Interconnecting Netware Server and Workstation... [7:19911]
Hello, Am having difficulty being able to log into Netware 4.11 Server from a workstation. Setup is this: Netware 4.11 Server Tree: LHS Context: LHS Encapsulation: Ethernet_802.2 Network: EBDCB76E Server is attached to hub which is attached to E0 int on Router_1 We have Windows 2000 Pro Workstation attached to this hub also and can login to and manage server (everything works on local network). Router_1 IPX Routing enabled int E0 has IPX network address of EBDCB76E and encapsulation is SAP int S0 is DCE, clockrate is 56000, IPX net is 10, encap is HDLC ipx router rip network EBDCB76E network 10 Router_2 IPX Routing enabled int E0 has IPX net of 20 and encap is SAP int S1 is DTE, IPX net is 10, encap is HDLC ipx router rip network 10 network 20 Windows 2000 Pro Workstation is attached to E0 on Router_2 and IPX address is 20. Encap is on auto sense with Novell Client 4.8 Now, I can sh ipx servers and see the LHS services. Also, sh ipx routes and I have routes established on both routers. Am I missing something? Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=19911t=19911 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Interconnecting Netware Server and Workstation... [7:19911]
Tyson Mock wrote: Hello, Am having difficulty being able to log into Netware 4.11 Server from a workstation. Setup is this: Netware 4.11 Server Tree: LHS Context: LHS Encapsulation: Ethernet_802.2 Network: EBDCB76E Server is attached to hub which is attached to E0 int on Router_1 We have Windows 2000 Pro Workstation attached to this hub also and can login to and manage server (everything works on local network). Router_1 IPX Routing enabled int E0 has IPX network address of EBDCB76E and encapsulation is SAP int S0 is DCE, clockrate is 56000, IPX net is 10, encap is HDLC ipx router rip network EBDCB76E network 10 Router_2 IPX Routing enabled int E0 has IPX net of 20 and encap is SAP int S1 is DTE, IPX net is 10, encap is HDLC ipx router rip network 10 network 20 Windows 2000 Pro Workstation is attached to E0 on Router_2 and IPX address is 20. Encap is on auto sense with Novell Client 4.8 Now, I can sh ipx servers and see the LHS services. Also, sh ipx routes and I have routes established on both routers. Am I missing something? Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=19912t=19911 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Cisco PIX [7:19888]
Hirsch, Herb wrote: Hi Mike Please count me in please, I have access to a CCO account. Thanks Herb mike johnson wrote in message ... Hi Everyone, For those who are interested in learning Cisco PIX but do NOT want to spend a lot of money on buying an expensive PIX Firewall, I think I can help you. I have instructions on how to build a PIX firewall by using a PC. In case you didn't know, PIX firewall is Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=19913t=19888 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: filtering ospf [7:19856]
Patrick Ramsey wrote: Anyone remember how to ACL ospf? basically I have area 0 on one interface of a router that touches another company's area 0 (we're splitting) And I want to stop sending them updates and stop receiving updates from them. The real kicker is that I still have another router on that side in area 0 that WAS vendor supported and I can not make any changes to it. (therefor area 0 must remain for it to communicate properly) I seem to recall reading about filters designed just for this scenario but I can not find them in conf t Anyone else know? -Patrick Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=19914t=19856 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Quad T1/PRI or E1/PRI Card With Serial Interface? [7:19915]
on Quad T1/PRI or E1/PRI Card With Serial Interface The board provides 4 RJ-45 T1 or E1 PRI ports and 4 serial interfaces for backhaul WAN support. What is the function of 4 serial ints? What does backhaul Wanmean ? Best regards, Steven Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=19915t=19915 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Video/voice over IP [7:19905]
Thomas does the camera use h323 across the network? if so it should be possible, I'd be interested to here if it works cheers Thomas N. wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... Hm... my topology messed up with the line swapping. Here it goes again: - video conf. camera | Ethernet0 | Router | VIC-2BRI-NT/TE | ISDN cloud | ISDN video conf. camera Thomas N. wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... Sorry I missed my topology: ISDN video conf. camera | Video conf. camera ---Ethernet0-Router-VIC-2BRI-NT/TEISDN cloud---ISDN video conf. camera | ATT MCU Can my IP conf. video camera talk with ISDN video conf. camera using this VIC-2BRI-NT/TE module? Thomas N. wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... Hi All, In my lab scenario, I have an conference video camera that is connected to the LAN. On the router, I have a 2600 router with a VIC-2BRI-NT/TE module. This VIC-2BRI-NT/TE mdule is then connected to the a MCU from the ISP provider for video conference (say, ATT). Do you think it is possible to implement so that my video conference camera can call the ISP MCU with ISDN lines using the gateway mdule VIC-2BRI-NT/TE? Thanks!!! Thomas N. Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=19916t=19905 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
isdn call even if (apparentely) no ip request are coming to [7:19917]
Dear Group, I have a 801 ISDN router: it sends a call even if (apparentely) no ip request are coming to. I've enabled the debug ISDN q931 and debug ip packet. And I can observe the following: 00:26:27: IP: s=10.10.10.6 (Ethernet0), d=10.10.10.255 (Ethernet0), len 78, rcvd 3 00:26:28: IP: s=10.10.10.6 (Ethernet0), d=10.10.10.255 (Ethernet0), len 78, rcvd 3 00:26:29: IP: s=10.10.10.6 (Ethernet0), d=10.10.10.255 (Ethernet0), len 78, rcvd 3 00:26:29: IP: s=10.10.10.6 (Ethernet0), d=DNS IP address (BRI0), g=DNS IP address , len 62, forward 00:26:29: IP: s=10.10.10.6 (Ethernet0), d=213.183.144.20 (BRI0), len 62, encapsulation failed 00:26:124554092544: %ISDN-6-LAYER2UP: Layer 2 for Interface BR0, TEI 67 changed to up 00:26:124554092544: ISDN BR0: TX - SETUP pd = 8 callref = 0x05 00:26:124560085020: Bearer Capability i = 0x8890 00:26:124554092544: Channel ID i = 0x83 00:26:124554092544: Called Party Number i = 0x80, 'xxx' 00:26:31: ISDN BR0: RX Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=19917t=19917 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Policy Based Routing....ive had enough and i`m not going [7:19918]
Ah.What a Bozo.. my access-lists are just plain poor... i have also found out that the ip route-cache policy...command should ONLY (int this case) go on the int the traffic is coming from (eth0) many thanks to all who replyed especially jenny (we have a history. i was very insulting ..and have never Really appologised.) jenny i appologiese...i was very.immatureand quite foolish. CU steve From: Jins Varghese Reply-To: Jins Varghese To: [EMAIL PROTECTED] Subject: Re: Policy Based Routingive had enough and i`m not going [7:19808] Date: Thu, 13 Sep 2001 13:52:26 -0400 Hi, I think the problem is with your access list. Try configuring like this, access-list 101 permit ip 10.10.10.0 0.0.0.127 any access-list 102 permit ip 10.10.10.0 0.0.0.255 any Good Luck Jins Varghese wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... Memo from Steve Skinner of PricewaterhouseCoopers Start of message text chaps + chapes`ss i am having a slight problem with my Policy based routing config and would be gratefull for your help.. what i am trying to do is this (its quite simple ...it`s just so am i ) all user`s are coming in on the 10.10.10.0 subnet (Eth0) ... i have two outbound int`s 11.11.11.11 (S0) 12.12.12.12.(bri0) what i want to do is split the 10.10.10.0 subnet and policy based route everything from 10.10.10.1-10.10.10.127 out S0, and route 10.10.10.128-10.10.10.256 out the bri0 this doesn`t seem to be working .here is my config .. thanks in advance steve (i have sent this to the right mailing list haven`t I..?) P.S i think it`s the wildcard mask that is stuffedand i also have EIGRP running on the router (old senario test) version 12.2 service timestamps debug uptimeservice timestamps log uptime no service password-encryption ! hostname Router !! memory-size iomem 25 ip subnet-zero ! ip audit notify log ip audit po max-events 100 call rsvp-sync!! ! ! interface BRI0 no ip address ip address 12.12.12.12 255.255.255.0 ip route-cache policy ip policy route-map POLICY no shutdown ! interface FastEthernet0 ip address 10.10.10.10 255.255.255.0 ip route-cache policy (enables fast switching of policy routing...for speed) ip policy route-map POLICY (create a policy called POLICY) ! interface Serial0 ip address 12.12.12.12 255.255.255.0 ip route-cache policy (enable fast switching of policy routing) (create a policy called POLICY) ! ip classless ip route 0.0.0.0 0.0.0.0 12.12.12.20 no ip http serverip pim bidir-enable ! access-list 101 permit ip 10.10.10.0 0.0.0.128 any access-list 102 permit ip 10.10.10.0 0.0.0.127 any route-map POLICY permit 10 match ip address 101 set ip next-hop 11.11.11.20 ! route-map POLICY permit 20 match ip address 102 set ip next-hop 12.12.12.20 ! ! line con 0 line aux 0 line vty 0 4 ! no scheduler allocate end - End of message text The principal place of business of PricewaterhouseCoopers and its associate partnerships is 1 Embankment Place, London WC2N 6NN where lists of the partners' names are available for inspection. All partners in the associate partnerships are authorised to conduct business as agents of, and all contracts for services to clients are with, PricewaterhouseCoopers. The UK firm of PricewaterhouseCoopers is authorised by the Institute of Chartered Accountants in England and Wales to carry on investment business. PricewaterhouseCoopers is a member of the world-wide PricewaterhouseCoopers organisation. The information transmitted is intended only for the person or entity to which it is addressed and may contain confidential and/or privileged material. Any review, retransmission, dissemination or other use of, or taking of any action in reliance upon, this information by persons or entities other than the intended recipient is prohibited. If you received this in error, please contact the sender and delete the material from any computer. _ Get your FREE download of MSN Explorer at http://explorer.msn.com/intl.asp Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=19918t=19918 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
this will try and cheer everyone up...or i will never be spoken [7:19920]
thingsd are getting a bit heavy on the list ...and i am trying to releave some of the tension felt by our list brothers... PLEASE i am not making light of the situation.. just trying to help...in my own way === i was recently selling someone some equipment ...and the guy is NOt very computer litarate..(atleast he can spell)... and he asked about a warranty... i said 1 week return to Base he said Ohhh.. and sounded quite dissapointed and i said if that no goodwe could go for 2 day RTB.. he again said Ohhh sounding really very dissapointed ... so i gave in and asked what wrong he said i was hopeing for atleast a year warrenty on the equipment.. i looked at him funny then realised what he said ...and had to explain to him that the warranty was for a year ..this is just the turn around for repair`s... the guy looked very happy ...and i continued talking for 10 mins before i realised what he said and spent the next two hours trying not to cry with laughter( i know it`s not his fault it`s just no-one has ever said that to me before...i suppose it makes sence ,,) later (this was last week) i told a collugue this and he didn`t understand why i found it funny.. 2 hrs later ...he rang me up laughing...because he could see the logic in what he saidand agin found it funny... Ahh Well and yes we will be observing a 3 minute silence at 11:00 am today... Thanks and my prayers go with you steve _ Get your FREE download of MSN Explorer at http://explorer.msn.com/intl.asp Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=19920t=19920 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
ADSL to ATM [7:19919]
Hi All, Is there a way to connect a ADSL 1401 to local PTT and then to an E3 ATM 7000 Cisco. Site 1-Cisco ADSL (1401)--- ATM 25 --- ATM cloud (PTT)- ATM --- Site 2-Cisco 7000 with E3 interface. Thanks Tarry -- Sent through GMX FreeMail - http://www.gmx.net Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=19919t=19919 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
3920 Q?? [7:19921]
Guys? how to delete whole 3920 config at a time?? any switch or command/menu?? Thanks for help. _ Get your FREE download of MSN Explorer at http://explorer.msn.com/intl.asp Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=19921t=19921 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
what do you think? [7:19922]
Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=19922t=19922 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
A deep OSPF Question [7:19923]
ARe we allowed to put IP ospf point to point command on loopback interfaces in order to get their actual mask instead of /32 in CCIE ALB??? Or do we have to use are0 range command to summarize this?? Thanks for the help. Cisco lover _ Get your FREE download of MSN Explorer at http://explorer.msn.com/intl.asp Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=19923t=19923 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
OT: Apology [7:19924]
Members, I would like to express my sincere apology for referring to Cisco as a religion on this list in a post a couple of days earlier. It appears that I have offended some list members and that was not my intention. I really do NOT think Cisco is a religion. I was only trying to make the point that religion is a discussion better talked about in a different forum than this list. I repeat, I do NOT believe that Cisco or networking is a religion and I apologize for even making the reference. Please forgive me. I also want to express my condolences for the events that happened this week in New York and Washington. I served time in the US Military and currently live in Japan. I have strong American Pride and am proud to have served in the US Military. Is sickens me to see what the enemy has done to my country. I had to explain to my five year old daughter and seven year old son why their private American school was closed this week. (it is located close to the US base in Okinawa and everything is closed down because of the threatcon delta order) My son said to me I know why daddy. It is because America's house is broken. It really saddens me that my children who have never lived in the US are getting most of their first hand US experience from watching the news of this tradgedy. Buddy Jenkins Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=19924t=19924 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Policy Based Routing....ive had enough and i`m not going [7:19925]
try with set int s0 command and set int bri 0 - Original Message - From: To: Sent: Friday, September 14, 2001 9:57 AM Subject: Re: Policy Based Routingive had enough and i`m not going [7:19910] Umm.. it's been a while since I played with access lists, but how about access-list 101 permit ip 10.10.10.0 0.0.0.127 any access-list 102 permit ip 10.10.10.128 0.0.0.127 any JMcL - Forwarded by Jenny Mcleod/NSO/CSDA on 14/09/2001 03:38 pm - Jins VargheseTo: [EMAIL PROTECTED] Subject: Re: Policy Based Routingive had Sent by: enough and i`m not going [7:19808] nobody@groups tudy.com 14/09/2001 03:52 am Please respond to Jins Varghese Hi, I think the problem is with your access list. Try configuring like this, access-list 101 permit ip 10.10.10.0 0.0.0.127 any access-list 102 permit ip 10.10.10.0 0.0.0.255 any Good Luck Jins Varghese wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... Memo from Steve Skinner of PricewaterhouseCoopers Start of message text chaps + chapes`ss i am having a slight problem with my Policy based routing config and would be gratefull for your help.. what i am trying to do is this (its quite simple ...it`s just so am i ) all user`s are coming in on the 10.10.10.0 subnet (Eth0) ... i have two outbound int`s 11.11.11.11 (S0) 12.12.12.12.(bri0) what i want to do is split the 10.10.10.0 subnet and policy based route everything from 10.10.10.1-10.10.10.127 out S0, and route 10.10.10.128-10.10.10.256 out the bri0 this doesn`t seem to be working .here is my config .. thanks in advance steve (i have sent this to the right mailing list haven`t I..?) P.S i think it`s the wildcard mask that is stuffedand i also have EIGRP running on the router (old senario test) version 12.2 service timestamps debug uptimeservice timestamps log uptime no service password-encryption ! hostname Router !! memory-size iomem 25 ip subnet-zero ! ip audit notify log ip audit po max-events 100 call rsvp-sync!! ! ! interface BRI0 no ip address ip address 12.12.12.12 255.255.255.0 ip route-cache policy ip policy route-map POLICY no shutdown ! interface FastEthernet0 ip address 10.10.10.10 255.255.255.0 ip route-cache policy (enables fast switching of policy routing...for speed) ip policy route-map POLICY (create a policy called POLICY) ! interface Serial0 ip address 12.12.12.12 255.255.255.0 ip route-cache policy (enable fast switching of policy routing) (create a policy called POLICY) ! ip classless ip route 0.0.0.0 0.0.0.0 12.12.12.20 no ip http serverip pim bidir-enable ! access-list 101 permit ip 10.10.10.0 0.0.0.128 any access-list 102 permit ip 10.10.10.0 0.0.0.127 any route-map POLICY permit 10 match ip address 101 set ip next-hop 11.11.11.20 ! route-map POLICY permit 20 match ip address 102 set ip next-hop 12.12.12.20 ! ! line con 0 line aux 0 line vty 0 4 ! no scheduler allocate end - End of message text The principal place of business of PricewaterhouseCoopers and its associate partnerships is 1 Embankment Place, London WC2N 6NN where lists of the partners' names are available for inspection. All partners in the associate partnerships are authorised to conduct business as agents of, and all contracts for services to clients are with, PricewaterhouseCoopers. The UK firm of PricewaterhouseCoopers is authorised by the Institute of Chartered Accountants in England and Wales to carry on investment business. PricewaterhouseCoopers is a member of the world-wide PricewaterhouseCoopers organisation. The information transmitted is intended only for the person or entity to which it is addressed and may contain confidential and/or privileged material. Any review, retransmission, dissemination or other use of, or taking of any action in reliance upon, this information by persons or entities other than the intended recipient is prohibited. If you received this in error, please contact the sender and delete the material from any computer. Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=19925t=19925 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: 3920 Q?? [7:19926]
how to delete whole 3920 config at a time?? any switch or command/menu?? Press SysRequest on the front. The new menu allows you to clear NVRAM. The same menu also allows you to reset the password. --Erik Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=19926t=19926 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
FW: External power adaptor for IP Phone 79XX [7:19841]
Rick, if you bought the proper switch cards, that can provide the power through the wire you are correct. If you don't have the right cards in your switch you need the purchase the power adapter for the phones, or upgrade your cards in the switch. Check the Cisco site for the switch cards you have to see if they are voice capable and provide power. Make sure your switch code level is voice capable also. Bob Sites System Engineer Valley Health System, IS Dept. [EMAIL PROTECTED] -Original Message- From: D Rick [mailto:[EMAIL PROTECTED]] Sent: Thursday, September 13, 2001 4:49 PM To: [EMAIL PROTECTED] Subject: RE: External power adaptor for IP Phone 79XX [7:19841] I'm using a 7960 but there's no power adaptor hook up to it. I guess the LAN connection provides the power. Rick Confidentiality Notice: This e-mail message, including any attachments, is for the sole use of the intended recipients and may contain confidential and privileged information. Any unauthorized review, use, disclosure or distribution is prohibited. If you are not the intended recipient, please contact the sender by reply e-mail and destroy all copies of the original message. Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=19927t=19841 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Video/voice over IP [7:19905]
Yes, the camera is H323 supported. If the module is not the right one, what module should I use in this case? Patrick Donlon wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... Thomas does the camera use h323 across the network? if so it should be possible, I'd be interested to here if it works cheers Thomas N. wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... Hm... my topology messed up with the line swapping. Here it goes again: - video conf. camera | Ethernet0 | Router | VIC-2BRI-NT/TE | ISDN cloud | ISDN video conf. camera Thomas N. wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... Sorry I missed my topology: ISDN video conf. camera | Video conf. camera ---Ethernet0-Router-VIC-2BRI-NT/TEISDN cloud---ISDN video conf. camera | ATT MCU Can my IP conf. video camera talk with ISDN video conf. camera using this VIC-2BRI-NT/TE module? Thomas N. wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... Hi All, In my lab scenario, I have an conference video camera that is connected to the LAN. On the router, I have a 2600 router with a VIC-2BRI-NT/TE module. This VIC-2BRI-NT/TE mdule is then connected to the a MCU from the ISP provider for video conference (say, ATT). Do you think it is possible to implement so that my video conference camera can call the ISP MCU with ISDN lines using the gateway mdule VIC-2BRI-NT/TE? Thanks!!! Thomas N. Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=19928t=19905 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Denial of service attack prevention [7:19568]
That's some really good information. I'll definitely have to look into taking some of these measures. You can never be too secure. If I find any other strategies on the router side I'll post it. Thanks a lot guys. -- Haydn -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] On Behalf Of Brian Whalen Sent: Thursday, September 13, 2001 3:01 PM To: [EMAIL PROTECTED] Subject: Re: Denial of service attack prevention [7:19568] Heres a good solaris security article, likey applicable to other nixes.. http://www.samag.com/articles/2000/0013/0013c/0013c.htm Brian Sonic Whalen Success = Preparation + Opportunity On Thu, 13 Sep 2001, MADMAN wrote: I don't know what else on the router you could do but there are things you can do on your host but not being a sys admin I can't get into details. Check this out: http://www.cisco.com/warp/public/707/4.html Dave Haydn Solomon wrote: Actually I was asking what OTHER means than tcp intercept there was because we don't have the version that supports it. Can you answer that? I know that our version doesn't cause I checked with the ? feature and the option isn't there. In any case here is a copy of the sh ver. Cisco Internetwork Operating System Software IOS (tm) RSP Software (RSP-ISV-M), Version 12.0(15), RELEASE SOFTWARE (fc1) Copyright (c) 1986-2000 by cisco Systems, Inc. Compiled Wed 27-Dec-00 13:54 by linda Image text-base: 0x60010930, data-base: 0x60C46000 ROM: System Bootstrap, Version 11.1(8)CA1, EARLY DEPLOYMENT RELEASE SOFTWARE (fc1) BOOTFLASH: GS Software (RSP-BOOT-M), Version 11.1(22)CA, EARLY DEPLOYMENT RELEASE SOFTWARE (fc1) -- Haydn -Original Message- From: MADMAN [mailto:[EMAIL PROTECTED]] Sent: Wednesday, September 12, 2001 11:05 AM To: Haydn Solomon Cc: [EMAIL PROTECTED] Subject: Re: Denial of service attack prevention [7:19568] send a sh ver of your router, not all platforms support TCP Intercept. Dave Haydn Solomon wrote: Hi all, I was recently reading an article on ciscos site about strategies for preventing denial of service attacks. They mentioned the ip intercept configuration feature for IOS version 11.3. However our routers are running version 12.0 and doesnt have that feature. Does anyone out there know what other effective strategies can be used to prevent this kind of attack on IOS versions other than 11.3? Any input will be appreciated, thanks. -Haydn -- David Madland Sr. Network Engineer CCIE# 2016 Qwest Communications Int. Inc. [EMAIL PROTECTED] 612-664-3367 Emotion should reflect reason not guide it _ Do You Yahoo!? Get your free @yahoo.com address at http://mail.yahoo.com -- David Madland Sr. Network Engineer CCIE# 2016 Qwest Communications Int. Inc. [EMAIL PROTECTED] 612-664-3367 Emotion should reflect reason not guide it _ Do You Yahoo!? Get your free @yahoo.com address at http://mail.yahoo.com Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=19929t=19568 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Fwd: WTC [7:19930]
__ Terrorist Attacks on U.S. - How can you help? Donate cash, emergency relief information http://dailynews.yahoo.com/fc/US/Emergency_Information/ X-Apparently-To: [EMAIL PROTECTED] via web14603.mail.yahoo.com; 14 Sep 2001 01:40:14 -0700 (PDT) X-Track: 1: 40 Received: from mail.gmx.net (213.165.64.20) by mta417.mail.yahoo.com with SMTP; 14 Sep 2001 01:40:05 -0700 (PDT) Received: (qmail 25974 invoked by uid 0); 14 Sep 2001 08:39:39 - Received: from pd9e4ef3f.dip.t-dialin.net (HELO chrissie) (217.228.239.63) by mail.gmx.net (mp006-rz3) with SMTP; 14 Sep 2001 08:39:39 - From: Christiane Buschmann To: Wolfgang Krotter , Wilhelm Suffel , Werner Mayer-Stier , =?us-ascii?Q?Roland_Hanel?= , Roland Gassner , Robert Rogalski , Renate Schober , Ralf Felsing , Oliver Leibrock , Michael Ohn , Matthias Stoeger , Loritta Zieme , Karen Deters , =?us-ascii?Q?Jurgen_Kroehnert?= , Hubert Feyrer , Hans Elspas , Franz-Josef Seidl , Dotzler Wolfgang \(DO\) , David Rahvar , Daniela Adomait , Daniel Medin , Christoph Hahn , Christine Zenz , Christian Fleissner , Chica , Birgit Killisperger , Axel Krebs , Andrew Sparks , Andreas Kowalski , Jana Shenefield , Norbert Preis , , Eva Sieberg , Volker Sieberg , Subject: WTC Date: Fri, 14 Sep 2001 10:38:41 +0200 Message-ID: MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook IMO, Build 9.0.2416 (9.0.2911.0) Importance: Normal X-MimeOLE: Produced By Microsoft MimeOLE V5.50.4133.2400 Content-Length: 292601 X-Converted-To-Plain-Text: from multipart/mixed by GroupStudy.com X-Converted-To-Plain-Text: Alternative section used was text/plain [GroupStudy.com removed an attachment of type image/jpeg which had a name of worldtra.jpg] Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=19930t=19930 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
POP3 SMTP through Pix to Static NAT Address [7:19931]
I have a situation which someone may be able to shed some light on. The configuration that is in place is a PIX 515 6.01 with a public IP on the 'outside' interface and private IP on the 'inside' interface as you would normally see in a straight-forward config. We are using PAT to another external IP for all internal users. Also there are static NAT statements on this same external IP (one used for PAT) that translate to the appropriate internal IPs for the respective services. Ex. static (inside,outside) tcp x.x.x.x pop3 10.x.x.x pop3 netmask x.x.x.x (translating all pop3 queried traffic on x.x.x.x to be forwarded to 10.x.x.x) One inbound access list is applied to the 'outside' interface filtering for the protocols we need allowed in and for the static nats. So this works fine for all external users and querying the various protocols. All locations are connected via private frame WAN to the central location, where the internet connection out is and also this PIX. Here is the problem. There are travelling users which bounce from site to site and are configured to access email via POP3. Unfortunately this will not work from inside the PIX. What it looks like is that basically the client is querying a pop3 server which resolves to the public IP address which is in turn the same address assigned for the static nat translation to the actual internal pop3 box. I would change the client to resolve pop3 to the actual internal IP address but then they would be unable to reach the box from home or hotel etc. ie. client queries pop3 to 'popserver.domain.com' dns resolves this to x.x.x.x from above static NAT. Query fails. Does anyone have any suggestions on what may be happening and could shed some light on whether this can be done first of all, and what steps may need to be taken on the PIX so that interal queries for pop3 and smtp will be able to go out through the PAT and come back in as the static nat translates them and still work. Thanks VERY much for anyones input. Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=19931t=19931 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Why Cisco and not ...........!!! [7:19932]
Hello Guys, after recovering from the shock of WTC,I just remembered that life still has to goes on. I have a quest and it is : I am due to appear on an interview on Monday 17th Sep., and I have to give a presentation on why cisco, and not other competitors. I have to be able to convince my interviewers in fine english, why(and how) cisco products(old and new), protocols,strategy or policy gives cisco an edge over other competitors, and therefore places cisco at the top most position. I have gathered some facts already from cisco's website and have acquired some knowledge of cisco over the years from experience and certifications, but as this is a matter of do it well and get the job,or not,I thought it was a good idea to share your experiences,advice,facts etc,etc. I would be very thankful for any input at all. Thank you. chika __ Terrorist Attacks on U.S. - How can you help? Donate cash, emergency relief information http://dailynews.yahoo.com/fc/US/Emergency_Information/ Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=19932t=19932 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: 3920 Q?? [7:19934]
Try the reset menu. Clear Non-Volatile RAM is the option you need to select. Reset and start over. Mark -Original Message- From: Cisco Lover [mailto:[EMAIL PROTECTED]] Sent: Friday, September 14, 2001 6:36 AM To: [EMAIL PROTECTED] Cc: [EMAIL PROTECTED] Subject: 3920 Q?? Guys? how to delete whole 3920 config at a time?? any switch or command/menu?? Thanks for help. _ Get your FREE download of MSN Explorer at http://explorer.msn.com/intl.asp **Please read:http://www.groupstudy.com/list/posting.html Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=19934t=19934 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Why Cisco and not ...........!!! [7:19933]
Hello Guys, after recovering from the shock of WTC,I just remembered that life still has to goes on. I have a quest and it is : I am due to appear on an interview on Monday 17th Sep., and I have to give a presentation on why cisco, and not other competitors. I have to be able to convince my interviewers in fine english, why(and how) cisco products(old and new), protocols,strategy or policy gives cisco an edge over other competitors, and therefore places cisco at the top most position. I have gathered some facts already from cisco's website and have acquired some knowledge of cisco over the years from experience and certifications, but as this is a matter of do it well and get the job,or not,I thought it was a good idea to share your experiences,advice,facts etc,etc. I would be very thankful for any input at all. Thank you. chika __ Terrorist Attacks on U.S. - How can you help? Donate cash, emergency relief information http://dailynews.yahoo.com/fc/US/Emergency_Information/ Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=19933t=19933 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: 'It's not the US they want to destroy. It's our arrogance' [7:19935]
And if you say they are not gutless why don't you tell us where and when you will be, and we will see if Bush can round some dudes up and meet you there. Now that would show courage. Duck - Original Message - From: MADMAN To: Sent: Thursday, September 13, 2001 11:54 AM Subject: Re: 'It's not the US they want to destroy. It's our arrogance' [7:19820] A non-American wrote: Gutless ? What cause would you train months for with a guarantee of death or life imprisonment ? The facts as I see them are - A. the victims were blameless and deserved nothing of what they received. My heart goes out especially to the rescue crews, imagine dying trying to help! B. the organisation and commitment was amazing, in a nuclear world retaliation must be very precise and fully calculated rather than knee-jerk. Do not underestimate these people, it would be very dumb indeed to assume that they are less intelligent than yourselves. Don't think anyone rational is assuming these people are dumb. C. many reading this will not like this but the actions of the US government for decades has been in the interest of the US and much blood has been spilt by them and 3rd parties funded by them. Is the hatred you feel for your attackers of your people less valid than theirs ? What attack against these people would you find unacceptable ? The gloves are off - no ? Somebody else out there feels this against your country. The US must try and find these people to make them answer for this but must also look inwards at the same time!! priority is to stop it happening again no ? Look at the tit for tat mess Israel is in... Yes and the UK or wherever your from only has an interest in France, Germany, Ireland etc..., ya right you self rightous European can you say WWI, WWII, Crusades, etc... I'm English and for a long time American money has paid for bullets and semtex used in my country - children are dead as are many policemen not to mention the civilians popped off because they have the wrong religion. The level of ignorance in the US is truly amazing, everybody outside the US is disgusted by this act but not many are asking why, we've got a pretty good idea. Word of advice - we get CNN too and it's biased as hell, listen to the news from somewhere ANYWHERE else once in a while. I agree that CNN, Clinton News Network is biased to the liberal left and of coarse the news is aimed at Americans so I suppose it's not tailored to UK audiences, what's your point?? You can pick ANY country and find faults, we are, after all, made up of imperfect people but we are the model for freedom throughout the world and therefore a big target also. AN AMERICAN who is not AFRAID to use his name Dave A non-American -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Fenech, William J Sent: 13 September 2001 01:55 To: [EMAIL PROTECTED] Subject: RE: 'It's not the US they want to destroy. It's our arrogance' [7:19699] Don't waste your time with idiots like this (aka Reeta Sinha). The people who pulled off this gutless act, and the ones who support them should be exterminated, pure and simple. -- David Madland Sr. Network Engineer CCIE# 2016 Qwest Communications Int. Inc. [EMAIL PROTECTED] 612-664-3367 Emotion should reflect reason not guide it Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=19935t=19935 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
configuring bridge on router [7:19936]
Hi All, I would like to know if I configure: bridge 1 protocol ieee Is it any special meaning for the 1? I configure the bridging between two routers like this PC R1 R2 PC I configure bridge 1 for R1 and bridge 2 for R2. But the PC can browse each other by NetBEUI. Is it this identifier number nothing special? or is there any special function? Thank a lot mak Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=19936t=19936 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: IOS image file names [7:19901]
Yes you can call the file Omer if you wish :) Dave Omer Ehsan Dar wrote: Hi all, First my condolances to the victims of the attack in NewYork and Pentagon. No words can describe that emotion one feels after watching the events live. I wanted to ask about IOS image file namesI have three IOS with extension bin but two IOS have the following names c5200-boot-l.112-17.P and c2500-i-l.112-18.112-18 Can I change the names to noraml .bin files or not? Also, If i wanted to change of the IOS in flash to read/write from read what do i do? Thank all Omer Dar -- David Madland Sr. Network Engineer CCIE# 2016 Qwest Communications Int. Inc. [EMAIL PROTECTED] 612-664-3367 Emotion should reflect reason not guide it Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=19937t=19901 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: TIME TO STOP RE: 'It's not the US they want to destroy. [7:19938]
I think we should take it a step further. I think we should stop giving out free consulting services we don't know who we could be aiding and abeting. Some of these names with the broken english surely show this may be the case. Someone yesterday was asking about webphones and it was from a domain with IRAN in its name. This may make sense in a few days when our boys and girls are in the field. Remember loose lips sink ships. - Original Message - From: Thad Gaston To: Sent: Thursday, September 13, 2001 12:29 PM Subject: TIME TO STOP RE: 'It's not the US they want to destroy. It's [7:19833] All and Paul As a muslim I would greatly appreciate that any further insults to the religion of Islam be refrained from this list. And as I have requested along with Priscilla, that this thread and topic discontinue as it both distracting and upsetting. Best Regards -Original Message- From: hal9001 [mailto:[EMAIL PROTECTED]] Sent: Thursday, September 13, 2001 2:49 PM To: [EMAIL PROTECTED] Subject: Re: 'It's not the US they want to destroy. It's our arrogance' [7:19819] Don't you mean the CULT of ALLAH..any so called religion that encourages this mayhem is a one way ticket to hell. Its nothing more than an evil cult! Karl - Original Message - From: John Mairs To: Sent: Thursday, September 13, 2001 6:20 AM Subject: RE: 'It's not the US they want to destroy. It's our arrogance' [7:19726] aaammen! Allah be paved! --- ed smith wrote: Respectfully I would say,,, let people blow some steam off! Who the hell cares about CISCO right now? Ed From: Thad Gaston To: ed smith , Subject: RE: 'It's not the US they want to destroy. It's our arrogance' [7:19679] Date: Wed, 12 Sep 2001 17:59:42 -0400 MIME-Version: 1.0 Received: from [12.109.97.147] by hotmail.com (3.2) with ESMTP id MHotMailBD69252000344136E8170C6D619313EB0; Wed, 12 Sep 2001 14:56:49 -0700 From [EMAIL PROTECTED] Wed, 12 Sep 2001 14:57:36 -0700 X-MimeOLE: Produced By Microsoft Exchange V6.0.4417.0 content-class: urn:content-classes:message Message-ID: X-MS-Has-Attach: X-MS-TNEF-Correlator: Thread-Topic: 'It's not the US they want to destroy. It's our arrogance' [7:19679] Thread-Index: AcE71YI1yqc/7joNR3ugD6ApyYlA6wAAC/Bg All, I would discourage any further post regarding this topic as it becoming more and more useless and distracting. None of our sentiments are going to bring back the lives of those that have passed on nor bring about the justice the we all would like to see. Let's keep the list on track and get back to what this list is intended for. Regards, Thad Gaston -Original Message- From: ed smith [mailto:[EMAIL PROTECTED]] Sent: Wednesday, September 12, 2001 5:36 PM To: [EMAIL PROTECTED] Subject: Re: 'It's not the US they want to destroy. It's our arrogance' [7:19679] That is the biggest load of crap I've ever heard! The people we see dancing in the streets of Palestine are brainwashed! The common person in the middle east would give anything to come and live in the U.S. and get out of their hell hole they call home. Believe me, I did 2 years there, it sucks!!! Nothing worth keeping in that part of the World. I don't see all those God forsaken countries having a problem with people wanting to immigrate there! If they believe they are God's chosen people, why didn't he make them from Hawaii, or Switzerland, or some other nice part of this World? They don't have the open airways or free flow of information to make logical decisions. They only believe what their ignorant and jealous leaders tell them. They wanted a Holy War I think they have it,, Holy @!#$ Ahkmed, here comes a Tomahawk missile! Holy @!#$ Al-@!#$, here comes a flights of F-15's!!! Holy @!#$ Al-Khobar, I think I'm going to see Allah! Wait and see brings new meaning to bombs bursting in air. YOU SEEM TWISTED, according to your last email anyway. _ Get your FREE download of MSN Explorer at http://explorer.msn.com/intl.asp misconduct and Nondisclosure violations to [EMAIL PROTECTED] Get your FREE download of MSN Explorer at http://explorer.msn.com [EMAIL PROTECTED] = John L. Mairs __ Terrorist Attacks on U.S. - How can you help? Donate cash, emergency relief information http://dailynews.yahoo.com/fc/US/Emergency_Information/ Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=19938t=19938 -- FAQ, list archives, and subscription info:
Re: Anyone feel like uploading us IOS 12.1 or 12.2 [7:19540]
Yeah I offered to help him retrieve the file from the crashed server haven't heard back. Imagine that. - Original Message - From: ; To: ; Sent: Thursday, September 13, 2001 8:31 PM Subject: Re: Anyone feel like uploading us IOS 12.1 or 12.2 [7:19540] In the middle of studying the back up and restore methods thought in the sybex CCNA book my server unfortunetly crashed taking with it my IOS for the 2501 router. I remember it having 12.1 IOS. If anyone has 12.1 or 12.2 IOS and would be kind to upload it to me I would most greatly appreciate it. thank you all. Nice Try! No freebies, fuckhead!!! Get a Smartnet contract! Rob H, NP, DP, blah,blah,blah Return-Path: Received: from rly-xc04.mx.aol.com (rly-xc04.mail.aol.com [172.20.105.137]) by air-xc02.mail.aol.com (v80.17) with ESMTP id MAILINXC24-0912004834; Wed, 12 Sep 2001 00:48:34 -0400 Received: from groupstudy.com (www.groupstudy.com [63.104.50.75]) by rly-xc04.mx.aol.com (v80.21) with ESMTP id MAILRELAYINXC43-0912004812; Wed, 12 Sep 2001 00:48:12 -0400 Received: from localhost (mail@localhost) by groupstudy.com (8.9.3/8.9.3) with SMTP id BAA27547; Wed, 12 Sep 2001 01:02:54 -0400 Received: by groupstudy.com (bulk_mailer v1.12); Wed, 12 Sep 2001 00:49:00 -0400 Received: (from listserver@localhost) by groupstudy.com (8.9.3/8.9.3) id AAA25513 GroupStudy Mailer; Wed, 12 Sep 2001 00:48:59 -0400 Received: (from mail@localhost) by groupstudy.com (8.9.3/8.9.3) id AAA25506 GroupStudy Mailer; Wed, 12 Sep 2001 00:48:59 -0400 Date: Wed, 12 Sep 2001 00:48:59 -0400 Message-Id: From: [EMAIL PROTECTED] X-GroupStudy-Version: 3.1.1a X-GroupStudy: Network Technical To: [EMAIL PROTECTED] Subject: Anyone feel like uploading us IOS 12.1 or 12.2? [7:19540] Sender: [EMAIL PROTECTED] Reply-To: [EMAIL PROTECTED] Precedence: bulk Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=19939t=19540 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: configuring bridge on router [7:19936]
it is a process identifier, and used in the bridge-group command to indicate which bridge process you want to group on the interface. if you are running integrated routing and bridging, it is also used with the interface BVI command to indicate which bridge process to associate with the BVI. it has local significance only. kinda like access list numbers and ospf process numbers. HTH -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of mak Sent: Friday, September 14, 2001 7:00 AM To: [EMAIL PROTECTED] Subject: configuring bridge on router [7:19936] Hi All, I would like to know if I configure: bridge 1 protocol ieee Is it any special meaning for the 1? I configure the bridging between two routers like this PC R1 R2 PC I configure bridge 1 for R1 and bridge 2 for R2. But the PC can browse each other by NetBEUI. Is it this identifier number nothing special? or is there any special function? Thank a lot mak Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=19940t=19936 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Information on building a Pix out of a PC [7:19775]
Well of course the os is proprieteryIt's cisco's But it runs on intel architecture, boots from compatible flash, and uses standard nicshence the abillity to run the os from a pc Even though this pc would have to have the nics that the os supports as well as the flash, it should still be possible. -Patrick [EMAIL PROTECTED] 09/14/01 12:51AM Unless things have changed in the past year or so, you cannot build a Pix on a PC. The PIX has a proprietary OS, which is specifically touted as NOT being portable to a PC platform. Since the OS is proprietary, it is considered less subject to attack than those sitting on known and vulnerable (MS unix) operating systems. Hope this helps Joe In a message dated 9/13/01 10:54:23 AM, [EMAIL PROTECTED] writes: Anyone have the information for building a Pix box on a PC! Tmuzaina Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=19942t=19775 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: A deep OSPF Question [7:19923]
since you're obviously prepping for the CCIE lab, have you asked Paul to place you on the CCIE Lab list? to answer your question, when you walk into your Lab exam, you will be given a thick book in which is your lab scenario. Instruction number one: do what you are told. instruction number two: in situations where there is some ambiguity, ask the proctor. It is possible, and in fact highly likely, that one person will have an instruction saying no /32's are to be advertised anywhere. in that case, one must be familiar with the various means of accomplishing the task. at the same time another person might be instructed not to change the OSPF network type on any interface, with no instruction regarding /32'. one must understand the ramifications, not just on loopbacks, but on all interfaces. HTH -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Cisco Lover Sent: Friday, September 14, 2001 4:06 AM To: [EMAIL PROTECTED] Subject: A deep OSPF Question [7:19923] ARe we allowed to put IP ospf point to point command on loopback interfaces in order to get their actual mask instead of /32 in CCIE ALB??? Or do we have to use are0 range command to summarize this?? Thanks for the help. Cisco lover _ Get your FREE download of MSN Explorer at http://explorer.msn.com/intl.asp Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=19945t=19923 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: configuring bridge on router [7:19936]
The 1 in your question refers to the bridge-group number cisco.com -- Assigns a bridge group number and defines a Spanning Tree Protocol as IEEE802.1D standard, DEC or VLAN bridge I believe that in an TRB environment, you'd want both routers to have the same bridge number for STP to work correctly. I hope i'm steering you in the right direction. Tim -Original Message- From: mak [SMTP:[EMAIL PROTECTED]] Sent: Friday, September 14, 2001 10:00 AM To: [EMAIL PROTECTED] Subject: configuring bridge on router [7:19936] Hi All, I would like to know if I configure: bridge 1 protocol ieee Is it any special meaning for the 1? I configure the bridging between two routers like this PC R1 R2 PC I configure bridge 1 for R1 and bridge 2 for R2. But the PC can browse each other by NetBEUI. Is it this identifier number nothing special? or is there any special function? Thank a lot mak Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=19944t=19936 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: A deep OSPF Question [7:19923]
I would say that depends on what they ask you to do. I assume you know how to do both? Peter *** REPLY SEPARATOR *** On 9/14/2001 at 7:06 AM Cisco Lover wrote: ARe we allowed to put IP ospf point to point command on loopback interfaces in order to get their actual mask instead of /32 in CCIE ALB??? Or do we have to use are0 range command to summarize this?? Thanks for the help. Cisco lover _ Get your FREE download of MSN Explorer at http://explorer.msn.com/intl.asp Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=19943t=19923 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Multicast traffic PIX [7:19946]
Hi All, I have tried to let the multicast traffic passing through the PIX firewall using Version 5.1 with the following command. access-list 100 permit icmp any any access-list 100 permit tcp any any access-list 100 permit udp any any access-group 100 in interface outside access-list 101 permit icmp any any access-list 101 permit tcp any any access-list 101 permit udp any any access-group 101 in interface inside Everything(ping, ftp) seems to work execpt the multicast traffice (media player, IP/TV). For the IP/TV, the viewer can get the content from the server. but cannot do start to play the program. It is same as when I am using the media player to access the Microsoft Media Server. I have tried to access the Multicast Server inside the LAN, and the server is working. Do I have to set up anything to make the PIX to pass through the multicast traffic? Thanks. Francis Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=19946t=19946 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: 'It's not the US they want to destroy. It's our arrogance' [7:19949]
Hey lets get something straight before anyone sends anymore misguided mail, THIS WAS NOT MY POST, I simply replied, comments inline! I did not make the gutless comments or any of the other BS and I'm sorry I ever got off the technical aspects of this list. Calm down Don and have a nice weekend Dave Donald B Johnson jr wrote: And if you say they are not gutless why don't you tell us where and when you will be, and we will see if Bush can round some dudes up and meet you there. Now that would show courage. Duck - Original Message - From: MADMAN To: Sent: Thursday, September 13, 2001 11:54 AM Subject: Re: 'It's not the US they want to destroy. It's our arrogance' [7:19820] A non-American wrote: Gutless ? What cause would you train months for with a guarantee of death or life imprisonment ? The facts as I see them are - A. the victims were blameless and deserved nothing of what they received. My heart goes out especially to the rescue crews, imagine dying trying to help! B. the organisation and commitment was amazing, in a nuclear world retaliation must be very precise and fully calculated rather than knee-jerk. Do not underestimate these people, it would be very dumb indeed to assume that they are less intelligent than yourselves. Don't think anyone rational is assuming these people are dumb. C. many reading this will not like this but the actions of the US government for decades has been in the interest of the US and much blood has been spilt by them and 3rd parties funded by them. Is the hatred you feel for your attackers of your people less valid than theirs ? What attack against these people would you find unacceptable ? The gloves are off - no ? Somebody else out there feels this against your country. The US must try and find these people to make them answer for this but must also look inwards at the same time!! priority is to stop it happening again no ? Look at the tit for tat mess Israel is in... Yes and the UK or wherever your from only has an interest in France, Germany, Ireland etc..., ya right you self rightous European can you say WWI, WWII, Crusades, etc... I'm English and for a long time American money has paid for bullets and semtex used in my country - children are dead as are many policemen not to mention the civilians popped off because they have the wrong religion. The level of ignorance in the US is truly amazing, everybody outside the US is disgusted by this act but not many are asking why, we've got a pretty good idea. Word of advice - we get CNN too and it's biased as hell, listen to the news from somewhere ANYWHERE else once in a while. I agree that CNN, Clinton News Network is biased to the liberal left and of coarse the news is aimed at Americans so I suppose it's not tailored to UK audiences, what's your point?? You can pick ANY country and find faults, we are, after all, made up of imperfect people but we are the model for freedom throughout the world and therefore a big target also. AN AMERICAN who is not AFRAID to use his name Dave A non-American -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Fenech, William J Sent: 13 September 2001 01:55 To: [EMAIL PROTECTED] Subject: RE: 'It's not the US they want to destroy. It's our arrogance' [7:19699] Don't waste your time with idiots like this (aka Reeta Sinha). The people who pulled off this gutless act, and the ones who support them should be exterminated, pure and simple. -- David Madland Sr. Network Engineer CCIE# 2016 Qwest Communications Int. Inc. [EMAIL PROTECTED] 612-664-3367 Emotion should reflect reason not guide it -- David Madland Sr. Network Engineer CCIE# 2016 Qwest Communications Int. Inc. [EMAIL PROTECTED] 612-664-3367 Emotion should reflect reason not guide it Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=19949t=19949 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: ADSL to ATM [7:19919]
absolutely, IF ( and this is a big one ) IF your telco supports DSL to ATM on their network. I sell this solutions to customers all the time now. It makes perfect sense in terms of their budget and data flow. yes I give the speech about reliability and oversubscription of the DSLAMs. ADSL these days is pretty much ATM on the DSLAM and local DSL link. I can't name names, of course, but I know one major biotech and one major high tech company out this way who use this kind of application as a part of their remote access strategy. I also know several medical organizations that are using this for site to site connectivity ( small clinics and doctor's offices to central hospital ) The caveat in general is that at this point in time, you must use the same carrier for your DSL and ATM needs. I live on the west coast, and the local telco out here does indeed support this application. but only if you buy end to end from the telco. HTH -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of [EMAIL PROTECTED] Sent: Friday, September 14, 2001 2:33 AM To: [EMAIL PROTECTED] Subject: ADSL to ATM [7:19919] Hi All, Is there a way to connect a ADSL 1401 to local PTT and then to an E3 ATM 7000 Cisco. Site 1-Cisco ADSL (1401)--- ATM 25 --- ATM cloud (PTT)- ATM --- Site 2-Cisco 7000 with E3 interface. Thanks Tarry -- Sent through GMX FreeMail - http://www.gmx.net Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=19947t=19919 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: configuring bridge on router [7:19936]
You are right, like the OSPF number, it is local to the router and not propogated to adjacent routers. Dave mak wrote: Hi All, I would like to know if I configure: bridge 1 protocol ieee Is it any special meaning for the 1? I configure the bridging between two routers like this PC R1 R2 PC I configure bridge 1 for R1 and bridge 2 for R2. But the PC can browse each other by NetBEUI. Is it this identifier number nothing special? or is there any special function? Thank a lot mak -- David Madland Sr. Network Engineer CCIE# 2016 Qwest Communications Int. Inc. [EMAIL PROTECTED] 612-664-3367 Emotion should reflect reason not guide it Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=19950t=19936 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: TIME TO STOP RE: 'It's not the US they want to destroy. [7:19948]
Why dont we just suspend the newsgroup! since everyone with a dodgy name is a suspect. if we cant share information what is the point! We are here to help each other to progress our knowledge in the networking field dig each other out of the proverbial on occasions. If you feel that you dont want to answer a thread then so be it, everyone has to make there own decision. George --- Donald B Johnson jr wrote: I think we should take it a step further. I think we should stop giving out free consulting services we don't know who we could be aiding and abeting. Some of these names with the broken english surely show this may be the case. Someone yesterday was asking about webphones and it was from a domain with IRAN in its name. This may make sense in a few days when our boys and girls are in the field. Remember loose lips sink ships. - Original Message - From: Thad Gaston To: Sent: Thursday, September 13, 2001 12:29 PM Subject: TIME TO STOP RE: 'It's not the US they want to destroy. It's [7:19833] All and Paul As a muslim I would greatly appreciate that any further insults to the religion of Islam be refrained from this list. And as I have requested along with Priscilla, that this thread and topic discontinue as it both distracting and upsetting. Best Regards -Original Message- From: hal9001 [mailto:[EMAIL PROTECTED]] Sent: Thursday, September 13, 2001 2:49 PM To: [EMAIL PROTECTED] Subject: Re: 'It's not the US they want to destroy. It's our arrogance' [7:19819] Don't you mean the CULT of ALLAH..any so called religion that encourages this mayhem is a one way ticket to hell. Its nothing more than an evil cult! Karl - Original Message - From: John Mairs To: Sent: Thursday, September 13, 2001 6:20 AM Subject: RE: 'It's not the US they want to destroy. It's our arrogance' [7:19726] aaammen! Allah be paved! --- ed smith wrote: Respectfully I would say,,, let people blow some steam off! Who the hell cares about CISCO right now? Ed From: Thad Gaston To: ed smith , Subject: RE: 'It's not the US they want to destroy. It's our arrogance' [7:19679] Date: Wed, 12 Sep 2001 17:59:42 -0400 MIME-Version: 1.0 Received: from [12.109.97.147] by hotmail.com (3.2) with ESMTP id MHotMailBD69252000344136E8170C6D619313EB0; Wed, 12 Sep 2001 14:56:49 -0700 From [EMAIL PROTECTED] Wed, 12 Sep 2001 14:57:36 -0700 X-MimeOLE: Produced By Microsoft Exchange V6.0.4417.0 content-class: urn:content-classes:message Message-ID: X-MS-Has-Attach: X-MS-TNEF-Correlator: Thread-Topic: 'It's not the US they want to destroy. It's our arrogance' [7:19679] Thread-Index: AcE71YI1yqc/7joNR3ugD6ApyYlA6wAAC/Bg All, I would discourage any further post regarding this topic as it becoming more and more useless and distracting. None of our sentiments are going to bring back the lives of those that have passed on nor bring about the justice the we all would like to see. Let's keep the list on track and get back to what this list is intended for. Regards, Thad Gaston -Original Message- From: ed smith [mailto:[EMAIL PROTECTED]] Sent: Wednesday, September 12, 2001 5:36 PM To: [EMAIL PROTECTED] Subject: Re: 'It's not the US they want to destroy. It's our arrogance' [7:19679] That is the biggest load of crap I've ever heard! The people we see dancing in the streets of Palestine are brainwashed! The common person in the middle east would give anything to come and live in the U.S. and get out of their hell hole they call home. Believe me, I did 2 years there, it sucks!!! Nothing worth keeping in that part of the World. I don't see all those God forsaken countries having a problem with people wanting to immigrate there! If they believe they are God's chosen people, why didn't he make them from Hawaii, or Switzerland, or some other nice part of this World? They don't have the open airways or free flow of information to make logical decisions. They only believe what their ignorant and jealous leaders tell them. They wanted a Holy War I think they have it,, Holy @!#$ Ahkmed, here comes a Tomahawk missile! Holy @!#$ Al-@!#$, here comes a flights of F-15's!!! Holy @!#$ Al-Khobar, I think I'm going to see Allah! Wait and see brings new meaning to bombs bursting in air. YOU SEEM TWISTED, according to your last email anyway. _ Get your FREE download of MSN Explorer at http://explorer.msn.com/intl.asp misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: A deep OSPF Question [7:19952]
On Fri, 14 Sep 2001, Cisco Lover wrote: ARe we allowed to put IP ospf point to point command on loopback interfaces in order to get their actual mask instead of /32 in CCIE ALB??? Or do we have to use are0 range command to summarize this?? I would imagine you can use any method you like that works, so long as its within the guidelines of the question. I mean if the question says Without modifying the OSPF networking type.. or something like that then you can't use that method. If they don't disallow a method, then it should be fair game..but you really have to read carefully because when they exclude certain methods, they don't always just come out and say you can't use... you have to read into the question and understand the direction they are trying to steer you. This is why it is a great thing to know multiple ways of doing something, so you are prepared. Brian Thanks for the help. Cisco lover _ Get your FREE download of MSN Explorer at http://explorer.msn.com/intl.asp **Please read:http://www.groupstudy.com/list/posting.html --- I'm buying / selling used CISCO gear!! email me for a quote Brian Feeny, CCIE #8036 Netjam, LLC [EMAIL PROTECTED] http://www.netjam.net VISA/MC/AMEX/COD phone: 318-212-0245 30 day warranty fax: 318-212-0246 Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=19952t=19952 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
OT - but relevant [7:19953]
the folks at NANOG are reporting that the 25 Broadway facility in New York City has finally gone down. due to lack of power and generators running out of fuel having to shut down due to clogged intake valves. According to the list mavens, this facility is a termination point for a LOT of telephone and data connectivity to Europe and Africa. there may be implications to internet traffic elsewhere, as data takes different paths to get where its going. Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=19953t=19953 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
PIX Firewall question [7:19954]
Does anyone know if it is possible to have a connection to a specific host outside the network without having to re-authenticate? I am running PIX IOS 4.4(5). Thanks in advance for any help. Aaron Soucy IT Support Analyst Women's Health Connecticut 22 Waterville Road Avon, CT 06001 Phone: (860) 678-3496 Fax: (860) 678-3449 [EMAIL PROTECTED] Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=19954t=19954 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Why Cisco and not ...........!!! [7:19933]
The TAC is the best reason to buy Cisco. Service after the sale to keep the network going is worth the extra initial cost of Cisco. Good luck with your presentation. -Original Message- From: chica [mailto:[EMAIL PROTECTED]] Sent: Friday, September 14, 2001 8:44 AM To: [EMAIL PROTECTED] Subject: Why Cisco and not ...!!! [7:19933] Hello Guys, after recovering from the shock of WTC,I just remembered that life still has to goes on. I have a quest and it is : I am due to appear on an interview on Monday 17th Sep., and I have to give a presentation on why cisco, and not other competitors. I have to be able to convince my interviewers in fine english, why(and how) cisco products(old and new), protocols,strategy or policy gives cisco an edge over other competitors, and therefore places cisco at the top most position. I have gathered some facts already from cisco's website and have acquired some knowledge of cisco over the years from experience and certifications, but as this is a matter of do it well and get the job,or not,I thought it was a good idea to share your experiences,advice,facts etc,etc. I would be very thankful for any input at all. Thank you. chika __ Terrorist Attacks on U.S. - How can you help? Donate cash, emergency relief information http://dailynews.yahoo.com/fc/US/Emergency_Information/ Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=19955t=19933 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Information on building a Pix out of a PC [7:19775]
And for one we could see a PIX 515 boot up without the mouse not initialized message ;) I could finally plug one in to make it happy...rofl. - Original Message - From: Patrick Ramsey To: Sent: Friday, September 14, 2001 9:49 AM Subject: Re: Information on building a Pix out of a PC [7:19775] Well of course the os is proprieteryIt's cisco's But it runs on intel architecture, boots from compatible flash, and uses standard nicshence the abillity to run the os from a pc Even though this pc would have to have the nics that the os supports as well as the flash, it should still be possible. -Patrick [EMAIL PROTECTED] 09/14/01 12:51AM Unless things have changed in the past year or so, you cannot build a Pix on a PC. The PIX has a proprietary OS, which is specifically touted as NOT being portable to a PC platform. Since the OS is proprietary, it is considered less subject to attack than those sitting on known and vulnerable (MS unix) operating systems. Hope this helps Joe In a message dated 9/13/01 10:54:23 AM, [EMAIL PROTECTED] writes: a PC! Tmuzaina Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=19957t=19775 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Video/voice over IP [7:19905]
Thomas I've had a look round CCO and I can't see very much to do with video apart from marketing spiel. I was thinking that this should work but then I had of a couple of thoughts, from my experience with voip normally a call to or from an isdn interface would be a voice call and not a data call. I'm thinking that the video conferencing equipment accepts only data calls, maybe it is possible just send the traffic out of the isdn interface as a data call. Just found some info have a look at this http://www.cisco.com/warp/public/cc/pd/iosw/ioft/mucvmn/prodlit/ipmcm_ds.htm this is just an example but it looks like it could be possible, maybe someone else has done video and can provide some input cheers Thomas N. wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... Yes, the camera is H323 supported. If the module is not the right one, what module should I use in this case? Patrick Donlon wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... Thomas does the camera use h323 across the network? if so it should be possible, I'd be interested to here if it works cheers Thomas N. wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... Hm... my topology messed up with the line swapping. Here it goes again: - video conf. camera | Ethernet0 | Router | VIC-2BRI-NT/TE | ISDN cloud | ISDN video conf. camera Thomas N. wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... Sorry I missed my topology: ISDN video conf. camera | Video conf. camera ---Ethernet0-Router-VIC-2BRI-NT/TEISDN cloud---ISDN video conf. camera | ATT MCU Can my IP conf. video camera talk with ISDN video conf. camera using this VIC-2BRI-NT/TE module? Thomas N. wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... Hi All, In my lab scenario, I have an conference video camera that is connected to the LAN. On the router, I have a 2600 router with a VIC-2BRI-NT/TE module. This VIC-2BRI-NT/TE mdule is then connected to the a MCU from the ISP provider for video conference (say, ATT). Do you think it is possible to implement so that my video conference camera can call the ISP MCU with ISDN lines using the gateway mdule VIC-2BRI-NT/TE? Thanks!!! Thomas N. Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=19958t=19905 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Multicast traffic PIX [7:19946]
Ummmyou might as well get rid of the PIX if you're going to allow any any on all protocols On www.cisco.com a search for +pix +multicast brought up many links for me but rather than post them all, check it out for yourself. There is alot of useful stuff in there. - Original Message - From: kwock99 To: Sent: Friday, September 14, 2001 9:56 AM Subject: Multicast traffic PIX [7:19946] Hi All, I have tried to let the multicast traffic passing through the PIX firewall using Version 5.1 with the following command. access-list 100 permit icmp any any access-list 100 permit tcp any any access-list 100 permit udp any any access-group 100 in interface outside access-list 101 permit icmp any any access-list 101 permit tcp any any access-list 101 permit udp any any access-group 101 in interface inside Everything(ping, ftp) seems to work execpt the multicast traffice (media player, IP/TV). For the IP/TV, the viewer can get the content from the server. but cannot do start to play the program. It is same as when I am using the media player to access the Microsoft Media Server. I have tried to access the Multicast Server inside the LAN, and the server is working. Do I have to set up anything to make the PIX to pass through the multicast traffic? Thanks. Francis Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=19960t=19946 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Cisco PIX [7:19888]
I too would like to be included. Thanks Brad Moss CCNA Network Administrator CHRISTUS Health System Paris TX, 75460 - Original Message - From: zx yun To: Sent: Friday, September 14, 2001 2:49 AM Subject: RE: Cisco PIX [7:19888] Hirsch, Herb wrote: Hi Mike Please count me in please, I have access to a CCO account. Thanks Herb mike johnson wrote in message ... Hi Everyone, For those who are interested in learning Cisco PIX but do NOT want to spend a lot of money on buying an expensive PIX Firewall, I think I can help you. I have instructions on how to build a PIX firewall by using a PC. In case you didn't know, PIX firewall is Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=19959t=19888 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
FW: Why Cisco and not ...........!!! [7:19933]
I work at a subsidiary of a large healthcare company. My office is 100% Cisco for Routers and Switches. We have a total of 30 routers and 8 switches. I work with 30 remote sites, a main office and separate Data Center. I have attached a show version from one of our two 7505 core routers. As you can see it has been up for over 4 years without any problems. Our second has been up almost 2 years. My parent company is a Nortel shop. They have to re-boot their core router about every 45-60 days or more offten and many of their switches on a regular basis. Granted, they push a lot more data through their system, but still.. As approximately 1/3 of my remote sites run across the Parent company WAN a majority of the down time I am faced with is because of the Nortel equipment. I don't know if this will help, but it makes me feel better to vent a little. Please call me if you want any more specifics. CHSDCBsh clock 10:17:14.824 UTC Fri Sep 14 2001 CHSDCBsh ver Cisco Internetwork Operating System Software IOS (tm) GS Software (RSP-JV-M), Version 11.1(9)CA1, EARLY DEPLOYMENT RELEASE S Synced to mainline version: 11.1(9) Copyright (c) 1986-1997 by cisco Systems, Inc. Compiled Wed 26-Mar-97 22:34 by bellb Image text-base: 0x60010900, data-base: 0x60A0A000 ROM: System Bootstrap, Version 5.3.2(3.2) [kmac 3.2], MAINTENANCE INTERIM SOFTWE ROM: GS Software (RSP-JV-M), Version 11.1(6), RELEASE SOFTWARE (fc1) CHSDCB uptime is 4 years, 23 weeks, 2 days, 14 hours, 26 minutes System restarted by reload at 19:50:36 UTC Fri Apr 4 1997 System image file is slot0:1119ca.bin, booted via slot0 David Toalson 816-701-4142 -- From: chica[SMTP:[EMAIL PROTECTED]] Reply To: chica Sent: Friday, September 14, 2001 8:43 AM To: [EMAIL PROTECTED] Subject: Why Cisco and not ...!!! [7:19933] Hello Guys, after recovering from the shock of WTC,I just remembered that life still has to goes on. I have a quest and it is : I am due to appear on an interview on Monday 17th Sep., and I have to give a presentation on why cisco, and not other competitors. I have to be able to convince my interviewers in fine english, why(and how) cisco products(old and new), protocols,strategy or policy gives cisco an edge over other competitors, and therefore places cisco at the top most position. I have gathered some facts already from cisco's website and have acquired some knowledge of cisco over the years from experience and certifications, but as this is a matter of do it well and get the job,or not,I thought it was a good idea to share your experiences,advice,facts etc,etc. I would be very thankful for any input at all. Thank you. chika __ Terrorist Attacks on U.S. - How can you help? Donate cash, emergency relief information http://dailynews.yahoo.com/fc/US/Emergency_Information/ Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=19961t=19933 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: configuring bridge on router [7:19936]
The 1 is the bridge-group number, and has local significance. For traffic to be bridged across router interfaces, all the interfaces must belong to the same bridge group. CM - Original Message - From: mak To: Sent: Friday, September 14, 2001 2:59 PM Subject: configuring bridge on router [7:19936] Hi All, I would like to know if I configure: bridge 1 protocol ieee Is it any special meaning for the 1? I configure the bridging between two routers like this PC R1 R2 PC I configure bridge 1 for R1 and bridge 2 for R2. But the PC can browse each other by NetBEUI. Is it this identifier number nothing special? or is there any special function? Thank a lot mak Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=19962t=19936 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Long response RE: A TRIBUTE TO THE UNITED STATES [7:3336]
Also Raymond, your friend, Masood, has just recently gained a pretty good ally. He just went from having to fight a losing battle with the Taliban by himself, to having the entire power of the United States military, NATO, and other countries, fighting by his side. Lets hope they wipe your former country clean of this scourge, and give it back to good people such as yourself and your family. -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of James Haynes Sent: Friday, September 14, 2001 7:03 AM To: [EMAIL PROTECTED] Subject: Re: Long response RE: A TRIBUTE TO THE UNITED STATES [3:3336] Eloquently stated Raymond. God Bless you and your family. As posted here, so many people have tragic tales to tell. Mine is brighter picture. My sister who was at ground-zero made it out alive and is now at home with me. It was such a frantic time of uncertainty for my family it pains me to know others have gone through the same thing and are still living with the same uncertainty. Kind souls such as yourself are a welcome relief to hear at a time like this. My heart goes out to all people living through this nightmare. -- James Haynes Network Architect Cendant IT A+,MCSE,CCNA,CCDA,CCNP,CCDP, CQS-SNA/IPSS Raymond Thomas wrote in message news:[EMAIL PROTECTED]... I was asked where I was born since I am citizen not born in the US so here it goes. This will be a long email... and if there are many ignorant people on this board, then I don't mind not seeing their resumes anymore. Please read the whole thing and read between the lines if you can, and there shouldn't be a reason for flames if you do so. I was born in Afghanistan in 1977, making me 24 yrs. old (recruiting for 4 1/2 yrs). In 1978, Russia invaded our country and we had to flee to Pakistan as refugees, leaving many loved ones and all my family had built for themselves all the years they lived. My family was part of the top 5% wealthiest families in the country and very loved by all because we gave 30% of our earnings to the poor and employed 60% of the population in one of the major cities. We traded everything we owned... mansions, businesses, jewelry, farm animals, money and in return, we were allowed to flee to Pakistan. We gave them all up to Ahmad Shah Masood who has been fighting the Talibans for these past few years. Family members grew up with him and funded his armies to keep the peace. Masood has been fighting the Talibans for the past few years now, with very little funding and very little support and failing. He only has 5% of the country and the other 95% by the Talibans who are killing our men and children and raping our women. Masood asked the US for help years ago against the Taliban and warned them that they are an extremist group that will not be just a threat to Afghans in Afghanistan, but a threat to the world. Guess who has been hiding under the Taliban govt... Bin Ladin who is suspected for this tragic event. We then lived in Pakistan for 2 1/2 years till we got our visas to come to the US (NYC). My father was a very well known doctor in Afghanistan and when we came here, he wasn't allowed to practice medicine till he passed the American exams. In order for him to do so, he would have to learn English as a second language first, then try to pass the American exams... not easy to do with all the trauma sustained as refugees watching missiles flown over your head and watching loved ones blown apart. It took him another 8 years to do so. In the 8 years, he drove a cab for the first 5 years, just to make ends meet and then landed a job as an X-Ray Technician. Finally he passed and became a doctor, working for a prestigious hospital and now at the scene of the WTC helping others. We also have our own practice in Astoria, Queens in our home. He accepts Medicaid, knowing they don't pay doctors anything, but wanted to give low income families the same privileges of seeing a doctor without waiting 4 hours in ER. My older sister is in her 4th year Med school and every night after her shifts in Long Island, she commutes to St. Vincents and volunteers there from 8:00 - 1:00 am. Then back to Long Island at 6:00 am in the morning. I try to go there every night to NJ and try to give out water and food to the bravest people in our country, the firemen and police. I am Afghan by blood, but an American at heart for I have lived here for over 20 years of my life. I am also a Muslim, practicing peace and harmony amongst my friends. My boss and very close friend is Jewish. So is my colleague and second father on this group, you know who you are my friend. There are many Muslims that are peaceful people by the teachings of our religion. I ask all of you not to be fooled my extremists blanketing themselves with religion as true followers of that religion. God DID NOT say to kill yourself for me and take innocent lives with you. We don't live in a time where that should
traceroute [7:19963]
sometimes when I do a traceroute it skeeps some routers. Is there any way to adjusst time out or something to get traceroute to show all the routers that packet is going through? Regards, Alex [GroupStudy.com removed an attachment of type text/x-vcard which had a name of khramov.vcf] Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=19963t=19963 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: PIX Firewall question [7:19954]
I'm not sure I follow... You want a host internal to your firewall to have access to a host outside your firewall? Soucy, Aaron 09/14/01 11:10AM Does anyone know if it is possible to have a connection to a specific host outside the network without having to re-authenticate? I am running PIX IOS 4.4(5). Thanks in advance for any help. Aaron Soucy IT Support Analyst Women's Health Connecticut 22 Waterville Road Avon, CT 06001 Phone: (860) 678-3496 Fax: (860) 678-3449 [EMAIL PROTECTED] Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=19964t=19954 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Multicast traffic PIX [7:19946]
Maybe you should consider allowing PIM and IGMP -Original Message- From: Allen May [mailto:[EMAIL PROTECTED]] Sent: 14 September 2001 17:46 To: [EMAIL PROTECTED] Subject: Re: Multicast traffic PIX [7:19946] Ummmyou might as well get rid of the PIX if you're going to allow any any on all protocols On www.cisco.com a search for +pix +multicast brought up many links for me but rather than post them all, check it out for yourself. There is alot of useful stuff in there. - Original Message - From: kwock99 To: Sent: Friday, September 14, 2001 9:56 AM Subject: Multicast traffic PIX [7:19946] Hi All, I have tried to let the multicast traffic passing through the PIX firewall using Version 5.1 with the following command. access-list 100 permit icmp any any access-list 100 permit tcp any any access-list 100 permit udp any any access-group 100 in interface outside access-list 101 permit icmp any any access-list 101 permit tcp any any access-list 101 permit udp any any access-group 101 in interface inside Everything(ping, ftp) seems to work execpt the multicast traffice (media player, IP/TV). For the IP/TV, the viewer can get the content from the server. but cannot do start to play the program. It is same as when I am using the media player to access the Microsoft Media Server. I have tried to access the Multicast Server inside the LAN, and the server is working. Do I have to set up anything to make the PIX to pass through the multicast traffic? Thanks. Francis Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=19967t=19946 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: OT - but relevant [7:19953]
FYI... 60 Hudson seems to be fine... It's more a telcom location than IP As far as I can tell it's still on commercial power... It's behind the security corridor so there is no access... Worldcom/MCI circuits to have been greatly affected as they lost several DACS in other facilities... -Original Message- From: Chuck Larrieu [mailto:[EMAIL PROTECTED]] Sent: Friday, September 14, 2001 8:11 AM To: [EMAIL PROTECTED] Subject: OT - but relevant [7:19953] the folks at NANOG are reporting that the 25 Broadway facility in New York City has finally gone down. due to lack of power and generators running out of fuel having to shut down due to clogged intake valves. According to the list mavens, this facility is a termination point for a LOT of telephone and data connectivity to Europe and Africa. there may be implications to internet traffic elsewhere, as data takes different paths to get where its going. Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=19965t=19953 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Information on building a Pix out of a PC [7:19775]
REALLY? Makes you wonder why they would ever have mouse drivers embedded in their code! We use 525's here and I see nothing of the sort. Maybe they use VI to edit their code in and they just wanted cut and paste support! : ) Allen May 09/14/01 11:16AM And for one we could see a PIX 515 boot up without the mouse not initialized message ;) I could finally plug one in to make it happy...rofl. - Original Message - From: Patrick Ramsey To: Sent: Friday, September 14, 2001 9:49 AM Subject: Re: Information on building a Pix out of a PC [7:19775] Well of course the os is proprieteryIt's cisco's But it runs on intel architecture, boots from compatible flash, and uses standard nicshence the abillity to run the os from a pc Even though this pc would have to have the nics that the os supports as well as the flash, it should still be possible. -Patrick [EMAIL PROTECTED] 09/14/01 12:51AM Unless things have changed in the past year or so, you cannot build a Pix on a PC. The PIX has a proprietary OS, which is specifically touted as NOT being portable to a PC platform. Since the OS is proprietary, it is considered less subject to attack than those sitting on known and vulnerable (MS unix) operating systems. Hope this helps Joe In a message dated 9/13/01 10:54:23 AM, [EMAIL PROTECTED] writes: a PC! Tmuzaina Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=19966t=19775 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Information on building a Pix out of a PC [7:19775]
Yeah its' thereI thought I was seeing things the first time I noticed it so I issued another restart...sure enough...right there in the POST test ;) - Original Message - From: Patrick Ramsey To: ; Sent: Friday, September 14, 2001 10:53 AM Subject: Re: Information on building a Pix out of a PC [7:19775] REALLY? Makes you wonder why they would ever have mouse drivers embedded in their code! We use 525's here and I see nothing of the sort. Maybe they use VI to edit their code in and they just wanted cut and paste support! : ) Allen May 09/14/01 11:16AM And for one we could see a PIX 515 boot up without the mouse not initialized message ;) I could finally plug one in to make it happy...rofl. - Original Message - From: Patrick Ramsey To: Sent: Friday, September 14, 2001 9:49 AM Subject: Re: Information on building a Pix out of a PC [7:19775] Well of course the os is proprieteryIt's cisco's But it runs on intel architecture, boots from compatible flash, and uses standard nicshence the abillity to run the os from a pc Even though this pc would have to have the nics that the os supports as well as the flash, it should still be possible. -Patrick [EMAIL PROTECTED] 09/14/01 12:51AM Unless things have changed in the past year or so, you cannot build a Pix on a PC. The PIX has a proprietary OS, which is specifically touted as NOT being portable to a PC platform. Since the OS is proprietary, it is considered less subject to attack than those sitting on known and vulnerable (MS unix) operating systems. Hope this helps Joe In a message dated 9/13/01 10:54:23 AM, [EMAIL PROTECTED] writes: a PC! Tmuzaina Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=19968t=19775 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: traceroute [7:19963]
chances are, it's not skipping them but without an icmp reply from that router, it won't register. The ttl still gets decremented and the packet dropped, the tracing station then sends another icmp packet with a ttl of one hop past the previous. If that router is answering icmp requests, it will then decrement the ttl and drop the packet, then answer back via icmp. The station then starts the process all over again, increasing the ttl by one each time until it hits the destination. Now, if you are tracing to the same destination time and time again and sometimes you get a full trace and other times you don't, thew routers might just be too busy to respond to icmp requests. -Patrick khramov 09/14/01 12:06PM sometimes when I do a traceroute it skeeps some routers. Is there any way to adjusst time out or something to get traceroute to show all the routers that packet is going through? Regards, Alex [GroupStudy.com removed an attachment of type text/x-vcard which had a name of khramov.vcf] Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=19971t=19963 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
route summarisation question [7:19970]
A buddy and I are currently preparing for the BSCN exam. One of the review questions involving route summarization is as follows: 172.21.136.0/24 and 172.21.143.0/24 can be summarized as: ?? We both came to the same conclusion: ^ 172.21.136.0 - 10101100.00010101.10001000. 172.21.143.0 - 10101100.00010101.1000. ^ Both addresses have the first 20 bits in common so the summarized address would be: 172.21.136.0/21 However, Cisco says the answer is 172.21.134.0/21 Can someone please confirm we summarized this route right. I think the test from Cisco is wrong, typo or something Dyland Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=19970t=19970 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: PIX Firewall question [7:19954]
I dont think I worded my question properly. We currently have a 30 minute idle time limit. We have a server that needs to have access to a specific server without being subject to the normal timeout period. Aaron Soucy IT Support Analyst Women's Health Connecticut 22 Waterville Road Avon, CT 06001 Phone: (860) 678-3496 Fax: (860) 678-3449 [EMAIL PROTECTED] -Original Message- From: Patrick Ramsey [mailto:[EMAIL PROTECTED]] Sent: Friday, September 14, 2001 11:51 AM To: [EMAIL PROTECTED]; [EMAIL PROTECTED] Subject: Re: PIX Firewall question [7:19954] I'm not sure I follow... You want a host internal to your firewall to have access to a host outside your firewall? Soucy, Aaron 09/14/01 11:10AM Does anyone know if it is possible to have a connection to a specific host outside the network without having to re-authenticate? I am running PIX IOS 4.4(5). Thanks in advance for any help. Aaron Soucy IT Support Analyst Women's Health Connecticut 22 Waterville Road Avon, CT 06001 Phone: (860) 678-3496 Fax: (860) 678-3449 [EMAIL PROTECTED] Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=19972t=19954 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: FW: Why Cisco and not ...........!!! [7:19933]
ya know, I am a fan of if it ain't broke, don't fix it, but dudeDo you never want the fixes and features of newer code? Just curious... Especialy with Cisco NAT in it's infant stages... -Patrick David Toalson 09/14/01 11:52AM I work at a subsidiary of a large healthcare company. My office is 100% Cisco for Routers and Switches. We have a total of 30 routers and 8 switches. I work with 30 remote sites, a main office and separate Data Center. I have attached a show version from one of our two 7505 core routers. As you can see it has been up for over 4 years without any problems. Our second has been up almost 2 years. My parent company is a Nortel shop. They have to re-boot their core router about every 45-60 days or more offten and many of their switches on a regular basis. Granted, they push a lot more data through their system, but still.. As approximately 1/3 of my remote sites run across the Parent company WAN a majority of the down time I am faced with is because of the Nortel equipment. I don't know if this will help, but it makes me feel better to vent a little. Please call me if you want any more specifics. CHSDCBsh clock 10:17:14.824 UTC Fri Sep 14 2001 CHSDCBsh ver Cisco Internetwork Operating System Software IOS (tm) GS Software (RSP-JV-M), Version 11.1(9)CA1, EARLY DEPLOYMENT RELEASE S Synced to mainline version: 11.1(9) Copyright (c) 1986-1997 by cisco Systems, Inc. Compiled Wed 26-Mar-97 22:34 by bellb Image text-base: 0x60010900, data-base: 0x60A0A000 ROM: System Bootstrap, Version 5.3.2(3.2) [kmac 3.2], MAINTENANCE INTERIM SOFTWE ROM: GS Software (RSP-JV-M), Version 11.1(6), RELEASE SOFTWARE (fc1) CHSDCB uptime is 4 years, 23 weeks, 2 days, 14 hours, 26 minutes System restarted by reload at 19:50:36 UTC Fri Apr 4 1997 System image file is slot0:1119ca.bin, booted via slot0 David Toalson 816-701-4142 -- From: chica[SMTP:[EMAIL PROTECTED]] Reply To: chica Sent: Friday, September 14, 2001 8:43 AM To: [EMAIL PROTECTED] Subject: Why Cisco and not ...!!! [7:19933] Hello Guys, after recovering from the shock of WTC,I just remembered that life still has to goes on. I have a quest and it is : I am due to appear on an interview on Monday 17th Sep., and I have to give a presentation on why cisco, and not other competitors. I have to be able to convince my interviewers in fine english, why(and how) cisco products(old and new), protocols,strategy or policy gives cisco an edge over other competitors, and therefore places cisco at the top most position. I have gathered some facts already from cisco's website and have acquired some knowledge of cisco over the years from experience and certifications, but as this is a matter of do it well and get the job,or not,I thought it was a good idea to share your experiences,advice,facts etc,etc. I would be very thankful for any input at all. Thank you. chika __ Terrorist Attacks on U.S. - How can you help? Donate cash, emergency relief information http://dailynews.yahoo.com/fc/US/Emergency_Information/ Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=19969t=19933 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
More Dual FIFO Stuff [7:19974]
I got an answer from the CCO QA Forum but I'm still completely lost. Here is what they said: With voip, you can enable FRF.12 fragmentation, which sets up a dual FIFO queue at the interface level. The high priority queue takes in the PQ traffic from all pvcs, the low priority queue takes in the rest of the traffic. Okay. I'm not sure what that means. What the heck does FRF have to do with dual FIFO queues??? Good grief! If I configure LLQ, there are already two queues: a Priority Queue, with the rest of the traffic serviced using WFQ. The PQ must also be a FIFO queue, but what about the WFQ? What happens when I already have LLQ configured and then add FRF? What exactly is different about the queueing mechanisms? What happens to the WFQ? Does it get converted to a FIFO queue, even though it still shows up as WFQ in the config? That wouldn't make any sense. I'm wondering if we're dealing with queues inside of queues and that's where the confusion lies? Hmmm... Another engineer at Cisco said he could explain this to me. Perhaps I'll send him an email right now. Regards, John Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=19974t=19974 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: route summarisation question [7:19970]
The block is 136-144 in the /21 range so you'd be right, though you'd also be summarizing other addresses which you do not explicitly have connectivity to. *** REPLY SEPARATOR *** On 9/14/2001 at 12:19 PM The New Guy wrote: A buddy and I are currently preparing for the BSCN exam. One of the review questions involving route summarization is as follows: 172.21.136.0/24 and 172.21.143.0/24 can be summarized as: ?? We both came to the same conclusion: ^ 172.21.136.0 - 10101100.00010101.10001000. 172.21.143.0 - 10101100.00010101.1000. ^ Both addresses have the first 20 bits in common so the summarized address would be: 172.21.136.0/21 However, Cisco says the answer is 172.21.134.0/21 Can someone please confirm we summarized this route right. I think the test from Cisco is wrong, typo or something Dyland Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=19975t=19970 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Cisco Certified Network Instructor [7:19659]
Thanks for the info Tom, I am going through the fast track program for CCAI. Requires CCNA, 3 day fast track course and 2 exams Exams 1.Orientation Multiple choice questioneer 2.Semester 4 instructor lab If you have more details on the semester 4 lab or the orientation I would appreciate very much. Suranjith CCNA,MCP Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=19973t=19659 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: route summarisation question [7:19970]
Dyland, you're right, it is a typo or something. As a sanity check (probably a BAD habit) I use the subnet program offered by boson... according to that program: 172.21.134.0/21 = 172.21.128.1 to 172.21.235.254 while 172.21.136.0/21 = 172.21.128.1 to 172.21.136.1 to 172.21.143.254 so, I would say that you are right... hth, Dave Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=19976t=19970 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: route summarisation question [7:19970]
Derek... speaking of typo's my email was SUPPOSED to say: 172.21.134.0/21 = 172.21.128.1 to 172.21.135.254 while 172.21.136.0/21 = 172.21.136.1 to 172.21.143.254 Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=19977t=19970 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: TIME TO STOP RE: 'It's not the US they want to destroy. [7:19978]
C'mon, peeps; this isn't getting anywhere. Any serious political/religious/philosophical/etc discussion sure as hell shouldn't be taking place on a Cisco Study Group mailing list. Take it outside already GM Is there any chance we can deal with the theological arguments about where to place things in the OSI Model -- when that model doesn't have a place for them? It is -not- the Seven Commandments. Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=19978t=19978 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: traceroute [7:19963]
What you're seeing isn't a problem related to timeouts. Essentially, all a trace is is a series of regular ICMP pings with incremening TTL fields. If a particular router (say, the last hop when your TTL is set to 4) is configured to not respond to pings, you'll get a timeout. However, the routers on either side of it (the ones you hit when your TTL is set to 3 or 5, respectively) may respond to pings normally. Really nothing you can do about the one that timed out if it's not under your administrative control. BJ -Original Message- From: khramov [mailto:[EMAIL PROTECTED]] Sent: Friday, September 14, 2001 12:06 PM To: [EMAIL PROTECTED] Subject: traceroute [7:19963] sometimes when I do a traceroute it skeeps some routers. Is there any way to adjusst time out or something to get traceroute to show all the routers that packet is going through? Regards, Alex [GroupStudy.com removed an attachment of type text/x-vcard which had a name of khramov.vcf] Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=19979t=19963 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: route summarization question [7:19970]
Cisco wrong? Perish the thought!!! ;- seeing as 134 is 1110, and is in no way relevant here, I would suggest that the lazy no good subcontractor that Cisco hired to write / proof / tech review / whatever is wrong. welcome to the world of study materials. best wishes Chuck -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of The New Guy Sent: Friday, September 14, 2001 9:19 AM To: [EMAIL PROTECTED] Subject: route summarisation question [7:19970] A buddy and I are currently preparing for the BSCN exam. One of the review questions involving route summarization is as follows: 172.21.136.0/24 and 172.21.143.0/24 can be summarized as: ?? We both came to the same conclusion: ^ 172.21.136.0 - 10101100.00010101.10001000. 172.21.143.0 - 10101100.00010101.1000. ^ Both addresses have the first 20 bits in common so the summarized address would be: 172.21.136.0/21 However, Cisco says the answer is 172.21.134.0/21 Can someone please confirm we summarized this route right. I think the test from Cisco is wrong, typo or something Dyland Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=19980t=19970 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: traceroute [7:19963]
At 01:14 PM 9/14/01, Wilson, Bradley wrote: What you're seeing isn't a problem related to timeouts. Essentially, all a trace is is a series of regular ICMP pings with incremening TTL fields. Agreed, but just wanted to add that Cisco and Unix send a UDP packet when doing traceroute, not a ping. Microsoft sends an ICMP ping. If a particular router (say, the last hop when your TTL is set to 4) is configured to not respond to pings, you'll get a timeout. Only the last device would respond to the ping anyway. But the router could be rate limiting TTL exceeded messages or configured not to send them. Priscilla However, the routers on either side of it (the ones you hit when your TTL is set to 3 or 5, respectively) may respond to pings normally. Really nothing you can do about the one that timed out if it's not under your administrative control. BJ -Original Message- From: khramov [mailto:[EMAIL PROTECTED]] Sent: Friday, September 14, 2001 12:06 PM To: [EMAIL PROTECTED] Subject: traceroute [7:19963] sometimes when I do a traceroute it skeeps some routers. Is there any way to adjusst time out or something to get traceroute to show all the routers that packet is going through? Regards, Alex [GroupStudy.com removed an attachment of type text/x-vcard which had a name of khramov.vcf] Priscilla Oppenheimer http://www.priscilla.com Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=19981t=19963 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: route summarization question [7:19970]
dammit, Leigh Anne, now EVERYONE will know who to blame for any technical errors they catch! ;- -Original Message- From: Leigh Anne Chisholm [mailto:[EMAIL PROTECTED]] Sent: Friday, September 14, 2001 10:53 AM To: Chuck Larrieu; [EMAIL PROTECTED]; The New Guy Subject: RE: route summarization question [7:19970] To determine whether the question you have is right or wrong, take 172.21.134.0 and apply the mask 255.255.248.0. What range of addresses does this mask give you? 172.21.128.0 through 172.21.135.255. Now does that represent the range of IP addresses you've been asked to summarize? I think not. Let's try your answer. Take 172.21.136.0 and apply the mask 255.255.248.0. What range of addresses does that mask give you? 172.21.136.0 through 172.21.143.255. Does it fit the criteria for the question? Does it represent 172.21.136.0 and 172.21.143.0? Chuck's comments about the lazy no good subcontractor is kind of funny, because he's been an absolutely awesome technical editor for Sybex's new CCNP exam series... (-: -- Leigh Anne -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Chuck Larrieu Sent: Friday, September 14, 2001 11:24 AM To: [EMAIL PROTECTED] Subject: RE: route summarization question [7:19970] Cisco wrong? Perish the thought!!! ;- seeing as 134 is 1110, and is in no way relevant here, I would suggest that the lazy no good subcontractor that Cisco hired to write / proof / tech review / whatever is wrong. welcome to the world of study materials. best wishes Chuck -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of The New Guy Sent: Friday, September 14, 2001 9:19 AM To: [EMAIL PROTECTED] Subject: route summarisation question [7:19970] A buddy and I are currently preparing for the BSCN exam. One of the review questions involving route summarization is as follows: 172.21.136.0/24 and 172.21.143.0/24 can be summarized as: ?? We both came to the same conclusion: ^ 172.21.136.0 - 10101100.00010101.10001000. 172.21.143.0 - 10101100.00010101.1000. ^ Both addresses have the first 20 bits in common so the summarized address would be: 172.21.136.0/21 However, Cisco says the answer is 172.21.134.0/21 Can someone please confirm we summarized this route right. I think the test from Cisco is wrong, typo or something Dyland Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=19984t=19970 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: route summarization question [7:19970]
To determine whether the question you have is right or wrong, take 172.21.134.0 and apply the mask 255.255.248.0. What range of addresses does this mask give you? 172.21.128.0 through 172.21.135.255. Now does that represent the range of IP addresses you've been asked to summarize? I think not. Let's try your answer. Take 172.21.136.0 and apply the mask 255.255.248.0. What range of addresses does that mask give you? 172.21.136.0 through 172.21.143.255. Does it fit the criteria for the question? Does it represent 172.21.136.0 and 172.21.143.0? Chuck's comments about the lazy no good subcontractor is kind of funny, because he's been an absolutely awesome technical editor for Sybex's new CCNP exam series... (-: -- Leigh Anne -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Chuck Larrieu Sent: Friday, September 14, 2001 11:24 AM To: [EMAIL PROTECTED] Subject: RE: route summarization question [7:19970] Cisco wrong? Perish the thought!!! ;- seeing as 134 is 1110, and is in no way relevant here, I would suggest that the lazy no good subcontractor that Cisco hired to write / proof / tech review / whatever is wrong. welcome to the world of study materials. best wishes Chuck -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of The New Guy Sent: Friday, September 14, 2001 9:19 AM To: [EMAIL PROTECTED] Subject: route summarisation question [7:19970] A buddy and I are currently preparing for the BSCN exam. One of the review questions involving route summarization is as follows: 172.21.136.0/24 and 172.21.143.0/24 can be summarized as: ?? We both came to the same conclusion: ^ 172.21.136.0 - 10101100.00010101.10001000. 172.21.143.0 - 10101100.00010101.1000. ^ Both addresses have the first 20 bits in common so the summarized address would be: 172.21.136.0/21 However, Cisco says the answer is 172.21.134.0/21 Can someone please confirm we summarized this route right. I think the test from Cisco is wrong, typo or something Dyland Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=19982t=19970 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: route summarisation question [7:19970]
Your correct, here is the table and the URL to a neat little subnet calcuator http://www.cisco.com/techtools/ip_addr.html - IP Class: B IP Address: 172.21.134.0 Mask Bits: 5 Subnet Mask: 255.255.248.0 Subnets:30+1IP Major Net:172.21.0.0 Hosts/Subnet: 2046Major Net Bcast: 172.21.255.255 Subnets for Fixed Length Subnet Masking . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . No. Subnet HostsHostsBroadcast Address From To Address 0 172.21.0.0 172.21.0.1 172.21.7.254 172.21.7.255 1 172.21.8.0 172.21.8.1 172.21.15.254 172.21.15.255 2 172.21.16.0 172.21.16.1 172.21.23.254 172.21.23.255 3 172.21.24.0 172.21.24.1 172.21.31.254 172.21.31.255 4 172.21.32.0 172.21.32.1 172.21.39.254 172.21.39.255 5 172.21.40.0 172.21.40.1 172.21.47.254 172.21.47.255 6 172.21.48.0 172.21.48.1 172.21.55.254 172.21.55.255 7 172.21.56.0 172.21.56.1 172.21.63.254 172.21.63.255 8 172.21.64.0 172.21.64.1 172.21.71.254 172.21.71.255 9 172.21.72.0 172.21.72.1 172.21.79.254 172.21.79.255 10 172.21.80.0 172.21.80.1 172.21.87.254 172.21.87.255 11 172.21.88.0 172.21.88.1 172.21.95.254 172.21.95.255 12 172.21.96.0 172.21.96.1 172.21.103.254 172.21.103.255 13 172.21.104.0 172.21.104.1 172.21.111.254 172.21.111.255 14 172.21.112.0 172.21.112.1 172.21.119.254 172.21.119.255 15 172.21.120.0 172.21.120.1 172.21.127.254 172.21.127.255 16 172.21.128.0 172.21.128.1 172.21.135.254 172.21.135.255 17 172.21.136.0 172.21.136.1 172.21.143.254 172.21.143.255 18 172.21.144.0 172.21.144.1 172.21.151.254 172.21.151.255 19 172.21.152.0 172.21.152.1 172.21.159.254 172.21.159.255 20 172.21.160.0 172.21.160.1 172.21.167.254 172.21.167.255 21 172.21.168.0 172.21.168.1 172.21.175.254 172.21.175.255 22 172.21.176.0 172.21.176.1 172.21.183.254 172.21.183.255 23 172.21.184.0 172.21.184.1 172.21.191.254 172.21.191.255 24 172.21.192.0 172.21.192.1 172.21.199.254 172.21.199.255 25 172.21.200.0 172.21.200.1 172.21.207.254 172.21.207.255 26 172.21.208.0 172.21.208.1 172.21.215.254 172.21.215.255 27 172.21.216.0 172.21.216.1 172.21.223.254 172.21.223.255 28 172.21.224.0 172.21.224.1 172.21.231.254 172.21.231.255 29 172.21.232.0 172.21.232.1 172.21.239.254 172.21.239.255 30 172.21.240.0 172.21.240.1 172.21.247.254 172.21.247.255 31 172.21.248.0 172.21.248.1 172.21.255.254 172.21.255.255 The New Guy wrote: A buddy and I are currently preparing for the BSCN exam. One of the review questions involving route summarization is as follows: 172.21.136.0/24 and 172.21.143.0/24 can be summarized as: ?? We both came to the same conclusion: ^ 172.21.136.0 - 10101100.00010101.10001000. 172.21.143.0 - 10101100.00010101.1000. ^ Both addresses have the first 20 bits in common so the summarized address would be: 172.21.136.0/21 However, Cisco says the answer is 172.21.134.0/21 Can someone please confirm we summarized this route right. I think the test from Cisco is wrong, typo or something Dyland -- David Madland Sr. Network Engineer CCIE# 2016 Qwest Communications Int. Inc. [EMAIL PROTECTED] 612-664-3367 Emotion should reflect reason not guide it Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=19983t=19970 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Interconnecting Netware Server and Workstation... [7:19911]
Is the workstation directly connected to E0 on Router_2? What do you see with show int e0? Is it up, up? Is the workstation actually behind a switch and getting bit by no portfast? That's jumping to conclusions, I know, but it's such a common problem What happens when you try to log into the server? What is the error message on the workstation? Could you manually configure SAP at the workstation? Maybe the auto sense encap isn't working. Can the workstation do anything non-NetWare? For example, can it do an IP ping to the routers? Could you put a sniffer on the workstation? That would tell you what's happening. Please let us know what you find out. I'm collecting Novell troubleshooting scenarios! Thanks. ;-) Priscilla At 02:33 AM 9/14/01, you wrote: Hello, Am having difficulty being able to log into Netware 4.11 Server from a workstation. Setup is this: Netware 4.11 Server Tree: LHS Context: LHS Encapsulation: Ethernet_802.2 Network: EBDCB76E Server is attached to hub which is attached to E0 int on Router_1 We have Windows 2000 Pro Workstation attached to this hub also and can login to and manage server (everything works on local network). Router_1 IPX Routing enabled int E0 has IPX network address of EBDCB76E and encapsulation is SAP int S0 is DCE, clockrate is 56000, IPX net is 10, encap is HDLC ipx router rip network EBDCB76E network 10 Router_2 IPX Routing enabled int E0 has IPX net of 20 and encap is SAP int S1 is DTE, IPX net is 10, encap is HDLC ipx router rip network 10 network 20 Windows 2000 Pro Workstation is attached to E0 on Router_2 and IPX address is 20. Encap is on auto sense with Novell Client 4.8 Now, I can sh ipx servers and see the LHS services. Also, sh ipx routes and I have routes established on both routers. Am I missing something? Priscilla Oppenheimer http://www.priscilla.com Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=19985t=19911 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
CCSI/CCNI [7:19987]
How hard is a CCIE want to become a CCSI or CCNI? _ Get your FREE download of MSN Explorer at http://explorer.msn.com/intl.asp Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=19987t=19987 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Fwd: Re: Cisco PIX [7:19888]
I would like too. Thanks Howard Ngo From: Brad Moss Reply-To: Brad Moss To: [EMAIL PROTECTED] Subject: Re: Cisco PIX [7:19888] Date: Fri, 14 Sep 2001 11:43:04 -0400 I too would like to be included. Thanks Brad Moss CCNA Network Administrator CHRISTUS Health System Paris TX, 75460 - Original Message - From: zx yun To: Sent: Friday, September 14, 2001 2:49 AM Subject: RE: Cisco PIX [7:19888] Hirsch, Herb wrote: Hi Mike Please count me in please, I have access to a CCO account. Thanks Herb mike johnson wrote in message ... Hi Everyone, For those who are interested in learning Cisco PIX but do NOT want to spend a lot of money on buying an expensive PIX Firewall, I think I can help you. I have instructions on how to build a PIX firewall by using a PC. In case you didn't know, PIX firewall is _ Get your FREE download of MSN Explorer at http://explorer.msn.com/intl.asp Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=19986t=19888 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
OT: Fridays funnies [7:19989]
First off I would like to express my sincere condolences to the families, friends, and fellow colleagues affected in Tuesdays tragedy. Natasha -- A grandfather and granddaugher were sitting and talking when the young girl asked, Did God make you, Grandpa? Yes, God made me, the grandfather answered. A few minutes later, the little girl asked him, Did God make me too? Yes, He did, the older man answered. For a few minutes, the little girl seemed to be studying her grandpa, as well as her own reflection in the mirror, while her grandfather wondered what was running through her mind. At last she spoke up. You know, Grandpa, she said, God's doing a lot better job lately. A man was getting a haircut prior to a trip to Rome. He mentioned the trip to the barber who responded, Rome? Why would anyone want to go there? It's crowded and dirty and far away. You're crazy to go to Rome. So, how are you getting there? We're taking TWA, was the reply. We got a great rate! TWA? exclaimed the barber. That's a terrible airline. Their planes are old, their flight attendants are ugly, and they're always late. So, where are you staying in Rome? We'll be at the downtown International Marriott. That dump! That's the worst hotel in the city. The rooms are small, the service is surly and they're overpriced. So, whatcha doing when you get there? We're going to go to see the Vatican and we hope to see the Pope. That's rich, laughed the barber. You and a million other people trying to see him. He'll look the size of an ant. Boy, good luck on this lousy trip of yours. You're going to need it. A month later, the man again came in for his regular haircut. The barber asked him about his trip to Rome. It was wonderful, explained the man, not only were we on time in one of TWA's brand new planes, but it was overbooked and they bumped us up to first class. The food and wine were wonderful, and I had a beautiful 28 year old stewardess who waited on me hand and foot. And the hotel - it was great! They'd just finished a $25 million remodeling job and now it's the finest hotel in the city. They, too, were overbooked, so they apologized and gave us the presidential suite at no extra charge! Well, muttered the barber, I know you didn't get to see the Pope. Actually, we were quite lucky, for as we toured the Vatican, a Swiss Guard tapped me on the shoulder and explained that the Pope likes to personally meet some of the visitors, and if I'd be so kind as to step into his private room and wait, the pope would personally greet me. Sure enough, five minutes later the Pope walked through the door and shook my hand! I knelt down as he spoke a few words to me. Really? asked the Barber. What'd he say? He said, Where'd you get the lousy haircut? -- Natasha Flazynski CCNA, MCSE http://www.ciscobot.com My Cisco information site. http://www.botbuilders.com Artificial Intelligence and Linux development Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=19989t=19989 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: traceroute [7:19963]
So would the missing hop syndrome be caused by a router or firewall which is filtering any and all UDP packets (which a good portion of them are)? -Original Message- From: Priscilla Oppenheimer [mailto:[EMAIL PROTECTED]] Sent: Friday, September 14, 2001 1:57 PM To: [EMAIL PROTECTED] Subject: RE: traceroute [7:19963] At 01:14 PM 9/14/01, Wilson, Bradley wrote: What you're seeing isn't a problem related to timeouts. Essentially, all a trace is is a series of regular ICMP pings with incremening TTL fields. Agreed, but just wanted to add that Cisco and Unix send a UDP packet when doing traceroute, not a ping. Microsoft sends an ICMP ping. If a particular router (say, the last hop when your TTL is set to 4) is configured to not respond to pings, you'll get a timeout. Only the last device would respond to the ping anyway. But the router could be rate limiting TTL exceeded messages or configured not to send them. Priscilla However, the routers on either side of it (the ones you hit when your TTL is set to 3 or 5, respectively) may respond to pings normally. Really nothing you can do about the one that timed out if it's not under your administrative control. BJ -Original Message- From: khramov [mailto:[EMAIL PROTECTED]] Sent: Friday, September 14, 2001 12:06 PM To: [EMAIL PROTECTED] Subject: traceroute [7:19963] sometimes when I do a traceroute it skeeps some routers. Is there any way to adjusst time out or something to get traceroute to show all the routers that packet is going through? Regards, Alex [GroupStudy.com removed an attachment of type text/x-vcard which had a name of khramov.vcf] Priscilla Oppenheimer http://www.priscilla.com Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=19988t=19963 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: route summarisation question [7:19970]
Yeah, and good luck sneaking this thing into any Cisco cert test or the Lab. :-) (Now I've got this mental image of someone swallowing a condom with a rolled-up slip of paper in it... ;-) -Original Message- From: MADMAN [mailto:[EMAIL PROTECTED]] Sent: Friday, September 14, 2001 2:11 PM To: [EMAIL PROTECTED] Subject: Re: route summarisation question [7:19970] Your correct, here is the table and the URL to a neat little subnet calcuator http://www.cisco.com/techtools/ip_addr.html - IP Class: B IP Address: 172.21.134.0 Mask Bits: 5 Subnet Mask: 255.255.248.0 Subnets:30+1IP Major Net:172.21.0.0 Hosts/Subnet: 2046Major Net Bcast: 172.21.255.255 Subnets for Fixed Length Subnet Masking . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . No. Subnet HostsHostsBroadcast Address From To Address 0 172.21.0.0 172.21.0.1 172.21.7.254 172.21.7.255 1 172.21.8.0 172.21.8.1 172.21.15.254 172.21.15.255 2 172.21.16.0 172.21.16.1 172.21.23.254 172.21.23.255 3 172.21.24.0 172.21.24.1 172.21.31.254 172.21.31.255 4 172.21.32.0 172.21.32.1 172.21.39.254 172.21.39.255 5 172.21.40.0 172.21.40.1 172.21.47.254 172.21.47.255 6 172.21.48.0 172.21.48.1 172.21.55.254 172.21.55.255 7 172.21.56.0 172.21.56.1 172.21.63.254 172.21.63.255 8 172.21.64.0 172.21.64.1 172.21.71.254 172.21.71.255 9 172.21.72.0 172.21.72.1 172.21.79.254 172.21.79.255 10 172.21.80.0 172.21.80.1 172.21.87.254 172.21.87.255 11 172.21.88.0 172.21.88.1 172.21.95.254 172.21.95.255 12 172.21.96.0 172.21.96.1 172.21.103.254 172.21.103.255 13 172.21.104.0 172.21.104.1 172.21.111.254 172.21.111.255 14 172.21.112.0 172.21.112.1 172.21.119.254 172.21.119.255 15 172.21.120.0 172.21.120.1 172.21.127.254 172.21.127.255 16 172.21.128.0 172.21.128.1 172.21.135.254 172.21.135.255 17 172.21.136.0 172.21.136.1 172.21.143.254 172.21.143.255 18 172.21.144.0 172.21.144.1 172.21.151.254 172.21.151.255 19 172.21.152.0 172.21.152.1 172.21.159.254 172.21.159.255 20 172.21.160.0 172.21.160.1 172.21.167.254 172.21.167.255 21 172.21.168.0 172.21.168.1 172.21.175.254 172.21.175.255 22 172.21.176.0 172.21.176.1 172.21.183.254 172.21.183.255 23 172.21.184.0 172.21.184.1 172.21.191.254 172.21.191.255 24 172.21.192.0 172.21.192.1 172.21.199.254 172.21.199.255 25 172.21.200.0 172.21.200.1 172.21.207.254 172.21.207.255 26 172.21.208.0 172.21.208.1 172.21.215.254 172.21.215.255 27 172.21.216.0 172.21.216.1 172.21.223.254 172.21.223.255 28 172.21.224.0 172.21.224.1 172.21.231.254 172.21.231.255 29 172.21.232.0 172.21.232.1 172.21.239.254 172.21.239.255 30 172.21.240.0 172.21.240.1 172.21.247.254 172.21.247.255 31 172.21.248.0 172.21.248.1 172.21.255.254 172.21.255.255 The New Guy wrote: A buddy and I are currently preparing for the BSCN exam. One of the review questions involving route summarization is as follows: 172.21.136.0/24 and 172.21.143.0/24 can be summarized as: ?? We both came to the same conclusion: ^ 172.21.136.0 - 10101100.00010101.10001000. 172.21.143.0 - 10101100.00010101.1000. ^ Both addresses have the first 20 bits in common so the summarized address would be: 172.21.136.0/21 However, Cisco says the answer is 172.21.134.0/21 Can someone please confirm we summarized this route right. I think the test from Cisco is wrong, typo or something Dyland -- David Madland Sr. Network Engineer CCIE# 2016 Qwest Communications Int. Inc. [EMAIL PROTECTED] 612-664-3367 Emotion should reflect reason not guide it Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=19990t=19970 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
T1 back to Back [7:19992]
Hi! Everyone, I have 2 2611 with WIC-1DSU-T1 on each. I made the T1 back to back cable. I have trouble to bring up the serial interface. Can someone give me instruction or send me the config? Many thanks. Howard _ Get your FREE download of MSN Explorer at http://explorer.msn.com/intl.asp Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=19992t=19992 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
The new blueprints are in...(wallpaper) [7:19991]
[demime removed a uuencoded section named WTC2.jpg which was 1774 lines] Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=19991t=19991 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Design question [7:19993]
I've got 2 5505 at the core of the network. Then I've got anywhere from twenty to twenty five routers and about the same number of switches at the distribution and access layers of the network. One of the 5505 has blade with 8 gigabit ports, all the other port are 100 MbBaseFx. Original design was very messy. It had VLANs implemented but half of the network was in the management vlan. Shortly I am planning on redesigning some staff. I want to put all the routers and switches in the management VLAN. Dedicate a gigabit link for a server farm. I also want ot put all the bandwidth intensive networks on gigabit backbone. One thing that I am not sure about is how to configure my 5505. Would I want to implement HSRP on 5505, that would offer redundancy, however, it does not offer load balancing. Another idea that I was thinking about is implementing Spanning tree per vlan and configure access layer switches to run two vlans. Would you please give me some ideas on what I should do? Thanks in advance. Regards, Alex [GroupStudy.com removed an attachment of type text/x-vcard which had a name of khramov.vcf] Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=19993t=19993 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
CIT passed - CCNP done! [7:19994]
Hi all, Passed CIT today with an 895 to finish off my CCNP. Dropped just below my target of 900 for all the exams, but I've been rushed into this one a little as our company needs the CCNP by next week for Gold Partner. (Did BCRAN last Tuesday). I now feel like I've forgotten something if I don't have a book in my hand. The Cisco Press books have got me through it, with a few Boson exams when time permitted. Not sure where to go next - possibly CCDP, possibly Security specialisation, possibly CCIE written. Possibly to the pub first before I attack another book. Thanks to everyone for a great study group which always inspires. Gaz Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=19994t=19994 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: traceroute [7:19963]
At 02:36 PM 9/14/01, Wilson, Bradley wrote: So would the missing hop syndrome be caused by a router or firewall which is filtering any and all UDP packets (which a good portion of them are)? UDP or Ping are not relevant until you get to the final destination. The IP datagrams don't make it past the IP layer at the intermediate hops because the IP router decrements the TTL, drops the packet, and sends ICMP TTL exceeded. The missing hops could be because ICMP TTL exceeded is rate limited or filtered. Some service providers purposely don't send these to hide some of their internal hops. Gotta run. Priscilla -Original Message- From: Priscilla Oppenheimer [mailto:[EMAIL PROTECTED]] Sent: Friday, September 14, 2001 1:57 PM To: [EMAIL PROTECTED] Subject: RE: traceroute [7:19963] At 01:14 PM 9/14/01, Wilson, Bradley wrote: What you're seeing isn't a problem related to timeouts. Essentially, all a trace is is a series of regular ICMP pings with incremening TTL fields. Agreed, but just wanted to add that Cisco and Unix send a UDP packet when doing traceroute, not a ping. Microsoft sends an ICMP ping. If a particular router (say, the last hop when your TTL is set to 4) is configured to not respond to pings, you'll get a timeout. Only the last device would respond to the ping anyway. But the router could be rate limiting TTL exceeded messages or configured not to send them. Priscilla However, the routers on either side of it (the ones you hit when your TTL is set to 3 or 5, respectively) may respond to pings normally. Really nothing you can do about the one that timed out if it's not under your administrative control. BJ -Original Message- From: khramov [mailto:[EMAIL PROTECTED]] Sent: Friday, September 14, 2001 12:06 PM To: [EMAIL PROTECTED] Subject: traceroute [7:19963] sometimes when I do a traceroute it skeeps some routers. Is there any way to adjusst time out or something to get traceroute to show all the routers that packet is going through? Regards, Alex [GroupStudy.com removed an attachment of type text/x-vcard which had a name of khramov.vcf] Priscilla Oppenheimer http://www.priscilla.com Priscilla Oppenheimer http://www.priscilla.com Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=19995t=19963 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Ugly Access Lists [7:19996]
I just had to write the ugliest access list I've ever personally configured. I had to allow the following traffic: - First octet must be 10 - Second octect can be anything - Third octect must start with 200 - Fourth octet must be in the .32 subnet, assuming a /27 mask length. Using a single permit statement, how would you write this? I know how I did it, but for those of you needing some access list practice (and who actually feel like doing this sort of exercise at this time), I'd like to see how you would do it. Regards, John Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=19996t=19996 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
OT: Friday Funnies (Tech with a Twist) [7:19997]
I've asked Natasha to send this (1 - so that people wouldn't know it was from me) and (2 - because I hate cluttering the list with OT posts). However, she's likely just forgotten... and in the spirit of everyone needing a little laughter back in their lives, I've decided to post it. This one is dedicated to all those true techies out there... Uh-hem . Hangin' out in a bar... I was hanging out in a SCSI bar. A loud bandwidth played in the corner. I gave the place a binary search. I saw a little chip in the corner. She SIMMed like a pro. I traversed over to her. She pressed her Apples against me. Hey, Mac, do you have a hard drive? No, only a floppy, I replied. Well, then you need an Amiga, she said. Vi? Well, if I was your Amiga, we could interface. We went to a motel on a VESA local bus. The motel was SCSI-2. It needed to be debugged. So, how much is this going to cost me? I queried. She added it up right away. She had a mind like a...like a She could add really fast. She stripped her binaries. It was quite a procedure. I'm going to turn your software into hardware, she transmitted. She started to spreadsheet. So, are you ready to RAM? she called. I had been auditing everything. I sent a signal. It was time for the trap. All the agents burst through the gateway. My manager was with them. Awk! It's a RAID! she said. Don't arrest me! I'm a motherboard! How will I explain this to my Sun? The agents were not responding. They got ready to stop her process. She was getting desperate. Hey, I could do a favor for all of you. I'm fully multitasking. It didn't work. We're all UNIX. Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=19997t=19997 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Cisco PIX [7:19888]
Hello Mike, Could you also provide me the PIX instructions. Thanks Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=19998t=19888 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Cisco PIX [7:19888]
Mike, Pls. provide me with the PIX firewall information. My email is attached to this msg. Thanks, Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=1t=19888 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Ugly Access Lists [7:19996]
10.0.200.32 mask 0.255.0.15 -Original Message- From: John Neiberger [mailto:[EMAIL PROTECTED]] Sent: Friday, September 14, 2001 12:59 PM To: [EMAIL PROTECTED] Subject: Ugly Access Lists [7:19996] I just had to write the ugliest access list I've ever personally configured. I had to allow the following traffic: - First octet must be 10 - Second octect can be anything - Third octect must start with 200 - Fourth octet must be in the .32 subnet, assuming a /27 mask length. Using a single permit statement, how would you write this? I know how I did it, but for those of you needing some access list practice (and who actually feel like doing this sort of exercise at this time), I'd like to see how you would do it. Regards, John Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=20001t=19996 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: CIT passed - CCNP done! [7:19994]
WTG and Congrats! I take my CID tonight...wish me luck. ;) -Eric Varner Bell Network Services MCNE, CCDA, CCNP - Original Message - From: Gareth Hinton To: Sent: Friday, September 14, 2001 1:54 PM Subject: CIT passed - CCNP done! [7:19994] Hi all, Passed CIT today with an 895 to finish off my CCNP. Dropped just below my target of 900 for all the exams, but I've been rushed into this one a little as our company needs the CCNP by next week for Gold Partner. (Did BCRAN last Tuesday). I now feel like I've forgotten something if I don't have a book in my hand. The Cisco Press books have got me through it, with a few Boson exams when time permitted. Not sure where to go next - possibly CCDP, possibly Security specialisation, possibly CCIE written. Possibly to the pub first before I attack another book. Thanks to everyone for a great study group which always inspires. Gaz Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=2t=19994 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Loopback Address scheme (long) [7:20002]
Alright gang, Usually I just lurk. However, for those of you doing support for networks, I would like to know (sample) your loopback address scheme. We have a Hub spoke network, with our core network consisting of core services (server farm, etc) and our two WAN routers. Off these WAN routers are our regions (and off them branches). Currently there is little redundancy (as far as it being meshed--we have redundant links/isdn backup, etc). We are a purely OSPF shop. So, Core/WAN is Area 0.0.0.0 Regions/Branches are areas x.x.x.x (Each (region and their branches) are separate areas...) However, due to transitions, summarization is not practical (things have moved within the corp.) Thoughts on BEST PRACTICE of loopback addressing??? Should I take a /32 from within the major network of each region/branch use that, or should I use one class C (and /32 that) and just spread it amongst the sites? Also, take into consideration that we are moving towards a more partial meshed network. Confused? See examples below Core network: 10.1.0.0 /16 (summarized) 10.1.1.0 /24 (server farm) Region 1 10.32.0.0 /16 (not summarized) 10.32.1.0 /24 (local net 1) Branch 1 10.32.1.0 /24 (local net) Branch 2 10.32.2.0 /24 (local net) Region 2 10.44.0.0 /16 (not summarized--but in general this is the major network we are going to) 10.44.1.0 /24 (local net 1) 10.44.2.0 /24 (local net 2) Branch 1 10.32.7.0 /24 (local net) see can't summarize above due to discontiguous nets ;- Branch 2 10.44.217.0 /24 (local net) == so solution #1 would be core network devices use addresses (like) 10.1.2.2 /32 (using a new network here) 10.1.2.3 /32 (using a new network here) etc etc. Region 1 10.32.2.2 /32 (using a new network here) 10.32.2.3 /32 (using a new network here) Branch 1 10.32.3.2 /32 (using a new network here) Branch 2 10.32.4.2 /32 (using a new network here) Region 2 10.44.3.2 /32 (using a new network here) 10.44.3.3 /32 (using a new network here) Branch 1 10.32.8.2 /32 (using a new network here) Branch 2 10.44.218.2 /32 (using a new network here) == or solution #2 would be using ONE loopback network... core network devices use addresses (like) 10.99.99.2 /32 10.99.99.3 /32 etc etc. Region 1 10.99.99.4 /32 10.99.99.5 /32 Branch 1 10.99.99.6 /32 Branch 2 10.99.99.7 /32 Region 2 10.99.99.8 /32 10.99.99.9 /32 Branch 1 10.99.99.10 /32 Branch 2 10.99.99.11 /32 == and maybe I am just sweating the small stuff it really doesn't matter...just pondering it, because quite truthfully, I seem to only do HubSpoke OSPF networks...all my mesh/part. mesh networks were EIGRP... and I figured I'd share this as it might also be a prob/solution that get peoples minds on off the tragedy. TroyC -=-=-=- With sufficient thrust, pigs fly just fine. ---RFC 1925 Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=20002t=20002 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
DLSW+ QOS [7:20003]
How does QOS work when used on your WAN links, does it wait until the link is degrading before executing and if so, how does it compute this? For instance, I know that telnet and ftp are quite high from via sniffer. Is it feasible to implement a QOS to conserve my bandwidth for my critical applications now, or wait unlit people yell. Can I turn it on to protect bandwidth utilization and if so what flavor would you recommend. Particularly for SNA/STUN. Thanks in Advance. Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=20003t=20003 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Long response RE: A TRIBUTE TO THE UNITED STATES [7:3336]
BRAVO!! -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Raymond Thomas Sent: Friday, September 14, 2001 2:37 PM To: [EMAIL PROTECTED] Subject: RE: Long response RE: A TRIBUTE TO THE UNITED STATES [3:3336] I don't know what is going on with Taliban and if Afghans support them? I have family there, and family that used to be alive before they came to power. I know exactly what is going on because we get messages relayed to us from family that seek refuge in Pakistan, regarding others that live in Afghanistan. Let me put it in the simplest way, make believe Hitler took over France... the French are now ruled by the Nazi's and need to abide by their rules or they will die. The Talibans are the Nazi's in this case, and the French are the Afghans. Simple and clear now? Many Afghans will cheer the bombing of the Afghan government, the only downside is that there is always innocent people that will be in the line of fire and will die as well. GO USA! From Rahmeen! Raymond Thomas Vice President Lewis Consultants International, Inc. 516-498-2300 ext. 104 (NY office) 646-526-6171 cell -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] Sent: Friday, September 14, 2001 3:14 PM To: [EMAIL PROTECTED] Subject: RE: Long response RE: A TRIBUTE TO THE UNITED STATES [3:3336] I don't find it very surprising that someone named Osama Bin Zia can't have an understanding of what Raymond is trying to say. The point is that the evidence will come to light and we will make anyone or country associated with this pay a big price. I would suggest to you that you keep your head down and your mouth shut. USA -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Osama Bin Zia Sent: Friday, September 14, 2001 1:48 PM To: [EMAIL PROTECTED] Subject: Re: Long response RE: A TRIBUTE TO THE UNITED STATES [3:3336] Well, Now I disagree with you Raymond. As a human I feel sorry for the people who have died in the incident. But what I believe is that assumptions should not be the base to bomb somebody or country. This is terrorsim itself. Who knows people in Afghanistan like Taliban or not, certainly not you and not the people in CNN and BBC etc. Who knows if they are responsible for all this act or not. Killing those people is exactly similar to killing people in WTC. Then what's the difference. It has to be found out who is responsible for this act? If you have time to see this link I think this may help. http://www.dawn.com/weekly/ayaz/ayaz.htm - Original Message - From: Raymond Thomas To: Sent: Friday, September 14, 2001 10:35 PM Subject: RE: Long response RE: A TRIBUTE TO THE UNITED STATES [3:3336] Thank you James and everyone else that wrote me all the personal emails since this thread. I want to thank everyone for understanding and having and open heart and mind to understand that there are good and evil in all of society. Most of us need to be educated on the history of the countries being mentioned in the news since this catastrophic event before judging the people as a whole. Most people didn't even know where Afghanistan was located geographically on the globe and didn't know that Afghans are being RULED by the Talibans and NOT supporting them. I lost many family members in our country due to them and there is nothing more that I would like to see than the US and NATO forces to bomb the hell out of them. Sincerely, Raymond Thomas Vice President Lewis Consultants International, Inc. 516-498-2300 ext. 104 (NY office) 646-526-6171 cell -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of James Haynes Sent: Friday, September 14, 2001 8:03 AM To: [EMAIL PROTECTED] Subject: Re: Long response RE: A TRIBUTE TO THE UNITED STATES [3:3336] Eloquently stated Raymond. God Bless you and your family. As posted here, so many people have tragic tales to tell. Mine is brighter picture. My sister who was at ground-zero made it out alive and is now at home with me. It was such a frantic time of uncertainty for my family it pains me to know others have gone through the same thing and are still living with the same uncertainty. Kind souls such as yourself are a welcome relief to hear at a time like this. My heart goes out to all people living through this nightmare. -- James Haynes Network Architect Cendant IT A+,MCSE,CCNA,CCDA,CCNP,CCDP, CQS-SNA/IPSS Raymond Thomas wrote in message news:[EMAIL PROTECTED]... I was asked where I was born since I am citizen not born in the US so here it goes. This will be a long email... and if there are many ignorant people on this board, then I don't mind not seeing their resumes anymore. Please read the whole thing and read between the lines if you can, and there shouldn't be a reason for flames if you do so. I was born in Afghanistan in 1977, making me 24 yrs. old (recruiting for 4 1/2
RE: 'It's not the US they want to destroy. It's our arrogance' [7:20005]
I might say the same thing to you. Our American hearts go out to you. You'll pull through Gareth. You always do. :) Mark Smith PS: Thanks for the kind words. -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Gareth Hinton Sent: Thursday, September 13, 2001 8:32 PM To: [EMAIL PROTECTED] Subject: Re: 'It's not the US they want to destroy. It's our arrogance' [7:19889] I have no answers, Which is especially unfortunate as I have a CIT exam in 9 hours. Our British hearts go out to the people of the US during these terrible times. You'll pull through, you always do. Curtis Phillips wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... I am curious if our non-American friend would attempt to defend the British government and their history of foriegn policy? - Original Message - From: A non-American To: Sent: Thursday, September 13, 2001 1:20 PM Subject: RE: 'It's not the US they want to destroy. It's our arrogance' [7:19805] Gutless ? What cause would you train months for with a guarantee of death or life imprisonment ? The facts as I see them are - A. the victims were blameless and deserved nothing of what they received. My heart goes out especially to the rescue crews, imagine dying trying to help! B. the organisation and commitment was amazing, in a nuclear world retaliation must be very precise and fully calculated rather than knee-jerk. Do not underestimate these people, it would be very dumb indeed to assume that they are less intelligent than yourselves. C. many reading this will not like this but the actions of the US government for decades has been in the interest of the US and much blood has been spilt by them and 3rd parties funded by them. Is the hatred you feel for your attackers of your people less valid than theirs ? What attack against these people would you find unacceptable ? The gloves are off - no ? Somebody else out there feels this against your country. The US must try and find these people to make them answer for this but must also look inwards at the same time!! priority is to stop it happening again no ? Look at the tit for tat mess Israel is in... I'm English and for a long time American money has paid for bullets and semtex used in my country - children are dead as are many policemen not to mention the civilians popped off because they have the wrong religion. The level of ignorance in the US is truly amazing, everybody outside the US is disgusted by this act but not many are asking why, we've got a pretty good idea. Word of advice - we get CNN too and it's biased as hell, listen to the news from somewhere ANYWHERE else once in a while. A non-American -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Fenech, William J Sent: 13 September 2001 01:55 To: [EMAIL PROTECTED] Subject: RE: 'It's not the US they want to destroy. It's our arrogance' [7:19699] Don't waste your time with idiots like this (aka Reeta Sinha). The people who pulled off this gutless act, and the ones who support them should be exterminated, pure and simple. Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=20005t=20005 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Loopback Address scheme (long) [7:20002]
first question - do you need to advertise the loopbacks for any reason. ( I know what Cisco says in the training materials, but in fact there may not be reason to advertise them, and therefore numbering may not matter. ) second question - seeing as Cisco uses loopbacks as the source of RIDs ( router i.d.'s ), which do have significance in a network in some cases, would you benefit from having a consistent architecture with regards to your RID's? In general, good practice would say to use something that could be summarized out of the router, or at least out of the area/level/region/whatever. Problem is that using anything from within your inside block does take up at least an IP address, if not a subnet, depending upon how you do it. In my darker moments, I have considered that I may want some kind of consistent numbering scheme for loopbacks that 1) uniquely identifies that address as being a loopback address and 2) allows me to easily use that number to identify the router where is resides. just a couple of cents. Chuck -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of COULOMBE, TROY Sent: Friday, September 14, 2001 12:31 PM To: [EMAIL PROTECTED] Subject: Loopback Address scheme (long) [7:20002] Alright gang, Usually I just lurk. However, for those of you doing support for networks, I would like to know (sample) your loopback address scheme. We have a Hub spoke network, with our core network consisting of core services (server farm, etc) and our two WAN routers. Off these WAN routers are our regions (and off them branches). Currently there is little redundancy (as far as it being meshed--we have redundant links/isdn backup, etc). We are a purely OSPF shop. So, Core/WAN is Area 0.0.0.0 Regions/Branches are areas x.x.x.x (Each (region and their branches) are separate areas...) However, due to transitions, summarization is not practical (things have moved within the corp.) Thoughts on BEST PRACTICE of loopback addressing??? Should I take a /32 from within the major network of each region/branch use that, or should I use one class C (and /32 that) and just spread it amongst the sites? Also, take into consideration that we are moving towards a more partial meshed network. Confused? See examples below Core network: 10.1.0.0 /16 (summarized) 10.1.1.0 /24 (server farm) Region 1 10.32.0.0 /16 (not summarized) 10.32.1.0 /24 (local net 1) Branch 1 10.32.1.0 /24 (local net) Branch 2 10.32.2.0 /24 (local net) Region 2 10.44.0.0 /16 (not summarized--but in general this is the major network we are going to) 10.44.1.0 /24 (local net 1) 10.44.2.0 /24 (local net 2) Branch 1 10.32.7.0 /24 (local net) see can't summarize above due to discontiguous nets ;- Branch 2 10.44.217.0 /24 (local net) == so solution #1 would be core network devices use addresses (like) 10.1.2.2 /32 (using a new network here) 10.1.2.3 /32 (using a new network here) etc etc. Region 1 10.32.2.2 /32 (using a new network here) 10.32.2.3 /32 (using a new network here) Branch 1 10.32.3.2 /32 (using a new network here) Branch 2 10.32.4.2 /32 (using a new network here) Region 2 10.44.3.2 /32 (using a new network here) 10.44.3.3 /32 (using a new network here) Branch 1 10.32.8.2 /32 (using a new network here) Branch 2 10.44.218.2 /32 (using a new network here) == or solution #2 would be using ONE loopback network... core network devices use addresses (like) 10.99.99.2 /32 10.99.99.3 /32 etc etc. Region 1 10.99.99.4 /32 10.99.99.5 /32 Branch 1 10.99.99.6 /32 Branch 2 10.99.99.7 /32 Region 2 10.99.99.8 /32 10.99.99.9 /32 Branch 1 10.99.99.10 /32 Branch 2 10.99.99.11 /32 == and maybe I am just sweating the small stuff it really doesn't matter...just pondering it, because quite truthfully, I seem to only do HubSpoke OSPF networks...all my mesh/part. mesh networks were EIGRP... and I figured I'd share this as it might also be a prob/solution that get peoples minds on off the tragedy. TroyC -=-=-=- With sufficient thrust, pigs fly just fine. ---RFC 1925 Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=20006t=20002 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure
Re: Design question [7:19993]
I'm assuming you have RSM's in the 5505's. Actually you can load balance using HSRP by defining two groups and have half of your hosts default to the active HSRP address of RSM1 and the other half to active HSRP address on RSM2 of same VLAN. In the scenerio you describe though I have set up VLANS on RSMs, RSM1 active for even VLANs and RSM2 active for odd VLANs, each RSM backs up the other via HSRP. In the closet if you have more than 1 VLAN you set up a trunk to each switch, even VLANs forwarding to the switch routing the even VLANs and the inverse for the odd VLANs. Set up a trunk or ethercahnnel between the 5500's and make sure they are you root. This way you have redundancy and load balancing and I know it works:) Dave khramov wrote: I've got 2 5505 at the core of the network. Then I've got anywhere from twenty to twenty five routers and about the same number of switches at the distribution and access layers of the network. One of the 5505 has blade with 8 gigabit ports, all the other port are 100 MbBaseFx. Original design was very messy. It had VLANs implemented but half of the network was in the management vlan. Shortly I am planning on redesigning some staff. I want to put all the routers and switches in the management VLAN. Dedicate a gigabit link for a server farm. I also want ot put all the bandwidth intensive networks on gigabit backbone. One thing that I am not sure about is how to configure my 5505. Would I want to implement HSRP on 5505, that would offer redundancy, however, it does not offer load balancing. Another idea that I was thinking about is implementing Spanning tree per vlan and configure access layer switches to run two vlans. Would you please give me some ideas on what I should do? Thanks in advance. Regards, Alex [GroupStudy.com removed an attachment of type text/x-vcard which had a name of khramov.vcf] -- David Madland Sr. Network Engineer CCIE# 2016 Qwest Communications Int. Inc. [EMAIL PROTECTED] 612-664-3367 Emotion should reflect reason not guide it Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=20007t=19993 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: T1 back to Back [7:19992]
CSU on one side need to clock from the network, the other internal, one serial interface needs to provide clock, if you have access to Cisco here you go: http://www.cisco.com/warp/public/116/t1_back_to_back.html Dave Hoa Ngo wrote: Hi! Everyone, I have 2 2611 with WIC-1DSU-T1 on each. I made the T1 back to back cable. I have trouble to bring up the serial interface. Can someone give me instruction or send me the config? Many thanks. Howard _ Get your FREE download of MSN Explorer at http://explorer.msn.com/intl.asp -- David Madland Sr. Network Engineer CCIE# 2016 Qwest Communications Int. Inc. [EMAIL PROTECTED] 612-664-3367 Emotion should reflect reason not guide it Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=20010t=19992 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Cisco Certified Network Instructor [7:19659]
Yes, I had forgotten about the fast-track program. The skills based exam is pass/fail and is on the same level as that which you will be giving your students at the end of the semester. It will require you to configure a router(s) to implement one or more of the WAN technologies covered in Semester 4. Obviously, I can't tell you more than that. Good Luck, Prof. Tom Lisa, CCAI Community College of Southern Nevada Cisco Regional Networking Academy SUranjith Ariyapperuma wrote: Thanks for the info Tom, I am going through the fast track program for CCAI. Requires CCNA, 3 day fast track course and 2 exams Exams 1.Orientation Multiple choice questioneer 2.Semester 4 instructor lab If you have more details on the semester 4 lab or the orientation I would appreciate very much. Suranjith CCNA,MCP Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=20009t=19659 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: OT: Friday Funnies (Tech with a Twist) [7:19997]
Leigh Anne, Pretty Cool. I must say that the last few days have been tough, for everyone I'm sure. I just glad my sister never made it to work on time(she worked on the 83rd floor, tower 1). God is Good... Nigel. rom: Leigh Anne Chisholm Reply-To: Leigh Anne Chisholm To: [EMAIL PROTECTED] Subject: OT: Friday Funnies (Tech with a Twist) [7:19997] Date: Fri, 14 Sep 2001 15:03:58 -0400 I've asked Natasha to send this (1 - so that people wouldn't know it was from me) and (2 - because I hate cluttering the list with OT posts). However, she's likely just forgotten... and in the spirit of everyone needing a little laughter back in their lives, I've decided to post it. This one is dedicated to all those true techies out there... Uh-hem . Hangin' out in a bar... I was hanging out in a SCSI bar. A loud bandwidth played in the corner. I gave the place a binary search. I saw a little chip in the corner. She SIMMed like a pro. I traversed over to her. She pressed her Apples against me. Hey, Mac, do you have a hard drive? No, only a floppy, I replied. Well, then you need an Amiga, she said. Vi? Well, if I was your Amiga, we could interface. We went to a motel on a VESA local bus. The motel was SCSI-2. It needed to be debugged. So, how much is this going to cost me? I queried. She added it up right away. She had a mind like a...like a She could add really fast. She stripped her binaries. It was quite a procedure. I'm going to turn your software into hardware, she transmitted. She started to spreadsheet. So, are you ready to RAM? she called. I had been auditing everything. I sent a signal. It was time for the trap. All the agents burst through the gateway. My manager was with them. Awk! It's a RAID! she said. Don't arrest me! I'm a motherboard! How will I explain this to my Sun? The agents were not responding. They got ready to stop her process. She was getting desperate. Hey, I could do a favor for all of you. I'm fully multitasking. It didn't work. We're all UNIX. Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=19997t=19997 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] Get your FREE download of MSN Explorer at http://explorer.msn.com Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=20011t=19997 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Ugly Access Lists [7:19996]
You're having a laugh. Is that a Friday Funny? Who wanted that done? Why? Using the - Cheat, do it in your head, get it terribly wrong method: access list 101 permit ip any 10.0.200.32 0.255.55.31 Too many beers in to Friday night to check it, or even think about it. I'll regret posting this tomorrow. Gaz John Neiberger wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... I just had to write the ugliest access list I've ever personally configured. I had to allow the following traffic: - First octet must be 10 - Second octect can be anything - Third octect must start with 200 - Fourth octet must be in the .32 subnet, assuming a /27 mask length. Using a single permit statement, how would you write this? I know how I did it, but for those of you needing some access list practice (and who actually feel like doing this sort of exercise at this time), I'd like to see how you would do it. Regards, John Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=20012t=19996 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: route summarization question [7:19970]
cat's outta da bag now. but i'm sure your name will be there (Technical Editor, Chuck Larrieu, CCIE 82**) on the front of every text. ;-) -e- - Original Message - From: Chuck Larrieu To: Sent: Friday, September 14, 2001 11:11 AM Subject: RE: route summarization question [7:19970] dammit, Leigh Anne, now EVERYONE will know who to blame for any technical errors they catch! ;- -Original Message- From: Leigh Anne Chisholm [mailto:[EMAIL PROTECTED]] Sent: Friday, September 14, 2001 10:53 AM To: Chuck Larrieu; [EMAIL PROTECTED]; The New Guy Subject: RE: route summarization question [7:19970] To determine whether the question you have is right or wrong, take 172.21.134.0 and apply the mask 255.255.248.0. What range of addresses does this mask give you? 172.21.128.0 through 172.21.135.255. Now does that represent the range of IP addresses you've been asked to summarize? I think not. Let's try your answer. Take 172.21.136.0 and apply the mask 255.255.248.0. What range of addresses does that mask give you? 172.21.136.0 through 172.21.143.255. Does it fit the criteria for the question? Does it represent 172.21.136.0 and 172.21.143.0? Chuck's comments about the lazy no good subcontractor is kind of funny, because he's been an absolutely awesome technical editor for Sybex's new CCNP exam series... (-: -- Leigh Anne -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Chuck Larrieu Sent: Friday, September 14, 2001 11:24 AM To: [EMAIL PROTECTED] Subject: RE: route summarization question [7:19970] Cisco wrong? Perish the thought!!! ;- seeing as 134 is 1110, and is in no way relevant here, I would suggest that the lazy no good subcontractor that Cisco hired to write / proof / tech review / whatever is wrong. welcome to the world of study materials. best wishes Chuck -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of The New Guy Sent: Friday, September 14, 2001 9:19 AM To: [EMAIL PROTECTED] Subject: route summarisation question [7:19970] A buddy and I are currently preparing for the BSCN exam. One of the review questions involving route summarization is as follows: 172.21.136.0/24 and 172.21.143.0/24 can be summarized as: ?? We both came to the same conclusion: ^ 172.21.136.0 - 10101100.00010101.10001000. 172.21.143.0 - 10101100.00010101.1000. ^ Both addresses have the first 20 bits in common so the summarized address would be: 172.21.136.0/21 However, Cisco says the answer is 172.21.134.0/21 Can someone please confirm we summarized this route right. I think the test from Cisco is wrong, typo or something Dyland _ Do You Yahoo!? Get your free @yahoo.com address at http://mail.yahoo.com Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=20014t=19970 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]