bri [7:10377]
we have cisco 2620 in which we have bri card but the led of the interface both led in not glowing.adn when we give command SH ISDN STATUS it say that both b channel r now means bri 0/0:1 is down and line proto is also down.If we dial from another ta it dials and gets hooked up.plz help what can i do for this in router .we have selected isdn switch-type basic-5ess. thanx kaushalender Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=10377t=10377 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: BCRAN test....was there fill in the blank? [7:10284]
No, I did BCRAN last week, the commands did not require you to know the modes and you do not need to type in the modes, it was exactly like this: For the purpose of making it clear so that many will benefit, am going into these example question, it does not represent any exact exam question, it is just to drive home the point this trend is generating, so that would be writers of these exams will be better guided. Which command is used to trigger load backup when the primary link has reached 50% utilization and will remain up, even when the primary link utilization decreases. You will then be asked to click on the exhibit, where you will see things like: 1. backup interface 50 never 2. encapsulation ppp 3. ppp authentication chap 4. framing esf 5. x25 map ip 10.98.98.25 65252525552 broadcast 6. backup load 50 never We will then be required to type in the correct command. Offcourse the answer you will type in this particular case will be 'backup load 50 never' . you do not need to type: 'Router2(config-if)# backup load 50 never' Cos there was no option like this and you are not require to do it, you do, you got it wrong. I wrote the BCSN on April 20 this year. In the case of BCSN you must know the modes cos the options were like this: 1. Router#Show running-configuration 2. Router(config)#ip address 65.76.123.1 255.0.0.0 etc In the case of BCSN you are only required to type in the number corresponding to the correct command, ie either 1 or 3 or 4. You are not required to they in the command itself. Note: Am driven the more to do this cos, I do not want anybody in this list to make the same mistake I made when I was writing my BCSN. Because of what I gathered before that very exam from some one, mostly cos of the near demi-god that exam had been publicly proclaimed to be, I was so filled with emotions, so getting there, questions like the last set above were asked, cos of what I had gathered either in the group or elsewhere, I just type-in the exact command as it appears in the exhibit I was shown ie something like 'Show running-configuration' instead of '1' . I had done this for about 5 very cheap questions until I realized my mistakes (then the tension had cold down, cos I discovered that the exam was not a demi-god afterall), but you know it is adaptative, I can't go back. I lost good 5 cheap questions. Well, I passed with about 854. So please, be calm, the exams are very simple, read your cisco press or any material you are using very well. Close your pick up the pinted scheme for that particular exam you must have downloaded from www.cisco.com or elsewhere, look at the outline and see whether you can explain all the topics, practice as many sample questions as possible, and you will fly at the end of the day. Regards. Oletu - Original Message - From: Gareth Hinton To: Sent: Thursday, June 28, 2001 10:32 PM Subject: Re: BCRAN testwas there fill in the blank? [7:10284] A friend of mine did the BCRAN at the same time as I did the BSCN a couple of days ago. Both of the exams used the same format. Choose from an indexed list of commands. This still means that you may need to know the correct mode as some of the commands are replicated at different modes. ie. The indexed list does contain commands which are shown in the wrong mode. When I did the BCMSN 2 months ago, it didn't use this format. Anybody know if this has gone over to this format now? Some of the lads in the office were wondering. Regards, Gaz Ariel wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... In the BCRAN test, was there fill in the blank questions? Did you have type in the answer or was it a choose from a bank of answers? Will I need to be concerned what router mode the command must be typed in? Regards and thanks for your time. _ Do You Yahoo!? Get your free @yahoo.com address at http://mail.yahoo.com Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=10378t=10284 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: my test [7:10340]
I envy your courage, keep it up. The most important thing is to keep the fighting spirit on. Do not quit, you will definitely win. I had the same experience, CCNA was my first certification exams, the exam was changed from version 1 to 2, July last year and when I was preaparing for the test. I was reading Sybex version 1 and all that and was thinking that the pass mark was still 755. I knew the difference a day before the exam, there was nothing I could do at that momwnt, I went in for the exam, what happened? I failed, got 806 and I need 812 to pass. I ran to the bank cleared my account borrow money went back that VERY SAME day and booked for the exam again. That day was a Thursday, I scheduled the exam for Tuesday the week following, so short a time you might say, but at the end of that D-day I scored 903. So, keep ip up, you will fly. Good luck. Regards. Oletu - Original Message - From: Jennifer Cribbs To: Sent: Friday, June 29, 2001 12:07 AM Subject: my test [7:10340] Well people, I did not pass. I failed my first test. I got 603 with 615 to pass. I knew lack of experience would be a big deciding factor in my score. I can only say, what I knew, I knew real well and the other things, I guessed at. Very very very hard test. Much harder than the 507 and the 504 in my opinion. But, I am going to try and test again in a couple of weeks. Most of what was on it was networking essentials with 98 and 95 and 2k admin thrown in with a few bios questions to round it off. The network admin stuff is what really threw me. One more point here. If I had passed with 615, I would have quit studying in this area for awhile, but this way when I pass I will do better than 615. This test had very unfamiliar areas on it. so my score is nowpassed two, failed oneoh well I am going have a few drinks, take a nap and start studying again!! Have a great day!! Jennifer _ Do You Yahoo!? Get your free @yahoo.com address at http://mail.yahoo.com Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=10379t=10340 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Recommendations on PIX upgrade [7:10380]
This may be a stupid question but that's never stopped me from asking before. At one site I have 2 UR 515's running in failover config. They are at 5.2(1) software. I'd like to upgrade them but can only afford an absolute minimum of down time (measured in seconds, maybe). From what I've read about the PIX units, for failover to work, I believe each unit must be configured identically - same hardware, OS version, configuration - or failover doesn't work. What my plan currently is to start by taking the standby PIX (PIX2) down and do a 6.0.1 upgrade. I guess the question that I have is, and here comes the stupid part, if I reconnect the two with PIX2 at 6.0.1 and PIX1 still at 5.2(1) will anything bad happen (my hair fall out, I contract an incurable STD, smoke come from either/both of the boxes)? Assuming that nothing horrible happens, when I take the PIX1 box down to upgrade it will PIX2 (now on a different OS version) detect that the hot PIX has dropped offline and come up as in failover? If it won't on it's own can I do a failover active or a similar command to force PIX2 to become active? Will the children play well together again after I do a 6.0.1 upgrade on PIX1? Or will I have to bring PIX2 down, upgrade it (while PIX1 is still up) and then bring PIX1 down (leaving PIX2 down), upgrade it and then bring both back up together once they are on the same OS version level? I realize that with a laptop that has TFTP server software connected to PIX1 and has the pix601.bin image on it the upgrade process doesn't take long. But if I choose the last method of taking both boxes down that, by the time that cables are switched around as required, box(es) are rebooted, bring the 2nd box up in monitor mode, copy the image, reboot, reconnect failover cabling (as needed), the process would probably measured in minutes of total down time before both would be back online. That might as well be days as far as my bosses are concerned. Just looking for alternatives. Thanks for any advice/experience/thoughts. Sorry if this doesn't belong in studygroup.com. I just know that there's a lot of experience and common sense here. (END stupid questions) Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=10380t=10380 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: CCIE equipment [7:10365]
tsk tsk... shortage of token ring there, unless you're planning on putting 2 T/R and 1 Eth in your 4000 (SRB/DLSw and SR/TLB) To be prepared for the lab, you really need to have routers that allow you to do both bridging and routing, and as has been suggested to me, multi-LAN interface routers are the best way to go - look at the CCIE Certification web page at http://www.cisco.com They pretty much lay out the equipment that you'll see in the lab. I've been listening to the tapes on the CCIE Lab from Networkers last year, and the proctors and speakers all stress the importance of 1. Learning the concepts of the different protocols 2. Knowing how those concepts translate into Cisco commands 3. Practicing those commands and learning the effect of them 4. Being able to issue those commands in a timed environment -e- - Original Message - From: Jerel Howell To: Sent: Thursday, June 28, 2001 7:33 PM Subject: CCIE equipment [7:10365] I'm looking at configuring a router package for studying for my CCIE. I was curious as to what you all would recommend. I've had the following package recommended to me already, and I was wondering if it would work fine. 1 Cisco 4000 router 1 Cisco 2511 router 2 Cisco 2501 routers 1 Cisco 2502 router 1 Cisco Catalyst 5000 switch and of course at least 2 computers to network to all this. An emailed response would be great, and thanks in advance for this! Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=10381t=10365 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: CCIE equipment [7:10365]
Got ISDN and/or DDR? Bri - Original Message - From: EA Louie To: Sent: Thursday, June 28, 2001 11:56 PM Subject: Re: CCIE equipment [7:10365] tsk tsk... shortage of token ring there, unless you're planning on putting 2 T/R and 1 Eth in your 4000 (SRB/DLSw and SR/TLB) To be prepared for the lab, you really need to have routers that allow you to do both bridging and routing, and as has been suggested to me, multi-LAN interface routers are the best way to go - look at the CCIE Certification web page at http://www.cisco.com They pretty much lay out the equipment that you'll see in the lab. I've been listening to the tapes on the CCIE Lab from Networkers last year, and the proctors and speakers all stress the importance of 1. Learning the concepts of the different protocols 2. Knowing how those concepts translate into Cisco commands 3. Practicing those commands and learning the effect of them 4. Being able to issue those commands in a timed environment -e- - Original Message - From: Jerel Howell To: Sent: Thursday, June 28, 2001 7:33 PM Subject: CCIE equipment [7:10365] I'm looking at configuring a router package for studying for my CCIE. I was curious as to what you all would recommend. I've had the following package recommended to me already, and I was wondering if it would work fine. 1 Cisco 4000 router 1 Cisco 2511 router 2 Cisco 2501 routers 1 Cisco 2502 router 1 Cisco Catalyst 5000 switch and of course at least 2 computers to network to all this. An emailed response would be great, and thanks in advance for this! Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=10382t=10365 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
CSE also updated? [7:10383]
partner program updated also exam for cse... ? anyone can tell ? http://www.cisco.com/warp/customer/765/partner_programs/certification/ regards, ekow Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=10383t=10383 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
weird BGP question [7:10384]
Here's a weird BGP question I got today. Take a standard dual-homed site using BGP to connect to two upstreams. Is it possible to get BGP to route the first 300G of traffic per month to upstream A and the rest to upstream B? I'm told it's done all the time, but somehow I doubt it. Before the famous question gets asked, the problem being solved is cost. The idea is to not exceed the minimum cost of upstream A. Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=10384t=10384 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Console Cable for very old 2900 series Cisco switches [7:10385]
Hi Tony, HmmmWhen you are doing console from you laptop, did you using 9pin female converter (Label as TERMINAL)? Same thing's I guess you need a 25pin male converter (Label as TERMINAL)? or some expert here may teach us self make rs232 :) - Original Message - From: Tony Zhu To: 'Steiven Poh - Jaring Mailbox' Sent: Friday, June 29, 2001 3:26 PM Subject: RE: Console Cable for very old 2900 series Cisco switches [7:10375] Steiven, Thanks for the quick response. Yes it is a 25 pin female console port. Is that mean that I could just use the normal Cisco console cable with a male-to-male converter? Or I need something special? Kind Regards, Tony Zhu WAN/LAN Communication Specialist Unisys Payment Services Limited (UPSL) ABN 70 008 408 231 ph:02 92098804 fax: 02 92098809 email: [EMAIL PROTECTED] -Original Message- From: Steiven Poh - Jaring Mailbox [mailto:[EMAIL PROTECTED]] Sent: Friday, 29 June 2001 4:44 PM To: Tony Zhu Subject: Re: Console Cable for very old 2900 series Cisco switches [7:10375] Is that a 25pin console port? If so, I think you need a converter from RJ45 to RS232 FemaleI guess so ;) - Original Message - From: Tony Zhu To: Sent: Friday, June 29, 2001 1:39 PM Subject: Console Cable for very old 2900 series Cisco switches [7:10375] Would anyone know what kind of console cable required for very old 2900 series cisco switches? How could I make one if I have to? I got a spare one here with 14 100MB ports, but its console port is not a usual cisco one. Thanks in advance. Tony Zhu Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=10385t=10385 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Simulation Exam [7:10386]
Hi Folks, Any one know where I can get CCNA Simulation Exam Software for FREE? :) Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=10386t=10386 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Strange situation with NAT and telnet [7:10387]
Hey all: I have this strange situation where I cannot telnet into my router. This is what happens. I am successfully running NAT (with overload), with no problem. I can telnet into the interface that is the inside NAT with no problem. I can also telnet into any non-NAT interface with no problem. The problem occurs when I try to telnet into the interface that is the designated outside NAT interface. For example, when I fire up telnet from Windows and telnet to that outside NAT interface, it just shows that it is trying to connect, but it never connects. Now, I can assure you that connectivity is fine. I can ping that interface. People from the inside can get to the outside, with no problem. So it's not a routing issue, I am sure. I have monitored what happens when I try to telnet, as I have an access-class on the vty line that allows anything in (permit ip any any), but is set for logging. So I notice that telnet packets are indeed being permitted by the access-list, meaning the telnet request is hitting the router successfully. On the console, I even get a message saying that the access-list is allowing a telnet packet in. So everything seems cool. But somehow the router doesn't want to acknowledge the telnet request. Does anybody know what is up with that? Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=10387t=10387 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: CCIE equipment [7:10365]
Hey Jerel, You have missed out some VOIP capability and to do ISL/dot1q VLAN trunking you will need one FE Interface on a router. Regards, Rashid Lohiya [EMAIL PROTECTED] 020 8509 2990 07785 362626 www.pioneer-computers.com www.angelfire.com/home/rashidl Jerel Howell wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... I'm looking at configuring a router package for studying for my CCIE. I was curious as to what you all would recommend. I've had the following package recommended to me already, and I was wondering if it would work fine. 1 Cisco 4000 router 1 Cisco 2511 router 2 Cisco 2501 routers 1 Cisco 2502 router 1 Cisco Catalyst 5000 switch and of course at least 2 computers to network to all this. An emailed response would be great, and thanks in advance for this! Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=10388t=10365 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Console Cable for very old 2900 series Cisco switches [7:10389]
It should be standard RS232 cable. HTH Fanglo Tony Zhu wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... Would anyone know what kind of console cable required for very old 2900 series cisco switches? How could I make one if I have to? I got a spare one here with 14 100MB ports, but its console port is not a usual cisco one. Thanks in advance. Tony Zhu Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=10389t=10389 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Snoop details [7:9944]
This looks a bit dodgy, It looks like the SAPS should be 00, 00. But the Analyser is mis-representing the info- . What type of analyser is producing this decode ? Can you send the hex version of the data ? Regs, Phil. --- Priscilla Oppenheimer wrote: At 01:45 AM 6/27/01, Ramesh c wrote: More input Today I analzsed the network for 45 minutes of which 5500 packets were caught of which 4100 were Broadcast(1650) and multicast. That's a lot, but are you capturing on a switched port? You will see only broadcasts and packets to that port (unless you use SPAN). I can't understand why it says EtherType is , especially since it is an 803.2 frame. I guess it's just trying to tell you that there is no EtherType. But what is the SAP? One of them is in AppleTalk frame. AppleTalk routers multicast their routing table every 10 seconds, which is a lot and could skew the data. Priscilla Does that sound any caution on my network?. The Broadcast and multicast packets header as follows ETHER: - Ether Header - ETHER: ETHER: Packet 88 arrived at 11:20:55.53 ETHER: Packet size = 494 bytes ETHER: Destination = ff:ff:ff:ff:ff:ff, (broadcast) ETHER: Source = 0:10:7b:b6:ee:a0, ETHER: IEEE 802.3 length = 480 bytes ETHER: Ethertype = (LLC/802.3) ETHER: ETHER: - Ether Header - ETHER: ETHER: Packet 89 arrived at 11:20:55.59 ETHER: Packet size = 494 bytes ETHER: Destination = ff:ff:ff:ff:ff:ff, (broadcast) ETHER: Source = 0:10:7b:b6:ee:a0, ETHER: IEEE 802.3 length = 480 bytes ETHER: Ethertype = (LLC/802.3) ETHER: ETHER: - Ether Header - ETHER: ETHER: Packet 90 arrived at 11:20:55.64 ETHER: Packet size = 494 bytes ETHER: Destination = ff:ff:ff:ff:ff:ff, (broadcast) ETHER: Source = 0:10:7b:b6:ee:a0, ETHER: IEEE 802.3 length = 480 bytes ETHER: Ethertype = (LLC/802.3) ETHER: ETHER: - Ether Header - ETHER: ETHER: Packet 91 arrived at 11:20:55.70 ETHER: Packet size = 110 bytes ETHER: Destination = ff:ff:ff:ff:ff:ff, (broadcast) ETHER: Source = 0:10:7b:b6:ee:a0, ETHER: IEEE 802.3 length = 96 bytes ETHER: Ethertype = (LLC/802.3) ETHER: ETHER: - Ether Header - ETHER: ETHER: Packet 92 arrived at 11:20:55.88 ETHER: Packet size = 52 bytes ETHER: Destination = 1:80:c2:0:0:0, (multicast) ETHER: Source = 0:90:ab:ec:f3:5, ETHER: IEEE 802.3 length = 38 bytes ETHER: Ethertype = (LLC/802.3) ETHER: ETHER: - Ether Header - ETHER: ETHER: Packet 93 arrived at 11:20:55.94 ETHER: Packet size = 45 bytes ETHER: Destination = 9:0:7:ff:ff:ff, (multicast) ETHER: Source = 0:60:b0:54:c1:7e, ETHER: IEEE 802.3 length = 31 bytes ETHER: Ethertype = 809B (EtherTalk (AppleTalk over Ethernet)) ETHER: -- On Tue, 26 Jun 2001 12:58:10 Priscilla Oppenheimer wrote: 2100 broadcasts in 30 minutes might be OK, actually. Can you tell us how much bandwidth they are using? Can you tell us what percentage of the packets are broadcasts? A rule of thumb that Cisco teaches is that no more than 20% of your packets should be broadcasts. The main problem with broadcasts is that they interrupt station CPUs, but with the high-speed of CPUs these days, that is less of an issue. You seem to be running NetBT, which is NetBIOS over TCP/IP. (NetBEUI is NetBIOS running directly on a data-link, which is not what you are running.) NetBIOS sends lots of broadcasts. In this example, the server CDTOWER is sending a broadcast. You need to find out if that is necessary on your network or not. It seems a bit odd that CDTOWER is sending the frame directly to RND at the NetBIOS layer but to a broadcast address at the network and data-link layers. Sometimes a subnet mask misconfiguration can cause such a problem. Check CDTOWER and RND's configs. The last byte of a NetBIOS name tells you what kind of device it is. CDTOWER ends with x20, which means server, if I remember correctly. RND ends with 0x0 and I have forgotten what that means and my NetBIOS documentation is packed away. But you could find this somewhere on the Net or one of our esteemed colleagues probably knows. I don't recognize the other broadcast packets. They have an 802.3 length field of 0 even though there's data in the packet. It sounds like a bug? Would it be possible to find the station sending them (0:8:c7:d2:4a:ab) and check its configuration? Priscilla At 05:20 AM 6/26/01, Ramesh c wrote: I did a kind of traffic study on my network and here it goes 1)I get about 2100 broadcast packets in 30minutes.Does that sound a alarm in my network? - 2)Most of the Broadcast of this type... 57 0.03870 10.65.2.192 - 10.65.2.255 NBT Datagram Service Type=17 Source=CDTOWER[20] ETHER: -
Newly Minted CCNP!! [7:10391]
Thanks to the list and especially Ms. Priscilla. I will try to relate my test knowledge without breaking the NDA. Order of Passing Order of Difficult for meScore RoutingRouting 850 \ Switching Remote Access 774\ The passing score for all the tests was Support Support 875 / around 700. Remote AccessSwitching 835 / I took Remote Access yesterday. The testing method is vastly different from the other three. Tons of exhibits!!! Unlike the other test where you might type in a few commands or pick a command and router mode from a list. Cisco decided to change things a bit. You still have a list of commands with no router mode, but you must type in the command into the answer field. So not only do need to know the answer, but NOW accurate typing is required. Know the ports of the routers mentioned in the CiscoPress book for Remote access. All and all I am glad it is over. I just melted a hole in my VISA card buying books for my CCIE Written and Lab studies. FYI: cheap books try www.bestbookbuys.com. This website is the AltaVista or Google of book sites. It searches 10-20 book sites for the best price including shipping charges. -- Through Complexity there is Simplicity, Through Simplicity there is Complexity David L. Blair - CCNP, CCNA, MCSE, CBE, A+, 3Wizard Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=10391t=10391 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: CCIE written blueprints. Lets pass this blueprint around [7:10392]
It wouldn't be a violation to share information about each topic. But it would be an awful lot of work. It's exactly what sites like www.certificationzone.com are doing. But note that each topic, for example, OSPF, is one or more 25-page papers, 30 study questions and answers, and one or more lab scenarios. And that's what it takes to learn this stuff. (Actually certificationzone teaches you a bit more than you need to know, but even if they didn't, it would be lot of information.) Priscilla At 04:30 PM 6/28/01, Allen May wrote: Prepare to be blasted for NDA violations ;) - Original Message - From: To: Sent: Thursday, June 28, 2001 3:05 PM Subject: CCIE written blueprints. Lets pass this blueprint around tell [7:10310] I was studying the Blueprints for the 350-001 CCIE written test and a = thought popped into my head. If everyone who was trying to pass this = exam would pull together and answer the Blueprint objectives it would = really benefit everyone.=20 I have answered a couple of the objectives. Lets pass this blueprint = around tell we get all of the objectives answered. =20 1.. Cisco Device Operation=20 1.. Commands: show, debug Infrastructure: NVRAM, Flash, Memory = CPU, file system, config reg 2.. Operations: file transfers, password recovery,=20 3.. Simple Network Management Protocol (SNMP), accessing devices, = security (passwords)=20 1.. General Networking Theory=20 1.. OSI model: Layer comparisons, functions 2.. General Routing Concepts: Split horizon, difference between = switching and routing, summarization, Link State vs. Distance Vector, = loops, tunneling 3.. Protocol comparisons: Internet Protocol (IP) vs. Internetwork = Packet Exchange (IPX), Transmission Control Protocol (TCP), User = Datagram Protocol (UDP), etc. 4.. Standards: 802.x, protocol limitations 5.. Protocol Mechanics: Windowing/Acknowledgements (ACK), = fragmentation, maximum transmission unit (MTU), handshaking, termination 1.. Bridging LAN Switching=20 1.. Transparent Bridging: IEEE/DEC spanning tree, translational, = Configuration Bridging Protocol Data Unit (BPDU), Integrated Routed and = Bridging (IRB), Concurrent Routing and Bridging (CRB), access lists 2.. Source Route Bridging: Source-route translational bridging = (SR/TLB), source-route transparent bridging (SRT), data-link switching = (DLSw), remote source-route bridging (RSRB), access lists 3.. LAN Switching: Trunking, VLAN Trunk Protocol (VTP), inter-switch = link (ISL), Virtual LANs (VLANS), 4.. Fast Ether Channel (FEC) = http://www.cisco.com/warp/public/cc/techno/media/lan/ether/channel/tech/f= etec_wp.htm 5.. Cisco Discovery Protocol (CDP) 6.. Cisco Group Management Protocol (CGMP) When the CGMP-capable = router receives an IGMP control packet, it creates a CGMP packet that = contains the request type (either join or leave), the multicast group = address, and the Media Access Control (MAC) address of the host. The = router sends the CGMP packet to a well-known address to which all = Catalyst 5000 series switches listen. When a switch receives the CGMP = packet, the supervisor engine module interprets the packet and modifies = the forwarding table automatically CGMP requires Catalyst 5000 series = software release 2.2 or later and a network connection from the = Catalyst 5000 series switch to a router running CGMP. By default, CGMP = is disabled, and no multicast routers are configured. Before you enable = CGMP on a Catalyst 5000 series switch, you must disable IGMP snooping = if it is enabled, by entering the set igmp disable command. If you try = to enable CGMP without first disabling IGMP snooping, an error message = is generated. 7.. LANE: LAN Emulation Client (LEC) LAN emulation client (LEC)-End = systems that supportLANE, such as network interface = card(NIC)-connected workstations, LAN switches with ATM uplinks (for = example, the Catalyst family of switches), and Cisco 7500, 7000, 4500, = and 4000 series routers that support ATM attachment, all require the = implementation of a LEC. The LEC emulates an interface to a legacy LAN = to the higher-level protocols. It performs data forwarding, address = resolution, and registration of MAC addresses with the LANE server and = communicates with other LECs via ATM virtual channel connections (VCCs). = 8.. LAN Emulation Server (LES) LAN emulation configuration server = (LECS)-The LECS maintains a database of ELANs and the ATM addresses of = the LESs that control the ELANs. It accepts queries from LECs and = responds with the ATM address of the LES that serves the appropriate = ELAN/VLAN. This database is defined and maintained by the network = administrator. 9.. Broadcast and Unknown Server (BUS) Broadcast and unknown server = (BUS)-The BUS acts as a
Re: Console Cable for very old 2900 series Cisco switches [7:10393]
m Fanglo MA wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... It should be standard RS232 cable. HTH Fanglo Tony Zhu wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... Would anyone know what kind of console cable required for very old 2900 series cisco switches? How could I make one if I have to? I got a spare one here with 14 100MB ports, but its console port is not a usual cisco one. Thanks in advance. Tony Zhu Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=10393t=10393 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Console Cable for very old 2900 series Cisco switches [7:10394]
www.cisco.com/univercd/cc/td/doc/product/lan/cat2900/c2900/cugpin1.htm Steiven Poh - Jaring Mailbox wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... Hi Tony, HmmmWhen you are doing console from you laptop, did you using 9pin female converter (Label as TERMINAL)? Same thing's I guess you need a 25pin male converter (Label as TERMINAL)? or some expert here may teach us self make rs232 :) - Original Message - From: Tony Zhu To: 'Steiven Poh - Jaring Mailbox' Sent: Friday, June 29, 2001 3:26 PM Subject: RE: Console Cable for very old 2900 series Cisco switches [7:10375] Steiven, Thanks for the quick response. Yes it is a 25 pin female console port. Is that mean that I could just use the normal Cisco console cable with a male-to-male converter? Or I need something special? Kind Regards, Tony Zhu WAN/LAN Communication Specialist Unisys Payment Services Limited (UPSL) ABN 70 008 408 231 ph:02 92098804 fax: 02 92098809 email: [EMAIL PROTECTED] -Original Message- From: Steiven Poh - Jaring Mailbox [mailto:[EMAIL PROTECTED]] Sent: Friday, 29 June 2001 4:44 PM To: Tony Zhu Subject: Re: Console Cable for very old 2900 series Cisco switches [7:10375] Is that a 25pin console port? If so, I think you need a converter from RJ45 to RS232 FemaleI guess so ;) - Original Message - From: Tony Zhu To: Sent: Friday, June 29, 2001 1:39 PM Subject: Console Cable for very old 2900 series Cisco switches [7:10375] Would anyone know what kind of console cable required for very old 2900 series cisco switches? How could I make one if I have to? I got a spare one here with 14 100MB ports, but its console port is not a usual cisco one. Thanks in advance. Tony Zhu Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=10394t=10394 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Strange situation with NAT and telnet [7:10387]
You might have 12.1. something T, I don't remember it anymore. I don't think anyone has submitted that bug at Cisco, to be honest. Try upgrading the software. I hear 12.2 kicks ass lately. Is that router a 3600? Because that's the one that gave me the telnet problem. Regards, Dragi Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=10395t=10387 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: hi [7:10396]
- Original Message - From: Sent: Friday, June 29, 2001 10:06 AM Subject: hi http://www.geocities.com/nagendra_pratap_singh Todd Lammle book-pg.20. This is what he has written. Switches cannot translate between different media types. In other words, each device connected to the switch must use an Ethernet frame type. If you wanted to connect to a Token Ring switch or LAN, you would need a router to provide the translation services. 1st of all, what does media types mean? Does it mean ethernet 802.3,2,frame-relay,atm,tokenring,etc? Is LAN also a media type? Secondly, is the above statement saying that if you want to connect supposing ethernet 802.3 to token ring you cannot do it with a switch. Well a Switch or a SWITCHED HUD is just a hub with address detection facilty and the ability to sent the broadcast to only selected nodes depending upon the types of packet Also a hub is only a muliport repeater. That is a special amplifier that cleans the signal and boosts/corrects it to the specified 0 and 1 levels. Its is almost the same thing as a BUS network but with the facility of easy connectors, immunity to any link going down and lights to show some status light esp power and canle conection. LAN is a generic term and is not related to any types such as 802.3 etc . people had lans before it too. Now token ring : token ring is a prop tech. the maximum limit is 16 MBPS as compared to 100 MBps of ethernet. here is a meesage if started from n1 to n100 then it would need 99 hops and will waste time. by contrast the switch just does the exact thing and cuts the fat. in a token network you can think it like a queue outside a bathroom. every one will get his or her chance but it may take forever. In switches its like an attached bathroom. BTW token ring has a priority scheme too Media type is a media type :) . Well the examples are utp/stp, coax, IR/laser, acoustic and optic fibre ( its has some propertie of laser /ir type) . what may differ is a media acess contol method ( token ring, ethernet etc). a 0 or 1 be repesented by a ant thing like hi/lo frequency, hi/lo voltage, 0/5 volts. since the hubs/switches dont know much about packets except for origin and destination ( hubs dont know anything, they are like a photocopy machine(anything black is to be copied), switch is like a new student of the language who has learnt the alphabet and can distinguish between stains and letters.) so they cant translate the types a router can strip a lot of information from the packet and can add a lot to it too thus bypassing and freeing itself from the MAC layer. the language on top is the same and a smile is the same in all languages. I need a pic to show it http://www.geocities.com/nagendra_pratap_singh *How many hosts can a port on a switch support? What topology can be used on each port? I guess it connot be ring. According to me it can be bus. Can it also be star and all the hosts are connected to the hub and the hub is connected to the switch? But this wont serve any purpose since the hub wont even make a collision domain. Normally what topology is used? 1 on each i think. hub does make a collison domain the hub has the same coll/brdcast domain. but a switch can brdcast as a hub but stops collision by giving dedicated access to the network --- *SwitchA has 25 ports. Now supposing hostR on port1 has to communicate with hostS on port2 but hostR doesnt know hostS's ip address and neither is hostS's ip address listed in the switch's filter table, then does the switch accept the packet and does a broadcast to all the 25 ports? if its not listed then they will broadcast the packet on all active ports except for the origin. someone will reply and will give his mac address in the packet. this will be added to a table. I must mention that TCP/IP is NOT THE ONLY protocol that works with hubs/switches. they dont use IP addys or network layer addy. they use a simpler addy (mac addy). switches/hubs are made for ethernet http://www.geocities.com/nagendra_pratap_singh --- Now this quest.might sound silly but i just was going deep into the topic. Now supposing i dont want this broadcast to happen, what can i do? Can i just issue a command on the switch by which it would learn all the hosts and add them to the filter table? Or is there any other device i can use? some switches an be programmed. some can be upgraded to programmable status. your kilometerage ( mileage) may vary. a broadcast should get a reply from any active host and thus create a mac table. -- Usually when networks are connected to routers,either the hub/switch is connected to the router and the nodes are connected to the hub/switch. Is it possible to connect a node directly to the router? What interface does one use in this case? And is this kind of arrangement ever used? yes it is. cost ils like this router switch hub. the idea is that a network should keep most
Re: Secondary IP Address Disappeared !! [7:10274]
Kevin, Thanks for your valuable information. I need to ask you that what IOS version you moved to? Considering c26xx and c36xx running DLSW, ISDN and OSPF what would be the best version? Thank You Farhan From: Kevin Wigle To: Farhan Qazi , Subject: Re: Secondary IP Address Disappeared !! [7:10274] Date: Thu, 28 Jun 2001 11:03:46 -0400 I can't speak to the BRI modules having problems but they probably had to turn the router off to insert the BRIs and then start up again. Look at bug CSCdr51651. When the router was rebooted, an error msg appeared on the console about permanent address not allowed on a negotiated interface - or words to that effect. We weren't using a negotiated interface. This probably refers to the new command ip address dhcp (which really is a rename of ip address negotiated) Anyway, on reboot - the IOS would delete any secondary addresses. We had to move to another IOS version. Kevin Wigle - Original Message - From: Farhan Qazi To: Sent: Thursday, June 28, 2001 10:06 AM Subject: Secondary IP Address Disappeared !! [7:10274] Hi All, One of our customer complained that as they inserted 2 BRI cards into c2600, the secondary ip address of ethernet port disappeared !! I've heard that there is some bug in IOS 12.1.2.T but still not sure why that happened. Anybody has experienced this situation? any input will be appreciated. Thanks, Farhan _ Get your FREE download of MSN Explorer at http://explorer.msn.com _ Get your FREE download of MSN Explorer at http://explorer.msn.com Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=10397t=10274 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Trace result assistance [7:10398]
I was wondering if you can assist with this issue. Currently, we are supporting the Military ID card systems which we integrate to each Military bases in both CONUS and OCONUS arena. This one particular issue came up when we were analyzing NAS Fallons NIPRnet connection. The attached trace result seems to indicate either routing problem or route flapping. Can you please validate to see if my assumption is correct so that we can assist to resolve this problem. Your assistance is greatly appreciated. Thanks Tracing the route to 164.230.130.6 1 33.254.13.2 12 msec 12 msec 12 msec *** Columbus-75 *** 2 198.26.122.9 28 msec 36 msec 32 msec *** Columbus JIS *** 3 137.209.200.202 [AS 568] 32 msec 44 msec 32 msec *** Columbus JIS *** 4 164.220.194.33 44 msec 36 msec 88 msec 5 164.220.194.65 36 msec 36 msec 44 msec 6 164.220.193.66 48 msec 44 msec 48 msec 7 164.220.193.65 36 msec 36 msec 40 msec 8 164.220.193.66 44 msec 36 msec 36 msec 9 164.220.193.65 44 msec 168 msec 36 msec 10 164.220.193.66 40 msec 36 msec 36 msec 11 164.220.193.65 36 msec 40 msec 36 msec 12 164.220.193.66 44 msec 36 msec 48 msec 13 164.220.193.65 44 msec 48 msec 36 msec 14 164.220.193.66 48 msec 40 msec 36 msec 15 164.220.193.65 52 msec 40 msec 52 msec 16 164.220.193.66 40 msec 44 msec 44 msec 17 164.220.193.65 40 msec 40 msec 40 msec 18 164.220.193.66 40 msec 60 msec 44 msec 19 164.220.193.65 40 msec 44 msec 48 msec 20 164.220.193.66 52 msec 40 msec 40 msec 21 164.220.193.65 40 msec 44 msec 56 msec 22 164.220.193.66 40 msec 40 msec 44 msec 23 164.220.193.65 48 msec 44 msec 52 msec 24 164.220.193.66 48 msec 60 msec 56 msec 25 164.220.193.65 52 msec 40 msec 44 msec 26 164.220.193.66 44 msec 56 msec 48 msec 27 164.220.193.65 44 msec 48 msec 48 msec 28 164.220.193.66 52 msec 60 msec 104 msec 29 164.220.193.65 52 msec 48 msec 52 msec 30 164.220.193.66 52 msec 60 msec 52 msec Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=10398t=10398 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Recommendations on PIX upgrade [7:10380]
I think you're overdoing the solution when you have an almost zero downtime solution ni front of you. Just fail the first unit let the 2nd take over. Then with the first one offline, upgrade it let the failover..well...failover ;) When done just make sure the config is correct on the first one and do whatever it takes to get the first one back online. I've never tried just shutting the failover box off to see if it would trigger back to the first box with a different OS but even if that fails just reboot the first one and it should come back up happy. Now your network is back the way it was with only 2 very small windows of downtime. Upgrade 2nd PIX and hook up failover. If you're concerned about the primary taking over again when you're trying to upgrade, don't. Just boot it up hitting ESC so it doesn't load the config so you can manually give it an IP, subnet, gateway, and tftp server address. Without the config loaded it won't be part of the failover. Allen - Original Message - From: Mark Smith To: Sent: Friday, June 29, 2001 1:53 AM Subject: Recommendations on PIX upgrade [7:10380] This may be a stupid question but that's never stopped me from asking before. At one site I have 2 UR 515's running in failover config. They are at 5.2(1) software. I'd like to upgrade them but can only afford an absolute minimum of down time (measured in seconds, maybe). From what I've read about the PIX units, for failover to work, I believe each unit must be configured identically - same hardware, OS version, configuration - or failover doesn't work. What my plan currently is to start by taking the standby PIX (PIX2) down and do a 6.0.1 upgrade. I guess the question that I have is, and here comes the stupid part, if I reconnect the two with PIX2 at 6.0.1 and PIX1 still at 5.2(1) will anything bad happen (my hair fall out, I contract an incurable STD, smoke come from either/both of the boxes)? Assuming that nothing horrible happens, when I take the PIX1 box down to upgrade it will PIX2 (now on a different OS version) detect that the hot PIX has dropped offline and come up as in failover? If it won't on it's own can I do a failover active or a similar command to force PIX2 to become active? Will the children play well together again after I do a 6.0.1 upgrade on PIX1? Or will I have to bring PIX2 down, upgrade it (while PIX1 is still up) and then bring PIX1 down (leaving PIX2 down), upgrade it and then bring both back up together once they are on the same OS version level? I realize that with a laptop that has TFTP server software connected to PIX1 and has the pix601.bin image on it the upgrade process doesn't take long. But if I choose the last method of taking both boxes down that, by the time that cables are switched around as required, box(es) are rebooted, bring the 2nd box up in monitor mode, copy the image, reboot, reconnect failover cabling (as needed), the process would probably measured in minutes of total down time before both would be back online. That might as well be days as far as my bosses are concerned. Just looking for alternatives. Thanks for any advice/experience/thoughts. Sorry if this doesn't belong in studygroup.com. I just know that there's a lot of experience and common sense here. (END stupid questions) Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=10399t=10380 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
ARP problem [7:10400]
I have very big problem in Ethernet on my 4500 Cisco router. The problem is when some station are pinging my ethernet ip on the router. In some case the station can't ping my ethernet ip. After command clear arp cache on my Cisco router the station can ping my ethernet ip. I gave on the ethernet interface command arp timout 100 but it doesn't help. My LAN is very big and have 5 3 Com switches. I can't find the solution. Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=10400t=10400 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Strange situation with NAT and telnet [7:10387]
OK I don't have the real answer but it seems that NAT overload is on the same IP address that you're trying to telnet to. That would be kind of weird for the box to receive a telnet request from to the same IP. No flames but I'll just throw a suggestion to try (let me know if it works). Try settting up an access-list for NONAT when going to that IP address. That will leave the source address alone. And it looks like you've set up an access-list to allow telnet to that interface already but double check that. I have to ask...why telnet to the outside interface from inside? Allen - Original Message - From: nrf To: Sent: Friday, June 29, 2001 4:01 AM Subject: Strange situation with NAT and telnet [7:10387] Hey all: I have this strange situation where I cannot telnet into my router. This is what happens. I am successfully running NAT (with overload), with no problem. I can telnet into the interface that is the inside NAT with no problem. I can also telnet into any non-NAT interface with no problem. The problem occurs when I try to telnet into the interface that is the designated outside NAT interface. For example, when I fire up telnet from Windows and telnet to that outside NAT interface, it just shows that it is trying to connect, but it never connects. Now, I can assure you that connectivity is fine. I can ping that interface. People from the inside can get to the outside, with no problem. So it's not a routing issue, I am sure. I have monitored what happens when I try to telnet, as I have an access-class on the vty line that allows anything in (permit ip any any), but is set for logging. So I notice that telnet packets are indeed being permitted by the access-list, meaning the telnet request is hitting the router successfully. On the console, I even get a message saying that the access-list is allowing a telnet packet in. So everything seems cool. But somehow the router doesn't want to acknowledge the telnet request. Does anybody know what is up with that? Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=10401t=10387 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Trace result assistance [7:10398]
It looks like a routing loop to me. -- James Haynes Network Architect Cendant IT A+,MCSE,CCNA,CCDA,CCNP,CCDP, CQS-SNA/IP Rey Regalia wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... I was wondering if you can assist with this issue. Currently, we are supporting the Military ID card systems which we integrate to each Military bases in both CONUS and OCONUS arena. This one particular issue came up when we were analyzing NAS Fallon's NIPRnet connection. The attached trace result seems to indicate either routing problem or route flapping. Can you please validate to see if my assumption is correct so that we can assist to resolve this problem. Your assistance is greatly appreciated. Thanks Tracing the route to 164.230.130.6 1 33.254.13.2 12 msec 12 msec 12 msec *** Columbus-75 *** 2 198.26.122.9 28 msec 36 msec 32 msec *** Columbus JIS *** 3 137.209.200.202 [AS 568] 32 msec 44 msec 32 msec *** Columbus JIS *** 4 164.220.194.33 44 msec 36 msec 88 msec 5 164.220.194.65 36 msec 36 msec 44 msec 6 164.220.193.66 48 msec 44 msec 48 msec 7 164.220.193.65 36 msec 36 msec 40 msec 8 164.220.193.66 44 msec 36 msec 36 msec 9 164.220.193.65 44 msec 168 msec 36 msec 10 164.220.193.66 40 msec 36 msec 36 msec 11 164.220.193.65 36 msec 40 msec 36 msec 12 164.220.193.66 44 msec 36 msec 48 msec 13 164.220.193.65 44 msec 48 msec 36 msec 14 164.220.193.66 48 msec 40 msec 36 msec 15 164.220.193.65 52 msec 40 msec 52 msec 16 164.220.193.66 40 msec 44 msec 44 msec 17 164.220.193.65 40 msec 40 msec 40 msec 18 164.220.193.66 40 msec 60 msec 44 msec 19 164.220.193.65 40 msec 44 msec 48 msec 20 164.220.193.66 52 msec 40 msec 40 msec 21 164.220.193.65 40 msec 44 msec 56 msec 22 164.220.193.66 40 msec 40 msec 44 msec 23 164.220.193.65 48 msec 44 msec 52 msec 24 164.220.193.66 48 msec 60 msec 56 msec 25 164.220.193.65 52 msec 40 msec 44 msec 26 164.220.193.66 44 msec 56 msec 48 msec 27 164.220.193.65 44 msec 48 msec 48 msec 28 164.220.193.66 52 msec 60 msec 104 msec 29 164.220.193.65 52 msec 48 msec 52 msec 30 164.220.193.66 52 msec 60 msec 52 msec Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=10402t=10398 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: T1 concept? [7:10300]
To add to the previous postings, when someone says they have a T1 to the Internet all they have is a T1 connection from their office that connects them to their ISP. The ISP usually does not own the physical wire that connects them. Usually its owned by the local phone company. If you have have a T1 to a remote office then that same wire is a dedicated line that runs from your office to the branch office and most likely use PPP encapsulation. The cost of the physical connection varies according to the distance of the line but the price the ISP charges is most likely fixed. Frame relay conncections are cheaper because they are over a shared medium and are a virtual connection between endpoints unlike T1 circuits which are totally dedicated. RJ wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... Hello, What is the difference between a frame connection to a branch office (I have configured this) and T1 to the internet (I don't know how this is configured). I have heard that our company has a T1 from a (HQ)Atlanta to (backoffice)Tampa. Also they have a T1 to the internet. They also have numerous frame connections to small offices through out the country. When somebody says that they have a T1 to the internet what exactly does this mean? What protocols (encapsulation) are they running? Is it PPP or is it a frame connection? How does one connect to the ISP? I am sure these questions have simple answers. Can somebody please explain this concept? Thanks in advance. Regards, RJ. Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=10404t=10300 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Trace result assistance [7:10398]
It appears that there is a problem at the 164.220.193.66 address. 164.220.193.65 is sending the packet to it, and 164.220.193.66 is sending them back. This problem usually appears when the 164.220.193.66 address does not have a route to the destination, and 164.220.193.65 is set as its default gateway, so it just sends the traffic back to its default gateway because it does not have a route to the destination. There can be alot of reasons for this, but I would start at the 164.220.193.66 address. Hope this helps. Guy -Original Message- From: Rey Regalia [mailto:[EMAIL PROTECTED]] Sent: Friday, June 29, 2001 10:26 AM To: [EMAIL PROTECTED] Subject: Trace result assistance [7:10398] I was wondering if you can assist with this issue. Currently, we are supporting the Military ID card systems which we integrate to each Military bases in both CONUS and OCONUS arena. This one particular issue came up when we were analyzing NAS Fallon's NIPRnet connection. The attached trace result seems to indicate either routing problem or route flapping. Can you please validate to see if my assumption is correct so that we can assist to resolve this problem. Your assistance is greatly appreciated. Thanks Tracing the route to 164.230.130.6 1 33.254.13.2 12 msec 12 msec 12 msec *** Columbus-75 *** 2 198.26.122.9 28 msec 36 msec 32 msec *** Columbus JIS *** 3 137.209.200.202 [AS 568] 32 msec 44 msec 32 msec *** Columbus JIS *** 4 164.220.194.33 44 msec 36 msec 88 msec 5 164.220.194.65 36 msec 36 msec 44 msec 6 164.220.193.66 48 msec 44 msec 48 msec 7 164.220.193.65 36 msec 36 msec 40 msec 8 164.220.193.66 44 msec 36 msec 36 msec 9 164.220.193.65 44 msec 168 msec 36 msec 10 164.220.193.66 40 msec 36 msec 36 msec 11 164.220.193.65 36 msec 40 msec 36 msec 12 164.220.193.66 44 msec 36 msec 48 msec 13 164.220.193.65 44 msec 48 msec 36 msec 14 164.220.193.66 48 msec 40 msec 36 msec 15 164.220.193.65 52 msec 40 msec 52 msec 16 164.220.193.66 40 msec 44 msec 44 msec 17 164.220.193.65 40 msec 40 msec 40 msec 18 164.220.193.66 40 msec 60 msec 44 msec 19 164.220.193.65 40 msec 44 msec 48 msec 20 164.220.193.66 52 msec 40 msec 40 msec 21 164.220.193.65 40 msec 44 msec 56 msec 22 164.220.193.66 40 msec 40 msec 44 msec 23 164.220.193.65 48 msec 44 msec 52 msec 24 164.220.193.66 48 msec 60 msec 56 msec 25 164.220.193.65 52 msec 40 msec 44 msec 26 164.220.193.66 44 msec 56 msec 48 msec 27 164.220.193.65 44 msec 48 msec 48 msec 28 164.220.193.66 52 msec 60 msec 104 msec 29 164.220.193.65 52 msec 48 msec 52 msec 30 164.220.193.66 52 msec 60 msec 52 msec Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=10405t=10398 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Secondary IP Address Disappeared !! [7:10274]
It all depends on what features you need. We were using 12.1.(2)T because of the introduction of enhanced rtr capabilities. I don't know off the top what we moved to, we have several hundred routers under management - but we researched the T train for another IOS that fit the avail memory and gave us the features we needed. If you read the full bug report on CCO, it suggests several IOS versions where the bug is fixed. Kevin Wigle - Original Message - From: Farhan Qazi To: ; Sent: Friday, June 29, 2001 10:00 AM Subject: Re: Secondary IP Address Disappeared !! [7:10274] Kevin, Thanks for your valuable information. I need to ask you that what IOS version you moved to? Considering c26xx and c36xx running DLSW, ISDN and OSPF what would be the best version? Thank You Farhan From: Kevin Wigle To: Farhan Qazi , Subject: Re: Secondary IP Address Disappeared !! [7:10274] Date: Thu, 28 Jun 2001 11:03:46 -0400 I can't speak to the BRI modules having problems but they probably had to turn the router off to insert the BRIs and then start up again. Look at bug CSCdr51651. When the router was rebooted, an error msg appeared on the console about permanent address not allowed on a negotiated interface - or words to that effect. We weren't using a negotiated interface. This probably refers to the new command ip address dhcp (which really is a rename of ip address negotiated) Anyway, on reboot - the IOS would delete any secondary addresses. We had to move to another IOS version. Kevin Wigle - Original Message - From: Farhan Qazi To: Sent: Thursday, June 28, 2001 10:06 AM Subject: Secondary IP Address Disappeared !! [7:10274] Hi All, One of our customer complained that as they inserted 2 BRI cards into c2600, the secondary ip address of ethernet port disappeared !! I've heard that there is some bug in IOS 12.1.2.T but still not sure why that happened. Anybody has experienced this situation? any input will be appreciated. Thanks, Farhan _ Get your FREE download of MSN Explorer at http://explorer.msn.com _ Get your FREE download of MSN Explorer at http://explorer.msn.com Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=10406t=10274 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
CCNA scoring [7:10407]
I passed CCNA yesterday with a 946/1000(there is no integer divisible by 65 that would give me this score so I know its curved). I did not think I was doing well throughout the exam yet I got a good score. When it started, I was told that you need 849/1000 based on a score that ranges between 300 and 1000. So is this graded on a curve? If I got 3 wrong would my score be 62/65= 954/1000? I don't think it works that way. I overstudied thinking I needed at least 55/65 to pass but I do not think this was the case. Why would they grade on a curve? If you can't answer 85% of the questions I think you should fail. Are the CCNP exams graded on this weird scale and as easy to pass as well? I recieved my MCSE a few months ago and honestly think the scenario questions on those test were harder than any of the questions on th CCNA.Coming from a Computer Science background at Rutgers, I can guarantee the midterms and finals on my networking courses there were 100 times more challenging than these exams.I barely needed a pen and paper throughout the whole CCNA. Anyway before I digress any further I just wanted to know how the grading worked on the CCNP and the scores required to pass. Thanks. Sam Sneed CCNA # 3,324,567,892 MSCE # 5,324,324,332 Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=10407t=10407 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: CCNA scoring [7:10407]
Sit the IE written and let me know what you think. -Original Message- From: Sam Sneed [mailto:[EMAIL PROTECTED]] Sent: Friday, June 29, 2001 9:12 AM To: [EMAIL PROTECTED] Subject: CCNA scoring [7:10407] I passed CCNA yesterday with a 946/1000(there is no integer divisible by 65 that would give me this score so I know its curved). I did not think I was doing well throughout the exam yet I got a good score. When it started, I was told that you need 849/1000 based on a score that ranges between 300 and 1000. So is this graded on a curve? If I got 3 wrong would my score be 62/65= 954/1000? I don't think it works that way. I overstudied thinking I needed at least 55/65 to pass but I do not think this was the case. Why would they grade on a curve? If you can't answer 85% of the questions I think you should fail. Are the CCNP exams graded on this weird scale and as easy to pass as well? I recieved my MCSE a few months ago and honestly think the scenario questions on those test were harder than any of the questions on th CCNA.Coming from a Computer Science background at Rutgers, I can guarantee the midterms and finals on my networking courses there were 100 times more challenging than these exams.I barely needed a pen and paper throughout the whole CCNA. Anyway before I digress any further I just wanted to know how the grading worked on the CCNP and the scores required to pass. Thanks. Sam Sneed CCNA # 3,324,567,892 MSCE # 5,324,324,332 Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=10408t=10407 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
BSCN [7:10403]
Hi Folks, Passed the BSCN today with a score of 896... fairly straight forward... though I found I needed most of the allocated time. Came up against the expected areas... OSPF, EIGRP, BGP .. know these well and you will ace this test.. I also got the 'select the command from the list' format seems to be the norm now Okay I think Ill tackle the Switching exam next. Regards, Peter. Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=10403t=10403 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Pix and iip options [7:10409]
Hello , my Pix 515 is logging large amounts of denies from a host because of ip option 0x14. I checked cco for the system message 106012 it tells me why it is denying it but not what causes it . Can someone please give me or point me to somewhere to find more info about ip option 0x14 and about ip options in general ? thanks in advance. |Ken Bourne,CCNA|Network Specialist| |702-657-3432(direct)|702-524-1193(mobile)||[EMAIL PROTECTED]| Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=10409t=10409 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: BSCN [7:10403]
Congrats!! Nice score too. I decided to tackle the switching test first and will be taking my test on Monday. Then on to the routing test. Best of luck. -Eric V. - Original Message - From: To: Sent: Friday, June 29, 2001 9:38 AM Subject: BSCN [7:10403] Hi Folks, Passed the BSCN today with a score of 896... fairly straight forward... though I found I needed most of the allocated time. Came up against the expected areas... OSPF, EIGRP, BGP .. know these well and you will ace this test.. I also got the 'select the command from the list' format seems to be the norm now Okay I think Ill tackle the Switching exam next. Regards, Peter. Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=10411t=10403 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: ARP problem [7:10400]
This sounds like a particular problem I ran into several years ago with 3com switches. In a nutshell, some 3com workgroup switches (don't remember the model), only forward packets for unknown MAC addresses out a single backbone port and not out every interface as is common with other switches. In your case, if you have the router on a non-backbone port and the router is sending very little traffic, it could be that the MAC address is timing out of the switches MAC table. If this happens on the particular switches I'm thinking of, when packets would inter the switch destined for the router MAC, they would get forwarded up the backbone port only and not to the router port. I saw this scenario with a Unix box. Unix boxen are generally pretty quiet from a network perspective, so the box wasn't sending traffic very often and the MAC entry would time out of the switch. This seems unlikely with a router, but depending on _when_ your having these problems it could still be possible if your not running a routing protocol on the router. If the router is generating constant traffic such as from a routing protocol, it should not time out of the switch so I would suspect something else as the cause. When you experience the problem, you need to look at the switches MAC tables to see where it thinks the router and PC MAC addresses are located. You could also do some sniffer traces and some router debugs. debug arp and debug ip packet could be useful, but you need to be careful if you have a busy router as debug ip packet could spike the CPU quite a bit. Another possibility would be some sort of strange bridge loop. If your switches are connected in a redundant fashion, spanning tree should be blocking one path, if spanning tree is failing you could see unpredictable behavior, up to an including a complete network meltdown. Check your cabling and ensure that spanning tree is operating correctly. Somewhere in there you should find somethign that indicates a problem. If not, I'd suspect bad code on the router or switch as a last resort. HTH, Kent -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Jacek Malinowski Sent: Friday, June 29, 2001 7:32 AM To: [EMAIL PROTECTED] Subject: ARP problem [7:10400] I have very big problem in Ethernet on my 4500 Cisco router. The problem is when some station are pinging my ethernet ip on the router. In some case the station can't ping my ethernet ip. After command clear arp cache on my Cisco router the station can ping my ethernet ip. I gave on the ethernet interface command arp timout 100 but it doesn't help. My LAN is very big and have 5 3 Com switches. I can't find the solution. Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=10412t=10400 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
My first tacacs+ implementation [7:10413]
OK I've done my studying and am ready to implement this. All I want to do
(for now) is have the enable password pulled from tacacs+. Sounds simple
enough...but every example I find has all this authorization stuff in it
that I don't want. It looks like all I need is this:
(in tac_plus.conf):
key = yourkeyhere
user = $enab15$ {
password = cleartext password here
}
--
(on each router):
aaa new-model
aaa authentication login default tacacs+ (by the way..cisco.com has
default
group tacacs+ but this doesn't work for me)
aaa authentication login NO_AUTHENT none (for the console to not draw from
tacacs+)
!
ip tacacs source-interface Ethernet0 (just do this for each interface
needed? Or do I need this?)
!
tacacs-server host 10.1.1.3 key insertkeyhere
!
line con 0
login authentication NO_AUTHENT
--
Am I missing anything? The last resort command seemed to only apply to
tacacs not to tacacs+. Any way to do this?
Allen May
One more thing...how do you get DES passwords generated if you want to DES
encrypt the enable password?
Message Posted at:
http://www.groupstudy.com/form/read.php?f=7i=10413t=10413
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Test [7:10415]
test Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=10415t=10415 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: RFC 1483 [7:10165]
Can you paste your config of Router A and B, so that i can take a look on it. Thanks. Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=10416t=10165 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Recommendations on PIX upgrade [7:10380]
Thanks for the ideas, Allen. I'll probably just give that a try. I just am still not sure if, once I bring PIX1 back online after doing an upgrade on it and connect it to PIX2, and now they're at different versions, if the xlate table will sync back up on PIX1. If not and I make PIX1 hot and take PIX2 down for an upgrade to it, then it will just take a little while for that table to rebuild on PIX1 and folks will get timeouts during that rebuilding time. I'll give it a try though. Thanks. Quoting Allen May : I think you're overdoing the solution when you have an almost zero downtime solution ni front of you. Just fail the first unit let the 2nd take over. Then with the first one offline, upgrade it let the failover..well...failover ;) When done just make sure the config is correct on the first one and do whatever it takes to get the first one back online. I've never tried just shutting the failover box off to see if it would trigger back to the first box with a different OS but even if that fails just reboot the first one and it should come back up happy. Now your network is back the way it was with only 2 very small windows of downtime. Upgrade 2nd PIX and hook up failover. If you're concerned about the primary taking over again when you're trying to upgrade, don't. Just boot it up hitting ESC so it doesn't load the config so you can manually give it an IP, subnet, gateway, and tftp server address. Without the config loaded it won't be part of the failover. Allen - Original Message - From: Mark Smith To: Sent: Friday, June 29, 2001 1:53 AM Subject: Recommendations on PIX upgrade [7:10380] This may be a stupid question but that's never stopped me from asking before. At one site I have 2 UR 515's running in failover config. They are at 5.2(1) software. I'd like to upgrade them but can only afford an absolute minimum of down time (measured in seconds, maybe). From what I've read about the PIX units, for failover to work, I believe each unit must be configured identically - same hardware, OS version, configuration - or failover doesn't work. What my plan currently is to start by taking the standby PIX (PIX2) down and do a 6.0.1 upgrade. I guess the question that I have is, and here comes the stupid part, if I reconnect the two with PIX2 at 6.0.1 and PIX1 still at 5.2(1) will anything bad happen (my hair fall out, I contract an incurable STD, smoke come from either/both of the boxes)? Assuming that nothing horrible happens, when I take the PIX1 box down to upgrade it will PIX2 (now on a different OS version) detect that the hot PIX has dropped offline and come up as in failover? If it won't on it's own can I do a failover active or a similar command to force PIX2 to become active? Will the children play well together again after I do a 6.0.1 upgrade on PIX1? Or will I have to bring PIX2 down, upgrade it (while PIX1 is still up) and then bring PIX1 down (leaving PIX2 down), upgrade it and then bring both back up together once they are on the same OS version level? I realize that with a laptop that has TFTP server software connected to PIX1 and has the pix601.bin image on it the upgrade process doesn't take long. But if I choose the last method of taking both boxes down that, by the time that cables are switched around as required, box(es) are rebooted, bring the 2nd box up in monitor mode, copy the image, reboot, reconnect failover cabling (as needed), the process would probably measured in minutes of total down time before both would be back online. That might as well be days as far as my bosses are concerned. Just looking for alternatives. Thanks for any advice/experience/thoughts. Sorry if this doesn't belong in studygroup.com. I just know that there's a lot of experience and common sense here. (END stupid questions) [EMAIL PROTECTED] Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=10417t=10380 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
ATM/FRAD [7:10418]
Let's see if you CCIEs can solve this one...a cisco 3640, route-caching on, ATM interface in a hairpin configuration (this means coming in/going out same physical interface) , will, for some odd reason, change the UU bit in the last cell of the frame. THis only occurs when the frame is larger than 492 bytes. The AAL5 cpcs UU bit is supposed to be ignored/reserved. This only happens when route-caching is on. It does not occur at all on a 7200 series. The problem is that the Lucent ATM/Frame switch is marking the frames DE and marking FECNs/BECNs. Any suggestions? Thanks... Marc Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=10418t=10418 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
OT: Fridays funnies! [7:10419]
Just in case you need some ideas for your 4th of July party. http://natasha38.botbuilders.com/horseshoes.jpg For those of you who plan to travel for the weekend! http://jevans.xerox-sbc.com/Signs/1_signs_.htm - A farmer got pulled over by a state trooper for speeding, and the trooper started to lecture the farmer about his speed, and in general began to throw his weight around to try to make the farmer uncomfortable. Finally, the trooper got around to writing out the ticket, and as he was doing that he kept swatting at some flies that were buzzing around his head. The farmer said, Having some problems with circle flies there, are ya? The trooper stopped writing the ticket and said, Well, yeah, is that what they are? I've never heard of circle flies. So the farmer said, Well, circle flies are common on farms. See, they're called circle flies because they're almost always found circling around the backend of a horse. The trooper said, Oh, and went back to writing the ticket. Then after a minute he stopped and said, Hey, wait a minute. Are you trying to call me a horse's ass? The farmer said, Oh no, officer. I have too much respect for law enforcement and police officers to even think about calling you a horse's ass. The trooper said, Well, that's a good thing, and went back to writing the ticket. After a long pause, the farmer said, Hard to fool them flies, though. -- Natasha Flazynski CCNA, MCSE http://www.ciscobot.com My Cisco information site. http://www.botbuilders.com Artificial Intelligence and Linux development Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=10419t=10419 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
CCIE - IP Recertification Resources [7:10420]
Does anyone know of any good CCIE recerficiation resources that are available? I'm surprised that no training companies have picked up on this yet. Thanks, Bob Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=10420t=10420 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Refurbished routers and switches in Canada/US [7:10308]
Bharat, Hi! We offer routers to the US and Foreign Countries (Canada included). Please visit our website at: www.optsys.net Or send me an email for more information. We offer a 30-day warranty on everything that we sell and we can accept many forms of payment. We give EXCELLENT deals to groupstudy members in particular! :) thanks, -Brad Ellis CCIE#5796 [EMAIL PROTECTED] Network Learning Inc Bharat Khurana wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... Hi there, Can anyone please give me some sites on sites or stores which sells refurbished routers/switches in US/Canada? Thanks. Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=10421t=10308 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: what is loopback interface for ? [7:9493]
I can simply use the quote from Michael Williams' message above to answer your question... 1. A loopback is a logical interface that never goes down. It's used for various reasons (for setting up various kinds of tunnels, for setting who is the DR/BDR in OSPF, etc). 2. Many people use the subnet mask 255.255.255.255 because that's the only way to assign a single IP to the lookback instead of using more than 1 IP address. Therefore, you normally won't see /24s on loopback interfaces. Richard Sim, CT (Chee Tong) wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... I have seems some routers with many lookback interfaces configured. May I know what is the purpose to have so many lookback? I thought one loopback can help us to troubleshoot the connectivity Besides, I am interested about question 5 from Richard, you said the lookback IPs within same network can be configured on different router. Does it mean that if we configured many lookback interfaces, those IPs must be in different network. for example 192.168.101.101/24 192.168.102.102/24. But Any one know what is the reason?? 5) If I configured A's loopback IP to be 192.168.0.1/24, can we still configured B's loopback to be 192.168.0.2/24? Note: there are in same network. Sure you can since they are in two different routers. I won't recommend doing this though... The point is, there is no magic behind a loopback interface as you still need physical interface and routing entries if you need access. Richard -Original Message- From: Richard Chang [mailto:[EMAIL PROTECTED]] Sent: Thursday, June 28, 2001 1:51 AM To: [EMAIL PROTECTED] Subject: Re: what is loopback interface for ? [7:9493] See lines below. Susan Stone wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... Hi.. Sorry, I need a few more questions to verify whether my understanding on loopback is correct or not? Pls answer it. 1) If I have two router A (loopback=192.168.0.1/32) and B (loopback192.168.0.2/32), Router A's S1 int 100.100.100.1/24 is connected to Router B's S1 100.100.100.2/24. There are no more other connection. If S1 of B is down. Can I still telnet from A to B using B's loopback address. No. 2) If Router A and B have another connection. Router A's S2 int 100.200.100.1/24 is connected to Router B's S2 100.200.100.2/24. If S1 of B is down. Can I still telnet from A to B using B's loopback address? Yes, if you have correct routing entries. 3) If Router A doesn't have loopback int configured. Can we still telnet from A to B? Of course you can simply telnet into any physical interface that's still up. 4) Whether the loopback IP address need to be in order or same network? Let say Router A's loopback is 192.168.0.1/32 and Router B's loopback is 20.20.20.1/8. Can we still telnet from A to B? Again, yes, if you have correct routing entries. 5) If I configured A's loopback IP to be 192.168.0.1/24, can we still configured B's loopback to be 192.168.0.2/24? Note: there are in same network. Sure you can since they are in two different routers. I won't recommend doing this though... The point is, there is no magic behind a loopback interface as you still need physical interface and routing entries if you need access. Richard _ Get Your Private, Free E-mail from MSN Hotmail at http://www.hotmail.com. == De informatie opgenomen in dit bericht kan vertrouwelijk zijn en is uitsluitend bestemd voor de geadresseerde. Indien u dit bericht onterecht ontvangt wordt u verzocht de inhoud niet te gebruiken en de afzender direct te informeren door het bericht te retourneren. == The information contained in this message may be confidential and is intended to be exclusively for the addressee. Should you receive this message unintentionally, please do not use the contents herein and notify the sender immediately by return e-mail. == Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=10422t=9493 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Recommendations on PIX upgrade [7:10380]
Shouldn't take long. Clear XLATE can be done any time but it just knocks off streaming connections so that they have to reconnect. It will probably do the same thing if it has to rebuild where all they need to do is reconnect. No biggie if they're expecting it ;) - Original Message - From: Mark Smith To: Allen May Cc: Sent: Friday, June 29, 2001 11:41 AM Subject: Re: Recommendations on PIX upgrade [7:10380] Thanks for the ideas, Allen. I'll probably just give that a try. I just am still not sure if, once I bring PIX1 back online after doing an upgrade on it and connect it to PIX2, and now they're at different versions, if the xlate table will sync back up on PIX1. If not and I make PIX1 hot and take PIX2 down for an upgrade to it, then it will just take a little while for that table to rebuild on PIX1 and folks will get timeouts during that rebuilding time. I'll give it a try though. Thanks. Quoting Allen May : I think you're overdoing the solution when you have an almost zero downtime solution ni front of you. Just fail the first unit let the 2nd take over. Then with the first one offline, upgrade it let the failover..well...failover ;) When done just make sure the config is correct on the first one and do whatever it takes to get the first one back online. I've never tried just shutting the failover box off to see if it would trigger back to the first box with a different OS but even if that fails just reboot the first one and it should come back up happy. Now your network is back the way it was with only 2 very small windows of downtime. Upgrade 2nd PIX and hook up failover. If you're concerned about the primary taking over again when you're trying to upgrade, don't. Just boot it up hitting ESC so it doesn't load the config so you can manually give it an IP, subnet, gateway, and tftp server address. Without the config loaded it won't be part of the failover. Allen - Original Message - From: Mark Smith To: Sent: Friday, June 29, 2001 1:53 AM Subject: Recommendations on PIX upgrade [7:10380] This may be a stupid question but that's never stopped me from asking before. At one site I have 2 UR 515's running in failover config. They are at 5.2(1) software. I'd like to upgrade them but can only afford an absolute minimum of down time (measured in seconds, maybe). From what I've read about the PIX units, for failover to work, I believe each unit must be configured identically - same hardware, OS version, configuration - or failover doesn't work. What my plan currently is to start by taking the standby PIX (PIX2) down and do a 6.0.1 upgrade. I guess the question that I have is, and here comes the stupid part, if I reconnect the two with PIX2 at 6.0.1 and PIX1 still at 5.2(1) will anything bad happen (my hair fall out, I contract an incurable STD, smoke come from either/both of the boxes)? Assuming that nothing horrible happens, when I take the PIX1 box down to upgrade it will PIX2 (now on a different OS version) detect that the hot PIX has dropped offline and come up as in failover? If it won't on it's own can I do a failover active or a similar command to force PIX2 to become active? Will the children play well together again after I do a 6.0.1 upgrade on PIX1? Or will I have to bring PIX2 down, upgrade it (while PIX1 is still up) and then bring PIX1 down (leaving PIX2 down), upgrade it and then bring both back up together once they are on the same OS version level? I realize that with a laptop that has TFTP server software connected to PIX1 and has the pix601.bin image on it the upgrade process doesn't take long. But if I choose the last method of taking both boxes down that, by the time that cables are switched around as required, box(es) are rebooted, bring the 2nd box up in monitor mode, copy the image, reboot, reconnect failover cabling (as needed), the process would probably measured in minutes of total down time before both would be back online. That might as well be days as far as my bosses are concerned. Just looking for alternatives. Thanks for any advice/experience/thoughts. Sorry if this doesn't belong in studygroup.com. I just know that there's a lot of experience and common sense here. (END stupid questions) [EMAIL PROTECTED] Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=10423t=10380 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: weird BGP question [7:10384]
This is indeed an interesting question although I never heard that it is being done... If I were to take a guess, it would be to manipulate traffic so that upstreams A would always be preferred. (append extra AS paths and a default route should do the trick). Then there has to be some kind of network management tools to send out alerts when the accumulated traffic for upstream A reaches 300G. At that point, you can tell the router to take B as preferred while put A as backup. Your upstream provider might have a traffic monitoring web page that you can log into to view the same results. Any better ideas? Richard [EMAIL PROTECTED] (John Nemeth) wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... Here's a weird BGP question I got today. Take a standard dual-homed site using BGP to connect to two upstreams. Is it possible to get BGP to route the first 300G of traffic per month to upstream A and the rest to upstream B? I'm told it's done all the time, but somehow I doubt it. Before the famous question gets asked, the problem being solved is cost. The idea is to not exceed the minimum cost of upstream A. Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=10424t=10384 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Which IOS for Token Ring? [7:10425]
I have a Cisco 2525 router. Since it has token ring, which IOS would I need to get for it? Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=10425t=10425 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: weird BGP question [7:10384]
Richcard, I guess it could not be anything but that. But seems to me this has little to do with BGP. JP Richard Chang wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... This is indeed an interesting question although I never heard that it is being done... If I were to take a guess, it would be to manipulate traffic so that upstreams A would always be preferred. (append extra AS paths and a default route should do the trick). Then there has to be some kind of network management tools to send out alerts when the accumulated traffic for upstream A reaches 300G. At that point, you can tell the router to take B as preferred while put A as backup. Your upstream provider might have a traffic monitoring web page that you can log into to view the same results. Any better ideas? Richard [EMAIL PROTECTED] (John Nemeth) wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... Here's a weird BGP question I got today. Take a standard dual-homed site using BGP to connect to two upstreams. Is it possible to get BGP to route the first 300G of traffic per month to upstream A and the rest to upstream B? I'm told it's done all the time, but somehow I doubt it. Before the famous question gets asked, the problem being solved is cost. The idea is to not exceed the minimum cost of upstream A. Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=10426t=10384 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Technical Questions [7:10427]
Hello, Can we ask questions on technical matters here? and if not... does anyone know where this can be done? Thank You, Michael Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=10427t=10427 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
HSRP [7:10428]
I was doing a little research on HSRP and had a question for anyone who has configured it. I read the whole RFC 2281 and could not find my answer there. If you have two routers running HSRP with T1 lines to the internet, 1 is the standby and one is the active. Does all traffic only go through the active at all times unless it dies? If so isn't it a waste not ever utilizing the T1 line thats on standby (of course until the active fails)? If bandwidth exceeded 1.5MB would the second router kick in to share the load or would it totally take over? With these 2 routers acting as a single virtual router would throughput ever be able to exceed 1.54 MB assuming each has its own T1 connection? thanks Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=10428t=10428 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Mapped Drive Dropping Over Cisco WAN [7:10429]
Does anyone know if there are any possible reasons why mapped drives across a T-1 cisco routed WAN link would drop after appx. 3 minutes? I've tried every registry tweak that I could find in the MSKB and nothing has kept the link up for more than a few minutes. It's not just in the application but also when you go in My Computer and double-click the drive itself. A message pops up that says it is an unreliable connection. I also tried a cmd on the server net configure server /autodisconnect:-1 which by MS definition will prevent the server from idle-disconnect of shared resources or RAS connections. As this happens on the 95 and W2K machines I think it's not related to the workstations, but I am not sure. So this leads me to believe that maybe there is a timeout or keepalive that needs to be set/adjusted on the router. Thanks in advance! Michael Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=10429t=10429 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: HSRP [7:10428]
HSRP is for router redundancy, not WAN circuit redundancy. If you wanted to have internet or WAN circuit redundacy, you would of course use two lines, have equal-cost routes (two default routes...etc) and that's all that's involved. HSRP not needed for WAN load-balancing/redundancy... Marc Sam Sneed wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... I was doing a little research on HSRP and had a question for anyone who has configured it. I read the whole RFC 2281 and could not find my answer there. If you have two routers running HSRP with T1 lines to the internet, 1 is the standby and one is the active. Does all traffic only go through the active at all times unless it dies? If so isn't it a waste not ever utilizing the T1 line thats on standby (of course until the active fails)? If bandwidth exceeded 1.5MB would the second router kick in to share the load or would it totally take over? With these 2 routers acting as a single virtual router would throughput ever be able to exceed 1.54 MB assuming each has its own T1 connection? thanks Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=10430t=10428 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Mapped Drive Dropping Over Cisco WAN [7:10429]
Maybe you have a bad WAN connection. Have your ISp check it. You can start by checking for packet loss. Frame-relay circuits tend to bounce a lot, but not enough to make you lose connection. If you're losing connection, then your line is too faulty, barring any LAN problems. Check the router log. Marc Michael Montgomery wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... Does anyone know if there are any possible reasons why mapped drives across a T-1 cisco routed WAN link would drop after appx. 3 minutes? I've tried every registry tweak that I could find in the MSKB and nothing has kept the link up for more than a few minutes. It's not just in the application but also when you go in My Computer and double-click the drive itself. A message pops up that says it is an unreliable connection. I also tried a cmd on the server net configure server /autodisconnect:-1 which by MS definition will prevent the server from idle-disconnect of shared resources or RAS connections. As this happens on the 95 and W2K machines I think it's not related to the workstations, but I am not sure. So this leads me to believe that maybe there is a timeout or keepalive that needs to be set/adjusted on the router. Thanks in advance! Michael Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=10431t=10429 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Mapped Drive Dropping Over Cisco WAN [7:10429]
I'm hearing of exactly the same thing on an old job of mine where two 2611's across a T1/E1 link are doing the same. Driving us nuts as same fault finding has not worked any brains out there! Karl - Original Message - From: Michael Montgomery To: Sent: Friday, June 29, 2001 9:02 PM Subject: Mapped Drive Dropping Over Cisco WAN [7:10429] Does anyone know if there are any possible reasons why mapped drives across a T-1 cisco routed WAN link would drop after appx. 3 minutes? I've tried every registry tweak that I could find in the MSKB and nothing has kept the link up for more than a few minutes. It's not just in the application but also when you go in My Computer and double-click the drive itself. A message pops up that says it is an unreliable connection. I also tried a cmd on the server net configure server /autodisconnect:-1 which by MS definition will prevent the server from idle-disconnect of shared resources or RAS connections. As this happens on the 95 and W2K machines I think it's not related to the workstations, but I am not sure. So this leads me to believe that maybe there is a timeout or keepalive that needs to be set/adjusted on the router. Thanks in advance! Michael Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=10432t=10429 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: HSRP [7:10428]
I think it would help if I gave you the scenario I was envisioning. I would like to plan a network where we have 2 seperate routers connecting to our ISP or perhaps 2 seperate ISP's. Lets assume 1 ISP, 2 routers ,each with its own full T1 line for simplicity. If 1 router died, I'd like to keep the internet connection alive without changing any of the clients default gateways. I figured HSRP would be good to apply here becuase it acts as 1 virtual router. But, would that mean that 1 router would be idle at all times not allowing me to ever get more than 1.5MB bandwidth? Or this extra idle T1 line just the cost of redundancy in this case? Marc wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... HSRP is for router redundancy, not WAN circuit redundancy. If you wanted to have internet or WAN circuit redundacy, you would of course use two lines, have equal-cost routes (two default routes...etc) and that's all that's involved. HSRP not needed for WAN load-balancing/redundancy... Marc Sam Sneed wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... I was doing a little research on HSRP and had a question for anyone who has configured it. I read the whole RFC 2281 and could not find my answer there. If you have two routers running HSRP with T1 lines to the internet, 1 is the standby and one is the active. Does all traffic only go through the active at all times unless it dies? If so isn't it a waste not ever utilizing the T1 line thats on standby (of course until the active fails)? If bandwidth exceeded 1.5MB would the second router kick in to share the load or would it totally take over? With these 2 routers acting as a single virtual router would throughput ever be able to exceed 1.54 MB assuming each has its own T1 connection? thanks Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=10433t=10428 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: HSRP [7:10428]
Here is a link that may answer some questions about HSRP groups, and what it could be used for. http://www.cisco.com/warp/public/619/7.html Best Regards, Eric Hoffman Senior Systems Engineer MCP, CCNA, CCNP Computer Professionals International -Original Message- From: Marc [mailto:[EMAIL PROTECTED]] Sent: Friday, June 29, 2001 4:03 PM To: [EMAIL PROTECTED] Subject: Re: HSRP [7:10428] HSRP is for router redundancy, not WAN circuit redundancy. If you wanted to have internet or WAN circuit redundacy, you would of course use two lines, have equal-cost routes (two default routes...etc) and that's all that's involved. HSRP not needed for WAN load-balancing/redundancy... Marc Sam Sneed wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... I was doing a little research on HSRP and had a question for anyone who has configured it. I read the whole RFC 2281 and could not find my answer there. If you have two routers running HSRP with T1 lines to the internet, 1 is the standby and one is the active. Does all traffic only go through the active at all times unless it dies? If so isn't it a waste not ever utilizing the T1 line thats on standby (of course until the active fails)? If bandwidth exceeded 1.5MB would the second router kick in to share the load or would it totally take over? With these 2 routers acting as a single virtual router would throughput ever be able to exceed 1.54 MB assuming each has its own T1 connection? thanks Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=10434t=10428 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Technical Questions [7:10427]
properly speaking, this is a study list - and questions should revolve around certification questions, issues, etc. realistically, it is hard to draw the line sometimes the technical list is comp.dcom.sys.cisco HTH chuck -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] Sent: Friday, June 29, 2001 12:41 PM To: [EMAIL PROTECTED] Subject: Technical Questions [7:10427] Hello, Can we ask questions on technical matters here? and if not... does anyone know where this can be done? Thank You, Michael Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=10435t=10427 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: HSRP [7:10428]
Thanks, Thats exactly what I was looking for. Eric Hoffman wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... Here is a link that may answer some questions about HSRP groups, and what it could be used for. http://www.cisco.com/warp/public/619/7.html Best Regards, Eric Hoffman Senior Systems Engineer MCP, CCNA, CCNP Computer Professionals International -Original Message- From: Marc [mailto:[EMAIL PROTECTED]] Sent: Friday, June 29, 2001 4:03 PM To: [EMAIL PROTECTED] Subject: Re: HSRP [7:10428] HSRP is for router redundancy, not WAN circuit redundancy. If you wanted to have internet or WAN circuit redundacy, you would of course use two lines, have equal-cost routes (two default routes...etc) and that's all that's involved. HSRP not needed for WAN load-balancing/redundancy... Marc Sam Sneed wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... I was doing a little research on HSRP and had a question for anyone who has configured it. I read the whole RFC 2281 and could not find my answer there. If you have two routers running HSRP with T1 lines to the internet, 1 is the standby and one is the active. Does all traffic only go through the active at all times unless it dies? If so isn't it a waste not ever utilizing the T1 line thats on standby (of course until the active fails)? If bandwidth exceeded 1.5MB would the second router kick in to share the load or would it totally take over? With these 2 routers acting as a single virtual router would throughput ever be able to exceed 1.54 MB assuming each has its own T1 connection? thanks Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=10436t=10428 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: HSRP [7:10428]
You can do exactly what you want to do, but you are going to require a few more boxes. The routers connecting to your ISP's will not run HSRP, a pair of routers that are connected to both ISP Routers will run HSRP between them. This way you load-balance across your ISP connections, but have a single gateway. This is usually done with L3 Switches. David C Prall [EMAIL PROTECTED] http://dcp.dcptech.com - Original Message - From: Sam Sneed To: Sent: Friday, June 29, 2001 4:13 PM Subject: Re: HSRP [7:10428] I think it would help if I gave you the scenario I was envisioning. I would like to plan a network where we have 2 seperate routers connecting to our ISP or perhaps 2 seperate ISP's. Lets assume 1 ISP, 2 routers ,each with its own full T1 line for simplicity. If 1 router died, I'd like to keep the internet connection alive without changing any of the clients default gateways. I figured HSRP would be good to apply here becuase it acts as 1 virtual router. But, would that mean that 1 router would be idle at all times not allowing me to ever get more than 1.5MB bandwidth? Or this extra idle T1 line just the cost of redundancy in this case? Marc wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... HSRP is for router redundancy, not WAN circuit redundancy. If you wanted to have internet or WAN circuit redundacy, you would of course use two lines, have equal-cost routes (two default routes...etc) and that's all that's involved. HSRP not needed for WAN load-balancing/redundancy... Marc Sam Sneed wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... I was doing a little research on HSRP and had a question for anyone who has configured it. I read the whole RFC 2281 and could not find my answer there. If you have two routers running HSRP with T1 lines to the internet, 1 is the standby and one is the active. Does all traffic only go through the active at all times unless it dies? If so isn't it a waste not ever utilizing the T1 line thats on standby (of course until the active fails)? If bandwidth exceeded 1.5MB would the second router kick in to share the load or would it totally take over? With these 2 routers acting as a single virtual router would throughput ever be able to exceed 1.54 MB assuming each has its own T1 connection? thanks Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=10437t=10428 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: HSRP [7:10428]
Yes, with HSRP all traffic will go the primary router and the second would be idle. You can do some HSRP loadbalancing by having two physical routers and then each of them configured with two HSRP addresses. One is primary for one HSRP address and secondary for the other and router two is secondary for the first HSRP and primary for the second. Then have them track the serials to decide if they stay primary. That way there is two addresses for default gateway available to and if one router goes down of if one T1 goes down the other router takes the whole load. This way you can point half your devices at one HSRP address for default gateway and the other half at the other HSRP address. This also helps solve the problem of trying to load balance across two routers if you are running NAT because traffic from any given workstation should always go through the same router except in cases of failure. Of course, if you want simplicity just plug both T1s into the same router and keep the second router configured as a hot-swappable spare. - Original Message - From: Sam Sneed To: Sent: Friday, June 29, 2001 4:13 PM Subject: Re: HSRP [7:10428] I think it would help if I gave you the scenario I was envisioning. I would like to plan a network where we have 2 seperate routers connecting to our ISP or perhaps 2 seperate ISP's. Lets assume 1 ISP, 2 routers ,each with its own full T1 line for simplicity. If 1 router died, I'd like to keep the internet connection alive without changing any of the clients default gateways. I figured HSRP would be good to apply here becuase it acts as 1 virtual router. But, would that mean that 1 router would be idle at all times not allowing me to ever get more than 1.5MB bandwidth? Or this extra idle T1 line just the cost of redundancy in this case? Marc wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... HSRP is for router redundancy, not WAN circuit redundancy. If you wanted to have internet or WAN circuit redundacy, you would of course use two lines, have equal-cost routes (two default routes...etc) and that's all that's involved. HSRP not needed for WAN load-balancing/redundancy... Marc Sam Sneed wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... I was doing a little research on HSRP and had a question for anyone who has configured it. I read the whole RFC 2281 and could not find my answer there. If you have two routers running HSRP with T1 lines to the internet, 1 is the standby and one is the active. Does all traffic only go through the active at all times unless it dies? If so isn't it a waste not ever utilizing the T1 line thats on standby (of course until the active fails)? If bandwidth exceeded 1.5MB would the second router kick in to share the load or would it totally take over? With these 2 routers acting as a single virtual router would throughput ever be able to exceed 1.54 MB assuming each has its own T1 connection? thanks Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=10439t=10428 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: HSRP [7:10428]
Yes sir, HSRP routers will definately not use the T1's for anything but 1 active, 1 pulsing (standby)Not designed for load balancingRedundancy only. Marc Sam Sneed wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... I think it would help if I gave you the scenario I was envisioning. I would like to plan a network where we have 2 seperate routers connecting to our ISP or perhaps 2 seperate ISP's. Lets assume 1 ISP, 2 routers ,each with its own full T1 line for simplicity. If 1 router died, I'd like to keep the internet connection alive without changing any of the clients default gateways. I figured HSRP would be good to apply here becuase it acts as 1 virtual router. But, would that mean that 1 router would be idle at all times not allowing me to ever get more than 1.5MB bandwidth? Or this extra idle T1 line just the cost of redundancy in this case? Marc wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... HSRP is for router redundancy, not WAN circuit redundancy. If you wanted to have internet or WAN circuit redundacy, you would of course use two lines, have equal-cost routes (two default routes...etc) and that's all that's involved. HSRP not needed for WAN load-balancing/redundancy... Marc Sam Sneed wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... I was doing a little research on HSRP and had a question for anyone who has configured it. I read the whole RFC 2281 and could not find my answer there. If you have two routers running HSRP with T1 lines to the internet, 1 is the standby and one is the active. Does all traffic only go through the active at all times unless it dies? If so isn't it a waste not ever utilizing the T1 line thats on standby (of course until the active fails)? If bandwidth exceeded 1.5MB would the second router kick in to share the load or would it totally take over? With these 2 routers acting as a single virtual router would throughput ever be able to exceed 1.54 MB assuming each has its own T1 connection? thanks Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=10440t=10428 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Technical Questions [7:10427]
But some of us use this list as their first-line tech support, even if the topic isn't exactly certification-related. Now, I would never do such a thing ;-) John Chuck Larrieu 6/29/01 2:24:51 PM properly speaking, this is a study list - and questions should revolve around certification questions, issues, etc. realistically, it is hard to draw the line sometimes the technical list is comp.dcom.sys.cisco HTH chuck -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] Sent: Friday, June 29, 2001 12:41 PM To: [EMAIL PROTECTED] Subject: Technical Questions [7:10427] Hello, Can we ask questions on technical matters here? and if not... does anyone know where this can be done? Thank You, Michael Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=10441t=10427 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Technical Questions [7:10427]
Open Forum might be more up to speed if your free-time consists of working address plans in binary or looking for probability in the pregnant chads of Fortran punch cards :o) - Original Message - From: Chuck Larrieu To: Sent: Friday, June 29, 2001 7:24 PM Subject: RE: Technical Questions [7:10427] properly speaking, this is a study list - and questions should revolve around certification questions, issues, etc. realistically, it is hard to draw the line sometimes the technical list is comp.dcom.sys.cisco HTH chuck -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] Sent: Friday, June 29, 2001 12:41 PM To: [EMAIL PROTECTED] Subject: Technical Questions [7:10427] Hello, Can we ask questions on technical matters here? and if not... does anyone know where this can be done? Thank You, Michael Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=10442t=10427 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: HSRP [7:10428]
Good link! Seems a bit odd to have the PCs configured with two differnet GWs. Kind of a manual pain. Hopefully Sam here do\es not have other routers with routing protocols involved...Watch out for loops! Marc Eric Hoffman wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... Here is a link that may answer some questions about HSRP groups, and what it could be used for. http://www.cisco.com/warp/public/619/7.html Best Regards, Eric Hoffman Senior Systems Engineer MCP, CCNA, CCNP Computer Professionals International -Original Message- From: Marc [mailto:[EMAIL PROTECTED]] Sent: Friday, June 29, 2001 4:03 PM To: [EMAIL PROTECTED] Subject: Re: HSRP [7:10428] HSRP is for router redundancy, not WAN circuit redundancy. If you wanted to have internet or WAN circuit redundacy, you would of course use two lines, have equal-cost routes (two default routes...etc) and that's all that's involved. HSRP not needed for WAN load-balancing/redundancy... Marc Sam Sneed wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... I was doing a little research on HSRP and had a question for anyone who has configured it. I read the whole RFC 2281 and could not find my answer there. If you have two routers running HSRP with T1 lines to the internet, 1 is the standby and one is the active. Does all traffic only go through the active at all times unless it dies? If so isn't it a waste not ever utilizing the T1 line thats on standby (of course until the active fails)? If bandwidth exceeded 1.5MB would the second router kick in to share the load or would it totally take over? With these 2 routers acting as a single virtual router would throughput ever be able to exceed 1.54 MB assuming each has its own T1 connection? thanks Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=10445t=10428 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: HSRP [7:10428]
You should be able to accomplish this with the interface tracking option in HSRP. Heather Buri CSC Technology Services - Houston Phone: (713)-961-8592 Fax:(713)-961-8249 Mobile: Alpha Page: Mailing:1360 Post Oak Blvd Suite 500 Houston, TX 77056 -Original Message- From: Sam Sneed [mailto:[EMAIL PROTECTED]] Sent: Friday, June 29, 2001 3:14 PM To: [EMAIL PROTECTED] Subject: Re: HSRP [7:10428] I think it would help if I gave you the scenario I was envisioning. I would like to plan a network where we have 2 seperate routers connecting to our ISP or perhaps 2 seperate ISP's. Lets assume 1 ISP, 2 routers ,each with its own full T1 line for simplicity. If 1 router died, I'd like to keep the internet connection alive without changing any of the clients default gateways. I figured HSRP would be good to apply here becuase it acts as 1 virtual router. But, would that mean that 1 router would be idle at all times not allowing me to ever get more than 1.5MB bandwidth? Or this extra idle T1 line just the cost of redundancy in this case? Marc wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... HSRP is for router redundancy, not WAN circuit redundancy. If you wanted to have internet or WAN circuit redundacy, you would of course use two lines, have equal-cost routes (two default routes...etc) and that's all that's involved. HSRP not needed for WAN load-balancing/redundancy... Marc Sam Sneed wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... I was doing a little research on HSRP and had a question for anyone who has configured it. I read the whole RFC 2281 and could not find my answer there. If you have two routers running HSRP with T1 lines to the internet, 1 is the standby and one is the active. Does all traffic only go through the active at all times unless it dies? If so isn't it a waste not ever utilizing the T1 line thats on standby (of course until the active fails)? If bandwidth exceeded 1.5MB would the second router kick in to share the load or would it totally take over? With these 2 routers acting as a single virtual router would throughput ever be able to exceed 1.54 MB assuming each has its own T1 connection? thanks EOM NOTICE - This message contains information intended only for the use of the addressee named above. It may also be confidential and/or privileged. If you are not the intended recipient of this message you are hereby notified that you must not disseminate, copy or take any action in reliance on it. If you have received this message in error please notify [EMAIL PROTECTED] Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=10444t=10428 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
OT: Multiple Default Routes on 5505 RSFC [7:10443]
I hope you folks can help me with this. I KNOW there's an answer, but it just eludes me. I have a Cisco 5505 switch with a Route Switch Feature Card. I have a bunch of VLANs configured with private addresses, 172.16.x... The default route on the RSFC points to a PIX firewall - 172.16.1.1. Everything is working as it should. I created another VLAN on the same switch with outside, public addresses (198.x.x.x). Now because of the default route, all of that traffic is being routed through the firewall. I would like that traffic to go directly to the outside router, bypassing the firewall. Is there any way to somehow differentiate this traffic? Thanks. Larry Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=10443t=10443 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: HSRP [7:10428]
I think I like Mike's suggestion the best! Marc Mike Fountain wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... Yes, with HSRP all traffic will go the primary router and the second would be idle. You can do some HSRP loadbalancing by having two physical routers and then each of them configured with two HSRP addresses. One is primary for one HSRP address and secondary for the other and router two is secondary for the first HSRP and primary for the second. Then have them track the serials to decide if they stay primary. That way there is two addresses for default gateway available to and if one router goes down of if one T1 goes down the other router takes the whole load. This way you can point half your devices at one HSRP address for default gateway and the other half at the other HSRP address. This also helps solve the problem of trying to load balance across two routers if you are running NAT because traffic from any given workstation should always go through the same router except in cases of failure. Of course, if you want simplicity just plug both T1s into the same router and keep the second router configured as a hot-swappable spare. - Original Message - From: Sam Sneed To: Sent: Friday, June 29, 2001 4:13 PM Subject: Re: HSRP [7:10428] I think it would help if I gave you the scenario I was envisioning. I would like to plan a network where we have 2 seperate routers connecting to our ISP or perhaps 2 seperate ISP's. Lets assume 1 ISP, 2 routers ,each with its own full T1 line for simplicity. If 1 router died, I'd like to keep the internet connection alive without changing any of the clients default gateways. I figured HSRP would be good to apply here becuase it acts as 1 virtual router. But, would that mean that 1 router would be idle at all times not allowing me to ever get more than 1.5MB bandwidth? Or this extra idle T1 line just the cost of redundancy in this case? Marc wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... HSRP is for router redundancy, not WAN circuit redundancy. If you wanted to have internet or WAN circuit redundacy, you would of course use two lines, have equal-cost routes (two default routes...etc) and that's all that's involved. HSRP not needed for WAN load-balancing/redundancy... Marc Sam Sneed wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... I was doing a little research on HSRP and had a question for anyone who has configured it. I read the whole RFC 2281 and could not find my answer there. If you have two routers running HSRP with T1 lines to the internet, 1 is the standby and one is the active. Does all traffic only go through the active at all times unless it dies? If so isn't it a waste not ever utilizing the T1 line thats on standby (of course until the active fails)? If bandwidth exceeded 1.5MB would the second router kick in to share the load or would it totally take over? With these 2 routers acting as a single virtual router would throughput ever be able to exceed 1.54 MB assuming each has its own T1 connection? thanks Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=10446t=10428 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Technical Questions [7:10427]
let he who has never asked in behalf of a customer throw the first stone. ( some of us are better at disguising our intentions than others ;- ) Chuck -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of John Neiberger Sent: Friday, June 29, 2001 1:57 PM To: [EMAIL PROTECTED] Subject: RE: Technical Questions [7:10427] But some of us use this list as their first-line tech support, even if the topic isn't exactly certification-related. Now, I would never do such a thing ;-) John Chuck Larrieu 6/29/01 2:24:51 PM properly speaking, this is a study list - and questions should revolve around certification questions, issues, etc. realistically, it is hard to draw the line sometimes the technical list is comp.dcom.sys.cisco HTH chuck -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] Sent: Friday, June 29, 2001 12:41 PM To: [EMAIL PROTECTED] Subject: Technical Questions [7:10427] Hello, Can we ask questions on technical matters here? and if not... does anyone know where this can be done? Thank You, Michael Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=10447t=10427 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Multiple Default Routes on 5505 RSFC [7:10443]
What about: Ip route 198..x.x.x 255.x.x.x (to) internet gateway ? Marc Larry Anderson wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... I hope you folks can help me with this. I KNOW there's an answer, but it just eludes me. I have a Cisco 5505 switch with a Route Switch Feature Card. I have a bunch of VLANs configured with private addresses, 172.16.x... The default route on the RSFC points to a PIX firewall - 172.16.1.1. Everything is working as it should. I created another VLAN on the same switch with outside, public addresses (198.x.x.x). Now because of the default route, all of that traffic is being routed through the firewall. I would like that traffic to go directly to the outside router, bypassing the firewall. Is there any way to somehow differentiate this traffic? Thanks. Larry Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=10448t=10443 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
access servers? [7:10449]
I went to the Cisco homepage and looked at the list of products. I saw Cisco Access Servers. What kind of hardware are those? _ Get your FREE download of MSN Explorer at http://explorer.msn.com Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=10449t=10449 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
ReviewNet Test [7:10450]
Has anyone ever had to take an online test from ReviewNet.net as a pre requisit for Network job?? This test was referred by a recruiter for a Network type of job. heres the link http://www2.reviewnet.net/UserLogin.html I'd like your opinions of this. Thanks. Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=10450t=10450 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: HSRP [7:10428]
It's not a pain if you use DHCP to set the default gateway in your PCs. It would definitely be a pain to do manually, though. John Marc 6/29/01 3:09:47 PM Good link! Seems a bit odd to have the PCs configured with two differnet GWs. Kind of a manual pain. Hopefully Sam here do\es not have other routers with routing protocols involved...Watch out for loops! Marc Eric Hoffman wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... Here is a link that may answer some questions about HSRP groups, and what it could be used for. http://www.cisco.com/warp/public/619/7.html Best Regards, Eric Hoffman Senior Systems Engineer MCP, CCNA, CCNP Computer Professionals International -Original Message- From: Marc [mailto:[EMAIL PROTECTED]] Sent: Friday, June 29, 2001 4:03 PM To: [EMAIL PROTECTED] Subject: Re: HSRP [7:10428] HSRP is for router redundancy, not WAN circuit redundancy. If you wanted to have internet or WAN circuit redundacy, you would of course use two lines, have equal-cost routes (two default routes...etc) and that's all that's involved. HSRP not needed for WAN load-balancing/redundancy... Marc Sam Sneed wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... I was doing a little research on HSRP and had a question for anyone who has configured it. I read the whole RFC 2281 and could not find my answer there. If you have two routers running HSRP with T1 lines to the internet, 1 is the standby and one is the active. Does all traffic only go through the active at all times unless it dies? If so isn't it a waste not ever utilizing the T1 line thats on standby (of course until the active fails)? If bandwidth exceeded 1.5MB would the second router kick in to share the load or would it totally take over? With these 2 routers acting as a single virtual router would throughput ever be able to exceed 1.54 MB assuming each has its own T1 connection? thanks Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=10451t=10428 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: HSRP [7:10428]
Yeah, but you can't specify two different GWs in the same DHCP global subnet scope properties. They all take either one or none. The article states that inorder to load balance you must set the PCs to divide between the two virtual IPs of the GWs. SO basically you have to manually set the GW on every PC, then call that load balancing Marc John Neiberger wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... It's not a pain if you use DHCP to set the default gateway in your PCs. It would definitely be a pain to do manually, though. John Marc 6/29/01 3:09:47 PM Good link! Seems a bit odd to have the PCs configured with two differnet GWs. Kind of a manual pain. Hopefully Sam here do\es not have other routers with routing protocols involved...Watch out for loops! Marc Eric Hoffman wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... Here is a link that may answer some questions about HSRP groups, and what it could be used for. http://www.cisco.com/warp/public/619/7.html Best Regards, Eric Hoffman Senior Systems Engineer MCP, CCNA, CCNP Computer Professionals International -Original Message- From: Marc [mailto:[EMAIL PROTECTED]] Sent: Friday, June 29, 2001 4:03 PM To: [EMAIL PROTECTED] Subject: Re: HSRP [7:10428] HSRP is for router redundancy, not WAN circuit redundancy. If you wanted to have internet or WAN circuit redundacy, you would of course use two lines, have equal-cost routes (two default routes...etc) and that's all that's involved. HSRP not needed for WAN load-balancing/redundancy... Marc Sam Sneed wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... I was doing a little research on HSRP and had a question for anyone who has configured it. I read the whole RFC 2281 and could not find my answer there. If you have two routers running HSRP with T1 lines to the internet, 1 is the standby and one is the active. Does all traffic only go through the active at all times unless it dies? If so isn't it a waste not ever utilizing the T1 line thats on standby (of course until the active fails)? If bandwidth exceeded 1.5MB would the second router kick in to share the load or would it totally take over? With these 2 routers acting as a single virtual router would throughput ever be able to exceed 1.54 MB assuming each has its own T1 connection? thanks Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=10452t=10428 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Technical Questions [7:10427]
Thanks for the info Chuck! Michael Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=10438t=10427 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: HSRP [7:10428]
Hmm I have no response to that because I've never personally configured DHCP to do this. However, I've heard several times that this can be done. Perhaps users on a given subnet must use the same gateway, but you could alternate gateway addresses on separate subnets. Is that possible? Granted, this wouldn't solve the problem if you only had a single subnet needing internet access, but it would divide traffic from multiple subnets between the two links. John Marc 6/29/01 3:58:52 PM Yeah, but you can't specify two different GWs in the same DHCP global subnet scope properties. They all take either one or none. The article states that inorder to load balance you must set the PCs to divide between the two virtual IPs of the GWs. SO basically you have to manually set the GW on every PC, then call that load balancing Marc John Neiberger wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... It's not a pain if you use DHCP to set the default gateway in your PCs. It would definitely be a pain to do manually, though. John Marc 6/29/01 3:09:47 PM Good link! Seems a bit odd to have the PCs configured with two differnet GWs. Kind of a manual pain. Hopefully Sam here do\es not have other routers with routing protocols involved...Watch out for loops! Marc Eric Hoffman wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... Here is a link that may answer some questions about HSRP groups, and what it could be used for. http://www.cisco.com/warp/public/619/7.html Best Regards, Eric Hoffman Senior Systems Engineer MCP, CCNA, CCNP Computer Professionals International -Original Message- From: Marc [mailto:[EMAIL PROTECTED]] Sent: Friday, June 29, 2001 4:03 PM To: [EMAIL PROTECTED] Subject: Re: HSRP [7:10428] HSRP is for router redundancy, not WAN circuit redundancy. If you wanted to have internet or WAN circuit redundacy, you would of course use two lines, have equal-cost routes (two default routes...etc) and that's all that's involved. HSRP not needed for WAN load-balancing/redundancy... Marc Sam Sneed wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... I was doing a little research on HSRP and had a question for anyone who has configured it. I read the whole RFC 2281 and could not find my answer there. If you have two routers running HSRP with T1 lines to the internet, 1 is the standby and one is the active. Does all traffic only go through the active at all times unless it dies? If so isn't it a waste not ever utilizing the T1 line thats on standby (of course until the active fails)? If bandwidth exceeded 1.5MB would the second router kick in to share the load or would it totally take over? With these 2 routers acting as a single virtual router would throughput ever be able to exceed 1.54 MB assuming each has its own T1 connection? thanks Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=10453t=10428 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Strange situation with NAT and telnet [7:10387]
Well, to answer your question, I don't want to telnet to the outside interface from the inside. I want to telnet to the outside interface from the outside, and clearly due to the NAT, the outside interface is the only interface I can telnet to, and because of this stupid bug, I cannot. So basically what it boils down to is that nobody from the outside can ever telnet into the router, which bites. And somebody asked what OS and what router I am using. It is 12.2(1), on a 2514. Allen May wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... OK I don't have the real answer but it seems that NAT overload is on the same IP address that you're trying to telnet to. That would be kind of weird for the box to receive a telnet request from to the same IP. No flames but I'll just throw a suggestion to try (let me know if it works). Try settting up an access-list for NONAT when going to that IP address. That will leave the source address alone. And it looks like you've set up an access-list to allow telnet to that interface already but double check that. I have to ask...why telnet to the outside interface from inside? Allen - Original Message - From: nrf To: Sent: Friday, June 29, 2001 4:01 AM Subject: Strange situation with NAT and telnet [7:10387] Hey all: I have this strange situation where I cannot telnet into my router. This is what happens. I am successfully running NAT (with overload), with no problem. I can telnet into the interface that is the inside NAT with no problem. I can also telnet into any non-NAT interface with no problem. The problem occurs when I try to telnet into the interface that is the designated outside NAT interface. For example, when I fire up telnet from Windows and telnet to that outside NAT interface, it just shows that it is trying to connect, but it never connects. Now, I can assure you that connectivity is fine. I can ping that interface. People from the inside can get to the outside, with no problem. So it's not a routing issue, I am sure. I have monitored what happens when I try to telnet, as I have an access-class on the vty line that allows anything in (permit ip any any), but is set for logging. So I notice that telnet packets are indeed being permitted by the access-list, meaning the telnet request is hitting the router successfully. On the console, I even get a message saying that the access-list is allowing a telnet packet in. So everything seems cool. But somehow the router doesn't want to acknowledge the telnet request. Does anybody know what is up with that? Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=10454t=10387 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: access servers? [7:10449]
These are generally remote access servers. Some call them RAS, some call them NAS (network AS) but they're all the same thing for the most part. In short, they provide access to the LAN via dial-up technology. These boxes usually have digital modem cards (the better ones do anyway), which provides high port density and support for 56k analog dial-up since there is one less digital-to-analog conversion as a result of the modems being of the digital variety. The AS5300, just a fantastic box, has the T1 controllers built right in so you don't need a DSU. Just plug the T!(s) into the controller ports and away you go. With this technology, you can get either 23 or 24 dial-up circuits per T1 depending on whether the T1 is channelized (CAS=in-band signaling for 24-56k connections) or Primary Rate Interface (PRI=out-of-band signaling for 23-64k connections such as BRI ISDN). Hope this helps! Rik -Original Message- From: Magenta Bloom [mailto:[EMAIL PROTECTED]] Sent: Friday, June 29, 2001 5:22 PM To: [EMAIL PROTECTED] Subject: access servers? [7:10449] I went to the Cisco homepage and looked at the list of products. I saw Cisco Access Servers. What kind of hardware are those? _ Get your FREE download of MSN Explorer at http://explorer.msn.com Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=10455t=10449 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
cisco IOS Security [7:10456]
I have this command in a book and does not understand what it does could anybody explain The command is a global command on a cisco 805: cns event-service server _ Get Your Private, Free E-mail from MSN Hotmail at http://www.hotmail.com. Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=10456t=10456 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: HSRP [7:10428]
forgive my throwing in my own ignorant observations I see this discussion as an exercise in bottom up network design. I know what HSRP is, I know what DHCP is. Now how do I make them do what I want? to quote a sage, one must begin by asking the basic question - what is the problem you are trying to solve? when the problem is defined, then one moves to the examination of alternatives. Life is more difficult when you begin with the solution, and then try to get that solution to meet the need. Years of managing technology in a firm full of whiney crybaby ignorant users has left me with a lot of experience with people who tell you what the solution is without bothering to think about the problem. ( I want you to implement a system here we all use Windows address book to look up company wide information, contacts, etc. ) As I read the original definition of the problem - multihomed ISP's, multiple paths, how do I assure internet connectivity? ( and load balance as well, I presume ) then the solution goes beyond the nature of HSRP and DHCP if the problem is how do you ensure that an end user, given these network circumstances, always have internet access? then you can break down the problem into component parts and work from there. Chuck -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of John Neiberger Sent: Friday, June 29, 2001 3:17 PM To: [EMAIL PROTECTED] Subject: Re: HSRP [7:10428] Hmm I have no response to that because I've never personally configured DHCP to do this. However, I've heard several times that this can be done. Perhaps users on a given subnet must use the same gateway, but you could alternate gateway addresses on separate subnets. Is that possible? Granted, this wouldn't solve the problem if you only had a single subnet needing internet access, but it would divide traffic from multiple subnets between the two links. John Marc 6/29/01 3:58:52 PM Yeah, but you can't specify two different GWs in the same DHCP global subnet scope properties. They all take either one or none. The article states that inorder to load balance you must set the PCs to divide between the two virtual IPs of the GWs. SO basically you have to manually set the GW on every PC, then call that load balancing Marc John Neiberger wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... It's not a pain if you use DHCP to set the default gateway in your PCs. It would definitely be a pain to do manually, though. John Marc 6/29/01 3:09:47 PM Good link! Seems a bit odd to have the PCs configured with two differnet GWs. Kind of a manual pain. Hopefully Sam here do\es not have other routers with routing protocols involved...Watch out for loops! Marc Eric Hoffman wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... Here is a link that may answer some questions about HSRP groups, and what it could be used for. http://www.cisco.com/warp/public/619/7.html Best Regards, Eric Hoffman Senior Systems Engineer MCP, CCNA, CCNP Computer Professionals International -Original Message- From: Marc [mailto:[EMAIL PROTECTED]] Sent: Friday, June 29, 2001 4:03 PM To: [EMAIL PROTECTED] Subject: Re: HSRP [7:10428] HSRP is for router redundancy, not WAN circuit redundancy. If you wanted to have internet or WAN circuit redundacy, you would of course use two lines, have equal-cost routes (two default routes...etc) and that's all that's involved. HSRP not needed for WAN load-balancing/redundancy... Marc Sam Sneed wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... I was doing a little research on HSRP and had a question for anyone who has configured it. I read the whole RFC 2281 and could not find my answer there. If you have two routers running HSRP with T1 lines to the internet, 1 is the standby and one is the active. Does all traffic only go through the active at all times unless it dies? If so isn't it a waste not ever utilizing the T1 line thats on standby (of course until the active fails)? If bandwidth exceeded 1.5MB would the second router kick in to share the load or would it totally take over? With these 2 routers acting as a single virtual router would throughput ever be able to exceed 1.54 MB assuming each has its own T1 connection? thanks Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=10457t=10428 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Multiple Default Routes on 5505 RSFC [7:10443]
- Original Message - From: Larry Anderson I hope you folks can help me with this. I KNOW there's an answer, but it just eludes me. I have a Cisco 5505 switch with a Route Switch Feature Card. I have a bunch of VLANs configured with private addresses, 172.16.x... The default route on the RSFC points to a PIX firewall - 172.16.1.1. Everything is working as it should. I created another VLAN on the same switch with outside, public addresses (198.x.x.x). Now because of the default route, all of that traffic is being routed through the firewall. I would like that traffic to go directly to the outside router, bypassing the firewall. Is there any way to somehow differentiate this traffic? Thanks. Add the ports, but do not create an interface on the RSFC. These ports will then have the outside router as their default route. On the outside router you will have a route pointing to the PIX's outside interface for your public address space. On the RSFC since everything is Connected, you will bypass the PIX to get to your outside addresses. Therefore, we do not want the outside network to appear on the RSFC. If you really must do this, then it is time to look at Policy-Based Routing. David C Prall [EMAIL PROTECTED] http://dcp.dcptech.com Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=10458t=10443 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Strange situation with NAT and telnet [7:10387]
On Fri, 29 Jun 2001, nrf wrote: Well, to answer your question, I don't want to telnet to the outside interface from the inside. I want to telnet to the outside interface from the outside, and clearly due to the NAT, the outside interface is the only interface I can telnet to, and because of this stupid bug, I cannot. So basically what it boils down to is that nobody from the outside can ever telnet into the router, which bites. I wonder here...and yes, I sorta didnt read the rest of the thread.. Are you static mapping the IP you used for the outside interface to an internal address, by chance? I've done that before (on purpose;) and had the same problem you mention. OTOH, I've never seen this problem on a simple overload setup. ~shrug~ ...david --- david raistrick (deep in the south georgia woods) [EMAIL PROTECTED] Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=10459t=10387 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: cisco IOS Security [7:10456]
Try this link: www.cisco.com/univercd/cc/td/doc/product/rtrmgmt/cnfg_reg/crmanual/intro.htm -- James Haynes Network Architect Cendant IT A+,MCSE,CCNA,CCDA,CCNP,CCDP, CQS-SNA/IP mindiani mindiani wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... I have this command in a book and does not understand what it does could anybody explain The command is a global command on a cisco 805: cns event-service server _ Get Your Private, Free E-mail from MSN Hotmail at http://www.hotmail.com. Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=10460t=10456 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Trace result assistance [7:10398]
I am new to Networking so I am providing my guess. It appears to be routing loop and default gateways must have been set as follows: Default gateway for Hop 5 (164.220.193.65) is 164.220.193.66 and Default gateway for Hop 6 (164.220.193.66) is 164.220.193.65. Hop 6 is the culprit. Possible cause the port (Serial port) is down or less likely routing table does not have the destination specified. Check 164.220.193.66 Router. SP Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=10462t=10398 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Cisco bug could let hackers control Net traffic [7:10463]
yet another reason why people should be very careful about what they do and why. a bit of security training, and a bit of thought can prevent a lot of things. interesting to note that those who have enabled this kewl interface, yet for whatever reason are using manual local authentication have the problem. interesting to note that one of the preventions is NOT disabling HTTP access to the router itself from all but trusted source addresses. Chuck -Original Message- From: Wing Tse [mailto:[EMAIL PROTECTED]] Sent: Friday, June 29, 2001 3:29 PM To: Daniel E Segovia; [EMAIL PROTECTED] Subject: Cisco bug could let hackers control Net traffic 4. Cisco bug could let hackers control Net traffic Networking hardware maker Cisco Systems and the Computer Emergency Response Team (CERT) Coordination Center have warned of a bug in Cisco routers that could allow hackers to disrupt Internet traffic or intercept sensitive information. The bug, revealed Thursday, allows an attacker to gain control of any Cisco router running certain operating software. Routers are devices that control how data moves around the Internet. Malicious attackers could stop Internet traffic, intercept information such as passwords and credit card numbers, or redirect traffic from Web sites. June 29, 2001, 12:10 p.m. PT http://two.digital.cnet.com/cgi-bin2/flo?y=eBwi04Sv20U0c6S0Af --- Daniel E Segovia wrote: Hello Group, There will be NO lab meeting on July 7th at Exodus due to the holiday. We will reconvene for Lab on the 21st. Please see the big news below July 19th Evening Meeting: We are currently working out the details on the topic for guest speaker from Unitek. It will possibly be about the Bridging and Switching added to the new CCNA exam. Also, there will be a special offer made by Unitek for CCNA and CCNP classes just for SVCUG members BIG NEWS !: July 21st Lab will be at the Mt. View CISCO office. Please DO NOT go to Exodus! I will be working with David Powers to obtain a permanent lab location on the main Cisco campus (the corporate offices on Tasman). -- Best regards, Daniel Segovia CISCO SYSTEMS IOS-WAN Software Engineer __ Do You Yahoo!? Get personalized email addresses from Yahoo! Mail http://personal.mail.yahoo.com/ Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=10463t=10463 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: MPLS [7:220]
Does anyone have a simple MPLS configuration they could post? To solve what problem with MPLS? Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=10466t=220 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Technical Questions [7:10427]
Open Forum might be more up to speed if your free-time consists of working address plans in binary or looking for probability in the pregnant chads of Fortran punch cards :o) There's something wrong with doing address plans in binary? Best way to learn, once you realize you don't have to do all 32 bits in binary. Seriously, when I plan an address structure, and I am documenting it, my primary mode is binary, and then converting to dotted decimal where appropriate. Now, when I say planning address structures, it often is to say a /19 here, split into 8 /21 for areas. Not boasting here, but when you've been doing these for what...15 years or so, I can do a fair bit of subnetting in my head. There are tricks, but I wouldn't confuse a beginner with them. I do miss punch cards, though. Blank punch cards were really great for shopping lists. Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=10465t=10427 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Strange situation with NAT and telnet [7:10387]
Is this an Internet router or just an internal router running translation? Unless you have static translates setup, NAT overload (PAT) will most likely not allow inbound connections as it tracks ports for outbound and established connections, not inbound connections. This is how you are able to create 64k sessions on a single IP address. A perfect example of this is the PIX, which only allows inbound connections on a static translation throught the use of a conduit. The PIX will not allow an inbound connection on a PATed address(es) as it is for outbound connections only. Is it possible to put a secondary address on the interface and not translate with that address? Port redirection might work if you are running IOS FW. You could redirect telnet requests to the inside interface address. If you're not running IOS FW, then there must be some mechanism blocking your session. Rik -Original Message- From: nrf [mailto:[EMAIL PROTECTED]] Sent: Friday, June 29, 2001 6:21 PM To: [EMAIL PROTECTED] Subject: Re: Strange situation with NAT and telnet [7:10387] Well, to answer your question, I don't want to telnet to the outside interface from the inside. I want to telnet to the outside interface from the outside, and clearly due to the NAT, the outside interface is the only interface I can telnet to, and because of this stupid bug, I cannot. So basically what it boils down to is that nobody from the outside can ever telnet into the router, which bites. And somebody asked what OS and what router I am using. It is 12.2(1), on a 2514. Allen May wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... OK I don't have the real answer but it seems that NAT overload is on the same IP address that you're trying to telnet to. That would be kind of weird for the box to receive a telnet request from to the same IP. No flames but I'll just throw a suggestion to try (let me know if it works). Try settting up an access-list for NONAT when going to that IP address. That will leave the source address alone. And it looks like you've set up an access-list to allow telnet to that interface already but double check that. I have to ask...why telnet to the outside interface from inside? Allen - Original Message - From: nrf To: Sent: Friday, June 29, 2001 4:01 AM Subject: Strange situation with NAT and telnet [7:10387] Hey all: I have this strange situation where I cannot telnet into my router. This is what happens. I am successfully running NAT (with overload), with no problem. I can telnet into the interface that is the inside NAT with no problem. I can also telnet into any non-NAT interface with no problem. The problem occurs when I try to telnet into the interface that is the designated outside NAT interface. For example, when I fire up telnet from Windows and telnet to that outside NAT interface, it just shows that it is trying to connect, but it never connects. Now, I can assure you that connectivity is fine. I can ping that interface. People from the inside can get to the outside, with no problem. So it's not a routing issue, I am sure. I have monitored what happens when I try to telnet, as I have an access-class on the vty line that allows anything in (permit ip any any), but is set for logging. So I notice that telnet packets are indeed being permitted by the access-list, meaning the telnet request is hitting the router successfully. On the console, I even get a message saying that the access-list is allowing a telnet packet in. So everything seems cool. But somehow the router doesn't want to acknowledge the telnet request. Does anybody know what is up with that? Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=10467t=10387 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: MPLS [7:220]
Does anyone have a simple MPLS configuration they could post? To solve what problem with MPLS? My guess is the problem of there being no MPLS config on their router. ;-) Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=10468t=220 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
back-to-back [7:10469]
I'm trying to get two 1602's and a couple of 2500's (2524/2501) setup into some kind of lab. I can't get the 1602's to see each other on the built-in 56k modules. I've tried service-module settings for clock source line/internal, speed, network-type, but nothing works. I made a cable with pins 1,2 to 4,5 and that works for the T1 modules that I have in the 1602's and 2524, but not on the built in 56k (in the 1602's). What am I doing wrong? Please tell me how I should make my cable or correct config, or point me to where it is on the CD. Thanks for any help, Dave - Do You Yahoo!? Get personalized email addresses from Yahoo! Mail - only $35 a year! http://personal.mail.yahoo.com/ Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=10469t=10469 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: let's talk about BGP! [7:10297]
If you are in a hub and spoke environment and your hub is your as border router that is getting external routes then by default it will forward all external routes to its internal BGP neighbor routers. The purpose of route reflectors is to have internal BGP routers that do not have a interior neighbor relationship with the border router get those external routes from a route reflector. if you want to try this do it this way. leave your setup like it is and add another internal router and run bgp. have it only build a neighbor relationship with a spoke router. then on that spoke router add the route reflector statements to it. also your spoke routers are advertising the same networks that your hub router is advertising. I got the impression that you wanted these to be running ibgp not connecting to an ebgp router. Hope this helps. George, Head Janitor, CCNA CCDA Cisco Systems CiscoG wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... Hello fellow successful Engineer's; For all you BGP gurus, I have a situation here. Currently preparing for my BSCN exam, I have a lab at home that I recently implemented BGP on. With only 3 routers, it worked fantastic! Then I decided that wasn't good enough and now I wanted to setup a Route Reflector. In a Hub and Spoke topology, I chose to make the Hub router the Router reflector and have the two spoke routers clients. Performing a show ip bgp neighbor on each router, displays the correct information and verifies connection is established. The problem is, not one router is learning any BGP routes! I will post my basic BGP configuration below just to verify that is correct. Any ideas on this challenge would be appreciated! Thank you! -C (Hub Router) router bgp 100 network 172.16.0.0 network 172.20.0.0 network 10.0.0.0 neighbor 172.16.0.2 remote-as 100 neighbor 172.16.0.2 route-reflector-client neighbor 172.20.0.2 remote-as 100 neighbor 172.20.0.2 route-reflector-client (spoke router 1) router bgp 100 network 10.0.0.0 network 172.16.0.0 network 172.20.0.0 neighbor 172.16.0.1 remote-as 100 (spoke router 2) router bgp 100 network 10.0.0.0 network 172.16.0.0 network 172.20.0.0 neighbor 172.20.0.1 remote-as 100 Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=10470t=10297 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: 1600 router configuration [7:10290]
You need an isdn simulator George, Head Janitor, CCNA CCDA Cisco Sytems Andrew Lawrence wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... I'm in desperate need of information on how to connect 2 1600 routers together over isdn. The networks either side will be different IP addresses. Do I need to setup both to dial the other ? Any links to resources would be useful, an example config would be better ! I am looking on cisco's site but time is of the essence ! TIA Andy Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=10471t=10290 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Locking down telnet on switch [7:10283]
Use access class lists on the VTY terminals and that should work. George, Head Janitor, CCNA CCDA Cisco Systems Steve Smith wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... Hey gang is there any way to lock down telnet to a specific node on a network like you can a router or switch? I have a 4006 w/L3 card. I can access-list the layer 3 card but what about normal telnet to the switch? thanks in advance, Steve Steve Smith MCSE, CCNA Data Networks Technical Manager Freeliant.com 901-309-3919 [EMAIL PROTECTED] Try not to become a man of success, but rather try to become a man of value. -Albert Einstein Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=10472t=10283 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Specifying username/password on Catalyst 5000/5500 [7:10473]
Is there a way to setup individual usernames/passwords on a set based switch. I know the commands to setup the username/password on a IOS based box but is there a option to perform the same thing a a set based box like the Catalyst 5000/5500??? Any help is greatly appreciated. Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=10473t=10473 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: back-to-back [7:10469]
That's because the crossover for a T1 is different than 56k. I believe that the crossover you need is 1,2 - 7,8 but I'm not sure if my memory is working all that well or not. Maybe someone else can confirm or deny this for us. Or, if you really want to score points with the list, search on Google for 56k crossover and report your findings. ;-} Rik -Original Message- From: Michelle Sanderson [mailto:[EMAIL PROTECTED]] Sent: Friday, June 29, 2001 9:09 PM To: [EMAIL PROTECTED] Subject: back-to-back [7:10469] I'm trying to get two 1602's and a couple of 2500's (2524/2501) setup into some kind of lab. I can't get the 1602's to see each other on the built-in 56k modules. I've tried service-module settings for clock source line/internal, speed, network-type, but nothing works. I made a cable with pins 1,2 to 4,5 and that works for the T1 modules that I have in the 1602's and 2524, but not on the built in 56k (in the 1602's). What am I doing wrong? Please tell me how I should make my cable or correct config, or point me to where it is on the CD. Thanks for any help, Dave - Do You Yahoo!? Get personalized email addresses from Yahoo! Mail - only $35 a year! http://personal.mail.yahoo.com/ Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=10475t=10469 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: back-to-back [7:10469]
For the 56k csu/dsu you can use a rollover cable(console cable). Make sure that one router is getting clocking from line and one from internal. Good Luck George, Head Janitor, CCNA CCDA Cisco Systems Michelle Sanderson wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... I'm trying to get two 1602's and a couple of 2500's (2524/2501) setup into some kind of lab. I can't get the 1602's to see each other on the built-in 56k modules. I've tried service-module settings for clock source line/internal, speed, network-type, but nothing works. I made a cable with pins 1,2 to 4,5 and that works for the T1 modules that I have in the 1602's and 2524, but not on the built in 56k (in the 1602's). What am I doing wrong? Please tell me how I should make my cable or correct config, or point me to where it is on the CD. Thanks for any help, Dave - Do You Yahoo!? Get personalized email addresses from Yahoo! Mail - only $35 a year! http://personal.mail.yahoo.com/ Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=10474t=10469 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: back-to-back [7:10469]
56k uses pins 12 and 78. Swap those. -Original Message- From: Michelle Sanderson [mailto:[EMAIL PROTECTED]] Sent: Friday, June 29, 2001 8:09 PM To: [EMAIL PROTECTED] Subject: back-to-back [7:10469] I'm trying to get two 1602's and a couple of 2500's (2524/2501) setup into some kind of lab. I can't get the 1602's to see each other on the built-in 56k modules. I've tried service-module settings for clock source line/internal, speed, network-type, but nothing works. I made a cable with pins 1,2 to 4,5 and that works for the T1 modules that I have in the 1602's and 2524, but not on the built in 56k (in the 1602's). What am I doing wrong? Please tell me how I should make my cable or correct config, or point me to where it is on the CD. Thanks for any help, Dave - Do You Yahoo!? Get personalized email addresses from Yahoo! Mail - only $35 a year! http://personal.mail.yahoo.com/ Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=10476t=10469 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Specifying username/password on Catalyst 5000/5500 [7:10473]
set system name is the command to assign the hostname name. set password is the command to assign the pasword. to assign the password to go into enable mode use the set enablepass command. Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=10477t=10473 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: HSRP [7:10428]
Sam, I'd use multiple vlan's. Each router has a subinterface in each vlan. tim Tim Medley - CCNP+Voice Network Architect VoIP Group iReadyWorld 704-943-3615 - Phone 704-943-3660 - Fax 877-6-iReady - Helpdesk -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Sam Sneed Sent: Friday, June 29, 2001 4:14 PM To: [EMAIL PROTECTED] Subject: Re: HSRP [7:10428] I think it would help if I gave you the scenario I was envisioning. I would like to plan a network where we have 2 seperate routers connecting to our ISP or perhaps 2 seperate ISP's. Lets assume 1 ISP, 2 routers ,each with its own full T1 line for simplicity. If 1 router died, I'd like to keep the internet connection alive without changing any of the clients default gateways. I figured HSRP would be good to apply here becuase it acts as 1 virtual router. But, would that mean that 1 router would be idle at all times not allowing me to ever get more than 1.5MB bandwidth? Or this extra idle T1 line just the cost of redundancy in this case? Marc wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... HSRP is for router redundancy, not WAN circuit redundancy. If you wanted to have internet or WAN circuit redundacy, you would of course use two lines, have equal-cost routes (two default routes...etc) and that's all that's involved. HSRP not needed for WAN load-balancing/redundancy... Marc Sam Sneed wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... I was doing a little research on HSRP and had a question for anyone who has configured it. I read the whole RFC 2281 and could not find my answer there. If you have two routers running HSRP with T1 lines to the internet, 1 is the standby and one is the active. Does all traffic only go through the active at all times unless it dies? If so isn't it a waste not ever utilizing the T1 line thats on standby (of course until the active fails)? If bandwidth exceeded 1.5MB would the second router kick in to share the load or would it totally take over? With these 2 routers acting as a single virtual router would throughput ever be able to exceed 1.54 MB assuming each has its own T1 connection? thanks Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=10478t=10428 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
OFF TOPIC RANT - Who Cares? WAS: MPLS [7:220]
-Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Howard C. Berkowitz Sent: Friday, June 29, 2001 5:25 PM To: [EMAIL PROTECTED] Subject: Re: MPLS [7:220] Does anyone have a simple MPLS configuration they could post? To solve what problem with MPLS? Oh give it up, Howard. Nobody cares. All they want is The Answer. I've been kicking around the CCIE list for several months now. People who want to be CCIE's but don't read the RFC's. Or Comer. Or Stevens. Or Berkowitz. Or Oppenheimer. Or anything else. Doyle, Halabi, and Caslow - that's what gets you to the CCIE level! And why should they do otherwise? I don't recall seeing anything on my lab that made me wish I'd spend more time studying RFC's. Or TCP/IP theory. In fact just about everything I saw on my lab made me wish I'd spent less time with the RFC's and more time doing other things. How does routing work? How does redistribution work? How does OSPF work? Who cares? Just give me the configs that will help me pass. If I memorize enough variations, I'm ready for anything the lab throws my way. OK. Out of my system. Back to memorizing configs ;- Chuck Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=10479t=220 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
fast ehternet cables for Cat 5000 [7:10480]
Hi all, where Can I obtain Fast ethernet cables for a cat 5000 modules supervisor engine Thanks Omer Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=10480t=10480 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
