Re: Word of Caution - RE: Shipping Home Lab Equipment [7:12913]
I agree, we deal with this as well in our area and I cant believe their disregard for costly valuables. It seems like an easy way out without resposibility for them. I would just like them to consider how they would handle it if it were their Catalyst 5002 that was being delivered to improve the network, that switches the oh so precious data they rely on. ;-) Leigh Anne Chisholm wrote: Just a word of caution for everyone out there that's buying equipment for their home labs. Yesterday I had a Catalyst 5002 delivered to my home by UPS. It was packaged in a Dell computer box and left at my door. The driver didn't wait for a signture or even to see if anyone was home. The box was left plain view from the street. Apparently, that's UPS's policy. Unless the shipper indicates adult signature required, UPS can just drop your package at the front door and leave. There's the fact that since it was in plain view of the street and since it was in a box that would be very enticing to anyone passing by, that was my first concern... but the other fact is that it had just finished raining - and it was very likely we could get another storm shortly (since it's supposed to rain all week). Just what I need -- a soggy investment! If you're going to be buying equipment, I really don't recommend shipping via UPS. When I called UPS to complain, I was told that UPS gets more complaints that packages aren't left because they require signature than complaints over packages being left without getting a signature so they're not likely to change their policy any time soon (however why would they get complaints about packages not being left if their policy is that they can leave packages without signature?) Guh. -- Leigh Anne Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=12916t=12913 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: LSA type-5 suppression across OSPF area boundaries?? [7:12917]
Andy, Try the following for the 7-to-5 aggregate translation which can also be converted to a filter by setting the restrict knob at the end: [edit protocols ospf area 0.0.0.10] nssa { area-range 10.0.0.0/8; } } http://www.juniper.net/techpubs/software/junos42/swconfig-routing42/html/ospf-co nfig6.html I am curious, why don't people take Juniper questions to the Juniper Groupstudy news group? I know for a fact that a number of folks within Juniper lurk on that newsgroup but not on the Cisco one. -Julian Andy Harding wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... : ** excuse the change of email and name - just changed provider : : on a Juniper: : : [edit protocols ospf] : root@router# show : export type-5-suppress; : : : : area 0.0.0.10 { : area-range 172.16.0.0/16; : : } : : [edit policy-options] : root@router# show : policy-statement type-5-suppress { : term area-0-suppress { : from { : protocol ospf; : area 0.0.0.10; : external; : } : to { : protocol ospf; : area 0.0.0.0; : } : then reject; : } : then accept; : } : : I would groom out the externals from being advertised across the area : boundary as per above, then permit anything else to be processed as normal : with an area-range statement to summarize. : : I'm interested in how one might summarize at the type-7 to type-5 : translation at an NSSA border. Do you have the command(s) to hand? : : thanks : : Andy : : Peter Van Oene wrote on July 19, 2001 at 12:56 AM: : : : Ok, good scenario. : : Assuming your network has grown to a point where type 5's are stressing the : AS, some scaling effort must take place. There are a number of poorly : scaling cludges to this type of scenario outside of OSPF, but I've seen NSSA : areas used here with some success. The net result is that your individual : areas have no awareness of the more specifics in other areas which isn't bad : assuming your aggregation strategy is clean as they can simply follow the : aggregates put out by the ASBRs. Within the area, the type 7's provide : enough info for intra area routers to make informed decisions re paths out : toward the customer networks. Your backbone will naturally see all external : info which shouldn't be an issue as a mid size ISP should have some good : routers therein. : : The key point is again that type 5's are unmodified at area borders. They : in fact flood untouched throughout the AS. Hence, unlike normal summarizes, : 5's aren't repackaged at each ABR before they hit other areas. For that : reason, you cannot control their flooding scope once they hit the domain : without using area modifications like stubinness. Interestingly, due to : type 7's needing to be converted to 5's by ABR's, they are repackaged before : entering the backbone and thus can be summarized via area-range like : commands at ABR's. Another reason why this is a viable solution to your : situation. : : I'm also curious how you can do this with a Juniper? Can you provide a : quick outline? : : Thanks : : Peter : : : *** REPLY SEPARATOR *** : : On 7/18/2001 at 4:54 PM [EMAIL PROTECTED] wrote: : : okay, let me give you a scenario: : : say you have a mid-sized ISP network - a size such that it's not really : worth going with confederations, etc. : : say that you have a couple of PoPs and a couple of colo/hosting centres. : : let's suppose that we want to run an area0 backbone between the sites, and : have the infrastructure of each site be an OSPF area. : : a bunch of your customers want to multi-home within a particular location : to : multiple switches/routers, and since you don't really want the customer to : participate in your IGP (auughhh) you have to statically route them, and : redistribute the routes within the area. summarizing lsa type-5s at each : ASBR is out, as a customer could drop their uplink to that ASBR, without : the : summarizing ASBR dropping the aggregate which would kinda kill their : traffic : - good ol' CEF keeps a-load-balancing half the traffic to the router : without : a route... ;-) : : hence, this is why I want full specifics intra-area, and aggregate-only : inter-area. : : I could do it on a Juniper dammit... : : take care :-) : : Andy : : Peter Van Oene wrote on July 18, 2001 at 9:14 PM: : : Ahh, I did indeed mean to suggest that you filter at the ingress ASBR (the : one that creates the type 5 in the first place) Type 5's are unmodified : throughout the AS and thus there is no mechanism within the protocol to : control their flow between areas. However, I'm confused as to why you need : : the full specifics advertised to the area and only the summary to the rest : of the AS. Even if you have multiple customer networks attached to the : ASBR, you are still going to pull traffic destined toward them to the ASBR : via the aggregate. What are you gaining by not using
network design [7:12918]
any thoughts welcome we have a lan including proxy server and database server there are two depts in the lan , one public and one private, ther is no vlan and not supported on switch the public department connect to the internet via proxy server which has a acounting software connection to the database server ON GIGABIT in the private lan that logs all the timmings for internet for billing purpose they company wants to put a PIX but want to keep the gigabit conection Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=12918t=12918 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Cisco Press Books for sale (Cheap!!!) [7:12919]
Hello, As I continue to sell off my book collection I just wanted to update you on what I have left. 1) Cisco CCNA Library Contains the following books: a) Introduction to Cisco Router Configuration. b) CCNA Exam Certification Guide c) Advanced Cisco Router Configuration d) CCNP Study Guide (Sybex) *I'm selling this set of books for $100.00** 2) Mastering Cisco Routers (Sybex) *I'm selling this book for $40.00* (This book is extremely practicle, its not over-indulged with certification stuff, instead it is concerned with teaching you how to deal with real life scenarios. This is a real-world book. A must have for any serious Network Engineer!!! 3) Designing Wide Area Networks and Internetworks (A Practical Guide) *I'm selling this book for $40.00* (I payed $60.00 for this book and it has been worth every penny, this book takes you through networking not only from Ciscos perspective but from a multi-vendor perspective, it makes you think about the big picture when designing a network for WANs, LAN to WAN, Security, health check monitoring, best equipment to use, things to consider when attaching to the internet, and telecommunciations in general. EXCELLENT, EXCELLENT, EXCELLENT* 4) All-IN-One CCIE Study Guide (Second Edition) by Giles *This book is brand new I have not used it, I'm selling it for $40.00 -- A CCIE candidate must have 5) Internetworking Technologies Handbook (Second Edition) by Cisco Press *I'm selling this book for $30.00* If you are interested in these books or my other Microsoft and Linux books please send me an e-mail to: [EMAIL PROTECTED] I accept payment via paypal, it makes it easier for both parties involved. Happy Networking!! Contact me if your interested. Thanks, JC Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=12919t=12919 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Why ISDN backup line come up ? [7:12920]
Hello all. I have 2 routers connected using leased line.Now I am trying to put a ISDN backup ,but the backup line does not come up. The status of ISDN line when the serial int. is up ,is BRI2/2 is standby mode, line protocol is down and should change to up upon going the serial line down but it's status remain unchanged even the serial link goes down . I have configued the serial int with backup interface BRI2/2 backup delay 5 10 commands . Also i tried to simulate the situation by putting the modem at Router A off to trigger the backup ISDN call but it does not happen and the ISDN status remain in standyby mode only. Can anybody help whether anyadditional command needs to be put up in either Serial or Bri interfaces? I am giving here th configuration of both the routers, routerA# interface BRI2/2 description Backup connectivity ip address 172.16.128.49 255.255.255.252 no ip directed-broadcast encapsulation ppp dialer map ip 172.16.128.50 name routerB x dialer-group 2 isdn switch-type basic-net3 interface Serial1/3 description Leased link to RouterB bandwidth 128 backup delay 5 10 backup interface BRI2/2 ip address 172.16.128.17 255.255.255.252 no ip directed-broadcast no ip route-cache no ip mroute-cache RouterB# interface BRI1/2 description Backup connectivity for RouterA ip address 172.16.128.50 255.255.255.252 encapsulation ppp no logging event subif-link-status dialer idle-timeout 3000 dialer wait-for-carrier-time 60 dialer map ip 172.16.128.49 name routerB YYY dialer-group 1 no fair-queue interface Serial0/0 ip address 172.16.128.18 255.255.255.252 logging event subif-link-status bandwidth 128 hold-queue 75 in Thanks in advance for help Regards Bware Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=12920t=12920 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
network design (updated) [7:12921]
any thoughts welcome we have a lan including proxy server and database server there are two depts in the lan , one public and one private, ther is no vlan and not supported on switch the public department connect to the internet via proxy server which has a acounting software connection to the database server ON GIGABIT AND WANT TO SEPERATE PUBLIC AND PRIVATE LAN , PROXY SERVER SHOULD ONLY ALLOWED TO TALK TO DATABASE SERVER AND NO OTHER PC in the private lan that logs all the timmings for internet for billing purpose they company wants to put a PIX but want to keep the gigabit conection Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=12921t=12921 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: E1 interface [7:12864]
Hi Matt Hm, having seen some of the replies you have had I wander just how many people have actualyl used an E1, not many of thnose replying for sure. 1. Is it a genuine E1 and if so how many channels or is it a variant called ISDN-30 and is the line being supplied balanced or unbalanced. E1 usually comes in bundles of 32 channels, 30 for data/voice and 2 signalling channels. ISDN-30 is a simple 30 channels with 29 for data/voice. This really only affects the timeslopts allocated and the control channel you refer to in the configuration. Generally you only go for balanced. 2. Which router are you proposing ? - I'd suggest a 2600 as the minimum with an NM-1CE1B module. The WIC-1T just will not cut it. 3. In most European countries the presentation will be either twin coax or RJ48 socket which requires an RJ45 plug. If you wnat to take this offline then let me know I can also supply with some sample configurations for E1 and ISDN-30 taken from some of my customers. Cheers Matt wrote: Hey, I know that this sounds dumb, but I've never had to install, configure, or support an E1 interface. So today I went to put together a sales order for someone installing a router in Europe, and the only E1 interfaces I can find are PRI and multiflex (?) for doing voice and data. Obviously I need to get more info from the provider over there, but I'm wondering what I'm missing. With a T1 interface, you just have to decide whether or not it gets an internal CSU/DSU or not and then order a WIC-T1 or a WIC-1DSU-T1. Help! Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=12922t=12864 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Why ISDN backup line come up ? [7:12920]
backup interface BRI2/2 backup delay 5 10 These are all thats required to specify backup interface, Have you tested the BRI? Have you added a route with a metric for the ISDN IP range ip route 0.0.0.0 0.0.0.0 10 Can't think of anything else. -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] Sent: Thursday, July 19, 2001 8:29 AM To: [EMAIL PROTECTED] Subject: Why ISDN backup line come up ? [7:12920] Hello all. I have 2 routers connected using leased line.Now I am trying to put a ISDN backup ,but the backup line does not come up. The status of ISDN line when the serial int. is up ,is BRI2/2 is standby mode, line protocol is down and should change to up upon going the serial line down but it's status remain unchanged even the serial link goes down . I have configued the serial int with backup interface BRI2/2 backup delay 5 10 commands . Also i tried to simulate the situation by putting the modem at Router A off to trigger the backup ISDN call but it does not happen and the ISDN status remain in standyby mode only. Can anybody help whether anyadditional command needs to be put up in either Serial or Bri interfaces? I am giving here th configuration of both the routers, routerA# interface BRI2/2 description Backup connectivity ip address 172.16.128.49 255.255.255.252 no ip directed-broadcast encapsulation ppp dialer map ip 172.16.128.50 name routerB x dialer-group 2 isdn switch-type basic-net3 interface Serial1/3 description Leased link to RouterB bandwidth 128 backup delay 5 10 backup interface BRI2/2 ip address 172.16.128.17 255.255.255.252 no ip directed-broadcast no ip route-cache no ip mroute-cache RouterB# interface BRI1/2 description Backup connectivity for RouterA ip address 172.16.128.50 255.255.255.252 encapsulation ppp no logging event subif-link-status dialer idle-timeout 3000 dialer wait-for-carrier-time 60 dialer map ip 172.16.128.49 name routerB YYY dialer-group 1 no fair-queue interface Serial0/0 ip address 172.16.128.18 255.255.255.252 logging event subif-link-status bandwidth 128 hold-queue 75 in Thanks in advance for help Regards Bware ** The information contained in this message is confidential and is intended for the addressee(s) only. If you have received this message in error or there are any problems please notify the originator immediately. The unauthorised use, disclosure, copying or alteration of this message is strictly forbidden. This message and any attachments have been scanned for viruses. Orbiscom Ltd. will not be liable for direct, special, indirect or consequential damages arising from alteration of the contents of this message by a third party or as a result of any virus being passed on. www.Orbiscom.com ** Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=12923t=12920 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: ipsec and nat [7:12825]
Two scenarios: 1) End point --- NAT --- IPSec --- IPSec --- Endpoint 2) End point --- IPSec --- NAT --- IPSec --- Endpoint Ignoring fancy tricks, scenario 1 will work whereas 2 will fail. IPSec encapsalates the IP address within the encrypted packet, so if there is a NAT device in the IPSec path the IPSec tunnel will fail. Cisco have a number of documents regarding the options of dealing with NAT/IPSec combinations at TAC, so I recommend starting there. Ross Fly Ers wrote: Dennis, I am not referring to vpn client, but having a lan-lan vpn setup where networks on both sides of the endpoints are configured with overlapping address space. one side of the tunnel is a hiding (nat on a non-cisco device) behind one address. there is a vpn3000 on the other end that can not perform the translation and route it over the IPsec tunnel. thanks. From: Dennis H Reply-To: Dennis H To: [EMAIL PROTECTED] Subject: Re: ipsec and nat [7:12825] Date: Wed, 18 Jul 2001 12:23:48 -0400 I believe you mean ipsec over nat, as opposed to nat over ipsec... the vpn concentrators can do it using udp port forwarding but this only work if you're using Cisco's vpn client. Fly Ers wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... Anyone confirm whether pix, concentrator or ipsec router has the ability to nat over ipsec? i know that I can nat everything on a router behind one of these devices. Thanks. _ Get your FREE download of MSN Explorer at http://explorer.msn.com _ Get your FREE download of MSN Explorer at http://explorer.msn.com Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=12924t=12825 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Question About Ciscowork [7:12621]
I cannot set snmp string for ANI server. From: Sasa Milic Reply-To: Sasa Milic To: [EMAIL PROTECTED] Subject: Re: Question About Ciscowork [7:12621] Date: Tue, 17 Jul 2001 17:11:11 -0400 Syam, I've recently installed CW2000, after numerous problems with ANI. What exactly is happening ? Topology window couldn't connect to ANI server or ... ? Regards, Sasa norsyam ariffin wrote: Hi gys. Currently I' m installing Ciscowork 2000, but have some problem regarding ANI server. I cannot make the ANI server up. Could anybody gime some hint on how to make the ANI server up? Thank in advance. Syam Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=12719t=12621 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] Get your FREE download of MSN Explorer at http://explorer.msn.com Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=12925t=12621 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
FW: New CCIE Lab!!??!!! [7:12926]
This is what I received from a colleague. Is this true? http://angelfire.com/my/no1daylab/new_format.html Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=12926t=12926 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Passed the CCIE written exam today.... [7:12927]
Hi, Today i took the exam at 9:00 morning and ended the exam on the last min i passed the exam with 71 marks and 70 was the passing WOW!!! too close... i was expecting more marks but didn't get... so its my advice to all to study hard for the exam as it is not so much easy as i thinked off. I have learn by hard the CCNP2.0 course (cover to cover) and was thinking that i can do the CCIE too for just covering my left over topics that is ATM, FR, QoS, SRB, RSRB,DSLW+ etc... but this didnt work the exam was tuff I have studied from the following books... they are just great.. all in one lab study guide routing TCP/IP (jeff) router bridges and swtices (second edition) CCIE preparation (todd lamede). good book... u can not cover one topic from one book so u have to read all the books anyways the paper is cleared . either it should be of good marks or just pass the one thing i know is that i cleared the paper and is heading toword my CCIE lab thatz a loog jurney. as the lab is in my opinion is 10 times harder then the written exam... (hope for high). -Mamoor CNE, MCT, CCIE (feature) CCIP (feature) Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=12927t=12927 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: WAN link funnies - UP UP but no comms- on same subnet!!! [7:12928]
make sure you don thave the command 'no keepalive' in the interface which is affected Hire, Ejay wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... Based on what I'm seeing, I think there is a problem with the data returning from the telco cloud. Can you loopback the CSU/DSU and see if your RX counter increments? If yes, Then switch the cable from the csu/dsu to the smartjack. Un=loop and test. If it still doesn't work, Loopback the smartjack and see if you can see the loopback remotely. If you can't, call the Loop Provider, there is a problem with the loop. -ejh -Original Message- From: Andrew Larkins [mailto:[EMAIL PROTECTED]] Sent: Wednesday, July 18, 2001 6:06 AM To: [EMAIL PROTECTED] Subject: WAN link funnies - UP UP but no comms- on same subnet!!! [7:12774] HI all, Strange problem here. The serial interface are UP UP on both sides, but we are not able to ping each other - even though directly connected. A debug ip ICMP on the remote site shows the ping coming through and replying, but the reply never gets back. Also the remote site saw my router using CDP, but I do not see him. Any ideas?? I believe this is Telco related, but the line shows clean from the interface stats Andrew Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=12928t=12928 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: LSA type-5 suppression across OSPF area boundaries?? [7:12929]
Julian, thanks for the command - what I was really looking for was the cisco equivalent :-) if you had read the rest of the thread (20 or so messages) you would see that this *is* a cisco-related query. I am looking for a way to do something on Ciscos, and was bemoaning the fact that I could do what I wanted easily under JunOS - Peter asked how I would do it with that OS, so I posted the config excerpt. thanks anyway Andy Julian Eccli wrote on July 19, 2001 at 7:54 AM: Andy, Try the following for the 7-to-5 aggregate translation which can also be converted to a filter by setting the restrict knob at the end: [edit protocols ospf area 0.0.0.10] nssa { area-range 10.0.0.0/8; } } http://www.juniper.net/techpubs/software/junos42/swconfig-routing42/html/osp f-co nfig6.html I am curious, why don't people take Juniper questions to the Juniper Groupstudy news group? I know for a fact that a number of folks within Juniper lurk on that newsgroup but not on the Cisco one. -Julian Andy Harding wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... : ** excuse the change of email and name - just changed provider : : on a Juniper: : : [edit protocols ospf] : root@router# show : export type-5-suppress; : : : : area 0.0.0.10 { : area-range 172.16.0.0/16; : : } : : [edit policy-options] : root@router# show : policy-statement type-5-suppress { : term area-0-suppress { : from { : protocol ospf; : area 0.0.0.10; : external; : } : to { : protocol ospf; : area 0.0.0.0; : } : then reject; : } : then accept; : } : : I would groom out the externals from being advertised across the area : boundary as per above, then permit anything else to be processed as normal : with an area-range statement to summarize. : : I'm interested in how one might summarize at the type-7 to type-5 : translation at an NSSA border. Do you have the command(s) to hand? : : thanks : : Andy : : Peter Van Oene wrote on July 19, 2001 at 12:56 AM: : : : Ok, good scenario. : : Assuming your network has grown to a point where type 5's are stressing the : AS, some scaling effort must take place. There are a number of poorly : scaling cludges to this type of scenario outside of OSPF, but I've seen NSSA : areas used here with some success. The net result is that your individual : areas have no awareness of the more specifics in other areas which isn't bad : assuming your aggregation strategy is clean as they can simply follow the : aggregates put out by the ASBRs. Within the area, the type 7's provide : enough info for intra area routers to make informed decisions re paths out : toward the customer networks. Your backbone will naturally see all external : info which shouldn't be an issue as a mid size ISP should have some good : routers therein. : : The key point is again that type 5's are unmodified at area borders. They : in fact flood untouched throughout the AS. Hence, unlike normal summarizes, : 5's aren't repackaged at each ABR before they hit other areas. For that : reason, you cannot control their flooding scope once they hit the domain : without using area modifications like stubinness. Interestingly, due to : type 7's needing to be converted to 5's by ABR's, they are repackaged before : entering the backbone and thus can be summarized via area-range like : commands at ABR's. Another reason why this is a viable solution to your : situation. : : I'm also curious how you can do this with a Juniper? Can you provide a : quick outline? : : Thanks : : Peter : : : *** REPLY SEPARATOR *** : : On 7/18/2001 at 4:54 PM [EMAIL PROTECTED] wrote: : : okay, let me give you a scenario: : : say you have a mid-sized ISP network - a size such that it's not really : worth going with confederations, etc. : : say that you have a couple of PoPs and a couple of colo/hosting centres. : : let's suppose that we want to run an area0 backbone between the sites, and : have the infrastructure of each site be an OSPF area. : : a bunch of your customers want to multi-home within a particular location : to : multiple switches/routers, and since you don't really want the customer to : participate in your IGP (auughhh) you have to statically route them, and : redistribute the routes within the area. summarizing lsa type-5s at each : ASBR is out, as a customer could drop their uplink to that ASBR, without : the : summarizing ASBR dropping the aggregate which would kinda kill their : traffic : - good ol' CEF keeps a-load-balancing half the traffic to the router : without : a route... ;-) : : hence, this is why I want full specifics intra-area, and aggregate-only : inter-area. : : I could do it on a Juniper dammit... : : take care :-) : : Andy : : Peter Van Oene wrote on
RE: To CCIE's without a job [7:12805]
Ole, I think I know where Priscilla is coming from. I developed software for 10 years (mainly C/C++) before turning to Network Engineering. The difference in the roles in my experience has been dramatic. Software Engineering requires an intensity of concentration that I can only compare to playing chess. I was rarely required to interact with customers and as a result my interpersonal skills didn't develop. I took my first job in Networking for a major bank. This was very open plan and one day the team leader called the regular meeting. Everyone shuffled towards the meeting room EXCEPT me. 45 mins later my team leader came looking for me. I was still at my desk, deep in concentration. She couldn't stop laughing as everyone else was taking bets as to when I would realise that no-one else was there. I hadn't noticed a thing. Customer interaction has also been a learning curve but fortunately I appear to have picked this skill up quite naturally. I am much happier in my work now and don't intend to return to Software Development. Both Software development and Network Engineering are such wide and diverse fields you cannot possibly keep up with both. I havn't written Software for 5 years now and while the logical skill required to do so will never leave me the Microsoft Foundation Clases certainly have. Regards, Phil. --- Ole Drews Jensen wrote: I don't agree with your Priscilla. Again, I am not a CCIE yet, but I'm on my way. I like doing both things (and system administration), but then again - maybe I have a split personality 8^O I agree with you about not finding many with this skill, but hopefully I will become one soon. Take care, Ole ~~~ Ole Drews Jensen Systems Network Manager CCNA, MCSE, MCP+I RWR Enterprises, Inc. [EMAIL PROTECTED] ~~~ http://www.OleDrews.com/CCNP ~~~ NEED A JOB ??? http://www.oledrews.com/job ~~~ -Original Message- From: Priscilla Oppenheimer [mailto:[EMAIL PROTECTED]] Sent: Wednesday, July 18, 2001 1:52 PM To: [EMAIL PROTECTED] Subject: Re: To CCIE's without a job [7:12805] That's a scary thought: CCIEs who develop protocols. ;-] They are looking for software engineers. They aren't going to find many that have a CCIE? It's a different skill set and requires a different type of personality. Priscilla At 09:41 AM 7/18/01, Ole Drews Jensen wrote: Forgive me for sending this here, I know there's a place for job discussions, but I noticed that there have been several e-mails about how CCIE's now have a harder time getting jobs. I received this e-mail (look at the message included after my signature) on another Cisco list I'm a member of: Hth, Ole ~~~ Ole Drews Jensen Systems Network Manager CCNA, MCSE, MCP+I RWR Enterprises, Inc. [EMAIL PROTECTED] ~~~ http://www.OleDrews.com/CCNP ~~~ NEED A JOB ??? http://www.oledrews.com/job ~~~ Message: 1 Date: Tue, 17 Jul 2001 15:11:26 - From: JDO Subject: Looking for a Special Kind of CCIE Hello, My name is Johnna Smith and I work for a placement firm in Dallas, Texas. I am in desperate need of a CCIE that DEVELOPS routing protocols. I need them to have BGP, DSPF, IS-IS, and MPLS. The must be a software engineer and they must be degreed. If any of you could help me, please give me a call or shoot me an email at [EMAIL PROTECTED] or at 972-991-7569. Just to take a look at someof our other positions please go to We also work with another agency that focuese more on IT, you can find their site at Thanks Johnna Priscilla Oppenheimer http://www.priscilla.com [EMAIL PROTECTED] Do You Yahoo!? Get your free @yahoo.co.uk address at http://mail.yahoo.co.uk or your free @yahoo.ie address at http://mail.yahoo.ie Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=12930t=12805 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: CCIE market FLOOD !! was: Current Wait time on the lab [7:12931]
How do you figure Extreme is in trouble? Monday's WSJ had an article about the tech stocks slump and Extreme, Foundry, as well as a few others were noted as part of the 15% that was generally considered to have turned the corner and shown improvement. Just curious, I hadn't heard anything about them being in trouble, on top of that we just bought a boatload of their switches (which do seem so far to work very well by the way)... I need my car washed! :) Do you need any fries (chips) with that? hal9001 cc: Sent by: Subject: Re: CCIE market FLOOD !! was: Current Wait time on the nobody@groupslab [7:12867] tudy.com 07/18/2001 04:06 PM Please respond to hal9001 Fine but the obvious one is Nortel, but look how many they have fired, Ericsson the same and I've had experience of their Tigress and Congo/Danube etc range. Bad support for a poor product. Extreme are in trouble, Juniper and Foundry very small. 3Com basically out of it and I think must have seen it coming. I am of the opinion you really have to get a wide spread of experience and certifications. Anyone need the car washing? Karl - Original Message - From: To: Sent: Wednesday, July 18, 2001 8:33 PM Subject: Re: CCIE market FLOOD !! was: Current Wait time on the lab [7:12861] Its my believe that by being a CISCO person, it does not UN-qualify any one of us to work with other vendor equipment. What we now need to do is learn the other companies products so we have the edge on the situation. With some minor tweaks we should be able to support other equipment. This applies to all pc environments. The basics are the same, the rules - different order. The market conditions are really depressing right now but that does not mean that people give up their dreams and stop working towards them . If you look at all the certifications like CNE and MCSE they all had their better days and anyone who had them was king but not anymore .That is the certification market for you . Every certification has a life and it is upto the Company to give its certification a longer life by making it more and more difficult and I guess Cisco has done a commendable job on that for the past 8 years but I think what cisco needs right now is more people using thier products out their in the market so that they don't get crushed by the competition . So with that said , teh CCIE might still be able to get you in a lot of positions and then its upto you . Just my 2 cents Jaspreet Priscilla Oppenheimer wrote: At 10:31 PM 7/17/01, KY wrote: Here is what I came across from Mentortech's web site on the experience of a receiptionist they are looking for: Education Experience: At least one year previous experience as a receptionist, with multi-line phone system. What kind of phone system needs someone to get to level of being able to use it a year later? It's VoIP. Just kidding. ;-) A 12 year old can learn how to use any phone system in the world in less than 20mins. I guess in mentortech, they are looking for the Queen of experience. Or King. In the U.S. it is illegal to specify the sex of the job candidate you are seeking. I know the reality is every employer is looking for experienced people, but it does not mean it is not rediculous, at least in my eyes. The first one implented MPLS on their proudction network had to use inexperienced engineers doing it, I am pretty sure about that. Just my .02. KY Priscilla Oppenheimer http://www.priscilla.com Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=12931t=12931 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: To CCIE's without a job [7:12805]
Employers/recruiters miss some excellent by being de-greedy... In a message dated 7/18/01 3:59:14 PM Eastern Daylight Time, [EMAIL PROTECTED] writes: I'd be more concerned that recruiters are starting to look for peopled who have been de-greed. This could hurt me personally, because I've definitely got my greed chromosome intact. I had no idea this could be removed. Next they'll be trying to have our spines removed and call us de-boned. --- Dennis -Original Message- From: Tony Medeiros [mailto:[EMAIL PROTECTED]] Sent: Wednesday, July 18, 2001 12:42 PM To: [EMAIL PROTECTED] Subject: Re: To CCIE's without a job [7:12805] I want to be a developer for DSPF What is that? Dumbest Shortest Path First ? My name is Johnna Smith and I work for a placement firm in Dallas, Texas. I am in desperate need of a CCIE that DEVELOPS routing protocols. I need them to have BGP, DSPF, IS-IS, and MPLS. The must be a software engineer and they must be degreed. Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=12932t=12805 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: CCIE market FLOOD !! was: Current Wait time on the lab [7:12933]
They have retracted and pulled back from many areas they were to develop and promised developments were not delivered. I worked for one of their resellers, what we were promised one minute was not delivered the next. Support fell like a stone as did staff their end, we could not give away their kit and there was a flight to quality i.e. Cisco/Nortel. In addition their power supplies were suspect and we were forever returning their S24's and S48's, if it was not for that then it was their ASICS and Ports packing up. Once one went others soon followed. We had software problems with Black Diamond Blades and you had to be very careful what blades and software you mixed which was never made to clear until it all went wrong. Put two of those beasts in a room and it sounded like a fully loaded B29 on takeoff. Quality control was not that good. If you have got Extreme (unless you are a reseller) you will never be unemployed, you will always be replacing them and having to tweak them. Best of British mateOh by the way dI hope you are not using ESRP...you'll have lots of fun with that watching the kit go up and down and take other vendors/peoples kit out! Karl - Original Message - From: To: Sent: Thursday, July 19, 2001 11:29 AM Subject: Re: CCIE market FLOOD !! was: Current Wait time on the lab [7:12931] How do you figure Extreme is in trouble? Monday's WSJ had an article about the tech stocks slump and Extreme, Foundry, as well as a few others were noted as part of the 15% that was generally considered to have turned the corner and shown improvement. Just curious, I hadn't heard anything about them being in trouble, on top of that we just bought a boatload of their switches (which do seem so far to work very well by the way)... I need my car washed! :) Do you need any fries (chips) with that? hal9001 cc: Sent by: Subject: Re: CCIE market FLOOD !! was: Current Wait time on the nobody@groupslab [7:12867] tudy.com 07/18/2001 04:06 PM Please respond to hal9001 Fine but the obvious one is Nortel, but look how many they have fired, Ericsson the same and I've had experience of their Tigress and Congo/Danube etc range. Bad support for a poor product. Extreme are in trouble, Juniper and Foundry very small. 3Com basically out of it and I think must have seen it coming. I am of the opinion you really have to get a wide spread of experience and certifications. Anyone need the car washing? Karl - Original Message - From: To: Sent: Wednesday, July 18, 2001 8:33 PM Subject: Re: CCIE market FLOOD !! was: Current Wait time on the lab [7:12861] Its my believe that by being a CISCO person, it does not UN-qualify any one of us to work with other vendor equipment. What we now need to do is learn the other companies products so we have the edge on the situation. With some minor tweaks we should be able to support other equipment. This applies to all pc environments. The basics are the same, the rules - different order. The market conditions are really depressing right now but that does not mean that people give up their dreams and stop working towards them . If you look at all the certifications like CNE and MCSE they all had their better days and anyone who had them was king but not anymore .That is the certification market for you . Every certification has a life and it is upto the Company to give its certification a longer life by making it more and more difficult and I guess Cisco has done a commendable job on that for the past 8 years but I think what cisco needs right now is more people using thier products out their in the market so that they don't get crushed by the competition . So with that said , teh CCIE might still be able to get you in a lot of positions and then its upto you . Just my 2 cents Jaspreet Priscilla Oppenheimer wrote: At 10:31 PM 7/17/01, KY wrote: Here is what I came across from Mentortech's web site on the experience of a receiptionist they are looking for: Education Experience: At least one year previous experience as a receptionist, with multi-line phone system. What kind of phone system needs someone to get to level of being able to use it a year later? It's VoIP. Just kidding. ;-) A 12 year old can learn how to use any phone system in the world in less than 20mins. I guess in mentortech, they are looking for the Queen of experience. Or King. In the U.S. it is illegal to specify the sex of the job candidate you are seeking. I know the reality is every employer is looking for experienced people, but it does not mean it is not rediculous, at least in my eyes. The first one
RE: CCIE market FLOOD !! was: Current Wait time on the lab [7:12934]
I have had the same problems with Cabletron/Enterasys SSR equipment. Its seems that some companies put money into QA and some rely on old customers to do it for them Rob -Original Message- From: hal9001 [SMTP:[EMAIL PROTECTED]] Sent: 19 July 2001 12:39 To: [EMAIL PROTECTED] Subject: Re: CCIE market FLOOD !! was: Current Wait time on the lab [7:12933] They have retracted and pulled back from many areas they were to develop and promised developments were not delivered. I worked for one of their resellers, what we were promised one minute was not delivered the next. Support fell like a stone as did staff their end, we could not give away their kit and there was a flight to quality i.e. Cisco/Nortel. In addition their power supplies were suspect and we were forever returning their S24's and S48's, if it was not for that then it was their ASICS and Ports packing up. Once one went others soon followed. We had software problems with Black Diamond Blades and you had to be very careful what blades and software you mixed which was never made to clear until it all went wrong. Put two of those beasts in a room and it sounded like a fully loaded B29 on takeoff. Quality control was not that good. If you have got Extreme (unless you are a reseller) you will never be unemployed, you will always be replacing them and having to tweak them. Best of British mateOh by the way dI hope you are not using ESRP...you'll have lots of fun with that watching the kit go up and down and take other vendors/peoples kit out! Karl - Original Message - From: To: Sent: Thursday, July 19, 2001 11:29 AM Subject: Re: CCIE market FLOOD !! was: Current Wait time on the lab [7:12931] How do you figure Extreme is in trouble? Monday's WSJ had an article about the tech stocks slump and Extreme, Foundry, as well as a few others were noted as part of the 15% that was generally considered to have turned the corner and shown improvement. Just curious, I hadn't heard anything about them being in trouble, on top of that we just bought a boatload of their switches (which do seem so far to work very well by the way)... I need my car washed! :) Do you need any fries (chips) with that? hal9001 cc: Sent by: Subject: Re: CCIE market FLOOD !! was: Current Wait time on the nobody@groupslab [7:12867] tudy.com 07/18/2001 04:06 PM Please respond to hal9001 Fine but the obvious one is Nortel, but look how many they have fired, Ericsson the same and I've had experience of their Tigress and Congo/Danube etc range. Bad support for a poor product. Extreme are in trouble, Juniper and Foundry very small. 3Com basically out of it and I think must have seen it coming. I am of the opinion you really have to get a wide spread of experience and certifications. Anyone need the car washing? Karl - Original Message - From: To: Sent: Wednesday, July 18, 2001 8:33 PM Subject: Re: CCIE market FLOOD !! was: Current Wait time on the lab [7:12861] Its my believe that by being a CISCO person, it does not UN-qualify any one of us to work with other vendor equipment. What we now need to do is learn the other companies products so we have the edge on the situation. With some minor tweaks we should be able to support other equipment. This applies to all pc environments. The basics are the same, the rules - different order. The market conditions are really depressing right now but that does not mean that people give up their dreams and stop working towards them . If you look at all the certifications like CNE and MCSE they all had their better days and anyone who had them was king but not anymore .That is the certification market for you . Every certification has a life and it is upto the Company to give its certification a longer life by making it more and more difficult and I guess Cisco has done a commendable job on that for the past 8 years but I think what cisco needs right now is more people using thier products out their in the market so that they don't get crushed by the competition . So with that said , teh CCIE might still be able to get you in a lot of positions and then its upto you . Just my 2 cents Jaspreet Priscilla Oppenheimer wrote: At 10:31 PM 7/17/01, KY wrote: Here is what I came across from Mentortech's web site on the experience of a receiptionist they are looking for: Education Experience: At least one year previous experience as a receptionist, with multi-line phone system. What kind of phone system needs someone to get to
Re: CCIE market FLOOD !! was: Current Wait time on the lab [7:12935]
Wow! That doesn't sound good at all...except I suppose the part about never being unemployed! Can you give me some examples of developments they pulled back on/never delivered? (we can take this off line if you prefer, I'm not sure what interest there is in this discussion by others). I do agree the noise level is really pretty bad, but we are just getting started on this project/upgrade so I haven't run into the other things yet. We are starting to stage equiptment this week thoughwe used to be a 3com shop and Extreme seemed to have the most/best interconnectivity with the old 3com gear, among other reasons. Oh, and yeah, we are planning to use ESRP hal9001 cc: Sent by: Subject: Re: CCIE market FLOOD !! was: Current Wait time on the nobody@groupslab [7:12933] tudy.com 07/19/2001 07:38 AM Please respond to hal9001 They have retracted and pulled back from many areas they were to develop and promised developments were not delivered. I worked for one of their resellers, what we were promised one minute was not delivered the next. Support fell like a stone as did staff their end, we could not give away their kit and there was a flight to quality i.e. Cisco/Nortel. In addition their power supplies were suspect and we were forever returning their S24's and S48's, if it was not for that then it was their ASICS and Ports packing up. Once one went others soon followed. We had software problems with Black Diamond Blades and you had to be very careful what blades and software you mixed which was never made to clear until it all went wrong. Put two of those beasts in a room and it sounded like a fully loaded B29 on takeoff. Quality control was not that good. If you have got Extreme (unless you are a reseller) you will never be unemployed, you will always be replacing them and having to tweak them. Best of British mateOh by the way dI hope you are not using ESRP...you'll have lots of fun with that watching the kit go up and down and take other vendors/peoples kit out! Karl - Original Message - From: To: Sent: Thursday, July 19, 2001 11:29 AM Subject: Re: CCIE market FLOOD !! was: Current Wait time on the lab [7:12931] How do you figure Extreme is in trouble? Monday's WSJ had an article about the tech stocks slump and Extreme, Foundry, as well as a few others were noted as part of the 15% that was generally considered to have turned the corner and shown improvement. Just curious, I hadn't heard anything about them being in trouble, on top of that we just bought a boatload of their switches (which do seem so far to work very well by the way)... I need my car washed! :) Do you need any fries (chips) with that? hal9001 cc: Sent by: Subject: Re: CCIE market FLOOD !! was: Current Wait time on the nobody@groupslab [7:12867] tudy.com 07/18/2001 04:06 PM Please respond to hal9001 Fine but the obvious one is Nortel, but look how many they have fired, Ericsson the same and I've had experience of their Tigress and Congo/Danube etc range. Bad support for a poor product. Extreme are in trouble, Juniper and Foundry very small. 3Com basically out of it and I think must have seen it coming. I am of the opinion you really have to get a wide spread of experience and certifications. Anyone need the car washing? Karl - Original Message - From: To: Sent: Wednesday, July 18, 2001 8:33 PM Subject: Re: CCIE market FLOOD !! was: Current Wait time on the lab [7:12861] Its my believe that by being a CISCO person, it does not UN-qualify any one of us to work with other vendor equipment. What we now need to do is learn the other companies products so we have the edge on the situation. With some minor tweaks we should be able to support other equipment. This applies to all pc environments. The basics are the same, the rules - different order. The market conditions are really depressing right now but that does not mean that people give up their dreams and stop working towards them . If you look at
Off Topic - VPN with PKI [7:12936]
Does somebody know what is cisco's cheaper solution for generating certificates (PKI) ? I searched in their site and the VPN 5000 concentrator was the only I found, but it's too expensive. TIA, Raonm Castro, PROLAN - Brazil. Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=12936t=12936 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Passed the CCIE written exam today.... [7:12927]
What does CCIE (feature) mean? That you're not really but wish you were? Ahmed Amimi wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... Hi, Today i took the exam at 9:00 morning and ended the exam on the last min i passed the exam with 71 marks and 70 was the passing WOW!!! too close... i was expecting more marks but didn't get... so its my advice to all to study hard for the exam as it is not so much easy as i thinked off. I have learn by hard the CCNP2.0 course (cover to cover) and was thinking that i can do the CCIE too for just covering my left over topics that is ATM, FR, QoS, SRB, RSRB,DSLW+ etc... but this didnt work the exam was tuff I have studied from the following books... they are just great.. all in one lab study guide routing TCP/IP (jeff) router bridges and swtices (second edition) CCIE preparation (todd lamede). good book... u can not cover one topic from one book so u have to read all the books anyways the paper is cleared . either it should be of good marks or just pass the one thing i know is that i cleared the paper and is heading toword my CCIE lab thatz a loog jurney. as the lab is in my opinion is 10 times harder then the written exam... (hope for high). -Mamoor CNE, MCT, CCIE (feature) CCIP (feature) Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=12937t=12927 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: To CCIE's without a job [7:12805]
I hear what you're saying Phil, and agree that these two areas are very different. My problem was always the forgetting the time when I was diving in thousands lines of codes, and I would suddently look at the clock and discover that it was 4 o'clock in the morning. It doesn't mean however that you can't do both. It's like when I'm playing my guitar. Sometimes, I grap my Jackson and play Satriani or Nuno, and at other times, I grap my handmade Spanish guitar and play classical music, but most often I use my SRV signature stratocaster and play blues. The fun begins when you're mixing them all together - that's when you start playing like Blackmore or Yngwie... After that being said, I realize that keeping up with new technologies in both areas can be tough and very time dependant, but it can be done. Another 0010 cents. Take care, Ole ~~~ Ole Drews Jensen Systems Network Manager CCNA, MCSE, MCP+I RWR Enterprises, Inc. [EMAIL PROTECTED] ~~~ http://www.RouterChief.com ~~~ NEED A JOB ??? http://www.oledrews.com/job ~~~ -Original Message- From: Phil Barker [mailto:[EMAIL PROTECTED]] Sent: Thursday, July 19, 2001 4:56 AM To: Ole Drews Jensen; [EMAIL PROTECTED] Subject: RE: To CCIE's without a job [7:12805] Ole, I think I know where Priscilla is coming from. I developed software for 10 years (mainly C/C++) before turning to Network Engineering. The difference in the roles in my experience has been dramatic. Software Engineering requires an intensity of concentration that I can only compare to playing chess. I was rarely required to interact with customers and as a result my interpersonal skills didn't develop. I took my first job in Networking for a major bank. This was very open plan and one day the team leader called the regular meeting. Everyone shuffled towards the meeting room EXCEPT me. 45 mins later my team leader came looking for me. I was still at my desk, deep in concentration. She couldn't stop laughing as everyone else was taking bets as to when I would realise that no-one else was there. I hadn't noticed a thing. Customer interaction has also been a learning curve but fortunately I appear to have picked this skill up quite naturally. I am much happier in my work now and don't intend to return to Software Development. Both Software development and Network Engineering are such wide and diverse fields you cannot possibly keep up with both. I havn't written Software for 5 years now and while the logical skill required to do so will never leave me the Microsoft Foundation Clases certainly have. Regards, Phil. --- Ole Drews Jensen wrote: I don't agree with your Priscilla. Again, I am not a CCIE yet, but I'm on my way. I like doing both things (and system administration), but then again - maybe I have a split personality 8^O I agree with you about not finding many with this skill, but hopefully I will become one soon. Take care, Ole ~~~ Ole Drews Jensen Systems Network Manager CCNA, MCSE, MCP+I RWR Enterprises, Inc. [EMAIL PROTECTED] ~~~ http://www.OleDrews.com/CCNP ~~~ NEED A JOB ??? http://www.oledrews.com/job ~~~ -Original Message- From: Priscilla Oppenheimer [mailto:[EMAIL PROTECTED]] Sent: Wednesday, July 18, 2001 1:52 PM To: [EMAIL PROTECTED] Subject: Re: To CCIE's without a job [7:12805] That's a scary thought: CCIEs who develop protocols. ;-] They are looking for software engineers. They aren't going to find many that have a CCIE? It's a different skill set and requires a different type of personality. Priscilla At 09:41 AM 7/18/01, Ole Drews Jensen wrote: Forgive me for sending this here, I know there's a place for job discussions, but I noticed that there have been several e-mails about how CCIE's now have a harder time getting jobs. I received this e-mail (look at the message included after my signature) on another Cisco list I'm a member of: Hth, Ole ~~~ Ole Drews Jensen Systems Network Manager CCNA, MCSE, MCP+I RWR Enterprises, Inc. [EMAIL PROTECTED] ~~~ http://www.OleDrews.com/CCNP ~~~ NEED A JOB ??? http://www.oledrews.com/job ~~~ Message: 1 Date: Tue, 17 Jul 2001 15:11:26 - From: JDO Subject: Looking for a Special Kind of CCIE Hello, My name is Johnna Smith and I work for a placement firm in Dallas, Texas. I am in desperate need of a CCIE that DEVELOPS routing protocols. I need them to have BGP, DSPF, IS-IS, and MPLS. The must be a software engineer and they must be degreed. If any of you could
RE: Packet Sizes [7:12826]
Thank you to all who replied to this post. I do have another question for you. When the packet is sent to layer 2 for encapsulation and transmission, if it is Ethernet, an Ethernet header is placed on and the frame is transmitted. As far as I know the only requirement is that the frame must end on a 32 bit boundary, must be at least 64 bytes, and is not padded further. So that if the packet is 700 bytes, and is encapsulated in an Ethernet frame, the total would be approximately 726 bytes. Is this correct? -Original Message- From: Priscilla Oppenheimer [mailto:[EMAIL PROTECTED]] Sent: Wednesday, July 18, 2001 2:52 PM To: [EMAIL PROTECTED] Subject: Re: Packet Sizes [7:12826] FTP generally uses a full-size packet: 1500 bytes on Ethernet, not counting the header, CRC, preamble, inter-frame gap, or any VLAN or MPLS tagging. HTTP does not use a full-size packet usually. You would think it would, but it tends to use a 500-600 byte packet size. Using a shorter packet size improves perceived performance because the screen can show partial data while more data is en route. ICMP depends on what you are doing and what parameters you use. Most error or warning messages would be very short, probably 64 bytes or so. If it's ICMP echo (ping), then the user can specify the number of bytes. TFTP sends data in 512 byte blocks. Add the 8-byte UDP and 20-byte IP header. For all of these examples, there may be additional shorter packets for ACKs and other overhead. Priscilla At 11:41 AM 7/18/01, Lupi, Guy wrote: Does anyone have a list of average packet sizes for different services? Things like FTP, HTTP, ICMP, TFTP and the like. Just something general is fine, I am aware that there is no hard and fast rule. Priscilla Oppenheimer http://www.priscilla.com Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=12939t=12826 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: New CCIE Lab!!??!!! [7:12926]
I think u should read the article more closely ;-) -Original Message- From: Andrew Larkins [mailto:[EMAIL PROTECTED]] Sent: 19 July 2001 10:05 To: [EMAIL PROTECTED] Subject: FW: New CCIE Lab!!??!!! [7:12926] This is what I received from a colleague. Is this true? http://angelfire.com/my/no1daylab/new_format.html Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=12940t=12926 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Passed the CCIE written exam today.... [7:12927]
Future? Hopeful etc. Karl Billionaire (Future) - Original Message - From: Dennis H To: Sent: Thursday, July 19, 2001 2:05 PM Subject: Re: Passed the CCIE written exam today [7:12927] What does CCIE (feature) mean? That you're not really but wish you were? Ahmed Amimi wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... Hi, Today i took the exam at 9:00 morning and ended the exam on the last min i passed the exam with 71 marks and 70 was the passing WOW!!! too close... i was expecting more marks but didn't get... so its my advice to all to study hard for the exam as it is not so much easy as i thinked off. I have learn by hard the CCNP2.0 course (cover to cover) and was thinking that i can do the CCIE too for just covering my left over topics that is ATM, FR, QoS, SRB, RSRB,DSLW+ etc... but this didnt work the exam was tuff I have studied from the following books... they are just great.. all in one lab study guide routing TCP/IP (jeff) router bridges and swtices (second edition) CCIE preparation (todd lamede). good book... u can not cover one topic from one book so u have to read all the books anyways the paper is cleared . either it should be of good marks or just pass the one thing i know is that i cleared the paper and is heading toword my CCIE lab thatz a loog jurney. as the lab is in my opinion is 10 times harder then the written exam... (hope for high). -Mamoor CNE, MCT, CCIE (feature) CCIP (feature) Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=12942t=12927 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Packet Sizes [7:12826]
Guy, it would yield 726 only if you were using an Ethernet SNAP frame. For Ethernet 802.3 (6 byte destination + 6 byte source (mac addresses) + 2 byte length field + 1 byte SSAP + 1 byte DSAP + 1 byte control + 700 payload + 4 byte CRC) = 721. For Ethernet Raw (6 byte destination + 6 byte source (mac addresses) + 2 ethertype + 700 payload + 4 byte CRC) = 718. For Ethernet SNAP (6 byte destination + 6 byte source (mac addresses) + 2 byte length field + 1 byte SSAP + 1 byte DSAP (both = 0xAA) + 1 byte control + 5 byte OUI + 700 payload + 4 byte CRC) = 726. Regards, Phil. PS: I think there is a pocket handbook by Miller that explains this in more detail. --- Lupi, Guy wrote: Thank you to all who replied to this post. I do have another question for you. When the packet is sent to layer 2 for encapsulation and transmission, if it is Ethernet, an Ethernet header is placed on and the frame is transmitted. As far as I know the only requirement is that the frame must end on a 32 bit boundary, must be at least 64 bytes, and is not padded further. So that if the packet is 700 bytes, and is encapsulated in an Ethernet frame, the total would be approximately 726 bytes. Is this correct? -Original Message- From: Priscilla Oppenheimer [mailto:[EMAIL PROTECTED]] Sent: Wednesday, July 18, 2001 2:52 PM To: [EMAIL PROTECTED] Subject: Re: Packet Sizes [7:12826] FTP generally uses a full-size packet: 1500 bytes on Ethernet, not counting the header, CRC, preamble, inter-frame gap, or any VLAN or MPLS tagging. HTTP does not use a full-size packet usually. You would think it would, but it tends to use a 500-600 byte packet size. Using a shorter packet size improves perceived performance because the screen can show partial data while more data is en route. ICMP depends on what you are doing and what parameters you use. Most error or warning messages would be very short, probably 64 bytes or so. If it's ICMP echo (ping), then the user can specify the number of bytes. TFTP sends data in 512 byte blocks. Add the 8-byte UDP and 20-byte IP header. For all of these examples, there may be additional shorter packets for ACKs and other overhead. Priscilla At 11:41 AM 7/18/01, Lupi, Guy wrote: Does anyone have a list of average packet sizes for different services? Things like FTP, HTTP, ICMP, TFTP and the like. Just something general is fine, I am aware that there is no hard and fast rule. Priscilla Oppenheimer http://www.priscilla.com [EMAIL PROTECTED] Do You Yahoo!? Get your free @yahoo.co.uk address at http://mail.yahoo.co.uk or your free @yahoo.ie address at http://mail.yahoo.ie Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=12941t=12826 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: New CCIE Lab!!??!!! [7:12926] - IGNORE THIS - JOKE [7:12943]
thanks I read this after an all night work session - half asleep -Original Message- From: Ciaron Gogarty [mailto:[EMAIL PROTECTED]] Sent: 19 July 2001 15:23 To: [EMAIL PROTECTED] Subject: RE: New CCIE Lab!!??!!! [7:12926] I think u should read the article more closely ;-) -Original Message- From: Andrew Larkins [mailto:[EMAIL PROTECTED]] Sent: 19 July 2001 10:05 To: [EMAIL PROTECTED] Subject: FW: New CCIE Lab!!??!!! [7:12926] This is what I received from a colleague. Is this true? http://angelfire.com/my/no1daylab/new_format.html Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=12943t=12943 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Word of Caution - RE: Shipping Home Lab Equipment [7:12913]
Leigh, How can you blame that on UPS? That is DEFINITELY not UPS's fault! The company that sold you the switch should know UPS's policy. You need to have a conversation with the company that SHIPPED you the Cat switch. The company that sold you the switch should have shipped it fully insured with SIGNATURE required (that's how we ship our hardware that we sell). Sure it costs $2 more to ship, but it defnitely makes the transaction MUCH more secure. -Brad Ellis CCIE#5796 [EMAIL PROTECTED] Cisco Gear: www.optsys.net Leigh Anne Chisholm wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... Just a word of caution for everyone out there that's buying equipment for their home labs. Yesterday I had a Catalyst 5002 delivered to my home by UPS. It was packaged in a Dell computer box and left at my door. The driver didn't wait for a signture or even to see if anyone was home. The box was left plain view from the street. Apparently, that's UPS's policy. Unless the shipper indicates adult signature required, UPS can just drop your package at the front door and leave. There's the fact that since it was in plain view of the street and since it was in a box that would be very enticing to anyone passing by, that was my first concern... but the other fact is that it had just finished raining - and it was very likely we could get another storm shortly (since it's supposed to rain all week). Just what I need -- a soggy investment! If you're going to be buying equipment, I really don't recommend shipping via UPS. When I called UPS to complain, I was told that UPS gets more complaints that packages aren't left because they require signature than complaints over packages being left without getting a signature so they're not likely to change their policy any time soon (however why would they get complaints about packages not being left if their policy is that they can leave packages without signature?) Guh. -- Leigh Anne Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=12944t=12913 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
ios features [7:12945]
Does anyone remember the link that allows you to search for a IOS version based on a feature, say DHCP. Don Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=12945t=12945 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: ios features [7:12945]
-Original Message- From: Donald B Johnson jr [mailto:[EMAIL PROTECTED]] Sent: Thursday, July 19, 2001 10:44 AM To: [EMAIL PROTECTED] Subject: ios features [7:12945] Does anyone remember the link that allows you to search for a IOS version based on a feature, say DHCP. Don Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=12946t=12945 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: ios features [7:12945]
www.cisco.com/go/fn feature navigator rules! you need cco login to gain access. -Original Message- From: Donald B Johnson jr [mailto:[EMAIL PROTECTED]] Sent: Thursday, July 19, 2001 10:44 AM To: [EMAIL PROTECTED] Subject: ios features [7:12945] Does anyone remember the link that allows you to search for a IOS version based on a feature, say DHCP. Don Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=12947t=12945 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: ios features [7:12945]
This is the CCO IOS Feature Navigator. Is that what you were looking for? It requires a login. http://www.cisco.com/cgi-bin/Support/FeatureNav/FN.pl John Donald B Johnson jr 7/19/01 8:44:07 AM Does anyone remember the link that allows you to search for a IOS version based on a feature, say DHCP. Don Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=12948t=12945 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: ios features [7:12945]
I think the link is : www.cisco.com/cgi-bin/Support/FeatureNav/FN.pl Donald B Johnson jr wrote in message ... Does anyone remember the link that allows you to search for a IOS version based on a feature, say DHCP. Don Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=12949t=12945 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: ios features [7:12945]
het thanks alot login is not a problem Thank You, - Original Message - From: Eric Hoffman To: 'Donald B Johnson jr' Cc: Sent: Thursday, July 19, 2001 7:38 AM Subject: RE: ios features [7:12945] www.cisco.com/go/fn feature navigator rules! you need cco login to gain access. -Original Message- From: Donald B Johnson jr [mailto:[EMAIL PROTECTED]] Sent: Thursday, July 19, 2001 10:44 AM To: [EMAIL PROTECTED] Subject: ios features [7:12945] Does anyone remember the link that allows you to search for a IOS version based on a feature, say DHCP. Don Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=12950t=12945 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: ios features [7:12945]
You will need a username and paswword to access it. Raul - Original Message - From: Donald B Johnson jr To: Sent: Thursday, July 19, 2001 10:44 AM Subject: ios features [7:12945] Does anyone remember the link that allows you to search for a IOS version based on a feature, say DHCP. Don Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=12951t=12945 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: ios features [7:12945]
www.cisco.com/go/fn you have to have a cco login. Cory -Original Message- From: Donald B Johnson jr [mailto:[EMAIL PROTECTED]] Sent: Thursday, July 19, 2001 9:44 AM To: [EMAIL PROTECTED] Subject: ios features [7:12945] Does anyone remember the link that allows you to search for a IOS version based on a feature, say DHCP. Don Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=12952t=12945 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: CCIE market FLOOD !! was: Current Wait time on the lab [7:12953]
Robert, Ditto here on the Cabletrons! We have an 8600 that has caused our network to go to hell-in-a-handbasket on more than one occasion. Cabletron/Enterasys Engineers never seem to have a good explanation for the problems either. I am waiting for the day when we can pull that thing out and replace it with a 6509. Heather Buri CSC Technology Services - Houston Phone: (713)-961-8592 Fax:(713)-961-8249 Mobile: Alpha Page: Mailing:1360 Post Oak Blvd Suite 500 Houston, TX 77056 -Original Message- From: Thompson, Robert D [mailto:[EMAIL PROTECTED]] Sent: Thursday, July 19, 2001 6:52 AM To: [EMAIL PROTECTED] Subject: RE: CCIE market FLOOD !! was: Current Wait time on the lab [7:12934] I have had the same problems with Cabletron/Enterasys SSR equipment. Its seems that some companies put money into QA and some rely on old customers to do it for them Rob -Original Message- From: hal9001 [SMTP:[EMAIL PROTECTED]] Sent: 19 July 2001 12:39 To: [EMAIL PROTECTED] Subject: Re: CCIE market FLOOD !! was: Current Wait time on the lab [7:12933] They have retracted and pulled back from many areas they were to develop and promised developments were not delivered. I worked for one of their resellers, what we were promised one minute was not delivered the next. Support fell like a stone as did staff their end, we could not give away their kit and there was a flight to quality i.e. Cisco/Nortel. In addition their power supplies were suspect and we were forever returning their S24's and S48's, if it was not for that then it was their ASICS and Ports packing up. Once one went others soon followed. We had software problems with Black Diamond Blades and you had to be very careful what blades and software you mixed which was never made to clear until it all went wrong. Put two of those beasts in a room and it sounded like a fully loaded B29 on takeoff. Quality control was not that good. If you have got Extreme (unless you are a reseller) you will never be unemployed, you will always be replacing them and having to tweak them. Best of British mateOh by the way dI hope you are not using ESRP...you'll have lots of fun with that watching the kit go up and down and take other vendors/peoples kit out! Karl - Original Message - From: To: Sent: Thursday, July 19, 2001 11:29 AM Subject: Re: CCIE market FLOOD !! was: Current Wait time on the lab [7:12931] How do you figure Extreme is in trouble? Monday's WSJ had an article about the tech stocks slump and Extreme, Foundry, as well as a few others were noted as part of the 15% that was generally considered to have turned the corner and shown improvement. Just curious, I hadn't heard anything about them being in trouble, on top of that we just bought a boatload of their switches (which do seem so far to work very well by the way)... I need my car washed! :) Do you need any fries (chips) with that? hal9001 cc: Sent by: Subject: Re: CCIE market FLOOD !! was: Current Wait time on the nobody@groupslab [7:12867] tudy.com 07/18/2001 04:06 PM Please respond to hal9001 Fine but the obvious one is Nortel, but look how many they have fired, Ericsson the same and I've had experience of their Tigress and Congo/Danube etc range. Bad support for a poor product. Extreme are in trouble, Juniper and Foundry very small. 3Com basically out of it and I think must have seen it coming. I am of the opinion you really have to get a wide spread of experience and certifications. Anyone need the car washing? Karl - Original Message - From: To: Sent: Wednesday, July 18, 2001 8:33 PM Subject: Re: CCIE market FLOOD !! was: Current Wait time on the lab [7:12861] Its my believe that by being a CISCO person, it does not UN-qualify any one of us to work with other vendor equipment. What we now need to do is learn the other companies products so we have the edge on the situation. With some minor tweaks we should be able to support other equipment. This applies to all pc environments. The basics are the same, the rules - different order. The market conditions are really depressing right now but that does not mean that people give up their dreams and stop working towards them . If you look at all the certifications like CNE and MCSE they all had their better days and anyone who had them was king but not anymore .That is the certification market for you . Every certification has a life and it is upto the Company to give its certification a longer life by making it more and more difficult and I guess Cisco has done a
Re: ios features [7:12945]
Arre you thinking of the Feature Navigator? http://www.cisco.com/cgi-bin/Support/FeatureNav/FN.pl BTW, you must have a CCO login to use it. -- Jonathan Donald B Johnson jr wrote: Does anyone remember the link that allows you to search for a IOS version based on a feature, say DHCP. Don Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=12954t=12945 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: ios features [7:12945]
www.cisco.com/tac log in ( must have a CCO login to access this tool ) go to the tool index under the f's go to the feature navigator this is a great tool. allows one to search for a feature on a specific platform. it is not 100% reliable, bit as they say, getting there is half the fun. Chuck -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Donald B Johnson jr Sent: Thursday, July 19, 2001 7:44 AM To: [EMAIL PROTECTED] Subject: ios features [7:12945] Does anyone remember the link that allows you to search for a IOS version based on a feature, say DHCP. Don Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=12955t=12945 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Passed the CCIE written exam today.... [7:12927]
congratulations! Best of luck studying for the Lab exam -e- - Original Message - From: Ahmed Amimi To: Sent: Thursday, July 19, 2001 2:06 AM Subject: Passed the CCIE written exam today [7:12927] Hi, Today i took the exam at 9:00 morning and ended the exam on the last min i passed the exam with 71 marks and 70 was the passing WOW!!! too close... i was expecting more marks but didn't get... so its my advice to all to study hard for the exam as it is not so much easy as i thinked off. I have learn by hard the CCNP2.0 course (cover to cover) and was thinking that i can do the CCIE too for just covering my left over topics that is ATM, FR, QoS, SRB, RSRB,DSLW+ etc... but this didnt work the exam was tuff I have studied from the following books... they are just great.. all in one lab study guide routing TCP/IP (jeff) router bridges and swtices (second edition) CCIE preparation (todd lamede). good book... u can not cover one topic from one book so u have to read all the books anyways the paper is cleared . either it should be of good marks or just pass the one thing i know is that i cleared the paper and is heading toword my CCIE lab thatz a loog jurney. as the lab is in my opinion is 10 times harder then the written exam... (hope for high). -Mamoor CNE, MCT, CCIE (feature) CCIP (feature) _ Do You Yahoo!? Get your free @yahoo.com address at http://mail.yahoo.com Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=12956t=12927 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: ipsec and nat [7:12825]
Just a small addition to that... IPSec has rules for only allowing certain source destination IP addresses through. NAT changes IPs doesn't even have the same IP/port for each transmission so IPSec would thoroughly be confused ;) - Original Message - From: Ross McCormick To: Sent: Thursday, July 19, 2001 3:57 AM Subject: Re: ipsec and nat [7:12825] Two scenarios: 1) End point --- NAT --- IPSec --- IPSec --- Endpoint 2) End point --- IPSec --- NAT --- IPSec --- Endpoint Ignoring fancy tricks, scenario 1 will work whereas 2 will fail. IPSec encapsalates the IP address within the encrypted packet, so if there is a NAT device in the IPSec path the IPSec tunnel will fail. Cisco have a number of documents regarding the options of dealing with NAT/IPSec combinations at TAC, so I recommend starting there. Ross Fly Ers wrote: Dennis, I am not referring to vpn client, but having a lan-lan vpn setup where networks on both sides of the endpoints are configured with overlapping address space. one side of the tunnel is a hiding (nat on a non-cisco device) behind one address. there is a vpn3000 on the other end that can not perform the translation and route it over the IPsec tunnel. thanks. From: Dennis H Reply-To: Dennis H To: [EMAIL PROTECTED] Subject: Re: ipsec and nat [7:12825] Date: Wed, 18 Jul 2001 12:23:48 -0400 I believe you mean ipsec over nat, as opposed to nat over ipsec... the vpn concentrators can do it using udp port forwarding but this only work if you're using Cisco's vpn client. Fly Ers wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... Anyone confirm whether pix, concentrator or ipsec router has the ability to nat over ipsec? i know that I can nat everything on a router behind one of these devices. Thanks. _ Get your FREE download of MSN Explorer at http://explorer.msn.com _ Get your FREE download of MSN Explorer at http://explorer.msn.com Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=12957t=12825 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Remote Access [7:12958]
I have a 3640 set up with async dial in for remote users. The laptops must be configured to to append domain suffixes in order resolve host names. Is it possible to have this information sent from the router? I do have the ip domain-list/name commands configured, but can I set this for the async-group, and pass it down when a user connects and receives ip information? thanks for your help, JR Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=12958t=12958 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Remote Access [7:12958]
async-bootp subnet-mask 255.255.255.0 async-bootp gateway async-bootp dns-server async-bootp nbns-server -Original Message- From: JR Van Noy [mailto:[EMAIL PROTECTED]] Sent: 19 July 2001 16:58 To: [EMAIL PROTECTED] Subject: Remote Access [7:12958] I have a 3640 set up with async dial in for remote users. The laptops must be configured to to append domain suffixes in order resolve host names. Is it possible to have this information sent from the router? I do have the ip domain-list/name commands configured, but can I set this for the async-group, and pass it down when a user connects and receives ip information? thanks for your help, JR Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=12959t=12958 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Remote Access [7:12958]
sorry but i couldnt understand do u want from the notebook to ping hosts if this is the case ther is a command router(config)#async-bootp dns-server to pass the dns server to dial up clients Best Regards Have A Good Day!! Farhan Ahmed MCSE+I, MCP Win2k, CCDA, CCNA, CSE Network Engineer Mideast Data Systems Abudhabi Uae. -Original Message- From: JR Van Noy [mailto:[EMAIL PROTECTED]] Sent: Thursday, July 19, 2001 7:58 PM To: [EMAIL PROTECTED] Subject: Remote Access [7:12958] I have a 3640 set up with async dial in for remote users. The laptops must be configured to to append domain suffixes in order resolve host names. Is it possible to have this information sent from the router? I do have the ip domain-list/name commands configured, but can I set this for the async-group, and pass it down when a user connects and receives ip information? thanks for your help, JR [GroupStudy.com removed an attachment of type application/octet-stream which had a name of Farhan Ahmed.vcf] Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=12960t=12958 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Remote Access [7:12958]
Sorry for not making it that clear. Once I connect I can ping by machine name but only if it is fully qualified. I thought that the domain-list command would enter the DNS suffix into the adapter,but it's not. We are taking care of this now by just manually entering the DNS suffix in the connection properties. I tried the async commands but nothing has changed. JR Farhan Ahmed wrote: sorry but i couldnt understand do u want from the notebook to ping hosts if this is the case ther is a command router(config)#async-bootp dns-server to pass the dns server to dial up clients Best Regards Have A Good Day!! Farhan Ahmed MCSE+I, MCP Win2k, CCDA, CCNA, CSE Network Engineer Mideast Data Systems Abudhabi Uae. -Original Message- From: JR Van Noy [mailto:[EMAIL PROTECTED]] Sent: Thursday, July 19, 2001 7:58 PM To: [EMAIL PROTECTED] Subject: Remote Access [7:12958] I have a 3640 set up with async dial in for remote users. The laptops must be configured to to append domain suffixes in order resolve host names. Is it possible to have this information sent from the router? I do have the ip domain-list/name commands configured, but can I set this for the async-group, and pass it down when a user connects and receives ip information? thanks for your help, JR [GroupStudy.com removed an attachment of type application/octet-stream which had a name of Farhan Ahmed.vcf] Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=12962t=12958 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Large Collisions on Vlan1 [7:12961]
What does it mean when the sh int vlan1 output shows large collisions? For example on a 2924 XL with an ISL trunk to a 6509 I go the ff output upon issuing the SH INT VLAN1 command: 0 output errors, 19108404 collisions, 0 interface resets Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=12961t=12961 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: ios features [7:12945]
Thanks to all. I'm in Don - Original Message - From: Stull, Cory To: Sent: Thursday, July 19, 2001 8:09 AM Subject: RE: ios features [7:12945] www.cisco.com/go/fn you have to have a cco login. Cory -Original Message- From: Donald B Johnson jr [mailto:[EMAIL PROTECTED]] Sent: Thursday, July 19, 2001 9:44 AM To: [EMAIL PROTECTED] Subject: ios features [7:12945] Does anyone remember the link that allows you to search for a IOS version based on a feature, say DHCP. Don Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=12963t=12945 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Remote Access [7:12958]
I had this same problem with an AS5300 and was unable to find any method of resolution besides manually entering the DNS suffix into the client. Tony Esfeld MCSE, MCP Win2k, CCNA, Intel CIS -Original Message- From: JR Van Noy [mailto:[EMAIL PROTECTED]] Sent: Thursday, July 19, 2001 11:28 AM To: [EMAIL PROTECTED] Subject: Re: Remote Access [7:12958] Sorry for not making it that clear. Once I connect I can ping by machine name but only if it is fully qualified. I thought that the domain-list command would enter the DNS suffix into the adapter,but it's not. We are taking care of this now by just manually entering the DNS suffix in the connection properties. I tried the async commands but nothing has changed. JR Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=12965t=12958 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
IFSpeed [7:12964]
In NNM I have some links with bandwidth uilization 100%. I know this is a problem with the MIB variable ifspeed but I don't know the details. Can someone help me to resolve this problem. Thanks Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=12964t=12964 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Remote Access [7:12958]
which dns server are u using -Original Message- From: JR Van Noy [mailto:[EMAIL PROTECTED]] Sent: Thursday, July 19, 2001 8:28 PM To: [EMAIL PROTECTED] Subject: Re: Remote Access [7:12958] Sorry for not making it that clear. Once I connect I can ping by machine name but only if it is fully qualified. I thought that the domain-list command would enter the DNS suffix into the adapter,but it's not. We are taking care of this now by just manually entering the DNS suffix in the connection properties. I tried the async commands but nothing has changed. JR Farhan Ahmed wrote: sorry but i couldnt understand do u want from the notebook to ping hosts if this is the case ther is a command router(config)#async-bootp dns-server to pass the dns server to dial up clients Best Regards Have A Good Day!! Farhan Ahmed MCSE+I, MCP Win2k, CCDA, CCNA, CSE Network Engineer Mideast Data Systems Abudhabi Uae. -Original Message- From: JR Van Noy [mailto:[EMAIL PROTECTED]] Sent: Thursday, July 19, 2001 7:58 PM To: [EMAIL PROTECTED] Subject: Remote Access [7:12958] I have a 3640 set up with async dial in for remote users. The laptops must be configured to to append domain suffixes in order resolve host names. Is it possible to have this information sent from the router? I do have the ip domain-list/name commands configured, but can I set this for the async-group, and pass it down when a user connects and receives ip information? thanks for your help, JR [GroupStudy.com removed an attachment of type application/octet-stream which had a name of Farhan Ahmed.vcf] Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=12966t=12958 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Large Collisions on Vlan1 [7:12961]
Massive collisions implies half duplex transmission on interfaces expecting full duplex access. I'll have to check this out, but I think you might have duplex setting programmed as negotiate on both sides of trunk. Seems to me that some platforms will default back to half-duplex and thus the trunk is not really working. Will revisit this site later, so don't necessarily trust this first impression... Cheers... Dennis Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=12968t=12961 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Remote Access [7:12958]
It is possible to do this, depending on how your clients are getting the Ip addresses. From your statements I assume the access sever is handing them out via PPP, but where is the router getting the IP's? From a local pool (most likely), a radius server, a local DHCP server, or ? Additionally, can you post or e-mail me a copy of your config. -Original Message- From: JR Van Noy [mailto:[EMAIL PROTECTED]] Sent: Thursday, July 19, 2001 11:58 AM To: [EMAIL PROTECTED] Subject: Remote Access [7:12958] I have a 3640 set up with async dial in for remote users. The laptops must be configured to to append domain suffixes in order resolve host names. Is it possible to have this information sent from the router? I do have the ip domain-list/name commands configured, but can I set this for the async-group, and pass it down when a user connects and receives ip information? thanks for your help, JR Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=12969t=12958 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Question About Ciscowork [7:12621]
Syam, would you please describe what you mean by I cannot set. BTW, I don't remember that there is snmp string for ANI server; there are snmp strings for devices that ANI server uses, I guess that's what you've meant. So, you've started web browser and connected to ciscoworks server, logged into it, select Cisco Works/Setup/ANI Server. Then you click on SNMP ..., and in right part of the window you get editor window with current configuration. Right ? Now, enter for each device: x.y.z.w:public_string::private_string That should work. Click on Apply. On question Run discovery now click on No. Go into ANI Server / Discovery menu. Enter seed device(s) on the right. Click OK. Go into Campus Manager / Topology Window. Click on Discovery. That should work. Anyway, if editing snmp strings through java applet doesn't work, that's serious problem. File with strings is located at /etc/cwsi/anisnmp.conf, you should be able to edit it by hand. Sasa norsyam ariffin wrote: I cannot set snmp string for ANI server. Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=12970t=12621 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Large Collisions on Vlan1 [7:12961]
You need to clear the counters and establish a time frame for this. 19 million collisions isn't a lot in a well loaded switch that has been up for a long time. If you clear the counters and the number increases quickly, you may have a speed or duplex issue or a bad cable. You said this was an ISL trunk so you should manually set both ends at 100 mbps (or 1000mbps if you've got the special card for the 2924 and a good port on the 6500) and also manually set the link to full duplex. -Original Message- From: Kwame [mailto:[EMAIL PROTECTED]] Sent: Thursday, July 19, 2001 12:25 PM To: [EMAIL PROTECTED] Subject: Large Collisions on Vlan1 [7:12961] What does it mean when the sh int vlan1 output shows large collisions? For example on a 2924 XL with an ISL trunk to a 6509 I go the ff output upon issuing the SH INT VLAN1 command: 0 output errors, 19108404 collisions, 0 interface resets Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=12971t=12961 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: IFSpeed [7:12964]
The OVForum mailing list might be a better place to ask a question like this. The quick answer is that NNM sometimes gets its interface speed information from the 'bandwidth' statement. So, if you set the bandwidth artificially low, then the actual link utilization may exceed 100%. As a test (not on a production network unless you know what effect this will have) you could change the bandwidth statement on a interface and then re-run your data collection and see if it changes. If you post this to the ovforum list you'll probably get a better answer from someone with more experience with NNM. If you're not familiar with that list, go to www.ovforum.org to sign up. HTH, John Picciani Francesco Saverio 7/19/01 10:49:16 AM In NNM I have some links with bandwidth uilization 100%. I know this is a problem with the MIB variable ifspeed but I don't know the details. Can someone help me to resolve this problem. Thanks Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=12972t=12964 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: ios features [7:12945]
It's called the Feature navigator. http://www.cisco.com/go/fn/ -Original Message- From: Donald B Johnson jr [mailto:[EMAIL PROTECTED]] Sent: Thursday, July 19, 2001 10:44 AM To: [EMAIL PROTECTED] Subject: ios features [7:12945] Does anyone remember the link that allows you to search for a IOS version based on a feature, say DHCP. Don Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=12973t=12945 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: New CCIE Lab!!??!!! [7:12926] - IGNORE THIS - JOKE [7:12975]
I do believe that the format IS changing to a one day lab, so it's actually taking the piss out of the reasons Cisco are giving for changing the format... Personally, I think CCIE is THE most respected vendor certification out there, so why change what (to my mind) has been a great format for seperating the weed from the chaff?? In the end, the market will get swamped with half baked CCIE's who have no substantive real world experience and the value of the cert will go down... much like the way the MCSE went.. thats my two cents -Original Message- From: Andrew Larkins [mailto:[EMAIL PROTECTED]] Sent: 19 July 2001 14:52 To: [EMAIL PROTECTED] Subject: RE: New CCIE Lab!!??!!! [7:12926] - IGNORE THIS - JOKE [7:12943] thanks I read this after an all night work session - half asleep -Original Message- From: Ciaron Gogarty [mailto:[EMAIL PROTECTED]] Sent: 19 July 2001 15:23 To: [EMAIL PROTECTED] Subject: RE: New CCIE Lab!!??!!! [7:12926] I think u should read the article more closely ;-) -Original Message- From: Andrew Larkins [mailto:[EMAIL PROTECTED]] Sent: 19 July 2001 10:05 To: [EMAIL PROTECTED] Subject: FW: New CCIE Lab!!??!!! [7:12926] This is what I received from a colleague. Is this true? http://angelfire.com/my/no1daylab/new_format.html Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=12975t=12975 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Remote Access [7:12958]
The clients are getting assigned from a local pool using ppp...They are authenticated against a securid server using tacacs+. Once they are authenticated we have them type ppp default at the router prompt to finish the connection. Below is the config with my ip info omitted. Thanks for everyone's help, JR ip domain-list * ip domain-list * ip domain-name * ip name-server x.x.x.x ip name-server x.x.x.x ip name-server x.x.x.x ip name-server x.x.x.x ip address-pool local ip local pool local 'range' interface Group-Async1 ip unnumbered Loopback0 no ip directed-broadcast encapsulation ppp ip tcp header-compression passive dialer in-band dialer idle-timeout 900 dialer wait-for-carrier-time 60 dialer-group 1 async dynamic address async dynamic routing async mode interactive no snmp trap link-status peer default ip address pool local no fair-queue group-range 1 24 line 2 24 exec-timeout 30 0 logout-warning 120 script dialer cisco-default accounting connection test login authentication async-tacacs+ modem Dialin modem autoconfigure discovery terminal-type vt100 Hire, Ejay wrote: It is possible to do this, depending on how your clients are getting the Ip addresses. From your statements I assume the access sever is handing them out via PPP, but where is the router getting the IP's? From a local pool (most likely), a radius server, a local DHCP server, or ? Additionally, can you post or e-mail me a copy of your config. -Original Message- From: JR Van Noy [mailto:[EMAIL PROTECTED]] Sent: Thursday, July 19, 2001 11:58 AM To: [EMAIL PROTECTED] Subject: Remote Access [7:12958] I have a 3640 set up with async dial in for remote users. The laptops must be configured to to append domain suffixes in order resolve host names. Is it possible to have this information sent from the router? I do have the ip domain-list/name commands configured, but can I set this for the async-group, and pass it down when a user connects and receives ip information? thanks for your help, JR Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=12976t=12958 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
WinAmp Skins [7:12977]
I have 2 through 12 listed on a page at http://griffin.tzo.com. This is a cable modem connection, so please be patient. Kelly D Griffin, CCNA, CCDA Network Engineer Kg2 Network Design 877.418.4025 http://www.kg2.com Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=12977t=12977 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Latency on ATM interface - Any ideas [7:12978]
I experience intermittent increased latency on extended pings from a 3662 to another 3662 router accross my lab WAN. The ping starts off with replies at 32 ms but once in a while the reply goes over 600ms. ie the replies are not constant. Removing the vbr-nrt from my config results in faster replies between 1 and 2 ms but again every 13th or so reply is 10ms. Does any one know what maybe causing this??? My config is as follows Router A: interface ATM3/0 no ip address atm ilmi-keepalive pvc 0/16 ilmi ! ! interface ATM3/0.1 point-to-point ip address 192.168.1.2 255.255.255.252 pvc 2/100 protocol ip 192.168.1.1 broadcast vbr-nrt 512 128 100 encapsulation aal5snap ! ! interface ATM3/0.2 point-to-point pvc voice 2/101 cbr 500 encapsulation aal5mux voice ! Router B interface ATM3/0 no ip address atm ilmi-keepalive pvc 0/16 ilmi ! ! interface ATM3/0.1 point-to-point ip address 192.168.1.1 255.255.255.252 pvc ip 0/50 protocol ip 192.168.1.2 broadcast vbr-nrt 512 128 100 encapsulation aal5snap ! ! interface ATM3/0.2 point-to-point pvc voice 0/51 cbr 500 encapsulation aal5mux voice ! ! __ Do You Yahoo!? Get personalized email addresses from Yahoo! Mail http://personal.mail.yahoo.com/ Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=12978t=12978 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Large Collisions on Vlan1 [7:12961]
Massive collisions implies half duplex transmission on interfaces expecting full duplex access. I'll have to check this out, but I think you might have duplex setting programmed as negotiate on both sides of trunk. Seems to me that some platforms will default back to half-duplex and thus the trunk is not really working. Will revisit this site later, so don't necessarily trust this first impression... Cheers... Dennis Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=12967t=12961 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: New CCIE Lab!!??!!! [7:12926] - IGNORE THIS - JOKE [7:12980]
Are you missing the point that the lab with still be very tough? The only issue is meeting the customer demand for rack time for testing. Cisco cannot do this in a two day format and much of the two day stuff was overhead. I personally think one day will be tougher. Pete *** REPLY SEPARATOR *** On 7/19/2001 at 1:25 PM Ciaron Gogarty wrote: I do believe that the format IS changing to a one day lab, so it's actually taking the piss out of the reasons Cisco are giving for changing the format... Personally, I think CCIE is THE most respected vendor certification out there, so why change what (to my mind) has been a great format for seperating the weed from the chaff?? In the end, the market will get swamped with half baked CCIE's who have no substantive real world experience and the value of the cert will go down... much like the way the MCSE went.. thats my two cents -Original Message- From: Andrew Larkins [mailto:[EMAIL PROTECTED]] Sent: 19 July 2001 14:52 To: [EMAIL PROTECTED] Subject: RE: New CCIE Lab!!??!!! [7:12926] - IGNORE THIS - JOKE [7:12943] thanks I read this after an all night work session - half asleep -Original Message- From: Ciaron Gogarty [mailto:[EMAIL PROTECTED]] Sent: 19 July 2001 15:23 To: [EMAIL PROTECTED] Subject: RE: New CCIE Lab!!??!!! [7:12926] I think u should read the article more closely ;-) -Original Message- From: Andrew Larkins [mailto:[EMAIL PROTECTED]] Sent: 19 July 2001 10:05 To: [EMAIL PROTECTED] Subject: FW: New CCIE Lab!!??!!! [7:12926] This is what I received from a colleague. Is this true? http://angelfire.com/my/no1daylab/new_format.html Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=12980t=12980 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Remote Access [7:12958]
yes u just need a async-bootp dns-server command folowed by yr dns srv ip and u are done and remove the dns suffix from client as welll Best Regards Have A Good Day!! Farhan Ahmed MCSE+I, MCP Win2k, CCDA, CCNA, CSE Network Engineer Mideast Data Systems Abudhabi Uae. -Original Message- From: JR Van Noy [mailto:[EMAIL PROTECTED]] Sent: Thursday, July 19, 2001 9:31 PM To: [EMAIL PROTECTED] Subject: Re: Remote Access [7:12958] The clients are getting assigned from a local pool using ppp...They are authenticated against a securid server using tacacs+. Once they are authenticated we have them type ppp default at the router prompt to finish the connection. Below is the config with my ip info omitted. Thanks for everyone's help, JR ip domain-list * ip domain-list * ip domain-name * ip name-server x.x.x.x ip name-server x.x.x.x ip name-server x.x.x.x ip name-server x.x.x.x ip address-pool local ip local pool local 'range' interface Group-Async1 ip unnumbered Loopback0 no ip directed-broadcast encapsulation ppp ip tcp header-compression passive dialer in-band dialer idle-timeout 900 dialer wait-for-carrier-time 60 dialer-group 1 async dynamic address async dynamic routing async mode interactive no snmp trap link-status peer default ip address pool local no fair-queue group-range 1 24 line 2 24 exec-timeout 30 0 logout-warning 120 script dialer cisco-default accounting connection test login authentication async-tacacs+ modem Dialin modem autoconfigure discovery terminal-type vt100 Hire, Ejay wrote: It is possible to do this, depending on how your clients are getting the Ip addresses. From your statements I assume the access sever is handing them out via PPP, but where is the router getting the IP's? From a local pool (most likely), a radius server, a local DHCP server, or ? Additionally, can you post or e-mail me a copy of your config. -Original Message- From: JR Van Noy [mailto:[EMAIL PROTECTED]] Sent: Thursday, July 19, 2001 11:58 AM To: [EMAIL PROTECTED] Subject: Remote Access [7:12958] I have a 3640 set up with async dial in for remote users. The laptops must be configured to to append domain suffixes in order resolve host names. Is it possible to have this information sent from the router? I do have the ip domain-list/name commands configured, but can I set this for the async-group, and pass it down when a user connects and receives ip information? thanks for your help, JR [GroupStudy.com removed an attachment of type application/octet-stream which had a name of Farhan Ahmed.vcf] Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=12981t=12958 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Latency on ATM interface - Any ideas [7:12978]
can u send sh int output uncleared and after clearing counters... -Original Message- From: Eric Mwambaji [mailto:[EMAIL PROTECTED]] Sent: Thursday, July 19, 2001 9:51 PM To: [EMAIL PROTECTED] Subject: Latency on ATM interface - Any ideas [7:12978] I experience intermittent increased latency on extended pings from a 3662 to another 3662 router accross my lab WAN. The ping starts off with replies at 32 ms but once in a while the reply goes over 600ms. ie the replies are not constant. Removing the vbr-nrt from my config results in faster replies between 1 and 2 ms but again every 13th or so reply is 10ms. Does any one know what maybe causing this??? My config is as follows Router A: interface ATM3/0 no ip address atm ilmi-keepalive pvc 0/16 ilmi ! ! interface ATM3/0.1 point-to-point ip address 192.168.1.2 255.255.255.252 pvc 2/100 protocol ip 192.168.1.1 broadcast vbr-nrt 512 128 100 encapsulation aal5snap ! ! interface ATM3/0.2 point-to-point pvc voice 2/101 cbr 500 encapsulation aal5mux voice ! Router B interface ATM3/0 no ip address atm ilmi-keepalive pvc 0/16 ilmi ! ! interface ATM3/0.1 point-to-point ip address 192.168.1.1 255.255.255.252 pvc ip 0/50 protocol ip 192.168.1.2 broadcast vbr-nrt 512 128 100 encapsulation aal5snap ! ! interface ATM3/0.2 point-to-point pvc voice 0/51 cbr 500 encapsulation aal5mux voice ! ! __ Do You Yahoo!? Get personalized email addresses from Yahoo! Mail http://personal.mail.yahoo.com/ Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=12982t=12978 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
CISS Certification [7:12983]
Please, Does anyone know about the new Cisco Qualified Specialist CISS certification? Has anyone taken it? I'm planning to go for it and would like to get some references to start studying. At the Cisco's web page, it has some information, but I'm having difficulties to register for the Web-based training on both Cisco's training partners. Both are located in Asia and I tried to contact them by phone, but one didn't speak English and the other I couldn't get through. To accomplish this I need to take CISA, CISAE and CISSS Web-based training and submit myself to the certifications exams (Architecture Essentials, Application Essentials and finally Solutions). Does anyone know if the exams are focused on the general concepts or if it is focused on specific Cisco's products? Thanks, Ernani Araujo CCIE#5603 Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=12983t=12983 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Packet Sizes [7:12826]
At 09:20 AM 7/19/01, Lupi, Guy wrote: Thank you to all who replied to this post. I do have another question for you. When the packet is sent to layer 2 for encapsulation and transmission, if it is Ethernet, an Ethernet header is placed on and the frame is transmitted. As far as I know the only requirement is that the frame must end on a 32 bit boundary I don't believe there is any such requirement. TCP and IP headers must end on a 32-bit boundary, but the data doesn't have to. , must be at least 64 bytes, and is not padded The Ethernet driver may do the padding if the upper layer does not. further. So that if the packet is 700 bytes, and is encapsulated in an Ethernet frame, the total would be approximately 726 bytes. That sounds right for most cases. To the 700, you would add: 8 bytes of preamble (This is usually not counted as part of the frame. The preamble is used for clock synchronization.) 14 bytes Ethernet header: dest, src, type or length 4 bytes CRC Maybe an 3 or 4-byte LLC header Maybe a 5-byte SNAP header Is this correct? -Original Message- From: Priscilla Oppenheimer [mailto:[EMAIL PROTECTED]] Sent: Wednesday, July 18, 2001 2:52 PM To: [EMAIL PROTECTED] Subject: Re: Packet Sizes [7:12826] FTP generally uses a full-size packet: 1500 bytes on Ethernet, not counting the header, CRC, preamble, inter-frame gap, or any VLAN or MPLS tagging. HTTP does not use a full-size packet usually. You would think it would, but it tends to use a 500-600 byte packet size. Using a shorter packet size improves perceived performance because the screen can show partial data while more data is en route. ICMP depends on what you are doing and what parameters you use. Most error or warning messages would be very short, probably 64 bytes or so. If it's ICMP echo (ping), then the user can specify the number of bytes. TFTP sends data in 512 byte blocks. Add the 8-byte UDP and 20-byte IP header. For all of these examples, there may be additional shorter packets for ACKs and other overhead. Priscilla At 11:41 AM 7/18/01, Lupi, Guy wrote: Does anyone have a list of average packet sizes for different services? Things like FTP, HTTP, ICMP, TFTP and the like. Just something general is fine, I am aware that there is no hard and fast rule. Priscilla Oppenheimer http://www.priscilla.com Priscilla Oppenheimer http://www.priscilla.com Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=12986t=12826 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: New CCIE Lab!!??!!! [7:12926] - IGNORE THIS - JOKE [7:12988]
Perhaps -- you may be correct -- however, it is also possible that there are other justifiable reasons for the change and that the restructuring will be as arduous and thorough as the original lab. My read on what they are saying -- is that many of the fundamental tasks (static routes etc) we should have mastered (or at least familiarized ourselves with) during the CCNA/CCNP. However, I would be that while those tasks will no longer be graded -- you would still need a mastery of those basics to be able to proceed with the tasks required of a one-day lab (Hopefully!!!). Certainly the complexities of the more advanced tasks will assume a strong understanding of the basics. But we'll see!!! Greg Macaulay Oldest CCNP/CCDP on Earth Lifetime Member of AARP Retired Attorney/Law Professor -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Ciaron Gogarty Sent: Thursday, July 19, 2001 1:25 PM To: [EMAIL PROTECTED] Subject: RE: New CCIE Lab!!??!!! [7:12926] - IGNORE THIS - JOKE [7:12975] I do believe that the format IS changing to a one day lab, so it's actually taking the piss out of the reasons Cisco are giving for changing the format... Personally, I think CCIE is THE most respected vendor certification out there, so why change what (to my mind) has been a great format for seperating the weed from the chaff?? In the end, the market will get swamped with half baked CCIE's who have no substantive real world experience and the value of the cert will go down... much like the way the MCSE went.. thats my two cents -Original Message- From: Andrew Larkins [mailto:[EMAIL PROTECTED]] Sent: 19 July 2001 14:52 To: [EMAIL PROTECTED] Subject: RE: New CCIE Lab!!??!!! [7:12926] - IGNORE THIS - JOKE [7:12943] thanks I read this after an all night work session - half asleep -Original Message- From: Ciaron Gogarty [mailto:[EMAIL PROTECTED]] Sent: 19 July 2001 15:23 To: [EMAIL PROTECTED] Subject: RE: New CCIE Lab!!??!!! [7:12926] I think u should read the article more closely ;-) -Original Message- From: Andrew Larkins [mailto:[EMAIL PROTECTED]] Sent: 19 July 2001 10:05 To: [EMAIL PROTECTED] Subject: FW: New CCIE Lab!!??!!! [7:12926] This is what I received from a colleague. Is this true? http://angelfire.com/my/no1daylab/new_format.html Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=12988t=12988 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: To CCIE's without a job [7:12805]
I'm sure there are people who are good at both types of tasks: CCIE tasks and software development tasks. For both jobs, you have to be smart, that's for sure. Well, thinking about the work of Howard Gardner, who wrote some terrific books on multiple intelligences, I would change that. To be a CCIE or software developer you need logical/mathematical intelligence. Linguistic intelligence helps but is not required for either. There seems to be a high correlation between logical/mathematical and musical intelligence. I suspect that for many support jobs, you need body/kinesthetic intelligence and spatial intelligence, which many software developers do not have. At my local high school I help with both hardware and Cisco classes. The school requires the hardware class before the Cisco classes. A certain set of students do really well in the hardware class because they have excellent body and spatial intelligence. They can take apart and rebuild a computer in seconds. Then they get to the Cisco Academy class and are expected to read volumes of material on the theory of networking, deal with obscure subnetting scenarios, learn file-naming conventions for Cisco IOS, pass a written multiple-choice test every other week (requiring linguistic intelligence), etc. They spend almost no time building networks. Most of the students who were stars in the hardware class do terribly in the Cisco classes. It's sad to see them decide that maybe they aren't good with computers afterall. I try to build up their egos again, because I think the Cisco Academy materials are completely wrong for a high school and don't take into account that the networking field needs people of different types of intelligence. That's my $0001. I'd love to hear those blues, Ole! ;-) I love the blues. Priscilla At 09:07 AM 7/19/01, Ole Drews Jensen wrote: I hear what you're saying Phil, and agree that these two areas are very different. My problem was always the forgetting the time when I was diving in thousands lines of codes, and I would suddently look at the clock and discover that it was 4 o'clock in the morning. It doesn't mean however that you can't do both. It's like when I'm playing my guitar. Sometimes, I grap my Jackson and play Satriani or Nuno, and at other times, I grap my handmade Spanish guitar and play classical music, but most often I use my SRV signature stratocaster and play blues. The fun begins when you're mixing them all together - that's when you start playing like Blackmore or Yngwie... After that being said, I realize that keeping up with new technologies in both areas can be tough and very time dependant, but it can be done. Another 0010 cents. Take care, Ole ~~~ Ole Drews Jensen Systems Network Manager CCNA, MCSE, MCP+I RWR Enterprises, Inc. [EMAIL PROTECTED] ~~~ http://www.RouterChief.com ~~~ NEED A JOB ??? http://www.oledrews.com/job ~~~ -Original Message- From: Phil Barker [mailto:[EMAIL PROTECTED]] Sent: Thursday, July 19, 2001 4:56 AM To: Ole Drews Jensen; [EMAIL PROTECTED] Subject: RE: To CCIE's without a job [7:12805] Ole, I think I know where Priscilla is coming from. I developed software for 10 years (mainly C/C++) before turning to Network Engineering. The difference in the roles in my experience has been dramatic. Software Engineering requires an intensity of concentration that I can only compare to playing chess. I was rarely required to interact with customers and as a result my interpersonal skills didn't develop. I took my first job in Networking for a major bank. This was very open plan and one day the team leader called the regular meeting. Everyone shuffled towards the meeting room EXCEPT me. 45 mins later my team leader came looking for me. I was still at my desk, deep in concentration. She couldn't stop laughing as everyone else was taking bets as to when I would realise that no-one else was there. I hadn't noticed a thing. Customer interaction has also been a learning curve but fortunately I appear to have picked this skill up quite naturally. I am much happier in my work now and don't intend to return to Software Development. Both Software development and Network Engineering are such wide and diverse fields you cannot possibly keep up with both. I havn't written Software for 5 years now and while the logical skill required to do so will never leave me the Microsoft Foundation Clases certainly have. Regards, Phil. --- Ole Drews Jensen wrote: I don't agree with your Priscilla. Again, I am not a CCIE yet, but I'm on my way. I like doing both things (and system administration), but then again - maybe I have a split personality 8^O I agree with you about not finding many with this skill, but hopefully I will become one soon. Take care, Ole
RE: Latency on ATM interface - Any ideas [7:12978]
send me in using different MTU sizes in extended pings -Original Message- From: Eric Mwambaji [mailto:[EMAIL PROTECTED]] Sent: Thursday, July 19, 2001 9:51 PM To: [EMAIL PROTECTED] Subject: Latency on ATM interface - Any ideas [7:12978] I experience intermittent increased latency on extended pings from a 3662 to another 3662 router accross my lab WAN. The ping starts off with replies at 32 ms but once in a while the reply goes over 600ms. ie the replies are not constant. Removing the vbr-nrt from my config results in faster replies between 1 and 2 ms but again every 13th or so reply is 10ms. Does any one know what maybe causing this??? My config is as follows Router A: interface ATM3/0 no ip address atm ilmi-keepalive pvc 0/16 ilmi ! ! interface ATM3/0.1 point-to-point ip address 192.168.1.2 255.255.255.252 pvc 2/100 protocol ip 192.168.1.1 broadcast vbr-nrt 512 128 100 encapsulation aal5snap ! ! interface ATM3/0.2 point-to-point pvc voice 2/101 cbr 500 encapsulation aal5mux voice ! Router B interface ATM3/0 no ip address atm ilmi-keepalive pvc 0/16 ilmi ! ! interface ATM3/0.1 point-to-point ip address 192.168.1.1 255.255.255.252 pvc ip 0/50 protocol ip 192.168.1.2 broadcast vbr-nrt 512 128 100 encapsulation aal5snap ! ! interface ATM3/0.2 point-to-point pvc voice 0/51 cbr 500 encapsulation aal5mux voice ! ! __ Do You Yahoo!? Get personalized email addresses from Yahoo! Mail http://personal.mail.yahoo.com/ Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=12989t=12978 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Packet Sizes [7:12826]
At 09:44 AM 7/19/01, Phil Barker wrote: Guy, it would yield 726 only if you were using an Ethernet SNAP frame. My guess is that he was counting the preamble. The preamble doesn't really count as part of the frame, but newbies often do count it. For Ethernet 802.3 (6 byte destination + 6 byte source (mac addresses) + 2 byte length field + 1 byte SSAP + 1 byte DSAP + 1 byte control + 700 payload + 4 byte CRC) = 721. For Ethernet Raw (6 byte destination + 6 byte source (mac addresses) + 2 ethertype + 700 payload + 4 byte CRC) = 718. Call that Ethernet Version II. Ethernet raw is the term used for Novell's frame type that has length but no LLC SSAP, DSAP or control. Ethernet Raw (6 byte destination + 6 byte source (mac addresses) + 2 length + 700 payload + 4 byte CRC) = 718. The payload launches right into the IPX layer with the IPX checksum, which isn't used and is always FF FF. May I recommend a good paper on this topic? It's called Troubleshooting Ethernet Networks and it is currently free at http://www.certificationzone.com. The frame formats are nicely drawn in a GIF by yours truly. ;-) Priscilla For Ethernet SNAP (6 byte destination + 6 byte source (mac addresses) + 2 byte length field + 1 byte SSAP + 1 byte DSAP (both = 0xAA) + 1 byte control + 5 byte OUI + 700 payload + 4 byte CRC) = 726. Regards, Phil. PS: I think there is a pocket handbook by Miller that explains this in more detail. --- Lupi, Guy wrote: Thank you to all who replied to this post. I do have another question for you. When the packet is sent to layer 2 for encapsulation and transmission, if it is Ethernet, an Ethernet header is placed on and the frame is transmitted. As far as I know the only requirement is that the frame must end on a 32 bit boundary, must be at least 64 bytes, and is not padded further. So that if the packet is 700 bytes, and is encapsulated in an Ethernet frame, the total would be approximately 726 bytes. Is this correct? -Original Message- From: Priscilla Oppenheimer [mailto:[EMAIL PROTECTED]] Sent: Wednesday, July 18, 2001 2:52 PM To: [EMAIL PROTECTED] Subject: Re: Packet Sizes [7:12826] FTP generally uses a full-size packet: 1500 bytes on Ethernet, not counting the header, CRC, preamble, inter-frame gap, or any VLAN or MPLS tagging. HTTP does not use a full-size packet usually. You would think it would, but it tends to use a 500-600 byte packet size. Using a shorter packet size improves perceived performance because the screen can show partial data while more data is en route. ICMP depends on what you are doing and what parameters you use. Most error or warning messages would be very short, probably 64 bytes or so. If it's ICMP echo (ping), then the user can specify the number of bytes. TFTP sends data in 512 byte blocks. Add the 8-byte UDP and 20-byte IP header. For all of these examples, there may be additional shorter packets for ACKs and other overhead. Priscilla At 11:41 AM 7/18/01, Lupi, Guy wrote: Does anyone have a list of average packet sizes for different services? Things like FTP, HTTP, ICMP, TFTP and the like. Just something general is fine, I am aware that there is no hard and fast rule. Priscilla Oppenheimer http://www.priscilla.com [EMAIL PROTECTED] Do You Yahoo!? Get your free @yahoo.co.uk address at http://mail.yahoo.co.uk or your free @yahoo.ie address at http://mail.yahoo.ie Priscilla Oppenheimer http://www.priscilla.com Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=12990t=12826 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: New CCIE Lab!!??!!! [7:12926] - IGNORE THIS - JOKE [7:12991]
I dont think anyone should say anything about the new lab until they have experienced it. And if you are unfortunate enough to be able to compare both the go ahead. I dont think CISCO is going to in anyway harm the program. Raul - Original Message - From: Greg Macaulay To: Sent: Thursday, July 19, 2001 2:38 PM Subject: RE: New CCIE Lab!!??!!! [7:12926] - IGNORE THIS - JOKE [7:12988] Perhaps -- you may be correct -- however, it is also possible that there are other justifiable reasons for the change and that the restructuring will be as arduous and thorough as the original lab. My read on what they are saying -- is that many of the fundamental tasks (static routes etc) we should have mastered (or at least familiarized ourselves with) during the CCNA/CCNP. However, I would be that while those tasks will no longer be graded -- you would still need a mastery of those basics to be able to proceed with the tasks required of a one-day lab (Hopefully!!!). Certainly the complexities of the more advanced tasks will assume a strong understanding of the basics. But we'll see!!! Greg Macaulay Oldest CCNP/CCDP on Earth Lifetime Member of AARP Retired Attorney/Law Professor -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Ciaron Gogarty Sent: Thursday, July 19, 2001 1:25 PM To: [EMAIL PROTECTED] Subject: RE: New CCIE Lab!!??!!! [7:12926] - IGNORE THIS - JOKE [7:12975] I do believe that the format IS changing to a one day lab, so it's actually taking the piss out of the reasons Cisco are giving for changing the format... Personally, I think CCIE is THE most respected vendor certification out there, so why change what (to my mind) has been a great format for seperating the weed from the chaff?? In the end, the market will get swamped with half baked CCIE's who have no substantive real world experience and the value of the cert will go down... much like the way the MCSE went.. thats my two cents -Original Message- From: Andrew Larkins [mailto:[EMAIL PROTECTED]] Sent: 19 July 2001 14:52 To: [EMAIL PROTECTED] Subject: RE: New CCIE Lab!!??!!! [7:12926] - IGNORE THIS - JOKE [7:12943] thanks I read this after an all night work session - half asleep -Original Message- From: Ciaron Gogarty [mailto:[EMAIL PROTECTED]] Sent: 19 July 2001 15:23 To: [EMAIL PROTECTED] Subject: RE: New CCIE Lab!!??!!! [7:12926] I think u should read the article more closely ;-) -Original Message- From: Andrew Larkins [mailto:[EMAIL PROTECTED]] Sent: 19 July 2001 10:05 To: [EMAIL PROTECTED] Subject: FW: New CCIE Lab!!??!!! [7:12926] This is what I received from a colleague. Is this true? http://angelfire.com/my/no1daylab/new_format.html Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=12991t=12991 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Remote Access [7:12958]
The Async BootP commands only work with SLIP connections, not PPP. (See http://www.cisco.com/univercd/cc/td/doc/product/software/ssr921/rpcr/79012.h tm#xtocid26281) Additionally, their isn't one that will supply the domain name that will be postpended to the hostname to make a fqdn (host.domain.tld). A possible solution appears to be proxying the ip requests to a dhcp server, or router acting as a dhcp server. I'll be testing it in a minute or two. -eh -Original Message- From: Farhan Ahmed [mailto:[EMAIL PROTECTED]] Sent: Thursday, July 19, 2001 2:04 PM To: [EMAIL PROTECTED] Subject: RE: Remote Access [7:12958] yes u just need a async-bootp dns-server command folowed by yr dns srv ip and u are done and remove the dns suffix from client as welll Best Regards Have A Good Day!! Farhan Ahmed MCSE+I, MCP Win2k, CCDA, CCNA, CSE Network Engineer Mideast Data Systems Abudhabi Uae. -Original Message- From: JR Van Noy [mailto:[EMAIL PROTECTED]] Sent: Thursday, July 19, 2001 9:31 PM To: [EMAIL PROTECTED] Subject: Re: Remote Access [7:12958] The clients are getting assigned from a local pool using ppp...They are authenticated against a securid server using tacacs+. Once they are authenticated we have them type ppp default at the router prompt to finish the connection. Below is the config with my ip info omitted. Thanks for everyone's help, JR ip domain-list * ip domain-list * ip domain-name * ip name-server x.x.x.x ip name-server x.x.x.x ip name-server x.x.x.x ip name-server x.x.x.x ip address-pool local ip local pool local 'range' interface Group-Async1 ip unnumbered Loopback0 no ip directed-broadcast encapsulation ppp ip tcp header-compression passive dialer in-band dialer idle-timeout 900 dialer wait-for-carrier-time 60 dialer-group 1 async dynamic address async dynamic routing async mode interactive no snmp trap link-status peer default ip address pool local no fair-queue group-range 1 24 line 2 24 exec-timeout 30 0 logout-warning 120 script dialer cisco-default accounting connection test login authentication async-tacacs+ modem Dialin modem autoconfigure discovery terminal-type vt100 Hire, Ejay wrote: It is possible to do this, depending on how your clients are getting the Ip addresses. From your statements I assume the access sever is handing them out via PPP, but where is the router getting the IP's? From a local pool (most likely), a radius server, a local DHCP server, or ? Additionally, can you post or e-mail me a copy of your config. -Original Message- From: JR Van Noy [mailto:[EMAIL PROTECTED]] Sent: Thursday, July 19, 2001 11:58 AM To: [EMAIL PROTECTED] Subject: Remote Access [7:12958] I have a 3640 set up with async dial in for remote users. The laptops must be configured to to append domain suffixes in order resolve host names. Is it possible to have this information sent from the router? I do have the ip domain-list/name commands configured, but can I set this for the async-group, and pass it down when a user connects and receives ip information? thanks for your help, JR Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=12992t=12958 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: New CCIE Lab!!??!!! [7:12926]
Peter, The issue isn't a one day / two day issue. I'm sure the one day lab with be tough and at first we will see a lot of people failing it. Cisco has to do this to ensure that it looks like a good decision but wait for a few months after a ton of people take it. The beta one day lab was really hard and failed many people. Bruce Caslow scored a 27/100 and Phil Remaker scored 35/100. Some people declined to take it because they knew that they would be setup to fail ;) But that isn't what Cisco is trying to do. Cisco is using the long waiting list as an excuse to move to a one day remote lab. If Cisco really wanted to shorten the waiting list they would fix the written but that wouldn't give them an excuse to go to a one day remote lab. People should not be fooled into thinking this a one day / two day issue or a long waiting list issue. This is just a start of the changes to come for the CCIE lab. Brian Dennis, CCIE #2210 (RS)(ISP/Dial) CCSI #98640 5G Networks, Inc. [EMAIL PROTECTED] -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Peter Van Oene Sent: Thursday, July 19, 2001 11:03 AM To: [EMAIL PROTECTED] Subject: RE: New CCIE Lab!!??!!! [7:12926] - IGNORE THIS - JOKE [7:12980] Are you missing the point that the lab with still be very tough? The only issue is meeting the customer demand for rack time for testing. Cisco cannot do this in a two day format and much of the two day stuff was overhead. I personally think one day will be tougher. Pete *** REPLY SEPARATOR *** On 7/19/2001 at 1:25 PM Ciaron Gogarty wrote: I do believe that the format IS changing to a one day lab, so it's actually taking the piss out of the reasons Cisco are giving for changing the format... Personally, I think CCIE is THE most respected vendor certification out there, so why change what (to my mind) has been a great format for seperating the weed from the chaff?? In the end, the market will get swamped with half baked CCIE's who have no substantive real world experience and the value of the cert will go down... much like the way the MCSE went.. thats my two cents -Original Message- From: Andrew Larkins [mailto:[EMAIL PROTECTED]] Sent: 19 July 2001 14:52 To: [EMAIL PROTECTED] Subject: RE: New CCIE Lab!!??!!! [7:12926] - IGNORE THIS - JOKE [7:12943] thanks I read this after an all night work session - half asleep -Original Message- From: Ciaron Gogarty [mailto:[EMAIL PROTECTED]] Sent: 19 July 2001 15:23 To: [EMAIL PROTECTED] Subject: RE: New CCIE Lab!!??!!! [7:12926] I think u should read the article more closely ;-) -Original Message- From: Andrew Larkins [mailto:[EMAIL PROTECTED]] Sent: 19 July 2001 10:05 To: [EMAIL PROTECTED] Subject: FW: New CCIE Lab!!??!!! [7:12926] This is what I received from a colleague. Is this true? http://angelfire.com/my/no1daylab/new_format.html Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=12993t=12926 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
5w5d: %AMDP2_FE-5-EXCESSCOLL: Ethernet0/0 TDR=9, TRC=0 [7:12994]
Does anybody already have that message in your routers? 5w5d: %AMDP2_FE-5-EXCESSCOLL: Ethernet0/0 TDR=9, TRC=0 It4s strange because I have a Cisco 2600 and I have no many workstations connected to it... If anybody had the same problem and found an answer please Thanks! Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=12994t=12994 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Remote Access [7:12958]
he is using ppp isnt it.. when the client will have the dns server ping hosta the dns will reply with the ip, and he would be able to ping by name.. if he make a zone on dns server lets say zonea.co.ae and then he would make a A record so hosta name will be hosta.zonea.co.ae when he will ping hosta he ll get a reply from hosta.zonea.co.ae what do u say? -Original Message- From: Hire, Ejay [mailto:[EMAIL PROTECTED]] Sent: Thursday, July 19, 2001 10:43 PM To: 'Farhan Ahmed'; [EMAIL PROTECTED] Subject: RE: Remote Access [7:12958] The Async BootP commands only work with SLIP connections, not PPP. (See http://www.cisco.com/univercd/cc/td/doc/product/software/ssr921/rpcr/79012.h tm#xtocid26281) Additionally, their isn't one that will supply the domain name that will be postpended to the hostname to make a fqdn (host.domain.tld). A possible solution appears to be proxying the ip requests to a dhcp server, or router acting as a dhcp server. I'll be testing it in a minute or two. -eh -Original Message- From: Farhan Ahmed [mailto:[EMAIL PROTECTED]] Sent: Thursday, July 19, 2001 2:04 PM To: [EMAIL PROTECTED] Subject: RE: Remote Access [7:12958] yes u just need a async-bootp dns-server command folowed by yr dns srv ip and u are done and remove the dns suffix from client as welll Best Regards Have A Good Day!! Farhan Ahmed MCSE+I, MCP Win2k, CCDA, CCNA, CSE Network Engineer Mideast Data Systems Abudhabi Uae. -Original Message- From: JR Van Noy [mailto:[EMAIL PROTECTED]] Sent: Thursday, July 19, 2001 9:31 PM To: [EMAIL PROTECTED] Subject: Re: Remote Access [7:12958] The clients are getting assigned from a local pool using ppp...They are authenticated against a securid server using tacacs+. Once they are authenticated we have them type ppp default at the router prompt to finish the connection. Below is the config with my ip info omitted. Thanks for everyone's help, JR ip domain-list * ip domain-list * ip domain-name * ip name-server x.x.x.x ip name-server x.x.x.x ip name-server x.x.x.x ip name-server x.x.x.x ip address-pool local ip local pool local 'range' interface Group-Async1 ip unnumbered Loopback0 no ip directed-broadcast encapsulation ppp ip tcp header-compression passive dialer in-band dialer idle-timeout 900 dialer wait-for-carrier-time 60 dialer-group 1 async dynamic address async dynamic routing async mode interactive no snmp trap link-status peer default ip address pool local no fair-queue group-range 1 24 line 2 24 exec-timeout 30 0 logout-warning 120 script dialer cisco-default accounting connection test login authentication async-tacacs+ modem Dialin modem autoconfigure discovery terminal-type vt100 Hire, Ejay wrote: It is possible to do this, depending on how your clients are getting the Ip addresses. From your statements I assume the access sever is handing them out via PPP, but where is the router getting the IP's? From a local pool (most likely), a radius server, a local DHCP server, or ? Additionally, can you post or e-mail me a copy of your config. -Original Message- From: JR Van Noy [mailto:[EMAIL PROTECTED]] Sent: Thursday, July 19, 2001 11:58 AM To: [EMAIL PROTECTED] Subject: Remote Access [7:12958] I have a 3640 set up with async dial in for remote users. The laptops must be configured to to append domain suffixes in order resolve host names. Is it possible to have this information sent from the router? I do have the ip domain-list/name commands configured, but can I set this for the async-group, and pass it down when a user connects and receives ip information? thanks for your help, JR Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=12995t=12958 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: CCIE market FLOOD !! was: Current Wait time on the lab [7:12996]
On Dec 9, 2:34am, [EMAIL PROTECTED] wrote: } } Can you give me some examples of developments they pulled back on/never } delivered? (we can take this off line if you prefer, I'm not sure what } interest there is in this discussion by others). I'm interested in this. As Caesar said, know thy enemy. Or, more to the point, it is always good to know what is going on in the marketplace. Competition keeps everybody on their toes and helps to improve both products and services. } We are starting to stage equiptment this week thoughwe used to be a } 3com shop and Extreme seemed to have the most/best interconnectivity with } the old 3com gear, among other reasons. Considering 3Com never was a serious player on the high end, and is now out of the market, you should probably plan on migrating away from your 3Com gear. }-- End of excerpt from [EMAIL PROTECTED] Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=12996t=12996 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Remote Access [7:12958]
u can also put the host name in wins server and use dnslookup on the wins tab it will give him a fqdn. -Original Message- From: Hire, Ejay [mailto:[EMAIL PROTECTED]] Sent: Thursday, July 19, 2001 11:03 PM To: [EMAIL PROTECTED] Subject: RE: Remote Access [7:12958] The Async BootP commands only work with SLIP connections, not PPP. (See http://www.cisco.com/univercd/cc/td/doc/product/software/ssr921/rpcr/79012.h tm#xtocid26281) Additionally, their isn't one that will supply the domain name that will be postpended to the hostname to make a fqdn (host.domain.tld). A possible solution appears to be proxying the ip requests to a dhcp server, or router acting as a dhcp server. I'll be testing it in a minute or two. -eh -Original Message- From: Farhan Ahmed [mailto:[EMAIL PROTECTED]] Sent: Thursday, July 19, 2001 2:04 PM To: [EMAIL PROTECTED] Subject: RE: Remote Access [7:12958] yes u just need a async-bootp dns-server command folowed by yr dns srv ip and u are done and remove the dns suffix from client as welll Best Regards Have A Good Day!! Farhan Ahmed MCSE+I, MCP Win2k, CCDA, CCNA, CSE Network Engineer Mideast Data Systems Abudhabi Uae. -Original Message- From: JR Van Noy [mailto:[EMAIL PROTECTED]] Sent: Thursday, July 19, 2001 9:31 PM To: [EMAIL PROTECTED] Subject: Re: Remote Access [7:12958] The clients are getting assigned from a local pool using ppp...They are authenticated against a securid server using tacacs+. Once they are authenticated we have them type ppp default at the router prompt to finish the connection. Below is the config with my ip info omitted. Thanks for everyone's help, JR ip domain-list * ip domain-list * ip domain-name * ip name-server x.x.x.x ip name-server x.x.x.x ip name-server x.x.x.x ip name-server x.x.x.x ip address-pool local ip local pool local 'range' interface Group-Async1 ip unnumbered Loopback0 no ip directed-broadcast encapsulation ppp ip tcp header-compression passive dialer in-band dialer idle-timeout 900 dialer wait-for-carrier-time 60 dialer-group 1 async dynamic address async dynamic routing async mode interactive no snmp trap link-status peer default ip address pool local no fair-queue group-range 1 24 line 2 24 exec-timeout 30 0 logout-warning 120 script dialer cisco-default accounting connection test login authentication async-tacacs+ modem Dialin modem autoconfigure discovery terminal-type vt100 Hire, Ejay wrote: It is possible to do this, depending on how your clients are getting the Ip addresses. From your statements I assume the access sever is handing them out via PPP, but where is the router getting the IP's? From a local pool (most likely), a radius server, a local DHCP server, or ? Additionally, can you post or e-mail me a copy of your config. -Original Message- From: JR Van Noy [mailto:[EMAIL PROTECTED]] Sent: Thursday, July 19, 2001 11:58 AM To: [EMAIL PROTECTED] Subject: Remote Access [7:12958] I have a 3640 set up with async dial in for remote users. The laptops must be configured to to append domain suffixes in order resolve host names. Is it possible to have this information sent from the router? I do have the ip domain-list/name commands configured, but can I set this for the async-group, and pass it down when a user connects and receives ip information? thanks for your help, JR Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=12997t=12958 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Remote Access [7:12958]
Thanks for investigating this. I agree with the DHCP solution. That will work best since these same remote users will bring their laptops into the office from time to time as well. JR Hire, Ejay wrote: The Async BootP commands only work with SLIP connections, not PPP. (See http://www.cisco.com/univercd/cc/td/doc/product/software/ssr921/rpcr/79012.h tm#xtocid26281) Additionally, their isn't one that will supply the domain name that will be postpended to the hostname to make a fqdn (host.domain.tld). A possible solution appears to be proxying the ip requests to a dhcp server, or router acting as a dhcp server. I'll be testing it in a minute or two. -eh -Original Message- From: Farhan Ahmed [mailto:[EMAIL PROTECTED]] Sent: Thursday, July 19, 2001 2:04 PM To: [EMAIL PROTECTED] Subject: RE: Remote Access [7:12958] yes u just need a async-bootp dns-server command folowed by yr dns srv ip and u are done and remove the dns suffix from client as welll Best Regards Have A Good Day!! Farhan Ahmed MCSE+I, MCP Win2k, CCDA, CCNA, CSE Network Engineer Mideast Data Systems Abudhabi Uae. -Original Message- From: JR Van Noy [mailto:[EMAIL PROTECTED]] Sent: Thursday, July 19, 2001 9:31 PM To: [EMAIL PROTECTED] Subject: Re: Remote Access [7:12958] The clients are getting assigned from a local pool using ppp...They are authenticated against a securid server using tacacs+. Once they are authenticated we have them type ppp default at the router prompt to finish the connection. Below is the config with my ip info omitted. Thanks for everyone's help, JR ip domain-list * ip domain-list * ip domain-name * ip name-server x.x.x.x ip name-server x.x.x.x ip name-server x.x.x.x ip name-server x.x.x.x ip address-pool local ip local pool local 'range' interface Group-Async1 ip unnumbered Loopback0 no ip directed-broadcast encapsulation ppp ip tcp header-compression passive dialer in-band dialer idle-timeout 900 dialer wait-for-carrier-time 60 dialer-group 1 async dynamic address async dynamic routing async mode interactive no snmp trap link-status peer default ip address pool local no fair-queue group-range 1 24 line 2 24 exec-timeout 30 0 logout-warning 120 script dialer cisco-default accounting connection test login authentication async-tacacs+ modem Dialin modem autoconfigure discovery terminal-type vt100 Hire, Ejay wrote: It is possible to do this, depending on how your clients are getting the Ip addresses. From your statements I assume the access sever is handing them out via PPP, but where is the router getting the IP's? From a local pool (most likely), a radius server, a local DHCP server, or ? Additionally, can you post or e-mail me a copy of your config. -Original Message- From: JR Van Noy [mailto:[EMAIL PROTECTED]] Sent: Thursday, July 19, 2001 11:58 AM To: [EMAIL PROTECTED] Subject: Remote Access [7:12958] I have a 3640 set up with async dial in for remote users. The laptops must be configured to to append domain suffixes in order resolve host names. Is it possible to have this information sent from the router? I do have the ip domain-list/name commands configured, but can I set this for the async-group, and pass it down when a user connects and receives ip information? thanks for your help, JR Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=12998t=12958 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Packet Sizes [7:12826]
!Hola! HTTP does not use a full-size packet usually. You would think it would, but it tends to use a 500-600 byte packet size. Using a shorter packet size improves perceived performance because the screen can show partial data while more data is en route. What HTTP servers do that? A quick check here let me see that most of the HTTP connections use full size packets. Priscilla Saludos, HoraPe --- Horacio J. Peqa [EMAIL PROTECTED] [EMAIL PROTECTED] [EMAIL PROTECTED] [EMAIL PROTECTED] Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=13000t=12826 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Subject: Why ISDN backup line come up ? [7:12920]
Comments within and below. First, I noted that you used the backup interface command on a physical interface. Have you considered the idea of using dialer interfaces as the backup interface? When you do this, it offers you a little bit more flexibility. For example, I noted that your serial interface is a 128kbps link. You may want to explore the possibility of using a dialer interface for two purposes. One purpose would be to act as a backup interface. Another purpose could be to use it for additional bandwidth if your primary serial interface gets congested. Hello all. I have 2 routers connected using leased line.Now I am trying to put a ISDN backup ,but the backup line does not come up. The status of ISDN line when the serial int. is up ,is BRI2/2 is standby mode, line protocol is down and should change to up upon going the serial line down but it's status remain unchanged even the serial link goes down . You are correct. The issue is one of troubleshooting. Assuming you have a primary link filure, your backup interface should go active (up and up) after a 5 second delay that you configured. According to you this is not happening. You have not mentioned what troubleshooting steps you have taken. When you remove the backup interface command from the primary interface, what is the output from show isdn status? Are layers 1 and 2 good? Assuming they are good, when you place the backup interface command back on the primary interface, what happens when you do a debug dialer and a debug ppp neg after the primary link has been made to fail. Assuming you had a dialer-list 1 protocol ip permit statement near the end of your config [note- you didn't post your entire config, so I am guessing here] you should get a call placed to the other side. More below... I have configued the serial int with backup interface BRI2/2 backup delay 5 10 commands . Also i tried to simulate the situation by putting the modem at Router A off to trigger the backup ISDN call but it does not happen and the ISDN status remain in standyby mode only. Can anybody help whether anyadditional command needs to be put up in either Serial or Bri interfaces? I am giving here th configuration of both the routers, routerA# interface BRI2/2 description Backup connectivity ip address 172.16.128.49 255.255.255.252 no ip directed-broadcast encapsulation ppp dialer map ip 172.16.128.50 name routerB x dialer-group 2 isdn switch-type basic-net3 I noted that you set your encapsulation to ppp. That is fine. One of the many/several options for ppp is authentication. You indicated in your dialer map statement that you will be doing authentication by use of the name command. Unfortunately however, you have not specified what method is to be used on either end of the link. I would start with ppp auth chap. It ends to be more secure. interface Serial1/3 description Leased link to RouterB bandwidth 128 backup delay 5 10 backup interface BRI2/2 ip address 172.16.128.17 255.255.255.252 no ip directed-broadcast no ip route-cache no ip mroute-cache How are you actually testing this? Since you didn't supply a full config, this is not readily apparent. For example, is there a LAN on the other side of router B? If so, what is the network address of the LAN interface? Where is the static (or other) route that points to this network? When you test your reachability, do you ping the other side of the WAN link, or the other side of the LAN network on router B? RouterB# interface BRI1/2 description Backup connectivity for RouterA ip address 172.16.128.50 255.255.255.252 encapsulation ppp no logging event subif-link-status dialer idle-timeout 3000 dialer wait-for-carrier-time 60 dialer map ip 172.16.128.49 name routerB YYY dialer-group 1 no fair-queue Here there is an additional problem. Look at the name command two lines above. The host name following the name command should be the target you are trying to authenticate, not yourself. Also, since you didn't post your entire config, I have no way of knowing whether you set the username/password lists for both routers. They would look like this and appear in the global config near the top: user RouterA pass sameone user RouterB pass sameone Note the passwords are the same, also referred to as a shared secret. interface Serial0/0 ip address 172.16.128.18 255.255.255.252 logging event subif-link-status bandwidth 128 hold-queue 75 in Thanks in advance for help Regards Bware This post has gotten kind of long. I will see if I can post an improved/enhanced config in a separate post, possibly later today as time permits. HTH, Paul Werner Get your own 800 number Voicemail, fax, email, and a lot more http://www.ureach.com/reg/tag Message Posted at:
Re: Passed CCNA [7:11900]
Hello. I4m studying to pass in the CCNA exam too and I really believe that courses are not very good, because it is a little superficial in all subjects. I personally prefer to get a cisco book, study it and practice at work and doing prep tests... If you like to share some information and need help i4m ready to you! :) []4s Borda. Tansel Akyuz wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... I passed CCNA exam two days ago. I didn't go to Cisci Academy or use RouterSim. I study with Cisco Press ICND book and training pappers. But I use Boson test and I think it was very useful. Regards Tansel -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] Sent: Wednesday, July 11, 2001 5:38 AM To: Tansel Akyuz Subject: Passed CCNA How did you do it? What did you use to study? Did you go to Cisco Academy, use routersim? Please share. Val Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=13001t=11900 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: New format for CCIE exams (written qualificati [7:12364]
Has anyone got an opinion on the ccbootcamp notes for the written? How comprehensive are they?? How many pages? etc. ANy feedback would be appreciated. Actually I have a friend (now a CCIE) who said he used on these notes (and nothing else) and passed on the first try. I wonder if this actually might be true -- especially for those who have just completed the CCNP -- a lot of the suggested books and resources I used on my journey through the CCNP -- thus - perhaps such reading is simply a review?? Of course those who are going straight to the CCIE (without the CCNP) or who have been away from their studies for awhile -- probably would do good to review Halabi, Doyle and their compatriots! Anyway -- still awaiting -- with bated breath -- comments, criticisms etc. on ccbootcamp written notes. Thanks in advance. Greg Macaulay Oldest CCNP/CCDP on Earth Lifetime Member of AARP Retired Attorney/Law Professor -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Dennis Laganiere Sent: Saturday, July 14, 2001 6:05 PM To: [EMAIL PROTECTED] Subject: RE: New format for CCIE exams (written qualification) [7:12364] Here is my advice to anyone who is even considering the CCIE track in the near future: The current exam is fairly well document; there are books, papers, websites, and of course, the boson exams. The new exam is just that, a new exam full of unknowns. I'm sure it too will become well researched, but for the first six months everyone is going to be in uncharted waters with no map to get to shore. As someone who took the CCNP exams when they were first offered, I know what it's like to sail without a map, trust me. In its statement Cisco says that those who pass the existing exam will not be required to redo the written. If I were even planning to jump on the written in the next year, my recommendation would be to take advantage of this time window to cram my brain full and take the current exam while you can. There should be plenty of time to take a hack at this before the beta exam period finished on the new test. If you need help finding the right materials to study; just look in the archives. Grab a couple of the study guides, buy the notes from ccbootcamp, download the bosons, and absolutely analyze the archives of this group like it's the Rosetta stone. Just my $.02 -Original Message- From: Ray Lovett [mailto:[EMAIL PROTECTED]] Sent: Saturday, July 14, 2001 11:14 AM To: [EMAIL PROTECTED] Subject: New format for CCIE exams (written qualification) [7:12364] Hi Group, Reading about the changes in store for the CCIE program I have a question. The following sentence suggests that the CCIE written exam will change as well, that much is clear but what I don't understand is how and when the written will change. Will the exam still be 100 multiple choice questions with a two-hour time limit or will you now have to cable some gear and produce an addressing plan/diagram? Also, does the new qualification exam begin on October 1 as well? The new CCIE format will move these basic tasks into an extended qualification exam and Cisco's other certifications, thus freeing the candidate's time for the more advanced CCIE skills. Maybe I'm missing something but I could use a little clarity on this one. Thanks, Ray -- Ray Lovett Network Engineer The Richards Group Dallas . Texas . 75231 === p : 214 . 891 . 5841 f : 214 . 891 . 3556 e : [EMAIL PROTECTED] === Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=12985t=12364 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Networkers presentation links [7:13002]
I know these have been posted before, but in case you missed it: http://www.cisco.com/networkers/nw01/pres/index.html lots of big PDF files. you may want to download or view over higher speed connections. enjoy Chuck Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=13002t=13002 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Remote Access [7:12958]
dhcp wont solve this problem ..i guess u have to pass out dns add to clients -Original Message- From: JR Van Noy [mailto:[EMAIL PROTECTED]] Sent: Thursday, July 19, 2001 11:31 PM To: [EMAIL PROTECTED] Subject: Re: Remote Access [7:12958] Thanks for investigating this. I agree with the DHCP solution. That will work best since these same remote users will bring their laptops into the office from time to time as well. JR Hire, Ejay wrote: The Async BootP commands only work with SLIP connections, not PPP. (See http://www.cisco.com/univercd/cc/td/doc/product/software/ssr921/rpcr/79012.h tm#xtocid26281) Additionally, their isn't one that will supply the domain name that will be postpended to the hostname to make a fqdn (host.domain.tld). A possible solution appears to be proxying the ip requests to a dhcp server, or router acting as a dhcp server. I'll be testing it in a minute or two. -eh -Original Message- From: Farhan Ahmed [mailto:[EMAIL PROTECTED]] Sent: Thursday, July 19, 2001 2:04 PM To: [EMAIL PROTECTED] Subject: RE: Remote Access [7:12958] yes u just need a async-bootp dns-server command folowed by yr dns srv ip and u are done and remove the dns suffix from client as welll Best Regards Have A Good Day!! Farhan Ahmed MCSE+I, MCP Win2k, CCDA, CCNA, CSE Network Engineer Mideast Data Systems Abudhabi Uae. -Original Message- From: JR Van Noy [mailto:[EMAIL PROTECTED]] Sent: Thursday, July 19, 2001 9:31 PM To: [EMAIL PROTECTED] Subject: Re: Remote Access [7:12958] The clients are getting assigned from a local pool using ppp...They are authenticated against a securid server using tacacs+. Once they are authenticated we have them type ppp default at the router prompt to finish the connection. Below is the config with my ip info omitted. Thanks for everyone's help, JR ip domain-list * ip domain-list * ip domain-name * ip name-server x.x.x.x ip name-server x.x.x.x ip name-server x.x.x.x ip name-server x.x.x.x ip address-pool local ip local pool local 'range' interface Group-Async1 ip unnumbered Loopback0 no ip directed-broadcast encapsulation ppp ip tcp header-compression passive dialer in-band dialer idle-timeout 900 dialer wait-for-carrier-time 60 dialer-group 1 async dynamic address async dynamic routing async mode interactive no snmp trap link-status peer default ip address pool local no fair-queue group-range 1 24 line 2 24 exec-timeout 30 0 logout-warning 120 script dialer cisco-default accounting connection test login authentication async-tacacs+ modem Dialin modem autoconfigure discovery terminal-type vt100 Hire, Ejay wrote: It is possible to do this, depending on how your clients are getting the Ip addresses. From your statements I assume the access sever is handing them out via PPP, but where is the router getting the IP's? From a local pool (most likely), a radius server, a local DHCP server, or ? Additionally, can you post or e-mail me a copy of your config. -Original Message- From: JR Van Noy [mailto:[EMAIL PROTECTED]] Sent: Thursday, July 19, 2001 11:58 AM To: [EMAIL PROTECTED] Subject: Remote Access [7:12958] I have a 3640 set up with async dial in for remote users. The laptops must be configured to to append domain suffixes in order resolve host names. Is it possible to have this information sent from the router? I do have the ip domain-list/name commands configured, but can I set this for the async-group, and pass it down when a user connects and receives ip information? thanks for your help, JR Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=13004t=12958 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
ARP Input Problem [7:13003]
I have a weird onewe have a client that is connected to us via ethernet. We have a 7513 on our side and they have a 2621. They are receving a LOT of arp input, so much in fact that their router is maxed out at 100%. The sh proc cpu shows arp input as the culprit When you do a sh arp, they only entry that should be in their 2621 is our 7513 with the proper IP and MAC combobut instead the arp table (in the clients 2621) goes on forever and shows random IP's associated with the MAC of our 7513 FA Any help would be greatly appreciated. Thx Chris Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=13003t=13003 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Remote Access [7:12958]
Agreed...Our nt admins would prefer if they didn't have to put this info in for every dial up connection. I know it's not much but I thought I could have a quick solution. Thanks, JR Farhan Ahmed wrote: u can also put the host name in wins server and use dnslookup on the wins tab it will give him a fqdn. -Original Message- From: Hire, Ejay [mailto:[EMAIL PROTECTED]] Sent: Thursday, July 19, 2001 11:03 PM To: [EMAIL PROTECTED] Subject: RE: Remote Access [7:12958] The Async BootP commands only work with SLIP connections, not PPP. (See http://www.cisco.com/univercd/cc/td/doc/product/software/ssr921/rpcr/79012.h tm#xtocid26281) Additionally, their isn't one that will supply the domain name that will be postpended to the hostname to make a fqdn (host.domain.tld). A possible solution appears to be proxying the ip requests to a dhcp server, or router acting as a dhcp server. I'll be testing it in a minute or two. -eh -Original Message- From: Farhan Ahmed [mailto:[EMAIL PROTECTED]] Sent: Thursday, July 19, 2001 2:04 PM To: [EMAIL PROTECTED] Subject: RE: Remote Access [7:12958] yes u just need a async-bootp dns-server command folowed by yr dns srv ip and u are done and remove the dns suffix from client as welll Best Regards Have A Good Day!! Farhan Ahmed MCSE+I, MCP Win2k, CCDA, CCNA, CSE Network Engineer Mideast Data Systems Abudhabi Uae. -Original Message- From: JR Van Noy [mailto:[EMAIL PROTECTED]] Sent: Thursday, July 19, 2001 9:31 PM To: [EMAIL PROTECTED] Subject: Re: Remote Access [7:12958] The clients are getting assigned from a local pool using ppp...They are authenticated against a securid server using tacacs+. Once they are authenticated we have them type ppp default at the router prompt to finish the connection. Below is the config with my ip info omitted. Thanks for everyone's help, JR ip domain-list * ip domain-list * ip domain-name * ip name-server x.x.x.x ip name-server x.x.x.x ip name-server x.x.x.x ip name-server x.x.x.x ip address-pool local ip local pool local 'range' interface Group-Async1 ip unnumbered Loopback0 no ip directed-broadcast encapsulation ppp ip tcp header-compression passive dialer in-band dialer idle-timeout 900 dialer wait-for-carrier-time 60 dialer-group 1 async dynamic address async dynamic routing async mode interactive no snmp trap link-status peer default ip address pool local no fair-queue group-range 1 24 line 2 24 exec-timeout 30 0 logout-warning 120 script dialer cisco-default accounting connection test login authentication async-tacacs+ modem Dialin modem autoconfigure discovery terminal-type vt100 Hire, Ejay wrote: It is possible to do this, depending on how your clients are getting the Ip addresses. From your statements I assume the access sever is handing them out via PPP, but where is the router getting the IP's? From a local pool (most likely), a radius server, a local DHCP server, or ? Additionally, can you post or e-mail me a copy of your config. -Original Message- From: JR Van Noy [mailto:[EMAIL PROTECTED]] Sent: Thursday, July 19, 2001 11:58 AM To: [EMAIL PROTECTED] Subject: Remote Access [7:12958] I have a 3640 set up with async dial in for remote users. The laptops must be configured to to append domain suffixes in order resolve host names. Is it possible to have this information sent from the router? I do have the ip domain-list/name commands configured, but can I set this for the async-group, and pass it down when a user connects and receives ip information? thanks for your help, JR Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=12999t=12958 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Latency on ATM interface - Any ideas [7:12978]
u need to cont ur telco they are dropping ur traffic is there too much load on line? -Original Message- From: Eric Mwambaji [mailto:[EMAIL PROTECTED]] Sent: Thursday, July 19, 2001 11:23 PM To: Farhan Ahmed Subject: RE: Latency on ATM interface - Any ideas [7:12978] ping Protocol [ip]: Target IP address: pingy 50192.168.1.1 Repeat count [5]: 50 Datagram size [100]: Timeout in seconds [2]: Extended commands [n]: y Source address or interface: Type of service [0]: Set DF bit in IP header? [no]: Validate reply data? [no]: y Data pattern [0xABCD]: Loose, Strict, Record, Timestamp, Verbose[none]: verbose Loose, Strict, Record, Timestamp, Verbose[V]: Sweep range of sizes [n]: Type escape sequence to abort. Sending 50, 100-byte ICMP Echos to 192.168.1.1, timeout is 2 seconds: Reply to request 0 (708 ms) Reply to request 1 (68 ms) Reply to request 2 (48 ms) Reply to request 3 (56 ms) Reply to request 4 (48 ms) Reply to request 5 (76 ms) Reply to request 6 (44 ms) Reply to request 7 (48 ms) Reply to request 8 (56 ms) Reply to request 9 (48 ms) Reply to request 10 (44 ms) Reply to request 11 (48 ms) Reply to request 12 (44 ms) Reply to request 13 (48 ms) Reply to request 14 (48 ms) Reply to request 15 (44 ms) Reply to request 16 (48 ms) Reply to request 17 (44 ms) Reply to request 18 (48 ms) Reply to request 19 (44 ms) Reply to request 20 (48 ms) Reply to request 21 (48 ms) Reply to request 22 (44 ms) Reply to request 23 (48 ms) Reply to request 24 (44 ms) Reply to request 25 (48 ms) Reply to request 26 (48 ms) Reply to request 27 (44 ms) Reply to request 28 (48 ms) Reply to request 29 (44 ms) Reply to request 30 (48 ms) Reply to request 31 (44 ms) Reply to request 32 (48 ms) Reply to request 33 (76 ms) Reply to request 0 (708 ms) Reply to request 34 (48 ms) Reply to request 35 (48 ms) Reply to request 36 (44 ms) Reply to request 37 (48 ms) Reply to request 38 (68 ms) Reply to request 39 (44 ms) Reply to request 40 (48 ms) Reply to request 41 (48 ms) Reply to request 42 (68 ms) Reply to request 43 (44 ms) Reply to request 44 (48 ms) Reply to request 45 (44 ms) Reply to request 46 (48 ms) Reply to request 47 (68 ms) Reply to request 48 (48 ms) Reply to request 49 (44 ms) Success rate is 100 percent (50/50), round-trip min/avg/max = 44/62/708 ms ping Protocol [ip]: Target IP address: pingverbosey 50192.168.1.1 Repeat count [5]: 50 Datagram size [100]: 1500 Timeout in seconds [2]: Extended commands [n]: y Source address or interface: Type of service [0]: Set DF bit in IP header? [no]: Validate reply data? [no]: y Data pattern [0xABCD]: Loose, Strict, Record, Timestamp, Verbose[none]: Verbose Loose, Strict, Record, Timestamp, Verbose[V]: Sweep range of sizes [n]: Type escape sequence to abort. Sending 50, 1500-byte ICMP Echos to 192.168.1.1, timeout is 2 seconds: Reply to request 0 (708 ms) Reply to request 1 (704 ms) Reply to request 2 (716 ms) Reply to request 3 (704 ms) Reply to request 4 (704 ms) Reply to request 5 (708 ms) Reply to request 6 (704 ms) Reply to request 7 (708 ms) Reply to request 8 (704 ms) Reply to request 9 (708 ms) Reply to request 10 (740 ms) Reply to request 11 (704 ms) Reply to request 12 (708 ms) Reply to request 13 (704 ms) Reply to request 14 (704 ms) Reply to request 15 (708 ms) Reply to request 16 (704 ms) Reply to request 17 (708 ms) Reply to request 18 (1184 ms) Reply to request 19 (1184 ms) Reply to request 20 (704 ms) Reply to request 21 (704 ms) Reply to request 22 (708 ms) Reply to request 23 (704 ms) Reply to request 24 (708 ms) Reply to request 25 (704 ms) Reply to request 26 (708 ms) Reply to request 27 (740 ms) Reply to request 28 (704 ms) Reply to request 29 (704 ms) Reply to request 30 (708 ms) Reply to request 31 (704 ms) Reply to request 32 (708 ms) Reply to request 33 (704 ms) Reply to request 34 (708 ms) Reply to request 35 (704 ms) Reply to request 36 (704 ms) Reply to request 37 (708 ms) Reply to request 38 (704 ms) Reply to request 39 (708 ms) Reply to request 40 (724 ms) Reply to request 41 (704 ms) Reply to request 42 (704 ms) Reply to request 43 (708 ms) Reply to request 44 (704 ms) Reply to request 45 (708 ms) Reply to request 46 (704 ms) Reply to request 47 (708 ms) Reply to request 48 (704 ms) Reply to request 49 (704 ms) Success rate is 100 percent (50/50), round-trip min/avg/max = 704/726/1184 ms sho at i atm int atm3/0.1 Interface ATM3/0: AAL enabled: AAL5 , Maximum VCs: 1024, Current VCCs: 18 Maximum Transmit Channels: 64 Max. Datagram Size: 4496 PLIM Type: DS3 - 45000Kbps, Framing is C-bit ADM, DS3 lbo: short, TX clocking: LINE Cell-payload scrambling: OFF 13830 input, 9729 output, 2129 IN fast, 1312 OUT fast, 0 out dropCBR : 500 VBR-NRT : 128 Avail bw = 44372 Config. is ACTIVE TOKYO#sho atm traffic 16049 Input packets 11101 Output packets 0 Broadcast packets 0 Packets received on non-existent VC 0 Packets attempted to send on non-existent VC 0 OAM cells received F5
Re: CCIE market FLOOD !! was: Current Wait time on the lab [7:13005]
Agreed on keeping up with what is going on, I just didn't want to drag a conversation that others might not be interested in through a mailing list, I'll certainly be willing to keep the conversation public if no one objects. As for the 3com stuff, I may have given the wrong impression. We are indeed migrating away from it, but our migration plan requires a certain time frame where it will be necessary to have interoperability between switcheswe are definitely getting rid of that junk...uh...I mean equipment! jnemeth@victo ria.tc.caTo: [EMAIL PROTECTED] (John Nemeth), [EMAIL PROTECTED] cc: 07/19/2001 Subject: Re: CCIE market FLOOD !! was: Current Wait time on the 02:46 PM lab [7:12935] On Dec 9, 2:34am, [EMAIL PROTECTED] wrote: } } Can you give me some examples of developments they pulled back on/never } delivered? (we can take this off line if you prefer, I'm not sure what } interest there is in this discussion by others). I'm interested in this. As Caesar said, know thy enemy. Or, more to the point, it is always good to know what is going on in the marketplace. Competition keeps everybody on their toes and helps to improve both products and services. } We are starting to stage equiptment this week thoughwe used to be a } 3com shop and Extreme seemed to have the most/best interconnectivity with } the old 3com gear, among other reasons. Considering 3Com never was a serious player on the high end, and is now out of the market, you should probably plan on migrating away from your 3Com gear. }-- End of excerpt from [EMAIL PROTECTED] Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=13005t=13005 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Networkers presentation links [7:13009]
Thanks Chuck, Great resource here. http://www.cisco.com/networkers/nw01/pres/preso/RoutingandSwitchingTechnolog ies/RST-204.pdf Was just going thro this ...Look at te one on privilege levels. I am pasting whats out there. show running-config looks like it needs more than the defined privilege levels to get this to work. I have tried enabling router level, Ip under interface etc...only to still see part of the config.. I wonder if you have to enable a long list of things to see the entire running-config... Might as well give 'em a print out of the config for the level 5 users. -) any ideas ? Cheers,Padhu - username gltest privilege 5 password 0 gltest privilege configure level 5 interface privilege interface level 5 shutdown privilege exec level 5 show ip route privilege exec level 5 configure terminal privilege exec level 5 show running-config Now i do disable 5 R5#show running-config Building configuration... Current configuration: ! ! ! interface Loopback0 ! interface Ethernet0 ! interface Serial0 ! interface Serial0.1 point-to-point ! interface Serial0.2 multipoint ! interface Serial1 ! interface BRI0 shutdown ! ! end R5# -Original Message- From: Chuck Larrieu [mailto:[EMAIL PROTECTED]] Sent: Thursday, July 19, 2001 2:39 PM To: Cisco Mail List; CCIE_Lab Groupstudy List Subject: Networkers presentation links I know these have been posted before, but in case you missed it: http://www.cisco.com/networkers/nw01/pres/index.html lots of big PDF files. you may want to download or view over higher speed connections. enjoy Chuck **Please read:http://www.groupstudy.com/list/posting.html Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=13009t=13009 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: ARP Input Problem [7:13003]
ARe you using IOS ver 11.2 ? see this link http://www.cisco.com/warp/public/770/fa112-arp_eigrp.shtml clear the arp table and configure a static arp entry and see if that works ? Let me know what works eventually ? Jaspreet Chris Headings wrote: I have a weird onewe have a client that is connected to us via ethernet. We have a 7513 on our side and they have a 2621. They are receving a LOT of arp input, so much in fact that their router is maxed out at 100%. The sh proc cpu shows arp input as the culprit When you do a sh arp, they only entry that should be in their 2621 is our 7513 with the proper IP and MAC combobut instead the arp table (in the clients 2621) goes on forever and shows random IP's associated with the MAC of our 7513 FA Any help would be greatly appreciated. Thx Chris Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=13010t=13003 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
dv protocols and nbma? [7:13011]
OK, time for the dumb question of the day or is it? Distance Vector protocols generally broadcast their messages (RIPv1 uses udp 520). How are these broadcasts propagated on an NBMA like frame or atm? The config examples on CCO don't show frame-relay dlci xxx *broadcast* statements. Does the IOS automagically copy these messages to every pvc on the interface? And where is this documented? -- Jason Douglas Lucent World Wide Services Pager 888-451-0755 Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=13011t=13011 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Remote Access [7:12958]
I just finished testing this, and I had success with using an external DHCP server (a Nt box) and setting the options in the NT server and using: Ip address-pool DHCP-proxy-client Ip DHCP-server 10.0.0.1 I would like to try setting the router up as a DHCP server and see if I can Ip DHCP-server 127.0.0.1 but my TFTP server has fallen down and it can't get up. -eh -Original Message- From: JR Van Noy [mailto:[EMAIL PROTECTED]] Sent: Thursday, July 19, 2001 3:31 PM To: [EMAIL PROTECTED] Subject: Re: Remote Access [7:12958] Thanks for investigating this. I agree with the DHCP solution. That will work best since these same remote users will bring their laptops into the office from time to time as well. JR Hire, Ejay wrote: The Async BootP commands only work with SLIP connections, not PPP. (See http://www.cisco.com/univercd/cc/td/doc/product/software/ssr921/rpcr/79012.h tm#xtocid26281) Additionally, their isn't one that will supply the domain name that will be postpended to the hostname to make a fqdn (host.domain.tld). A possible solution appears to be proxying the ip requests to a dhcp server, or router acting as a dhcp server. I'll be testing it in a minute or two. -eh -Original Message- From: Farhan Ahmed [mailto:[EMAIL PROTECTED]] Sent: Thursday, July 19, 2001 2:04 PM To: [EMAIL PROTECTED] Subject: RE: Remote Access [7:12958] yes u just need a async-bootp dns-server command folowed by yr dns srv ip and u are done and remove the dns suffix from client as welll Best Regards Have A Good Day!! Farhan Ahmed MCSE+I, MCP Win2k, CCDA, CCNA, CSE Network Engineer Mideast Data Systems Abudhabi Uae. -Original Message- From: JR Van Noy [mailto:[EMAIL PROTECTED]] Sent: Thursday, July 19, 2001 9:31 PM To: [EMAIL PROTECTED] Subject: Re: Remote Access [7:12958] The clients are getting assigned from a local pool using ppp...They are authenticated against a securid server using tacacs+. Once they are authenticated we have them type ppp default at the router prompt to finish the connection. Below is the config with my ip info omitted. Thanks for everyone's help, JR ip domain-list * ip domain-list * ip domain-name * ip name-server x.x.x.x ip name-server x.x.x.x ip name-server x.x.x.x ip name-server x.x.x.x ip address-pool local ip local pool local 'range' interface Group-Async1 ip unnumbered Loopback0 no ip directed-broadcast encapsulation ppp ip tcp header-compression passive dialer in-band dialer idle-timeout 900 dialer wait-for-carrier-time 60 dialer-group 1 async dynamic address async dynamic routing async mode interactive no snmp trap link-status peer default ip address pool local no fair-queue group-range 1 24 line 2 24 exec-timeout 30 0 logout-warning 120 script dialer cisco-default accounting connection test login authentication async-tacacs+ modem Dialin modem autoconfigure discovery terminal-type vt100 Hire, Ejay wrote: It is possible to do this, depending on how your clients are getting the Ip addresses. From your statements I assume the access sever is handing them out via PPP, but where is the router getting the IP's? From a local pool (most likely), a radius server, a local DHCP server, or ? Additionally, can you post or e-mail me a copy of your config. -Original Message- From: JR Van Noy [mailto:[EMAIL PROTECTED]] Sent: Thursday, July 19, 2001 11:58 AM To: [EMAIL PROTECTED] Subject: Remote Access [7:12958] I have a 3640 set up with async dial in for remote users. The laptops must be configured to to append domain suffixes in order resolve host names. Is it possible to have this information sent from the router? I do have the ip domain-list/name commands configured, but can I set this for the async-group, and pass it down when a user connects and receives ip information? thanks for your help, JR Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=13012t=12958 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: ARP Input Problem [7:13003]
We are using 12.0(7)T for the IOS Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=13013t=13003 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: ARP Input Problem [7:13003]
Alsohow can I filter a MAC addressfound one from the mac-accounting that looks suspicious??? Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=13014t=13003 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Configuring 2600 series router for use with DSL [7:12643]
Since no one else opted to field your question, please allow me. It is absolutely possible! I have done in it at home with an Earthlink DSL account. There are two scenarios you can have as outline below; Scenario1: Lan 2600(wic-1adsl card)--Internet PPPOE client on the 2600 This is known as PPPOEOA Scenario 2: Lan eth1--2600--eth0-DSL modem(in bridge mode)internet PPPOE client on the 2600. This is known as PPPOEOE. If you have a PPPOE client running on your PC (like winpoet) then the 2600 will run in bridging mode. For best results use IOS version 12.2 with the IP PLUS feature set! Hope this helps, -Rizzo -Original Message- From: CiscoG [mailto:[EMAIL PROTECTED]] Sent: Tuesday, July 17, 2001 10:07 AM To: [EMAIL PROTECTED] Subject: Configuring 2600 series router for use with DSL [7:12643] Hey all, anyone have any success in configuring a 2600 series router to use a DSL connection that uses PPPoE? Is this possible? Thanks, -C Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=13015t=12643 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: To CCIE's without a job [7:12805]
My definition of Software Engineer is someone with an engineering degree and also does software engineering. A Developer/Coder just write code base on the engineering requirements and doesn't require a degree. my two cents, mark, Well, I don't have a degree -- admittedly, more formal publications than many faculty -- and I'll match my network software engineering against anyone. I freely admit that I probably have gone through a pretty good equivalent of a formal computer science curriculum by self-study. Admittedly, it's been 10 years or so since I did significant coding -- but I still read code, write the requirements, and occasionally tell the developers where to modify the code. -Original Message- From: Howard C. Berkowitz [mailto:[EMAIL PROTECTED]] Sent: Wednesday, July 18, 2001 1:17 PM To: [EMAIL PROTECTED] Subject: Re: To CCIE's without a job [7:12805] That's a scary thought: CCIEs who develop protocols. ;-] I know very few respected protocol or platform designers that ever mentioned having a CCIE. On the other hand, it only occasionally comes up that one has a PhD, which isn't always in a relevant discipline. I'm amused by the degree requirement--I could see an argument for a master's or doctorate, but the undergraduate computer science program gets into relatively little you need to know to design and implement protocols, other than as a coder. Personally, I'm a much better developer than I am a support person. There's overlap between the skills of product/protocol design and large network design, but much less with troubleshooting. Even quality testing is a somewhat different skill set than troubleshooting. For example, has anyone seen a Cisco exam that explored the differences among conformance, interoperability, and performance testing? The difference between a correct but boundary condition event, a syntactically incorrect event, and an inopportune event? They are looking for software engineers. They aren't going to find many that have a CCIE? It's a different skill set and requires a different type of personality. Priscilla At 09:41 AM 7/18/01, Ole Drews Jensen wrote: Forgive me for sending this here, I know there's a place for job discussions, but I noticed that there have been several e-mails about how CCIE's now have a harder time getting jobs. I received this e-mail (look at the message included after my signature) on another Cisco list I'm a member of: Hth, Ole ~~~ Ole Drews Jensen Systems Network Manager CCNA, MCSE, MCP+I RWR Enterprises, Inc. [EMAIL PROTECTED] ~~~ http://www.OleDrews.com/CCNP ~~~ NEED A JOB ??? http://www.oledrews.com/job ~~~ Message: 1 Date: Tue, 17 Jul 2001 15:11:26 - From: JDO Subject: Looking for a Special Kind of CCIE Hello, My name is Johnna Smith and I work for a placement firm in Dallas, Texas. I am in desperate need of a CCIE that DEVELOPS routing protocols. I need them to have BGP, DSPF, IS-IS, and MPLS. The must be a software engineer and they must be degreed. If any of you could help me, please give me a call or shoot me an email at [EMAIL PROTECTED] or at 972-991-7569. Just to take a look at someof our other positions please go to We also work with another agency that focuese more on IT, you can find their site at Thanks Johnna Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=13016t=12805 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Networkers presentation links [7:13002]
In other words, make sure you download them at work and print them off on your boss' printer. ;-) That usually works very well for me. heh heh Chuck Larrieu 7/19/01 1:55:06 PM I know these have been posted before, but in case you missed it: http://www.cisco.com/networkers/nw01/pres/index.html lots of big PDF files. you may want to download or view over higher speed connections. enjoy Chuck Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=13018t=13002 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
how to schedule a reload on 6509 switch ? [7:13017]
How to schedule a reload on 6509 switch for a particular time ? Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=13017t=13017 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Large Collisions on Vlan1 [7:12961]
The counters won't clear. I used the ff command: CLEAR COUNTERS VLAN1 I'm still seeing the same number of collisions on vlan1. Here's my trunk configuration. What am I missing? 6509:interface fa2/10 no ip address duplex full switchport switchport trunk encapsulation isl switchport trunk allowed vlan 1,206,207,1002-1005 switchport mode trunk ! 2905:interface FastEthernet0/1 duplex full speed 100 switchport trunk allowed vlan 1,206,207,1002-1005 switchport mode trunk spanning-tree portfast ! Hire, Ejay wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... You need to clear the counters and establish a time frame for this. 19 million collisions isn't a lot in a well loaded switch that has been up for a long time. If you clear the counters and the number increases quickly, you may have a speed or duplex issue or a bad cable. You said this was an ISL trunk so you should manually set both ends at 100 mbps (or 1000mbps if you've got the special card for the 2924 and a good port on the 6500) and also manually set the link to full duplex. -Original Message- From: Kwame [mailto:[EMAIL PROTECTED]] Sent: Thursday, July 19, 2001 12:25 PM To: [EMAIL PROTECTED] Subject: Large Collisions on Vlan1 [7:12961] What does it mean when the sh int vlan1 output shows large collisions? For example on a 2924 XL with an ISL trunk to a 6509 I go the ff output upon issuing the SH INT VLAN1 command: 0 output errors, 19108404 collisions, 0 interface resets Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=13019t=12961 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]