Re: IGNORE this very rude person......Was: Re: CCIE Lab exam - [7:18044]
That guy is just a regular a**-hole. He likes flaming people for fun. ""Tony Medeiros"" wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > I think everybody should just IGNORE this "Donald B Johnson jr" character. > All his posts today are just dripping with disdain and sarcasium. He is > posting just to stir the pot and piss people off. > > Mr. Johnson, Please try and be a little nicer sir. > > Tony M. > > - Original Message - > From: "Jason" > To: > Sent: Thursday, August 30, 2001 8:26 PM > Subject: Re: CCIE Lab exam - booked twice [7:17310] > > > > Just wondering, are you born this rude or do you have to be trained ? > > > > All the guy did was ask a question.It may be a dumb question, but only > a > > question. > > > > ""Donald B Johnson jr"" wrote in message > > [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > > > Oh I see maybe they could roll out a red carpet as you stroll up. No > > better > > > yet I could throw rose petal since I aint busy anymore cause you double > > > booked and I gotta wait for the really good guys to keep going through > > until > > > they pass. Then you say you would cancel the second one if you failed, I > > > think you meant pass. If this is your thought process you may want to > add > > a > > > third date. > > > You may try pirating that Transcender test for a test brain too. > > > > > > > > > > > > - Original Message - > > > From: "Rashid Lohiya" > > > To: > > > Sent: Sunday, August 26, 2001 2:49 AM > > > Subject: CCIE Lab exam - booked twice [7:17310] > > > > > > > > > > Guys, > > > > > > > > Does anyone know whether one person can book the lab twice? > > > > > > > > ie. 1 for April, 1 for June, thus allowing him to cancel and get a > > refund > > > on > > > > the second one if the first is failed. > > > > > > > > In this way, the year long wait would not need to be endured if I was > to > > > > fail the first time around. > > > > > > > > -- > > > > Rashid Lohiya > > > > [EMAIL PROTECTED] > > > > 020 8509 2990 > > > > 07785 362626 > > > > www.pioneer-computers.com > > > > London UK > > > > > > > > www.rashidl.co.uk Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=18044&t=18044 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Real BSCI Exam Questions! [7:17905]
this is true CISCO gives u free marks for 300. anyways i have also given the exam and got 803 marks and my ISIS was 45% but got 100% in BGP . wat next .. QoS / Multicasting is also live for beta, do u have any softcopy notes on that. it will be great if u could mail me... i want to give the next paper. -Mamoor "wind" wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > Hi all; > > Just received the beta exam result from Cisco today, I do not know > why I passed the exam, anyway thank god. > Can anyone please explain to me why I passed the exam, cos I failed in many > sections. My friend passed most section, but he got very poor mark in IS-IS > section. Strange indeed. > > Sec 1100% > Sec 270% > Sec 357% > Sec 462% > Sec 559% > Sec 671% > Sec 766% > Sec 857% > > PS. Please do not ask me what exam covered? > > Rgds; > Junos Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=18043&t=17905 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
An Interesting routing+Sw Question:LAB Q [7:18026]
Hello Guys, This Question is from some Book Apendix pass by my friend(Let me knowthe book name and Author if u know ;)).Please help to clarify. Thanks. "Vlan1 Contains 28 servers in server farm.Configure R1&R2 so that in event of router failure the other router will take over for the subnet.Under normal conditions the load should be split evenly b/w these 2 routers . Fourteen of the servers are defined with ip 152.1.1.3 and other fouteen are defined with 152.1.1.4" any thing to do with HSRP???where these addresses need to configured??152.1.1.3 and .4 ?? _ Get your FREE download of MSN Explorer at http://explorer.msn.com/intl.asp Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=18026&t=18026 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Dial in/Dial Out modem bank [7:17929]
yeah a pm3 supports 2 pri t1s, giving a total of 46 usable lines per box.. Bri - Original Message - From: "Jeff Gercken" To: Sent: Thursday, August 30, 2001 8:48 PM Subject: Re: Dial in/Dial Out modem bank [7:17929] > You'd be better off with a PRI and a channalized T1 card & digital modem > card. You could then use a 3600. If you go with the async ports and modems > you won't be able to get the 56K(53K) compression. The PRI should be > cheaper than all those analog lines anyhow. Hunt around on ebay. There are > lots of companies dumping this sort of stuff - going to VPNs. Look for a > Lucent Max, Cisco Universal Gateway or something similar. Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=18028&t=17929 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Yet another silly CCIE lab prep question [7:17716]
regarding lab scenarios, there are the usual suspects - the stuff at boot camp, the stuff at fatkid ( www.fatkid.com ) less spoken about, but worth taking a look at are the labs that come with the white papers at certification zone. if you are a subscriber, take a peek. Chuck -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of John Neiberger Sent: Wednesday, August 29, 2001 11:41 AM To: [EMAIL PROTECTED] Subject: Yet another silly CCIE lab prep question [7:17716] I apologize in advance for posting this. I know we get a couple of these a week, it seems, but I don't want to leave any bases uncovered. Here is what it looks like I'm going to end up with at home: (2) 2501 2504 2513 2522 4000 (with two serial interfaces) Catalyst 1200 (yes, that's right, I said a 1200!!) Token Ring MAU Blackbox switch (instead of 2509 or 2511) I'm hoping that the 1200 will be able to handle most of the switching chores. It can't do ISL trunking and it's only low speed, but I get experience with that kind of stuff at work. I won't be able to do etherchannel, but I don't have any routers or other switches so that's not relevant here. I still plan on getting a day or two of lab time up at University of Colorado at $500/day. I also may get in a day or two at the local Cisco office (keep your fingers crossed). For my home lab, though, if I manage to find some lab scenarios to study with that only use a few routers, have I already shot myself in the foot? Will I *need* to get more or will this suffice? I will also be getting an ISDN simulator but that's going to have to wait for a few months. Any advice? Thanks! John Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=18041&t=17716 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: ospf [7:18002]
this brings up another idle speculation. Dare I ask? OSPF virtual links are a kind of a demand circuit, per RFC 1793. Do routes advertised across virtual links show up in the OSPF database of the remote area with DNA marks? Sigh yet another thing to check out in the lab Chuck -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Brian Sent: Thursday, August 30, 2001 7:16 PM To: [EMAIL PROTECTED] Subject: Re: ospf [7:18002] It means "Do Not Age", you will see that on routes learned over a demand circuit. Brian On Thu, 30 Aug 2001, Dwayne Saunders wrote: > Hi all, > is any one able to direct me in the right direction or be able to > explain what the (DNA) is in the sh ip ospf database > > Router Link States (Area 0) > > Link ID ADV Router Age Seq# Checksum Link count > 172.16.11.100 172.16.11.100 19700x8008 0x776B 5 > 172.26.1.49 172.26.1.49 5 (DNA) 0x8158 0xD943 1 > 192.168.101.101 192.168.101.101 1895 (DNA) 0x815E 0xDCE3 1 > > Summary Net Link States (Area 0) > > Link ID ADV Router Age Seq# Checksum > 172.26.1.17 172.26.1.49 678 (DNA) 0x8155 0x23F1 > 172.26.1.33 172.26.1.49 678 (DNA) 0x8155 0x8282 > 172.26.1.49 172.26.1.49 678 (DNA) 0x8155 0xE113 > 192.168.1.16172.16.11.100 19710x8006 0x9708 > 192.168.1.16172.26.1.49 1 (DNA) 0x815C 0x1B5F > 192.168.1.16192.168.101.101 1895 (DNA) 0x800A 0x97FB > 192.168.1.48172.16.11.100 19710x8007 0x542A > 192.168.1.48172.26.1.49 1 (DNA) 0x8003 0x8530 > 192.168.1.48192.168.101.101 1895 (DNA) 0x8005 0x6A0D > 192.168.1.64172.16.11.100 19710x8005 0xC1AD > 192.168.1.64172.26.1.49 678 (DNA) 0x8155 0x3D15 > 192.168.1.64192.168.101.101 1895 (DNA) 0x8008 0xCD95 > 192.168.101.101 192.168.101.101 1895 (DNA) 0x8007 0x527B > > any help will be appreciated > > D'Wayne Saunders > Network Admin I'm buying / selling used CISCO gear!! email me for a quote Brian Feeny, CCIE #8036 Netjam, LLC [EMAIL PROTECTED] http://www.netjam.net VISA/MC/AMEX/COD phone: 318-212-0245 30 day warranty fax: 318-212-0246 Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=18040&t=18002 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: 3 envelopes [7:17666]
I bought all I could lay hands on at the low side of $13 a share. I think they be doing very well indeed. Not many stocks have gone up almost 20% since April. All depends on your point of view. Personaly Im selling at $82, I aint greedy. Best Dan -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Chuck Larrieu Sent: Friday, August 31, 2001 12:03 AM To: [EMAIL PROTECTED] Subject: RE: 3 envelopes [7:17666] now that Cisco stock has sunk back to 16, I'll bet you wish you hadn't said this ;-> -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Charlie Hartwell Sent: Wednesday, August 29, 2001 9:02 AM To: [EMAIL PROTECTED] Subject: Re: 3 envelopes [7:17666] Well, John Chambers is the CEO of Cisco Systems so I don't think he's at all bothered about the career of this "Tom Chambers" you mention. Speaking of John Chambers - I expect he's quite happy at the moment. Since Cisco announced a restructure program (the details of which elude me) the share price has risen slightly and the long term outlook is better. I hope they do manage to turn it around because Cisco are often seen as the yard arm as far as telecomms prospects go and that's my business too! I kinda like my job so good luck to them. Anyway, apart from being out of date and incorrect, it's quite a funny story. ;) Regards Charlie --- netm thru wrote: > A CEO resigned from a company and left the new CEO 3 > envelopes. The new one asked the old one what they > were for. He replied open them one at a time when > times get tough. A few months later when times were > tough the new CEO opened an envelope and it said > "Blame the economy" so he did. A quarter later when > things were still bad he opened the second envelope. > It said "Restructure". > A couple of quarters later he opened the third > envelope. It said "Leave 3 envelopes". > How long before Tom Chambers leaves his 3 envelopes? > > __ > Do You Yahoo!? > Make international calls for as low as $.04/minute with Yahoo! > Messenger > http://phonecard.yahoo.com/ [EMAIL PROTECTED] Do You Yahoo!? Get your free @yahoo.co.uk address at http://mail.yahoo.co.uk or your free @yahoo.ie address at http://mail.yahoo.ie Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=18039&t=17666 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: I have a customer who... food for thought - static routes [7:18038]
There have been several good replies to my post. In addition to Tony's insight below, Leigh Anne and Jim both had excellent observations that covered issues my customer raised. The customer expressed concerns were with engineers who for any number of reasons, whether careless, inconsiderate, malicious, or as part of their jobs, might bring down various segments. this is something that apparently happens with some regularity in the customer production network. there were concerns with route flapping at the core. we are in California, after all, and we still live under the threat of rolling blackouts. plus many folks out here are doing their part by shutting things down at night, or when not in use. The flapping issue is bogus, as one could always advertise only the summaries into the core, but again, the customer engineer would not hear of it. the customer deliberately turns off CDP. I did not discuss this with him, but I suspect there is a bit of concern with revealing information that CDP transmits. my point in bringing up this situation was in part to stimulate thought about using various forms of routing as one means of enforcing policy. Static routing is not necessarily a bad thing. On the other hand, there are other ways to deal with the stated concerns other than massive static routing. enjoyed the comments. thanks, everyone. Chuck -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Tony Medeiros Sent: Thursday, August 30, 2001 12:23 AM To: [EMAIL PROTECTED] Subject: Re: I have a customer who... food for thought - static routes [7:17826] I'll bite: PROS: 1) If DSL user decides to change his network for some reason and it overlaps another on somewhere, dynamic routing will hose the core. (could prevent with route filtering but that would be an even bigger hassle). 2) 7206 might fold with that many routing protocol neigbors (depends on routing protocol) 3) Job security for the guy managing the network :) 4) ODR needs CDP and that many neighbors could fold the core too maybe ?? Don't know about that. 5) Less overhead in general. 6) Security, Don't want some guy to announce a boatload of bogus networks. 7) Unless the routing protocol of choice can only send a default route, Those little DSL routers would get killed with a big table. OSPF is would do it but would each little router would need to be in it's own area or the LS database would kill the little guys . RIP seems like a good choice, but again, there would be need for a lot of filtering to keep the table small. You could have a default static on all the little guys and filter ALL updates coming out of the core. But there is the security thing again. 8) Stability, The static way will be the most stable for sure, CONS: 1) Managment nightmare. I think I see their point already Chuck. I don't quite see why CDP wouldn't be allowed though. Am I close ? Tony M. - Original Message - From: "Chuck Larrieu" To: Sent: Wednesday, August 29, 2001 11:28 PM Subject: I have a customer who... food for thought - static routes [7:17819] > I have a customer who... don't you love it when a post begins with those > words? > > In my case, I am hoping this can serve as food for thought, a springboard > for discussion. So here goes > > My customer is a high tech firm whose name you would all recognize, if I > were to exhibit ill manners by revealing it. > > My project ( well, I'm just the junior assistant engineer ) is to develop > and proof configurations for a private remote access network. DSL at the > home, ATM at the central site. Not a VPN. This circuit does not touch the > internet. > > In any case, the client is expecting 500-1000 home users on this network. > > Here's the kicker. the client refuses to allow routing protocols on either > the home user routers ( Cisco 827's ) or the central site router ( Cisco > 7206 ) That means how many static routes at the host site? :-0 > > Food for thought - what are some of the reasons the customer might not want > a routing protocol of any kind on this network? When discussing with the > customer engineer in charge of this project, I was given a couple of > reasons, and upon hearing them I saw the point and agreed the concerns were > valid. > > BTW, the point was not that the customer hates me and wants me to spend the > next three weeks typing in static routes. Nor is it that the customer does > not "get it". It is not a matter of good or bad design. > > So, in light of the old saw that static routes are not scalable, and should > be avoided, what might be some reasons that a designer would demand a > network of this size and relative complexity, with users being added, > subtracted, and relocated, thus creating long term employment for the router > administrator, be composed entirely of static routes? What are the plusses? > What is the downside? > > Your analyses, please. > > Chuck > > P.S. I think I'm going to try again. Maybe On Demand Rou
side A 4500 serial port+NT1 PLUS side B 1603 ISDN BRI port how [7:18037]
side A 4500 serial port+NT1 PLUS side B 1603 ISDN BRI port how can make these 2 routers ISDN connection and ping success ___ /\_\ /\_\ /\_\/\ \ /:/ / \/_/ /:/ / /::\ \ /:/ / /\_\ /:/ /_ /:/\:\_\ /:/ / /:/ / /:/___/|/:/ /\/_/ /:/ / /:/ / /:/| __|/::\ \ /:/ / /:/ / /:/ |:||/:/\:\_\ \:\ \ \/_/ \/_/|:|| /:/ /\/_/ \:\ \ e-mail:|_|/ \:\ \ \:\ \ [EMAIL PROTECTED] \:\_\ \/_/ \/_/ ___ E-mail: [EMAIL PROTECTED]BP China Digital Business Icq 16841803 Oicq 334407 http://f9811001.yeah.net Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=18037&t=18037 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Catalyst Q. [7:18036]
Hi Guys, How we can restrict catalyst to allow telnet access to particular hosts?? Thanks for the help. Cisco Lover _ Get your FREE download of MSN Explorer at http://explorer.msn.com/intl.asp Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=18036&t=18036 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Subject: Re: Dial in/Dial Out modem bank [7:17929]
Well, I don't know if it is trippy or not, but take it out for a test drive and see if it does what you need. AFAIK, it is no longer supported by Cisco (watch wrap): http://www.west- point.org/users/usma1983/40768/chesinc/Dout354.exe You will obviously need a properly configured access server with the ability to dial outbound. My guess is you could test it with a 25xx router and a modem connected to the AUX port or one of the serial interfaces. I would take a peek at some of the help screens and installation instructions. HTH, Paul Werner > > Mike, > > I have never heard of this "dialoutIP" software. Are you saying this > > software will let a host control a cisco access server and direct it > to > call > > whatever number the host whats? That is really trippy!! That has a > lot > > strange permutations and capabilities. Or am I just completly > > misunderstanding your post ? Is this a Cisco product? Could you > provide a > > link please ? Get your own "800" number Voicemail, fax, email, and a lot more http://www.ureach.com/reg/tag Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=18035&t=17929 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Which IOS's support DSL? [7:18034]
I have been looking on Cisco's site and around the web and cannot seem to find out which IOS's support DSL besides 12.1(5)YB. Are there any others? Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=18034&t=18034 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: 3 envelopes [7:17666]
now that Cisco stock has sunk back to 16, I'll bet you wish you hadn't said this ;-> -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Charlie Hartwell Sent: Wednesday, August 29, 2001 9:02 AM To: [EMAIL PROTECTED] Subject: Re: 3 envelopes [7:17666] Well, John Chambers is the CEO of Cisco Systems so I don't think he's at all bothered about the career of this "Tom Chambers" you mention. Speaking of John Chambers - I expect he's quite happy at the moment. Since Cisco announced a restructure program (the details of which elude me) the share price has risen slightly and the long term outlook is better. I hope they do manage to turn it around because Cisco are often seen as the yard arm as far as telecomms prospects go and that's my business too! I kinda like my job so good luck to them. Anyway, apart from being out of date and incorrect, it's quite a funny story. ;) Regards Charlie --- netm thru wrote: > A CEO resigned from a company and left the new CEO 3 > envelopes. The new one asked the old one what they > were for. He replied open them one at a time when > times get tough. A few months later when times were > tough the new CEO opened an envelope and it said > "Blame the economy" so he did. A quarter later when > things were still bad he opened the second envelope. > It said "Restructure". > A couple of quarters later he opened the third > envelope. It said "Leave 3 envelopes". > How long before Tom Chambers leaves his 3 envelopes? > > __ > Do You Yahoo!? > Make international calls for as low as $.04/minute with Yahoo! > Messenger > http://phonecard.yahoo.com/ [EMAIL PROTECTED] Do You Yahoo!? Get your free @yahoo.co.uk address at http://mail.yahoo.co.uk or your free @yahoo.ie address at http://mail.yahoo.ie Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=18031&t=17666 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: CHALLENGE PROBLEM (now herrings and lemmings) [7:17112]
Sir, although I have never had the privilege of meeting you face to face, I have, after two years on this newsgroup and a great number of hours reading your books and papers, developed quite a detailed imaginary picture of your appearance. I'm now thinking maybe I should add 30-40 pounds to that picture. :-> -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Howard C. Berkowitz Sent: Friday, August 24, 2001 6:24 AM To: [EMAIL PROTECTED] Subject: RE: CHALLENGE PROBLEM (now herrings and lemmings) [7:17112] >Brian, I just wanted to say publicly that this was an outstanding test >question. outstanding because of all the red herrings it contained, as we >saw from the wild guess responses. Sir, after several trips to Scandinavia, I find it hard to believe that any sensible tester would use more than one red (presumably tomato-sauced) herring. There are wide range of herring to pick from, including the basic wine-pickled, mustard, sour cream, etc., to say nothing of the cooked dishes containing herring. It is also important not to confuse herrings with lemmings, which are excellent simulators either for marketingdroids or those led by marketingdroids. Perhaps they have even more simulation capabilities; I find many of the attempts to coerce things into a concept of the OSI model that is long obsolete, or insist that one or another term is correct because a review book says so in contradiction of the actual standards. Howard > >so everyone knows, my own private reply was incorrect as well. doh! > >thanks for this - these kinds of challenges are what make groupstudy >worthwhile to me at least. > >Chuck > >-Original Message- >From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of >Brian >Sent: Tuesday, August 21, 2001 7:51 AM >To: [EMAIL PROTECTED] >Subject: CHALLENGE PROBLEM (was Re: For FR Grus [7:16635]) [7:16659] > > >On Tue, 21 Aug 2001, Cisco Lover wrote: > >> Hi Guys.. >> >> Come with some New Queston.. > >hmm, ok, so your looking for some challenging questions? Ok, I will post >one, its got FR in it. First I'll post the problem, followed by the >config: > >THE PROBLEM >=== >Users on DLCI's 200, 224, 201, 225 cannot communicate to eachother. They >can talk just fine to the rest of the network, but no packets can pass >between them. Later discovery reveals that so long as they are on >different layer 3 network addressing, communcation can occur, but if they >are on the same network, such as 192.168.3.0, then they cannot communicate > >What is the problem? I will reply to let everyone know who got the >correct answer. > >Below is the configuration: > >! >version 11.3 >! >interface Ethernet2/0 > ip address 192.168.1.242 255.255.255.0 >! >interface Serial4/0 > no ip address > encapsulation frame-relay IETF > keepalive 15 > frame-relay map bridge 200 broadcast IETF > frame-relay map bridge 224 broadcast IETF > frame-relay map bridge 201 broadcast IETF > frame-relay map bridge 225 broadcast IETF > frame-relay lmi-type ansi > bridge-group 1 >! >interface BVI1 > ip address 192.168.3.242 255.255.255.0 secondary > ip address 192.168.2.242 255.255.255.0 > >! >router igrp 1 > network 192.1.0.0 > network 192.2.0.0 > network 193.3.0.0 >! >ip classless >! >bridge irb > bridge 1 protocol ieee > bridge 1 route ip >! > > >> >> For eg, >> our FR switch is setup for Full mesh,But out network is setup as Hub & >Spoke >> FAQ, list archives, and subscription info: >http://www.groupstudy.com/list/cisco.html >> Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] >> > > >--- > I'm buying / selling used CISCO gear!! > email me for a quote > >Brian Feeny, CCIE #8036 Scarlett Parria >[EMAIL PROTECTED] [EMAIL PROTECTED] >318-213-4709 318-213-4701 > >Netjam, LLC http://www.netjam.net >333 Texas St.VISA/MC/AMEX/COD >Suite 1401 30 day warranty >Shreveport, LA 71101 Cisco Channel Partner >toll free: 866-2NETJAM >phone:318-212-0245 >fax: 318-212-0246 Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=18033&t=17112 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: CCIE One-Day Lab layout (hardware) [7:17813]
real world testing would require more than one of some of the equipment. those who have been through the lab know what I mean. Chuck -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Tony Medeiros Sent: Wednesday, August 29, 2001 11:18 PM To: [EMAIL PROTECTED] Subject: Re: CCIE One-Day Lab layout (hardware) [7:17813] Thank GAWD they are finnally putting a decent amount of newer equipment. Nothing like testing on a 5505 with old crappy code !!! Now it makes it more real world, except the token ring switch :>) Tony - Original Message - From: "Brad Ellis" To: Sent: Wednesday, August 29, 2001 10:49 PM Subject: Re: CCIE One-Day Lab layout (hardware) [7:17813] > Oops, left off the 3900 token ring switch. > -Brad > > ""Brad Ellis"" wrote in message > [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > > Here's the info from the grapevine on the layout for the new ONE-DAY CCIE > > Lab: > > > > 1x Cisco PIX > > 1x 2600 > > 3x 25xx > > 3x 3640 > > 1x 4000 (Frame router) > > 1x Cat 6509 > > > > This is the standard layout for all CCIE lab's except for WAN switching. > > > > Gotta wonder if people will start seeing some Pix stuff on the CCIE R&S > > lab!!! > > > > -Brad Ellis > > CCIE#5796 > > [EMAIL PROTECTED] > > Network Learning Inc > > Used Cisco: www.optsys.net Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=18032&t=17813 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
IGNORE this very rude person......Was: Re: CCIE Lab exam - [7:18030]
I think everybody should just IGNORE this "Donald B Johnson jr" character. All his posts today are just dripping with disdain and sarcasium. He is posting just to stir the pot and piss people off. Mr. Johnson, Please try and be a little nicer sir. Tony M. - Original Message - From: "Jason" To: Sent: Thursday, August 30, 2001 8:26 PM Subject: Re: CCIE Lab exam - booked twice [7:17310] > Just wondering, are you born this rude or do you have to be trained ? > > All the guy did was ask a question.It may be a dumb question, but only a > question. > > ""Donald B Johnson jr"" wrote in message > [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > > Oh I see maybe they could roll out a red carpet as you stroll up. No > better > > yet I could throw rose petal since I aint busy anymore cause you double > > booked and I gotta wait for the really good guys to keep going through > until > > they pass. Then you say you would cancel the second one if you failed, I > > think you meant pass. If this is your thought process you may want to add > a > > third date. > > You may try pirating that Transcender test for a test brain too. > > > > > > > > - Original Message - > > From: "Rashid Lohiya" > > To: > > Sent: Sunday, August 26, 2001 2:49 AM > > Subject: CCIE Lab exam - booked twice [7:17310] > > > > > > > Guys, > > > > > > Does anyone know whether one person can book the lab twice? > > > > > > ie. 1 for April, 1 for June, thus allowing him to cancel and get a > refund > > on > > > the second one if the first is failed. > > > > > > In this way, the year long wait would not need to be endured if I was to > > > fail the first time around. > > > > > > -- > > > Rashid Lohiya > > > [EMAIL PROTECTED] > > > 020 8509 2990 > > > 07785 362626 > > > www.pioneer-computers.com > > > London UK > > > > > > www.rashidl.co.uk Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=18030&t=18030 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: ospf [7:18002]
DNA means Do Not Age. OSPF on Demand Circuit or virtual links do this. --- Dwayne Saunders wrote: > Hi all, > is any one able to direct me in the right direction > or be able to > explain what the (DNA) is in the sh ip ospf database > > Router Link States (Area 0) > > Link ID ADV Router Age Seq# > Checksum Link count > 172.16.11.100 172.16.11.100 1970 > 0x8008 0x776B 5 > 172.26.1.49 172.26.1.49 5 (DNA) > 0x8158 0xD943 1 > 192.168.101.101 192.168.101.101 1895 (DNA) > 0x815E 0xDCE3 1 > > Summary Net Link States (Area 0) > > Link ID ADV Router Age Seq# > Checksum > 172.26.1.17 172.26.1.49 678 (DNA) > 0x8155 0x23F1 > 172.26.1.33 172.26.1.49 678 (DNA) > 0x8155 0x8282 > 172.26.1.49 172.26.1.49 678 (DNA) > 0x8155 0xE113 > 192.168.1.16172.16.11.100 1971 > 0x8006 0x9708 > 192.168.1.16172.26.1.49 1 (DNA) > 0x815C 0x1B5F > 192.168.1.16192.168.101.101 1895 (DNA) > 0x800A 0x97FB > 192.168.1.48172.16.11.100 1971 > 0x8007 0x542A > 192.168.1.48172.26.1.49 1 (DNA) > 0x8003 0x8530 > 192.168.1.48192.168.101.101 1895 (DNA) > 0x8005 0x6A0D > 192.168.1.64172.16.11.100 1971 > 0x8005 0xC1AD > 192.168.1.64172.26.1.49 678 (DNA) > 0x8155 0x3D15 > 192.168.1.64192.168.101.101 1895 (DNA) > 0x8008 0xCD95 > 192.168.101.101 192.168.101.101 1895 (DNA) > 0x8007 0x527B > > any help will be appreciated > > D'Wayne Saunders > Network Admin __ Do You Yahoo!? Get email alerts & NEW webcam video instant messaging with Yahoo! Messenger http://im.yahoo.com Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=18029&t=18002 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Dial in/Dial Out modem bank [7:17929]
And I also didn't consider an admin controlled modem pool attached to pris or sumthing similar. I was thinking of people that have modems on their pcs, and phone jacks in their cubes/office. Bri - Original Message - From: "Michael L. Williams" To: Sent: Thursday, August 30, 2001 7:47 PM Subject: Re: Dial in/Dial Out modem bank [7:17929] > Brian, > > I was re-reading this thread, and I just caught what you were getting at > (i.e. users connected to the network while having modem access from their > PC) (it's been a long day =) > > That's why I replied with " Why's that so horrible? Sometimes it's the > only solution.." > > I totally see the risk... I (wrongly) assumed that every could magically > see the solution I am using to grant dial access to our desktop PCs (via > software that dials out from an access server over the LAN). > > My bad =) > > Mike W. > > "Brian Whalen" wrote in message > [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > > You actually allow users to dial out from their desktops, while connected > > to a lan?? > > > > The horror of it.. > > > > Brian "Sonic" Whalen > > Success = Preparation + Opportunity Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=18027&t=17929 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: 24 port fast hub [7:18006]
Ebay & Yahoo auctions - Original Message - From: To: Sent: Thursday, August 30, 2001 10:07 PM Subject: 24 port fast hub [7:18006] > where can I get a used 24 port cisco fast hub? Thanks! Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=18009&t=18006 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Edge Security... [7:17864]
Brandon, if you provide any sort of network access, its impossible to make your network "invisible". It's just the nature of the beast. For example, for your users to be able to receive inbound mail, you have to have port 25 open to your mail server. If an external mail server can connect to your internal mail server on port 25, so can a scanning engine. There's no good way to differentiate between the two. Block all ports that you can and secure the servers that must be world-accessible. In your list, I would say you could block at least ldap and whatever 1002 is. You may also be able to block pop3 if you don't need to allow external users to pop mail from your server. These can be blocked with simple router access-lists. If your providing web services, mail and DNS, those ports must be open, your only choice is to properly secure the servers providing those services. There are good resources on securing host OSes from most major vendors, contact your support channel or search on the web. (i.e. Sun, MS, HP, etc) You may also want to look at Content Based Access Control (CBAC). If you do a search on CCO for "CBAC" or "security technical tips" it should lead you to what you need. You also need to consider placing your world-accessible servers on a separate DMZ interface on the router. This is best practice design. A good resource for general security perimeter design is "Building Internet Firewalls" by Chapman and Zwicky. If your really interested in combating scans, I'd suggest taking a look at LaBrea: http://www.incidents.org/archives/intrusions/msg01368.html and the honeynet project: http://project.honeynet.org HTH, Kent -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Brandon Peyton Sent: Thursday, August 30, 2001 9:32 AM To: [EMAIL PROTECTED] Subject: Edge Security... [7:17864] Hi, I'm sure this has probably been covered in the archives, and what I have searched isnt exactly what I need. I've got a 2611 (12.0) and I'm trying to configure my router to provide me with a secure network. 2 mailservers and 2 DNS machines and about 12 workstations and 4 routers. What I'm trying to do is make my network completely invisible to the outside world. When someone scans my IP range they will see nothing. However my inside traffic should have no problems accessing anything anywhere. I also want to block certain ports, for some reason my unix machines like to advertise ldap 389 and i want to completely block that from being seen outside. Currently if you scan my network you'll see: |___22 ssh |___25 Antigen |___53 domain |___80 Executor |___ 110 pop3 |___ 389 ldap |___ 1002 I would like to close certain ports on the cisco for outgoing traffic, and make anyone portscanning me see nothing open. I've spend a huge amount of time on CCO but still havent found what I want. Any suggestions? Thanks Brandon I currently have applied this config: ip subnet-zero no ip source-route no ip finger no ip source-route ip route 0.0.0.0 0.0.0.0 Null0 255 access-list 101 deny ip 192.168.0.0 0.0.255.255 any log access-list 101 deny ip 172.16.0.0 0.15.255.255 any log access-list 101 deny ip 10.0.0.0 0.255.255.255 any log access-list 101 deny ip 127.0.0.0 0.255.255.255 any log access-list 101 deny ip 255.0.0.0 0.255.255.255 any log access-list 101 deny ip 224.0.0.0 7.255.255.255 any log access-list 101 permit icmp any any host-unreachable access-list 101 permit icmp any any packet-too-big access-list 101 permit icmp any any administratively-prohibited access-list 101 permit icmp any any source-quench access-list 101 permit icmp any any ttl-exceeded access-list 101 deny tcp any any eq ident access-list 101 deny ip any any log access-list 102 permit tcp any host (mailserver 1) eq smtp access-list 102 permit tcp any host (mailserver 2) eq smtp access-list 102 deny ip any any log access-list 103 deny ip 192.168.0.0 0.0.255.255 any log access-list 103 deny ip 172.16.0.0 0.15.255.255 any log access-list 103 deny ip 10.0.0.0 0.255.255.255 any log access-list 103 deny ip any 192.168.0.0 0.0.255.255 log access-list 103 deny ip any 172.16.0.0 0.15.255.255 log access-list 103 deny ip any 10.0.0.0 0.255.255.255 log access-list 103 permit ip any any access-list 104 deny tcp any any eq finger Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=17944&t=17864 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: CCIE exam before 1 October [7:17828]
I subscribed to the www.certificationzone.com . I used it as my main source in conjuction with the CISCO CD/Web site. It was quite effective. Cheers, Tuan ""Phantom"" wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > Hi > > I am completing my CCNP nextweek and want to try do my ccie exam before the > end of september. Does any1 have any tips as to what I should study and what > the best books are. > > Thanks Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=18000&t=17828 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Prologue: Anything wrong with this switch? [7:17045]
Actually EA he did have a chance to defend himself. Let's say he sold a dead 2501 for 500 dollars, the only way he could defend himself would be to give the money back. Coming on here or any forum and doing a he-said/she-said would not be defending himself it would be embarrassing himself. - Original Message - From: "EA Louie" To: Sent: Thursday, August 30, 2001 9:32 AM Subject: Re: Prologue: Anything wrong with this switch? [7:17045] > Well gee, Sanjay, that would be a bummer for me. I don't have a rating of > 100 on eBay, yet I've sold kits to people in the $2000 range without a > problem. > > Regarding Evgeny at IQSale/ojick/lanbuilder2000, I'm sure with the volume of > business that he does, there are bound to be some disgruntled customers - no > one is perfect. (Well, I take that back, because [EMAIL PROTECTED] is > really good for the volume that he does.) If he doesn't make it right, > however, he doesn't deserve the victim's repeat business. But there is no > reason to drag his name/business through the mud as a result without giving > him an opportunity to defend himself. That would be the honorable thing to > do. "Let he without sin cast the first stone" > > - Original Message - > From: "Sanjay Chaudhry" > To: > Sent: Wednesday, August 29, 2001 10:00 PM > Subject: Prologue: Anything wrong with this switch? [7:17045] > > > > Thanks Brian, Daniel, Priscilla and Eric for all your input. It helped > > me tremendously. As advised by many posters I asked the seller to send > > me the output of 'show ver' for this switch. The otherwise > > prompt-replier seller maintained a loud silence. > > > > Shortly after that there was a discussion thread on group study about > > people being cheated by IQSale posing under different name on EBay. This > > was the same guy selling this switch, under yet another name of > > lanbuilder2000!!! > > > > Obviously, I did not go ahead with the deal. After this close-shave I > > will not advise anybody to buy anything expensive on Ebay from a seller > > with a rating of > > -Original Message- > > From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] On Behalf Of > > Sanjay Chaudhry > > Sent: Thursday, August 23, 2001 4:01 PM > > To: [EMAIL PROTECTED] > > Subject: Urgent: Anything wrong with this switch? [7:17045] > > > > Hi Everyone, > > I'm trying to buy a refurbished switch with the following > > specifications: > > > > = > > Cisco Catalyst 5505 w/ Supervisor Engine II WS-X5506 > > > > Included in the Chassis: > > > > One WS-C5505 Chassis 5 slot Chassis > > 1 Supervisor Engine II (WS-X5506) > > > > 1 AC Power Supply > > 1 12 PORT 100BaseTX Ethernet (WS-X5113) > > 1 AC Cord > > 1 Console Kit > > = > > > > There is no guarantee against DOA from seller. I'll be responsible for > > everything after the sale!! > > I'm a recent CCNA. This is intended for my CCNP/CCIE lab. I'll need your > > advice here... I don't even know if Flash/RAM should have been mentioned > > in the switch specs and are missing... > > Your input is highly valued. > > Thanks, > > Sanjay > _ > Do You Yahoo!? > Get your free @yahoo.com address at http://mail.yahoo.com Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=17966&t=17045 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Dial in/Dial Out modem bank [7:17929]
You'd be better off with a PRI and a channalized T1 card & digital modem card. You could then use a 3600. If you go with the async ports and modems you won't be able to get the 56K(53K) compression. The PRI should be cheaper than all those analog lines anyhow. Hunt around on ebay. There are lots of companies dumping this sort of stuff - going to VPNs. Look for a Lucent Max, Cisco Universal Gateway or something similar. Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=17941&t=17929 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Yet another silly CCIE lab prep question [7:17716]
Id also add a NP-2T (2 Port Serial Network Processor Module) to that 4000 so that you can practice a point-to-point and point-to-multipoint OSPF over frame relay scenario. Using the 4000 as a Frame Relay Switch. These NPMs sell for about 100-200 on Ebay. If you get a NP-4T (4 Port Serial Network Processor Module) you've just turned that 4000 in to 2 Routers, ideally. It then can double as a Frame Relay Switch and still have 2 Serial ports and what ever Ethernet ports left over to do some other nice config scenarios. The NP-4T sell for about 300-400 on Ebay and only require the cable types that come with the 25XX anyway. If you get the NP-2T then you'll need 4 60pin/dte to 50pin/dce cables (These sell for about 35 new/used on ebay and about 80 used elsewhere). Adding a Frame Relay Switch to your lab setup is a great way to connect all those 25XX together and still have a lot of fluidity in lab scenario cable-ups. Wayne -Original Message- From: EA Louie [mailto:[EMAIL PROTECTED]] Sent: Thursday, August 30, 2001 5:10 AM To: [EMAIL PROTECTED] Subject: Re: Yet another silly CCIE lab prep question [7:17716] Nah, that's a great setup John. You have 5 routers there, and a possible 6th with the 4000. Start looking at fatkid.com and his smaller labs (400 and below), and see how well you line up with those (we're forever substituting Ethernet for Token Ring and vice-versa in my partner's lab setups to make due with our equipment on those labs) The 2522 is a great frame relay switch and can double as a 1E/2T/1BRI router... 2513 give you SR/TLB You can add some NPs to your 4000 (I'd suggest the NP-2E and NP-2R) You'll need a bunch of DTE/DCE cables (mostly 60-pin variety...and a couple of 60-pin to 50-pin for the NP-2T in the 4000) If trunking is only worth one or two points on the exam, it's worth knowing but not sweating - just think "sub-interfaces" on the router, and know the encapsulation commands on the router and switch interfaces I'd be a bit more concerned with flash/DRAM - 12.1 Enterprise requires 16/16, and you could use mzmaker if you have 8/16, but we've run into a few problems with that lately (routers crashing because of MALLOC problems) - Original Message - From: "John Neiberger" To: Sent: Wednesday, August 29, 2001 11:41 AM Subject: Yet another silly CCIE lab prep question [7:17716] > I apologize in advance for posting this. I know we get a couple of > these a week, it seems, but I don't want to leave any bases uncovered. > Here is what it looks like I'm going to end up with at home: > > (2) 2501 > 2504 > 2513 > 2522 > 4000 (with two serial interfaces) > Catalyst 1200 (yes, that's right, I said a 1200!!) > Token Ring MAU > Blackbox switch (instead of 2509 or 2511) > > I'm hoping that the 1200 will be able to handle most of the switching > chores. It can't do ISL trunking and it's only low speed, but I get > experience with that kind of stuff at work. I won't be able to do > etherchannel, but I don't have any routers or other switches so that's > not relevant here. > > I still plan on getting a day or two of lab time up at University of > Colorado at $500/day. I also may get in a day or two at the local Cisco > office (keep your fingers crossed). > > For my home lab, though, if I manage to find some lab scenarios to > study with that only use a few routers, have I already shot myself in > the foot? Will I *need* to get more or will this suffice? > > I will also be getting an ISDN simulator but that's going to have to > wait for a few months. > > Any advice? > > Thanks! > > John _ Do You Yahoo!? Get your free @yahoo.com address at http://mail.yahoo.com Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=17981&t=17716 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Edge Security... [7:17864]
What you want is not possible. It you want to host servers such as dns and smtp you will need to have those ports open to the outside, which will show up on any portscan, and therefore not be completely invisible... Otherwise your scan looks pretty good. I would close up pop3, ldap, and 1002 though... ""Brandon Peyton"" wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > Hi, > > I'm sure this has probably been covered in the archives, and what I have > searched isnt exactly what I need. > > I've got a 2611 (12.0) and I'm trying to configure my router to provide me > with a secure network. 2 mailservers and 2 DNS machines and about 12 > workstations and 4 routers. > > What I'm trying to do is make my network completely invisible to the outside > world. When someone scans my IP range they will see nothing. However my > inside traffic should have no problems accessing anything anywhere. > > I also want to block certain ports, for some reason my unix machines like to > advertise ldap 389 and i want to completely block that from being seen > outside. > > Currently if you scan my network you'll see: > |___22 ssh > |___25 Antigen > |___53 domain > |___80 Executor > |___ 110 pop3 > |___ 389 ldap > |___ 1002 > > I would like to close certain ports on the cisco for outgoing traffic, and > make anyone portscanning me see nothing open. > > I've spend a huge amount of time on CCO but still havent found what I want. > > Any suggestions? > > Thanks > Brandon > > > > I currently have applied this config: > > ip subnet-zero > no ip source-route > no ip finger > no ip source-route > ip route 0.0.0.0 0.0.0.0 Null0 255 > access-list 101 deny ip 192.168.0.0 0.0.255.255 any log > access-list 101 deny ip 172.16.0.0 0.15.255.255 any log > access-list 101 deny ip 10.0.0.0 0.255.255.255 any log > access-list 101 deny ip 127.0.0.0 0.255.255.255 any log > access-list 101 deny ip 255.0.0.0 0.255.255.255 any log > access-list 101 deny ip 224.0.0.0 7.255.255.255 any log > access-list 101 permit icmp any any host-unreachable > access-list 101 permit icmp any any packet-too-big > access-list 101 permit icmp any any administratively-prohibited > access-list 101 permit icmp any any source-quench > access-list 101 permit icmp any any ttl-exceeded > access-list 101 deny tcp any any eq ident > access-list 101 deny ip any any log > access-list 102 permit tcp any host (mailserver 1) eq smtp > access-list 102 permit tcp any host (mailserver 2) eq smtp > access-list 102 deny ip any any log > access-list 103 deny ip 192.168.0.0 0.0.255.255 any log > access-list 103 deny ip 172.16.0.0 0.15.255.255 any log > access-list 103 deny ip 10.0.0.0 0.255.255.255 any log > access-list 103 deny ip any 192.168.0.0 0.0.255.255 log > access-list 103 deny ip any 172.16.0.0 0.15.255.255 log > access-list 103 deny ip any 10.0.0.0 0.255.255.255 log > access-list 103 permit ip any any > access-list 104 deny tcp any any eq finger Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=17923&t=17864 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: T1 connections [7:17898]
You can most certainly back-to-back your RJ45 CSU/DSU interfaces. You need to make an RJ45 cable that has pins 1,2 going to 4,5 and vice-versa. Search the groupstudy archives, there has been plenty of discussion on this in the past. thanks, -Brad Ellis CCIE#5796 Network Learning Inc [EMAIL PROTECTED] used Cisco: www.optsys.net ""tu do"" wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > Hi every body, > > I am working with my home lab. I have some DSU/CSU T1 interfaces: > -FT/T1 DSU/CSU for 2500 series > -WIC-1DSU-T1 > They have RJ-45 connectors > > I would like to connect them to other serial T1 interfaces which have DB-60 > connectors. Would someone show me how and what kind of cable should I use to > have it work out. > As I know, DSU/CSU are DTE interfaces ( if I am right ). THerefore, I cannot > configurate two DSU/CSU interfaces back-to-back. > > Thanks in advance, > > Tu Do. Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=17902&t=17898 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Errors in All-in-one CCIE [7:17985]
Hello Everybody, I am preparing for CCIE exam. I am using All-In-One CCIE book. I heard that there are lot of errors in this book. Can anybody tell me these errors and there page numbers. I am using second edition of this book. Moreover, I will appreciate if somebody can send me CCIE braindumps and practise exams. Thanks Khalid Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=17985&t=17985 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: IQSale , Grandstore Was Re: Prologue: Anything [7:18022]
Louis, I don't know about you, but for IQSale / GrandStores / Hitek , in fact every message that I wrote to this Forum, I actually forward to various people in IQSale as well to provide them a opportunity to defend themselves and make right their mistakes. However, if they chose not to make right their mistakes and they felt that what I said is wrong or lies , they could easily sent their lawyers after me . I know a lot of people chose not to make statements regarding companies like that simply because of fear, in my case, I'm prepared to standby my statements, that they promise me a refund and till date, I have not received a single cent and they have failed to response to me after that. If you don't call that fraud and dishonest practise, I really don't know what you will call it. I guess you call them honest bible loving people who deserve a chance As for eBay ratings, those are BS !! Don't trust the ratings... eBay don't really care ... Also please stop the mis-use of the Bibles Quotes in this forum, maybe if you can close down all the Courts, etc in your country , you can start using the quote again ""EA Louie"" wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > Well gee, Sanjay, that would be a bummer for me. I don't have a rating of > 100 on eBay, yet I've sold kits to people in the $2000 range without a > problem. > > Regarding Evgeny at IQSale/ojick/lanbuilder2000, I'm sure with the volume of > business that he does, there are bound to be some disgruntled customers - no > one is perfect. (Well, I take that back, because [EMAIL PROTECTED] is > really good for the volume that he does.) If he doesn't make it right, > however, he doesn't deserve the victim's repeat business. But there is no > reason to drag his name/business through the mud as a result without giving > him an opportunity to defend himself. That would be the honorable thing to > do. "Let he without sin cast the first stone" > > - Original Message - > From: "Sanjay Chaudhry" > To: > Sent: Wednesday, August 29, 2001 10:00 PM > Subject: Prologue: Anything wrong with this switch? [7:17045] > > > > Thanks Brian, Daniel, Priscilla and Eric for all your input. It helped > > me tremendously. As advised by many posters I asked the seller to send > > me the output of 'show ver' for this switch. The otherwise > > prompt-replier seller maintained a loud silence. > > > > Shortly after that there was a discussion thread on group study about > > people being cheated by IQSale posing under different name on EBay. This > > was the same guy selling this switch, under yet another name of > > lanbuilder2000!!! > > > > Obviously, I did not go ahead with the deal. After this close-shave I > > will not advise anybody to buy anything expensive on Ebay from a seller > > with a rating of > > -Original Message- > > From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] On Behalf Of > > Sanjay Chaudhry > > Sent: Thursday, August 23, 2001 4:01 PM > > To: [EMAIL PROTECTED] > > Subject: Urgent: Anything wrong with this switch? [7:17045] > > > > Hi Everyone, > > I'm trying to buy a refurbished switch with the following > > specifications: > > > > = > > Cisco Catalyst 5505 w/ Supervisor Engine II WS-X5506 > > > > Included in the Chassis: > > > > One WS-C5505 Chassis 5 slot Chassis > > 1 Supervisor Engine II (WS-X5506) > > > > 1 AC Power Supply > > 1 12 PORT 100BaseTX Ethernet (WS-X5113) > > 1 AC Cord > > 1 Console Kit > > = > > > > There is no guarantee against DOA from seller. I'll be responsible for > > everything after the sale!! > > I'm a recent CCNA. This is intended for my CCNP/CCIE lab. I'll need your > > advice here... I don't even know if Flash/RAM should have been mentioned > > in the switch specs and are missing... > > Your input is highly valued. > > Thanks, > > Sanjay > _ > Do You Yahoo!? > Get your free @yahoo.com address at http://mail.yahoo.com Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=18022&t=18022 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: CCIE Lab exam - booked twice [7:17310]
Just wondering, are you born this rude or do you have to be trained ? All the guy did was ask a question.It may be a dumb question, but only a question. ""Donald B Johnson jr"" wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > Oh I see maybe they could roll out a red carpet as you stroll up. No better > yet I could throw rose petal since I aint busy anymore cause you double > booked and I gotta wait for the really good guys to keep going through until > they pass. Then you say you would cancel the second one if you failed, I > think you meant pass. If this is your thought process you may want to add a > third date. > You may try pirating that Transcender test for a test brain too. > > > > - Original Message - > From: "Rashid Lohiya" > To: > Sent: Sunday, August 26, 2001 2:49 AM > Subject: CCIE Lab exam - booked twice [7:17310] > > > > Guys, > > > > Does anyone know whether one person can book the lab twice? > > > > ie. 1 for April, 1 for June, thus allowing him to cancel and get a refund > on > > the second one if the first is failed. > > > > In this way, the year long wait would not need to be endured if I was to > > fail the first time around. > > > > -- > > Rashid Lohiya > > [EMAIL PROTECTED] > > 020 8509 2990 > > 07785 362626 > > www.pioneer-computers.com > > London UK > > > > www.rashidl.co.uk Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=18025&t=17310 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: CCIE Equipment Discounts [7:17980]
Cisco SE's get 60%. That's a good discount. I know of one company that gets 44%. Joe Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=18023&t=17980 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Fw: RIF over DLSW question? [7:17894]
I could write a couple pages on this, but try and give you a quick run down. I would suggest that you do some more reading on the subject though. EXAMPLE TOPOLOGY: Host1--Ring8---Bridge1---Serial Link-Bridge2Ring9Host2 RSRB is passthrough for the RIF, in order for it to work, you have to make a virtual ring on both Bridge 1 and Bridge 2, the virtual ring number must be the same on both sides of the link. The RIF go completely through from Ring8 to Bridge 1 to VR to Bridge 2 to Ring 9. It wouldn't get broken up. Say we used Virtual Ring # 10, then the RIF that Host 2 sees might look like this: 0830 0081 00A2 0090 DLSW is not passthrough, this is an advantage since you can increase the hop count since you could have 7 bridges on each side of the WAN link. In this case you create 2 virtual rings, one on each of the bridges, unlike RSRB they do not have to have the same number. The bridges would be peered to each other, and Host 2 would only see the RIF that consisted of Virtual Ring, Bridge 2, Ring9, it won't see any of the RIF on the other side of the WAN link. Say we used Virtual Ring #10 on Bridge 1 and Virtual Ring #11 on bridge 2, the RIF that Host 2 might see might look like this: 0630 00B2 0090 Hope this helps out some, but again, I would recommed that you do more reading on it. There is a book by Caslow called Routers, Bridges, and Switches for CCIE's and it has a very good write up in there...either chapter 20 or 21. Good Luck, Bill Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=18024&t=17894 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: PIX Failover cable [7:18001]
I believe it's part number PIX-FO= or you could buy it as LD-FO= since it is the same cable for the LocalDirector. Mark Smith wrote: > Does anyone have the part number for the failover cable for a 515 PIX. Mine > went MIA during a company move. I can't find on Cisco's or any vendor's site > where I can order just the cable by itself. A part number would be really > nice. Next best thing would be the pin out for the cable so I could (maybe) > modify a standard cable. Couldn't find that either. > > Thanks. Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=18021&t=18001 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: IPSEC Challenge Problem [7:17844]
Wonderfull!!! GREA Kent U solved my problem.. Thanks a lot!!! >From: "Kent Hundley" >Reply-To: "Kent Hundley" >To: [EMAIL PROTECTED] >Subject: RE: IPSEC Challenge Problem [7:17844] >Date: Thu, 30 Aug 2001 17:03:25 -0400 > >The problem is most likely your access-lists. You need to create an acl >that allows telnet traffic from A to B and the return traffic from B to A: > >For telnet from A to B: > >on A: access-list 101 permit host A gt 1023 host B eq 23 >on B: access-list 101 permit host B eq 23 host A gt 1023 > >(create reverse images of these entries for telnet from B to A) > >Note that the acl's on B and A are "mirror images" of each other, as stated >in the Cisco docs. > >You need to remember that the source port for a client initiating telnet is >a randomly chosen port above 1023. > >You don't _have_ to list the 'gt 1023', but when using acl's for IPSec I >like to specify both src and dst ports if possible for consistency. > >HTH, >Kent > > >-Original Message- >From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of >Cisco Lover >Sent: Thursday, August 30, 2001 4:21 AM >To: [EMAIL PROTECTED] >Subject: IPSEC Challenge Problem [7:17844] > > >Guys, > >The objective of the problem I m going to explain you is to encrypt ONLY >TELNET traffic b/w these two routers. > >THe main problem I m facing is that IM not able to do this by implementing >specific host lists that permits only telnet traffic from one to another >host..Like > >access-list 101 permit tcp host A host B eq telnet. > >The only way I can run this is by using normal list allowing complete >traffic b/w these two hosts.Please have a look and let me know if u find >any >problem in my config. > >Thanks. > >ISDN1#sh crypto engine connections ac >ISDN1#sh crypto engine connections active > > ID Interface IP-Address State Algorithm Encrypt >Decrypt > >1 setHMAC_MD5+DES_56_CB0 >0 > >2 setHMAC_MD5+DES_56_CB0 >0 > >2000 Serial0/0 135.25.11.1 setHMAC_MD5+DES_56_CB0 > 54 > >2001 Serial0/0 135.25.11.1 setHMAC_MD5+DES_56_CB 40 >0 > > >ISDN1#sh run >Building configuration... > >Current configuration: >! >version 12.0 >service timestamps debug uptime >service timestamps log uptime >no service password-encryption >! >hostname ISDN1 >! >enable password cisco >! >! >! >! >! >memory-size iomem 7 >ip subnet-zero >ip telnet source-interface Loopback0 >no ip domain-lookup >! >isdn voice-call-failure 0 >cns event-service server >! >! >! >! >crypto isakmp policy 10 >hash md5 >authentication pre-share >crypto isakmp key hello address 135.25.11.2 255.255.255.255 >crypto isakmp key hello address 135.25.3.1 255.255.255.255 >! >! >crypto ipsec transform-set cisco esp-des esp-md5-hmac >! >! >crypto map CCIE local-address Loopback0 >crypto map CCIE 10 ipsec-isakmp >set peer 135.25.11.2 >set peer 135.25.3.1 >set transform-set cisco >match address 101 >! >! >! >! >interface Loopback0 >ip address 135.25.4.1 255.255.255.255 >no ip directed-broadcast >! >interface FastEthernet0/0 >no ip address >no ip directed-broadcast >shutdown >duplex auto >speed auto >! >interface Serial0/0 >ip address 135.25.11.1 255.255.255.0 >no ip directed-broadcast >no ip mroute-cache >no fair-queue >crypto map CCIE >! >interface BRI0/0 >no ip address >no ip directed-broadcast >shutdown >isdn guard-timer 0 on-expiry accept >! >interface FastEthernet0/1 >no ip address >no ip directed-broadcast >shutdown >duplex auto >speed auto >! >ip classless >ip route 0.0.0.0 0.0.0.0 135.25.11.2 >no ip http server >! >access-list 101 permit ip host 135.25.4.1 host 135.25.3.1 >! >! >voice-port 1/0/0 >! >voice-port 1/0/1 >! >voice-port 1/1/0 >! >voice-port 1/1/1 >! >! >! >line con 0 >password cisco >transport input none >line aux 0 >line vty 0 4 >password cisco >login >! > > > >hostname ISDN2 >! >enable password cisco >! >! >! >! >! >ip subnet-zero >ip telnet source-interface Loopback0 >no ip domain-lookup >! >isdn voice-call-failure 0 >cns event-service server >! >! >crypto isakmp policy 10 >hash md5 >authentication pre-share >crypto isakmp key hello address 135.25.11.1 >crypto isakmp key hello address 135.25.4.1 >! >! >crypto ipsec transform-set cisco esp-des esp-md5-hmac >! >! >crypto map CCIE local-address Loopback0 >crypto map CCIE 10 ipsec-isakmp >set peer 135.25.11.1 >set peer 135.25.4.1 >set transform-set cisco >match address 101 >partition flash 2 16 8 >! >! >! >! >! >! >! >interface Loopback0 >ip address 135.25.3.1 255.255.255.255 >no ip directed-broadcast >! >interface Ethernet0/0 >no ip address >no ip directed-broadcast >shutdown >! >interface Serial0/0 >no ip address >no ip directed-broadcast >shutdown >! >interface BRI0/0 >no ip address >no ip directed-broadcast >shutdown >isdn guard-timer 0 on-expiry accept >! >interface Ethernet0/1 >no ip address >no ip directed-broadcast >shutdown >! >interface Serial1/0 >no ip a
RE: CCIE Equipment Discounts [7:17980]
Thanks to both of you...I actually was told this a couple of times by trainers. Now I'm bumming, I'm the only one in my orginization with any Cisco Certs...how many CCIE's does an organization need to be able to get a discount? Thanks again. Thomas Moore CCNP, CCDP Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=18019&t=17980 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: vpn through pix [7:17782]
yes, pat running on the pix. i did make static translations for the vpn users so they dont have a pat address. Are you running PAT on the pix? - Original Message - From: "r r" To: Sent: Wednesday, August 29, 2001 8:19 PM Subject: vpn through pix [7:17782] > does anybody have ideas on what is needed to use a vpn > client through a pix running nat? another way to put > it: i have users inside the pix wanting to vpn to > another host across the internet through our pix > running nat/pat. the vpn client says it gets > connected but disconnects after a couple of minutes. > i dont know if it really connects or just says it does > but it doesnt seem to work. any ideas? > > D > > __ > Do You Yahoo!? > Get email alerts & NEW webcam video instant messaging with Yahoo! Messenger > http://im.yahoo.com Message Posted at: __ Do You Yahoo!? Get email alerts & NEW webcam video instant messaging with Yahoo! Messenger http://im.yahoo.com Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=18018&t=17782 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Dial in/Dial Out modem bank [7:17929]
Brian, I was re-reading this thread, and I just caught what you were getting at (i.e. users connected to the network while having modem access from their PC) (it's been a long day =) That's why I replied with " Why's that so horrible? Sometimes it's the only solution.." I totally see the risk... I (wrongly) assumed that every could magically see the solution I am using to grant dial access to our desktop PCs (via software that dials out from an access server over the LAN). My bad =) Mike W. "Brian Whalen" wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > You actually allow users to dial out from their desktops, while connected > to a lan?? > > The horror of it.. > > Brian "Sonic" Whalen > Success = Preparation + Opportunity Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=18017&t=17929 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Connect 6509 with CONSOLE [7:17983]
Hmm...I don't know what the little "hole" is but accessing the console on a 6509 is just like any other device. Set your stop bits to 1 and give that a try. 1 is the default setting for Cisco consoles. Remember: 9600, 8, none, 1 --- Rik Guyler -Original Message- From: Thomas N. [mailto:[EMAIL PROTECTED]] Sent: Thursday, August 30, 2001 7:27 PM To: [EMAIL PROTECTED] Subject: Connect 6509 with CONSOLE [7:17983] Hi All, I attempted to access to the CAT 6509 with the CONSOLE port today. This 6509 is in production. It appeared that I didn't get any output on my HyperTerminal. My HyperTerminal setting is: 9600 bits per second, Data bits = 8, Parity = none, Stope bit = 2 (as indicated on Cisco.com), Flow control = none. There's also a little hidden hole right next to the CONSOLE port labelled as "Console mode...". I don't know if I have to change something to access the console? Also, if I have to press that hidden hole to access the Console mode, will it affect the production enviroment? Thanks All in advance! Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=18014&t=17983 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Dial in/Dial Out modem bank [7:17929]
Yeah. agreed. we happened to need to functionality of ISDN mixed with async, but if not, your solution is a cost effective method. "Rik Guyler" wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > I have had to support this type of activity in the past as well and I agree > that an AS5300 (or newer) will do the job well. However, that's a fairly > expensive box. Cheaper alternatives would include a 2511/2513 router with > octal cable(s) and external modems or maybe a 3600 series router. These > both can provide this type of access. In my office, for engineers providing > remote dialup support, we use a 2509 with an octal cable and external > modems. Works well and is a fraction of the cost of an AS box. > > Good luck! > > --- > Rik Guyler > > -Original Message- > From: Brian Whalen [mailto:[EMAIL PROTECTED]] > Sent: Thursday, August 30, 2001 6:44 PM > To: [EMAIL PROTECTED] > Subject: RE: Dial in/Dial Out modem bank [7:17929] > > > You actually allow users to dial out from their desktops, while connected > to a lan?? > > The horror of it.. > > Brian "Sonic" Whalen > Success = Preparation + Opportunity > > > On Thu, 30 Aug 2001, Jim Dixon wrote: > > > Cisco AS5300 should handled your needs nicely. > > > > > > -Original Message- > > From: Mike Momb [mailto:[EMAIL PROTECTED]] > > Sent: Thursday, August 30, 2001 2:56 PM > > To: [EMAIL PROTECTED] > > Subject: Dial in/Dial Out modem bank [7:17929] > > > > > > To all you cisco wizards, > > > > What Cisco product would you recommend for dial in/dial out capability on > a > > LAN. We have many users who dial into our network and do work from home. > > We also have users that would like to dial out from their desktop without > > using stand alone modems. Something that would handle at least 16 > > simultaneous users. We currently use a product that is slow and sometimes > > it locks up. Any advice/input would be appreciated. > > > > Mike Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=18016&t=17929 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: ospf [7:18002]
Do Not Age. Those are routes that don't age out. They were probably learned across an ISDN backup link, or a virtual link. If the router has an isdn interface, check for the 'ip ospf demand-circuit' command. Otherwise, look for a virtual link configured on a router. There's good info about this on cisco.com, and on the doc cd. -Rob Fielding CCIE #7996 - Original Message - From: "Dwayne Saunders" To: Sent: Thursday, August 30, 2001 6:41 PM Subject: ospf [7:18002] > Hi all, > is any one able to direct me in the right direction or be able to > explain what the (DNA) is in the sh ip ospf database > > Router Link States (Area 0) > > Link ID ADV Router Age Seq# Checksum Link count > 172.16.11.100 172.16.11.100 19700x8008 0x776B 5 > 172.26.1.49 172.26.1.49 5 (DNA) 0x8158 0xD943 1 > 192.168.101.101 192.168.101.101 1895 (DNA) 0x815E 0xDCE3 1 > > Summary Net Link States (Area 0) > > Link ID ADV Router Age Seq# Checksum > 172.26.1.17 172.26.1.49 678 (DNA) 0x8155 0x23F1 > 172.26.1.33 172.26.1.49 678 (DNA) 0x8155 0x8282 > 172.26.1.49 172.26.1.49 678 (DNA) 0x8155 0xE113 > 192.168.1.16172.16.11.100 19710x8006 0x9708 > 192.168.1.16172.26.1.49 1 (DNA) 0x815C 0x1B5F > 192.168.1.16192.168.101.101 1895 (DNA) 0x800A 0x97FB > 192.168.1.48172.16.11.100 19710x8007 0x542A > 192.168.1.48172.26.1.49 1 (DNA) 0x8003 0x8530 > 192.168.1.48192.168.101.101 1895 (DNA) 0x8005 0x6A0D > 192.168.1.64172.16.11.100 19710x8005 0xC1AD > 192.168.1.64172.26.1.49 678 (DNA) 0x8155 0x3D15 > 192.168.1.64192.168.101.101 1895 (DNA) 0x8008 0xCD95 > 192.168.101.101 192.168.101.101 1895 (DNA) 0x8007 0x527B > > any help will be appreciated > > D'Wayne Saunders > Network Admin Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=18015&t=18002 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: ospf [7:18002]
No problem, If you want more on the database stuff, here is a great link: http://www.cisco.com/warp/public/104/ospfdbtoc.html Tony - Original Message - From: "Dwayne Saunders" To: "'Tony Medeiros'" ; "Dwayne Saunders" ; Sent: Thursday, August 30, 2001 7:20 PM Subject: RE: ospf [7:18002] > thank you > > D'Wayne Saunders > Network Admin > > > -Original Message- > From: Tony Medeiros [mailto:[EMAIL PROTECTED]] > Sent: Friday, August 31, 2001 11:39 > To: Dwayne Saunders; [EMAIL PROTECTED] > Subject: Re: ospf [7:18002] > > > DNA (Do Not Age) > Got an OSPF demand circut configured somewhere? > T > > - Original Message - > From: "Dwayne Saunders" > To: > Sent: Thursday, August 30, 2001 6:41 PM > Subject: ospf [7:18002] > > > > Hi all, > > is any one able to direct me in the right direction or be able to > > explain what the (DNA) is in the sh ip ospf database > > > > Router Link States (Area 0) > > > > Link ID ADV Router Age Seq# Checksum Link count > > 172.16.11.100 172.16.11.100 19700x8008 0x776B 5 > > 172.26.1.49 172.26.1.49 5 (DNA) 0x8158 0xD943 1 > > 192.168.101.101 192.168.101.101 1895 (DNA) 0x815E 0xDCE3 1 > > > > Summary Net Link States (Area 0) > > > > Link ID ADV Router Age Seq# Checksum > > 172.26.1.17 172.26.1.49 678 (DNA) 0x8155 0x23F1 > > 172.26.1.33 172.26.1.49 678 (DNA) 0x8155 0x8282 > > 172.26.1.49 172.26.1.49 678 (DNA) 0x8155 0xE113 > > 192.168.1.16172.16.11.100 19710x8006 0x9708 > > 192.168.1.16172.26.1.49 1 (DNA) 0x815C 0x1B5F > > 192.168.1.16192.168.101.101 1895 (DNA) 0x800A 0x97FB > > 192.168.1.48172.16.11.100 19710x8007 0x542A > > 192.168.1.48172.26.1.49 1 (DNA) 0x8003 0x8530 > > 192.168.1.48192.168.101.101 1895 (DNA) 0x8005 0x6A0D > > 192.168.1.64172.16.11.100 19710x8005 0xC1AD > > 192.168.1.64172.26.1.49 678 (DNA) 0x8155 0x3D15 > > 192.168.1.64192.168.101.101 1895 (DNA) 0x8008 0xCD95 > > 192.168.101.101 192.168.101.101 1895 (DNA) 0x8007 0x527B > > > > any help will be appreciated > > > > D'Wayne Saunders > > Network Admin Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=18013&t=18002 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Dial in/Dial Out modem bank [7:17929]
I have had to support this type of activity in the past as well and I agree that an AS5300 (or newer) will do the job well. However, that's a fairly expensive box. Cheaper alternatives would include a 2511/2513 router with octal cable(s) and external modems or maybe a 3600 series router. These both can provide this type of access. In my office, for engineers providing remote dialup support, we use a 2509 with an octal cable and external modems. Works well and is a fraction of the cost of an AS box. Good luck! --- Rik Guyler -Original Message- From: Brian Whalen [mailto:[EMAIL PROTECTED]] Sent: Thursday, August 30, 2001 6:44 PM To: [EMAIL PROTECTED] Subject: RE: Dial in/Dial Out modem bank [7:17929] You actually allow users to dial out from their desktops, while connected to a lan?? The horror of it.. Brian "Sonic" Whalen Success = Preparation + Opportunity On Thu, 30 Aug 2001, Jim Dixon wrote: > Cisco AS5300 should handled your needs nicely. > > > -Original Message- > From: Mike Momb [mailto:[EMAIL PROTECTED]] > Sent: Thursday, August 30, 2001 2:56 PM > To: [EMAIL PROTECTED] > Subject: Dial in/Dial Out modem bank [7:17929] > > > To all you cisco wizards, > > What Cisco product would you recommend for dial in/dial out capability on a > LAN. We have many users who dial into our network and do work from home. > We also have users that would like to dial out from their desktop without > using stand alone modems. Something that would handle at least 16 > simultaneous users. We currently use a product that is slow and sometimes > it locks up. Any advice/input would be appreciated. > > Mike Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=18012&t=17929 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: T1 connections [7:17898]
56k CSU/DSUs use pins 1&2 and 7&8. Again make a crossover cable. > -Original Message- > From: tu do [mailto:[EMAIL PROTECTED]] > Sent: Thursday, August 30, 2001 8:57 PM > To: [EMAIL PROTECTED] > Subject: RE: T1 connections [7:17898] > > > Thank you all for clear instructions. I have them (DSU/CSU > T1s) work with > RJ-48C connectors. But, I cannot configurate 56/64K ones. > There must be > something else I need to learn about. > > Thank you all again, > > Tu Do. > Report misconduct > and Nondisclosure violations to [EMAIL PROTECTED] Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=18011&t=17898 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: ospf [7:18002]
thank you D'Wayne Saunders Network Admin -Original Message- From: Tony Medeiros [mailto:[EMAIL PROTECTED]] Sent: Friday, August 31, 2001 11:39 To: Dwayne Saunders; [EMAIL PROTECTED] Subject: Re: ospf [7:18002] DNA (Do Not Age) Got an OSPF demand circut configured somewhere? T - Original Message - From: "Dwayne Saunders" To: Sent: Thursday, August 30, 2001 6:41 PM Subject: ospf [7:18002] > Hi all, > is any one able to direct me in the right direction or be able to > explain what the (DNA) is in the sh ip ospf database > > Router Link States (Area 0) > > Link ID ADV Router Age Seq# Checksum Link count > 172.16.11.100 172.16.11.100 19700x8008 0x776B 5 > 172.26.1.49 172.26.1.49 5 (DNA) 0x8158 0xD943 1 > 192.168.101.101 192.168.101.101 1895 (DNA) 0x815E 0xDCE3 1 > > Summary Net Link States (Area 0) > > Link ID ADV Router Age Seq# Checksum > 172.26.1.17 172.26.1.49 678 (DNA) 0x8155 0x23F1 > 172.26.1.33 172.26.1.49 678 (DNA) 0x8155 0x8282 > 172.26.1.49 172.26.1.49 678 (DNA) 0x8155 0xE113 > 192.168.1.16172.16.11.100 19710x8006 0x9708 > 192.168.1.16172.26.1.49 1 (DNA) 0x815C 0x1B5F > 192.168.1.16192.168.101.101 1895 (DNA) 0x800A 0x97FB > 192.168.1.48172.16.11.100 19710x8007 0x542A > 192.168.1.48172.26.1.49 1 (DNA) 0x8003 0x8530 > 192.168.1.48192.168.101.101 1895 (DNA) 0x8005 0x6A0D > 192.168.1.64172.16.11.100 19710x8005 0xC1AD > 192.168.1.64172.26.1.49 678 (DNA) 0x8155 0x3D15 > 192.168.1.64192.168.101.101 1895 (DNA) 0x8008 0xCD95 > 192.168.101.101 192.168.101.101 1895 (DNA) 0x8007 0x527B > > any help will be appreciated > > D'Wayne Saunders > Network Admin Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=18010&t=18002 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: ospf [7:18002]
DNA (Do Not Age) Got an OSPF demand circut configured somewhere? T - Original Message - From: "Dwayne Saunders" To: Sent: Thursday, August 30, 2001 6:41 PM Subject: ospf [7:18002] > Hi all, > is any one able to direct me in the right direction or be able to > explain what the (DNA) is in the sh ip ospf database > > Router Link States (Area 0) > > Link ID ADV Router Age Seq# Checksum Link count > 172.16.11.100 172.16.11.100 19700x8008 0x776B 5 > 172.26.1.49 172.26.1.49 5 (DNA) 0x8158 0xD943 1 > 192.168.101.101 192.168.101.101 1895 (DNA) 0x815E 0xDCE3 1 > > Summary Net Link States (Area 0) > > Link ID ADV Router Age Seq# Checksum > 172.26.1.17 172.26.1.49 678 (DNA) 0x8155 0x23F1 > 172.26.1.33 172.26.1.49 678 (DNA) 0x8155 0x8282 > 172.26.1.49 172.26.1.49 678 (DNA) 0x8155 0xE113 > 192.168.1.16172.16.11.100 19710x8006 0x9708 > 192.168.1.16172.26.1.49 1 (DNA) 0x815C 0x1B5F > 192.168.1.16192.168.101.101 1895 (DNA) 0x800A 0x97FB > 192.168.1.48172.16.11.100 19710x8007 0x542A > 192.168.1.48172.26.1.49 1 (DNA) 0x8003 0x8530 > 192.168.1.48192.168.101.101 1895 (DNA) 0x8005 0x6A0D > 192.168.1.64172.16.11.100 19710x8005 0xC1AD > 192.168.1.64172.26.1.49 678 (DNA) 0x8155 0x3D15 > 192.168.1.64192.168.101.101 1895 (DNA) 0x8008 0xCD95 > 192.168.101.101 192.168.101.101 1895 (DNA) 0x8007 0x527B > > any help will be appreciated > > D'Wayne Saunders > Network Admin Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=18008&t=18002 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: ospf [7:18002]
It means "Do Not Age", you will see that on routes learned over a demand circuit. Brian On Thu, 30 Aug 2001, Dwayne Saunders wrote: > Hi all, > is any one able to direct me in the right direction or be able to > explain what the (DNA) is in the sh ip ospf database > > Router Link States (Area 0) > > Link ID ADV Router Age Seq# Checksum Link count > 172.16.11.100 172.16.11.100 19700x8008 0x776B 5 > 172.26.1.49 172.26.1.49 5 (DNA) 0x8158 0xD943 1 > 192.168.101.101 192.168.101.101 1895 (DNA) 0x815E 0xDCE3 1 > > Summary Net Link States (Area 0) > > Link ID ADV Router Age Seq# Checksum > 172.26.1.17 172.26.1.49 678 (DNA) 0x8155 0x23F1 > 172.26.1.33 172.26.1.49 678 (DNA) 0x8155 0x8282 > 172.26.1.49 172.26.1.49 678 (DNA) 0x8155 0xE113 > 192.168.1.16172.16.11.100 19710x8006 0x9708 > 192.168.1.16172.26.1.49 1 (DNA) 0x815C 0x1B5F > 192.168.1.16192.168.101.101 1895 (DNA) 0x800A 0x97FB > 192.168.1.48172.16.11.100 19710x8007 0x542A > 192.168.1.48172.26.1.49 1 (DNA) 0x8003 0x8530 > 192.168.1.48192.168.101.101 1895 (DNA) 0x8005 0x6A0D > 192.168.1.64172.16.11.100 19710x8005 0xC1AD > 192.168.1.64172.26.1.49 678 (DNA) 0x8155 0x3D15 > 192.168.1.64192.168.101.101 1895 (DNA) 0x8008 0xCD95 > 192.168.101.101 192.168.101.101 1895 (DNA) 0x8007 0x527B > > any help will be appreciated > > D'Wayne Saunders > Network Admin I'm buying / selling used CISCO gear!! email me for a quote Brian Feeny, CCIE #8036 Netjam, LLC [EMAIL PROTECTED] http://www.netjam.net VISA/MC/AMEX/COD phone: 318-212-0245 30 day warranty fax: 318-212-0246 Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=18007&t=18002 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
24 port fast hub [7:18006]
where can I get a used 24 port cisco fast hub? Thanks! Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=18006&t=18006 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: hello all....terminal emulation software... [7:17968]
I believe TeraTerm Pro will also give you the same thing. You can also us ssh by installing TTSSH extension for it, and it's all free. "Baker, Jason" wrote: > try secure CRT > > > -Original Message- > > From: [EMAIL PROTECTED] [SMTP:[EMAIL PROTECTED]] > > Sent: Friday, 31 August 2001 8:33 am > > To: [EMAIL PROTECTED] > > Subject: hello allterminal emulation software... [7:17968] > > > > I am trying to locate a freeware terminal emulation software that will > > allow > > me to select com ports 5 and 6...hyperterm doesn't support anything beyond > > > > com4. I've installed a serial card that utilizes com5 and com6 only. I > > will > > be using these two ports to console into my routers. Anyhelp in finding a > > > > terminal software that does this is greatly appreciated. [GroupStudy.com removed an attachment of type text/x-vcard which had a name of rbains.vcf] Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=18005&t=17968 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: CCIE Lab Prep Guides [7:18004]
If you have not already heard www.bfq.com is offering FREE CCIE pod time in 6 hour session. The free BFQ Labs start Saturday 9AM EST. Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=18004&t=18004 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: T1 connections [7:17898]
Thank you all for clear instructions. I have them (DSU/CSU T1s) work with RJ-48C connectors. But, I cannot configurate 56/64K ones. There must be something else I need to learn about. Thank you all again, Tu Do. Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=18003&t=17898 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
ospf [7:18002]
Hi all, is any one able to direct me in the right direction or be able to explain what the (DNA) is in the sh ip ospf database Router Link States (Area 0) Link ID ADV Router Age Seq# Checksum Link count 172.16.11.100 172.16.11.100 19700x8008 0x776B 5 172.26.1.49 172.26.1.49 5 (DNA) 0x8158 0xD943 1 192.168.101.101 192.168.101.101 1895 (DNA) 0x815E 0xDCE3 1 Summary Net Link States (Area 0) Link ID ADV Router Age Seq# Checksum 172.26.1.17 172.26.1.49 678 (DNA) 0x8155 0x23F1 172.26.1.33 172.26.1.49 678 (DNA) 0x8155 0x8282 172.26.1.49 172.26.1.49 678 (DNA) 0x8155 0xE113 192.168.1.16172.16.11.100 19710x8006 0x9708 192.168.1.16172.26.1.49 1 (DNA) 0x815C 0x1B5F 192.168.1.16192.168.101.101 1895 (DNA) 0x800A 0x97FB 192.168.1.48172.16.11.100 19710x8007 0x542A 192.168.1.48172.26.1.49 1 (DNA) 0x8003 0x8530 192.168.1.48192.168.101.101 1895 (DNA) 0x8005 0x6A0D 192.168.1.64172.16.11.100 19710x8005 0xC1AD 192.168.1.64172.26.1.49 678 (DNA) 0x8155 0x3D15 192.168.1.64192.168.101.101 1895 (DNA) 0x8008 0xCD95 192.168.101.101 192.168.101.101 1895 (DNA) 0x8007 0x527B any help will be appreciated D'Wayne Saunders Network Admin Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=18002&t=18002 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
PIX Failover cable [7:18001]
Does anyone have the part number for the failover cable for a 515 PIX. Mine went MIA during a company move. I can't find on Cisco's or any vendor's site where I can order just the cable by itself. A part number would be really nice. Next best thing would be the pin out for the cable so I could (maybe) modify a standard cable. Couldn't find that either. Thanks. Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=18001&t=18001 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Dual Redundant Sups/MSFC's in 2 chassis config help [7:17999]
(Expand window) Just wanted to get some feedback on a project I'm starting. Current Topology: Internet | | External Router | Hub || || FW1 FW2 (running StoneBeat) (virtual IP=172.16.1.8) || || Layer 2 Switch (172.16.1.4) | | | Sw1-6500 (Running Hybrid w/dual SUP/MSFC-Routes all vlans) 172.16.1.1 || || || Layer 2 Access Switches (each switch trunks Staff and Student vlans to Sw1) Default route for above MSFC: ip route 0.0.0.0 0.0.0.0 172.16.1.8 I'm running HSRP between SUP#1/MSFC#1 and SUP#2/MSFC#2 What the Future Topology with an extra 6500 in the mix will look like: Internet | | External Router | Hub || || FW1 FW2 (running StoneBeat) (virtual IP=172.16.1.8) || || Layer 2 Switch (172.16.1.4) | | | | | | Sw1-6500 Sw2-6500 (Both running Hybrid w/dual SUP/MSFC...Routes all vlans) || || Layer 2 Access Switches (each switch trunks Staff vlan 10 to Sw1 and Student vlan 20 to Sw2) I want the most efficient way to route to internet, see below Here's how I plan on configuring HSRP for all of my vlans: Sw1-6500 SW2-6500 Slot1 Slot1 Sup#1/MSFC#1 Sup#1/MSFC#1 HSRP Active Vlan 10:Priority 110 HSRP Standby Vlan10:Priority 108 HSRP Standby Vlan20:Priority 109 HSRP Standby Vlan20:Priority 107 Sup#2/MSFC#2 Sup#2/MSFC#2 HSRP Active Vlan 10:Priority 108HSRP Standby Vlan10:Priority 110 HSRP Standby Vlan20:Priority 107 HSRP Standby Vlan20:Priority 109 My question is what's the best way to have Staff vlan10 go to the internet from SW1 and have Student vlan20 go to the internet through Sw2? I know I could have the same config as above (vlans 10 and 20) for vlan172 (172.16.1.0 network), but then all vlans would have to exit through only one of the switches. Anyone have any suggestions or should I just run the default route for all vlans out one switch? I really wanted to share the load evenly between the two. Thanks in advance. Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=17999&t=17999 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
LAN/Dial software (was Dial in/Dial Out modem bank) [7:17998]
I've recently been exposed to this product where I work. From what I've been told Cisco used to package it with their access servers (AS5200/5300). We have version 1.3 install for our people, but we went to the company's website and they have version 2.3 available which let's you authenticate to the access server before it dials out (if you have AAA setup for that). Basically, the software starts a telnet session with the access server on port 7xxx. The port number tells the access server which Dialer interface to use i.e. If you telnet to port 7001, it uses Dialer 1 to place the call. If you telnet to port 7002, it uses Dialer 2, and so forth. It really cool. We had Dialer 1 setup to accept calls and give out an IP and IPX address to callers. So we setup Dialer 2 with the settings needed for outgoing sessions. We configured the software to telnet to port 7002, and BAM! after authentication, it accepts the destination phone number(just like a good old modem would) and it dials out and connects the user. Very slick! You can purchase DialOut IP in both "per seat" or site licenses.. Here's a link to where you can find more info. http://www.tacticalsoftware.com/products.asp They have a fully functional (30-day) trial you can download. If you read their product summary, they have a list of compatible access servers, and Cisco is NOT on that list, however, I can personally assure you that it works with (at least) the 3600 series, and I don't see why it wouldn't work with any other router running Cisco IOS. Enjoy! Mike W. - Original Message - From: Tony Medeiros To: Michael Williams Sent: Thursday, August 30, 2001 7:18 PM Subject: Re: Dial in/Dial Out modem bank [7:17929] > Mike, > I have never heard of this "dialoutIP" software. Are you saying this > software will let a host control a cisco access server and direct it to call > whatever number the host whats? That is really trippy!! That has a lot > strange permutations and capabilities. Or am I just completly > misunderstanding your post ? Is this a Cisco product? Could you provide a > link please ? > > > Thanks a lot > Tony Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=17998&t=17998 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Dial in/Dial Out modem bank [7:17929]
Agreed that the last thing you want is a bunch of "back door" modems.. However, incoming access to them is locked down via Radius, and outgoing access is controlled via Radius and locked down software on the desktop... Mike W. "Tony Medeiros" wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > Yeah, And all the money people spend on firewalls and such. > Nothing like a bunch of "back door" modems to worry about too. That's why > security is not my favorite thing. It's half politics. > > Your right Brian, the horror. > Tony M. > #6172 > > > > You actually allow users to dial out from their desktops, while connected > > to a lan?? > > > > The horror of it.. > > > > Brian "Sonic" Whalen > > Success = Preparation + Opportunity > > > > > > On Thu, 30 Aug 2001, Jim Dixon wrote: > > > > > Cisco AS5300 should handled your needs nicely. > > > > > > > > > -Original Message- > > > From: Mike Momb [mailto:[EMAIL PROTECTED]] > > > Sent: Thursday, August 30, 2001 2:56 PM > > > To: [EMAIL PROTECTED] > > > Subject: Dial in/Dial Out modem bank [7:17929] > > > > > > > > > To all you cisco wizards, > > > > > > What Cisco product would you recommend for dial in/dial out capability > on a > > > LAN. We have many users who dial into our network and do work from > home. > > > We also have users that would like to dial out from their desktop > without > > > using stand alone modems. Something that would handle at least 16 > > > simultaneous users. We currently use a product that is slow and > sometimes > > > it locks up. Any advice/input would be appreciated. > > > > > > Mike Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=17997&t=17929 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Just Finished CCNP & CCDP [7:17850]
Jojo, Congratulations! Onwards to the CCIE. Regards, Arthur PS: Are you from the Philippines? Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=17996&t=17850 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Dial in/Dial Out modem bank [7:17929]
We're doing exactly what you mention with our access server with digital modem module and 2 ISDN-PRI lines using Radius authentication. See my previous post. "EA Louie" wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > no no no, Bri - that's a GOOD thing. > > 1. you can authenticate them for access to dial-out > 2. you consolidate (pool) the resource, so that fewer dedicated outbound > lines are required > 3. it's more secure (no one can set their desktop up to answer a modem call > thereby remvoing that security threat) > 4. people tend to abuse it less because they feel they're being monitored > (the centralized paranoia syndrome) > 5. easier to maintain than individual dial modems scattered all over the > office/building/campus > > It works GREAT when implemented properly. The only support problem becomes > the absolutely clueless users, and they're always a problem anyway, so > that's a wash. ;-) > > Enterprise networking...what a concept! > > -e- > > - Original Message - > From: "Brian Whalen" > To: > Sent: Thursday, August 30, 2001 3:43 PM > Subject: RE: Dial in/Dial Out modem bank [7:17929] > > > > You actually allow users to dial out from their desktops, while connected > > to a lan?? > > > > The horror of it.. > > > > Brian "Sonic" Whalen > > Success = Preparation + Opportunity > > > > > > On Thu, 30 Aug 2001, Jim Dixon wrote: > > > > > Cisco AS5300 should handled your needs nicely. > > > > > > > > > -Original Message- > > > From: Mike Momb [mailto:[EMAIL PROTECTED]] > > > Sent: Thursday, August 30, 2001 2:56 PM > > > To: [EMAIL PROTECTED] > > > Subject: Dial in/Dial Out modem bank [7:17929] > > > > > > > > > To all you cisco wizards, > > > > > > What Cisco product would you recommend for dial in/dial out capability > on a > > > LAN. We have many users who dial into our network and do work from > home. > > > We also have users that would like to dial out from their desktop > without > > > using stand alone modems. Something that would handle at least 16 > > > simultaneous users. We currently use a product that is slow and > sometimes > > > it locks up. Any advice/input would be appreciated. > > > > > > Mike > _ > Do You Yahoo!? > Get your free @yahoo.com address at http://mail.yahoo.com Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=17995&t=17929 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
PIX static command and em_limit - SYN attack [7:17994]
I am installing a PIX. In the static commands the last switch is for the limit on embryonic connects. static (DMZ,outside) X.X.X.15 192.168.1.13 netmask 255.255.255.255 0 0 <--- Every sample configuration I have seen leaves this value at 0. I hate to bring logic into this but, logic tells me that I would want to put a limit on embryonic sessions to protect against SYN attacks. What is a reasonable limit to put on this balancing security and availability? 20, 100, 500? What value do you use in real world implementations??? >From CCO: watch the wrap. http://www.cisco.com/univercd/cc/td/doc/product/iaabu/pix/pix_v53/config/com mands.htm#xtocid1006867 The embryonic connection limit. An embryonic connection is one that has started but not yet completed. Set this limit to prevent attack by a flood of embryonic connections. The default is 0, which means unlimited connections ^-^-^-^-^-^-^-^-^-^-^ Bill Carter CCIE 5022 ^-^-^-^-^-^-^-^-^-^-^ Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=17994&t=17994 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
New 24 hour Cisco Chat room [7:17993]
HELLO ALL: I created a 24x7 chat room, for cisco routers, Switch and Certification Chat, with voice enabled. go to: www.yahoo.com--->Chat--->Computers and Internet--->User Rooms---> cisco routers, Switches and Cert 1 REGARDS, Jess Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=17993&t=17993 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Mac VPN client [7:17992]
Does anyone know if there is a mac VPN client that will work with the Cisco PIX 525 6.x? Do folks use a VPN client if they are connecting through the PIX and connecting to a Unix/Linux box in the internal network or just SSH? Thanks. Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=17992&t=17992 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: OT - Cisco clothes [7:17965]
That damn Cisco clothing is expensive isn't it? It's the same price even if you buy on campus at their trendy internal McWhorters stores. Yet, Almost everyone that works at Cisco wears that expensive stuff. I wonder what margin Cisco is making on their own employees ? T - Original Message - From: "Dennis Laganiere" To: Sent: Thursday, August 30, 2001 3:23 PM Subject: OT - Cisco clothes [7:17965] > This is so severely off-topic, you can't imagine. There has never been > anything as off-topic as this, believe me. > > I was just buying a bunch of Cisco cloths from the CCO (marketplace) and it > asked for a coupon. Before I check out, has anybody got a coupon? (if I > get a discount, my wife might not be so p**sed about my spending a couple of > hundred on shirts...:-) > > I told you this was off-topic... > > Thanks... > > --- Dennis Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=17991&t=17965 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Dial in/Dial Out modem bank [7:17929]
Yeah, And all the money people spend on firewalls and such. Nothing like a bunch of "back door" modems to worry about too. That's why security is not my favorite thing. It's half politics. Your right Brian, the horror. Tony M. #6172 > You actually allow users to dial out from their desktops, while connected > to a lan?? > > The horror of it.. > > Brian "Sonic" Whalen > Success = Preparation + Opportunity > > > On Thu, 30 Aug 2001, Jim Dixon wrote: > > > Cisco AS5300 should handled your needs nicely. > > > > > > -Original Message- > > From: Mike Momb [mailto:[EMAIL PROTECTED]] > > Sent: Thursday, August 30, 2001 2:56 PM > > To: [EMAIL PROTECTED] > > Subject: Dial in/Dial Out modem bank [7:17929] > > > > > > To all you cisco wizards, > > > > What Cisco product would you recommend for dial in/dial out capability on a > > LAN. We have many users who dial into our network and do work from home. > > We also have users that would like to dial out from their desktop without > > using stand alone modems. Something that would handle at least 16 > > simultaneous users. We currently use a product that is slow and sometimes > > it locks up. Any advice/input would be appreciated. > > > > Mike Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=17990&t=17929 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Dial in/Dial Out modem bank [7:17929]
I have a really huge level of paranoia about a network connected puter also being connected via modem, especially to an isp. Brian "Sonic" Whalen Success = Preparation + Opportunity On Thu, 30 Aug 2001, EA Louie wrote: > no no no, Bri - that's a GOOD thing. > > 1. you can authenticate them for access to dial-out > 2. you consolidate (pool) the resource, so that fewer dedicated outbound > lines are required > 3. it's more secure (no one can set their desktop up to answer a modem call > thereby remvoing that security threat) > 4. people tend to abuse it less because they feel they're being monitored > (the centralized paranoia syndrome) > 5. easier to maintain than individual dial modems scattered all over the > office/building/campus > > It works GREAT when implemented properly. The only support problem becomes > the absolutely clueless users, and they're always a problem anyway, so > that's a wash. ;-) > > Enterprise networking...what a concept! > > -e- > > - Original Message - > From: "Brian Whalen" > To: > Sent: Thursday, August 30, 2001 3:43 PM > Subject: RE: Dial in/Dial Out modem bank [7:17929] > > > > You actually allow users to dial out from their desktops, while connected > > to a lan?? > > > > The horror of it.. > > > > Brian "Sonic" Whalen > > Success = Preparation + Opportunity > > > > > > On Thu, 30 Aug 2001, Jim Dixon wrote: > > > > > Cisco AS5300 should handled your needs nicely. > > > > > > > > > -Original Message- > > > From: Mike Momb [mailto:[EMAIL PROTECTED]] > > > Sent: Thursday, August 30, 2001 2:56 PM > > > To: [EMAIL PROTECTED] > > > Subject: Dial in/Dial Out modem bank [7:17929] > > > > > > > > > To all you cisco wizards, > > > > > > What Cisco product would you recommend for dial in/dial out capability > on a > > > LAN. We have many users who dial into our network and do work from > home. > > > We also have users that would like to dial out from their desktop > without > > > using stand alone modems. Something that would handle at least 16 > > > simultaneous users. We currently use a product that is slow and > sometimes > > > it locks up. Any advice/input would be appreciated. > > > > > > Mike > _ > Do You Yahoo!? > Get your free @yahoo.com address at http://mail.yahoo.com Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=17989&t=17929 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: CCIE Equipment Discounts [7:17980]
- Original Message - From: "Thomas Moore" To: Sent: Thursday, August 30, 2001 4:15 PM Subject: CCIE Equipment Discounts [7:17980] > Hi All... > > I am trying to cost-justify my employer paying for my CCIE Written and lab - > they've paid for me CCNP and CCDP but now are a little hesitant for the CCIE > due to budget constraints. I've heard over and over again that CCIE's can > get a discount on Cisco equipment, I've actually heard that it was 50%, by > themselves once they are CCIE certified. I've been trying to find supporting > documentation for this but have not been able too. > When I worked at AT&T, we had a 40% discount, which I think is the max one could expect. Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=17988&t=17980 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: 2610 Router for sale [7:17984]
Hey... if a router has a "D-MZ" image on it, does that mean it's got the firewall feature set? R-R-R! Oh I'm just such a commedienne today! (-: > -Original Message- > From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of > Terence > Sent: Thursday, August 30, 2001 5:42 PM > To: [EMAIL PROTECTED] > Subject: 2610 Router for sale [7:17984] > > > Hey Guys/Girls, > I have 3 2610 Cisco routers for sale. They are in great condition. Was > used at a client site that were replaced with 3600 series routers. Here is > the spec's: > > Cisco Internetwork Operating System Software > IOS (tm) C2600 Software (C2600-D-M), Version 12.0(5)T1, RELEASE SOFTWARE > (fc1) > Copyright (c) 1986-1999 by cisco Systems, Inc. > Compiled Tue 17-Aug-99 13:11 by cmong > Image text-base: 0x80008088, data-base: 0x80859E60 > > ROM: System Bootstrap, Version 11.3(2)XA4, RELEASE SOFTWARE (fc1) > > Router uptime is 0 minutes > System returned to ROM by power-on > System image file is "flash:c2600-d-mz.120-5.T1.bin" > > cisco 2610 (MPC860) processor (revision 0x202) with 26624K/6144K bytes of > memory > FAQ, list archives, and subscription info: > http://www.groupstudy.com/list/cisco.html > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=17987&t=17984 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Dial in/Dial Out modem bank [7:17929]
no no no, Bri - that's a GOOD thing. 1. you can authenticate them for access to dial-out 2. you consolidate (pool) the resource, so that fewer dedicated outbound lines are required 3. it's more secure (no one can set their desktop up to answer a modem call thereby remvoing that security threat) 4. people tend to abuse it less because they feel they're being monitored (the centralized paranoia syndrome) 5. easier to maintain than individual dial modems scattered all over the office/building/campus It works GREAT when implemented properly. The only support problem becomes the absolutely clueless users, and they're always a problem anyway, so that's a wash. ;-) Enterprise networking...what a concept! -e- - Original Message - From: "Brian Whalen" To: Sent: Thursday, August 30, 2001 3:43 PM Subject: RE: Dial in/Dial Out modem bank [7:17929] > You actually allow users to dial out from their desktops, while connected > to a lan?? > > The horror of it.. > > Brian "Sonic" Whalen > Success = Preparation + Opportunity > > > On Thu, 30 Aug 2001, Jim Dixon wrote: > > > Cisco AS5300 should handled your needs nicely. > > > > > > -Original Message- > > From: Mike Momb [mailto:[EMAIL PROTECTED]] > > Sent: Thursday, August 30, 2001 2:56 PM > > To: [EMAIL PROTECTED] > > Subject: Dial in/Dial Out modem bank [7:17929] > > > > > > To all you cisco wizards, > > > > What Cisco product would you recommend for dial in/dial out capability on a > > LAN. We have many users who dial into our network and do work from home. > > We also have users that would like to dial out from their desktop without > > using stand alone modems. Something that would handle at least 16 > > simultaneous users. We currently use a product that is slow and sometimes > > it locks up. Any advice/input would be appreciated. > > > > Mike _ Do You Yahoo!? Get your free @yahoo.com address at http://mail.yahoo.com Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=17986&t=17929 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
2610 Router for sale [7:17984]
Hey Guys/Girls, I have 3 2610 Cisco routers for sale. They are in great condition. Was used at a client site that were replaced with 3600 series routers. Here is the spec's: Cisco Internetwork Operating System Software IOS (tm) C2600 Software (C2600-D-M), Version 12.0(5)T1, RELEASE SOFTWARE (fc1) Copyright (c) 1986-1999 by cisco Systems, Inc. Compiled Tue 17-Aug-99 13:11 by cmong Image text-base: 0x80008088, data-base: 0x80859E60 ROM: System Bootstrap, Version 11.3(2)XA4, RELEASE SOFTWARE (fc1) Router uptime is 0 minutes System returned to ROM by power-on System image file is "flash:c2600-d-mz.120-5.T1.bin" cisco 2610 (MPC860) processor (revision 0x202) with 26624K/6144K bytes of memory FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Connect 6509 with CONSOLE [7:17983]
Hi All, I attempted to access to the CAT 6509 with the CONSOLE port today. This 6509 is in production. It appeared that I didn't get any output on my HyperTerminal. My HyperTerminal setting is: 9600 bits per second, Data bits = 8, Parity = none, Stope bit = 2 (as indicated on Cisco.com), Flow control = none. There's also a little hidden hole right next to the CONSOLE port labelled as "Console mode...". I don't know if I have to change something to access the console? Also, if I have to press that hidden hole to access the Console mode, will it affect the production enviroment? Thanks All in advance! Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=17983&t=17983 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: CCIE Equipment Discounts [7:17980]
POP Resellers can have different levels (Premier, Silver, and Gold) depending on quite a few factors. One of the factors is the # of CCIE's on staff. Each different level of partner receives a different percentage off of list price on hardware. There is also some special pricing for certain industry sectors (education, governement, etc). A CCIE by him or herself does not receive any special pricing. I sure wish we did!!! That's a good idea to pass on to your local Cisco rep. CCIE's can purchase gear at 80% off list!!! (Cisco internal pricing). That would rock! -Brad Ellis CCIE#5796 [EMAIL PROTECTED] used Cisco: www.optsys.net ""Thomas Moore"" wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > Hi All... > > I am trying to cost-justify my employer paying for my CCIE Written and lab - > they've paid for me CCNP and CCDP but now are a little hesitant for the CCIE > due to budget constraints. I've heard over and over again that CCIE's can > get a discount on Cisco equipment, I've actually heard that it was 50%, by > themselves once they are CCIE certified. I've been trying to find supporting > documentation for this but have not been able too. > > I would appreciate any help in pointing me to where I can find some > documentation for discounts for a CCIE, or pop my bubble and tell me it > isn't so :-( > > Thanks! > > Thomas Moore > CCNP, CCDP Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=17982&t=17980 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
CCIE Equipment Discounts [7:17980]
Hi All... I am trying to cost-justify my employer paying for my CCIE Written and lab - they've paid for me CCNP and CCDP but now are a little hesitant for the CCIE due to budget constraints. I've heard over and over again that CCIE's can get a discount on Cisco equipment, I've actually heard that it was 50%, by themselves once they are CCIE certified. I've been trying to find supporting documentation for this but have not been able too. I would appreciate any help in pointing me to where I can find some documentation for discounts for a CCIE, or pop my bubble and tell me it isn't so :-( Thanks! Thomas Moore CCNP, CCDP Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=17980&t=17980 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: hello all....terminal emulation software... [7:17968]
try secure CRT > -Original Message- > From: [EMAIL PROTECTED] [SMTP:[EMAIL PROTECTED]] > Sent: Friday, 31 August 2001 8:33 am > To: [EMAIL PROTECTED] > Subject: hello allterminal emulation software... [7:17968] > > I am trying to locate a freeware terminal emulation software that will > allow > me to select com ports 5 and 6...hyperterm doesn't support anything beyond > > com4. I've installed a serial card that utilizes com5 and com6 only. I > will > be using these two ports to console into my routers. Anyhelp in finding a > > terminal software that does this is greatly appreciated. Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=17979&t=17968 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Just Finished CCNP & CCDP [7:17850]
Congrats man. If you don't mind me asking I am studying for the CCDA right now as we speak which of the CCDA books did you find the most helpful? Or was it a combination of both? Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=17978&t=17850 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: hello all....terminal emulation software... [7:17968]
securecrt, and presumably crt do. Its shareware, not freeware, but is obtainable at www.vandyke.com. Brian "Sonic" Whalen Success = Preparation + Opportunity On Thu, 30 Aug 2001, [EMAIL PROTECTED] wrote: > I am trying to locate a freeware terminal emulation software that will allow > me to select com ports 5 and 6...hyperterm doesn't support anything beyond > com4. I've installed a serial card that utilizes com5 and com6 only. I > will > be using these two ports to console into my routers. Anyhelp in finding a > terminal software that does this is greatly appreciated. Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=17977&t=17968 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: 2600 8meg flash [7:17963]
www.rockymountainram.com I've had nothing but high quality and low prices from them. Never once have I had a problem with their RAM and I've bought DRAM for 2500, 2600, 3600, and 7500 routers and flash for 2600 and 3600 routers. John >>> "Bob Lepine" 8/30/01 4:19:20 PM >>> Hi, I just got the advice last week that to get a 2600 router to accept a dhcp number I would need an upgrade to the IOS. Got it! But oops, not enough flash memory space! How difficult will it be to increase it and where should I go? Any prices etc... -- Bob Lepine MCSE,MCDBA,CNA,CCNA,MCT Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=17975&t=17963 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: OT - Cisco clothes [7:17965]
That's not too off-topic. At least it's about Cisco! ;-) Now if you were discussing Juniper clothing...*that's* off topic! >>> "Dennis Laganiere" 8/30/01 4:23:58 PM >>> This is so severely off-topic, you can't imagine. There has never been anything as off-topic as this, believe me. I was just buying a bunch of Cisco cloths from the CCO (marketplace) and it asked for a coupon. Before I check out, has anybody got a coupon? (if I get a discount, my wife might not be so p**sed about my spending a couple of hundred on shirts...:-) I told you this was off-topic... Thanks... --- Dennis Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=17976&t=17965 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Dial in/Dial Out modem bank [7:17929]
Why's that so horrible? Sometimes it's the only solution.. Mike W. "Brian Whalen" wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > You actually allow users to dial out from their desktops, while connected > to a lan?? > > The horror of it.. > > Brian "Sonic" Whalen > Success = Preparation + Opportunity > > > On Thu, 30 Aug 2001, Jim Dixon wrote: > > > Cisco AS5300 should handled your needs nicely. > > > > > > -Original Message- > > From: Mike Momb [mailto:[EMAIL PROTECTED]] > > Sent: Thursday, August 30, 2001 2:56 PM > > To: [EMAIL PROTECTED] > > Subject: Dial in/Dial Out modem bank [7:17929] > > > > > > To all you cisco wizards, > > > > What Cisco product would you recommend for dial in/dial out capability on a > > LAN. We have many users who dial into our network and do work from home. > > We also have users that would like to dial out from their desktop without > > using stand alone modems. Something that would handle at least 16 > > simultaneous users. We currently use a product that is slow and sometimes > > it locks up. Any advice/input would be appreciated. > > > > Mike Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=17973&t=17929 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Fwd: PIX Firewall -------- Replacement Strategy [7:17951]
We have a PIX failover bundle. Our Primary PIX failed and we powered it off. Now we have another PIX and we have to connect it. What should be the strategy so that no outage occurs. I think if we put the new PIX (without any Config) to the Primary end of Failover cable it would be the Active and would sync all its config to the second box (that would be a disaster) Please suggest the steps we should follow??? Much Appreciated _ Get your FREE download of MSN Explorer at http://explorer.msn.com/intl.asp _ Get your FREE download of MSN Explorer at http://explorer.msn.com/intl.asp Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=17972&t=17951 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Offtopic: Sun Solaris Admin [7:17684]
Hmm, didnt really stop to think about the diff between g and q, and that in a quick glance, someone may misinterpret. Apologies to anyone offended.. Brian "Sonic" Whalen Success = Preparation + Opportunity On Thu, 30 Aug 2001, Donald B Johnson jr wrote: > yo bri you better watch you mucho faqage. > Don't say you aint been warned. > > > > - Original Message - > From: "Brian Whalen" > To: > Sent: Wednesday, August 29, 2001 6:40 PM > Subject: Re: Offtopic: Sun Solaris Admin [7:17684] > > > > There are lots of mailing lists and newsgroups. For newsgroups, there are > > a few comp.sys.sun groups, and some yahoo clubs; I'm sure others can be > > found with some searching. www.sunhelp.org is useful, as is the sun > > managers list. A site for that is www.sunmanagers.org. Both of these > > last 2 sites have mucho faqage.. > > > > Brian "Sonic" Whalen > > Success = Preparation + Opportunity > > > > > > On Wed, 29 Aug 2001, Rob Bains wrote: > > > > > Try solcert on yahoo. There are a couple of sun related lists on Yahoo, > > but > > > solcert is > > > a good starting point. > > > > > > > Rob > > > > > > Admin wrote: > > > > > > > hi all, > > > > > > > > do you know of a similar discussion group dedicated to Unix/Sun > Solaris > > > Admin > > > > certification ? > > > > > > > > have to get solaris admin cert to retain my job. > > > > > > > > thanks > > > > > > [GroupStudy.com removed an attachment of type text/x-vcard which had a > name > > > of rbains.vcf] Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=17974&t=17684 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Dial in/Dial Out modem bank [7:17929]
You actually allow users to dial out from their desktops, while connected to a lan?? The horror of it.. Brian "Sonic" Whalen Success = Preparation + Opportunity On Thu, 30 Aug 2001, Jim Dixon wrote: > Cisco AS5300 should handled your needs nicely. > > > -Original Message- > From: Mike Momb [mailto:[EMAIL PROTECTED]] > Sent: Thursday, August 30, 2001 2:56 PM > To: [EMAIL PROTECTED] > Subject: Dial in/Dial Out modem bank [7:17929] > > > To all you cisco wizards, > > What Cisco product would you recommend for dial in/dial out capability on a > LAN. We have many users who dial into our network and do work from home. > We also have users that would like to dial out from their desktop without > using stand alone modems. Something that would handle at least 16 > simultaneous users. We currently use a product that is slow and sometimes > it locks up. Any advice/input would be appreciated. > > Mike Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=17971&t=17929 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Edit an ACL Entry [7:17854]
Hi, I would consider this a dangerous way to do it. I would prefer to see: Copy the access-list into an edit (notepad). Change the access-list number. Delete or change what is required. Copy the access-list back into the router. Check the entry. Save the config. THEN Set a reload time for the router (2 Mins) Configure the interface to fire up the new access-list. If you still have access to the router kill the reload request. Test for all conditions. On success SAVE THE CONFIG. Delete second ot third backup access-list keeping the one you have just changed for roll back or historical purposes. This way should you have a flaw in your access-list you can roll back. By not saving the config until after the testing in a worse case scenario you only need to reboot the router to get it back into the previous working mode. When changing access-lists across States or in say from Australia to the US it becomes a bit of a job to fix an error or turn on a router. Just a thought Teunis, Hobart, Tasmania Australia On Thursday, August 30, 2001 at 09:16:08 AM, McCallum. Robert wrote: > copy your access list to say notepad. take out the offending item then copy > the access list to your clipboard. Then go onto the Cisco router say no > access-list blah and then paste the contents of the clipboard in. There is > no other way. > > -Original Message- > From: atram [mailto:[EMAIL PROTECTED]] > Sent: 30 August 2001 13:54 > To: [EMAIL PROTECTED] > Subject: Edit an ACL Entry [7:17854] > > > Simple question that I'm obviously having a brain fart on. > > How to remove an entry from an ACL? > > Is there a specific command or technique for removing an entry. In testing > I have noticed that the "no" command infront of the statement will delete > the entire ACL. > > I'm sure someone can provide the answer pretty quickly. > > Pardon my ingnorance. Kind of blanking out on this for some reason. > > > Thanks in advance! -- www.tasmail.com Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=17970&t=17854 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: BMC Patrol [7:17794]
The use of geek twice in an e-mail will always set me off. I'm an Engineer. P.S. Oh and since I'm a geek I thought a few buzz-word acronyms would be nice. No? P.S.S. I don't have any DBA's I made that part up. P.S.S.S. I thought in all that non-sense there were two good questions, namely; How do you know it is a good deal? It aint worth five bucks if its broke. Since you have been evaluating it why don't you share your findings? Me thinks the evaluation period was a power point sales presentation and maybe a demo copy for the laptop. Yeah lets launch. - Original Message - From: "John Neiberger" To: Cc: Sent: Thursday, August 30, 2001 3:05 PM Subject: Re: BMC Patrol [7:17794] > No offense, Don, but did you smoke something illegal before writing that > email?? ;-) I'm having trouble figuring out why you even bothered to > reply considering your post was only ranting about PIXes and DBAs on > vacation! > > Do you know something about that app or not? If not, why bother > replying just to rip into the guy? > > Heck, I don't even know why I'm responding to you, either. It's not > my place to be the content cop, but good grief if you honestly have > nothing whatsoever to contribute to a thread, why waste the bandwidth? > > Okay, I admit, I'm a little grumpy today but I won't blame you for > that. :-) I'll go crawl back into my hole for the rest of the > afternoon. > > John > > p.s. What does PIXes in the lab have to do with your ASP and ERP going > into a tizzy because DBAs are on vacation? Does that make sense to > anyone?? I must have missed something somewhere along the line. > > >>> "Donald B Johnson jr" 8/30/01 3:59:49 PM > >>> > Well hello there CIO lackey geek. How do you know it is a good deal. I > try a > guess, the geek salesman told you that it retails for 59.95 but he will > sell > it to you for 39.95. > You have been evaluating it why don't you share your findings. > Sorry I'm a little edgy Brad just hinted at the possibility of a PIX on > the > Lab so that throw my ASP and ERP into a full blown tizzy cause all the > DBA's > are sucking snow cones for an extended holiday weekend. You know I only > have > 4 Megs of RAM and D-Day late May. > hey good luck with that usless app. > Don > > > - Original Message - > From: "350mhz" > To: > Sent: Wednesday, August 29, 2001 8:08 PM > Subject: BMC Patrol [7:17794] > > > > Hi Cisco Geeks, > > > > > > We are evaluating a new product from BMC called Patrol DashBoard and > > Patrol Visualis. I am told by the Sales Geeks that this product is > > fairly new; therefore it's been rough getting feed back. So I turn > to > > you. What is the word? Who has used it, what are the Pro and Cons? > Is > > this company worth dealing with? They are cutting us a good deal and > the > > CIO is about to go for it unless I can dig up some dirt. > > > > > > Thank > > Rob Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=17969&t=17794 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Logging in Cisco Router: Will it decrease router's [7:17967]
For the sake of long term data gathering, performance history etc, that is enuff to make me want to use a separate server.. Brian "Sonic" Whalen Success = Preparation + Opportunity On Thu, 30 Aug 2001, Michael Williams wrote: > > I have 2 options here: > > Option 1 : redirect the syslog message to Linux box > > Pro: easier to manage, need not connect to router > > Con: need a linux server > > Actually, I use a great *FREE* syslog Daemon for Windows from Kiwi > Enterprises. I run it in the background on my workstation. You can > download it here: > > http://www.kiwi-enterprises.com > > > Option 2 : keep log in router > > Pro: dont need extra linux server > > Con: log message size restricted > > > > Doubts: > > Most probably I will choose Option2 but my worry is > > "will the logging process affect the router's > > performance? especially the memory of router.." > > Actually, writing the log to memory takes the least CPU time of all logging > options. As you pointed out, you don't waste all of your routers memory for > logging. But you could at least check the amount of memory being used > regularly and then use anything above that for logging. > > Check out that link I put in above. That software is free and they don't > list minimum CPU/Memory for the PC, so I'd assume that you can run it on any > PC that can run Win95/98 with a NIC. > > Mike W. Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=17967&t=17967 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
hello all....terminal emulation software... [7:17968]
I am trying to locate a freeware terminal emulation software that will allow me to select com ports 5 and 6...hyperterm doesn't support anything beyond com4. I've installed a serial card that utilizes com5 and com6 only. I will be using these two ports to console into my routers. Anyhelp in finding a terminal software that does this is greatly appreciated. Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=17968&t=17968 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
OT - Cisco clothes [7:17965]
This is so severely off-topic, you can't imagine. There has never been anything as off-topic as this, believe me. I was just buying a bunch of Cisco cloths from the CCO (marketplace) and it asked for a coupon. Before I check out, has anybody got a coupon? (if I get a discount, my wife might not be so p**sed about my spending a couple of hundred on shirts...:-) I told you this was off-topic... Thanks... --- Dennis Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=17965&t=17965 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: BMC Patrol [7:17794]
No offense, Don, but did you smoke something illegal before writing that email?? ;-) I'm having trouble figuring out why you even bothered to reply considering your post was only ranting about PIXes and DBAs on vacation! Do you know something about that app or not? If not, why bother replying just to rip into the guy? Heck, I don't even know why I'm responding to you, either. It's not my place to be the content cop, but good grief if you honestly have nothing whatsoever to contribute to a thread, why waste the bandwidth? Okay, I admit, I'm a little grumpy today but I won't blame you for that. :-) I'll go crawl back into my hole for the rest of the afternoon. John p.s. What does PIXes in the lab have to do with your ASP and ERP going into a tizzy because DBAs are on vacation? Does that make sense to anyone?? I must have missed something somewhere along the line. >>> "Donald B Johnson jr" 8/30/01 3:59:49 PM >>> Well hello there CIO lackey geek. How do you know it is a good deal. I try a guess, the geek salesman told you that it retails for 59.95 but he will sell it to you for 39.95. You have been evaluating it why don't you share your findings. Sorry I'm a little edgy Brad just hinted at the possibility of a PIX on the Lab so that throw my ASP and ERP into a full blown tizzy cause all the DBA's are sucking snow cones for an extended holiday weekend. You know I only have 4 Megs of RAM and D-Day late May. hey good luck with that usless app. Don - Original Message - From: "350mhz" To: Sent: Wednesday, August 29, 2001 8:08 PM Subject: BMC Patrol [7:17794] > Hi Cisco Geeks, > > > We are evaluating a new product from BMC called Patrol DashBoard and > Patrol Visualis. I am told by the Sales Geeks that this product is > fairly new; therefore it's been rough getting feed back. So I turn to > you. What is the word? Who has used it, what are the Pro and Cons? Is > this company worth dealing with? They are cutting us a good deal and the > CIO is about to go for it unless I can dig up some dirt. > > > Thank > Rob Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=17964&t=17794 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
2600 8meg flash [7:17963]
Hi, I just got the advice last week that to get a 2600 router to accept a dhcp number I would need an upgrade to the IOS. Got it! But oops, not enough flash memory space! How difficult will it be to increase it and where should I go? Any prices etc... -- Bob Lepine MCSE,MCDBA,CNA,CCNA,MCT Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=17963&t=17963 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Dial in/Dial Out modem bank [7:17929]
Mike, I'm sure you could use a 26xx to do what you want. Just yesterday I put this system into place: Cisco 3640 (you could easily use 3620 as well) 1 - Dual-Channelized T1 with CSU module 2 - Digital Modem module with 24 modems each We run two ISDN-PRI connections to the T1 controllers, and can handle any combination of calls up to 46 single channel ISDN-BRI, 23 dual channel ISDN-BRI or 46 analog modem calls. (i.e. we have 46 lines coming in on the two PRIs) We also use DialOutIP software to allow people to place modem calls from their desktop PCs over the IP LAN. Works like a charm! For your setup you could use either a 2 module 2600 or 3600. Get a single T1 controller (with built-in CSU is nice) module and get a single ISDN-PRI line to connect to it. As your second module, get the digital modem module, and outfit it with 24 modems (can have from 6 to 30 in increments of 6). At that point you can handle up to 23 incoming/outgoing calls at once, either analog or ISDN (for flexibility). That coupled with DialOutIP sounds like the perfect solution to your situation. =) We're running Radius for authentication, as some people call in to get IP/IPX services and some people call in simply to redirected to a telnet session with a specific box on the network (and we network admins dial in to gain access to the router itself). So don't forget you need a AAA component as well. Here are the parts you could use: (careful of wrap in the following URLs) Cisco 3620 router with: Digital Modem Module http://www.cisco.com/univercd/cc/td/doc/pcat/dimdnep1.htm and Channelized T1 PRI module (NM-1CT1-CSU) http://www.cisco.com/univercd/cc/td/doc/pcat/cht1isp1.htm OR you could use: Cisco 26xx router (choose which you want) with: Serial WAN interface WIC (WIC-1T) with external CSU http://www.cisco.com/univercd/cc/td/doc/pcat/sewn__y2.htm and Digital Modem Module http://www.cisco.com/univercd/cc/td/doc/pcat/dimdnep1.htm Now don't quote me on the 2600 setup, as I'm speculating this is what you would need.. You can check out the following page for more options for the WIC slots on the 2600: http://www.cisco.com/univercd/cc/td/doc/pcat/index.htm#CFHJDBFH HTH, Mike W. Mike Momb wrote: > > To all you cisco wizards, > > What Cisco product would you recommend for dial in/dial out > capability on a LAN. We have many users who dial into our > network and do work from home. We also have users that would > like to dial out from their desktop without using stand alone > modems. Something that would handle at least 16 simultaneous > users. We currently use a product that is slow and sometimes > it locks up. Any advice/input would be appreciated. > > Mike Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=17962&t=17929 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Offtopic: Sun Solaris Admin [7:17684]
yo bri you better watch you mucho faqage. Don't say you aint been warned. - Original Message - From: "Brian Whalen" To: Sent: Wednesday, August 29, 2001 6:40 PM Subject: Re: Offtopic: Sun Solaris Admin [7:17684] > There are lots of mailing lists and newsgroups. For newsgroups, there are > a few comp.sys.sun groups, and some yahoo clubs; I'm sure others can be > found with some searching. www.sunhelp.org is useful, as is the sun > managers list. A site for that is www.sunmanagers.org. Both of these > last 2 sites have mucho faqage.. > > Brian "Sonic" Whalen > Success = Preparation + Opportunity > > > On Wed, 29 Aug 2001, Rob Bains wrote: > > > Try solcert on yahoo. There are a couple of sun related lists on Yahoo, > but > > solcert is > > a good starting point. > > > > > Rob > > > > Admin wrote: > > > > > hi all, > > > > > > do you know of a similar discussion group dedicated to Unix/Sun Solaris > > Admin > > > certification ? > > > > > > have to get solaris admin cert to retain my job. > > > > > > thanks > > > > [GroupStudy.com removed an attachment of type text/x-vcard which had a name > > of rbains.vcf] Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=17959&t=17684 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
PBX Fundamentals [7:17961]
All right! I've e-mailed my SE at Cisco and was not able to get the answer I was looking for. Where in the world do I find the correct training material for the PBX Fundamentals Exam. PEC has a course but I took the test and it asks questions like "What type or workstation can you control an Lucent blah, blah, blah..." This material is diffidently not in the course in the PEC. I searched the Archives and someone gave reference to a set or PowerPoint's that have all of this obscure information in them. If someone could help me locate this stuff I'd appreciate it dearly. Keith Townsend Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=17961&t=17961 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: vlans [7:17919]
Yes true on the trunk but I have seen organizations set up a big flat network using VLAN1, my point is leave VLAN 1 for management and put your uers on another/other VLANS is a good rule of thumb. Dave Leigh Anne Chisholm wrote: > > Actually, you'll find that there's a problem when any two VLANs share a > trunk link. A very simple technique to get around this problem is to use > redundant links. Typically Spanning Tree Protocol would disable the second > link, but an administrator could tune the STP parameters so that traffic > from VLAN A could pass over link A - link B would be blocked. Traffic from > VLAN B could pass over link B - link A would be blocked. Oh the joys of > per-VLAN Spanning Tree. > > -- Leigh Anne > > > -Original Message- > > From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of > > MADMAN > > Sent: Thursday, August 30, 2001 2:19 PM > > To: [EMAIL PROTECTED] > > Subject: Re: vlans [7:17919] > > > > > > Both VLAN are hosed. This is EXACTLY why you want to leave VLAN 1 > > alone as it is the default VLAN and is used by the switches for > > maintanence, i.e. VTP, spanning, PAGP, DISL... > > > > Joe Morabito wrote: > > > > > > If you have a switch that has 2 vlans (vlan1 and vlan2) using the same > > > physical connection to the rest of the network, what happens to vlan1 if > > > vlan2 is suffering from a broadcast storm, since both vlans traverse the > > > same physical wire? > > -- > > David Madland > > Sr. Network Engineer > > CCIE# 2016 > > Qwest Communications Int. Inc. > > [EMAIL PROTECTED] > > 612-664-3367 > > > > "Emotion should reflect reason not guide it" -- David Madland Sr. Network Engineer CCIE# 2016 Qwest Communications Int. Inc. [EMAIL PROTECTED] 612-664-3367 "Emotion should reflect reason not guide it" Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=17960&t=17919 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: BMC Patrol [7:17794]
Well hello there CIO lackey geek. How do you know it is a good deal. I try a guess, the geek salesman told you that it retails for 59.95 but he will sell it to you for 39.95. You have been evaluating it why don't you share your findings. Sorry I'm a little edgy Brad just hinted at the possibility of a PIX on the Lab so that throw my ASP and ERP into a full blown tizzy cause all the DBA's are sucking snow cones for an extended holiday weekend. You know I only have 4 Megs of RAM and D-Day late May. hey good luck with that usless app. Don - Original Message - From: "350mhz" To: Sent: Wednesday, August 29, 2001 8:08 PM Subject: BMC Patrol [7:17794] > Hi Cisco Geeks, > > > We are evaluating a new product from BMC called Patrol DashBoard and > Patrol Visualis. I am told by the Sales Geeks that this product is > fairly new; therefore it's been rough getting feed back. So I turn to > you. What is the word? Who has used it, what are the Pro and Cons? Is > this company worth dealing with? They are cutting us a good deal and the > CIO is about to go for it unless I can dig up some dirt. > > > Thank > Rob Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=17958&t=17794 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: CID exam --How tough [7:17316]
Hi, I just wrote the CID and passed. It was a bit difficult in that you can't just memorize commands. I used the CID book and Boson tests. The exam had very little in common with the Boson tests so don't rush out and buy them! I would put some extra attention to the design considerations and advantages and disadvantages of various design options in WAN, desktop protocols, routing, SNA, etc. Pay careful attention to what the question is asking for in that there is frequently more than one multiple choice answer which on its own would be considered a true statement but in the context of the question doesn't exactly answer that is true but only one of the answers actually answers the question. Good luckKev ""Mr. Oletu Hosea Godswill, CCNA"" wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > Hi group, > > Am finally going for my CID examination on Saturday. > Has any one written the exam lately? I heard that > cisco is planning to change the course content. What > is its diffulty level? I already have CCNA, CCDA and > CCNP. I understand alot of people do fail this exam. > AM using the Cisco Internetwork Design book by Matthew > H. Birkner CCIE #3719, how good is this text? Do I > need the appendix section of the book for the exam or > it is just met for general knowledge? > > Sorry for being this inquisitive, feed me as mush as > possible about this exam. > > regards. > Oletu > > __ > Do You Yahoo!? > Make international calls for as low as $.04/minute with Yahoo! Messenger > http://phonecard.yahoo.com/ Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=17957&t=17316 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Don't think this is true ! Re: CCIE One-Day Lab layout [7:17956]
What makes you think so? I would hate to buy gear to find out that this is the new layout. ~-Original Message- ~From: jc0 [mailto:[EMAIL PROTECTED]] ~Sent: Thursday, August 30, 2001 5:33 PM ~To: [EMAIL PROTECTED] ~Subject: Don't think this is true ! Re: CCIE One-Day Lab layout ~[7:17952] ~ ~ ~Guys, ~ ~I DO NOT think this is true though. Unless someone can verify this with ~Cisco. ~ ~ ~ ~""Brad Ellis"" wrote in message ~[EMAIL PROTECTED]">news:[EMAIL PROTECTED]... ~> Here's the info from the grapevine on the layout for the new ~ONE-DAY CCIE ~> Lab: ~> ~> 1x Cisco PIX ~> 1x 2600 ~> 3x 25xx ~> 3x 3640 ~> 1x 4000 (Frame router) ~> 1x Cat 6509 ~> ~> This is the standard layout for all CCIE lab's except for ~WAN switching. ~> ~> Gotta wonder if people will start seeing some Pix stuff on ~the CCIE R&S ~> lab!!! ~> ~> -Brad Ellis ~> CCIE#5796 ~> [EMAIL PROTECTED] ~> Network Learning Inc ~> Used Cisco: www.optsys.net ~ ~ ~ ~ Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=17956&t=17956 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: CCIE One-Day Lab layout (hardware) [7:17813]
Guys, I DO NOT think this is true though. Unless someone can verify this with Cisco. ""Brad Ellis"" wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > Here's the info from the grapevine on the layout for the new ONE-DAY CCIE > Lab: > > 1x Cisco PIX > 1x 2600 > 3x 25xx > 3x 3640 > 1x 4000 (Frame router) > 1x Cat 6509 > > This is the standard layout for all CCIE lab's except for WAN switching. > > Gotta wonder if people will start seeing some Pix stuff on the CCIE R&S > lab!!! > > -Brad Ellis > CCIE#5796 > [EMAIL PROTECTED] > Network Learning Inc > Used Cisco: www.optsys.net Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=17954&t=17813 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Dial in/Dial Out modem bank [7:17929]
I don't have one that I recommend. I have found that there are a few out there that claim to do the desktop-modem-share task though. They are: (in no particular order) Stomper32 www.pflug.de/stompere.html ModemShare by Artisoft www.hallogram.com/modemshare/index.html DialoutServer by Tactical Software www.cbsits.com/tactical/page2.html SAPS by Techarts www.techarts.com/products/spartacom/building.htm Solidshare www.solidshare.com/modem%20sharing.htm These are the only ones that I have been able to find so far. If anyone knows of a better one please drop me a message. Thanks Jim Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=17955&t=17929 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: vlans [7:17919]
Actually, you'll find that there's a problem when any two VLANs share a trunk link. A very simple technique to get around this problem is to use redundant links. Typically Spanning Tree Protocol would disable the second link, but an administrator could tune the STP parameters so that traffic from VLAN A could pass over link A - link B would be blocked. Traffic from VLAN B could pass over link B - link A would be blocked. Oh the joys of per-VLAN Spanning Tree. -- Leigh Anne > -Original Message- > From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of > MADMAN > Sent: Thursday, August 30, 2001 2:19 PM > To: [EMAIL PROTECTED] > Subject: Re: vlans [7:17919] > > > Both VLAN are hosed. This is EXACTLY why you want to leave VLAN 1 > alone as it is the default VLAN and is used by the switches for > maintanence, i.e. VTP, spanning, PAGP, DISL... > > Joe Morabito wrote: > > > > If you have a switch that has 2 vlans (vlan1 and vlan2) using the same > > physical connection to the rest of the network, what happens to vlan1 if > > vlan2 is suffering from a broadcast storm, since both vlans traverse the > > same physical wire? > -- > David Madland > Sr. Network Engineer > CCIE# 2016 > Qwest Communications Int. Inc. > [EMAIL PROTECTED] > 612-664-3367 > > "Emotion should reflect reason not guide it" Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=17953&t=17919 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Don't think this is true ! Re: CCIE One-Day Lab layout [7:17952]
Guys, I DO NOT think this is true though. Unless someone can verify this with Cisco. ""Brad Ellis"" wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > Here's the info from the grapevine on the layout for the new ONE-DAY CCIE > Lab: > > 1x Cisco PIX > 1x 2600 > 3x 25xx > 3x 3640 > 1x 4000 (Frame router) > 1x Cat 6509 > > This is the standard layout for all CCIE lab's except for WAN switching. > > Gotta wonder if people will start seeing some Pix stuff on the CCIE R&S > lab!!! > > -Brad Ellis > CCIE#5796 > [EMAIL PROTECTED] > Network Learning Inc > Used Cisco: www.optsys.net Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=17952&t=17952 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
PIX Firewall -------- Replacement Strategy [7:17951]
We have a PIX failover bundle. Our Primary PIX failed and we powered it off. Now we have another PIX and we have to connect it. What should be the strategy so that no outage occurs. I think if we put the new PIX (without any Config) to the Primary end of Failover cable it would be the Active and would sync all its config to the second box (that would be a disaster) Please suggest the steps we should follow??? Much Appreciated _ Get your FREE download of MSN Explorer at http://explorer.msn.com/intl.asp Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=17951&t=17951 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Dial in/Dial Out modem bank [7:17929]
Jim, What software do you recommend for the user to use on his desktop to access the AS5300 for dialing out. On our current platform we use a product called ComIP. thanks Mike >>> Jim Dixon 08/30/01 04:18PM >>> Cisco AS5300 should handled your needs nicely. -Original Message- From: Mike Momb [mailto:[EMAIL PROTECTED]] Sent: Thursday, August 30, 2001 2:56 PM To: [EMAIL PROTECTED] Subject: Dial in/Dial Out modem bank [7:17929] To all you cisco wizards, What Cisco product would you recommend for dial in/dial out capability on a LAN. We have many users who dial into our network and do work from home. We also have users that would like to dial out from their desktop without using stand alone modems. Something that would handle at least 16 simultaneous users. We currently use a product that is slow and sometimes it locks up. Any advice/input would be appreciated. Mike Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=17950&t=17929 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: BGP advertisements [7:17930]
If this customer is not dual homed there is no reason for any BGP, default will work splendidly. If they are dual homed and the other provider is announcing the /24 then you will want to do the same or all the return traffic will go thru the other provider, (shortest match) and yes you will want to learn this prefix from the customer so that you stop announcing the network if your link to them fails. Dave Erich Kuehn wrote: > > I have a question about BGP advertisments > > I have a customer who want us to provide BGP peering for him. > He has is own ASN and we have sold him a /24 from our block. > Currently Im announcing that /24 and other prefix with My BGP peers (other > providers) > The customer wants only to receive default routes from me due to their > hardware limitations. > > My question is when I do this do I need to stop announcing the /24 prefix to > my providers since > that prefix will in essence orginate from his AS? > > Erich Kuehn > > [GroupStudy.com removed an attachment of type image/gif which had a name of > tech.gif] -- David Madland Sr. Network Engineer CCIE# 2016 Qwest Communications Int. Inc. [EMAIL PROTECTED] 612-664-3367 "Emotion should reflect reason not guide it" Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=17949&t=17930 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: IPSEC Challenge Problem [7:17844]
The problem is most likely your access-lists. You need to create an acl that allows telnet traffic from A to B and the return traffic from B to A: For telnet from A to B: on A: access-list 101 permit host A gt 1023 host B eq 23 on B: access-list 101 permit host B eq 23 host A gt 1023 (create reverse images of these entries for telnet from B to A) Note that the acl's on B and A are "mirror images" of each other, as stated in the Cisco docs. You need to remember that the source port for a client initiating telnet is a randomly chosen port above 1023. You don't _have_ to list the 'gt 1023', but when using acl's for IPSec I like to specify both src and dst ports if possible for consistency. HTH, Kent -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Cisco Lover Sent: Thursday, August 30, 2001 4:21 AM To: [EMAIL PROTECTED] Subject: IPSEC Challenge Problem [7:17844] Guys, The objective of the problem I m going to explain you is to encrypt ONLY TELNET traffic b/w these two routers. THe main problem I m facing is that IM not able to do this by implementing specific host lists that permits only telnet traffic from one to another host..Like access-list 101 permit tcp host A host B eq telnet. The only way I can run this is by using normal list allowing complete traffic b/w these two hosts.Please have a look and let me know if u find any problem in my config. Thanks. ISDN1#sh crypto engine connections ac ISDN1#sh crypto engine connections active ID Interface IP-Address State Algorithm Encrypt Decrypt 1 setHMAC_MD5+DES_56_CB0 0 2 setHMAC_MD5+DES_56_CB0 0 2000 Serial0/0 135.25.11.1 setHMAC_MD5+DES_56_CB0 54 2001 Serial0/0 135.25.11.1 setHMAC_MD5+DES_56_CB 40 0 ISDN1#sh run Building configuration... Current configuration: ! version 12.0 service timestamps debug uptime service timestamps log uptime no service password-encryption ! hostname ISDN1 ! enable password cisco ! ! ! ! ! memory-size iomem 7 ip subnet-zero ip telnet source-interface Loopback0 no ip domain-lookup ! isdn voice-call-failure 0 cns event-service server ! ! ! ! crypto isakmp policy 10 hash md5 authentication pre-share crypto isakmp key hello address 135.25.11.2 255.255.255.255 crypto isakmp key hello address 135.25.3.1 255.255.255.255 ! ! crypto ipsec transform-set cisco esp-des esp-md5-hmac ! ! crypto map CCIE local-address Loopback0 crypto map CCIE 10 ipsec-isakmp set peer 135.25.11.2 set peer 135.25.3.1 set transform-set cisco match address 101 ! ! ! ! interface Loopback0 ip address 135.25.4.1 255.255.255.255 no ip directed-broadcast ! interface FastEthernet0/0 no ip address no ip directed-broadcast shutdown duplex auto speed auto ! interface Serial0/0 ip address 135.25.11.1 255.255.255.0 no ip directed-broadcast no ip mroute-cache no fair-queue crypto map CCIE ! interface BRI0/0 no ip address no ip directed-broadcast shutdown isdn guard-timer 0 on-expiry accept ! interface FastEthernet0/1 no ip address no ip directed-broadcast shutdown duplex auto speed auto ! ip classless ip route 0.0.0.0 0.0.0.0 135.25.11.2 no ip http server ! access-list 101 permit ip host 135.25.4.1 host 135.25.3.1 ! ! voice-port 1/0/0 ! voice-port 1/0/1 ! voice-port 1/1/0 ! voice-port 1/1/1 ! ! ! line con 0 password cisco transport input none line aux 0 line vty 0 4 password cisco login ! hostname ISDN2 ! enable password cisco ! ! ! ! ! ip subnet-zero ip telnet source-interface Loopback0 no ip domain-lookup ! isdn voice-call-failure 0 cns event-service server ! ! crypto isakmp policy 10 hash md5 authentication pre-share crypto isakmp key hello address 135.25.11.1 crypto isakmp key hello address 135.25.4.1 ! ! crypto ipsec transform-set cisco esp-des esp-md5-hmac ! ! crypto map CCIE local-address Loopback0 crypto map CCIE 10 ipsec-isakmp set peer 135.25.11.1 set peer 135.25.4.1 set transform-set cisco match address 101 partition flash 2 16 8 ! ! ! ! ! ! ! interface Loopback0 ip address 135.25.3.1 255.255.255.255 no ip directed-broadcast ! interface Ethernet0/0 no ip address no ip directed-broadcast shutdown ! interface Serial0/0 no ip address no ip directed-broadcast shutdown ! interface BRI0/0 no ip address no ip directed-broadcast shutdown isdn guard-timer 0 on-expiry accept ! interface Ethernet0/1 no ip address no ip directed-broadcast shutdown ! interface Serial1/0 no ip address no ip directed-broadcast shutdown ! interface Serial1/1 ip address 135.25.11.2 255.255.255.0 no ip directed-broadcast clockrate 64000 crypto map CCIE ! interface Serial1/2 no ip address no ip directed-broadcast shutdown ! interface Serial1/3 no ip address no ip directed-broadcast shutdown ! interface Serial1/4 ip address 135.25.12.1 255.255.255.0 no ip directed-broadcast ! interface Serial1/5 no ip address no ip directed-broadcast shutdown ! interface Serial1/6 no ip address no ip direct
