QUERY ON FRAME RELAY: DISABLE FRAME RELAY INARP [7:15586]
Hello all, I found something wierd in my scenario. I configured my FR switch for fully meshed. I have three routers, A (hub) , B and C as the spokes. But I want to configure the three routers ONLY with partial mesh (hub and spoke), on router A , I configure on Physical interfaces. on Router B and C, I try with sub interface and DISABLE inverse arp (to prevent ip address resolve from B directly to C and vice versa).. But when I "show frame-relay map) on either B and C, I still can see resolved IP address with pvc (DLCI) directly connected to each other ( B and C).. and also, when I " show frame-relay pvc", I still can see that the other PVC is considered as "USAGE" any one can figure out how can I over come this one..? tx, Grad _ Get your FREE download of MSN Explorer at http://explorer.msn.com/intl.asp Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=15586&t=15586 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: HSRP on 6509 [7:15570]
On a 6509 with two MSFC2s both MSFCs are active, i.e. both are capable of routing. If you only want to use on , only configure one. There are articles on the Cisco website which show you how to use both. you can use both to do routing for different VLANS, i.e. loadsharing. you can also configure them for failover. i.e one active other standby. again there are articles on cisco website for redundancy for MSFC2s. you can have then sync configs too. I have run into this exact situation and have a implementation with two core 6509s with dual msfc2 running in a redundant config. the command used is the "alt" command with the standby statement. Faisal --- David C Prall wrote: > - Original Message - > From: "Thomas N." > > I have a problem here with HSRP on 6509. The > Cisco 6509 has 2 MSFC cards. > > As I understand correctly, only the first card > (active one) does the > > routing. The second card (standby one) should do > NOTHING, unless the > first > > card goes down (please correct me if I am wrong). > In my case, things are > > different. It seems both cards do the routing. > When I do a trace on a > > destination, the result flips flop between the > actually IP addresses of > the > > vlan on both cards. Let's say I have VLAN 100 > with: > > > > Virtual IP address = 10.100.1.100 255.255.0.0 > > IP address on first card (active) = 10.100.1.1 > 255.255.0.0 > > IP address on second card (standbly) = 10.100.1.2 > 255.255.0.0 > > > > When I do the trace on a destination that pass > through this 6509, some > path > > includes 10.100.1.1, while other includes > 10.100.1.2 > > > > Is there some way I can check if the HSRP is > configured correctly on my > > 6509? Thanks in advance! > > > > Thomas > > > > One issue could be the fact that the standby address > is only used as the > default gateway for workstations. Routing protocols > use the physical > address. > > Another issue could be the fact that you have both > MSFC's configured > seperately, not as a redundant pair. In this case, > half of your VLAN's are > being routed by one MSFC, while the other half are > routed by the second. > You'll run into some assymentric routing issues with > this configuration, but > they can be worked through. The plus for this > config, is that you have twice > the processing power to handle process switched > packets. > > > David C Prall [EMAIL PROTECTED] > http://dcp.dcptech.com [EMAIL PROTECTED] __ Do You Yahoo!? Make international calls for as low as $.04/minute with Yahoo! Messenger http://phonecard.yahoo.com/ Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=15585&t=15570 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Supervisor II with what type of memory? [7:15584]
Hi, What type of memory does the Supervisor Engine II use? EDO or Fast Page? Thanks, Albert Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=15584&t=15584 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Why Should the Binary Math Method Be Used to S [7:15552]
Loved your design book Phil Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=15583&t=15552 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: RIP -- suppressing null update [7:15469]
Hi! My experience says that if the router does not have anything to send (f.ex. due to SH), then the update is suppressed. Aki At 13:41 9.8.2001 -0400, you wrote: >At 11:09 AM 8/9/01, kwock99 wrote: > >Hi All, > > > >One of my router does not recieve the routing update on RIP. Here is the > >"show > >ip protocol". > >Is this the "show ip protocol" on the router that is not receiving routing >updates or on the router that is supposedly sending them? > >Here are some things to check: > >Are both routers using RIPv2? >Is there a split horizon issue that is suppressing the update? >Have you done anything tricky with subnet masks and VLSM? >Is there a summarization issue? > >On the router that is sending but then suppressing updates, (serial >interface 70.0.0.2), what is its subnet mask? What is the address and >subnet mask of the router at the other end? > >Can you send us your configs? > >Priscilla > > > >R4#sh ip prot > >Routing Protocol is "rip" > > Sending updates every 30 seconds, next due in 3 seconds > > Invalid after 180 seconds, hold down 180, flushed after 240 > > Outgoing update filter list for all interfaces is not set > > Incoming update filter list for all interfaces is not set > > Redistributing: rip > > Default version control: send version 2, receive version 2 > > InterfaceSend Recv Key-chain > > Serial0 2 2 > > Routing for Networks: > > 70.0.0.0 > > 130.0.0.0 > > Routing Information Sources: > > Gateway Distance Last Update > > Distance: (default is 120) > > > > > >After I turn on the debug ip rip events, Here is the message: > > > > > >RIP: sending v2 update to 224.0.0.9 via Serial0 (70.0.0.2) - suppressing >null > >update > >RIP: sending v2 update to 224.0.0.9 via Serial0 (70.0.0.2) - suppressing >null > >update > >RIP: sending v2 update to 224.0.0.9 via Serial0 (70.0.0.2) - suppressing >null > >update > > > > > >Anyone knows what is wrong and how to configure the router to get the >update. > > > >Thanks in advance. > > > >Best regards > >Francis Tsui > > >Priscilla Oppenheimer >http://www.priscilla.com Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=15582&t=15469 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: HSRP on 6509 [7:15570]
OK, it seems that my 6509 is running an a hybrid mode. It has 2 supervisor engine cards running CATOS and 2 MSFC cards running IOS. Also, There are multiple groups (one group per VLAN). All group use the first MSFC card for routing ( this is based on the "show standby" on the first card IOS that said all the card is active for all VLANs). I also have EIGRP and NAT running on the first MSFC card (and of course on the second card with same configuration). Problem: - Though the second MSFC card indicated that it is the standby router for all VLANs (verified with "show standby" ), it actually still DOES the routing and load balancing between the VLANs. - Since the second MSFC is also configured for NAT with the exactly NAT translation as the first MSFC, it actually NAT some of the IP addresses. Question: - Is there any way to keep the EIGRP still on both MSFC IOS and keep the second MSFC stay standby still (no routing, no load balancing, no natting and nothing else), listen and only kick off if the first MFSC died? Thanks All for the help and suggestion!!! Thomas ""Thomas N."" wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > Hi All, > > I have a problem here with HSRP on 6509. The Cisco 6509 has 2 MSFC cards. > As I understand correctly, only the first card (active one) does the > routing. The second card (standby one) should do NOTHING, unless the first > card goes down (please correct me if I am wrong). In my case, things are > different. It seems both cards do the routing. When I do a trace on a > destination, the result flips flop between the actually IP addresses of the > vlan on both cards. Let's say I have VLAN 100 with: > > Virtual IP address = 10.100.1.100 255.255.0.0 > IP address on first card (active) = 10.100.1.1 255.255.0.0 > IP address on second card (standbly) = 10.100.1.2 255.255.0.0 > > When I do the trace on a destination that pass through this 6509, some path > includes 10.100.1.1, while other includes 10.100.1.2 > > Is there some way I can check if the HSRP is configured correctly on my > 6509? Thanks in advance! > > Thomas Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=15581&t=15570 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Why Should the Binary Math Method Be Used to Subnet [7:15580]
It's six one way - half a dozen the other. Personally I like decimal but for those "brain freeze" moments it's nice to know the binary also, just to get back on track or to check the other method .. However the examples below didn't take into account for the zero or ones.. Instead of 16 there should be 14 subnets. Than again, you could use SUBNET ZERO on the router. my pennies worth Rick Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=15580&t=15580 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: ospf costs/metrics [7:15567]
Comments below. JMcL "Tony" @groupstudy.com on 10/08/2001 12:05:30 pm Please respond to "Tony" Sent by: [EMAIL PROTECTED] To: [EMAIL PROTECTED] cc: Subject: ospf costs/metrics [7:15567] Just so I understand ospf costs/metrics correctly... For an exampleI have a remote WAN router with two PVC's. Both connections are 56k. One PVC connects to a host circuit @ 1024K and the other PVC connects to a different host circuit @ 512K. [JMcL] I assume you mean a 56k CIR on each link, with a total bandwidth possible of 512k on one link and 1024k on the other? Because these connections are serial, without a bandwidth or cost statement on the host or remote interfaces will ospf see both circuits as 1536k links and load balance? [JMcL] Yes, assuming 1536k is the default (I'm too lazy to check right now but I think it is). Remember that 'load balance' in this case (OSPF) means equal load balancing - up to 512k on each link. With adding a bandwith statement on each host side, I assume ospf traffic will perfer the 1024 link? [JMcL] Depends what you set your bandwidth statement to. If you set it to 1024k/512k respectively for the two links, then yes. Then what if I add a higher cost (say above 1785) on the remote circuit that connects back to the 1024k host, will it then perfer the 512k? [JMcL] Again, I'm too lazy to check the maths - assuming that a bandwidth of 512k works out at a cost of 1785, then yes. You can fiddle the cost either indirectly by changing the bandwidth parameter or directly by changing the ospf cost parameter - generally changing the cost parameter is less confusing, IMO. Sorry about all of the questions, I am just somewhat confused. [JMcL] Sounds like you've got it straight to me. Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=15579&t=15567 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: ISP Best Practice Question [7:15554]
Hi Normally this refers to the number of subscribers per port, e.g. for dial-up service, the ISP might have 24 dial-up ports and 120 users at 5:1 or 192 at 8:1. The idea being that not every subscriber will need a port at the same time, i.e. busy signals during peak usage hours ;-) I would not put a label on an ISP based on ratios. One really needs to figure out how the user base is using the services sold. Some users will stay connected all day, others are only on long enough to get email in the morning and evening. Most ISPs will base their ratio on a business decision rather a service level basis (ports are costly), which from a subscriber point of view maybe the wrong choice. For some ISPs 5:1 maybe very over subscribed making them a "bad" ISP, another ISP might have a 16:1 ratio that is under-subscribed making them a excellent ISP. HTH -- John Hardman CCNP MCSE ""Circusnuts"" wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > When it's said a good ISP utilizes the 5:1 subscription rule & not the 8 or > 10 > to 1, is this expressing that the same service is offered to 5 logical for 1 > physical. I've always been aware this existed from my early experiences > working for a CLEC, but now that I'm sizing & pricing pipes for critical > applications I'm not sure what this exactly means. > > Thanks > Phillip Lorenz > Wheeler Network Design Inc. > [EMAIL PROTECTED] > Office- 301.429.6305 > Cell-703.909.6643 Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=15566&t=15554 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Cisco and DSL + OT DSL question [7:14275]
One other quick note- If you decide to invest in the 1750, and you are doing so partially for the Voice capability, please note the following: 1750's come in 3 flavors- 1750, 1750-2v, and 1750-4v. The 1750 mainboard has a slot for the DSP chip that makes the voice cap. possible. The base model doesn't have it populated, and these are the most abundant on ebay. Most of the sellers don't even know if they are selling a base unit, 2v, or 4v, and unless you contact them and ask them to confirm if it is at least a 2v or not... don't bid on it. It's more expensive to buy the DSP separately and add it on then it is to get one off auction with it already in it. If the auction states that it comes with a 2port FXS/FXO/E&M port card, still ask the seller to email you a "sh ver" output of the router in question. Without the DSP, the voice ports won't show up in the sh ver. All voice parts separate- they'll run roughly the same amt. (275-400USD) I explain this only because I got burned on my first 1750 purchase- the seller thought it was a 2v, and didn't open it up to verify. He went off the memory specs it was displaying and compared that to Cisco Public site tech specs. The router wound up just having memory upgrades, and no DSP. Also, the DSP's are in the following fashion - PVDM-4 supports (1) 2port FXS/FXO/E&M module, PVDM-8 supports 2... 2 channels are required for each port in simple terms. Cheers! Mark - Original Message - From: "Ole Drews Jensen" To: "'Mark Odette II'" ; "Ole Drews Jensen" ; Sent: Thursday, August 09, 2001 11:17 AM Subject: RE: Cisco and DSL + OT DSL question [7:14275] > Thanks a lot Mark, > > I will look into that solution. > > Take care, > > Ole > > ~~~ > Ole Drews Jensen > Systems Network Manager > CCNA, MCSE, MCP+I > RWR Enterprises, Inc. > [EMAIL PROTECTED] > ~~~ > http://www.RouterChief.com > ~~~ > NEED A JOB ??? > http://www.oledrews.com/job > ~~~ > > > -Original Message- > From: Mark Odette II [mailto:[EMAIL PROTECTED]] > Sent: Thursday, August 09, 2001 11:18 AM > To: Ole Drews Jensen; [EMAIL PROTECTED] > Subject: Re: Cisco and DSL + OT DSL question [7:14275] > > > Ole- > Many will suggest that if you want to share your DSL connection with > multiple hosts in your private LAN, then you should go out and buy a Netgear > or Linksys DSL Router/4port Switch combo unit. It's supposed to be quite > easy to set up and works greate. The only negative I've heard is that the > "firewall" feature on them isn't worth the configuration. Also, the NAT > feature isn't what it's cracked up to be either- at least for the NetGear. > A colleague of mine had me take a look at one that he was setting up for a > client, and the ISP was giving them 5 static IP's. So, they wanted to > static nat between multiple hosts for WWW, SMTP/POP3, etc. I later come to > find that it would only let you do one static, and the rest would do > dynamic. > This was roughly 4 months ago. > > For a cisco solution, you could go with a C17xx and the WIC-1ENET card that > is designed ONLY for the 1700's. > The WIC-1ENET card is PPPoE compliant, and it is the lesser expensive > alternative to the other option - WIC-1ADSL. > > Obviously, of course, buying a Cisco router for your shared WAN usage is > more expensive, but I think it is better in the long run for many reasons. > You get a router that can double as a lab device, you can NAT with more > versatility, you get at least a little exposure to how the PPPoE/oA configs > work (with the ENET card it is simple, but the ADSL card gets you to > learning the real functionality of DSL ATM), and with the 1750's you get a > router that also have VoIP capability. > > I invested in a 1750-4V with the WIC-1ENET (the wic runs roughly 150-200USD > on ebay) option off of ebay, and really wished I had gotten the 1751 for > VLAN labs, but I'm still quite happy with what I have. The WIC-1ADSL is > IMHO way over priced (500+USD) for what it gives you in functionality, but > if currency is not an issue, then I would get it for the indepth hands-on > experience. > > As far as I know, the only reason for the ISP's usage of PPPoE over PPPoATM > (I could be wrong about this though) is for accounting reasons. That is the > only real purpose behind the Enternet300 software. You should be able to > connect without login id/pw, but the PPPoE implementation forces this, and > I've been explained that it is purely for accounting reasons. Without the > ID/PW during the PPPoE negotiations, you can't get onto the upstream net. :( > > If you get the basic DSL from SBC (and I think it's the same for other > carriers in the US), they'll send you a Westell or SpeedStream DSL modem, of > which if you are dynamicly assigned your address, they use the modem in > bridging mode. If you have a static IP, then your modem has the bridging > mode
Re: ISDN Charges???? [7:15438]
Hi, This depends on where you are, the supplier you deal with and the actual service type you getting. In some cases it is possible to buy (lease) a permanent ISDN connection that attracts no call or data rate charges. Other case may charge by the time the service is connected. Others only for the inital connection and the second channel is not charged when making a second call to the same number. There are heaps of ways you can charge and it is often confusing to generalise based on what happens via a particular supplier and/or country. Teunis, Hobart, Tasmania Australia On Thursday, August 09, 2001 at 03:25:40 AM, Marc Russell wrote: > It is charged by call. So if you have 2 calls (2-b channels used) then you > get charged for each call. > > Marc Russell > www.ccbootcamp.com > > > wrote in message > [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > > Hello Group, > > I have querry about ISDN lines. > > As you know that it consists of 2 B- Chanels for data transmissions but > > most of the time we use only one channel > > unless it is used for multilink. In such case are we being charged channel > > wise or per ISDN Link ? i.e if I am using 1 channel then i will be charged > > for 1 call and if I am using both the B-channels then I will be charged > for > > 2 calls ? > > Any help on this will be appriciated. -- www.tasmail.com Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=15545&t=15438 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Cisco and DSL + OT DSL question [7:14275]
Once again, thanks Mark. Have a great day, Ole ~~~ Ole Drews Jensen Systems Network Manager CCNA, MCSE, MCP+I RWR Enterprises, Inc. [EMAIL PROTECTED] ~~~ http://www.RouterChief.com ~~~ NEED A JOB ??? http://www.oledrews.com/job ~~~ -Original Message- From: Mark Odette II [mailto:[EMAIL PROTECTED]] Sent: Thursday, August 09, 2001 1:22 PM To: Ole Drews Jensen; [EMAIL PROTECTED] Subject: Re: Cisco and DSL + OT DSL question [7:14275] One other quick note- If you decide to invest in the 1750, and you are doing so partially for the Voice capability, please note the following: 1750's come in 3 flavors- 1750, 1750-2v, and 1750-4v. The 1750 mainboard has a slot for the DSP chip that makes the voice cap. possible. The base model doesn't have it populated, and these are the most abundant on ebay. Most of the sellers don't even know if they are selling a base unit, 2v, or 4v, and unless you contact them and ask them to confirm if it is at least a 2v or not... don't bid on it. It's more expensive to buy the DSP separately and add it on then it is to get one off auction with it already in it. If the auction states that it comes with a 2port FXS/FXO/E&M port card, still ask the seller to email you a "sh ver" output of the router in question. Without the DSP, the voice ports won't show up in the sh ver. All voice parts separate- they'll run roughly the same amt. (275-400USD) I explain this only because I got burned on my first 1750 purchase- the seller thought it was a 2v, and didn't open it up to verify. He went off the memory specs it was displaying and compared that to Cisco Public site tech specs. The router wound up just having memory upgrades, and no DSP. Also, the DSP's are in the following fashion - PVDM-4 supports (1) 2port FXS/FXO/E&M module, PVDM-8 supports 2... 2 channels are required for each port in simple terms. Cheers! Mark - Original Message - From: "Ole Drews Jensen" To: "'Mark Odette II'" ; "Ole Drews Jensen" ; Sent: Thursday, August 09, 2001 11:17 AM Subject: RE: Cisco and DSL + OT DSL question [7:14275] > Thanks a lot Mark, > > I will look into that solution. > > Take care, > > Ole > > ~~~ > Ole Drews Jensen > Systems Network Manager > CCNA, MCSE, MCP+I > RWR Enterprises, Inc. > [EMAIL PROTECTED] > ~~~ > http://www.RouterChief.com > ~~~ > NEED A JOB ??? > http://www.oledrews.com/job > ~~~ > > > -Original Message- > From: Mark Odette II [mailto:[EMAIL PROTECTED]] > Sent: Thursday, August 09, 2001 11:18 AM > To: Ole Drews Jensen; [EMAIL PROTECTED] > Subject: Re: Cisco and DSL + OT DSL question [7:14275] > > > Ole- > Many will suggest that if you want to share your DSL connection with > multiple hosts in your private LAN, then you should go out and buy a Netgear > or Linksys DSL Router/4port Switch combo unit. It's supposed to be quite > easy to set up and works greate. The only negative I've heard is that the > "firewall" feature on them isn't worth the configuration. Also, the NAT > feature isn't what it's cracked up to be either- at least for the NetGear. > A colleague of mine had me take a look at one that he was setting up for a > client, and the ISP was giving them 5 static IP's. So, they wanted to > static nat between multiple hosts for WWW, SMTP/POP3, etc. I later come to > find that it would only let you do one static, and the rest would do > dynamic. > This was roughly 4 months ago. > > For a cisco solution, you could go with a C17xx and the WIC-1ENET card that > is designed ONLY for the 1700's. > The WIC-1ENET card is PPPoE compliant, and it is the lesser expensive > alternative to the other option - WIC-1ADSL. > > Obviously, of course, buying a Cisco router for your shared WAN usage is > more expensive, but I think it is better in the long run for many reasons. > You get a router that can double as a lab device, you can NAT with more > versatility, you get at least a little exposure to how the PPPoE/oA configs > work (with the ENET card it is simple, but the ADSL card gets you to > learning the real functionality of DSL ATM), and with the 1750's you get a > router that also have VoIP capability. > > I invested in a 1750-4V with the WIC-1ENET (the wic runs roughly 150-200USD > on ebay) option off of ebay, and really wished I had gotten the 1751 for > VLAN labs, but I'm still quite happy with what I have. The WIC-1ADSL is > IMHO way over priced (500+USD) for what it gives you in functionality, but > if currency is not an issue, then I would get it for the indepth hands-on > experience. > > As far as I know, the only reason for the ISP's usage of PPPoE over PPPoATM > (I could be wrong about this though) is for accounting reasons. That is the > only real purpose behind the En
Re: ISDN Charges???? [7:15438]
This cost structure is what made isdn largely fail in california. They typically charge a per call connection fee plus per minute charges that make its use as data link not worth while for a heavy user. The exception to this is the Centrex service. In other states, there are of course flat fees for usage. Brian "Sonic" Whalen Success = Preparation + Opportunity On Thu, 9 Aug 2001, Marc Russell wrote: > It is charged by call. So if you have 2 calls (2-b channels used) then you > get charged for each call. > > Marc Russell > www.ccbootcamp.com > > > wrote in message > [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > > Hello Group, > > I have querry about ISDN lines. > > As you know that it consists of 2 B- Chanels for data transmissions but > > most of the time we use only one channel > > unless it is used for multilink. In such case are we being charged channel > > wise or per ISDN Link ? i.e if I am using 1 channel then i will be charged > > for 1 call and if I am using both the B-channels then I will be charged > for > > 2 calls ? > > Any help on this will be appriciated. Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=15490&t=15438 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Can't ping outside of PIX [7:15205]---- FIXED [7:15578]
Very insightfull, Thanx Pierre-Alex -Original Message- From: cheekin [mailto:[EMAIL PROTECTED]] Sent: Thursday, August 09, 2001 7:03 AM To: Pierre-Alex; [EMAIL PROTECTED] Subject: Re: Can't ping outside of PIX [7:15205] FIXED I was reading the CSPFF and CSPFA course notes earlier this week. Just started to pick up on PIX firewall. My understanding is that a host cannot share the same IP address on the same segment. Therefore I thought I ought to use a different IP address for the global statement. You may want to try out Patrick Ramsey's configuration of using the same outside IP address for the global statement. As for the inside route, I wanted to maintain a single default route. Furthermore, when you "sh route", there will be a route pointing to the inside network. That was how I came to the conclusion that you need to change the global statement and remove the inside route statement. cheekin - Original Message - From: "Pierre-Alex" To: "cheekin" ; Sent: Wednesday, August 08, 2001 23:35 Subject: RE: Can't ping outside of PIX [7:15205] FIXED > > > I changed the global statement to another IP address and the PC was able to > ping on the Internet. > > I also removed the inside route and the PC was still able to ping ... > > I am curious. Where did you find this information? I used: > > http://www.cisco.com/univercd/cc/td/doc/product/iaabu/pix/pix_v4/pixcfg/pixc > ncfg.htm > > Pierre-Alex > > -Original Message- > From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of > cheekin > Sent: Wednesday, August 08, 2001 8:27 AM > To: [EMAIL PROTECTED] > Subject: Re: Can't ping outside of PIX [7:15205] > > > I think you will need to give a different range of IP address for the global > statement. The global statement and the outside interface are using the > same ip address. > > I also think that the route inside statement is not necessary in this case. > You can use sh route to display the routing table. > > PIX gurus, correct me if I am wrong. > > > cheekin > > - Original Message - > From: "Pierre-Alex" > To: > Sent: Wednesday, August 08, 2001 11:34 > Subject: Can't ping outside of PIX [7:15205] > > > > I have spent the all day on the problem below and I still can't see what I > > did wrong. > > > > Can you help? > > > > The PC can ping the inside ip address of the firewall > > The Firewall can ping the default-gateway and anything on the Internet > > But I cannot get the PC to ping the outside IP address of the firewall > > (208.136.247.214) > > or anything outside like (206.26.90.8). > > > > > > |PC|(1)--(2)|PIX|(3)-(4)--DSL MODEM > > > > PC (1): ip address 10.1.1.12 > > subnet mask: 255.255.255.0 > > default gateway: 10.1.1.10 > > > > PIX (2): ip adddress 10.1.1.10 > >subnet mask: 255.255.255.0 > > > > PIX (3i ip address 208.136.247.214 > > subnet mask: 255.255.255.0 > > > > DSL MODEM (4): ip address 208.136.247.1 > > subnet mask: 255.255.255.0 > > > > > > > > PIX Version 4.0.7 > > enable password 8Ry2YjIyt7RRXU24 encrypted > > passwd kIQggKv8.UiICW/r encrypted > > hostname pixfirewall > > failover > > names > > syslog output 20.3 > > no syslog console > > interface ethernet outside 10baset > > interface ethernet inside 10baset > > ip address inside 10.1.1.10 255.255.255.0 > > ip address outside 208.136.247.214 255.255.255.0 > > arp timeout 14400 > > global 1 208.136.247.214-208.136.247.214 > > nat 1 0.0.0.0 0.0.0.0 > > age 10 > > no rip outside passive > > no rip outside default > > no rip inside passive > > no rip inside default > > route outside 0.0.0.0 0.0.0.0 208.136.247.1 1 > > route inside 0.0.0.0 0.0.0.0 10.1.1.12 > > timeout xlate 24:00:00 conn 12:00:00 udp 0:02:00 > > timeout rpc 0:10:00 h323 0:05:00 uauth 0:05:00 > > no snmp-server location > > no snmp-server contact > > mtu outside 1500 > > mtu inside 1500 > > : end > > [OK] Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=15578&t=15578 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Cisco and DSL + OT DSL question [7:14275]
Ole- Many will suggest that if you want to share your DSL connection with multiple hosts in your private LAN, then you should go out and buy a Netgear or Linksys DSL Router/4port Switch combo unit. It's supposed to be quite easy to set up and works greate. The only negative I've heard is that the "firewall" feature on them isn't worth the configuration. Also, the NAT feature isn't what it's cracked up to be either- at least for the NetGear. A colleague of mine had me take a look at one that he was setting up for a client, and the ISP was giving them 5 static IP's. So, they wanted to static nat between multiple hosts for WWW, SMTP/POP3, etc. I later come to find that it would only let you do one static, and the rest would do dynamic. This was roughly 4 months ago. For a cisco solution, you could go with a C17xx and the WIC-1ENET card that is designed ONLY for the 1700's. The WIC-1ENET card is PPPoE compliant, and it is the lesser expensive alternative to the other option - WIC-1ADSL. Obviously, of course, buying a Cisco router for your shared WAN usage is more expensive, but I think it is better in the long run for many reasons. You get a router that can double as a lab device, you can NAT with more versatility, you get at least a little exposure to how the PPPoE/oA configs work (with the ENET card it is simple, but the ADSL card gets you to learning the real functionality of DSL ATM), and with the 1750's you get a router that also have VoIP capability. I invested in a 1750-4V with the WIC-1ENET (the wic runs roughly 150-200USD on ebay) option off of ebay, and really wished I had gotten the 1751 for VLAN labs, but I'm still quite happy with what I have. The WIC-1ADSL is IMHO way over priced (500+USD) for what it gives you in functionality, but if currency is not an issue, then I would get it for the indepth hands-on experience. As far as I know, the only reason for the ISP's usage of PPPoE over PPPoATM (I could be wrong about this though) is for accounting reasons. That is the only real purpose behind the Enternet300 software. You should be able to connect without login id/pw, but the PPPoE implementation forces this, and I've been explained that it is purely for accounting reasons. Without the ID/PW during the PPPoE negotiations, you can't get onto the upstream net. :( If you get the basic DSL from SBC (and I think it's the same for other carriers in the US), they'll send you a Westell or SpeedStream DSL modem, of which if you are dynamicly assigned your address, they use the modem in bridging mode. If you have a static IP, then your modem has the bridging mode turned off. If you have the time, you can sift through DSLReports.com on their public posting forum for some comments on the difference between the two modems as far as functionality and effeciency of throughput goes. The only thing I haven't figured out how to do is have a real-time gauge of my xfer rate, something the Enternet300 software did give me HTH Mark Odette II - Original Message - From: "Ole Drews Jensen" To: Sent: Monday, July 30, 2001 5:15 PM Subject: Cisco and DSL + OT DSL question [7:14275] > The first part of this message is not really a study question, but more like > a curiosity question. > > With DSL being very popular and Cisco having changed their CCNA/CCNP exams > not too long ago - why isn't there anything about DSl on the exams at all? > > I know that DSL is still not considered as reliable as dedicated lines, > frame relay, etc., but for SOHO users, it is perfect when available and when > the provider is not going belly up within 4 months. > > Any comments to this are very welcome. > > The second part is totally off topic, but goes with the DSL issue. > > I got ADSL with Southwestern Bell installed 8-9 months ago, and it has been > very reliable, plus the speed has been up to 2.2 mbps in download, which is > a good deal more than T1. > > However, I do not understand the technique behind DSL yet, so I am not sure > what's going on. The DSL router is connected to my phoneline, and it has an > ATM led on the front. Does that mean it actually works on an ATM network? > > Also, Since I have the router on a public IP address, why is it not > configured to give me a private address for my LAN (the cable that goes from > the router to the NIC in my PC) instead of another public IP address? > > And last, what about the EnterNet and PPPoE, what exactly is that, and > couldn't I use something else? > > I am sorry for these questions which might seem stupid to DSL experts, but I > am a beginner when it comes down to DSL. > > Thanks for any comments, and have a nice day... > > Ole > > ~~~ > Ole Drews Jensen > Systems Network Manager > CCNA, MCSE, MCP+I > RWR Enterprises, Inc. > [EMAIL PROTECTED] > ~~~ > http://www.RouterChief.com > ~~~ > NEED A JOB ??? > http://www.oledrews.com/job > ~
RE: Cisco and DSL + OT DSL question [7:14275]
Thanks a lot Mark, I will look into that solution. Take care, Ole ~~~ Ole Drews Jensen Systems Network Manager CCNA, MCSE, MCP+I RWR Enterprises, Inc. [EMAIL PROTECTED] ~~~ http://www.RouterChief.com ~~~ NEED A JOB ??? http://www.oledrews.com/job ~~~ -Original Message- From: Mark Odette II [mailto:[EMAIL PROTECTED]] Sent: Thursday, August 09, 2001 11:18 AM To: Ole Drews Jensen; [EMAIL PROTECTED] Subject: Re: Cisco and DSL + OT DSL question [7:14275] Ole- Many will suggest that if you want to share your DSL connection with multiple hosts in your private LAN, then you should go out and buy a Netgear or Linksys DSL Router/4port Switch combo unit. It's supposed to be quite easy to set up and works greate. The only negative I've heard is that the "firewall" feature on them isn't worth the configuration. Also, the NAT feature isn't what it's cracked up to be either- at least for the NetGear. A colleague of mine had me take a look at one that he was setting up for a client, and the ISP was giving them 5 static IP's. So, they wanted to static nat between multiple hosts for WWW, SMTP/POP3, etc. I later come to find that it would only let you do one static, and the rest would do dynamic. This was roughly 4 months ago. For a cisco solution, you could go with a C17xx and the WIC-1ENET card that is designed ONLY for the 1700's. The WIC-1ENET card is PPPoE compliant, and it is the lesser expensive alternative to the other option - WIC-1ADSL. Obviously, of course, buying a Cisco router for your shared WAN usage is more expensive, but I think it is better in the long run for many reasons. You get a router that can double as a lab device, you can NAT with more versatility, you get at least a little exposure to how the PPPoE/oA configs work (with the ENET card it is simple, but the ADSL card gets you to learning the real functionality of DSL ATM), and with the 1750's you get a router that also have VoIP capability. I invested in a 1750-4V with the WIC-1ENET (the wic runs roughly 150-200USD on ebay) option off of ebay, and really wished I had gotten the 1751 for VLAN labs, but I'm still quite happy with what I have. The WIC-1ADSL is IMHO way over priced (500+USD) for what it gives you in functionality, but if currency is not an issue, then I would get it for the indepth hands-on experience. As far as I know, the only reason for the ISP's usage of PPPoE over PPPoATM (I could be wrong about this though) is for accounting reasons. That is the only real purpose behind the Enternet300 software. You should be able to connect without login id/pw, but the PPPoE implementation forces this, and I've been explained that it is purely for accounting reasons. Without the ID/PW during the PPPoE negotiations, you can't get onto the upstream net. :( If you get the basic DSL from SBC (and I think it's the same for other carriers in the US), they'll send you a Westell or SpeedStream DSL modem, of which if you are dynamicly assigned your address, they use the modem in bridging mode. If you have a static IP, then your modem has the bridging mode turned off. If you have the time, you can sift through DSLReports.com on their public posting forum for some comments on the difference between the two modems as far as functionality and effeciency of throughput goes. The only thing I haven't figured out how to do is have a real-time gauge of my xfer rate, something the Enternet300 software did give me HTH Mark Odette II - Original Message - From: "Ole Drews Jensen" To: Sent: Monday, July 30, 2001 5:15 PM Subject: Cisco and DSL + OT DSL question [7:14275] > The first part of this message is not really a study question, but more like > a curiosity question. > > With DSL being very popular and Cisco having changed their CCNA/CCNP exams > not too long ago - why isn't there anything about DSl on the exams at all? > > I know that DSL is still not considered as reliable as dedicated lines, > frame relay, etc., but for SOHO users, it is perfect when available and when > the provider is not going belly up within 4 months. > > Any comments to this are very welcome. > > The second part is totally off topic, but goes with the DSL issue. > > I got ADSL with Southwestern Bell installed 8-9 months ago, and it has been > very reliable, plus the speed has been up to 2.2 mbps in download, which is > a good deal more than T1. > > However, I do not understand the technique behind DSL yet, so I am not sure > what's going on. The DSL router is connected to my phoneline, and it has an > ATM led on the front. Does that mean it actually works on an ATM network? > > Also, Since I have the router on a public IP address, why is it not > configured to give me a private address for my LAN (the cable that goes from > the router to the NIC in my PC) instead of another public IP address? > > And last,
Re: HSRP on 6509 [7:15570]
- Original Message - From: "Thomas N." > I have a problem here with HSRP on 6509. The Cisco 6509 has 2 MSFC cards. > As I understand correctly, only the first card (active one) does the > routing. The second card (standby one) should do NOTHING, unless the first > card goes down (please correct me if I am wrong). In my case, things are > different. It seems both cards do the routing. When I do a trace on a > destination, the result flips flop between the actually IP addresses of the > vlan on both cards. Let's say I have VLAN 100 with: > > Virtual IP address = 10.100.1.100 255.255.0.0 > IP address on first card (active) = 10.100.1.1 255.255.0.0 > IP address on second card (standbly) = 10.100.1.2 255.255.0.0 > > When I do the trace on a destination that pass through this 6509, some path > includes 10.100.1.1, while other includes 10.100.1.2 > > Is there some way I can check if the HSRP is configured correctly on my > 6509? Thanks in advance! > > Thomas > One issue could be the fact that the standby address is only used as the default gateway for workstations. Routing protocols use the physical address. Another issue could be the fact that you have both MSFC's configured seperately, not as a redundant pair. In this case, half of your VLAN's are being routed by one MSFC, while the other half are routed by the second. You'll run into some assymentric routing issues with this configuration, but they can be worked through. The plus for this config, is that you have twice the processing power to handle process switched packets. David C Prall [EMAIL PROTECTED] http://dcp.dcptech.com Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=15577&t=15570 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: HSRP on 6509 [7:15570]
Yes, I do run EIGRP. Will EIGRP cause the problem? ""Jim Yam"" wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > What routing protocol are you running? EIGRP will do load sharing between > two interfaces. > > JY > > ""Thomas N."" wrote in message > [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > > Hi All, > > > > I have a problem here with HSRP on 6509. The Cisco 6509 has 2 MSFC cards. > > As I understand correctly, only the first card (active one) does the > > routing. The second card (standby one) should do NOTHING, unless the > first > > card goes down (please correct me if I am wrong). In my case, things are > > different. It seems both cards do the routing. When I do a trace on a > > destination, the result flips flop between the actually IP addresses of > the > > vlan on both cards. Let's say I have VLAN 100 with: > > > > Virtual IP address = 10.100.1.100 255.255.0.0 > > IP address on first card (active) = 10.100.1.1 255.255.0.0 > > IP address on second card (standbly) = 10.100.1.2 255.255.0.0 > > > > When I do the trace on a destination that pass through this 6509, some > path > > includes 10.100.1.1, while other includes 10.100.1.2 > > > > Is there some way I can check if the HSRP is configured correctly on my > > 6509? Thanks in advance! > > > > Thomas Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=15576&t=15570 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: HSRP on 6509 [7:15575]
I believe you are running MSFC in a hybrid mode. Both the switching enging will syn and one of them will be active and the other one will be in standby. But, both routing engines will be running. If you do "sh mod", they should show on Mod 15 and 16. Hope this helps. ""Jim Yam"" wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > What routing protocol are you running? EIGRP will do load sharing between > two interfaces. > > JY > > ""Thomas N."" wrote in message > [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > > Hi All, > > > > I have a problem here with HSRP on 6509. The Cisco 6509 has 2 MSFC cards. > > As I understand correctly, only the first card (active one) does the > > routing. The second card (standby one) should do NOTHING, unless the > first > > card goes down (please correct me if I am wrong). In my case, things are > > different. It seems both cards do the routing. When I do a trace on a > > destination, the result flips flop between the actually IP addresses of > the > > vlan on both cards. Let's say I have VLAN 100 with: > > > > Virtual IP address = 10.100.1.100 255.255.0.0 > > IP address on first card (active) = 10.100.1.1 255.255.0.0 > > IP address on second card (standbly) = 10.100.1.2 255.255.0.0 > > > > When I do the trace on a destination that pass through this 6509, some > path > > includes 10.100.1.1, while other includes 10.100.1.2 > > > > Is there some way I can check if the HSRP is configured correctly on my > > 6509? Thanks in advance! > > > > Thomas Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=15575&t=15575 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: NM-2W (no Lan) for 2610, Is it supported ? [7:15563]
sometimes, searching cco is the best place to find an answer if you simply enter nm-2w 2600 into the search window brings you to this: http://www-search.cisco.com/pcgi-bin/search/public.pl?q=nm-2w+%3Cand%3E+2600&num=10&searchselector=0 which, as you look at the first hit http://www.cisco.com/univercd/cc/td/doc/product/software/ios120/relnote/2600ser/rn26007k.htm and click on new hardware features shows this: New Product Numbers: NM-2W (Cisco 2600 and 3600 series) "[EMAIL PROTECTED]" wrote: > Hi group !! > > Can someone pls tell me if the NM-2W Module (w no Lan) is supported on > the 2610 ??? > > If so, I have an NM-1E (for 3600 series) module that i'm looking to > possibly trade for the > > NM-2w, for a 2610. > > Thanks in advance.. > > Randy > Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=15574&t=15563 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: HSRP on 6509 [7:15570]
What routing protocol are you running? EIGRP will do load sharing between two interfaces. JY ""Thomas N."" wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > Hi All, > > I have a problem here with HSRP on 6509. The Cisco 6509 has 2 MSFC cards. > As I understand correctly, only the first card (active one) does the > routing. The second card (standby one) should do NOTHING, unless the first > card goes down (please correct me if I am wrong). In my case, things are > different. It seems both cards do the routing. When I do a trace on a > destination, the result flips flop between the actually IP addresses of the > vlan on both cards. Let's say I have VLAN 100 with: > > Virtual IP address = 10.100.1.100 255.255.0.0 > IP address on first card (active) = 10.100.1.1 255.255.0.0 > IP address on second card (standbly) = 10.100.1.2 255.255.0.0 > > When I do the trace on a destination that pass through this 6509, some path > includes 10.100.1.1, while other includes 10.100.1.2 > > Is there some way I can check if the HSRP is configured correctly on my > 6509? Thanks in advance! > > Thomas Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=15573&t=15570 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: PIX Question [7:15518]
PAT itself won't help you...Pat is only for outbound connections. You didn't mention what version of PIX you have so I'll give you some insight. If you are running PIX 6.01 or can upgrade to it, then things are looking up. I believe that this version of PIX supports port redirection, which can accept a variety of traffic on a single address and forward to various internal addresses based on TCP/UDP port used. A coworker told me that you can even do this on a single address that is also used for outbound PAT but I haven't confirmed this yet. It may also be possible that some of the 5.x versions of PIX support port redirection, but again, I haven't confirmed this. Anyway, check them out. --- Rik Guyler -Original Message- From: Bruce Williams [mailto:[EMAIL PROTECTED]] Sent: Thursday, August 09, 2001 3:35 PM To: [EMAIL PROTECTED] Subject: PIX Question [7:15518] I have many devices on the inside (most secure) interface of my PIX that I need to allow telnet and ftp access to users from the outside (least secure) interface of the PIX. I know that I can create a static map to the inside IP addresses, but I dont have enough outside IP addresses to support all of the devices on the inside. I am using PAT to allow users from the inside (most secure) interface to get access to the outside (less secure) interface. Can I use PAT the same way to allow outside users to access the inside servers on one address or is there a way to open the PIX up for all users from the outside to get in on a temporary basis? Bruce Williams 215-275-2723 [EMAIL PROTECTED] Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=15572&t=15518 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: PIX Question [7:15518]
I am not sure that you can specify the port numbers on that outside address, but I will try it tomorrow. Someone also suggested that I create a telnet server and telnet to it first and then telnet to other devices. but I did not think it would work because I did not think the PIX would allow the second Telnet session. Now that I think about it the packets should return to the telnet server and then be packaged with the original source and destination address to return to the outside host. I will try them both! Thanks, Bruce ""Gareth Hinton"" wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > I've not tried it yet, but if you're using version 6.0, how about using port > re-direction - Using one IP address on the outside, but telnet to a > different port for each internal device. > > static (inside,outside) tcp 192.168.124.99 3001 10.1.1.1 telnet netmask > 255.255.255.255 0 0 > static (inside,outside) tcp 192.168.124.99 3002 10.1.1.2 telnet netmask > 255.255.255.255 0 0 > static (inside,outside) tcp 192.168.124.99 3003 10.1.1.3 telnet netmask > 255.255.255.255 0 0 > > With the relevant access lists to control who can telnet to the devices. > > Then just: > > "telnet 192.168.124.99 3001 etc" > > Looks good but needs testing. Anybody rip it to pieces??? > > Gaz > > > ""Bruce Williams"" wrote in message > [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > > I have many devices on the inside (most secure) interface of my PIX that I > > need to allow telnet and ftp access to users from the outside (least > secure) > > interface of the PIX. I know that I can create a static map to the inside > IP > > addresses, but I dont have enough outside IP addresses to support all of > the > > devices on the inside. I am using PAT to allow users from the inside (most > > secure) interface to get access to the outside (less secure) interface. > Can > > I use PAT the same way to allow outside users to access the inside servers > > on one address or is there a way to open the PIX up for all users from the > > outside to get in on a temporary basis? > > > > Bruce Williams > > 215-275-2723 > > [EMAIL PROTECTED] Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=15569&t=15518 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: MCNS Exam vs. CSPFA Exam [7:15238]
I need a little more advice from you. You are saying that I should take either CSPFA or CSVPN first, take MCNS third. Take IDSPM last. What reference material do I need to prepare for the CSPFA and CSVPN? I have the CSPFF and CSPFA version 1.0 course notes and Cisco Press MCNS coursebook. What about IDSPM? Thanks for your time and advice. cheekin - Original Message - From: Cooper, David To: 'cheekin' Sent: Wednesday, August 08, 2001 20:26 Subject: RE: MCNS Exam vs. CSPFA Exam [7:15238] Take the MCNS third. It wraps all of it together. All the exams are CCNA level exams. They all seem to pull from the same database. The IDS is a little different but the other 3 are all similar. Dave Cooper Cisco/Bay Network Engineer NetSolve Inc. 12331 Riata Trace Parkway Austin, TX 78727 (email) [EMAIL PROTECTED] CCNP - Routing and Switching CCDP - Routing and Switching CSS1- Cisco Security Specialist 1 NNCSS- Nortel Networks Certified Support Specialist Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=15571&t=15238 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
HSRP on 6509 [7:15570]
Hi All, I have a problem here with HSRP on 6509. The Cisco 6509 has 2 MSFC cards. As I understand correctly, only the first card (active one) does the routing. The second card (standby one) should do NOTHING, unless the first card goes down (please correct me if I am wrong). In my case, things are different. It seems both cards do the routing. When I do a trace on a destination, the result flips flop between the actually IP addresses of the vlan on both cards. Let's say I have VLAN 100 with: Virtual IP address = 10.100.1.100 255.255.0.0 IP address on first card (active) = 10.100.1.1 255.255.0.0 IP address on second card (standbly) = 10.100.1.2 255.255.0.0 When I do the trace on a destination that pass through this 6509, some path includes 10.100.1.1, while other includes 10.100.1.2 Is there some way I can check if the HSRP is configured correctly on my 6509? Thanks in advance! Thomas Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=15570&t=15570 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Usage of Spanning-tree "GUARD" and "UDLD" features. [7:15568]
Hi Folks, Can someone please guide me on the usage of "Spanning-tree GUARD" and UDLD (Uni-directional Link Detection) features in the Catalyst switches? My specific question is would there be a need to use both in a situation, as they seem to serve the same basic purpose ? Or is "Spanning-tree GUARD" feature superior as it checks certain software features such as "Ether-channel" and "trunks" also ? Aziz S. Islam Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=15568&t=15568 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
ospf costs/metrics [7:15567]
Just so I understand ospf costs/metrics correctly... For an exampleI have a remote WAN router with two PVC's. Both connections are 56k. One PVC connects to a host circuit @ 1024K and the other PVC connects to a different host circuit @ 512K. Because these connections are serial, without a bandwidth or cost statement on the host or remote interfaces will ospf see both circuits as 1536k links and load balance? With adding a bandwith statement on each host side, I assume ospf traffic will perfer the 1024 link? Then what if I add a higher cost (say above 1785) on the remote circuit that connects back to the 1024k host, will it then perfer the 512k? Sorry about all of the questions, I am just somewhat confused. Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=15567&t=15567 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: NM-2W (no Lan) for 2610, Is it supported ? [7:15563]
Yes, it is supported. -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of [EMAIL PROTECTED] Sent: Thursday, August 09, 2001 9:09 PM To: [EMAIL PROTECTED] Subject: NM-2W (no Lan) for 2610, Is it supported ? [7:15563] Hi group !! Can someone pls tell me if the NM-2W Module (w no Lan) is supported on the 2610 ??? If so, I have an NM-1E (for 3600 series) module that i'm looking to possibly trade for the NM-2w, for a 2610. Thanks in advance.. Randy GET INTERNET ACCESS FROM JUNO! Juno offers FREE or PREMIUM Internet access for less! Join Juno today! For your FREE software, visit: http://dl.www.juno.com/get/tagj. Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=15565&t=15563 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Why Should the Binary Math Method Be Used to Subnet [7:15564]
I just wanted to see if you were paying attention, Priscilla! (-: -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Priscilla Oppenheimer Sent: Thursday, August 09, 2001 5:16 PM To: [EMAIL PROTECTED] Subject: RE: Why Should the Binary Math Method Be Used to Subnet [7:15552] Here's the trick. It's great! Thanks, Leigh Anne. See one minor change below. Priscilla At 01:53 PM 8/9/01, Leigh Anne Chisholm wrote: >I can't resist a challenge! (-: > >It's actually such a wonderful tool, I can't resist trying to share the >trick... Here goes! > > > >Subnets are always created in increments of 256 minus the subnetted value. >The subnetted value is octet where the number of bits in the subnet mask are >not 0 or 255. > >IP Address:192.168.0.0 >Subnet mask of 255.255.240.0 >^^^ - that's our little subnetting guy. > >In this first example, subtract 256 from our subnetted value of 240 and you I think you mean subtract 240 from 256, unless we're dealing with negative numbers. ;-) >get 16. Your subnets will be in groups of 16. > > First subnet: 192.168.0.0 (Now add 16) > > Second subnet: 192.168.16.0 (Our second network - add 16 again) > > Third subnet: 192.168.32.0 (Our third network - and so on) > > 4th: 192.168.48.0 > 5th: 192.168.64.0 > 6th: 192.168.80.0 > 7th: 192.168.96.0 > 8th: 192.168.112.0 > 9th: 192.168.128.0 > 10th: 192.168.144.0 > 11th: 192.168.160.0 > 12th: 192.168.176.0 > 13th: 192.168.192.0 > 14th: 192.168.208.0 > 15th: 192.168.224.0 > 16th: 192.168.240.0 > >We borrowed 4 bits of subnetting - 2^4 = 16. And we've got 16 subnets... > > >Let's try another example. >"Subnets are always in increments of 256 minus the subnetted value." > >255.255.248.0 has subnets in blocks of 8. Using 192.168.0.0 again: > > First subnet: 192.168.0.0 (now add 8) > > Second subnet: 192.168.8.0 (Voila! Add 8 again!) > > Third subnet: 192.168.16.0 (It's just that easy!) > >etc. etc... > >-Original Message- >From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of >Priscilla Oppenheimer >Sent: Thursday, August 09, 2001 11:16 AM >To: [EMAIL PROTECTED] >Subject: Re: Why Should the Binary Math Method Be Used to Subnet >[7:15488] > > >I do use decimal. ;-) Just like someone else said, I do make a list such >as: 128, 192, 224, 240, 248, 252, 254, 255. > >I don't get the tricks I've seen people do where they subtract from 256 (or >something like that. Since I don't get them, I can't remember them!) > >Priscilla > > >At 11:18 AM 8/9/01, Debbie Becker wrote: > >Oh, surely not brain damaged, Priscilla! Perhaps decimally challenged? > > > > > >Deb > > > >""Priscilla Oppenheimer"" wrote in message > >[EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > >| Well, I have to admit to never really understanding the shortcuts that I > >| have seen people use. ;-) I guess I'm brain damaged, but I have to do it > >in > >| binary. > >| > >| As far as tools are concerned, I totally agree with the person who >pointed > >| out that in design meetings, you often don't have any tool handy except > >| your head. Sure, you may have an IP subnet calculator on your Palm, but > >the > >| client is going to look at you askance as you bury your head in the > >| itty-bitty screen, trying to use that silly stylus thing or Graffiti, > >| giving them no eye contact the whole time you're puttering with the tool. > >| Use your head and look professional and like you're worth the big bucks > >| that they are paying you. > >| > >| Priscilla > >| > >| At 03:52 PM 8/8/01, Debbie Becker wrote: > >| >I use decimal shortcuts most of the time as well -- but when I run >across > >| >something confusing, I'll go back to binary -- it always shows me the >way > >FAQ, list archives, and subscription info: > >http://www.groupstudy.com/list/cisco.html > >Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] Priscilla Oppenheimer http://www.priscilla.com Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=15564&t=15564 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
NM-2W (no Lan) for 2610, Is it supported ? [7:15563]
Hi group !! Can someone pls tell me if the NM-2W Module (w no Lan) is supported on the 2610 ??? If so, I have an NM-1E (for 3600 series) module that i'm looking to possibly trade for the NM-2w, for a 2610. Thanks in advance.. Randy GET INTERNET ACCESS FROM JUNO! Juno offers FREE or PREMIUM Internet access for less! Join Juno today! For your FREE software, visit: http://dl.www.juno.com/get/tagj. Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=15563&t=15563 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: One interface-two IPs-& NAT? [7:15460]
Actually, if he's trying to do NAT with only one interface, it won't work.
You must have an inside (non-translated, usually private address range) and
an outside (translated, usually Internet-routable) interface. At least one
of each. What addresses you translate them into is irrelevant and can be
almost anything.
Mark Baker
-Original Message-
From: Mark Morenz [SMTP:[EMAIL PROTECTED]]
Sent: Thursday, August 09, 2001 7:09 PM
To: [EMAIL PROTECTED]
Subject:RE: One interface-two IPs-& NAT? [7:15460]
What you're suggesting can be done (although it seems like you should
research nat a little more fully to understand tactically what nat is...you
don't actually put two IP addresses on an interface when you do nat
translations).
But as I read your question, I think it's important to realize that the
ISP's router will always be your gateway to the internet whether you put
your own router onto your ethernet network or not. That means that the nat
translation *must* take place on the ISP router (specifically their
router's
ethernet interface. So, based on what I'm reading, you will need to
coordinate this with them regardless.
HTH
:-{)]
-Mark A Morenz, MS Ed, CCNA, CCAI
Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=15562&t=15460
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: How to use a BB [7:15553]
Meant to say "Messages Marked as Watched messages dont work"
The rest stands
""Gareth Hinton"" wrote in message
[EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
> I think you're missing something technically. I've also been missing it
for
> a good few months now. Some changes were carried out a while back, and
since
> that day, this newsgroup's threads are never formed properly, messages
> marked as read do not work, etc, etc.
> If I'd just visited the group I'd probably leave as it can be a pain, but
> I've been here too long now.
> It is a treat to visit other newsgroups sometimes though and get proper
> formatting.
>
> I've sent a few e-mails to Paul, but I realise he's a busy man, and I've
not
> received a reply.
> There are probably good technical reasons for all this, but it would be
nice
> to know what they are.
>
> I'll feel a bit dumb if I'm only one having this problem through something
> I've done to Outlook Express, but I use two other newsgroups which work
> fine, and on three different PC's.
>
> Anybody provide any input.
>
>
> Thanks,
>
> Gaz
>
>
> ""Mark Morenz"" wrote in message
> [EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
> > Unless I'm missing something technically about how this BB is set up,
may
> I
> > make a general request for the good of the group?
> >
> > Whenever anyone replies to an email, could they please ACUALLY REPLY to
it
> > by clicking on the "reply" link? It kind of defeats the purpose of
having
> > threads if you never use them as such. Makes it harder to read.
> >
> > Hoping this suggestion makes everyone's groupstudy.com experience a
better
> > one, I am,
> >
> > :-{)]
> >
> > -Mark A. Morenz, MS Ed, CCNA, CCAI
Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=15561&t=15553
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: How to use a BB [7:15553]
I think you're missing something technically. I've also been missing it for
a good few months now. Some changes were carried out a while back, and since
that day, this newsgroup's threads are never formed properly, messages
marked as read do not work, etc, etc.
If I'd just visited the group I'd probably leave as it can be a pain, but
I've been here too long now.
It is a treat to visit other newsgroups sometimes though and get proper
formatting.
I've sent a few e-mails to Paul, but I realise he's a busy man, and I've not
received a reply.
There are probably good technical reasons for all this, but it would be nice
to know what they are.
I'll feel a bit dumb if I'm only one having this problem through something
I've done to Outlook Express, but I use two other newsgroups which work
fine, and on three different PC's.
Anybody provide any input.
Thanks,
Gaz
""Mark Morenz"" wrote in message
[EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
> Unless I'm missing something technically about how this BB is set up, may
I
> make a general request for the good of the group?
>
> Whenever anyone replies to an email, could they please ACUALLY REPLY to it
> by clicking on the "reply" link? It kind of defeats the purpose of having
> threads if you never use them as such. Makes it harder to read.
>
> Hoping this suggestion makes everyone's groupstudy.com experience a better
> one, I am,
>
> :-{)]
>
> -Mark A. Morenz, MS Ed, CCNA, CCAI
Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=15560&t=15553
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Cat6500 [7:15435]
Dung, Supervisor engines are the heart of Cisco catalyst switches. Nothing can be run Cat6500 without a suppervisor engine, but power supplies and fans. Cisco calls supervisor engines Network Management Proccessors. Are you taking Switching Exam ? Are you Vietnamese ? Best, TuDo. Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=15559&t=15435 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: PIX Question [7:15518]
I've not tried it yet, but if you're using version 6.0, how about using port re-direction - Using one IP address on the outside, but telnet to a different port for each internal device. static (inside,outside) tcp 192.168.124.99 3001 10.1.1.1 telnet netmask 255.255.255.255 0 0 static (inside,outside) tcp 192.168.124.99 3002 10.1.1.2 telnet netmask 255.255.255.255 0 0 static (inside,outside) tcp 192.168.124.99 3003 10.1.1.3 telnet netmask 255.255.255.255 0 0 With the relevant access lists to control who can telnet to the devices. Then just: "telnet 192.168.124.99 3001 etc" Looks good but needs testing. Anybody rip it to pieces??? Gaz ""Bruce Williams"" wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > I have many devices on the inside (most secure) interface of my PIX that I > need to allow telnet and ftp access to users from the outside (least secure) > interface of the PIX. I know that I can create a static map to the inside IP > addresses, but I dont have enough outside IP addresses to support all of the > devices on the inside. I am using PAT to allow users from the inside (most > secure) interface to get access to the outside (less secure) interface. Can > I use PAT the same way to allow outside users to access the inside servers > on one address or is there a way to open the PIX up for all users from the > outside to get in on a temporary basis? > > Bruce Williams > 215-275-2723 > [EMAIL PROTECTED] Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=15558&t=15518 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: EIGRP: Adding a new router [7:15504]
EIGRP does split horizon and also poison reverse! Poison reverse isn't just a theoretical thing that they make you learn for CCNA. ;-) I have a Sniffer trace of an EIGRP router booting. It's on Ethernet. There's just one other router on the Ethernet. (The behavior may have been different if there had been multiple routers. I'll try that at some point.) Both routers have multiple networks behind them. \ / - Old Router--Ethernet--New Router - / \ The new router boots and sends a multicast Hello. The old router sends an update directly to the new router (unicast) listing the networks behind it. Multiple networks are listed in the packet. The new router ACKs. Here's the answer to your question (sort of): The new router then sends an update listing all the networks it just learned from the old router as unreachable (delay = ). It sends this twice, as both a multicast and a unicast! (I see this as a strange implementation of poison reverse.) The old router ACKs. The new router sends an update directly to the old router (unicast) specifying the networks that are behind it. The old router ACKs. The old router does the poison reverse thing. Then they settle down and just send Hellos for a while. Then I pulled one of the networks behind the old router. This caused the old router to multicast a query asking if anyone can get to the dead network. It's a query type of packet. It lists the dead network as unreachable. The new router ACKs. The new router sends a response that the dead network is unreachable. The old router ACKs. I put the cable back. The old router sends a multicast update saying it can get to that network again. It also sends the exact same information as a unicast to the new router. The new router ACKs. You can guess what it does next!? The new router sends a multicast and unicast saying that the network is unreachable (poison reverse thing.) I hope you could follow all that and that it answered your questions somewhat. Bottom line: EIGRP uses a mix of unicast and multicast and it does split horizon and poison reverse. I'll try a network with more than just two routers on Ethernet when I get a chance. Priscilla (At 03:43 PM 8/9/01, Leigh Anne Chisholm wrote: >Don't forget that split-horizon plays a role here. I'm not sure if updates >are limited to one route per packet... (I believe that they are judging from >some debugs I've run but it's hard to tell exactly what you're seeing--are >multiple lines from one packet?) but if a router receives information about >a network it advertised, it will ignore the update. So it wouldn't really >care if it received the information back. It got its ACK from the original >information... > > > >-Original Message- >From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of >Ole Drews Jensen >Sent: Thursday, August 09, 2001 1:18 PM >To: [EMAIL PROTECTED] >Subject: RE: EIGRP: Adding a new router [7:15504] > > >Thanks again Leigh, > >So I guess the neighbors WILL receive their own advertised routes back from >Elvis, since it's multicasting its entire Route Table... > >Have a great day, > >Ole > >~~~ > Ole Drews Jensen > Systems Network Manager > CCNA, MCSE, MCP+I > RWR Enterprises, Inc. > [EMAIL PROTECTED] >~~~ > http://www.RouterChief.com >~~~ > NEED A JOB ??? > http://www.oledrews.com/job >~~~ > > >-Original Message- >From: Leigh Anne Chisholm [mailto:[EMAIL PROTECTED]] >Sent: Thursday, August 09, 2001 1:58 PM >To: Ole Drews Jensen; [EMAIL PROTECTED] >Subject: RE: EIGRP: Adding a new router [7:15504] > > >EIGRP Update packets are used to communicate information about routes. >Updates are transmitted only when there is a change in the topology. >Updates contain only the changed information and are sent only to routers >that require the information. > >Updates are multicast unless only one router requires the update >information--then the update is unicast. Updates are also unicast when a >neighbor is on a point-to-point link. > >In the case of Elvis coming up, all routers require its routing information >so Elvis will multicast (and unicast to any point-to-point neighboring >routers). > > > -- Leigh Anne > >-Original Message- >From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of >Ole Drews Jensen >Sent: Thursday, August 09, 2001 12:19 PM >To: [EMAIL PROTECTED] >Subject: EIGRP: Adding a new router [7:15504] > > >When adding a new router - Elvis - it is my understanding that the following >happens: > >1) > >Elvis sends multicast HELLO packets out all interfaces. > >2) > >Neighbors that receives the HELLO packets replies with their entire Route >Table, except routes learned from Elvis (however, they have not learned >anything from Elvis yet). > >3) > >Elvis A
Interesting UK Employment article [7:15556]
Thought the report below from cw360 was interesting, particularly the final paragraph: The demand for IT professionals has plummeted to its lowest level since the last recession as businesses rein back their IT budgets and put major e-commerce projects on hold. The number of IT jobs advertised in the press in the second quarter of the year has fallen below 15,000 for the first time since the early 1990s, the latest Computer Weekly/SSP jobs survey reveals. The downturn is so severe that some commentators have suggested that the slump could prove longer and deeper than the 1991-1993 recession, which led to more than 30,000 job losses. Internet specialists, including administrators, Web designers, authors and editors have born the brunt of the slowdown, with the number of jobs advertised down 75% compared to the same time last year. Demand for Java has fallen by 60%, with finance companies cutting back their intake by a half, software suppliers by a third and hardware suppliers by two thirds. Demand for XML and Wap specialists is also beginning to peter out. Demand for systems developers has dropped dramatically, with the number of jobs advertised falling by between a third and a half compared to the same time last year. Experts predict that the job market is unlikely to recover until the telecoms suppliers kick-start a new generation of e-commerce projects by rolling out broadband access to businesses and homes. "The big all-singing all-dancing graphical e-commerce projects have had the chop because no one has the bandwidth to make use of them," said Philip Virgo, strategic adviser to the Institute for the Management of Information Systems. "This recession is already worse than 1991 and has yet to bottom out. It will not recover until the roll-out of broadband has re-started." IT departments are increasingly focusing their efforts on projects that offer a quick payback, such as adding low-bandwidth Internet access to existing enterprise systems. This has led to a growing demand for communication and network specialists, which now account for 11% of all jobs advertised, compared to 5% at the same time last year. Seems like the lower end projects are where the work is, more for Solutions Providers/ Integrators than for bulk sales like Cisco. We don't seem to be seeing much of a recession yet, although it's apparently already worse than the one ten years ago. Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=15556&t=15556 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: CCIE written study question [7:15514]
Get the ccprep.com broken ring whitepaper and know it. If you are consistantly passing the Boson tests you are ready. ""Wright, Jeremy"" wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > I just wanted to get a suggestion as to where to go next for my CCIE written > studying. This is what I have done (already have my CCNP) so far > > 1. Read the Caslow book > 2. Read the broken-ring bridging paper from ccprep and groupstudy > 3. Read the Doyle Episode 1 > 4. Getting ready to read the Halabi book and Sybex CCIE > 5. I have been doing the Boson tests during my breaks from reading > 6. I have done a few of the c-zone questions but not much > > Any suggestions as to where to go now? Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=1&t=15514 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
ISP Best Practice Question [7:15554]
When it's said a good ISP utilizes the 5:1 subscription rule & not the 8 or 10 to 1, is this expressing that the same service is offered to 5 logical for 1 physical. I've always been aware this existed from my early experiences working for a CLEC, but now that I'm sizing & pricing pipes for critical applications I'm not sure what this exactly means. Thanks Phillip Lorenz Wheeler Network Design Inc. [EMAIL PROTECTED] Office- 301.429.6305 Cell-703.909.6643 Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=15554&t=15554 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
How to use a BB [7:15553]
Unless I'm missing something technically about how this BB is set up, may I
make a general request for the good of the group?
Whenever anyone replies to an email, could they please ACUALLY REPLY to it
by clicking on the "reply" link? It kind of defeats the purpose of having
threads if you never use them as such. Makes it harder to read.
Hoping this suggestion makes everyone's groupstudy.com experience a better
one, I am,
:-{)]
-Mark A. Morenz, MS Ed, CCNA, CCAI
Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=15553&t=15553
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Why Should the Binary Math Method Be Used to Subnet [7:15552]
Here's the trick. It's great! Thanks, Leigh Anne. See one minor change below. Priscilla At 01:53 PM 8/9/01, Leigh Anne Chisholm wrote: >I can't resist a challenge! (-: > >It's actually such a wonderful tool, I can't resist trying to share the >trick... Here goes! > > > >Subnets are always created in increments of 256 minus the subnetted value. >The subnetted value is octet where the number of bits in the subnet mask are >not 0 or 255. > >IP Address:192.168.0.0 >Subnet mask of 255.255.240.0 >^^^ - that's our little subnetting guy. > >In this first example, subtract 256 from our subnetted value of 240 and you I think you mean subtract 240 from 256, unless we're dealing with negative numbers. ;-) >get 16. Your subnets will be in groups of 16. > > First subnet: 192.168.0.0 (Now add 16) > > Second subnet: 192.168.16.0 (Our second network - add 16 again) > > Third subnet: 192.168.32.0 (Our third network - and so on) > > 4th: 192.168.48.0 > 5th: 192.168.64.0 > 6th: 192.168.80.0 > 7th: 192.168.96.0 > 8th: 192.168.112.0 > 9th: 192.168.128.0 > 10th: 192.168.144.0 > 11th: 192.168.160.0 > 12th: 192.168.176.0 > 13th: 192.168.192.0 > 14th: 192.168.208.0 > 15th: 192.168.224.0 > 16th: 192.168.240.0 > >We borrowed 4 bits of subnetting - 2^4 = 16. And we've got 16 subnets... > > >Let's try another example. >"Subnets are always in increments of 256 minus the subnetted value." > >255.255.248.0 has subnets in blocks of 8. Using 192.168.0.0 again: > > First subnet: 192.168.0.0 (now add 8) > > Second subnet: 192.168.8.0 (Voila! Add 8 again!) > > Third subnet: 192.168.16.0 (It's just that easy!) > >etc. etc... > >-Original Message- >From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of >Priscilla Oppenheimer >Sent: Thursday, August 09, 2001 11:16 AM >To: [EMAIL PROTECTED] >Subject: Re: Why Should the Binary Math Method Be Used to Subnet >[7:15488] > > >I do use decimal. ;-) Just like someone else said, I do make a list such >as: 128, 192, 224, 240, 248, 252, 254, 255. > >I don't get the tricks I've seen people do where they subtract from 256 (or >something like that. Since I don't get them, I can't remember them!) > >Priscilla > > >At 11:18 AM 8/9/01, Debbie Becker wrote: > >Oh, surely not brain damaged, Priscilla! Perhaps decimally challenged? > > > > > >Deb > > > >""Priscilla Oppenheimer"" wrote in message > >[EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > >| Well, I have to admit to never really understanding the shortcuts that I > >| have seen people use. ;-) I guess I'm brain damaged, but I have to do it > >in > >| binary. > >| > >| As far as tools are concerned, I totally agree with the person who >pointed > >| out that in design meetings, you often don't have any tool handy except > >| your head. Sure, you may have an IP subnet calculator on your Palm, but > >the > >| client is going to look at you askance as you bury your head in the > >| itty-bitty screen, trying to use that silly stylus thing or Graffiti, > >| giving them no eye contact the whole time you're puttering with the tool. > >| Use your head and look professional and like you're worth the big bucks > >| that they are paying you. > >| > >| Priscilla > >| > >| At 03:52 PM 8/8/01, Debbie Becker wrote: > >| >I use decimal shortcuts most of the time as well -- but when I run >across > >| >something confusing, I'll go back to binary -- it always shows me the >way > >FAQ, list archives, and subscription info: > >http://www.groupstudy.com/list/cisco.html > >Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] Priscilla Oppenheimer http://www.priscilla.com Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=15552&t=15552 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Using IOS to detect Code Red [7:15551]
Here's an interesting tidbit on using Cisco's IOS to detect if any http servers on your network have been compromised. This information originates from Cisco Canada's Calgary office. I've removed the original email header and sender's ID since I'd be publishing his information without permission but I want to give credit where credit is due. ---Beginning of Forwarded Email--- Funny, I was debugging an IOS http issue and turned on the following debugs (below) and saw Aug 9 15:42:34.136: HTTP: processing URL '/default.ida? X%u9090%u6858%ucbd3%u7801%u9090%u6858%ucbd3%u7801%u9 090% u6858%ucbd3%u7801%u9090%u9090%u8190%u00c3%u0003%u8b00%u531b%u53ff%u0078%u000 0%u0 0=a' from host xxx.xxx.xxx.xxx priv = 15 which means a machine on the network is trying to probe my router for the IIS vulnerability. Thus, if you take a NON PRODUCTION Cisco router and just put the following command ip http server and then turn on the debugs (below), you will know if there are machines that have been comprised by code red. It will give you the IP address so you can then patch that machine following Microsoft's instructions. 1751-vespa#sh deb HTTP: HTTP URL debugging is on HTTP Authentication debugging is on HTML: HTML page requests debugging is on HTML form submissions debugging is on HTML server side include debugging is on HTML command line interface debugging is on 1751-vespa#debug ip http ? authentication HTTP Authentication ezsetup HTTP EZSetup ssi HTTP Server Side Includes tokens HTTP tokens transactionsHTTP transactions url HTTP URL 1751-vespa#debug ip html ? forms HTML forms pages HTML pages ssi HTML server side includes tokens HTML tokens Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=15551&t=15551 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: One interface-two IPs-& NAT? [7:15460]
What you're suggesting can be done (although it seems like you should
research nat a little more fully to understand tactically what nat is...you
don't actually put two IP addresses on an interface when you do nat
translations).
But as I read your question, I think it's important to realize that the
ISP's router will always be your gateway to the internet whether you put
your own router onto your ethernet network or not. That means that the nat
translation *must* take place on the ISP router (specifically their router's
ethernet interface. So, based on what I'm reading, you will need to
coordinate this with them regardless.
HTH
:-{)]
-Mark A Morenz, MS Ed, CCNA, CCAI
Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=15548&t=15460
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: ACL log [7:15444]
Hi all again, OOPs! Not reading the access-list too well try something like access-list 101 permit udp any X.X.X.0 0.0.0.255 lt 100 log > access-list 101 permit udp any X.X.X.0 0.0.0.255 gt 99 log access-list 101 permit tcp any X.X.X.0 0.0.0.255 lt 100 log > access-list 101 permit tcp any X.X.X.0 0.0.0.255 gt 99 log > > > access-list 101 deny any any log Yep that looks better, Sorry Teunis > On Thursday, August 09, 2001 at 06:32:26 PM, Tony van Ree wrote: > Hi, > > There are a couple of tricks here. Make sure you have logging on. > > Another nice little trick is to put something like, > > > access-list 1 permit X.X.X.0 0.0.0.255 lt 100 log > access-list 1 permit X.X.X.0 0.0.0.255 gt 99 log > > > access-list 1 deny any log > > By doing it this way you can also see what sockets are being used thus > giving a better indication of stuff like DoS attacks etc. > > Just a thought, > > Teunis, > Hobart, Tasmania > Australia > > > On Thursday, August 09, 2001 at 11:36:14 AM, Patrick Donlon wrote: > > > Thanks got that clear now, it logs it in the show access-list output > > > > > > ""Patrick Donlon"" wrote in message > > [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > > > I'm experiencing a problem on a 2610 with 12.0 IOS, it seems so simple > > that > > > I must be missing something and it's not even Monday morning. I'm just > > > trying to log the acl activity for the vty access class but I see nothing > > on > > > the console or telnet. > > > The acl has two lines one to permit a network and one to deny anything > > else, > > > both with the log option : > > > > > > access-list 1 permit X.X.X.0 0.0.0.255 log > > > access-list 1 deny any log > > > > > > line vty 0 4 > > > access-class 1 in > > > exec-timeout 0 0 > > > logging synchronous > > > > > > Also debug output works just fine to console or telnet sessions, > > > > > > > > > cheers Pat > -- > www.tasmail.com -- www.tasmail.com Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=15550&t=15444 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Why Should the Binary Math Method Be Used to Subnet [7:15549]
Duh. I get that. I'll forward the trick that I was referring to that Leigh Anne sent me. It's cool! ;-) Priscilla At 02:11 PM 8/9/01, dre wrote: >""Priscilla Oppenheimer"" wrote in message >[EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > > I do use decimal. ;-) Just like someone else said, I do make a list such > > as: 128, 192, 224, 240, 248, 252, 254, 255. > > > > I don't get the tricks I've seen people do where they subtract from 256 >(or > > something like that. Since I don't get them, I can't remember them!) > > > > Priscilla > >256-1=255 >256-2=254 >256-4=252 >256-8=248 >256-16=240 >256-32=224 >256-64=192 >256-128=128 > >these are powers of 2. >i just memorize the list, as well. but if i forget it, i can always fall >back to powers of 2. ;> > >-dre Priscilla Oppenheimer http://www.priscilla.com Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=15549&t=15549 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: CCIE written study question [7:15514]
That's more than enough - the Token Ring white paper and the Boson's are crucialyou'll do fine. OSN ""Wright, Jeremy"" wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > I just wanted to get a suggestion as to where to go next for my CCIE written > studying. This is what I have done (already have my CCNP) so far > > 1. Read the Caslow book > 2. Read the broken-ring bridging paper from ccprep and groupstudy > 3. Read the Doyle Episode 1 > 4. Getting ready to read the Halabi book and Sybex CCIE > 5. I have been doing the Boson tests during my breaks from reading > 6. I have done a few of the c-zone questions but not much > > Any suggestions as to where to go now? Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=15547&t=15514 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: ACL log [7:15444]
Hi, There are a couple of tricks here. Make sure you have logging on. Another nice little trick is to put something like, > > access-list 1 permit X.X.X.0 0.0.0.255 lt 100 log access-list 1 permit X.X.X.0 0.0.0.255 gt 99 log > > access-list 1 deny any log By doing it this way you can also see what sockets are being used thus giving a better indication of stuff like DoS attacks etc. Just a thought, Teunis, Hobart, Tasmania Australia On Thursday, August 09, 2001 at 11:36:14 AM, Patrick Donlon wrote: > Thanks got that clear now, it logs it in the show access-list output > > > ""Patrick Donlon"" wrote in message > [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > > I'm experiencing a problem on a 2610 with 12.0 IOS, it seems so simple > that > > I must be missing something and it's not even Monday morning. I'm just > > trying to log the acl activity for the vty access class but I see nothing > on > > the console or telnet. > > The acl has two lines one to permit a network and one to deny anything > else, > > both with the log option : > > > > access-list 1 permit X.X.X.0 0.0.0.255 log > > access-list 1 deny any log > > > > line vty 0 4 > > access-class 1 in > > exec-timeout 0 0 > > logging synchronous > > > > Also debug output works just fine to console or telnet sessions, > > > > > > cheers Pat -- www.tasmail.com Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=15546&t=15444 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: binary [7:15544]
Priscilla brings up an important point - it doesn't really make a difference which method you use - as long as you get the right answer, and aren't dependent on any external devices! BJ I do use decimal. ;-) Just like someone else said, I do make a list such as: 128, 192, 224, 240, 248, 252, 254, 255. I don't get the tricks I've seen people do where they subtract from 256 (or something like that. Since I don't get them, I can't remember them!) Priscilla Bradley J. Wilson CCNP CCDP MCSE NNCSS CNX MCT CTT EDS/Boston Scientific Account (508) 650-8739 [EMAIL PROTECTED] Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=15544&t=15544 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: BGP Filtering [7:15450]
Ack! My groovy TLA got filtered! "WPAYTTS?" ;-) - Original Message - From: "Wilson, Bradley" To: Sent: Thursday, August 09, 2001 4:17 PM Subject: RE: BGP Filtering [7:15450] > (i.e. What problem are you trying to solve? Why would you want to limit the > number of prefixes you receive? Do you want to limit them to the first 500 > it receives, or a *specific* set of prefixes?) > > BJ > > > -Original Message- > From: Saleem Nathoo [mailto:[EMAIL PROTECTED]] > Sent: Thursday, August 09, 2001 7:58 AM > To: [EMAIL PROTECTED] > Subject: BGP Filtering [7:15450] > > > I wanted to know the bgp commands to allow only a > minimum 100 and maximum 500 routes in the routing > table from my EBGP neighbor. Not using prefix lists or > access lists. These routes that are coming into my > topology are from different networks and subnets. > > Thanks in advance. > > Thanks, > Saleem Nathoo > Network Administrator > Marketguide a division of Multex.com, Inc. > www.marketguide.com Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=15543&t=15450 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: What to buy for CCIE written Poll [7:15318]
yeah it used to be a Dodge Duster or a GTO back in the late 70's now I'm trying to impress them with a NM-2V. I must have onset. The Danish in me is surely crying for Valhalla - Original Message - From: "Leigh Anne Chisholm" To: Sent: Thursday, August 09, 2001 12:19 PM Subject: RE: What to buy for CCIE written Poll [7:15318] > No no no no no Duck! You got that **ALL WRONG**!!! > > If you got ATM, ISDN, and VOICE, you got NO girlfriends NOR significant > others because they've left you. Your toys are too expensive and you spend > too much time with them! > > The exception to this rule is unless their name happens to be Priscilla O., > Leigh Anne (me), Jennifer Cribbs, Debbie Becker, or Natasha. Then you'd > want to leave us because we'd fight all the time. It's **MY** router, dear! > > (-: > > -Original Message- > From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of > Donald B Johnson jr > Sent: Thursday, August 09, 2001 12:56 PM > To: [EMAIL PROTECTED] > Subject: Re: What to buy for CCIE written Poll [7:15318] > > > Listen if you ATM ISDN and VOICE you got girlfriends. Or significant others. > The PC version. > I just had a short discussion yesterday with a CCIE who used ISDN from a > provider not an emulator and he said that it worked out great. Something > like a couple hundred bucks for setup and 30 a month for two B's x's 2 > connections equal 60 dollars. You can pick up a WIC-1B-S/T or U for about > 100$ > That takes some of the sting out of ISDN. We might have to take that out of > the list of homewreakers and girl getters. :>) > > > - Original Message - > From: "Guy Russell" > To: > Sent: Thursday, August 09, 2001 10:13 AM > Subject: Re: What to buy for CCIE written Poll [7:15318] > > > > I can take care of the ISDN equipment, maybe we can get a pool going... I > > will settle for tuesdays and thursdays... > > > > LOL.. > > > > > > - Original Message - > > From: Wilson, Bradley > > To: > > Sent: Thursday, August 09, 2001 11:45 AM > > Subject: RE: What to buy for CCIE written Poll [7:15318] > > > > > > > Careful what you wish for... ;-) > > > > > > > > > -Original Message- > > > From: Wright, Jeremy [mailto:[EMAIL PROTECTED]] > > > Sent: Wednesday, August 08, 2001 5:34 PM > > > To: [EMAIL PROTECTED] > > > Subject: RE: What to buy for CCIE written Poll [7:15318] > > > > > > > > > Hell, I would trade my girlfriend in for some ATM, ISDN, and Voice > > equipment > > > > > > -Original Message- > > > From: Donald B Johnson jr [mailto:[EMAIL PROTECTED]] > > > Sent: Wednesday, August 08, 2001 4:25 PM > > > To: [EMAIL PROTECTED] > > > Subject: Re: What to buy for CCIE written Poll > > > [7:15318] > > > > > > I would buy both just to wear down the wife. Wait till you > > > have to put some > > > ATM, ISDN or Voice in your life. That is when you need the > > > fancy dance. > > > > > > > > > > > > - Original Message - > > > From: "Bolton, Travis" > > > To: > > > Sent: Wednesday, August 08, 2001 10:17 AM > > > Subject: What to buy for CCIE written Poll [7:15318] > > > > > > > > > > Team, > > > > > > > > If you had a choice between getting a 6 month subscription > > > to > > > > Certificationzone.com or buying all three of the Boson > > > Exams which would > > > you > > > > do if you had to choose one? I'll have to try to convince > > > the boss (wife) > > > > one or the other to purchase :-) Thanks. > > > > > > > > Regards, > > > > > > > > Travis Bolton > > > > Network Engineer II > > > > CCNP > > > [EMAIL PROTECTED] Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=15541&t=15318 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Ports bouncing on a switch - [7:15532]
These messages indicate that a physical port disconnected from or joined the logical port (STP) Usually appears when ports have been added or removed from STP. -daniel kekai - Original Message - From: "Quadri, Habeeb" To: Sent: Thursday, August 09, 2001 2:10 PM Subject: Ports bouncing on a switch - [7:15532] > Hi all, > > I would like to know what causes the switch ports to generate > PAGP-5:joined/left bridge message. Is it a physical level DTR type of signal > that detects loss of signal or could it be something in data link layer like > STP. > > TIA > Habeeb Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=15542&t=15532 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: how to create a cisco lab [7:15368]
Check the archives for "Terminal server" You should find the models you need to do reverse telnet to your other routers. -Russ ""george gittins"" wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > hello there i have all the cisco gear, andd cables however is was wondering > how i can > make this lab work remotley, right now im just using console to the router, > but i would like to use it from home.. is this possible i heard that one > needs a telnet server. any pointers? Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=15540&t=15368 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: cisco lab [7:15484]
Or if you want to get really crazy, get a 2610/2611 with 2 WIC-2Ts and an NM-16A module, now you have your Terminal server and Frame switch in one chassis. -Russ ""george gittins"" wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > I have some spare cisco routers to play around with, however i was wondering > if there was a way to set up like an telnet server which would be connect > through com ports to my cisco routers. the ideal thing that i would like to > have is not to be phyisicaly connect throught modem or console in order for > me to make changes and not be quick out trough the network. > does anyone have some ideas Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=15539&t=15484 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: CCIE written study question [7:15514]
The Boson tests are pretty good, also go through the Cisco documentation and papers on different technologies etc.. can't beat getting the information right from the source. hth -Russ ""Wright, Jeremy"" wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > I just wanted to get a suggestion as to where to go next for my CCIE written > studying. This is what I have done (already have my CCNP) so far > > 1. Read the Caslow book > 2. Read the broken-ring bridging paper from ccprep and groupstudy > 3. Read the Doyle Episode 1 > 4. Getting ready to read the Halabi book and Sybex CCIE > 5. I have been doing the Boson tests during my breaks from reading > 6. I have done a few of the c-zone questions but not much > > Any suggestions as to where to go now? Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=15538&t=15514 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: CAR [7:15513]
I believe that distributed CAR is only available on those models. CAR is supported on the majority of Cisco routers. http://www.cisco.com/univercd/cc/td/doc/product/software/ios122/122cgcr/fqos _c/fqcprt1/qcfclass.htm#29329 (watch the word wrap) hth -Russ ""Lupi, Guy"" wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > I was reading on the Cisco website today and I found a document on CAR, > committed access rate, that says that this feature is supported on the > following router platforms: > > 7000 > 7200 > 7500 > > Does anyone know if this is the case? I have heard that CAR is supported on > lower end routers. Thanks. > > Guy H. Lupi Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=15537&t=15513 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: BGP design question [7:15525]
Well if I had a UUNet ckt in one bldg and a Sprint ckt in the other... I would run BGP to them (I assume full-routes/transit?) and IBGP between the two routers in my buildings. After connecting my IBGP, I would want to setup routing policies affecting my global AS (this is also assuming I already have a public AS from ARIN). I wouldn't mind also having my own PI (provider independent) IP address space from ARIN. Let's assume those for this scenario, since that's what I would probably do. I'd also register with some routing registries like the RADB and update it as my routing policies and PI space change. So you have PI space, a public AS, two routers connected to each other running IBGP, and one interface on one router receiving full routes transit from UUNet, and another interface on the second router receiving full routes transit from Sprint. This is sounding pretty ideal. Then I could modify my routing policies by using "route-map x in" on my transit links, and matching certain destinations with as-path access- lists and setting their local pref values higher (or lower). I could also modify my transit providers' local pref values to more specific routes using "route-map x out" and "send-community" on my transit links and then set well-known or isp-specific communities in the route-maps. Start there. -dre ""Nabil Fares"" wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > Greetings, > > Building A = Sprint > Building B = UUnet > > I've two buildings, one building connected to sprint and the other connected > to UUnet. Building "A" got multiple networks, building "B" has only one > network and it's connected to building "A" . What's the best scenario to > connect these 2 site to the internet, or is there a solution? I hope this > simplified senior gives some idea to what am looking for. > > Thanks, > > Nabil Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=15533&t=15525 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: BGP design question [7:15525]
What are the speed of two ISP link? jin jung - Original Message - From: "Nabil Fares" To: Sent: Thursday, August 09, 2001 4:11 PM Subject: BGP design question [7:15525] > Greetings, > > Building A = Sprint > Building B = UUnet > > I've two buildings, one building connected to sprint and the other connected > to UUnet. Building "A" got multiple networks, building "B" has only one > network and it's connected to building "A" . What's the best scenario to > connect these 2 site to the internet, or is there a solution? I hope this > simplified senior gives some idea to what am looking for. > > Thanks, > > Nabil Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=15536&t=15525 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: What to buy for CCIE written Poll [7:15318]
Absolutely -- if I get my hands on the toys, I don't want to share! Fortunately my husband's hobby is on the PC side -- the network is all mine (and all problems must be blamed on "my" network . . . just like dealing with regular users! ) Deb ""Leigh Anne Chisholm"" wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... | No no no no no Duck! You got that **ALL WRONG**!!! | | If you got ATM, ISDN, and VOICE, you got NO girlfriends NOR significant | others because they've left you. Your toys are too expensive and you spend | too much time with them! | | The exception to this rule is unless their name happens to be Priscilla O., | Leigh Anne (me), Jennifer Cribbs, Debbie Becker, or Natasha. Then you'd | want to leave us because we'd fight all the time. It's **MY** router, dear! | | (-: | | -Original Message- | From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of | Donald B Johnson jr | Sent: Thursday, August 09, 2001 12:56 PM | To: [EMAIL PROTECTED] | Subject: Re: What to buy for CCIE written Poll [7:15318] | | | Listen if you ATM ISDN and VOICE you got girlfriends. Or significant others. | The PC version. | I just had a short discussion yesterday with a CCIE who used ISDN from a | provider not an emulator and he said that it worked out great. Something | like a couple hundred bucks for setup and 30 a month for two B's x's 2 | connections equal 60 dollars. You can pick up a WIC-1B-S/T or U for about | 100$ | That takes some of the sting out of ISDN. We might have to take that out of | the list of homewreakers and girl getters. :>) | | | - Original Message - | From: "Guy Russell" | To: | Sent: Thursday, August 09, 2001 10:13 AM | Subject: Re: What to buy for CCIE written Poll [7:15318] | | | > I can take care of the ISDN equipment, maybe we can get a pool going... I | > will settle for tuesdays and thursdays... | > | > LOL.. | > | > | > - Original Message - | > From: Wilson, Bradley | > To: | > Sent: Thursday, August 09, 2001 11:45 AM | > Subject: RE: What to buy for CCIE written Poll [7:15318] | > | > | > > Careful what you wish for... ;-) | > > | > > | > > -Original Message- | > > From: Wright, Jeremy [mailto:[EMAIL PROTECTED]] | > > Sent: Wednesday, August 08, 2001 5:34 PM | > > To: [EMAIL PROTECTED] | > > Subject: RE: What to buy for CCIE written Poll [7:15318] | > > | > > | > > Hell, I would trade my girlfriend in for some ATM, ISDN, and Voice | > equipment | > > | > > -Original Message- | > > From: Donald B Johnson jr [mailto:[EMAIL PROTECTED]] | > > Sent: Wednesday, August 08, 2001 4:25 PM | > > To: [EMAIL PROTECTED] | > > Subject: Re: What to buy for CCIE written Poll | > > [7:15318] | > > | > > I would buy both just to wear down the wife. Wait till you | > > have to put some | > > ATM, ISDN or Voice in your life. That is when you need the | > > fancy dance. | > > | > > | > > | > > - Original Message - | > > From: "Bolton, Travis" | > > To: | > > Sent: Wednesday, August 08, 2001 10:17 AM | > > Subject: What to buy for CCIE written Poll [7:15318] | > > | > > | > > > Team, | > > > | > > > If you had a choice between getting a 6 month subscription | > > to | > > > Certificationzone.com or buying all three of the Boson | > > Exams which would | > > you | > > > do if you had to choose one? I'll have to try to convince | > > the boss (wife) | > > > one or the other to purchase :-) Thanks. | > > > | > > > Regards, | > > > | > > > Travis Bolton | > > > Network Engineer II | > > > CCNP | > > [EMAIL PROTECTED] | | | | | Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=15535&t=15318 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: BGP Filtering [7:15450]
(i.e. What problem are you trying to solve? Why would you want to limit the number of prefixes you receive? Do you want to limit them to the first 500 it receives, or a *specific* set of prefixes?) BJ -Original Message- From: Saleem Nathoo [mailto:[EMAIL PROTECTED]] Sent: Thursday, August 09, 2001 7:58 AM To: [EMAIL PROTECTED] Subject: BGP Filtering [7:15450] I wanted to know the bgp commands to allow only a minimum 100 and maximum 500 routes in the routing table from my EBGP neighbor. Not using prefix lists or access lists. These routes that are coming into my topology are from different networks and subnets. Thanks in advance. Thanks, Saleem Nathoo Network Administrator Marketguide a division of Multex.com, Inc. www.marketguide.com Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=15534&t=15450 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Ports bouncing on a switch - [7:15532]
Hi all, I would like to know what causes the switch ports to generate PAGP-5:joined/left bridge message. Is it a physical level DTR type of signal that detects loss of signal or could it be something in data link layer like STP. TIA Habeeb Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=15532&t=15532 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: IBM Token Ring 8228 MAUs [7:14333]
Please stop sending including me in this distribution list! I am not interested in this thread, and never signed up for this. -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Omer Ehsan Dar Sent: Tuesday, July 31, 2001 3:03 AM To: [EMAIL PROTECTED] Subject: IBM Token Ring 8228 MAUs [7:14333] Hi all, Can anybody pint me to a resource that explains the working of TK MAUs with cisco routers or just how they work. Omer Ehsan Dar Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=15531&t=14333 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: BCRAN exam [7:15526]
My recommendations for this exam can be found on my RouterChief.com site (click link below). On there, you can also find exam info with a link to CramSession that has a scale 1 to 5 of difficulty for each exam. Hth, Ole ~~~ Ole Drews Jensen Systems Network Manager CCNA, MCSE, MCP+I RWR Enterprises, Inc. [EMAIL PROTECTED] ~~~ http://www.RouterChief.com ~~~ NEED A JOB ??? http://www.oledrews.com/job ~~~ -Original Message- From: Brian [mailto:[EMAIL PROTECTED]] Sent: Thursday, August 09, 2001 3:31 PM To: [EMAIL PROTECTED] Subject: Re: BCRAN exam [7:15526] I suspect it depends on your background, if you have worked more with remote access, then it is easier than for someone who has not. Look at the objectives, try some sample exams.. Brian "Sonic" Whalen Success = Preparation + Opportunity On Thu, 9 Aug 2001, [EMAIL PROTECTED] wrote: > Where does the BCRAN rank in terms of difficulty of the 4 exams? Also, > any pointers would be greatly appreciated. Someone took and passed the > BCRAN yesterday --- thx for tips you gave us... Is there anything else? Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=15530&t=15526 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: What to buy for CCIE written Poll [7:15318]
LOL, that would be so true. Currently, my finacee has no interest in any of this stuff... She just asks me all the time why I read so many books, and why I buy so much equipment... And now the electric bill Not gonna go there! - Original Message - From: Leigh Anne Chisholm To: Sent: Thursday, August 09, 2001 2:19 PM Subject: RE: What to buy for CCIE written Poll [7:15318] > No no no no no Duck! You got that **ALL WRONG**!!! > > If you got ATM, ISDN, and VOICE, you got NO girlfriends NOR significant > others because they've left you. Your toys are too expensive and you spend > too much time with them! > > The exception to this rule is unless their name happens to be Priscilla O., > Leigh Anne (me), Jennifer Cribbs, Debbie Becker, or Natasha. Then you'd > want to leave us because we'd fight all the time. It's **MY** router, dear! > > (-: > > -Original Message- > From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of > Donald B Johnson jr > Sent: Thursday, August 09, 2001 12:56 PM > To: [EMAIL PROTECTED] > Subject: Re: What to buy for CCIE written Poll [7:15318] > > > Listen if you ATM ISDN and VOICE you got girlfriends. Or significant others. > The PC version. > I just had a short discussion yesterday with a CCIE who used ISDN from a > provider not an emulator and he said that it worked out great. Something > like a couple hundred bucks for setup and 30 a month for two B's x's 2 > connections equal 60 dollars. You can pick up a WIC-1B-S/T or U for about > 100$ > That takes some of the sting out of ISDN. We might have to take that out of > the list of homewreakers and girl getters. :>) > > > - Original Message - > From: "Guy Russell" > To: > Sent: Thursday, August 09, 2001 10:13 AM > Subject: Re: What to buy for CCIE written Poll [7:15318] > > > > I can take care of the ISDN equipment, maybe we can get a pool going... I > > will settle for tuesdays and thursdays... > > > > LOL.. > > > > > > - Original Message - > > From: Wilson, Bradley > > To: > > Sent: Thursday, August 09, 2001 11:45 AM > > Subject: RE: What to buy for CCIE written Poll [7:15318] > > > > > > > Careful what you wish for... ;-) > > > > > > > > > -Original Message- > > > From: Wright, Jeremy [mailto:[EMAIL PROTECTED]] > > > Sent: Wednesday, August 08, 2001 5:34 PM > > > To: [EMAIL PROTECTED] > > > Subject: RE: What to buy for CCIE written Poll [7:15318] > > > > > > > > > Hell, I would trade my girlfriend in for some ATM, ISDN, and Voice > > equipment > > > > > > -Original Message- > > > From: Donald B Johnson jr [mailto:[EMAIL PROTECTED]] > > > Sent: Wednesday, August 08, 2001 4:25 PM > > > To: [EMAIL PROTECTED] > > > Subject: Re: What to buy for CCIE written Poll > > > [7:15318] > > > > > > I would buy both just to wear down the wife. Wait till you > > > have to put some > > > ATM, ISDN or Voice in your life. That is when you need the > > > fancy dance. > > > > > > > > > > > > - Original Message - > > > From: "Bolton, Travis" > > > To: > > > Sent: Wednesday, August 08, 2001 10:17 AM > > > Subject: What to buy for CCIE written Poll [7:15318] > > > > > > > > > > Team, > > > > > > > > If you had a choice between getting a 6 month subscription > > > to > > > > Certificationzone.com or buying all three of the Boson > > > Exams which would > > > you > > > > do if you had to choose one? I'll have to try to convince > > > the boss (wife) > > > > one or the other to purchase :-) Thanks. > > > > > > > > Regards, > > > > > > > > Travis Bolton > > > > Network Engineer II > > > > CCNP > > > [EMAIL PROTECTED] Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=15529&t=15318 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: BCRAN exam [7:15526]
I suspect it depends on your background, if you have worked more with remote access, then it is easier than for someone who has not. Look at the objectives, try some sample exams.. Brian "Sonic" Whalen Success = Preparation + Opportunity On Thu, 9 Aug 2001, [EMAIL PROTECTED] wrote: > Where does the BCRAN rank in terms of difficulty of the 4 exams? Also, > any pointers would be greatly appreciated. Someone took and passed the > BCRAN yesterday --- thx for tips you gave us... Is there anything else? Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=15528&t=15526 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Why Should the Binary Math Method Be Used to Subnet [7:15527]
Only one I've seen with 256 is subtracting the subnet mask to get the subnet
increments (i.e., subnet mask of 240; 256-240 = increments of 16). I'm in
agreement that this isn't for everyone -- binary works much better for lots
of folks. I think that people just getting into IP addressing find decimal
easier to cope with -- familiarity, I suppose. . . I know that coming out
of a NetWare environment, I figured that IP addressing was designed by
sadists! ("What do you mean, assign a *host* address?!?)
Deb
""Priscilla Oppenheimer"" wrote in message
[EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
| I do use decimal. ;-) Just like someone else said, I do make a list such
| as: 128, 192, 224, 240, 248, 252, 254, 255.
|
| I don't get the tricks I've seen people do where they subtract from 256
(or
| something like that. Since I don't get them, I can't remember them!)
|
| Priscilla
|
|
| At 11:18 AM 8/9/01, Debbie Becker wrote:
| >Oh, surely not brain damaged, Priscilla! Perhaps decimally challenged?
| >
| >
| >Deb
| >
| >""Priscilla Oppenheimer"" wrote in message
| >[EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
| >| Well, I have to admit to never really understanding the shortcuts that
I
| >| have seen people use. ;-) I guess I'm brain damaged, but I have to do
it
| >in
| >| binary.
| >|
| >| As far as tools are concerned, I totally agree with the person who
pointed
| >| out that in design meetings, you often don't have any tool handy except
| >| your head. Sure, you may have an IP subnet calculator on your Palm, but
| >the
| >| client is going to look at you askance as you bury your head in the
| >| itty-bitty screen, trying to use that silly stylus thing or Graffiti,
| >| giving them no eye contact the whole time you're puttering with the
tool.
| >| Use your head and look professional and like you're worth the big bucks
| >| that they are paying you.
| >|
| >| Priscilla
| >|
| >| At 03:52 PM 8/8/01, Debbie Becker wrote:
| >| >I use decimal shortcuts most of the time as well -- but when I run
across
| >| >something confusing, I'll go back to binary -- it always shows me the
way
| >FAQ, list archives, and subscription info:
| >http://www.groupstudy.com/list/cisco.html
| >Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
|
|
|
|
| Priscilla Oppenheimer
| http://www.priscilla.com
|
|
|
|
|
Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=15527&t=15527
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
BCRAN exam [7:15526]
Where does the BCRAN rank in terms of difficulty of the 4 exams? Also, any pointers would be greatly appreciated. Someone took and passed the BCRAN yesterday --- thx for tips you gave us... Is there anything else? Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=15526&t=15526 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
BGP design question [7:15525]
Greetings, Building A = Sprint Building B = UUnet I've two buildings, one building connected to sprint and the other connected to UUnet. Building "A" got multiple networks, building "B" has only one network and it's connected to building "A" . What's the best scenario to connect these 2 site to the internet, or is there a solution? I hope this simplified senior gives some idea to what am looking for. Thanks, Nabil Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=15525&t=15525 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Re: Boot prompt for 7204VXR [7:15524]
I have usually found that you are using a version of software that is too old for the components that you have in your router. The best place to validate is on Cisco's web site under the Hardware-Software Compatibility Matrix. Brett > > > >On Thu, 9 Aug 2001 03:57:21 -0400 > >"Bykov Andrey" wrote: > > > > > Hi, group! > > > > > > I need your suggestions on following question: > > > I've got 7204VXR. And there is a strange prompt in user and > > > privilege modes "Router(boot)>" or "Router(boot)#". > > > Config register - 0x2102. The router has booted from bootflash. > > > Is it normal prompt and how it can be changed? > > > > > > P.S. I thought that I knew almost everything about router's booting > > >process with my experience and CCNP certificate. :) > > > > > > > > > Andrey Bykov, CCNP > >-- > >TiuN Hong Leng > >CCNA/CCNP/CCDA/CCDP/CATM Specialist/CVOICE Specialist > _ > Get your FREE download of MSN Explorer at http://explorer.msn.com/intl.asp Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=15524&t=15524 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Why Should the Binary Math Method Be Used to Subnet [7:15523]
First part is for a subnet mask that falls in the fourth octet. There are 256 possible numbers since zero is part of the set (0 -255). Subtract the subnet mask from 256 and the resulting number is the number of addresses per subnet (which includes the subnet identifier and the subnet broadcast address). 256 - 240 = 16. So all multiples of 16 are valid subnet identifiers with a /28. Another way to view it is to look at the bit position of the subnet mask 128, 192, 224, 240 248, 252, 254, 255. The 240 corresponds to the least significant bit of the higher nibble. It has a value of 16. Even easier if we count the bits from right to left as 0 to 7. Then the bit position is the power of 2. 2 to the 4th is 16. The subnet mask is also the last possible subnet - assuming classless behavior. If the subnet mask falls in the third octet take the difference between the subnet mask and 256 and multiply that value by 256 (the sum of all hosts in the fourth octet). Then subtract 2 for the subnet identifier and broadcast addresses. 255.255.248.0 256 - 248 = 8, 8 x 256 = 2048, 2048 - 2 = 2046 hosts per subnet. How many subnets in the above example? Count the network bits from left to right 1 to 8. 248 is the fifth bit. 2 to the 5th is 32. A classful view would have us discard the all zeros and all ones subnets so 32 - 2 = 30 subnets. A subnet mask that falls in the second octet would calculate the number of host addresses by (256 - mask) = result x 256 x 256 > -Original Message- > From: Priscilla Oppenheimer [mailto:[EMAIL PROTECTED]] > Sent: Thursday, August 09, 2001 12:16 PM > To: [EMAIL PROTECTED] > Subject: Re: Why Should the Binary Math Method Be Used to Subnet > [7:15488] > > > I do use decimal. ;-) Just like someone else said, I do make > a list such > as: 128, 192, 224, 240, 248, 252, 254, 255. > > I don't get the tricks I've seen people do where they > subtract from 256 (or > something like that. Since I don't get them, I can't remember them!) > > Priscilla > > > At 11:18 AM 8/9/01, Debbie Becker wrote: > >Oh, surely not brain damaged, Priscilla! Perhaps decimally > challenged? > > > > > >Deb > > > >""Priscilla Oppenheimer"" wrote in message > >[EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > >| Well, I have to admit to never really understanding the > shortcuts that I > >| have seen people use. ;-) I guess I'm brain damaged, but I > have to do it > >in > >| binary. > >| > >| As far as tools are concerned, I totally agree with the > person who pointed > >| out that in design meetings, you often don't have any tool > handy except > >| your head. Sure, you may have an IP subnet calculator on > your Palm, but > >the > >| client is going to look at you askance as you bury your head in the > >| itty-bitty screen, trying to use that silly stylus thing > or Graffiti, > >| giving them no eye contact the whole time you're puttering > with the tool. > >| Use your head and look professional and like you're worth > the big bucks > >| that they are paying you. > >| > >| Priscilla > >| > >| At 03:52 PM 8/8/01, Debbie Becker wrote: > >| >I use decimal shortcuts most of the time as well -- but > when I run across > >| >something confusing, I'll go back to binary -- it always > shows me the way > >FAQ, list archives, and subscription info: > >http://www.groupstudy.com/list/cisco.html > >Report misconduct and Nondisclosure violations to > [EMAIL PROTECTED] > > > > > Priscilla Oppenheimer > http://www.priscilla.com > Report misconduct > and Nondisclosure violations to [EMAIL PROTECTED] Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=15523&t=15523 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Re: Boot prompt for 7204VXR [7:15442]
You're booting to a "boot image" (subset of Cisco IOS). Check what images you have on the flash. If you have a "System Image" (complete Cisco IOS) then config your router to default to this image at boot up. If you find you only have the "boot image" then you will need to tftp a "system image" onto your flash and then config your router to make that your default image at boot up. -daniel kekai > > > >On Thu, 9 Aug 2001 03:57:21 -0400 > >"Bykov Andrey" wrote: > > > > > Hi, group! > > > > > > I need your suggestions on following question: > > > I've got 7204VXR. And there is a strange prompt in user and > > > privilege modes "Router(boot)>" or "Router(boot)#". > > > Config register - 0x2102. The router has booted from bootflash. > > > Is it normal prompt and how it can be changed? > > > > > > P.S. I thought that I knew almost everything about router's booting > > >process with my experience and CCNP certificate. :) > > > > > > > > > Andrey Bykov, CCNP > >-- > >TiuN Hong Leng > >CCNA/CCNP/CCDA/CCDP/CATM Specialist/CVOICE Specialist > _ > Get your FREE download of MSN Explorer at http://explorer.msn.com/intl.asp Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=15521&t=15442 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: BGP: IBGP usage/clarification [7:15333]
""Chuck Larrieu"" wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > reminder - for those without CCO accounts, substitute "public" for > "customer" Chuck Thanks for the correction The link is : http://www.cisco.com/warp/public/459/bgp-toc.html I forgot that I had logged in CCO and managed to put my foot in my mouth again ! Anyway for any subjects on all CCNP exams there is no substitute for the Cisco web site and if you are willing to search a bit you will certainly find gold (more details and explanations than the bare minimum for passing exams but I assume we all want to learn a bit more than just a textbook) George Yiannibas MCSE CCNA Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=15522&t=15333 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: EIGRP: Adding a new router [7:15504]
Okay, thanks Leigh Anne. Happy studying, Ole ~~~ Ole Drews Jensen Systems Network Manager CCNA, MCSE, MCP+I RWR Enterprises, Inc. [EMAIL PROTECTED] ~~~ http://www.RouterChief.com ~~~ NEED A JOB ??? http://www.oledrews.com/job ~~~ -Original Message- From: Leigh Anne Chisholm [mailto:[EMAIL PROTECTED]] Sent: Thursday, August 09, 2001 2:28 PM To: Ole Drews Jensen; [EMAIL PROTECTED] Subject: RE: EIGRP: Adding a new router [7:15504] Don't forget that split-horizon plays a role here. I'm not sure if updates are limited to one route per packet... (I believe that they are judging from some debugs I've run but it's hard to tell exactly what you're seeing--are multiple lines from one packet?) but if a router receives information about a network it advertised, it will ignore the update. So it wouldn't really care if it received the information back. It got its ACK from the original information... -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Ole Drews Jensen Sent: Thursday, August 09, 2001 1:18 PM To: [EMAIL PROTECTED] Subject: RE: EIGRP: Adding a new router [7:15504] Thanks again Leigh, So I guess the neighbors WILL receive their own advertised routes back from Elvis, since it's multicasting its entire Route Table... Have a great day, Ole ~~~ Ole Drews Jensen Systems Network Manager CCNA, MCSE, MCP+I RWR Enterprises, Inc. [EMAIL PROTECTED] ~~~ http://www.RouterChief.com ~~~ NEED A JOB ??? http://www.oledrews.com/job ~~~ -Original Message- From: Leigh Anne Chisholm [mailto:[EMAIL PROTECTED]] Sent: Thursday, August 09, 2001 1:58 PM To: Ole Drews Jensen; [EMAIL PROTECTED] Subject: RE: EIGRP: Adding a new router [7:15504] EIGRP Update packets are used to communicate information about routes. Updates are transmitted only when there is a change in the topology. Updates contain only the changed information and are sent only to routers that require the information. Updates are multicast unless only one router requires the update information--then the update is unicast. Updates are also unicast when a neighbor is on a point-to-point link. In the case of Elvis coming up, all routers require its routing information so Elvis will multicast (and unicast to any point-to-point neighboring routers). -- Leigh Anne -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Ole Drews Jensen Sent: Thursday, August 09, 2001 12:19 PM To: [EMAIL PROTECTED] Subject: EIGRP: Adding a new router [7:15504] When adding a new router - Elvis - it is my understanding that the following happens: 1) Elvis sends multicast HELLO packets out all interfaces. 2) Neighbors that receives the HELLO packets replies with their entire Route Table, except routes learned from Elvis (however, they have not learned anything from Elvis yet). 3) Elvis ACKnowledges the replies. 4) Elvis adds all the replying neighbors to its Neighbor Database, and all the routing information to its Topology Database. 5) After having calculated the best routes and put them in its own Route Table, Elvis will send the full Route Table out to all the neighbors. However, will it (A) send unicasts to each neighbor with all routes except the ones it have learned from that neighbor, or will it (B) send a multicast to 224.0.0.10 with all routes? Thanks, Ole ~~~ Ole Drews Jensen Systems Network Manager CCNA, MCSE, MCP+I RWR Enterprises, Inc. [EMAIL PROTECTED] ~~~ http://www.RouterChief.com ~~~ NEED A JOB ??? http://www.oledrews.com/job ~~~ Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=15520&t=15504 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: EIGRP: Adding a new router [7:15504]
Don't forget that split-horizon plays a role here. I'm not sure if updates are limited to one route per packet... (I believe that they are judging from some debugs I've run but it's hard to tell exactly what you're seeing--are multiple lines from one packet?) but if a router receives information about a network it advertised, it will ignore the update. So it wouldn't really care if it received the information back. It got its ACK from the original information... -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Ole Drews Jensen Sent: Thursday, August 09, 2001 1:18 PM To: [EMAIL PROTECTED] Subject: RE: EIGRP: Adding a new router [7:15504] Thanks again Leigh, So I guess the neighbors WILL receive their own advertised routes back from Elvis, since it's multicasting its entire Route Table... Have a great day, Ole ~~~ Ole Drews Jensen Systems Network Manager CCNA, MCSE, MCP+I RWR Enterprises, Inc. [EMAIL PROTECTED] ~~~ http://www.RouterChief.com ~~~ NEED A JOB ??? http://www.oledrews.com/job ~~~ -Original Message- From: Leigh Anne Chisholm [mailto:[EMAIL PROTECTED]] Sent: Thursday, August 09, 2001 1:58 PM To: Ole Drews Jensen; [EMAIL PROTECTED] Subject: RE: EIGRP: Adding a new router [7:15504] EIGRP Update packets are used to communicate information about routes. Updates are transmitted only when there is a change in the topology. Updates contain only the changed information and are sent only to routers that require the information. Updates are multicast unless only one router requires the update information--then the update is unicast. Updates are also unicast when a neighbor is on a point-to-point link. In the case of Elvis coming up, all routers require its routing information so Elvis will multicast (and unicast to any point-to-point neighboring routers). -- Leigh Anne -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Ole Drews Jensen Sent: Thursday, August 09, 2001 12:19 PM To: [EMAIL PROTECTED] Subject: EIGRP: Adding a new router [7:15504] When adding a new router - Elvis - it is my understanding that the following happens: 1) Elvis sends multicast HELLO packets out all interfaces. 2) Neighbors that receives the HELLO packets replies with their entire Route Table, except routes learned from Elvis (however, they have not learned anything from Elvis yet). 3) Elvis ACKnowledges the replies. 4) Elvis adds all the replying neighbors to its Neighbor Database, and all the routing information to its Topology Database. 5) After having calculated the best routes and put them in its own Route Table, Elvis will send the full Route Table out to all the neighbors. However, will it (A) send unicasts to each neighbor with all routes except the ones it have learned from that neighbor, or will it (B) send a multicast to 224.0.0.10 with all routes? Thanks, Ole ~~~ Ole Drews Jensen Systems Network Manager CCNA, MCSE, MCP+I RWR Enterprises, Inc. [EMAIL PROTECTED] ~~~ http://www.RouterChief.com ~~~ NEED A JOB ??? http://www.oledrews.com/job ~~~ Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=15519&t=15504 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
PIX Question [7:15518]
I have many devices on the inside (most secure) interface of my PIX that I need to allow telnet and ftp access to users from the outside (least secure) interface of the PIX. I know that I can create a static map to the inside IP addresses, but I dont have enough outside IP addresses to support all of the devices on the inside. I am using PAT to allow users from the inside (most secure) interface to get access to the outside (less secure) interface. Can I use PAT the same way to allow outside users to access the inside servers on one address or is there a way to open the PIX up for all users from the outside to get in on a temporary basis? Bruce Williams 215-275-2723 [EMAIL PROTECTED] Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=15518&t=15518 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: What to buy for CCIE written Poll [7:15318]
No no no no no Duck! You got that **ALL WRONG**!!! If you got ATM, ISDN, and VOICE, you got NO girlfriends NOR significant others because they've left you. Your toys are too expensive and you spend too much time with them! The exception to this rule is unless their name happens to be Priscilla O., Leigh Anne (me), Jennifer Cribbs, Debbie Becker, or Natasha. Then you'd want to leave us because we'd fight all the time. It's **MY** router, dear! (-: -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Donald B Johnson jr Sent: Thursday, August 09, 2001 12:56 PM To: [EMAIL PROTECTED] Subject: Re: What to buy for CCIE written Poll [7:15318] Listen if you ATM ISDN and VOICE you got girlfriends. Or significant others. The PC version. I just had a short discussion yesterday with a CCIE who used ISDN from a provider not an emulator and he said that it worked out great. Something like a couple hundred bucks for setup and 30 a month for two B's x's 2 connections equal 60 dollars. You can pick up a WIC-1B-S/T or U for about 100$ That takes some of the sting out of ISDN. We might have to take that out of the list of homewreakers and girl getters. :>) - Original Message - From: "Guy Russell" To: Sent: Thursday, August 09, 2001 10:13 AM Subject: Re: What to buy for CCIE written Poll [7:15318] > I can take care of the ISDN equipment, maybe we can get a pool going... I > will settle for tuesdays and thursdays... > > LOL.. > > > - Original Message - > From: Wilson, Bradley > To: > Sent: Thursday, August 09, 2001 11:45 AM > Subject: RE: What to buy for CCIE written Poll [7:15318] > > > > Careful what you wish for... ;-) > > > > > > -Original Message- > > From: Wright, Jeremy [mailto:[EMAIL PROTECTED]] > > Sent: Wednesday, August 08, 2001 5:34 PM > > To: [EMAIL PROTECTED] > > Subject: RE: What to buy for CCIE written Poll [7:15318] > > > > > > Hell, I would trade my girlfriend in for some ATM, ISDN, and Voice > equipment > > > > -Original Message- > > From: Donald B Johnson jr [mailto:[EMAIL PROTECTED]] > > Sent: Wednesday, August 08, 2001 4:25 PM > > To: [EMAIL PROTECTED] > > Subject: Re: What to buy for CCIE written Poll > > [7:15318] > > > > I would buy both just to wear down the wife. Wait till you > > have to put some > > ATM, ISDN or Voice in your life. That is when you need the > > fancy dance. > > > > > > > > - Original Message - > > From: "Bolton, Travis" > > To: > > Sent: Wednesday, August 08, 2001 10:17 AM > > Subject: What to buy for CCIE written Poll [7:15318] > > > > > > > Team, > > > > > > If you had a choice between getting a 6 month subscription > > to > > > Certificationzone.com or buying all three of the Boson > > Exams which would > > you > > > do if you had to choose one? I'll have to try to convince > > the boss (wife) > > > one or the other to purchase :-) Thanks. > > > > > > Regards, > > > > > > Travis Bolton > > > Network Engineer II > > > CCNP > > [EMAIL PROTECTED] Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=15517&t=15318 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: EIGRP: Adding a new router [7:15504]
Thanks again Leigh, So I guess the neighbors WILL receive their own advertised routes back from Elvis, since it's multicasting its entire Route Table... Have a great day, Ole ~~~ Ole Drews Jensen Systems Network Manager CCNA, MCSE, MCP+I RWR Enterprises, Inc. [EMAIL PROTECTED] ~~~ http://www.RouterChief.com ~~~ NEED A JOB ??? http://www.oledrews.com/job ~~~ -Original Message- From: Leigh Anne Chisholm [mailto:[EMAIL PROTECTED]] Sent: Thursday, August 09, 2001 1:58 PM To: Ole Drews Jensen; [EMAIL PROTECTED] Subject: RE: EIGRP: Adding a new router [7:15504] EIGRP Update packets are used to communicate information about routes. Updates are transmitted only when there is a change in the topology. Updates contain only the changed information and are sent only to routers that require the information. Updates are multicast unless only one router requires the update information--then the update is unicast. Updates are also unicast when a neighbor is on a point-to-point link. In the case of Elvis coming up, all routers require its routing information so Elvis will multicast (and unicast to any point-to-point neighboring routers). -- Leigh Anne -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Ole Drews Jensen Sent: Thursday, August 09, 2001 12:19 PM To: [EMAIL PROTECTED] Subject: EIGRP: Adding a new router [7:15504] When adding a new router - Elvis - it is my understanding that the following happens: 1) Elvis sends multicast HELLO packets out all interfaces. 2) Neighbors that receives the HELLO packets replies with their entire Route Table, except routes learned from Elvis (however, they have not learned anything from Elvis yet). 3) Elvis ACKnowledges the replies. 4) Elvis adds all the replying neighbors to its Neighbor Database, and all the routing information to its Topology Database. 5) After having calculated the best routes and put them in its own Route Table, Elvis will send the full Route Table out to all the neighbors. However, will it (A) send unicasts to each neighbor with all routes except the ones it have learned from that neighbor, or will it (B) send a multicast to 224.0.0.10 with all routes? Thanks, Ole ~~~ Ole Drews Jensen Systems Network Manager CCNA, MCSE, MCP+I RWR Enterprises, Inc. [EMAIL PROTECTED] ~~~ http://www.RouterChief.com ~~~ NEED A JOB ??? http://www.oledrews.com/job ~~~ Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=15516&t=15504 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: EIGRP: Adding a new router [7:15504]
EIGRP Update packets are used to communicate information about routes. Updates are transmitted only when there is a change in the topology. Updates contain only the changed information and are sent only to routers that require the information. Updates are multicast unless only one router requires the update information--then the update is unicast. Updates are also unicast when a neighbor is on a point-to-point link. In the case of Elvis coming up, all routers require its routing information so Elvis will multicast (and unicast to any point-to-point neighboring routers). -- Leigh Anne -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Ole Drews Jensen Sent: Thursday, August 09, 2001 12:19 PM To: [EMAIL PROTECTED] Subject: EIGRP: Adding a new router [7:15504] When adding a new router - Elvis - it is my understanding that the following happens: 1) Elvis sends multicast HELLO packets out all interfaces. 2) Neighbors that receives the HELLO packets replies with their entire Route Table, except routes learned from Elvis (however, they have not learned anything from Elvis yet). 3) Elvis ACKnowledges the replies. 4) Elvis adds all the replying neighbors to its Neighbor Database, and all the routing information to its Topology Database. 5) After having calculated the best routes and put them in its own Route Table, Elvis will send the full Route Table out to all the neighbors. However, will it (A) send unicasts to each neighbor with all routes except the ones it have learned from that neighbor, or will it (B) send a multicast to 224.0.0.10 with all routes? Thanks, Ole ~~~ Ole Drews Jensen Systems Network Manager CCNA, MCSE, MCP+I RWR Enterprises, Inc. [EMAIL PROTECTED] ~~~ http://www.RouterChief.com ~~~ NEED A JOB ??? http://www.oledrews.com/job ~~~ Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=15515&t=15504 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
CCIE written study question [7:15514]
I just wanted to get a suggestion as to where to go next for my CCIE written studying. This is what I have done (already have my CCNP) so far 1. Read the Caslow book 2. Read the broken-ring bridging paper from ccprep and groupstudy 3. Read the Doyle Episode 1 4. Getting ready to read the Halabi book and Sybex CCIE 5. I have been doing the Boson tests during my breaks from reading 6. I have done a few of the c-zone questions but not much Any suggestions as to where to go now? Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=15514&t=15514 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
CAR [7:15513]
I was reading on the Cisco website today and I found a document on CAR, committed access rate, that says that this feature is supported on the following router platforms: 7000 7200 7500 Does anyone know if this is the case? I have heard that CAR is supported on lower end routers. Thanks. Guy H. Lupi Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=15513&t=15513 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
NTP [7:15512]
Hi, Anyone knows of a good NTP server software that I can install on Win NT server PC to sync. time on routers and switches? Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=15512&t=15512 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: What to buy for CCIE written Poll [7:15318]
Listen if you ATM ISDN and VOICE you got girlfriends. Or significant others. The PC version. I just had a short discussion yesterday with a CCIE who used ISDN from a provider not an emulator and he said that it worked out great. Something like a couple hundred bucks for setup and 30 a month for two B's x's 2 connections equal 60 dollars. You can pick up a WIC-1B-S/T or U for about 100$ That takes some of the sting out of ISDN. We might have to take that out of the list of homewreakers and girl getters. :>) - Original Message - From: "Guy Russell" To: Sent: Thursday, August 09, 2001 10:13 AM Subject: Re: What to buy for CCIE written Poll [7:15318] > I can take care of the ISDN equipment, maybe we can get a pool going... I > will settle for tuesdays and thursdays... > > LOL.. > > > - Original Message - > From: Wilson, Bradley > To: > Sent: Thursday, August 09, 2001 11:45 AM > Subject: RE: What to buy for CCIE written Poll [7:15318] > > > > Careful what you wish for... ;-) > > > > > > -Original Message- > > From: Wright, Jeremy [mailto:[EMAIL PROTECTED]] > > Sent: Wednesday, August 08, 2001 5:34 PM > > To: [EMAIL PROTECTED] > > Subject: RE: What to buy for CCIE written Poll [7:15318] > > > > > > Hell, I would trade my girlfriend in for some ATM, ISDN, and Voice > equipment > > > > -Original Message- > > From: Donald B Johnson jr [mailto:[EMAIL PROTECTED]] > > Sent: Wednesday, August 08, 2001 4:25 PM > > To: [EMAIL PROTECTED] > > Subject: Re: What to buy for CCIE written Poll > > [7:15318] > > > > I would buy both just to wear down the wife. Wait till you > > have to put some > > ATM, ISDN or Voice in your life. That is when you need the > > fancy dance. > > > > > > > > - Original Message - > > From: "Bolton, Travis" > > To: > > Sent: Wednesday, August 08, 2001 10:17 AM > > Subject: What to buy for CCIE written Poll [7:15318] > > > > > > > Team, > > > > > > If you had a choice between getting a 6 month subscription > > to > > > Certificationzone.com or buying all three of the Boson > > Exams which would > > you > > > do if you had to choose one? I'll have to try to convince > > the boss (wife) > > > one or the other to purchase :-) Thanks. > > > > > > Regards, > > > > > > Travis Bolton > > > Network Engineer II > > > CCNP > > [EMAIL PROTECTED] Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=15511&t=15318 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: What to buy for CCIE written Poll [7:15318]
Yeah buy one piece and play with it for awhile them move on - Original Message - From: "Bolton, Travis" To: Sent: Thursday, August 09, 2001 9:16 AM Subject: RE: What to buy for CCIE written Poll [7:15318] > Sounds like you've got this all thought out. I'll try to influence her > based on these replies. Just don't want to get into debt up to my head. > Guess I'll have to buy it piece by piece. Just wished I started doing that > 10 years ago. Thanks for your input it's really appreciated. Wish I could > get a advancement from a company to buy these things. > > -Original Message- > From: Donald B Johnson jr [mailto:[EMAIL PROTECTED]] > Sent: Thursday, August 09, 2001 1:39 PM > To: [EMAIL PROTECTED]; Bolton, Travis > Subject: Re: What to buy for CCIE written Poll [7:15318] > > > Yeah that is what I need your wife (boss) and my wife (boss) teaming up on > me. > Next thing you know my CCIE lab is for sale on e-bay the whole kit for a > song-and-dance. :>( > On a serious note it is All about ROI, you know that the more > experience/certs you have the more money you can make. Also most of the > stuff you buy can be tax deductable if purchased with the intent of > furthering your career. (You get so much per year tax credit) Also I donate > alot of stuff to the local library which is another deduction. ( Have > someone inventory it with the prices, say list price on a book you donate > and have the person sign it). You can get 50% percent purchase price back, > ex. A sybex CCNA study guide for 49.95 will net you a twenty five dollar tax > deductable donation. And the libabry is more than happy to receive these > kind of materials. So save your reciepts and donation inventories and bring > them to your tax man you will be plesently surprised. You can't resell the > testing software or the czone labs and subscription but any hardware you buy > you will get back your money if you decide to sell it later. Ex the PA-A1- > OC3MM and NM-16A cards I bought last month for 1,000$ will easily sell for > that much or more on e-bay after I pass my lab. So really it is an > investment not an expense. I recently put about 2000$ on ABIZ at 81/2 it is > currently 41/4 so I am going to see a better return on the cards than the > stock short term. If you explain this to your wife you may be surprised at > the cooperation you recieve, if not just tell her "Trust me in a year or two > you'll be able to buy all the shoes you want" :>) > > > > - Original Message - > From: "Bolton, Travis" > To: > Sent: Thursday, August 09, 2001 7:42 AM > Subject: RE: What to buy for CCIE written Poll [7:15318] > > > > Sounds like a fair assumption. So if I do that can I have my wife call > > you??? :) > > > > -Original Message- > > From: Donald B Johnson jr [mailto:[EMAIL PROTECTED]] > > Sent: Wednesday, August 08, 2001 7:03 PM > > To: Bolton, Travis; [EMAIL PROTECTED] > > Subject: Re: What to buy for CCIE written Poll [7:15318] > > > > > > I would buy both just to wear down the wife. Wait till you have to put > some > > ATM, ISDN or Voice in your life. That is when you need the fancy dance. > > > > > > > > - Original Message - > > From: "Bolton, Travis" > > To: > > Sent: Wednesday, August 08, 2001 10:17 AM > > Subject: What to buy for CCIE written Poll [7:15318] > > > > > > > Team, > > > > > > If you had a choice between getting a 6 month subscription to > > > Certificationzone.com or buying all three of the Boson Exams which would > > you > > > do if you had to choose one? I'll have to try to convince the boss > (wife) > > > one or the other to purchase :-) Thanks. > > > > > > Regards, > > > > > > Travis Bolton > > > Network Engineer II > > > CCNP Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=15509&t=15318 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Help:Need link to CheckPoint CCSA, CCSE Study Manual pdf files. [7:15507]
Hi Everybody, Please I need your assistance all. Am currently preparing for my CCSA & CCSE CheckPoint exams, I want any body who knows the links to CheckPoint CCSA & CCSE pdf files (study manuals) should please send me these links. Have a nice day. Regards, Banji. __ Do You Yahoo!? Make international calls for as low as $.04/minute with Yahoo! Messenger http://phonecard.yahoo.com/ Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=15507&t=15507 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Help:Need link to CheckPoint CCSA, CCSE Study Manual pdf files. [7:15506]
Hi Everybody, Please I need your assistance all. Am currently preparing for my CCSA & CCSE CheckPoint exams, I want any body who knows the links to CheckPoint CCSA & CCSE pdf files (study manuals) should please send me these links. Have a nice day. Regards, Banji. __ Do You Yahoo!? Make international calls for as low as $.04/minute with Yahoo! Messenger http://phonecard.yahoo.com/ Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=15506&t=15506 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
EIGRP: Adding a new router [7:15504]
When adding a new router - Elvis - it is my understanding that the following happens: 1) Elvis sends multicast HELLO packets out all interfaces. 2) Neighbors that receives the HELLO packets replies with their entire Route Table, except routes learned from Elvis (however, they have not learned anything from Elvis yet). 3) Elvis ACKnowledges the replies. 4) Elvis adds all the replying neighbors to its Neighbor Database, and all the routing information to its Topology Database. 5) After having calculated the best routes and put them in its own Route Table, Elvis will send the full Route Table out to all the neighbors. However, will it (A) send unicasts to each neighbor with all routes except the ones it have learned from that neighbor, or will it (B) send a multicast to 224.0.0.10 with all routes? Thanks, Ole ~~~ Ole Drews Jensen Systems Network Manager CCNA, MCSE, MCP+I RWR Enterprises, Inc. [EMAIL PROTECTED] ~~~ http://www.RouterChief.com ~~~ NEED A JOB ??? http://www.oledrews.com/job ~~~ Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=15504&t=15504 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: cisco lab [7:15484]
Or you can just run linux and not have to buy anything but the serial card :) Got an old 486 laying around? >>> "Bob Johnson" 08/09/01 02:13PM >>> Has anyone ever used TCP/COM from TALtech (www.taltech.com)? It turns a PC into a terminal server and is able to handle up to 16 ports. This should allow you to turn a cheap PC into a 2511 like device for the cost of the app ($250) and a multiport serial card ($??) Much cheaper (if you have some of the stuff already) than picking up a 2511 just for access... Bob > -Original Message- > From: Kelly D Griffin [mailto:[EMAIL PROTECTED]] > Sent: Thursday, August 09, 2001 10:29 AM > To: [EMAIL PROTECTED] > Subject: RE: cisco lab [7:15484] > > > A Cisco 2509 or 2511 is usually what is used for reverse > telnet connections > to the CON ports of other routers. > > Kelly D Griffin, CCDA, CCNA > Network Engineer > Kg2 Network Design > http://kg2.com > 877.418.4025 Toll-Free > 501.418.4026 Fax > > -Original Message- > From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] > Sent: Thursday, August 09, 2001 12:07 PM > To: [EMAIL PROTECTED] > Subject: cisco lab [7:15484] > > > I have some spare cisco routers to play around with, however > i was wondering > if there was a way to set up like an telnet server which > would be connect > through com ports to my cisco routers. the ideal thing that i > would like to > have is not to be phyisicaly connect throught modem or > console in order for > me to make changes and not be quick out trough the network. > does anyone have some ideas > > http://kg2.com > 8Mb Flash for Cisco 2500 series routers for $47 > 16Mb DRAM for Cisco 2500 series routers for $24 > Back-to-Back cables starting at $24 > Octal cables for Cisco 2509 and 2511 for $28 Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=15505&t=15484 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Need suggestion for CCNP exam [7:15486]
Hi My advice is the following: - Troubleshooting requires knowledge of other three topics so it should be done last - Depending on your experience, do the exam you think you are strongest in first, it's always nice to get the first one chalked up and to get comfortable with the exam format. RM Groupstudy.com wrote: > > Hi all, > > What would be the good study and exam order for the CCNP? TIA. > > Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=15503&t=15486 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Why Should the Binary Math Method Be Used to Subnet [7:15500]
""Priscilla Oppenheimer"" wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > I do use decimal. ;-) Just like someone else said, I do make a list such > as: 128, 192, 224, 240, 248, 252, 254, 255. > > I don't get the tricks I've seen people do where they subtract from 256 (or > something like that. Since I don't get them, I can't remember them!) > > Priscilla 256-1=255 256-2=254 256-4=252 256-8=248 256-16=240 256-32=224 256-64=192 256-128=128 these are powers of 2. i just memorize the list, as well. but if i forget it, i can always fall back to powers of 2. ;> -dre Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=15500&t=15500 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: cisco lab [7:15484]
Has anyone ever used TCP/COM from TALtech (www.taltech.com)? It turns a PC into a terminal server and is able to handle up to 16 ports. This should allow you to turn a cheap PC into a 2511 like device for the cost of the app ($250) and a multiport serial card ($??) Much cheaper (if you have some of the stuff already) than picking up a 2511 just for access... Bob > -Original Message- > From: Kelly D Griffin [mailto:[EMAIL PROTECTED]] > Sent: Thursday, August 09, 2001 10:29 AM > To: [EMAIL PROTECTED] > Subject: RE: cisco lab [7:15484] > > > A Cisco 2509 or 2511 is usually what is used for reverse > telnet connections > to the CON ports of other routers. > > Kelly D Griffin, CCDA, CCNA > Network Engineer > Kg2 Network Design > http://kg2.com > 877.418.4025 Toll-Free > 501.418.4026 Fax > > -Original Message- > From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] > Sent: Thursday, August 09, 2001 12:07 PM > To: [EMAIL PROTECTED] > Subject: cisco lab [7:15484] > > > I have some spare cisco routers to play around with, however > i was wondering > if there was a way to set up like an telnet server which > would be connect > through com ports to my cisco routers. the ideal thing that i > would like to > have is not to be phyisicaly connect throught modem or > console in order for > me to make changes and not be quick out trough the network. > does anyone have some ideas > > http://kg2.com > 8Mb Flash for Cisco 2500 series routers for $47 > 16Mb DRAM for Cisco 2500 series routers for $24 > Back-to-Back cables starting at $24 > Octal cables for Cisco 2509 and 2511 for $28 Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=15501&t=15484 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Router spec [7:15471]
It also depends on what you are going to use the serial connections for if they are going to be t1s then I would recommend a PA-MC-T3. That is a multichannel T3 card that can be broken down into 28 individual T1's or any combo there of. Of course PA puts you somewhere in the 7xxx range. If you are going to start adding FE's then you want a 75xx range. The FEs are sweet and they have a way of adding themselves that would be a PA-FE-TX or PA-2FEISL-TX. If you need the serial for frame I would recommend PA-4T+ spread over 2 VIP2-50's or VIP4-50's. If you are going to use the FE's for alot of traffic, multicasting and the such looks like you should grab a 7507. Might as well go for the RSP2 unless you want to go for the RSP4+. Review 1 7507 1 RSP4+ 3 VIP4-50's 4 PA-4T+'S 2 PA-FE-TX/FX's that leaves two open slots for frame relay config 1 7505 1 RSP2 2 VIP2-50 1 PA-MC-T3 2 PA-FE-TX/FX's that leaves two open slots and one open port adapter slot next to the MC for T1 config I did not get into memory but go middle of the road. might as well throw in a CON-SNT-PKGxx and dont forget power, either PWR/7-DC or PWR/7-AC or and remember with the PWR/7-AC the power cord is always free. Don Johnson CSTTS - Consultant and Salesman To The Stars. - Original Message - From: "Thad Gaston" To: Sent: Thursday, August 09, 2001 9:13 AM Subject: RE: Router spec [7:15471] > Patrick, > > Not knowing requirements and budget numbers. I would point you in the > direction of the 7200 and 7500 series routers. > > Regards > > -Original Message- > From: Patrick Donlon [mailto:[EMAIL PROTECTED]] > Sent: Thursday, August 09, 2001 11:25 AM > To: [EMAIL PROTECTED] > Subject: Router spec [7:15471] > > > I'm after a rough spec for a router, so far all I know is that it will > need > to support 13 serial interfaces of approx 2mb each, with a small number > of > FE ports. I know it's not much info' but suggestions will probably > narrow > down the research > > cheers Pat Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=15502&t=15471 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: cisco lab [7:15484]
Actually, if you are looking for a cheaper, but older, alternative for a Term Server, you could go with one of the 500-CS models like I did for my lab. They don't provide the Serial interfaces (mine actually only has a single Eth int) but they work just as well for Reverse Telnetting at nearly half the cost of a 2509 or 2511. I've seen a lot of these for sale on e-bay. My .02c Rob H. CCNP, CCDP, CCIE Written, MCSE, CCA A Cisco 2509 or 2511 is usually what is used for reverse telnet connections to the CON ports of other routers. Kelly D Griffin, CCDA, CCNA Network Engineer Kg2 Network Design http://kg2.com 877.418.4025 Toll-Free 501.418.4026 Fax -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] Sent: Thursday, August 09, 2001 12:07 PM To: [EMAIL PROTECTED] Subject: cisco lab [7:15484] I have some spare cisco routers to play around with, however i was wondering if there was a way to set up like an telnet server which would be connect through com ports to my cisco routers. the ideal thing that i would like to have is not to be phyisicaly connect throught modem or console in order for me to make changes and not be quick out trough the network. does anyone have some ideas http://kg2.com 8Mb Flash for Cisco 2500 series routers for $47 16Mb DRAM for Cisco 2500 series routers for $24 Back-to-Back cables starting at $24 Octal cables for Cisco 2509 and 2511 for $28 Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=15499&t=15484 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: cisco lab [7:15484]
You can get a 2511 or 516 access router... the 516 will give you 16 telnet ports wich can be hooked up to your console ports on the routers... Or once your configured, you can simply type in the address of the router you want to play with, and it will log you in. - Original Message - From: george gittins To: Sent: Thursday, August 09, 2001 12:06 PM Subject: cisco lab [7:15484] > I have some spare cisco routers to play around with, however i was wondering > if there was a way to set up like an telnet server which would be connect > through com ports to my cisco routers. the ideal thing that i would like to > have is not to be phyisicaly connect throught modem or console in order for > me to make changes and not be quick out trough the network. > does anyone have some ideas Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=15498&t=15484 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: RIP -- suppressing null update [7:15469]
At 11:09 AM 8/9/01, kwock99 wrote: >Hi All, > >One of my router does not recieve the routing update on RIP. Here is the >"show >ip protocol". Is this the "show ip protocol" on the router that is not receiving routing updates or on the router that is supposedly sending them? Here are some things to check: Are both routers using RIPv2? Is there a split horizon issue that is suppressing the update? Have you done anything tricky with subnet masks and VLSM? Is there a summarization issue? On the router that is sending but then suppressing updates, (serial interface 70.0.0.2), what is its subnet mask? What is the address and subnet mask of the router at the other end? Can you send us your configs? Priscilla >R4#sh ip prot >Routing Protocol is "rip" > Sending updates every 30 seconds, next due in 3 seconds > Invalid after 180 seconds, hold down 180, flushed after 240 > Outgoing update filter list for all interfaces is not set > Incoming update filter list for all interfaces is not set > Redistributing: rip > Default version control: send version 2, receive version 2 > InterfaceSend Recv Key-chain > Serial0 2 2 > Routing for Networks: > 70.0.0.0 > 130.0.0.0 > Routing Information Sources: > Gateway Distance Last Update > Distance: (default is 120) > > >After I turn on the debug ip rip events, Here is the message: > > >RIP: sending v2 update to 224.0.0.9 via Serial0 (70.0.0.2) - suppressing null >update >RIP: sending v2 update to 224.0.0.9 via Serial0 (70.0.0.2) - suppressing null >update >RIP: sending v2 update to 224.0.0.9 via Serial0 (70.0.0.2) - suppressing null >update > > >Anyone knows what is wrong and how to configure the router to get the update. > >Thanks in advance. > >Best regards >Francis Tsui Priscilla Oppenheimer http://www.priscilla.com Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=15497&t=15469 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: cisco lab [7:15484]
A Cisco 2509 or 2511 is usually what is used for reverse telnet connections to the CON ports of other routers. Kelly D Griffin, CCDA, CCNA Network Engineer Kg2 Network Design http://kg2.com 877.418.4025 Toll-Free 501.418.4026 Fax -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] Sent: Thursday, August 09, 2001 12:07 PM To: [EMAIL PROTECTED] Subject: cisco lab [7:15484] I have some spare cisco routers to play around with, however i was wondering if there was a way to set up like an telnet server which would be connect through com ports to my cisco routers. the ideal thing that i would like to have is not to be phyisicaly connect throught modem or console in order for me to make changes and not be quick out trough the network. does anyone have some ideas http://kg2.com 8Mb Flash for Cisco 2500 series routers for $47 16Mb DRAM for Cisco 2500 series routers for $24 Back-to-Back cables starting at $24 Octal cables for Cisco 2509 and 2511 for $28 Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=15494&t=15484 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Router spec [7:15471]
Yeah I would lean towards a 7200 also. If you need to accept full internet routes as part of a bgp process on it, you may want to be sure you go with a vxr, since Cisco officially doesn't support more than 128 megs on the non vxr 7200s. The 7204 specifically will take 4 cards, you can use the pa-mc-8t1, for 8 t1s per card, and the pa-fe-tx for fast ethernet. Additionally, a controller card for it can contain FE. If you're gonna get a new router, you may wanna go with a Cisco partner and consult with them in more detail about what you need. Brian "Sonic" Whalen Success = Preparation + Opportunity On Thu, 9 Aug 2001, Thad Gaston wrote: > Patrick, > > Not knowing requirements and budget numbers. I would point you in the > direction of the 7200 and 7500 series routers. > > Regards > > -Original Message- > From: Patrick Donlon [mailto:[EMAIL PROTECTED]] > Sent: Thursday, August 09, 2001 11:25 AM > To: [EMAIL PROTECTED] > Subject: Router spec [7:15471] > > > I'm after a rough spec for a router, so far all I know is that it will > need > to support 13 serial interfaces of approx 2mb each, with a small number > of > FE ports. I know it's not much info' but suggestions will probably > narrow > down the research > > cheers Pat Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=15493&t=15471 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Need suggestion for CCNP exam [7:15486]
I took the test in this order which seemed to help me. Routing Switching Remote Access CIT -Original Message- From: Groupstudy.com [mailto:[EMAIL PROTECTED]] Sent: Thursday, August 09, 2001 12:08 PM To: [EMAIL PROTECTED] Subject: Need suggestion for CCNP exam [7:15486] Hi all, What would be the good study and exam order for the CCNP? TIA. Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=15492&t=15486 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: dial in to AUX port on 2611 [7:15417]
try modem autoconfigure-discovery or reverse telnet to port 2001 if its line 1 on yr router u can see by sh line command get yr strings from 56k.com and do it manually also do debug confmodem b4 modem autoconfigure-discovery to c whats happening with modem - Original Message - From: "No Data" To: Sent: Thursday, August 09, 2001 9:06 PM Subject: Re: dial in to AUX port on 2611 [7:15417] > try this. > modemcap edit usrmodem misc &FS0=1&C1&D3&H1&R2&B1 > > then under the line config > > modem autoconfigure type usrmodem > speed 38400 > > Make sure dips 3 and 8 are down and the rest up. > > hth > Ben > > --- "Mr. Richard L. Pickard" > wrote: > > I have a US Robotics Sportster 14,000 modem > > connected to my 2611 router via > > the AUX port. > > The router does not answer the call. I have an > > enable & enable secret > > password set. > > I am certain of the satin crossover cable and all > > other physical layer > > issues. > > > > Here is my config: > > > > line con 0 > > transport input none > > line aux 0 > > password cisco > > login > > modem InOut > > transport input all > > speed 115200 > > flowcontrol hardware > > line vty 0 1 > > password cisco > > login > > line vty 2 4 > > login > > > > > > Anybody have any ideas? > [EMAIL PROTECTED] > > > __ > Do You Yahoo!? > Make international calls for as low as $.04/minute with Yahoo! Messenger > http://phonecard.yahoo.com/ Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=15496&t=15417 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Router spec [7:15471]
I assumed the serials were t1 without looking at this more. If they're t1 or e1, you can get 8 interface per card setup no problem. Brian "Sonic" Whalen Success = Preparation + Opportunity On Thu, 9 Aug 2001, Thad Gaston wrote: > Patrick, > > Not knowing requirements and budget numbers. I would point you in the > direction of the 7200 and 7500 series routers. > > Regards > > -Original Message- > From: Patrick Donlon [mailto:[EMAIL PROTECTED]] > Sent: Thursday, August 09, 2001 11:25 AM > To: [EMAIL PROTECTED] > Subject: Router spec [7:15471] > > > I'm after a rough spec for a router, so far all I know is that it will > need > to support 13 serial interfaces of approx 2mb each, with a small number > of > FE ports. I know it's not much info' but suggestions will probably > narrow > down the research > > cheers Pat Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=15495&t=15471 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Why Should the Binary Math Method Be Used to Subnet [7:15488]
I do use decimal. ;-) Just like someone else said, I do make a list such as: 128, 192, 224, 240, 248, 252, 254, 255. I don't get the tricks I've seen people do where they subtract from 256 (or something like that. Since I don't get them, I can't remember them!) Priscilla At 11:18 AM 8/9/01, Debbie Becker wrote: >Oh, surely not brain damaged, Priscilla! Perhaps decimally challenged? > > >Deb > >""Priscilla Oppenheimer"" wrote in message >[EMAIL PROTECTED]">news:[EMAIL PROTECTED]... >| Well, I have to admit to never really understanding the shortcuts that I >| have seen people use. ;-) I guess I'm brain damaged, but I have to do it >in >| binary. >| >| As far as tools are concerned, I totally agree with the person who pointed >| out that in design meetings, you often don't have any tool handy except >| your head. Sure, you may have an IP subnet calculator on your Palm, but >the >| client is going to look at you askance as you bury your head in the >| itty-bitty screen, trying to use that silly stylus thing or Graffiti, >| giving them no eye contact the whole time you're puttering with the tool. >| Use your head and look professional and like you're worth the big bucks >| that they are paying you. >| >| Priscilla >| >| At 03:52 PM 8/8/01, Debbie Becker wrote: >| >I use decimal shortcuts most of the time as well -- but when I run across >| >something confusing, I'll go back to binary -- it always shows me the way >FAQ, list archives, and subscription info: >http://www.groupstudy.com/list/cisco.html >Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] Priscilla Oppenheimer http://www.priscilla.com Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=15488&t=15488 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Need suggestion for CCNP exam [7:15486]
A good method is doing Routing first and Support last. Routing is the most like the CCNA, which you should be pretty familiar with, so it is best to do it first... I did it as follows : Routing, Remote Access, Switching, Support... I'm sure there are as many opinions on this as possible scenerios :-) GOOD LUCK!!! -Original Message- From: Groupstudy.com [mailto:[EMAIL PROTECTED]] Sent: Thursday, August 09, 2001 1:08 PM To: [EMAIL PROTECTED] Subject: Need suggestion for CCNP exam [7:15486] Hi all, What would be the good study and exam order for the CCNP? TIA. Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=15491&t=15486 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
