Re: PIX telnet again [7:3003]
Search the archives. Yes, it will work, but you're not tunneling traffic from your internal network to the external IP of the PIX. You're tunneling traffic from the inside to the inside. You also cannot telnet (nor ping) the inside interface of a far PIX, due to the way it acts as a mid-box. If you want to telnet to the outside interface via an IPSEC tunnel, you need to use something like the VPN Client to have your end-point be the PIX external interface. The other option would be to get SSHv1 (vulnerable, but still more secure than open telnet) working on your PIX. As you already have a tunnel up, can you telnet to some other internal device and telnet from it back to the inside PIX interface? A Catalyst or Win2k server will do. Since it's in an encrypted tunnel, no big security risk. -- Jason Roysdon, CCNP+Security/CCDP, MCSE, CNA, Network+, A+ List email: [EMAIL PROTECTED] Homepage: http://jason.artoo.net/ ""Jim Bond"" wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > Hello, > > I have an IPSEC between central office router to site > office PIX. Central office uses public IP address, > site office has only 1 public IP address, therefore, > uses NAT. Everything works fines except I can't telnet > from central office to PIX (inside or outside). I can > telnet from central office to servers inside PIX. Is > there any command I need to add on the PIX? According > to CCO, if IPSEC is established, telnet to PIX outside > should work, right? > > Thanks in advance. > > Jim > > __ > Do You Yahoo!? > Yahoo! Auctions - buy the things you want at great prices > http://auctions.yahoo.com/ > FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=3010&t=3003 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: 2924XL for sale [7:2721]
eBay http://search.ebay.com/search/search.dll?MfcISAPICommand=GetResult&ht=1&Sort Property=MetaEndSort&query=2924 (mind the line wrap) -- Jason Roysdon, CCNP+Security/CCDP, MCSE, CNA, Network+, A+ List email: [EMAIL PROTECTED] Homepage: http://jason.artoo.net/ ""Tom"" wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > List on a WS-C2924-XL-EN is $1995, 38% off is about the best discount a gold > partner can get. That puts it at $1235. Where can you get 'em for $1000? > > > > Tom > > > > -Original Message- > From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of > Circusnuts > Sent: Tuesday, May 01, 2001 7:40 PM > To: [EMAIL PROTECTED] > Subject: Re: 2924XL for sale [7:2721] > > > Na- new is closer to a $1000. I paid something like $950 for mine (new 2924 > XL EN), & have definitely seen new models go for more. > > Phil > > - Original Message - > From: Jason Baker > To: > Sent: Tuesday, May 01, 2001 10:59 AM > Subject: Re: 2924XL for sale [7:2721] > > > > Lee, > > > > just helping you with selling the switch most of buy from ebay. > > > > The exact switch you are selling you can pick up for 500 - 700 US dollars. > > > > Regards, > > > > Jason Baker > > > > - Original Message - > > From: "Lee" > > To: > > Sent: Tuesday, May 01, 2001 7:45 PM > > Subject: 2924XL for sale [7:2721] > > > > > > > For sale: > > > > > > Cisco 2924XL EN - $1100US > > > > > > This is a brand new Cisco Catalyst 2924 XL EN switch still in the box. > > > This was intended for a home lab but was never needed. > > > > > > Lee > > > Sydney, Australia > > > FAQ, list archives, and subscription info: > > http://www.groupstudy.com/list/cisco.html > > > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] > > FAQ, list archives, and subscription info: > http://www.groupstudy.com/list/cisco.html > > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] > FAQ, list archives, and subscription info: > http://www.groupstudy.com/list/cisco.html > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] > > [GroupStudy.com removed an attachment of type text/x-vcard which had a name > of Tom McNamara.vcf] > FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=3009&t=2721 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Howard's other books [7:3008]
We all know about Howard's book, Designing Addressing Architectures for Routing and Switching; but, we rarely hear about his other books. I have just finished this book. It is a very good book, as most people here know; although, I wouldn't recommend it for somebody just starting out. You should have some experience and some idea of the basic concepts first. I have over ten years experience designing, implementing, and maintaining small LAN/WANs using a variety of technologies and protocols. I've found networking to be interesting, so I'm trying to build up my skills. Right now, I'm studying for CCDA in a somewhat roundabout way. I've already read Top-Down Network Design, as well as Howard's book, and I've started on Designing Cisco Networks. What I'm wondering about is Howard's other books, that we don't hear about very often, such as, Designing Routing and Switching Architectures. Is this one that would be good to read for basic design skills, or should I leave it for CCDP. Obviously, I'm not looking to just pass CCDA, but to really nail network design. I also have Christian Huitema's IPv6 2ed, which I will probably read after I finish the MySQL book (besides networking, I do quite a bit of System Administration and consulting). Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=3008&t=3008 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Generic Summarization Planning Question [7:2952]
geez, that's a lot of questions. my attempts at answers in-line - Original Message - From: Murphy, Brennan To: Sent: Wednesday, May 02, 2001 1:48 PM Subject: Generic Summarization Planning Question [7:2952] > I am curious about best practices concerning subnetting a class B address > for a large enterprise network. > > If a company had 4 data centers spread throughout the globe, for example: > SanFran > Austin > London > Sydney > > One might chop the class B into 4 parts and if need be, reserve some space > for growth. But what if each site also maintained an "Internet Presence" > and Divide the class B space into summarizable sections that provided for both the growth of the data center proper *and* (the tricky part) all of the spokes that would come off of that data center. That way, the interconnections between the data centers could be summarized. You'd definitely want to use a RP that allowed for VLSM. Also reserve a block of each allocated data center 'summary' to use for small subnets (30 bit masks) for serial links, and for things like remote access and the WAN backbone and DMZs and loopback addresses and other miscellanity. > had 5 or 6 external subnets being advertised via BGP. Would > it make sense to re-do the subnetting so that all internal addressing > was contiguous and all external addressing was contiguous? This way, You only get to advertise your public block with one AS, so unless you were using some other registered address space (which is frowned upon if you already have a big registered block), you'd set up iBGP internally and (probably) set the Internet access routers so that you didn't advertise yourself as a transit area. If you're using private B addressing, then your external doesn't matter because you'd have to use NAT anyway. I suppose that if you could afford it, you could have both internal and external links between the data centers so that you could use iBGP on the outside if a local data center lost its Internet connection you could ride it on the outside of the firewall, but that is a pretty far-fetched idea. There are better solutions than that. > all internal addressing could be summarized with relatively few statements, > and external nets as well. Does this sound reasonable? I've been Take a look at some case studies - good address design and allocation is one of the trickiest but most fulfilling skills that a Network Engineer can have, especially if it can be done well. With private address space, though, that skill has been diminished because we tend to throw caution to the wind and say "Aww, if I run out of space in 172.16, I can use 172.17" > browsing the CID book and other documents but havent come across > anything that seems to address these concerns. Or would it just be better > to make sure that all nets both internal/external are contiguous for a > particular data center? Just wondering if anyone has been through this Your distinction between internal and external is interesting - I'm assuming that you mean inside the firewall and outside the firewall. Most firewalls don't pass routing protocol, which makes the distinction and the contiguous part moot. However, if you did expose your address block to the Internet (which we did at one company I worked for), it really didn't matter much that the Internet connection was part of the data center summarizable block. Actually, the danger there is the "black hole" phenomenon, where the summarized address 'eats' subnets that are not part of the block but still being used elsewhere in the enterprise but not behind the data center. It happens sometimes by accident, seldom by design. > situation. Not sure if it would matter if OSPF or EIGRP is the IGP involved. > > I cc'ed Howard Berkowitz on this question -- Im told his first book is > a great reference for this area. Maybe his response would spur me to > purchase it. :-) > Here's one of the best exercises you could do: o generate the scenario o start laying out subnets o see if you could summarize along major subnet boundaries with just the major sites. o start simple, with one Internet connection, then throw in one other Internet connection and see if you could figure out how to: 1. send users to the closest Internet connection 2. have users directed to the other Internet connection if their primary connection failed 3. prevent your network from becoming an Internet transit test your design for scaleability by o adding a 5th and 6th data center (aha! you were going to divide the B block into 4 parts???) o using more than the originally alloted address space for one data center due to spoke or campus growth (want to hear sysadmins complain? tell them that you underallocated address space in their site, and therefore they have to readdress) o create a complex (meshed) WAN behind one or more of the data centers and see how the addressing holds up. Hey, I have an idea.. use NAI's global network as your case study! ;-)
Re: CCDA [7:2971]
I am enjoying studying for it now after obtaining CCNP. It is required for CCDP, and is reminding me of how important the basics are in designing. Its an easy one after the CCNP track but wheeew the case studies. My eyes burn every night... - Original Message - From: "Kevin Wigle" To: Sent: Wednesday, May 02, 2001 6:31 PM Subject: CCDA [7:2971] > Dear Group, > > I guess I've been sleeping again.. > > It used to be the case that getting CCDA meant that you have passed CCNA and > DCN. > > However looking at CCO, it seems that CCDA is now a one exam cert also - > although: > > CCDA Prerequisites > > Knowledge and skills to install, configure, and operate small networks. CCNA > certification is highly recommended. > Making it easier to get the junior certs I guess. Whether that is a good > thing > > > Kevin Wigle > FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=3006&t=2971 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: CCIE depreciation in 2 years [7:1882]
dang, does that mean "The Dukes of Hazzard" is coming back? (I loved Daisy Duke in dem dere cutoffs...) Did Mayor Brown donate his Porsche to the homeless, or did the CHP confiscate it because he had too many unpaid speeding tickets? -e- - Original Message - From: adam lee To: Sent: Wednesday, May 02, 2001 10:40 PM Subject: RE: CCIE depreciation in 2 years [7:1882] > You haven't heard? Willie traded in his expensive sports car for a classic > used car, THE GENERAL LEE. > > -Original Message- > From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of > EA Louie > Sent: Wednesday, May 02, 2001 12:30 AM > To: [EMAIL PROTECTED] > Subject: Re: CCIE depreciation in 2 years [7:1882] > > > Jason - I heard that Willie's latest passion is hillbilly music...right > after filling potholes and tossing the homeless out of GG Park ;-) > > -e- > > - Original Message - > From: Jason Roysdon > To: > Sent: Tuesday, May 01, 2001 8:30 PM > Subject: Re: CCIE depreciation in 2 years [7:1882] > > > > Heh, interesting. Of course, my friend is a white oakie who likes his > > country without all that new-fangled hipness (I say stuff like that to > tease > > him). You know, with a banjo, and no drums! Somehow I don't think he has > > any special connections there. > > > > -- > > Jason Roysdon, CCNP+Security/CCDP, MCSE, CNA, Network+, A+ > > List email: [EMAIL PROTECTED] > > Homepage: http://jason.artoo.net/ > > > > > > > > ""EA Louie"" wrote in message > > [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > > > lmao... what timing for that story to come out, just when Jason's > talking > > > about his buddy... > > > > > > -e- > > > > > > - Original Message - > > > From: adam lee > > > To: > > > Sent: Monday, April 30, 2001 8:17 PM > > > Subject: RE: CCIE depreciation in 2 years [7:1882] > > > > > > > > > > Are you sure he's not Willie Brown's friend? > > > > > > > > > > > > > > http://www.sfgate.com/cgi-bin/article.cgi?file=/c/a/2001/04/30/MN165362.DTL > > > > > > > > -Original Message- > > > > From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] > > > > Sent: Monday, April 30, 2001 6:03 PM > > > > To: [EMAIL PROTECTED] > > > > Subject: Re: CCIE depreciation in 2 years [7:1882] > > > > > > > > > > > > My friend was hired for the City/County of SF for $96K/year 3 months > ago > > > > with just his CNE. Plus they bought out the rest of his $150K > contract > > > with > > > > his previous employer, and paid for all the training he owned his > former > > > > employer (he'd been working exclusively for this customer anyway for > the > > > > last 6 mos.) > > > > > > > > Granted, he knows ZEN and can image every PC on their entire network > in > > 15 > > > > minutes and replaced 5 help-desk folks who used to do what ZEN does in > a > > > few > > > > clicks of a button (they still kept a few screwdrivers to replace > > > hardware). > > > > And that's just the eye-candy stuff that his manager likes to show > off, > > > he's > > > > got a solid years as a CNE under his belt (and not for mom-and-pop > > > networks, > > > > but for large enterprise clients) plus a year as an understudy before. > > > > > > > > Of course, this guy is sharp as a TAC (pun-intended). He'll pick up > his > > > > MCSE 2000 by the end of the year if he applies himself (he did the > CNE5 > > in > > > 3 > > > > months of self-study and building his own servers, plus hands-on > > > experience > > > > as an understudy to some of our ECNE/MCNE's). That is, if he ever > goes > > > > home. Heh, he even keeps a cot and a change of clothes at the office > > for > > > > those late nights. > > > > > > > > The funniest thing is that his house cost less than 10 months of his > > gross > > > > salary. But then he lives out in sticksville (but they do have > > > > cablemodems). > > > > > > > > I dunno, I find it kinda funny because he's the guy that came over > with > > > RH5 > > > > one day two years ago and said, "Hey, you wanna install this?" and we > > > > proceeded to waste the night away and piss off both of our Wives. > > Hehee. > > > > > > > > -- > > > > Jason Roysdon, CCNP+Security/CCDP, MCSE, CNA, Network+, A+ > > > > List email: [EMAIL PROTECTED] > > > > Homepage: http://jason.artoo.net/ > > > > > > > > > > > > > > > > ""Brian"" wrote in message > > > > [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > > > > > Novell certification, let's look at what kind of jobs that gets you. > > > > > > > > > > 1 a job at a company which is migrating from Novell to NT, and will > > let > > > > > you go when the transition is complete. > > > > > > > > > > 2 a job at a company that is too cheap to replace its legacy > mishmash > > > > > network. > > > > > > > > > > I'll pass either way. > > > > > > > > > > Brian "Sonic" Whalen > > > > > Success = Preparation + Opportunity > > > > > > > > > > > > > > > On Wed, 25 Apr 2001, Donald B Johnson jr wrote: > > > > > > > > > > > The Grand dad of all certs and now it is sneared at. > > > > > >
Re: Cisco networking position in NJ [7:2989]
ohhh i'd love to dig my teeth into this one, but I don't have the energy after today ;-) -e- - Original Message - From: Raul F. Fernandez To: Sent: Wednesday, May 02, 2001 8:38 PM Subject: RE: Cisco networking position in NJ [7:2989] > Rut Ro > > -Original Message- > From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of > Ruihai An > Sent: Wednesday, May 02, 2001 10:27 PM > To: [EMAIL PROTECTED] > Subject: Cisco networking position in NJ [7:2989] > > > ASP company in Parsippany NJ is looking for junior to middle level Cisco > network enginner. Contact me if you are interested. > > Ruihai > FAQ, list archives, and subscription info: > http://www.groupstudy.com/list/cisco.html > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] > FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=3004&t=2989 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
PIX telnet again [7:3003]
Hello, I have an IPSEC between central office router to site office PIX. Central office uses public IP address, site office has only 1 public IP address, therefore, uses NAT. Everything works fines except I can't telnet from central office to PIX (inside or outside). I can telnet from central office to servers inside PIX. Is there any command I need to add on the PIX? According to CCO, if IPSEC is established, telnet to PIX outside should work, right? Thanks in advance. Jim __ Do You Yahoo!? Yahoo! Auctions - buy the things you want at great prices http://auctions.yahoo.com/ Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=3003&t=3003 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: ISDN BRI up but does not ping [7:2712]
Check your firewall ip routing table. Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=3002&t=2712 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: CCIE depreciation in 2 years [7:1882]
You haven't heard? Willie traded in his expensive sports car for a classic used car, THE GENERAL LEE. -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of EA Louie Sent: Wednesday, May 02, 2001 12:30 AM To: [EMAIL PROTECTED] Subject: Re: CCIE depreciation in 2 years [7:1882] Jason - I heard that Willie's latest passion is hillbilly music...right after filling potholes and tossing the homeless out of GG Park ;-) -e- - Original Message - From: Jason Roysdon To: Sent: Tuesday, May 01, 2001 8:30 PM Subject: Re: CCIE depreciation in 2 years [7:1882] > Heh, interesting. Of course, my friend is a white oakie who likes his > country without all that new-fangled hipness (I say stuff like that to tease > him). You know, with a banjo, and no drums! Somehow I don't think he has > any special connections there. > > -- > Jason Roysdon, CCNP+Security/CCDP, MCSE, CNA, Network+, A+ > List email: [EMAIL PROTECTED] > Homepage: http://jason.artoo.net/ > > > > ""EA Louie"" wrote in message > [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > > lmao... what timing for that story to come out, just when Jason's talking > > about his buddy... > > > > -e- > > > > - Original Message - > > From: adam lee > > To: > > Sent: Monday, April 30, 2001 8:17 PM > > Subject: RE: CCIE depreciation in 2 years [7:1882] > > > > > > > Are you sure he's not Willie Brown's friend? > > > > > > > > > http://www.sfgate.com/cgi-bin/article.cgi?file=/c/a/2001/04/30/MN165362.DTL > > > > > > -Original Message- > > > From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] > > > Sent: Monday, April 30, 2001 6:03 PM > > > To: [EMAIL PROTECTED] > > > Subject: Re: CCIE depreciation in 2 years [7:1882] > > > > > > > > > My friend was hired for the City/County of SF for $96K/year 3 months ago > > > with just his CNE. Plus they bought out the rest of his $150K contract > > with > > > his previous employer, and paid for all the training he owned his former > > > employer (he'd been working exclusively for this customer anyway for the > > > last 6 mos.) > > > > > > Granted, he knows ZEN and can image every PC on their entire network in > 15 > > > minutes and replaced 5 help-desk folks who used to do what ZEN does in a > > few > > > clicks of a button (they still kept a few screwdrivers to replace > > hardware). > > > And that's just the eye-candy stuff that his manager likes to show off, > > he's > > > got a solid years as a CNE under his belt (and not for mom-and-pop > > networks, > > > but for large enterprise clients) plus a year as an understudy before. > > > > > > Of course, this guy is sharp as a TAC (pun-intended). He'll pick up his > > > MCSE 2000 by the end of the year if he applies himself (he did the CNE5 > in > > 3 > > > months of self-study and building his own servers, plus hands-on > > experience > > > as an understudy to some of our ECNE/MCNE's). That is, if he ever goes > > > home. Heh, he even keeps a cot and a change of clothes at the office > for > > > those late nights. > > > > > > The funniest thing is that his house cost less than 10 months of his > gross > > > salary. But then he lives out in sticksville (but they do have > > > cablemodems). > > > > > > I dunno, I find it kinda funny because he's the guy that came over with > > RH5 > > > one day two years ago and said, "Hey, you wanna install this?" and we > > > proceeded to waste the night away and piss off both of our Wives. > Hehee. > > > > > > -- > > > Jason Roysdon, CCNP+Security/CCDP, MCSE, CNA, Network+, A+ > > > List email: [EMAIL PROTECTED] > > > Homepage: http://jason.artoo.net/ > > > > > > > > > > > > ""Brian"" wrote in message > > > [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > > > > Novell certification, let's look at what kind of jobs that gets you. > > > > > > > > 1 a job at a company which is migrating from Novell to NT, and will > let > > > > you go when the transition is complete. > > > > > > > > 2 a job at a company that is too cheap to replace its legacy mishmash > > > > network. > > > > > > > > I'll pass either way. > > > > > > > > Brian "Sonic" Whalen > > > > Success = Preparation + Opportunity > > > > > > > > > > > > On Wed, 25 Apr 2001, Donald B Johnson jr wrote: > > > > > > > > > The Grand dad of all certs and now it is sneared at. > > > > > I am not working on a novell network so I let that slide at 4.11. > > never > > > > up'd > > > > > to 5 > > > > > Don > > > > > > > > > > - Original Message - > > > > > From: "Ronnie Poon" > > > > > To: > > > > > Sent: Wednesday, April 25, 2001 10:18 AM > > > > > Subject: Re: CCIE depreciation in 2 years [7:1882] > > > > > > > > > > > > > > > > How about Novell CNE. It also have a same thing. > > > > > > > > > > > > Donald B Johnson jr wrote: > > > > > > > > > > > > > Yeah I got a mcse in 96 and thought the same thing when it > > happened > > > to > > > > > that > > > > > > > program. OH well I still want to be part of the swelling > > > ranks.
Re: Multiple VLAN addressing question [7:2905]
can you explain why one should not use the supervisor module to trunk eager to know PQ Dwayne Saunders wrote: > For starters I would not use the supervisor module to trunk use one of your > fast Ethernet port on module Two for the trunk. > > D'Wayne Saunders > Senior MIS Operator,CCNA > > -Original Message- > From: [EMAIL PROTECTED] (Richard Chang) > [mailto:[EMAIL PROTECTED]] > Sent: Thursday, 3 May 2001 2:29 > To: [EMAIL PROTECTED] > Subject: Multiple VLAN addressing question [7:2905] > > Dear CiscoGroupstudy.com > > I am having trouble getting the trunk up between a Cisco 7513 Router > and a Cisco Switch 5500 so that VLAN's 10 and 20 can cross it. It may > be because I can't set interface sc0 on the 5500 switch correctly. > > Assume VLAN 10 is 10.10.0.0/16 port 2/1 on Cisco 5500 switch > VLAN 20 is 10.20.0.0/16 port 2/2 on Cisco 5500 switch > > Assume ISL Trunk 1/1 connected between 1/1 on Cisco 5500 switch to > FastEthernet 3/0/0 to Cisco 7513 Router > > FastEthernet3/0/0.10 = 10.10.1.1 > FastEthernet3/0/0.20 = 10.20.1.1 > > what should I use for the address for interface sc0 on the Switch? > > Interface sc0 determines port 1/1 address on the switch-- > FAQ, list archives, and subscription info: > http://www.groupstudy.com/list/cisco.html > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] > FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=3000&t=2905 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Incorrect link on groupstudy jobs webpage - Re: NEED [7:2999]
depends on who you're talking about. it was a "her" that posted to the wrong list and if you read a little closer it is not "she" that we're complaining about.. it is the "he" (william ward) that wrote: "Claudette needs to pull her head out of her ass" and "Dumb bitch. " So just who are wanting to cut slack??? However I'm sure Paul will get that link fixed. Kevin Wigle - Original Message - From: "Curtis Call" To: Sent: Wednesday, 02 May, 2001 22:57 Subject: Incorrect link on groupstudy jobs webpage - Re: NEED CCIE... [7:2991] > FYI if you go to the groupstudy website and click on the Employment Mailing > list and scroll down to where it tells you how to post messages, it says > [EMAIL PROTECTED] but if you put your cursor over it you'll notice that > it actually links you to [EMAIL PROTECTED] So, given that there is a > possibility this was posted in error, I think we should cut him some slack. > > > At 06:18 PM 5/2/01, you wrote: > >I wanted to jump in but I also didn't want to become Miss Manners for the > >list :-) > > > >however, I wondered how that got through Paul's many filters.. ?? > > > >Kevin Wigle > > > >- Original Message - > >From: "Bradley J. Wilson" > >To: > >Sent: Wednesday, 02 May, 2001 19:52 > >Subject: Re: NEED CCIE in the WEST VIRGINIA AREA [7:2919] > > > > > > > Um...Paul, if you would, please ban this guy. :-) Thanks. > > > > > > Johnny, what parting gifts do we have for our contestant?... > > > > > > > > > - Original Message - > > > From: william ward > > > To: [EMAIL PROTECTED] > > > Sent: Wednesday, May 02, 2001 7:26 PM > > > Subject: Re: NEED CCIE in the WEST VIRGINIA AREA [7:2919] > > > > > > > > > Claudette needs to pull her head out of her ass and read a trade rag once > > > and awhile or do some form research before trying to recruit somebody. > >Dumb > > > bitch. And she wants the CCIE to call HER! Lazy and Stupid > > > > > > > > > >From: "Donald B Johnson jr" > > > >Reply-To: "Donald B Johnson jr" > > > >To: [EMAIL PROTECTED] > > > >Subject: Re: NEED CCIE in the WEST VIRGINIA AREA [7:2919] > > > >Date: Wed, 2 May 2001 16:57:25 -0400 > > > > > > > >Snag, I'm a Cabletron certified CCIE > > > >Foiled again > > > > > > > >- Original Message - > > > >From: "Chuck Larrieu" > > > >To: > > > >Sent: Wednesday, May 02, 2001 11:52 AM > > > >Subject: RE: NEED CCIE in the WEST VIRGINIA AREA [7:2919] > > > > > > > > > > > > > Non Cisco certified CCIE's need not apply :-> > > > > > > > > > > > > > > > > > > > > -Original Message- > > > > > From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] On Behalf > >Of > > > > > Claudette Graham > > > > > Sent: Wednesday, May 02, 2001 11:02 AM > > > > > To: [EMAIL PROTECTED] > > > > > Subject: NEED CCIE in the WEST VIRGINIA AREA [7:2919] > > > > > > > > > > The following is a job description I recently received from my client > > > >which > > > > > needs to be filled immediately. > > > > > > > > > > We are looking for a Cisco Certified CCIE, living and working in West > > > > > Virginia. > > > > > > > > > > Please send resume and rates as soon as possible. > > > > > > > > > > CCIE > > > > > > > > > > DURATION: 1 YEAR (CONTRACT) > > > > > > > > > > START DATE: 7/1/01 - 6/30/02 > > > > > > > > > > LOCATION: WEST VIRGINIA > > > > > > > > > > > > > > > NEED TO FILL NO LATER THAN FRIDAY, MAY 4TH 2001 > > > > > > > > > > DESCRIPTION OF WORK ASSIGNMENT: > > > > > > > > > > The vendor and/or his protigies should be authorized to ser vice > 3Com, > > > > > Nortel Networks, and Enterasys/Cabletron equipment currently > installed > > > >in > > > > > State agencies. > > > > > The vendor should provide proof from the manufacturer confirming this > > > > > authorization to service the equipment and a list of the products > > > >covered. > > > > > > > > > > PROJECT / ENVIRONMENT DESCRIPTION: > > > > > > > > > > What type of work is being done? > > > > > * Custom Application Development > > > > > * Application Management Outsourcing > > > > > * Package Integration > > > > > * Application Enabling Design > > > > > * Solutions Consulting & Integration > > > > > * Other network hardware installation > > > > > > > > > > > > > > > LOCALS PLEASE > > > > > > > > > > PLEASE FORWARD A COPY OF YOUR RESUME AND CALL ME > > > >IMMEDIATELY...Thanks > > > > > (:) ) > > > > > > > > > > Claudette > > > > > > > > > > > > > > > * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * > > > > > Claudette Graham > > > > > Technical Recruiter > > > > > American Employment Solutions, Inc > > > > > Phone: 800-995-6858 > > > > > Fax: 888-995-8788 > > > > > Email: [EMAIL PROTECTED] > > > > > Website: www.amesinc.org > > > > > > > > > > * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * > > > > > FAQ, list archives, and subscription info: > > > > > http://www.groupstudy.com/list/cisco.html > > > > > Report misconduct and Nondisclosure violations to > [EMAIL PROTECTED] > > > > > FAQ, lis
Re: 2924XL for sale [7:2721]
you can get enterprise versions of the 2900 series well under 1000 new in box type stuff. Regards, Jason Baker - Original Message - From: "Tom" To: Sent: Thursday, May 03, 2001 12:08 PM Subject: RE: 2924XL for sale [7:2721] > List on a WS-C2924-XL-EN is $1995, 38% off is about the best discount a gold > partner can get. That puts it at $1235. Where can you get 'em for $1000? > > > > Tom > > > > -Original Message- > From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of > Circusnuts > Sent: Tuesday, May 01, 2001 7:40 PM > To: [EMAIL PROTECTED] > Subject: Re: 2924XL for sale [7:2721] > > > Na- new is closer to a $1000. I paid something like $950 for mine (new 2924 > XL EN), & have definitely seen new models go for more. > > Phil > > - Original Message - > From: Jason Baker > To: > Sent: Tuesday, May 01, 2001 10:59 AM > Subject: Re: 2924XL for sale [7:2721] > > > > Lee, > > > > just helping you with selling the switch most of buy from ebay. > > > > The exact switch you are selling you can pick up for 500 - 700 US dollars. > > > > Regards, > > > > Jason Baker > > > > - Original Message - > > From: "Lee" > > To: > > Sent: Tuesday, May 01, 2001 7:45 PM > > Subject: 2924XL for sale [7:2721] > > > > > > > For sale: > > > > > > Cisco 2924XL EN - $1100US > > > > > > This is a brand new Cisco Catalyst 2924 XL EN switch still in the box. > > > This was intended for a home lab but was never needed. > > > > > > Lee > > > Sydney, Australia > > > FAQ, list archives, and subscription info: > > http://www.groupstudy.com/list/cisco.html > > > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] > > FAQ, list archives, and subscription info: > http://www.groupstudy.com/list/cisco.html > > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] > FAQ, list archives, and subscription info: > http://www.groupstudy.com/list/cisco.html > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] > > [GroupStudy.com removed an attachment of type text/x-vcard which had a name > of Tom McNamara.vcf] > FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=2998&t=2721 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Interpretation of some BGP commands [7:2997]
hi , can anyone tell me what the command below summarises the address to be ? network 202.161.128.0 mask 255.255.224.0 aggregate-address 202.161.128.0 255.255.224.0 summary-only regards, suaveguru __ Do You Yahoo!? Yahoo! Auctions - buy the things you want at great prices http://auctions.yahoo.com/ Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=2997&t=2997 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: ISIS Routing [7:2977]
Hi, ISIS works on broadcast and point-to-point networks only. On Frame relay, it has to be a point-to-point subinterface. Try moving your R5/R6 configs to a point-to-point subinterface and let us know the results. Erick --- Hareish Rane wrote: > Hi Folks, > > I am bit new to ISIS and working on Mark's Lab 11 > (excluding the ATM LANE). > When configuring ISIS routing over Framne Relay, I > cannot get the ISIS to > form adjacences to with other peer router over Frame > Relay. I tried all that > I can think about, searched CCO for references and > also the group study > archive. But I can't still figure out what is wroung > below > > The R1 is the Frame Relay hub router and R5 and R6 > are spoke routers: > > > R1: > > clns routing > ! > ! > interface Ethernet0/0 > ip address 10.1.1.1 255.255.0.0 > no ip directed-broadcast > ip router isis 11 > no keepalive > ! > interface Serial0/0 > no ip address > no ip directed-broadcast > encapsulation frame-relay > no ip mroute-cache > no fair-queue > ! > interface Serial0/0.1 point-to-point > ip address 10.16.1.1 255.255.0.0 > no ip directed-broadcast > ip router isis 11 > frame-relay interface-dlci 600 > ! > interface Serial0/0.2 point-to-point > ip address 10.13.1.1 255.255.0.0 > no ip directed-broadcast > ip router isis 11 > frame-relay interface-dlci 300 > ! > interface Serial0/0.3 point-to-point > ip address 10.15.1.1 255.255.0.0 > no ip directed-broadcast > ip router isis 11 > frame-relay interface-dlci 500 > ! > router isis 11 > net 00.0002..0c00..00 > ! > ip classless > > > R5: > > clns routing > ! > ! > ! > ! > ! > interface Ethernet0 > ip address 150.10.10.1 255.255.255.0 > no ip directed-broadcast > ip ospf message-digest-key 1 md5 CCIE > ip ospf interface-retry 0 > ip ospf priority 200 > ! > interface Serial0 > ip address 10.15.1.2 255.255.0.0 > no ip directed-broadcast > encapsulation frame-relay > no ip mroute-cache > no fair-queue > isis circuit-type level-1 > frame-relay map clns 500 broadcast > frame-relay map ip 10.15.1.1 500 broadcast > ! > ! > router ospf 11 > area 0 authentication message-digest > network 150.10.10.0 0.0.0.255 area 0 > ! > router isis 11 > net 00.0002..0c00..00 > ! > ip classless > ! > > R6: > > clns routing > ! > ! > ! > ! > ! > interface Ethernet0 > ip address 10.2.1.1 255.255.0.0 > no ip directed-broadcast > ip router isis 11 > no keepalive > ! > interface Serial0 > ip address 10.16.1.2 255.255.0.0 > no ip directed-broadcast > ip router isis 11 > encapsulation frame-relay > no ip mroute-cache > frame-relay map clns 600 broadcast > frame-relay map ip 10.16.1.1 600 broadcast > ! > interface Serial1 > no ip address > no ip directed-broadcast > shutdown > ! > interface BRI0 > no ip address > no ip directed-broadcast > shutdown > ! > router isis 11 > net 00.0002..0c00..00 > ! > ip classless > ! > > > Thanking you in advance > > Harish __ Do You Yahoo!? Yahoo! Auctions - buy the things you want at great prices http://auctions.yahoo.com/ Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=2996&t=2977 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: ISIS Routing [7:2977]
Hi, ISIS works on broadcast and point-to-point networks only. On Frame relay, it has to be a point-to-point subinterface. Try moving your R5/R6 configs to a point-to-point subinterface and let us know the results. Erick --- Hareish Rane wrote: > Hi Folks, > > I am bit new to ISIS and working on Mark's Lab 11 > (excluding the ATM LANE). > When configuring ISIS routing over Framne Relay, I > cannot get the ISIS to > form adjacences to with other peer router over Frame > Relay. I tried all that > I can think about, searched CCO for references and > also the group study > archive. But I can't still figure out what is wroung > below > > The R1 is the Frame Relay hub router and R5 and R6 > are spoke routers: > > > R1: > > clns routing > ! > ! > interface Ethernet0/0 > ip address 10.1.1.1 255.255.0.0 > no ip directed-broadcast > ip router isis 11 > no keepalive > ! > interface Serial0/0 > no ip address > no ip directed-broadcast > encapsulation frame-relay > no ip mroute-cache > no fair-queue > ! > interface Serial0/0.1 point-to-point > ip address 10.16.1.1 255.255.0.0 > no ip directed-broadcast > ip router isis 11 > frame-relay interface-dlci 600 > ! > interface Serial0/0.2 point-to-point > ip address 10.13.1.1 255.255.0.0 > no ip directed-broadcast > ip router isis 11 > frame-relay interface-dlci 300 > ! > interface Serial0/0.3 point-to-point > ip address 10.15.1.1 255.255.0.0 > no ip directed-broadcast > ip router isis 11 > frame-relay interface-dlci 500 > ! > router isis 11 > net 00.0002..0c00..00 > ! > ip classless > > > R5: > > clns routing > ! > ! > ! > ! > ! > interface Ethernet0 > ip address 150.10.10.1 255.255.255.0 > no ip directed-broadcast > ip ospf message-digest-key 1 md5 CCIE > ip ospf interface-retry 0 > ip ospf priority 200 > ! > interface Serial0 > ip address 10.15.1.2 255.255.0.0 > no ip directed-broadcast > encapsulation frame-relay > no ip mroute-cache > no fair-queue > isis circuit-type level-1 > frame-relay map clns 500 broadcast > frame-relay map ip 10.15.1.1 500 broadcast > ! > ! > router ospf 11 > area 0 authentication message-digest > network 150.10.10.0 0.0.0.255 area 0 > ! > router isis 11 > net 00.0002..0c00..00 > ! > ip classless > ! > > R6: > > clns routing > ! > ! > ! > ! > ! > interface Ethernet0 > ip address 10.2.1.1 255.255.0.0 > no ip directed-broadcast > ip router isis 11 > no keepalive > ! > interface Serial0 > ip address 10.16.1.2 255.255.0.0 > no ip directed-broadcast > ip router isis 11 > encapsulation frame-relay > no ip mroute-cache > frame-relay map clns 600 broadcast > frame-relay map ip 10.16.1.1 600 broadcast > ! > interface Serial1 > no ip address > no ip directed-broadcast > shutdown > ! > interface BRI0 > no ip address > no ip directed-broadcast > shutdown > ! > router isis 11 > net 00.0002..0c00..00 > ! > ip classless > ! > > > Thanking you in advance > > Harish __ Do You Yahoo!? Yahoo! Auctions - buy the things you want at great prices http://auctions.yahoo.com/ Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=2995&t=2977 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Cisco networking position in NJ [7:2989]
Rut Ro -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Ruihai An Sent: Wednesday, May 02, 2001 10:27 PM To: [EMAIL PROTECTED] Subject: Cisco networking position in NJ [7:2989] ASP company in Parsippany NJ is looking for junior to middle level Cisco network enginner. Contact me if you are interested. Ruihai FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=2994&t=2989 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
please help me set up multiple VLANs [7:2993]
Dear CiscoGroupstudy.com I am having trouble getting the trunk up between a Cisco 7513 Router and a Cisco Switch 5500 so that VLAN's 10 and 20 can cross it. It may be because I can't set interface sc0 on the 5500 switch correctly. Assume VLAN 10 is 10.10.0.0/16 port 2/1 on Cisco 5500 switch VLAN 20 is 10.20.0.0/16 port 2/2 on Cisco 5500 switch Assume ISL Trunk 1/1 connected between 1/1 on Cisco 5500 switch to FastEthernet 3/0/0 to Cisco 7513 Router FastEthernet3/0/0.10 = 10.10.1.1 FastEthernet3/0/0.20 = 10.20.1.1 what should I use for the address for interface sc0 on the Switch? Interface sc0 determines port 1/1 address on the switch-- Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=2993&t=2993 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
what is ecp-1 [7:2992]
Hi, I was wondering wots ECP1. And i would like to know if there are some recommended courses that should really help in the lab prep. Plz let me know the URL's as well. Thankyou. Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=2992&t=2992 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Incorrect link on groupstudy jobs webpage - Re: NEED CCIE... [7:2991]
FYI if you go to the groupstudy website and click on the Employment Mailing list and scroll down to where it tells you how to post messages, it says [EMAIL PROTECTED] but if you put your cursor over it you'll notice that it actually links you to [EMAIL PROTECTED] So, given that there is a possibility this was posted in error, I think we should cut him some slack. At 06:18 PM 5/2/01, you wrote: >I wanted to jump in but I also didn't want to become Miss Manners for the >list :-) > >however, I wondered how that got through Paul's many filters.. ?? > >Kevin Wigle > >- Original Message - >From: "Bradley J. Wilson" >To: >Sent: Wednesday, 02 May, 2001 19:52 >Subject: Re: NEED CCIE in the WEST VIRGINIA AREA [7:2919] > > > > Um...Paul, if you would, please ban this guy. :-) Thanks. > > > > Johnny, what parting gifts do we have for our contestant?... > > > > > > - Original Message - > > From: william ward > > To: [EMAIL PROTECTED] > > Sent: Wednesday, May 02, 2001 7:26 PM > > Subject: Re: NEED CCIE in the WEST VIRGINIA AREA [7:2919] > > > > > > Claudette needs to pull her head out of her ass and read a trade rag once > > and awhile or do some form research before trying to recruit somebody. >Dumb > > bitch. And she wants the CCIE to call HER! Lazy and Stupid > > > > > > >From: "Donald B Johnson jr" > > >Reply-To: "Donald B Johnson jr" > > >To: [EMAIL PROTECTED] > > >Subject: Re: NEED CCIE in the WEST VIRGINIA AREA [7:2919] > > >Date: Wed, 2 May 2001 16:57:25 -0400 > > > > > >Snag, I'm a Cabletron certified CCIE > > >Foiled again > > > > > >- Original Message - > > >From: "Chuck Larrieu" > > >To: > > >Sent: Wednesday, May 02, 2001 11:52 AM > > >Subject: RE: NEED CCIE in the WEST VIRGINIA AREA [7:2919] > > > > > > > > > > Non Cisco certified CCIE's need not apply :-> > > > > > > > > > > > > > > > > -Original Message- > > > > From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] On Behalf >Of > > > > Claudette Graham > > > > Sent: Wednesday, May 02, 2001 11:02 AM > > > > To: [EMAIL PROTECTED] > > > > Subject: NEED CCIE in the WEST VIRGINIA AREA [7:2919] > > > > > > > > The following is a job description I recently received from my client > > >which > > > > needs to be filled immediately. > > > > > > > > We are looking for a Cisco Certified CCIE, living and working in West > > > > Virginia. > > > > > > > > Please send resume and rates as soon as possible. > > > > > > > > CCIE > > > > > > > > DURATION: 1 YEAR (CONTRACT) > > > > > > > > START DATE: 7/1/01 - 6/30/02 > > > > > > > > LOCATION: WEST VIRGINIA > > > > > > > > > > > > NEED TO FILL NO LATER THAN FRIDAY, MAY 4TH 2001 > > > > > > > > DESCRIPTION OF WORK ASSIGNMENT: > > > > > > > > The vendor and/or his protigies should be authorized to ser vice 3Com, > > > > Nortel Networks, and Enterasys/Cabletron equipment currently installed > > >in > > > > State agencies. > > > > The vendor should provide proof from the manufacturer confirming this > > > > authorization to service the equipment and a list of the products > > >covered. > > > > > > > > PROJECT / ENVIRONMENT DESCRIPTION: > > > > > > > > What type of work is being done? > > > > * Custom Application Development > > > > * Application Management Outsourcing > > > > * Package Integration > > > > * Application Enabling Design > > > > * Solutions Consulting & Integration > > > > * Other network hardware installation > > > > > > > > > > > > LOCALS PLEASE > > > > > > > > PLEASE FORWARD A COPY OF YOUR RESUME AND CALL ME > > >IMMEDIATELY...Thanks > > > > (:) ) > > > > > > > > Claudette > > > > > > > > > > > > * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * > > > > Claudette Graham > > > > Technical Recruiter > > > > American Employment Solutions, Inc > > > > Phone: 800-995-6858 > > > > Fax: 888-995-8788 > > > > Email: [EMAIL PROTECTED] > > > > Website: www.amesinc.org > > > > > > > > * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * > > > > FAQ, list archives, and subscription info: > > > > http://www.groupstudy.com/list/cisco.html > > > > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] > > > > FAQ, list archives, and subscription info: > > >http://www.groupstudy.com/list/cisco.html > > > > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] > > >FAQ, list archives, and subscription info: > > >http://www.groupstudy.com/list/cisco.html > > >Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] > > > > _ > > Get your FREE download of MSN Explorer at http://explorer.msn.com > > FAQ, list archives, and subscription info: > > http://www.groupstudy.com/list/cisco.html > > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] > > FAQ, list archives, and subscription info: >http://www.groupstudy.com/list/cisco.html > > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] >FAQ, list archives, and subscr
Cisco networking position in NJ [7:2989]
ASP company in Parsippany NJ is looking for junior to middle level Cisco network enginner. Contact me if you are interested. Ruihai Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=2989&t=2989 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: 2924XL for sale [7:2721]
List on a WS-C2924-XL-EN is $1995, 38% off is about the best discount a gold partner can get. That puts it at $1235. Where can you get 'em for $1000? Tom -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Circusnuts Sent: Tuesday, May 01, 2001 7:40 PM To: [EMAIL PROTECTED] Subject: Re: 2924XL for sale [7:2721] Na- new is closer to a $1000. I paid something like $950 for mine (new 2924 XL EN), & have definitely seen new models go for more. Phil - Original Message - From: Jason Baker To: Sent: Tuesday, May 01, 2001 10:59 AM Subject: Re: 2924XL for sale [7:2721] > Lee, > > just helping you with selling the switch most of buy from ebay. > > The exact switch you are selling you can pick up for 500 - 700 US dollars. > > Regards, > > Jason Baker > > - Original Message - > From: "Lee" > To: > Sent: Tuesday, May 01, 2001 7:45 PM > Subject: 2924XL for sale [7:2721] > > > > For sale: > > > > Cisco 2924XL EN - $1100US > > > > This is a brand new Cisco Catalyst 2924 XL EN switch still in the box. > > This was intended for a home lab but was never needed. > > > > Lee > > Sydney, Australia > > FAQ, list archives, and subscription info: > http://www.groupstudy.com/list/cisco.html > > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] > FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] [GroupStudy.com removed an attachment of type text/x-vcard which had a name of Tom McNamara.vcf] Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=2988&t=2721 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
switching [7:2987]
Hi Ciscoians, I am now preparing for BCMSN paper. Anybody know what is passing points for this and how many question will be asked ? Time allocated for this exam ?? Any questions that requires typing of CLI ?? Area of important focus ? rgds. Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=2987&t=2987 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: NEED CCIE in WEST VIRGINA AREA [7:2986]
Claudette, Please never again send a job posting to a technical news server. There is a news server set up at groupstudy specifically for job postings. The mail sever you sent your job post to is for technical knowledge sharing and not for head hunting. Thank you for your cooperation with this matter. -Joe Harris CCIE# 6200, Security, Voice AIM Management 11 Greenway Plaza, Suite 100 Houston, TX. Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=2986&t=2986 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Spanning Tree Protocol [7:2564]
Unfortunately turning off appletalk isn;t as easy as it sounds. It really depends on the environment. Mac's can use IP for filesharing, however Appletalk needs to be enabled for this to work. There are printing issues that arise from disabling appletalk as well. tim I hear and I forget I see and I believe I do and I understand -Confucius Tim Medley - CCNA, CCDA VoIP Engineer 704-943-3615 - Phone 704-525-9119 - Fax 877-6-iReady - Helpdesk -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Chuck Larrieu Sent: Wednesday, May 02, 2001 4:59 PM To: [EMAIL PROTECTED] Subject: RE: Spanning Tree Protocol [7:2564] The other way to solve the problem would be to delete AppleTalk and use native IP on your Mac's ;-> ( can't wait for PO's response to this one! ) chuck -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] Sent: Wednesday, May 02, 2001 1:39 PM To: [EMAIL PROTECTED] Subject:Re: Spanning Tree Protocol [7:2564] It took me 10 times to get the thing to allow me to create a new account (each time, it would time out when I hit Continue, and when I'd go back all the form would be blank). Anyway, from the Knowledgebase at http://www.apple.com/support/ it appears that portfast or tuning the spanning tree learning->forwarding time down would solve the problem instead of just disabling spanning tree. Also, it appears to not affect TCP/IP services at all, only AppleTalk (which does it's little song-and-dance at boot to get a unique address): http://www.info.apple.com/kbnum/n30922 TITLE Spanning Tree Protocol: AppleTalk Issues Article ID: 30922 Created: 3/10/99 Modified:3/22/01 TOPIC When the Spanning Tree Protocol is enabled on an Ethernet bridge or switch port to which a Macintosh computer is directly connected the computer may be unable to use AppleTalk services. Enable Fast Convergence Several switch manufacturers have extended the Spanning Tree Protocol to allow the convergence time to be reduced. One of the enhancements usually available is the ability to safely and quickly move the port from the blocked state (listening and learning) to the forwarding state. For example, if the bridge detects a single device attached to a port it can quickly assume that no other bridges are attached to that port and move the port to the forwarding state almost immediately. Check the manufacturer's documentation for specific information on how to configure this option for your switch. For example, Cisco has an option called 'portfast' that can be enabled on most of their switches. For additional information on this feature, see: http://www.cisco.com/warp/public/473/12.html Tune the Forward Delay Timer The Forward Delay timer can be tuned down to the minimum value. This value can usually be tuned down to a few seconds, which would give the switch enough time to move to the forwarding state before the address allocation packets were sent by the computer. If you choose to use this solution you must set these timers in the root bridge. The root bridge is the bridge that transmits these timer settings to all other designated bridges. Although you can set these timers on any bridge only the root bridge can effect the overall environment. Products affected AppleTalk services Macintosh computers ranging from the PowerBook 3400 to the latest Power Mac G4 computers. Note: TCP/IP based services are not affected. Question: Why does this only affect later Macintosh computers? Answer: Later computers start up faster causing the packets used for AppleTalk address assignment to be sent while the port is still in the blocked state. Question: Is Apple planning to change the way AppleTalk addresses are allocated to fix the problem? Answer: Apple has no plans to change the algorithms used for AppleTalk address assignment. -- Jason Roysdon, CCNP+Security/CCDP, MCSE, CNA, Network+, A+ List email: [EMAIL PROTECTED] Homepage: http://jason.artoo.net/ ""Hire, Ejay"" wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > There is an Apple knowledgebase article about this issue. > > It is Doc#30922. > > Ejay Hire > > -Original Message- > From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] > Sent: Wednesday, May 02, 2001 2:01 PM > To: [EMAIL PROTECTED] > Subject: RE: Spanning Tree Protocol [7:2564] > > > Believe it or not it's true! We did some test/research on it and we had to > modify some of our login processes to allow the switch to go the STP > process for login, it appeared we were requesting to quickly for the switch. > > > -Original Message- > From: Priscilla Oppenheimer [mailto:[EMAIL PROTECTED]] > Sent: Wednesday, May 02, 2001 1:42 PM > To: [EMAIL PROTECTED] > Subject: Re: Spanning Tree Protocol [7:2564] > > > If it really takes 15-30 seconds for a switch to forward even when portfast > is enabled, I can see why AppleTalk nodes would hate this. An AppleTalk > node sends messages right away to make sure
Re: Cannot browse Some Website: Try this: www.sitemeter.com [7:2984]
A couple of things come to mind: 1) Check the NAT translation timeout period. If it's too short, that can cause problems. 2) Looking at the source code of the site, they are using Java. Is there anything on the PIX blocking Java? Let us know. Will ""Yeo, Ken"" wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > Try with static NAT.Still didn't work. Which version of PIX IOS your > running? > > We are running 5.1 > > -Original Message- > From: Daniel Cotts [mailto:[EMAIL PROTECTED]] > Sent: Friday, April 27, 2001 4:30 PM > To: 'Ken Yeo'; [EMAIL PROTECTED] > Subject: RE: Cannot browse Some Website: Try this: www.sitemeter.com > [7:22 95] > > > We've had that issue going to certain sites. I do know that if you have a > static NAT in your PIX for the inside host that you will connect. Those > using dynamic translations won't. > > > -Original Message- > > From: Ken Yeo [mailto:[EMAIL PROTECTED]] > > Sent: Friday, April 27, 2001 1:11 PM > > To: [EMAIL PROTECTED] > > Subject: PIX: Cannot browse Some Website: Try this: www.sitemeter.com > > [7:2295] > > > > > > Hi, > > > > We are having problem to browse this website: > > > > www.sitemeter.com > > > > Internet explorer will say "Opening page > > http://www.sitemeter.com"; in the > > status bar on the bottom and > > the page never came up. It came back with > > error: > > > > The page cannot be displayed > > We are able to browse the site using dialup to Netzero and > > some other dial > > up ISP. > > I wonder those of you who use PIX try this site? > > Our first thought was reserve DNS was not setup so we setup > > reserve DNS for > > the NATed IP on the PIX, but still cannot browse the site. Any ideas? > > Thanks, > > Ken Yeo > > Network Engineer, > > Aurum Technology > > FAQ, list archives, and subscription info: > > http://www.groupstudy.com/list/cisco.html > > Report misconduct > > and Nondisclosure violations to [EMAIL PROTECTED] > FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=2984&t=2984 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: BCRAN exam [7:2890]
For certain- know your 700's & a few common commands. Phil - Original Message - From: Jason Roysdon To: Sent: Wednesday, May 02, 2001 4:18 PM Subject: Re: BCRAN exam [7:2890] > It's not worth your time. If you know the other areas, 1-3 questions on it > won't hurt you (if that, I've heard rumors of 0 questions). > > When is Cisco going to EOL those piece of junks? Sure, sure, they're great > cheap desktop routers (ip & ipx), but the 800 line isn't that much more. > > -- > Jason Roysdon, CCNP+Security/CCDP, MCSE, CNA, Network+, A+ > List email: [EMAIL PROTECTED] > Homepage: http://jason.artoo.net/ > > > > """[EMAIL PROTECTED], Michael (CAP, AFS, Contractor)""" > wrote in message > [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > > If this has been asked already forgive me but how much of the Series 700 > is > > covered on the BCRAN examI'm guessing not that much... > > > > thanks in advance, > > > > Mike > > FAQ, list archives, and subscription info: > http://www.groupstudy.com/list/cisco.html > > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] > FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=2983&t=2890 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
ANY ONE ATTENDED CISCO PIX COURSE [7:2982]
Hello, I would appreciate if any one could help me in this . For a cisco pix firewall course , how would be the classroom setup and which book should be followed ( other than the official curriculum ) . Regards, Shibu Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=2982&t=2982 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Filtering - WAS RE: NEED CCIE in the WEST VIRGINIA AREA [7:2981]
As an aside, I was involved in testing an e-mail filtering application that my boss and his cohort had the bright idea to try to develop back at the brokerage firm. The problem for brokers and e-mail was the SEC regulation requiring supervision of all correspondence - electronic and paper. Any case, the compliance officer began work developing the lexicon that would be the basis for flagging messages of interest to supervisors. He ended up with some several thousand words and phrases. It turned into a nightmare project for a lot of reasons. But it was interesting to learn first hand the issues surrounding filter triggers based on words. The trade off is speed versus thoroughness. Want messages to take hours to post, be thorough in your filters. Want reasonable posting times, cut back on what is filtered. Happy medium? Respond to complaints individually and make adjustments as things arise. Chuck -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] On Behalf Of Kevin Wigle Sent: Wednesday, May 02, 2001 5:18 PM To: [EMAIL PROTECTED] Subject:Re: NEED CCIE in the WEST VIRGINIA AREA [7:2919] I wanted to jump in but I also didn't want to become Miss Manners for the list :-) however, I wondered how that got through Paul's many filters.. ?? Kevin Wigle - Original Message - From: "Bradley J. Wilson" To: Sent: Wednesday, 02 May, 2001 19:52 Subject: Re: NEED CCIE in the WEST VIRGINIA AREA [7:2919] > Um...Paul, if you would, please ban this guy. :-) Thanks. > > Johnny, what parting gifts do we have for our contestant?... > > > - Original Message - snip Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=2981&t=2981 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Specializations MCNS-Response from Cisco [7:1959]
No -- the security specialization (with one exam) ended in January sometime. Now it's four exams. There are other CCNP specializations like VOIP, and ATM that require only one exam that are still obtainable until May 14. Good luck. Greg Macaulay oldest CCNP/DP on earth lifetime member of AARP retired attorney/law professor -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Zoltan Nagy Sent: Wednesday, April 25, 2001 5:19 PM To: [EMAIL PROTECTED] Subject: Re: Specializations MCNS-Response from Cisco [7:1959] I also got this "template" answer twice when I contacted Cisco through the Certification Tracking System. They ignored my specific question and sent me the same prewritten answer. So I still do not know CCNP+MCNS before May 14th is CCNP+Security or what? > So what exactly are they saying? > FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=2980&t=1959 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: NEED CCIE in the WEST VIRGINIA AREA [7:2919]
A decrease in his inbound and outbound email volume. That would be a pretty lovely parting gift, wouldn't you say? Oh, and a partridge in a pear tree. ;-) -e- - Original Message - From: "Bradley J. Wilson" To: Sent: Wednesday, May 02, 2001 4:52 PM Subject: Re: NEED CCIE in the WEST VIRGINIA AREA [7:2919] > Um...Paul, if you would, please ban this guy. :-) Thanks. > > Johnny, what parting gifts do we have for our contestant?... > > > - Original Message - > From: william ward > To: [EMAIL PROTECTED] > Sent: Wednesday, May 02, 2001 7:26 PM > Subject: Re: NEED CCIE in the WEST VIRGINIA AREA [7:2919] > > > Claudette needs to pull her head out of her ass and read a trade rag once > and awhile or do some form research before trying to recruit somebody. Dumb > bitch. And she wants the CCIE to call HER! Lazy and Stupid > > > >From: "Donald B Johnson jr" > >Reply-To: "Donald B Johnson jr" > >To: [EMAIL PROTECTED] > >Subject: Re: NEED CCIE in the WEST VIRGINIA AREA [7:2919] > >Date: Wed, 2 May 2001 16:57:25 -0400 > > > >Snag, I'm a Cabletron certified CCIE > >Foiled again > > > >- Original Message - > >From: "Chuck Larrieu" > >To: > >Sent: Wednesday, May 02, 2001 11:52 AM > >Subject: RE: NEED CCIE in the WEST VIRGINIA AREA [7:2919] > > > > > > > Non Cisco certified CCIE's need not apply :-> > > > > > > > > > > > > -Original Message- > > > From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] On Behalf Of > > > Claudette Graham > > > Sent: Wednesday, May 02, 2001 11:02 AM > > > To: [EMAIL PROTECTED] > > > Subject: NEED CCIE in the WEST VIRGINIA AREA [7:2919] > > > > > > The following is a job description I recently received from my client > >which > > > needs to be filled immediately. > > > > > > We are looking for a Cisco Certified CCIE, living and working in West > > > Virginia. > > > > > > Please send resume and rates as soon as possible. > > > > > > CCIE > > > > > > DURATION: 1 YEAR (CONTRACT) > > > > > > START DATE: 7/1/01 - 6/30/02 > > > > > > LOCATION: WEST VIRGINIA > > > > > > > > > NEED TO FILL NO LATER THAN FRIDAY, MAY 4TH 2001 > > > > > > DESCRIPTION OF WORK ASSIGNMENT: > > > > > > The vendor and/or his protigies should be authorized to ser vice 3Com, > > > Nortel Networks, and Enterasys/Cabletron equipment currently installed > >in > > > State agencies. > > > The vendor should provide proof from the manufacturer confirming this > > > authorization to service the equipment and a list of the products > >covered. > > > > > > PROJECT / ENVIRONMENT DESCRIPTION: > > > > > > What type of work is being done? > > > * Custom Application Development > > > * Application Management Outsourcing > > > * Package Integration > > > * Application Enabling Design > > > * Solutions Consulting & Integration > > > * Other network hardware installation > > > > > > > > > LOCALS PLEASE > > > > > > PLEASE FORWARD A COPY OF YOUR RESUME AND CALL ME > >IMMEDIATELY...Thanks > > > (:) ) > > > > > > Claudette > > > > > > > > > * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * > > > Claudette Graham > > > Technical Recruiter > > > American Employment Solutions, Inc > > > Phone: 800-995-6858 > > > Fax: 888-995-8788 > > > Email: [EMAIL PROTECTED] > > > Website: www.amesinc.org > > > > > > * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * > > > FAQ, list archives, and subscription info: > > > http://www.groupstudy.com/list/cisco.html > > > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] > > > FAQ, list archives, and subscription info: > >http://www.groupstudy.com/list/cisco.html > > > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] > >FAQ, list archives, and subscription info: > >http://www.groupstudy.com/list/cisco.html > >Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] > > _ > Get your FREE download of MSN Explorer at http://explorer.msn.com > FAQ, list archives, and subscription info: > http://www.groupstudy.com/list/cisco.html > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] > FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=2979&t=2919 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: NEED CCIE in the WEST VIRGINIA AREA [7:2919]
Bigotry and tiny-mindedness are often hard for a computer to spot. - Original Message - From: Kevin Wigle To: Bradley J. Wilson ; [EMAIL PROTECTED] Sent: Wednesday, May 02, 2001 8:04 PM Subject: Re: NEED CCIE in the WEST VIRGINIA AREA [7:2919] I wanted to jump in but I also didn't want to become Miss Manners for the list :-) however, I wondered how that got through Paul's many filters.. ?? Kevin Wigle - Original Message - From: "Bradley J. Wilson" To: Sent: Wednesday, 02 May, 2001 19:52 Subject: Re: NEED CCIE in the WEST VIRGINIA AREA [7:2919] > Um...Paul, if you would, please ban this guy. :-) Thanks. > > Johnny, what parting gifts do we have for our contestant?... > > > - Original Message - > From: william ward > To: [EMAIL PROTECTED] > Sent: Wednesday, May 02, 2001 7:26 PM > Subject: Re: NEED CCIE in the WEST VIRGINIA AREA [7:2919] > > > Claudette needs to pull her head out of her ass and read a trade rag once > and awhile or do some form research before trying to recruit somebody. Dumb > bitch. And she wants the CCIE to call HER! Lazy and Stupid > > > >From: "Donald B Johnson jr" > >Reply-To: "Donald B Johnson jr" > >To: [EMAIL PROTECTED] > >Subject: Re: NEED CCIE in the WEST VIRGINIA AREA [7:2919] > >Date: Wed, 2 May 2001 16:57:25 -0400 > > > >Snag, I'm a Cabletron certified CCIE > >Foiled again > > > >- Original Message - > >From: "Chuck Larrieu" > >To: > >Sent: Wednesday, May 02, 2001 11:52 AM > >Subject: RE: NEED CCIE in the WEST VIRGINIA AREA [7:2919] > > > > > > > Non Cisco certified CCIE's need not apply :-> > > > > > > > > > > > > -Original Message- > > > From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] On Behalf Of > > > Claudette Graham > > > Sent: Wednesday, May 02, 2001 11:02 AM > > > To: [EMAIL PROTECTED] > > > Subject: NEED CCIE in the WEST VIRGINIA AREA [7:2919] > > > > > > The following is a job description I recently received from my client > >which > > > needs to be filled immediately. > > > > > > We are looking for a Cisco Certified CCIE, living and working in West > > > Virginia. > > > > > > Please send resume and rates as soon as possible. > > > > > > CCIE > > > > > > DURATION: 1 YEAR (CONTRACT) > > > > > > START DATE: 7/1/01 - 6/30/02 > > > > > > LOCATION: WEST VIRGINIA > > > > > > > > > NEED TO FILL NO LATER THAN FRIDAY, MAY 4TH 2001 > > > > > > DESCRIPTION OF WORK ASSIGNMENT: > > > > > > The vendor and/or his protigies should be authorized to ser vice 3Com, > > > Nortel Networks, and Enterasys/Cabletron equipment currently installed > >in > > > State agencies. > > > The vendor should provide proof from the manufacturer confirming this > > > authorization to service the equipment and a list of the products > >covered. > > > > > > PROJECT / ENVIRONMENT DESCRIPTION: > > > > > > What type of work is being done? > > > * Custom Application Development > > > * Application Management Outsourcing > > > * Package Integration > > > * Application Enabling Design > > > * Solutions Consulting & Integration > > > * Other network hardware installation > > > > > > > > > LOCALS PLEASE > > > > > > PLEASE FORWARD A COPY OF YOUR RESUME AND CALL ME > >IMMEDIATELY...Thanks > > > (:) ) > > > > > > Claudette > > > > > > > > > * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * > > > Claudette Graham > > > Technical Recruiter > > > American Employment Solutions, Inc > > > Phone: 800-995-6858 > > > Fax: 888-995-8788 > > > Email: [EMAIL PROTECTED] > > > Website: www.amesinc.org > > > > > > * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * > > > FAQ, list archives, and subscription info: > > > http://www.groupstudy.com/list/cisco.html > > > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] > > > FAQ, list archives, and subscription info: > >http://www.groupstudy.com/list/cisco.html > > > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] > >FAQ, list archives, and subscription info: > >http://www.groupstudy.com/list/cisco.html > >Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] > > _ > Get your FREE download of MSN Explorer at http://explorer.msn.com > FAQ, list archives, and subscription info: > http://www.groupstudy.com/list/cisco.html > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] > FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=2978&t=2919 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
ISIS Routing [7:2977]
Hi Folks, I am bit new to ISIS and working on Mark's Lab 11 (excluding the ATM LANE). When configuring ISIS routing over Framne Relay, I cannot get the ISIS to form adjacences to with other peer router over Frame Relay. I tried all that I can think about, searched CCO for references and also the group study archive. But I can't still figure out what is wroung below The R1 is the Frame Relay hub router and R5 and R6 are spoke routers: R1: clns routing ! ! interface Ethernet0/0 ip address 10.1.1.1 255.255.0.0 no ip directed-broadcast ip router isis 11 no keepalive ! interface Serial0/0 no ip address no ip directed-broadcast encapsulation frame-relay no ip mroute-cache no fair-queue ! interface Serial0/0.1 point-to-point ip address 10.16.1.1 255.255.0.0 no ip directed-broadcast ip router isis 11 frame-relay interface-dlci 600 ! interface Serial0/0.2 point-to-point ip address 10.13.1.1 255.255.0.0 no ip directed-broadcast ip router isis 11 frame-relay interface-dlci 300 ! interface Serial0/0.3 point-to-point ip address 10.15.1.1 255.255.0.0 no ip directed-broadcast ip router isis 11 frame-relay interface-dlci 500 ! router isis 11 net 00.0002..0c00..00 ! ip classless R5: clns routing ! ! ! ! ! interface Ethernet0 ip address 150.10.10.1 255.255.255.0 no ip directed-broadcast ip ospf message-digest-key 1 md5 CCIE ip ospf interface-retry 0 ip ospf priority 200 ! interface Serial0 ip address 10.15.1.2 255.255.0.0 no ip directed-broadcast encapsulation frame-relay no ip mroute-cache no fair-queue isis circuit-type level-1 frame-relay map clns 500 broadcast frame-relay map ip 10.15.1.1 500 broadcast ! ! router ospf 11 area 0 authentication message-digest network 150.10.10.0 0.0.0.255 area 0 ! router isis 11 net 00.0002..0c00..00 ! ip classless ! R6: clns routing ! ! ! ! ! interface Ethernet0 ip address 10.2.1.1 255.255.0.0 no ip directed-broadcast ip router isis 11 no keepalive ! interface Serial0 ip address 10.16.1.2 255.255.0.0 no ip directed-broadcast ip router isis 11 encapsulation frame-relay no ip mroute-cache frame-relay map clns 600 broadcast frame-relay map ip 10.16.1.1 600 broadcast ! interface Serial1 no ip address no ip directed-broadcast shutdown ! interface BRI0 no ip address no ip directed-broadcast shutdown ! router isis 11 net 00.0002..0c00..00 ! ip classless ! Thanking you in advance Harish Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=2977&t=2977 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: NEED CCIE in the WEST VIRGINIA AREA [7:2919]
I wanted to jump in but I also didn't want to become Miss Manners for the list :-) however, I wondered how that got through Paul's many filters.. ?? Kevin Wigle - Original Message - From: "Bradley J. Wilson" To: Sent: Wednesday, 02 May, 2001 19:52 Subject: Re: NEED CCIE in the WEST VIRGINIA AREA [7:2919] > Um...Paul, if you would, please ban this guy. :-) Thanks. > > Johnny, what parting gifts do we have for our contestant?... > > > - Original Message - > From: william ward > To: [EMAIL PROTECTED] > Sent: Wednesday, May 02, 2001 7:26 PM > Subject: Re: NEED CCIE in the WEST VIRGINIA AREA [7:2919] > > > Claudette needs to pull her head out of her ass and read a trade rag once > and awhile or do some form research before trying to recruit somebody. Dumb > bitch. And she wants the CCIE to call HER! Lazy and Stupid > > > >From: "Donald B Johnson jr" > >Reply-To: "Donald B Johnson jr" > >To: [EMAIL PROTECTED] > >Subject: Re: NEED CCIE in the WEST VIRGINIA AREA [7:2919] > >Date: Wed, 2 May 2001 16:57:25 -0400 > > > >Snag, I'm a Cabletron certified CCIE > >Foiled again > > > >- Original Message - > >From: "Chuck Larrieu" > >To: > >Sent: Wednesday, May 02, 2001 11:52 AM > >Subject: RE: NEED CCIE in the WEST VIRGINIA AREA [7:2919] > > > > > > > Non Cisco certified CCIE's need not apply :-> > > > > > > > > > > > > -Original Message- > > > From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] On Behalf Of > > > Claudette Graham > > > Sent: Wednesday, May 02, 2001 11:02 AM > > > To: [EMAIL PROTECTED] > > > Subject: NEED CCIE in the WEST VIRGINIA AREA [7:2919] > > > > > > The following is a job description I recently received from my client > >which > > > needs to be filled immediately. > > > > > > We are looking for a Cisco Certified CCIE, living and working in West > > > Virginia. > > > > > > Please send resume and rates as soon as possible. > > > > > > CCIE > > > > > > DURATION: 1 YEAR (CONTRACT) > > > > > > START DATE: 7/1/01 - 6/30/02 > > > > > > LOCATION: WEST VIRGINIA > > > > > > > > > NEED TO FILL NO LATER THAN FRIDAY, MAY 4TH 2001 > > > > > > DESCRIPTION OF WORK ASSIGNMENT: > > > > > > The vendor and/or his protigies should be authorized to ser vice 3Com, > > > Nortel Networks, and Enterasys/Cabletron equipment currently installed > >in > > > State agencies. > > > The vendor should provide proof from the manufacturer confirming this > > > authorization to service the equipment and a list of the products > >covered. > > > > > > PROJECT / ENVIRONMENT DESCRIPTION: > > > > > > What type of work is being done? > > > * Custom Application Development > > > * Application Management Outsourcing > > > * Package Integration > > > * Application Enabling Design > > > * Solutions Consulting & Integration > > > * Other network hardware installation > > > > > > > > > LOCALS PLEASE > > > > > > PLEASE FORWARD A COPY OF YOUR RESUME AND CALL ME > >IMMEDIATELY...Thanks > > > (:) ) > > > > > > Claudette > > > > > > > > > * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * > > > Claudette Graham > > > Technical Recruiter > > > American Employment Solutions, Inc > > > Phone: 800-995-6858 > > > Fax: 888-995-8788 > > > Email: [EMAIL PROTECTED] > > > Website: www.amesinc.org > > > > > > * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * > > > FAQ, list archives, and subscription info: > > > http://www.groupstudy.com/list/cisco.html > > > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] > > > FAQ, list archives, and subscription info: > >http://www.groupstudy.com/list/cisco.html > > > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] > >FAQ, list archives, and subscription info: > >http://www.groupstudy.com/list/cisco.html > >Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] > > _ > Get your FREE download of MSN Explorer at http://explorer.msn.com > FAQ, list archives, and subscription info: > http://www.groupstudy.com/list/cisco.html > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] > FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=2976&t=2919 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Spanning Tree Protocol [7:2564]
Hey, it's fine with me. IP has finally caught up to the 1984 features of AppleTalk (dynamic addressing, service location protocol). ;-) At 06:25 PM 5/2/01, Tom Lisa wrote: >Chuck, you do like living dangerously, don't you?!! :) > >Prof. Tom Lisa, CCAI >Community College of Southern Nevada >Cisco Regional Networking Academy > >Chuck Larrieu wrote: > > > The other way to solve the problem would be to delete AppleTalk and use > > native IP on your Mac's ;-> > > > > ( can't wait for PO's response to this one! ) > > > > chuck > > > > -Original Message- > > From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] > > Sent: Wednesday, May 02, 2001 1:39 PM > > To: [EMAIL PROTECTED] > > Subject:Re: Spanning Tree Protocol [7:2564] > > > > It took me 10 times to get the thing to allow me to create a new account > > (each time, it would time out when I hit Continue, and when I'd go back all > > the form would be blank). Anyway, from the Knowledgebase at > > http://www.apple.com/support/ it appears that portfast or tuning the > > spanning tree learning->forwarding time down would solve the problem >instead > > of just disabling spanning tree. Also, it appears to not affect TCP/IP > > services at all, only AppleTalk (which does it's little song-and-dance at > > boot to get a unique address): > > > > http://www.info.apple.com/kbnum/n30922 > > > > TITLE > > Spanning Tree Protocol: AppleTalk Issues > > Article ID: 30922 > > Created: 3/10/99 > > Modified:3/22/01 > > > > TOPIC > > When the Spanning Tree Protocol is enabled on an Ethernet bridge or switch > > port to which a Macintosh computer is directly connected the computer may >be > > unable to use AppleTalk services. > > > > Enable Fast Convergence > > > > Several switch manufacturers have extended the Spanning Tree Protocol to > > allow the convergence time to be reduced. One of the enhancements usually > > available is the ability to safely and quickly move the port from the > > blocked state (listening and learning) to the forwarding state. For >example, > > if the bridge detects a single device attached to a port it can quickly > > assume that no other bridges are attached to that port and move the port to > > the forwarding state almost immediately. Check the manufacturer's > > documentation for specific information on how to configure this option for > > your switch. For example, Cisco has an option called 'portfast' that can be > > enabled on most of their switches. For additional information on this > > feature, see: http://www.cisco.com/warp/public/473/12.html > > > > Tune the Forward Delay Timer > > > > The Forward Delay timer can be tuned down to the minimum value. This value > > can usually be tuned down to a few seconds, which would give the switch > > enough time to move to the forwarding state before the address allocation > > packets were sent by the computer. If you choose to use this solution you > > must set these timers in the root bridge. The root bridge is the bridge >that > > transmits these timer settings to all other designated bridges. Although >you > > can set these timers on any bridge only the root bridge can effect the > > overall environment. > > > > Products affected > > > > AppleTalk services > > Macintosh computers ranging from the PowerBook 3400 to the latest Power Mac > > G4 computers. > > Note: TCP/IP based services are not affected. > > > > Question: Why does this only affect later Macintosh computers? > > > > Answer: Later computers start up faster causing the packets used for > > AppleTalk address assignment to be sent while the port is still in the > > blocked state. > > > > Question: Is Apple planning to change the way AppleTalk addresses are > > allocated to fix the problem? > > > > Answer: Apple has no plans to change the algorithms used for AppleTalk > > address assignment. > > > > -- > > Jason Roysdon, CCNP+Security/CCDP, MCSE, CNA, Network+, A+ > > List email: [EMAIL PROTECTED] > > Homepage: http://jason.artoo.net/ > > > > ""Hire, Ejay"" wrote in message > > [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > > > There is an Apple knowledgebase article about this issue. > > > > > > It is Doc#30922. > > > > > > Ejay Hire > > > > > > -Original Message- > > > From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] > > > Sent: Wednesday, May 02, 2001 2:01 PM > > > To: [EMAIL PROTECTED] > > > Subject: RE: Spanning Tree Protocol [7:2564] > > > > > > > > > Believe it or not it's true! We did some test/research on it and we had > > to > > > modify some of our login processes to allow the switch to go the STP > > > process for login, it appeared we were requesting to quickly for the > > switch. > > > > > > > > > -Original Message- > > > From: Priscilla Oppenheimer [mailto:[EMAIL PROTECTED]] > > > Sent: Wednesday, May 02, 2001 1:42 PM > > > To: [EMAIL PROTECTED] > > > Subject: Re: Spanning Tree Protocol [7:2564] > > > > > > > > > If it really takes 15-30 seconds for a switch to forward even when > > po
Re: Spanning Tree Protocol [7:2564]
At 06:12 PM 5/2/01, Jason Roysdon wrote: >True about that being a long time, but I think that's just a matter of how >fast did I plug it in, and how long did it take for my NIC to see it (and >which is a good 1 second delay from when I plug it in and when the NIC LED >goes green). Yes, I see what you're saying. I think as long as portfast is enabled, AppleTalk devices should be OK. That's the bottom line. Thanks for all your testing! Priscilla >The one thing I forgot to test was without spanning tree enabled. I tested >the switch with 'no spanning-tree' for 10 times, and 10 times with it >optimally configured with spanning tree on (portfast, full duplex, 100mbit, >power inline never). The hardest thing to test is that Win2k will generate >"Destination host unreachable." when no TCP/IP interfaces are up. It seemed >that if instead of letting a constant ping run and watch pagefulls of those >messages go by, I would instead hit enter as soon as I saw the NIC LED go >green. This definately produces faster results (since the stack isn't being >accessed, perhaps it initilizes faster?). > >Anyway, at first I forgot I had DHCP running and was wondering why it was >taking so long (5-7 seconds). It acted the same with spanning tree >disabled, and optimized as stated above. When I configured a static >address, it dropped to 3-4 seconds for both, just as before. > >Of course, this isn't scientific, and Win2k doesn't really let you test the >way you could with Win9x or even NT4 (where you could leave it pinging, and >it would just sit there and respond with normal timeouts). Oh, growl, I >just remembered I have Win98SE on this laptop. I'll save this post and go >try it out. > >Ok, so I just rebooted to Win98. I must say, it handles lose of >connectivity much better than Win2k, IMHO. I guess it all depends on what >you want it to do: If it's a server/router, then you want the IP stack to >know right away when there is a lost connection and drop it; if it's a >desktop, you don't want to concern the user too fast (so long as the NIC >gets plugged back in rather fast, or they're not generating IP traffic, no >big deal). > >What I dislike on Win2k is that the second you lose your connection, you >lose your DHCP lease (it remembers it and will try to renegotiate for it, >but that IP/NIC is gone from the stack). With Win98, you still have it, so >no need to re-negotiate for it when your connection comes back. That >explains why DHCP was taking 2 extra seconds with Win2k (my DHCP server >pings twice to make sure it's not in use before giving it back out). Win98 >never checks the DHCP lease due to cable loss, so long as the lease is still >valid. > >Anyway, the results seemed to show no discernable different between >optimized spanning tree, and diabled spanning tree. I also tested with >using 'shutdown' and 'no shutdown' instead of physically removing the cable. >Much easier, but the results were the same (my NIC couldn't tell the >difference). 3-4 seconds after bringing the the switch interface up, >pinging would start. The biggest thing I ran into with Win98 is that I >couldn't shut/no shut or unplug/plug too fast, or it would never bring the >stack back up no matter how long I left it (even though the NIC LED was on). >I needed to let it have a good 1-2 seconds of disconnect for it to work. > >Perhaps Apple can tell the difference, but 3-4 seconds seemed constant with >or without spanning tree. Perhaps some of the other Cisco switches or OS >bases do things differently, but I don't have access to anything else at the >moment. Anyone else want to post some results with other gear? I was using >'debug spanning events' and 'debug interface f0/6' to see the original >content I was posting. > >-- >Jason Roysdon, CCNP+Security/CCDP, MCSE, CNA, Network+, A+ >List email: [EMAIL PROTECTED] >Homepage: http://jason.artoo.net/ > > > >""Priscilla Oppenheimer"" wrote in message >[EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > > Thanks for the testing! I have bad news for you. ;-) Three or 4 seconds is > > a lot of time. > > > > An AppleTalk device sends its AARP frame to see if its address is unique >10 > > times, with only 1/5 of a second between tries. Then it sends a > > ZIPGetNetInfo. It tries that 3 times, I think with the same timeout. This > > could happen before the switch is forwarding, even with portfast enabled >it > > seems. (These timeout values may be dated. I haven't looked at AppleTalk >in > > a while! But I bet it's still really fast, perhaps even faster on a G4? >;-) > > > > My guess is that IPX and DHCP are really fast too. ARGH. > > > > Priscilla > > > > At 03:15 PM 5/2/01, Jason Roysdon wrote: > > >I wonder what switch and software version you were running at the time? >I'm > > >trying this on a Catalyst 3524 XL Inline Power running 12.0(5.2)XU (I > > >haven't upgraded it, so that's whatever it shipped with). > > > > > >I did a number of tests (but not enough samples to make it 100% accurat
Re: NEED CCIE in the WEST VIRGINIA AREA [7:2919]
Um...Paul, if you would, please ban this guy. :-) Thanks. Johnny, what parting gifts do we have for our contestant?... - Original Message - From: william ward To: [EMAIL PROTECTED] Sent: Wednesday, May 02, 2001 7:26 PM Subject: Re: NEED CCIE in the WEST VIRGINIA AREA [7:2919] Claudette needs to pull her head out of her ass and read a trade rag once and awhile or do some form research before trying to recruit somebody. Dumb bitch. And she wants the CCIE to call HER! Lazy and Stupid >From: "Donald B Johnson jr" >Reply-To: "Donald B Johnson jr" >To: [EMAIL PROTECTED] >Subject: Re: NEED CCIE in the WEST VIRGINIA AREA [7:2919] >Date: Wed, 2 May 2001 16:57:25 -0400 > >Snag, I'm a Cabletron certified CCIE >Foiled again > >- Original Message - >From: "Chuck Larrieu" >To: >Sent: Wednesday, May 02, 2001 11:52 AM >Subject: RE: NEED CCIE in the WEST VIRGINIA AREA [7:2919] > > > > Non Cisco certified CCIE's need not apply :-> > > > > > > > > -Original Message- > > From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] On Behalf Of > > Claudette Graham > > Sent: Wednesday, May 02, 2001 11:02 AM > > To: [EMAIL PROTECTED] > > Subject: NEED CCIE in the WEST VIRGINIA AREA [7:2919] > > > > The following is a job description I recently received from my client >which > > needs to be filled immediately. > > > > We are looking for a Cisco Certified CCIE, living and working in West > > Virginia. > > > > Please send resume and rates as soon as possible. > > > > CCIE > > > > DURATION: 1 YEAR (CONTRACT) > > > > START DATE: 7/1/01 - 6/30/02 > > > > LOCATION: WEST VIRGINIA > > > > > > NEED TO FILL NO LATER THAN FRIDAY, MAY 4TH 2001 > > > > DESCRIPTION OF WORK ASSIGNMENT: > > > > The vendor and/or his protigies should be authorized to ser vice 3Com, > > Nortel Networks, and Enterasys/Cabletron equipment currently installed >in > > State agencies. > > The vendor should provide proof from the manufacturer confirming this > > authorization to service the equipment and a list of the products >covered. > > > > PROJECT / ENVIRONMENT DESCRIPTION: > > > > What type of work is being done? > > * Custom Application Development > > * Application Management Outsourcing > > * Package Integration > > * Application Enabling Design > > * Solutions Consulting & Integration > > * Other network hardware installation > > > > > > LOCALS PLEASE > > > > PLEASE FORWARD A COPY OF YOUR RESUME AND CALL ME >IMMEDIATELY...Thanks > > (:) ) > > > > Claudette > > > > > > * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * > > Claudette Graham > > Technical Recruiter > > American Employment Solutions, Inc > > Phone: 800-995-6858 > > Fax: 888-995-8788 > > Email: [EMAIL PROTECTED] > > Website: www.amesinc.org > > > > * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * > > FAQ, list archives, and subscription info: > > http://www.groupstudy.com/list/cisco.html > > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] > > FAQ, list archives, and subscription info: >http://www.groupstudy.com/list/cisco.html > > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] >FAQ, list archives, and subscription info: >http://www.groupstudy.com/list/cisco.html >Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ Get your FREE download of MSN Explorer at http://explorer.msn.com FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=2973&t=2919 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: OFF TOPIC -Job Offer without Interview?? [7:2369]
I used to work for Ingram Micro and I managed a number of the Cisco VAR accounts. They have to have a certain number of cisco certified engineers on staff to qualify for the various partner levels with Cisco. Cisco also gives them deep pocket discounts depending on that level (somewhere in the neighborhood of 25-33 percent off list. Sorry to say but your just a number and a discount coupon to this shop. I say that because they don't really seem to care what kind of experience you have or what kind of appearance you make, only that you have a cert number with the vendor that either maintains or upgrades their partner status. >From: "Jonathan Hays" >Reply-To: "Jonathan Hays" >To: [EMAIL PROTECTED] >Subject: Re: OFF TOPIC -Job Offer without Interview?? [7:2369] >Date: Mon, 30 Apr 2001 16:10:25 -0400 > >The reseller may be desperate for certified people which means they WILL >take any warm >body. But another aspect of this situation is that you need to take charge >of your part >of the interview - remember it's a two-party transaction. My advice - >Never >take a job >or promise to take a job without seeing the working environment and meeting >your boss >and coworkers. In fact if the employer doesn't want to go through the whole >normal >process you should politely insist on it - ask all the questions, etc. I >speak from >experience. I had a very lucrative and firm contract offer and start date >over the phone >about 3 years ago and I demanded a face-to-face plus a tour of the working >environment. >The interview was very disappointing and I turned down the offer. > >Jonathan > >"Howard C. Berkowitz" wrote: > > > Unfortunately, you are running into something endemic to the DC area, > > especially the Federal government. Agencies have head count > > restrictions, but still need staffing. So, there have evolved a > > class of brokers that rent out people to the using organizations. > > The brokers often mark up your rate by 100% or more, although they do > > have to float receivables for 60 days or more. > > > > Becoming a Cisco partner just needs the right certificated people, > > which, at the lower level, could be the principals. As I remember, > > though, continued partner status also means a certain level of sales. > > A pure body shop won't have equipment sales. Unfortunately again, > > it's often easier for government agencies to deal with a small > > business reseller, perhaps under minority business 8(a) setasides -- > > they can just go make small purchases without complex procurement. > > > > Don't expect any real support from your direct employer, but keep an > > open mind about the client. I spent three good solid years at the US > > Labor Department as an ostensibly "temporary contractor," which is > > where I really broke into system programming and networking. Some > > clients exploit the system, but others recognize that it's really > > their job to motivate the contractors and can be quite decent to > > them. Good clients may find loopholes for such things as training -- > > they can't pay your salary to attend an offsite class, but they may > > have in-house classes and let you "drop in" -- even with credit. > > > > >Hey Group, > > > > > >Thanks for all the input -- I really do appreciate it. > > > > > >Just to add a few facts to this -- the company that called me -- is a >Cisco > > >SILVER partner -- not simply a pure unadulterated head-hunter -- sort >of a > > >hybrid (like EIGRP!! ). > > > > > >Of course it goes without saying that -- as one person said -- it's an > > >on-the-job-interview. If I -- or any of the others who report on day 1 > > >aren't acceptable -- then we simply are not there on Day 2. But what >does > > >it say about the Silver Partner?? Is this guy honest?? If he fails to > > >properly screen the people he sends to the client -- isn't he -- at the >very > > >least -- intellectually dishonest?? And if that's true -- how would he >treat > > >his employees?? Would he promise the moon (e.g. oh yeah, paychecks >every >two > > >weeks) and then not come through?? > > > > > >Who is our loyalty to go towars?? The client -- who we know is being >given > > >less than bargained for -- or the guy who's paying for our salary?? I > > >already know the practical answer -- but somewhere in those Cisco books >we > > >all study -- I'm sure it also says that we are to have honesty and >integrity > > >in our dealings with clients. Doesn't it?? Oh well. . . . > > > > > >Thanks again to all of you for your time in answering. > > > > > >Gerg Macaulay > > >Oldest CCNP/DP on Earth (really!!!) > > >Lifetime member of AARP > > >Retired Attorney/Law Professor > > > > > > > > > > > >-Original Message- > > >From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of > > >Priscilla Oppenheimer > > >Sent: Saturday, April 28, 2001 2:38 PM > > >To: [EMAIL PROTECTED] > > >Subject: Re: OFF TOPIC -Job Offer without Interview?? [7:2369] > > > > > > > > >I think it would
CCDA [7:2971]
Dear Group, I guess I've been sleeping again.. It used to be the case that getting CCDA meant that you have passed CCNA and DCN. However looking at CCO, it seems that CCDA is now a one exam cert also - although: CCDA Prerequisites Knowledge and skills to install, configure, and operate small networks. CCNA certification is highly recommended.<- But not required!! Making it easier to get the junior certs I guess. Whether that is a good thing Kevin Wigle Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=2971&t=2971 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: NEED CCIE in the WEST VIRGINIA AREA [7:2919]
Claudette needs to pull her head out of her ass and read a trade rag once and awhile or do some form research before trying to recruit somebody. Dumb bitch. And she wants the CCIE to call HER! Lazy and Stupid >From: "Donald B Johnson jr" >Reply-To: "Donald B Johnson jr" >To: [EMAIL PROTECTED] >Subject: Re: NEED CCIE in the WEST VIRGINIA AREA [7:2919] >Date: Wed, 2 May 2001 16:57:25 -0400 > >Snag, I'm a Cabletron certified CCIE >Foiled again > >- Original Message - >From: "Chuck Larrieu" >To: >Sent: Wednesday, May 02, 2001 11:52 AM >Subject: RE: NEED CCIE in the WEST VIRGINIA AREA [7:2919] > > > > Non Cisco certified CCIE's need not apply :-> > > > > > > > > -Original Message- > > From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] On Behalf Of > > Claudette Graham > > Sent: Wednesday, May 02, 2001 11:02 AM > > To: [EMAIL PROTECTED] > > Subject: NEED CCIE in the WEST VIRGINIA AREA [7:2919] > > > > The following is a job description I recently received from my client >which > > needs to be filled immediately. > > > > We are looking for a Cisco Certified CCIE, living and working in West > > Virginia. > > > > Please send resume and rates as soon as possible. > > > > CCIE > > > > DURATION: 1 YEAR (CONTRACT) > > > > START DATE: 7/1/01 - 6/30/02 > > > > LOCATION: WEST VIRGINIA > > > > > > NEED TO FILL NO LATER THAN FRIDAY, MAY 4TH 2001 > > > > DESCRIPTION OF WORK ASSIGNMENT: > > > > The vendor and/or his protigies should be authorized to ser vice 3Com, > > Nortel Networks, and Enterasys/Cabletron equipment currently installed >in > > State agencies. > > The vendor should provide proof from the manufacturer confirming this > > authorization to service the equipment and a list of the products >covered. > > > > PROJECT / ENVIRONMENT DESCRIPTION: > > > > What type of work is being done? > > * Custom Application Development > > * Application Management Outsourcing > > * Package Integration > > * Application Enabling Design > > * Solutions Consulting & Integration > > * Other network hardware installation > > > > > > LOCALS PLEASE > > > > PLEASE FORWARD A COPY OF YOUR RESUME AND CALL ME >IMMEDIATELY...Thanks > > (:) ) > > > > Claudette > > > > > > * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * > > Claudette Graham > > Technical Recruiter > > American Employment Solutions, Inc > > Phone: 800-995-6858 > > Fax: 888-995-8788 > > Email: [EMAIL PROTECTED] > > Website: www.amesinc.org > > > > * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * > > FAQ, list archives, and subscription info: > > http://www.groupstudy.com/list/cisco.html > > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] > > FAQ, list archives, and subscription info: >http://www.groupstudy.com/list/cisco.html > > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] >FAQ, list archives, and subscription info: >http://www.groupstudy.com/list/cisco.html >Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ Get your FREE download of MSN Explorer at http://explorer.msn.com Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=2970&t=2919 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: **LAB SWAP = SAN JOSE** [7:2968]
Please don't respond to the "Jim Redford" address. I was at a friends computer. Send replies to [EMAIL PROTECTED] Thanks ""Jim Redford"" wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > I have a seat in the R/S lab in San Jose scheduled for May 31st. I also just > that learned that I'm getting shipped off on a one month contract ... far > away from my practice lab. > > I would be willing to trade for a July/August (maybe even early Sept.) date > in San Jose. > > Please respond offline > > > Al Walter > [EMAIL PROTECTED] > FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=2969&t=2968 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
**LAB SWAP = SAN JOSE** [7:2968]
I have a seat in the R/S lab in San Jose scheduled for May 31st. I also just that learned that I'm getting shipped off on a one month contract ... far away from my practice lab. I would be willing to trade for a July/August (maybe even early Sept.) date in San Jose. Please respond offline Al Walter [EMAIL PROTECTED] Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=2968&t=2968 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Spanning Tree Protocol [7:2564]
Chuck, you do like living dangerously, don't you?!! :) Prof. Tom Lisa, CCAI Community College of Southern Nevada Cisco Regional Networking Academy Chuck Larrieu wrote: > The other way to solve the problem would be to delete AppleTalk and use > native IP on your Mac's ;-> > > ( can't wait for PO's response to this one! ) > > chuck > > -Original Message- > From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] > Sent: Wednesday, May 02, 2001 1:39 PM > To: [EMAIL PROTECTED] > Subject:Re: Spanning Tree Protocol [7:2564] > > It took me 10 times to get the thing to allow me to create a new account > (each time, it would time out when I hit Continue, and when I'd go back all > the form would be blank). Anyway, from the Knowledgebase at > http://www.apple.com/support/ it appears that portfast or tuning the > spanning tree learning->forwarding time down would solve the problem instead > of just disabling spanning tree. Also, it appears to not affect TCP/IP > services at all, only AppleTalk (which does it's little song-and-dance at > boot to get a unique address): > > http://www.info.apple.com/kbnum/n30922 > > TITLE > Spanning Tree Protocol: AppleTalk Issues > Article ID: 30922 > Created: 3/10/99 > Modified:3/22/01 > > TOPIC > When the Spanning Tree Protocol is enabled on an Ethernet bridge or switch > port to which a Macintosh computer is directly connected the computer may be > unable to use AppleTalk services. > > Enable Fast Convergence > > Several switch manufacturers have extended the Spanning Tree Protocol to > allow the convergence time to be reduced. One of the enhancements usually > available is the ability to safely and quickly move the port from the > blocked state (listening and learning) to the forwarding state. For example, > if the bridge detects a single device attached to a port it can quickly > assume that no other bridges are attached to that port and move the port to > the forwarding state almost immediately. Check the manufacturer's > documentation for specific information on how to configure this option for > your switch. For example, Cisco has an option called 'portfast' that can be > enabled on most of their switches. For additional information on this > feature, see: http://www.cisco.com/warp/public/473/12.html > > Tune the Forward Delay Timer > > The Forward Delay timer can be tuned down to the minimum value. This value > can usually be tuned down to a few seconds, which would give the switch > enough time to move to the forwarding state before the address allocation > packets were sent by the computer. If you choose to use this solution you > must set these timers in the root bridge. The root bridge is the bridge that > transmits these timer settings to all other designated bridges. Although you > can set these timers on any bridge only the root bridge can effect the > overall environment. > > Products affected > > AppleTalk services > Macintosh computers ranging from the PowerBook 3400 to the latest Power Mac > G4 computers. > Note: TCP/IP based services are not affected. > > Question: Why does this only affect later Macintosh computers? > > Answer: Later computers start up faster causing the packets used for > AppleTalk address assignment to be sent while the port is still in the > blocked state. > > Question: Is Apple planning to change the way AppleTalk addresses are > allocated to fix the problem? > > Answer: Apple has no plans to change the algorithms used for AppleTalk > address assignment. > > -- > Jason Roysdon, CCNP+Security/CCDP, MCSE, CNA, Network+, A+ > List email: [EMAIL PROTECTED] > Homepage: http://jason.artoo.net/ > > ""Hire, Ejay"" wrote in message > [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > > There is an Apple knowledgebase article about this issue. > > > > It is Doc#30922. > > > > Ejay Hire > > > > -Original Message- > > From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] > > Sent: Wednesday, May 02, 2001 2:01 PM > > To: [EMAIL PROTECTED] > > Subject: RE: Spanning Tree Protocol [7:2564] > > > > > > Believe it or not it's true! We did some test/research on it and we had > to > > modify some of our login processes to allow the switch to go the STP > > process for login, it appeared we were requesting to quickly for the > switch. > > > > > > -Original Message- > > From: Priscilla Oppenheimer [mailto:[EMAIL PROTECTED]] > > Sent: Wednesday, May 02, 2001 1:42 PM > > To: [EMAIL PROTECTED] > > Subject: Re: Spanning Tree Protocol [7:2564] > > > > > > If it really takes 15-30 seconds for a switch to forward even when > portfast > > is enabled, I can see why AppleTalk nodes would hate this. An AppleTalk > > node sends messages right away to make sure its own address is unique, and > > to find the nearest router, and verify the network number(s) and zone > > name(s) for its local network. If the switch isn't forwarding these > frames, > > the Mac will think it's on a non-routed single network, when it probably > > isn't. Worst of al
RE: Spanning Tree Protocol [7:2564]
Seen it first hand. Similar environment. Large private school. Spanning tree on a MacIntosh Network. Seemed to hose everything nicely. Not to mention the fact that there were 600 AT nodes on the ethernet network(thats a no-no). -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] Sent: Monday, April 30, 2001 9:15 PM To: [EMAIL PROTECTED] Subject: Re: Spanning Tree Protocol [7:2564] Oh, speaking of AppleTalk. We've got a customer (not mine, but one of the engineers working the account bounced this off me): They claim their new Macs can't access the network if Spanning Tree is enabled. Supposedly this has been verified by Apple and TAC (but we've never had a customer lie to us, so that must be gospel, right. Heh, not). I don't know what exactly the details are, but basically it just doesn't function. The simple solution is to kill spanning-tree on all the switches, but this is at a number of public schools, and I can't wait to hear about a kid bringing in his Linksys 8 port 10/100 switch and melting their network. Anyone else hear such rumors? -- Jason Roysdon, CCNP+Security/CCDP, MCSE, CNA, Network+, A+ List email: [EMAIL PROTECTED] Homepage: http://jason.artoo.net/ ""Priscilla Oppenheimer"" wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > At 11:08 AM 4/30/01, Phil Barker wrote: > >Strongly in favour, > > > >A similar problem occurs in an IPX environment. > >Make sure all Servers/Clients are 'portfast' and > >switch/switch disable 'portfast'. > > A similar problem happens with AppleTalk too. That's what we get for > expecting switches to replace hubs in a topology. ;-) They were designed as > bridges and to talk to other bridges. Despite switches being the > new-fangled thing (well, sort of new), a lot of their functionality is > vintage 1980s. > > Priscilla > > > >Regards, > > > >Phil. > >--- John Gotti wrote: > Hey > >all...we are having a problem where workstations > > > sporatically will not > > > be able to obtain an IP address from our DHCP > > > server. After about 4 minutes, > > > you can perform a manual renew from WINIPCFG and you > > > get your IP address. > > > This has baffled me for quite some time and I have > > > recently been told it is > > > our Cisco 2924 Switch to blame. The story I was told > > > is below. I welcome any > > > comments for or against this opinion. Thank you for > > > your time. > > > > > > > > > "It appears the problem is connected to the > > > spanning tree algorithm used > > > by the CISCO switches. By default, ports on the > > > switch block as they are > > > initialised; during this phase the port is in its > > > spanning tree algorithm > > > learning and listening state - it is not > > > forwarding. This is specifically > > > aimed at ports that will be used to connect to other > > > switches/routers in a > > > stack. After a default time (4 mins?) they switch to > > > the standard forwarding > > > mode and everything seems normal, the problem is > > > that you have missed all > > > the important DHCP broadcast and acknowledgment from > > > client to DHCP server > > > during this period. > > > > > > You can change this default state by changing the > > > PORT-FAST setting on > > > each port. The port is then immediately in the > > > FORWARDING mode as it is > > > initialised. By default this setting is DISABLED, > > > I have ENABLED all > > > ports except the ports doing the linking to other > > > switches" > > > > >_ > > > Get your FREE download of MSN Explorer at > > > http://explorer.msn.com > > > FAQ, list archives, and subscription info: > > > http://www.groupstudy.com/list/cisco.html > > > Report misconduct and Nondisclosure violations to > >[EMAIL PROTECTED] > > > > > > > >Do You Yahoo!? > >Get your free @yahoo.co.uk address at http://mail.yahoo.co.uk > >or your free @yahoo.ie address at http://mail.yahoo.ie > >FAQ, list archives, and subscription info: > >http://www.groupstudy.com/list/cisco.html > >Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] > > > > > Priscilla Oppenheimer > http://www.priscilla.com > FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=2966&t=2564 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: ACL [7:2882]
Define some networks and type up the ACLs and we'll show you how to combine them (or you'll probably see it as you flesh them out). -- Jason Roysdon, CCNP+Security/CCDP, MCSE, CNA, Network+, A+ List email: [EMAIL PROTECTED] Homepage: http://jason.artoo.net/ ""Allen May"" wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > How about having a VPN and "other" server access from the internet users? > You'd need an acl for VPN and one for non-encrypted traffic that doesn't > need the same permissions that VPN did. VPN users would be internal and > have access to ftp, telnet, etc on the same boxes external users should only > have port 80, etc. > > I haven't thought this whole thing through yet so bear with me. No coffee > this morning ;) > > - Original Message - > From: "Chuck Larrieu" > To: "Allen May" ; > Sent: Wednesday, May 02, 2001 4:03 PM > Subject: RE: ACL [7:2882] > > > > > > Construct three access-lists, each doing what you specify. Then consider > > what would be gained or lost if you combined them into a single > access-list. > > > > In the end, the router would have to process each line anyway. > > > > It may be that there are architectural reasons for the limitation of the > > number of lists per protocol. I have heard it said that in major shops, > > access-lists might contain hundreds of lines. Imagine troubleshooting one > of > > those suckers! > > > > Chuck > > > > -Original Message- > > From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] On Behalf Of > > Allen May > > Sent: Wednesday, May 02, 2001 1:56 PM > > To: [EMAIL PROTECTED] > > Subject: Re: ACL [7:2882] > > > > 1 reason would be to separate acl's per internal IP address you're > > permitting/denying access to. 101=specific IP allowing ftp and http, > > 102=different IP allowing http only, etc. It would look cleaner > anyway > > > > - Original Message - > > From: "Donald B Johnson jr" > > To: > > Sent: Wednesday, May 02, 2001 3:19 PM > > Subject: Re: ACL [7:2882] > > > > > > > Why > > > - Original Message - > > > From: "BASSOLE Rock" > > > To: > > > Sent: Wednesday, May 02, 2001 7:24 AM > > > Subject: ACL [7:2882] > > > > > > > > > > Hi, > > > > > > > > Can we apply more then one ACL per interface?.. > > > > > > > > > > > > Example: > > > > > > > > Interface Serial1 > > > > ip access-group 102 in > > > > ip access-group 103 out > > > > ip access-group 104 in > > > > ip access-group 105 out > > > > > > > > Thank you. > > > > > > > > Rock BASSOLE > > > > Til: +33 (0) 1 45 96 22 03 > > > > FAQ, list archives, and subscription info: > > > http://www.groupstudy.com/list/cisco.html > > > > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] > > > FAQ, list archives, and subscription info: > > http://www.groupstudy.com/list/cisco.html > > > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] > > FAQ, list archives, and subscription info: > > http://www.groupstudy.com/list/cisco.html > > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] > FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=2965&t=2882 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Spanning Tree Protocol [7:2564]
True about that being a long time, but I think that's just a matter of how fast did I plug it in, and how long did it take for my NIC to see it (and which is a good 1 second delay from when I plug it in and when the NIC LED goes green). The one thing I forgot to test was without spanning tree enabled. I tested the switch with 'no spanning-tree' for 10 times, and 10 times with it optimally configured with spanning tree on (portfast, full duplex, 100mbit, power inline never). The hardest thing to test is that Win2k will generate "Destination host unreachable." when no TCP/IP interfaces are up. It seemed that if instead of letting a constant ping run and watch pagefulls of those messages go by, I would instead hit enter as soon as I saw the NIC LED go green. This definately produces faster results (since the stack isn't being accessed, perhaps it initilizes faster?). Anyway, at first I forgot I had DHCP running and was wondering why it was taking so long (5-7 seconds). It acted the same with spanning tree disabled, and optimized as stated above. When I configured a static address, it dropped to 3-4 seconds for both, just as before. Of course, this isn't scientific, and Win2k doesn't really let you test the way you could with Win9x or even NT4 (where you could leave it pinging, and it would just sit there and respond with normal timeouts). Oh, growl, I just remembered I have Win98SE on this laptop. I'll save this post and go try it out. Ok, so I just rebooted to Win98. I must say, it handles lose of connectivity much better than Win2k, IMHO. I guess it all depends on what you want it to do: If it's a server/router, then you want the IP stack to know right away when there is a lost connection and drop it; if it's a desktop, you don't want to concern the user too fast (so long as the NIC gets plugged back in rather fast, or they're not generating IP traffic, no big deal). What I dislike on Win2k is that the second you lose your connection, you lose your DHCP lease (it remembers it and will try to renegotiate for it, but that IP/NIC is gone from the stack). With Win98, you still have it, so no need to re-negotiate for it when your connection comes back. That explains why DHCP was taking 2 extra seconds with Win2k (my DHCP server pings twice to make sure it's not in use before giving it back out). Win98 never checks the DHCP lease due to cable loss, so long as the lease is still valid. Anyway, the results seemed to show no discernable different between optimized spanning tree, and diabled spanning tree. I also tested with using 'shutdown' and 'no shutdown' instead of physically removing the cable. Much easier, but the results were the same (my NIC couldn't tell the difference). 3-4 seconds after bringing the the switch interface up, pinging would start. The biggest thing I ran into with Win98 is that I couldn't shut/no shut or unplug/plug too fast, or it would never bring the stack back up no matter how long I left it (even though the NIC LED was on). I needed to let it have a good 1-2 seconds of disconnect for it to work. Perhaps Apple can tell the difference, but 3-4 seconds seemed constant with or without spanning tree. Perhaps some of the other Cisco switches or OS bases do things differently, but I don't have access to anything else at the moment. Anyone else want to post some results with other gear? I was using 'debug spanning events' and 'debug interface f0/6' to see the original content I was posting. -- Jason Roysdon, CCNP+Security/CCDP, MCSE, CNA, Network+, A+ List email: [EMAIL PROTECTED] Homepage: http://jason.artoo.net/ ""Priscilla Oppenheimer"" wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > Thanks for the testing! I have bad news for you. ;-) Three or 4 seconds is > a lot of time. > > An AppleTalk device sends its AARP frame to see if its address is unique 10 > times, with only 1/5 of a second between tries. Then it sends a > ZIPGetNetInfo. It tries that 3 times, I think with the same timeout. This > could happen before the switch is forwarding, even with portfast enabled it > seems. (These timeout values may be dated. I haven't looked at AppleTalk in > a while! But I bet it's still really fast, perhaps even faster on a G4? ;-) > > My guess is that IPX and DHCP are really fast too. ARGH. > > Priscilla > > At 03:15 PM 5/2/01, Jason Roysdon wrote: > >I wonder what switch and software version you were running at the time? I'm > >trying this on a Catalyst 3524 XL Inline Power running 12.0(5.2)XU (I > >haven't upgraded it, so that's whatever it shipped with). > > > >I did a number of tests (but not enough samples to make it 100% accurate on > >the timing, but a general idea +/- 2 seconds). The digits "00:16:47," are > >time since boot, while the dated timestamps are accurate GMT. For each of > >my tests, I would attempt to physically plug in the patch cable at :00 > >seconds based on the clock on my laptop, and both the laptop and switch are > >accurate
Re: VLAN's and Routers [7:2891]
I would suggest the 2621 - don't forget you'll need the IP plus software ""Sammi"" wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > Thanks all, for the advice. > Looks like I should go with a router, am looking at 2600 and 3600 > series. > I will have no more than 6 VLAN's, more likely 4. > Any suggestions on which model to purchase? > FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=2963&t=2891 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Spanning Tree Protocol [7:2564]
Odd. Especially even Apple says this doesn't affect TCP/IP services, just AppleTalk. -- Jason Roysdon, CCNP+Security/CCDP, MCSE, CNA, Network+, A+ List email: [EMAIL PROTECTED] Homepage: http://jason.artoo.net/ ""LeBrun, Tim"" wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > I have been silently listening to this thread with interest. But after he > noted his IOS version I just had to pipe in. I have the exact same version > 12.0(5.2)XU running on a 2924XL. My Macs are also having issues. However, > my issue is slightly different since I have portfast enabled on some ports > and I have a hub on another. The macs all have the same problem of getting > poor response times (very, very, very slow) from SSL sites. However if I > move it from the Cisco switch and plug it into a Fore Systems Ethernet > switch (PS I do not advocate Fore/Marconi switches) they zoom. On the flip > side of this I have a few PCs plugged into a separate VLAN on this switch > and they Zoom. > > Tim LeBrun > CCNA, CCDA > [EMAIL PROTECTED] > > > -Original Message- > From: Jason Roysdon [mailto:[EMAIL PROTECTED]] > Sent: Wednesday, May 02, 2001 3:16 PM > To: [EMAIL PROTECTED] > Subject: Re: Spanning Tree Protocol [7:2564] > > > I wonder what switch and software version you were running at the time? I'm > trying this on a Catalyst 3524 XL Inline Power running 12.0(5.2)XU (I > haven't upgraded it, so that's whatever it shipped with). > > I did a number of tests (but not enough samples to make it 100% accurate on > the timing, but a general idea +/- 2 seconds). The digits "00:16:47," are > time since boot, while the dated timestamps are accurate GMT. For each of > my tests, I would attempt to physically plug in the patch cable at :00 > seconds based on the clock on my laptop, and both the laptop and switch are > accurate from ntp (the log is not timestamped at :00 seconds, but just for > your reference). > > The first with the port in the "out of the box" state with it left at > defaults: > 00:16:54: ST: FastEthernet0/6 vlan 1 -> listening > May 2 11:33:02.985 PDT: %LINK-3-UPDOWN: Interface FastEthernet0/6, changed > state to up > May 2 11:33:03.986 PDT: %LINEPROTO-5-UPDOWN: Line protocol on Interface > FastEthernet0/6, > changed state to up > 00:17:09: ST: FastEthernet0/6 vlan 1 -> learning > 00:17:24: ST: sent Topology Change Notice on Port Group 1 vlan 1 > 00:17:24: ST: FastEthernet0/6 vlan 1 -> forwarding > ! 32 seconds > > At 32 seconds I had ping replies at my desktop (using a static address, as > DHCP wouldn't be accurate to see how fast it comes up). > > Next, I wanted to see if the inline power slowed bringing the power up. It > doesn't appear to (of course, thinking about it, the only time it applies > power is if it sees a certain loop/load between a pair of wires, the details > I don't recall): > > Cat3524(config-if)#power inline never > 00:18:54: ST: FastEthernet0/6 vlan 1 -> listening > May 2 11:35:02.497 PDT: %LINK-3-UPDOWN: Interface FastEthernet0/6, changed > state to up > May 2 11:35:03.498 PDT: %LINEPROTO-5-UPDOWN: Line protocol on Interface > FastEthernet0/6, > changed state to up > 00:19:09: ST: FastEthernet0/6 vlan 1 -> learning > 00:19:24: ST: sent Topology Change Notice on Port Group 1 vlan 1 > 00:19:24: ST: FastEthernet0/6 vlan 1 -> forwarding > !32 seconds > > Again, 32 seconds with spanning tree left to the defaults. 30 seconds as > far as the switch was concerned. > > Now lets enable portfast: > > Cat3524(config-if)#span portfast > 00:20:54: ST: FastEthernet0/6 vlan 1 ->jump to forwarding from blocking > May 2 11:37:02.483 PDT: %LINK-3-UPDOWN: Interface FastEthernet0/6, changed > state to up > May 2 11:37:03.485 PDT: %LINEPROTO-5-UPDOWN: Line protocol on Interface > FastEthernet0/6, > changed state to up > ! 3 seconds > > In 3 seconds my PC was pinging with portfast set. > > My final test, I wanted to see if locking to speed and duplex would increase > the time at all: > > interface FastEthernet0/6 > duplex full > speed 100 > power inline never > spanning-tree portfast > > Cat3524# > 00:22:54: ST: FastEthernet0/6 vlan 1 ->jump to forwarding from blocking > May 2 11:39:03.165 PDT: %LINK-3-UPDOWN: Interface FastEthernet0/6, changed > state to up > May 2 11:39:04.166 PDT: %LINEPROTO-5-UPDOWN: Line protocol on Interface > FastEthernet0/6, > changed state to up > May 2 11:39:06.622 PDT: %RTD-1-LINK_FLAP: FastEthernet0/6 link down/up 5 > times per minsh > int > > Oops, the switch doesn't like all the flapping of my tests and left it in an > down/up state (good thing to know though!). > > Ok, give it a moment without the cable connected and try again: > > Cat3524# > 00:26:54: ST: FastEthernet0/6 vlan 1 ->jump to forwarding from blocking > May 2 11:43:03.200 PDT: %LINK-3-UPDOWN: Interface FastEthernet0/6, changed > state to up > May 2 11:43:04.201 PDT: %LINEPROTO-5-UPDOWN: Line protocol on Interface > FastEthernet0/6, > changed state to up > !4 seconds > > I think thi
Decnet to SNA [7:2961]
Hi all, I have a challenge that I could use some good advice to design. I have a present topology of a DEC box that has a SNA gateway installed to translate Decnet to SNA and the send through a modem eliminator (to provide clock at 9.6k :~}) to an IBM3745 FEP. Those FEP services are being moved to our central location in another city but the DEC services are staying put. There is a Cisco routed network already in place between these two sites with a 2502 on one end and a 3640 on the other. The 3640 is at the central data center and has an OSA attachment to the mainframe. As I understand it, OSA is layer 3 and depends on IP addresses but Decnet's addressing is layer 2 using the MAC address. The DEC box is Ethernet connected but the 2502 at that site is a Token Ring router. There is existing bridging between Token Ring and Ethernet segments at that site but I'm not sure if the DEC segment is already bridged. What I think I would like to do is to remove that SNA gateway from that DEC box and depend on the LAN/WAN to get Decnet to the central site. I'm pretty sure that the two routers will do this but once we get the information to the central site, I'm not sure how to get it out of the router and into the mainframe. We have thought of putting an SNA gateway at the central site and basically recreating what they had up there but I'm hoping that we can use the OSA instead. I do understand that the configuration of the routers is more than just enabling Decnet, but I don't see any insurmountable hurdles there. Please correct me if I'm wrong. Any advise will be greatly appreciated!! A point to point leased line is undesirable because of the costs. Telco's pricing has a full T1 cheaper than a 9.6 circuit but we don't need that bandwidth and equipment to throttle down seems a waste. Thank you, Larry Puckette Network Analyst CCNA,MCP,LANCP Temple Inland 1300 S. Mopac Expressway Austin TX 78746 [EMAIL PROTECTED] (512)434-1838 cell - (512)751-8315 Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=2961&t=2961 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: ACL [7:2882]
How about having a VPN and "other" server access from the internet users? You'd need an acl for VPN and one for non-encrypted traffic that doesn't need the same permissions that VPN did. VPN users would be internal and have access to ftp, telnet, etc on the same boxes external users should only have port 80, etc. I haven't thought this whole thing through yet so bear with me. No coffee this morning ;) - Original Message - From: "Chuck Larrieu" To: "Allen May" ; Sent: Wednesday, May 02, 2001 4:03 PM Subject: RE: ACL [7:2882] > > Construct three access-lists, each doing what you specify. Then consider > what would be gained or lost if you combined them into a single access-list. > > In the end, the router would have to process each line anyway. > > It may be that there are architectural reasons for the limitation of the > number of lists per protocol. I have heard it said that in major shops, > access-lists might contain hundreds of lines. Imagine troubleshooting one of > those suckers! > > Chuck > > -Original Message- > From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] On Behalf Of > Allen May > Sent: Wednesday, May 02, 2001 1:56 PM > To: [EMAIL PROTECTED] > Subject: Re: ACL [7:2882] > > 1 reason would be to separate acl's per internal IP address you're > permitting/denying access to. 101=specific IP allowing ftp and http, > 102=different IP allowing http only, etc. It would look cleaner anyway > > - Original Message - > From: "Donald B Johnson jr" > To: > Sent: Wednesday, May 02, 2001 3:19 PM > Subject: Re: ACL [7:2882] > > > > Why > > - Original Message - > > From: "BASSOLE Rock" > > To: > > Sent: Wednesday, May 02, 2001 7:24 AM > > Subject: ACL [7:2882] > > > > > > > Hi, > > > > > > Can we apply more then one ACL per interface?.. > > > > > > > > > Example: > > > > > > Interface Serial1 > > > ip access-group 102 in > > > ip access-group 103 out > > > ip access-group 104 in > > > ip access-group 105 out > > > > > > Thank you. > > > > > > Rock BASSOLE > > > Til: +33 (0) 1 45 96 22 03 > > > FAQ, list archives, and subscription info: > > http://www.groupstudy.com/list/cisco.html > > > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] > > FAQ, list archives, and subscription info: > http://www.groupstudy.com/list/cisco.html > > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] > FAQ, list archives, and subscription info: > http://www.groupstudy.com/list/cisco.html > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=2960&t=2882 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: ACL [7:2882]
Construct three access-lists, each doing what you specify. Then consider what would be gained or lost if you combined them into a single access-list. In the end, the router would have to process each line anyway. It may be that there are architectural reasons for the limitation of the number of lists per protocol. I have heard it said that in major shops, access-lists might contain hundreds of lines. Imagine troubleshooting one of those suckers! Chuck -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] On Behalf Of Allen May Sent: Wednesday, May 02, 2001 1:56 PM To: [EMAIL PROTECTED] Subject:Re: ACL [7:2882] 1 reason would be to separate acl's per internal IP address you're permitting/denying access to. 101=specific IP allowing ftp and http, 102=different IP allowing http only, etc. It would look cleaner anyway - Original Message - From: "Donald B Johnson jr" To: Sent: Wednesday, May 02, 2001 3:19 PM Subject: Re: ACL [7:2882] > Why > - Original Message - > From: "BASSOLE Rock" > To: > Sent: Wednesday, May 02, 2001 7:24 AM > Subject: ACL [7:2882] > > > > Hi, > > > > Can we apply more then one ACL per interface?.. > > > > > > Example: > > > > Interface Serial1 > > ip access-group 102 in > > ip access-group 103 out > > ip access-group 104 in > > ip access-group 105 out > > > > Thank you. > > > > Rock BASSOLE > > Til: +33 (0) 1 45 96 22 03 > > FAQ, list archives, and subscription info: > http://www.groupstudy.com/list/cisco.html > > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] > FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=2959&t=2882 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Spanning Tree Protocol [7:2564]
I have been silently listening to this thread with interest. But after he noted his IOS version I just had to pipe in. I have the exact same version 12.0(5.2)XU running on a 2924XL. My Macs are also having issues. However, my issue is slightly different since I have portfast enabled on some ports and I have a hub on another. The macs all have the same problem of getting poor response times (very, very, very slow) from SSL sites. However if I move it from the Cisco switch and plug it into a Fore Systems Ethernet switch (PS I do not advocate Fore/Marconi switches) they zoom. On the flip side of this I have a few PCs plugged into a separate VLAN on this switch and they Zoom. Tim LeBrun CCNA, CCDA [EMAIL PROTECTED] -Original Message- From: Jason Roysdon [mailto:[EMAIL PROTECTED]] Sent: Wednesday, May 02, 2001 3:16 PM To: [EMAIL PROTECTED] Subject: Re: Spanning Tree Protocol [7:2564] I wonder what switch and software version you were running at the time? I'm trying this on a Catalyst 3524 XL Inline Power running 12.0(5.2)XU (I haven't upgraded it, so that's whatever it shipped with). I did a number of tests (but not enough samples to make it 100% accurate on the timing, but a general idea +/- 2 seconds). The digits "00:16:47," are time since boot, while the dated timestamps are accurate GMT. For each of my tests, I would attempt to physically plug in the patch cable at :00 seconds based on the clock on my laptop, and both the laptop and switch are accurate from ntp (the log is not timestamped at :00 seconds, but just for your reference). The first with the port in the "out of the box" state with it left at defaults: 00:16:54: ST: FastEthernet0/6 vlan 1 -> listening May 2 11:33:02.985 PDT: %LINK-3-UPDOWN: Interface FastEthernet0/6, changed state to up May 2 11:33:03.986 PDT: %LINEPROTO-5-UPDOWN: Line protocol on Interface FastEthernet0/6, changed state to up 00:17:09: ST: FastEthernet0/6 vlan 1 -> learning 00:17:24: ST: sent Topology Change Notice on Port Group 1 vlan 1 00:17:24: ST: FastEthernet0/6 vlan 1 -> forwarding ! 32 seconds At 32 seconds I had ping replies at my desktop (using a static address, as DHCP wouldn't be accurate to see how fast it comes up). Next, I wanted to see if the inline power slowed bringing the power up. It doesn't appear to (of course, thinking about it, the only time it applies power is if it sees a certain loop/load between a pair of wires, the details I don't recall): Cat3524(config-if)#power inline never 00:18:54: ST: FastEthernet0/6 vlan 1 -> listening May 2 11:35:02.497 PDT: %LINK-3-UPDOWN: Interface FastEthernet0/6, changed state to up May 2 11:35:03.498 PDT: %LINEPROTO-5-UPDOWN: Line protocol on Interface FastEthernet0/6, changed state to up 00:19:09: ST: FastEthernet0/6 vlan 1 -> learning 00:19:24: ST: sent Topology Change Notice on Port Group 1 vlan 1 00:19:24: ST: FastEthernet0/6 vlan 1 -> forwarding !32 seconds Again, 32 seconds with spanning tree left to the defaults. 30 seconds as far as the switch was concerned. Now lets enable portfast: Cat3524(config-if)#span portfast 00:20:54: ST: FastEthernet0/6 vlan 1 ->jump to forwarding from blocking May 2 11:37:02.483 PDT: %LINK-3-UPDOWN: Interface FastEthernet0/6, changed state to up May 2 11:37:03.485 PDT: %LINEPROTO-5-UPDOWN: Line protocol on Interface FastEthernet0/6, changed state to up ! 3 seconds In 3 seconds my PC was pinging with portfast set. My final test, I wanted to see if locking to speed and duplex would increase the time at all: interface FastEthernet0/6 duplex full speed 100 power inline never spanning-tree portfast Cat3524# 00:22:54: ST: FastEthernet0/6 vlan 1 ->jump to forwarding from blocking May 2 11:39:03.165 PDT: %LINK-3-UPDOWN: Interface FastEthernet0/6, changed state to up May 2 11:39:04.166 PDT: %LINEPROTO-5-UPDOWN: Line protocol on Interface FastEthernet0/6, changed state to up May 2 11:39:06.622 PDT: %RTD-1-LINK_FLAP: FastEthernet0/6 link down/up 5 times per minsh int Oops, the switch doesn't like all the flapping of my tests and left it in an down/up state (good thing to know though!). Ok, give it a moment without the cable connected and try again: Cat3524# 00:26:54: ST: FastEthernet0/6 vlan 1 ->jump to forwarding from blocking May 2 11:43:03.200 PDT: %LINK-3-UPDOWN: Interface FastEthernet0/6, changed state to up May 2 11:43:04.201 PDT: %LINEPROTO-5-UPDOWN: Line protocol on Interface FastEthernet0/6, changed state to up !4 seconds I think this time I was a little slow getting the cable in, but basically the same results, 3-4 seconds and the port is up and pinging from my connected laptop. That shouldn't be a problem for any network devices, I wouldn't think. The only way I could see it affecting is if during boot the NIC is not activated until the drivers load, and then within 1-2 seconds the protocol stack gets access to the NIC before the switch takes the port up/up, but I don't think this would be any different with or without spanning
Re: Emutel solo ISDN simulator opinions needed [7:2918]
Actually i looked into this option. Total cost of install charges for just the 2 BRI's without any adaptar hardware to go from my ST to U interfaces was $800. This is without any monthly charges for usage. Add an extra few hundred for hardware to connect to the telco circuits and i am over $1000 without usage. When i am done i have nothing but a big bill. If i buy an Emutel or a Teltone unit i can use it for as long as i need it with no concern for usage charges then sell it on Ebay for a very good percentage of the original cost. If you ever see these units on Ebay they sell for 80-90% of original retail. In the long run it will be much cheaper to buy the Simulator then the real service. Ed Dombrowski ""Erich Kuehn"" wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > This might seem like a strange answer, but (if available) why dont you just > get a couple of BRI installed where you are and pay the monthly charges > until your done with it. That seems far cheaper than buying a simulator. > > Just my .02 > > Erich > - Original Message - > From: "Ed Dombrowski" > To: > Sent: Wednesday, May 02, 2001 11:01 AM > Subject: Emutel solo ISDN simulator opinions needed [7:2918] > > > > Does anybody have any opinions on the Emutel solo ISDN simulator from Arca > > technologies. I hear great things about the Teltone but at $2800 for the > > model that handles both ST and U interfaces i started looking for an > > alternative. It appears the Emutel Solo can be had for a retail of around > > $2000 and supports both types of interfaces. If you have experience with > > this product can you leave a brief review and some pros and cons? Thanks. > > > > Ed Dombrowski > > FAQ, list archives, and subscription info: > http://www.groupstudy.com/list/cisco.html > > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] > > > > > -- -- > > > > > > > http://1cis.com > > Free E-mail Servers with unlimited mailboxes > > 1st Class Internet Solutions > > http://1cis.com > Free E-mail Servers with unlimited mailboxes > 1st Class Internet Solutions > FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=2958&t=2918 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Cannot browse Some Website: Try this: www.sitemeter.com [7:2956]
Try with static NAT.Still didn't work. Which version of PIX IOS your running? We are running 5.1 -Original Message- From: Daniel Cotts [mailto:[EMAIL PROTECTED]] Sent: Friday, April 27, 2001 4:30 PM To: 'Ken Yeo'; [EMAIL PROTECTED] Subject: RE: Cannot browse Some Website: Try this: www.sitemeter.com [7:22 95] We've had that issue going to certain sites. I do know that if you have a static NAT in your PIX for the inside host that you will connect. Those using dynamic translations won't. > -Original Message- > From: Ken Yeo [mailto:[EMAIL PROTECTED]] > Sent: Friday, April 27, 2001 1:11 PM > To: [EMAIL PROTECTED] > Subject: PIX: Cannot browse Some Website: Try this: www.sitemeter.com > [7:2295] > > > Hi, > > We are having problem to browse this website: > > www.sitemeter.com > > Internet explorer will say "Opening page > http://www.sitemeter.com"; in the > status bar on the bottom and > the page never came up. It came back with > error: > > The page cannot be displayed > We are able to browse the site using dialup to Netzero and > some other dial > up ISP. > I wonder those of you who use PIX try this site? > Our first thought was reserve DNS was not setup so we setup > reserve DNS for > the NATed IP on the PIX, but still cannot browse the site. Any ideas? > Thanks, > Ken Yeo > Network Engineer, > Aurum Technology > FAQ, list archives, and subscription info: > http://www.groupstudy.com/list/cisco.html > Report misconduct > and Nondisclosure violations to [EMAIL PROTECTED] Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=2956&t=2956 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: NEED CCIE in the WEST VIRGINIA AREA [7:2919]
Snag, I'm a Cabletron certified CCIE Foiled again - Original Message - From: "Chuck Larrieu" To: Sent: Wednesday, May 02, 2001 11:52 AM Subject: RE: NEED CCIE in the WEST VIRGINIA AREA [7:2919] > Non Cisco certified CCIE's need not apply :-> > > > > -Original Message- > From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] On Behalf Of > Claudette Graham > Sent: Wednesday, May 02, 2001 11:02 AM > To: [EMAIL PROTECTED] > Subject: NEED CCIE in the WEST VIRGINIA AREA [7:2919] > > The following is a job description I recently received from my client which > needs to be filled immediately. > > We are looking for a Cisco Certified CCIE, living and working in West > Virginia. > > Please send resume and rates as soon as possible. > > CCIE > > DURATION: 1 YEAR (CONTRACT) > > START DATE: 7/1/01 - 6/30/02 > > LOCATION: WEST VIRGINIA > > > NEED TO FILL NO LATER THAN FRIDAY, MAY 4TH 2001 > > DESCRIPTION OF WORK ASSIGNMENT: > > The vendor and/or his protigies should be authorized to ser vice 3Com, > Nortel Networks, and Enterasys/Cabletron equipment currently installed in > State agencies. > The vendor should provide proof from the manufacturer confirming this > authorization to service the equipment and a list of the products covered. > > PROJECT / ENVIRONMENT DESCRIPTION: > > What type of work is being done? > * Custom Application Development > * Application Management Outsourcing > * Package Integration > * Application Enabling Design > * Solutions Consulting & Integration > * Other network hardware installation > > > LOCALS PLEASE > > PLEASE FORWARD A COPY OF YOUR RESUME AND CALL ME IMMEDIATELY...Thanks > (:) ) > > Claudette > > > * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * > Claudette Graham > Technical Recruiter > American Employment Solutions, Inc > Phone: 800-995-6858 > Fax: 888-995-8788 > Email: [EMAIL PROTECTED] > Website: www.amesinc.org > > * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * > FAQ, list archives, and subscription info: > http://www.groupstudy.com/list/cisco.html > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] > FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=2955&t=2919 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Spanning Tree Protocol [7:2564]
The other way to solve the problem would be to delete AppleTalk and use native IP on your Mac's ;-> ( can't wait for PO's response to this one! ) chuck -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] Sent: Wednesday, May 02, 2001 1:39 PM To: [EMAIL PROTECTED] Subject:Re: Spanning Tree Protocol [7:2564] It took me 10 times to get the thing to allow me to create a new account (each time, it would time out when I hit Continue, and when I'd go back all the form would be blank). Anyway, from the Knowledgebase at http://www.apple.com/support/ it appears that portfast or tuning the spanning tree learning->forwarding time down would solve the problem instead of just disabling spanning tree. Also, it appears to not affect TCP/IP services at all, only AppleTalk (which does it's little song-and-dance at boot to get a unique address): http://www.info.apple.com/kbnum/n30922 TITLE Spanning Tree Protocol: AppleTalk Issues Article ID: 30922 Created: 3/10/99 Modified:3/22/01 TOPIC When the Spanning Tree Protocol is enabled on an Ethernet bridge or switch port to which a Macintosh computer is directly connected the computer may be unable to use AppleTalk services. Enable Fast Convergence Several switch manufacturers have extended the Spanning Tree Protocol to allow the convergence time to be reduced. One of the enhancements usually available is the ability to safely and quickly move the port from the blocked state (listening and learning) to the forwarding state. For example, if the bridge detects a single device attached to a port it can quickly assume that no other bridges are attached to that port and move the port to the forwarding state almost immediately. Check the manufacturer's documentation for specific information on how to configure this option for your switch. For example, Cisco has an option called 'portfast' that can be enabled on most of their switches. For additional information on this feature, see: http://www.cisco.com/warp/public/473/12.html Tune the Forward Delay Timer The Forward Delay timer can be tuned down to the minimum value. This value can usually be tuned down to a few seconds, which would give the switch enough time to move to the forwarding state before the address allocation packets were sent by the computer. If you choose to use this solution you must set these timers in the root bridge. The root bridge is the bridge that transmits these timer settings to all other designated bridges. Although you can set these timers on any bridge only the root bridge can effect the overall environment. Products affected AppleTalk services Macintosh computers ranging from the PowerBook 3400 to the latest Power Mac G4 computers. Note: TCP/IP based services are not affected. Question: Why does this only affect later Macintosh computers? Answer: Later computers start up faster causing the packets used for AppleTalk address assignment to be sent while the port is still in the blocked state. Question: Is Apple planning to change the way AppleTalk addresses are allocated to fix the problem? Answer: Apple has no plans to change the algorithms used for AppleTalk address assignment. -- Jason Roysdon, CCNP+Security/CCDP, MCSE, CNA, Network+, A+ List email: [EMAIL PROTECTED] Homepage: http://jason.artoo.net/ ""Hire, Ejay"" wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > There is an Apple knowledgebase article about this issue. > > It is Doc#30922. > > Ejay Hire > > -Original Message- > From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] > Sent: Wednesday, May 02, 2001 2:01 PM > To: [EMAIL PROTECTED] > Subject: RE: Spanning Tree Protocol [7:2564] > > > Believe it or not it's true! We did some test/research on it and we had to > modify some of our login processes to allow the switch to go the STP > process for login, it appeared we were requesting to quickly for the switch. > > > -Original Message- > From: Priscilla Oppenheimer [mailto:[EMAIL PROTECTED]] > Sent: Wednesday, May 02, 2001 1:42 PM > To: [EMAIL PROTECTED] > Subject: Re: Spanning Tree Protocol [7:2564] > > > If it really takes 15-30 seconds for a switch to forward even when portfast > is enabled, I can see why AppleTalk nodes would hate this. An AppleTalk > node sends messages right away to make sure its own address is unique, and > to find the nearest router, and verify the network number(s) and zone > name(s) for its local network. If the switch isn't forwarding these frames, > the Mac will think it's on a non-routed single network, when it probably > isn't. Worst of all, it might end up with the same address as some other > AppleTalk device. > > However.. I find it hard to believe that even with portfast enabled a > switch takes 15-30 seconds to forward traffic. Is that really true? > > Priscilla > > At 01:22 AM 5/2/01, Jim Gillen wrote: > >I have had plenty of experience with this problem when I updated a token > ring > >network to a fully switch
Re: ACL [7:2882]
1 reason would be to separate acl's per internal IP address you're permitting/denying access to. 101=specific IP allowing ftp and http, 102=different IP allowing http only, etc. It would look cleaner anyway - Original Message - From: "Donald B Johnson jr" To: Sent: Wednesday, May 02, 2001 3:19 PM Subject: Re: ACL [7:2882] > Why > - Original Message - > From: "BASSOLE Rock" > To: > Sent: Wednesday, May 02, 2001 7:24 AM > Subject: ACL [7:2882] > > > > Hi, > > > > Can we apply more then one ACL per interface?.. > > > > > > Example: > > > > Interface Serial1 > > ip access-group 102 in > > ip access-group 103 out > > ip access-group 104 in > > ip access-group 105 out > > > > Thank you. > > > > Rock BASSOLE > > Til: +33 (0) 1 45 96 22 03 > > FAQ, list archives, and subscription info: > http://www.groupstudy.com/list/cisco.html > > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] > FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=2954&t=2882 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Cisco VPN Client..... [7:2865]
Serves to remind that there are a series of questions one must ask, and things one must understand, when implementing VPN's. In particular, the applications being used, and their requirements. For example, suppose the application is web based, and requires SSL. What needs be done on the firewall? If that same application is only for the VPN client, and not for public consumption, then what should or should not be considered? What is or is not necessary? Why? Chuck -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] Sent: Wednesday, May 02, 2001 1:18 PM To: [EMAIL PROTECTED] Subject:Re: Cisco VPN Client. [7:2865] And folks get protocols and tcp/udp ports confused. It's not simply running on another port, but a different protocol (ESP). -- Jason Roysdon, CCNP+Security/CCDP, MCSE, CNA, Network+, A+ List email: [EMAIL PROTECTED] Homepage: http://jason.artoo.net/ ""Chuck Larrieu"" wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > You should permit ip protocols 50 and 51 ( IPSec AH and ESP ) on the > firewall. > > http://www.cisco.com/cgi-bin/Support/PSP/psp_view.pl?p=Hardware:PIX&s=Softwa > re_Configuration#Software_Samples_%26_Tips > watch the word wrap > > you need a CCO login to get here, but there are a lot of configuration and > troubleshooting examples > > HTH > > Chuck > > > -Original Message- > From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] On Behalf Of > Greene, Patrick > Sent: Wednesday, May 02, 2001 2:49 AM > To: [EMAIL PROTECTED] > Subject: Cisco VPN Client. [7:2865] > > Is there anyway to force the Cisco VPN client to use port 80 for > communications? This would be used to get through firewall's allowing only > port 80. > > Thank You, > Patrick Greene CCNP,CCDP,MCSE,MCNE > Information Technologies Enterprises > Email:[EMAIL PROTECTED] > Office:800-535-6544 > Mobile:704-953-6949 > Fax:704-896-5797 > URL: www.infotechent.net and > www.alwaysweb.com > > [GroupStudy.com removed an attachment of type image/gif which had a name of > PRTNRPR.GIF] > > [GroupStudy.com removed an attachment of type image/bmp which had a name of > MCSP_P.bmp] > FAQ, list archives, and subscription info: > http://www.groupstudy.com/list/cisco.html > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] > FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=2953&t=2865 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Generic Summarization Planning Question [7:2952]
I am curious about best practices concerning subnetting a class B address for a large enterprise network. If a company had 4 data centers spread throughout the globe, for example: SanFran Austin London Sydney One might chop the class B into 4 parts and if need be, reserve some space for growth. But what if each site also maintained an "Internet Presence" and had 5 or 6 external subnets being advertised via BGP. Would it make sense to re-do the subnetting so that all internal addressing was contiguous and all external addressing was contiguous? This way, all internal addressing could be summarized with relatively few statements, and external nets as well. Does this sound reasonable? I've been browsing the CID book and other documents but havent come across anything that seems to address these concerns. Or would it just be better to make sure that all nets both internal/external are contiguous for a particular data center? Just wondering if anyone has been through this situation. Not sure if it would matter if OSPF or EIGRP is the IGP involved. I cc'ed Howard Berkowitz on this question -- Im told his first book is a great reference for this area. Maybe his response would spur me to purchase it. :-) Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=2952&t=2952 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Spanning Tree Protocol [7:2564]
It took me 10 times to get the thing to allow me to create a new account (each time, it would time out when I hit Continue, and when I'd go back all the form would be blank). Anyway, from the Knowledgebase at http://www.apple.com/support/ it appears that portfast or tuning the spanning tree learning->forwarding time down would solve the problem instead of just disabling spanning tree. Also, it appears to not affect TCP/IP services at all, only AppleTalk (which does it's little song-and-dance at boot to get a unique address): http://www.info.apple.com/kbnum/n30922 TITLE Spanning Tree Protocol: AppleTalk Issues Article ID: 30922 Created: 3/10/99 Modified:3/22/01 TOPIC When the Spanning Tree Protocol is enabled on an Ethernet bridge or switch port to which a Macintosh computer is directly connected the computer may be unable to use AppleTalk services. Enable Fast Convergence Several switch manufacturers have extended the Spanning Tree Protocol to allow the convergence time to be reduced. One of the enhancements usually available is the ability to safely and quickly move the port from the blocked state (listening and learning) to the forwarding state. For example, if the bridge detects a single device attached to a port it can quickly assume that no other bridges are attached to that port and move the port to the forwarding state almost immediately. Check the manufacturer's documentation for specific information on how to configure this option for your switch. For example, Cisco has an option called 'portfast' that can be enabled on most of their switches. For additional information on this feature, see: http://www.cisco.com/warp/public/473/12.html Tune the Forward Delay Timer The Forward Delay timer can be tuned down to the minimum value. This value can usually be tuned down to a few seconds, which would give the switch enough time to move to the forwarding state before the address allocation packets were sent by the computer. If you choose to use this solution you must set these timers in the root bridge. The root bridge is the bridge that transmits these timer settings to all other designated bridges. Although you can set these timers on any bridge only the root bridge can effect the overall environment. Products affected AppleTalk services Macintosh computers ranging from the PowerBook 3400 to the latest Power Mac G4 computers. Note: TCP/IP based services are not affected. Question: Why does this only affect later Macintosh computers? Answer: Later computers start up faster causing the packets used for AppleTalk address assignment to be sent while the port is still in the blocked state. Question: Is Apple planning to change the way AppleTalk addresses are allocated to fix the problem? Answer: Apple has no plans to change the algorithms used for AppleTalk address assignment. -- Jason Roysdon, CCNP+Security/CCDP, MCSE, CNA, Network+, A+ List email: [EMAIL PROTECTED] Homepage: http://jason.artoo.net/ ""Hire, Ejay"" wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > There is an Apple knowledgebase article about this issue. > > It is Doc#30922. > > Ejay Hire > > -Original Message- > From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] > Sent: Wednesday, May 02, 2001 2:01 PM > To: [EMAIL PROTECTED] > Subject: RE: Spanning Tree Protocol [7:2564] > > > Believe it or not it's true! We did some test/research on it and we had to > modify some of our login processes to allow the switch to go the STP > process for login, it appeared we were requesting to quickly for the switch. > > > -Original Message- > From: Priscilla Oppenheimer [mailto:[EMAIL PROTECTED]] > Sent: Wednesday, May 02, 2001 1:42 PM > To: [EMAIL PROTECTED] > Subject: Re: Spanning Tree Protocol [7:2564] > > > If it really takes 15-30 seconds for a switch to forward even when portfast > is enabled, I can see why AppleTalk nodes would hate this. An AppleTalk > node sends messages right away to make sure its own address is unique, and > to find the nearest router, and verify the network number(s) and zone > name(s) for its local network. If the switch isn't forwarding these frames, > the Mac will think it's on a non-routed single network, when it probably > isn't. Worst of all, it might end up with the same address as some other > AppleTalk device. > > However.. I find it hard to believe that even with portfast enabled a > switch takes 15-30 seconds to forward traffic. Is that really true? > > Priscilla > > At 01:22 AM 5/2/01, Jim Gillen wrote: > >I have had plenty of experience with this problem when I updated a token > ring > >network to a fully switched ethernet network. > > > >CISCO has a document on spanning tree and these types of problems. > > > >Enabling portfast still means that it takes 15-30sec for the port on a > switch > >to come up. If you workstation needs to attach to a server (as with the > >Novell > >Client) by sending GetNearestServer (or the like packets) and it needs a > >reply > >
Re: Spanning Tree Protocol [7:2564]
Leigh Anne Chisholm wrote: > > It's a symptom of the problem I wrote about earlier in this thread. When a > MAC becomes active on the network, the computer isn't able to communicate for > the first 50 seconds the port detects the end-system is active. The port > begins in blocking mode, then transitions to listening, then learning. > Finally, once STP determines that a looped topology hasn't occurred, the port > is set to forwarding mode. This creates havoc with any end-system that > expects to receive over-the-network information within the first 50 seconds. > IP, IPX, AppleTalk - all face the same issue. > Well, this is picking nits, but the STP forwarding delay is only 30 seconds. The 50 second delay only occurs if the path to root is lost such that the root BPDU is not heard for maxage (20) seconds. A leaf user port only takes a 30-second hit. > The simple solution isn't to kill Spanning Tree on all switches - that's the > "I don't understand the problem so I'll do whatever works and create a bigger > problem" solution. The real solution is to enable portfast on all switch > ports that have end-systems directly connected. The caveat to this is to > ensure none of the end-systems are capable as acting as a bridge, forwarding > packets between LAN segments. Enabling portfast essentially disables > Spanning > Tree on a port - and Spanning Tree is used to ensure a loop-free environment. > Portfast doesn't disable STP at all. All it does is cause forwarding to occur without the conservative delay for listening and learning. The port still listens for BPDUs, will detect a topology loop, and will go into blocking to break that loop. But I definitely agree with Leigh Anne that it's a BAD idea to disable STP! But before STP ever gets a chance to do anything with a port, three other phases must complete: 1) speed/duplex auto-negotiation -- max of 3 seconds per the standard. 2) negotiation of trunking via DTP 3) negotiation of Etherchannel via PAgP The last two are typically very fast if the device on the other side is capable of negotiating. If not, then the retries for each can add up to as much as 15-20 seconds, depending on platform and code release. In CatOS, the macro "set port host" disables both of these and enables STP fast-forward/portfast. You can observe the progress by making the logging a bit more verbose: "set logging level spantree 6". And while we're at it, enable bpdu-guard so if someone does back-door and create a loop, the portfast-enabled port will be disabled. I'd love to see if that makes the Macs happy. Marty Adkins Email: [EMAIL PROTECTED] Mentor Technologies Phone: 240-568-6526 133 National Business Pkwy WWW: http://www.mentortech.com Annapolis Junction, MD 20701Cisco CCIE #1289 Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=2949&t=2564 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Passed BCRAN today ... [7:2948]
Just sqeaked by, but I passed !!! 1 more to go for CCNP then the hard stuff begins !! :-) I found the test to be a bit misleading. Many of the questions did not ask "enough" of a question to actually give a difinitive answer, and 1 question on x25 mappings the answer WAS NOT EVEN LISTED I commented on that one and moved on. Luck to all. CCIE or BUST BABIES = Chris from Chicago MasterCNE, 5.x CNE, ICNE, 4.x CNE, CCNA, MCP __ Do You Yahoo!? Yahoo! Auctions - buy the things you want at great prices http://auctions.yahoo.com/ Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=2948&t=2948 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: ACL [7:2882]
Why - Original Message - From: "BASSOLE Rock" To: Sent: Wednesday, May 02, 2001 7:24 AM Subject: ACL [7:2882] > Hi, > > Can we apply more then one ACL per interface?.. > > > Example: > > Interface Serial1 > ip access-group 102 in > ip access-group 103 out > ip access-group 104 in > ip access-group 105 out > > Thank you. > > Rock BASSOLE > Til: +33 (0) 1 45 96 22 03 > FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=2947&t=2882 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Spanning Tree Protocol [7:2564]
What switch and OS? I'm wondering if Cisco hasn't changed some thing since you ran into this. I think on a 6500 install we had it at about 10 seconds after power-on that a PC would be up (tcp/ip stack loaded) and successfully requesting a DHCP'd address (and not have any problems once portfast was set). -- Jason Roysdon, CCNP+Security/CCDP, MCSE, CNA, Network+, A+ List email: [EMAIL PROTECTED] Homepage: http://jason.artoo.net/ wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > Believe it or not it's true! We did some test/research on it and we had to > modify some of our login processes to allow the switch to go the STP > process for login, it appeared we were requesting to quickly for the switch. > > > -Original Message- > From: Priscilla Oppenheimer [mailto:[EMAIL PROTECTED]] > Sent: Wednesday, May 02, 2001 1:42 PM > To: [EMAIL PROTECTED] > Subject: Re: Spanning Tree Protocol [7:2564] > > > If it really takes 15-30 seconds for a switch to forward even when portfast > is enabled, I can see why AppleTalk nodes would hate this. An AppleTalk > node sends messages right away to make sure its own address is unique, and > to find the nearest router, and verify the network number(s) and zone > name(s) for its local network. If the switch isn't forwarding these frames, > the Mac will think it's on a non-routed single network, when it probably > isn't. Worst of all, it might end up with the same address as some other > AppleTalk device. > > However.. I find it hard to believe that even with portfast enabled a > switch takes 15-30 seconds to forward traffic. Is that really true? > > Priscilla > > At 01:22 AM 5/2/01, Jim Gillen wrote: > >I have had plenty of experience with this problem when I updated a token > ring > >network to a fully switched ethernet network. > > > >CISCO has a document on spanning tree and these types of problems. > > > >Enabling portfast still means that it takes 15-30sec for the port on a > switch > >to come up. If you workstation needs to attach to a server (as with the > >Novell > >Client) by sending GetNearestServer (or the like packets) and it needs a > >reply > >to attach during that 15 - 30 sec then it will fail to connect. There may > be > >other problems with the Mac's -??? > > > >I would read the document on the CISCO site and then if that doesn't help > let > >us know what is the nature of the problem. > > > > > > > > > > > > >>> "Jason Roysdon" 2/05/01 13:30:21 >>> > >This message has been scanned by MAILSweeper. > > > > > >The customer claims that even with portfast enabled the Macs won't function > >due to Spanning tree. Has anyone else heard any such rumors about this? > My > >guess, as you suggested, is that portfast would solve it, but supposedly it > >was tried before disabling spanning tree. > > > >-- > >Jason Roysdon, CCNP+Security/CCDP, MCSE, CNA, Network+, A+ > >List email: [EMAIL PROTECTED] > >Homepage: http://jason.artoo.net/ > > > > > > > >""Leigh Anne Chisholm"" wrote in message > >[EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > > > It's a symptom of the problem I wrote about earlier in this thread. > When > >a > > > MAC becomes active on the network, the computer isn't able to > communicate > >for > > > the first 50 seconds the port detects the end-system is active. The > port > > > begins in blocking mode, then transitions to listening, then learning. > > > Finally, once STP determines that a looped topology hasn't occurred, the > >port > > > is set to forwarding mode. This creates havoc with any end-system that > > > expects to receive over-the-network information within the first 50 > >seconds. > > > IP, IPX, AppleTalk - all face the same issue. > > > > > > The simple solution isn't to kill Spanning Tree on all switches - that's > >the > > > "I don't understand the problem so I'll do whatever works and create a > >bigger > > > problem" solution. The real solution is to enable portfast on all > switch > > > ports that have end-systems directly connected. The caveat to this is > to > > > ensure none of the end-systems are capable as acting as a bridge, > >forwarding > > > packets between LAN segments. Enabling portfast essentially disables > > > Spanning > > > Tree on a port - and Spanning Tree is used to ensure a loop-free > >environment. > > > > > > > > > -- Leigh Anne > > > > > > > -Original Message- > > > > From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] > > > > Sent: April 30, 2001 7:15 PM > > > > To: [EMAIL PROTECTED] > > > > Subject: Re: Spanning Tree Protocol [7:2564] > > > > > > > > > > > > Oh, speaking of AppleTalk. We've got a customer (not mine, but one of > >the > > > > engineers working the account bounced this off me): They claim their > >new > > > > Macs can't access the network if Spanning Tree is enabled. Supposedly > >this > > > > has been verified by Apple and TAC (but we've never had a customer lie > >to > > > > us, so that must
Re: BCRAN exam [7:2890]
It's not worth your time. If you know the other areas, 1-3 questions on it won't hurt you (if that, I've heard rumors of 0 questions). When is Cisco going to EOL those piece of junks? Sure, sure, they're great cheap desktop routers (ip & ipx), but the 800 line isn't that much more. -- Jason Roysdon, CCNP+Security/CCDP, MCSE, CNA, Network+, A+ List email: [EMAIL PROTECTED] Homepage: http://jason.artoo.net/ """[EMAIL PROTECTED], Michael (CAP, AFS, Contractor)""" wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > If this has been asked already forgive me but how much of the Series 700 is > covered on the BCRAN examI'm guessing not that much... > > thanks in advance, > > Mike > FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=2944&t=2890 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: FYI- [7:2897]
I'd love to see further breakouts at skill levels/job duties. Plus, with everyone afraid of technology companies right now, the big push for people to "re-educate" into Microsoft/Cisco jobs will probably slacken and keep demand up. Of course, it's all just speculation. If the US economy continues to fumble around and even tumble further down, then even though the need is there, companies won't be hiring and will put more work-load on their current IT staff. -- Jason Roysdon, CCNP+Security/CCDP, MCSE, CNA, Network+, A+ List email: [EMAIL PROTECTED] Homepage: http://jason.artoo.net/ ""Cooper, David"" wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > FYI > > > > > > > http://www.idc.com/itforecaster/itf20010320.stm > > > Dave Cooper - CCNP, CCDP, NNCSS > Network Engineer Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=2943&t=2897 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Lost Cisco CD [7:2727]
Dont Mind Rashid's dumb questions Don - Original Message - From: "Rashid Lohiya" To: Sent: Wednesday, May 02, 2001 3:20 AM Subject: Re: Lost Cisco CD [7:2727] > Uh! Silly question, but what does DMR stand for? > > Rashid > > ""Kevin Wigle"" wrote in message > [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > > ok, my internet email was down for a few hours.. > > > > You didn't offend me but you should reflect on how your response looks to > > the potential customers DMR could have from this list. You are using a > > corporate email account and therefore everytime you hit that send button, > > thousands of people have the availability to judge DMR through your > actions. > > > > If you can't see that then I can't help you either. > > > > Kevin Wigle > > > > - Original Message - > > From: > > To: > > Sent: Tuesday, May 01, 2001 10:38 AM > > Subject: Re: Lost Cisco CD [7:2727] > > > > > > > I am sorry if I have offended anyone but to me a two word reply > seems > > > downright ignorant. > > > > > > Hence my argument if you do want to help dont > > > > > > If you were a customer what would you think of a two word answer to a > > > solution ?? > > > > > > Not professional eitheir... > > > > > > Regards, Peter. > > > > > > > > > > > > > > > > > > "Kevin Wigle" on 02/05/2001 15:13:59 > > > > > > To: , > > > cc: > > > > > > Subject: Re: Lost Cisco CD [7:2727] > > > > > > > > > Peter, > > > > > > Just what is the matter with you??? > > > > > > I'm sure that DMR acceptable use policy for email doesn't include this > > kind > > > of abuse. > > > > > > Sure Patrick simply stated the obvious - but he didn't do it in an > > ignorant > > > way like your response. > > > > > > If you don't know that requesting help from your Cisco rep to replace a > > > lost > > > CD is obvious then his advice was helpful. > > > > > > Otherwise you do yourself and your company a dis-service by going off > the > > > deep end here. > > > > > > If I were Patrick I would send this thread to hr @ DMR and ask their > > > opinion > > > if this is the type of "advertising" that DMR wants on a high traffic, > > > highly visible and professional mail list. > > > > > > Can you guess their probable reply? > > > > > > Kevin Wigle > > > > > > - Original Message - > > > From: > > > To: > > > Sent: Tuesday, May 01, 2001 9:43 AM > > > Subject: Re: Lost Cisco CD [7:2727] > > > > > > > > > > Patrick, > > > > > > > > > > > > Im sorry... but if you going to bother replying at least try to be > > > f**king > > > > helpful... > > > > > > > > if you are not... dont bother please !!! > > > > > > > > Regards, Peter. > > > > > > > > > > > > > > > > > > > > > > > > "Patrick Bass" on 01/05/2001 14:15:21 > > > > > > > > To: > > > > cc: > > > > > > > > Subject: Re: Lost Cisco CD [7:2727] > > > > > > > > > > > > Your Rep > > > > > > > > - Original Message - > > > > From: > > > > Newsgroups: groupstudy.cisco > > > > Sent: Tuesday, May 01, 2001 7:02 AM > > > > Subject: Lost Cisco CD [7:2727] > > > > > > > > > > > > > Hi All, > > > > > > > > > > We have the Cisco Works 2000 package in work, I wish to re-install > > this > > > > > software, but as usual > > > > > the install CD has gone missing... I only have the documentation > > > > > > > > > > Can anyone tell me what the best point of contact in Cisco is for > > > > obtaining > > > > > a replacement CD ?? > > > > > > > > > > I am thinking this process could take some time > > > > > > > > > > Thanks for your help... > > > > > > > > > > Best Regards, Peter. > > > > > FAQ, list archives, and subscription info: > > > > http://www.groupstudy.com/list/cisco.html > > > > > Report misconduct and Nondisclosure violations to > [EMAIL PROTECTED] > > > > FAQ, list archives, and subscription info: > > > http://www.groupstudy.com/list/cisco.html > > > > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] > > > FAQ, list archives, and subscription info: > > http://www.groupstudy.com/list/cisco.html > > > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] > > FAQ, list archives, and subscription info: > http://www.groupstudy.com/list/cisco.html > > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] > FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=2946&t=2727 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Cisco VPN Client..... [7:2865]
And folks get protocols and tcp/udp ports confused. It's not simply running on another port, but a different protocol (ESP). -- Jason Roysdon, CCNP+Security/CCDP, MCSE, CNA, Network+, A+ List email: [EMAIL PROTECTED] Homepage: http://jason.artoo.net/ ""Chuck Larrieu"" wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > You should permit ip protocols 50 and 51 ( IPSec AH and ESP ) on the > firewall. > > http://www.cisco.com/cgi-bin/Support/PSP/psp_view.pl?p=Hardware:PIX&s=Softwa > re_Configuration#Software_Samples_%26_Tips > watch the word wrap > > you need a CCO login to get here, but there are a lot of configuration and > troubleshooting examples > > HTH > > Chuck > > > -Original Message- > From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] On Behalf Of > Greene, Patrick > Sent: Wednesday, May 02, 2001 2:49 AM > To: [EMAIL PROTECTED] > Subject: Cisco VPN Client. [7:2865] > > Is there anyway to force the Cisco VPN client to use port 80 for > communications? This would be used to get through firewall's allowing only > port 80. > > Thank You, > Patrick Greene CCNP,CCDP,MCSE,MCNE > Information Technologies Enterprises > Email:[EMAIL PROTECTED] > Office:800-535-6544 > Mobile:704-953-6949 > Fax:704-896-5797 > URL: www.infotechent.net and > www.alwaysweb.com > > [GroupStudy.com removed an attachment of type image/gif which had a name of > PRTNRPR.GIF] > > [GroupStudy.com removed an attachment of type image/bmp which had a name of > MCSP_P.bmp] > FAQ, list archives, and subscription info: > http://www.groupstudy.com/list/cisco.html > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] > FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=2941&t=2865 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Cisco VPN Client..... [7:2865]
Depending on what you configure, you would require the first, and possible one or both of the latter: Protocol 50 (ESP) Protocol 51 (AH) Protocol 17 (UDP) Port 500 (ISAKMP) http://www.cis.ohio-state.edu/cgi-bin/rfc/rfc1700.html -- Jason Roysdon, CCNP+Security/CCDP, MCSE, CNA, Network+, A+ List email: [EMAIL PROTECTED] Homepage: http://jason.artoo.net/ ""Allen May"" wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > hehe...funny. If you could it'd be a big time security hole! Besides...it > requires 2 ports to work. I think this was the subject of the April fools > RFC this year too. Port 80 being used to run tunnels so you don't have to > bother with the network admin to get your job done. ;) I noticed that > PCAnywhere won't allow you to go down to port 80 either. > > Allen May > - Original Message - > From: "Greene, Patrick" > To: > Sent: Wednesday, May 02, 2001 4:48 AM > Subject: Cisco VPN Client. [7:2865] > > > > Is there anyway to force the Cisco VPN client to use port 80 for > > communications? This would be used to get through firewall's allowing > only > > port 80. > > > > Thank You, > > Patrick Greene CCNP,CCDP,MCSE,MCNE > > Information Technologies Enterprises > > Email:[EMAIL PROTECTED] > > Office:800-535-6544 > > Mobile:704-953-6949 > > Fax:704-896-5797 > > URL: www.infotechent.net and > > www.alwaysweb.com > > > > [GroupStudy.com removed an attachment of type image/gif which had a name > of > > PRTNRPR.GIF] > > > > [GroupStudy.com removed an attachment of type image/bmp which had a name > of > > MCSP_P.bmp] > > FAQ, list archives, and subscription info: > http://www.groupstudy.com/list/cisco.html > > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] > FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=2942&t=2865 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Cisco PIX vs Checkpoint FIrewall-1 [7:2878]
Cisco's CCO has info: http://cisco.com/go/pix/ Cisco always has links to studies that show them on top: http://sartryck.idg.se/art/firewall7_eng.html -- Jason Roysdon, CCNP+Security/CCDP, MCSE, CNA, Network+, A+ List email: [EMAIL PROTECTED] Homepage: http://jason.artoo.net/ ""Hatim badr"" wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > Hi , > > I would like to know the pluses and minuses of each product . Currently We > are using checkpoint and I want to convince my management to switch to cisco > PIX firewall . > > Thanks > > Hatim > > > > > > > > > Get free email and a permanent address at http://www.netaddress.com/?N=1 > FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=2940&t=2878 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Spanning Tree Protocol [7:2564]
Thanks for the testing! I have bad news for you. ;-) Three or 4 seconds is a lot of time. An AppleTalk device sends its AARP frame to see if its address is unique 10 times, with only 1/5 of a second between tries. Then it sends a ZIPGetNetInfo. It tries that 3 times, I think with the same timeout. This could happen before the switch is forwarding, even with portfast enabled it seems. (These timeout values may be dated. I haven't looked at AppleTalk in a while! But I bet it's still really fast, perhaps even faster on a G4? ;-) My guess is that IPX and DHCP are really fast too. ARGH. Priscilla At 03:15 PM 5/2/01, Jason Roysdon wrote: >I wonder what switch and software version you were running at the time? I'm >trying this on a Catalyst 3524 XL Inline Power running 12.0(5.2)XU (I >haven't upgraded it, so that's whatever it shipped with). > >I did a number of tests (but not enough samples to make it 100% accurate on >the timing, but a general idea +/- 2 seconds). The digits "00:16:47," are >time since boot, while the dated timestamps are accurate GMT. For each of >my tests, I would attempt to physically plug in the patch cable at :00 >seconds based on the clock on my laptop, and both the laptop and switch are >accurate from ntp (the log is not timestamped at :00 seconds, but just for >your reference). > >The first with the port in the "out of the box" state with it left at >defaults: >00:16:54: ST: FastEthernet0/6 vlan 1 -> listening >May 2 11:33:02.985 PDT: %LINK-3-UPDOWN: Interface FastEthernet0/6, changed >state to up >May 2 11:33:03.986 PDT: %LINEPROTO-5-UPDOWN: Line protocol on Interface >FastEthernet0/6, >changed state to up >00:17:09: ST: FastEthernet0/6 vlan 1 -> learning >00:17:24: ST: sent Topology Change Notice on Port Group 1 vlan 1 >00:17:24: ST: FastEthernet0/6 vlan 1 -> forwarding >! 32 seconds > >At 32 seconds I had ping replies at my desktop (using a static address, as >DHCP wouldn't be accurate to see how fast it comes up). > >Next, I wanted to see if the inline power slowed bringing the power up. It >doesn't appear to (of course, thinking about it, the only time it applies >power is if it sees a certain loop/load between a pair of wires, the details >I don't recall): > >Cat3524(config-if)#power inline never >00:18:54: ST: FastEthernet0/6 vlan 1 -> listening >May 2 11:35:02.497 PDT: %LINK-3-UPDOWN: Interface FastEthernet0/6, changed >state to up >May 2 11:35:03.498 PDT: %LINEPROTO-5-UPDOWN: Line protocol on Interface >FastEthernet0/6, >changed state to up >00:19:09: ST: FastEthernet0/6 vlan 1 -> learning >00:19:24: ST: sent Topology Change Notice on Port Group 1 vlan 1 >00:19:24: ST: FastEthernet0/6 vlan 1 -> forwarding >!32 seconds > >Again, 32 seconds with spanning tree left to the defaults. 30 seconds as >far as the switch was concerned. > >Now lets enable portfast: > >Cat3524(config-if)#span portfast >00:20:54: ST: FastEthernet0/6 vlan 1 ->jump to forwarding from blocking >May 2 11:37:02.483 PDT: %LINK-3-UPDOWN: Interface FastEthernet0/6, changed >state to up >May 2 11:37:03.485 PDT: %LINEPROTO-5-UPDOWN: Line protocol on Interface >FastEthernet0/6, >changed state to up >! 3 seconds > >In 3 seconds my PC was pinging with portfast set. > >My final test, I wanted to see if locking to speed and duplex would increase >the time at all: > >interface FastEthernet0/6 > duplex full > speed 100 > power inline never > spanning-tree portfast > >Cat3524# >00:22:54: ST: FastEthernet0/6 vlan 1 ->jump to forwarding from blocking >May 2 11:39:03.165 PDT: %LINK-3-UPDOWN: Interface FastEthernet0/6, changed >state to up >May 2 11:39:04.166 PDT: %LINEPROTO-5-UPDOWN: Line protocol on Interface >FastEthernet0/6, >changed state to up >May 2 11:39:06.622 PDT: %RTD-1-LINK_FLAP: FastEthernet0/6 link down/up 5 >times per minsh >int > >Oops, the switch doesn't like all the flapping of my tests and left it in an >down/up state (good thing to know though!). > >Ok, give it a moment without the cable connected and try again: > >Cat3524# >00:26:54: ST: FastEthernet0/6 vlan 1 ->jump to forwarding from blocking >May 2 11:43:03.200 PDT: %LINK-3-UPDOWN: Interface FastEthernet0/6, changed >state to up >May 2 11:43:04.201 PDT: %LINEPROTO-5-UPDOWN: Line protocol on Interface >FastEthernet0/6, >changed state to up >!4 seconds > >I think this time I was a little slow getting the cable in, but basically >the same results, 3-4 seconds and the port is up and pinging from my >connected laptop. That shouldn't be a problem for any network devices, I >wouldn't think. The only way I could see it affecting is if during boot the >NIC is not activated until the drivers load, and then within 1-2 seconds the >protocol stack gets access to the NIC before the switch takes the port >up/up, but I don't think this would be any different with or without >spanning-tree enabled. > > >-- >Jason Roysdon, CCNP+Security/CCDP, MCSE, CNA, Network+, A+ >List email: [EMAIL PROTECTED] >Homepage: http://jason.artoo.net/ > > > >
OT: Hotmail account members still valid posters [Re: CCNA Test [7:2938]
No Boson experience, but ditto on the Hotmail. This list is public (well, the archive is) and searched by all your favorite search engines and spam-miners, and one less place to be giving out an email account we care about. If anyone really wants my email address, it's the same as my Homepage domain, just swap the dot for the @. -- Jason Roysdon, CCNP+Security/CCDP, MCSE, CNA, Network+, A+ List email: [EMAIL PROTECTED] Homepage: http://jason.artoo.net/ ""ccnawan"" wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > I use a hotmail address, and I have to politely disagree about the Boson > Tests. I am a Cicso Reseller, and I presonally know CCIE who have told me > that Boson is good. And they work for Cisco. > > Dan Evensen CCNAWS > > > > > I think. The > > > Boson test isn't too expensive (30 Dollar range) can I get > > > some feedback on > > > the different tests?? > > > > from my experience, none of the CCNA practice tests seem that great, and I > > often hear comments from people who've taken the exams saying how the > > questions were very different to the practice tests. I certainly wouldn't > > waste money on them - there are plenty of free questions to be found, plus > > the study guides normally have a good selection. > > > > Practice tests usually sell themselves on being 'real exam simulations' to > > prepare you for the real exam situation. Well, even if you've never used > > exam software before I don't think it will present too many difficulties! > > > > don't pay much attention to testimonials either - we seem to get a lot of > > these posted on the list from anonymous/hotmail addresses with glowing > FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=2938&t=2938 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
CVOICE question [7:2937]
Hi all, I wanted to know if anybody knows where I can get the cvoice materials other than the student guide. As I understand it the new exam has all the previous exam's contents but that they have been updated the rumour around here is that the new exam is going to be split up into VoIP, VATM, VoFR. If someone can send me the student guid eI would be grateful. Is the Voice over IP book good for this exam. Any other materials will be helpful plz send me the links a ny helpful web sites. Omer Ehsan Dar Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=2937&t=2937 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: VLAN's and Routers [7:2891]
Sammi, At my last position I was called in to redesign a smallish corporate network. They had 23 VLANs running on a 2621 router. The average CPU utilization was in the range of 30% to 40%. When I dropped it to 4 VLANs the utilization dropped to between 1% and 3%. While I'm sure that the 3600 could do the job you want it to do, you really don't need any more than a 2600 series. Hope this helps, Karen *** REPLY SEPARATOR *** On 5/2/2001 at 11:17 AM Sammi wrote: >Thanks all, for the advice. >Looks like I should go with a router, am looking at 2600 and 3600 >series. >I will have no more than 6 VLAN's, more likely 4. >Any suggestions on which model to purchase? >FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html >Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=2936&t=2891 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Spanning Tree Protocol [7:2564]
There is an Apple knowledgebase article about this issue. It is Doc#30922. Ejay Hire -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] Sent: Wednesday, May 02, 2001 2:01 PM To: [EMAIL PROTECTED] Subject: RE: Spanning Tree Protocol [7:2564] Believe it or not it's true! We did some test/research on it and we had to modify some of our login processes to allow the switch to go the STP process for login, it appeared we were requesting to quickly for the switch. -Original Message- From: Priscilla Oppenheimer [mailto:[EMAIL PROTECTED]] Sent: Wednesday, May 02, 2001 1:42 PM To: [EMAIL PROTECTED] Subject: Re: Spanning Tree Protocol [7:2564] If it really takes 15-30 seconds for a switch to forward even when portfast is enabled, I can see why AppleTalk nodes would hate this. An AppleTalk node sends messages right away to make sure its own address is unique, and to find the nearest router, and verify the network number(s) and zone name(s) for its local network. If the switch isn't forwarding these frames, the Mac will think it's on a non-routed single network, when it probably isn't. Worst of all, it might end up with the same address as some other AppleTalk device. However.. I find it hard to believe that even with portfast enabled a switch takes 15-30 seconds to forward traffic. Is that really true? Priscilla At 01:22 AM 5/2/01, Jim Gillen wrote: >I have had plenty of experience with this problem when I updated a token ring >network to a fully switched ethernet network. > >CISCO has a document on spanning tree and these types of problems. > >Enabling portfast still means that it takes 15-30sec for the port on a switch >to come up. If you workstation needs to attach to a server (as with the >Novell >Client) by sending GetNearestServer (or the like packets) and it needs a >reply >to attach during that 15 - 30 sec then it will fail to connect. There may be >other problems with the Mac's -??? > >I would read the document on the CISCO site and then if that doesn't help let >us know what is the nature of the problem. > > > > > > >>> "Jason Roysdon" 2/05/01 13:30:21 >>> >This message has been scanned by MAILSweeper. > > >The customer claims that even with portfast enabled the Macs won't function >due to Spanning tree. Has anyone else heard any such rumors about this? My >guess, as you suggested, is that portfast would solve it, but supposedly it >was tried before disabling spanning tree. > >-- >Jason Roysdon, CCNP+Security/CCDP, MCSE, CNA, Network+, A+ >List email: [EMAIL PROTECTED] >Homepage: http://jason.artoo.net/ > > > >""Leigh Anne Chisholm"" wrote in message >[EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > > It's a symptom of the problem I wrote about earlier in this thread. When >a > > MAC becomes active on the network, the computer isn't able to communicate >for > > the first 50 seconds the port detects the end-system is active. The port > > begins in blocking mode, then transitions to listening, then learning. > > Finally, once STP determines that a looped topology hasn't occurred, the >port > > is set to forwarding mode. This creates havoc with any end-system that > > expects to receive over-the-network information within the first 50 >seconds. > > IP, IPX, AppleTalk - all face the same issue. > > > > The simple solution isn't to kill Spanning Tree on all switches - that's >the > > "I don't understand the problem so I'll do whatever works and create a >bigger > > problem" solution. The real solution is to enable portfast on all switch > > ports that have end-systems directly connected. The caveat to this is to > > ensure none of the end-systems are capable as acting as a bridge, >forwarding > > packets between LAN segments. Enabling portfast essentially disables > > Spanning > > Tree on a port - and Spanning Tree is used to ensure a loop-free >environment. > > > > > > -- Leigh Anne > > > > > -Original Message- > > > From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] > > > Sent: April 30, 2001 7:15 PM > > > To: [EMAIL PROTECTED] > > > Subject: Re: Spanning Tree Protocol [7:2564] > > > > > > > > > Oh, speaking of AppleTalk. We've got a customer (not mine, but one of >the > > > engineers working the account bounced this off me): They claim their >new > > > Macs can't access the network if Spanning Tree is enabled. Supposedly >this > > > has been verified by Apple and TAC (but we've never had a customer lie >to > > > us, so that must be gospel, right. Heh, not). I don't know what >exactly > > > the details are, but basically it just doesn't function. The simple > > > solution is to kill spanning-tree on all the switches, but this is at a > > > number of public schools, and I can't wait to hear about a kid bringing >in > > > his Linksys 8 port 10/100 switch and melting their network. > > > > > > Anyone else hear such rumors? > > > > > > -- > > > Jason Roysdon, CCNP+Security/
Re: NEED CCIE in the WEST VIRGINIA AREA [7:2919]
Will a CCNA do? Raul - Original Message - From: "Claudette Graham" To: Sent: Wednesday, May 02, 2001 2:02 PM Subject: NEED CCIE in the WEST VIRGINIA AREA [7:2919] > The following is a job description I recently received from my client which > needs to be filled immediately. > > We are looking for a Cisco Certified CCIE, living and working in West > Virginia. > > Please send resume and rates as soon as possible. > > CCIE > > DURATION: 1 YEAR (CONTRACT) > > START DATE: 7/1/01 - 6/30/02 > > LOCATION: WEST VIRGINIA > > > NEED TO FILL NO LATER THAN FRIDAY, MAY 4TH 2001 > > DESCRIPTION OF WORK ASSIGNMENT: > > The vendor and/or his protigies should be authorized to ser vice 3Com, > Nortel Networks, and Enterasys/Cabletron equipment currently installed in > State agencies. > The vendor should provide proof from the manufacturer confirming this > authorization to service the equipment and a list of the products covered. > > PROJECT / ENVIRONMENT DESCRIPTION: > > What type of work is being done? > * Custom Application Development > * Application Management Outsourcing > * Package Integration > * Application Enabling Design > * Solutions Consulting & Integration > * Other network hardware installation > > > LOCALS PLEASE > > PLEASE FORWARD A COPY OF YOUR RESUME AND CALL ME IMMEDIATELY...Thanks > (:) ) > > Claudette > > > * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * > Claudette Graham > Technical Recruiter > American Employment Solutions, Inc > Phone: 800-995-6858 > Fax: 888-995-8788 > Email: [EMAIL PROTECTED] > Website: www.amesinc.org > > * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * > FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=2934&t=2919 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: VLAN's and Routers [7:2534]
Sammi, in terms of sizing, the best piece of equipment is the least cost
router that does the job.
Think in these terms - traffic flow, application requirements, etc.
If you were routing between two subnets, using two ethernet ports, and had
75 users per subnet, how would you provision?
The only difference between 150 users on four physical subnets and 150 users
on four logical subnets is the single interface that traffic in and out
uses, versus the four interfaces.
Are your applications such that 150 folks are going to overload that 100
megabits full duplex link? In practical terms, will there be a lot of
inter-VLAN traffic? I.e do members of each VLAN access the same primary
servers ( which would lead me to wonder why you need VLANs in the first
place ), or do they all access servers specific to their VLAN? All your
routes will be in cache probably 100% of the time. You won't be killing the
CPU with route lookups in any case.
HTH
Chuck
-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]
Sent: Wednesday, May 02, 2001 12:02 PM
To: [EMAIL PROTECTED]
Subject:Re: VLAN's and Routers [7:2534]
On 2 May 2001 02:45:45 -0400, [EMAIL PROTECTED] ("Bill Pearch")
wrote:
>This is a Cisco type email list. There IS a Cisco answer.
And that's what I'm after, was just exploring other possibilities.
Now I need to decide what type of router to purchase; ~150 users split
between 4-6 VLAN's.
Thanks for the tips!
FAQ, list archives, and subscription info:
http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=2932&t=2534
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Spanning Tree Protocol [7:2564]
I wonder what switch and software version you were running at the time? I'm trying this on a Catalyst 3524 XL Inline Power running 12.0(5.2)XU (I haven't upgraded it, so that's whatever it shipped with). I did a number of tests (but not enough samples to make it 100% accurate on the timing, but a general idea +/- 2 seconds). The digits "00:16:47," are time since boot, while the dated timestamps are accurate GMT. For each of my tests, I would attempt to physically plug in the patch cable at :00 seconds based on the clock on my laptop, and both the laptop and switch are accurate from ntp (the log is not timestamped at :00 seconds, but just for your reference). The first with the port in the "out of the box" state with it left at defaults: 00:16:54: ST: FastEthernet0/6 vlan 1 -> listening May 2 11:33:02.985 PDT: %LINK-3-UPDOWN: Interface FastEthernet0/6, changed state to up May 2 11:33:03.986 PDT: %LINEPROTO-5-UPDOWN: Line protocol on Interface FastEthernet0/6, changed state to up 00:17:09: ST: FastEthernet0/6 vlan 1 -> learning 00:17:24: ST: sent Topology Change Notice on Port Group 1 vlan 1 00:17:24: ST: FastEthernet0/6 vlan 1 -> forwarding ! 32 seconds At 32 seconds I had ping replies at my desktop (using a static address, as DHCP wouldn't be accurate to see how fast it comes up). Next, I wanted to see if the inline power slowed bringing the power up. It doesn't appear to (of course, thinking about it, the only time it applies power is if it sees a certain loop/load between a pair of wires, the details I don't recall): Cat3524(config-if)#power inline never 00:18:54: ST: FastEthernet0/6 vlan 1 -> listening May 2 11:35:02.497 PDT: %LINK-3-UPDOWN: Interface FastEthernet0/6, changed state to up May 2 11:35:03.498 PDT: %LINEPROTO-5-UPDOWN: Line protocol on Interface FastEthernet0/6, changed state to up 00:19:09: ST: FastEthernet0/6 vlan 1 -> learning 00:19:24: ST: sent Topology Change Notice on Port Group 1 vlan 1 00:19:24: ST: FastEthernet0/6 vlan 1 -> forwarding !32 seconds Again, 32 seconds with spanning tree left to the defaults. 30 seconds as far as the switch was concerned. Now lets enable portfast: Cat3524(config-if)#span portfast 00:20:54: ST: FastEthernet0/6 vlan 1 ->jump to forwarding from blocking May 2 11:37:02.483 PDT: %LINK-3-UPDOWN: Interface FastEthernet0/6, changed state to up May 2 11:37:03.485 PDT: %LINEPROTO-5-UPDOWN: Line protocol on Interface FastEthernet0/6, changed state to up ! 3 seconds In 3 seconds my PC was pinging with portfast set. My final test, I wanted to see if locking to speed and duplex would increase the time at all: interface FastEthernet0/6 duplex full speed 100 power inline never spanning-tree portfast Cat3524# 00:22:54: ST: FastEthernet0/6 vlan 1 ->jump to forwarding from blocking May 2 11:39:03.165 PDT: %LINK-3-UPDOWN: Interface FastEthernet0/6, changed state to up May 2 11:39:04.166 PDT: %LINEPROTO-5-UPDOWN: Line protocol on Interface FastEthernet0/6, changed state to up May 2 11:39:06.622 PDT: %RTD-1-LINK_FLAP: FastEthernet0/6 link down/up 5 times per minsh int Oops, the switch doesn't like all the flapping of my tests and left it in an down/up state (good thing to know though!). Ok, give it a moment without the cable connected and try again: Cat3524# 00:26:54: ST: FastEthernet0/6 vlan 1 ->jump to forwarding from blocking May 2 11:43:03.200 PDT: %LINK-3-UPDOWN: Interface FastEthernet0/6, changed state to up May 2 11:43:04.201 PDT: %LINEPROTO-5-UPDOWN: Line protocol on Interface FastEthernet0/6, changed state to up !4 seconds I think this time I was a little slow getting the cable in, but basically the same results, 3-4 seconds and the port is up and pinging from my connected laptop. That shouldn't be a problem for any network devices, I wouldn't think. The only way I could see it affecting is if during boot the NIC is not activated until the drivers load, and then within 1-2 seconds the protocol stack gets access to the NIC before the switch takes the port up/up, but I don't think this would be any different with or without spanning-tree enabled. -- Jason Roysdon, CCNP+Security/CCDP, MCSE, CNA, Network+, A+ List email: [EMAIL PROTECTED] Homepage: http://jason.artoo.net/ ""Jim Gillen"" wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > I have had plenty of experience with this problem when I updated a token ring > network to a fully switched ethernet network. > > CISCO has a document on spanning tree and these types of problems. > > Enabling portfast still means that it takes 15-30sec for the port on a switch > to come up. If you workstation needs to attach to a server (as with the > Novell > Client) by sending GetNearestServer (or the like packets) and it needs a > reply > to attach during that 15 - 30 sec then it will fail to connect. There may be > other problems with the Mac's -??? > > I would read the document on the CISCO site and then if that doesn't help let > us know what is the nature of the problem.
BGP Decision Process [7:2930]
We have two routers connected to two different ISPs through BGP. We are using HSRP for internal redundancy. When the primary router in our HSRP receives a packet destined for a different ISP then our two, which way would our router send it if the length of the AS-Path is equal for both paths. If I am reading it right the router should forward out to the ISP it is connected to because EBGP is preferred over IBGP when the AS-Path is the same and there is no weight or preference. Am I correct? Also can we prefer one path over another based on the destination AS number? For example if we always want to reach AS 155 through provider A is there a way to do this? Thank you Brett Johnson Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=2930&t=2930 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: OSPF redistribution [7:2909]
I'm not so sure that it "flushes" the database. LSA's are sent out advertising the new route. This is true whenever changes to the routing table are made / detected / updated. One way to actually see what is going on is to do a debug IP OSPF LSA-GENERATION The LSA's are created and sent very quickly. If you have a sniffer on the wire you will see the new route as part of the packet, and sent out immediately. HTH Chuck -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] On Behalf Of mak Sent: Wednesday, May 02, 2001 10:22 AM To: [EMAIL PROTECTED] Subject:OSPF redistribution [7:2909] Hi all, I have a question is that In the existing network all routers are running OSPF and "redistribute static subnets" are already configured. If I add one more static route in one of the routers. Am I right that there is change in OSPF database, then it would trigger to flush the routing table and also the other OSPF routers in the network? However, I always need to "clear ip route *" in some routers for quicker response. Thanks Best Regards, mak FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=2929&t=2909 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: VLAN's and Routers [7:2534]
On 2 May 2001 02:45:45 -0400, [EMAIL PROTECTED] ("Bill Pearch")
wrote:
>This is a Cisco type email list. There IS a Cisco answer.
And that's what I'm after, was just exploring other possibilities.
Now I need to decide what type of router to purchase; ~150 users split
between 4-6 VLAN's.
Thanks for the tips!
Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=2928&t=2534
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Multiple VLAN addressing question [7:2905]
What's the reason for not using the supervisor module Eth port to provide the trunk? TIA! Robert -Original Message- From: Dwayne Saunders [mailto:[EMAIL PROTECTED]] Sent: Wednesday, May 02, 2001 2:10 PM To: [EMAIL PROTECTED] Subject: RE: Multiple VLAN addressing question [7:2905] For starters I would not use the supervisor module to trunk use one of your fast Ethernet port on module Two for the trunk. D'Wayne Saunders Senior MIS Operator,CCNA -Original Message- From: [EMAIL PROTECTED] (Richard Chang) [mailto:[EMAIL PROTECTED]] Sent: Thursday, 3 May 2001 2:29 To: [EMAIL PROTECTED] Subject: Multiple VLAN addressing question [7:2905] Dear CiscoGroupstudy.com I am having trouble getting the trunk up between a Cisco 7513 Router and a Cisco Switch 5500 so that VLAN's 10 and 20 can cross it. It may be because I can't set interface sc0 on the 5500 switch correctly. Assume VLAN 10 is 10.10.0.0/16 port 2/1 on Cisco 5500 switch VLAN 20 is 10.20.0.0/16 port 2/2 on Cisco 5500 switch Assume ISL Trunk 1/1 connected between 1/1 on Cisco 5500 switch to FastEthernet 3/0/0 to Cisco 7513 Router FastEthernet3/0/0.10 = 10.10.1.1 FastEthernet3/0/0.20 = 10.20.1.1 what should I use for the address for interface sc0 on the Switch? Interface sc0 determines port 1/1 address on the switch-- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=2927&t=2905 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Policy routing [7:2871]
This would be a good case of making it work before adding the other commands, and then knowing why you're doing it. Hence, I'd ask these questions: 1. How can 1.1.1.1 and 2.2.2.x/24 be in the same VLAN/subnet unless one is a secondary off the high-end router? (traceroute 1.1.1.1) 2. If they are indeed in the same subnet, then does the policy-map really 'route' to 1.1.1.1? (show route-map) 3. Do you understanding policy routing and the purpose of performing it? (show ip policy) 4. Have you checked the status of the ACL used for the route-map? (show access-list 1) 5. What happens when the policy route is not implemented? Is your routing to 1.1.1.1 working then? (show ip route) 6. Are you sure your configuration is correct? (http://www.cisco.com/warp/public/105/36.html) -e- - Original Message - From: "Andy Low" To: Sent: Wednesday, May 02, 2001 4:44 AM Subject: Policy routing [7:2871] > Hi, > > I am having problem with my policy routing, hope that anyone can help me. > > 1) 1.1.1.1 is a low-end router connected to my high-end router ( multihomed, > running HSRP). > 2) 1.1.1.1 is in VLAN 154 > 3) 5.5.5.1 is the another neighbour router peering with my high-router > router. > > The problem is whenever I implement "ip policy route-map TEST" on the "int > fa1/1/0.154", the routing to router 1.1.1.1 will fail and the policy-routing > won't work. > > Please advise. > > Andy > > > Configuration: > > interface FastEthernet1/1/0.154 > encapsulation isl 154 > ip address 2.2.2.253 255.255.255.0 > no ip redirects > no ip directed-broadcast > standby 154 priority 120 preempt > standby 154 ip 2.2.2.1 > > > ip access-list 1 permit 1.1.1.1 > > route-map TEST permit 1 > match ip address 1 > set ip next-hop 5.5.5.1 > FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=2924&t=2871 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: NEED CCIE in the WEST VIRGINIA AREA [7:2919]
this is a study list. you can post jobs to [EMAIL PROTECTED] also, don't you find it interesting that you client wants a CCIE (Cisco Certified Internetwork Expert) but has 3Com, Nortel, and Cabletron requirements in the job description? You might wish to clarify that with them before moving on a 6-figure annual CCIE (and CCIE's ask for even more $$$ for contract work because of the inherent risk) -e- - Original Message - From: "Claudette Graham" To: Sent: Wednesday, May 02, 2001 11:02 AM Subject: NEED CCIE in the WEST VIRGINIA AREA [7:2919] > The following is a job description I recently received from my client which > needs to be filled immediately. > > We are looking for a Cisco Certified CCIE, living and working in West > Virginia. > > Please send resume and rates as soon as possible. > > CCIE > > DURATION: 1 YEAR (CONTRACT) > > START DATE: 7/1/01 - 6/30/02 > > LOCATION: WEST VIRGINIA > > > NEED TO FILL NO LATER THAN FRIDAY, MAY 4TH 2001 > > DESCRIPTION OF WORK ASSIGNMENT: > > The vendor and/or his protigies should be authorized to ser vice 3Com, > Nortel Networks, and Enterasys/Cabletron equipment currently installed in > State agencies. > The vendor should provide proof from the manufacturer confirming this > authorization to service the equipment and a list of the products covered. > > PROJECT / ENVIRONMENT DESCRIPTION: > > What type of work is being done? > * Custom Application Development > * Application Management Outsourcing > * Package Integration > * Application Enabling Design > * Solutions Consulting & Integration > * Other network hardware installation > > > LOCALS PLEASE > > PLEASE FORWARD A COPY OF YOUR RESUME AND CALL ME IMMEDIATELY...Thanks > (:) ) > > Claudette > > > * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * > Claudette Graham > Technical Recruiter > American Employment Solutions, Inc > Phone: 800-995-6858 > Fax: 888-995-8788 > Email: [EMAIL PROTECTED] > Website: www.amesinc.org > > * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * > FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=2926&t=2919 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: NEED CCIE in the WEST VIRGINIA AREA [7:2919]
Non Cisco certified CCIE's need not apply :-> -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] On Behalf Of Claudette Graham Sent: Wednesday, May 02, 2001 11:02 AM To: [EMAIL PROTECTED] Subject:NEED CCIE in the WEST VIRGINIA AREA [7:2919] The following is a job description I recently received from my client which needs to be filled immediately. We are looking for a Cisco Certified CCIE, living and working in West Virginia. Please send resume and rates as soon as possible. CCIE DURATION: 1 YEAR (CONTRACT) START DATE: 7/1/01 - 6/30/02 LOCATION: WEST VIRGINIA NEED TO FILL NO LATER THAN FRIDAY, MAY 4TH 2001 DESCRIPTION OF WORK ASSIGNMENT: The vendor and/or his protigies should be authorized to ser vice 3Com, Nortel Networks, and Enterasys/Cabletron equipment currently installed in State agencies. The vendor should provide proof from the manufacturer confirming this authorization to service the equipment and a list of the products covered. PROJECT / ENVIRONMENT DESCRIPTION: What type of work is being done? * Custom Application Development * Application Management Outsourcing * Package Integration * Application Enabling Design * Solutions Consulting & Integration * Other network hardware installation LOCALS PLEASE PLEASE FORWARD A COPY OF YOUR RESUME AND CALL ME IMMEDIATELY...Thanks (:) ) Claudette * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * Claudette Graham Technical Recruiter American Employment Solutions, Inc Phone: 800-995-6858 Fax: 888-995-8788 Email: [EMAIL PROTECTED] Website: www.amesinc.org * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=2925&t=2919 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: CCIE written and BOSON tests [7:2840]
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Amen. Personally, I found the tests INVALUABLE in passing the CCIE written on the first go-round. I only hope that I can repeat that performance for the lab in September... :) - -Brant - - Original Message - From: "scott mann" To: Sent: Tuesday, May 01, 2001 10:39 PM Subject: CCIE written and BOSON tests [7:2840] > Pre-CCIE written folks, > > Instead of continually responing to the same question, I will > answer it here: > > I passed the CCIE written by using ALL 3 of the BOSON tests. I > cannot really say which test had more questions in relation to the > actual exam, but suffice it to say that instead of asking me which > one of the three is the best, you should plunk down the measly $90 > and buy all three. Isn't the point of this to gain knowledge and > become excellent at what you do through that knowledge? Spend time > going through all 600+ questions(some are repetitive) and learn > not only the answers, but the why; use the referenced links to > Cisco's website and/or Caslow book. You can never study too much > material as long as it's relevant to your future success. Right? > > Oh, and don't take this to mean that the BOSON's will be enough to > pass alone, you need some good fundamentals in networking and a > couple of the better books out there. I suggest the new CCIE > TCP/IP volume II book by Cisco Press, and Volume II caslow book. > Read and remember! > > Good Luck > > Scott > _ > Get your FREE download of MSN Explorer at http://explorer.msn.com > FAQ, list archives, and subscription info: > http://www.groupstudy.com/list/cisco.html Report misconduct and > Nondisclosure violations to [EMAIL PROTECTED] -BEGIN PGP SIGNATURE- Version: PGPfreeware 7.0.3 for non-commercial use iQA/AwUBOvAibv8m30XxCss3EQIoZgCfQ98GcTGMCKg0t+DeLH66L0uBFqYAoJkZ 1Za+fEEhNp4KiTwGFotSaLqE =y8TB -END PGP SIGNATURE- Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=2923&t=2840 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Emutel solo ISDN simulator opinions needed [7:2918]
This might seem like a strange answer, but (if available) why dont you just get a couple of BRI installed where you are and pay the monthly charges until your done with it. That seems far cheaper than buying a simulator. Just my .02 Erich - Original Message - From: "Ed Dombrowski" To: Sent: Wednesday, May 02, 2001 11:01 AM Subject: Emutel solo ISDN simulator opinions needed [7:2918] > Does anybody have any opinions on the Emutel solo ISDN simulator from Arca > technologies. I hear great things about the Teltone but at $2800 for the > model that handles both ST and U interfaces i started looking for an > alternative. It appears the Emutel Solo can be had for a retail of around > $2000 and supports both types of interfaces. If you have experience with > this product can you leave a brief review and some pros and cons? Thanks. > > Ed Dombrowski > FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] > > > http://1cis.com > Free E-mail Servers with unlimited mailboxes > 1st Class Internet Solutions http://1cis.com Free E-mail Servers with unlimited mailboxes 1st Class Internet Solutions Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=2922&t=2918 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Cisco VPN Client..... [7:2865]
Some remote control software will allow you to port-hop to a specific port ... but it is a major security risk :). Thanks! TJ -Original Message- From: Allen May [mailto:[EMAIL PROTECTED]] Sent: Wednesday, May 02, 2001 11:14 To: [EMAIL PROTECTED] Subject:Re: Cisco VPN Client. [7:2865] hehe...funny. If you could it'd be a big time security hole! Besides...it requires 2 ports to work. I think this was the subject of the April fools RFC this year too. Port 80 being used to run tunnels so you don't have to bother with the network admin to get your job done. ;) I noticed that PCAnywhere won't allow you to go down to port 80 either. Allen May - Original Message - From: "Greene, Patrick" To: Sent: Wednesday, May 02, 2001 4:48 AM Subject: Cisco VPN Client. [7:2865] > Is there anyway to force the Cisco VPN client to use port 80 for > communications? This would be used to get through firewall's allowing only > port 80. > > Thank You, > Patrick Greene CCNP,CCDP,MCSE,MCNE > Information Technologies Enterprises > Email:[EMAIL PROTECTED] > Office:800-535-6544 > Mobile:704-953-6949 > Fax:704-896-5797 > URL: www.infotechent.net and > www.alwaysweb.com > > [GroupStudy.com removed an attachment of type image/gif which had a name of > PRTNRPR.GIF] > > [GroupStudy.com removed an attachment of type image/bmp which had a name of > MCSP_P.bmp] > FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] * The information in this email is confidential and may be legally privileged. It is intended solely for the addressee. Access to this email by anyone else is unauthorized. If you are not the intended recipient, any disclosure, copying, distribution or any action taken or omitted to be taken in reliance on it, is prohibited and may be unlawful. When addressed to our clients any opinions or advice contained in this email are subject to the terms and conditions expressed in the governing KPMG client engagement letter. * Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=2921&t=2865 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Multiple VLAN addressing question [7:2905]
For starters I would not use the supervisor module to trunk use one of your fast Ethernet port on module Two for the trunk. D'Wayne Saunders Senior MIS Operator,CCNA -Original Message- From: [EMAIL PROTECTED] (Richard Chang) [mailto:[EMAIL PROTECTED]] Sent: Thursday, 3 May 2001 2:29 To: [EMAIL PROTECTED] Subject: Multiple VLAN addressing question [7:2905] Dear CiscoGroupstudy.com I am having trouble getting the trunk up between a Cisco 7513 Router and a Cisco Switch 5500 so that VLAN's 10 and 20 can cross it. It may be because I can't set interface sc0 on the 5500 switch correctly. Assume VLAN 10 is 10.10.0.0/16 port 2/1 on Cisco 5500 switch VLAN 20 is 10.20.0.0/16 port 2/2 on Cisco 5500 switch Assume ISL Trunk 1/1 connected between 1/1 on Cisco 5500 switch to FastEthernet 3/0/0 to Cisco 7513 Router FastEthernet3/0/0.10 = 10.10.1.1 FastEthernet3/0/0.20 = 10.20.1.1 what should I use for the address for interface sc0 on the Switch? Interface sc0 determines port 1/1 address on the switch-- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=2920&t=2905 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
NEED CCIE in the WEST VIRGINIA AREA [7:2919]
The following is a job description I recently received from my client which needs to be filled immediately. We are looking for a Cisco Certified CCIE, living and working in West Virginia. Please send resume and rates as soon as possible. CCIE DURATION: 1 YEAR (CONTRACT) START DATE: 7/1/01 - 6/30/02 LOCATION: WEST VIRGINIA NEED TO FILL NO LATER THAN FRIDAY, MAY 4TH 2001 DESCRIPTION OF WORK ASSIGNMENT: The vendor and/or his protigies should be authorized to ser vice 3Com, Nortel Networks, and Enterasys/Cabletron equipment currently installed in State agencies. The vendor should provide proof from the manufacturer confirming this authorization to service the equipment and a list of the products covered. PROJECT / ENVIRONMENT DESCRIPTION: What type of work is being done? * Custom Application Development * Application Management Outsourcing * Package Integration * Application Enabling Design * Solutions Consulting & Integration * Other network hardware installation LOCALS PLEASE PLEASE FORWARD A COPY OF YOUR RESUME AND CALL ME IMMEDIATELY...Thanks (:) ) Claudette * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * Claudette Graham Technical Recruiter American Employment Solutions, Inc Phone: 800-995-6858 Fax: 888-995-8788 Email: [EMAIL PROTECTED] Website: www.amesinc.org * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=2919&t=2919 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Spanning Tree Protocol [7:2564]
Believe it or not it's true! We did some test/research on it and we had to modify some of our login processes to allow the switch to go the STP process for login, it appeared we were requesting to quickly for the switch. -Original Message- From: Priscilla Oppenheimer [mailto:[EMAIL PROTECTED]] Sent: Wednesday, May 02, 2001 1:42 PM To: [EMAIL PROTECTED] Subject: Re: Spanning Tree Protocol [7:2564] If it really takes 15-30 seconds for a switch to forward even when portfast is enabled, I can see why AppleTalk nodes would hate this. An AppleTalk node sends messages right away to make sure its own address is unique, and to find the nearest router, and verify the network number(s) and zone name(s) for its local network. If the switch isn't forwarding these frames, the Mac will think it's on a non-routed single network, when it probably isn't. Worst of all, it might end up with the same address as some other AppleTalk device. However.. I find it hard to believe that even with portfast enabled a switch takes 15-30 seconds to forward traffic. Is that really true? Priscilla At 01:22 AM 5/2/01, Jim Gillen wrote: >I have had plenty of experience with this problem when I updated a token ring >network to a fully switched ethernet network. > >CISCO has a document on spanning tree and these types of problems. > >Enabling portfast still means that it takes 15-30sec for the port on a switch >to come up. If you workstation needs to attach to a server (as with the >Novell >Client) by sending GetNearestServer (or the like packets) and it needs a >reply >to attach during that 15 - 30 sec then it will fail to connect. There may be >other problems with the Mac's -??? > >I would read the document on the CISCO site and then if that doesn't help let >us know what is the nature of the problem. > > > > > > >>> "Jason Roysdon" 2/05/01 13:30:21 >>> >This message has been scanned by MAILSweeper. > > >The customer claims that even with portfast enabled the Macs won't function >due to Spanning tree. Has anyone else heard any such rumors about this? My >guess, as you suggested, is that portfast would solve it, but supposedly it >was tried before disabling spanning tree. > >-- >Jason Roysdon, CCNP+Security/CCDP, MCSE, CNA, Network+, A+ >List email: [EMAIL PROTECTED] >Homepage: http://jason.artoo.net/ > > > >""Leigh Anne Chisholm"" wrote in message >[EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > > It's a symptom of the problem I wrote about earlier in this thread. When >a > > MAC becomes active on the network, the computer isn't able to communicate >for > > the first 50 seconds the port detects the end-system is active. The port > > begins in blocking mode, then transitions to listening, then learning. > > Finally, once STP determines that a looped topology hasn't occurred, the >port > > is set to forwarding mode. This creates havoc with any end-system that > > expects to receive over-the-network information within the first 50 >seconds. > > IP, IPX, AppleTalk - all face the same issue. > > > > The simple solution isn't to kill Spanning Tree on all switches - that's >the > > "I don't understand the problem so I'll do whatever works and create a >bigger > > problem" solution. The real solution is to enable portfast on all switch > > ports that have end-systems directly connected. The caveat to this is to > > ensure none of the end-systems are capable as acting as a bridge, >forwarding > > packets between LAN segments. Enabling portfast essentially disables > > Spanning > > Tree on a port - and Spanning Tree is used to ensure a loop-free >environment. > > > > > > -- Leigh Anne > > > > > -Original Message- > > > From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] > > > Sent: April 30, 2001 7:15 PM > > > To: [EMAIL PROTECTED] > > > Subject: Re: Spanning Tree Protocol [7:2564] > > > > > > > > > Oh, speaking of AppleTalk. We've got a customer (not mine, but one of >the > > > engineers working the account bounced this off me): They claim their >new > > > Macs can't access the network if Spanning Tree is enabled. Supposedly >this > > > has been verified by Apple and TAC (but we've never had a customer lie >to > > > us, so that must be gospel, right. Heh, not). I don't know what >exactly > > > the details are, but basically it just doesn't function. The simple > > > solution is to kill spanning-tree on all the switches, but this is at a > > > number of public schools, and I can't wait to hear about a kid bringing >in > > > his Linksys 8 port 10/100 switch and melting their network. > > > > > > Anyone else hear such rumors? > > > > > > -- > > > Jason Roysdon, CCNP+Security/CCDP, MCSE, CNA, Network+, A+ > > > List email: [EMAIL PROTECTED] > > > Homepage: http://jason.artoo.net/ > > > > > > > > > > > > ""Priscilla Oppenheimer"" wrote in message > > > [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > > > > At 11:08 AM 4/30/01, Phil Barker wrote:
Emutel solo ISDN simulator opinions needed [7:2918]
Does anybody have any opinions on the Emutel solo ISDN simulator from Arca technologies. I hear great things about the Teltone but at $2800 for the model that handles both ST and U interfaces i started looking for an alternative. It appears the Emutel Solo can be had for a retail of around $2000 and supports both types of interfaces. If you have experience with this product can you leave a brief review and some pros and cons? Thanks. Ed Dombrowski Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=2918&t=2918 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Excessive Retransmissions UPDATE [7:2553]
Sniffer's "excessive retransmissions" Expert symptom is for TCP traffic (in an IP environment.) So they probably weren't ARPs or broadcasts. I find the story intriguing but confusing also. But it sounds like the AS/400 was sending responses out the wrong port, so the client kept retransmitting. It also sounds like the AS/400 does its own routing and its static routes were hosed. Sure would make a good case study!?! Priscilla At 03:09 AM 5/2/01, EA Louie wrote: >That is just the weirdest situation - maybe someone who knows the AS/400 >TCP/IP stack can shed some light on it. > >In my experience, the host will build a routing table dynamically, and also >keep an ARP cache so that it knows how to direct packets to their correct >destination interface. As far as I know, those features are default ON when >a host interface is configured - in fact, it's a pain to turn them OFF if >you need to. It's also interesting how we'll give an emotionless CPU an >emotion (confused) when it doesn't do what we want/expect it to do. ;-) >(We also give them gender - no flames, puh-leeze...) > >I would expect the "broadcasts" that were seen to be ARP requests (but you >saw them as retransmissions? going out a different interface than where the >packet was received?). I'd personally love to see a few of the Sniffer >traces to see if I could help pinpoint the cause of the problem. One of the >wonderful features of Sniffer Pro is the Expert Summary. Unfortunately, is >has also caused some of us (like me) to get lazy and not dig into the actual >traces to recreate the packet flow(s), preferring instead to accept the >Expert Summary of the conditions. > >-e- > >- Original Message - >From: Sites, Bob ; >To: ; >Sent: Tuesday, May 01, 2001 10:50 AM >Subject: RE: Excessive Retransmissions UPDATE [7:2553] > > > > > > Our AS400 does have multiple NIC's. Two ether and two token. The biggest > > problem we could see on our sniffer was that traffic from a workstation > > would come into the AS400 on one interface, say token2, and instead of >going > > out token2 back to the workstation originating the traffic, it would go >out > > an ether port, or the opposite token port? It didn't appear to have any > > rhyme or reason where it passed traffic without the static routes. This >was > > sending traffic everywhere. Throughout all our token rings and ether > > networks. All the retransmit traffic we seen on the sniffer seemed to be > > from workstations to the AS400. I know very little about the IBM world so >if > > you could enlighten me as to why the IBM box seemed to get confused, I >would > > love to pass it on to it's sysadmins? BobS > > > > -Original Message- > > From: EA Louie > > Sent: Tuesday, May 01, 2001 11:52 AM > > To: Sites, Bob; [EMAIL PROTECTED] > > Subject: Re: Excessive Retransmissions UPDATE [7:2553] > > > > thanks for sharing and updating us. Just a few questions if you'd > > indulge me, otherwise have a great day. > > I'm kind of curious and very clueless since I don't know your network > > architecture, but if you have a default gateway set on the AS/400 and IP > > routing protocol running in your routers (even if it's static routes), >then > > unless you're running multiple NICs with multiple paths to the outside, >why > > would you need so many static routes in the AS/400 IP stack? Why (for > > example) would you not have all your IP routing handled the the router > > level? I usually look at static routes on a host as a band-aid because I > > didn't configure my network (read routers) properly - makes it hard for me > > to point my finger at the clueless sysadmins for eliminting routes that >they > > really > > shouldn't need if I have a properly configured infrastructure. > > And at the broadcast storm level, do you know why your routers were not > > picking those up and routing them for the host? In other words, was ARP > > working at the host and router level? > > > > - Original Message - > > From: "Sites, Bob" > > To: > > Sent: Monday, April 30, 2001 5:58 AM > > Subject: Excessive Retransmissions UPDATE [7:2553] > > > > Just wanted to update the list on this matter because I feel that it > > could very easily happen to anyone of you and it was very difficult to > > locate the problem. Got to blame this one on Big Blue hardware. Yes, the > > AS400 was the cause of all our problems here, once again. Apparently >several > > days prior to this problem, the AS400 was upgraded and a rollover software > > called Visions was added. This is similar in function to HSRP. A third >party > > software that allows rollover from one AS400 to another. Anyway, during >the > > setup for the rollover testing it was recommended that some static routes >in > > the AS400 be cleaned up and deleted. Way to go Visions! Our AS400 folks > > didn't know any better and just deleted static routes down from about a > > dozen to 4!!! Our > > symptoms were major broadcast storms of retransmissions. Got to k
Re: BGP Route Reflector Question. [7:2900]
Problem here. RRclient1 is originating the route which means it must be EBGP connected to another AS. Hence, it must do the rewrite. The RR server never rewrites anything unless told to do so. Further, Cisco does not support IBGP next hop re-writes as far as I know. I have seen and used this concept in MPLS networks were I needed a specific IBGP only box to terminate LSP's, but in reality, there are few cases where you want to rewrite Next_Hop on an IBGP connection (Juniper supports this by the way) Generally, you rewrite once at the perimeter in order to keep your IGP table small. *** REPLY SEPARATOR *** On 5/2/2001 at 1:09 PM Trey Webb wrote: >next-hop-self on the route-reflector will work here. > >--trey >- Original Message - >From: "RAJESH.V.S" >To: >Sent: Wednesday, May 02, 2001 12:26 PM >Subject: BGP Route Reflector Question. [7:2900] > > >> Hi All, >> >> Got a Doubt on BGP Route Reflectors. BGP uses route reflectors to >simplify >> the IBGP mesh configuration. >> Say a RR reflects an IBGP route announced by RRclient-1 to another RR >> client say, RRClient-2. The RR keeps the next hop of the IBGP network >> announced by RRclient-1 un-altered while announcing to RRclient-2. Now if >> the next hop i.e. RRClient-1 is inaccessible to RRclient-2 , RRClient-2 >> will not advertise that route to its peers ( EBGP/IBGP). And IBGP peers >can >> be many hops away ( i.e. not directly connected/in same subnet). As per >BGP >> doc from Cisco , even if you use next-hop-self, only EBGP next hops will >be >> altered, not Reflected IBGP next hops. So in a large IBGP only network >( no >> other IGP ), how will you ensure the connectivity to all the links >between >> RRClient nexthops? >> >> Will they use any IGP or static route for this purpose ?. Or you have to >> manipulate the point where you advertise each IBGP networks to contain >> next-hop subnets also ?. Or is there any mistake in my understanding ?. >> >> Please advice, >> >> Thanks in advance >> Regards >> Rajesh >> FAQ, list archives, and subscription info: >http://www.groupstudy.com/list/cisco.html >> Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] >FAQ, list archives, and subscription info: >http://www.groupstudy.com/list/cisco.html >Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=2914&t=2900 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: OSPF redistribution [7:2909]
Are all of the routers in one area? The other routers should see the new route in the routing table as an E2 route if it is being redistributed properly. As for how long it will take the routers to converge on the addition of a new route, that depends on the diameter of the network, summarization, and area configuration. There is an excellent explanation of how to calculate the OSPF convergence time in the SYBEX CCNP 2.0 routing book. Ejay Hire ... Answers are free. Explanations will cost you a Diet Pepsi. -Original Message- From: mak [mailto:[EMAIL PROTECTED]] Sent: Wednesday, May 02, 2001 1:22 PM To: [EMAIL PROTECTED] Subject: OSPF redistribution [7:2909] Hi all, I have a question is that In the existing network all routers are running OSPF and "redistribute static subnets" are already configured. If I add one more static route in one of the routers. Am I right that there is change in OSPF database, then it would trigger to flush the routing table and also the other OSPF routers in the network? However, I always need to "clear ip route *" in some routers for quicker response. Thanks Best Regards, mak FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=2915&t=2909 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Multiple VLAN addressing question [7:2905]
Your sc0 interface can be in either VLAN you've mentioned or something different. The trunk should be configured something like this to allow VLANs 10 and 20 to traverse the cable: Cat5K (enable) > set port enable 1/1 set port duplex 1/1 full set trunk 1/1 on 10,20 Rtr7513# ! int fa 3/0/0 no ip address full-duplex ! interface FastEthernet3/0/0.10 encapsulation isl 10 ip address 10.10.1.1 255.255.0.0 arp timeout 0 ! interface FastEthernet3/0/0.20 encapsulation isl 20 ip address 10.20.1.1 255.255.0.0 arp timeout 0 ! HTH Darren At 12:58 PM 05/02/2001 -0400, [EMAIL PROTECTED] (Richard Chang) wrote: >Dear CiscoGroupstudy.com > > I am having trouble getting the trunk up between a Cisco 7513 Router > and a Cisco Switch 5500 so that VLAN's 10 and 20 can cross it. It may > be because I can't set interface sc0 on the 5500 switch correctly. > > Assume VLAN 10 is 10.10.0.0/16 port 2/1 on Cisco 5500 switch >VLAN 20 is 10.20.0.0/16 port 2/2 on Cisco 5500 switch > > Assume ISL Trunk 1/1 connected between 1/1 on Cisco 5500 switch to > FastEthernet 3/0/0 to Cisco 7513 Router > > FastEthernet3/0/0.10 = 10.10.1.1 > FastEthernet3/0/0.20 = 10.20.1.1 > > what should I use for the address for interface sc0 on the Switch? > > Interface sc0 determines port 1/1 address on the switch-- >FAQ, list archives, and subscription info: >http://www.groupstudy.com/list/cisco.html >Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] *** Darren S. Crawford Lucent Technologies Worldwide Services 2377 Gold Meadow WayPhone: (916) 859-5200 x310 Suite 230 Fax: (916) 859-5201 Sacramento, CA 95670Pager: (800) 467-1467 Email: [EMAIL PROTECTED] Epager: [EMAIL PROTECTED] http://www.lucent.com Network Systems Consultant - CCNA, CCIE Written "Providing the Power Operable Networks." *** Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=2912&t=2905 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: BGP Route Reflector Question. [7:2900]
Ok, I'll try to clear up some odd thoughts there. RR's simply allow the mesh to scale more gracefully, they do not modify path information (ie the Next_hop attribute) anywhere unless explicitly told to do so. Hence, In your example, RRClient which must be an ASBR (ie ebgp peering to outside AS) learns a route and posts either the EBGP next hop or its own to the Next_Hop field. The RR server (assuming RR client1 and RRclient two are not peering) will simply send the same info to RRClient2. Hence, RRClient 2, the RR server, RRclient1 and every other router in the network, no matter how many times you reflect, will need reachability to the same Next_Hop. IGP's are used for this. Pete *** REPLY SEPARATOR *** On 5/2/2001 at 12:26 PM RAJESH.V.S wrote: >Hi All, > >Got a Doubt on BGP Route Reflectors. BGP uses route reflectors to simplify >the IBGP mesh configuration. >Say a RR reflects an IBGP route announced by RRclient-1 to another RR >client say, RRClient-2. The RR keeps the next hop of the IBGP network >announced by RRclient-1 un-altered while announcing to RRclient-2. Now if >the next hop i.e. RRClient-1 is inaccessible to RRclient-2 , RRClient-2 >will not advertise that route to its peers ( EBGP/IBGP). And IBGP peers >can >be many hops away ( i.e. not directly connected/in same subnet). As per BGP >doc from Cisco , even if you use next-hop-self, only EBGP next hops will be >altered, not Reflected IBGP next hops. So in a large IBGP only network ( >no >other IGP ), how will you ensure the connectivity to all the links between >RRClient nexthops? > >Will they use any IGP or static route for this purpose ?. Or you have to >manipulate the point where you advertise each IBGP networks to contain >next-hop subnets also ?. Or is there any mistake in my understanding ?. > >Please advice, > >Thanks in advance >Regards >Rajesh >FAQ, list archives, and subscription info: >http://www.groupstudy.com/list/cisco.html >Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=2913&t=2900 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Spanning Tree Protocol [7:2564]
If it really takes 15-30 seconds for a switch to forward even when portfast is enabled, I can see why AppleTalk nodes would hate this. An AppleTalk node sends messages right away to make sure its own address is unique, and to find the nearest router, and verify the network number(s) and zone name(s) for its local network. If the switch isn't forwarding these frames, the Mac will think it's on a non-routed single network, when it probably isn't. Worst of all, it might end up with the same address as some other AppleTalk device. However.. I find it hard to believe that even with portfast enabled a switch takes 15-30 seconds to forward traffic. Is that really true? Priscilla At 01:22 AM 5/2/01, Jim Gillen wrote: >I have had plenty of experience with this problem when I updated a token ring >network to a fully switched ethernet network. > >CISCO has a document on spanning tree and these types of problems. > >Enabling portfast still means that it takes 15-30sec for the port on a switch >to come up. If you workstation needs to attach to a server (as with the >Novell >Client) by sending GetNearestServer (or the like packets) and it needs a >reply >to attach during that 15 - 30 sec then it will fail to connect. There may be >other problems with the Mac's -??? > >I would read the document on the CISCO site and then if that doesn't help let >us know what is the nature of the problem. > > > > > > >>> "Jason Roysdon" 2/05/01 13:30:21 >>> >This message has been scanned by MAILSweeper. > > >The customer claims that even with portfast enabled the Macs won't function >due to Spanning tree. Has anyone else heard any such rumors about this? My >guess, as you suggested, is that portfast would solve it, but supposedly it >was tried before disabling spanning tree. > >-- >Jason Roysdon, CCNP+Security/CCDP, MCSE, CNA, Network+, A+ >List email: [EMAIL PROTECTED] >Homepage: http://jason.artoo.net/ > > > >""Leigh Anne Chisholm"" wrote in message >[EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > > It's a symptom of the problem I wrote about earlier in this thread. When >a > > MAC becomes active on the network, the computer isn't able to communicate >for > > the first 50 seconds the port detects the end-system is active. The port > > begins in blocking mode, then transitions to listening, then learning. > > Finally, once STP determines that a looped topology hasn't occurred, the >port > > is set to forwarding mode. This creates havoc with any end-system that > > expects to receive over-the-network information within the first 50 >seconds. > > IP, IPX, AppleTalk - all face the same issue. > > > > The simple solution isn't to kill Spanning Tree on all switches - that's >the > > "I don't understand the problem so I'll do whatever works and create a >bigger > > problem" solution. The real solution is to enable portfast on all switch > > ports that have end-systems directly connected. The caveat to this is to > > ensure none of the end-systems are capable as acting as a bridge, >forwarding > > packets between LAN segments. Enabling portfast essentially disables > > Spanning > > Tree on a port - and Spanning Tree is used to ensure a loop-free >environment. > > > > > > -- Leigh Anne > > > > > -Original Message- > > > From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] > > > Sent: April 30, 2001 7:15 PM > > > To: [EMAIL PROTECTED] > > > Subject: Re: Spanning Tree Protocol [7:2564] > > > > > > > > > Oh, speaking of AppleTalk. We've got a customer (not mine, but one of >the > > > engineers working the account bounced this off me): They claim their >new > > > Macs can't access the network if Spanning Tree is enabled. Supposedly >this > > > has been verified by Apple and TAC (but we've never had a customer lie >to > > > us, so that must be gospel, right. Heh, not). I don't know what >exactly > > > the details are, but basically it just doesn't function. The simple > > > solution is to kill spanning-tree on all the switches, but this is at a > > > number of public schools, and I can't wait to hear about a kid bringing >in > > > his Linksys 8 port 10/100 switch and melting their network. > > > > > > Anyone else hear such rumors? > > > > > > -- > > > Jason Roysdon, CCNP+Security/CCDP, MCSE, CNA, Network+, A+ > > > List email: [EMAIL PROTECTED] > > > Homepage: http://jason.artoo.net/ > > > > > > > > > > > > ""Priscilla Oppenheimer"" wrote in message > > > [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > > > > At 11:08 AM 4/30/01, Phil Barker wrote: > > > > >Strongly in favour, > > > > > > > > > >A similar problem occurs in an IPX environment. > > > > >Make sure all Servers/Clients are 'portfast' and > > > > >switch/switch disable 'portfast'. > > > > > > > > A similar problem happens with AppleTalk too. That's what we get for > > > > expecting switches to replace hubs in a topology. ;-) They were >designed > > > as > > > > bridges and to talk to other br
RE: CCDP Book Info request [7:1475]
Rashid, Sorry to differ, but I thought the CCDA -- as well as the CID -- were reasonably fair tests. I know you and others have complained -- but everything that was on my test was contained in the DCN materials -- whether one used the CD version or the book version -- which were 99% verbatim of each other. As for the CID exam -- again everything was in the Cisco Press book -- except StrataCom -- of which there was information contain in the Sybex book. DOn't get blown away by others. Just sit down and read the materials -- twice -- or even three times if necessary -- then go and sit for the exam. Actually, the CID exam for the most part builds on the knowledge you should have been accumulating throughout the CCNA/NP study/exam process -- with questions worded just a bit different. Good luck. Greg Macaulay Oldest CCNP/DP on Earth Lifetime member of AARP -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Cisco Kid Sent: Saturday, April 21, 2001 4:21 AM To: [EMAIL PROTECTED] Subject: CCDP Book Info request [7:1475] I have passed the CCNA/DA and NP exams, to avoid having to re-certify for CCDA, (which was a nightmare), I wish to do the CCDP certification. Anyone got any recommendations on which would be a good book to read for CCDP exam. Thanks Rashid Lohiya [EMAIL PROTECTED] 020 8509 2990 07956 267170 www.pioneer-computers.com FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=2910&t=1475 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
OSPF redistribution [7:2909]
Hi all, I have a question is that In the existing network all routers are running OSPF and "redistribute static subnets" are already configured. If I add one more static route in one of the routers. Am I right that there is change in OSPF database, then it would trigger to flush the routing table and also the other OSPF routers in the network? However, I always need to "clear ip route *" in some routers for quicker response. Thanks Best Regards, mak Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=2909&t=2909 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
