RE: ROUTING EXAM [7:24530]
No Access lists, Queuing and DDR is on the remote access exam now. Managing IP/IPX traffic and Source routing bridging is on the CCIE written. Regards Jon Gudmundsson -Original Message- From: J. Li [mailto:[EMAIL PROTECTED]] Sent: 29. oktsber 2001 18:09 To: [EMAIL PROTECTED] Subject: ROUTING EXAM [7:24530] I compared my new Cisco Press book for the routing exam with the old book I bought over two years ago. I found some major differences. The new exam guide book does NOT have anything on: Access lists Managing IP/IPX traffic Queuing DDR Source routing bridging ... Are the above topics NOT tested on the new Routing Exam 2.0 anymore? Thanks! = J. Li Ground Floor Opportunity for 2nd Income: http://www.globaldebitcard.net/myglobecard/home/freewebsite.html __ Do You Yahoo!? Make a great connection at Yahoo! Personals. http://personals.yahoo.com Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=24759t=24530 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
How to find serial number of router? [7:24760]
Hi Guys, Can anyone here please help what are the possible software ways to findout the serial number of router without looking at the hardware itself?? Can we findout by using any management software like Cisco resource manger or etc?? Thanks for help. _ Get your FREE download of MSN Explorer at http://explorer.msn.com/intl.asp Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=24760t=24760 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: HSRP - hows it work [7:24721]
--- I recently set it up, 2Mb leased line on one router, ISDN on the other. It worked faultlessly. Not microwave though. Does your line protocol go down? Symon Hi group, Who have used the 'standby track serial 0' command before, while configuring HSRP. I tried it and was disappointed because, my two upstream providers are connected via a radio (microwave link). Even when one of them is down, the radio coneected to the router still send keepalives to the route and as such the interface does not go down, and as such the HSRP does not work when any of the upstream goes down. Has anyone being able to solve this problem? Regards --- Michael Williams wrote: If router A has a higher priority and is setup to preempt, then when it comes back up (after a failure), it will resume being the active. If router A does not setup with preempt, it won't become the active until Router B fails or is restarted, etc. HSRP works by projecting a virtual IP address and a virtual MAC address. You would configure the clients/workstations with a gateway that is the virtual IP address (or the standby IP). Whenever the end device sends an ARP which the routers resolve to the virtual MAC. It is possible to use a Burned-in (MAC) Address (called a BIA) in case the default virtual MAC causes a problem. Once the end workstation resolves the virtual IP to the virtual MAC, it communicates with the virtual MAC, in which both routers receive and take note of the traffic, but only the active router will actually forward the traffic. This is a in a nutshell view of HSRP and I'm sure there is something that I've left out or said wrong, but that's basically it.. Mike W. [EMAIL PROTECTED] __ Do You Yahoo!? Make a great connection at Yahoo! Personals. http://personals.yahoo.com [EMAIL PROTECTED] Cheers, Symon Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=24761t=24721 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: load sharing [7:24752]
You need to elaborate this , using BGP ? regards, suaveguru --- Mohammed Saro wrote: We have two links to our provider and this provider makes load sharing per packet but sometimes one of two links is saturated and the other has free bandwidth can any one explain this weird behavior Best Regards, Mohamed Saro Senior Network Engineer GEGA NET Tel: +20 2 4149771/2/3/4 ext.:111 [EMAIL PROTECTED] __ Do You Yahoo!? Make a great connection at Yahoo! Personals. http://personals.yahoo.com Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=24762t=24752 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
how many vlans can a 2924-en-xl be devided? [7:24764]
for instance,it has 24 ports,can I make 12 vlans in it?I remember it can be devided at most 6 vlans,but not clearly,who can tell me?thanks Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=24764t=24764 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
CCNP [7:24763]
Hi All I would like thank GOD and my Family and all the members of the Cisco Group Study that have contributed to helping me pass my CCNP Exams. Thanks God Bless Sergio Silva Network Engineer Mobile 0833261349 Land0117091658 Fax 0117091141 [EMAIL PROTECTED] ** This email and any files transmitted with it are confidential and intended solely for the use of the individual or entity to whom they are addressed. If you have received this email in error please notify the system manager. This footnote also confirms that this email message has been swept by MIMEsweeper for the presence of computer viruses. www.mimesweeper.com ** Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=24763t=24763 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: How to find serial number of router? [7:24765]
sh ver usually does it Use a MIB browser via SNMP and you will probably find it. Symon --- Hi Guys, Can anyone here please help what are the possible software ways to findout the serial number of router without looking at the hardware itself?? Can we findout by using any management software like Cisco resource manger or etc?? Thanks for help. _ Get your FREE download of MSN Explorer at http://explorer.msn.com/intl.asp [EMAIL PROTECTED] Cheers, Symon Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=24765t=24765 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Load balancing with Win2k and Cat6k [7:24494]
Thanks George I'll watch out for that, George Murphy CCNP, CCDP wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... Just an FYI, last week our server guys at the campus fired up a Win2k load balancing scenario and it was spewing multicasts like a bat out of hell and made parts of the network inaccessible, like printers, an ISDN 128k link, etc. We were using Observer to sniff. Now we have put the little monsters in there own VLAN. the highway is smooth now with the HOV lane in operation ;-) Jonathan Hays wrote: Patrick Donlon wrote: had a look on the CCO, m'soft and HPs site but I can't see much relevant info, can any provide some info or experience on this Really? I searched www.microsoft.com/technet with the phrase network interface load balancing and came up with quite a few hits discussing load balancing (e.g., Configuring Network Load Balancing Q240997). You may get more help on your problem from a Microsoft newsgroup. It's hard to see how this is a Cisco ACS problem; it seems more like a Microsoft Windows problem. Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=24766t=24494 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: how many vlans can a 2924-en-xl be devided? [7:24764]
2924 XL can support 64 VLANs. http://www.cisco.com/univercd/cc/td/doc/product/lan/c2900xl/29_35wc/sc/swgvlans.htm Leo Shen wrote: for instance,it has 24 ports,can I make 12 vlans in it?I remember it can be devided at most 6 vlans,but not clearly,who can tell me?thanks -- Minas Stratigos Network Engineer Pre-Sales Product Management Division European Dynamics S.A. Tel: +301 8094500 Fax: +301 8094505 [EMAIL PROTECTED] Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=24767t=24764 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: dlsw using frame relay only [7:24475]
Mike, Thanks for that. I'll suppose this will only work as you say in a p2p setup. I will try the local dlci command as suggested. Appreciate you help here. Regards Richard Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=24768t=24475 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: How to find serial number of router? [7:24760]
you can use show diag command. or as you said, you can use cisco resource manager also. cheers, budi --- IT Guy wrote: Hi Guys, Can anyone here please help what are the possible software ways to findout the serial number of router without looking at the hardware itself?? Can we findout by using any management software like Cisco resource manger or etc?? Thanks for help. _ Get your FREE download of MSN Explorer at http://explorer.msn.com/intl.asp [EMAIL PROTECTED] __ Do You Yahoo!? Make a great connection at Yahoo! Personals. http://personals.yahoo.com Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=24769t=24760 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
X21 to V35 Conversion. [7:24770]
=20 Dear Group. I have a Cisco router Serial plugged into X21 interface running at 2Meg. =20 I have a serial Sniffer but it only has V35 interfaces. =20 I can get new Cisco V35 cable to go from router to sniffer but need a cable to go from V35 Male to X21Female. =20 I.E. Need a cable with V35 Female connector at one end and Male X21 Connector at the other. =20 Is it just a matter of getting pinouts for V35 and X21 and making a cable or are there some signal level/conversion issues ?? =20 Thankyou =20 Charles Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=24770t=24770 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
To Passive or Not to Passive [7:24771]
Dear all, Before I take the leap into the lab (2 weeks to go now), I have a question which has dogged me for a while now. Scenario below. Router 1 has the following interfaces, Lo0, Eth0/0, S0/0, S0/1 and say Fast0/1. Router 2 has the following interfaces Lo0, Lo1, Eth 0/1, S0/0. Between Router 1 (s0/0) and Router 2 (s0/0) we are running say OSPF. On router 1 (e0/0 and s0/1) we are running RIP. On Router 2 (e0/1 and lo1) we are also running Rip. Router 1 (lo0, s0/1) and Router 2 (lo0) are running Eigrp. Now for the questions 1. On router 1 OSPF process is running Q: should I put lo0,e0/0, fast0/1 and s0/1 as passive interface ??? This worries me quite a bit as the argument of if you dont put the network command under ospf then ospf will not run on that interface...BUT I have been told that you should ALWAYS put every in use interface into passive if it is not being used under the routing process. 2. This is not a question but a sanity check that for EIGRP and RIP then the norm rules of passive interfaces apply. Thanks for anyones help in clearing this annoying matter up. Robert McCallum Ext 730 3448 DDI : 01415663448 Mobile : 07818002241 Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=24771t=24771 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: ARP - What protocols support it. [7:24738]
Vines does have something called 'ARP', although I believe it was mostly used just for a DHCP-type service (address assignment). Apollo implements as true full-blown ARP. ATM also supports an inverse-ARP. Priscilla Oppenheimer wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... ARP is an IP term. But AppleTalk has the AppleTalk Address Resolution Protocol (AARP) which behaves just like IP ARP, with a few additional features to support dynamic addressing. But its main function is to find the data-link-layer address when the network-layer address is known, which is just like IP ARP. Novell IPX doesn't need such a feature because the Node ID in the network.node network-layer address IS the data-link-layer address. So if a station knows another station's network-layer address, it knows the station's data-link-layer address too. DECnet doesn't need such a feature either because it changes the data-link-layer address on an interface so that it is based on the network-layer address. I can't remember too much about Banyan. It may have an ARP. What else is there?? Hm. NetBEUI doesn't have a network layer, so it doesn't need ARP. SNA is such a different beast, I doubt it has ARP. We could talk about WANs too I guess. Frame Relay has inverse ARP. HDLC has SLARP. Priscilla At 09:01 PM 10/30/01, Dave Shine wrote: Does anyone know what protocols do or better yet do not support ARP? D.S. __ Do You Yahoo!? Make a great connection at Yahoo! Personals. http://personals.yahoo.com Priscilla Oppenheimer http://www.priscilla.com Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=24772t=24738 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
hardware error analize [7:24773]
hi all: i have a cisco 6509 swith will such modelus: Mod Slot Ports Module-Type Model Sub Status --- - - --- --- 1 12 1000BaseX Supervisor WS-X6K-SUP2-2GE yes ok 15 11 Multilayer Switch Feature WS-F6K-MSFC2no ok 2 22 1000BaseX Supervisor WS-X6K-SUP2-2GE yes standby 16 21 Multilayer Switch Feature WS-F6K-MSFC2no ok 3 38 1000BaseX EthernetWS-X6408A-GBIC no ok 4 44810/100BaseTX Ethernet WS-X6348-RJ-45 no ok 5 54810/100BaseTX Ethernet WS-X6348-RJ-45 no ok Some trouble is that, the switch reset some modules without reset the wholse system.the show log will give such mesg: Network Management Processor (ACTIVE NMP) Log: Reset count: 21 Re-boot History: Sep 30 2001 03:07:01 0, Jun 16 2001 00:54:55 0 Jun 16 2001 00:21:32 0, Jun 16 2001 00:08:31 0 Jun 16 2001 00:06:50 0, Jun 15 2001 23:49:57 0 Jun 14 2001 16:47:39 0, Jun 14 2001 15:16:16 0 Jun 11 2001 13:25:19 0, Jun 11 2001 11:20:57 0 Bootrom Checksum Failures: 0 UART Failures: 0 Flash Checksum Failures:0 Flash Program Failures: 0 Power Supply 1 Failures:2 Power Supply 2 Failures:2 Swapped to CLKA:0 Swapped to CLKB:0 Swapped to Processor 1: 0 Swapped to Processor 2: 0 DRAM Failures: 0 Exceptions: 0 Loaded NMP version:6.1(2) Reload same NMP version count: 30 EOBC Exceptions/Hang:0 Heap Memory Log: Corrupted Block = none NVRAM log: Network Management Processor (STANDBY NMP) Log: Reset count: 20 Re-boot History: Sep 30 2001 03:07:05 0, Jun 26 2001 00:28:48 0 Jun 16 2001 00:54:55 0, Jun 16 2001 00:21:32 0 Jun 16 2001 00:08:31 0, Jun 15 2001 23:49:58 0 Jun 14 2001 16:47:40 0, Jun 14 2001 15:16:18 0 Jun 11 2001 13:25:18 0, Jun 11 2001 13:11:28 0 Bootrom Checksum Failures: 0 UART Failures: 0 Flash Checksum Failures:0 Flash Program Failures: 0 Power Supply 1 Failures:1 Power Supply 2 Failures:1 Swapped to CLKA:0 Swapped to CLKB:0 Swapped to Processor 1: 0 Swapped to Processor 2: 3 DRAM Failures: 0 Exceptions: 0 Loaded NMP version:6.1(2) Reload same NMP version count: 29 EOBC Exceptions/Hang:0 Heap Memory Log: Corrupted Block = none I noticed that the system uptime is about 30 days but it really reseted 2 WS-X6348-RJ-45 and one WS-X6408A-GBIC modules just now. it report two power failure but why the uptime is showing no interrupt at all? the modules log says it reset at the same time, but the system uptime does not notice the reset. Module 3 Log: Reset Count: 17 Reset History: Thu Nov 1 2001, 00:11:06 Sun Sep 30 2001, 03:09:42 Sat Jun 16 2001, 00:57:37 Sat Jun 16 2001, 00:24:14 Module 4 Log: Reset Count: 17 Reset History: Thu Nov 1 2001, 00:11:11 Sun Sep 30 2001, 03:09:46 Sat Jun 16 2001, 00:57:40 Sat Jun 16 2001, 00:24:18 Module 5 Log: Reset Count: 20 Reset History: Thu Nov 1 2001, 00:11:11 Fri Oct 12 2001, 21:10:19 Fri Oct 12 2001, 03:01:29 Tue Oct 9 2001, 23:32:18 Module 15 Log: Reset Count: 20 Reset History: Thu Nov 1 2001, 00:11:18 Sun Sep 30 2001, 03:09:41 Tue Jun 26 2001, 23:03:49 Sat Jun 16 2001, 00:57:35 Module 16 Log: Reset Count: 25 Reset History: Thu Nov 1 2001, 00:11:18 Sun Sep 30 2001, 03:09:41 Wed Jul 11 2001, 02:58:10 Tue Jun 26 2001, 23:11:25 i want to get an explain, and anybody can help me ? thanks a lot Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=24773t=24773 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: CSPM for IDS [7:24727]
Have you checked their Host ID, Host Name, Org name and Org ID? Did you define your sensor in CSPM correctly? Make sure PostOffice (UDP 45000 by default) all the way goes through. Gary Wong Jim Bond wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... Hello, I'm trying to setup CSMP. On Netranger side, I got sync NOT received error. Network connection is good. What might be the problem? Thanks a lot. Jim __ Do You Yahoo!? Make a great connection at Yahoo! Personals. http://personals.yahoo.com Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=24774t=24727 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: FTP Server [7:24525]
From a book that I am working on. The figures would help, but you'll have to buy the book for that! ;-) FTP Active Mode 1 The client sends a TCP SYN to the well-known FTP control port (port 21) on the server. The client uses an ephemeral port as its source port. (Ephemeral means short-lived, not well-known, and greater than 1023.) 2 The server sends the client a SYN ACK from port 21 to the ephemeral port on the client. 3 The client sends an ACK. The client uses this connection to send FTP commands, and the server uses this connection to send FTP replies. 4 When the user requests a directory listing or initiates the sending or receiving of a file, the client software sends a PORT command that includes an ephemeral port number that the client wishes the server to use when opening the data connection. 5 The server sends a SYN from port 20 (FTP data) to the client's ephemeral port number, which was provided to the server in the client's PORT command. 6 The client sends a SYN ACK from its ephemeral port to port 20. 7 The server sends an ACK. 8 The host that is sending data uses this new connection to send the data in TCP segments, which the other host ACKs. (With some commands, such as STOR, the client sends data. With other commands, such as RETR, the server sends data.) 9 After the data transfer is complete, the host sending data closes the data connection with a FIN, which the other host ACKs. The other host also sends its own FIN, which the sending host ACKs. 10 The client can send more commands on the control connection, which may cause additional data connections to be opened and then closed. At some point, when the user is finished, the client closes the control connection with a FIN. The server ACKs the client's FIN. The server also sends its own FIN, which the client ACKs. FTP Passive Mode The steps for passive FTP are described in the following list. Steps 1-3 are the same as the first three steps for active mode. Also, steps 9-11 are the same as the last three steps for active mode. 1 The client sends a TCP SYN to the well-known FTP control port (port 21) on the server. The client uses an ephemeral port as the source port. 2 The server sends the client a SYN ACK from port 21 to the ephemeral port on the client. 3 The client sends an ACK. The client uses this connection to send FTP commands, and the server uses the connection to send FTP replies. 4 When the user requests a directory listing or initiates the sending or receiving of a file, the client software sends a PASV command to the server indicating the desire to enter passive mode. 5 The server replies. The reply includes an ephemeral port number that the client should use when opening the connection for data transfer. 6 The client sends a SYN from a client-selected ephemeral port to the server's ephemeral port number, which was provided to the client in the reply to the client's PASV command. 7 The server sends a SYN ACK from its ephemeral port to the client's ephemeral port. 8 The client sends an ACK. 9 The host that is sending data uses this new connection to send the data in TCP segments, which the other host ACKs. (With some commands, such as STOR, the client sends data. With other commands, such as RETR, the server sends data.) 10 After the data transfer is complete, the host sending data closes the data connection with a FIN, which the other host ACKs. The other host also sends its own FIN, which the sending host ACKs. 11 The client can send more commands on the control session, which may cause additional data connections to be opened and then closed. At some point, when the user is finished, the client closes the control connection with a FIN. The server ACKs the client's FIN. The server also sends its own FIN, which the client ACKs. Priscilla At 12:34 AM 10/31/01, Jill Johnson wrote: Thank you very much for all your help. I still don't quite understand about the Passive Mode. The idea of setting up this access-list is for the users to dial in from home and to be able to do FTP to the servers at work. Thanks. Jill Jonathan Hays wrote: Priscilla Oppenheimer wrote: If it's not passive mode, the data channel is initiated by the server from port 20 (FTP data) to the ephemeral port provided by the client in its PORT command. Ephemeral just means a short-lived port with a number greater than 1023. If it is passive mode, then the data channel is initiated by the client from an ephemeral port to an ephemeral port provided by the server in its PASV command. In other words, access lists with FTP are tricky. Priscilla At 03:14 PM 10/30/01, Jonathan Hays wrote: Don't we also want a ACL line for the ftp data channel? access-list 110 permit tcp any host 192.3.10.10 eq ftp-data And if the server is using passive ftp access-list 110 permit tcp any host 192.3.10.10 gt 1023 established Oops, you're right! I'm getting a bit rusty...
Re: Pretty complex BGP load balancing scenarios [7:24628]
On Tue, 30 Oct 2001, suaveguru wrote: What if contacting the provider to announce the more specific /24 is not an option and also getting an AS#, will buying a transmit carrier from the satellite provider solve this problem? Not unless you need to offload outgoing traffic...If you had IP's from both upstreams you could assign them in such a way as to distribute the traffic. NAT is also a possibility depending on the end station requirements. thanks for your input anyway regards, suaveguru --- Chris White wrote: On Tue, 30 Oct 2001, suaveguru wrote: situation goes this way R1Receive-Only---R2-Terrestrial gw | | Transmit-Only Problem : customer has only one block of Class C Address and when I advertise the whole class C over the satellite link it does off-load the terrestrial link for the return path but this time the satellite link get congested . I could not do a AS-PATH prepend as they are using Private-As and the provider is stripping private-as at their end My question is how can I solve this problem of load-balancing by introducing as shown in the diagram another satellite link from the same provider with only a transmit path ? Correct me if I am wrong but it sounds like the customers Class C was assigned by the terrestrial provider. If so the most likely problem is that the Class C is being aggregated by the terrestrial provider into a larger block. The satellite provider on the other hand is announcing the more specific /24. terrestrial provider /19 Global BGP table satellite provider /24 Since the more specific route would be preferred most traffic would prefer the satellite link. There are a couple of ways you could address this. One would be to ask the terrestrial provider to announce the more specific /24 as well. This would probably help but you would still not have any control over the traffic...The other option would be to get an AS# and run BGP with both providers. appreicate your inputs suaveguru __ Do You Yahoo!? Make a great connection at Yahoo! Personals. http://personals.yahoo.com [EMAIL PROTECTED] __ Do You Yahoo!? Make a great connection at Yahoo! Personals. http://personals.yahoo.com Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=24775t=24628 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: How to Configure ISDN Sites. [7:24656]
Is the global link for sample configuration sheets for all the cisco products. MADMAN wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... Here is a good page to start with: http://www.cisco.com/warp/customer/793/access_dial/index.html Dave Muhammad Faheem wrote: Hi All, I have to configure 2620 @ HeadOffice and 803 @ different branch offices using ISDN , I appreciate if i could get some sample configuration for such scenario. Thanx Faheem. -- David Madland Sr. Network Engineer CCIE# 2016 Qwest Communications Int. Inc. [EMAIL PROTECTED] 612-664-3367 Emotion should reflect reason not guide it Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=24777t=24656 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: How to find serial number of router? [7:24765]
I know of no way to get the serial number from the router without looking at the box itself. If you are running a SNMP program once you have that number you can go in and manually enter the serial number, so from then on you can have the number. The serial number that is reflected when you do a show version is the serial number of the motherboard inside the router NOT the serial number of the router. This has been discussed before, you can search the archives of groupstudy for the results. Debbie Westall --- Symon Thurlow wrote: sh ver usually does it Use a MIB browser via SNMP and you will probably find it. Symon --- Hi Guys, Can anyone here please help what are the possible software ways to findout the serial number of router without looking at the hardware itself?? Can we findout by using any management software like Cisco resource manger or etc?? Thanks for help. _ Get your FREE download of MSN Explorer at http://explorer.msn.com/intl.asp [EMAIL PROTECTED] Cheers, Symon [EMAIL PROTECTED] __ Do You Yahoo!? Make a great connection at Yahoo! Personals. http://personals.yahoo.com Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=24778t=24765 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
IP address on AUI port [7:24779]
Hello all, I have set up an ip address on my ethernet port on a 2501. Will this also work if it is connected to a hub rather than directly to a switch. ie ---switch---hub---AUI transceiver--e0 Or maybe I am using the wrong cable between the hub and transceiver? I am using a straight through cable. The hub is a netgear 10bt and it doesnt blink on the right side when attached to the transceiver. thanks stuart Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=24779t=24779 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
BSCI exam help required [7:24780]
Hi All, I need help for the BSCI exam, I'm going for BSCI in next two weeks. Please help me and guide me through the exam... or mail me if you have any good stuff.. I will really appreciate. My e-mail add is [EMAIL PROTECTED] Thanks in advance.. Regards Jaka Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=24780t=24780 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: ARP - What protocols support it. [7:24738]
ARP is part of the TCP/IP protocol suite. It is supported by 802.2, ethernet v.2 and internetwork at the LLC layer. Appletalk has its own address resolution called AARP and Banyan VINES has VARP. Kev Dave Shine wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... Does anyone know what protocols do or better yet do not support ARP? D.S. __ Do You Yahoo!? Make a great connection at Yahoo! Personals. http://personals.yahoo.com Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=24781t=24738 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Labs [7:24782]
bfq Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=24785t=24782 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Labs [7:24782]
Check out that new company that does self test software for some cheap labs. They had some problems but have resolved most of them and gave me some free labs for my trouble. bfq Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=24782t=24782 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
load sharing
We have two links to our provider and this provider makes load sharing per packet but sometimes one of two links is saturated and the other has free bandwidth can anyone explain this weird behavior Best Regards,Mohamed SaroSenior Network Engineer GEGA NETTel: +20 2 4149771/2/3/4ext.:111
RE: OT: problems upgrading ios on cat6 msfc [7:24736]
I have upgraded both my cat6 sup-msfc, and had no problems, here is the info I used: http://www.cisco.com/warp/public/473/81.shtml just keep in mind that it will take you an hour or so, and several resets. godd luck. Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=24787t=24736 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: IP address on AUI port [7:24779]
If you are connecting a transceiver to either a switch or a hub you will use a straight-through cable. If you are connecting the hub to the switch you either must use the uplink port on the hub--if available--or use a crossover cable. All this is necessary to get the ethernet port UP/UP is to connect the transceiver to the hub or switch and do a no shut on the interface. Also, if you do have an uplink port on that hub you shouldn't use that port to connect your router. If you do insist on using that port then you must use a crossover cable. (are you confused yet? ) HTH, John Stuart Laubstein 10/31/01 6:13:53 AM Hello all, I have set up an ip address on my ethernet port on a 2501. Will this also work if it is connected to a hub rather than directly to a switch. ie ---switch---hub---AUI transceiver--e0 Or maybe I am using the wrong cable between the hub and transceiver? I am using a straight through cable. The hub is a netgear 10bt and it doesnt blink on the right side when attached to the transceiver. thanks stuart Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=24788t=24779 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: How to find serial number of router? [7:24765]
I know of no way to get the serial number from the router without looking at the box itself. If you are running a SNMP program once you have that number you can go in and manually enter the serial number, so from then on you can have the number. The serial number that is reflected when you do a show version is the serial number of the motherboard inside the router NOT the serial number of the router. This has been discussed before, you can search the archives of groupstudy for the results. Debbie Westall --- Symon Thurlow [EMAIL PROTECTED] wrote: sh ver usually does it Use a MIB browser via SNMP and you will probably find it. Symon --- Hi Guys, Can anyone here please help what are the possible software ways to findout the serial number of router without looking at the hardware itself?? Can we findout by using any management software like Cisco resource manger or etc?? Thanks for help. _ Get your FREE download of MSN Explorer at http://explorer.msn.com/intl.asp [EMAIL PROTECTED] Cheers, Symon Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=24765t=24765 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] __ Do You Yahoo!? Make a great connection at Yahoo! Personals. http://personals.yahoo.com
IP address on AUI port
[ The following text is in the iso-8859-1 character set. ] [ Your display is set for the US-ASCII character set. ] [ Some characters may be displayed incorrectly. ] Hello all, I have set up an ip address on my ethernet port on a 2501. Will this also work if it is connected to a hub rather than directly to a switch. ie ---switch---hub---AUI transceiver--e0 Or maybe I am using the wrong cable between the hub and transceiver? I am using a straight through cable. The hub is a netgear 10bt and it doesnt blink on the right side when attached to the transceiver. thanks stuart
To Passive or Not to Passive
[ The following text is in the iso-8859-1 character set. ] [ Your display is set for the US-ASCII character set. ] [ Some characters may be displayed incorrectly. ] Dear all, Before I take the leap into the lab (2 weeks to go now), I have a question which has dogged me for a while now. Scenario below. Router 1 has the following interfaces, Lo0, Eth0/0, S0/0, S0/1 and say Fast0/1. Router 2 has the following interfaces Lo0, Lo1, Eth 0/1, S0/0. Between Router 1 (s0/0) and Router 2 (s0/0) we are running say OSPF. On router 1 (e0/0 and s0/1) we are running RIP. On Router 2 (e0/1 and lo1) we are also running Rip. Router 1 (lo0, s0/1) and Router 2 (lo0) are running Eigrp. Now for the questions 1. On router 1 OSPF process is running Q: should I put lo0,e0/0, fast0/1 and s0/1 as passive interface ??? This worries me quite a bit as the argument of if you dont put the network command under ospf then ospf will not run on that interface...BUT I have been told that you should ALWAYS put every in use interface into passive if it is not being used under the routing process. 2. This is not a question but a sanity check that for EIGRP and RIP then the norm rules of passive interfaces apply. Thanks for anyones help in clearing this annoying matter up. Robert McCallum Ext 730 3448 DDI : 01415663448 Mobile : 07818002241
Re: To Passive or Not to Passive [7:24771]
In regards to Q number one. I think it would be much better not to specify passive interface under OSPF as long as your network statement does not include the IP of the interface in question. The reason for that, at least in my head, is that if I were a proctor I might think you don't understand how OSPF works. For question 2, passive should be a norm on interfaces you don't want to form neighboorship or sending routing updates. Make sure you understand that passive works differenty for RIP than for EIGRP. McCallum, Robert [EMAIL PROTECTED] wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... Dear all, Before I take the leap into the lab (2 weeks to go now), I have a question which has dogged me for a while now. Scenario below. Router 1 has the following interfaces, Lo0, Eth0/0, S0/0, S0/1 and say Fast0/1. Router 2 has the following interfaces Lo0, Lo1, Eth 0/1, S0/0. Between Router 1 (s0/0) and Router 2 (s0/0) we are running say OSPF. On router 1 (e0/0 and s0/1) we are running RIP. On Router 2 (e0/1 and lo1) we are also running Rip. Router 1 (lo0, s0/1) and Router 2 (lo0) are running Eigrp. Now for the questions 1. On router 1 OSPF process is running Q: should I put lo0,e0/0, fast0/1 and s0/1 as passive interface ??? This worries me quite a bit as the argument of if you dont put the network command under ospf then ospf will not run on that interface...BUT I have been told that you should ALWAYS put every in use interface into passive if it is not being used under the routing process. 2. This is not a question but a sanity check that for EIGRP and RIP then the norm rules of passive interfaces apply. Thanks for anyones help in clearing this annoying matter up. Robert McCallum Ext 730 3448 DDI : 01415663448 Mobile : 07818002241 Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=24771t=24771 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
BSCI exam help required
[ The following text is in the iso-8859-1 character set. ] [ Your display is set for the US-ASCII character set. ] [ Some characters may be displayed incorrectly. ] Hi All, I need help for the BSCI exam, I'm going for BSCI in next two weeks. Please help me and guide me through the exam... or mail me if you have any good stuff.. I will really appreciate. My e-mail add is [EMAIL PROTECTED] Thanks in advance.. Regards Jaka
Re: How to find serial number of router? [7:24760]
Show version will show this as well. Under the Processor Board ID IT Guy [EMAIL PROTECTED] wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... Hi Guys, Can anyone here please help what are the possible software ways to findout the serial number of router without looking at the hardware itself?? Can we findout by using any management software like Cisco resource manger or etc?? Thanks for help. _ Get your FREE download of MSN Explorer at http://explorer.msn.com/intl.asp Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=24760t=24760 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: ARP - What protocols support it. [7:24738]
Vines does have something called 'ARP', although I believe it was mostly used just for a DHCP-type service (address assignment). Apollo implements as true full-blown ARP. ATM also supports an inverse-ARP. Priscilla Oppenheimer [EMAIL PROTECTED] wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... ARP is an IP term. But AppleTalk has the AppleTalk Address Resolution Protocol (AARP) which behaves just like IP ARP, with a few additional features to support dynamic addressing. But its main function is to find the data-link-layer address when the network-layer address is known, which is just like IP ARP. Novell IPX doesn't need such a feature because the Node ID in the network.node network-layer address IS the data-link-layer address. So if a station knows another station's network-layer address, it knows the station's data-link-layer address too. DECnet doesn't need such a feature either because it changes the data-link-layer address on an interface so that it is based on the network-layer address. I can't remember too much about Banyan. It may have an ARP. What else is there?? Hm. NetBEUI doesn't have a network layer, so it doesn't need ARP. SNA is such a different beast, I doubt it has ARP. We could talk about WANs too I guess. Frame Relay has inverse ARP. HDLC has SLARP. Priscilla At 09:01 PM 10/30/01, Dave Shine wrote: Does anyone know what protocols do or better yet do not support ARP? D.S. __ Do You Yahoo!? Make a great connection at Yahoo! Personals. http://personals.yahoo.com Priscilla Oppenheimer http://www.priscilla.com Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=24750t=24738 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: How to Configure ISDN Sites. [7:24656]
http://www.cisco.com/kobayashi/technotes/serv_tips.shtml Is the global link for sample configuration sheets for all the cisco products. MADMAN [EMAIL PROTECTED] wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... Here is a good page to start with: http://www.cisco.com/warp/customer/793/access_dial/index.html Dave Muhammad Faheem wrote: Hi All, I have to configure 2620 @ HeadOffice and 803 @ different branch offices using ISDN , I appreciate if i could get some sample configuration for such scenario. Thanx Faheem. -- David Madland Sr. Network Engineer CCIE# 2016 Qwest Communications Int. Inc. [EMAIL PROTECTED] 612-664-3367 Emotion should reflect reason not guide it Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=24662t=24656 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Load balancing with Win2k and Cat6k [7:24494]
Thanks George I'll watch out for that, George Murphy CCNP, CCDP [EMAIL PROTECTED] wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... Just an FYI, last week our server guys at the campus fired up a Win2k load balancing scenario and it was spewing multicasts like a bat out of hell and made parts of the network inaccessible, like printers, an ISDN 128k link, etc. We were using Observer to sniff. Now we have put the little monsters in there own VLAN. the highway is smooth now with the HOV lane in operation ;-) Jonathan Hays wrote: Patrick Donlon wrote: had a look on the CCO, m'soft and HPs site but I can't see much relevant info, can any provide some info or experience on this Really? I searched www.microsoft.com/technet with the phrase network interface load balancing and came up with quite a few hits discussing load balancing (e.g., Configuring Network Load Balancing Q240997). You may get more help on your problem from a Microsoft newsgroup. It's hard to see how this is a Cisco ACS problem; it seems more like a Microsoft Windows problem. Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=24680t=24494 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: CSPM for IDS [7:24727]
Have you checked their Host ID, Host Name, Org name and Org ID? Did you define your sensor in CSPM correctly? Make sure PostOffice (UDP 45000 by default) all the way goes through. Gary Wong Jim Bond [EMAIL PROTECTED] wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... Hello, I'm trying to setup CSMP. On Netranger side, I got sync NOT received error. Network connection is good. What might be the problem? Thanks a lot. Jim __ Do You Yahoo!? Make a great connection at Yahoo! Personals. http://personals.yahoo.com Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=24727t=24727 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: ARP - What protocols support it. [7:24738]
ARP is part of the TCP/IP protocol suite. It is supported by 802.2, ethernet v.2 and internetwork at the LLC layer. Appletalk has its own address resolution called AARP and Banyan VINES has VARP. Kev Dave Shine [EMAIL PROTECTED] wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... Does anyone know what protocols do or better yet do not support ARP? D.S. __ Do You Yahoo!? Make a great connection at Yahoo! Personals. http://personals.yahoo.com Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=24738t=24738 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
how many vlans can a 2924-en-xl be devided?
for instance,it has 24 ports,can I make 12 vlans in it?I remember it can be devided at most 6 vlans,but not clearly,who can tell me?thanks
CCNP
[ The following text is in the iso-8859-1 character set. ] [ Your display is set for the US-ASCII character set. ] [ Some characters may be displayed incorrectly. ] Hi All I would like thank GOD and my Family and all the members of the Cisco Group Study that have contributed to helping me pass my CCNP Exams. Thanks God Bless Sergio Silva Network Engineer Mobile 0833261349 Land0117091658 Fax 0117091141 [EMAIL PROTECTED] mailto:[EMAIL PROTECTED] ** This email and any files transmitted with it are confidential and intended solely for the use of the individual or entity to whom they are addressed. If you have received this email in error please notify the system manager. This footnote also confirms that this email message has been swept by MIMEsweeper for the presence of computer viruses. www.mimesweeper.com **
X21 to V35 Conversion.
[ Part 1.1, Text/PLAIN 19 lines. ] [ Unable to print this part. ] Dear Group. I have a Cisco router Serial plugged into X21 interface running at 2Meg. I have a serial Sniffer but it only has V35 interfaces. I can get new Cisco V35 cable to go from router to sniffer but need a cable to go from V35 Male to X21Female. I.E. Need a cable with V35 Female connector at one end and Male X21 Connector at the other. Is it just a matter of getting pinouts for V35 and X21 and making a cable or are there some signal level/conversion issues ?? Thankyou Charles ^@
Re: how many vlans can a 2924-en-xl be devided? [7:24764]
[ The following text is in the iso-8859-7 character set. ] [ Your display is set for the US-ASCII character set. ] [ Some characters may be displayed incorrectly. ] 2924 XL can support 64 VLANs. http://www.cisco.com/univercd/cc/td/doc/product/lan/c2900xl/29_35wc/sc/swgvlans.htm Leo Shen wrote: for instance,it has 24 ports,can I make 12 vlans in it?I remember it can be devided at most 6 vlans,but not clearly,who can tell me?thanks Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=24764t=24764 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] -- Minas Stratigos Network Engineer Pre-Sales Product Management Division European Dynamics S.A. Tel: +301 8094500 Fax: +301 8094505 [EMAIL PROTECTED]
Re: Pretty complex BGP load balancing scenarios [7:24628]
On Tue, 30 Oct 2001, suaveguru wrote: What if contacting the provider to announce the more specific /24 is not an option and also getting an AS#, will buying a transmit carrier from the satellite provider solve this problem? Not unless you need to offload outgoing traffic...If you had IP's from both upstreams you could assign them in such a way as to distribute the traffic. NAT is also a possibility depending on the end station requirements. thanks for your input anyway regards, suaveguru --- Chris White wrote: On Tue, 30 Oct 2001, suaveguru wrote: situation goes this way R1Receive-Only---R2-Terrestrial gw | | Transmit-Only Problem : customer has only one block of Class C Address and when I advertise the whole class C over the satellite link it does off-load the terrestrial link for the return path but this time the satellite link get congested . I could not do a AS-PATH prepend as they are using Private-As and the provider is stripping private-as at their end My question is how can I solve this problem of load-balancing by introducing as shown in the diagram another satellite link from the same provider with only a transmit path ? Correct me if I am wrong but it sounds like the customers Class C was assigned by the terrestrial provider. If so the most likely problem is that the Class C is being aggregated by the terrestrial provider into a larger block. The satellite provider on the other hand is announcing the more specific /24. terrestrial provider /19 Global BGP table satellite provider /24 Since the more specific route would be preferred most traffic would prefer the satellite link. There are a couple of ways you could address this. One would be to ask the terrestrial provider to announce the more specific /24 as well. This would probably help but you would still not have any control over the traffic...The other option would be to get an AS# and run BGP with both providers. appreicate your inputs suaveguru __ Do You Yahoo!? Make a great connection at Yahoo! Personals. http://personals.yahoo.com [EMAIL PROTECTED] __ Do You Yahoo!? Make a great connection at Yahoo! Personals. http://personals.yahoo.com Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=24732t=24628 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: HSRP - hows it work [7:24721]
Hi group, Who have used the 'standby track serial 0' command before, while configuring HSRP. I tried it and was disappointed because, my two upstream providers are connected via a radio (microwave link). Even when one of them is down, the radio coneected to the router still send keepalives to the route and as such the interface does not go down, and as such the HSRP does not work when any of the upstream goes down. Has anyone being able to solve this problem? Regards --- Michael Williams [EMAIL PROTECTED] wrote: If router A has a higher priority and is setup to preempt, then when it comes back up (after a failure), it will resume being the active. If router A does not setup with preempt, it won't become the active until Router B fails or is restarted, etc. HSRP works by projecting a virtual IP address and a virtual MAC address. You would configure the clients/workstations with a gateway that is the virtual IP address (or the standby IP). Whenever the end device sends an ARP which the routers resolve to the virtual MAC. It is possible to use a Burned-in (MAC) Address (called a BIA) in case the default virtual MAC causes a problem. Once the end workstation resolves the virtual IP to the virtual MAC, it communicates with the virtual MAC, in which both routers receive and take note of the traffic, but only the active router will actually forward the traffic. This is a in a nutshell view of HSRP and I'm sure there is something that I've left out or said wrong, but that's basically it.. Mike W. Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=24740t=24721 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] __ Do You Yahoo!? Make a great connection at Yahoo! Personals. http://personals.yahoo.com
Re: load sharing [7:24752]
You need to elaborate this , using BGP ? regards, suaveguru --- Mohammed Saro [EMAIL PROTECTED] wrote: We have two links to our provider and this provider makes load sharing per packet but sometimes one of two links is saturated and the other has free bandwidth can any one explain this weird behavior Best Regards, Mohamed Saro Senior Network Engineer GEGA NET Tel: +20 2 4149771/2/3/4 ext.:111 Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=24752t=24752 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] __ Do You Yahoo!? Make a great connection at Yahoo! Personals. http://personals.yahoo.com
Re: How to find serial number of [iso-8859-1] router? [7:24760]
[ The following text is in the iso-8859-1 character set. ] [ Your display is set for the US-ASCII character set. ] [ Some characters may be displayed incorrectly. ] sh ver usually does it Use a MIB browser via SNMP and you will probably find it. Symon --- Hi Guys, Can anyone here please help what are the possible software ways to findout the serial number of router without looking at the hardware itself?? Can we findout by using any management software like Cisco resource manger or etc?? Thanks for help. _ Get your FREE download of MSN Explorer at http://explorer.msn.com/intl.asp Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=24760t=24760 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] Cheers, Symon
Re: How to find serial number of router? [7:24760]
you can use show diag command. or as you said, you can use cisco resource manager also. cheers, budi --- IT Guy [EMAIL PROTECTED] wrote: Hi Guys, Can anyone here please help what are the possible software ways to findout the serial number of router without looking at the hardware itself?? Can we findout by using any management software like Cisco resource manger or etc?? Thanks for help. _ Get your FREE download of MSN Explorer at http://explorer.msn.com/intl.asp Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=24760t=24760 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] __ Do You Yahoo!? Make a great connection at Yahoo! Personals. http://personals.yahoo.com
Re: SRB and 3920 questions, please help [7:24734]
Jerry: The way the Token Ring VLANs are set up there is a parent VLAN and a child VLAN. The TrBRF is the parent, the TrCRF is the child. The TrBRF is the virtual bridge, TrCRF's belong to a given TrBRF. 3920 ports are assigned to a TrCRF. The VLAN IDs are used internally on the 3920 and are independent from the bridge or ring numbers. There is a good tuitorial on the CD or CCO under the 3920 section. When you have two To interfaces, you can have them on the same ring or on different rings. For the same ring: Configure the TrBRF first, this is the parent vlan. Assign a bridge number (default is F) and a vlan id. Next configure a TrCRF, this is the child vlan. Assign a vlan ID, tie it to the TrBRF, and configure the ring number (in hex), and the bridging mode (SRT or SRB). Next assign ports to the TrCRF. If you assign multiple ports to the TrCRF they are on the same ring. With the single TrBRF defined you can tie multiple TrCRF's to it with different ring numbers. These will be bridged. There is no router interface configuration necessary other than ring speed to bridge between the two rings. You can give the To interfaces and the TrBRF IP addresses in the same net and ping between them. For your configuration you are not bridging on the 3920, you are bridging on the router. This is done if you are configuring DLSW, for instance. When you have configured the TrCRf for ring 2 this is the source ring used on the To interface. You can use any bridge number to the router virtual ring 100. For DLSW use the source-bridge spanning command and, of course, configure ring speed. Hope this isn't too confusing, Fred. Jerry Seven wrote: Hi, I have several Token ring switch questions: Router R1 has interface To0 connects to token ring network, and it's the only device on it besides 3920, on 3920 I configured the bridge number 1 and vlan 10 for TrBRF, ring number 2 and vlan 20 for TrCRF. Questions: 1) Why should I configure vlans for TrBRF and TrCRF, what are they for? 2) If I enable SRB on R1, what's the bridge number and ring number should I choose in order to be consistent to 3920 configuration? Should I use different bridge ID and same ring ID as follows: source-bridge ring-group 100 interface To0 source-bridge 2 2 100 Any help is greatly appreciated, J _ Do You Yahoo!? Get your free @yahoo.com address at http://mail.yahoo.com Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=24734t=24734 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Collisions on a Serial Line [7:24601]
[ The following text is in the iso-8859-1 character set. ] [ Your display is set for the US-ASCII character set. ] [ Some characters may be displayed incorrectly. ] True, I wasn't reading the question right. I was thinking about if the WAN link was crack down. In that case, I believe there will be a collisions on a serial link... Albert -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Priscilla Oppenheimer Sent: Tuesday, October 30, 2001 1:15 PM To: [EMAIL PROTECTED] Subject: RE: Collisions on a Serial Line [7:24601] Whether a protocol is reliable or not has nothing to do with collisions. Collisions have to do with media access control at the data-link layer. Ethernet is not reliable. It's best effort. The only problem it monitors is collisions, (if you're using half-duplex). Cisco's HDLC is not reliable. That's not relevant as far as to whether it has collisions, however. What is relevant is its media access control, which is very simple because there's nothing else sharing its transmit circuit, so it can send whenever it wants. It's used on point-to-point circuits. X.25 is a network-layer protocol so it is not relevant to a question that is asking about a media-access control function. Priscilla At 10:57 PM 10/29/01, Albert Y. Pak wrote: That's depending on the WAN side what technology you are using. If you are using Frame Relay or HDLC between the WAN side via serial link, there will be no collision. Since Frame Relay and HDLC are connection-oriented but not reliable. All the re-transmission are done by between 2 hosts of each opposite end. In case of using X.25, there will be a collision since X.25 is connection-oriented and reliable. 2 routers between the serial line will do all the re-transmission. So there will be a collision. HTH Albert -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Dave Luancing Sent: Monday, October 29, 2001 10:03 PM To: [EMAIL PROTECTED] Subject: Collisions on a Serial Line [7:24601] Is it possible to have collisions on a serial line ?? if so, what causes this? - D.L. __ Do You Yahoo!? Make a great connection at Yahoo! Personals. http://personals.yahoo.com Priscilla Oppenheimer http://www.priscilla.com Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=24684t=24601 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: FTP Server [7:24525]
From a book that I am working on. The figures would help, but you'll have to buy the book for that! ;-) FTP Active Mode 1 The client sends a TCP SYN to the well-known FTP control port (port 21) on the server. The client uses an ephemeral port as its source port. (Ephemeral means short-lived, not well-known, and greater than 1023.) 2 The server sends the client a SYN ACK from port 21 to the ephemeral port on the client. 3 The client sends an ACK. The client uses this connection to send FTP commands, and the server uses this connection to send FTP replies. 4 When the user requests a directory listing or initiates the sending or receiving of a file, the client software sends a PORT command that includes an ephemeral port number that the client wishes the server to use when opening the data connection. 5 The server sends a SYN from port 20 (FTP data) to the client's ephemeral port number, which was provided to the server in the client's PORT command. 6 The client sends a SYN ACK from its ephemeral port to port 20. 7 The server sends an ACK. 8 The host that is sending data uses this new connection to send the data in TCP segments, which the other host ACKs. (With some commands, such as STOR, the client sends data. With other commands, such as RETR, the server sends data.) 9 After the data transfer is complete, the host sending data closes the data connection with a FIN, which the other host ACKs. The other host also sends its own FIN, which the sending host ACKs. 10 The client can send more commands on the control connection, which may cause additional data connections to be opened and then closed. At some point, when the user is finished, the client closes the control connection with a FIN. The server ACKs the client's FIN. The server also sends its own FIN, which the client ACKs. FTP Passive Mode The steps for passive FTP are described in the following list. Steps 1-3 are the same as the first three steps for active mode. Also, steps 9-11 are the same as the last three steps for active mode. 1 The client sends a TCP SYN to the well-known FTP control port (port 21) on the server. The client uses an ephemeral port as the source port. 2 The server sends the client a SYN ACK from port 21 to the ephemeral port on the client. 3 The client sends an ACK. The client uses this connection to send FTP commands, and the server uses the connection to send FTP replies. 4 When the user requests a directory listing or initiates the sending or receiving of a file, the client software sends a PASV command to the server indicating the desire to enter passive mode. 5 The server replies. The reply includes an ephemeral port number that the client should use when opening the connection for data transfer. 6 The client sends a SYN from a client-selected ephemeral port to the server's ephemeral port number, which was provided to the client in the reply to the client's PASV command. 7 The server sends a SYN ACK from its ephemeral port to the client's ephemeral port. 8 The client sends an ACK. 9 The host that is sending data uses this new connection to send the data in TCP segments, which the other host ACKs. (With some commands, such as STOR, the client sends data. With other commands, such as RETR, the server sends data.) 10 After the data transfer is complete, the host sending data closes the data connection with a FIN, which the other host ACKs. The other host also sends its own FIN, which the sending host ACKs. 11 The client can send more commands on the control session, which may cause additional data connections to be opened and then closed. At some point, when the user is finished, the client closes the control connection with a FIN. The server ACKs the client's FIN. The server also sends its own FIN, which the client ACKs. Priscilla At 12:34 AM 10/31/01, Jill Johnson wrote: Thank you very much for all your help. I still don't quite understand about the Passive Mode. The idea of setting up this access-list is for the users to dial in from home and to be able to do FTP to the servers at work. Thanks. Jill Jonathan Hays wrote: Priscilla Oppenheimer wrote: If it's not passive mode, the data channel is initiated by the server from port 20 (FTP data) to the ephemeral port provided by the client in its PORT command. Ephemeral just means a short-lived port with a number greater than 1023. If it is passive mode, then the data channel is initiated by the client from an ephemeral port to an ephemeral port provided by the server in its PASV command. In other words, access lists with FTP are tricky. Priscilla At 03:14 PM 10/30/01, Jonathan Hays wrote: Don't we also want a ACL line for the ftp data channel? access-list 110 permit tcp any host 192.3.10.10 eq ftp-data And if the server is using passive ftp access-list 110 permit tcp any host 192.3.10.10 gt 1023 established Oops, you're right! I'm getting a bit rusty...
AW: IP address on AUI port [7:24779]
Thanks for the info. I think the real problem was that a coworker of mine snuck an access list onto the interface--well he changed the existing and I didnt check. I did not know about the uplink port though so it was still worth asking the question. feeling foolish stuart -Urspr|ngliche Nachricht- Von: John Neiberger [mailto:[EMAIL PROTECTED]] Gesendet am: Wednesday, October 31, 2001 4:46 PM An: [EMAIL PROTECTED]; Stuart Laubstein Betreff: Re: IP address on AUI port [7:24779] If you are connecting a transceiver to either a switch or a hub you will use a straight-through cable. If you are connecting the hub to the switch you either must use the uplink port on the hub--if available--or use a crossover cable. All this is necessary to get the ethernet port UP/UP is to connect the transceiver to the hub or switch and do a no shut on the interface. Also, if you do have an uplink port on that hub you shouldn't use that port to connect your router. If you do insist on using that port then you must use a crossover cable. (are you confused yet? ) HTH, John Stuart Laubstein 10/31/01 6:13:53 AM Hello all, I have set up an ip address on my ethernet port on a 2501. Will this also work if it is connected to a hub rather than directly to a switch. ie ---switch---hub---AUI transceiver--e0 Or maybe I am using the wrong cable between the hub and transceiver? I am using a straight through cable. The hub is a netgear 10bt and it doesnt blink on the right side when attached to the transceiver. thanks stuart Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=24790t=24779 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Bridging and Access-lists [7:24791]
I have an ethernet segment that I would like to put some restrictions on, and after having played around with several solutions, I came to one that I believe is the best. Please do not reply with why don't you use the firewall, or similar suggestions - because I am looking for a way to get this solution to work. I have placed a Cisco 2514 on a segment so I can create access-lists to filter traffic. I want my segment to have the same IP addresses and be on the same network, so I have assigned the 2514 as a bridge where both ethernet interfaces has the same IP address, and are in the same bridge-group. IP routing has been disabled. This all works fine, except that any access-lists I create on any of the two ethernet interfaces does not block anything at all - it's like access-lists are being ignored when the interfaces works in bridging mode. Here's how it looks very simpyfied: internet---router---firewall---2514---switch---users and servers A part of the config: no ip routing ! interface Ethernet0 ip address 10.25.14.1 255.0.0.0 no ip directed-broadcast no ip route-cache no mop enabled bridge-group 1 ! interface Ethernet1 ip address 10.25.14.1 255.0.0.0 ip access-group 100 in no ip directed-broadcast no ip route-cache no mop enabled bridge-group 1 ! bridge 1 protocol dec ! ip classless ! access-list 100 deny ip any any ! The e0 interface is connected to the firewall, the gateway router, and eventually the Internet. The e1 interface is connected to the switch connecting a workstation. From that workstation I am browsing the web, but even with the deny ip any any, I can keep browsing without being blocked. Can someone explain this, and perhaps come up with a solution to fix this problem on this router? Thanks in advance, Ole ~~~ Ole Drews Jensen Systems Network Manager CCNP, MCSE, MCP+I RWR Enterprises, Inc. [EMAIL PROTECTED] ~~~ http://www.RouterChief.com ~~~ NEED A JOB ??? http://www.oledrews.com/job ~~~ Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=24791t=24791 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Second opinion on Regular Expression [7:24460]
I just did some more playing around and discovered something else interesting. I was again using show ip bgp regex to test different variations. ^1239_ would match any route coming from AS1239 *including* routes originated in AS1239. This is because the underscore can match any character including whitespace and the $ end-of-path anchor. ^1239 .* would match any route coming through AS1239 but *not* routes originated in AS1239. This is presumably because I now have included a specific space between the ^1239 and the .*. This will exclude ^1239$. ^1239_.+ behaves the same way as ^1239 .*. This is because the + sign expects one or more repetitions of at least one character following ^1239_. Finally, ^1239_.* seems to behave the same as ^1239_, at least in this show command. I'm guessing that it would work equally well in the as-path access list but I can't really test it here at work. This last one seems to be pretty comprehensive as it matches any path beginning with 1239 and then ending with zero or more instances of any character. Regards, John On Tue, 30 Oct 2001 20:47:20 -0800, Chuck Larrieu wrote: | everything is down for a couple of days due to job related travel, so I | can't check. | | in my case, I wanted to filter any route whose AS path began with . | | so: , or , or would all be filtered. | | however: 7171 304, or 1234 2223 1991 would not be filtered | | so I needed a regular expression that looked at the beginning of the | string. | | ^_ does not match any of the kinds of cases above. it should work ONLY | is is the ONLY AS in the AS Path. | | as Julian so rightly pointed out, you have to include something to cover all | the other entries in the AS Path list. this means the .* | | HTH | | Chuck | | -Original Message- | From: John Neiberger [mailto:[EMAIL PROTECTED]] | Sent: Tuesday, October 30, 2001 7:12 PM | To: Chuck Larrieu; [EMAIL PROTECTED] | Subject: RE: Second opinion on Regular Expression [7:24460] | | | This is interesting. I was wondering about the addition of the .* to the | access list. When I tested this using show ip bgp regexp I got the same | set of results whether or not I used the .*. So, does this mean that in | the show command it's not specific but when used in the access list it is an | exact match? | | In my case I tested show ip bgp regexp ^1239_ and show ip bgp regexp | ^1239 .* and I seemed to get the exact same results. However, I wonder if | I were to configure an as-path access list would the first form not match | anything? | | Maybe I should make that my lab study tonight. I'm having trouble getting | motivated again. :-) I keep getting distracted by doing things like | checking my email. | | John | | | On Tue, 30 Oct 2001 19:54:01 -0500, Chuck Larrieu wrote: | | | sorry to take so long to get back to you. | | | | DOH! | | | | you are correct. I was looking only at the first part of the path, and so | I | | was not filtering what I thought I was filtering. | | | | the ip as-path access-list deny ^_.* will deny any AS Path that | begins | | with , no matter what follows. | | | | ip as-path access-list deny ^_ appears to filter nothing because my | AS | | paths contain more than just the one AS/ | | | | Appreciate the review. | | | | Chuck | | | | -Original Message- | | From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] | | Sent: Sunday, October 28, 2001 11:40 PM | | To: [EMAIL PROTECTED] | | Subject: Re: Second opinion on Regular Expression [7:24460] | | | | | | Chuck, | | | | You need to make the deny '^ .*'. Assuming you are putting this on | an | | EBGP router peering with AS. | | | | ip as-path access-list 55 deny ^ .* | | | | The '^' is an anchor in regex and forces a match at the beginning of the | | input string you are comparing. IE: Whatever is after the '^' must | start | | at the beginning of the string being compared to match and make the | | epxression true. | | | | To see if you are getting anything from AS try: | | | | show ip bgp regexp ^ .* | | | | Good way to test your regexp as well. | | | | | | -Julian | | | | Chuck Larrieu wrote in message | | [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... | | for an as-path filter, here is what I want to accomplish: | | | | from one particular router to another particular router I want to | filter | | any | | AS path whose most recent AS was | | | | so if the BGP route has a path in the BGP table as ? or | | | | ? etc | | then I want that route to be filtered to a particular neighbor | | | | routes such as ? or , for example are OK | to | | pass | | | | my access-list is: | | | | ip as-path access-list 55 deny ^_ | | ip
Re: Labs [7:24782]
Mark Bramblett wrote: Check out that new company that does self test software for some cheap labs. They had some problems but have resolved most of them and gave me some free labs for my trouble. bfq We'd like to check them out but give us clue who they are 8-) Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=24794t=24782 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Non-deliverable mail [7:24795]
This is an automated response from the Mailer Daemon You recently sent an item of mail to [EMAIL PROTECTED] The recipient's mailbox is currently full and your mail cannot be delivered. Please try sending your message later when the recipient may have emptied their mailbox. Regards The Mailer Daemon Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=24795t=24795 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: ARP - What protocols support it. [7:24738]
nrf wrote: Vines does have something called 'ARP', although I believe it was mostly used just for a DHCP-type service (address assignment). Apollo implements as true full-blown ARP. ATM also supports an inverse-ARP. Priscilla Oppenheimer wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... ARP is an IP term. But AppleTalk has the AppleTalk Address Resolution Protocol (AARP) which behaves just like IP ARP, with a few additional features to support dynamic addressing. But its main function is to find the data-link-layer address when the network-layer address is known, which is just like IP ARP. Novell IPX doesn't need such a feature because the Node ID in the network.node network-layer address IS the data-link-layer address. So if a station knows another station's network-layer address, it knows the station's data-link-layer address too. DECnet doesn't need such a feature either because it changes the data-link-layer address on an interface so that it is based on the network-layer address. I can't remember too much about Banyan. It may have an ARP. What else is there?? Hm. NetBEUI doesn't have a network layer, so it doesn't need ARP. SNA is such a different beast, I doubt it has ARP. We could talk about WANs too I guess. Frame Relay has inverse ARP. HDLC has SLARP. Priscilla At 09:01 PM 10/30/01, Dave Shine wrote: Does anyone know what protocols do or better yet do not support ARP? D.S. __ Do You Yahoo!? Make a great connection at Yahoo! Personals. http://personals.yahoo.com Priscilla Oppenheimer http://www.priscilla.com VARP - Vines Address Resolution Protocl http://www.protocols.com/pbook/banian.htm By Apollo do I assume you are referring to the HP Apollo workstation? It runs a TCP/IP stack and not a proprietary protocol as you seem to imply. Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=24796t=24738 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: OT: problems upgrading ios on cat6 msfc [7:24736]
Did you also update the boot helper image in the bootflash on the MSFC? I seem to recall that when updating the IOS on the MSFC you also need to update the boot helper image. Mike W. Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=24798t=24736 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Setting up TACACs on catalyst switches [7:23944]
I have a text file that I do a 'select-all', 'copy' from and then 'paste' into a new CatOS switch. Here's the AAA lines that I paste, in the order I paste them: #authentication set authentication login tacacs enable console primary set authentication login tacacs enable telnet primary set authentication login tacacs enable http primary set authentication enable tacacs enable console primary set authentication enable tacacs enable telnet primary set authentication enable tacacs enable http primary #accounting set accounting commands enable all stop-only tacacs+ #authorization set authorization exec enable tacacs+ if-authenticated console set authorization exec enable tacacs+ if-authenticated telnet set authorization enable enable tacacs+ if-authenticated console set authorization enable enable tacacs+ if-authenticated telnet set authorization commands enable all tacacs+ if-authenticated console set authorization commands enable all tacacs+ if-authenticated telnet Note: I also issue a set ip http server disable so the HTTP lines above are probably not needed but this group of commands seem to work pretty well. Hope it helps. -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Shane Stockman Sent: Tuesday, October 23, 2001 2:44 PM To: [EMAIL PROTECTED] Subject: Setting up TACACs on catalyst switches [7:23944] I have intstalled a couple of switches (6509,5500,4000,3548,2924)in my network a couple of months ago and would now like to add tacacs to the switches for AAA. Does anyone have any ideas with regards to the set commands and as well not letting me lock myself out of the switch. Thanks in advance _ Get your FREE download of MSN Explorer at http://explorer.msn.com/intl.asp Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=24799t=23944 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Bridging and Access-lists [7:24791]
I think that would work, however, I would then look at layer 2 addresses instead of layer 3 addresses, and controlling a group of people who can access the web all the time, another group who can access it in certain time frames, and a third group that cannot access it - would be a nightmare to control with MAC addresses, instead of simply an array of IP addresses specified by a wildcard. Hmm, I got to dig a little more... Thanks, Ole ~~~ Ole Drews Jensen Systems Network Manager CCNP, MCSE, MCP+I RWR Enterprises, Inc. [EMAIL PROTECTED] ~~~ http://www.RouterChief.com ~~~ NEED A JOB ??? http://www.oledrews.com/job ~~~ -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] Sent: Wednesday, October 31, 2001 10:57 AM To: [EMAIL PROTECTED] Subject: RE: Bridging and Access-lists [7:24791] Ole, My thinking on this ... When your ethernet frame (L2) hits the e1 interface the router will bridge (L2) this to the e0 interface and not route (L3) it. Therefore the IP access-list (L3) will not be used. I did some work a couple of years ago on a dial-on-demand Bridging solution. After a lot of head scratching we learned about extended bridging ACLs, maybe you could use these? I think they are range 1000 to 1100, you will need to check this. What do you think? Steven Dangerfield CCNP, CCSA, CSE -Original Message- From: Ole Drews Jensen [mailto:[EMAIL PROTECTED]] Sent: 31 October 2001 16:08 To: [EMAIL PROTECTED] Subject: Bridging and Access-lists [7:24791] I have an ethernet segment that I would like to put some restrictions on, and after having played around with several solutions, I came to one that I believe is the best. Please do not reply with why don't you use the firewall, or similar suggestions - because I am looking for a way to get this solution to work. I have placed a Cisco 2514 on a segment so I can create access-lists to filter traffic. I want my segment to have the same IP addresses and be on the same network, so I have assigned the 2514 as a bridge where both ethernet interfaces has the same IP address, and are in the same bridge-group. IP routing has been disabled. This all works fine, except that any access-lists I create on any of the two ethernet interfaces does not block anything at all - it's like access-lists are being ignored when the interfaces works in bridging mode. Here's how it looks very simpyfied: internet---router---firewall---2514---switch---users and servers A part of the config: no ip routing ! interface Ethernet0 ip address 10.25.14.1 255.0.0.0 no ip directed-broadcast no ip route-cache no mop enabled bridge-group 1 ! interface Ethernet1 ip address 10.25.14.1 255.0.0.0 ip access-group 100 in no ip directed-broadcast no ip route-cache no mop enabled bridge-group 1 ! bridge 1 protocol dec ! ip classless ! access-list 100 deny ip any any ! The e0 interface is connected to the firewall, the gateway router, and eventually the Internet. The e1 interface is connected to the switch connecting a workstation. From that workstation I am browsing the web, but even with the deny ip any any, I can keep browsing without being blocked. Can someone explain this, and perhaps come up with a solution to fix this problem on this router? Thanks in advance, Ole ~~~ Ole Drews Jensen Systems Network Manager CCNP, MCSE, MCP+I RWR Enterprises, Inc. [EMAIL PROTECTED] ~~~ http://www.RouterChief.com ~~~ NEED A JOB ??? http://www.oledrews.com/job ~~~ Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=24800t=24791 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
CIM VOIP [7:24802]
chaps, has anyone used the Cisco interactive mentor Voice over ip ...and is it any good...i want to get into this but don`t have the resources for a full scale lab... Thnaks in advance steve skinner _ Get your FREE download of MSN Explorer at http://explorer.msn.com/intl.asp Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=24802t=24802 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: OSPF across PIX [7:24608]
The best way to get any routing protocol thru a pix is inside of a gre tunnel. Go to CCO and search for a config for tunneling multicast thru pix. You should come up with smething. - Jay C Creasy Cisco Certified Network Professional + PIX Microsoft Certified Professional Inet Email [EMAIL PROTECTED] AIM ID HaltItAll Work # 713-548-3346 Home # 713-263-1939 -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] On Behalf Of Allen May Sent: Tuesday, October 30, 2001 7:15 PM To: [EMAIL PROTECTED] Subject: Re: OSPF across PIX [7:24608] OK maybe...but wouldn't that be translating an IP address of the neighboring router to something it really isn't botch up the OSPF table on the remote router? Or are you suggesting something different than what I'm thinking? My first impression is that this probably can't be done but I'm always open to finding ways to do the impossible ;) - Original Message - From: Gareth Hinton To: Sent: Tuesday, October 30, 2001 6:35 PM Subject: Re: OSPF across PIX [7:24608] Can you set up a network address translation both ways so that the routers think they're talking to a router on the same subnet? Big guessing going on here (on my part). Gareth pat wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... Thanks for your repply. When I try to specify outside router as neighbor using neighbor command I get OSPF: Neighbor address does not map to an interface. How do I resolve this issue ? What do you mean by If you are doing NAT then a global and nat combination need to represent the internal IP addresses to the outside network...? Can you give can example? I am doing NAT on firewall. The Ip address are as follows Inside router Ethernet 10.10.2.1 Firewall inside 10.10.2.1 Firewall outside 138.12.48.2 Outside Router ethernet 138.12.48.1 Thanks a lot for everybody's response. --- Engelhard M. Labiro wrote: Sorry, replying my own message. The access-list below assumes that you are able to use nat 0 command (no NAT translation will occur for the internal IP addressess to be seen from outside network). If you are doing NAT then a global and nat combination need to represent the internal IP addresses to the outside network, before applying the access-list below. Hope you get the idea. Since OSPF uses IP protocol 89, permit this protocol between the two OSPF routers with access-list applied at outside and inside PIX interfaces, something like this: access-list 101 permit 89 host 1.1.1.1 host 2.2.2.2 access-list 102 permit 89 host 2.2.2.2 host 1.1.1.1 access-group 101 interface inside access-group 102 interface outside At the OSPF routers, put neighbour command, so they can speak each other directly without multicasting the hello packets. Hope you get the idea. - Original Message - From: pat To: Sent: Tuesday, October 30, 2001 1:01 PM Subject: OSPF across PIX [7:24608] Does anybody has any ideas on how to run OSPF across firewall. What ports to be open how to make router esablish nighbour relations across firewall. Any thought on this will be greatly appriciated. Thanks, patterson. __ Do You Yahoo!? Make a great connection at Yahoo! Personals. http://personals.yahoo.com [EMAIL PROTECTED] __ Do You Yahoo!? Make a great connection at Yahoo! Personals. http://personals.yahoo.com _ Do You Yahoo!? Get your free @yahoo.com address at http://mail.yahoo.com Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=24803t=24608 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Dhcp and NAT [7:24804]
Greets all Just looking over IOS 12, it appears Cisco has added dhcp support for their routers now. interface Ethernet2 ip address dhcp My question is whether NAT will work in this case. I'm setting up a simple lab with a Cisco 1605 router to see if I can get it to work, however I wanted to query this group first to see if anyone was able to do it and what you might suggest. Thanks Dyland Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=24804t=24804 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
CID: Explorer Queue Depth [7:24806]
Hi Group, The CID exam guide by Cisco press mention somthing about configuring explorer queue depth in a very generic way. Does any body know the configuration details as related to DLSw+? Thanks -- watch your phone call records on the web at: http://www.freedomstar.com/sh1885969 Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=24806t=24806 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: OT: problems upgrading ios on cat6 msfc [7:24736]
You can but you don't have to. My lab MSFC has: MSFC16#sh ha Cisco Internetwork Operating System Software IOS (tm) MSFC2 Software (C6MSFC2-JSV-M), Version 12.1(8a)E4, EARLY DEPLOYMENT RE LEASE SOFTWARE (fc1) TAC Support: http://www.cisco.com/tac Copyright (c) 1986-2001 by cisco Systems, Inc. Compiled Sat 08-Sep-01 16:14 by hqluong Image text-base: 0x40008980, data-base: 0x418D ROM: System Bootstrap, Version 12.1(4r)E, RELEASE SOFTWARE (fc1) BOOTFLASH: MSFC2 Software (C6MSFC2-BOOT-M), Version 12.1(7a)E1, I've upgrade the IOS image three times and never touched the boot image. Dave Michael Williams wrote: Did you also update the boot helper image in the bootflash on the MSFC? I seem to recall that when updating the IOS on the MSFC you also need to update the boot helper image. Mike W. -- David Madland Sr. Network Engineer CCIE# 2016 Qwest Communications Int. Inc. [EMAIL PROTECTED] 612-664-3367 Emotion should reflect reason not guide it Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=24807t=24736 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Bridging and Access-lists [7:24791]
Is there a good reason that the bridge is set up as protocol dec? I don't know if it would work the way you have it configured using ieee instead. Just a thought. Ed Ole Drews Jensen wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... I think that would work, however, I would then look at layer 2 addresses instead of layer 3 addresses, and controlling a group of people who can access the web all the time, another group who can access it in certain time frames, and a third group that cannot access it - would be a nightmare to control with MAC addresses, instead of simply an array of IP addresses specified by a wildcard. Hmm, I got to dig a little more... Thanks, Ole ~~~ Ole Drews Jensen Systems Network Manager CCNP, MCSE, MCP+I RWR Enterprises, Inc. [EMAIL PROTECTED] ~~~ http://www.RouterChief.com ~~~ NEED A JOB ??? http://www.oledrews.com/job ~~~ -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] Sent: Wednesday, October 31, 2001 10:57 AM To: [EMAIL PROTECTED] Subject: RE: Bridging and Access-lists [7:24791] Ole, My thinking on this ... When your ethernet frame (L2) hits the e1 interface the router will bridge (L2) this to the e0 interface and not route (L3) it. Therefore the IP access-list (L3) will not be used. I did some work a couple of years ago on a dial-on-demand Bridging solution. After a lot of head scratching we learned about extended bridging ACLs, maybe you could use these? I think they are range 1000 to 1100, you will need to check this. What do you think? Steven Dangerfield CCNP, CCSA, CSE -Original Message- From: Ole Drews Jensen [mailto:[EMAIL PROTECTED]] Sent: 31 October 2001 16:08 To: [EMAIL PROTECTED] Subject: Bridging and Access-lists [7:24791] I have an ethernet segment that I would like to put some restrictions on, and after having played around with several solutions, I came to one that I believe is the best. Please do not reply with why don't you use the firewall, or similar suggestions - because I am looking for a way to get this solution to work. I have placed a Cisco 2514 on a segment so I can create access-lists to filter traffic. I want my segment to have the same IP addresses and be on the same network, so I have assigned the 2514 as a bridge where both ethernet interfaces has the same IP address, and are in the same bridge-group. IP routing has been disabled. This all works fine, except that any access-lists I create on any of the two ethernet interfaces does not block anything at all - it's like access-lists are being ignored when the interfaces works in bridging mode. Here's how it looks very simpyfied: internet---router---firewall---2514---switch---users and servers A part of the config: no ip routing ! interface Ethernet0 ip address 10.25.14.1 255.0.0.0 no ip directed-broadcast no ip route-cache no mop enabled bridge-group 1 ! interface Ethernet1 ip address 10.25.14.1 255.0.0.0 ip access-group 100 in no ip directed-broadcast no ip route-cache no mop enabled bridge-group 1 ! bridge 1 protocol dec ! ip classless ! access-list 100 deny ip any any ! The e0 interface is connected to the firewall, the gateway router, and eventually the Internet. The e1 interface is connected to the switch connecting a workstation. From that workstation I am browsing the web, but even with the deny ip any any, I can keep browsing without being blocked. Can someone explain this, and perhaps come up with a solution to fix this problem on this router? Thanks in advance, Ole ~~~ Ole Drews Jensen Systems Network Manager CCNP, MCSE, MCP+I RWR Enterprises, Inc. [EMAIL PROTECTED] ~~~ http://www.RouterChief.com ~~~ NEED A JOB ??? http://www.oledrews.com/job ~~~ Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=24808t=24791 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: CIM VOIP [7:24802]
It4s ok. But remember as its name says BASIC Voice over ip Regards Alberto Martin Sinopoli Microsoft MCP+I, MCSE Cisco CCNA, CCNP Buenos Aires - Argentina steve skinner escribis en el mensaje [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... chaps, has anyone used the Cisco interactive mentor Voice over ip ...and is it any good...i want to get into this but don`t have the resources for a full scale lab... Thnaks in advance steve skinner _ Get your FREE download of MSN Explorer at http://explorer.msn.com/intl.asp Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=24809t=24802 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Audio Learning [7:24810]
Last week someone gave a link to certaudio for CDs covering the Cisco material. I tried the url today they are no longer in business it seems. Does anyone know of a company that does audio CDs on Cisco to listen to during a long commute to work? TIA Mark Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=24810t=24810 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: ARP - What protocols support it. [7:24738]
IP - ARP, AppleTalk - AARP, IPX - no. Dave Shine wrote: Does anyone know what protocols do or better yet do not support ARP? D.S. __ Do You Yahoo!? Make a great connection at Yahoo! Personals. http://personals.yahoo.com Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=24738t=24738 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Cisco Mibs and HP OV ?? [7:24811]
Hi, I want to integrate a cisco environment in HP OV. Now I must be install specific mibs in HP OV. At first how mibs.can I check which mibs I need ? For example, I had some 3548 switches and 65xx switches. When I go to the cisco webside I found under the subdirectories for the switches many different mibs. How can I make sure I download or search for the right mib ? Or shoud I load _all_ the mibs for the cisco components ? Thanks Udo Udo Konstantin / koud , GS KA NEEF-Elektrotechnik GmbH Systemhaus f|r Gebdude- und Kommunikationstechnik Windeckstrasse 8 76135 Karlsruhe Tel: +49 721/8606-215 Mobil: +49 172/7271578 *215 Fax: +49 721/8606-264 E-Mail/Internet: [EMAIL PROTECTED] Website: http://www.neef.de/ Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=24811t=24811 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: IP addressing Subnetting [7:24712]
Currently you can't use /31 networks. However, there is an RFC that proposes changes that would allow their use on point-to-point links only. RFC 3021 Using 31-Bit Prefixes on IPv4 Point-to-Point Links. A. Retana, R. White, V. Fuller, D. McPherson. December 2000. (Format: TXT=19771 bytes) (Status: PROPOSED STANDARD) Just an FYI, Karen Original Message Good.. but you can't have a subnet with 31 bits that would leave 2 hosts and the network address and the broadcast would use them up, so you end up with 0 hosts per subnet. For point-to-point serial links, you'd usually use a /30 (255.255.255.252) which gives you 4 addresses per subnet (1 network, 1 broadcast, and two hosts) Mike W. Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=24812t=24712 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Latest news [7:24813]
Anyone got the latest updates on the new lab format esepically in Sydney or Asia. Are all labs the same or different Thanks Dave _ Get your FREE download of MSN Explorer at http://explorer.msn.com/intl.asp Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=24813t=24813 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
IP Multicast Training materials [7:24814]
Just ran across this and figured that I would pass it on. Cisco IP Multicast Groups External Homepage ftp://ftpeng.cisco.com/ipmulticast.html This is not the actual Cisco Technology page on IP Multicast, it seems to be a page meant for the development teams as an external gateway for IETF working groups, etc... The training material in the subject line is located about 1/3 of the way down. The link is titled Cisco Internal IP Multicast Training Material ftp://ftpeng.cisco.com/ipmulticast/training/index.html Looks to be a LOT of good stuff at this site. Karen Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=24814t=24814 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Bridging and Access-lists [7:24791]
It works as I said, and yes I have wondered why it set it to DEC, but I used the auto setup procedure during startup after an erase star command, and said yes to put both ethernet interfaces in bridging mode. It came up and did the bridge 1 protocol dec by itself. And I have tried to use the IEEE instead without any differences related to my problem. As I see it now - I would have to do one of two things: 1) Change some of my IP addresses so I can place devices on each side of the router on different subnets (seen from the router's view), and then set it up as routing instead of switching. 2) Add all the MAC addresses to the groups they belong, and then use access-lists 700-799 (mac addresses). Both solutions sucks, so I am still looking for an easier 3rd solution. Ole ~~~ Ole Drews Jensen Systems Network Manager CCNP, MCSE, MCP+I RWR Enterprises, Inc. [EMAIL PROTECTED] ~~~ http://www.RouterChief.com ~~~ NEED A JOB ??? http://www.oledrews.com/job ~~~ -Original Message- From: Ed Horley [mailto:[EMAIL PROTECTED]] Sent: Wednesday, October 31, 2001 12:31 PM To: [EMAIL PROTECTED] Subject: Re: Bridging and Access-lists [7:24791] Is there a good reason that the bridge is set up as protocol dec? I don't know if it would work the way you have it configured using ieee instead. Just a thought. Ed Ole Drews Jensen wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... I think that would work, however, I would then look at layer 2 addresses instead of layer 3 addresses, and controlling a group of people who can access the web all the time, another group who can access it in certain time frames, and a third group that cannot access it - would be a nightmare to control with MAC addresses, instead of simply an array of IP addresses specified by a wildcard. Hmm, I got to dig a little more... Thanks, Ole ~~~ Ole Drews Jensen Systems Network Manager CCNP, MCSE, MCP+I RWR Enterprises, Inc. [EMAIL PROTECTED] ~~~ http://www.RouterChief.com ~~~ NEED A JOB ??? http://www.oledrews.com/job ~~~ -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] Sent: Wednesday, October 31, 2001 10:57 AM To: [EMAIL PROTECTED] Subject: RE: Bridging and Access-lists [7:24791] Ole, My thinking on this ... When your ethernet frame (L2) hits the e1 interface the router will bridge (L2) this to the e0 interface and not route (L3) it. Therefore the IP access-list (L3) will not be used. I did some work a couple of years ago on a dial-on-demand Bridging solution. After a lot of head scratching we learned about extended bridging ACLs, maybe you could use these? I think they are range 1000 to 1100, you will need to check this. What do you think? Steven Dangerfield CCNP, CCSA, CSE -Original Message- From: Ole Drews Jensen [mailto:[EMAIL PROTECTED]] Sent: 31 October 2001 16:08 To: [EMAIL PROTECTED] Subject: Bridging and Access-lists [7:24791] I have an ethernet segment that I would like to put some restrictions on, and after having played around with several solutions, I came to one that I believe is the best. Please do not reply with why don't you use the firewall, or similar suggestions - because I am looking for a way to get this solution to work. I have placed a Cisco 2514 on a segment so I can create access-lists to filter traffic. I want my segment to have the same IP addresses and be on the same network, so I have assigned the 2514 as a bridge where both ethernet interfaces has the same IP address, and are in the same bridge-group. IP routing has been disabled. This all works fine, except that any access-lists I create on any of the two ethernet interfaces does not block anything at all - it's like access-lists are being ignored when the interfaces works in bridging mode. Here's how it looks very simpyfied: internet---router---firewall---2514---switch---users and servers A part of the config: no ip routing ! interface Ethernet0 ip address 10.25.14.1 255.0.0.0 no ip directed-broadcast no ip route-cache no mop enabled bridge-group 1 ! interface Ethernet1 ip address 10.25.14.1 255.0.0.0 ip access-group 100 in no ip directed-broadcast no ip route-cache no mop enabled bridge-group 1 ! bridge 1 protocol dec ! ip classless ! access-list 100 deny ip any any ! The e0 interface is connected to the firewall, the gateway router, and eventually the Internet. The e1 interface is connected to the switch connecting a workstation. From that workstation I am browsing the web, but even with the deny ip any any, I can keep browsing without being blocked. Can someone explain this, and perhaps come up with a solution
Re: Cisco Mibs and HP OV ?? [7:24811]
This may help you out... http://www.cisco.com/public/sw-center/netmgmt/cmtk/mibs.shtml It gives you links to listings of which MIBs are supported on a device sorted by the IOS version that they are supported under. HTH, Karen Original Message Hi, I want to integrate a cisco environment in HP OV. Now I must be install specific mibs in HP OV. At first how mibs.can I check which mibs I need ? For example, I had some 3548 switches and 65xx switches. When I go to the cisco webside I found under the subdirectories for the switches many different mibs. How can I make sure I download or search for the right mib ? Or shoud I load _all_ the mibs for the cisco components ? Thanks Udo Udo Konstantin / koud , GS KA NEEF-Elektrotechnik GmbH Systemhaus f|r Gebdude- und Kommunikationstechnik Windeckstrasse 8 76135 Karlsruhe Tel: +49 721/8606-215 Mobil: +49 172/7271578 *215 Fax: +49 721/8606-264 E-Mail/Internet: [EMAIL PROTECTED] Website: http://www.neef.de/ Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=24816t=24811 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Audio Learning [7:24810]
Mark, I don't know about audio materials for certification stuff, but there's a site that'll let you order the audio presentations from Networkers 1999, 2000, and 2001. http://recording.safeshopper.com/ HTH, Karen Original Message Last week someone gave a link to certaudio for CDs covering the Cisco material. I tried the url today they are no longer in business it seems. Does anyone know of a company that does audio CDs on Cisco to listen to during a long commute to work? TIA Mark Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=24817t=24810 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: IP addressing Subnetting [7:24712]
Good.. but you can't have a subnet with 31 bits that would leave 2 hosts and the network address and the broadcast would use them up, so you end up with 0 hosts per subnet. For point-to-point serial links, you'd usually use a /30 (255.255.255.252) which gives you 4 addresses per subnet (1 network, 1 broadcast, and two hosts) Mike W. Mike, your answer has been correct for a long time. However, let me cite a recent RFC with a lead author from Cisco: 3021 Using 31-Bit Prefixes on IPv4 Point-to-Point Links. A. Retana, R. White, V. Fuller, D. McPherson. December 2000. I believe some recent IOS versions, primarily intended for carriers, will support /31 on point-to-point media. Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=24818t=24712 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
CCIE Lab Dates [7:24819]
I was just looking on the Cisco site for Lab dates and it appears that RTP has a sizeable number of dates available. I've noticed that some of them are on Saturday's. Is this correct? I didn't realize Saturday was an option. -- James Haynes Network Architect Cendant IT A+,MCSE,CCNA,CCDA,CCNP,CCDP, CQS-SNA/IPSS Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=24819t=24819 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: CCIE Lab Dates [7:24819]
That is very cool. -- James Haynes Network Architect Cendant IT A+,MCSE,CCNA,CCDA,CCNP,CCDP, CQS-SNA/IPSS Dennis wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... Saturday and Sunday are an option... -- -=Repy to group only... no personal=- James Haynes wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... I was just looking on the Cisco site for Lab dates and it appears that RTP has a sizeable number of dates available. I've noticed that some of them are on Saturday's. Is this correct? I didn't realize Saturday was an option. -- James Haynes Network Architect Cendant IT A+,MCSE,CCNA,CCDA,CCNP,CCDP, CQS-SNA/IPSS Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=24822t=24819 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
GroupStudy Updates [7:24805]
Hey everyone, I have been working with the mail system on GroupStudy.com. I started around 9:00 PM last night and ended up having to revert back to the old configuration this morning. In the process I disabled the newsfeed and turned off web postings. This was to prevent posting while I was working. Around midnight I thought I had a stable configuration - but I was wrong. Due to a strange bug in the bulk-mailer program, it was truncating the list so most mail subscribers did not receive the messages. After reverting back to the old configuration, I manually submitted all of the e-mails that arrived last night. Some of you may receive duplicates. At most it should be 36 messages. Those reading from the newsfeed and website were not affected. Take care, Paul Borghese Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=24805t=24805 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: CCIE Lab Dates [7:24819]
Saturday and Sunday are an option... -- -=Repy to group only... no personal=- James Haynes wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... I was just looking on the Cisco site for Lab dates and it appears that RTP has a sizeable number of dates available. I've noticed that some of them are on Saturday's. Is this correct? I didn't realize Saturday was an option. -- James Haynes Network Architect Cendant IT A+,MCSE,CCNA,CCDA,CCNP,CCDP, CQS-SNA/IPSS Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=24820t=24819 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Access-lists: Time-based and 700's [7:24821]
I am not very lucky with this. It seems like I have to use a 700's access-list to filter bridged interfaces on their mac address, but that throws me into a new problem. As far as I can see, the time-range option does not work on 700's access-lists - so I am back to squarre 1 where I probably have to rearrange my entire networks IP address scheme, so I can change the router where I want to filter from doing bridging between interfaces, to doing routing. If anyone has a better idea, PLEASE let me know. Thanks, Ole ~~~ Ole Drews Jensen Systems Network Manager CCNP, MCSE, MCP+I RWR Enterprises, Inc. [EMAIL PROTECTED] ~~~ http://www.RouterChief.com ~~~ NEED A JOB ??? http://www.oledrews.com/job ~~~ Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=24821t=24821 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Bridging and Access-lists [7:24791]
If you are bridging you can only use a layer 2 access list... Essentially you'll only be able to block traffic based on MAC addressing... I think the layer2 access lists start at 700... -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Ole Drews Jensen Sent: Wednesday, October 31, 2001 8:08 AM To: [EMAIL PROTECTED] Subject: Bridging and Access-lists [7:24791] I have an ethernet segment that I would like to put some restrictions on, and after having played around with several solutions, I came to one that I believe is the best. Please do not reply with why don't you use the firewall, or similar suggestions - because I am looking for a way to get this solution to work. I have placed a Cisco 2514 on a segment so I can create access-lists to filter traffic. I want my segment to have the same IP addresses and be on the same network, so I have assigned the 2514 as a bridge where both ethernet interfaces has the same IP address, and are in the same bridge-group. IP routing has been disabled. This all works fine, except that any access-lists I create on any of the two ethernet interfaces does not block anything at all - it's like access-lists are being ignored when the interfaces works in bridging mode. Here's how it looks very simpyfied: internet---router---firewall---2514---switch---users and servers A part of the config: no ip routing ! interface Ethernet0 ip address 10.25.14.1 255.0.0.0 no ip directed-broadcast no ip route-cache no mop enabled bridge-group 1 ! interface Ethernet1 ip address 10.25.14.1 255.0.0.0 ip access-group 100 in no ip directed-broadcast no ip route-cache no mop enabled bridge-group 1 ! bridge 1 protocol dec ! ip classless ! access-list 100 deny ip any any ! The e0 interface is connected to the firewall, the gateway router, and eventually the Internet. The e1 interface is connected to the switch connecting a workstation. From that workstation I am browsing the web, but even with the deny ip any any, I can keep browsing without being blocked. Can someone explain this, and perhaps come up with a solution to fix this problem on this router? Thanks in advance, Ole ~~~ Ole Drews Jensen Systems Network Manager CCNP, MCSE, MCP+I RWR Enterprises, Inc. [EMAIL PROTECTED] ~~~ http://www.RouterChief.com ~~~ NEED A JOB ??? http://www.oledrews.com/job ~~~ Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=24797t=24791 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: load sharing [7:24823]
This scenario assumes that several subnets are routed across these two links. If a subnet or multiple subnets are only routed across one of the links, this could occur. Jeff. -Original Message- From: Mohammed Saro [mailto:[EMAIL PROTECTED]] Sent: Wednesday, October 31, 2001 2:06 AM To: GroupStudy Subject: load sharing [ Part 1, Text/PLAIN (charset: Unknown windows-1256) 12 lines. ] [ Unable to print this part. ] [ The following text is in the windows-1256 character set. ] [ Your display is set for the US-ASCII character set. ] [ Some characters may be displayed incorrectly. ] We have two links to our provider and this provider makes load sharing per packet but sometimes one of two links is saturated and the other has free bandwidth can any one explain this weird behavior Best Regards, Mohamed Saro Senior Network Engineer GEGA NET Tel: +20 2 4149771/2/3/4 ext.:111 Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=24823t=24823 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Help about Cisco Cat 2820 Switch [7:24801]
Dear All, I have get my first switch from Ebay. But I can't reset password, please give me some advice; I have try the following methord but still failed. 1) Press Mode button power on the switch, it will prompt Enter main console password: 2) If I normal start it, it will prompt - Catalyst 2820 Management Console Copyright (c) Cisco Systems, Inc. 1993-1995 All rights reserved. Ethernet address: 00-C0-1D-80-93-CC - 1 user(s) now active on Management Console. Enter password: I have try the Password Recovery Procedure http://www.cisco.com/warp/public/474/pswdrec_2800.shtml from cisco but have not success. Best Regards Jacky Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=24801t=24801 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: OSPF across PIX [7:24608]
Pat, What your asking for is similar to a previous thread about a month ago regarding passing EIGRP updates through a PIX. EIGRP is similar to OSPF in regards to the formation of neighbor relationships. For EIGRP you would do this: (taken from my previous post) -Tell outside router (172.16.1.3) its neighbor is 172.16.1.50 -Tell inside router (10.1.1.2) its neighbor is 10.1.1.5 -On PIX: static (inside,outside) 172.16.1.50 10.1.1.2 netmask 255.255.255.255 alias (inside) 10.1.1.5 172.16.1.3 It's a little hokey, but it does work. (yes, I tested this in my lab) Obviously, you would substitute your own IP's for those above, but your should get the idea. HOWEVER, I don't think this will work for OSPF. I tried it when I was playing around with the EIGRP config and it did not work. This may be due to certain properties of the OSPF packets IP layer info. Specifically, I've been told that the ttl is set to 1, so trying to pass updates through firewalls won't work. I didn't get a chance to sniff the packets to see exactly why the OSPF wasn't working and EIGRP updates were, but the ttl field issue sounds like a reasonable explanation. If your game, try the above config and see if OSPF will work. HTH, Kent -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of pat Sent: Tuesday, October 30, 2001 2:42 PM To: [EMAIL PROTECTED] Subject: Re: OSPF across PIX [7:24608] Thanks for your repply. When I try to specify outside router as neighbor using neighbor command I get OSPF: Neighbor address does not map to an interface. How do I resolve this issue ? What do you mean by If you are doing NAT then a global and nat combination need to represent the internal IP addresses to the outside network...? Can you give can example? I am doing NAT on firewall. The Ip address are as follows Inside router Ethernet 10.10.2.1 Firewall inside 10.10.2.1 Firewall outside 138.12.48.2 Outside Router ethernet 138.12.48.1 Thanks a lot for everybody's response. --- Engelhard M. Labiro wrote: Sorry, replying my own message. The access-list below assumes that you are able to use nat 0 command (no NAT translation will occur for the internal IP addressess to be seen from outside network). If you are doing NAT then a global and nat combination need to represent the internal IP addresses to the outside network, before applying the access-list below. Hope you get the idea. Since OSPF uses IP protocol 89, permit this protocol between the two OSPF routers with access-list applied at outside and inside PIX interfaces, something like this: access-list 101 permit 89 host 1.1.1.1 host 2.2.2.2 access-list 102 permit 89 host 2.2.2.2 host 1.1.1.1 access-group 101 interface inside access-group 102 interface outside At the OSPF routers, put neighbour command, so they can speak each other directly without multicasting the hello packets. Hope you get the idea. - Original Message - From: pat To: Sent: Tuesday, October 30, 2001 1:01 PM Subject: OSPF across PIX [7:24608] Does anybody has any ideas on how to run OSPF across firewall. What ports to be open how to make router esablish nighbour relations across firewall. Any thought on this will be greatly appriciated. Thanks, patterson. __ Do You Yahoo!? Make a great connection at Yahoo! Personals. http://personals.yahoo.com [EMAIL PROTECTED] __ Do You Yahoo!? Make a great connection at Yahoo! Personals. http://personals.yahoo.com Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=24826t=24608 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Dhcp and NAT [7:24804]
Yes DHCP support is a couple of years old. I do DHCP and NAT on my 804 at home, works great. dave The New Guy wrote: Greets all Just looking over IOS 12, it appears Cisco has added dhcp support for their routers now. interface Ethernet2 ip address dhcp My question is whether NAT will work in this case. I'm setting up a simple lab with a Cisco 1605 router to see if I can get it to work, however I wanted to query this group first to see if anyone was able to do it and what you might suggest. Thanks Dyland -- David Madland Sr. Network Engineer CCIE# 2016 Qwest Communications Int. Inc. [EMAIL PROTECTED] 612-664-3367 Emotion should reflect reason not guide it Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=24824t=24804 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: ROUTING EXAM [7:24530]
[ The following text is in the iso-8859-1 character set. ] [ Your display is set for the US-ASCII character set. ] [ Some characters may be displayed incorrectly. ] No Access lists, Queuing and DDR is on the remote access exam now. Managing IP/IPX traffic and Source routing bridging is on the CCIE written. Regards Jon Gudmundsson -Original Message- From: J. Li [mailto:[EMAIL PROTECTED]] Sent: 29. október 2001 18:09 To: [EMAIL PROTECTED] Subject: ROUTING EXAM [7:24530] I compared my new Cisco Press book for the routing exam with the old book I bought over two years ago. I found some major differences. The new exam guide book does NOT have anything on: Access lists Managing IP/IPX traffic Queuing DDR Source routing bridging ... Are the above topics NOT tested on the new Routing Exam 2.0 anymore? Thanks! = J. Li Ground Floor Opportunity for 2nd Income: http://www.globaldebitcard.net/myglobecard/home/freewebsite.html __ Do You Yahoo!? Make a great connection at Yahoo! Personals. http://personals.yahoo.com Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=24530t=24530 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
OT: Mentor Technologies Info (am I screwed?) [7:24825]
Just wondering if I am the only person caught up in the Mentor Technologies apparant bankruptcy. I have paid for ECP-1 in Falls Chuch on Nov. 12th, called Mentor to find out what was going on once I heard they were going under. Nobody answering the phone, mail boxes full, lines busy, in short, nobody is home. I've made calls to the Consumer Protection Division of Annapolis's Attorney General, they gave me the bankruptcy court's number, but I haven't gotten thru there yet. I'd love to hear it if anyone has any suggestions/advice on how to get my $4,000.00 dollars back. Wasn't smart enough to pay via credit card, sent them a check. Thanks, = Jason Lynch MCP,CCNA,CCNP+Security,CCIE Written __ Do You Yahoo!? Make a great connection at Yahoo! Personals. http://personals.yahoo.com Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=24825t=24825 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: IP addressing Subnetting [7:24712]
Karen, See BugID CSCdk17555 at http://www.cisco.com/kobayashi/bugs/bugs.html Support for the /31 is now available in 12.0S and ST, 12.2T, and 12.1E Trains David C Prall [EMAIL PROTECTED] http://dcp.dcptech.com - Original Message - From: Karen Young To: Sent: Wednesday, October 31, 2001 2:03 PM Subject: Re: IP addressing Subnetting [7:24712] Currently you can't use /31 networks. However, there is an RFC that proposes changes that would allow their use on point-to-point links only. RFC 3021 Using 31-Bit Prefixes on IPv4 Point-to-Point Links. A. Retana, R. White, V. Fuller, D. McPherson. December 2000. (Format: TXT=19771 bytes) (Status: PROPOSED STANDARD) Just an FYI, Karen Original Message Good.. but you can't have a subnet with 31 bits that would leave 2 hosts and the network address and the broadcast would use them up, so you end up with 0 hosts per subnet. For point-to-point serial links, you'd usually use a /30 (255.255.255.252) which gives you 4 addresses per subnet (1 network, 1 broadcast, and two hosts) Mike W. Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=24827t=24712 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Audio Learning [7:24810]
Hey! Maybe we can all chip in and share. After all, I think they $10.00 they're charging is basically just for the media. Have you purchased any of these Karen? Tim -Original Message- From: Karen Young [SMTP:[EMAIL PROTECTED]] Sent: Wednesday, October 31, 2001 2:16 PM To: [EMAIL PROTECTED] Subject: Re: Audio Learning [7:24810] Mark, I don't know about audio materials for certification stuff, but there's a site that'll let you order the audio presentations from Networkers 1999, 2000, and 2001. http://recording.safeshopper.com/ HTH, Karen Original Message Last week someone gave a link to certaudio for CDs covering the Cisco material. I tried the url today they are no longer in business it seems. Does anyone know of a company that does audio CDs on Cisco to listen to during a long commute to work? TIA Mark Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=24831t=24810 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Dhcp and NAT [7:24804]
You can nat to an interface instead of an address... ip nat inside source list 1 int e2 -- -=Repy to group only... no personal=- The New Guy wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... Greets all Just looking over IOS 12, it appears Cisco has added dhcp support for their routers now. interface Ethernet2 ip address dhcp My question is whether NAT will work in this case. I'm setting up a simple lab with a Cisco 1605 router to see if I can get it to work, however I wanted to query this group first to see if anyone was able to do it and what you might suggest. Thanks Dyland Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=24828t=24804 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Dhcp and NAT [7:24804]
You can nat to an interface instead of an address... ip nat inside source list 1 int e2 -- -=Repy to group only... no personal=- The New Guy wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... Greets all Just looking over IOS 12, it appears Cisco has added dhcp support for their routers now. interface Ethernet2 ip address dhcp My question is whether NAT will work in this case. I'm setting up a simple lab with a Cisco 1605 router to see if I can get it to work, however I wanted to query this group first to see if anyone was able to do it and what you might suggest. Thanks Dyland Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=24829t=24804 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
More CCIE Lab Seats starting November 1
[ The following text is in the iso-8859-1 character set. ] [ Your display is set for the US-ASCII character set. ] [ Some characters may be displayed incorrectly. ] FYI - Original Message - From: [EMAIL PROTECTED] Sent: Tuesday, October 30, 2001 9:04 PM Subject: More CCIE Lab Seats starting November 1 Dear CCIE Candidate, We would like to inform you that we will be releasing more lab seats on November 1, 2001 by end of business, PST in the USA. The following sites will show more seats available via our on-line scheduling tool: Brussels, San Jose, RTP, Halifax, Sydney, Beijing, Singapore, Sao Paulo, and Tokyo. This tool is accessible from: www.cisco.com/go/ccie The best way to use our tool, is to login, and then select request lab seat. This way you can view open seats worldwide while maintaining your current lab date. If you decide to change your date, the system will automatically drop your old date and prompt you to schedule the new date. If you have paid, our tool will move your payment to the new date and allow you to change dates when you use request lab seat. Please remember you can't change or cancel a date within 28 days of your lab date. Here is some helpful information to help you login. You need your Prometric or VUE id, written exam score and the written exam date. Please make sure you enter the date as shown: month/day/year, for example: 10/30/2000. This is an informational email only, please do not reply. Regards, Gail Dean Manager, Customer Service _ Do You Yahoo!? Get your free @yahoo.com address at http://mail.yahoo.com
Re: CCIE Lab Dates [7:24819]
Cisco are starting to free up dates from what I hear, more dates more money better share price happy customers. The online schedule looks likes it frozen From: James Haynes Reply-To: James Haynes To: [EMAIL PROTECTED] Subject: CCIE Lab Dates [7:24819] Date: Wed, 31 Oct 2001 14:20:49 -0500 I was just looking on the Cisco site for Lab dates and it appears that RTP has a sizeable number of dates available. I've noticed that some of them are on Saturday's. Is this correct? I didn't realize Saturday was an option. -- James Haynes Network Architect Cendant IT A+,MCSE,CCNA,CCDA,CCNP,CCDP, CQS-SNA/IPSS _ Get your FREE download of MSN Explorer at http://explorer.msn.com/intl.asp Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=24833t=24819 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Mentor Technologies Info (am I screwed?) [7:24825]
Unfortunately you're probably screwed. They definitely won't pay you your money back since they have none. People who payed with credit cards will no doubt be refunded by the credit card company and we'll be the ones to pay for Mentor's handy work in higher credit card fees. -- -=Repy to group only... no personal=- J wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... Just wondering if I am the only person caught up in the Mentor Technologies apparant bankruptcy. I have paid for ECP-1 in Falls Chuch on Nov. 12th, called Mentor to find out what was going on once I heard they were going under. Nobody answering the phone, mail boxes full, lines busy, in short, nobody is home. I've made calls to the Consumer Protection Division of Annapolis's Attorney General, they gave me the bankruptcy court's number, but I haven't gotten thru there yet. I'd love to hear it if anyone has any suggestions/advice on how to get my $4,000.00 dollars back. Wasn't smart enough to pay via credit card, sent them a check. Thanks, = Jason Lynch MCP,CCNA,CCNP+Security,CCIE Written __ Do You Yahoo!? Make a great connection at Yahoo! Personals. http://personals.yahoo.com Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=24834t=24825 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: SRB and 3920 questions, please help [7:24734]
Fred, Thanks for your reply. So in my case I just need to use ring 2 as source ring, choose any number for bridge number and terminator ring, that's it, right. I have another two questions: 1) in the following scenario, on 3920 two TrCRFs are created, in ring number 1 and 2 respectively, they belong to one TrBRF with bridge number 0xF: R1 Ring 1 3920 Ring 2 R2 Let's say on R1, is the following config ok? source-bridge ring-group 100 interface To0 source-bridge 1 1 100 source-bridge spanning multiring all I can not use 0xF for the internal bridge number of R1, right? 2) When should I use SRB for TrCRF on 3920, and when to use SRT? If I use the above config for R1, and configure SRT on 3920 for ring 1, will it work? J - Original Message - From: Fred Ingham To: Jerry Seven Cc: Sent: Monday, October 29, 2001 11:50 PM Subject: Re: SRB and 3920 questions, please help [7:24734] Jerry: The way the Token Ring VLANs are set up there is a parent VLAN and a child VLAN. The TrBRF is the parent, the TrCRF is the child. The TrBRF is the virtual bridge, TrCRF's belong to a given TrBRF. 3920 ports are assigned to a TrCRF. The VLAN IDs are used internally on the 3920 and are independent from the bridge or ring numbers. There is a good tuitorial on the CD or CCO under the 3920 section. When you have two To interfaces, you can have them on the same ring or on different rings. For the same ring: Configure the TrBRF first, this is the parent vlan. Assign a bridge number (default is F) and a vlan id. Next configure a TrCRF, this is the child vlan. Assign a vlan ID, tie it to the TrBRF, and configure the ring number (in hex), and the bridging mode (SRT or SRB). Next assign ports to the TrCRF. If you assign multiple ports to the TrCRF they are on the same ring. With the single TrBRF defined you can tie multiple TrCRF's to it with different ring numbers. These will be bridged. There is no router interface configuration necessary other than ring speed to bridge between the two rings. You can give the To interfaces and the TrBRF IP addresses in the same net and ping between them. For your configuration you are not bridging on the 3920, you are bridging on the router. This is done if you are configuring DLSW, for instance. When you have configured the TrCRf for ring 2 this is the source ring used on the To interface. You can use any bridge number to the router virtual ring 100. For DLSW use the source-bridge spanning command and, of course, configure ring speed. Hope this isn't too confusing, Fred. Jerry Seven wrote: Hi, I have several Token ring switch questions: Router R1 has interface To0 connects to token ring network, and it's the only device on it besides 3920, on 3920 I configured the bridge number 1 and vlan 10 for TrBRF, ring number 2 and vlan 20 for TrCRF. Questions: 1) Why should I configure vlans for TrBRF and TrCRF, what are they for? 2) If I enable SRB on R1, what's the bridge number and ring number should I choose in order to be consistent to 3920 configuration? Should I use different bridge ID and same ring ID as follows: source-bridge ring-group 100 interface To0 source-bridge 2 2 100 Any help is greatly appreciated, J _ Do You Yahoo!? Get your free @yahoo.com address at http://mail.yahoo.com _ Do You Yahoo!? Get your free @yahoo.com address at http://mail.yahoo.com Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=24830t=24734 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Mounting brackets [7:24832]
Anybody know a good place to buy rack mounting brackets for Cisco boxes? -- Brad Nixon Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=24832t=24832 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: CCIE Lab Dates [7:24819]
It's not frozen at all... I just scheduled for Jan 15, 2002! They have released many of the dates that opened as a result of the change to a one day lab... -- -=Repy to group only... no personal=- DAve Diaz wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... Cisco are starting to free up dates from what I hear, more dates more money better share price happy customers. The online schedule looks likes it frozen From: James Haynes Reply-To: James Haynes To: [EMAIL PROTECTED] Subject: CCIE Lab Dates [7:24819] Date: Wed, 31 Oct 2001 14:20:49 -0500 I was just looking on the Cisco site for Lab dates and it appears that RTP has a sizeable number of dates available. I've noticed that some of them are on Saturday's. Is this correct? I didn't realize Saturday was an option. -- James Haynes Network Architect Cendant IT A+,MCSE,CCNA,CCDA,CCNP,CCDP, CQS-SNA/IPSS _ Get your FREE download of MSN Explorer at http://explorer.msn.com/intl.asp Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=24836t=24819 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Mentor Technologies Info (am I screwed?) [7:24825]
I feel your pain... I'm out $4,600 (half of a CCNP pkg.), and I know of another who is out almost 3x that! Someone told me today that the classroom side is definitely out of business but that vLab may stick around. Apparently, the unpaid employees forced a liquidation which scared off a potential buyer for the whole show. Not sure what my options are. Could you email me the phone number you were given? J wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... Just wondering if I am the only person caught up in the Mentor Technologies apparant bankruptcy. I have paid for ECP-1 in Falls Chuch on Nov. 12th, called Mentor to find out what was going on once I heard they were going under. Nobody answering the phone, mail boxes full, lines busy, in short, nobody is home. I've made calls to the Consumer Protection Division of Annapolis's Attorney General, they gave me the bankruptcy court's number, but I haven't gotten thru there yet. I'd love to hear it if anyone has any suggestions/advice on how to get my $4,000.00 dollars back. Wasn't smart enough to pay via credit card, sent them a check. Thanks, = Jason Lynch MCP,CCNA,CCNP+Security,CCIE Written __ Do You Yahoo!? Make a great connection at Yahoo! Personals. http://personals.yahoo.com Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=24837t=24825 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]