off-topic: Attrition in the ranks? [7:12768]
[demime could not interpret encoding binary - treating as plain text] Has anyone else (hopefully) noticed a reduction in the wow-i can get a ccnp and immediately make a small fortune, then on to ccie and it's time to pick out a yacht mania/irrational exuberance? I've noticed a slight drop following the dotcom/telecom debacles and was just wondering if others have noticed anything similar or if people are still going 'all out' in hopes that telecom will ultimately bounce back. Many people that I have spoken with (not necessarily a statistically sound cross-section) seem to be crossing-over/back to the mcse 2k (and soon to be xp/.net) arena as they guard their enterprise jobs. Unsettling flash forward-- Jane Smith basks in the moment of being awarded CCIE #10,000 by showing off her commemorative CCIE Pez Dispenser to her friends/family. Perhaps Cisco could have pursued the righteoous tree hugger angle as a reason to suspend the creation of those (apparently) outrageously expensive plaques (presumably made in part with sacred rain forest wood). Or maybe they could co-brand with RONCO and come out with the CCIE/ Popeil Pocket Fisherman with built in RIF decoder ring as the prize for passing ??? [picturing proctors tossing them by the handfuls into the thronging masses/audience members who have just finished taking their exams in the new 2003 Who want to be a CCIE with Regis audience poll/exam format] oh well...time to renew that Paxil prescription Hey you! Claim your FREE anonymous email account: Click Here - http://www.anonymous.to Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=12768t=12768 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
CCDA 5 Hours Ahead --- Last Minutes Exam Tips and Advice [7:12769]
Hi Group, Get to Write my CCDA in 5 hours from now, Please drop a last minute exam tip and advice. Thanks in advance. Regards. Oletu Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=12769t=12769 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: CCIE Lab Remote (was RE: Current Wait time on the lab) [7:12770]
Is there any evidence to support this possibility? The reason I ask is that the proctors have a very important role in the lab exam as it sits today, and I don't see how that role could be diminished. Hmmm...as a CCIE, if there were Sylvan remote lab testing, and lab proctors had to be CCIE's, that would fill a the gap in the CCIE unemployment...interesting tactic... But I doubt it will ever happen. Too much reputation at stake for Cisco to give up that much control over that coveted certification. -e- - Original Message - From: Brian Dennis To: Sent: Tuesday, July 17, 2001 6:53 PM Subject: CCIE Lab Remote (was RE: Current Wait time on the lab) [7:12746] Greg, It won't matter if there isn't a waiting list if the CCIE certification has lost it's value. The one-day lab is the first step to start running the lab remote from testing centers like Sylvan. I don't think that you want to be known as a Sylvan CCIE do you? Brian Dennis, CCIE #2210 (RS)(ISP/Dial) CCSI #98640 5G Networks, Inc. [EMAIL PROTECTED] Here is an excert from an e-mail I sent on the ccielab mailing list today: I think that we all know that someone could make an extremely hard one day lab that fails 99% of the candidates but that isn't the issue. There are a couple issues with remote labs and the shortening of the waiting list. One issue is that with the short waiting list people are going to be able to take the lab over and over again enabling the CCIE lab exams to become common knowledge just like the CCIE written is today. It'll be simpler for someone to just take the lab over and over again then it would to actually study. Cisco needs to put safeguards in that don't allow people take the test to often to solve this problem and I don't mean a weak solution like the 20 points on day one. I bet the average CCNP could get 20 points on day one. Having a long waiting list enables candidates to prepare and study for the lab and is part of the becoming a CCIE. Becoming a CCIE isn't something that you do overnight and should not be able to attempt every 30 days. Another issue is the problem with Sylvan testing centers that don't enforce Sylvan's policies and Sylvan centers that aren't on the up-and-up. This problem speaks for itself. -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Greg Macaulay Sent: Tuesday, July 17, 2001 6:22 PM To: [EMAIL PROTECTED] Subject: RE: Current Wait time on the lab [7:12713] Chuck --- Do you really think the CCIE is finished?? I hope you are wrong! We've all invested so many hundreds of hours of blood, sweat, tears and Money to get to this point!! I read Cisco's explanation today -- and hopefully their new lab will simply economize on time -- not on expertise. Say a prayer! Greg Macaulay Oldest CCNP/CCDP on Earth Lifetime Member of AARP Retired Attorney/Law Professor -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Chuck Larrieu Sent: Tuesday, July 17, 2001 8:52 PM To: [EMAIL PROTECTED] Subject: RE: Current Wait time on the lab [7:12713] I'm willing to part with my December 3 date for a nominal fee. Chuck betting that once the one day lab takes effect, the value of the CCIE will plummet ;- -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of EA Louie Sent: Tuesday, July 17, 2001 2:33 PM To: [EMAIL PROTECTED] Subject: Re: Current Wait time on the lab [7:12713] - Original Message - From: John Neiberger To: Sent: Tuesday, July 17, 2001 2:12 PM Subject: Re: Current Wait time on the lab [7:12713] I just scheduled the lab today and the earliest date available was 3/8/2002. But I took that spot. :-) not true, the earliest date was today ;-) then one on 8/7 and another on 8/17 (heheheheh) John Jaspreet Bhatia 7/17/01 2:40:18 PM Guys, Does anyone know what is the current wait time for the R/S lab in San Jose . Jaspreet _ Do You Yahoo!? Get your free @yahoo.com address at http://mail.yahoo.com _ Do You Yahoo!? Get your free @yahoo.com address at http://mail.yahoo.com Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=12770t=12770 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
IPSEC in real life [7:12771]
Does anyone have in production cisco ipsec LAN-to-LAN tunnel? It's part of IOS seems to have so many bugs.. when you do it with IKE (ipsec-isakmp) cisco workaround is to reboot router. Manual keying (ipsec-manual) does not work at all with error IPSEC(manual_key_stuffing): Can't get valide engine id 0 My IOS version is 12.0.7T. Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=12771t=12771 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
CCIE R/S Lab Trade [7:12772]
Hi. I have my lab scheduled to 11/12 October 2001 in Brussels. Does anyone want to trade this dates for a place in Brussles by January/February 2002? Thanks. Regards, Nuno Morais _ Get Your Private, Free E-mail from MSN Hotmail at http://www.hotmail.com. Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=12772t=12772 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: IPSEC in real life [7:12771]
I had two tunnels on 3 routers up and working solidly over serial interfaces in a hub-and-spoke topology - my initial configuration was IPSec tunnels point-to-point with a PIX firewall, which were solid. I changed the configuration later to go router-to-router (2621's) over GRE tunnels so routing protocols could be passed, and again the configuration was solid. The biggest problem I had with the IPSec over GRE was the MTU decreasing to 1470, which caused a problem with an application that set the Dont Fragment bit in the IP header. The version of code I used was a General Distribution release of 12.1 and not a special train of IOS. I took the configurations almost directly from the Cisco TAC sample configurations which used the pre-shared keys for IKE until I learned and understood IPSec. One of the challenges in the beginning was getting the tunnels to renegotiate properly after the session timed out. They would hang after the SA dropped. I believe the change that I made in the configuration was to increase the tunnel life by changing the SA timeout, but I don't remember exactly what I set it to, probably something like 8 hours. Rebooting the routers was never required as a solution to the problem, but clearing crypto ipsec sa and crypto ipsec isakmp were definitely commands that were in the history buffer for a while. -e- - Original Message - From: Vyacheslav Luschinsky To: Sent: Wednesday, July 18, 2001 1:12 AM Subject: IPSEC in real life [7:12771] Does anyone have in production cisco ipsec LAN-to-LAN tunnel? It's part of IOS seems to have so many bugs.. when you do it with IKE (ipsec-isakmp) cisco workaround is to reboot router. Manual keying (ipsec-manual) does not work at all with error IPSEC(manual_key_stuffing): Can't get valide engine id 0 My IOS version is 12.0.7T. _ Do You Yahoo!? Get your free @yahoo.com address at http://mail.yahoo.com Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=12773t=12771 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
WAN link funnies - UP UP but no comms- on same subnet!!! [7:12774]
HI all, Strange problem here. The serial interface are UP UP on both sides, but we are not able to ping each other - even though directly connected. A debug ip ICMP on the remote site shows the ping coming through and replying, but the reply never gets back. Also the remote site saw my router using CDP, but I do not see him. Any ideas?? I believe this is Telco related, but the line shows clean from the interface stats Andrew Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=12774t=12774 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re:What is no Free B-channels [7:12775]
Hi everybody, I have 2 routers connected using ISDN line.Router A dials out to Router B in multilink mode wherein the 2nd call gets generated when the traffic reaches 40% dialer load-threshold 100 outbound Using command sh isdn active ,I can see 2 calls generated on 2 B- channels but at the same time I am getting messages like this continiously when I am putting terminal monitor on. 0:36:10: ISDN BRI1/0: isdn_is_bchannel_available: No Free B-channels 0:36:12: ISDN BRI1/0: isdn_is_bchannel_available: No Free B-channels 0:36:14: ISDN BRI1/0: isdn_is_bchannel_available: No Free B-channels 0:36:16: ISDN BRI1/0: isdn_is_bchannel_available: No Free B-channels Can anyboby explain what this message indicates? Also somestime the calls are not initiated on router A end ,what could be the reason ? Regards Bware Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=12775t=12775 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: WAN link funnies - UP UP but no comms- on same subnet!!! [7:12776]
set a static route ip route 0.0.0.0 0.0.0.0 serial0 ip route 0.0.0.0 0.0.0.0 serial0 r u using unnumbered? send me sh int s0 -Original Message- From: Andrew Larkins [mailto:[EMAIL PROTECTED]] Sent: Wednesday, July 18, 2001 2:06 PM To: [EMAIL PROTECTED] Subject: WAN link funnies - UP UP but no comms- on same subnet!!! [7:12774] HI all, Strange problem here. The serial interface are UP UP on both sides, but we are not able to ping each other - even though directly connected. A debug ip ICMP on the remote site shows the ping coming through and replying, but the reply never gets back. Also the remote site saw my router using CDP, but I do not see him. Any ideas?? I believe this is Telco related, but the line shows clean from the interface stats Andrew Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=12776t=12776 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Re:What is no Free B-channels [7:12775]
How many B channels are you using on the interface, 2B + 1D for a ISDN BRI are you already using the 2 B's at 128K or a single B at 64K. Sounds like the former thus no more B channels! Karl - Original Message - From: To: Sent: Wednesday, July 18, 2001 11:16 AM Subject: Re:What is no Free B-channels [7:12775] Hi everybody, I have 2 routers connected using ISDN line.Router A dials out to Router B in multilink mode wherein the 2nd call gets generated when the traffic reaches 40% dialer load-threshold 100 outbound Using command sh isdn active ,I can see 2 calls generated on 2 B- channels but at the same time I am getting messages like this continiously when I am putting terminal monitor on. 0:36:10: ISDN BRI1/0: isdn_is_bchannel_available: No Free B-channels 0:36:12: ISDN BRI1/0: isdn_is_bchannel_available: No Free B-channels 0:36:14: ISDN BRI1/0: isdn_is_bchannel_available: No Free B-channels 0:36:16: ISDN BRI1/0: isdn_is_bchannel_available: No Free B-channels Can anyboby explain what this message indicates? Also somestime the calls are not initiated on router A end ,what could be the reason ? Regards Bware Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=12777t=12775 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: WAN link funnies - UP UP but no comms- on same subnet!!! [7:12778]
Andrew, From what you say your remote end is working fine both in Tx and Rx and your Tx is working fine since remote end sees your cdp. Your Rx appears to be the problem. Have you tried swapping out your local Serial cable ? What about 'sh int serial xxx' to check your pins ? DCD RTS etc. regards, Phil. --- Andrew Larkins wrote: HI all, Strange problem here. The serial interface are UP UP on both sides, but we are not able to ping each other - even though directly connected. A debug ip ICMP on the remote site shows the ping coming through and replying, but the reply never gets back. Also the remote site saw my router using CDP, but I do not see him. Any ideas?? I believe this is Telco related, but the line shows clean from the interface stats Andrew [EMAIL PROTECTED] Do You Yahoo!? Get your free @yahoo.co.uk address at http://mail.yahoo.co.uk or your free @yahoo.ie address at http://mail.yahoo.ie Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=12778t=12778 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re:What is no Free B-channels [7:12775]
I expect the total load on your 2 active calls is above 40% so the router is trying to activate a third channel. Obviously you don't have 3 channels with a BRI so you get this error message. Do you have another BRI interface in the same dialer pool/rotary-group that is not shutdown? If you do and the second BRI is not connected to anything then that would explain this behavour. If not, then I thought the router would be smarter than that - it should know that there are only 2 channels for each BRI. HTH Charlie --- [EMAIL PROTECTED] wrote: Hi everybody, I have 2 routers connected using ISDN line.Router A dials out to Router B in multilink mode wherein the 2nd call gets generated when the traffic reaches 40% dialer load-threshold 100 outbound Using command sh isdn active ,I can see 2 calls generated on 2 B- channels but at the same time I am getting messages like this continiously when I am putting terminal monitor on. 0:36:10: ISDN BRI1/0: isdn_is_bchannel_available: No Free B-channels 0:36:12: ISDN BRI1/0: isdn_is_bchannel_available: No Free B-channels 0:36:14: ISDN BRI1/0: isdn_is_bchannel_available: No Free B-channels 0:36:16: ISDN BRI1/0: isdn_is_bchannel_available: No Free B-channels Can anyboby explain what this message indicates? Also somestime the calls are not initiated on router A end ,what could be the reason ? Regards Bware [EMAIL PROTECTED] Do You Yahoo!? Get your free @yahoo.co.uk address at http://mail.yahoo.co.uk or your free @yahoo.ie address at http://mail.yahoo.ie Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=12779t=12775 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: WAN link funnies - UP UP but no comms- on same subnet!!! [7:12780]
the very weird thing here is at RTS DTS etc are all up both devices are on a /30 subnet no problems here. I do not need any routing because these are directly connected networks. NO crc errors on link flap/ interface resets!! Very confused -Original Message- From: Phil Barker [mailto:[EMAIL PROTECTED]] Sent: 18 July 2001 12:45 To: [EMAIL PROTECTED] Subject: Re: WAN link funnies - UP UP but no comms- on same subnet!!! [7:12778] Andrew, From what you say your remote end is working fine both in Tx and Rx and your Tx is working fine since remote end sees your cdp. Your Rx appears to be the problem. Have you tried swapping out your local Serial cable ? What about 'sh int serial xxx' to check your pins ? DCD RTS etc. regards, Phil. --- Andrew Larkins wrote: HI all, Strange problem here. The serial interface are UP UP on both sides, but we are not able to ping each other - even though directly connected. A debug ip ICMP on the remote site shows the ping coming through and replying, but the reply never gets back. Also the remote site saw my router using CDP, but I do not see him. Any ideas?? I believe this is Telco related, but the line shows clean from the interface stats Andrew [EMAIL PROTECTED] Do You Yahoo!? Get your free @yahoo.co.uk address at http://mail.yahoo.co.uk or your free @yahoo.ie address at http://mail.yahoo.ie Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=12780t=12780 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: What is no Free B-channels [7:12775] caveats [7:12782]
Caveats Caveats describe unexpected behavior in Cisco IOS software releases. Severity 1 caveats are the most serious caveats; severity 2 caveats are less serious. Severity 3 caveats are moderate caveats, and only select severity 3 caveats are included in the caveats document. For information on caveats in Cisco IOS Release 12.2 T, refer to the Caveats for Cisco IOS Release 12.2 T document, which lists severity 1 and 2 caveats and select severity 3 caveats for Cisco IOS Release 12.2 T and is located on Cisco.com and the Documentation CD-ROM. All caveats in Cisco IOS Release 12.2(2)T are also in Cisco IOS Release 12.2(2) XA. Caveat numbers and brief descriptions are listed in Table 13. For details about a particular caveat, go to Bug Toolkit at: http://www.cisco.com/kobayashi/bugs/bugs.html To access this location, you must have an account on Cisco.com. For information about how to obtain an account, go to the Feature Navigator section. Note If you have an account with Cisco.com, you can use Bug Navigator II to find caveats of any severity for any release. To reach Bug Navigator II, log in to Cisco.com and click Software Center: Cisco IOS Software: Cisco Bugtool Navigator II. Another option is to go to http://www.cisco.com/support/bugtools/bugtool.shtml. Open Caveats for Release 12.2(2) XA At publication time, all the caveats listed in Table 13 are unresolved in Cisco IOS Release 12.2(2) XA. This table lists only severity 1 and 2 caveats and select severity 3 caveats. Table 13: Open Caveats for Release 12.2(2) XA Caveat ID Number Description CSCdu29508 Router crashed with dsp 3.6.8 firmware CSCdu46752 Cisco 3640 router crash CSCdu38445 ISDN BRI :isdn_is_bchannel_available: no free B channels CSCdt84774 Crash and alignment error at tcp_removeackedsendsegments on Cisco 3600 CSCdt11921 Ping failed on interfaces when fast switching is configured Closed and Resolved Caveats for Release 12.2(2) XA As of publication date, none of the caveats listed in Table 13 are resolved for the Cisco 3600 in Cisco IOS Release 12.2(2) XA. For current information, check the caveat number in the Bug Toolkit at: http://www.cisco.com/kobayashi/bugs/bugs.html -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] Sent: Wednesday, July 18, 2001 2:16 PM To: [EMAIL PROTECTED] Subject: Re:What is no Free B-channels [7:12775] Hi everybody, I have 2 routers connected using ISDN line.Router A dials out to Router B in multilink mode wherein the 2nd call gets generated when the traffic reaches 40% dialer load-threshold 100 outbound Using command sh isdn active ,I can see 2 calls generated on 2 B- channels but at the same time I am getting messages like this continiously when I am putting terminal monitor on. 0:36:10: ISDN BRI1/0: isdn_is_bchannel_available: No Free B-channels 0:36:12: ISDN BRI1/0: isdn_is_bchannel_available: No Free B-channels 0:36:14: ISDN BRI1/0: isdn_is_bchannel_available: No Free B-channels 0:36:16: ISDN BRI1/0: isdn_is_bchannel_available: No Free B-channels Can anyboby explain what this message indicates? Also somestime the calls are not initiated on router A end ,what could be the reason ? Regards Bware Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=12782t=12782 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
R/S LAB switch [7:12781]
Hello, If you have an R/S lab date in Brussels in August or September 2001 and you would like to switch to January 2002, send me an email offline. [EMAIL PROTECTED] WVS ___ Send a cool gift with your E-Card http://www.bluemountain.com/giftcenter/ Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=12781t=12781 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
who want to change his/her lab date? [7:12783]
I forgot to say that it's in Brussels. Thanks Lionel Hello, I've scheduled my lab date on the 20th of december but i look for a closer date. Anyone interested in swapping date ? Please tell me. Thank you Lionel Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=12783t=12783 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: WAN link funnies - UP UP but no comms- on same subnet!!! [7:12784]
What encapsulation are you using? -Original Message- From: Andrew Larkins [mailto:[EMAIL PROTECTED]] Sent: 18 July 2001 12:17 To: [EMAIL PROTECTED] Subject: RE: WAN link funnies - UP UP but no comms- on same subnet!!! [7:12780] the very weird thing here is at RTS DTS etc are all up both devices are on a /30 subnet no problems here. I do not need any routing because these are directly connected networks. NO crc errors on link flap/ interface resets!! Very confused -Original Message- From: Phil Barker [mailto:[EMAIL PROTECTED]] Sent: 18 July 2001 12:45 To: [EMAIL PROTECTED] Subject: Re: WAN link funnies - UP UP but no comms- on same subnet!!! [7:12778] Andrew, From what you say your remote end is working fine both in Tx and Rx and your Tx is working fine since remote end sees your cdp. Your Rx appears to be the problem. Have you tried swapping out your local Serial cable ? What about 'sh int serial xxx' to check your pins ? DCD RTS etc. regards, Phil. --- Andrew Larkins wrote: HI all, Strange problem here. The serial interface are UP UP on both sides, but we are not able to ping each other - even though directly connected. A debug ip ICMP on the remote site shows the ping coming through and replying, but the reply never gets back. Also the remote site saw my router using CDP, but I do not see him. Any ideas?? I believe this is Telco related, but the line shows clean from the interface stats Andrew [EMAIL PROTECTED] Do You Yahoo!? Get your free @yahoo.co.uk address at http://mail.yahoo.co.uk or your free @yahoo.ie address at http://mail.yahoo.ie Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=12784t=12784 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: WAN link funnies - UP UP but no comms- on same subnet!!! [7:12785]
The interface resets are from when we moved the config to other ports to rule out physical issues First side Serial3/0 is up, line protocol is up Hardware is CD2430 in sync mode Description: Internet address is 10.99.253.17/30 MTU 1500 bytes, BW 128 Kbit, DLY 2 usec, rely 255/255, load 1/255 Encapsulation HDLC, loopback not set, keepalive set (10 sec) Last input 00:00:00, output 00:00:00, output hang never Last clearing of show interface counters never Input queue: 0/75/0 (size/max/drops); Total output drops: 0 Queueing strategy: priority-list 1 Output queue (queue priority: size/max/drops): high: 0/20/0, medium: 0/40/0, normal: 0/60/0, low: 0/80/0 5 minute input rate 25000 bits/sec, 60 packets/sec 5 minute output rate 0 bits/sec, 0 packets/sec 1073220 packets input, 61641174 bytes, 0 no buffer Received 1911 broadcasts, 0 runts, 0 giants, 0 throttles 2 input errors, 0 CRC, 0 frame, 2 overrun, 0 ignored, 0 abort 9220 packets output, 906798 bytes, 0 underruns 0 output errors, 0 collisions, 4 interface resets 0 output buffer failures, 0 output buffers swapped out 0 carrier transitions DCD=up DSR=up DTR=up RTS=up CTS=up Remote side: Serial1/0 is up, line protocol is up Hardware is CD2430 in sync mode Description: xxx Internet address is 10.99.253.18/30 MTU 1500 bytes, BW 128 Kbit, DLY 2 usec, rely 255/255, load 1/255 Encapsulation HDLC, loopback not set, keepalive set (10 sec) Last input 00:00:02, output 00:00:02, output hang never Last clearing of show interface counters 00:00:02 Input queue: 0/75/0 (size/max/drops); Total output drops: 0 Queueing strategy: priority-list 1 Output queue (queue priority: size/max/drops): high: 0/20/0, medium: 0/40/0, normal: 0/60/0, low: 0/80/0 5 minute input rate 0 bits/sec, 0 packets/sec 5 minute output rate 0 bits/sec, 0 packets/sec 1 packets input, 56 bytes, 0 no buffer Received 0 broadcasts, 0 runts, 0 giants, 0 throttles 0 input errors, 0 CRC, 0 frame, 0 overrun, 0 ignored, 0 abort 1 packets output, 56 bytes, 0 underruns 0 output errors, 0 collisions, 0 interface resets 0 output buffer failures, 0 output buffers swapped out 0 carrier transitions DCD=up DSR=up DTR=up RTS=up CTS=up -Original Message- From: Farhan Ahmed [mailto:[EMAIL PROTECTED]] Sent: 18 July 2001 13:24 To: 'Andrew Larkins' Subject: RE: WAN link funnies - UP UP but no comms- on same subnet!!! [7:1 2780] send me the sh int -Original Message- From: Andrew Larkins [mailto:[EMAIL PROTECTED]] Sent: Wednesday, July 18, 2001 3:17 PM To: [EMAIL PROTECTED] Subject: RE: WAN link funnies - UP UP but no comms- on same subnet!!! [7:12780] the very weird thing here is at RTS DTS etc are all up both devices are on a /30 subnet no problems here. I do not need any routing because these are directly connected networks. NO crc errors on link flap/ interface resets!! Very confused -Original Message- From: Phil Barker [mailto:[EMAIL PROTECTED]] Sent: 18 July 2001 12:45 To: [EMAIL PROTECTED] Subject: Re: WAN link funnies - UP UP but no comms- on same subnet!!! [7:12778] Andrew, From what you say your remote end is working fine both in Tx and Rx and your Tx is working fine since remote end sees your cdp. Your Rx appears to be the problem. Have you tried swapping out your local Serial cable ? What about 'sh int serial xxx' to check your pins ? DCD RTS etc. regards, Phil. --- Andrew Larkins wrote: HI all, Strange problem here. The serial interface are UP UP on both sides, but we are not able to ping each other - even though directly connected. A debug ip ICMP on the remote site shows the ping coming through and replying, but the reply never gets back. Also the remote site saw my router using CDP, but I do not see him. Any ideas?? I believe this is Telco related, but the line shows clean from the interface stats Andrew [EMAIL PROTECTED] Do You Yahoo!? Get your free @yahoo.co.uk address at http://mail.yahoo.co.uk or your free @yahoo.ie address at http://mail.yahoo.ie Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=12785t=12785 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: WAN link funnies - UP UP but no comms- on same subnet!!! [7:12786]
What version of ios are you running? If you are running some flavor of 11, check to make sure you have the ip classless on both routers. -Original Message- From: Andrew Larkins [mailto:[EMAIL PROTECTED]] Sent: Wednesday, July 18, 2001 7:17 AM To: [EMAIL PROTECTED] Subject: RE: WAN link funnies - UP UP but no comms- on same subnet!!! [7:12780] the very weird thing here is at RTS DTS etc are all up both devices are on a /30 subnet no problems here. I do not need any routing because these are directly connected networks. NO crc errors on link flap/ interface resets!! Very confused -Original Message- From: Phil Barker [mailto:[EMAIL PROTECTED]] Sent: 18 July 2001 12:45 To: [EMAIL PROTECTED] Subject: Re: WAN link funnies - UP UP but no comms- on same subnet!!! [7:12778] Andrew, From what you say your remote end is working fine both in Tx and Rx and your Tx is working fine since remote end sees your cdp. Your Rx appears to be the problem. Have you tried swapping out your local Serial cable ? What about 'sh int serial xxx' to check your pins ? DCD RTS etc. regards, Phil. --- Andrew Larkins wrote: HI all, Strange problem here. The serial interface are UP UP on both sides, but we are not able to ping each other - even though directly connected. A debug ip ICMP on the remote site shows the ping coming through and replying, but the reply never gets back. Also the remote site saw my router using CDP, but I do not see him. Any ideas?? I believe this is Telco related, but the line shows clean from the interface stats Andrew [EMAIL PROTECTED] Do You Yahoo!? Get your free @yahoo.co.uk address at http://mail.yahoo.co.uk or your free @yahoo.ie address at http://mail.yahoo.ie Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=12786t=12786 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: WAN link funnies - UP UP but no comms- on same subnet!!! [7:12787]
hdlc -Original Message- From: Charles Manafa [mailto:[EMAIL PROTECTED]] Sent: 18 July 2001 13:39 To: 'Andrew Larkins'; [EMAIL PROTECTED] Subject: RE: WAN link funnies - UP UP but no comms- on same subnet!!! [7:1 2780] What encapsulation are you using? -Original Message- From: Andrew Larkins [mailto:[EMAIL PROTECTED]] Sent: 18 July 2001 12:17 To: [EMAIL PROTECTED] Subject: RE: WAN link funnies - UP UP but no comms- on same subnet!!! [7:12780] the very weird thing here is at RTS DTS etc are all up both devices are on a /30 subnet no problems here. I do not need any routing because these are directly connected networks. NO crc errors on link flap/ interface resets!! Very confused -Original Message- From: Phil Barker [mailto:[EMAIL PROTECTED]] Sent: 18 July 2001 12:45 To: [EMAIL PROTECTED] Subject: Re: WAN link funnies - UP UP but no comms- on same subnet!!! [7:12778] Andrew, From what you say your remote end is working fine both in Tx and Rx and your Tx is working fine since remote end sees your cdp. Your Rx appears to be the problem. Have you tried swapping out your local Serial cable ? What about 'sh int serial xxx' to check your pins ? DCD RTS etc. regards, Phil. --- Andrew Larkins wrote: HI all, Strange problem here. The serial interface are UP UP on both sides, but we are not able to ping each other - even though directly connected. A debug ip ICMP on the remote site shows the ping coming through and replying, but the reply never gets back. Also the remote site saw my router using CDP, but I do not see him. Any ideas?? I believe this is Telco related, but the line shows clean from the interface stats Andrew [EMAIL PROTECTED] Do You Yahoo!? Get your free @yahoo.co.uk address at http://mail.yahoo.co.uk or your free @yahoo.ie address at http://mail.yahoo.ie Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=12787t=12787 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: WAN link funnies - UP UP but no comms- on same subnet!!! [7:12788]
All have IP classless and are using HDLC -Original Message- From: Eric Hoffman [mailto:[EMAIL PROTECTED]] Sent: 18 July 2001 13:53 To: 'Andrew Larkins' Cc: '[EMAIL PROTECTED]' Subject: RE: WAN link funnies - UP UP but no comms- on same subnet!!! [7:1 2780] What version of ios are you running? If you are running some flavor of 11, check to make sure you have the ip classless on both routers. -Original Message- From: Andrew Larkins [mailto:[EMAIL PROTECTED]] Sent: Wednesday, July 18, 2001 7:17 AM To: [EMAIL PROTECTED] Subject: RE: WAN link funnies - UP UP but no comms- on same subnet!!! [7:12780] the very weird thing here is at RTS DTS etc are all up both devices are on a /30 subnet no problems here. I do not need any routing because these are directly connected networks. NO crc errors on link flap/ interface resets!! Very confused -Original Message- From: Phil Barker [mailto:[EMAIL PROTECTED]] Sent: 18 July 2001 12:45 To: [EMAIL PROTECTED] Subject: Re: WAN link funnies - UP UP but no comms- on same subnet!!! [7:12778] Andrew, From what you say your remote end is working fine both in Tx and Rx and your Tx is working fine since remote end sees your cdp. Your Rx appears to be the problem. Have you tried swapping out your local Serial cable ? What about 'sh int serial xxx' to check your pins ? DCD RTS etc. regards, Phil. --- Andrew Larkins wrote: HI all, Strange problem here. The serial interface are UP UP on both sides, but we are not able to ping each other - even though directly connected. A debug ip ICMP on the remote site shows the ping coming through and replying, but the reply never gets back. Also the remote site saw my router using CDP, but I do not see him. Any ideas?? I believe this is Telco related, but the line shows clean from the interface stats Andrew [EMAIL PROTECTED] Do You Yahoo!? Get your free @yahoo.co.uk address at http://mail.yahoo.co.uk or your free @yahoo.ie address at http://mail.yahoo.ie Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=12788t=12788 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: WAN link funnies - UP UP but no comms- on same subnet!!! [7:12789]
The counters for interface Serial3/0 have never been reset. TRY THIS: Use the command 'clear counters' to insure current information is being displayed. -Original Message- From: Andrew Larkins [mailto:[EMAIL PROTECTED]] Sent: Wednesday, July 18, 2001 4:01 PM To: [EMAIL PROTECTED] Subject: RE: WAN link funnies - UP UP but no comms- on same subnet!!! [7:12785] The interface resets are from when we moved the config to other ports to rule out physical issues First side Serial3/0 is up, line protocol is up Hardware is CD2430 in sync mode Description: Internet address is 10.99.253.17/30 MTU 1500 bytes, BW 128 Kbit, DLY 2 usec, rely 255/255, load 1/255 Encapsulation HDLC, loopback not set, keepalive set (10 sec) Last input 00:00:00, output 00:00:00, output hang never Last clearing of show interface counters never Input queue: 0/75/0 (size/max/drops); Total output drops: 0 Queueing strategy: priority-list 1 Output queue (queue priority: size/max/drops): high: 0/20/0, medium: 0/40/0, normal: 0/60/0, low: 0/80/0 5 minute input rate 25000 bits/sec, 60 packets/sec 5 minute output rate 0 bits/sec, 0 packets/sec 1073220 packets input, 61641174 bytes, 0 no buffer Received 1911 broadcasts, 0 runts, 0 giants, 0 throttles 2 input errors, 0 CRC, 0 frame, 2 overrun, 0 ignored, 0 abort 9220 packets output, 906798 bytes, 0 underruns 0 output errors, 0 collisions, 4 interface resets 0 output buffer failures, 0 output buffers swapped out 0 carrier transitions DCD=up DSR=up DTR=up RTS=up CTS=up Remote side: Serial1/0 is up, line protocol is up Hardware is CD2430 in sync mode Description: xxx Internet address is 10.99.253.18/30 MTU 1500 bytes, BW 128 Kbit, DLY 2 usec, rely 255/255, load 1/255 Encapsulation HDLC, loopback not set, keepalive set (10 sec) Last input 00:00:02, output 00:00:02, output hang never Last clearing of show interface counters 00:00:02 Input queue: 0/75/0 (size/max/drops); Total output drops: 0 Queueing strategy: priority-list 1 Output queue (queue priority: size/max/drops): high: 0/20/0, medium: 0/40/0, normal: 0/60/0, low: 0/80/0 5 minute input rate 0 bits/sec, 0 packets/sec 5 minute output rate 0 bits/sec, 0 packets/sec 1 packets input, 56 bytes, 0 no buffer Received 0 broadcasts, 0 runts, 0 giants, 0 throttles 0 input errors, 0 CRC, 0 frame, 0 overrun, 0 ignored, 0 abort 1 packets output, 56 bytes, 0 underruns 0 output errors, 0 collisions, 0 interface resets 0 output buffer failures, 0 output buffers swapped out 0 carrier transitions DCD=up DSR=up DTR=up RTS=up CTS=up -Original Message- From: Farhan Ahmed [mailto:[EMAIL PROTECTED]] Sent: 18 July 2001 13:24 To: 'Andrew Larkins' Subject: RE: WAN link funnies - UP UP but no comms- on same subnet!!! [7:1 2780] send me the sh int -Original Message- From: Andrew Larkins [mailto:[EMAIL PROTECTED]] Sent: Wednesday, July 18, 2001 3:17 PM To: [EMAIL PROTECTED] Subject: RE: WAN link funnies - UP UP but no comms- on same subnet!!! [7:12780] the very weird thing here is at RTS DTS etc are all up both devices are on a /30 subnet no problems here. I do not need any routing because these are directly connected networks. NO crc errors on link flap/ interface resets!! Very confused -Original Message- From: Phil Barker [mailto:[EMAIL PROTECTED]] Sent: 18 July 2001 12:45 To: [EMAIL PROTECTED] Subject: Re: WAN link funnies - UP UP but no comms- on same subnet!!! [7:12778] Andrew, From what you say your remote end is working fine both in Tx and Rx and your Tx is working fine since remote end sees your cdp. Your Rx appears to be the problem. Have you tried swapping out your local Serial cable ? What about 'sh int serial xxx' to check your pins ? DCD RTS etc. regards, Phil. --- Andrew Larkins wrote: HI all, Strange problem here. The serial interface are UP UP on both sides, but we are not able to ping each other - even though directly connected. A debug ip ICMP on the remote site shows the ping coming through and replying, but the reply never gets back. Also the remote site saw my router using CDP, but I do not see him. Any ideas?? I believe this is Telco related, but the line shows clean from the interface stats Andrew [EMAIL PROTECTED] Do You Yahoo!? Get your free @yahoo.co.uk address at http://mail.yahoo.co.uk or your free @yahoo.ie address at http://mail.yahoo.ie Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=12789t=12789 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: WAN link funnies - UP UP but no comms- on same subnet!!! [7:12790]
Can you post your priority list config -Original Message- From: Andrew Larkins [mailto:[EMAIL PROTECTED]] Sent: 18 July 2001 13:01 To: [EMAIL PROTECTED] Subject: RE: WAN link funnies - UP UP but no comms- on same subnet!!! [7:12785] The interface resets are from when we moved the config to other ports to rule out physical issues First side Serial3/0 is up, line protocol is up Hardware is CD2430 in sync mode Description: Internet address is 10.99.253.17/30 MTU 1500 bytes, BW 128 Kbit, DLY 2 usec, rely 255/255, load 1/255 Encapsulation HDLC, loopback not set, keepalive set (10 sec) Last input 00:00:00, output 00:00:00, output hang never Last clearing of show interface counters never Input queue: 0/75/0 (size/max/drops); Total output drops: 0 Queueing strategy: priority-list 1 Output queue (queue priority: size/max/drops): high: 0/20/0, medium: 0/40/0, normal: 0/60/0, low: 0/80/0 5 minute input rate 25000 bits/sec, 60 packets/sec 5 minute output rate 0 bits/sec, 0 packets/sec 1073220 packets input, 61641174 bytes, 0 no buffer Received 1911 broadcasts, 0 runts, 0 giants, 0 throttles 2 input errors, 0 CRC, 0 frame, 2 overrun, 0 ignored, 0 abort 9220 packets output, 906798 bytes, 0 underruns 0 output errors, 0 collisions, 4 interface resets 0 output buffer failures, 0 output buffers swapped out 0 carrier transitions DCD=up DSR=up DTR=up RTS=up CTS=up Remote side: Serial1/0 is up, line protocol is up Hardware is CD2430 in sync mode Description: xxx Internet address is 10.99.253.18/30 MTU 1500 bytes, BW 128 Kbit, DLY 2 usec, rely 255/255, load 1/255 Encapsulation HDLC, loopback not set, keepalive set (10 sec) Last input 00:00:02, output 00:00:02, output hang never Last clearing of show interface counters 00:00:02 Input queue: 0/75/0 (size/max/drops); Total output drops: 0 Queueing strategy: priority-list 1 Output queue (queue priority: size/max/drops): high: 0/20/0, medium: 0/40/0, normal: 0/60/0, low: 0/80/0 5 minute input rate 0 bits/sec, 0 packets/sec 5 minute output rate 0 bits/sec, 0 packets/sec 1 packets input, 56 bytes, 0 no buffer Received 0 broadcasts, 0 runts, 0 giants, 0 throttles 0 input errors, 0 CRC, 0 frame, 0 overrun, 0 ignored, 0 abort 1 packets output, 56 bytes, 0 underruns 0 output errors, 0 collisions, 0 interface resets 0 output buffer failures, 0 output buffers swapped out 0 carrier transitions DCD=up DSR=up DTR=up RTS=up CTS=up -Original Message- From: Farhan Ahmed [mailto:[EMAIL PROTECTED]] Sent: 18 July 2001 13:24 To: 'Andrew Larkins' Subject: RE: WAN link funnies - UP UP but no comms- on same subnet!!! [7:1 2780] send me the sh int -Original Message- From: Andrew Larkins [mailto:[EMAIL PROTECTED]] Sent: Wednesday, July 18, 2001 3:17 PM To: [EMAIL PROTECTED] Subject: RE: WAN link funnies - UP UP but no comms- on same subnet!!! [7:12780] the very weird thing here is at RTS DTS etc are all up both devices are on a /30 subnet no problems here. I do not need any routing because these are directly connected networks. NO crc errors on link flap/ interface resets!! Very confused -Original Message- From: Phil Barker [mailto:[EMAIL PROTECTED]] Sent: 18 July 2001 12:45 To: [EMAIL PROTECTED] Subject: Re: WAN link funnies - UP UP but no comms- on same subnet!!! [7:12778] Andrew, From what you say your remote end is working fine both in Tx and Rx and your Tx is working fine since remote end sees your cdp. Your Rx appears to be the problem. Have you tried swapping out your local Serial cable ? What about 'sh int serial xxx' to check your pins ? DCD RTS etc. regards, Phil. --- Andrew Larkins wrote: HI all, Strange problem here. The serial interface are UP UP on both sides, but we are not able to ping each other - even though directly connected. A debug ip ICMP on the remote site shows the ping coming through and replying, but the reply never gets back. Also the remote site saw my router using CDP, but I do not see him. Any ideas?? I believe this is Telco related, but the line shows clean from the interface stats Andrew [EMAIL PROTECTED] Do You Yahoo!? Get your free @yahoo.co.uk address at http://mail.yahoo.co.uk or your free @yahoo.ie address at http://mail.yahoo.ie Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=12790t=12790 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: WAN link funnies - UP UP but no comms- on same subnet!!! [7:12791]
Do yo have any ACL's in place? --- All have IP classless and are using HDLC -Original Message- From: Eric Hoffman [mailto:[EMAIL PROTECTED]] Sent: 18 July 2001 13:53 To: 'Andrew Larkins' Cc: '[EMAIL PROTECTED]' Subject: RE: WAN link funnies - UP UP but no comms- on same subnet!!! [7:1 2780] What version of ios are you running? If you are running some flavor of 11, check to make sure you have the ip classless on both routers. -Original Message- From: Andrew Larkins [mailto:[EMAIL PROTECTED]] Sent: Wednesday, July 18, 2001 7:17 AM To: [EMAIL PROTECTED] Subject: RE: WAN link funnies - UP UP but no comms- on same subnet!!! [7:12780] the very weird thing here is at RTS DTS etc are all up both devices are on a /30 subnet no problems here. I do not need any routing because these are directly connected networks. NO crc errors on link flap/ interface resets!! Very confused -Original Message- From: Phil Barker [mailto:[EMAIL PROTECTED]] Sent: 18 July 2001 12:45 To: [EMAIL PROTECTED] Subject: Re: WAN link funnies - UP UP but no comms- on same subnet!!! [7:12778] Andrew, From what you say your remote end is working fine both in Tx and Rx and your Tx is working fine since remote end sees your cdp. Your Rx appears to be the problem. Have you tried swapping out your local Serial cable ? What about 'sh int serial xxx' to check your pins ? DCD RTS etc. regards, Phil. --- Andrew Larkins wrote: HI all, Strange problem here. The serial interface are UP UP on both sides, but we are not able to ping each other - even though directly connected. A debug ip ICMP on the remote site shows the ping coming through and replying, but the reply never gets back. Also the remote site saw my router using CDP, but I do not see him. Any ideas?? I believe this is Telco related, but the line shows clean from the interface stats Andrew [EMAIL PROTECTED] Do You Yahoo!? Get your free @yahoo.co.uk address at http://mail.yahoo.co.uk or your free @yahoo.ie address at http://mail.yahoo.ie [EMAIL PROTECTED] Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=12791t=12791 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: WAN link funnies - UP UP but no comms- on same subnet!!! [7:12792]
send me show controllers -Original Message- From: Andrew Larkins [mailto:[EMAIL PROTECTED]] Sent: Wednesday, July 18, 2001 4:01 PM To: [EMAIL PROTECTED] Subject: RE: WAN link funnies - UP UP but no comms- on same subnet!!! [7:12785] The interface resets are from when we moved the config to other ports to rule out physical issues First side Serial3/0 is up, line protocol is up Hardware is CD2430 in sync mode Description: Internet address is 10.99.253.17/30 MTU 1500 bytes, BW 128 Kbit, DLY 2 usec, rely 255/255, load 1/255 Encapsulation HDLC, loopback not set, keepalive set (10 sec) Last input 00:00:00, output 00:00:00, output hang never Last clearing of show interface counters never Input queue: 0/75/0 (size/max/drops); Total output drops: 0 Queueing strategy: priority-list 1 Output queue (queue priority: size/max/drops): high: 0/20/0, medium: 0/40/0, normal: 0/60/0, low: 0/80/0 5 minute input rate 25000 bits/sec, 60 packets/sec 5 minute output rate 0 bits/sec, 0 packets/sec 1073220 packets input, 61641174 bytes, 0 no buffer Received 1911 broadcasts, 0 runts, 0 giants, 0 throttles 2 input errors, 0 CRC, 0 frame, 2 overrun, 0 ignored, 0 abort 9220 packets output, 906798 bytes, 0 underruns 0 output errors, 0 collisions, 4 interface resets 0 output buffer failures, 0 output buffers swapped out 0 carrier transitions DCD=up DSR=up DTR=up RTS=up CTS=up Remote side: Serial1/0 is up, line protocol is up Hardware is CD2430 in sync mode Description: xxx Internet address is 10.99.253.18/30 MTU 1500 bytes, BW 128 Kbit, DLY 2 usec, rely 255/255, load 1/255 Encapsulation HDLC, loopback not set, keepalive set (10 sec) Last input 00:00:02, output 00:00:02, output hang never Last clearing of show interface counters 00:00:02 Input queue: 0/75/0 (size/max/drops); Total output drops: 0 Queueing strategy: priority-list 1 Output queue (queue priority: size/max/drops): high: 0/20/0, medium: 0/40/0, normal: 0/60/0, low: 0/80/0 5 minute input rate 0 bits/sec, 0 packets/sec 5 minute output rate 0 bits/sec, 0 packets/sec 1 packets input, 56 bytes, 0 no buffer Received 0 broadcasts, 0 runts, 0 giants, 0 throttles 0 input errors, 0 CRC, 0 frame, 0 overrun, 0 ignored, 0 abort 1 packets output, 56 bytes, 0 underruns 0 output errors, 0 collisions, 0 interface resets 0 output buffer failures, 0 output buffers swapped out 0 carrier transitions DCD=up DSR=up DTR=up RTS=up CTS=up -Original Message- From: Farhan Ahmed [mailto:[EMAIL PROTECTED]] Sent: 18 July 2001 13:24 To: 'Andrew Larkins' Subject: RE: WAN link funnies - UP UP but no comms- on same subnet!!! [7:1 2780] send me the sh int -Original Message- From: Andrew Larkins [mailto:[EMAIL PROTECTED]] Sent: Wednesday, July 18, 2001 3:17 PM To: [EMAIL PROTECTED] Subject: RE: WAN link funnies - UP UP but no comms- on same subnet!!! [7:12780] the very weird thing here is at RTS DTS etc are all up both devices are on a /30 subnet no problems here. I do not need any routing because these are directly connected networks. NO crc errors on link flap/ interface resets!! Very confused -Original Message- From: Phil Barker [mailto:[EMAIL PROTECTED]] Sent: 18 July 2001 12:45 To: [EMAIL PROTECTED] Subject: Re: WAN link funnies - UP UP but no comms- on same subnet!!! [7:12778] Andrew, From what you say your remote end is working fine both in Tx and Rx and your Tx is working fine since remote end sees your cdp. Your Rx appears to be the problem. Have you tried swapping out your local Serial cable ? What about 'sh int serial xxx' to check your pins ? DCD RTS etc. regards, Phil. --- Andrew Larkins wrote: HI all, Strange problem here. The serial interface are UP UP on both sides, but we are not able to ping each other - even though directly connected. A debug ip ICMP on the remote site shows the ping coming through and replying, but the reply never gets back. Also the remote site saw my router using CDP, but I do not see him. Any ideas?? I believe this is Telco related, but the line shows clean from the interface stats Andrew [EMAIL PROTECTED] Do You Yahoo!? Get your free @yahoo.co.uk address at http://mail.yahoo.co.uk or your free @yahoo.ie address at http://mail.yahoo.ie Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=12792t=12792 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: WAN link funnies - UP UP but no comms- on same subnet!!! [7:12796]
RTT_DBN_NEW#sho queueing priority Current priority queue configuration: List Queue Args 1 high protocol ip list 105 1 high protocol ip tcp port telnet 1 high protocol ip tcp port ftp 1 high protocol ip list 120 RTT_DBN_NEW#sho access RTT_DBN_NEW#sho access-l RTT_DBN_NEW#sho access-lists 105 Extended IP access list 105 permit ip host 10.99.255.94 10.99.255.0 0.0.0.255 (3166954 matches) permit ip 10.99.99.0 0.0.0.255 any (178932 matches) permit ip 10.99.69.32 0.0.0.16 any (3 matches) deny ip any any (143428867 matches) RTT_DBN_NEW#sho access-lists 120 Extended IP access list 120 permit ip 10.99.69.0 0.0.0.32 10.99.99.0 0.0.0.255 permit ip 10.99.99.0 0.0.0.255 10.99.69.0 0.0.0.32 deny ip any any (10589149 matches) RTT_DBN_NEW# -Original Message- From: Charles Manafa [mailto:[EMAIL PROTECTED]] Sent: 18 July 2001 14:14 To: 'Andrew Larkins'; [EMAIL PROTECTED] Subject: RE: WAN link funnies - UP UP but no comms- on same subnet!!! [7:1 2785] Can you post your priority list config -Original Message- From: Andrew Larkins [mailto:[EMAIL PROTECTED]] Sent: 18 July 2001 13:01 To: [EMAIL PROTECTED] Subject: RE: WAN link funnies - UP UP but no comms- on same subnet!!! [7:12785] The interface resets are from when we moved the config to other ports to rule out physical issues First side Serial3/0 is up, line protocol is up Hardware is CD2430 in sync mode Description: Internet address is 10.99.253.17/30 MTU 1500 bytes, BW 128 Kbit, DLY 2 usec, rely 255/255, load 1/255 Encapsulation HDLC, loopback not set, keepalive set (10 sec) Last input 00:00:00, output 00:00:00, output hang never Last clearing of show interface counters never Input queue: 0/75/0 (size/max/drops); Total output drops: 0 Queueing strategy: priority-list 1 Output queue (queue priority: size/max/drops): high: 0/20/0, medium: 0/40/0, normal: 0/60/0, low: 0/80/0 5 minute input rate 25000 bits/sec, 60 packets/sec 5 minute output rate 0 bits/sec, 0 packets/sec 1073220 packets input, 61641174 bytes, 0 no buffer Received 1911 broadcasts, 0 runts, 0 giants, 0 throttles 2 input errors, 0 CRC, 0 frame, 2 overrun, 0 ignored, 0 abort 9220 packets output, 906798 bytes, 0 underruns 0 output errors, 0 collisions, 4 interface resets 0 output buffer failures, 0 output buffers swapped out 0 carrier transitions DCD=up DSR=up DTR=up RTS=up CTS=up Remote side: Serial1/0 is up, line protocol is up Hardware is CD2430 in sync mode Description: xxx Internet address is 10.99.253.18/30 MTU 1500 bytes, BW 128 Kbit, DLY 2 usec, rely 255/255, load 1/255 Encapsulation HDLC, loopback not set, keepalive set (10 sec) Last input 00:00:02, output 00:00:02, output hang never Last clearing of show interface counters 00:00:02 Input queue: 0/75/0 (size/max/drops); Total output drops: 0 Queueing strategy: priority-list 1 Output queue (queue priority: size/max/drops): high: 0/20/0, medium: 0/40/0, normal: 0/60/0, low: 0/80/0 5 minute input rate 0 bits/sec, 0 packets/sec 5 minute output rate 0 bits/sec, 0 packets/sec 1 packets input, 56 bytes, 0 no buffer Received 0 broadcasts, 0 runts, 0 giants, 0 throttles 0 input errors, 0 CRC, 0 frame, 0 overrun, 0 ignored, 0 abort 1 packets output, 56 bytes, 0 underruns 0 output errors, 0 collisions, 0 interface resets 0 output buffer failures, 0 output buffers swapped out 0 carrier transitions DCD=up DSR=up DTR=up RTS=up CTS=up -Original Message- From: Farhan Ahmed [mailto:[EMAIL PROTECTED]] Sent: 18 July 2001 13:24 To: 'Andrew Larkins' Subject: RE: WAN link funnies - UP UP but no comms- on same subnet!!! [7:1 2780] send me the sh int -Original Message- From: Andrew Larkins [mailto:[EMAIL PROTECTED]] Sent: Wednesday, July 18, 2001 3:17 PM To: [EMAIL PROTECTED] Subject: RE: WAN link funnies - UP UP but no comms- on same subnet!!! [7:12780] the very weird thing here is at RTS DTS etc are all up both devices are on a /30 subnet no problems here. I do not need any routing because these are directly connected networks. NO crc errors on link flap/ interface resets!! Very confused -Original Message- From: Phil Barker [mailto:[EMAIL PROTECTED]] Sent: 18 July 2001 12:45 To: [EMAIL PROTECTED] Subject: Re: WAN link funnies - UP UP but no comms- on same subnet!!! [7:12778] Andrew, From what you say your remote end is working fine both in Tx and Rx and your Tx is working fine since remote end sees your cdp. Your Rx appears to be the problem. Have you tried swapping out your local Serial cable ? What about 'sh int serial xxx' to check your pins ? DCD RTS etc. regards, Phil. --- Andrew Larkins wrote: HI all, Strange problem
RE: WAN link funnies - UP UP but no comms- on same subnet!!! [7:12794]
Lease line -Original Message- From: Robert Nelson-Cox [mailto:[EMAIL PROTECTED]] Sent: 18 July 2001 14:23 To: [EMAIL PROTECTED] Subject: RE: WAN link funnies - UP UP but no comms- on same subnet!!! [7:12785] Is this across a leased circuit, or x-over cable? If leased circuit, then you A and B end may not be joined. Rob./ From: Andrew Larkins Reply-To: Andrew Larkins To: [EMAIL PROTECTED] Subject: RE: WAN link funnies - UP UP but no comms- on same subnet!!! [7:12785] Date: Wed, 18 Jul 2001 08:01:08 -0400 The interface resets are from when we moved the config to other ports to rule out physical issues First side Serial3/0 is up, line protocol is up Hardware is CD2430 in sync mode Description: Internet address is 10.99.253.17/30 MTU 1500 bytes, BW 128 Kbit, DLY 2 usec, rely 255/255, load 1/255 Encapsulation HDLC, loopback not set, keepalive set (10 sec) Last input 00:00:00, output 00:00:00, output hang never Last clearing of show interface counters never Input queue: 0/75/0 (size/max/drops); Total output drops: 0 Queueing strategy: priority-list 1 Output queue (queue priority: size/max/drops): high: 0/20/0, medium: 0/40/0, normal: 0/60/0, low: 0/80/0 5 minute input rate 25000 bits/sec, 60 packets/sec 5 minute output rate 0 bits/sec, 0 packets/sec 1073220 packets input, 61641174 bytes, 0 no buffer Received 1911 broadcasts, 0 runts, 0 giants, 0 throttles 2 input errors, 0 CRC, 0 frame, 2 overrun, 0 ignored, 0 abort 9220 packets output, 906798 bytes, 0 underruns 0 output errors, 0 collisions, 4 interface resets 0 output buffer failures, 0 output buffers swapped out 0 carrier transitions DCD=up DSR=up DTR=up RTS=up CTS=up Remote side: Serial1/0 is up, line protocol is up Hardware is CD2430 in sync mode Description: xxx Internet address is 10.99.253.18/30 MTU 1500 bytes, BW 128 Kbit, DLY 2 usec, rely 255/255, load 1/255 Encapsulation HDLC, loopback not set, keepalive set (10 sec) Last input 00:00:02, output 00:00:02, output hang never Last clearing of show interface counters 00:00:02 Input queue: 0/75/0 (size/max/drops); Total output drops: 0 Queueing strategy: priority-list 1 Output queue (queue priority: size/max/drops): high: 0/20/0, medium: 0/40/0, normal: 0/60/0, low: 0/80/0 5 minute input rate 0 bits/sec, 0 packets/sec 5 minute output rate 0 bits/sec, 0 packets/sec 1 packets input, 56 bytes, 0 no buffer Received 0 broadcasts, 0 runts, 0 giants, 0 throttles 0 input errors, 0 CRC, 0 frame, 0 overrun, 0 ignored, 0 abort 1 packets output, 56 bytes, 0 underruns 0 output errors, 0 collisions, 0 interface resets 0 output buffer failures, 0 output buffers swapped out 0 carrier transitions DCD=up DSR=up DTR=up RTS=up CTS=up -Original Message- From: Farhan Ahmed [mailto:[EMAIL PROTECTED]] Sent: 18 July 2001 13:24 To: 'Andrew Larkins' Subject: RE: WAN link funnies - UP UP but no comms- on same subnet!!! [7:1 2780] send me the sh int -Original Message- From: Andrew Larkins [mailto:[EMAIL PROTECTED]] Sent: Wednesday, July 18, 2001 3:17 PM To: [EMAIL PROTECTED] Subject: RE: WAN link funnies - UP UP but no comms- on same subnet!!! [7:12780] the very weird thing here is at RTS DTS etc are all up both devices are on a /30 subnet no problems here. I do not need any routing because these are directly connected networks. NO crc errors on link flap/ interface resets!! Very confused -Original Message- From: Phil Barker [mailto:[EMAIL PROTECTED]] Sent: 18 July 2001 12:45 To: [EMAIL PROTECTED] Subject: Re: WAN link funnies - UP UP but no comms- on same subnet!!! [7:12778] Andrew, From what you say your remote end is working fine both in Tx and Rx and your Tx is working fine since remote end sees your cdp. Your Rx appears to be the problem. Have you tried swapping out your local Serial cable ? What about 'sh int serial xxx' to check your pins ? DCD RTS etc. regards, Phil. --- Andrew Larkins wrote: HI all, Strange problem here. The serial interface are UP UP on both sides, but we are not able to ping each other - even though directly connected. A debug ip ICMP on the remote site shows the ping coming through and replying, but the reply never gets back. Also the remote site saw my router using CDP, but I do not see him. Any ideas?? I believe this is Telco related, but the line shows clean from the interface stats Andrew [EMAIL PROTECTED] Do You Yahoo!? Get your free @yahoo.co.uk address at http://mail.yahoo.co.uk or your free @yahoo.ie address at http://mail.yahoo.ie _ Get Your Private, Free E-mail from MSN Hotmail at http://www.hotmail.com. Message Posted at:
hold down timers [7:12795]
I have always been a little confused by RIP IGRP hold down timers.I wonder if some one could clarify the following. 1) Is the route marked as possibly down placed into holddown only when a higher metric is received for the same route from the origional source? What if it receiced an update that a specific network was unreacable, but from a new source? 2)Once the route is is marked as possibly down and placed into hold down are packets still forwarded untill the route is flushed? Chris Burnham, Systems Engineer, Delphis Consulting Plc. Tel: +(44) 020 7916 0200 Mob: +(44) 07799403576 [EMAIL PROTECTED] This e-mail and any files transmitted with it are intended solely for the addressee and are confidential. They may also be legally privileged. Copyright in them is reserved by Delphis Consulting PLC [Delphis] and they must not be disclosed to, or used by, anyone other than the addressee. If you have received this e-mail and any accompanying files in error, you may not copy, publish or use them in any way and you should delete them from your system and notify us immediately.E-mails are not secure. Delphis does not accept responsibility for changes to e-mails that occur after they have been sent. Any opinions expressed in this e-mail may be personal to the author and may not necessarily reflect the opinions of Delphis. Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=12795t=12795 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: WAN link funnies - UP UP but no comms- on same subnet!!! [7:12797]
also send me debug serial interface---Verifies whether HDLC keepalive packets are incrementing. If they are not, a possible timing problem exists on the interface card or in the network. -Original Message- From: Andrew Larkins [mailto:[EMAIL PROTECTED]] Sent: Wednesday, July 18, 2001 4:01 PM To: [EMAIL PROTECTED] Subject: RE: WAN link funnies - UP UP but no comms- on same subnet!!! [7:12785] The interface resets are from when we moved the config to other ports to rule out physical issues First side Serial3/0 is up, line protocol is up Hardware is CD2430 in sync mode Description: Internet address is 10.99.253.17/30 MTU 1500 bytes, BW 128 Kbit, DLY 2 usec, rely 255/255, load 1/255 Encapsulation HDLC, loopback not set, keepalive set (10 sec) Last input 00:00:00, output 00:00:00, output hang never Last clearing of show interface counters never Input queue: 0/75/0 (size/max/drops); Total output drops: 0 Queueing strategy: priority-list 1 Output queue (queue priority: size/max/drops): high: 0/20/0, medium: 0/40/0, normal: 0/60/0, low: 0/80/0 5 minute input rate 25000 bits/sec, 60 packets/sec 5 minute output rate 0 bits/sec, 0 packets/sec 1073220 packets input, 61641174 bytes, 0 no buffer Received 1911 broadcasts, 0 runts, 0 giants, 0 throttles 2 input errors, 0 CRC, 0 frame, 2 overrun, 0 ignored, 0 abort 9220 packets output, 906798 bytes, 0 underruns 0 output errors, 0 collisions, 4 interface resets 0 output buffer failures, 0 output buffers swapped out 0 carrier transitions DCD=up DSR=up DTR=up RTS=up CTS=up Remote side: Serial1/0 is up, line protocol is up Hardware is CD2430 in sync mode Description: xxx Internet address is 10.99.253.18/30 MTU 1500 bytes, BW 128 Kbit, DLY 2 usec, rely 255/255, load 1/255 Encapsulation HDLC, loopback not set, keepalive set (10 sec) Last input 00:00:02, output 00:00:02, output hang never Last clearing of show interface counters 00:00:02 Input queue: 0/75/0 (size/max/drops); Total output drops: 0 Queueing strategy: priority-list 1 Output queue (queue priority: size/max/drops): high: 0/20/0, medium: 0/40/0, normal: 0/60/0, low: 0/80/0 5 minute input rate 0 bits/sec, 0 packets/sec 5 minute output rate 0 bits/sec, 0 packets/sec 1 packets input, 56 bytes, 0 no buffer Received 0 broadcasts, 0 runts, 0 giants, 0 throttles 0 input errors, 0 CRC, 0 frame, 0 overrun, 0 ignored, 0 abort 1 packets output, 56 bytes, 0 underruns 0 output errors, 0 collisions, 0 interface resets 0 output buffer failures, 0 output buffers swapped out 0 carrier transitions DCD=up DSR=up DTR=up RTS=up CTS=up -Original Message- From: Farhan Ahmed [mailto:[EMAIL PROTECTED]] Sent: 18 July 2001 13:24 To: 'Andrew Larkins' Subject: RE: WAN link funnies - UP UP but no comms- on same subnet!!! [7:1 2780] send me the sh int -Original Message- From: Andrew Larkins [mailto:[EMAIL PROTECTED]] Sent: Wednesday, July 18, 2001 3:17 PM To: [EMAIL PROTECTED] Subject: RE: WAN link funnies - UP UP but no comms- on same subnet!!! [7:12780] the very weird thing here is at RTS DTS etc are all up both devices are on a /30 subnet no problems here. I do not need any routing because these are directly connected networks. NO crc errors on link flap/ interface resets!! Very confused -Original Message- From: Phil Barker [mailto:[EMAIL PROTECTED]] Sent: 18 July 2001 12:45 To: [EMAIL PROTECTED] Subject: Re: WAN link funnies - UP UP but no comms- on same subnet!!! [7:12778] Andrew, From what you say your remote end is working fine both in Tx and Rx and your Tx is working fine since remote end sees your cdp. Your Rx appears to be the problem. Have you tried swapping out your local Serial cable ? What about 'sh int serial xxx' to check your pins ? DCD RTS etc. regards, Phil. --- Andrew Larkins wrote: HI all, Strange problem here. The serial interface are UP UP on both sides, but we are not able to ping each other - even though directly connected. A debug ip ICMP on the remote site shows the ping coming through and replying, but the reply never gets back. Also the remote site saw my router using CDP, but I do not see him. Any ideas?? I believe this is Telco related, but the line shows clean from the interface stats Andrew [EMAIL PROTECTED] Do You Yahoo!? Get your free @yahoo.co.uk address at http://mail.yahoo.co.uk or your free @yahoo.ie address at http://mail.yahoo.ie Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=12797t=12797 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: WAN link funnies - UP UP but no comms- on same subnet!!! [7:12793]
only in relation to priority queues -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] Sent: 18 July 2001 16:00 To: Andrew Larkins Cc: [EMAIL PROTECTED] Subject: RE: WAN link funnies - UP UP but no comms- on same subnet!!! [7:12788] Do yo have any ACL's in place? --- All have IP classless and are using HDLC -Original Message- From: Eric Hoffman [mailto:[EMAIL PROTECTED]] Sent: 18 July 2001 13:53 To: 'Andrew Larkins' Cc: '[EMAIL PROTECTED]' Subject: RE: WAN link funnies - UP UP but no comms- on same subnet!!! [7:1 2780] What version of ios are you running? If you are running some flavor of 11, check to make sure you have the ip classless on both routers. -Original Message- From: Andrew Larkins [mailto:[EMAIL PROTECTED]] Sent: Wednesday, July 18, 2001 7:17 AM To: [EMAIL PROTECTED] Subject: RE: WAN link funnies - UP UP but no comms- on same subnet!!! [7:12780] the very weird thing here is at RTS DTS etc are all up both devices are on a /30 subnet no problems here. I do not need any routing because these are directly connected networks. NO crc errors on link flap/ interface resets!! Very confused -Original Message- From: Phil Barker [mailto:[EMAIL PROTECTED]] Sent: 18 July 2001 12:45 To: [EMAIL PROTECTED] Subject: Re: WAN link funnies - UP UP but no comms- on same subnet!!! [7:12778] Andrew, From what you say your remote end is working fine both in Tx and Rx and your Tx is working fine since remote end sees your cdp. Your Rx appears to be the problem. Have you tried swapping out your local Serial cable ? What about 'sh int serial xxx' to check your pins ? DCD RTS etc. regards, Phil. --- Andrew Larkins wrote: HI all, Strange problem here. The serial interface are UP UP on both sides, but we are not able to ping each other - even though directly connected. A debug ip ICMP on the remote site shows the ping coming through and replying, but the reply never gets back. Also the remote site saw my router using CDP, but I do not see him. Any ideas?? I believe this is Telco related, but the line shows clean from the interface stats Andrew [EMAIL PROTECTED] Do You Yahoo!? Get your free @yahoo.co.uk address at http://mail.yahoo.co.uk or your free @yahoo.ie address at http://mail.yahoo.ie [EMAIL PROTECTED] Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=12793t=12793 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: WAN link funnies - UP UP but no comms- on same subnet!!! [7:12798]
are compression settings the same both ends? --- only in relation to priority queues -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] Sent: 18 July 2001 16:00 To: Andrew Larkins Cc: [EMAIL PROTECTED] Subject: RE: WAN link funnies - UP UP but no comms- on same subnet!!! [7:12788] Do yo have any ACL's in place? --- All have IP classless and are using HDLC -Original Message- From: Eric Hoffman [mailto:[EMAIL PROTECTED]] Sent: 18 July 2001 13:53 To: 'Andrew Larkins' Cc: '[EMAIL PROTECTED]' Subject: RE: WAN link funnies - UP UP but no comms- on same subnet!!! [7:1 2780] What version of ios are you running? If you are running some flavor of 11, check to make sure you have the ip classless on both routers. -Original Message- From: Andrew Larkins [mailto:[EMAIL PROTECTED]] Sent: Wednesday, July 18, 2001 7:17 AM To: [EMAIL PROTECTED] Subject: RE: WAN link funnies - UP UP but no comms- on same subnet!!! [7:12780] the very weird thing here is at RTS DTS etc are all up both devices are on a /30 subnet no problems here. I do not need any routing because these are directly connected networks. NO crc errors on link flap/ interface resets!! Very confused -Original Message- From: Phil Barker [mailto:[EMAIL PROTECTED]] Sent: 18 July 2001 12:45 To: [EMAIL PROTECTED] Subject: Re: WAN link funnies - UP UP but no comms- on same subnet!!! [7:12778] Andrew, From what you say your remote end is working fine both in Tx and Rx and your Tx is working fine since remote end sees your cdp. Your Rx appears to be the problem. Have you tried swapping out your local Serial cable ? What about 'sh int serial xxx' to check your pins ? DCD RTS etc. regards, Phil. --- Andrew Larkins wrote: HI all, Strange problem here. The serial interface are UP UP on both sides, but we are not able to ping each other - even though directly connected. A debug ip ICMP on the remote site shows the ping coming through and replying, but the reply never gets back. Also the remote site saw my router using CDP, but I do not see him. Any ideas?? I believe this is Telco related, but the line shows clean from the interface stats Andrew [EMAIL PROTECTED] Do You Yahoo!? Get your free @yahoo.co.uk address at http://mail.yahoo.co.uk or your free @yahoo.ie address at http://mail.yahoo.ie [EMAIL PROTECTED] Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=12798t=12798 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: WAN link funnies - UP UP but no comms- on same subnet!!! [7:12799]
keepalives are incrementing - I was seeing soome errors that regarded keepalives - said should be 10 but was 7 -Original Message- From: Farhan Ahmed [mailto:[EMAIL PROTECTED]] Sent: 18 July 2001 14:33 To: 'Andrew Larkins'; [EMAIL PROTECTED] Subject: RE: WAN link funnies - UP UP but no comms- on same subnet!!! [7:1 2785] also send me debug serial interface---Verifies whether HDLC keepalive packets are incrementing. If they are not, a possible timing problem exists on the interface card or in the network. -Original Message- From: Andrew Larkins [mailto:[EMAIL PROTECTED]] Sent: Wednesday, July 18, 2001 4:01 PM To: [EMAIL PROTECTED] Subject: RE: WAN link funnies - UP UP but no comms- on same subnet!!! [7:12785] The interface resets are from when we moved the config to other ports to rule out physical issues First side Serial3/0 is up, line protocol is up Hardware is CD2430 in sync mode Description: Internet address is 10.99.253.17/30 MTU 1500 bytes, BW 128 Kbit, DLY 2 usec, rely 255/255, load 1/255 Encapsulation HDLC, loopback not set, keepalive set (10 sec) Last input 00:00:00, output 00:00:00, output hang never Last clearing of show interface counters never Input queue: 0/75/0 (size/max/drops); Total output drops: 0 Queueing strategy: priority-list 1 Output queue (queue priority: size/max/drops): high: 0/20/0, medium: 0/40/0, normal: 0/60/0, low: 0/80/0 5 minute input rate 25000 bits/sec, 60 packets/sec 5 minute output rate 0 bits/sec, 0 packets/sec 1073220 packets input, 61641174 bytes, 0 no buffer Received 1911 broadcasts, 0 runts, 0 giants, 0 throttles 2 input errors, 0 CRC, 0 frame, 2 overrun, 0 ignored, 0 abort 9220 packets output, 906798 bytes, 0 underruns 0 output errors, 0 collisions, 4 interface resets 0 output buffer failures, 0 output buffers swapped out 0 carrier transitions DCD=up DSR=up DTR=up RTS=up CTS=up Remote side: Serial1/0 is up, line protocol is up Hardware is CD2430 in sync mode Description: xxx Internet address is 10.99.253.18/30 MTU 1500 bytes, BW 128 Kbit, DLY 2 usec, rely 255/255, load 1/255 Encapsulation HDLC, loopback not set, keepalive set (10 sec) Last input 00:00:02, output 00:00:02, output hang never Last clearing of show interface counters 00:00:02 Input queue: 0/75/0 (size/max/drops); Total output drops: 0 Queueing strategy: priority-list 1 Output queue (queue priority: size/max/drops): high: 0/20/0, medium: 0/40/0, normal: 0/60/0, low: 0/80/0 5 minute input rate 0 bits/sec, 0 packets/sec 5 minute output rate 0 bits/sec, 0 packets/sec 1 packets input, 56 bytes, 0 no buffer Received 0 broadcasts, 0 runts, 0 giants, 0 throttles 0 input errors, 0 CRC, 0 frame, 0 overrun, 0 ignored, 0 abort 1 packets output, 56 bytes, 0 underruns 0 output errors, 0 collisions, 0 interface resets 0 output buffer failures, 0 output buffers swapped out 0 carrier transitions DCD=up DSR=up DTR=up RTS=up CTS=up -Original Message- From: Farhan Ahmed [mailto:[EMAIL PROTECTED]] Sent: 18 July 2001 13:24 To: 'Andrew Larkins' Subject: RE: WAN link funnies - UP UP but no comms- on same subnet!!! [7:1 2780] send me the sh int -Original Message- From: Andrew Larkins [mailto:[EMAIL PROTECTED]] Sent: Wednesday, July 18, 2001 3:17 PM To: [EMAIL PROTECTED] Subject: RE: WAN link funnies - UP UP but no comms- on same subnet!!! [7:12780] the very weird thing here is at RTS DTS etc are all up both devices are on a /30 subnet no problems here. I do not need any routing because these are directly connected networks. NO crc errors on link flap/ interface resets!! Very confused -Original Message- From: Phil Barker [mailto:[EMAIL PROTECTED]] Sent: 18 July 2001 12:45 To: [EMAIL PROTECTED] Subject: Re: WAN link funnies - UP UP but no comms- on same subnet!!! [7:12778] Andrew, From what you say your remote end is working fine both in Tx and Rx and your Tx is working fine since remote end sees your cdp. Your Rx appears to be the problem. Have you tried swapping out your local Serial cable ? What about 'sh int serial xxx' to check your pins ? DCD RTS etc. regards, Phil. --- Andrew Larkins wrote: HI all, Strange problem here. The serial interface are UP UP on both sides, but we are not able to ping each other - even though directly connected. A debug ip ICMP on the remote site shows the ping coming through and replying, but the reply never gets back. Also the remote site saw my router using CDP, but I do not see him. Any ideas?? I believe this is Telco related, but the line shows clean from the interface stats Andrew [EMAIL PROTECTED] Do You Yahoo!? Get your free @yahoo.co.uk address at http://mail.yahoo.co.uk or your free @yahoo.ie address at http://mail.yahoo.ie Message Posted at:
RE: WAN link funnies - UP UP but no comms- on same subnet!!! [7:12801]
why dont u remove all your config and try from the beginning or send ur complete config or send the debugs atleast -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] Sent: Wednesday, July 18, 2001 4:51 PM To: [EMAIL PROTECTED] Subject: RE: WAN link funnies - UP UP but no comms- on same subnet!!! [7:12798] are compression settings the same both ends? --- only in relation to priority queues -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] Sent: 18 July 2001 16:00 To: Andrew Larkins Cc: [EMAIL PROTECTED] Subject: RE: WAN link funnies - UP UP but no comms- on same subnet!!! [7:12788] Do yo have any ACL's in place? --- All have IP classless and are using HDLC -Original Message- From: Eric Hoffman [mailto:[EMAIL PROTECTED]] Sent: 18 July 2001 13:53 To: 'Andrew Larkins' Cc: '[EMAIL PROTECTED]' Subject: RE: WAN link funnies - UP UP but no comms- on same subnet!!! [7:1 2780] What version of ios are you running? If you are running some flavor of 11, check to make sure you have the ip classless on both routers. -Original Message- From: Andrew Larkins [mailto:[EMAIL PROTECTED]] Sent: Wednesday, July 18, 2001 7:17 AM To: [EMAIL PROTECTED] Subject: RE: WAN link funnies - UP UP but no comms- on same subnet!!! [7:12780] the very weird thing here is at RTS DTS etc are all up both devices are on a /30 subnet no problems here. I do not need any routing because these are directly connected networks. NO crc errors on link flap/ interface resets!! Very confused -Original Message- From: Phil Barker [mailto:[EMAIL PROTECTED]] Sent: 18 July 2001 12:45 To: [EMAIL PROTECTED] Subject: Re: WAN link funnies - UP UP but no comms- on same subnet!!! [7:12778] Andrew, From what you say your remote end is working fine both in Tx and Rx and your Tx is working fine since remote end sees your cdp. Your Rx appears to be the problem. Have you tried swapping out your local Serial cable ? What about 'sh int serial xxx' to check your pins ? DCD RTS etc. regards, Phil. --- Andrew Larkins wrote: HI all, Strange problem here. The serial interface are UP UP on both sides, but we are not able to ping each other - even though directly connected. A debug ip ICMP on the remote site shows the ping coming through and replying, but the reply never gets back. Also the remote site saw my router using CDP, but I do not see him. Any ideas?? I believe this is Telco related, but the line shows clean from the interface stats Andrew [EMAIL PROTECTED] Do You Yahoo!? Get your free @yahoo.co.uk address at http://mail.yahoo.co.uk or your free @yahoo.ie address at http://mail.yahoo.ie [EMAIL PROTECTED] Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=12801t=12801 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
BRI state [7:12802]
I have a question regarding BRI state. The following is a capture of my show isdn status: ISDN BRI4/0 interface dsl 24, interface ISDN Switchtype = basic-ni Layer 1 Status: ACTIVE Layer 2 Status: TEI = 88, Ces = 1, SAPI = 0, State = MULTIPLE_FRAME_ESTABLISHED TEI = 97, Ces = 2, SAPI = 0, State = MULTIPLE_FRAME_ESTABLISHED TEI 88, ces = 1, state = 5(init) spid1 configured, spid1 sent, spid1 valid Endpoint ID Info: epsf = 0, usid = 0, tid = 1 TEI 97, ces = 2, state = 5(init) spid2 configured, spid2 sent, spid2 valid Endpoint ID Info: epsf = 0, usid = 1, tid = 1 Layer 3 Status: 0 Active Layer 3 Call(s) Activated dsl 24 CCBs = 0 The Free Channel Mask: 0x8003 Notice that a few lines down the state = 5(init) and it's also in the same state for the other channel. Doesn't that have to be in a established state to use the line. I know that Cisco docs say that if the state is a init or established that the line is good. I know that it's good, but can't dial out for some reason and wanted to know if that was it and what the exact meaning of the init state is and if there's a way to bring it to an established state. Do a clear int bri4/0 didn't do it either. Any suggestions will be appreciated. _ Get your FREE download of MSN Explorer at http://explorer.msn.com Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=12802t=12802 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
FW: WAN link funnies - UP UP but no comms- on same subnet!!! [7:12800]
-Original Message- From: Andrew Larkins Sent: 18 July 2001 14:59 To: Robert Nelson-Cox; Andrew Larkins Subject: RE: WAN link funnies - UP UP but no comms- on same subnet!!! [7:1 2785] Both are DTE: Show controllers are below: Remote site:sho controller s 1/0 CD2430 Slot 1, Port 0, Controller 0, Channel 0, Revision 15 Channel mode is synchronous serial idb 0x60F54F00, buffer size 1524, X.21 DTE cable Global registers rpilr 0x2, rir 0x2, risr 0x0, rfoc 0x0, rdr 0x2 tpilr 0x1, tir 0x2, tisr 0x60, tftc 0x0, tdr 0x7 mpilr 0x3, mir 0x2, misr 0xE0 bercnt 0xFF, stk 0x0 Per-channel registers for channel 0 Option registers 0x02 0x00 0x42 0xE7 0xE0 0x00 0x00 Command and status registers cmr 0xC0, ccr 0x00, csr 0xCC, msvr-rts 0xF1, msvr-dtr 0xF1 Clock option registers rcor 0x86, rbpr 0x01, tcor 0xC8, tbpr 0x01 Interrupt registers ier 0x89, livr 0x00, licr 0x00 DMA buffer status 0x08 DMA receive registers arbaddr 0x1955DC4, arbcnt 1548, arbsts 0x1 brbaddr 0x1953044, brbcnt 1548, brbsts 0x1 rcbaddr 0x19529FC DMA transmit registers atbaddr 0x19D2CB4, atbcnt 56, atbsts 0x62 btbaddr 0x19CEAF4, btbcnt 56, btbsts 0x62 tcbaddr 0x19D2CEC Special character registers schr1 0x00, schr2 0x00, schr3 0x00, schr4 0x00 scrl 0x0, scrh 0x0, lnxt 0xF1 Driver context information Context structure 0x60F5A404, Register table 0x3C800400 Serial Interface Control 5:1 Register (0x3C800802) is 0x0 Adaptor Flags 0x0 Serial Modem Control Register (0x3C800804) is 0x18 Receive static buffer 0x60F5B288 Receive particle buffers 0x60F5AC00, 0x60F5AA40 Transmit DMA buffers 0x0, 0x0, 0x0, 0x0 Transmit packet with particles 0x0, first word is 0x0 Interrupt rates (per second) transmit 0, receive 0, modem 0 True fast-switched packets22 Semi fast-switched packets0 Transmitter hang count0 Residual indication count 7 Bus error count 0 Aborted short frames count40580 CRC short frames count321675 Error counters CTS deassertion failures 0 Nested interrupt errors transmit 0, receive 0, modem 0 Other side: sho controll s 3/0 CD2430 Slot 3, Port 0, Controller 0, Channel 0, Revision 15 Channel mode is synchronous serial idb 0x60F52854, buffer size 1524, X.21 DTE cable Global registers rpilr 0x2, rir 0x1, risr 0x0, rfoc 0x0, rdr 0x40 tpilr 0x1, tir 0x1, tisr 0x60, tftc 0x0, tdr 0x0 mpilr 0x3, mir 0x0, misr 0x0 bercnt 0xFF, stk 0x0 Per-channel registers for channel 0 Option registers 0x02 0x00 0x42 0xE7 0xE0 0x00 0x00 Command and status registers cmr 0xC0, ccr 0x00, csr 0xAC, msvr-rts 0xF1, msvr-dtr 0xF1 Clock option registers rcor 0x86, rbpr 0x01, tcor 0xC8, tbpr 0x01 Interrupt registers ier 0x89, livr 0x00, licr 0x00 DMA buffer status 0x23 DMA receive registers arbaddr 0x319AAE4, arbcnt 1548, arbsts 0x1 brbaddr 0x3199764, brbcnt 1548, brbsts 0x1 rcbaddr 0x319AB45 DMA transmit registers atbaddr 0x31AE0B4, atbcnt 56, atbsts 0x62 btbaddr 0x3000994, btbcnt 24, btbsts 0x62 tcbaddr 0x30009AC Special character registers schr1 0x00, schr2 0x00, schr3 0x00, schr4 0x00 scrl 0x0, scrh 0x0, lnxt 0xF1 Driver context information Context structure 0x60F57D58, Register table 0x3D800400 Serial Interface Control 5:1 Register (0x3D800802) is 0x0 Adaptor Flags 0x0 Serial Modem Control Register (0x3D800804) is 0x18 Receive static buffer 0x60EDEE28 Receive particle buffers 0x60F58240, 0x60F58180 Transmit DMA buffers 0x0, 0x0, 0x0, 0x0 Transmit packet with particles 0x0, first word is 0x0 Interrupt rates (per second) transmit 0, receive 138, modem 0 True fast-switched packets4167 Semi fast-switched packets1 Transmitter hang count0 Residual indication count 0 Bus error count 0 Aborted short frames count0 CRC short frames count1 Error counters CTS deassertion failures 0 Nested interrupt errors transmit 0, receive 0, modem -Original Message- From: Robert Nelson-Cox [mailto:[EMAIL PROTECTED]] Sent: 18 July 2001 14:31 To: [EMAIL PROTECTED] Subject: RE: WAN link funnies - UP UP but no comms- on same subnet!!! [7:1 2785] Are both cables DTE? Can you give me a show controller for these two interfaces? Rob./ From: Andrew Larkins To: Robert Nelson-Cox , Cisco Mail List Subject: RE: WAN link funnies - UP UP but no comms- on same subnet!!! [7:1 2785] Date: Wed, 18 Jul 2001 14:27:24 +0200 Lease line -Original Message- From: Robert Nelson-Cox [mailto:[EMAIL PROTECTED]] Sent: 18 July 2001 14:23 To: [EMAIL PROTECTED] Subject: RE: WAN link funnies - UP UP but no comms- on same subnet!!! [7:12785] Is this across a leased circuit, or x-over cable? If leased circuit, then you A and B end may not be joined. Rob./ From: Andrew Larkins Reply-To: Andrew Larkins To: [EMAIL PROTECTED] Subject: RE: WAN link funnies - UP UP but no comms- on same subnet!!! [7:12785] Date: Wed, 18 Jul 2001 08:01:08 -0400
Meet Your New CCIE Proctor (was RE: CCIE Lab Remote) [7:12803]
I heard it directly and indirectly from sources at Cisco that they were looking into Sylvan as a testing provider. Sylvan wouldn't actually own the equipment or employ CCIEs, they would just provide the testing facilities. The equipment would still be located at Cisco and administrated by Cisco. Also I know that the beta of the one-day lab was offered to people remote. Not from Sylvan but from any Cisco sales office. Do you want to meet your new proctor? Click on the link below. http://www.mentortech.com/learn/ccie_assessor.shtml Let me say that this technology looks totally impressive. It looks to be a great product but do I think I want something like this to replace the proctor? No. I truly hope that I'm totally incorrect and this isn't the direction that Cisco is going. Brian Dennis, CCIE #2210 (RS)(ISP/Dial) CCSI #98640 5G Networks, Inc. [EMAIL PROTECTED] -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of EA Louie Sent: Wednesday, July 18, 2001 12:21 AM To: [EMAIL PROTECTED] Subject: Re: CCIE Lab Remote (was RE: Current Wait time on the lab) [7:12770] Is there any evidence to support this possibility? The reason I ask is that the proctors have a very important role in the lab exam as it sits today, and I don't see how that role could be diminished. Hmmm...as a CCIE, if there were Sylvan remote lab testing, and lab proctors had to be CCIE's, that would fill a the gap in the CCIE unemployment...interesting tactic... But I doubt it will ever happen. Too much reputation at stake for Cisco to give up that much control over that coveted certification. -e- - Original Message - From: Brian Dennis To: Sent: Tuesday, July 17, 2001 6:53 PM Subject: CCIE Lab Remote (was RE: Current Wait time on the lab) [7:12746] Greg, It won't matter if there isn't a waiting list if the CCIE certification has lost it's value. The one-day lab is the first step to start running the lab remote from testing centers like Sylvan. I don't think that you want to be known as a Sylvan CCIE do you? Brian Dennis, CCIE #2210 (RS)(ISP/Dial) CCSI #98640 5G Networks, Inc. [EMAIL PROTECTED] Here is an excert from an e-mail I sent on the ccielab mailing list today: I think that we all know that someone could make an extremely hard one day lab that fails 99% of the candidates but that isn't the issue. There are a couple issues with remote labs and the shortening of the waiting list. One issue is that with the short waiting list people are going to be able to take the lab over and over again enabling the CCIE lab exams to become common knowledge just like the CCIE written is today. It'll be simpler for someone to just take the lab over and over again then it would to actually study. Cisco needs to put safeguards in that don't allow people take the test to often to solve this problem and I don't mean a weak solution like the 20 points on day one. I bet the average CCNP could get 20 points on day one. Having a long waiting list enables candidates to prepare and study for the lab and is part of the becoming a CCIE. Becoming a CCIE isn't something that you do overnight and should not be able to attempt every 30 days. Another issue is the problem with Sylvan testing centers that don't enforce Sylvan's policies and Sylvan centers that aren't on the up-and-up. This problem speaks for itself. -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Greg Macaulay Sent: Tuesday, July 17, 2001 6:22 PM To: [EMAIL PROTECTED] Subject: RE: Current Wait time on the lab [7:12713] Chuck --- Do you really think the CCIE is finished?? I hope you are wrong! We've all invested so many hundreds of hours of blood, sweat, tears and Money to get to this point!! I read Cisco's explanation today -- and hopefully their new lab will simply economize on time -- not on expertise. Say a prayer! Greg Macaulay Oldest CCNP/CCDP on Earth Lifetime Member of AARP Retired Attorney/Law Professor -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Chuck Larrieu Sent: Tuesday, July 17, 2001 8:52 PM To: [EMAIL PROTECTED] Subject: RE: Current Wait time on the lab [7:12713] I'm willing to part with my December 3 date for a nominal fee. Chuck betting that once the one day lab takes effect, the value of the CCIE will plummet ;- -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of EA Louie Sent: Tuesday, July 17, 2001 2:33 PM To: [EMAIL PROTECTED] Subject: Re: Current Wait time on the lab [7:12713] - Original Message - From: John Neiberger To: Sent: Tuesday, July 17, 2001 2:12 PM Subject: Re: Current Wait time on the lab [7:12713] I just scheduled the lab today and the earliest date available was 3/8/2002. But I took that spot. :-) not true, the earliest date was today ;-) then one on 8/7 and another on 8/17 (heheheheh)
Re: Access -list problem, my solution [7:12760]
I don't think 0.0.224.255 will work as a wildcard mask. 1110 = 224 This would allow the first 3 bits to be on or off, but would force every bit after 32 to be off all the time. As far as I can see, it would block access to every odd number and some others that fall within the 18.64 - 18.127 range. The 3rd bit being on would allow the 32 bit to be on or off, which would mean addresses below 172.22.0.x would be able to access the range. Again, I'm still new at this so let me know if I'm wrong with that... - Jeremy Felt [EMAIL PROTECTED] - Original Message - From: Robert Fowler To: Sent: Tuesday, July 17, 2001 10:46 PM Subject: Access -list problem, my solution [7:12760] I've been up 3 hours working on this and my brain is fried. Right before that last synapses died I think I came up with the answer. Here is my worksheet. Let me know what you think. [snip] deny ip 172.22.30.0 0.0.0.255 192.168.18.27 0.0.0.0 access to 18.27 deny ip 172.22.32.0 0.0.224.255 192.168.18.64 0.0.0.63 and above from accessing 18.64 - 18.127 permit ip 0.0.0.0 255.255.255.255 0.0.0.0 255.255.255.255 everything else. Thank You, Robert Fowler Network Administrator Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=12804t=12760 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: WAN link funnies - UP UP but no comms- on same subnet!!! [7:12807]
i think u should do this now Special Serial Line Tests In addition to the basic diagnostic capabilities available on routers, a variety of supplemental tools and techniques can be used to determine the conditions of cables, switching equipment, modems, hosts, and remote internetworking hardware. For more information, consult the documentation for your CSU, DSU, serial analyzer, or other equipment. CSU and DSU Loopback Tests If the output of the show interfaces serial exec command indicates that the serial line is up but the line protocol is down, use the CSU/DSU loopback tests to determine the source of the problem. Perform the local loop test first, and then the remote test. Figure 15-9 illustrates the basic topology of the CSU/DSU local and remote loopback tests. Figure 15-9: CSU/DSU Local and Remote Loopback Tests Note These tests are generic in nature and assume attachment of the internetworking system to a CSU or DSU. However, the tests are essentially the same for attachment to a multiplexer with built-in CSU/DSU functionality. Because there is no concept of a loopback in X.25 or Frame Relay packet-switched network (PSN) environments, loopback tests do not apply to X.25 and Frame Relay networks. CSU and DSU Local Loopback Tests for HDLC or PPP Links Following is a general procedure for performing loopback tests in conjunction with built-in system diagnostic capabilities: Step 1 Place the CSU/DSU in local loop mode (refer to your vendor documentation). In local loop mode, the use of the line clock (from the T1 service) is terminated, and the DSU is forced to use the local clock. Step 2 Use the show interfaces serial exec command to determine whether the line status changes from line protocol is down to line protocol is up (looped), or if it remains down. Step 3 If the line protocol comes up when the CSU or DSU is in local loopback mode, this suggests that the problem is occurring on the remote end of the serial connection. If the status line does not change state, there is a possible problem in the router, connecting cable, or CSU/DSU. Step 4 If the problem appears to be local, use the debug serial interface privileged exec command. Step 5 Take the CSU/DSU out of local loop mode. When the line protocol is down, the debug serial interface command output will indicate that keepalive counters are not incrementing. Step 6 Place the CSU/DSU in local loop mode again. This should cause the keepalive packets to begin to increment. Specifically, the values for mineseen and yourseen keepalives will increment every 10 seconds. This information will appear in the debug serial interface output. If the keepalives do not increment, there may be a timing problem on the interface card or on the network. For information on correcting timing problems, refer to the section Troubleshooting Clocking Problems, earlier in this chapter. Step 7 Check the local router and CSU/DSU hardware, and any attached cables. Make certain the cables are within the recommended lengths (no more than 50 feet [15.24 meters], or 25 feet [7.62 meters] for a T1 link). Make certain the cables are attached to the proper ports. Swap faulty equipment as necessary. Figure 15-10 shows the output from the debug serial interface command for an HDLC serial connection, with missed keepalives causing the line to go down and the interface to reset. Figure 15-10: debug serial interface Command Output CSU and DSU Remote Loopback Tests for HDLC or PPP Links If you determine that the local hardware is functioning properly but you still encounter problems when attempting to establish connections over the serial link, try using the remote loopback test to isolate the problem cause. Note This remote loopback test assumes that HDLC encapsulation is being used and that the preceding local loop test was performed immediately before this test. The following are the steps required to perform loopback testing: Step 1 Put the remote CSU or DSU into remote loopback mode (refer to the vendor documentation). Step 2 Using the show interfaces serial exec command, determine whether the line protocol remains up with the status line indicating Serial x is up, line protocol is up (looped), or if it goes down with the status line indicating line protocol is down. Step 3 If the line protocol remains up (looped), the problem is probably at the remote end of the serial connection (between the remote CSU/DSU and the remote router). Perform both local and remote tests at the remote end to isolate the problem source. Step 4 If the line status changes to line protocol is down when remote loopback mode is activated, make certain
Token Ring Stuff for sale [7:12806]
I have a bunch of Token Ring stuff for sale. Thanks. 1 IBM 8228 MAUs $10 ea 1 HP 600N (model# j3112A) internal Token-Ring print server card $30 11 IBM Auto 16/4 Token Ring ISA card $2.50/ea. 1 Olicom (model# OC-3118) 16/4 Token Ring ISA card $2.50 1 HP JetDirect Ex Plus 3 (model#2594A) print server $30 6 8ft IBM Type-1 to DB-9 Token-Ring cable $6/ea. 4 8ft IBM-type (brand Black Box) Type-1 to DB-9 Token-Ring cable $6/ea. Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=12806t=12806 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
To CCIE's without a job [7:12805]
Forgive me for sending this here, I know there's a place for job discussions, but I noticed that there have been several e-mails about how CCIE's now have a harder time getting jobs. I received this e-mail (look at the message included after my signature) on another Cisco list I'm a member of: Hth, Ole ~~~ Ole Drews Jensen Systems Network Manager CCNA, MCSE, MCP+I RWR Enterprises, Inc. [EMAIL PROTECTED] ~~~ http://www.OleDrews.com/CCNP ~~~ NEED A JOB ??? http://www.oledrews.com/job ~~~ Message: 1 Date: Tue, 17 Jul 2001 15:11:26 - From: JDO Subject: Looking for a Special Kind of CCIE Hello, My name is Johnna Smith and I work for a placement firm in Dallas, Texas. I am in desperate need of a CCIE that DEVELOPS routing protocols. I need them to have BGP, DSPF, IS-IS, and MPLS. The must be a software engineer and they must be degreed. If any of you could help me, please give me a call or shoot me an email at [EMAIL PROTECTED] or at 972-991-7569. Just to take a look at someof our other positions please go to We also work with another agency that focuese more on IT, you can find their site at Thanks Johnna Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=12805t=12805 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: BRI state [7:12802]
Spid Status TEI 109, ces = 1, state = 8(established) Terminal Endpoint Identifier (TEI) number and state. Valid dynamic TEI assignment range is 64-126. The most common state values are: state = 1(terminal down) state = 3(await establishment) state = 5(init) state = 6(not initialized) state = 8(established) Only states 5(init) and 8(established) indicate a working BRI circuit. The other states mean the circuit is not properly established. -Original Message- From: SH Wesson [mailto:[EMAIL PROTECTED]] Sent: Wednesday, July 18, 2001 5:18 PM To: [EMAIL PROTECTED] Subject: BRI state [7:12802] I have a question regarding BRI state. The following is a capture of my show isdn status: ISDN BRI4/0 interface dsl 24, interface ISDN Switchtype = basic-ni Layer 1 Status: ACTIVE Layer 2 Status: TEI = 88, Ces = 1, SAPI = 0, State = MULTIPLE_FRAME_ESTABLISHED TEI = 97, Ces = 2, SAPI = 0, State = MULTIPLE_FRAME_ESTABLISHED TEI 88, ces = 1, state = 5(init) spid1 configured, spid1 sent, spid1 valid Endpoint ID Info: epsf = 0, usid = 0, tid = 1 TEI 97, ces = 2, state = 5(init) spid2 configured, spid2 sent, spid2 valid Endpoint ID Info: epsf = 0, usid = 1, tid = 1 Layer 3 Status: 0 Active Layer 3 Call(s) Activated dsl 24 CCBs = 0 The Free Channel Mask: 0x8003 Notice that a few lines down the state = 5(init) and it's also in the same state for the other channel. Doesn't that have to be in a established state to use the line. I know that Cisco docs say that if the state is a init or established that the line is good. I know that it's good, but can't dial out for some reason and wanted to know if that was it and what the exact meaning of the init state is and if there's a way to bring it to an established state. Do a clear int bri4/0 didn't do it either. Any suggestions will be appreciated. _ Get your FREE download of MSN Explorer at http://explorer.msn.com Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=12808t=12802 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: BRI state [7:12802]
what u cannot dial u are already connected? can u send the config -Original Message- From: SH Wesson [mailto:[EMAIL PROTECTED]] Sent: Wednesday, July 18, 2001 5:18 PM To: [EMAIL PROTECTED] Subject: BRI state [7:12802] I have a question regarding BRI state. The following is a capture of my show isdn status: ISDN BRI4/0 interface dsl 24, interface ISDN Switchtype = basic-ni Layer 1 Status: ACTIVE Layer 2 Status: TEI = 88, Ces = 1, SAPI = 0, State = MULTIPLE_FRAME_ESTABLISHED TEI = 97, Ces = 2, SAPI = 0, State = MULTIPLE_FRAME_ESTABLISHED TEI 88, ces = 1, state = 5(init) spid1 configured, spid1 sent, spid1 valid Endpoint ID Info: epsf = 0, usid = 0, tid = 1 TEI 97, ces = 2, state = 5(init) spid2 configured, spid2 sent, spid2 valid Endpoint ID Info: epsf = 0, usid = 1, tid = 1 Layer 3 Status: 0 Active Layer 3 Call(s) Activated dsl 24 CCBs = 0 The Free Channel Mask: 0x8003 Notice that a few lines down the state = 5(init) and it's also in the same state for the other channel. Doesn't that have to be in a established state to use the line. I know that Cisco docs say that if the state is a init or established that the line is good. I know that it's good, but can't dial out for some reason and wanted to know if that was it and what the exact meaning of the init state is and if there's a way to bring it to an established state. Do a clear int bri4/0 didn't do it either. Any suggestions will be appreciated. _ Get your FREE download of MSN Explorer at http://explorer.msn.com Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=12809t=12802 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Meet Your New CCIE Proctor (was RE: CCIE Lab Remote) [7:12811]
i checked the last 2 candidates CCIE Verification Tool No, I'm sorry, Dave Mack is not CCIE number 6963. To receive a positive verification, you will need to enter in the CCIE's name exactly as it is in the CCIE database. For example, if the CCIE's first name is Dan, you may also want to try Daniel. Since there is a possibility that we have a different spelling of the person's -Original Message- From: Brian Dennis [mailto:[EMAIL PROTECTED]] Sent: Wednesday, July 18, 2001 5:32 PM To: [EMAIL PROTECTED] Subject: Meet Your New CCIE Proctor (was RE: CCIE Lab Remote) [7:12803] I heard it directly and indirectly from sources at Cisco that they were looking into Sylvan as a testing provider. Sylvan wouldn't actually own the equipment or employ CCIEs, they would just provide the testing facilities. The equipment would still be located at Cisco and administrated by Cisco. Also I know that the beta of the one-day lab was offered to people remote. Not from Sylvan but from any Cisco sales office. Do you want to meet your new proctor? Click on the link below. http://www.mentortech.com/learn/ccie_assessor.shtml Let me say that this technology looks totally impressive. It looks to be a great product but do I think I want something like this to replace the proctor? No. I truly hope that I'm totally incorrect and this isn't the direction that Cisco is going. Brian Dennis, CCIE #2210 (RS)(ISP/Dial) CCSI #98640 5G Networks, Inc. [EMAIL PROTECTED] -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of EA Louie Sent: Wednesday, July 18, 2001 12:21 AM To: [EMAIL PROTECTED] Subject: Re: CCIE Lab Remote (was RE: Current Wait time on the lab) [7:12770] Is there any evidence to support this possibility? The reason I ask is that the proctors have a very important role in the lab exam as it sits today, and I don't see how that role could be diminished. Hmmm...as a CCIE, if there were Sylvan remote lab testing, and lab proctors had to be CCIE's, that would fill a the gap in the CCIE unemployment...interesting tactic... But I doubt it will ever happen. Too much reputation at stake for Cisco to give up that much control over that coveted certification. -e- - Original Message - From: Brian Dennis To: Sent: Tuesday, July 17, 2001 6:53 PM Subject: CCIE Lab Remote (was RE: Current Wait time on the lab) [7:12746] Greg, It won't matter if there isn't a waiting list if the CCIE certification has lost it's value. The one-day lab is the first step to start running the lab remote from testing centers like Sylvan. I don't think that you want to be known as a Sylvan CCIE do you? Brian Dennis, CCIE #2210 (RS)(ISP/Dial) CCSI #98640 5G Networks, Inc. [EMAIL PROTECTED] Here is an excert from an e-mail I sent on the ccielab mailing list today: I think that we all know that someone could make an extremely hard one day lab that fails 99% of the candidates but that isn't the issue. There are a couple issues with remote labs and the shortening of the waiting list. One issue is that with the short waiting list people are going to be able to take the lab over and over again enabling the CCIE lab exams to become common knowledge just like the CCIE written is today. It'll be simpler for someone to just take the lab over and over again then it would to actually study. Cisco needs to put safeguards in that don't allow people take the test to often to solve this problem and I don't mean a weak solution like the 20 points on day one. I bet the average CCNP could get 20 points on day one. Having a long waiting list enables candidates to prepare and study for the lab and is part of the becoming a CCIE. Becoming a CCIE isn't something that you do overnight and should not be able to attempt every 30 days. Another issue is the problem with Sylvan testing centers that don't enforce Sylvan's policies and Sylvan centers that aren't on the up-and-up. This problem speaks for itself. -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Greg Macaulay Sent: Tuesday, July 17, 2001 6:22 PM To: [EMAIL PROTECTED] Subject: RE: Current Wait time on the lab [7:12713] Chuck --- Do you really think the CCIE is finished?? I hope you are wrong! We've all invested so many hundreds of hours of blood, sweat, tears and Money to get to this point!! I read Cisco's explanation today -- and hopefully their new lab will simply economize on time -- not on expertise. Say a prayer! Greg Macaulay Oldest CCNP/CCDP on Earth Lifetime Member of AARP Retired Attorney/Law Professor -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Chuck Larrieu Sent: Tuesday, July 17, 2001 8:52 PM To: [EMAIL PROTECTED] Subject: RE: Current Wait time on the lab [7:12713] I'm willing to part with my December 3 date for a nominal fee. Chuck betting that once the one day lab takes effect, the value of the
Re: Current Wait time on the lab [7:12713]
Where did you get your information that anyone already scheduled keeps their two day date? CCIE's are telling me that people who are scheduled after Oct. will get a notice that their two day lab is changed to a single day... Greg Macaulay wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... Heads Up!! Cisco just announced that they are going to a one-day lab effective October 1, 2001. Anyone who is already scheduled for the two-day lab keeps their date. All others get a one-day lab. Thus, the scheduling dates for the lab should open up! Hopefully! Greg Macaulay Oldest CCNP/CCDP on Earth Lifetime Member of AARP Retired Attorney/Law Professor -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Dennis Bailey Sent: Tuesday, July 17, 2001 7:47 PM To: [EMAIL PROTECTED] Subject: Re: Current Wait time on the lab [7:12713] I think it's hit or miss on anything sooner than March 2002. Basically, I think you can 'luck out' if you happen to search for dates at the same time someone may be cancelling and re-scheduling or trying to swap a date. I scheduled mine last week and came up with an available date during this month. Needless to say, I took a date from next March instead :) Jaspreet Bhatia wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... Guys, Does anyone know what is the current wait time for the R/S lab in San Jose . Jaspreet Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=12810t=12713 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
CCIE Boot Camp... [7:12812]
Hi, I have these 19 Labs for sale, I'm selling this origoinal package on first come first serve bases for $300. If you are interested you can contact me on my email : [EMAIL PROTECTED] I accept wire transfer only. Ehab Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=12812t=12812 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Current Wait time on the lab [7:12713]
Does this mean it is going to get easier or harder (hopefully the latter) But I presume this means twice as many people can sit the lab per year. How long before every man and his dog has the CCIE ??? Dennis, what are your thoughts? rgds Chris.B. -Original Message- From: Dennis H [mailto:[EMAIL PROTECTED]] Sent: 18 July 2001 15:07 To: [EMAIL PROTECTED] Subject: Re: Current Wait time on the lab [7:12713] Where did you get your information that anyone already scheduled keeps their two day date? CCIE's are telling me that people who are scheduled after Oct. will get a notice that their two day lab is changed to a single day... Greg Macaulay wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... Heads Up!! Cisco just announced that they are going to a one-day lab effective October 1, 2001. Anyone who is already scheduled for the two-day lab keeps their date. All others get a one-day lab. Thus, the scheduling dates for the lab should open up! Hopefully! Greg Macaulay Oldest CCNP/CCDP on Earth Lifetime Member of AARP Retired Attorney/Law Professor -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Dennis Bailey Sent: Tuesday, July 17, 2001 7:47 PM To: [EMAIL PROTECTED] Subject: Re: Current Wait time on the lab [7:12713] I think it's hit or miss on anything sooner than March 2002. Basically, I think you can 'luck out' if you happen to search for dates at the same time someone may be cancelling and re-scheduling or trying to swap a date. I scheduled mine last week and came up with an available date during this month. Needless to say, I took a date from next March instead :) Jaspreet Bhatia wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... Guys, Does anyone know what is the current wait time for the R/S lab in San Jose . Jaspreet This e-mail and any files transmitted with it are intended solely for the addressee and are confidential. They may also be legally privileged. Copyright in them is reserved by Delphis Consulting PLC [Delphis] and they must not be disclosed to, or used by, anyone other than the addressee. If you have received this e-mail and any accompanying files in error, you may not copy, publish or use them in any way and you should delete them from your system and notify us immediately.E-mails are not secure. Delphis does not accept responsibility for changes to e-mails that occur after they have been sent. Any opinions expressed in this e-mail may be personal to the author and may not necessarily reflect the opinions of Delphis. Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=12814t=12713 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Current Wait time on the lab [7:12713]
CCO states that any lab scheduled before Oct. 1 will be the existing two-day lab. After that date all labs will be in the new one-day format. At least that's how I read it. John Dennis H 7/18/01 8:07:02 AM Where did you get your information that anyone already scheduled keeps their two day date? CCIE's are telling me that people who are scheduled after Oct. will get a notice that their two day lab is changed to a single day... Greg Macaulay wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... Heads Up!! Cisco just announced that they are going to a one-day lab effective October 1, 2001. Anyone who is already scheduled for the two-day lab keeps their date. All others get a one-day lab. Thus, the scheduling dates for the lab should open up! Hopefully! Greg Macaulay Oldest CCNP/CCDP on Earth Lifetime Member of AARP Retired Attorney/Law Professor -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Dennis Bailey Sent: Tuesday, July 17, 2001 7:47 PM To: [EMAIL PROTECTED] Subject: Re: Current Wait time on the lab [7:12713] I think it's hit or miss on anything sooner than March 2002. Basically, I think you can 'luck out' if you happen to search for dates at the same time someone may be cancelling and re-scheduling or trying to swap a date. I scheduled mine last week and came up with an available date during this month. Needless to say, I took a date from next March instead :) Jaspreet Bhatia wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... Guys, Does anyone know what is the current wait time for the R/S lab in San Jose . Jaspreet Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=12813t=12713 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Block Icq With Pix Firewall [7:12601]
Apart from port filtering. I may also config my name server to response a false ip address for icq.com domain. :) On 17 Jul 2001 11:49:35 -0400, [EMAIL PROTECTED] (Allen May) wrote: Well...since ICQ uses a wide range of ports it may be easier just to block access to the ICQ authentication server... - Original Message - From: Farhan Ahmed To: Sent: Tuesday, July 17, 2001 3:59 AM Subject: RE: Block Icq With Pix Firewall [7:12601] outbound 10 deny 0 0 icqport tcp apply (inside) 10 outgoing_src -Original Message- From: Makis To: [EMAIL PROTECTED] Sent: 7/17/01 12:13 PM Subject: Block Icq With Pix Firewall [7:12601] Hi How can i block Icq through Pix Firewall ? Any ideas ? Makis Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=12815t=12601 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: CCIE Group in Singapore. [7:12253]
For me, I heard Beijing is even more harsh and straight I choosed Singapore. My day is 6Aug. On 13 Jul 2001 12:22:12 -0400, [EMAIL PROTECTED] (Kevin Schwantz) wrote: David, Good luck to you. Many Singaporeans choose to do the lab elsewhere because rumour has it that the procter is VERY harsh. I hear that he has never passed a first timer. Kevin David Schaer wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... I'm in Florida, but am testing in Singapore 11/21. Kevin Schwantz wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... Hi Ronnie, I'm from one of the major ISP's in Singapore. What about you? Kevin Ronnie Tan wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... Anyone from Singapore studying for CCIE Lab ? Schedule to take my lab this November. Would like to form a study group to pool resources together. Thanks. Ron Tan [EMAIL PROTECTED] Get free email and a permanent address at http://www.amexmail.com/?A=1 Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=12816t=12253 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Error in configuring ISDN [7:12611]
use this config your isdn state states that u r connected ur doing some wrong config in the dialer list and nat use this and let me know ! ip subnet-zero no ip domain-lookup ip routing ! interface Dialer 1 description connected to Internet ip address negotiated ip nat outside no ip split-horizon encapsulation ppp dialer in-band dialer idle-timeout 120 dialer string dialer hold-queue 10 dialer-group 1 ppp authentication chap pap callin ppp chap hostname a ppp chap password aa ppp pap sent-username a password aa no ppp multilink no cdp enable ! interface FastEthernet 0/0 no description no ip address ip nat inside shutdown ! interface Serial 0/0 no description no ip address ip nat inside shutdown ! interface BRI 0/0 no shutdown description connected to Internet no ip address ip nat outside dialer rotary-group 1 ! ! ! Dialer Control List 1 ! dialer-list 1 protocol ip permit ! ! Dynamic NAT ! ip nat translation timeout 86400 ip nat translation tcp-timeout 86400 ip nat translation udp-timeout 300 ip nat translation dns-timeout 60 ip nat translation finrst-timeout 60 ip nat inside source list 1 interface Dialer 1 overload ! ! ip classless ! ! IP Static Routes ip route 0.0.0.0 0.0.0.0 Dialer -Original Message- From: Technosys [mailto:[EMAIL PROTECTED]] Sent: Wednesday, July 18, 2001 6:02 PM To: Farhan Ahmed Subject: Re: Error in configuring ISDN [7:12611] Hi Farhan , Enclosed please find the details of the current config parameters which I have set up on my Cisco 2620 router , I am still facing the same problem of disconnection , I am sendint you the file of debugs , please guide me what I should do . thanking you , Navin K Parwal */ Who dares to teach must never cease to learn * / - Original Message - From: Farhan Ahmed To: Sent: Wednesday, July 18, 2001 12:49 AM Subject: FW: Error in configuring ISDN [7:12611] is it solved? can u send debug isdn q921 debug isdn event and the debug isdn q931 -Original Message- From: Danner, John (ZoomTown) [mailto:[EMAIL PROTECTED]] Sent: Tuesday, July 17, 2001 10:14 PM To: 'Farhan Ahmed' Subject: RE: Error in configuring ISDN [7:12611] While I would agree that a basic-net3 switch doesn't need a SPID a basic-ni does and that is the switch type he has configured on his BRI0/0 interface: notice: ISDN BRI0/0 interface dsl 0, interface ISDN Switchtype = basic-ni Layer 1 Status: ACTIVE Layer 2 Status: TEI = 80, Ces = 1, SAPI = 0, State = MULTIPLE_FRAME_ESTABLISHED I_Queue_Len 0, UI_Queue_Len 0 TEI 80, ces = 1, state = 8(established) spid1 configured, no LDN, spid1 NOT sent, spid1 NOT valid TEI Not Assigned, ces = 2, state = 1(terminal down) spid2 configured, no LDN, spid2 NOT sent, spid2 NOT valid This is where he is getting his error. It may be a matter of him removing that part of the configuration. -John -Original Message- From: Farhan Ahmed [mailto:[EMAIL PROTECTED]] Sent: Tuesday, July 17, 2001 11:13 AM To: 'Danner, John (ZoomTown)'; [EMAIL PROTECTED] Subject: RE: Error in configuring ISDN [7:12611] first of all in basic net3 u dont need spids and the second u dont have a ip assigned to your bri neither you are using esy ip there is no dialer as well what happen to u guys -Original Message- From: Danner, John (ZoomTown) [mailto:[EMAIL PROTECTED]] Sent: Tuesday, July 17, 2001 6:37 PM To: [EMAIL PROTECTED] Subject: RE: Error in configuring ISDN [7:12611] The spids are definitely wrong: From debug: 07:14:249108103167: Null Spid: 0 From config: isdn spid1 0 isdn spid2 0 Is this in a lab setting with a isdn simulator or with a transport from the phone company? If it's with the phone company you need to put the spids the phone company gave you into the configuration or you won't be able to dial correctly. If it's in a lab - I don't know. :( -John -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Hire, Ejay Sent: Tuesday, July 17, 2001 10:03 AM To: [EMAIL PROTECTED] Subject: RE: Error in configuring ISDN [7:12611] I may be way off, but I thinks your spids are wrong. Call the Phone company and ask them what your spids are supposed to be. TEI 80, ces = 1, state = 8(established) spid1 configured, no LDN, spid1 NOT sent, spid1 NOT valid TEI Not Assigned, ces = 2, state = 1(terminal down) spid2 configured, no LDN, spid2 NOT sent, spid2 NOT valid -Ejay -Original Message- From: NKP [mailto:[EMAIL PROTECTED]] Sent: Tuesday, July 17, 2001 6:25 AM To: [EMAIL PROTECTED] Subject: Error in configuring ISDN [7:12611] Hi , I am facing an error in configuring the ISDN on my Cisco 2620 with the BRI S/T interface card , it keeps on getting disconnected after it dials , can anyone guide me what mistake I could be making ? cisco2620#sh run
Cache engine vers Content Engine [7:12817]
Hi Everyone I am trying to find out it i can do a direct replacement of a CE550 cache engine with a CE590 Content engine. If i can are there any new commands to put in the routers to allow the 590 to perform basic caching. Thanks in advance for your help Dave Craddock Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=12817t=12817 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
content engine [7:12820]
Hi Everyone I am trying to find out it i can do a direct replacement of a CE550 cache engine with a CE590 Content engine. If i can are there any new commands to put in the routers to allow the 590 to perform basic caching. Thanks in advance for your help Dave Craddock Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=12820t=12820 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Need to bypass Firewall-Can the telnet port be changed? [7:12819]
Sean, Thank you for your well-considered response. You are absolutely correct. I'm not allowed to make any changes to the firewall. However, I still need to access my CCIE lab from outside the office. Therefore, security isn't as much of a concern as it might be in a production environment. Therefore, I'm hoping to change the port the term server listens to so I can get past the firewall. I've considered setting up something like pcAnywhere on a desktop and accessing that and then telnetting to the terminal server. However, I'd prefer to use a different solution if possible as it will already be slow and inserting a remote control package will likely slow it even further. So, in short, is it possible to change the listen port on the 2511 router to port 80 or something similar? Sean Young wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... Your question is VERY vague and therefore can NOT be answered. However, I will attempt to do the best with the limited information you provided. I will assume that the VPN server is sitting behind the Firewall or on the Firewall itself. If you are using PPTP (microsoft VPN) then the firewall need to open port 1723 so that VPN connection can go through. Once the VPN connection is established, you just telnet to your terminal server just like you do at your office. Just think of the VPN connection as such that you are part of your office LAN. Now if you are using L2TP or L2F or IPSec then different ports need to be open on the Firewall for this to work. Now Is it possible to change the terminal server configuration so it answers on a different port such as port 80? Actually, this can be done if you have control of the Firewall (which I don't think you do). Furthermore, the IP address of the Terminal server is a RFC1918 address (aka private address). To make it work, what happened is that the firewall will listen for service on port 80 for a particular VALID external IP address. The firewall will then REDIRECT the traffic (port 80 in this case) to the terminal server at port 23. I have done this on my Linux Firewall with iptables (aka netfilter). You just open telnet session on a remote machine and use port 80 to connect to you terminal server. However, I doubt that you have access to the Firewall to make this work or that you will be forbidden by the company to do so. The dangerous in doing this is that everything (including username and password) will be transmitted in the CLEAR. I strongly suggest that you use the first method which extends your remote machine as part of your officice LAN. The alternative method is to set up an SSH server and have it NATed to the Firewall. You can connect to your terminal server by first SSH (version 2 is recommended) to the SSH server, then telnet to your terminal server. That's what I use at work. I find that this is the best way to go. Does it make any sense to you? Sean From: Lurker Reply-To: Lurker To: [EMAIL PROTECTED] Subject: Need to bypass Firewall-Can the telnet port be changed? [7:12707] Date: Tue, 17 Jul 2001 15:55:53 -0400 I need to use the VPN to get to my study lab in the office. Unfortunately, telnet appears to be blocked. Is it possible to change the terminal server configuration so it answers on misconduct and Nondisclosure violations to [EMAIL PROTECTED] Get your FREE download of MSN Explorer at http://explorer.msn.com Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=12819t=12819 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Block Icq With Pix Firewall [7:12601]
Yeahlike 127.0.0.1 ought to keep them busy with themselves for hours ;) - Original Message - From: [EMAIL PROTECTED] (Katson PN Yeung) To: Sent: Wednesday, July 18, 2001 9:37 AM Subject: Re: Block Icq With Pix Firewall [7:12601] Apart from port filtering. I may also config my name server to response a false ip address for icq.com domain. :) On 17 Jul 2001 11:49:35 -0400, [EMAIL PROTECTED] (Allen May) wrote: Well...since ICQ uses a wide range of ports it may be easier just to block access to the ICQ authentication server... - Original Message - From: Farhan Ahmed To: Sent: Tuesday, July 17, 2001 3:59 AM Subject: RE: Block Icq With Pix Firewall [7:12601] outbound 10 deny 0 0 icqport tcp apply (inside) 10 outgoing_src -Original Message- From: Makis To: [EMAIL PROTECTED] Sent: 7/17/01 12:13 PM Subject: Block Icq With Pix Firewall [7:12601] Hi How can i block Icq through Pix Firewall ? Any ideas ? Makis Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=12822t=12601 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Current Wait time on the lab [7:12713]
First of all, unless they make the lab very easy this will not ever happen. Unlike other certifications for this one you have to study and have hands on. Most people say they want one but its hard to do due to real life time constraints. I have my own home lab and it helps but so much material at the core to get down cold. And really the way I look at is this, the routing and switching CCIE should be the start and then you either go Security or ISP CCIE. Plus I dont think any doggies will be interested in routing but a fire hydrantthat another thing! :-] Raul - Original Message - From: Burnham, Chris To: Sent: Wednesday, July 18, 2001 10:34 AM Subject: RE: Current Wait time on the lab [7:12713] Does this mean it is going to get easier or harder (hopefully the latter) But I presume this means twice as many people can sit the lab per year. How long before every man and his dog has the CCIE ??? Dennis, what are your thoughts? rgds Chris.B. -Original Message- From: Dennis H [mailto:[EMAIL PROTECTED]] Sent: 18 July 2001 15:07 To: [EMAIL PROTECTED] Subject: Re: Current Wait time on the lab [7:12713] Where did you get your information that anyone already scheduled keeps their two day date? CCIE's are telling me that people who are scheduled after Oct. will get a notice that their two day lab is changed to a single day... Greg Macaulay wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... Heads Up!! Cisco just announced that they are going to a one-day lab effective October 1, 2001. Anyone who is already scheduled for the two-day lab keeps their date. All others get a one-day lab. Thus, the scheduling dates for the lab should open up! Hopefully! Greg Macaulay Oldest CCNP/CCDP on Earth Lifetime Member of AARP Retired Attorney/Law Professor -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Dennis Bailey Sent: Tuesday, July 17, 2001 7:47 PM To: [EMAIL PROTECTED] Subject: Re: Current Wait time on the lab [7:12713] I think it's hit or miss on anything sooner than March 2002. Basically, I think you can 'luck out' if you happen to search for dates at the same time someone may be cancelling and re-scheduling or trying to swap a date. I scheduled mine last week and came up with an available date during this month. Needless to say, I took a date from next March instead :) Jaspreet Bhatia wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... Guys, Does anyone know what is the current wait time for the R/S lab in San Jose . Jaspreet This e-mail and any files transmitted with it are intended solely for the addressee and are confidential. They may also be legally privileged. Copyright in them is reserved by Delphis Consulting PLC [Delphis] and they must not be disclosed to, or used by, anyone other than the addressee. If you have received this e-mail and any accompanying files in error, you may not copy, publish or use them in any way and you should delete them from your system and notify us immediately.E-mails are not secure. Delphis does not accept responsibility for changes to e-mails that occur after they have been sent. Any opinions expressed in this e-mail may be personal to the author and may not necessarily reflect the opinions of Delphis. Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=12821t=12713 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: CCIE Group in Singapore. [7:12253]
Katson, all the best to you. Lots of ppl were telling me to take up my lab in Belgium where the proctor are much more reasonable. I'm still sticking with Singapore though I mean if we had prepare ourself in advance, that should do the trick right ? Ron - Original Message - From: [EMAIL PROTECTED] (Katson PN Yeung) To: Sent: Wednesday, July 18, 2001 10:40 PM Subject: Re: CCIE Group in Singapore. [7:12253] For me, I heard Beijing is even more harsh and straight I choosed Singapore. My day is 6Aug. On 13 Jul 2001 12:22:12 -0400, [EMAIL PROTECTED] (Kevin Schwantz) wrote: David, Good luck to you. Many Singaporeans choose to do the lab elsewhere because rumour has it that the procter is VERY harsh. I hear that he has never passed a first timer. Kevin David Schaer wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... I'm in Florida, but am testing in Singapore 11/21. Kevin Schwantz wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... Hi Ronnie, I'm from one of the major ISP's in Singapore. What about you? Kevin Ronnie Tan wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... Anyone from Singapore studying for CCIE Lab ? Schedule to take my lab this November. Would like to f orm a study group to pool resources together. Thanks. Ron Tan [EMAIL PROTECTED] Get free email and a permanent address at http://www.amexmail.com/?A=1 Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=12823t=12253 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: WAN link funnies - UP UP but no comms- on same subnet!!! [7:12824]
I have seen weird behavior from a burned serial port. All reported up but no traffic moving. Andrew Larkins wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... HI all, Strange problem here. The serial interface are UP UP on both sides, but we are not able to ping each other - even though directly connected. A debug ip ICMP on the remote site shows the ping coming through and replying, but the reply never gets back. Also the remote site saw my router using CDP, but I do not see him. Any ideas?? I believe this is Telco related, but the line shows clean from the interface stats Andrew Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=12824t=12824 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
ipsec and nat [7:12825]
Anyone confirm whether pix, concentrator or ipsec router has the ability to nat over ipsec? i know that I can nat everything on a router behind one of these devices. Thanks. _ Get your FREE download of MSN Explorer at http://explorer.msn.com Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=12825t=12825 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Packet Sizes [7:12826]
Does anyone have a list of average packet sizes for different services? Things like FTP, HTTP, ICMP, TFTP and the like. Just something general is fine, I am aware that there is no hard and fast rule. Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=12826t=12826 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
ipsec and nat [7:12827]
I just found the answer. http://www.cisco.com/warp/public/759/ipj_3-4/ipj_3-4_nat.html _ Get your FREE download of MSN Explorer at http://explorer.msn.com Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=12827t=12827 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Cisco VPN Client [7:12828]
Greetings, Has anyone successfully used the Cisco VPN CLient v1.0a when the end hosts are both sitting behind firewalls (on separate networks). One network is behind a PIX 520; the other is behind Watch Guard firewall. I though I read somewhere that this client only works between Cisco hardware. Can anyone correct my ignorance and\or elaborate on how this is done? TIA, Jose Villatoro Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=12828t=12828 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Ports with PIX Firewall [7:12625]
It is my understanding that the PIX parses an ACL from top to bottom..the same as a router does. First match wins. Conduits looks at the entire list and then chooses the best match. Based on this, the ACL listed below will deny all TCP and UDP packets and therefore never even get to the permit statements. I would be very interested in hearing how this ACL works. Thank you, MikeN Farhan Ahmed wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... just put access-list acl_in deny tcp any any access-list acl_in deny udp any any access-list acl_in permit tcp 172.100.0.1 255.255.0.0 any eq www access-list acl_in permit tcp 172.100.0.1 255.255.0.0 any eq smtp access-list acl_in permit tcp 172.100.0.1 255.255.0.0 any eq ftp access-group acl_in in interface inside let me know Building configuration... : Saved : PIX Version 6.0(1) nameif ethernet0 outside security0 nameif ethernet1 inside security100 enable password 2KFQnbNIdI.2KYOU encrypted passwd 2KFQnbNIdI.2KYOU encrypted hostname pixfirewall fixup protocol ftp 21 fixup protocol http 80 fixup protocol h323 1720 fixup protocol rsh 514 fixup protocol smtp 25 fixup protocol sqlnet 1521 fixup protocol sip 5060 fixup protocol skinny 2000 names access-list ping_acl permit icmp any any access-list ping_acl permit tcp any any eq www access-list ping_acl permit tcp any any access-list ping_acl permit udp any any access-list acl_out permit icmp any any access-list acl_out permit tcp any any eq www access-list acl_out permit tcp any any access-list acl_out permit udp any any pager lines 24 interface ethernet0 100basetx interface ethernet1 100basetx mtu outside 1500 mtu inside 1500 mtu ndtv 1500 ip address outside 172.110.0.2 255.255.0.0 ip address inside 172.100.0.1 255.255.0.0 ip audit info action alarm ip audit attack action alarm no failover failover timeout 0:00:00 failover poll 15 failover ip address outside 0.0.0.0 failover ip address inside 0.0.0.0 pdm history enable arp timeout 600 global (outside) 1 202.196.214.40-202.196.214.45 netmask 255.255.255.224 global (outside) 1 202.196.214.46 nat (inside) 1 172.100.0.0 255.255.0.0 0 0 access-group acl_out in interface outside access-group ping_acl in interface inside route outside 0.0.0.0 0.0.0.0 172.110.0.1 1 timeout xlate 3:00:00 timeout conn 1:00:00 half-closed 0:10:00 udp 0:02:00 rpc 0:10:00 h323 0:05:00 sip 0:30:00 sip_media 0:02:00 timeout uauth 0:05:00 absolute aaa-server TACACS+ protocol tacacs+ aaa-server RADIUS protocol radius no snmp-server location no snmp-server contact snmp-server community public no snmp-server enable traps no floodguard enable no sysopt route dnat telnet 172.100.0.0 255.255.0.0 inside telnet 172.120.0.0 255.255.0.0 inside telnet timeout 5 ssh timeout 5 terminal width 80 Cryptochecksum:b27e96cd58b6c27b71ff163898579460 [OK] pixfirewall# -Original Message- From: Support [mailto:[EMAIL PROTECTED]] Sent: Tuesday, July 17, 2001 2:54 PM To: [EMAIL PROTECTED] Subject: Ports with PIX Firewall Dear Farhan, This is my configuration. Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=12752t=12625 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: ipsec and nat [7:12825]
I believe you mean ipsec over nat, as opposed to nat over ipsec... the vpn concentrators can do it using udp port forwarding but this only work if you're using Cisco's vpn client. Fly Ers wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... Anyone confirm whether pix, concentrator or ipsec router has the ability to nat over ipsec? i know that I can nat everything on a router behind one of these devices. Thanks. _ Get your FREE download of MSN Explorer at http://explorer.msn.com Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=12829t=12825 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
ATM and MBS [7:12830]
Hello all, I need a little help understanding something here. I know that this is new to the 12.X software and I can't find any documentation on it. With ATM you can set the MBS (Maximum Burst cell-Size) Can someone explain how you calculate this and how you configure it. Basically any info would be great!!! Thanks in advanced, JF Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=12830t=12830 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: About CCNA WAN (640-410) [7:12737]
I printed copies of every install guide and technology brief from Cisco on ATM, and their Switches and Shelves. I found it enough to pass. The CCNP scares me though (I'll need a lot more experience) :) -Original Message- From: ljingyu [mailto:[EMAIL PROTECTED]] Sent: Tuesday, July 17, 2001 5:52 PM To: [EMAIL PROTECTED] Subject:About CCNA WAN (640-410) [7:12737] Hi, Who can give me some suggestion about the CCNA WAN Switching (#640-410) Exam.The only material I have is 'Installing Cisco WAN Switches (ICWS) Version 2.0' from Cisco and Boson Software Specialization Demo version 3.88.What materials should I use to study for the exam? What is the passing score? How can I get the futher referenced materials. And How much I should pay for the certification exam. Thanks.Any comments would be greatly appreciated. Looking forward to hearing from you. -- Jingyu, Li ACE,CCNA Privileged/Confidential Information may be contained in this message or attachments hereto. Please advise immediately if you or your employer do not consent to Internet email for messages of this kind. Opinions, conclusions and other information in this message that do not relate to the official business of this company shall be understood as neither given nor endorsed by it. Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=12832t=12737 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
IOS [7:12833]
What is the difference between an IOS that is IP and IP Plus? _ Get your FREE download of MSN Explorer at http://explorer.msn.com Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=12833t=12833 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
EIGRP on NBMA of Frame Relay - help! [7:12834]
Hi All, I have a hub-and-spoke topology with 3 routers. Router A acts as a hub router with pure dynamic multipoint on the Frame Relay network (NBMA). Router B and router C are spoke ones with no static mapping. The three router running EIGRP protocol with the same Autonomous System number. Problem: On router A, I can see all LAN/WAN subnets on router B and C learning through EIGRP. However, on router B (the spoke) I cannot see the subnets of router C (the other spoke of the hub), which it supposes to learn throught EIGRP. Vice versa, router C cannot see routes to subnets on router B. What's the problem with this picture? Any solution for this? The IP scheme for the 3 routers as follow. By the way, I turned off the auto-summary on EIGRP Router A: WAN IP = 192.168.1.1255.255.255.248 LAN IP = 10.1.1.1255.255.0.0 Router B:WAN IP = 192.168.1.2255.255.255.248 LAN IP = 10.2.1.1255.255.0.0 Router C:WAN IP = 192.168.1.3255.255.255.248 LAN IP = 10.3.1.1255.255.0.0 Thanks All in advance! Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=12834t=12834 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Question on Cat5k [7:12836]
I am looking to purchase a Catalyst switch for my department to play with. I have found the deal from Optsys with Cat5k Sup1 and WS-X5010 Blade but am wondering about the capabilities of the switch.. Apparently the WS-X5010 is 24pt 10MBS as mentioned to me by Brad.. Assuming that I have a router with FastEthernet capabilities to run ISL, would the switch be able to handle this since the blade is not able to run 100mbs? I just want to make a good purchase for our lab.. At this time, we do not have any catalyst equipment. Thanks all for your help! Mike Munoz Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=12836t=12836 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: EIGRP on NBMA of Frame Relay - help! [7:12834]
SPLIT HORIZON A router will NOT advertise a route out the same interface it received it in on. Try sub-interfaces. Excerpt from Cisco http://www.cisco.com/univercd/cc/td/doc/product/software/ssr83/rpc_r/53992.h tm#xtocid2008062 Enabling and Disabling Split Horizon for IP Networks Normally, routers that are connected to broadcast-type IP networks and that use distance vector routing protocols employ the split horizon mechanism to prevent routing loops. Split horizon blocks information about routes from being advertised by a router out any interface from which that information originated. This behavior usually optimizes communications among multiple routers, particularly when links are broken. However, with nonbroadcast networks such as frame relay and SMDS, situations can arise for which this behavior is less than ideal. Use the no ip split-horizon interface subcommand to disable the split horizon mechanism. ip split-horizon no ip split-horizon For all interfaces except those for which either frame relay or SMDS encapsulation is enabled, the default condition for this command is ip split-horizon; in other words, the split horizon feature is active. If the interface configuration includes either the encapsulation frame-relay or encapsulation smds commands, the default is for split horizon to be disabled. Split horizon is not disabled by default for interfaces using any of the X.25 encapsulations. Note For networks that include links over X.25 PSNs, the neighbor interface subcommand can be used to defeat the split horizon feature. You can as an alternative explicitly specify the no ip split-horizon command in your configuration. However, if you do so, you must similarly disable split horizon for all routers in any relevant multicast groups on that network. If split horizon has been disabled on an interface and you wish to enable it, use the ip split-horizon interface subcommand to restore the split horizon mechanism. Note In general, Cisco recommends against changing the state of the default for this interface subcommand unless you are certain that your application requires doing so to properly advertise routes. Remember that if split horizon is disabled on a serial interface (and that interface is attached to a packet-switched network), you must disable split horizon for all routers in any relevant multicast groups on that network. Example: The following illustrates a simple example of disabling split horizon on a serial link. In this example, the serial link is connected to an X.25 network. interface serial 0 encapsulation x25 no ip split-horizon Example of Implicit Split Horizon Conditions A typical situation in which the no ip split-horizon command would be useful is illustrated in Figure 14-10a. This figure depicts two IP subnets that are both accessible via a serial interface on Router C (connected to frame relay network). In this example, the serial interface on Router C accommodates one of the subnets via the assignment of a secondary IP address. The Ethernet interfaces for Router A, Router B, and Router C (connected to IP networks 12.13.50.0, 10.20.40.0, and 20.155.120.0) all have split horizon enabled by default, while the serial interfaces connected to networks 128.125.1.0 and 131.108.1.0 all have split horizon disabled by default. The partial interface configuration specifications for each router that follow Figure 1-11 illustrate that the ip split-horizon interface subcommand is not explicitly configured under normal conditions for any of the interfaces. In this example, split horizon must be disabled in order for network 128.125.1.0 to be advertised into network 131.108.1.0, and vice versa. These subnets overlap at Router C, interface S0. If split horizon were enabled on serial interface S0, it would not advertise a route back into the frame relay network for either of these subnets. -Original Message- From: Thomas [mailto:[EMAIL PROTECTED]] Sent: Wednesday, July 18, 2001 10:19 AM To: [EMAIL PROTECTED] Subject:EIGRP on NBMA of Frame Relay - help! [7:12834] Hi All, I have a hub-and-spoke topology with 3 routers. Router A acts as a hub router with pure dynamic multipoint on the Frame Relay network (NBMA). Router B and router C are spoke ones with no static mapping. The three router running EIGRP protocol with the same Autonomous System number. Problem: On router A, I can see all LAN/WAN subnets on router B and C learning through EIGRP. However, on router B (the spoke) I cannot see the subnets of router C (the other spoke of the hub), which it supposes to learn throught EIGRP. Vice versa, router C cannot see routes to subnets on router B. What's the problem with this picture? Any solution for this? The IP scheme for the 3 routers as follow. By the way, I turned off the auto-summary on EIGRP Router A: WAN IP = 192.168.1.1255.255.255.248 LAN IP = 10.1.1.1255.255.0.0 Router B:WAN IP = 192.168.1.2
Re: CCIE market FLOOD !! was: Current Wait time on the lab [7:12838]
The market conditions are really depressing right now but that does not mean that people give up their dreams and stop working towards them . If you look at all the certifications like CNE and MCSE they all had their better days and anyone who had them was king but not anymore .That is the certification market for you . Every certification has a life and it is upto the Company to give its certification a longer life by making it more and more difficult and I guess Cisco has done a commendable job on that for the past 8 years but I think what cisco needs right now is more people using thier products out their in the market so that they don't get crushed by the competition . So with that said , teh CCIE might still be able to get you in a lot of positions and then its upto you . Just my 2 cents Jaspreet Priscilla Oppenheimer wrote: At 10:31 PM 7/17/01, KY wrote: Here is what I came across from Mentortech's web site on the experience of a receiptionist they are looking for: Education Experience: At least one year previous experience as a receptionist, with multi-line phone system. What kind of phone system needs someone to get to level of being able to use it a year later? It's VoIP. Just kidding. ;-) A 12 year old can learn how to use any phone system in the world in less than 20mins. I guess in mentortech, they are looking for the Queen of experience. Or King. In the U.S. it is illegal to specify the sex of the job candidate you are seeking. I know the reality is every employer is looking for experienced people, but it does not mean it is not rediculous, at least in my eyes. The first one implented MPLS on their proudction network had to use inexperienced engineers doing it, I am pretty sure about that. Just my .02. KY Priscilla Oppenheimer http://www.priscilla.com Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=12838t=12838 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Question on Cat5k [7:12836]
The router should be able to run 10Mbs. The Switching technology doesn't care about the port speed -Original Message- From: Munoz, Michael [mailto:[EMAIL PROTECTED]] Sent: Wednesday, July 18, 2001 10:29 AM To: [EMAIL PROTECTED] Subject:Question on Cat5k [7:12836] I am looking to purchase a Catalyst switch for my department to play with. I have found the deal from Optsys with Cat5k Sup1 and WS-X5010 Blade but am wondering about the capabilities of the switch.. Apparently the WS-X5010 is 24pt 10MBS as mentioned to me by Brad.. Assuming that I have a router with FastEthernet capabilities to run ISL, would the switch be able to handle this since the blade is not able to run 100mbs? I just want to make a good purchase for our lab.. At this time, we do not have any catalyst equipment. Thanks all for your help! Mike Munoz Privileged/Confidential Information may be contained in this message or attachments hereto. Please advise immediately if you or your employer do not consent to Internet email for messages of this kind. Opinions, conclusions and other information in this message that do not relate to the official business of this company shall be understood as neither given nor endorsed by it. Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=12839t=12836 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: EIGRP on NBMA of Frame Relay - help! [7:12834]
You answered your own question in the first paragraph. If Router B and Router C have no static mapping, how will they be able to reach each other? Inverse ARP will only work from Router A to B and Router A to C. It will not let B learn C's IP address and vice versa. Add static maps on Router B for both Router A and C, and then on Router C add a static map for Router A and B. Make sure you add the broadcast keyword on the map statement. If that doesn't work, please let us know. I've never tried to configure EIGRP over multipoint frame relay before so this may be a learning experience. :-) HTH, John Thomas 7/18/01 11:19:08 AM Hi All, I have a hub-and-spoke topology with 3 routers. Router A acts as a hub router with pure dynamic multipoint on the Frame Relay network (NBMA). Router B and router C are spoke ones with no static mapping. The three router running EIGRP protocol with the same Autonomous System number. Problem: On router A, I can see all LAN/WAN subnets on router B and C learning through EIGRP. However, on router B (the spoke) I cannot see the subnets of router C (the other spoke of the hub), which it supposes to learn throught EIGRP. Vice versa, router C cannot see routes to subnets on router B. What's the problem with this picture? Any solution for this? The IP scheme for the 3 routers as follow. By the way, I turned off the auto-summary on EIGRP Router A: WAN IP = 192.168.1.1255.255.255.248 LAN IP = 10.1.1.1255.255.0.0 Router B:WAN IP = 192.168.1.2255.255.255.248 LAN IP = 10.2.1.1255.255.0.0 Router C:WAN IP = 192.168.1.3255.255.255.248 LAN IP = 10.3.1.1255.255.0.0 Thanks All in advance! Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=12840t=12834 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Cisco WinAmp skins [7:12706]
The website has locked out the content. Could someone put the skin up somewhere else. Thanks cisco skin wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... For those that use WinAmp: http://trebuchet.0catch.com/home.htm Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=12841t=12706 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Question on Cat5k [7:12836]
Thanks for the response.. I know the router is able to run at 10mbs.. I'm wondering about the Cat5 running at 10mbs.. I thought I remember reading that trunking is only possible at 100mbs.. I'm thinking that since the Cat is only at 10mbs, it would make it impossible for me to run trunking.. Thanks, Mike Munoz -Original Message- From: Ayers, Michael [mailto:[EMAIL PROTECTED]] Sent: Wednesday, July 18, 2001 1:24 PM To: 'Munoz, Michael'; [EMAIL PROTECTED] Subject: RE: Question on Cat5k [7:12836] The router should be able to run 10Mbs. The Switching technology doesn't care about the port speed -Original Message- From: Munoz, Michael [mailto:[EMAIL PROTECTED]] Sent: Wednesday, July 18, 2001 10:29 AM To: [EMAIL PROTECTED] Subject:Question on Cat5k [7:12836] I am looking to purchase a Catalyst switch for my department to play with. I have found the deal from Optsys with Cat5k Sup1 and WS-X5010 Blade but am wondering about the capabilities of the switch.. Apparently the WS-X5010 is 24pt 10MBS as mentioned to me by Brad.. Assuming that I have a router with FastEthernet capabilities to run ISL, would the switch be able to handle this since the blade is not able to run 100mbs? I just want to make a good purchase for our lab.. At this time, we do not have any catalyst equipment. Thanks all for your help! Mike Munoz Privileged/Confidential Information may be contained in this message or attachments hereto. Please advise immediately if you or your employer do not consent to Internet email for messages of this kind. Opinions, conclusions and other information in this message that do not relate to the official business of this company shall be understood as neither given nor endorsed by it. Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=12842t=12836 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Question on Cat5k [7:12836]
The WS-X5010 will not do ISL. The WS-X5213A is what you are after. It is 12 ports 10/100 with ISL support. -Original Message- From: Munoz, Michael [mailto:[EMAIL PROTECTED]] Sent: Wednesday, July 18, 2001 1:29 PM To: [EMAIL PROTECTED] Subject: Question on Cat5k [7:12836] I am looking to purchase a Catalyst switch for my department to play with. I have found the deal from Optsys with Cat5k Sup1 and WS-X5010 Blade but am wondering about the capabilities of the switch.. Apparently the WS-X5010 is 24pt 10MBS as mentioned to me by Brad.. Assuming that I have a router with FastEthernet capabilities to run ISL, would the switch be able to handle this since the blade is not able to run 100mbs? I just want to make a good purchase for our lab.. At this time, we do not have any catalyst equipment. Thanks all for your help! Mike Munoz Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=12843t=12836 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Question on Cat5k [7:12836]
Two things... 1) The sup module will have a few 100mbps Ethernet ports, so you should be able to trunk like a champion. 2) Brad at Optsys is a great guy; I've done a bunch of stuff with him and I've always come out ahead. --- Dennis -Original Message- From: Munoz, Michael [mailto:[EMAIL PROTECTED]] Sent: Wednesday, July 18, 2001 10:29 AM To: [EMAIL PROTECTED] Subject: Question on Cat5k [7:12836] I am looking to purchase a Catalyst switch for my department to play with. I have found the deal from Optsys with Cat5k Sup1 and WS-X5010 Blade but am wondering about the capabilities of the switch.. Apparently the WS-X5010 is 24pt 10MBS as mentioned to me by Brad.. Assuming that I have a router with FastEthernet capabilities to run ISL, would the switch be able to handle this since the blade is not able to run 100mbs? I just want to make a good purchase for our lab.. At this time, we do not have any catalyst equipment. Thanks all for your help! Mike Munoz Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=12845t=12836 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
5505 Password recovery [7:12848]
Hi, I have a 5505 that im trying reset to factory defaults. I have done this many times and cant seen to get it to reset. I can get to the enable prompt, however, its not excepting the null password. It had Tacacs setup on it, i was wondering maybe if that was the problem...also, it isnt connected to anything at but my PC. Thanks Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=12848t=12848 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: IOS [7:12833]
What is the difference between an IOS that is IP and IP Plus? Voice and ATM capabilities mostly. I just found this link that explains the feature sets by hardware platform. I don't know if this is new or I was never able to find it before. But it sure is Cool !!! http://www.cisco.com/univercd/cc/td/doc/product/software/ios121/121relnt/xpr n121/121feats.htm (watch the word wrap) Enjoy Tony M. #6172 Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=12846t=12833 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: EIGRP on NBMA of Frame Relay - help! [7:12834]
Someone else just pointed out something that I forgot about and I wanted to clarify. IP split horizon is disabled by default on frame relay interfaces when running IGRP or RIP but *not* EIGRP. So, the other poster is correct. You will need to explicitly disable split horizon, as well, for updates to pass correctly. John John Neiberger 7/18/01 11:45:48 AM You answered your own question in the first paragraph. If Router B and Router C have no static mapping, how will they be able to reach each other? Inverse ARP will only work from Router A to B and Router A to C. It will not let B learn C's IP address and vice versa. Add static maps on Router B for both Router A and C, and then on Router C add a static map for Router A and B. Make sure you add the broadcast keyword on the map statement. If that doesn't work, please let us know. I've never tried to configure EIGRP over multipoint frame relay before so this may be a learning experience. :-) HTH, John Thomas 7/18/01 11:19:08 AM Hi All, I have a hub-and-spoke topology with 3 routers. Router A acts as a hub router with pure dynamic multipoint on the Frame Relay network (NBMA). Router B and router C are spoke ones with no static mapping. The three router running EIGRP protocol with the same Autonomous System number. Problem: On router A, I can see all LAN/WAN subnets on router B and C learning through EIGRP. However, on router B (the spoke) I cannot see the subnets of router C (the other spoke of the hub), which it supposes to learn throught EIGRP. Vice versa, router C cannot see routes to subnets on router B. What's the problem with this picture? Any solution for this? The IP scheme for the 3 routers as follow. By the way, I turned off the auto-summary on EIGRP Router A: WAN IP = 192.168.1.1255.255.255.248 LAN IP = 10.1.1.1255.255.0.0 Router B:WAN IP = 192.168.1.2255.255.255.248 LAN IP = 10.2.1.1255.255.0.0 Router C:WAN IP = 192.168.1.3255.255.255.248 LAN IP = 10.3.1.1255.255.0.0 Thanks All in advance! Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=12844t=12834 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
FW: Question on Cat5k - The answer [7:12847]
I think there is some confusion here. The sup module has 100mbps ports, so you hook up the hosts to the 10mbps ports and the trunking port comes off the sup. Works great... --- Dennis -Original Message- From: Maccubbin, Duncan [mailto:[EMAIL PROTECTED]] Sent: Wednesday, July 18, 2001 10:56 AM To: [EMAIL PROTECTED] Subject: RE: Question on Cat5k [7:12836] The WS-X5010 will not do ISL. The WS-X5213A is what you are after. It is 12 ports 10/100 with ISL support. -Original Message- From: Munoz, Michael [mailto:[EMAIL PROTECTED]] Sent: Wednesday, July 18, 2001 1:29 PM To: [EMAIL PROTECTED] Subject: Question on Cat5k [7:12836] I am looking to purchase a Catalyst switch for my department to play with. I have found the deal from Optsys with Cat5k Sup1 and WS-X5010 Blade but am wondering about the capabilities of the switch.. Apparently the WS-X5010 is 24pt 10MBS as mentioned to me by Brad.. Assuming that I have a router with FastEthernet capabilities to run ISL, would the switch be able to handle this since the blade is not able to run 100mbs? I just want to make a good purchase for our lab.. At this time, we do not have any catalyst equipment. Thanks all for your help! Mike Munoz Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=12847t=12847 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Question on Cat5k [7:12836]
Hello The Sup1 will support two 100Mbps connections, either fibre or UTP/MII from memory depending on supervisor model. I'm pretty sure that the Sup1 supports ISL trunking, but find out how much memory the Sup1 has - if it is 8MB, you are limited in the versions of CatOS you can run to about 2.3, if you have 20MB I think you can go through to version 4.5. The more recent the version, the more features. CCxP level switching material seems to focus on a Cat5K for most of the L2 switching features, so it's not to bad if the price is right. Ross Munoz, Michael wrote: Hello: I am looking to purchase a Catalyst switch for my department to play with. I have found the deal from Optsys with Cat5k Sup1 and WS-X5010 Blade but am wondering about the capabilities of the switch.. Apparently the WS-X5010 is 24pt 10MBS as mentioned to me by Brad.. Assuming that I have a router with FastEthernet capabilities to run ISL, would the switch be able to handle this since the blade is not able to run 100mbs? I just want to make a good purchase for our lab.. At this time, we do not have any catalyst equipment. Thanks all for your help! Mike Munoz Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=12849t=12836 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Question on Cat5k - The answer [7:12847]
No confusion, he asked about the 10mbps ports. They couldn't do what he asked. I told him which blade did. Yes, he can trunk through the Sup port. He needs to makes sure they are TX and not FX though...unless his router has FX. -Original Message- From: Dennis Laganiere [mailto:[EMAIL PROTECTED]] Sent: Wednesday, July 18, 2001 2:15 PM To: [EMAIL PROTECTED] Subject: FW: Question on Cat5k - The answer [7:12847] I think there is some confusion here. The sup module has 100mbps ports, so you hook up the hosts to the 10mbps ports and the trunking port comes off the sup. Works great... --- Dennis -Original Message- From: Maccubbin, Duncan [mailto:[EMAIL PROTECTED]] Sent: Wednesday, July 18, 2001 10:56 AM To: [EMAIL PROTECTED] Subject: RE: Question on Cat5k [7:12836] The WS-X5010 will not do ISL. The WS-X5213A is what you are after. It is 12 ports 10/100 with ISL support. -Original Message- From: Munoz, Michael [mailto:[EMAIL PROTECTED]] Sent: Wednesday, July 18, 2001 1:29 PM To: [EMAIL PROTECTED] Subject: Question on Cat5k [7:12836] I am looking to purchase a Catalyst switch for my department to play with. I have found the deal from Optsys with Cat5k Sup1 and WS-X5010 Blade but am wondering about the capabilities of the switch.. Apparently the WS-X5010 is 24pt 10MBS as mentioned to me by Brad.. Assuming that I have a router with FastEthernet capabilities to run ISL, would the switch be able to handle this since the blade is not able to run 100mbs? I just want to make a good purchase for our lab.. At this time, we do not have any catalyst equipment. Thanks all for your help! Mike Munoz Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=12850t=12847 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Ports with PIX Firewall [7:12625]
sorry just a copy paste mistake access-list acl_in permit tcp 172.100.0.1 255.255.0.0 any eq www access-list acl_in permit tcp 172.100.0.1 255.255.0.0 any eq smtp access-list acl_in permit tcp 172.100.0.1 255.255.0.0 any eq ftp access-list acl_in deny tcp any any access-list acl_in deny udp any any access-group acl_in in interface inside -Original Message- From: MikeN [mailto:[EMAIL PROTECTED]] Sent: Wednesday, July 18, 2001 8:16 PM To: [EMAIL PROTECTED] Subject: Re: Ports with PIX Firewall [7:12625] It is my understanding that the PIX parses an ACL from top to bottom..the same as a router does. First match wins. Conduits looks at the entire list and then chooses the best match. Based on this, the ACL listed below will deny all TCP and UDP packets and therefore never even get to the permit statements. I would be very interested in hearing how this ACL works. Thank you, MikeN Farhan Ahmed wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... just put access-list acl_in deny tcp any any access-list acl_in deny udp any any access-list acl_in permit tcp 172.100.0.1 255.255.0.0 any eq www access-list acl_in permit tcp 172.100.0.1 255.255.0.0 any eq smtp access-list acl_in permit tcp 172.100.0.1 255.255.0.0 any eq ftp access-group acl_in in interface inside let me know Building configuration... : Saved : PIX Version 6.0(1) nameif ethernet0 outside security0 nameif ethernet1 inside security100 enable password 2KFQnbNIdI.2KYOU encrypted passwd 2KFQnbNIdI.2KYOU encrypted hostname pixfirewall fixup protocol ftp 21 fixup protocol http 80 fixup protocol h323 1720 fixup protocol rsh 514 fixup protocol smtp 25 fixup protocol sqlnet 1521 fixup protocol sip 5060 fixup protocol skinny 2000 names access-list ping_acl permit icmp any any access-list ping_acl permit tcp any any eq www access-list ping_acl permit tcp any any access-list ping_acl permit udp any any access-list acl_out permit icmp any any access-list acl_out permit tcp any any eq www access-list acl_out permit tcp any any access-list acl_out permit udp any any pager lines 24 interface ethernet0 100basetx interface ethernet1 100basetx mtu outside 1500 mtu inside 1500 mtu ndtv 1500 ip address outside 172.110.0.2 255.255.0.0 ip address inside 172.100.0.1 255.255.0.0 ip audit info action alarm ip audit attack action alarm no failover failover timeout 0:00:00 failover poll 15 failover ip address outside 0.0.0.0 failover ip address inside 0.0.0.0 pdm history enable arp timeout 600 global (outside) 1 202.196.214.40-202.196.214.45 netmask 255.255.255.224 global (outside) 1 202.196.214.46 nat (inside) 1 172.100.0.0 255.255.0.0 0 0 access-group acl_out in interface outside access-group ping_acl in interface inside route outside 0.0.0.0 0.0.0.0 172.110.0.1 1 timeout xlate 3:00:00 timeout conn 1:00:00 half-closed 0:10:00 udp 0:02:00 rpc 0:10:00 h323 0:05:00 sip 0:30:00 sip_media 0:02:00 timeout uauth 0:05:00 absolute aaa-server TACACS+ protocol tacacs+ aaa-server RADIUS protocol radius no snmp-server location no snmp-server contact snmp-server community public no snmp-server enable traps no floodguard enable no sysopt route dnat telnet 172.100.0.0 255.255.0.0 inside telnet 172.120.0.0 255.255.0.0 inside telnet timeout 5 ssh timeout 5 terminal width 80 Cryptochecksum:b27e96cd58b6c27b71ff163898579460 [OK] pixfirewall# -Original Message- From: Support [mailto:[EMAIL PROTECTED]] Sent: Tuesday, July 17, 2001 2:54 PM To: [EMAIL PROTECTED] Subject: Ports with PIX Firewall Dear Farhan, This is my configuration. Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=12835t=12625 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Ports with PIX Firewall [7:12625]
remember, each line is read as a single entity. as it reads the first line it makes the comparison. If it finds a match, it does what it is told to do.. Once a deny is made, then it will deny and drop the transmission, without moving to the next line. When making access lists, you must carefully plan this out. and remember the implicit deny at the end of the list. = Original Message From MikeN = It is my understanding that the PIX parses an ACL from top to bottom..the same as a router does. First match wins. Conduits looks at the entire list and then chooses the best match. Based on this, the ACL listed below will deny all TCP and UDP packets and therefore never even get to the permit statements. I would be very interested in hearing how this ACL works. Thank you, MikeN Farhan Ahmed wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... just put access-list acl_in deny tcp any any access-list acl_in deny udp any any access-list acl_in permit tcp 172.100.0.1 255.255.0.0 any eq www access-list acl_in permit tcp 172.100.0.1 255.255.0.0 any eq smtp access-list acl_in permit tcp 172.100.0.1 255.255.0.0 any eq ftp access-group acl_in in interface inside let me know Building configuration... : Saved : PIX Version 6.0(1) nameif ethernet0 outside security0 nameif ethernet1 inside security100 enable password 2KFQnbNIdI.2KYOU encrypted passwd 2KFQnbNIdI.2KYOU encrypted hostname pixfirewall fixup protocol ftp 21 fixup protocol http 80 fixup protocol h323 1720 fixup protocol rsh 514 fixup protocol smtp 25 fixup protocol sqlnet 1521 fixup protocol sip 5060 fixup protocol skinny 2000 names access-list ping_acl permit icmp any any access-list ping_acl permit tcp any any eq www access-list ping_acl permit tcp any any access-list ping_acl permit udp any any access-list acl_out permit icmp any any access-list acl_out permit tcp any any eq www access-list acl_out permit tcp any any access-list acl_out permit udp any any pager lines 24 interface ethernet0 100basetx interface ethernet1 100basetx mtu outside 1500 mtu inside 1500 mtu ndtv 1500 ip address outside 172.110.0.2 255.255.0.0 ip address inside 172.100.0.1 255.255.0.0 ip audit info action alarm ip audit attack action alarm no failover failover timeout 0:00:00 failover poll 15 failover ip address outside 0.0.0.0 failover ip address inside 0.0.0.0 pdm history enable arp timeout 600 global (outside) 1 202.196.214.40-202.196.214.45 netmask 255.255.255.224 global (outside) 1 202.196.214.46 nat (inside) 1 172.100.0.0 255.255.0.0 0 0 access-group acl_out in interface outside access-group ping_acl in interface inside route outside 0.0.0.0 0.0.0.0 172.110.0.1 1 timeout xlate 3:00:00 timeout conn 1:00:00 half-closed 0:10:00 udp 0:02:00 rpc 0:10:00 h323 0:05:00 sip 0:30:00 sip_media 0:02:00 timeout uauth 0:05:00 absolute aaa-server TACACS+ protocol tacacs+ aaa-server RADIUS protocol radius no snmp-server location no snmp-server contact snmp-server community public no snmp-server enable traps no floodguard enable no sysopt route dnat telnet 172.100.0.0 255.255.0.0 inside telnet 172.120.0.0 255.255.0.0 inside telnet timeout 5 ssh timeout 5 terminal width 80 Cryptochecksum:b27e96cd58b6c27b71ff163898579460 [OK] pixfirewall# -Original Message- From: Support [mailto:[EMAIL PROTECTED]] Sent: Tuesday, July 17, 2001 2:54 PM To: [EMAIL PROTECTED] Subject: Ports with PIX Firewall Dear Farhan, This is my configuration. Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=12831t=12625 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Cisco WinAmp skins [7:12706]
second that -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Scott Sent: Wednesday, July 18, 2001 1:51 PM To: [EMAIL PROTECTED] Subject: Re: Cisco WinAmp skins [7:12706] The website has locked out the content. Could someone put the skin up somewhere else. Thanks cisco skin wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... For those that use WinAmp: http://trebuchet.0catch.com/home.htm Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=12851t=12706 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: WAN link funnies - UP UP but no comms- on same subnet!!! [7:12852]
Based on what I'm seeing, I think there is a problem with the data returning from the telco cloud. Can you loopback the CSU/DSU and see if your RX counter increments? If yes, Then switch the cable from the csu/dsu to the smartjack. Un=loop and test. If it still doesn't work, Loopback the smartjack and see if you can see the loopback remotely. If you can't, call the Loop Provider, there is a problem with the loop. -ejh -Original Message- From: Andrew Larkins [mailto:[EMAIL PROTECTED]] Sent: Wednesday, July 18, 2001 6:06 AM To: [EMAIL PROTECTED] Subject: WAN link funnies - UP UP but no comms- on same subnet!!! [7:12774] HI all, Strange problem here. The serial interface are UP UP on both sides, but we are not able to ping each other - even though directly connected. A debug ip ICMP on the remote site shows the ping coming through and replying, but the reply never gets back. Also the remote site saw my router using CDP, but I do not see him. Any ideas?? I believe this is Telco related, but the line shows clean from the interface stats Andrew Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=12852t=12852 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
7513 s 4000 sale [7:12853]
I have two 7513 each loaded with extras for sale and a 4500. Will take the best offer before sticking it on ebay. _ Get your FREE download of MSN Explorer at http://explorer.msn.com Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=12853t=12853 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Packet Sizes [7:12826]
Guy, The average packet sizes is not as much dependant on the protocol as it is on the physical medium although the protocol does count. Out of the ones you mention ICMP should be the smallest by the nature of the beast (64 bytes). The rest if configured for Eth would have a max payload of 1500 bytes. If Token Ring a max of 4400 bytes (roughly) as it depends on Token rotation time. HTH, Phil. --- Lupi, Guy wrote: Does anyone have a list of average packet sizes for different services? Things like FTP, HTTP, ICMP, TFTP and the like. Just something general is fine, I am aware that there is no hard and fast rule. [EMAIL PROTECTED] Do You Yahoo!? Get your free @yahoo.co.uk address at http://mail.yahoo.co.uk or your free @yahoo.ie address at http://mail.yahoo.ie Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=12857t=12826 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Packet Sizes [7:12826]
FTP generally uses a full-size packet: 1500 bytes on Ethernet, not counting the header, CRC, preamble, inter-frame gap, or any VLAN or MPLS tagging. HTTP does not use a full-size packet usually. You would think it would, but it tends to use a 500-600 byte packet size. Using a shorter packet size improves perceived performance because the screen can show partial data while more data is en route. ICMP depends on what you are doing and what parameters you use. Most error or warning messages would be very short, probably 64 bytes or so. If it's ICMP echo (ping), then the user can specify the number of bytes. TFTP sends data in 512 byte blocks. Add the 8-byte UDP and 20-byte IP header. For all of these examples, there may be additional shorter packets for ACKs and other overhead. Priscilla At 11:41 AM 7/18/01, Lupi, Guy wrote: Does anyone have a list of average packet sizes for different services? Things like FTP, HTTP, ICMP, TFTP and the like. Just something general is fine, I am aware that there is no hard and fast rule. Priscilla Oppenheimer http://www.priscilla.com Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=12855t=12826 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: To CCIE's without a job [7:12805]
That's a scary thought: CCIEs who develop protocols. ;-] They are looking for software engineers. They aren't going to find many that have a CCIE? It's a different skill set and requires a different type of personality. Priscilla At 09:41 AM 7/18/01, Ole Drews Jensen wrote: Forgive me for sending this here, I know there's a place for job discussions, but I noticed that there have been several e-mails about how CCIE's now have a harder time getting jobs. I received this e-mail (look at the message included after my signature) on another Cisco list I'm a member of: Hth, Ole ~~~ Ole Drews Jensen Systems Network Manager CCNA, MCSE, MCP+I RWR Enterprises, Inc. [EMAIL PROTECTED] ~~~ http://www.OleDrews.com/CCNP ~~~ NEED A JOB ??? http://www.oledrews.com/job ~~~ Message: 1 Date: Tue, 17 Jul 2001 15:11:26 - From: JDO Subject: Looking for a Special Kind of CCIE Hello, My name is Johnna Smith and I work for a placement firm in Dallas, Texas. I am in desperate need of a CCIE that DEVELOPS routing protocols. I need them to have BGP, DSPF, IS-IS, and MPLS. The must be a software engineer and they must be degreed. If any of you could help me, please give me a call or shoot me an email at [EMAIL PROTECTED] or at 972-991-7569. Just to take a look at someof our other positions please go to We also work with another agency that focuese more on IT, you can find their site at Thanks Johnna Priscilla Oppenheimer http://www.priscilla.com Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=12854t=12805 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Cisco WinAmp skins [7:12706]
If someone will e-mail it to me, I will make it available on my server. No limitations on my feed. Kelly D Griffin, CCNA, CCDA Network Engineer Kg2 Network Design 877.418.4025 http://www.kg2.com - Original Message - From: Chris Stocker To: Sent: Wednesday, July 18, 2001 1:39 PM Subject: RE: Cisco WinAmp skins [7:12706] second that -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Scott Sent: Wednesday, July 18, 2001 1:51 PM To: [EMAIL PROTECTED] Subject: Re: Cisco WinAmp skins [7:12706] The website has locked out the content. Could someone put the skin up somewhere else. Thanks cisco skin wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... For those that use WinAmp: http://trebuchet.0catch.com/home.htm Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=12856t=12706 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: To CCIE's without a job [7:12805]
Even more scary will be the day that I.T. agents develop brains. Phil. --- Priscilla Oppenheimer wrote: That's a scary thought: CCIEs who develop protocols. ;-] They are looking for software engineers. They aren't going to find many that have a CCIE? It's a different skill set and requires a different type of personality. Priscilla At 09:41 AM 7/18/01, Ole Drews Jensen wrote: Forgive me for sending this here, I know there's a place for job discussions, but I noticed that there have been several e-mails about how CCIE's now have a harder time getting jobs. I received this e-mail (look at the message included after my signature) on another Cisco list I'm a member of: Hth, Ole ~~~ Ole Drews Jensen Systems Network Manager CCNA, MCSE, MCP+I RWR Enterprises, Inc. [EMAIL PROTECTED] ~~~ http://www.OleDrews.com/CCNP ~~~ NEED A JOB ??? http://www.oledrews.com/job ~~~ Message: 1 Date: Tue, 17 Jul 2001 15:11:26 - From: JDO Subject: Looking for a Special Kind of CCIE Hello, My name is Johnna Smith and I work for a placement firm in Dallas, Texas. I am in desperate need of a CCIE that DEVELOPS routing protocols. I need them to have BGP, DSPF, IS-IS, and MPLS. The must be a software engineer and they must be degreed. If any of you could help me, please give me a call or shoot me an email at [EMAIL PROTECTED] or at 972-991-7569. Just to take a look at someof our other positions please go to We also work with another agency that focuese more on IT, you can find their site at Thanks Johnna Priscilla Oppenheimer http://www.priscilla.com [EMAIL PROTECTED] Do You Yahoo!? Get your free @yahoo.co.uk address at http://mail.yahoo.co.uk or your free @yahoo.ie address at http://mail.yahoo.ie Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=12858t=12805 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: To CCIE's without a job [7:12805]
Or...lack there of ;-) -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Priscilla Oppenheimer Sent: Wednesday, July 18, 2001 1:52 PM To: [EMAIL PROTECTED] Subject: Re: To CCIE's without a job [7:12805] That's a scary thought: CCIEs who develop protocols. ;-] They are looking for software engineers. They aren't going to find many that have a CCIE? It's a different skill set and requires a different type of personality. Priscilla At 09:41 AM 7/18/01, Ole Drews Jensen wrote: Forgive me for sending this here, I know there's a place for job discussions, but I noticed that there have been several e-mails about how CCIE's now have a harder time getting jobs. I received this e-mail (look at the message included after my signature) on another Cisco list I'm a member of: Hth, Ole ~~~ Ole Drews Jensen Systems Network Manager CCNA, MCSE, MCP+I RWR Enterprises, Inc. [EMAIL PROTECTED] ~~~ http://www.OleDrews.com/CCNP ~~~ NEED A JOB ??? http://www.oledrews.com/job ~~~ Message: 1 Date: Tue, 17 Jul 2001 15:11:26 - From: JDO Subject: Looking for a Special Kind of CCIE Hello, My name is Johnna Smith and I work for a placement firm in Dallas, Texas. I am in desperate need of a CCIE that DEVELOPS routing protocols. I need them to have BGP, DSPF, IS-IS, and MPLS. The must be a software engineer and they must be degreed. If any of you could help me, please give me a call or shoot me an email at [EMAIL PROTECTED] or at 972-991-7569. Just to take a look at someof our other positions please go to We also work with another agency that focuese more on IT, you can find their site at Thanks Johnna Priscilla Oppenheimer http://www.priscilla.com Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=12859t=12805 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Cisco WinAmp Skins-- new site for downloads [7:12860]
If anyone has any cool pictures of network-related products, send them my way and I'll make a skin for them. Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=12860t=12860 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: CCIE market FLOOD !! was: Current Wait time on the lab [7:12861]
Its my believe that by being a CISCO person, it does not UN-qualify any one of us to work with other vendor equipment. What we now need to do is learn the other companies products so we have the edge on the situation. With some minor tweaks we should be able to support other equipment. This applies to all pc environments. The basics are the same, the rules - different order. The market conditions are really depressing right now but that does not mean that people give up their dreams and stop working towards them . If you look at all the certifications like CNE and MCSE they all had their better days and anyone who had them was king but not anymore .That is the certification market for you . Every certification has a life and it is upto the Company to give its certification a longer life by making it more and more difficult and I guess Cisco has done a commendable job on that for the past 8 years but I think what cisco needs right now is more people using thier products out their in the market so that they don't get crushed by the competition . So with that said , teh CCIE might still be able to get you in a lot of positions and then its upto you . Just my 2 cents Jaspreet Priscilla Oppenheimer wrote: At 10:31 PM 7/17/01, KY wrote: Here is what I came across from Mentortech's web site on the experience of a receiptionist they are looking for: Education Experience: At least one year previous experience as a receptionist, with multi-line phone system. What kind of phone system needs someone to get to level of being able to use it a year later? It's VoIP. Just kidding. ;-) A 12 year old can learn how to use any phone system in the world in less than 20mins. I guess in mentortech, they are looking for the Queen of experience. Or King. In the U.S. it is illegal to specify the sex of the job candidate you are seeking. I know the reality is every employer is looking for experienced people, but it does not mean it is not rediculous, at least in my eyes. The first one implented MPLS on their proudction network had to use inexperienced engineers doing it, I am pretty sure about that. Just my .02. KY Priscilla Oppenheimer http://www.priscilla.com Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=12861t=12861 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: LSA type-5 suppression across OSPF area boundaries?? [7:12862]
hi all, thanks for all the replies - gave me some stuff to chew over have been looking into this some more - it's still bugging me. my investigations revealed: * making the area stub or total-stub will not work as type-5s are not permitted in the area. all routers set E=0 in the options field to denote stub, and won't talk to non-stub neighbors. no fooling them apparently... * summary-address will only summarize external routes originated on that local router - hence cannot use to summarize for non-local type-5s I cannot believe that it is not possible to do something as simple as this without resorting to multiple OSPF instances and redistributing between them!! cheers Andy Peter Van Oene wrote on July 13, 2001 at 6:43 PM: Making the area stub will explicitly deny the use of type 4/5 in the area, hence, this should not work. Summarization at the ABR would make the most sense to me. Odd that it doesn't seem to work. pete *** REPLY SEPARATOR *** On 7/12/2001 at 6:40 PM John Neiberger wrote: Could you accomplish this by making the area containing the ASBR a stubby area? IIRC, you can put an ASBR inside a stubby area but the Type-5 LSAs will not leave the area. I'm not sure about that, but I'd swear I read that somewhere recently. Okay, I just checked this in Giles, 2nd edition. According to him, the above is true. But who knows if it works in the real world. Good luck! John [EMAIL PROTECTED] 7/12/01 1:58:11 PM hi all, have a problem that has been nagging at me for a good long time now... say you have a pair of ABRs sitting at an OSPF area boundary, and an ASBR is originating Type-5 LSAs from inside the non-backbone area. Is there an easy way to suppress the propagation of the type-5s outside the area? I would have a range statement on the ABRs to advertise the area aggregate, I just want to suppress the more specifics. I have tried using 'distribute-list out ' which would do it for me, but for some reason IOS won't allow this with OSPF: router(config)#router os 1 router(config-router)#distribute-list 1 out FastEthernet 0/0 % Interface not allowed with OUT for OSPF router(config-router)# I suppose that allowing this could potentially screw up routing if done without some care, but JunOS lets you do exactly this sort of thing - you can produce some wacky policies, but at least you have the option ;-) btw - I know I could prolly do this with multiple OSPF instances and redistribute between them, but I *really* don't want to get into this level of complexity. thanks in advance - this one has been driving me mad Andy Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=12862t=12862 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: To CCIE's without a job [7:12805]
I want to be a developer for DSPF What is that? Dumbest Shortest Path First ? My name is Johnna Smith and I work for a placement firm in Dallas, Texas. I am in desperate need of a CCIE that DEVELOPS routing protocols. I need them to have BGP, DSPF, IS-IS, and MPLS. The must be a software engineer and they must be degreed. Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=12863t=12805 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
E1 interface [7:12864]
Hey, I know that this sounds dumb, but I've never had to install, configure, or support an E1 interface. So today I went to put together a sales order for someone installing a router in Europe, and the only E1 interfaces I can find are PRI and multiflex (?) for doing voice and data. Obviously I need to get more info from the provider over there, but I'm wondering what I'm missing. With a T1 interface, you just have to decide whether or not it gets an internal CSU/DSU or not and then order a WIC-T1 or a WIC-1DSU-T1. Help! Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=12864t=12864 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: To CCIE's without a job [7:12805]
There are an awful lot of 'They musts' in her original email, I am sort of suprised at the reqs. -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Tony Medeiros Sent: Wednesday, July 18, 2001 2:42 PM To: [EMAIL PROTECTED] Subject: Re: To CCIE's without a job [7:12805] I want to be a developer for DSPF What is that? Dumbest Shortest Path First ? My name is Johnna Smith and I work for a placement firm in Dallas, Texas. I am in desperate need of a CCIE that DEVELOPS routing protocols. I need them to have BGP, DSPF, IS-IS, and MPLS. The must be a software engineer and they must be degreed. Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=12866t=12805 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: To CCIE's without a job [7:12805]
I'd be more concerned that recruiters are starting to look for peopled who have been de-greed. This could hurt me personally, because I've definitely got my greed chromosome intact. I had no idea this could be removed. Next they'll be trying to have our spines removed and call us de-boned. --- Dennis -Original Message- From: Tony Medeiros [mailto:[EMAIL PROTECTED]] Sent: Wednesday, July 18, 2001 12:42 PM To: [EMAIL PROTECTED] Subject: Re: To CCIE's without a job [7:12805] I want to be a developer for DSPF What is that? Dumbest Shortest Path First ? My name is Johnna Smith and I work for a placement firm in Dallas, Texas. I am in desperate need of a CCIE that DEVELOPS routing protocols. I need them to have BGP, DSPF, IS-IS, and MPLS. The must be a software engineer and they must be degreed. Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=12865t=12805 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
