RE: tftp server crashes when uploading new image [7:20961]
Hi all, Are you using Cisco's TFTP server? From my experience, this program shows quite often this kind of errors (specially when downloading IOS to 3640 or 3660). There are some freeware tftp servers, maybe you should try one of them. Regards === Panayiotis Psihoyios CCNP (Security, ATM), CCDP, MCP Network Engineer Synet S.A. 118 B, Agias Eleousis Street Marousi GR 151 25 Greece Tel: ++ 301 0 61 29 500 Fax: ++ 301 0 61 25 313 http://www.synet.com.gr === -Original Message- From: Gary Crouch [mailto:[EMAIL PROTECTED]] Sent: Tuesday, September 25, 2001 8:59 AM To: [EMAIL PROTECTED] Subject: tftp server crashes when uploading new image [7:20961] I am trying to upgrade my 3640 router from 11.1 to 12.5 when I try yo TFTP I get a app error the instruction at 0x006e6900 referenced memory at 0x006e6900 the memory could not be read click ok to terminate the program. I have used the same file and TFTP server to upgrade our other 3640 router the only difference is that this router is running BGP anyone know how to get around this ? current version is 11.1 Thanks Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=20964t=20961 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Hex calculator allowed on BCMSN exam ? [7:20965]
Hi colleagues, I am about to take the BCMSN exam; I know that you are allowed to use a calculator on the exam, but does this calculator also allow you to convert decimals or binaries to hex ? I hope this question doesn't violate the non-disclosure agreements... Regards, Hans _ Get your FREE download of MSN Explorer at http://explorer.msn.com/intl.asp Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=20965t=20965 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
CBAC [7:20966]
Has anyone implemented CBAC? If so is it difficult to configure and what are you opinions of it? Thanks Mike __ Disclaimer and confidentiality note Everything in this e-mail and any attachments relating to the official business of Standard Bank Investment Corporation (Stanbic) is proprietary to the company. It is confidential, legally privileged and protected by law.\ Stanbic does not own and endorse any other content. Views and opinions are those of the sender unless clearly stated as being that of Stanbic. The person addressed in the e-mail is the sole authorised recipient. Please notify the sender immediately if it has unintentionally reached you and do not read, disclose or use the content in any way. Stanbic can not assure that the integrity of this communication has been maintained nor that it is free of errors, virus, interception or interference. __ Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=20966t=20966 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Cisco Certifications for Sale ? [7:20747]
Raina I agree with you 100%. -Original Message- From: Tribavan Raina [mailto:[EMAIL PROTECTED]] Sent: Tue, September 25, 2001 6:26 AM To: [EMAIL PROTECTED] Subject: RE: Cisco Certifications for Sale ? [7:20747] Please stop this topic and start discussin cisco technology which is what we are here for and not how india and pakistan have test centres -Original Message- From: MJ [mailto:[EMAIL PROTECTED]] Sent: Monday, 24 September 2001 6:43 p.m. To: [EMAIL PROTECTED] Subject: Re: Cisco Certifications for Sale ? [7:20747] In India I think the same is now really tken care since the company who are employing people are very professional, Somehow Pakistan is coming as major problem everywhere ! Whether it's politics or technology, they are beating in cheatings. bproud proud wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... I have heard .. like if u pay Rs.500.00 ($12.00) to an agent.. u can walk away with a Driver's license in India and Pak. --- sam adams wrote: Even if IDs are checked, how reliable are the ids in pakistan and india? -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Justin Sent: Monday, September 24, 2001 12:03 AM To: [EMAIL PROTECTED] Subject: Re: Cisco Certifications for Sale ? [7:20747] ya it is very dependant on the person i suppose... i wont get into my prometric-phone trouble... but att one of the testing sites, i told the secretary i was there. So she went to setup the test. 45 minutes later she still isnt back i suspect something is wrong :P so she comes back finaly oh sorry, i set up the exam and went off, i forgot you were here not to mention she didnt ask for id... chimps are getting smart these days i hear? not to mention a chimp on rollerblades saying goodbye will give you something to laugh about if you fail the exam :) Hi, It would seem the ID bit is largely dependent on the person running the test site. I have always had to provide evidence of who I am. I have even been known to the person in the test site but still had to provide the evidence so it could be ticked off as sighted. [EMAIL PROTECTED] http://travel.yahoo.com.au - Yahoo! Travel - Got Itchy feet? Get inspired! Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=20967t=20747 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
How config changes logged? [7:20968]
Hi everyone? Does anybody know how to view the last time the config changed or how to view which commands added at what time to a router? I tried show log I only see updowns etc.. Best regards, Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=20968t=20968 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
PRI NM for 7206?? [7:20969]
H guys, Any idea which one is module/Part no for 7206 PRI ISDN ??? Thanks for help. _ Get your FREE download of MSN Explorer at http://explorer.msn.com/intl.asp Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=20969t=20969 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: PRI NM for 7206?? [7:20970]
htm -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Cisco Lover Sent: 25 September 2001 09:46 To: [EMAIL PROTECTED] Cc: [EMAIL PROTECTED] Subject: PRI NM for 7206?? H guys, Any idea which one is module/Part no for 7206 PRI ISDN ??? Thanks for help. _ Get your FREE download of MSN Explorer at http://explorer.msn.com/intl.asp **Please read:http://www.groupstudy.com/list/posting.html Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=20970t=20970 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: PRI NM for 7206?? [7:20971]
On Tue, 25 Sep 2001, Cisco Lover wrote: H guys, Any idea which one is module/Part no for 7206 PRI ISDN ??? PA-MC-2T1 - 2 T-1/PRIs PA-MC-4T1 - 4 T-1/PRIs PA-MC-8T1 - 8 T-1/PRIs -- Jay Hennigan - CCIE #7880 - Network Administration - [EMAIL PROTECTED] NetLojix Communications, Inc. - http://www.netlojix.com/ WestNet: Connecting you to the planet. 805 884-6323 Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=20971t=20971 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: delay and delay [7:20926]
EIGRP uses minimum bandwidth and total delay to compute metric (at lest in its default configuration). I'm a little bit confused: delay of each interface is inversely proportional to the configured interface bandwidth, so It seems that EIGRP metric is affected only by configured bandwidth (f(bandwidth)+ sum of f(1/bandwidth)): is this correct? Please give a look to the following output. I see in the first subinterface BW 3264 and in the second one BW 2544, but the same DLY value: 80. Rome-7206vxr#sh int atm2/0.1 ATM2/0.1 is up, line protocol is up Hardware is ENHANCED ATM PA Description: P-to-P PVC with Milan Internet address is 213.x.y.14/30 MTU 4470 bytes, BW 3264 Kbit, DLY 80 usec, reliability 255/255, txload 1/255, rxload 4/255 Encapsulation ATM 0 packets input, 0 bytes 0 packets output,0 bytes 99302 OAM cells input, 99302 OAM cells output Rome-7206vxr#sh int atm2/0.2 ATM2/0.2 is up, line protocol is up Hardware is ENHANCED ATM PA Description: P-to-P PVC with London Internet address is 213.x.y.74/30 MTU 4470 bytes, BW 2544 Kbit, DLY 80 usec, reliability 255/255, txload 1/255, rxload 4/255 Encapsulation ATM 0 packets input, 0 bytes 0 packets output,0 bytes 99121 OAM cells input, 99121 OAM cells output You suggest you can tweak the interface bandwidth and my english is awful: what does it mean? Thank you and have a nide day to all, Teresa Teresa Presutto Grapes Italia S.p.A. Italy Network Development Via Chiana, 1 - 00198 Rome (Italy) Tel +39 06 84550.1, fax +39 06 84550.640, mobile +39 348 4719450 - Original Message - From: Priscilla Oppenheimer To: [EMAIL PROTECTED] Sent: Monday, September 24, 2001 9:41 PM Subject: Re: delay and delay [7:20926] With ping, delay is actually measured. The router reports how long it takes to get replies. EIGRP delay is not dynamically measured. Delay of each interface is inversely proportional to the configured interface bandwidth. Total delay for an EIGRP route is a sum of each interface delay, as reported in EIGRP Updates. If you want EIGRP's delay to be somewhat more realistic, you can tweak the interface bandwidth. Priscilla At 02:06 PM 9/24/01, TP wrote: Group, what is the relation (if any) between the total delay I see in sh ip eigrp topology and the total delay I see in a simple ping? From show eigrp topology I see total delay associated to a point-to-point atm pvc lower than total delay showed for a E1 hdlc (between the same routers, 1 hop). If a make an extended ping I experience a lower delay with E1 than pvc atm (and, to be honest, this is what I'd like to see) Thanks in advace, Teresa Priscilla Oppenheimer http://www.priscilla.com Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=20972t=20926 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: How config changes logged? [7:20968]
aaa accounting exec default start-stop group tacacs+ aaa accounting commands 0 default start-stop group tacacs+ aaa accounting commands 1 default start-stop group tacacs+ aaa accounting commands 15 default start-stop group tacacs+ aaa accounting network default start-stop group tacacs+ aaa accounting connection default start-stop group tacacs+ aaa accounting system default start-stop group tacacs+ AAA accounting will solve this problem. However, you will have t setup a TACACS server and an accounting file. From: Cisco Breaker Reply-To: Cisco Breaker To: [EMAIL PROTECTED] Subject: How config changes logged? [7:20968] Date: Tue, 25 Sep 2001 04:00:47 -0400 Hi everyone? Does anybody know how to view the last time the config changed or how to view which commands added at what time to a router? I tried show log I only see misconduct and Nondisclosure violations to [EMAIL PROTECTED] Get your FREE download of MSN Explorer at http://explorer.msn.com Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=20973t=20968 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Aironet 350 authenication using RADIUS [7:20974]
Hi all, Our company just wants to implement wireless LAN and we will go for Cisco Aironet 350. In authenication, the Cisco guy told us that we need to use their ACS RADIUS server. My question is: can I use another RADIUS server for it? What is the requirement? Can anyone suggest a RADIUS server to me? Thanks a lot. Dovelet Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=20974t=20974 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: How config changes logged? [7:20968]
My problem is to view this type of info without TACACS, with show commands. Best regards, Sean Young wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... aaa accounting exec default start-stop group tacacs+ aaa accounting commands 0 default start-stop group tacacs+ aaa accounting commands 1 default start-stop group tacacs+ aaa accounting commands 15 default start-stop group tacacs+ aaa accounting network default start-stop group tacacs+ aaa accounting connection default start-stop group tacacs+ aaa accounting system default start-stop group tacacs+ AAA accounting will solve this problem. However, you will have t setup a TACACS server and an accounting file. From: Cisco Breaker Reply-To: Cisco Breaker To: [EMAIL PROTECTED] Subject: How config changes logged? [7:20968] Date: Tue, 25 Sep 2001 04:00:47 -0400 Hi everyone? Does anybody know how to view the last time the config changed or how to view which commands added at what time to a router? I tried show log I only see misconduct and Nondisclosure violations to [EMAIL PROTECTED] Get your FREE download of MSN Explorer at http://explorer.msn.com Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=20975t=20968 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: I want some help about this 504 questions [7:20767]
i see where you are cominbg from my friend i believe you are correct on Q2 but incorrect on Q1 if the packets are perfectly formed they will be transported through the internetwork.. but as Q1 says would cause broadcast traffic to be contained within the physical segment? from a physical standpoint it is correct..if the gateway you are sending frames to dosent understand those frame it will drop them Host interface is constantly sending frame fragments Host interface is constantly sending frames with CRC errors these hosts are basically sending garbage to the gateway and as such the gateway won`t know what to do with them ..so it will drop them .. all brodcast igmp and icmp request`s aslong as properly formatted will traverse the internet ok yes there are ways and means around this but from the point of view of the questionQ1 is correct Anyone Else ?. steve From: ou henry Reply-To: ou henry To: [EMAIL PROTECTED] Subject: I want some help about this 504 questions [7:20767] Date: Sat, 22 Sep 2001 03:39:59 -0400 1. In a switch internetwork, which two situations would cause broadcast traffic to be contained within the physical segment? a. Host interface is constantly sending IGMP requests. b. Host interface is constantly sending frame fragments. c. Host interface is constantly sending IP echo requests. d. Host interface is constantly sending broadcast frames. e. Host interface is constantly sending frames with CRC errors. Cheetsheet's answer: be my choise: cd 2. In which two situations would cause broadcast traffic NOT be contained within the VLAN boundries? a. Host interface is constantly sending IGMP requests. b. Host interface is constantly sending frame fragments. c. Host interface is constantly sending IP echo requests. d. Host interface is constantly sending broadcast frames. e. Host interface is constantly sending frames with CRC errors. I still choose: cd _ Get your FREE download of MSN Explorer at http://explorer.msn.com/intl.asp Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=20976t=20767 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Aironet 340 [7:20978]
Hi All I've a Cisco Aironet 340 access point and I have a current association from the AP to the LAN card in my laptop. However I am not getting a DHCP address from the LAN which the AP is connected to. I'm using Win 2K and I've read a URL about the aironet drivers needing to be 16bit not 32 bit, could this be an issue? Also the AP gets a DHCP address for it's own interface without any problems, can anyone help? Regards Patrick Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=20978t=20978 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Cisco Certifications for Sale ? [7:20747]
According to one of my friend's in school from India: I passed already nine MS exams and I am greatful to my friends for all their support Is that what u call professionalism??? Cool!!! By the way, dont bring country politics in the middle. Its just going to hurt people and threads will grow larger. USA lifted sanctions on India along with Pakistan,only becuase the cooperation they r getting from Pakistan.Pakistan always brings benefits to ur home!! --- MJ wrote: In India I think the same is now really tken care since the company who are employing people are very professional, Somehow Pakistan is coming as major problem everywhere ! Whether it's politics or technology, they are beating in cheatings. bproud proud wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... I have heard .. like if u pay Rs.500.00 ($12.00) to an agent.. u can walk away with a Driver's license in India and Pak. --- sam adams wrote: Even if IDs are checked, how reliable are the ids in pakistan and india? -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Justin Sent: Monday, September 24, 2001 12:03 AM To: [EMAIL PROTECTED] Subject: Re: Cisco Certifications for Sale ? [7:20747] ya it is very dependant on the person i suppose... i wont get into my prometric-phone trouble... but att one of the testing sites, i told the secretary i was there. So she went to setup the test. 45 minutes later she still isnt back i suspect something is wrong :P so she comes back finaly oh sorry, i set up the exam and went off, i forgot you were here not to mention she didnt ask for id... chimps are getting smart these days i hear? not to mention a chimp on rollerblades saying goodbye will give you something to laugh about if you fail the exam :) Hi, It would seem the ID bit is largely dependent on the person running the test site. I have always had to provide evidence of who I am. I have even been known to the person in the test site but still had to provide the evidence so it could be ticked off as sighted. [EMAIL PROTECTED] http://travel.yahoo.com.au - Yahoo! Travel - Got Itchy feet? Get inspired! [EMAIL PROTECTED] __ Do You Yahoo!? Get email alerts NEW webcam video instant messaging with Yahoo! Messenger. http://im.yahoo.com Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=20977t=20747 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Cisco Certifications for Sale ? [7:20747]
Well how come politics came into picture ? I think this is real hobby of Paki's to get things involved. Mukul Shahid Muhammad Shafi wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... According to one of my friend's in school from India: I passed already nine MS exams and I am greatful to my friends for all their support Is that what u call professionalism??? Cool!!! By the way, dont bring country politics in the middle. Its just going to hurt people and threads will grow larger. USA lifted sanctions on India along with Pakistan,only becuase the cooperation they r getting from Pakistan.Pakistan always brings benefits to ur home!! --- MJ wrote: In India I think the same is now really tken care since the company who are employing people are very professional, Somehow Pakistan is coming as major problem everywhere ! Whether it's politics or technology, they are beating in cheatings. bproud proud wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... I have heard .. like if u pay Rs.500.00 ($12.00) to an agent.. u can walk away with a Driver's license in India and Pak. --- sam adams wrote: Even if IDs are checked, how reliable are the ids in pakistan and india? -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Justin Sent: Monday, September 24, 2001 12:03 AM To: [EMAIL PROTECTED] Subject: Re: Cisco Certifications for Sale ? [7:20747] ya it is very dependant on the person i suppose... i wont get into my prometric-phone trouble... but att one of the testing sites, i told the secretary i was there. So she went to setup the test. 45 minutes later she still isnt back i suspect something is wrong :P so she comes back finaly oh sorry, i set up the exam and went off, i forgot you were here not to mention she didnt ask for id... chimps are getting smart these days i hear? not to mention a chimp on rollerblades saying goodbye will give you something to laugh about if you fail the exam :) Hi, It would seem the ID bit is largely dependent on the person running the test site. I have always had to provide evidence of who I am. I have even been known to the person in the test site but still had to provide the evidence so it could be ticked off as sighted. [EMAIL PROTECTED] http://travel.yahoo.com.au - Yahoo! Travel - Got Itchy feet? Get inspired! [EMAIL PROTECTED] __ Do You Yahoo!? Get email alerts NEW webcam video instant messaging with Yahoo! Messenger. http://im.yahoo.com Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=20979t=20747 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
3Com Switch [7:20980]
Hi I have a 3Com Switch 3300 - 24 Port Superstack II that unfortunately I dont know the password. Maybe somebody can give advice in how to do a password recovery /hack the device? I have not been able to find in the 3Com site documentation for this purpose. Thanks Sil Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=20980t=20980 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Cisco 1600 [7:20981]
I have a router, Cisco 1600 Somehow I have lost the pasword. Please suggest how can I get into ? Mukul Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=20981t=20981 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Cisco Aironet vs Lucent ORiNOCO [7:20954]
I don't know about the Lucent stuff, but I installed some Cisco Aironet 340 series equipment last summer (99), and I have not had one trouble call at all. These are used constantly for classes and haven't had one probem. In fact I almost forgot we had them installed. You can't beat that :-) Donman - Original Message - From: Steiven Poh-(Jaring MailBox) To: Sent: Monday, September 24, 2001 9:25 PM Subject: Cisco Aironet vs Lucent ORiNOCO [7:20954] Hello Folks, Any one got idea about above comparison? Rgds, Steiven Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=20982t=20954 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Cisco 1600 [7:20981]
this all u need i think! http://www.cisco.com/warp/public/474/pswdrec_1600.shtml --- MJ wrote: I have a router, Cisco 1600 Somehow I have lost the pasword. Please suggest how can I get into ? Mukul [EMAIL PROTECTED] = Shahid Muhammad Shafi Network Engineer Level(3) Communications MCSE+I/MCSE(Win2K),CNA,CCNP,CCDP Please help feed hungry people worldwide http://www.hungersite.com/ A small thing each of us can do to help others less fortunate than ourselves __ Do You Yahoo!? Get email alerts NEW webcam video instant messaging with Yahoo! Messenger. http://im.yahoo.com Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=20983t=20981 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: 3Com Switch [7:20980]
Found this on 3com's site: - SolutionID: 2.0.76269083.3278305 Title: SuperStack II Switch 3300 - How to recover lost password on a 1100/3300 switch? Goal How to recover lost password on a 1100/3300 switch? Fact 3C16980 Fact 3C16980A Fact SuperStack II Switch 3300 Fact SuperStack II Switch 3300 Fact SuperStack II Switch 1100 Fact default password Symptom lost password Cause The password was changed and now the switch cannot be accessed. Fix The default password for the admin account is no password (just press enter when prompted for the password). If you can not access the switch try the security account using security as login and security as password. As soon as you gain access to the switch modify the admin account and re-login as administrator. You should avoid to access as security for administrative tasks. If you still have no access to the switch, please, contact 3Com to RMA the unit. - Hi I have a 3Com Switch 3300 - 24 Port Superstack II that unfortunately I dont know the password. Maybe somebody can give advice in how to do a password recovery /hack the device? I have not been able to find in the 3Com site documentation for this purpose. Thanks Sil Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=20984t=20980 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
VoIP issue ... [7:20985]
sorry if a VoIP problem is inappropriate to post here, but I know some of you guys/gals have some serious knowledge on the subject. any help would be greatly appreciated: Specs on software/hardware I have: CallManager 3.0(9) PIX 515 Cat6k Sup 6.2(2), MSFC IOS 12.1(8a)E Dot1q trunking on all - CatOS/IOS mix on internal switches ok, anyone with VoIP experience or knowledge ... here's the situation. upon the purchase of a bloody Cat6000, we just upgraded our entire network, which is NAT'd behind a PIX 515, to have a seperate voice or aux. VLAN 14. We also moved, in addition to the ports which have a 7960 phone attached, CallManager and the Voice Gateway router to VLAN 14. AFter a few mishaps ( I was stupid enough to accidentally make a port connected to a redundant Local Directory utilizing HUB an Auxiliary port) all our phones at the Main location work fine and live happily in good ol' VLAN 14. All phones reside in a /24 subnet of 10.5.14.0 as do CM, VG, and the VLAN14 interface on the MSFC on the Cat. However, we have a branch in another city which is connected through a PIX IpSec Tunnell and the IP phones there use the same VG and CM as the Main branch, b/c it should be almost completely transparent (with almost being the operative word). One problem is (I think) the PIX can't recognize the 802.1q tagging w/ regards to VLANs. The phones at the remote office are working, however, the Quality is choppy (I understand that upon hitting layer 3 the Cos/ToS bits are dropped when reclassified to layer 2)AND they can NOT see the Corporate Directory located on CM. I don't understand this at all b/c it's obviously exhanging skinny's with CM if its booting up and making/receiving calls. The phone are not using the DHCP on the CM, and instead are assigned IP's statically. The fact that they are in the default native VLAN shouldn't matter when it comes to seeing the corporate directory. When you try to see the Directory it attempts to connect and times out? My questions are: 1) Am I right in assuming that even if do make the ports at the remote branch trunked voice ports assigned to VLAN 14 that PIX will not pass the VLAN dot1q tagging? I didn't initially think this, but another ntwk engineer here said this was so. How can I get these devices into VLAN14? 2) Why can the phones at the Remote site not connect to the corporate directory on CM, and how can i fix it? From that network, i can ping CM and the phones are making calls. The remote phones are on network: 10.2.14.0 255.255.248.0 - w/ the default route being the PIX interface 10.2.9.1. Routers at both ends are 7500's over PVC. the tracert from an interface on that network goes like: 1) 10.5.9.17 (Main branch internal routing via linux kernel/4912) 2) 10.5.12.1 (cat6k msfc) 3) 10.5.14.2 (callmanager1..com) 3) Another problem: We use UNITY 2.4 voicemail and it is located on Exchange Srvr. on VLAN 1. We can't listen to voice messages through outlook now that VLAN14 is implemented, and the MWI's are not working? Does Unity have to be in the voice VLAN? I know this question may be out of the official scope of the board, so apologies if this is inappropriate. any insight on any of these questions/issues, again, would be great! thanks in advance! jason Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=20985t=20985 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: UrlScan: Save from Code Red or Nimda [7:20887]
Good point. I missed the part about choking his leased line. The only way to stop that would be upstream as you stated. Kent Hundley wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... You can lock your network down all you want but without getting help from your provider you cannot keep packets from the Internet from entering your WAN connection and eating your bandwidth. I can assure you that no matter how locked down your network, anyone anywhere in the world can flood your link, even if every packet that reaches your router/firewall is blocked. The only way to block the traffic from reaching your WAN line is to block it at the provider level. This is what the poster asked in the original question, how to keep traffic which he is already blocking from choking his leased line. -Kent -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Dennis H Sent: Monday, September 24, 2001 11:44 AM To: [EMAIL PROTECTED] Subject: Re: UrlScan: Save from Code Red or Nimda [7:20887] Come on Kent... there's much one could do without asking ones provider anything... I have my network totally locked down and I didn't ask my provider squat... Kent Hundley wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... You need to ask your provider for assistance. The level of assistance will vary from provider to provider. -Kent -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of MJ Sent: Monday, September 24, 2001 5:44 AM To: [EMAIL PROTECTED] Subject: UrlScan: Save from Code Red or Nimda [7:20887] I recently seen this tool from microsoft called urlscan. This seems to be good tool to save the IIS from the virus attack of Nimda and code red. But one problem is still there that lot of hackers are trying to get in to the server and thus creating lot of traffic and choking up my leased lines. Well how to combat this ? Mukul Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=20986t=20887 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Cisco 1600 [7:20981]
Mukul, The following link http://www.cisco.com/warp/public/474/ will take you to a cisco web site where all documents for password recovery for all cisco equipment are available. You should have this link in your favorites for future references, Every one that I knows that works in this environments does this as soon as they get a new laptop. JB -Original Message- From: MJ To: [EMAIL PROTECTED] Sent: 9/25/2001 7:02 AM Subject: Cisco 1600 [7:20981] I have a router, Cisco 1600 Somehow I have lost the pasword. Please suggest how can I get into ? Mukul Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=20989t=20981 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: which layer do the ospf bgp rip work on [7:20953]
Priscilla; Couldn't it be argued that the *act* of routing is actually a layer 3 activity, however the routing protocols actually reside at the application layer. My reasoning for this, is if you look at the various routing protocols, their function is to exchange information, and it is a different process that actually forwards the packets. For example, you can configure a cisco router with static routes to build its routing table *or* you can configure OSPF, RIP, EIGRP, etc. Which results in new process running on the router to manage the information exchange, yet the actual routing of the packets are still managed by the same process that static routes uses. I am not necessarily disagreeing with you, just trying to start some conversation on the subject. Thanks __ Thomas Crowe Senior Systems Engineer / Architect CTS Professional Services - Atlanta Phone: 770-664-3900 *** Note New Cell Number *** Cell: 678-521-0360 __ -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] Sent: Monday, September 24, 2001 11:27 PM To: [EMAIL PROTECTED] Subject: Re: which layer do the ospf bgp rip work on [7:20953] Network layer. Routing is a fundamental component of the network layer. At 10:14 PM 9/24/01, lhill peng wrote: which layer do the routing protocol such as ospf rip bgp eigrp work on? sb said that they are on application, others on network what is the right answer?? Priscilla Oppenheimer http://www.priscilla.com [GroupStudy.com removed an attachment of type text/x-vcard which had a name of Thomas Crowe.vcf] Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=20990t=20953 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: How config changes logged? [7:20968]
You are trying to solve a somewhat complex problem with a simplistic solution. It is not possible, IMHO. From: Cisco Breaker Reply-To: Cisco Breaker To: [EMAIL PROTECTED] Subject: Re: How config changes logged? [7:20968] Date: Tue, 25 Sep 2001 06:58:11 -0400 My problem is to view this type of info without TACACS, with show commands. Best regards, Sean Young wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... aaa accounting exec default start-stop group tacacs+ aaa accounting commands 0 default start-stop group tacacs+ aaa accounting commands 1 default start-stop group tacacs+ aaa accounting commands 15 default start-stop group tacacs+ aaa accounting network default start-stop group tacacs+ aaa accounting connection default start-stop group tacacs+ aaa accounting system default start-stop group tacacs+ AAA accounting will solve this problem. However, you will have t setup a TACACS server and an accounting file. From: Cisco Breaker Reply-To: Cisco Breaker To: [EMAIL PROTECTED] Subject: How config changes logged? [7:20968] Date: Tue, 25 Sep 2001 04:00:47 -0400 Hi everyone? Does anybody know how to view the last time the config changed or how to view which commands added at what time to a router? I tried show log I only see misconduct and Nondisclosure violations to [EMAIL PROTECTED] Get your FREE download of MSN Explorer at http://explorer.msn.com misconduct and Nondisclosure violations to [EMAIL PROTECTED] Get your FREE download of MSN Explorer at http://explorer.msn.com Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=20991t=20968 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: which layer do the ospf bgp rip work on [7:20953]
I dont agree cos BGP uses TCP for sending route updates and TCP is at transport layer. That has nothing to do with the placement of the protocol in the stack. It's a question of the payload, which is network layer information. Just because a protocol is transmitted using a protocol at layer (N) doesn't make the payload protocol layer (N+1). Management and control protocols do not have the same rules as application protocols. -Original Message- From: Priscilla Oppenheimer [mailto:[EMAIL PROTECTED]] Sent: Monday, 24 September 2001 7:27 p.m. To: [EMAIL PROTECTED] Subject: Re: which layer do the ospf bgp rip work on [7:20953] Network layer. Routing is a fundamental component of the network layer. At 10:14 PM 9/24/01, lhill peng wrote: which layer do the routing protocol such as ospf rip bgp eigrp work on? sb said that they are on application, others on network what is the right answer?? Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=20994t=20953 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Cisco Aironet vs Lucent ORiNOCO [7:20954]
Is both work with Linux OS? Steiven - Original Message - From: netman To: Sent: Tuesday, September 25, 2001 8:21 PM Subject: Re: Cisco Aironet vs Lucent ORiNOCO [7:20954] I don't know about the Lucent stuff, but I installed some Cisco Aironet 340 series equipment last summer (99), and I have not had one trouble call at all. These are used constantly for classes and haven't had one probem. In fact I almost forgot we had them installed. You can't beat that :-) Donman - Original Message - From: Steiven Poh-(Jaring MailBox) To: Sent: Monday, September 24, 2001 9:25 PM Subject: Cisco Aironet vs Lucent ORiNOCO [7:20954] Hello Folks, Any one got idea about above comparison? Rgds, Steiven Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=20993t=20954 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: which layer do the ospf bgp rip work on [7:20953]
which layer do the routing protocol such as ospf rip bgp eigrp work on? sb said that they are on application, others on network what is the right answer?? They are layer management protocols at the network layer. This is not covered in the basic OSI Reference Model, but in the Management Annex to it, and the OSI Routeing Architecture document, both from ISO. Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=20992t=20953 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: seraching for tacacs server [7:20872]
Sean- For what it's worth, you nailed it on the head about the old debate of Wintel and Linux( Unix) I happen to have a small background in Solaris and over the last few years, it has proven to be invaluable as a network engineer. Either from understanding how things work to being able to have an intelligent conversation with the Unix admins. A trend I'm starting to see in two different jobs now is that the Cisco geeks are coming in with ONLY cisco knowledge.. they are clueless about Unix , windows or anything else on the wire. Needless to say this causes no end of problems. As far as TACACS goes, I went looking last weekend myself for it and everything pointed to it being deleted from Cisco's web site as an EOL product. I found a freebie for my linx box at www.tuxfinder.com...even in the RPM package for us lazy people ;) MikeS Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=20995t=20872 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Catalyst 4000 Configuration [7:20996]
Guys, Is there a difference with configuring the Catalyst 4000 as oppose to a Catalyst 5000? Is the operating system the same or even similar? Ray _ Get your FREE download of MSN Explorer at http://explorer.msn.com/intl.asp Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=20996t=20996 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: CBAC [7:20966]
I like the CBAC. Not extremely hard to configure. -Original Message- From: Hawthorne, Mike MM [mailto:[EMAIL PROTECTED]] Sent: Tuesday, September 25, 2001 2:42 AM To: [EMAIL PROTECTED] Subject: CBAC [7:20966] Has anyone implemented CBAC? If so is it difficult to configure and what are you opinions of it? Thanks Mike __ Disclaimer and confidentiality note Everything in this e-mail and any attachments relating to the official business of Standard Bank Investment Corporation (Stanbic) is proprietary to the company. It is confidential, legally privileged and protected by law.\ Stanbic does not own and endorse any other content. Views and opinions are those of the sender unless clearly stated as being that of Stanbic. The person addressed in the e-mail is the sole authorised recipient. Please notify the sender immediately if it has unintentionally reached you and do not read, disclose or use the content in any way. Stanbic can not assure that the integrity of this communication has been maintained nor that it is free of errors, virus, interception or interference. __ Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=20998t=20966 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: seraching for tacacs server [7:20872]
Here is the Cisco link. The software is still available on ftp-eng.cisco.com However, it does require a properly formatted e-mail address as the anonymous password. http://www.cisco.com/warp/public/480/tacplus.shtml Jeff. -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] Sent: Tuesday, September 25, 2001 10:13 AM To: [EMAIL PROTECTED] Subject: Re: seraching for tacacs server [7:20872] Sean- For what it's worth, you nailed it on the head about the old debate of Wintel and Linux( Unix) I happen to have a small background in Solaris and over the last few years, it has proven to be invaluable as a network engineer. Either from understanding how things work to being able to have an intelligent conversation with the Unix admins. A trend I'm starting to see in two different jobs now is that the Cisco geeks are coming in with ONLY cisco knowledge.. they are clueless about Unix , windows or anything else on the wire. Needless to say this causes no end of problems. As far as TACACS goes, I went looking last weekend myself for it and everything pointed to it being deleted from Cisco's web site as an EOL product. I found a freebie for my linx box at www.tuxfinder.com...even in the RPM package for us lazy people ;) MikeS Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=20999t=20872 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
IP OSPF database to IP Route table question [7:21000]
I have been working with a number of differnt OSPF configurations (CCBootcamp labs 12) and it seems that I always run into a situation where my routers have the entire OSPF database but the routes do not get injected into the routing table. After a series of shutting interfaces and a couple of router reboots they will then appear Note: This is strictly OSPF, no redistribution Question: What is the process for extracting routes from the OSPF database and placing the routes in the routing table ? I have read through the Cisco design guide but still cant seem to pull it together Any help would be appreciated.. Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=21000t=21000 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Catalyst 4000 Configuration [7:20996]
same. ^-^-^-^-^-^-^-^-^-^-^ Bill Carter CCIE 5022 ^-^-^-^-^-^-^-^-^-^-^ -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Ray Smith Sent: Tuesday, September 25, 2001 9:22 AM To: [EMAIL PROTECTED] Subject: Catalyst 4000 Configuration [7:20996] Guys, Is there a difference with configuring the Catalyst 4000 as oppose to a Catalyst 5000? Is the operating system the same or even similar? Ray _ Get your FREE download of MSN Explorer at http://explorer.msn.com/intl.asp Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=21001t=20996 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Catalyst 4000 Configuration [7:20996]
Ray, They use the same software and command-line interface CLI as the 500 series...One of the main difference between these switches and 5000 is the high density of Gigabyte Ethernet ports supported. JB -Original Message- From: Ray Smith To: [EMAIL PROTECTED] Sent: 9/25/2001 9:21 AM Subject: Catalyst 4000 Configuration [7:20996] Guys, Is there a difference with configuring the Catalyst 4000 as oppose to a Catalyst 5000? Is the operating system the same or even similar? Ray _ Get your FREE download of MSN Explorer at http://explorer.msn.com/intl.asp Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=21002t=20996 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Cisco Certifications for Sale ? [7:20747]
Pakistan is coming as major problem everywhere ! Whether it's politics or technology, they are beating in cheatings. I think u wrote this!!! Sorry for my mistake Thanks Shahid --- MJ wrote: Well how come politics came into picture ? I think this is real hobby of Paki's to get things involved. Mukul Shahid Muhammad Shafi wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... According to one of my friend's in school from India: I passed already nine MS exams and I am greatful to my friends for all their support Is that what u call professionalism??? Cool!!! By the way, dont bring country politics in the middle. Its just going to hurt people and threads will grow larger. USA lifted sanctions on India along with Pakistan,only becuase the cooperation they r getting from Pakistan.Pakistan always brings benefits to ur home!! --- MJ wrote: In India I think the same is now really tken care since the company who are employing people are very professional, Somehow Pakistan is coming as major problem everywhere ! Whether it's politics or technology, they are beating in cheatings. bproud proud wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... I have heard .. like if u pay Rs.500.00 ($12.00) to an agent.. u can walk away with a Driver's license in India and Pak. --- sam adams wrote: Even if IDs are checked, how reliable are the ids in pakistan and india? -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Justin Sent: Monday, September 24, 2001 12:03 AM To: [EMAIL PROTECTED] Subject: Re: Cisco Certifications for Sale ? [7:20747] ya it is very dependant on the person i suppose... i wont get into my prometric-phone trouble... but att one of the testing sites, i told the secretary i was there. So she went to setup the test. 45 minutes later she still isnt back i suspect something is wrong :P so she comes back finaly oh sorry, i set up the exam and went off, i forgot you were here not to mention she didnt ask for id... chimps are getting smart these days i hear? not to mention a chimp on rollerblades saying goodbye will give you something to laugh about if you fail the exam :) Hi, It would seem the ID bit is largely dependent on the person running the test site. I have always had to provide evidence of who I am. I have even been known to the person in the test site but still had to provide the evidence so it could be ticked off as sighted. [EMAIL PROTECTED] http://travel.yahoo.com.au - Yahoo! Travel - Got Itchy feet? Get inspired! [EMAIL PROTECTED] __ Do You Yahoo!? Get email alerts NEW webcam video instant messaging with Yahoo! Messenger. http://im.yahoo.com [EMAIL PROTECTED] __ Do You Yahoo!? Get email alerts NEW webcam video instant messaging with Yahoo! Messenger. http://im.yahoo.com Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=21003t=20747 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Adaptive shaping [7:21005]
We are looking at implementing adaptive shaping on our Frame-relay network. I have been told, however, that when adaptive shaping takes place it actually halves the CIR. Is this correct? Does Adaptive shaping have the ability to impact the service? I have looked through CISCO doco but cannot find much detail on this feature. Do any of you run this feature and what have you experienced? Thanks Mike Johannesburg South Africa __ Disclaimer and confidentiality note Everything in this e-mail and any attachments relating to the official business of Standard Bank Investment Corporation (Stanbic) is proprietary to the company. It is confidential, legally privileged and protected by law.\ Stanbic does not own and endorse any other content. Views and opinions are those of the sender unless clearly stated as being that of Stanbic. The person addressed in the e-mail is the sole authorised recipient. Please notify the sender immediately if it has unintentionally reached you and do not read, disclose or use the content in any way. Stanbic can not assure that the integrity of this communication has been maintained nor that it is free of errors, virus, interception or interference. __ Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=21005t=21005 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: tftp server crashes when uploading new image [7:20961]
Cisco's TFTP server is not that bad. Just uncheck first two options when you configure it (enable logging and show file transfer progress). This a known issue. Dragi Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=21004t=20961 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Cisco Aironet vs Lucent ORiNOCO [7:20954]
It works via IP addresses...so yes. - Original Message - From: Steiven Poh-(Jaring MailBox) To: Sent: Tuesday, September 25, 2001 9:03 AM Subject: Re: Cisco Aironet vs Lucent ORiNOCO [7:20954] Is both work with Linux OS? Steiven - Original Message - From: netman To: Sent: Tuesday, September 25, 2001 8:21 PM Subject: Re: Cisco Aironet vs Lucent ORiNOCO [7:20954] I don't know about the Lucent stuff, but I installed some Cisco Aironet 340 series equipment last summer (99), and I have not had one trouble call at all. These are used constantly for classes and haven't had one probem. In fact I almost forgot we had them installed. You can't beat that :-) Donman - Original Message - From: Steiven Poh-(Jaring MailBox) To: Sent: Monday, September 24, 2001 9:25 PM Subject: Cisco Aironet vs Lucent ORiNOCO [7:20954] Hello Folks, Any one got idea about above comparison? Rgds, Steiven Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=21007t=20954 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Cisco 7200 processor question [7:21006]
What is the difference between NPEs and NSEs in the Cisco 7200 series ? Which one to prefer using NBAR for http filtering? thanks chris Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=21006t=21006 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Internet routing table [7:21008]
Can anyone tell me how big the Internet routing table is in terms of the routes and the space of RAM necessary to store it. Also, if there's a link to it I would appreciate a link to it. Thanks. Tom _ Get your FREE download of MSN Explorer at http://explorer.msn.com/intl.asp Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=21008t=21008 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: which layer do the ospf bgp rip work on [7:20953]
Priscilla; Couldn't it be argued that the *act* of routing is actually a layer 3 activity, however the routing protocols actually reside at the application layer. My reasoning for this, is if you look at the various routing protocols, their function is to exchange information, and it is a different process that actually forwards the packets. For example, you can configure a cisco router with static routes to build its routing table *or* you can configure OSPF, RIP, EIGRP, etc. Which results in new process running on the router to manage the information exchange, yet the actual routing of the packets are still managed by the same process that static routes uses. I am not necessarily disagreeing with you, just trying to start some conversation on the subject. Thanks From the perspective of someone that actively worked on the ISO routeing architecture (and yes, that's the correct spelling), I'm not sure what purpose conversation serves. The management annex to the ISO reference model (I think it's ISO 7498-4) defines system management protocols (e.g., SNMP and CMIP agents) that live at the application layer, and layer management protocols that control other protocols at the same layer. Routing protocols are specifically defined as layer management. Static routes do start at the application layer, but are sent by system management to network layer management. Again people -- PLEASE do not assume the simple 7 layer model that Cisco tends to present was the end of all protocol stack development. It wasn't. If you want to coerce some protocol into a model (or a generation of the model) that doesn't include it, feel free. But what the actual source standards say isn't really a matter for discussion, unless you want to create new models. __ Thomas Crowe Senior Systems Engineer / Architect CTS Professional Services - Atlanta Phone: 770-664-3900 *** Note New Cell Number *** Cell: 678-521-0360 __ -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] Sent: Monday, September 24, 2001 11:27 PM To: [EMAIL PROTECTED] Subject: Re: which layer do the ospf bgp rip work on [7:20953] Network layer. Routing is a fundamental component of the network layer. At 10:14 PM 9/24/01, lhill peng wrote: which layer do the routing protocol such as ospf rip bgp eigrp work on? sb said that they are on application, others on network what is the right answer?? Priscilla Oppenheimer http://www.priscilla.com [GroupStudy.com removed an attachment of type text/x-vcard which had a name of Thomas Crowe.vcf] Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=21009t=20953 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
VPN 3005 Conc. Windows2k Clients [7:21011]
Just curious how you guys have set this up... I have Win95 and Win2k clients that need to come into a Cisco 3005 VPN Concentrator. I've got the Authentication bit down but seem to be having trouble with the tunnel side of the house. What's the best way to set this up... I would rather not mess with digital certificates if I don't have to. Thanks Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=21011t=21011 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Cisco Aironet vs Lucent ORiNOCO [7:20954]
I assumes he means driver support... This is the list from linux 2.4.10 [*] Wireless LAN (non-hamradio) x x STRIP (Metricom starmode radio IP) (NEW)x x ATT WaveLAN DEC RoamAbout DS support (NEW) x x Aironet Arlan 655 IC2200 DS support (NEW) x x Aironet 4500/4800 series adapters (NEW) x x Cisco/Aironet 34X/35X/4500/4800 ISA and PCI cards (NEW) -Original Message- From: Allen May [mailto:[EMAIL PROTECTED]] Sent: Tuesday, September 25, 2001 5:43 PM To: [EMAIL PROTECTED] Subject: Re: Cisco Aironet vs Lucent ORiNOCO [7:20954] It works via IP addresses...so yes. - Original Message - From: Steiven Poh-(Jaring MailBox) To: Sent: Tuesday, September 25, 2001 9:03 AM Subject: Re: Cisco Aironet vs Lucent ORiNOCO [7:20954] Is both work with Linux OS? Steiven - Original Message - From: netman To: Sent: Tuesday, September 25, 2001 8:21 PM Subject: Re: Cisco Aironet vs Lucent ORiNOCO [7:20954] I don't know about the Lucent stuff, but I installed some Cisco Aironet 340 series equipment last summer (99), and I have not had one trouble call at all. These are used constantly for classes and haven't had one probem. In fact I almost forgot we had them installed. You can't beat that :-) Donman - Original Message - From: Steiven Poh-(Jaring MailBox) To: Sent: Monday, September 24, 2001 9:25 PM Subject: Cisco Aironet vs Lucent ORiNOCO [7:20954] Hello Folks, Any one got idea about above comparison? Rgds, Steiven Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=21010t=20954 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Personal Security Recommandation - Cisco PIX or ? [7:21012]
In regards to network design in the security area, I would like to start a discussion / get feedback from those of you who have dealt / are dealing with this. I know that I can most likely pull up some websites that has answers to this, but I would like a feedback from real people that are working with this. I am only now in the process of finishing my last exam for the CCNP, and I am then planning on going towards the security specialization. Therefore, my knowledge of firewalls, vpn's, etc. are not that great. We have at the company I work for used Check Point, but that's a very expensive product, and needs to be relicensed over and over. We are currently using Gauntlet, but that will be discontinued on the Windows NT platform. Because of this, I am now trying to get some feeling for a good solution, and (of course) Cisco's PIX came to my mind. However, I have a couple of questions I would like to get some feedback on, and perhaps start a short discussion. How is the PIX compared to other products when looking at: 1) Difficulty of administration? 2) Price? 3) Effectiveness of intruder protection? 4) Speed (slowing down the communication)? and 5) What would you recommend? Thank you very much for your time on this, Ole ~~~ Ole Drews Jensen Systems Network Manager CCNA, MCSE, MCP+I RWR Enterprises, Inc. [EMAIL PROTECTED] ~~~ http://www.RouterChief.com ~~~ NEED A JOB ??? http://www.oledrews.com/job ~~~ Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=21012t=21012 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Catalyst 4000 Configuration [7:20996]
RSM config can be a little different. It depends on what version of software you are running. If you are running Version 12.0(14)W5(20). To configure vlans you need to type in interface port-channel1.x , where x is vlan ID. You might want to research it a little more on Cisco's web site. Hope it helps Juan Blanco wrote: Ray, They use the same software and command-line interface CLI as the 500 series...One of the main difference between these switches and 5000 is the high density of Gigabyte Ethernet ports supported. JB -Original Message- From: Ray Smith To: [EMAIL PROTECTED] Sent: 9/25/2001 9:21 AM Subject: Catalyst 4000 Configuration [7:20996] Guys, Is there a difference with configuring the Catalyst 4000 as oppose to a Catalyst 5000? Is the operating system the same or even similar? Ray _ Get your FREE download of MSN Explorer at http://explorer.msn.com/intl.asp [GroupStudy.com removed an attachment of type text/x-vcard which had a name of khramov.vcf] Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=21013t=20996 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Cisco Aironet vs Lucent ORiNOCO [7:20954]
rofl...my badI thought it said Arrowpoint...not Aironet. *slap self* - Original Message - From: Murphy, Brian J SITI-ISET-31 To: 'Allen May' ; Sent: Tuesday, September 25, 2001 10:43 AM Subject: RE: Cisco Aironet vs Lucent ORiNOCO [7:20954] I assumes he means driver support... This is the list from linux 2.4.10 [*] Wireless LAN (non-hamradio) x x STRIP (Metricom starmode radio IP) (NEW)x x ATT WaveLAN DEC RoamAbout DS support (NEW) x x Aironet Arlan 655 IC2200 DS support (NEW) x x Aironet 4500/4800 series adapters (NEW) x x Cisco/Aironet 34X/35X/4500/4800 ISA and PCI cards (NEW) -Original Message- From: Allen May [mailto:[EMAIL PROTECTED]] Sent: Tuesday, September 25, 2001 5:43 PM To: [EMAIL PROTECTED] Subject: Re: Cisco Aironet vs Lucent ORiNOCO [7:20954] It works via IP addresses...so yes. - Original Message - From: Steiven Poh-(Jaring MailBox) To: Sent: Tuesday, September 25, 2001 9:03 AM Subject: Re: Cisco Aironet vs Lucent ORiNOCO [7:20954] Is both work with Linux OS? Steiven - Original Message - From: netman To: Sent: Tuesday, September 25, 2001 8:21 PM Subject: Re: Cisco Aironet vs Lucent ORiNOCO [7:20954] I don't know about the Lucent stuff, but I installed some Cisco Aironet 340 series equipment last summer (99), and I have not had one trouble call at all. These are used constantly for classes and haven't had one probem. In fact I almost forgot we had them installed. You can't beat that :-) Donman - Original Message - From: Steiven Poh-(Jaring MailBox) To: Sent: Monday, September 24, 2001 9:25 PM Subject: Cisco Aironet vs Lucent ORiNOCO [7:20954] Hello Folks, Any one got idea about above comparison? Rgds, Steiven Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=21014t=20954 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Internet routing table [7:21008]
Hi, You can see the number of routes in the global table by checking out the CIDR report produced by Tony Bates. http://www.employees.org/~tbates/cidr-report.html .joel -Original Message- From: Tom Richs [mailto:[EMAIL PROTECTED]] Sent: Tuesday, September 25, 2001 9:51 AM To: [EMAIL PROTECTED] Subject: Internet routing table [7:21008] Can anyone tell me how big the Internet routing table is in terms of the routes and the space of RAM necessary to store it. Also, if there's a link to it I would appreciate a link to it. Thanks. Tom Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=21015t=21008 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: [IP OSPF database to IP Route table question [7:21000]
A couple of things to note when comparing the OSPF database to the resultant routing table. According to the OSPF specification, an ABR will not install any Network Summary LSAs (LSA type 3s) that it originates into it's routing table. Also, an ABR will only install Network Summary LSAs that are present in the backbone, it will ignore any that are present in non-backbone areas. ASBRs will never install external LSAs that they originate either. Other tricks with external LSAs are that they will only be installed if the route to reach the forwarding address (assuming a non-zero forwarding address) is an intra or inter area route. NSSA external forwarding addresses need to be reachable via intra-area routes. I guess a good thing to ask would be what routes are not being installed, if you could send the database and routing table I hopefully will be able to tell you why. routerkid wrote: I have been working with a number of differnt OSPF configurations (CCBootcamp labs 12) and it seems that I always run into a situation where my routers have the entire OSPF database but the routes do not get injected into the routing table. After a series of shutting interfaces and a couple of router reboots they will then appear Note: This is strictly OSPF, no redistribution Question: What is the process for extracting routes from the OSPF database and placing the routes in the routing table ? I have read through the Cisco design guide but still cant seem to pull it together Any help would be appreciated.. -- [EMAIL PROTECTED] OSPF Practice Exam www.boson.com\tests\Advanced.htm Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=21016t=21000 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Personal Security Recommandation - Cisco PIX or ? [7:21012]
Comments inline: - Original Message - From: Ole Drews Jensen To: Sent: Tuesday, September 25, 2001 11:07 AM Subject: Personal Security Recommandation - Cisco PIX or ? [7:21012] In regards to network design in the security area, I would like to start a discussion / get feedback from those of you who have dealt / are dealing with this. I know that I can most likely pull up some websites that has answers to this, but I would like a feedback from real people that are working with this. I am only now in the process of finishing my last exam for the CCNP, and I am then planning on going towards the security specialization. Therefore, my knowledge of firewalls, vpn's, etc. are not that great. Learn IPSec first thing when you concentrate on Security. We have at the company I work for used Check Point, but that's a very expensive product, and needs to be relicensed over and over. We are currently using Gauntlet, but that will be discontinued on the Windows NT platform. Because of this, I am now trying to get some feeling for a good solution, and (of course) Cisco's PIX came to my mind. However, I have a couple of questions I would like to get some feedback on, and perhaps start a short discussion. How is the PIX compared to other products when looking at: 1) Difficulty of administration? If you're used to a command line interface and Cisco IOS, it's different, but concepts are basically the same. As of 6.0 there is a GUI interface. Tons of example configs are out there and in the manual. 2) Price? Estimated: 501 - ~$850 (2 interfaces only) 506 - ~$1400 (2 interfaces only) 515 - up ~around 5 digits...it depends on what you put in it. CDW.com will give you some basic guidelines for estimated prices. 3) Effectiveness of intruder protection? Well...it's a firewall. It's as effective as you make it. IP reverse verify helps stop spoofing, static embryonics help prevent DOS attacks, etc. It only allows access to ports you specify so it's only as secure as the servers behind it on those ports (as is any firewall). It can tie in with other software for IDS and outbound URL restrictions as well. ActiveX filters can block all ActiveX if you like. SYSLOG output allows any 3rd party software that monitors SYSLOG to work. 4) Speed (slowing down the communication)? 501 and 506 are 10Mb but clock around 6-7Mb on tests. Other models are 100Mb and clock much higher. If you use IPSec encryption it will obviously slow this down. and 5) What would you recommend? PIX is my personal favorite IMHO. Thank you very much for your time on this, Ole ~~~ Ole Drews Jensen Systems Network Manager CCNA, MCSE, MCP+I RWR Enterprises, Inc. [EMAIL PROTECTED] ~~~ http://www.RouterChief.com ~~~ NEED A JOB ??? http://www.oledrews.com/job ~~~ Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=21018t=21012 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
EIGRP network design [7:21019]
Hi everyone I've got a project where I have to design and implement EIGRP in a small to medium sized network of about 50 to 70 routers. One of my main problems is what to do with routing updates at the firewalls at each site, should they be allowed to pass through the firewall or should statics be used either side of the firewalls. Another problem I can see is the routes on the firewalls, is there a way to avoid having to type all those route entries in them, the network has many discontiguous networks. And one last point is the redistribution to the BGP routers at the edge of the network I'm after some tips, experiences and URLs so I can read around the subject myself Regards Pat Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=21019t=21019 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: How config changes logged? [7:20968]
It shoulf be in your logg if you enable logg buff: C7507MIX# C7507MIX# conf t Enter configuration commands, one per line. End with CNTL/Z. C7507MIX(config)#^Z C7507MIX#sh logg Syslog logging: enabled (0 messages dropped, 1 messages rate-limited, 0 flushes, 0 overruns) Console logging: level debugging, 111 messages logged Monitor logging: level debugging, 16 messages logged Buffer logging: level debugging, 112 messages logged Logging Exception size (65536 bytes) Trap logging: level informational, 79 message lines logged Log Buffer (65536 bytes): Sep 25 16:33:01: %SYS-5-CONFIG_I: Configured from console by vty0 (172.28.56.48) C7507MIX# C7507MIX# Dave Cisco Breaker wrote: Hi everyone? Does anybody know how to view the last time the config changed or how to view which commands added at what time to a router? I tried show log I only see updowns etc.. Best regards, -- David Madland Sr. Network Engineer CCIE# 2016 Qwest Communications Int. Inc. [EMAIL PROTECTED] 612-664-3367 Emotion should reflect reason not guide it Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=21020t=20968 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: which layer do the ospf bgp rip work on [7:20953]
At 07:05 AM 9/25/01, you wrote: hmm.. that's tricky, as I remember BGP used TCP for the routing update. RIP runs on top of UDP, so you would have to make the same argument for RIP, but it's not a good argument. Characterizing what layer they are at by what layer they reside on doesn't work. We could claim that all the routing protocols except IS-IS (which runs directly on top of LLC) are upper-layer protocols since they run on top of IP, but that doesn't work either. Theoretically they don't have to run on top of IP. They don't use IP's method for forwarding traffic across an internetwork. Every routing protocol packet I have ever seen has a TTL of 1. EIGRP can propagate queries, but that's not forwarding based on network-layer addresses. OSPF propagates Link State Updates, but that's not forwarding based on network-layer addresses either. Routing protocol packets are send to other routers on the same segment as either unicasts, broadcasts, or multicasts. Obviously, I have heard the argument before about routing protocols running at the application layer and there's some logic to it, as there is logic to characterizing the layer by what layers are below it, but it's just not based on reality regarding the definitions by ISO for their OSI reference model. The function of the network layer is forwarding packets across an internetwork and learning how to reach networks in the internetwork (routing protocols). The function of the application layer is providing services to end-user applications, such as e-mail, Telnet, Web browsing. By the way, with 7-layer bean dip, if you put the beans on top and the lettuce on the bottom, do the beans become lettuce and vice versa? ;-) Priscilla The only thing I can think of functionaly perhaps it's on layer 3, but interm of BGP itself, perhaps it's an application residing most certainly not in network layer. donny From: Priscilla Oppenheimer Reply-To: Priscilla Oppenheimer To: [EMAIL PROTECTED] Subject: Re: which layer do the ospf bgp rip work on [7:20953] Date: Mon, 24 Sep 2001 23:27:16 -0400 Network layer. Routing is a fundamental component of the network layer. At 10:14 PM 9/24/01, lhill peng wrote: which layer do the routing protocol such as ospf rip bgp eigrp work on? sb said that they are on application, others on network what is the right answer?? Priscilla Oppenheimer http://www.priscilla.com _ Get your FREE download of MSN Explorer at http://explorer.msn.com/intl.asp Priscilla Oppenheimer http://www.priscilla.com Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=21021t=20953 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Internet routing table [7:21008]
Lots. Here is a snap shot off of MAE-East, 115K routes!! BGP router identifier 165.117.1.52, local AS number 2548 BGP table version is 44054071, main routing table version 44054071 115974 network entries and 544402 paths using 30384054 bytes of memory 90775 BGP path attribute entries using 4720300 bytes of memory 253 BGP rrinfo entries using 6072 bytes of memory 21691 BGP AS-PATH entries using 533288 bytes of memory 2379 BGP community entries using 118492 bytes of memory 71567 BGP route-map cache entries using 1145072 bytes of memory Dampening enabled. 50 history paths, 2 dampened paths BGP activity 2680201/2549828 prefixes, 60723671/60156737 paths You to can look at this: http://nitrous.digex.net/ you will need at least 128M DRAM. Dave Tom Richs wrote: Can anyone tell me how big the Internet routing table is in terms of the routes and the space of RAM necessary to store it. Also, if there's a link to it I would appreciate a link to it. Thanks. Tom _ Get your FREE download of MSN Explorer at http://explorer.msn.com/intl.asp -- David Madland Sr. Network Engineer CCIE# 2016 Qwest Communications Int. Inc. [EMAIL PROTECTED] 612-664-3367 Emotion should reflect reason not guide it Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=21022t=21008 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: which layer do the ospf bgp rip work on [7:20953]
Howard C. Berkowitz wrote: Geez, thanks, to think I have misspelled routing, err routeing for sooo long and had never been corrected :) Dave From the perspective of someone that actively worked on the ISO routeing architecture (and yes, that's the correct spelling), I'm not sure what purpose conversation serves. The management annex to the ISO reference model (I think it's ISO 7498-4) defines system management protocols (e.g., SNMP and CMIP agents) that live at the application layer, and layer management protocols that control other protocols at the same layer. Routing protocols are specifically defined as layer management. Static routes do start at the application layer, but are sent by system management to network layer management. Again people -- PLEASE do not assume the simple 7 layer model that Cisco tends to present was the end of all protocol stack development. It wasn't. If you want to coerce some protocol into a model (or a generation of the model) that doesn't include it, feel free. But what the actual source standards say isn't really a matter for discussion, unless you want to create new models. __ Thomas Crowe Senior Systems Engineer / Architect CTS Professional Services - Atlanta Phone: 770-664-3900 *** Note New Cell Number *** Cell: 678-521-0360 __ -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] Sent: Monday, September 24, 2001 11:27 PM To: [EMAIL PROTECTED] Subject: Re: which layer do the ospf bgp rip work on [7:20953] Network layer. Routing is a fundamental component of the network layer. At 10:14 PM 9/24/01, lhill peng wrote: which layer do the routing protocol such as ospf rip bgp eigrp work on? sb said that they are on application, others on network what is the right answer?? Priscilla Oppenheimer http://www.priscilla.com [GroupStudy.com removed an attachment of type text/x-vcard which had a name of Thomas Crowe.vcf] -- David Madland Sr. Network Engineer CCIE# 2016 Qwest Communications Int. Inc. [EMAIL PROTECTED] 612-664-3367 Emotion should reflect reason not guide it Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=21024t=20953 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: which layer do the ospf bgp rip work on [7:20953]
Thank you for the clarification, Mr. Berkowitz.
Although I hope you won't be upset if I mention that you're not really
presenting a counter-point to the curriculum.
I continue to maintain that the CNAP curriculum (despite it's many problems)
is quite good when it comes to the model. It very clearly states that ospf,
bgp, rip, et. al. are all to be considered network layer protocols. It
doesn't make the distinction between layer management or not, but the
result is the same. As I've argued in previous discussions, a model is only
as good as the understanding that in facilitates.
I'm as quick to bash the currciculum as anyone (no VLSM until Sem 5?- Give
me a break!), but we should give credit where due, I think.
:-{)]
p.s. As always, Priscilla's answer was best. I've found that's a good rule
of thumb to follow...
Message Posted at:
http://www.groupstudy.com/form/read.php?f=7i=21023t=20953
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Config [7:20759]
Can router B ping the PC? From what you've said, (that there isn't a route
there) I doubt it. Until B can ping it, A won't be able to...
HTH
:-{)]
Message Posted at:
http://www.groupstudy.com/form/read.php?f=7i=21025t=20759
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Personal Security Recommandation - Cisco PIX or ? [7:21012]
Thanks (as always) Allen, I do have a couple of additional questions is you have a minute: PIX firewalls available now is as far as I can see the 515R, 515UR and 520. We need to protect two LAN's, so I will either have to go with two 515R's or one 515UR. When I look at the prices, it would be less expensive to get two 515R's, and that would make administration easier, because we are two people, responsible for one LAN each. However, the 515R only has 32MB, and with about 100 people on each LAN, I don't know if that would be enough. Also, I am not sure what restricted software on the 515R means, and the CPQRG doesn't give me that information off hand. Any good advise here? Thanks again, Ole ~~~ Ole Drews Jensen Systems Network Manager CCNA, MCSE, MCP+I RWR Enterprises, Inc. [EMAIL PROTECTED] ~~~ http://www.RouterChief.com ~~~ NEED A JOB ??? http://www.oledrews.com/job ~~~ -Original Message- From: Allen May [mailto:[EMAIL PROTECTED]] Sent: Tuesday, September 25, 2001 11:31 AM To: Ole Drews Jensen; [EMAIL PROTECTED] Subject: Re: Personal Security Recommandation - Cisco PIX or ? [7:21012] Comments inline: - Original Message - From: Ole Drews Jensen To: Sent: Tuesday, September 25, 2001 11:07 AM Subject: Personal Security Recommandation - Cisco PIX or ? [7:21012] In regards to network design in the security area, I would like to start a discussion / get feedback from those of you who have dealt / are dealing with this. I know that I can most likely pull up some websites that has answers to this, but I would like a feedback from real people that are working with this. I am only now in the process of finishing my last exam for the CCNP, and I am then planning on going towards the security specialization. Therefore, my knowledge of firewalls, vpn's, etc. are not that great. Learn IPSec first thing when you concentrate on Security. We have at the company I work for used Check Point, but that's a very expensive product, and needs to be relicensed over and over. We are currently using Gauntlet, but that will be discontinued on the Windows NT platform. Because of this, I am now trying to get some feeling for a good solution, and (of course) Cisco's PIX came to my mind. However, I have a couple of questions I would like to get some feedback on, and perhaps start a short discussion. How is the PIX compared to other products when looking at: 1) Difficulty of administration? If you're used to a command line interface and Cisco IOS, it's different, but concepts are basically the same. As of 6.0 there is a GUI interface. Tons of example configs are out there and in the manual. 2) Price? Estimated: 501 - ~$850 (2 interfaces only) 506 - ~$1400 (2 interfaces only) 515 - up ~around 5 digits...it depends on what you put in it. CDW.com will give you some basic guidelines for estimated prices. 3) Effectiveness of intruder protection? Well...it's a firewall. It's as effective as you make it. IP reverse verify helps stop spoofing, static embryonics help prevent DOS attacks, etc. It only allows access to ports you specify so it's only as secure as the servers behind it on those ports (as is any firewall). It can tie in with other software for IDS and outbound URL restrictions as well. ActiveX filters can block all ActiveX if you like. SYSLOG output allows any 3rd party software that monitors SYSLOG to work. 4) Speed (slowing down the communication)? 501 and 506 are 10Mb but clock around 6-7Mb on tests. Other models are 100Mb and clock much higher. If you use IPSec encryption it will obviously slow this down. and 5) What would you recommend? PIX is my personal favorite IMHO. Thank you very much for your time on this, Ole ~~~ Ole Drews Jensen Systems Network Manager CCNA, MCSE, MCP+I RWR Enterprises, Inc. [EMAIL PROTECTED] ~~~ http://www.RouterChief.com ~~~ NEED A JOB ??? http://www.oledrews.com/job ~~~ Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=21026t=21012 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Internet routing table [7:21008]
Tom, I believe is more than 100,000 routesyou should have in your core router at least 128(ram) jb -Original Message- From: Tom Richs To: [EMAIL PROTECTED] Sent: 9/25/2001 10:50 AM Subject: Internet routing table [7:21008] Can anyone tell me how big the Internet routing table is in terms of the routes and the space of RAM necessary to store it. Also, if there's a link to it I would appreciate a link to it. Thanks. Tom _ Get your FREE download of MSN Explorer at http://explorer.msn.com/intl.asp Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=21027t=21008 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Cisco vs 3com [7:21028]
Does any one have a white paper that compares Cisco 2900 XL switches to 3COM 4300 series switches? Thanks, Alex [GroupStudy.com removed an attachment of type text/x-vcard which had a name of khramov.vcf] Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=21028t=21028 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: delay and delay [7:20926]
At 11:42 AM 9/25/01, TP wrote: EIGRP uses minimum bandwidth and total delay to compute metric (at lest in its default configuration). I'm a little bit confused: delay of each interface is inversely proportional to the configured interface bandwidth, so It seems that EIGRP metric is affected only by configured bandwidth (f(bandwidth)+ sum of f(1/bandwidth)): is this correct? No, I think I misspoke. Sorry. You can configure both bandwidth and delay for an interface. Just configuring bandwidth doesn't affect delay. You would have to configure it separately. (Since delay is inversely proportional to bandwidth, I would think it would change automatically when bandwidth is changed, but it doesn't.) The metric = [K1 * bandwidth + (K2 * bandwidth) / (256 - load) + K3 * delay] * [K5 / (reliability + K4)] The K values can be configured with the metric weights command, although there's generally no need to change them. Priscilla Please give a look to the following output. I see in the first subinterface BW 3264 and in the second one BW 2544, but the same DLY value: 80. Rome-7206vxr#sh int atm2/0.1 ATM2/0.1 is up, line protocol is up Hardware is ENHANCED ATM PA Description: P-to-P PVC with Milan Internet address is 213.x.y.14/30 MTU 4470 bytes, BW 3264 Kbit, DLY 80 usec, reliability 255/255, txload 1/255, rxload 4/255 Encapsulation ATM 0 packets input, 0 bytes 0 packets output,0 bytes 99302 OAM cells input, 99302 OAM cells output Rome-7206vxr#sh int atm2/0.2 ATM2/0.2 is up, line protocol is up Hardware is ENHANCED ATM PA Description: P-to-P PVC with London Internet address is 213.x.y.74/30 MTU 4470 bytes, BW 2544 Kbit, DLY 80 usec, reliability 255/255, txload 1/255, rxload 4/255 Encapsulation ATM 0 packets input, 0 bytes 0 packets output,0 bytes 99121 OAM cells input, 99121 OAM cells output You suggest you can tweak the interface bandwidth and my english is awful: what does it mean? Thank you and have a nide day to all, Teresa Teresa Presutto Grapes Italia S.p.A. Italy Network Development Via Chiana, 1 - 00198 Rome (Italy) Tel +39 06 84550.1, fax +39 06 84550.640, mobile +39 348 4719450 http://www.grapesnet.com - Original Message - From: Priscilla Oppenheimer To: [EMAIL PROTECTED] Sent: Monday, September 24, 2001 9:41 PM Subject: Re: delay and delay [7:20926] With ping, delay is actually measured. The router reports how long it takes to get replies. EIGRP delay is not dynamically measured. Delay of each interface is inversely proportional to the configured interface bandwidth. Total delay for an EIGRP route is a sum of each interface delay, as reported in EIGRP Updates. If you want EIGRP's delay to be somewhat more realistic, you can tweak the interface bandwidth. Priscilla At 02:06 PM 9/24/01, TP wrote: Group, what is the relation (if any) between the total delay I see in sh ip eigrp topology and the total delay I see in a simple ping? From show eigrp topology I see total delay associated to a point-to-point atm pvc lower than total delay showed for a E1 hdlc (between the same routers, 1 hop). If a make an extended ping I experience a lower delay with E1 than pvc atm (and, to be honest, this is what I'd like to see) Thanks in advace, Teresa Priscilla Oppenheimer http://www.priscilla.com [EMAIL PROTECTED] Priscilla Oppenheimer http://www.priscilla.com Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=21029t=20926 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: VPN 3005 Conc. Windows2k Clients [7:21011]
I'm working on similar issue right now so let me know if you have any comments / questions. http://www.cisco.com/warp/public/707/2000.html Cory Stull 262-814-7214 MCSE, CCNP, CCDP Communications Concepts Unlimited -Original Message- From: cisco skin [mailto:[EMAIL PROTECTED]] Sent: Tuesday, September 25, 2001 11:05 AM To: [EMAIL PROTECTED] Subject: VPN 3005 Conc. Windows2k Clients [7:21011] Just curious how you guys have set this up... I have Win95 and Win2k clients that need to come into a Cisco 3005 VPN Concentrator. I've got the Authentication bit down but seem to be having trouble with the tunnel side of the house. What's the best way to set this up... I would rather not mess with digital certificates if I don't have to. Thanks Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=21017t=21011 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
dial backup (pri-to-pri and pri-to-bri) [7:21030]
hi. I need help about isdn dial backup. I have one central office and about 10 branches. I will get frame relay connections between central office and branches. I want to do dial backup with isdn. in central office pri and branches bri. is it possible to configure central office (i mean pri) will set up dial backup connection. i mean pri-to-bri dial backup when frame relay goes down central site will set up one or two b channels to each of branches. if someone has sample config of this scenario or has any idea i will be very happy. thanks best regards. Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=21030t=21030 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Personal Security Recommandation - Cisco PIX or ? [7:21012]
(R)estricted = no failover, max 3 interfaces, 50K concurrent connections. (UR)estricted = failover, max 6 interfaces, over 100K concurrent connections. http://www.cisco.com/warp/public/cc/pd/fw/sqfw500/prodlit/pix51_ds.htm It can more than handle 100 users either way. Unless you want failover and more than 3 interfaces, go with the R. Both have ~170Mb max thruput. The 506 has only 2 interfaces and could most likely handle the 100 users at ~6-7Mb thruput and I know it's for over 100 simultaneous connections (can't remember exactly how many). Hope that helps. Allen - Original Message - From: Ole Drews Jensen To: 'Allen May' ; Sent: Tuesday, September 25, 2001 11:44 AM Subject: RE: Personal Security Recommandation - Cisco PIX or ? [7:21012] Thanks (as always) Allen, I do have a couple of additional questions is you have a minute: PIX firewalls available now is as far as I can see the 515R, 515UR and 520. We need to protect two LAN's, so I will either have to go with two 515R's or one 515UR. When I look at the prices, it would be less expensive to get two 515R's, and that would make administration easier, because we are two people, responsible for one LAN each. However, the 515R only has 32MB, and with about 100 people on each LAN, I don't know if that would be enough. Also, I am not sure what restricted software on the 515R means, and the CPQRG doesn't give me that information off hand. Any good advise here? Thanks again, Ole ~~~ Ole Drews Jensen Systems Network Manager CCNA, MCSE, MCP+I RWR Enterprises, Inc. [EMAIL PROTECTED] ~~~ http://www.RouterChief.com ~~~ NEED A JOB ??? http://www.oledrews.com/job ~~~ -Original Message- From: Allen May [mailto:[EMAIL PROTECTED]] Sent: Tuesday, September 25, 2001 11:31 AM To: Ole Drews Jensen; [EMAIL PROTECTED] Subject: Re: Personal Security Recommandation - Cisco PIX or ? [7:21012] Comments inline: - Original Message - From: Ole Drews Jensen To: Sent: Tuesday, September 25, 2001 11:07 AM Subject: Personal Security Recommandation - Cisco PIX or ? [7:21012] In regards to network design in the security area, I would like to start a discussion / get feedback from those of you who have dealt / are dealing with this. I know that I can most likely pull up some websites that has answers to this, but I would like a feedback from real people that are working with this. I am only now in the process of finishing my last exam for the CCNP, and I am then planning on going towards the security specialization. Therefore, my knowledge of firewalls, vpn's, etc. are not that great. Learn IPSec first thing when you concentrate on Security. We have at the company I work for used Check Point, but that's a very expensive product, and needs to be relicensed over and over. We are currently using Gauntlet, but that will be discontinued on the Windows NT platform. Because of this, I am now trying to get some feeling for a good solution, and (of course) Cisco's PIX came to my mind. However, I have a couple of questions I would like to get some feedback on, and perhaps start a short discussion. How is the PIX compared to other products when looking at: 1) Difficulty of administration? If you're used to a command line interface and Cisco IOS, it's different, but concepts are basically the same. As of 6.0 there is a GUI interface. Tons of example configs are out there and in the manual. 2) Price? Estimated: 501 - ~$850 (2 interfaces only) 506 - ~$1400 (2 interfaces only) 515 - up ~around 5 digits...it depends on what you put in it. CDW.com will give you some basic guidelines for estimated prices. 3) Effectiveness of intruder protection? Well...it's a firewall. It's as effective as you make it. IP reverse verify helps stop spoofing, static embryonics help prevent DOS attacks, etc. It only allows access to ports you specify so it's only as secure as the servers behind it on those ports (as is any firewall). It can tie in with other software for IDS and outbound URL restrictions as well. ActiveX filters can block all ActiveX if you like. SYSLOG output allows any 3rd party software that monitors SYSLOG to work. 4) Speed (slowing down the communication)? 501 and 506 are 10Mb but clock around 6-7Mb on tests. Other models are 100Mb and clock much higher. If you use IPSec encryption it will obviously slow this down. and 5) What would you recommend? PIX is my personal favorite IMHO. Thank you very much for your time on this, Ole ~~~ Ole Drews Jensen Systems Network Manager CCNA, MCSE, MCP+I RWR Enterprises, Inc. [EMAIL PROTECTED] ~~~ http://www.RouterChief.com
Voice over IP specific [7:21031]
Hi All, We have a customer that wants a implementation of voice over ip. Their dial plan will be like this. A-clients --pbx--router--voip--router--pbx--Bclients | | router | PBX | Cclients Normally if an A client want to reach a client from B, they dial 66 and from PBX or FXS they get a line and dial 76 and reach the corresponding route rfrom voip and dial 86 to reach PBX and the last step they dial the Bclients expansion number 801. My question is this, Is it possible to only dial once and reach the corresponding Bclient from A without PLar (cause A client will Cclients too)? I want to appoint ony one number and make it dial all 66,76,86,801 with commas ofcourse cause there is a waiting time over PBXs. Best regards, Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=21031t=21031 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Personal Security Recommandation - Cisco PIX or ? [7:21012]
From my experience, 32MB of RAM is plenty for 100+ users. In fact, a 506 will handle that many connections without breaking a sweat. Josh Vince Sr. Network Engineer CCNP MCSE MCP+I BCG Systems, Inc. -Original Message- From: Ole Drews Jensen Sent: Tue 9/25/2001 1:08 PM To: [EMAIL PROTECTED] Cc: Subject: RE: Personal Security Recommandation - Cisco PIX or ? [7:21012] Thanks (as always) Allen, I do have a couple of additional questions is you have a minute: PIX firewalls available now is as far as I can see the 515R, 515UR and 520. We need to protect two LAN's, so I will either have to go with two 515R's or one 515UR. When I look at the prices, it would be less expensive to get two 515R's, and that would make administration easier, because we are two people, responsible for one LAN each. However, the 515R only has 32MB, and with about 100 people on each LAN, I don't know if that would be enough. Also, I am not sure what restricted software on the 515R means, and the CPQRG doesn't give me that information off hand. Any good advise here? Thanks again, Ole ~~~ Ole Drews Jensen Systems Network Manager CCNA, MCSE, MCP+I RWR Enterprises, Inc. [EMAIL PROTECTED] ~~~ http://www.RouterChief.com ~~~ NEED A JOB ??? http://www.oledrews.com/job ~~~ -Original Message- From: Allen May [mailto:[EMAIL PROTECTED]] Sent: Tuesday, September 25, 2001 11:31 AM To: Ole Drews Jensen; [EMAIL PROTECTED] Subject: Re: Personal Security Recommandation - Cisco PIX or ? [7:21012] Comments inline: - Original Message - From: Ole Drews Jensen To: Sent: Tuesday, September 25, 2001 11:07 AM Subject: Personal Security Recommandation - Cisco PIX or ? [7:21012] In regards to network design in the security area, I would like to start a discussion / get feedback from those of you who have dealt / are dealing with this. I know that I can most likely pull up some websites that has answers to this, but I would like a feedback from real people that are working with this. I am only now in the process of finishing my last exam for the CCNP, and I am then planning on going towards the security specialization. Therefore, my knowledge of firewalls, vpn's, etc. are not that great. Learn IPSec first thing when you concentrate on Security. We have at the company I work for used Check Point, but that's a very expensive product, and needs to be relicensed over and over. We are currently using Gauntlet, but that will be discontinued on the Windows NT platform. Because of this, I am now trying to get some feeling for a good solution, and (of course) Cisco's PIX came to my mind. However, I have a couple of questions I would like to get some feedback on, and perhaps start a short discussion. How is the PIX compared to other products when looking at: 1) Difficulty of administration? If you're used to a command line interface and Cisco IOS, it's different, but concepts are basically the same. As of 6.0 there is a GUI interface. Tons of example configs are out there and in the manual. 2) Price? Estimated: 501 - ~$850 (2 interfaces only) 506 - ~$1400 (2 interfaces only) 515 - up ~around 5 digits...it depends on what you put in it. CDW.com will give you some basic guidelines for estimated prices. 3) Effectiveness of intruder protection? Well...it's a firewall. It's as effective as you make it. IP reverse verify helps stop spoofing, static embryonics help prevent DOS attacks, etc. It only allows access to ports you specify so it's only as secure as the servers behind it on those ports (as is any firewall). It can tie in with other software for IDS and outbound URL restrictions as well. ActiveX filters can block all ActiveX if you like. SYSLOG output allows any 3rd party software that monitors SYSLOG to work. 4) Speed (slowing down the communication)? 501 and 506 are 10Mb but clock around 6-7Mb on tests. Other models are 100Mb and clock much
Re: How config changes logged? [7:20968]
Thanks for the answers . Best regards, Cisco Breaker wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... Hi everyone? Does anybody know how to view the last time the config changed or how to view which commands added at what time to a router? I tried show log I only see updowns etc.. Best regards, Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=21034t=20968 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: 3Com Switch [7:20980]
Another way to recover the password Cisco fashion, is to hook up a null modem cable to the console port, and break out your favorite terminal app. Power off the switch, wait 30 seconds, and while powering it back up, depress the little reset button on the back for 5-10 seconds. This will return the device to its factory defaults, as per 3Com Tech Support and that way, you don't have to RMA the device. They, of course, don't post this tidbit on the website you only learn of it when you call in for a support call with a registered piece of equipment. Mark - Original Message - From: Bob Timmons To: Sent: Tuesday, September 25, 2001 7:35 AM Subject: Re: 3Com Switch [7:20980] Found this on 3com's site: - SolutionID: 2.0.76269083.3278305 Title: SuperStack II Switch 3300 - How to recover lost password on a 1100/3300 switch? Goal How to recover lost password on a 1100/3300 switch? Fact 3C16980 Fact 3C16980A Fact SuperStack II Switch 3300 Fact SuperStack II Switch 3300 Fact SuperStack II Switch 1100 Fact default password Symptom lost password Cause The password was changed and now the switch cannot be accessed. Fix The default password for the admin account is no password (just press enter when prompted for the password). If you can not access the switch try the security account using security as login and security as password. As soon as you gain access to the switch modify the admin account and re-login as administrator. You should avoid to access as security for administrative tasks. If you still have no access to the switch, please, contact 3Com to RMA the unit. - Hi I have a 3Com Switch 3300 - 24 Port Superstack II that unfortunately I dont know the password. Maybe somebody can give advice in how to do a password recovery /hack the device? I have not been able to find in the 3Com site documentation for this purpose. Thanks Sil Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=21035t=20980 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: VPN 3005 Conc. Windows2k Clients [7:21011]
Make sure that the users are assigned to the right group and that the group is configured on the client correctly. If these connection attempts are getting to your Concentrator the live log is pretty good and telling you what is going on. From: cisco skin Reply-To: cisco skin To: [EMAIL PROTECTED] Subject: VPN 3005 Conc. Windows2k Clients [7:21011] Date: Tue, 25 Sep 2001 12:05:17 -0400 Just curious how you guys have set this up... I have Win95 and Win2k clients that need to come into a Cisco 3005 VPN Concentrator. I've got the Authentication bit down but seem to be having trouble with the tunnel side of the house. What's the best way to set this up... I would rather not mess with digital certificates if I don't have to. Thanks _ Get your FREE download of MSN Explorer at http://explorer.msn.com/intl.asp Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=21036t=21011 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: IP OSPF database to IP Route table question [7:21000]
I think if you do clear ip ospf * that should empty the routing table repopulate it from the ospf database... routerkid wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... I have been working with a number of differnt OSPF configurations (CCBootcamp labs 12) and it seems that I always run into a situation where my routers have the entire OSPF database but the routes do not get injected into the routing table. After a series of shutting interfaces and a couple of router reboots they will then appear Note: This is strictly OSPF, no redistribution Question: What is the process for extracting routes from the OSPF database and placing the routes in the routing table ? I have read through the Cisco design guide but still cant seem to pull it together Any help would be appreciated.. Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=21037t=21000 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: How config changes logged? [7:20968]
If you have tacacs, you can also find out the last person who make the configuration changes. Here is the output: Current configuration : 5076 bytes ! ! Last configuration change at 22:05:18 EDT Sat Sep 22 2001 by learn_cisco ! NVRAM config last updated at 22:04:33 EDT Sat Sep 22 2001 ! version 12.1 no parser cache From: MADMAN Reply-To: MADMAN To: [EMAIL PROTECTED] Subject: Re: How config changes logged? [7:20968] Date: Tue, 25 Sep 2001 12:52:40 -0400 It shoulf be in your logg if you enable logg buff: C7507MIX# C7507MIX# conf t Enter configuration commands, one per line. End with CNTL/Z. C7507MIX(config)#^Z C7507MIX#sh logg Syslog logging: enabled (0 messages dropped, 1 messages rate-limited, 0 flushes, 0 overruns) Console logging: level debugging, 111 messages logged Monitor logging: level debugging, 16 messages logged Buffer logging: level debugging, 112 messages logged Logging Exception size (65536 bytes) Trap logging: level informational, 79 message lines logged Log Buffer (65536 bytes): Sep 25 16:33:01: %SYS-5-CONFIG_I: Configured from console by vty0 (172.28.56.48) C7507MIX# C7507MIX# Dave Cisco Breaker wrote: Hi everyone? Does anybody know how to view the last time the config changed or how to view which commands added at what time to a router? I tried show log I only see updowns etc.. Best regards, -- David Madland Sr. Network Engineer CCIE# 2016 Qwest Communications Int. Inc. [EMAIL PROTECTED] 612-664-3367 misconduct and Nondisclosure violations to [EMAIL PROTECTED] Get your FREE download of MSN Explorer at http://explorer.msn.com Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=21038t=20968 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
insufficient memory to boot [7:21039]
A have a 2514 router which i upgrade the flash to 16 megs and the boot rom also. however when it boot up it says insufficient memory to boot how can i stop the cycle and install a smaller ios. does any one know why it wont take the new flash even though i upgrade the boot rom and the flash Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=21039t=21039 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
OT. 2611 router for sale [7:21040]
Hi! Sorry for OT. I just want to sell 2 2611 routers with 16F/64D with WIC-1DSU-T1 and FW IOS12.2 for $1200 each to pay for my Lab exam. Please contact me if you are interested. Thanks Michael _ Get your FREE download of MSN Explorer at http://explorer.msn.com/intl.asp Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=21040t=21040 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: dial backup (pri-to-pri and pri-to-bri) [7:21030]
I just worked through this same scenario. The PRI will not dial out to the BRI when the frame-relay goes down, the BRI will have a backup statement to dial when the frame-relay fails. I have sample configs: but COO has them too. First you will need to have the switch type from Telco... PRI side [isdn switch-type primary-dms100] global config Next you will configure the controller: controller T1 3/1 pri-group timeslots 1-24 description PRI for collector site BRI framing esf linecode b8zs verify framing and line code with telco You will need to decide if you will use authentication username fff-lbs-rt password 0 tapew0rm username fff-lbs-rt password 0 tapew0rm add authentication statement to each side of the connection in global config. interface Serial3/1:23 description BRI dial-in connection no ip address no ip directed-broadcast encapsulation ppp dialer rotary-group 1 dialer-group 1 isdn switch-type primary-dms100 isdn incoming-voice modem interface Dialer1 ip address 192.168.170.129 255.255.255.192 no ip directed-broadcast encapsulation ppp dialer in-band dialer idle-timeout 300 dialer map ip 192.168.170.132 name Lynn dialer map ip 192.168.170.133 name Bangor dialer map ip 192.168.170.134 name Billings dialer map ip 192.168.170.135 name Redding dialer map ip 192.168.170.136 name SantaSusanna dialer map ip 192.168.170.137 name SanAntonio dialer map ip 192.168.170.138 name hartford dialer map ip 192.168.170.139 name ST.Paul dialer map ip 192.168.170.140 name Raleigh dialer map ip 192.168.170.141 name Jacksonville dialer map ip 192.168.170.142 name Midland dialer-group 1 ppp authentication chap ppp multilink add this to Router RIP if you are using RIP distribute-list 1 out Dialer1 add this to your access list statements dialer-list 1 protocol ip permit BRI config: username Billings password cisco username fff-lbs-rt password cisco username fff-lbs-rt password cisco isdn switch-type basic-ni interface BRI1/0 ip address 192.168.170.134 255.255.255.192 encapsulation ppp dialer idle-timeout 300 dialer map ip 192.168.170.129 name fff-lbs-rt broadcast [dial number] dialer map ip 192.168.170.130 name fff-lbs-rt broadcast [dial number] dialer hold-queue 75 dialer load-threshold 5 either dialer-group 1 isdn switch-type basic-ni isdn spid1 4062371960 2371960 isdn spid2 4062371961 2371961 ppp authentication chap ppp multilink router rip version 2 redistribute connected network 172.16.0.0 network 172.20.0.0 network 192.168.170.0 distribute-list 1 out Serial0/0.1 distribute-list 1 out Serial0/0.2 distribute-list 1 out BRI1/0 no auto-summary dialer-list 1 protocol ip permit review ISDN commands and debug commands Billings#sh isdn ? active ISDN active calls history ISDN call history memory ISDN memory information status ISDN Line Status timers ISDN Timer values debug isdn ? eventsISDN events q921 ISDN Q921 packets q931 ISDN Q931 packets sh isdn status to verify L1 and L2 before attempting a fail over call. Verify ring to numbers are routed properly with telco...telco likes to @!#$ this up and push blame to the customer!!! Good luck! Ann Marie -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] Sent: Tuesday, September 25, 2001 10:32 AM To: [EMAIL PROTECTED] Subject:dial backup (pri-to-pri and pri-to-bri) [7:21030] hi. I need help about isdn dial backup. I have one central office and about 10 branches. I will get frame relay connections between central office and branches. I want to do dial backup with isdn. in central office pri and branches bri. is it possible to configure central office (i mean pri) will set up dial backup connection. i mean pri-to-bri dial backup when frame relay goes down central site will set up one or two b channels to each of branches. if someone has sample config of this scenario or has any idea i will be very happy. thanks best regards. Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=21041t=21030 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Description of Cisco IOS feature sets [7:21042]
Hello all: I would like to know the differences between the various Cisco IOS features sets. For example, I want to find out the differences between Enterprise, Enterprise Plus, IP, IP Plus, IP Plus 40 etc. I have been searching on the Cisco web site but have had no success. Could someone point out the correct link please? Thanks, Andy __ Do You Yahoo!? Get email alerts NEW webcam video instant messaging with Yahoo! Messenger. http://im.yahoo.com Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=21042t=21042 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
policy route [7:21044]
Hello, I have 2 routers running HSRP in a small office. I want SMTP traffic go through standby router so I configured policy route on active router that all SMTP traffic, send to standby router. But it doesn't work. I'm wondering if policy route will work this way? At active router: interface e0 ip address 10.1.1.2 255.255.255.0 ip policy route-map SMTP standby ip 10.1.1.1 ... route-map SMTP permit 10 match ip address 102 set ip next-hop 10.1.1.3 !standby router ethernet ... access-list 102 permit tcp any any eq 25 Thanks in advance. Jim __ Do You Yahoo!? Get email alerts NEW webcam video instant messaging with Yahoo! Messenger. http://im.yahoo.com Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=21044t=21044 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: OT Re: Bet who is the Youngest CCIE [7:21043]
I started studying for my lab at age 4:-) -Original Message- From: Williams, Glenn [mailto:[EMAIL PROTECTED]] Sent: Tuesday, September 25, 2001 12:59 PM To: '[EMAIL PROTECTED]'; [EMAIL PROTECTED]; [EMAIL PROTECTED]; [EMAIL PROTECTED]; [EMAIL PROTECTED] Subject:RE: OT Re: Bet who is the Youngest CCIE I was just hoping to get mine before Alzheimer's kicks in. ;) GW -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] Sent: Tuesday, September 25, 2001 12:44 PM To: [EMAIL PROTECTED]; [EMAIL PROTECTED]; [EMAIL PROTECTED]; [EMAIL PROTECTED] Subject: RE: OT Re: Bet who is the Youngest CCIE Really, let's not depress those of us(i.e. ME) that are stupid enough to think their going to be a young CCIE, hopefully I'll have mine before i turn 27. Ignorance is definately bliss! -Original Message- From: Donald B Johnson jr [mailto:[EMAIL PROTECTED]] Sent: Tuesday, September 25, 2001 2:46 PM To: Majszak, Monty; [EMAIL PROTECTED]; [EMAIL PROTECTED]; [EMAIL PROTECTED] Subject: Re: OT Re: Bet who is the Youngest CCIE Yeah, This is a hard hitting topic. You would probably get 4x's the replies on the CCNA list though. I think they got a twelve year old CCIE over there. When I do my BGP labs I think about who is the oldest CCIE cause I may break that record. Don - Original Message - From: To: ; ; Sent: Tuesday, September 25, 2001 9:35 AM Subject: RE: OT Re: Bet who is the Youngest CCIE don't i look stupid right about now, guess there was more people who cared about this then i thought, sorry Mamoor, over reacted on that one -Monty -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] Sent: Tuesday, September 25, 2001 10:29 AM To: Majszak, Monty; [EMAIL PROTECTED]; [EMAIL PROTECTED] Subject: OT Re: Bet who is the Youngest CCIE i act 15 sometimes does that count? - Original Message - From: To: ; Sent: Tuesday, September 25, 2001 9:01 AM Subject: RE: Bet who is the Youngest CCIE talk about way off topic, who cares!? my friend got his right after turning 22, sorry, you wont the youngest CCIE -Original Message- From: Ahmed Mamoor Amimi [mailto:[EMAIL PROTECTED]] Sent: Tuesday, September 25, 2001 9:40 AM To: [EMAIL PROTECTED] Subject: Bet who is the Youngest CCIE Hi group, Just wondering when doing my bgp labs that who is the youngest CCIE If i pass the exam in Feb 2002 i will be of 24ys what about u ??? Just let this post go on to hunt for the youngest. -Mamoor Remember E = Mc2 **Please read:http://www.groupstudy.com/list/posting.html **Please read:http://www.groupstudy.com/list/posting.html **Please read:http://www.groupstudy.com/list/posting.html **Please read:http://www.groupstudy.com/list/posting.html **Please read:http://www.groupstudy.com/list/posting.html Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=21043t=21043 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Personal Security Recommandation - Cisco PIX or ? [7:21012]
Hey Ole, if you are interested I have a 515UR sitting here on my desk I may be able to get rid of at a good price. I will ask . Nothing wrong with it, we just went to 520UR's instead. Steve -Original Message- From: Allen May [mailto:[EMAIL PROTECTED]] Sent: Tuesday, September 25, 2001 12:33 PM To: [EMAIL PROTECTED] Subject: Re: Personal Security Recommandation - Cisco PIX or ? [7:21012] (R)estricted = no failover, max 3 interfaces, 50K concurrent connections. (UR)estricted = failover, max 6 interfaces, over 100K concurrent connections. http://www.cisco.com/warp/public/cc/pd/fw/sqfw500/prodlit/pix51_ds.htm It can more than handle 100 users either way. Unless you want failover and more than 3 interfaces, go with the R. Both have ~170Mb max thruput. The 506 has only 2 interfaces and could most likely handle the 100 users at ~6-7Mb thruput and I know it's for over 100 simultaneous connections (can't remember exactly how many). Hope that helps. Allen - Original Message - From: Ole Drews Jensen To: 'Allen May' ; Sent: Tuesday, September 25, 2001 11:44 AM Subject: RE: Personal Security Recommandation - Cisco PIX or ? [7:21012] Thanks (as always) Allen, I do have a couple of additional questions is you have a minute: PIX firewalls available now is as far as I can see the 515R, 515UR and 520. We need to protect two LAN's, so I will either have to go with two 515R's or one 515UR. When I look at the prices, it would be less expensive to get two 515R's, and that would make administration easier, because we are two people, responsible for one LAN each. However, the 515R only has 32MB, and with about 100 people on each LAN, I don't know if that would be enough. Also, I am not sure what restricted software on the 515R means, and the CPQRG doesn't give me that information off hand. Any good advise here? Thanks again, Ole ~~~ Ole Drews Jensen Systems Network Manager CCNA, MCSE, MCP+I RWR Enterprises, Inc. [EMAIL PROTECTED] ~~~ http://www.RouterChief.com ~~~ NEED A JOB ??? http://www.oledrews.com/job ~~~ -Original Message- From: Allen May [mailto:[EMAIL PROTECTED]] Sent: Tuesday, September 25, 2001 11:31 AM To: Ole Drews Jensen; [EMAIL PROTECTED] Subject: Re: Personal Security Recommandation - Cisco PIX or ? [7:21012] Comments inline: - Original Message - From: Ole Drews Jensen To: Sent: Tuesday, September 25, 2001 11:07 AM Subject: Personal Security Recommandation - Cisco PIX or ? [7:21012] In regards to network design in the security area, I would like to start a discussion / get feedback from those of you who have dealt / are dealing with this. I know that I can most likely pull up some websites that has answers to this, but I would like a feedback from real people that are working with this. I am only now in the process of finishing my last exam for the CCNP, and I am then planning on going towards the security specialization. Therefore, my knowledge of firewalls, vpn's, etc. are not that great. Learn IPSec first thing when you concentrate on Security. We have at the company I work for used Check Point, but that's a very expensive product, and needs to be relicensed over and over. We are currently using Gauntlet, but that will be discontinued on the Windows NT platform. Because of this, I am now trying to get some feeling for a good solution, and (of course) Cisco's PIX came to my mind. However, I have a couple of questions I would like to get some feedback on, and perhaps start a short discussion. How is the PIX compared to other products when looking at: 1) Difficulty of administration? If you're used to a command line interface and Cisco IOS, it's different, but concepts are basically the same. As of 6.0 there is a GUI interface. Tons of example configs are out there and in the manual. 2) Price? Estimated: 501 - ~$850 (2 interfaces only) 506 - ~$1400 (2 interfaces only) 515 - up ~around 5 digits...it depends on what you put in it. CDW.com will give you some basic guidelines for estimated prices. 3) Effectiveness of intruder protection? Well...it's a firewall. It's as effective as you make it. IP reverse verify helps stop spoofing, static embryonics help prevent DOS attacks, etc. It only allows access to ports you specify so it's only as secure as the servers behind it on those ports (as is any firewall). It can tie in with other software for IDS and outbound URL restrictions as well. ActiveX filters can block all ActiveX if you like. SYSLOG output allows any 3rd party software that monitors SYSLOG to work. 4) Speed (slowing down the communication)? 501 and 506 are 10Mb but clock around 6-7Mb on tests. Other models are 100Mb and clock much higher. If you use IPSec encryption it will obviously
RE: OT Re: Bet who is the Youngest CCIE [7:21043]
I'm shooting to have it before either of my kidsone is 18mo and the other is due in November! At least I have the lab scheduled!! Eric -Original Message- From: Wright, Jeremy [mailto:[EMAIL PROTECTED]] Sent: Tuesday, September 25, 2001 1:51 PM To: [EMAIL PROTECTED] Subject: RE: OT Re: Bet who is the Youngest CCIE [7:21043] I started studying for my lab at age 4:-) -Original Message- From: Williams, Glenn [mailto:[EMAIL PROTECTED]] Sent: Tuesday, September 25, 2001 12:59 PM To: '[EMAIL PROTECTED]'; [EMAIL PROTECTED]; [EMAIL PROTECTED]; [EMAIL PROTECTED]; [EMAIL PROTECTED] Subject:RE: OT Re: Bet who is the Youngest CCIE I was just hoping to get mine before Alzheimer's kicks in. ;) GW -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] Sent: Tuesday, September 25, 2001 12:44 PM To: [EMAIL PROTECTED]; [EMAIL PROTECTED]; [EMAIL PROTECTED]; [EMAIL PROTECTED] Subject: RE: OT Re: Bet who is the Youngest CCIE Really, let's not depress those of us(i.e. ME) that are stupid enough to think their going to be a young CCIE, hopefully I'll have mine before i turn 27. Ignorance is definately bliss! -Original Message- From: Donald B Johnson jr [mailto:[EMAIL PROTECTED]] Sent: Tuesday, September 25, 2001 2:46 PM To: Majszak, Monty; [EMAIL PROTECTED]; [EMAIL PROTECTED]; [EMAIL PROTECTED] Subject: Re: OT Re: Bet who is the Youngest CCIE Yeah, This is a hard hitting topic. You would probably get 4x's the replies on the CCNA list though. I think they got a twelve year old CCIE over there. When I do my BGP labs I think about who is the oldest CCIE cause I may break that record. Don - Original Message - From: To: ; ; Sent: Tuesday, September 25, 2001 9:35 AM Subject: RE: OT Re: Bet who is the Youngest CCIE don't i look stupid right about now, guess there was more people who cared about this then i thought, sorry Mamoor, over reacted on that one -Monty -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] Sent: Tuesday, September 25, 2001 10:29 AM To: Majszak, Monty; [EMAIL PROTECTED]; [EMAIL PROTECTED] Subject: OT Re: Bet who is the Youngest CCIE i act 15 sometimes does that count? - Original Message - From: To: ; Sent: Tuesday, September 25, 2001 9:01 AM Subject: RE: Bet who is the Youngest CCIE talk about way off topic, who cares!? my friend got his right after turning 22, sorry, you wont the youngest CCIE -Original Message- From: Ahmed Mamoor Amimi [mailto:[EMAIL PROTECTED]] Sent: Tuesday, September 25, 2001 9:40 AM To: [EMAIL PROTECTED] Subject: Bet who is the Youngest CCIE Hi group, Just wondering when doing my bgp labs that who is the youngest CCIE If i pass the exam in Feb 2002 i will be of 24ys what about u ??? Just let this post go on to hunt for the youngest. -Mamoor Remember E = Mc2 **Please read:http://www.groupstudy.com/list/posting.html **Please read:http://www.groupstudy.com/list/posting.html **Please read:http://www.groupstudy.com/list/posting.html **Please read:http://www.groupstudy.com/list/posting.html **Please read:http://www.groupstudy.com/list/posting.html Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=21045t=21043 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: insufficient memory to boot [7:21039]
What version of IOS and how much DRAM in your 2514? You might want to check at the CCO Software Center for the required Flash and DRAM for your IOS. I'm assuming that your 16 MB of Flash is in one partition. -Original Message- From: george gittins [mailto:[EMAIL PROTECTED]] Sent: Tuesday, September 25, 2001 1:35 PM To: [EMAIL PROTECTED] Subject: insufficient memory to boot [7:21039] A have a 2514 router which i upgrade the flash to 16 megs and the boot rom also. however when it boot up it says insufficient memory to boot how can i stop the cycle and install a smaller ios. does any one know why it wont take the new flash even though i upgrade the boot rom and the flash Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=21047t=21039 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Cisco Certifications for Sale ? [7:20747]
Referring to Mr Mukul i mean it sure does sound very convenient for an indian to be lobbying for closures of prometric centers in pakistan cos of one guy he knows who he claims knows nothing.I know cos i live here and i was required to bring two ID's with photos . the same as everywhere. I dont say an odd case is impossible but i guess that could not be ruled out in INDIA as well Well similarly i guess he can claim that all muslim states are responsible for what has happened recently in WTC cos by incidence the perpetrators were muslims which hasnt been proved yet beyond doubt too. anyways i m not writing this to support those who were responsible ... it was indeed a heinous crime .. one which cannot be justified under ISLAM. But on the same account you know yourself of the hindu fanatics and what they v done .. and it goes without saying that all indians cannot be grilled for what a few hindu fanatics have done ... u might recall burning alive of the christian missionaries but thats not even the issue here .. Such irrational jingosim and remarks like 'pakistan seem to be a major problem ' is highly unwarranted and uncalled for .. and besides what we are here to discuss. --- Shahid Muhammad Shafi wrote: Pakistan is coming as major problem everywhere ! Whether it's politics or technology, they are beating in cheatings. I think u wrote this!!! Sorry for my mistake Thanks Shahid --- MJ wrote: Well how come politics came into picture ? I think this is real hobby of Paki's to get things involved. Mukul Shahid Muhammad Shafi wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... According to one of my friend's in school from India: I passed already nine MS exams and I am greatful to my friends for all their support Is that what u call professionalism??? Cool!!! By the way, dont bring country politics in the middle. Its just going to hurt people and threads will grow larger. USA lifted sanctions on India along with Pakistan,only becuase the cooperation they r getting from Pakistan.Pakistan always brings benefits to ur home!! --- MJ wrote: In India I think the same is now really tken care since the company who are employing people are very professional, Somehow Pakistan is coming as major problem everywhere ! Whether it's politics or technology, they are beating in cheatings. bproud proud wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... I have heard .. like if u pay Rs.500.00 ($12.00) to an agent.. u can walk away with a Driver's license in India and Pak. --- sam adams wrote: Even if IDs are checked, how reliable are the ids in pakistan and india? -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Justin Sent: Monday, September 24, 2001 12:03 AM To: [EMAIL PROTECTED] Subject: Re: Cisco Certifications for Sale ? [7:20747] ya it is very dependant on the person i suppose... i wont get into my prometric-phone trouble... but att one of the testing sites, i told the secretary i was there. So she went to setup the test. 45 minutes later she still isnt back i suspect something is wrong :P so she comes back finaly oh sorry, i set up the exam and went off, i forgot you were here not to mention she didnt ask for id... chimps are getting smart these days i hear? not to mention a chimp on rollerblades saying goodbye will give you something to laugh about if you fail the exam :) Hi, It would seem the ID bit is largely dependent on the person running the test site. I have always had to provide evidence of who I am. I have even been known to the person in the test site but still had to provide the evidence so it could be ticked off as sighted. [EMAIL PROTECTED] http://travel.yahoo.com.au - Yahoo! Travel - Got Itchy feet? Get inspired! [EMAIL PROTECTED] __ Do You Yahoo!? Get email alerts NEW webcam video instant messaging with Yahoo! Messenger. http://im.yahoo.com [EMAIL PROTECTED] __ Do You Yahoo!? Get email alerts NEW webcam video instant messaging with Yahoo! Messenger. http://im.yahoo.com [EMAIL PROTECTED] __ Do You Yahoo!? Get email alerts NEW webcam video instant messaging with Yahoo! Messenger. http://im.yahoo.com Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=21048t=20747 -- FAQ, list archives,
RE: Passed switching [7:20868]
What is the passing score for the BCMSN? I'm taking mine in about 3 weeks. Also, what did they let you bring in? Congrats on passing, keep going!! Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=21049t=20868 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Passed switching [7:20868]
What is the passing score for the BCMSN? I'm taking mine in about 3 weeks. Also, what did they let you bring in? Congrats on passing, keep going!! Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=21050t=20868 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
DHCP [7:21051]
Hello How do I enable broadcast for DHCP server? I know that ip helper enables UDP broadcast, but broadcast of netbios services causes some problems for win nt server. So I guess to be more specific what can I do to forward udp broadcast on ports 67 and 68 only? And another question that I have what exactly ip directed-broadcast command does? I've searched Cisco's web site but I never came across a clear defenition? Thanks, Alex [GroupStudy.com removed an attachment of type text/x-vcard which had a name of khramov.vcf] Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=21051t=21051 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: EIGRP network design [7:21019]
Patrick, I don't think you will have a choice of passing EIGRP through a firewall because I don't think you can do it. An eigrp packet uses multicast addressing and has no layer 3 address. I would think that a firewall would not pass this traffic. From: Patrick Donlon Reply-To: Patrick Donlon To: [EMAIL PROTECTED] Subject: EIGRP network design [7:21019] Date: Tue, 25 Sep 2001 12:52:28 -0400 Hi everyone I've got a project where I have to design and implement EIGRP in a small to medium sized network of about 50 to 70 routers. One of my main problems is what to do with routing updates at the firewalls at each site, should they be allowed to pass through the firewall or should statics be used either side of the firewalls. Another problem I can see is the routes on the firewalls, is there a way to avoid having to type all those route entries in them, the network has many discontiguous networks. And one last point is the redistribution to the BGP routers at the edge of the network I'm after some tips, experiences and URLs so I can read around the subject myself Regards Pat _ Get your FREE download of MSN Explorer at http://explorer.msn.com/intl.asp Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=21052t=21019 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
PIX 501 [7:21053]
Any feedback on the 501 yet? Anyone using one? Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=21053t=21053 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Description of Cisco IOS feature sets [7:21042]
This is a link for the white paper on IOS.. Basically, diff versions have added functions.. for example, IP only has ip capablities but if you get the desk top, which is ip/ipx, etc... you can enable ipx routing and such.. Basically, they are saying, if you do not want to pay for all the features, just buy the ones you need of course, the higher you go, more flash and ram is required... http://www.cisco.com/warp/public/620/1.html Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=21054t=21042 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: apple machine and cisco switch problem [7:20825]
Moe, Try keeping the ports that the Mac's are plugged into at auto/auto. Also enable spanning tree portfast on those ports as well. tim Tim Medley - CCNP+Voice Network Architect VoIP Group iReadyWorld -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of king kaung Sent: Sunday, September 23, 2001 7:02 AM To: [EMAIL PROTECTED] Subject: apple machine and cisco switch problem [7:20825] Hi All, I have big problem with our apple machines. Last week, I replaced my old 3Com switches to cisco 3524 switches. Then most of my apple machine can not see each other(cannot access appleshare)but it can see and can access PC Servers. I try to configure the speed and duplex according apple's NIC specification on individual ports. But some of the apple machine still cannot see. I put those Mac machines back to 3Com switch and it works again. We don't have zone setting on apple machines.The protocols are all default.Our network is flat network and no subnet, no VLAN. Anything I miss out to configure on my Cisco switches? Or any special setting for apple machines I need to set? Many thanks, Moe. _ Get your FREE download of MSN Explorer at http://explorer.msn.com/intl.asp Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=21055t=20825 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Access Server [7:21056]
Hello, Does any one have experience configuring Access Server on 2511? I've got a several devices with serial ports that I need to access remotely, preferably telnet into them. So I found an old 2511 with async ports. But I can not get it working. Here is the config on that 2511: interface Ethernet0 ip address 192.168.190.25 255.255.255.0 ip helper-address 192.78.4.47 no lat enabled ! interface Async1 ip unnumbered Ethernet0 ip tcp header-compression passive async mode interactive peer default ip address 192.168.190.26 ! interface Async2 ip unnumbered Ethernet0 peer default ip address 192.168.190.27 ! interface Async3 ip unnumbered Ethernet0 peer default ip address 192.168.190.28 ! interface Async4 ip unnumbered Ethernet0 ip tcp header-compression passive encapsulation ppp shutdown async mode interactive peer default ip address 192.173.50.14 no cdp enable ppp authentication chap line 1 16 login local transport input telnet stopbits 1 flowcontrol hardware Would you please tell me what I am missing. I am only going to be using first three async ports. Thanks, Alex [GroupStudy.com removed an attachment of type text/x-vcard which had a name of khramov.vcf] Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=21056t=21056 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: OT Re: Bet who is the Youngest CCIE [7:21043]
Alzheimer's.only Matron knows my name! Karl HalibutI think - Original Message - From: McMasters, Eric To: Sent: Tuesday, September 25, 2001 8:08 PM Subject: RE: OT Re: Bet who is the Youngest CCIE [7:21043] I'm shooting to have it before either of my kidsone is 18mo and the other is due in November! At least I have the lab scheduled!! Eric -Original Message- From: Wright, Jeremy [mailto:[EMAIL PROTECTED]] Sent: Tuesday, September 25, 2001 1:51 PM To: [EMAIL PROTECTED] Subject: RE: OT Re: Bet who is the Youngest CCIE [7:21043] I started studying for my lab at age 4:-) -Original Message- From: Williams, Glenn [mailto:[EMAIL PROTECTED]] Sent: Tuesday, September 25, 2001 12:59 PM To: '[EMAIL PROTECTED]'; [EMAIL PROTECTED]; [EMAIL PROTECTED]; [EMAIL PROTECTED]; [EMAIL PROTECTED] Subject: RE: OT Re: Bet who is the Youngest CCIE I was just hoping to get mine before Alzheimer's kicks in. ;) GW -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] Sent: Tuesday, September 25, 2001 12:44 PM To: [EMAIL PROTECTED]; [EMAIL PROTECTED]; [EMAIL PROTECTED]; [EMAIL PROTECTED] Subject: RE: OT Re: Bet who is the Youngest CCIE Really, let's not depress those of us(i.e. ME) that are stupid enough to think their going to be a young CCIE, hopefully I'll have mine before i turn 27. Ignorance is definately bliss! -Original Message- From: Donald B Johnson jr [mailto:[EMAIL PROTECTED]] Sent: Tuesday, September 25, 2001 2:46 PM To: Majszak, Monty; [EMAIL PROTECTED]; [EMAIL PROTECTED]; [EMAIL PROTECTED] Subject: Re: OT Re: Bet who is the Youngest CCIE Yeah, This is a hard hitting topic. You would probably get 4x's the replies on the CCNA list though. I think they got a twelve year old CCIE over there. When I do my BGP labs I think about who is the oldest CCIE cause I may break that record. Don - Original Message - From: To: ; ; Sent: Tuesday, September 25, 2001 9:35 AM Subject: RE: OT Re: Bet who is the Youngest CCIE don't i look stupid right about now, guess there was more people who cared about this then i thought, sorry Mamoor, over reacted on that one -Monty -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] Sent: Tuesday, September 25, 2001 10:29 AM To: Majszak, Monty; [EMAIL PROTECTED]; [EMAIL PROTECTED] Subject: OT Re: Bet who is the Youngest CCIE i act 15 sometimes does that count? - Original Message - From: To: ; Sent: Tuesday, September 25, 2001 9:01 AM Subject: RE: Bet who is the Youngest CCIE talk about way off topic, who cares!? my friend got his right after turning 22, sorry, you wont the youngest CCIE -Original Message- From: Ahmed Mamoor Amimi [mailto:[EMAIL PROTECTED]] Sent: Tuesday, September 25, 2001 9:40 AM To: [EMAIL PROTECTED] Subject: Bet who is the Youngest CCIE Hi group, Just wondering when doing my bgp labs that who is the youngest CCIE If i pass the exam in Feb 2002 i will be of 24ys what about u ??? Just let this post go on to hunt for the youngest. -Mamoor Remember E = Mc2 **Please read:http://www.groupstudy.com/list/posting.html **Please read:http://www.groupstudy.com/list/posting.html **Please read:http://www.groupstudy.com/list/posting.html **Please read:http://www.groupstudy.com/list/posting.html **Please read:http://www.groupstudy.com/list/posting.html Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=21057t=21043 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: DHCP [7:21051]
First Question answer: c3640A(config)#ip forward-protocol udp ? Port number biff Biff (mail notification, comsat, 512) bootpc Bootstrap Protocol (BOOTP) client (68) bootps Bootstrap Protocol (BOOTP) server (67) discard Discard (9) dnsixDNSIX security protocol auditing (195) domain Domain Name Service (DNS, 53) echo Echo (7) isakmp Internet Security Association and Key Management Protocol (500) mobile-ipMobile IP registration (434) nameserver IEN116 name service (obsolete, 42) netbios-dgm NetBios datagram service (138) netbios-ns NetBios name service (137) netbios-ss NetBios session service (139) ntp Network Time Protocol (123) pim-auto-rp PIM Auto-RP (496) rip Routing Information Protocol (router, in.routed, 520) snmp Simple Network Management Protocol (161) snmptrap SNMP Traps (162) sunrpc Sun Remote Procedure Call (111) syslog System Logger (514) tacacs TAC Access Control System (49) talk Talk (517) tftp Trivial File Transfer Protocol (69) time Time (37) who Who service (rwho, 513) xdmcpX Display Manager Control Protocol (177) Second answer: The way I understand the command, and please correct me if I am wrong, is as follows. It forwards subnet broadcasts to a destination network in a unicast format and once the unicast packet is received on the destination network it is then sent out as a broadcast. I think that is what it does. Thanks, Eric -Original Message- From: khramov [mailto:[EMAIL PROTECTED]] Sent: Tuesday, September 25, 2001 2:58 PM To: [EMAIL PROTECTED] Subject: DHCP [7:21051] Hello How do I enable broadcast for DHCP server? I know that ip helper enables UDP broadcast, but broadcast of netbios services causes some problems for win nt server. So I guess to be more specific what can I do to forward udp broadcast on ports 67 and 68 only? And another question that I have what exactly ip directed-broadcast command does? I've searched Cisco's web site but I never came across a clear defenition? Thanks, Alex [GroupStudy.com removed an attachment of type text/x-vcard which had a name of khramov.vcf] Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=21058t=21051 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
CCNP Support 640-506 exam difficulty [7:21060]
Hello, I have taken Routing, Switching, and Remote Access. I am wondering about the difficulty level of the Support exam as compared to the others. I feel as though I know most of the material when reading through the Support book (Lammle series). Also, I'd like to know if the CCIE book (Lammle series) is sufficient to pass the CCIE *written* exam. Thanks, Tim Booth Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=21060t=21060 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: policy route [7:21044]
Standby is stanby, it doesn't do any routing until the active router goes down. Regards, Mark, -Original Message- From: Jim Bond [mailto:[EMAIL PROTECTED]] Sent: Tuesday, September 25, 2001 11:52 AM To: [EMAIL PROTECTED] Subject: policy route [7:21044] Hello, I have 2 routers running HSRP in a small office. I want SMTP traffic go through standby router so I configured policy route on active router that all SMTP traffic, send to standby router. But it doesn't work. I'm wondering if policy route will work this way? At active router: interface e0 ip address 10.1.1.2 255.255.255.0 ip policy route-map SMTP standby ip 10.1.1.1 ... route-map SMTP permit 10 match ip address 102 set ip next-hop 10.1.1.3 !standby router ethernet ... access-list 102 permit tcp any any eq 25 Thanks in advance. Jim __ Do You Yahoo!? Get email alerts NEW webcam video instant messaging with Yahoo! Messenger. http://im.yahoo.com Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=21059t=21044 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: which layer do the ospf bgp rip work on [7:20953]
Howard C. Berkowitz wrote: Geez, thanks, to think I have misspelled routing, err routeing for sooo long and had never been corrected :) It's ISO's idea of correct spelling. The British got there first. Dave From the perspective of someone that actively worked on the ISO routeing architecture (and yes, that's the correct spelling), I'm not sure what purpose conversation serves. The management annex to the ISO reference model (I think it's ISO 7498-4) defines system management protocols (e.g., SNMP and CMIP agents) that live at the application layer, and layer management protocols that control other protocols at the same layer. Routing protocols are specifically defined as layer management. Static routes do start at the application layer, but are sent by system management to network layer management. Again people -- PLEASE do not assume the simple 7 layer model that Cisco tends to present was the end of all protocol stack development. It wasn't. If you want to coerce some protocol into a model (or a generation of the model) that doesn't include it, feel free. But what the actual source standards say isn't really a matter for discussion, unless you want to create new models. __ Thomas Crowe Senior Systems Engineer / Architect CTS Professional Services - Atlanta Phone: 770-664-3900 *** Note New Cell Number *** Cell: 678-521-0360 __ -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] Sent: Monday, September 24, 2001 11:27 PM To: [EMAIL PROTECTED] Subject: Re: which layer do the ospf bgp rip work on [7:20953] Network layer. Routing is a fundamental component of the network layer. At 10:14 PM 9/24/01, lhill peng wrote: which layer do the routing protocol such as ospf rip bgp eigrp work on? sb said that they are on application, others on network what is the right answer?? Priscilla Oppenheimer http://www.priscilla.com [GroupStudy.com removed an attachment of type text/x-vcard which had a name of Thomas Crowe.vcf] -- David Madland Sr. Network Engineer CCIE# 2016 Qwest Communications Int. Inc. [EMAIL PROTECTED] 612-664-3367 Emotion should reflect reason not guide it Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=21061t=20953 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: policy route [7:21044]
I have to disagree. The standby router has static route point to the other side. Once traffic gets to standby, it should route... Jim --- Liang Mark J Civ AFRL/PROI wrote: Standby is stanby, it doesn't do any routing until the active router goes down. Regards, Mark, -Original Message- From: Jim Bond [mailto:[EMAIL PROTECTED]] Sent: Tuesday, September 25, 2001 11:52 AM To: [EMAIL PROTECTED] Subject: policy route [7:21044] Hello, I have 2 routers running HSRP in a small office. I want SMTP traffic go through standby router so I configured policy route on active router that all SMTP traffic, send to standby router. But it doesn't work. I'm wondering if policy route will work this way? At active router: interface e0 ip address 10.1.1.2 255.255.255.0 ip policy route-map SMTP standby ip 10.1.1.1 ... route-map SMTP permit 10 match ip address 102 set ip next-hop 10.1.1.3 !standby router ethernet ... access-list 102 permit tcp any any eq 25 Thanks in advance. Jim __ Do You Yahoo!? Get email alerts NEW webcam video instant messaging with Yahoo! Messenger. http://im.yahoo.com [EMAIL PROTECTED] __ Do You Yahoo!? Get email alerts NEW webcam video instant messaging with Yahoo! Messenger. http://im.yahoo.com Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=21062t=21044 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: which layer do the ospf bgp rip work on [7:20953]
Thank you for the clarification, Mr. Berkowitz.
Although I hope you won't be upset if I mention that you're not really
presenting a counter-point to the curriculum.
A little confused...I didn't think I was responding to any specific
curriculum. I was responding to a point that someone made about
routing protocols being in the session or application layers.
I'm not even sure what CNAP is--Cisco Academy?
I continue to maintain that the CNAP curriculum (despite it's many problems)
is quite good when it comes to the model. It very clearly states that ospf,
bgp, rip, et. al. are all to be considered network layer protocols. It
doesn't make the distinction between layer management or not, but the
result is the same. As I've argued in previous discussions, a model is only
as good as the understanding that in facilitates.
I'm as quick to bash the currciculum as anyone (no VLSM until Sem 5?- Give
me a break!), but we should give credit where due, I think.
:-{)]
p.s. As always, Priscilla's answer was best. I've found that's a good rule
of thumb to follow...
Message Posted at:
http://www.groupstudy.com/form/read.php?f=7i=21063t=20953
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: seraching for tacacs server [7:20872]
Mike, you are correct about the recent trend on Network Engineering in general and Cisco Engineer in particular. These recent CCIEs know nothing else but Cisco (not that they are expert to begin with). Most don't even know how to write simple shell script on Unix platforms. If this sound like I am bashing Cisco Engineers, I am not but it is just the fact. It just repeats over and over again. On the other hand, I have to say that almost every Juniper Network Certified Internet Expert (JNCIE) engineers that I've met so far not only an expert with Cisco Technolog but these guys can also program (mostly with PERL and shell) in addition to Juniper products (M-series routers). These guys are just a different breed of animals, in a class by themselves. I guess it must be because JUNOS are pretty Unix-oriented. Just my .02c From: Mike Sweeney Reply-To: Mike Sweeney To: [EMAIL PROTECTED] Subject: Re: seraching for tacacs server [7:20872] Date: Tue, 25 Sep 2001 10:12:58 -0400 Sean- For what it's worth, you nailed it on the head about the old debate of Wintel and Linux( Unix) I happen to have a small background in Solaris and over the last few years, it has proven to be invaluable as a network engineer. Either from understanding how things work to being able to have an intelligent conversation with the Unix admins. A trend I'm starting to see in two different jobs now is that the Cisco geeks are coming in with ONLY cisco knowledge.. they are clueless about Unix , windows or anything else on the wire. Needless to say this causes no end of problems. As far as TACACS goes, I went looking last weekend myself for it and everything pointed to it being deleted from Cisco's web site as an EOL product. I found a freebie for my linx box at www.tuxfinder.com...even in the RPM package for us lazy misconduct and Nondisclosure violations to [EMAIL PROTECTED] Get your FREE download of MSN Explorer at http://explorer.msn.com Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=21064t=20872 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: which layer do the ospf bgp rip work on [7:20953]
Ah, I apologize. When you said:
Again people -- PLEASE do not assume the simple 7 layer model that
Cisco tends to present was the end of all protocol stack development.
It wasn't.
I thought you were referring to the CNAP (cisco networking academy program)
curriculum. If you ever get a chance to look at that, it does a pretty
decent job of keeping the model front and center and relevant.
Take Care!
:-{)]
Message Posted at:
http://www.groupstudy.com/form/read.php?f=7i=21065t=20953
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Passed switching [7:20868]
The passing score is 699 -Original Message- From: John McCartney To: [EMAIL PROTECTED] Sent: 9/25/2001 2:57 PM Subject: RE: Passed switching [7:20868] What is the passing score for the BCMSN? I'm taking mine in about 3 weeks. Also, what did they let you bring in? Congrats on passing, keep going!! Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=21066t=20868 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
