turn off telnet completely on the router? I check Cisco website but didn't see any solutions for it. Any ideas? Thanks. Sean _ Get your FREE download of MSN Explorer at http://explorer.msn.com _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ Get your FREE download of MSN Explorer at http://explorer.msn.com _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ Get your FREE download of MSN Explorer at http://explorer.msn.com _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Cisco router is running very slow when SSh is implmented
Hmm...it looks like the presence of the login and authorization commands is fulfilling the requirement for a password to be configured on those lines. Ok, I'll go back to pondering then. Could you add an access list to block incoming traffic to port 23? That might accomplish the same goal. There must be another way, though. I'll let you know if I think of something. John "Sean Young" [EMAIL PROTECTED] 3/27/01 8:38:38 AM This is my configuration line con 0 logging synchronous login authentication usetacacs transport input lat pad v120 lapb-ta mop telnet rlogin udptn nasi ssh line aux 0 line vty 0 4 exec-timeout 0 0 authorization commands 1 usetacacs1 login authentication usetacacs ! even when I set the "exec-timeout 0 0", I still can telnet to the router which is something I would like to avoid. I only want ssh to work. By the way, I use TACACS+ to authenticate users. Anymore ideas? Sean From: "John Neiberger" [EMAIL PROTECTED] To: [EMAIL PROTECTED] CC: [EMAIL PROTECTED] Subject: Re: Cisco router is running very slow when SSh is implmented Date: Tue, 27 Mar 2001 08:20:26 -0700 I don't know about the performance issue, that sounds like a "feature" since a 3640 shouldn't have much trouble handling that. As far as disabling telnet, the only way I know of is not to set a vty password. While not disabling the telnet server, it will prevent any attempts to telnet to the router. John "Sean Young" [EMAIL PROTECTED] 3/27/01 7:58:37 AM Hi everyone, Is it just me or anyone in the group experiencing the same thing? I've implemented SSH features on one of our ACCESS servers and I notice that it is very slow. The access server is a Cisco 3640 with 128MB RAM. I notice the performance is quited slow even on a Fast Ethernet LAN. I don't have any performance issues with Unix servers. Another thing, now that I have SSH running on the access server, how can I turn off telnet completely on the router? I check Cisco website but didn't see any solutions for it. Any ideas? Thanks. Sean _ Get your FREE download of MSN Explorer at http://explorer.msn.com _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ Get your FREE download of MSN Explorer at http://explorer.msn.com _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Cisco router is running very slow when SSh is implmented
Hope I am not offending you but did you read the document before giving me advice or do you just give it out of the blue? If I "no login" under vty then users will NOT be able to SSH to the router period. Any more ideas? Sean From: "Mask Of Zorro" [EMAIL PROTECTED] To: [EMAIL PROTECTED], [EMAIL PROTECTED] CC: [EMAIL PROTECTED] Subject: Re: Cisco router is running very slow when SSh is implmented Date: Tue, 27 Mar 2001 11:04:33 -0500 Enter a "no login" under the vty config and that will disable telnet authentication, effectively shutting off telnet... From: "Sean Young" [EMAIL PROTECTED] Reply-To: "Sean Young" [EMAIL PROTECTED] To: [EMAIL PROTECTED] CC: [EMAIL PROTECTED] Subject: Re: Cisco router is running very slow when SSh is implmented Date: Tue, 27 Mar 2001 10:38:38 -0500 This is my configuration line con 0 logging synchronous login authentication usetacacs transport input lat pad v120 lapb-ta mop telnet rlogin udptn nasi ssh line aux 0 line vty 0 4 exec-timeout 0 0 authorization commands 1 usetacacs1 login authentication usetacacs ! even when I set the "exec-timeout 0 0", I still can telnet to the router which is something I would like to avoid. I only want ssh to work. By the way, I use TACACS+ to authenticate users. Anymore ideas? Sean From: "John Neiberger" [EMAIL PROTECTED] To: [EMAIL PROTECTED] CC: [EMAIL PROTECTED] Subject: Re: Cisco router is running very slow when SSh is implmented Date: Tue, 27 Mar 2001 08:20:26 -0700 I don't know about the performance issue, that sounds like a "feature" since a 3640 shouldn't have much trouble handling that. As far as disabling telnet, the only way I know of is not to set a vty password. While not disabling the telnet server, it will prevent any attempts to telnet to the router. John "Sean Young" [EMAIL PROTECTED] 3/27/01 7:58:37 AM Hi everyone, Is it just me or anyone in the group experiencing the same thing? I've implemented SSH features on one of our ACCESS servers and I notice that it is very slow. The access server is a Cisco 3640 with 128MB RAM. I notice the performance is quited slow even on a Fast Ethernet LAN. I don't have any performance issues with Unix servers. Another thing, now that I have SSH running on the access server, how can I turn off telnet completely on the router? I check Cisco website but didn't see any solutions for it. Any ideas? Thanks. Sean _ Get your FREE download of MSN Explorer at http://explorer.msn.com _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ Get your FREE download of MSN Explorer at http://explorer.msn.com _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ Get your FREE download of MSN Explorer at http://explorer.msn.com _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Cisco 1720 router Question
Hey I have a question that I'm sure someone here can help me with...what I want to do seems to me should be simple yet I'm having issues geting it to work.. heres the situation. I have a network that has some published IP's and we want to assign one of those to a router and have all traffic to that address be forwarded to another router inside our network. The router that I have is a 1720.. any ideas of how this can be done?? I've looked at ip forwarding but it looks like I can only forward UDP not IP .. any help appreciated.. many thanks!! Todd. [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
ISDN problems
Hi all !!, I have a dialer with two dialer string defined: int dial 1 dialer string 914401000 dialer string 914400507 ... The question is, what these messages mean?? 6d02h: ISDN BR1/1: TX - SETUP pd =3D 8 callref =3D 0x5D 6d02h: Bearer Capability i =3D 0x8890 6d02h: Channel ID i =3D 0x83 6d02h: Calling Party Number i =3D 0x80, '914401000', = Plan:Unknown, Type:Unknown =20 6d02h: Called Party Number i =3D 0x80, '914400507', = Plan:Unknown, Type:Unknown the router tries to call 914401000 but finally calls to 914400507 ?? Thanks in advance. Javier. Javier Castillo Alc=EDbar - [EMAIL PROTECTED] Alhambra Systems, S.A. - www.alhsys.com c/Albasanz 14, 28037 Madrid Tel.: +34 91 787 23 00 Fax.: +34 91 787 23 01 _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: 2514 Upgrade Problem!!
That's exactly the command that I forgot to type on the router prior to the upgrade. I have a X-over cable b/w the router and the tftp server(95 laptop). NO, I cannot ping the tftp at the Router(boot) prompt Nor can I ping the router from the tftp. Any ideas? Can I setup the #ip default-gateway command at the Router(boot) prompt(once I am able to ping-if that's possible?) I am also doing a search on CCO but am not having much luck. Please advise. Thank you. Kind regards, [EMAIL PROTECTED] From: "John Neiberger" [EMAIL PROTECTED] Reply-To: "John Neiberger" [EMAIL PROTECTED] To: [EMAIL PROTECTED] CC: [EMAIL PROTECTED] Subject: Re: 2514 Upgrade Problem!! Date: Tue, 27 Mar 2001 08:08:08 -0700 If I remember correctly, in that mode on a 2500 series router, routing is disabled. If your TFTP server is not directly attached to the ethernet port then you need to set a default gateway using the "ip default-gateway" command to provide connectivity to the network. If you can ping your TFTP server from the router you should be able to try the upgrade again. HTH, John "Niraj Palikhey" [EMAIL PROTECTED] 3/26/01 10:44:58 PM Hi, When I was upgrading the IOS on a 2514 router via tftp, the connection was lost while the router was trying to download the new ios from the tftp server(after having erased the existing ios!!). The router retried a couple of times and I was finally forced to reboot the router. The routers now boots to the mini-ios(gives me the Router(boot) prompt. What can I do to successfully upgrade the ios on this router. Thank you for your help. Regards, [EMAIL PROTECTED] _ Get your FREE download of MSN Explorer at http://explorer.msn.com _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ Get your FREE download of MSN Explorer at http://explorer.msn.com _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Cisco router is running very slow when SSh is implmented
Sean - try a show proc cpu and see what's going on... it will give you an indication of what's going on inside the router. If it isn't a cpu problem, then you'll have to look at the interface(s) and see if the performance hit is happening there. (in other words, you'll have to isolate the problem - it MIGHT be the router, but it also might NOT) pay special attention to any of the processes that deal with ssh - the exec may also play some part in this performance degradation Keep looking to turn off telnet... and I'll ask my network operations engineers how they did it (probably an inbound access list denying port 23 traffic and allowing SSH traffic applied to the vty's... that would be my guess without looking any research...) - Original Message - From: John Neiberger [EMAIL PROTECTED] To: [EMAIL PROTECTED] Cc: [EMAIL PROTECTED] Sent: Tuesday, March 27, 2001 7:20 AM Subject: Re: Cisco router is running very slow when SSh is implmented I don't know about the performance issue, that sounds like a "feature" since a 3640 shouldn't have much trouble handling that. As far as disabling telnet, the only way I know of is not to set a vty password. While not disabling the telnet server, it will prevent any attempts to telnet to the router. John "Sean Young" [EMAIL PROTECTED] 3/27/01 7:58:37 AM Hi everyone, Is it just me or anyone in the group experiencing the same thing? I've implemented SSH features on one of our ACCESS servers and I notice that it is very slow. The access server is a Cisco 3640 with 128MB RAM. I notice the performance is quited slow even on a Fast Ethernet LAN. I don't have any performance issues with Unix servers. Another thing, now that I have SSH running on the access server, how can I turn off telnet completely on the router? I check Cisco website but didn't see any solutions for it. Any ideas? Thanks. Sean _ Get your FREE download of MSN Explorer at http://explorer.msn.com _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
1720 Router question
Hey I have a question that I'm sure someone here can help me with...what I want to do seems to me should be simple yet I'm having issues geting it to work.. heres the situation. I have a network that has some published IP's and we want to assign one of those to a router and have all traffic to that address be forwarded to another router inside our network. The router that I have is a 1720.. any ideas of how this can be done?? I've looked at ip forwarding but it looks like I can only forward UDP not IP .. any help appreciated.. many thanks!! Todd. [EMAIL PROTECTED] __ Do You Yahoo!? Get email at your own domain with Yahoo! Mail. http://personal.mail.yahoo.com/?.refer=text _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Free Training Materials for CCNA, CCDA, CCNP, CCDP and CCIE
Thanks :-) I've worked real hard in making www.gdd.net, and for no profit whatsoever, I might add. So, in essence, my only payment are compliments from people who use it. Clayton Dukes - Download Free Essays, Term Papers and Cisco Training from http://www.gdd.net - Original Message - From: "John Neiberger" [EMAIL PROTECTED] To: [EMAIL PROTECTED]; [EMAIL PROTECTED] Cc: [EMAIL PROTECTED] Sent: Tuesday, March 27, 2001 10:03 AM Subject: Re: Free Training Materials for CCNA, CCDA, CCNP, CCDP and CCIE A site like that is a very good idea, actually. It was just that wording that seemed to encourage plagiarism that bothered me. But as was pointed out to me several times yesterday, I was being grumpy for no apparent reason. I promise to be in a better mood today! Regards, John "CiscoDiety" [EMAIL PROTECTED] 3/26/01 5:39:35 PM Hey guys, Do with it what you want. Some people use it as a reference, others outright plagarize the work. It's not for me to decide what you do with it, I just put it there. I have an 18 year old High School Senior in my house, and I do know this; Some teachers check for plagarism. He uses it as a starting point to write his papers from, and for that, it works VERY well. Also, the Website is more for me to hone my skills with (Yes, I do know more than just Cisco stuff ;-))than anything else. The Essays were only a mere excuse to build it :-) Clayton Dukes - Download Free Essays, Term Papers and Cisco Training from http://www.gdd.net - Original Message - From: "John Neiberger" [EMAIL PROTECTED] To: [EMAIL PROTECTED] Cc: [EMAIL PROTECTED] Sent: Monday, March 26, 2001 6:48 PM Subject: Re: Free Training Materials for CCNA, CCDA, CCNP, CCDP and CCIE Hey, don't get me wrong. I'm all for as much education as possible. I was specifically referring to the section designated for sharing term papers. If you read it again you'll notice that they are grouped by school and geographical area so that you don't submit the same paper as someone else! They are asking for people to post term papers for the sole purpose of getting out of doing it themselves. Do you really think that is helpful to the educational process? I don't think so. Lad. :-) If you think that giving your work to someone else so that they can do better in a class without doing the work themselves is okay, then that's the website for you. But I don't think you feel that way. Hopefully, you would agree that that form of information sharing is not constructive. Somebody pointed out to me that I seem really grumpy today. He must be right because I seem to be ruffling feathers without intending to! :-) Good thing it's almost time to go home. Regards, John "hal9001" [EMAIL PROTECTED] 3/26/01 4:14:34 PM Is that what they do at your Grade School, I think anything that helps.helps.I think he was just helping. F for SocialisationLad. Karl - Original Message - From: "John Neiberger" [EMAIL PROTECTED] To: [EMAIL PROTECTED] Sent: Monday, March 26, 2001 8:33 PM Subject: Re: Free Training Materials for CCNA, CCDA, CCNP, CCDP and CCIE Wow, cool. I can just copy term papers from the website without having to do the work! Is there going to be a subscriber-only service to have someone take my tests for me as well? I can see how that might have an extra cost associated with it since we'd have to print up some good fake IDs. "CiscoDiety" [EMAIL PROTECTED] 3/26/01 11:14:10 AM http://www.gdd.net Clayton Dukes CCNA, CCDA, CCDP, CCNP _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure
ISDN - Dial-IN
Gentlemen: I would appreciate it if someone could help me with a simple config for ISDN so I could dial-in on a 1750 router. Thank you in advance for your help. Regards, John Huston [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: 2514 Upgrade Problem!!
Hi Jason, I would love to do the xmodem(after having done on a couple of 36 and 2600 series) but my problem is that I have never been able to upgrade the ios on a 2500 via the xmodem. Everytime I do that, the first thing it does is give me a prompt and when I type the xmodem command, gives me a what? response. I do NOT get this on the 36 or 2600 routers. I have tried to get this info. on CCO without any luck. Does ANYBODY know how to upgrade the ios on a 2500 via xmodem? Has ANYBODY done this successfully. Please advise. Thank you. Kind regards, [EMAIL PROTECTED] From: Jason Baker [EMAIL PROTECTED] Reply-To: Jason Baker [EMAIL PROTECTED] To: "'Niraj Palikhey'" [EMAIL PROTECTED], [EMAIL PROTECTED] Subject: RE: 2514 Upgrade Problem!! Date: Tue, 27 Mar 2001 16:57:42 +1000 sounds like a job for xmodem and a few hours of your time worrying if the power will go off:). -Original Message- From: Niraj Palikhey [mailto:[EMAIL PROTECTED]] Sent: Tuesday, March 27, 2001 3:45 PM To: [EMAIL PROTECTED]; [EMAIL PROTECTED] Subject: 2514 Upgrade Problem!! Hi, When I was upgrading the IOS on a 2514 router via tftp, the connection was lost while the router was trying to download the new ios from the tftp server(after having erased the existing ios!!). The router retried a couple of times and I was finally forced to reboot the router. The routers now boots to the mini-ios(gives me the Router(boot) prompt. What can I do to successfully upgrade the ios on this router. Thank you for your help. Regards, [EMAIL PROTECTED] _ Get your FREE download of MSN Explorer at http://explorer.msn.com _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ Get your FREE download of MSN Explorer at http://explorer.msn.com _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Cisco router is running very slow when SSh is implmented
Why not try to throw an access list on it that blocks the incoming telnet port? I submit that I haven't read the document either so that might be a stupid suggestion :-) At 09:16 AM 3/27/01, you wrote: Hope I am not offending you but did you read the document before giving me advice or do you just give it out of the blue? If I "no login" under vty then users will NOT be able to SSH to the router period. Any more ideas? Sean From: "Mask Of Zorro" [EMAIL PROTECTED] To: [EMAIL PROTECTED], [EMAIL PROTECTED] CC: [EMAIL PROTECTED] Subject: Re: Cisco router is running very slow when SSh is implmented Date: Tue, 27 Mar 2001 11:04:33 -0500 Enter a "no login" under the vty config and that will disable telnet authentication, effectively shutting off telnet... From: "Sean Young" [EMAIL PROTECTED] Reply-To: "Sean Young" [EMAIL PROTECTED] To: [EMAIL PROTECTED] CC: [EMAIL PROTECTED] Subject: Re: Cisco router is running very slow when SSh is implmented Date: Tue, 27 Mar 2001 10:38:38 -0500 This is my configuration line con 0 logging synchronous login authentication usetacacs transport input lat pad v120 lapb-ta mop telnet rlogin udptn nasi ssh line aux 0 line vty 0 4 exec-timeout 0 0 authorization commands 1 usetacacs1 login authentication usetacacs ! even when I set the "exec-timeout 0 0", I still can telnet to the router which is something I would like to avoid. I only want ssh to work. By the way, I use TACACS+ to authenticate users. Anymore ideas? Sean From: "John Neiberger" [EMAIL PROTECTED] To: [EMAIL PROTECTED] CC: [EMAIL PROTECTED] Subject: Re: Cisco router is running very slow when SSh is implmented Date: Tue, 27 Mar 2001 08:20:26 -0700 I don't know about the performance issue, that sounds like a "feature" since a 3640 shouldn't have much trouble handling that. As far as disabling telnet, the only way I know of is not to set a vty password. While not disabling the telnet server, it will prevent any attempts to telnet to the router. John "Sean Young" [EMAIL PROTECTED] 3/27/01 7:58:37 AM Hi everyone, Is it just me or anyone in the group experiencing the same thing? I've implemented SSH features on one of our ACCESS servers and I notice that it is very slow. The access server is a Cisco 3640 with 128MB RAM. I notice the performance is quited slow even on a Fast Ethernet LAN. I don't have any performance issues with Unix servers. Another thing, now that I have SSH running on the access server, how can I turn off telnet completely on the router? I check Cisco website but didn't see any solutions for it. Any ideas? Thanks. Sean _ Get your FREE download of MSN Explorer at http://explorer.msn.com _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ Get your FREE download of MSN Explorer at http://explorer.msn.com _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ Get your FREE download of MSN Explorer at http://explorer.msn.com _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Cisco router is running very slow when SSh is implmented
EA. Thanks for the tip. The access server is residing on the test network with only 3 devices (TACACS, access server and a windows client) so I don't think there are any problems as far as the performance is concern. I also check the process on the router and SSH and TACACS are not using that much resources there. I prefer not to use access-list so if you come up with any new tips, I would be glad to test them out. Regards, Sean From: "EA Louie" [EMAIL PROTECTED] To: "John Neiberger" [EMAIL PROTECTED], [EMAIL PROTECTED] CC: [EMAIL PROTECTED] Subject: Re: Cisco router is running very slow when SSh is implmented Date: Tue, 27 Mar 2001 08:20:21 -0800 Sean - try a show proc cpu and see what's going on... it will give you an indication of what's going on inside the router. If it isn't a cpu problem, then you'll have to look at the interface(s) and see if the performance hit is happening there. (in other words, you'll have to isolate the problem - it MIGHT be the router, but it also might NOT) pay special attention to any of the processes that deal with ssh - the exec may also play some part in this performance degradation Keep looking to turn off telnet... and I'll ask my network operations engineers how they did it (probably an inbound access list denying port 23 traffic and allowing SSH traffic applied to the vty's... that would be my guess without looking any research...) - Original Message - From: John Neiberger [EMAIL PROTECTED] To: [EMAIL PROTECTED] Cc: [EMAIL PROTECTED] Sent: Tuesday, March 27, 2001 7:20 AM Subject: Re: Cisco router is running very slow when SSh is implmented I don't know about the performance issue, that sounds like a "feature" since a 3640 shouldn't have much trouble handling that. As far as disabling telnet, the only way I know of is not to set a vty password. While not disabling the telnet server, it will prevent any attempts to telnet to the router. John "Sean Young" [EMAIL PROTECTED] 3/27/01 7:58:37 AM Hi everyone, Is it just me or anyone in the group experiencing the same thing? I've implemented SSH features on one of our ACCESS servers and I notice that it is very slow. The access server is a Cisco 3640 with 128MB RAM. I notice the performance is quited slow even on a Fast Ethernet LAN. I don't have any performance issues with Unix servers. Another thing, now that I have SSH running on the access server, how can I turn off telnet completely on the router? I check Cisco website but didn't see any solutions for it. Any ideas? Thanks. Sean _ Get your FREE download of MSN Explorer at http://explorer.msn.com _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ Get your FREE download of MSN Explorer at http://explorer.msn.com _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: 2500 Flash ?
No. If you only fill the first bank that's OK. If you fill both then they need to match. http://www.cisco.com/univercd/cc/td/doc/product/access/acs_fix/cis2500/2500cfig/dualflsh/58674.htm From website above: "Step 5 Insert the new Flash memory SIMM by sliding the end with the metal fingers into the appropriate SIMM connector socket (CODE 0 or CODE 1) at approximately a 45-degree angle to the system card. If you are installing only one SIMM, install it in the socket labelled CODE0. Gently rock the SIMM back into place until the latch on either side snaps into place. Do not use excessive force because the connector could break. " At 10:44 AM 3/27/2001 -0500, Mask Of Zorro wrote: I think that the flash chips have to match - in other words, you have to have 2 8's not 1 8MB and 1 4MB... Z From: "Wang, Roger" [EMAIL PROTECTED] Reply-To: "Wang, Roger" [EMAIL PROTECTED] To: [EMAIL PROTECTED] Subject: RE: 2500 Flash ? Date: Tue, 27 Mar 2001 10:11:32 -0500 I have a similar problem, but it's the other way around (sorta)... I added a 4M flash chip to a 2500 that originally had only 8M. But after the upgrade, "show version" shows there are 16M, not 12M. Also, I can not copy an IOS version that's larger than 12M to the flash, so that shows the added chip is indeed only 4M. Is there something I need to do so it shows the correct size of the flash? ROM upgrade? Thanks, Rog -Original Message- From: John Chang [mailto:[EMAIL PROTECTED]] Sent: Monday, March 26, 2001 10:25 PM To: [EMAIL PROTECTED] Subject: 2500 Flash ? I have a 2504 and I put in a 8MB flash but when it starts up it says it's a 4MB flash. Is there something I need to do so that it sees it correctly? Thank you. _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ Get your FREE download of MSN Explorer at http://explorer.msn.com _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Advance Cisco PIX Configuration Exam - Passed!
I passed the Advance PIX configuration exam last Friday. Second time is a charm. I used hands-on, course outline and Cisco's website to prepare for the exam. _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: ISDN - Dial-IN
http://www.cisco.com/warp/public/129/index.shtml Lots of examples. -Original Message- From: John Huston [mailto:[EMAIL PROTECTED]] Sent: Tuesday, March 27, 2001 10:31 AM To: [EMAIL PROTECTED] Subject: ISDN - Dial-IN Gentlemen: I would appreciate it if someone could help me with a simple config for ISDN so I could dial-in on a 1750 router. Thank you in advance for your help. Regards, John Huston [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: 2500 Flash ?
Apparently I can't read. Read his question wrong. You are right Zorro. Not the same as my problem. This is what I have done: 1) Upgraded ROM chips to the newest XB2 2) Tried the Flash in another 2500 series router and shows as 8MB 3) When I put it back into 2504 it shows it as 4MB. Are there any jumpers or something I'm missing? I have only installed one 8MB Flash. Leaving one empty. If I install 2 8MB flash it shows as 2 4MB flash SIMMs. Thank you. At 10:44 AM 3/27/2001 -0500, Mask Of Zorro wrote: I think that the flash chips have to match - in other words, you have to have 2 8's not 1 8MB and 1 4MB... Z From: "Wang, Roger" [EMAIL PROTECTED] Reply-To: "Wang, Roger" [EMAIL PROTECTED] To: [EMAIL PROTECTED] Subject: RE: 2500 Flash ? Date: Tue, 27 Mar 2001 10:11:32 -0500 I have a similar problem, but it's the other way around (sorta)... I added a 4M flash chip to a 2500 that originally had only 8M. But after the upgrade, "show version" shows there are 16M, not 12M. Also, I can not copy an IOS version that's larger than 12M to the flash, so that shows the added chip is indeed only 4M. Is there something I need to do so it shows the correct size of the flash? ROM upgrade? Thanks, Rog -Original Message- From: John Chang [mailto:[EMAIL PROTECTED]] Sent: Monday, March 26, 2001 10:25 PM To: [EMAIL PROTECTED] Subject: 2500 Flash ? I have a 2504 and I put in a 8MB flash but when it starts up it says it's a 4MB flash. Is there something I need to do so that it sees it correctly? Thank you. _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ Get your FREE download of MSN Explorer at http://explorer.msn.com _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
AUX question
I have an question concerning the auxiliary port on cisco routers: 1- can you connect 2 routers to each other using solely the Auxiliary ports? What will be the setup: a- router1---modem1--modem2router2 b- router1---router2 2- can you have routing updates over that link? Regards. MF _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: 2514 Upgrade Problem!!
Sure, first thing I do is set the register to 0x3920 to increase the baud rate on the router, then set your terminal software to a baudrate of 115200. From there a simple "xmodem filename" does the job. Never had a problem with it. -Original Message- From: Niraj Palikhey [mailto:[EMAIL PROTECTED]] Sent: Tuesday, March 27, 2001 11:34 AM To: [EMAIL PROTECTED]; [EMAIL PROTECTED]; [EMAIL PROTECTED] Subject: RE: 2514 Upgrade Problem!! Hi Jason, I would love to do the xmodem(after having done on a couple of 36 and 2600 series) but my problem is that I have never been able to upgrade the ios on a 2500 via the xmodem. Everytime I do that, the first thing it does is give me a prompt and when I type the xmodem command, gives me a what? response. I do NOT get this on the 36 or 2600 routers. I have tried to get this info. on CCO without any luck. Does ANYBODY know how to upgrade the ios on a 2500 via xmodem? Has ANYBODY done this successfully. Please advise. Thank you. Kind regards, [EMAIL PROTECTED] From: Jason Baker [EMAIL PROTECTED] Reply-To: Jason Baker [EMAIL PROTECTED] To: "'Niraj Palikhey'" [EMAIL PROTECTED], [EMAIL PROTECTED] Subject: RE: 2514 Upgrade Problem!! Date: Tue, 27 Mar 2001 16:57:42 +1000 sounds like a job for xmodem and a few hours of your time worrying if the power will go off:). -Original Message- From: Niraj Palikhey [mailto:[EMAIL PROTECTED]] Sent: Tuesday, March 27, 2001 3:45 PM To: [EMAIL PROTECTED]; [EMAIL PROTECTED] Subject: 2514 Upgrade Problem!! Hi, When I was upgrading the IOS on a 2514 router via tftp, the connection was lost while the router was trying to download the new ios from the tftp server(after having erased the existing ios!!). The router retried a couple of times and I was finally forced to reboot the router. The routers now boots to the mini-ios(gives me the Router(boot) prompt. What can I do to successfully upgrade the ios on this router. Thank you for your help. Regards, [EMAIL PROTECTED] _ Get your FREE download of MSN Explorer at http://explorer.msn.com _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ Get your FREE download of MSN Explorer at http://explorer.msn.com _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Cisco Aironet 340
Hi Guys, I just heard that we shall be dealing in Cisco Aironet 340 roaming Has anyone had experience with this ? I have had a look on the cisco website and i can see it has something to do with wireless laptops/PC's just wondered if anyone out there could give me a brief summary of the whole idea Thanks Dennis MCSE,CCNA,CCNP - 21st century air travel http://www.britishairways.com _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: 2514 Upgrade Problem!!
I'm fairly certain, but not 100% positive, that the 2500 series routers cannot do xmodem image transfers like the 2600 series can. Check out this link: http://www.cisco.com/warp/public/471/13.html Make sure the IP addresses on your ethernet port and the laptop are in the same subnet, and then maybe check your cable. Since they're directly connected you shouldn't need the default gateway command but it can't hurt. John "Niraj Palikhey" [EMAIL PROTECTED] 3/27/01 9:23:20 AM That's exactly the command that I forgot to type on the router prior to the upgrade. I have a X-over cable b/w the router and the tftp server(95 laptop). NO, I cannot ping the tftp at the Router(boot) prompt Nor can I ping the router from the tftp. Any ideas? Can I setup the #ip default-gateway command at the Router(boot) prompt(once I am able to ping-if that's possible?) I am also doing a search on CCO but am not having much luck. Please advise. Thank you. Kind regards, [EMAIL PROTECTED] From: "John Neiberger" [EMAIL PROTECTED] Reply-To: "John Neiberger" [EMAIL PROTECTED] To: [EMAIL PROTECTED] CC: [EMAIL PROTECTED] Subject: Re: 2514 Upgrade Problem!! Date: Tue, 27 Mar 2001 08:08:08 -0700 If I remember correctly, in that mode on a 2500 series router, routing is disabled. If your TFTP server is not directly attached to the ethernet port then you need to set a default gateway using the "ip default-gateway" command to provide connectivity to the network. If you can ping your TFTP server from the router you should be able to try the upgrade again. HTH, John "Niraj Palikhey" [EMAIL PROTECTED] 3/26/01 10:44:58 PM Hi, When I was upgrading the IOS on a 2514 router via tftp, the connection was lost while the router was trying to download the new ios from the tftp server(after having erased the existing ios!!). The router retried a couple of times and I was finally forced to reboot the router. The routers now boots to the mini-ios(gives me the Router(boot) prompt. What can I do to successfully upgrade the ios on this router. Thank you for your help. Regards, [EMAIL PROTECTED] _ Get your FREE download of MSN Explorer at http://explorer.msn.com _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ Get your FREE download of MSN Explorer at http://explorer.msn.com _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Cisco 2600 and PPTP
Does the 2611 support pptp? And does anyone have a sample config of pptp or ipsec? Thanks! Justin Lofton Account Executive/CCNA Tredent Data Systems [EMAIL PROTECTED] (818) 222-3770 http://www.tredent.com/ _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: AUX question
Your setup will look like option B. Here are the details: http://www.cisco.com/warp/public/793/access_dial/auxback.html "bigmo" [EMAIL PROTECTED] 3/27/01 9:39:04 AM I have an question concerning the auxiliary port on cisco routers: 1- can you connect 2 routers to each other using solely the Auxiliary ports? What will be the setup: a- router1---modem1--modem2router2 b- router1---router2 2- can you have routing updates over that link? Regards. MF _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Slightly OT: Juniper Classes
Has anyone taken the 5 day training class put out by Juniper? I want to make sure it is worth the money since I will be spending my own money to attend it. Is it worth the money? Does it cover enough to pass the JNCIS? I am currently a CCNP+Security that has passed the CCIE written and in the process of studying for my Lab exam. Any opinions, suggestions, Etc Thank You, Eric Gunn _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Cisco router is running very slow when SSh is implmented
How about just transport input ssh? -Jarrett _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Cisco Aironet 340
Dennis, I've worked with the Aironet 340 wireless bridge, and my experience hasn't been a joyous one. The wireless bridge is usually used to connect buildings using an 11mbps spread spectrum radio connection. For around four months, the airbridge worked nearly flawlessly except for some excessive broadcast traffic. (my fault - didn't bother to segment into broadcast domains)Around a month ago, we started to experience tremendous amounts of interference, which would bring the airbridge down for hours at a time. For two weeks I moved the antenna, modified the configuration on the airbridge to a lower speed, and ultimately called Cisco to try to solve, what appeared to be a complete enigma. Turns out it wasn't a hardware issue or a configuration issue. A voicestream cellular tower on one of our buildings was causing the interference. Our airbridge was apparently interfering with their cell tower, and as a result, their high power testing of the tower caused interference on our airbridge. While you're using the roaming aironet 340, I thought you could still use the info. BTW, we use a 3com wireless inside our buildings for laptops and it works pretty well. Matthew -Original Message- From: Adekola, Dennis D [mailto:[EMAIL PROTECTED]] Sent: Tuesday, March 27, 2001 8:55 AM To: cisco Subject: Cisco Aironet 340 Hi Guys, I just heard that we shall be dealing in Cisco Aironet 340 roaming Has anyone had experience with this ? I have had a look on the cisco website and i can see it has something to do with wireless laptops/PC's just wondered if anyone out there could give me a brief summary of the whole idea Thanks Dennis MCSE,CCNA,CCNP - 21st century air travel http://www.britishairways.com _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: 3600 Serial Interface Puzzler
I believe the interfaces on the 2600/3600 series are numbered from right to left but only slots with modules in them are counted. So, if you have a WIC in the rightmost slot, it is--in your example--S2/0. If you then add the other WIC, that one is S2/1. If you leave the rightmost slot empty and put a WIC in the left slot, that is S2/0. They are numbered from right to left, and bottom to top, if applicable. HTH, John the Cheerful (no longer John the Grumpy) g Further to my post regarding 2600's a few days ago. I received an e-mail from Rick Thompson (Thanks) as below: I have run across the same thing with the 3600 routers. It counts the first serial card as 0, no matter if it is in slot 0 or 1. Rick Thompson so I decided to drag a 3600 out and try a few things. Working with an NM1E2W: Inserted a WIC1T into slot w1 - This becomes S2/0 (Strange but agreeing with previous findings). Configured S2/0 with IP address and WR MEM. Powered down and inserted another WIC1T into slot w0. The new WIC1T now becomes S2/0. With both interfaces configured I powered down and removed w0. The card in w1 becomes S2/0 again. Is this a standard fact for all modular routers that the first card inserted will become 0, no matter which slot it's in, or is this platform/IOS specific? Cheers, Gareth _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] ___ Send a cool gift with your E-Card http://www.bluemountain.com/giftcenter/ _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Cisco Aironet 340
Dennis, That is basically what it is...wireless networking. The Aeronet card will slide into the PCMCIA slot on your laptop. You will also have to have wireless hub(s) installed. At least one for each floor where you want to implement the wireless cards. We use two per floor here where I work so that all users can obtain a good reception from pretty much anywhere on the floor. You will also probably want to employ the wireless encryption (WEP) so that someone cannot pick up your network from outside your building or your elevator lobby area. ;-) We use Lucent technology here so I am not as familiar with the Cisco product line but I believe most (if not all) of the wireless use the same standard. Heather Buri CSC Technology Services - Houston Phone: (713)-961-8592 Fax:(713)-961-8249 Mobile: Alpha Page: Mailing:1360 Post Oak Blvd Suite 500 Houston, TX 77056 -Original Message- From: Adekola, Dennis D [mailto:[EMAIL PROTECTED]] Sent: Tuesday, March 27, 2001 10:55 AM To: cisco Subject: Cisco Aironet 340 Hi Guys, I just heard that we shall be dealing in Cisco Aironet 340 roaming Has anyone had experience with this ? I have had a look on the cisco website and i can see it has something to do with wireless laptops/PC's just wondered if anyone out there could give me a brief summary of the whole idea Thanks Dennis MCSE,CCNA,CCNP - 21st century air travel http://www.britishairways.com _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Private Vlans - Is this a good idea
I have some customers that need to be connected to my network. They insist on not having their servers connected to a switch that has other customers on it. They will not pay for an additional switch. I was considering recommending private vlans? That way things are more secure on the switch. Is this a good idea? The current switches are catalyst 5500. Does this hardware support private vlans? I have checked the documentation and I have only found that the software needs to be 5.4(1) but they make no mention of hardware requirements. Thanks _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: AUX question
1. Yes 2. Yes http://www.cisco.com/warp/public/123/4.html I know that the link shows backup ddr, but you could modify the config so that there is no Serial link between the routers and you wouldnot need the floating static route... the async dynamic routing command allows the route updates across the async link. I have had to do this sort of thing for remote offices that needed to open before the telco could get their frame circuit installed. It works... Z From: "bigmo" [EMAIL PROTECTED] Reply-To: "bigmo" [EMAIL PROTECTED] To: [EMAIL PROTECTED] Subject: AUX question Date: Tue, 27 Mar 2001 18:39:04 +0200 I have an question concerning the auxiliary port on cisco routers: 1- can you connect 2 routers to each other using solely the Auxiliary ports? What will be the setup: a- router1---modem1--modem2router2 b- router1---router2 2- can you have routing updates over that link? Regards. MF _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ Get your FREE download of MSN Explorer at http://explorer.msn.com _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: CCNP Material: What's better?
The best material is Cisco press book the second edition. I take the CCNA with no experiance and a lot of people take the CCNP only with router sinulators and study. My regards xzadio [EMAIL PROTECTED] Daniel Lob wrote: I live in Argentina. There are not many Academies where to take the courses for CCNP. So I wonder if it's enough just to study from the books, and do the labs at work. Anyway, I want to know which are the best books. Cisco Press or Todd Lammle? Daniel Lob Buenos Aires Argentina _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Cisco Terminal server - does anyone know other options??
Does anyone know of another option for a terminal server outside of a CS-5xx or 25xx. I would love to put a terminal server off my cable modem connection (legal IP address) and be able to reverse telnet from it. I have a bunch of 2500's, a 4000 and T/R and Ehternet switches I would need to connect to. I looked at a xyplex max 1600, the one's on ebay do not have software or flash card, and am looking to stay under $100. Thanks _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Cisco 2600 and PPTP
Check out the link below or do a search on CCO for "PPTP" AND "2600" http://www.cisco.com/univercd/cc/td/doc/product/software/ios121/121newft/121 t/121t5/dt_pptp.htm Vijay Ramcharan -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Justin Lofton Sent: Tuesday, March 27, 2001 12:12 PM To: [EMAIL PROTECTED] Subject: Cisco 2600 and PPTP Does the 2611 support pptp? And does anyone have a sample config of pptp or ipsec? Thanks! Justin Lofton Account Executive/CCNA Tredent Data Systems [EMAIL PROTECTED] (818) 222-3770 http://www.tredent.com/ _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Private Vlans - Is this a good idea
Roberts, I don't think 5500 supports pvlan, it has to be 6500, but I heard from somewhere those lower end 2948/4000 also will be able to support pvlan very soon. pvlan, from my understanding, does not give you more security among vlans. It only controls ports within the same vlan by preventing them from talking to each other without your control. It is more of a way of saving vlans for service providers. I believe the doc of 6500 explains it pretty well. If your customer is concerned about vlan leak, I am afraid you will probably have to give them a seperate switch or they can use some kind encryption before sending out any traffic. Just my 2 cents. HTH KY ""Roberts, Timothy"" [EMAIL PROTECTED] wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... I have some customers that need to be connected to my network. They insist on not having their servers connected to a switch that has other customers on it. They will not pay for an additional switch. I was considering recommending private vlans? That way things are more secure on the switch. Is this a good idea? The current switches are catalyst 5500. Does this hardware support private vlans? I have checked the documentation and I have only found that the software needs to be 5.4(1) but they make no mention of hardware requirements. Thanks _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Using a 2611 as an ISL router for a 2924 switch
Try 802.1q, it probably will work on your router. ""Sean Graham"" [EMAIL PROTECTED] ¼¶¼g©ó¶l¥ó 99qqjt$3me$[EMAIL PROTECTED]">news:99qqjt$3me$[EMAIL PROTECTED]... The first question I have..is the above possible with a 2611 router with a Fast Ethernet module install, with 48MB DRAM and IOS 12.1. It also has 2 Wic-1T serial cards. The Cisco web site has configuration examples based on 2620's but doesn't mention the 2611. I have had this working using a 3620 OK. But am not able to get this working using the 2611 I am receiving various errors on both the router and the switch. I am wondering as the config is fairly straight forward is this actually possible with this router. Any thoughts would be appreciated _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
FW: ISDN - Dial-IN
Cisco Config maker will help you with a generic config. Here is a link to the cisco site. http://www.cisco.com/warp/public/779/smbiz/service/tools/ watch the word- wrap you can d/l it there. Or if you have the Sales Tools CD called CISCO CENTRAL then you can get it off of the CD. There are also some sample configs on the website. Try TECH CENTRAL at http://www.cisco.com/warp/public/779/smbiz/service/tech/ again watch the word- wrap on the ur- l -Original Message- From: John Huston [mailto:[EMAIL PROTECTED]] Sent: Tuesday, March 27, 2001 10:31 AM To: [EMAIL PROTECTED] Subject: ISDN - Dial-IN Gentlemen: I would appreciate it if someone could help me with a simple config for ISDN so I could dial-in on a 1750 router. Thank you in advance for your help. Regards, John Huston [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Using a 2611 as an ISL router for a 2924 switch
The first question I have..is the above possible with a 2611 router with a Fast Ethernet module install, with 48MB DRAM and IOS 12.1. It also has 2 Wic-1T serial cards. The Cisco web site has configuration examples based on 2620's but doesn't mention the 2611. I have had this working using a 3620 OK. But am not able to get this working using the 2611 I am receiving various errors on both the router and the switch. I am wondering as the config is fairly straight forward is this actually possible with this router. Any thoughts would be appreciated _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
CCIE study partner in DC/NVA area
A friend and I have set up a CCIE practice lab where he works. I am a CCNP, and he is just finishing up his CCNP. We are starting to work towards the CCIE and we are interested in adding a third member to our study group. Preferably, we are looking for someone who has passed the written and attempted the lab or is in the process of attmepting the lab. We have lots of equipment to practice with. There are 10-15 routers of various models with fixed and modular slots, a Catalyst 5500 switch, 2 ISDN simulators, workstations, and other equipment on the way. We are able to set up just about any technology that is covered on the lab exam with the exception of ATM (my friend is looking at purchasing equipment to add voice). If anyone is interested, please contact me. Brian _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: bri flapping with demand cirquit/igrp redistribution
It may keep the connection open though even after there is no intresting traffic. Don - Original Message - From: Alan Basinger [EMAIL PROTECTED] To: Chris Larson [EMAIL PROTECTED]; perez claude-vincent [EMAIL PROTECTED]; Ya Wen [EMAIL PROTECTED]; Patrick Murphy [EMAIL PROTECTED]; Leah Lynch [EMAIL PROTECTED]; 'Jay Chandradas' [EMAIL PROTECTED]; 'Bob Boone' [EMAIL PROTECTED]; [EMAIL PROTECTED]; [EMAIL PROTECTED] Sent: Saturday, March 24, 2001 8:37 AM Subject: RE: bri flapping with demand cirquit/igrp redistribution CDP may work at layer 2 but if the line is brought up because of web traffic CDP packets would then traverse the line consume a small amount of bandwidth. I have installed a few ISDN DDR VPN's without turning off CDP and never had and issue but also didn't think about the bandwidth consumption at the time. Alan -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Chris Larson Sent: Saturday, March 24, 2001 9:00 AM To: perez claude-vincent; Ya Wen; Patrick Murphy; Leah Lynch; 'Jay Chandradas'; 'Bob Boone'; [EMAIL PROTECTED]; [EMAIL PROTECTED] Subject: RE: bri flapping with demand cirquit/igrp redistribution It may not, I have just always disabled it on dialer links as a habit. It makes sense that it shouldn't since the dialer-list defines layer 3 traffic only. You could always put an access-list on the dialer interface permitting all traffic with the log statement to see exactly what is trying to get accross the line. It will output to the console if you are consoled in. That may help you to see what is bringing the line up. -Original Message- From: perez claude-vincent [mailto:[EMAIL PROTECTED]] Sent: Saturday, March 24, 2001 9:22 AM To: Ya Wen; Patrick Murphy; Leah Lynch; 'Jay Chandradas'; 'Chris Larson'; 'Bob Boone'; [EMAIL PROTECTED]; [EMAIL PROTECTED] Subject: RE: bri flapping with demand cirquit/igrp redistribution Can somebody tell me how come CDP may bring the line up? As you know, it works only in layer 2 as said before. Your dialer-list works at layer 3 4 only. Did I miss something? :-( --- Ya Wen [EMAIL PROTECTED] wrote: Try remove the "log" from the access-list 15 associated with the route-map stuff. Also, you do not need the summary-address under OSPF. -Ya -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Patrick Murphy Sent: Friday, March 23, 2001 5:04 PM To: Leah Lynch; 'Jay Chandradas'; 'Chris Larson'; 'Bob Boone'; [EMAIL PROTECTED]; [EMAIL PROTECTED] Subject: Re: bri flapping with demand cirquit/igrp redistribution Also check the BRI interface and see if you see IPCDP, it should disapper when you no cdp en! Patrick - Original Message - From: "Leah Lynch" [EMAIL PROTECTED] To: "'Jay Chandradas'" [EMAIL PROTECTED]; "'Chris Larson'" [EMAIL PROTECTED]; "'Bob Boone'" [EMAIL PROTECTED]; [EMAIL PROTECTED]; [EMAIL PROTECTED] Sent: Friday, March 23, 2001 7:45 PM Subject: RE: bri flapping with demand cirquit/igrp redistribution I think you normally disable CDP in dialup lines for efficiency. Leah -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Jay Chandradas Sent: Friday, March 23, 2001 2:57 PM To: Chris Larson; Bob Boone; [EMAIL PROTECTED]; [EMAIL PROTECTED] Subject: Re: bri flapping with demand cirquit/igrp redistribution I am not sure CDP will keep the line up ? And ur interesting traffic is permit ip any any . I dont think CDP will keep the line up. When u do a debug ip pack.. u can nvr see CDP.. CDP is layer 2. my 0.02 - Original Message - From: "Chris Larson" [EMAIL PROTECTED] To: "Bob Boone" [EMAIL PROTECTED]; "Jay Chandradas" [EMAIL PROTECTED]; [EMAIL PROTECTED]; [EMAIL PROTECTED] Sent: Friday, March 23, 2001 2:40 PM Subject: RE: bri flapping with demand cirquit/igrp redistribution Will CDP keep the line up? Turn off CDP. -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Bob Boone Sent: Friday, March 16, 2001 5:30 PM To: Jay Chandradas; [EMAIL PROTECTED]; [EMAIL PROTECTED] Subject: Re: bri flapping with demand cirquit/igrp redistribution Yes i do have passive BRI on IGRP, and also, the way it is done now, it restricts ALL networks, if you look at the access-list 15 it has one statement and then explisit deny all. still not working. - Original Message - From: "Jay Chandradas" [EMAIL PROTECTED] To: "Netguy" [EMAIL PROTECTED]; [EMAIL PROTECTED]; [EMAIL PROTECTED] Sent: Friday, March 16, 2001 12:22 PM Subject: Re: bri flapping with demand cirquit/igrp redistribution 1. DO u have a passive interface on bri0 under router IGRP 2. I wud do this way !!
Private Vlans - Is this a good idea #2
I forgot that I will be upgrading the 5500s to 6509s before this would be implemented. I have some customers that need to be connected to my network. They insist on not having their servers connected to a switch that has other customers on it. They will not pay for an additional switch. I was considering recommending private vlans? That way things are more secure on the switch. Is this a good idea? The current switches are catalyst 5500. Does this hardware support private vlans? I have checked the documentation and I have only found that the software needs to be 5.4(1) but they make no mention of hardware requirements. Thanks _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
CRC errors on Catalyst 3500 XL port
Hi,
I have a 3640 ("router1") with IOS v11.2 which is routing between IP subnets
(class "c" with a one bit subnet mask - using "IP subnet-zero"). There are
two Ethernet ports on the router, each is connected to a separate Catalyst
3500 XL switch. The two switch ports are hard set to 10 MBS, duplex
autonegotiate, spanning-tree on, portfast on. I am seeing collisions and
crc errors on the switch ports that are connected to "router1". The
remainder of the switch ports ( with the exception of a few ports which I'll
explain shortly ) are connected to 100 MBS fastethernet desktops and don't
show any collisions...I understand why.
I also have another 3640 ("router2") connected to the same switches, in the
same manner...for redundancy, I'm told. There are a couple of other 3500 XL
switches cascaded from these...to accommodate the number users. The LAN
size is about 125 nodes with about equal number of nodes connected to each
subnet. I'm new here...I have recommended getting rid of the subnetting
scheme in favor of a classful LAN. Anyway, the switch ports that are
connected to "router2" don't show any collisions/crc errors.
This all started 2 weeks ago. The network has been designed this way for
about a year.
In short, I can't determine whether routing loops are causing the collisions
(and if so, why only on "router1"), or whether there's a port configuration
mismatch between "router1"s Ethernet ports and the switch. Or, maybe some
piece of hardware has just failed? Any suggestions are welcome.
Jim McDowell
Cisco Certified Network Professional
Network Administrator
Copley Information Systems
858.729.8028
_
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Using a 2611 as an ISL router for a 2924 switch
A VLAN trunk can only be configured on a Fast-Ethernet or Gig-Ethernet interface. The 2611 of course is only 10MB interface. Chris Lemagie -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Sean Graham Sent: Tuesday, March 27, 2001 10:34 AM To: [EMAIL PROTECTED] Subject: Using a 2611 as an ISL router for a 2924 switch The first question I have..is the above possible with a 2611 router with a Fast Ethernet module install, with 48MB DRAM and IOS 12.1. It also has 2 Wic-1T serial cards. The Cisco web site has configuration examples based on 2620's but doesn't mention the 2611. I have had this working using a 3620 OK. But am not able to get this working using the 2611 I am receiving various errors on both the router and the switch. I am wondering as the config is fairly straight forward is this actually possible with this router. Any thoughts would be appreciated _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Etherchannel on ONS 15454
Hi all, I was wonder if fast etherchannel was supported on the Cisco ONS 15454. My hunch tells me no, but I could not find documentation on this particular question. Thanks in advance. Nate _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
OT: Tues funnies
http://www.cnn.com@sci-tech@3520040376/new_010325/alert/breakingnews.html Pre-April Fools? Brandon _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
New career(Off-subject)
I just wanted to thank everyone in this group. I was in a terrible job before, but now I am back with Cisco Routers and ATM. Hope the tech stocks bounce back soon. Roy Snyder Network Engineer (Again) __ Do You Yahoo!? Get email at your own domain with Yahoo! Mail. http://personal.mail.yahoo.com/?.refer=text _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Using a 2611 as an ISL router for a 2924 switch
I am using a FastEthernet 100mbp module. I used the same one in a 3620 which did work. ""Chris Lemagie"" [EMAIL PROTECTED] wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... A VLAN trunk can only be configured on a Fast-Ethernet or Gig-Ethernet interface. The 2611 of course is only 10MB interface. Chris Lemagie -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Sean Graham Sent: Tuesday, March 27, 2001 10:34 AM To: [EMAIL PROTECTED] Subject: Using a 2611 as an ISL router for a 2924 switch The first question I have..is the above possible with a 2611 router with a Fast Ethernet module install, with 48MB DRAM and IOS 12.1. It also has 2 Wic-1T serial cards. The Cisco web site has configuration examples based on 2620's but doesn't mention the 2611. I have had this working using a 3620 OK. But am not able to get this working using the 2611 I am receiving various errors on both the router and the switch. I am wondering as the config is fairly straight forward is this actually possible with this router. Any thoughts would be appreciated _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Private Vlans - Is this a good idea
Let me generalize my standard question of "what is the problem you are trying to solve," with "what problem do you NOT WANT to solve." What you are describing is a management, not a technical, problem. If your customers are part of the same organization as you are, someone to whom both of you report needs to explain economic realities to them. This explanation would be along the lines of: 1. The network organization has a budget. 2. This budget is based on certain rational engineering assumptions about what components can do, and what services can safely share the same component. 3. VLANs were invented as a security technique, with the goal of isolating groups of users. 3a) The "multi-VLAN" approach that allows a port to be in more than one VLAN, IMNSHO, is _evil_, has marginal applicability, and designs that include it should be tied up and thrown into a pond. If they float, burn them at the stake. If they don't float, let them drown. 4. There is no reason for concern about sharing a properly configured switch. Unless the customer can document WHY it is a problem, their only justification is FUD, and the network organization should not have its budget governed by FUD. 5. If there are real security requirements for physical switch separation, as might be specified for government classified networks that follow RED/BLACK isolation criteria, then the costs of additional switchgear should be part of the budget of the organization with the security requirement. If your customers are a true customer and you are in a profit-making world, I would have the appropriate management (i.e., that is concerned with cost of sales rather than gross revenue) consider carefully if you can afford having them as a customer. Your strategic business interest may be served by letting your competitor inherit this customer's problems. In other words, the customer needs to ask, "what part of NO do you fail to understand?" Roberts, I don't think 5500 supports pvlan, it has to be 6500, but I heard from somewhere those lower end 2948/4000 also will be able to support pvlan very soon. pvlan, from my understanding, does not give you more security among vlans. It only controls ports within the same vlan by preventing them from talking to each other without your control. It is more of a way of saving vlans for service providers. Correct. I believe the doc of 6500 explains it pretty well. If your customer is concerned about vlan leak, I am afraid you will probably have to give them a seperate switch or they can use some kind encryption before sending out any traffic. Just my 2 cents. HTH KY ""Roberts, Timothy"" [EMAIL PROTECTED] wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... I have some customers that need to be connected to my network. They insist on not having their servers connected to a switch that has other customers on it. They will not pay for an additional switch. I was considering recommending private vlans? That way things are more secure on the switch. Is this a good idea? The current switches are catalyst 5500. Does this hardware support private vlans? I have checked the documentation and I have only found that the software needs to be 5.4(1) but they make no mention of hardware requirements. _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Using a 2611 as an ISL router for a 2924 switch
ahhh, my favorite thread is back. http://www.cisco.com/univercd/cc/td/doc/product/access/acs_mod/cis2600/net_m od2/ovrnetm.htm#14116 says that a FE module is not supported in the 2600 series. It doesn't say it won't work but it does says it's not supported. If you try to configure That's why the 2620's are quoted - they have 10/100 ports as part of their base config. But you could be mislead by: http://www.cisco.com/warp/public/cc/pd/rt/2600/prodlit/2636m_ds.htm But, if you read the doc there is a table that says that none of the FE modules are avail for the 2600 series. Also, if you go here: http://www.cisco.com/pcgi-bin/finder/msbsearch.pl and use "Search#2" and search on NM-1FE-TX the results show the module and report and say that it is not available for the 2600 series. But it is ok with 3600 series routers. Take a look at http://www.cisco.com/go/module for all your questions on 2600/3600 routers. Yeah, we've had this discussion before. If a reseller sold you this module expressly for the 2611, return it. If they sold it to you for a 3600 and you decided to try it in the 2611 - well, you got the results that CCO predicts. Kevin Wigle "Sean Graham" [EMAIL PROTECTED] wrote in message 99qqjt$3me$[EMAIL PROTECTED]">news:99qqjt$3me$[EMAIL PROTECTED]... The first question I have..is the above possible with a 2611 router with a Fast Ethernet module install, with 48MB DRAM and IOS 12.1. It also has 2 Wic-1T serial cards. The Cisco web site has configuration examples based on 2620's but doesn't mention the 2611. I have had this working using a 3620 OK. But am not able to get this working using the 2611 I am receiving various errors on both the router and the switch. I am wondering as the config is fairly straight forward is this actually possible with this router. Any thoughts would be appreciated _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: CRC errors on Catalyst 3500 XL port
everything else notwithstanding, I would nail the duplex setting.
I think I heard from this list - autonegotiate... "auto" means "ought not
to"
I just finished up a long lab experiment where I had problems with our ISP.
In the end the ISP had the duplex setting wrong on their eqpt. They didn't
tell me if it was autonegotiate or just the wrong setting but I get rid of
all autonegotiation now unless the circuit doesn't work without it. (haven't
found one of those yet)
Kevin Wigle
- Original Message -
From: "Jim McDowell" [EMAIL PROTECTED]
To: [EMAIL PROTECTED]
Sent: Tuesday, March 27, 2001 2:00 PM
Subject: CRC errors on Catalyst 3500 XL port
Hi,
I have a 3640 ("router1") with IOS v11.2 which is routing between IP
subnets
(class "c" with a one bit subnet mask - using "IP subnet-zero"). There
are
two Ethernet ports on the router, each is connected to a separate Catalyst
3500 XL switch. The two switch ports are hard set to 10 MBS, duplex
autonegotiate, spanning-tree on, portfast on. I am seeing collisions and
crc errors on the switch ports that are connected to "router1". The
remainder of the switch ports ( with the exception of a few ports which
I'll
explain shortly ) are connected to 100 MBS fastethernet desktops and don't
show any collisions...I understand why.
I also have another 3640 ("router2") connected to the same switches, in
the
same manner...for redundancy, I'm told. There are a couple of other 3500
XL
switches cascaded from these...to accommodate the number users. The LAN
size is about 125 nodes with about equal number of nodes connected to each
subnet. I'm new here...I have recommended getting rid of the subnetting
scheme in favor of a classful LAN. Anyway, the switch ports that are
connected to "router2" don't show any collisions/crc errors.
This all started 2 weeks ago. The network has been designed this way for
about a year.
In short, I can't determine whether routing loops are causing the
collisions
(and if so, why only on "router1"), or whether there's a port
configuration
mismatch between "router1"s Ethernet ports and the switch. Or, maybe some
piece of hardware has just failed? Any suggestions are welcome.
Jim McDowell
Cisco Certified Network Professional
Network Administrator
Copley Information Systems
858.729.8028
_
FAQ, list archives, and subscription info:
http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
_
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Using a 2611 as an ISL router for a 2924 switch
Regarding to Kevin's link, cisco 2600 series will not support fast ethernet module. All you can do is that you can play around 802.1q trunking with your 2924xl. ""Sean Graham"" [EMAIL PROTECTED] ¼¶¼g©ó¶l¥ó 99qqjt$3me$[EMAIL PROTECTED]">news:99qqjt$3me$[EMAIL PROTECTED]... The first question I have..is the above possible with a 2611 router with a Fast Ethernet module install, with 48MB DRAM and IOS 12.1. It also has 2 Wic-1T serial cards. The Cisco web site has configuration examples based on 2620's but doesn't mention the 2611. I have had this working using a 3620 OK. But am not able to get this working using the 2611 I am receiving various errors on both the router and the switch. I am wondering as the config is fairly straight forward is this actually possible with this router. Any thoughts would be appreciated _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Bridge SNA
Does anyone know if it is possible to bridge SNA on the same ports that you are routing IP with any of the Cisco Catalyst switches? For example: There are two segments 192.168.0.0/24 and 192.168.1.0/24. Devices in 192.168.0.0 need to use IP to talk to NT Servers in the other segment, but they also need to use SNA to talk to a mainframe on the other segment too. Thank you. Brett Johnson _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Using a 2611 as an ISL router for a 2924 switch
I would check the IOS feature set next. You will need IP Plus at a minimum to enable VLAN routing.. Chris Lemagie -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Sean Graham Sent: Tuesday, March 27, 2001 11:19 AM To: [EMAIL PROTECTED] Subject: Re: Using a 2611 as an ISL router for a 2924 switch I am using a FastEthernet 100mbp module. I used the same one in a 3620 which did work. ""Chris Lemagie"" [EMAIL PROTECTED] wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... A VLAN trunk can only be configured on a Fast-Ethernet or Gig-Ethernet interface. The 2611 of course is only 10MB interface. Chris Lemagie -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Sean Graham Sent: Tuesday, March 27, 2001 10:34 AM To: [EMAIL PROTECTED] Subject: Using a 2611 as an ISL router for a 2924 switch The first question I have..is the above possible with a 2611 router with a Fast Ethernet module install, with 48MB DRAM and IOS 12.1. It also has 2 Wic-1T serial cards. The Cisco web site has configuration examples based on 2620's but doesn't mention the 2611. I have had this working using a 3620 OK. But am not able to get this working using the 2611 I am receiving various errors on both the router and the switch. I am wondering as the config is fairly straight forward is this actually possible with this router. Any thoughts would be appreciated _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Tues funnies
If I owned that patent I would have only charged 2 cents per use. - Original Message - From: "Brandon Rose" [EMAIL PROTECTED] To: [EMAIL PROTECTED] Sent: Tuesday, March 27, 2001 1:16 PM Subject: OT: Tues funnies http://www.cnn.com@sci-tech@3520040376/new_010325/alert/breakingnews.html Pre-April Fools? Brandon _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Free Training Materials for CCNA, CCDA, CCNP, CCDP and CCIE
It's cool! hv -Original Message- From: John Neiberger To: [EMAIL PROTECTED]; [EMAIL PROTECTED] Cc: [EMAIL PROTECTED] Sent: 3/27/01 7:03 AM Subject: Re: Free Training Materials for CCNA, CCDA, CCNP, CCDP and CCIE A site like that is a very good idea, actually. It was just that wording that seemed to encourage plagiarism that bothered me. But as was pointed out to me several times yesterday, I was being grumpy for no apparent reason. I promise to be in a better mood today! Regards, John "CiscoDiety" [EMAIL PROTECTED] 3/26/01 5:39:35 PM Hey guys, Do with it what you want. Some people use it as a reference, others outright plagarize the work. It's not for me to decide what you do with it, I just put it there. I have an 18 year old High School Senior in my house, and I do know this; Some teachers check for plagarism. He uses it as a starting point to write his papers from, and for that, it works VERY well. Also, the Website is more for me to hone my skills with (Yes, I do know more than just Cisco stuff ;-))than anything else. The Essays were only a mere excuse to build it :-) Clayton Dukes - Download Free Essays, Term Papers and Cisco Training from http://www.gdd.net - Original Message - From: "John Neiberger" [EMAIL PROTECTED] To: [EMAIL PROTECTED] Cc: [EMAIL PROTECTED] Sent: Monday, March 26, 2001 6:48 PM Subject: Re: Free Training Materials for CCNA, CCDA, CCNP, CCDP and CCIE Hey, don't get me wrong. I'm all for as much education as possible. I was specifically referring to the section designated for sharing term papers. If you read it again you'll notice that they are grouped by school and geographical area so that you don't submit the same paper as someone else! They are asking for people to post term papers for the sole purpose of getting out of doing it themselves. Do you really think that is helpful to the educational process? I don't think so. Lad. :-) If you think that giving your work to someone else so that they can do better in a class without doing the work themselves is okay, then that's the website for you. But I don't think you feel that way. Hopefully, you would agree that that form of information sharing is not constructive. Somebody pointed out to me that I seem really grumpy today. He must be right because I seem to be ruffling feathers without intending to! :-) Good thing it's almost time to go home. Regards, John "hal9001" [EMAIL PROTECTED] 3/26/01 4:14:34 PM Is that what they do at your Grade School, I think anything that helps.helps.I think he was just helping. F for SocialisationLad. Karl - Original Message - From: "John Neiberger" [EMAIL PROTECTED] To: [EMAIL PROTECTED] Sent: Monday, March 26, 2001 8:33 PM Subject: Re: Free Training Materials for CCNA, CCDA, CCNP, CCDP and CCIE Wow, cool. I can just copy term papers from the website without having to do the work! Is there going to be a subscriber-only service to have someone take my tests for me as well? I can see how that might have an extra cost associated with it since we'd have to print up some good fake IDs. "CiscoDiety" [EMAIL PROTECTED] 3/26/01 11:14:10 AM http://www.gdd.net Clayton Dukes CCNA, CCDA, CCDP, CCNP _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: CRC errors on Catalyst 3500 XL port
First, collisions are no big deal. They are to be expected when running
half duplex. However, you may not be intending to run half duplex from
the sounds of it. Try hard setting the router and switch ports for both
speed and duplex. It's possible that something caused router1 to
renegotiate, or perhaps the switches renegotiated and both of them
picked the wrong settings. It's difficult to say, but I do know that
it's best not to leave that sort of thing to chance.
Autonegotiation = "A Bad Thing"
There may be other causes but that would be the very first thing I
would check.
HTH,
John
"Jim McDowell" [EMAIL PROTECTED] 3/27/01 12:00:20 PM
Hi,
I have a 3640 ("router1") with IOS v11.2 which is routing between IP
subnets
(class "c" with a one bit subnet mask - using "IP subnet-zero"). There
are
two Ethernet ports on the router, each is connected to a separate
Catalyst
3500 XL switch. The two switch ports are hard set to 10 MBS, duplex
autonegotiate, spanning-tree on, portfast on. I am seeing collisions
and
crc errors on the switch ports that are connected to "router1". The
remainder of the switch ports ( with the exception of a few ports which
I'll
explain shortly ) are connected to 100 MBS fastethernet desktops and
don't
show any collisions...I understand why.
I also have another 3640 ("router2") connected to the same switches, in
the
same manner...for redundancy, I'm told. There are a couple of other
3500 XL
switches cascaded from these...to accommodate the number users. The
LAN
size is about 125 nodes with about equal number of nodes connected to
each
subnet. I'm new here...I have recommended getting rid of the
subnetting
scheme in favor of a classful LAN. Anyway, the switch ports that are
connected to "router2" don't show any collisions/crc errors.
This all started 2 weeks ago. The network has been designed this way
for
about a year.
In short, I can't determine whether routing loops are causing the
collisions
(and if so, why only on "router1"), or whether there's a port
configuration
mismatch between "router1"s Ethernet ports and the switch. Or, maybe
some
piece of hardware has just failed? Any suggestions are welcome.
Jim McDowell
Cisco Certified Network Professional
Network Administrator
Copley Information Systems
858.729.8028
_
FAQ, list archives, and subscription info:
http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
_
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: bri flapping with demand cirquit/igrp redistribution
I also had the same problem a few days ago. Here is how I fixed it: 1. Isolate the problem by shutting down all other interfaces besides the interfaces between the two related routers; 2. Disable all other routing protocols (non-OSPF ones); 3. Turn off IGRP redistribution to OSPF; 3. Now, verify the ISDN demand circuit. It should be quiet now. 4. Now, start unshut the interfaces you have shut down one by one and verify that the ISDN demand circuit. It should might come up briefly but it should go down and keep quiet after some interfaces are unshut. If the ISDN line keep dialing, you should know which interface is causing the problem. 5. If the ISDN line is still quiet after you unshut all interfaces, turn on your other router protocols such as IGRN, RIP, etc one by one. Again, verify the IDN line after each change as above. 5. If the ISDN line is still quiet after you enable all other routing protocols, turn on your redistribution one by one. Again verify ISDN line along the way. If you follow these steps, you should be able to pin down what is causing your ISDN line to stay up. Hope it helps. George Zhang "Donald B Johnson Jr" [EMAIL PROTECTED] 03/27/01 03:33PM It may keep the connection open though even after there is no intresting traffic. Don - Original Message - From: Alan Basinger [EMAIL PROTECTED] To: Chris Larson [EMAIL PROTECTED]; perez claude-vincent [EMAIL PROTECTED]; Ya Wen [EMAIL PROTECTED]; Patrick Murphy [EMAIL PROTECTED]; Leah Lynch [EMAIL PROTECTED]; 'Jay Chandradas' [EMAIL PROTECTED]; 'Bob Boone' [EMAIL PROTECTED]; [EMAIL PROTECTED]; [EMAIL PROTECTED] Sent: Saturday, March 24, 2001 8:37 AM Subject: RE: bri flapping with demand cirquit/igrp redistribution CDP may work at layer 2 but if the line is brought up because of web traffic CDP packets would then traverse the line consume a small amount of bandwidth. I have installed a few ISDN DDR VPN's without turning off CDP and never had and issue but also didn't think about the bandwidth consumption at the time. Alan -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Chris Larson Sent: Saturday, March 24, 2001 9:00 AM To: perez claude-vincent; Ya Wen; Patrick Murphy; Leah Lynch; 'Jay Chandradas'; 'Bob Boone'; [EMAIL PROTECTED]; [EMAIL PROTECTED] Subject: RE: bri flapping with demand cirquit/igrp redistribution It may not, I have just always disabled it on dialer links as a habit. It makes sense that it shouldn't since the dialer-list defines layer 3 traffic only. You could always put an access-list on the dialer interface permitting all traffic with the log statement to see exactly what is trying to get accross the line. It will output to the console if you are consoled in. That may help you to see what is bringing the line up. -Original Message- From: perez claude-vincent [mailto:[EMAIL PROTECTED]] Sent: Saturday, March 24, 2001 9:22 AM To: Ya Wen; Patrick Murphy; Leah Lynch; 'Jay Chandradas'; 'Chris Larson'; 'Bob Boone'; [EMAIL PROTECTED]; [EMAIL PROTECTED] Subject: RE: bri flapping with demand cirquit/igrp redistribution Can somebody tell me how come CDP may bring the line up? As you know, it works only in layer 2 as said before. Your dialer-list works at layer 3 4 only. Did I miss something? :-( --- Ya Wen [EMAIL PROTECTED] wrote: Try remove the "log" from the access-list 15 associated with the route-map stuff. Also, you do not need the summary-address under OSPF. -Ya -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Patrick Murphy Sent: Friday, March 23, 2001 5:04 PM To: Leah Lynch; 'Jay Chandradas'; 'Chris Larson'; 'Bob Boone'; [EMAIL PROTECTED]; [EMAIL PROTECTED] Subject: Re: bri flapping with demand cirquit/igrp redistribution Also check the BRI interface and see if you see IPCDP, it should disapper when you no cdp en! Patrick - Original Message - From: "Leah Lynch" [EMAIL PROTECTED] To: "'Jay Chandradas'" [EMAIL PROTECTED]; "'Chris Larson'" [EMAIL PROTECTED]; "'Bob Boone'" [EMAIL PROTECTED]; [EMAIL PROTECTED]; [EMAIL PROTECTED] Sent: Friday, March 23, 2001 7:45 PM Subject: RE: bri flapping with demand cirquit/igrp redistribution I think you normally disable CDP in dialup lines for efficiency. Leah -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Jay Chandradas Sent: Friday, March 23, 2001 2:57 PM To: Chris Larson; Bob Boone; [EMAIL PROTECTED]; [EMAIL PROTECTED] Subject: Re: bri flapping with demand cirquit/igrp redistribution I am not sure CDP will keep the line up ? And ur interesting traffic is permit ip any any . I dont think CDP will keep the line up. When u do a debug ip pack.. u can nvr see CDP.. CDP is layer 2. my 0.02 -
Re: voice teleconference
Mask Of Zorro wrote: So, you'd like us to design a voice solution that includes the customer's PBX, their ISP's connectivity, appropriate Cisco hardware for an assumed capacity? No problem. My bill rate is $150/hour US dollars. How soon would you like to contract me? :) No, thanks. Now I know exactly how to do it :) Z PS - an alternative might be www.cisco.com From: Mihai Dumitru [EMAIL PROTECTED] Reply-To: Mihai Dumitru [EMAIL PROTECTED] To: [EMAIL PROTECTED] Subject: voice teleconference Date: Tue, 27 Mar 2001 10:54:59 +0200 Hi! I have never done VoIP so far and I'm wondering what Cisco equipment do I have to provision for a central site to accomodate voice teleconference with ten concurrent client sites. Basically, I want to use the existing data channels (within the same ISP) only as transport for voice. The customer has its own PBXs and wants to make use of them, if possible. Thanks, Mihai _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ Get your FREE download of MSN Explorer at http://explorer.msn.com _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Cisco router is running very slow when SSh is implmented
Curtis, Thanks for the tip. However, I just figure out. The solution is: line vty 0 4 transport input ssh That effectively shut off telnet. Sean From: Curtis Call [EMAIL PROTECTED] To: "Sean Young" [EMAIL PROTECTED] CC: [EMAIL PROTECTED] Subject: Re: Cisco router is running very slow when SSh is implmented Date: Tue, 27 Mar 2001 09:37:49 -0700 Why not try to throw an access list on it that blocks the incoming telnet port? I submit that I haven't read the document either so that might be a stupid suggestion :-) At 09:16 AM 3/27/01, you wrote: Hope I am not offending you but did you read the document before giving me advice or do you just give it out of the blue? If I "no login" under vty then users will NOT be able to SSH to the router period. Any more ideas? Sean From: "Mask Of Zorro" [EMAIL PROTECTED] To: [EMAIL PROTECTED], [EMAIL PROTECTED] CC: [EMAIL PROTECTED] Subject: Re: Cisco router is running very slow when SSh is implmented Date: Tue, 27 Mar 2001 11:04:33 -0500 Enter a "no login" under the vty config and that will disable telnet authentication, effectively shutting off telnet... From: "Sean Young" [EMAIL PROTECTED] Reply-To: "Sean Young" [EMAIL PROTECTED] To: [EMAIL PROTECTED] CC: [EMAIL PROTECTED] Subject: Re: Cisco router is running very slow when SSh is implmented Date: Tue, 27 Mar 2001 10:38:38 -0500 This is my configuration line con 0 logging synchronous login authentication usetacacs transport input lat pad v120 lapb-ta mop telnet rlogin udptn nasi ssh line aux 0 line vty 0 4 exec-timeout 0 0 authorization commands 1 usetacacs1 login authentication usetacacs ! even when I set the "exec-timeout 0 0", I still can telnet to the router which is something I would like to avoid. I only want ssh to work. By the way, I use TACACS+ to authenticate users. Anymore ideas? Sean From: "John Neiberger" [EMAIL PROTECTED] To: [EMAIL PROTECTED] CC: [EMAIL PROTECTED] Subject: Re: Cisco router is running very slow when SSh is implmented Date: Tue, 27 Mar 2001 08:20:26 -0700 I don't know about the performance issue, that sounds like a "feature" since a 3640 shouldn't have much trouble handling that. As far as disabling telnet, the only way I know of is not to set a vty password. While not disabling the telnet server, it will prevent any attempts to telnet to the router. John "Sean Young" [EMAIL PROTECTED] 3/27/01 7:58:37 AM Hi everyone, Is it just me or anyone in the group experiencing the same thing? I've implemented SSH features on one of our ACCESS servers and I notice that it is very slow. The access server is a Cisco 3640 with 128MB RAM. I notice the performance is quited slow even on a Fast Ethernet LAN. I don't have any performance issues with Unix servers. Another thing, now that I have SSH running on the access server, how can I turn off telnet completely on the router? I check Cisco website but didn't see any solutions for it. Any ideas? Thanks. Sean _ Get your FREE download of MSN Explorer at http://explorer.msn.com _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ Get your FREE download of MSN Explorer at http://explorer.msn.com _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ Get your FREE download of MSN Explorer at http://explorer.msn.com _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ Get your FREE download of MSN Explorer at http://explorer.msn.com _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: New career(Off-subject)
So I gotta ask...What was your job before? :-) Heather Buri CSC Technology Services - Houston Phone: (713)-961-8592 Fax:(713)-961-8249 Mobile: Alpha Page: Mailing:1360 Post Oak Blvd Suite 500 Houston, TX 77056 -Original Message- From: Doug Snyder [mailto:[EMAIL PROTECTED]] Sent: Tuesday, March 27, 2001 12:29 PM To: [EMAIL PROTECTED] Subject: New career(Off-subject) I just wanted to thank everyone in this group. I was in a terrible job before, but now I am back with Cisco Routers and ATM. Hope the tech stocks bounce back soon. Roy Snyder Network Engineer (Again) __ Do You Yahoo!? Get email at your own domain with Yahoo! Mail. http://personal.mail.yahoo.com/?.refer=text _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: My CCNA test -Tips to follow
Paul, The Suresh link didn't work for some reason. Can you verify the url? Paul Anderson [mailto:[EMAIL PROTECTED]] wrote: [snip] Microsoft does. The test was true to the objectives! Purchased the CCNA = Preparation Kit from www.sureshshomepage.com and Todd Lammle's Sybex = book. Suresh has got good amount stuffs really you can make use of it. = To tell you the truth, out of the 65 questons I was asked at the real = test, about 40Qs line-by-line were from Suresh's kit. I was really = zapped.=20 [snip] Regards, Jack Nalbandian, CCNA, MCSE Network Engineer DATAFLEX - U.S. Operations 310.445.1052 x275 [EMAIL PROTECTED] mailto:[EMAIL PROTECTED] www.telephonyexperts.com http://www.telephonyexperts.com/ The information transmitted is intended only for the person or entity to which it is addressed and may contain confidential and/or privileged material. Any review, retransmission, dissemination or other use of, or taking of any action in reliance upon, this information by persons or entities other than the intended recipient is prohibited. If you received this in error, please contact the sender and delete the material from any computer. _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Please help - this is quiet urgent
So what you are saying is that you have an NT server for a router? -Original Message- From: gayathri [mailto:[EMAIL PROTECTED]] Sent: Tuesday, March 27, 2001 9:10 AM To: [EMAIL PROTECTED] Subject: Re: Please help - this is quiet urgent The connectivity is like this: AS400 (Fast Ether) - CAT55 Switch --? Router The branches connect to the AS400 thru a NT Server , client access is used - sna connectivity "Andrew Larkins" [EMAIL PROTECTED] wrote in message 8F5F72F80EF5D311ADE600A0C9DCF8620112C11B@UBDCCOMJHBEX">news:8F5F72F80EF5D311ADE600A0C9DCF8620112C11B@UBDCCOMJHBEX... what kind of upgrade was done on the AS400??. How does the AS400 connect to the network?? STUN, DLSW -Original Message- From: Gayathri [mailto:[EMAIL PROTECTED]] Sent: 27 March 2001 14:41 To: [EMAIL PROTECTED] Subject: Please help - this is quiet urgent Hello I have a strange problem here. WE upgraded our AS400 system. The AS 400 is equipped with a fddi card and a fast ethernet card both on 2 different vlans. When I try to connect from my NT server to the AS400 the session keeps timing out. This problem occured only after the upgradation. out of 34 branches ( this is a banking environment) only 3 servers can connect. When i try to sniff at the nt server, the output shows that there is a SYN from the nt server and RST from AS400. IBM guys are here, but we dont seem to get across a solution. The NT server are running service pack 3. Is this related to any session time out ?? If anybody has come across a similar problem please share your ideas. CAnt seem to decide whether at all this is a network problem Thanks _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: bri flapping with demand cirquit/igrp redistribution
Redistribution brings it up. What happens is, the link is brought up and OSPF forms an adjacency. Then, since it is a demand circuit, periodic LSA's are squelched and OSPF routes associated with those LSA's do not age out of the routing table. Then, the layer 2 portion of the link drops, since there is no interesting traffic. Once the link drops, whatever protocol you are redistributing into OSPF sees it's link drop, and changes its tables in accordance with the topology change. This change gets redistributed into OSPF, and OSPF floods LSA's out announcing the change. These LSA's bring up the link while OSPF converges. Then, after a while, things are stable again, and the link drops - and guess what? That's right! The whole thing starts again... There are ways to stop it. Z From: "George Zhang" [EMAIL PROTECTED] Reply-To: "George Zhang" [EMAIL PROTECTED] To: [EMAIL PROTECTED], [EMAIL PROTECTED], [EMAIL PROTECTED], [EMAIL PROTECTED], [EMAIL PROTECTED], [EMAIL PROTECTED], [EMAIL PROTECTED], [EMAIL PROTECTED], [EMAIL PROTECTED], [EMAIL PROTECTED], [EMAIL PROTECTED] Subject: Re: bri flapping with demand cirquit/igrp redistribution Date: Tue, 27 Mar 2001 13:50:52 -0600 I also had the same problem a few days ago. Here is how I fixed it: 1. Isolate the problem by shutting down all other interfaces besides the interfaces between the two related routers; 2. Disable all other routing protocols (non-OSPF ones); 3. Turn off IGRP redistribution to OSPF; 3. Now, verify the ISDN demand circuit. It should be quiet now. 4. Now, start unshut the interfaces you have shut down one by one and verify that the ISDN demand circuit. It should might come up briefly but it should go down and keep quiet after some interfaces are unshut. If the ISDN line keep dialing, you should know which interface is causing the problem. 5. If the ISDN line is still quiet after you unshut all interfaces, turn on your other router protocols such as IGRN, RIP, etc one by one. Again, verify the IDN line after each change as above. 5. If the ISDN line is still quiet after you enable all other routing protocols, turn on your redistribution one by one. Again verify ISDN line along the way. If you follow these steps, you should be able to pin down what is causing your ISDN line to stay up. Hope it helps. George Zhang "Donald B Johnson Jr" [EMAIL PROTECTED] 03/27/01 03:33PM It may keep the connection open though even after there is no intresting traffic. Don - Original Message - From: Alan Basinger [EMAIL PROTECTED] To: Chris Larson [EMAIL PROTECTED]; perez claude-vincent [EMAIL PROTECTED]; Ya Wen [EMAIL PROTECTED]; Patrick Murphy [EMAIL PROTECTED]; Leah Lynch [EMAIL PROTECTED]; 'Jay Chandradas' [EMAIL PROTECTED]; 'Bob Boone' [EMAIL PROTECTED]; [EMAIL PROTECTED]; [EMAIL PROTECTED] Sent: Saturday, March 24, 2001 8:37 AM Subject: RE: bri flapping with demand cirquit/igrp redistribution CDP may work at layer 2 but if the line is brought up because of web traffic CDP packets would then traverse the line consume a small amount of bandwidth. I have installed a few ISDN DDR VPN's without turning off CDP and never had and issue but also didn't think about the bandwidth consumption at the time. Alan -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Chris Larson Sent: Saturday, March 24, 2001 9:00 AM To: perez claude-vincent; Ya Wen; Patrick Murphy; Leah Lynch; 'Jay Chandradas'; 'Bob Boone'; [EMAIL PROTECTED]; [EMAIL PROTECTED] Subject: RE: bri flapping with demand cirquit/igrp redistribution It may not, I have just always disabled it on dialer links as a habit. It makes sense that it shouldn't since the dialer-list defines layer 3 traffic only. You could always put an access-list on the dialer interface permitting all traffic with the log statement to see exactly what is trying to get accross the line. It will output to the console if you are consoled in. That may help you to see what is bringing the line up. -Original Message- From: perez claude-vincent [mailto:[EMAIL PROTECTED]] Sent: Saturday, March 24, 2001 9:22 AM To: Ya Wen; Patrick Murphy; Leah Lynch; 'Jay Chandradas'; 'Chris Larson'; 'Bob Boone'; [EMAIL PROTECTED]; [EMAIL PROTECTED] Subject: RE: bri flapping with demand cirquit/igrp redistribution Can somebody tell me how come CDP may bring the line up? As you know, it works only in layer 2 as said before. Your dialer-list works at layer 3 4 only. Did I miss something? :-( --- Ya Wen [EMAIL PROTECTED] wrote: Try remove the "log" from the access-list 15 associated with the route-map stuff. Also, you do not need the summary-address under OSPF. -Ya -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Patrick Murphy Sent: Friday, March 23,
Re: Using a 2611 as an ISL router for a 2924 switch
Ok, I give up...what is a 2621 then if the FE doesn't work on the 2600 series ? - Original Message - From: "Kevin Wigle" [EMAIL PROTECTED] To: "cisco" [EMAIL PROTECTED] Cc: "Sean Graham" [EMAIL PROTECTED] Sent: Tuesday, March 27, 2001 11:21 AM Subject: Re: Using a 2611 as an ISL router for a 2924 switch ahhh, my favorite thread is back. http://www.cisco.com/univercd/cc/td/doc/product/access/acs_mod/cis2600/net_m od2/ovrnetm.htm#14116 says that a FE module is not supported in the 2600 series. It doesn't say it won't work but it does says it's not supported. If you try to configure That's why the 2620's are quoted - they have 10/100 ports as part of their base config. But you could be mislead by: http://www.cisco.com/warp/public/cc/pd/rt/2600/prodlit/2636m_ds.htm But, if you read the doc there is a table that says that none of the FE modules are avail for the 2600 series. Also, if you go here: http://www.cisco.com/pcgi-bin/finder/msbsearch.pl and use "Search#2" and search on NM-1FE-TX the results show the module and report and say that it is not available for the 2600 series. But it is ok with 3600 series routers. Take a look at http://www.cisco.com/go/module for all your questions on 2600/3600 routers. Yeah, we've had this discussion before. If a reseller sold you this module expressly for the 2611, return it. If they sold it to you for a 3600 and you decided to try it in the 2611 - well, you got the results that CCO predicts. Kevin Wigle "Sean Graham" [EMAIL PROTECTED] wrote in message 99qqjt$3me$[EMAIL PROTECTED]">news:99qqjt$3me$[EMAIL PROTECTED]... The first question I have..is the above possible with a 2611 router with a Fast Ethernet module install, with 48MB DRAM and IOS 12.1. It also has 2 Wic-1T serial cards. The Cisco web site has configuration examples based on 2620's but doesn't mention the 2611. I have had this working using a 3620 OK. But am not able to get this working using the 2611 I am receiving various errors on both the router and the switch. I am wondering as the config is fairly straight forward is this actually possible with this router. Any thoughts would be appreciated _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: bri flapping with demand cirquit/igrp redistribution
Your correct Z filter the bri subnet from redistribution into IGRP and your LSA's should not continue to bring the link up. Alan -Original Message- From: Mask Of Zorro [mailto:[EMAIL PROTECTED]] Sent: Tuesday, March 27, 2001 2:32 PM To: [EMAIL PROTECTED]; [EMAIL PROTECTED]; [EMAIL PROTECTED]; [EMAIL PROTECTED]; [EMAIL PROTECTED]; [EMAIL PROTECTED]; [EMAIL PROTECTED]; [EMAIL PROTECTED]; [EMAIL PROTECTED]; [EMAIL PROTECTED]; [EMAIL PROTECTED]; [EMAIL PROTECTED] Subject: Re: bri flapping with demand cirquit/igrp redistribution Redistribution brings it up. What happens is, the link is brought up and OSPF forms an adjacency. Then, since it is a demand circuit, periodic LSA's are squelched and OSPF routes associated with those LSA's do not age out of the routing table. Then, the layer 2 portion of the link drops, since there is no interesting traffic. Once the link drops, whatever protocol you are redistributing into OSPF sees it's link drop, and changes its tables in accordance with the topology change. This change gets redistributed into OSPF, and OSPF floods LSA's out announcing the change. These LSA's bring up the link while OSPF converges. Then, after a while, things are stable again, and the link drops - and guess what? That's right! The whole thing starts again... There are ways to stop it. Z From: "George Zhang" [EMAIL PROTECTED] Reply-To: "George Zhang" [EMAIL PROTECTED] To: [EMAIL PROTECTED], [EMAIL PROTECTED], [EMAIL PROTECTED], [EMAIL PROTECTED], [EMAIL PROTECTED], [EMAIL PROTECTED], [EMAIL PROTECTED], [EMAIL PROTECTED], [EMAIL PROTECTED], [EMAIL PROTECTED], [EMAIL PROTECTED] Subject: Re: bri flapping with demand cirquit/igrp redistribution Date: Tue, 27 Mar 2001 13:50:52 -0600 I also had the same problem a few days ago. Here is how I fixed it: 1. Isolate the problem by shutting down all other interfaces besides the interfaces between the two related routers; 2. Disable all other routing protocols (non-OSPF ones); 3. Turn off IGRP redistribution to OSPF; 3. Now, verify the ISDN demand circuit. It should be quiet now. 4. Now, start unshut the interfaces you have shut down one by one and verify that the ISDN demand circuit. It should might come up briefly but it should go down and keep quiet after some interfaces are unshut. If the ISDN line keep dialing, you should know which interface is causing the problem. 5. If the ISDN line is still quiet after you unshut all interfaces, turn on your other router protocols such as IGRN, RIP, etc one by one. Again, verify the IDN line after each change as above. 5. If the ISDN line is still quiet after you enable all other routing protocols, turn on your redistribution one by one. Again verify ISDN line along the way. If you follow these steps, you should be able to pin down what is causing your ISDN line to stay up. Hope it helps. George Zhang "Donald B Johnson Jr" [EMAIL PROTECTED] 03/27/01 03:33PM It may keep the connection open though even after there is no intresting traffic. Don - Original Message - From: Alan Basinger [EMAIL PROTECTED] To: Chris Larson [EMAIL PROTECTED]; perez claude-vincent [EMAIL PROTECTED]; Ya Wen [EMAIL PROTECTED]; Patrick Murphy [EMAIL PROTECTED]; Leah Lynch [EMAIL PROTECTED]; 'Jay Chandradas' [EMAIL PROTECTED]; 'Bob Boone' [EMAIL PROTECTED]; [EMAIL PROTECTED]; [EMAIL PROTECTED] Sent: Saturday, March 24, 2001 8:37 AM Subject: RE: bri flapping with demand cirquit/igrp redistribution CDP may work at layer 2 but if the line is brought up because of web traffic CDP packets would then traverse the line consume a small amount of bandwidth. I have installed a few ISDN DDR VPN's without turning off CDP and never had and issue but also didn't think about the bandwidth consumption at the time. Alan -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Chris Larson Sent: Saturday, March 24, 2001 9:00 AM To: perez claude-vincent; Ya Wen; Patrick Murphy; Leah Lynch; 'Jay Chandradas'; 'Bob Boone'; [EMAIL PROTECTED]; [EMAIL PROTECTED] Subject: RE: bri flapping with demand cirquit/igrp redistribution It may not, I have just always disabled it on dialer links as a habit. It makes sense that it shouldn't since the dialer-list defines layer 3 traffic only. You could always put an access-list on the dialer interface permitting all traffic with the log statement to see exactly what is trying to get accross the line. It will output to the console if you are consoled in. That may help you to see what is bringing the line up. -Original Message- From: perez claude-vincent [mailto:[EMAIL PROTECTED]] Sent: Saturday, March 24, 2001 9:22 AM To: Ya Wen; Patrick Murphy; Leah Lynch; 'Jay Chandradas'; 'Chris Larson'; 'Bob Boone'; [EMAIL PROTECTED]; [EMAIL PROTECTED] Subject: RE: bri flapping with demand cirquit/igrp redistribution Can somebody tell me how come CDP may bring
Re: Please help - this is quiet urgent
Service Pack 3? There's all kinds of TCP/IP fixes since then. Get SP6a if company policy allows you to. Also if you're using it for a router, are you just using route add statements or are you using RAS or RRAS? RAS and RRAS also need SP5 (I think) or higher to be stable. Actually RRAS wouldn't work at all for me earlier service packs. I'm guessing at which one you need to make it stable but it's posted in the white papers on microsoft.com. If you can't upgrade the service pack, install SP3 again. Maybe something overwrote shared system files. Also check your bandwidth utilization on the server. If NT is used as a router you need a seriously fast machine (especially bus speed) to handle anything close to full capacity of the NIC. I like NT very much but I'm not afraid to admit that it stinks at TCP/IP transfer speed. With a crossover cable between 2 boxes with no other traffic I only got 6 to 12Mb throughput on 100Mb cards. But then again it had a 66Mhz bus so maybe that had something to do with it. Is the NT Server doing routing or is it also doing some kind of client services to connect users to shared resources on the AS400? Hope I can help you out here. Allen - Original Message - From: "Jim Dixon" [EMAIL PROTECTED] To: "gayathri" [EMAIL PROTECTED]; [EMAIL PROTECTED] Sent: Tuesday, March 27, 2001 12:52 PM Subject: RE: Please help - this is quiet urgent So what you are saying is that you have an NT server for a router? -Original Message- From: gayathri [mailto:[EMAIL PROTECTED]] Sent: Tuesday, March 27, 2001 9:10 AM To: [EMAIL PROTECTED] Subject: Re: Please help - this is quiet urgent The connectivity is like this: AS400 (Fast Ether) - CAT55 Switch --? Router The branches connect to the AS400 thru a NT Server , client access is used - sna connectivity "Andrew Larkins" [EMAIL PROTECTED] wrote in message 8F5F72F80EF5D311ADE600A0C9DCF8620112C11B@UBDCCOMJHBEX">news:8F5F72F80EF5D311ADE600A0C9DCF8620112C11B@UBDCCOMJHBEX... what kind of upgrade was done on the AS400??. How does the AS400 connect to the network?? STUN, DLSW -Original Message- From: Gayathri [mailto:[EMAIL PROTECTED]] Sent: 27 March 2001 14:41 To: [EMAIL PROTECTED] Subject: Please help - this is quiet urgent Hello I have a strange problem here. WE upgraded our AS400 system. The AS 400 is equipped with a fddi card and a fast ethernet card both on 2 different vlans. When I try to connect from my NT server to the AS400 the session keeps timing out. This problem occured only after the upgradation. out of 34 branches ( this is a banking environment) only 3 servers can connect. When i try to sniff at the nt server, the output shows that there is a SYN from the nt server and RST from AS400. IBM guys are here, but we dont seem to get across a solution. The NT server are running service pack 3. Is this related to any session time out ?? If anybody has come across a similar problem please share your ideas. CAnt seem to decide whether at all this is a network problem Thanks _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
