Cisco 700 series in Remote Access exam (640-505) [7:26975]
Hello, (This is my first post in this wonderful newsgroup) Will the said content (700 series router) still tested on the real test? I'll take the test on next week. And it still occupied one chapter in the book CCNP remote access exam certification Guide, but not on the exam topics published by Cisco.. Any folks taken the exam recently can share the experiences? Thanks a lot : Regards, c.h.Ip ps. Any people in Hong Kong here? want to find one or more study parthers~ Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=26975t=26975 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Non Cisco Cert [7:26532]
I think a lot of tests challenge your ability to take tests. I would include the CCNP to be honest. Someone I know did one test after 8 weeks study, then needed the cert quickly for Gold certification, so took one a week for three weeks. I don't think the deep knowledge can be there when it's crammed in like that, but the Cisco Press books are enough to pass all the tests. The person involved read the books through once then read the trickier areas again a couple of times. I am not saying that all CCNP's pass this way, or even a majority, but the person involved is still studying CCNP subjects to get the complete knowledge. I think that without a lab there's always a possibility for quick cramming to pass the test. Regards Gaz CCNP Tim Booth wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... If you think the hardware test was tough, just wait for the OS test. Both tests are strange tests, but the OS test is even more so that way. It's pretty damn tough imo. There's a lot of questions on the test that have the most right type of answers. I got certified, but I really don't think that cert means a whole lot, certainly nothing compared to any Cisco cert. You could know a ton about hardware and old OS's and not pass because you're a bad test taker. That cert challenges your abililty to take tests, not know the material. Kind Regards, Tim Booth - Original Message - From: Jennifer Cribbs To: Sent: Saturday, November 17, 2001 14:52 Subject: Non Cisco Cert [7:26532] Well, I finally got the nerve to take the A+HW. I passed, but just barely. 610. It was harder than any cisco test I have had. It was adaptive, 30 questions and 30 minutes. If you don't fiinsh the test in the allotted 30 minutes, you fail. Simple rules that apply lots of pressure. I am dreading the OS portion of this test. Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=26976t=26532 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Road to CCIE from an external perspective [7:26977]
Guys, I'm forwarding you an article from Network World about the joy of becoming a CCIE. Seems that everybody in this list would become GODS and not mere mortals. Maurizio --- A bump in the road to CCIE Network pro fails exam for Cisco's highest certification but is determined to pass next time. By Jeff Shapiro Network World, 11/19/01 If you've seen my previous stories, you know that my goal was to go from Cisco newbie to Cisco Certified Internetwork Expert in 24 months. I can now report with confidence that achieving this lofty goal is almost impossible for us mere mortals. The first part of the journey was straightforward, and I made it to Cisco Certified Network Associate (CCNA) and then Certified Cisco Network Professional (CCNP) right on time. The next step was to pass the CCIE Qualification Exam, the gateway to the final Lab Exam. I knew that preparing for this would be a huge undertaking, especially in my compressed time frame. I took the recommended Cisco ATM and Cisco voice-over-IP classes at Global Knowledge, where they added a lot of valuable information beyond the Cisco syllabus. I studied hard, reviewed all the materials I had gathered, and used Boson Software's practice tests. Feeling ready by early October, I went online to sign up for the exam. The first shock was the $300 fee, three times the cost of the other exams. On Nov. 1, Cisco raised the price for the CCNA and CCNP exams to $125 (except for the CCNP Foundations exam, which costs $250). But everything is relative, and $300 is a bargain when you compare it with the $1,250 cost of the Lab Exam. Remember too that most people don't pass on the first attempt, so you're looking at a major chunk of cash. Taking the test was a nightmare. I can't share specific details because of the confidentiality agreement I signed, but anyone taking the CCIE qualification exam should absolutely spend time on Cisco's Web site studying the exam format, topics covered and sample test questions. You get two hours to complete the 100-question exam. There's one huge change from lower-level exams, in which the questions have a single answer or a known number of correct answers, such as pick the three best answers. This exam simply states More than one answer so you should really know your stuff. I did well on the fundamentals, but got nailed on too many switch and router commands that I had never seen before. To get something out of the humiliating experience, I memorized two of the questions I had no clue about and looked them up when I got home. That's when I discovered the reason I did so poorly, and the root of a serious problem with achieving my goals. One of the questions I remembered had two obviously wrong answers and two commands I didn't know. I looked them up and found one wasn't a real command, while the other was the correct answer. However, that command had never appeared when I practiced with my Cisco 2501 router. After a little research the problem became clear. Cisco's IOS operating system only displays commands that are relevant to your configuration. For example, if you don't have Open Shortest Path First enabled, most of the OSPF commands disappear. You can't practice with them because you have no idea that they exist. This is also true for interfaces that aren't present. You'll never see token-ring commands on an Ethernet router until you add a token-ring interface to it. The only way you're going to know everything needed to pass the CCIE Qualification Exam is to spend months going through every conceivable configuration and exploring every possible command. Cisco router documentation contains command trees listing every published command and variation. To properly prepare, I should have memorized every command on every device covered on the exam. I think I knew about 80% of them, but of course the rogue 20% were prominently featured on the test. Bottom line: I failed. Badly. I'm going to try again, but right now I've proved that what I set out to do a year and a half ago isn't possible for an ordinary person in this industry. If you can study full-time and have a photographic memory, you can do it. If you're like the rest of us, it's probably going to take from three to four years to achieve CCIE certification. I'm going to get there by being patient, determined and structured. And I will tackle that monster again. The next logical time to do it is at the Networkers Conference June 24-28, 2002 in San Diego, where anyone who signs up for a time slot early enough can take any Cisco exam for free. If you're not early enough for the freebie, there are still a limited number of spots for half-price exams. It also helps that I used to live in San Diego, can stay with family and won't be distracted by the environment. My pace going forward will be a lot slower, so it's likely that I won't have more news until July 2002. If I don't see you then, thanks for
IOS PROBLEM!! [7:26978]
Hi All, just a quick question, I have a small cisco 800 series at home, with 4 port hub and a BRI, I've just started to go through the config exercises in the books and one question has cropped up from last night. When I try and enable IGRP, 'router(config)#router igrp 20' it tells me this is an unknown protocol, what have I done, or what is missing? RIP config works, no problem. I know your going to ask what ver of IOS, as I'm not in front of the console but I know its above 12. Please advise, -suleman Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=26978t=26978 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Bandwidth Calculation [7:26871]
It will also depend on how test was carried out. To determine the real transfer rate you must run multiple sessions with different destinations. Many FTP site may limit per session traffic. -Makarand At 09:31 PM 11/20/01 -0500, you wrote: I agree with Scott, however, you have to examine the source of the information (look at what is telling you 75KB/sec). If you are downloading a file or with an FTP program in Windows, etc, usually they will report the data that is transferred, meaning the amount of the actual file being transferred. However, this does not take into account any protocol overhead that would contribute to the actual amount of bandwidth being used. Whereas if you look at thruput on a router interface, that should show an accurate account of how many bits/sec thruput you're getting including protocol overhead. For example, as I rule I thumb I use 10 to convert from KB to Kbps in bandwidth terms because of the extra overhead. So if, in Windows, I'm getting a download at 75KB/sec, that would be ~750Kbps, roughly 1/2 a T1. It depends on what you're wanting to know. If you're downloading at 150Kbps, some people might say, Well, that's only 150*8 = 1200Kbps so you're not getting the full T1 you're paying for. But in reality, with overhead, you're actually getting close to the 1.54Mbps you're paying for. My 2 cents. Mike W. Scott Nawalaniec wrote: KB and kb are different. Usually network links are measured in kilo bits per second. KB is Kilo Bytes per second. To convert Bytes to Bits you need to times Bytes by 8 bits. So, 75KB times 8 = 600kilobits / sec. To convert kilobits to megabits you need to divide by 1024. So, 600kilobits / 1024 = .58megbits / sec If you have any questions, or I am incorrect.please let me know Scott Scott Nawalaniec SELCO Credit Union Telecomm Network Administrator CCNP, CCDP, CCNA, CCDA, CNA, MCP, Network+ Phone: (541) 686-5379 Pager: (541) 341-0583 Fax: (541) 686-5318 -Original Message- From: Ashok Braganza [mailto:[EMAIL PROTECTED]] Sent: Tuesday, November 20, 2001 8:57 AM To: [EMAIL PROTECTED] Subject: Bandwidth Calculation [7:26871] Can anyone show me exactly how to calculate ISP bandwidth? When i download it gives me approximatly 75.00 KB/Sec What will be my total bandwidth? Thanks Ashok C Braganza Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=26979t=26871 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Cisco 700 series in Remote Access exam (640-505) [7:26975]
There was one question I think. Can't remember what it was though. -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] Sent: Wednesday, November 21, 2001 12:29 AM To: [EMAIL PROTECTED] Subject: Cisco 700 series in Remote Access exam (640-505) [7:26975] Hello, (This is my first post in this wonderful newsgroup) Will the said content (700 series router) still tested on the real test? I'll take the test on next week. And it still occupied one chapter in the book CCNP remote access exam certification Guide, but not on the exam topics published by Cisco.. Any folks taken the exam recently can share the experiences? Thanks a lot : Regards, c.h.Ip ps. Any people in Hong Kong here? want to find one or more study parthers~ Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=26980t=26975 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: cs500 password recovery [7:26824]
Cheers Mike you're a star ! played around with holding the button down for various time intervals and about 5 seconds after powerup did the trick - God knows !! All's well that ends well. Cheers Mark -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] Sent: 20 November 2001 15:55 To: [EMAIL PROTECTED] Subject: RE: cs500 password recovery [7:26824] The procedure does work but not exactly as you might think. The push button on the front doesnt reset the config( or not on mine) but does bypass the config on startup. You can edit the startup, change the password, etc then save it and reboot. I had to do this when I mistyped the file name for a remote boot file off a TFTP server.. oops.. IF you have tried this and it doesnt reset, take the cover off and spray some contact cleaner into the pushswitch. This switch is rarely used and it will get all kinds of crud in it ranging from smoke deposits to corrosion. Sometimes pushing the switch from the CCA instead of the button works. If you still have issues with it, drop me a line at webmaster at packetattack.com MikeS Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=26982t=26824 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Need suggestion about www.ccxxproductions.com [7:26964]
There great I really like them. worth the price too! I used them and passed on two differnt tests. Aaron did wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... Hi all, Please give me any suggestion about www.ccxxproductions.com. I am interested with the product offered by the website. So I need to know before I buy any product for it. TIA Dandi Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=26981t=26964 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Need suggestion about www.ccxxproductions.com [7:26964]
I have found them to be quite useful during study time for achieving the CCDA and CCDP. At 12:04 AM 11/21/2001 -0500, did wrote: Hi all, Please give me any suggestion about www.ccxxproductions.com. I am interested with the product offered by the website. So I need to know before I buy any product for it. TIA Dandi Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=26973t=26964 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Need suggestion about www.ccxxproductions.com [7:26964]
I have the CCNP package and the questions are pretty good. The price is right :) You can buy all 4 for less then some other test banks are getting for 1 bank of questions. MikeS www.packetattack.com Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=26968t=26964 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: I wonder which topics is talked about in Routing T [7:26875]
As I have this open at the time, here is index of chapters. Part 1 - Exterior Gateway Protocols. 1. Exterior Gateway Protocol - Origins, operation Configuraing Shortcomings Troubleshooting. 50 pages 2. Introduction to BGP - CIDR, Who needs BGP, BGP basics, IBGP IGP synchronization, Managing Large Scale BGP peering, BGP message formats. 100 pages 3. Configuring Troubleshooting BGP - Basic BGP configuration , Large Scale BGP, Routing Polcies, 170 pages Part II - Advancd IP Routing. 4. Network Address Translation - Operation, Issues, Configuring troubleshooting thereof 80 pages 5. IP Multicast traffic - An Introduction - Requirements, issues Operation of DVMRP, MOSFP, CBT, PIM, PIM-DM, PIM-SM 140 Pages 6. Configuring troubleshooting IP multicasting 60 pages 7. l;areg Scale IP Multicasting - 50 pages 8 IP version 6 - Desighn Current State, Formats transition Ipv4 to IPv6. 90 pages 9. Router Management - Policies procedures, SNMP, RMON, Syslog, NTP, Accounting, Configuration, Fault, Performance Security Management, HSRP. 90 opages Part III - Appendicies Appendix A - show ip bgp neighbors display - 10 pages Appendix B - A regular expression tutuorial Appendix C - Reserved Multicat Address Stuff Appendix D - Answers to review questions Appendix E - Answers to Configuration exercises Appendix F - Answers to Troubleshooting exercises Which country are you in ? Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=26983t=26875 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: IOS PROBLEM!! [7:26978]
Do a 'show version' command and post or email the results suleman ibrahim aboo wrote: Hi All, just a quick question, I have a small cisco 800 series at home, with 4 port hub and a BRI, I've just started to go through the config exercises in the books and one question has cropped up from last night. When I try and enable IGRP, 'router(config)#router igrp 20' it tells me this is an unknown protocol, what have I done, or what is missing? RIP config works, no problem. I know your going to ask what ver of IOS, as I'm not in front of the console but I know its above 12. Please advise, -suleman Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=26984t=26978 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Connecting Cisco 4000 with Bay ARN [7:26971]
Cat 5 Nuurul Basar Mohd Baki wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... Hai, I am doing a lab with 1 Cisco 4000 that will be connected to 3 Bay ARN. Is there any one who can tell me what type off cable that I need to get in order to make the connection works. Thanks Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=26985t=26971 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: IOS PROBLEM!! [7:26978]
Suleman your IOS probably doesn't support Eigrp, go to the Cisco IOS feature navigator and do a search on EIGRP and you'll get a list of the IOS that support EIGRP, if your IOS version is not in there then you'll have to download a new IOS Cheers Pat suleman ibrahim aboo wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... Hi All, just a quick question, I have a small cisco 800 series at home, with 4 port hub and a BRI, I've just started to go through the config exercises in the books and one question has cropped up from last night. When I try and enable IGRP, 'router(config)#router igrp 20' it tells me this is an unknown protocol, what have I done, or what is missing? RIP config works, no problem. I know your going to ask what ver of IOS, as I'm not in front of the console but I know its above 12. Please advise, -suleman Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=26986t=26978 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
OFF TOPIC SHIPPING LAB KIT FROM U.S. TO U.K. [7:26987]
Folks, I was wondering if any one in the U.K. has bought any cisco kit for Lab purposes from the states and had it shipped down here? I want to find out what happens at this end with customs. Thanx in advance Michael Ibidunni Senior Systems Engineer Business Data Services City M25 Team NTL: Tel:0207 562 5800 Mobile: 07866 625922 Email: [EMAIL PROTECTED] The contents of this email and any attachments are sent for the personal attention of the addressee(s) only and may be confidential. If you are not the intended addressee, any use, disclosure or copying of this email and any attachments is unauthorised - please notify the sender by return and delete the message. Any representations or commitments expressed in this email are subject to contract. ntl Group Limited Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=26987t=26987 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: IOS PROBLEM!! [7:26978]
If you have an CCO account, using the IOS Feature Navigator could easily search base on Feature or IOS version which router platform support which feature. Searching with IGRP keyword, the result is 1000 series is the lowest Cisco router that support IGRP. http://www.cisco.com/cgi-bin/Support/FeatureNav/FN1.pl?HMajorRelease=HFeatS elected=18HReleaseNumber=AllHReleaseId=-1HPlatformFamilyName=NSHPlatform FamilyId=0HFeatureSetName=NSHFeatureSetId=0HRN_Given=1HPF_Given=0HFS_Gi ven=0HReSelect=FalseHVA_Lnk=FalseHDDMRelDet=-1HRN_But=HDDMPlatFamDet=3 HPF_But=UpdateHDDMFeatSetDet=0HFS_But= watch for word wrap. HTH Hi All, just a quick question, I have a small cisco 800 series at home, with 4 port hub and a BRI, I've just started to go through the config exercises in the books and one question has cropped up from last night. When I try and enable IGRP, 'router(config)#router igrp 20' it tells me this is an unknown protocol, what have I done, or what is missing? RIP config works, no problem. I know your going to ask what ver of IOS, as I'm not in front of the console but I know its above 12. Please advise, -suleman Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=26988t=26978 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: OFF TOPIC SHIPPING LAB KIT FROM U.S. TO U.K. [7:26987]
Micheal I've not exactly had the same experience but I've had equipment shipped before from the US where EU duty had to be paid before customs would release it, the goods were purchased for the company's own use. I had this in Holland and Germany and customs won't release it until they get the funds in their bank or a cheque in hand, hope this helps cheers Pat Michael Ibidunni wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... Folks, I was wondering if any one in the U.K. has bought any cisco kit for Lab purposes from the states and had it shipped down here? I want to find out what happens at this end with customs. Thanx in advance Michael Ibidunni Senior Systems Engineer Business Data Services City M25 Team NTL: Tel:0207 562 5800 Mobile: 07866 625922 Email: [EMAIL PROTECTED] The contents of this email and any attachments are sent for the personal attention of the addressee(s) only and may be confidential. If you are not the intended addressee, any use, disclosure or copying of this email and any attachments is unauthorised - please notify the sender by return and delete the message. Any representations or commitments expressed in this email are subject to contract. ntl Group Limited Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=26990t=26987 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: What a Ride......Finally CCNP [7:26604]
I'am not 100% but I think you can't take two cisco test on one day? IF I wrong let me know but I'am pretty sure though Aaron Theodore stout wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... Personally, if I were you, I would get Top-Down Network Design and Designing Routing and Switching Architectures and Designing Addressing Architectures before you set foot in the testing lab. Those two books are REALLY good and I really don't see the value of the CCDA and CID without knowing those two books first solidly. After that, just pass both tests on the same day. I plan on doing this but I am on Chapter 12 of Berkowitz's DRSA book and a punk stole my Top-Down Network Design book so I am waiting for it to come again from Amazon. Cisco gets more of my money.but it is worth it :-) Theo Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=26991t=26604 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re:ZONE Tests vs Boson Tests [7:26969]
Just my inputs to all the CCIE written aspirants with respect to these 2 tests - I have both and heres my view of them Zone : A direct attack on your BASICS of the subject - so that means if yu can Memorise all the pkt sizes and LSA types etc - yu DONT stand a chance with these tests cause they really test your KNOWLEDGE of the subject area - thats why I enjoyed doing them cause they really rocked you on your fundamentals !! - which is what i really wanted - so you can imagine that out fo the 12 tests that I itook I must have failed in 8 of them before i started nearing a passable mark ; which sent my heart racing and my confidence shaking - but thats what they are out there for and they must rank as one of the BEST tools out there for the CCIE prep. I think that's a fair assessment. The Zone tests are really intended as CCIE preparation, not just preparation for the written. Oh, with a consistently passing score, you should be fine on the written, but I try to encourage having questions that will give insight into the lab test as well. Bruce Caslow has always posed questions about assessing the lab problem and getting the sense of the solution. While he is not involved with CertZone, his strategy is wise and enters into my design of questions and tutorials. I do highly recommend his books. BOSON Very good from an Exam-Prep point of view - wide in coverage but not too 'twistedin nature to shake you on your fundamnetals. So do it I guess closer to the exams What I liked about the Boson tests were that they always gave yu a link to the cisco site for the subject matter they were testing you on - so that sometimes gives yu a different view of the technology which helped me a lot at times - a different view points - so review their answers on every question its a great guide ! Interesting point. That's a very good thing to do for learning...we haven't done it recently because Cisco lawyers tend not to like direct links. I'd be happy to do it if Cisco didn't object. So if yu are purely exam bound then its Boson for you but if yu want to really get rock hard on yur fundamentals - then its the Zone's papers !1 Good luck !! Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=26993t=26969 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: ACL's on a VLAN [7:26858]
No, you cannot block Fast Ethernet ports. I've tried this and it doesn't work. Look at the link I posted in the origianl message. If it were that easy I would've done it. Syed Raza wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... I agree with mike W. You can also block fastethernet ports to talk to each other. Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=26992t=26858 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: OFF TOPIC SHIPPING LAB KIT FROM U.S. TO U.K. [7:26987]
I bought a 3620 from the states. The seller declared it as worth #1200, I got a nice #250 odd VAT bill. I have bought lots of other stuff, and not had to pay VAT, but nothing that expensive. There must be a value threshold. Best to call the UK Customs I think, or be prepared to pay VAT on top. Cheers, Symon --- Folks, I was wondering if any one in the U.K. has bought any cisco kit for Lab purposes from the states and had it shipped down here? I want to find out what happens at this end with customs. Thanx in advance Michael Ibidunni Senior Systems Engineer Business Data Services City M25 Team NTL: Tel:0207 562 5800 Mobile: 07866 625922 Email: [EMAIL PROTECTED] The contents of this email and any attachments are sent for the personal attention of the addressee(s) only and may be confidential. If you are not the intended addressee, any use, disclosure or copying of this email and any attachments is unauthorised - please notify the sender by return and delete the message. Any representations or commitments expressed in this email are subject to contract. ntl Group Limited [EMAIL PROTECTED] Cheers, Symon Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=26994t=26987 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: token ring to eth [7:26828]
Gentleman MAGDE has a switch capable of handling this type conversion. -Original Message- From: Mark Odette II [mailto:[EMAIL PROTECTED]] Sent: Tuesday, November 20, 2001 5:53 PM To: [EMAIL PROTECTED] Subject: RE: token ring to eth [7:26828] Right! Which is what I was saying in my last post... The original poster would either have to plug the TR interface on the Router into a TR interface on a Switch that also has Ethernet Capabilities, and configure SRB, SRT, etc., or connect the TR Router to another TR/Ethernet router and let that router do the translation/media conversion. Mark Odette II -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Michael Williams Sent: Tuesday, November 20, 2001 4:07 PM To: [EMAIL PROTECTED] Subject: Re: token ring to eth [7:26828] Darren Crawford wrote: Good point didn't even think about that. Same argument still applies. It seems that he's got an ethernet network/connection that he wants to hook to the TR interface on the router. Either way, a simple connector/adapter isn't going to work, as they are totally difference methods of media access. Mike W. What exactly are you trying to accomplish here? The 2502 only has one token ring and two serial interfaces. If you had a 2513, the router itself would be your 'media converter' between TR and Ethernet segments. To my knowledge, there is no such animal to change your token ring interface into an ethernet interface. Darren Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=26995t=26828 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: token ring to eth [7:26828]
The MADGE switch will allow it to take place on the LAN side so you don't have to worry about using your router to filter the traffic. -Original Message- From: Mark Odette II [mailto:[EMAIL PROTECTED]] Sent: Tuesday, November 20, 2001 5:53 PM To: [EMAIL PROTECTED] Subject: RE: token ring to eth [7:26828] Right! Which is what I was saying in my last post... The original poster would either have to plug the TR interface on the Router into a TR interface on a Switch that also has Ethernet Capabilities, and configure SRB, SRT, etc., or connect the TR Router to another TR/Ethernet router and let that router do the translation/media conversion. Mark Odette II -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Michael Williams Sent: Tuesday, November 20, 2001 4:07 PM To: [EMAIL PROTECTED] Subject: Re: token ring to eth [7:26828] Darren Crawford wrote: Good point didn't even think about that. Same argument still applies. It seems that he's got an ethernet network/connection that he wants to hook to the TR interface on the router. Either way, a simple connector/adapter isn't going to work, as they are totally difference methods of media access. Mike W. What exactly are you trying to accomplish here? The 2502 only has one token ring and two serial interfaces. If you had a 2513, the router itself would be your 'media converter' between TR and Ethernet segments. To my knowledge, there is no such animal to change your token ring interface into an ethernet interface. Darren Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=26996t=26828 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: cs500 password recovery [7:26824]
Excellent news!!! have fun with the new toy MikeS Mark Shickell wrote: Cheers Mike you're a star ! played around with holding the button down for various time intervals and about 5 seconds after powerup did the trick - God knows !! All's well that ends well. Cheers Mark -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] Sent: 20 November 2001 15:55 To: [EMAIL PROTECTED] Subject: RE: cs500 password recovery [7:26824] The procedure does work but not exactly as you might think. The push button on the front doesnt reset the config( or not on mine) but does bypass the config on startup. You can edit the startup, change the password, etc then save it and reboot. I had to do this when I mistyped the file name for a remote boot file off a TFTP server.. oops.. IF you have tried this and it doesnt reset, take the cover off and spray some contact cleaner into the pushswitch. This switch is rarely used and it will get all kinds of crud in it ranging from smoke deposits to corrosion. Sometimes pushing the switch from the CCA instead of the button works. If you still have issues with it, drop me a line at webmaster at packetattack.com MikeS Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=26998t=26824 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: OFF TOPIC SHIPPING LAB KIT FROM U.S. TO U.K. [7:26987]
It very much depends on the how C E are feeling that day, when you parcel arrives in the UK. If they check and find you owe VAT then you name address details are logged and you get every time a parcel arrives. If they don't check then you might get away with it. The only exception is if you are transferring goods within the company that owns the goods from one country to another in which case VAT is not chargeable. Basically be prepared to pay 17.5% extra. Michael Ibidunni wrote: Folks, I was wondering if any one in the U.K. has bought any cisco kit for Lab purposes from the states and had it shipped down here? I want to find out what happens at this end with customs. Thanx in advance Michael Ibidunni Senior Systems Engineer Business Data Services City M25 Team NTL: Tel:0207 562 5800 Mobile: 07866 625922 Email: [EMAIL PROTECTED] The contents of this email and any attachments are sent for the personal attention of the addressee(s) only and may be confidential. If you are not the intended addressee, any use, disclosure or copying of this email and any attachments is unauthorised - please notify the sender by return and delete the message. Any representations or commitments expressed in this email are subject to contract. ntl Group Limited Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=26999t=26987 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: OFF TOPIC SHIPPING LAB KIT FROM U.S. TO U.K. [7:26987]
Its not threshold value, its luck of the draw, having worked in and with people in that rae, its very much of a case of how heavby is the parcel, is the recipient known to us and that kind of thing. The only rule they have is omnce we find you we keep looking for you as a soft target. Symon Thurlow wrote: I bought a 3620 from the states. The seller declared it as worth #1200, I got a nice #250 odd VAT bill. I have bought lots of other stuff, and not had to pay VAT, but nothing that expensive. There must be a value threshold. Best to call the UK Customs I think, or be prepared to pay VAT on top. Cheers, Symon --- Folks, I was wondering if any one in the U.K. has bought any cisco kit for Lab purposes from the states and had it shipped down here? I want to find out what happens at this end with customs. Thanx in advance Michael Ibidunni Senior Systems Engineer Business Data Services City M25 Team NTL: Tel:0207 562 5800 Mobile: 07866 625922 Email: [EMAIL PROTECTED] The contents of this email and any attachments are sent for the personal attention of the addressee(s) only and may be confidential. If you are not the intended addressee, any use, disclosure or copying of this email and any attachments is unauthorised - please notify the sender by return and delete the message. Any representations or commitments expressed in this email are subject to contract. ntl Group Limited [EMAIL PROTECTED] Cheers, Symon Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=27000t=26987 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: OFF TOPIC SHIPPING LAB KIT FROM U.S. TO U.K. [7:26987]
Hmmm, I may be confusing duty with VAT, it was a while ago... at least 2 months :) Symon --- I bought a 3620 from the states. The seller declared it as worth #1200, I got a nice #250 odd VAT bill. I have bought lots of other stuff, and not had to pay VAT, but nothing that expensive. There must be a value threshold. Best to call the UK Customs I think, or be prepared to pay VAT on top. Cheers, Symon --- Folks, I was wondering if any one in the U.K. has bought any cisco kit for Lab purposes from the states and had it shipped down here? I want to find out what happens at this end with customs. Thanx in advance Michael Ibidunni Senior Systems Engineer Business Data Services City M25 Team NTL: Tel:0207 562 5800 Mobile: 07866 625922 Email: [EMAIL PROTECTED] The contents of this email and any attachments are sent for the personal attention of the addressee(s) only and may be confidential. If you are not the intended addressee, any use, disclosure or copying of this email and any attachments is unauthorised - please notify the sender by return and delete the message. Any representations or commitments expressed in this email are subject to contract. ntl Group Limited [EMAIL PROTECTED] Cheers, Symon [EMAIL PROTECTED] Cheers, Symon Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=27001t=26987 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: PIX 501 [7:27002]
Has anyone used this PIX yet ? There were some discussions about this topic 2 weeks(?) ago but none of the participants to the discussion has had any actual hand-on experience with the PIX 501 at that time. I got a quote from our supplier for a new PIX DES bundle with 10 user licence for less than $500.00. Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=27002t=27002 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: token ring to eth [7:26828]
So can a Cat switch with a token-ring module. But somehow I don't think that is what the poster wanted to know. NP-BASS LEON wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... The MADGE switch will allow it to take place on the LAN side so you don't have to worry about using your router to filter the traffic. -Original Message- From: Mark Odette II [mailto:[EMAIL PROTECTED]] Sent: Tuesday, November 20, 2001 5:53 PM To: [EMAIL PROTECTED] Subject: RE: token ring to eth [7:26828] Right! Which is what I was saying in my last post... The original poster would either have to plug the TR interface on the Router into a TR interface on a Switch that also has Ethernet Capabilities, and configure SRB, SRT, etc., or connect the TR Router to another TR/Ethernet router and let that router do the translation/media conversion. Mark Odette II -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Michael Williams Sent: Tuesday, November 20, 2001 4:07 PM To: [EMAIL PROTECTED] Subject: Re: token ring to eth [7:26828] Darren Crawford wrote: Good point didn't even think about that. Same argument still applies. It seems that he's got an ethernet network/connection that he wants to hook to the TR interface on the router. Either way, a simple connector/adapter isn't going to work, as they are totally difference methods of media access. Mike W. What exactly are you trying to accomplish here? The 2502 only has one token ring and two serial interfaces. If you had a 2513, the router itself would be your 'media converter' between TR and Ethernet segments. To my knowledge, there is no such animal to change your token ring interface into an ethernet interface. Darren Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=27003t=26828 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
dynamic VLAN [7:27006]
Hi All, After we migrate all our legacy 3Com Switches to Cisco switches, we found out that our current core switch Cat4006 does not support dynamic VLAN(according to vendors) but I check on the cisco website and I saw dynamic VLAN issued commands under Cat 4006. I also can not find these command sets under Cat4006 prompt. Using Static VLAN(per port VLAN) is very difficult to deploy in our environment.Is there any workaround to support dynamic VLAN features? Pls provide me any suggestion. I'm really appreciate your kind suggestion. Regards, Moe. _ Get your FREE download of MSN Explorer at http://explorer.msn.com/intl.asp Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=27006t=27006 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Class C IP range! [7:26814]
Howard, For the sake of IP address conservation, I would like to believe what you say. Unfortunately I happen to know several small companies that were able to secure entire Class C's with nary a protest from their ISP's, and yes they are all globally routed. The most addresses any one of those companies is using within that class range is 10 of those addresses - waste galore. Apparently many ISP's aren't as vigilant as they should be. Howard C. Berkowitz wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... where can i get a class C ip address block ? I check everywhere everyone is saying they only provide a block of /19. Anyone can help ? Thanks Shella What do you want to do with it? In the real world, it can be very hard to get a provider-independent /24, and even harder to get it globally routed. Your best solution may be to design your environment to be renumbering-friendly, and get a /24 from your upstream provider. In general, you will have to demonstrate 50% immediate use of a /20 to get your own allocation. Incidentally, don't think Class C in getting assignments, think /24 (if that's what you actually need). Class-based allocation is long obsolete in the public network, regardless of what Cisco teaches in basic courses. Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=27007t=26814 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Cisco 700 series in Remote Access exam (640-50 [7:26975]
I just completed the fundamental CCNP test and the CIT test. The fundamental test was broken down into three parts(remote access, Switching, and Routing). The part for remote access had 3 questions on it for the 700 router. From what I can remember I needed two know the follow. The different types of model specs. How to configure routes Default profiles I hope this helps. PG Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=27005t=26975 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Cisco PIX 520 [7:26898]
Did you try searching on the Cisco web site? There are many examples of various PIX VPN scenarios. A search on PIX VPN revealed lots of hits, one of which was: http://www.cisco.com/warp/public/471/top_issues/vpn/pixvpn_index.shtml If none of the info on this link helps try doing your own search and you'll probably find what your looking for. -Kent -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Inamul Sent: Tuesday, November 20, 2001 11:18 AM To: [EMAIL PROTECTED] Subject: Cisco PIX 520 [7:26898] Does anyone have step by step link to setup VPN on PIX 520 running code 5.2 ? thanks Inamul Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=27009t=26898 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Solaris mailing list [7:26966]
Omer, Try the Sun Managers mailing list. It's not intel specific but it's a good resource for all things Sun/Sparc related. http://www.sunmanagers.org/ HTH, Kent -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Omer Ehsan Dar Sent: Tuesday, November 20, 2001 8:40 PM To: [EMAIL PROTECTED] Subject: OT: Solaris mailing list [7:26966] Hi all, Sorry for the off topic question does anybody know about a mailing like this one for solaris specifically on intel platforms. I would be grateful for the input. bye Omer Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=27008t=26966 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: PIX 501 [7:27002]
My take on the PIX501 is that it is similar to Cisco router 2501 in that the hardware is FIXED. It only has two interfaces. If you want to add another segment to your network (i.e. DMZ) then you have no choice but to upgrade to either a 515 or higher. Other than that, the PIX IOS code is the same through out the PIX Series (with the exception that for the 501 and 506 you don't have redundancy (fail-over support). - Original Message - From: Alex Lee To: Sent: Wednesday, November 21, 2001 9:57 AM Subject: Re: PIX 501 [7:27002] Has anyone used this PIX yet ? There were some discussions about this topic 2 weeks(?) ago but none of the participants to the discussion has had any actual hand-on experience with the PIX 501 at that time. I got a quote from our supplier for a new PIX DES bundle with 10 user licence for less than $500.00. Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=27013t=27002 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Class C IP range! [7:26814]
I think what Howard is alluding to is that in most cases the push for IPv4 address space conservation has made it, in general , more difficult than it has been in the past to secure entire Class Cs. I agree with Howard that it is more prudent to design an interior IP schema using private addressing and then seek only routable, registered addresses for external Interfaces. My two cents. -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of nrf Sent: Wednesday, November 21, 2001 9:06 AM To: [EMAIL PROTECTED] Subject: Re: Class C IP range! [7:26814] Howard, For the sake of IP address conservation, I would like to believe what you say. Unfortunately I happen to know several small companies that were able to secure entire Class C's with nary a protest from their ISP's, and yes they are all globally routed. The most addresses any one of those companies is using within that class range is 10 of those addresses - waste galore. Apparently many ISP's aren't as vigilant as they should be. Howard C. Berkowitz wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... where can i get a class C ip address block ? I check everywhere everyone is saying they only provide a block of /19. Anyone can help ? Thanks Shella What do you want to do with it? In the real world, it can be very hard to get a provider-independent /24, and even harder to get it globally routed. Your best solution may be to design your environment to be renumbering-friendly, and get a /24 from your upstream provider. In general, you will have to demonstrate 50% immediate use of a /20 to get your own allocation. Incidentally, don't think Class C in getting assignments, think /24 (if that's what you actually need). Class-based allocation is long obsolete in the public network, regardless of what Cisco teaches in basic courses. Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=27012t=26814 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: PIX 501 [7:27002]
I can get it for $495.- with 3DES (PIX-501-BUN-K9) with our company discount. I have talked with my supplier and they are willing to sell it to those of you on the list for the same price. Send me an e-mail if you're interested, and I will give you the contact information on the sales rep. Ole ~~~ Ole Drews Jensen Systems Network Manager CCNP, MCSE, MCP+I RWR Enterprises, Inc. [EMAIL PROTECTED] ~~~ http://www.RouterChief.com ~~~ NEED A JOB ??? http://www.oledrews.com/job ~~~ -Original Message- From: Alex Lee [mailto:[EMAIL PROTECTED]] Sent: Wednesday, November 21, 2001 8:57 AM To: [EMAIL PROTECTED] Subject: Re: PIX 501 [7:27002] Has anyone used this PIX yet ? There were some discussions about this topic 2 weeks(?) ago but none of the participants to the discussion has had any actual hand-on experience with the PIX 501 at that time. I got a quote from our supplier for a new PIX DES bundle with 10 user licence for less than $500.00. Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=27014t=27002 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Any security concerns if rsh enabled on Cisco routers [7:27015]
Dovelet, If you use rsh, you are allowing cleartext username/password info to be passed to the router to issue commands, so you are open to passive (sniffing) attacks. Also, unless you use a very good password, you are open to password guessing attacks. So yes, there is a potential security risk. (these risks also apply with telnet) The better solution would be to use ssh. You would still be open to password guessing attacks unless you implement some sort of OTP such as SecurID or S/Key. If you absolutely need to use rsh, you could create an IPSec tunnel between your Unix machine and the router to encrypt your rsh info. If you use IPSec tunnel mode, you could HTH, Kent -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of dovelet Sent: Tuesday, November 20, 2001 12:32 AM To: [EMAIL PROTECTED] Subject: Any security concerns if rsh enabled on Cisco routers [7:26818] Hi all, I just find that Cisco routers can support rsh so that I can use a UNIX machine to remotely execute command. However, I would like to know is there any security holes if I enable rsh at Cisco routers? If so, how to improve it? Regards, Dovelet Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=27015t=27015 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Class C IP range! [7:26814]
Howard, For the sake of IP address conservation, I would like to believe what you say. Unfortunately I happen to know several small companies that were able to secure entire Class C's with nary a protest from their ISP's, and yes they are all globally routed. The most addresses any one of those companies is using within that class range is 10 of those addresses - waste galore. Apparently many ISP's aren't as vigilant as they should be. There can be legitimate nuances, such as having a multihomed /24 using PA address space, with the associated routing policy in a registry. This still doesn't assure global reachability. The other side of this may come not immediately, but when the less-vigilant ISP applies for additional address space and is denied because it can't show it allocated wisely. There still has been no explanation if the poster will settle for PA space or wants PI. Getting a non-multihomed PA /24 is trivial, understanding that it will form part of the provider's aggregate. Getting PA /24 that will be multihomed by cooperating providers is more difficult, if only for reasons of global reachability. Getting PI /24 is conceivable, but very difficult. RFC 2050 does specify that administrative convenience, read among other things as not having to renumber, should not be considered as part of address allocation policy. Howard C. Berkowitz wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... where can i get a class C ip address block ? I check everywhere everyone is saying they only provide a block of /19. Anyone can help ? Thanks Shella What do you want to do with it? In the real world, it can be very hard to get a provider-independent /24, and even harder to get it globally routed. Your best solution may be to design your environment to be renumbering-friendly, and get a /24 from your upstream provider. In general, you will have to demonstrate 50% immediate use of a /20 to get your own allocation. Incidentally, don't think Class C in getting assignments, think /24 (if that's what you actually need). Class-based allocation is long obsolete in the public network, regardless of what Cisco teaches in basic courses. Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=27016t=26814 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: PIX 501 [7:27002]
If you look here (watch for wordwrap) http://www.cisco.com/warp/public/cc/pd/fw/sqfw500/prodlit/px501_ds.htm You will see that it has 4 x 10/100 Mbps ethernet interfaces. This could be a newer model, but this one with 10 users and 3DES encryption license, can be bought from new for $495.- Hth, Ole ~~~ Ole Drews Jensen Systems Network Manager CCNP, MCSE, MCP+I RWR Enterprises, Inc. [EMAIL PROTECTED] ~~~ http://www.RouterChief.com ~~~ NEED A JOB ??? http://www.oledrews.com/job ~~~ -Original Message- From: David Tran [mailto:[EMAIL PROTECTED]] Sent: Wednesday, November 21, 2001 9:38 AM To: [EMAIL PROTECTED] Subject: Re: PIX 501 [7:27002] My take on the PIX501 is that it is similar to Cisco router 2501 in that the hardware is FIXED. It only has two interfaces. If you want to add another segment to your network (i.e. DMZ) then you have no choice but to upgrade to either a 515 or higher. Other than that, the PIX IOS code is the same through out the PIX Series (with the exception that for the 501 and 506 you don't have redundancy (fail-over support). - Original Message - From: Alex Lee To: Sent: Wednesday, November 21, 2001 9:57 AM Subject: Re: PIX 501 [7:27002] Has anyone used this PIX yet ? There were some discussions about this topic 2 weeks(?) ago but none of the participants to the discussion has had any actual hand-on experience with the PIX 501 at that time. I got a quote from our supplier for a new PIX DES bundle with 10 user licence for less than $500.00. Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=27020t=27002 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: What a Ride......Finally CCNP [7:26604]
Sure you could. I took two CCNP exams in one day. -Original Message- From: Aaron Earle [mailto:[EMAIL PROTECTED]] Sent: Wednesday, November 21, 2001 8:55 AM To: [EMAIL PROTECTED] Subject: Re: What a Ride..Finally CCNP [7:26604] I'am not 100% but I think you can't take two cisco test on one day? IF I wrong let me know but I'am pretty sure though Aaron Theodore stout wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... Personally, if I were you, I would get Top-Down Network Design and Designing Routing and Switching Architectures and Designing Addressing Architectures before you set foot in the testing lab. Those two books are REALLY good and I really don't see the value of the CCDA and CID without knowing those two books first solidly. After that, just pass both tests on the same day. I plan on doing this but I am on Chapter 12 of Berkowitz's DRSA book and a punk stole my Top-Down Network Design book so I am waiting for it to come again from Amazon. Cisco gets more of my money.but it is worth it :-) Theo For more information about Barclays Capital, please visit our web site at http://www.barcap.com. Internet communications are not secure and therefore the Barclays Group does not accept legal responsibility for the contents of this message. Although the Barclays Group operates anti-virus programmes, it does not accept responsibility for any damage whatsoever that is caused by viruses being passed. Any views or opinions presented are solely those of the author and do not necessarily represent those of the Barclays Group. Replies to this email may be monitored by the Barclays Group for operational or business reasons. Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=27021t=26604 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Class C IP range! [7:26814]
Hello. Getting your own class C address space and getting one from your ISP are two different things. The ISP owns the address space, the customer doesn't. If the customer decides not to use that ISP for some reason, the ISP can (and probably will) take it back. To get your own, you apply to ARIN. ARIN is interested in conservation. The ISP will probably just charge a little more (or maybe not). All it takes for the address space to be visible to the Internet is to advertise it in BGP on its own. Ken nrf 11/21/01 09:06AM Howard, For the sake of IP address conservation, I would like to believe what you say. Unfortunately I happen to know several small companies that were able to secure entire Class C's with nary a protest from their ISP's, and yes they are all globally routed. The most addresses any one of those companies is using within that class range is 10 of those addresses - waste galore. Apparently many ISP's aren't as vigilant as they should be. Howard C. Berkowitz wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... where can i get a class C ip address block ? I check everywhere everyone is saying they only provide a block of /19. Anyone can help ? Thanks Shella What do you want to do with it? In the real world, it can be very hard to get a provider-independent /24, and even harder to get it globally routed. Your best solution may be to design your environment to be renumbering-friendly, and get a /24 from your upstream provider. In general, you will have to demonstrate 50% immediate use of a /20 to get your own allocation. Incidentally, don't think Class C in getting assignments, think /24 (if that's what you actually need). Class-based allocation is long obsolete in the public network, regardless of what Cisco teaches in basic courses. Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=27022t=26814 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: PIX 501 [7:27002]
Mine was back-ordered, but I finally got it about two weeks ago. I have had no problems at all with the box so far. In my home environment (w/dsl), it seems functionally equivalent to the 506. I have the DES/10 User license, using the 3.1 client to access my home network from work or on the road. I'm very pleased with the purchase so far. - Original Message - From: Alex Lee To: Sent: Wednesday, November 21, 2001 6:57 AM Subject: Re: PIX 501 [7:27002] Has anyone used this PIX yet ? There were some discussions about this topic 2 weeks(?) ago but none of the participants to the discussion has had any actual hand-on experience with the PIX 501 at that time. I got a quote from our supplier for a new PIX DES bundle with 10 user licence for less than $500.00. Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=27023t=27002 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: PIX 501 [7:27002]
I started the thread 2 weeks ago but had not bought th PIX yet. I installed DSL at home and was looking into firewalls. I figured instead of spending $200 on a 3com I'd invest $500 on a PIX so I could gain configruation experience and have the firewall I need. I spoke with a few people since then and they did not recommend it for use in small offices. Cisco actual sells a license for 50 users which is ridiculous since this firewall choke if there was a VPN tunnel through it. Alex Lee wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... Has anyone used this PIX yet ? There were some discussions about this topic 2 weeks(?) ago but none of the participants to the discussion has had any actual hand-on experience with the PIX 501 at that time. I got a quote from our supplier for a new PIX DES bundle with 10 user licence for less than $500.00. Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=27024t=27002 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: dynamic VLAN [7:27006]
Hi there !! Dynamic VLAN are created through the use of Cisco Works 2000 or Cisco Works for Switched Networks (CWSI). Bye Alberto Martin Sinopoli Microsoft MCP+I, MCSE Cisco CCNA, CCNP Buenos Aires - Argentina king kaung escribis en el mensaje [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... Hi All, After we migrate all our legacy 3Com Switches to Cisco switches, we found out that our current core switch Cat4006 does not support dynamic VLAN(according to vendors) but I check on the cisco website and I saw dynamic VLAN issued commands under Cat 4006. I also can not find these command sets under Cat4006 prompt. Using Static VLAN(per port VLAN) is very difficult to deploy in our environment.Is there any workaround to support dynamic VLAN features? Pls provide me any suggestion. I'm really appreciate your kind suggestion. Regards, Moe. _ Get your FREE download of MSN Explorer at http://explorer.msn.com/intl.asp Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=27026t=27006 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: PIX 501 [7:27002]
I followed the link. The data sheet says : Quote Interfaces Console Port: RS-232 (RJ-45) 9600 baud Outside: Integrated 10BaseT port, half-duplex, RJ45 Inside: Integrated auto-sensing, auto-MDIX 4-port 10/100 switch, RJ45 Unquote The way I interpret this is that this PIX basically has two interfaces :- one outside (10BaseT port) and one inside but implemented as 4-port switch, which means you can only have two segments and no DMZ. Please correct me if I am wrong. Ole Drews Jensen wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... If you look here (watch for wordwrap) http://www.cisco.com/warp/public/cc/pd/fw/sqfw500/prodlit/px501_ds.htm You will see that it has 4 x 10/100 Mbps ethernet interfaces. This could be a newer model, but this one with 10 users and 3DES encryption license, can be bought from new for $495.- Hth, Ole ~~~ Ole Drews Jensen Systems Network Manager CCNP, MCSE, MCP+I RWR Enterprises, Inc. [EMAIL PROTECTED] ~~~ http://www.RouterChief.com ~~~ NEED A JOB ??? http://www.oledrews.com/job ~~~ -Original Message- From: David Tran [mailto:[EMAIL PROTECTED]] Sent: Wednesday, November 21, 2001 9:38 AM To: [EMAIL PROTECTED] Subject: Re: PIX 501 [7:27002] My take on the PIX501 is that it is similar to Cisco router 2501 in that the hardware is FIXED. It only has two interfaces. If you want to add another segment to your network (i.e. DMZ) then you have no choice but to upgrade to either a 515 or higher. Other than that, the PIX IOS code is the same through out the PIX Series (with the exception that for the 501 and 506 you don't have redundancy (fail-over support). - Original Message - From: Alex Lee To: Sent: Wednesday, November 21, 2001 9:57 AM Subject: Re: PIX 501 [7:27002] Has anyone used this PIX yet ? There were some discussions about this topic 2 weeks(?) ago but none of the participants to the discussion has had any actual hand-on experience with the PIX 501 at that time. I got a quote from our supplier for a new PIX DES bundle with 10 user licence for less than $500.00. Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=27027t=27002 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: PIX 501 [7:27002]
There has only been one Model release of the PIX 501 to my knowledge (this puppy has only been out since early September of this year)- and those 4 10/100 ports represent a 4 port Switch for (Inside) use only- But from documentations' reading, that doesn't infer that you can assign multiple net id's to the inside ports. You can probably still add a Secondary IP (I don't know if this is even legal on the PIX due to lack of experience) to the (Inside) interface and then create different NAT pools from that, but from first thorough look, it looks like they just added 3 extra ports for convenience. From what I understand, its like a 506 (No DMZ ability), but you get the added 4-Port Switch integrated into it. Ole- As soon as possible, I'll be dropping you a line to take you up on that $495 offer. Have a great week! Also, Happy ThanksGiving to all that celebrate! Sincerely, Mark Odette II -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Ole Drews Jensen Sent: Wednesday, November 21, 2001 10:07 AM To: [EMAIL PROTECTED] Subject: RE: PIX 501 [7:27002] If you look here (watch for wordwrap) http://www.cisco.com/warp/public/cc/pd/fw/sqfw500/prodlit/px501_ds.htm You will see that it has 4 x 10/100 Mbps ethernet interfaces. This could be a newer model, but this one with 10 users and 3DES encryption license, can be bought from new for $495.- Hth, Ole ~~~ Ole Drews Jensen Systems Network Manager CCNP, MCSE, MCP+I RWR Enterprises, Inc. [EMAIL PROTECTED] ~~~ http://www.RouterChief.com ~~~ NEED A JOB ??? http://www.oledrews.com/job ~~~ -Original Message- From: David Tran [mailto:[EMAIL PROTECTED]] Sent: Wednesday, November 21, 2001 9:38 AM To: [EMAIL PROTECTED] Subject: Re: PIX 501 [7:27002] My take on the PIX501 is that it is similar to Cisco router 2501 in that the hardware is FIXED. It only has two interfaces. If you want to add another segment to your network (i.e. DMZ) then you have no choice but to upgrade to either a 515 or higher. Other than that, the PIX IOS code is the same through out the PIX Series (with the exception that for the 501 and 506 you don't have redundancy (fail-over support). - Original Message - From: Alex Lee To: Sent: Wednesday, November 21, 2001 9:57 AM Subject: Re: PIX 501 [7:27002] Has anyone used this PIX yet ? There were some discussions about this topic 2 weeks(?) ago but none of the participants to the discussion has had any actual hand-on experience with the PIX 501 at that time. I got a quote from our supplier for a new PIX DES bundle with 10 user licence for less than $500.00. Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=27028t=27002 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: CCIE One Day Lab FAIL [7:27029]
For those that finished with an hour or so to spare, do you mind posting what your estimated typing speed is? I know it sounds funny, but I work with someone who can type 120 words a minute and it seems to make all the difference in a tight time situation like the lab. Thanks in advance, -Joe -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of McCallum, Robert Sent: Tuesday, November 20, 2001 5:45 AM To: 'Ccielab' (E-mail); Cisco@Groupstudy. Com (E-mail); George; Kev; kevin; sandra; sandra1; Warren Subject: CCIE One Day Lab FAIL O.k. I sat the exam last week and failed but by not a lot. Silly mistakes killed me. For those of you who have still to experience the one day lab then please read ahead. Mostly everyone on this list stated that there was no time to do the lab or check anything. I found this to be so untrue it was unreal. Most people on the lab finished with an hour to go and I had more time than this to check and try to get the annoying things that didn't work to work (although I failed to get two things working)... So from that, my advice is if you are stuck on something, move on and work your way through the workbook. Once you get to the end you should have plenty time to fix (if you can) the problems you left. From my experience of Brussels everything was there. The proctors turned up when they should, answered any questions you asked, there were icons for each element you had to configure, there was paper, there were pens, pencils, sharpeners and erasers. Lunch was horrible although I don't think anyone was to bothered about lunch, so if you are a person who cannot go without lunch bring a packed lunch with you (just don't put your answers in your lunch box !!). All in all enjoy the experience and READ the questions (even the smallest detail). I am resetting in Feb next year and I reckon the pressure will really be on then. Most people fail 1st time anyway is what I can say this time but next time ?? Robert McCallum Ext 730 3448 DDI : 01415663448 Mobile : 07818002241 Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=27029t=27029 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Class C IP range! [7:26814]
Greetings, Working for an ISP I can say that most of them will make you justify the space. ARIN will make us justify it to get more so we are pretty stingy (much to the consternation of the sales people) about giving out class C space. Of course as always YMMV. Wayne At 08:30 AM 11/21/2001, Ken Diliberto wrote: Hello. Getting your own class C address space and getting one from your ISP are two different things. The ISP owns the address space, the customer doesn't. If the customer decides not to use that ISP for some reason, the ISP can (and probably will) take it back. To get your own, you apply to ARIN. ARIN is interested in conservation. The ISP will probably just charge a little more (or maybe not). All it takes for the address space to be visible to the Internet is to advertise it in BGP on its own. Ken nrf 11/21/01 09:06AM Howard, For the sake of IP address conservation, I would like to believe what you say. Unfortunately I happen to know several small companies that were able to secure entire Class C's with nary a protest from their ISP's, and yes they are all globally routed. The most addresses any one of those companies is using within that class range is 10 of those addresses - waste galore. Apparently many ISP's aren't as vigilant as they should be. Howard C. Berkowitz wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... where can i get a class C ip address block ? I check everywhere everyone is saying they only provide a block of /19. Anyone can help ? Thanks Shella What do you want to do with it? In the real world, it can be very hard to get a provider-independent /24, and even harder to get it globally routed. Your best solution may be to design your environment to be renumbering-friendly, and get a /24 from your upstream provider. In general, you will have to demonstrate 50% immediate use of a /20 to get your own allocation. Incidentally, don't think Class C in getting assignments, think /24 (if that's what you actually need). Class-based allocation is long obsolete in the public network, regardless of what Cisco teaches in basic courses. Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=27030t=26814 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: PIX 501 [7:27002]
Alex - you got me... I don't know if the 4 port switch works like one interface, of if you can use each of them as different subnets, but I hope to learn about that soon. Ole ~~~ Ole Drews Jensen Systems Network Manager CCNP, MCSE, MCP+I RWR Enterprises, Inc. [EMAIL PROTECTED] ~~~ http://www.RouterChief.com ~~~ NEED A JOB ??? http://www.oledrews.com/job ~~~ -Original Message- From: Alex Lee [mailto:[EMAIL PROTECTED]] Sent: Wednesday, November 21, 2001 11:01 AM To: [EMAIL PROTECTED] Subject: Re: PIX 501 [7:27002] I followed the link. The data sheet says : Quote Interfaces Console Port: RS-232 (RJ-45) 9600 baud Outside: Integrated 10BaseT port, half-duplex, RJ45 Inside: Integrated auto-sensing, auto-MDIX 4-port 10/100 switch, RJ45 Unquote The way I interpret this is that this PIX basically has two interfaces :- one outside (10BaseT port) and one inside but implemented as 4-port switch, which means you can only have two segments and no DMZ. Please correct me if I am wrong. Ole Drews Jensen wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... If you look here (watch for wordwrap) http://www.cisco.com/warp/public/cc/pd/fw/sqfw500/prodlit/px501_ds.htm You will see that it has 4 x 10/100 Mbps ethernet interfaces. This could be a newer model, but this one with 10 users and 3DES encryption license, can be bought from new for $495.- Hth, Ole ~~~ Ole Drews Jensen Systems Network Manager CCNP, MCSE, MCP+I RWR Enterprises, Inc. [EMAIL PROTECTED] ~~~ http://www.RouterChief.com ~~~ NEED A JOB ??? http://www.oledrews.com/job ~~~ -Original Message- From: David Tran [mailto:[EMAIL PROTECTED]] Sent: Wednesday, November 21, 2001 9:38 AM To: [EMAIL PROTECTED] Subject: Re: PIX 501 [7:27002] My take on the PIX501 is that it is similar to Cisco router 2501 in that the hardware is FIXED. It only has two interfaces. If you want to add another segment to your network (i.e. DMZ) then you have no choice but to upgrade to either a 515 or higher. Other than that, the PIX IOS code is the same through out the PIX Series (with the exception that for the 501 and 506 you don't have redundancy (fail-over support). - Original Message - From: Alex Lee To: Sent: Wednesday, November 21, 2001 9:57 AM Subject: Re: PIX 501 [7:27002] Has anyone used this PIX yet ? There were some discussions about this topic 2 weeks(?) ago but none of the participants to the discussion has had any actual hand-on experience with the PIX 501 at that time. I got a quote from our supplier for a new PIX DES bundle with 10 user licence for less than $500.00. Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=27031t=27002 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: PIX 501 [7:27002]
Thanks Mark, Sure, drop me a line... Ole ~~~ Ole Drews Jensen Systems Network Manager CCNP, MCSE, MCP+I RWR Enterprises, Inc. [EMAIL PROTECTED] ~~~ http://www.RouterChief.com ~~~ NEED A JOB ??? http://www.oledrews.com/job ~~~ -Original Message- From: Mark Odette II [mailto:[EMAIL PROTECTED]] Sent: Wednesday, November 21, 2001 11:03 AM To: [EMAIL PROTECTED] Subject: RE: PIX 501 [7:27002] There has only been one Model release of the PIX 501 to my knowledge (this puppy has only been out since early September of this year)- and those 4 10/100 ports represent a 4 port Switch for (Inside) use only- But from documentations' reading, that doesn't infer that you can assign multiple net id's to the inside ports. You can probably still add a Secondary IP (I don't know if this is even legal on the PIX due to lack of experience) to the (Inside) interface and then create different NAT pools from that, but from first thorough look, it looks like they just added 3 extra ports for convenience. From what I understand, its like a 506 (No DMZ ability), but you get the added 4-Port Switch integrated into it. Ole- As soon as possible, I'll be dropping you a line to take you up on that $495 offer. Have a great week! Also, Happy ThanksGiving to all that celebrate! Sincerely, Mark Odette II -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Ole Drews Jensen Sent: Wednesday, November 21, 2001 10:07 AM To: [EMAIL PROTECTED] Subject: RE: PIX 501 [7:27002] If you look here (watch for wordwrap) http://www.cisco.com/warp/public/cc/pd/fw/sqfw500/prodlit/px501_ds.htm You will see that it has 4 x 10/100 Mbps ethernet interfaces. This could be a newer model, but this one with 10 users and 3DES encryption license, can be bought from new for $495.- Hth, Ole ~~~ Ole Drews Jensen Systems Network Manager CCNP, MCSE, MCP+I RWR Enterprises, Inc. [EMAIL PROTECTED] ~~~ http://www.RouterChief.com ~~~ NEED A JOB ??? http://www.oledrews.com/job ~~~ -Original Message- From: David Tran [mailto:[EMAIL PROTECTED]] Sent: Wednesday, November 21, 2001 9:38 AM To: [EMAIL PROTECTED] Subject: Re: PIX 501 [7:27002] My take on the PIX501 is that it is similar to Cisco router 2501 in that the hardware is FIXED. It only has two interfaces. If you want to add another segment to your network (i.e. DMZ) then you have no choice but to upgrade to either a 515 or higher. Other than that, the PIX IOS code is the same through out the PIX Series (with the exception that for the 501 and 506 you don't have redundancy (fail-over support). - Original Message - From: Alex Lee To: Sent: Wednesday, November 21, 2001 9:57 AM Subject: Re: PIX 501 [7:27002] Has anyone used this PIX yet ? There were some discussions about this topic 2 weeks(?) ago but none of the participants to the discussion has had any actual hand-on experience with the PIX 501 at that time. I got a quote from our supplier for a new PIX DES bundle with 10 user licence for less than $500.00. Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=27032t=27002 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: PIX 501 [7:27002]
But these are all inside interfaces are they not - I.E a 4 port switch for you Home Office LAN Regards Andy Lee - Original Message - From: Ole Drews Jensen To: Sent: Wednesday, November 21, 2001 4:07 PM Subject: RE: PIX 501 [7:27002] If you look here (watch for wordwrap) http://www.cisco.com/warp/public/cc/pd/fw/sqfw500/prodlit/px501_ds.htm You will see that it has 4 x 10/100 Mbps ethernet interfaces. This could be a newer model, but this one with 10 users and 3DES encryption license, can be bought from new for $495.- Hth, Ole ~~~ Ole Drews Jensen Systems Network Manager CCNP, MCSE, MCP+I RWR Enterprises, Inc. [EMAIL PROTECTED] ~~~ http://www.RouterChief.com ~~~ NEED A JOB ??? http://www.oledrews.com/job ~~~ -Original Message- From: David Tran [mailto:[EMAIL PROTECTED]] Sent: Wednesday, November 21, 2001 9:38 AM To: [EMAIL PROTECTED] Subject: Re: PIX 501 [7:27002] My take on the PIX501 is that it is similar to Cisco router 2501 in that the hardware is FIXED. It only has two interfaces. If you want to add another segment to your network (i.e. DMZ) then you have no choice but to upgrade to either a 515 or higher. Other than that, the PIX IOS code is the same through out the PIX Series (with the exception that for the 501 and 506 you don't have redundancy (fail-over support). - Original Message - From: Alex Lee To: Sent: Wednesday, November 21, 2001 9:57 AM Subject: Re: PIX 501 [7:27002] Has anyone used this PIX yet ? There were some discussions about this topic 2 weeks(?) ago but none of the participants to the discussion has had any actual hand-on experience with the PIX 501 at that time. I got a quote from our supplier for a new PIX DES bundle with 10 user licence for less than $500.00. Outgoing mail is certified Virus Free. Checked by AVG anti-virus system (http://www.grisoft.com). Version: 6.0.282 / Virus Database: 150 - Release Date: 25/09/2001 Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=27033t=27002 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: dynamic VLAN [7:27006]
what version of CAT os you are having? king kaung wrote: Hi All, After we migrate all our legacy 3Com Switches to Cisco switches, we found out that our current core switch Cat4006 does not support dynamic VLAN(according to vendors) but I check on the cisco website and I saw dynamic VLAN issued commands under Cat 4006. I also can not find these command sets under Cat4006 prompt. Using Static VLAN(per port VLAN) is very difficult to deploy in our environment.Is there any workaround to support dynamic VLAN features? Pls provide me any suggestion. I'm really appreciate your kind suggestion. Regards, Moe. _ Get your FREE download of MSN Explorer at http://explorer.msn.com/intl.asp [GroupStudy.com removed an attachment of type text/x-vcard which had a name of pikumar.vcf] Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=27034t=27006 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: dynamic VLAN [7:27006]
Have you issued the SET VMPS STATE ENABLE command?? Have you got a TFTP Server for VMPS to get its Dynamic VLAN/MAC database records from? Have you specified the ports on the Switch to operate as dynamic mode for vlans?? I believe these commands are on all of the 4000, 5X00, and 6x00 Catalyst switches... but I could be wrong. To find out if these commands are available to you, just do a Set VMPS ? at the prompt. You'll probably get an example of how the command is used. HTH, Mark Odette II -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of king kaung Sent: Wednesday, November 21, 2001 9:05 AM To: [EMAIL PROTECTED] Subject: dynamic VLAN [7:27006] Hi All, After we migrate all our legacy 3Com Switches to Cisco switches, we found out that our current core switch Cat4006 does not support dynamic VLAN(according to vendors) but I check on the cisco website and I saw dynamic VLAN issued commands under Cat 4006. I also can not find these command sets under Cat4006 prompt. Using Static VLAN(per port VLAN) is very difficult to deploy in our environment.Is there any workaround to support dynamic VLAN features? Pls provide me any suggestion. I'm really appreciate your kind suggestion. Regards, Moe. _ Get your FREE download of MSN Explorer at http://explorer.msn.com/intl.asp Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=27035t=27006 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: CCIE One Day Lab FAIL [7:27029]
Mine is 60-70 wpm. But the key point is, I used i instead of sh ip ro, b instead of sh ip bgp, o instead of sh ip ospf, t instead of conf t etc. Therefore, a sh ip bgp sum would be b sum, or sh ip ospf nei would be o nei. I know you get what I mean. Build a list of aliases so that this becomes a nature to you help a lot. Though the side effect is that I would type i to show the routing table very naturally, even at work where those routers have not been setup with these aliases. Also, know the option down cool. I found that those fast-pace one would not rely on the online help by typing ?. That way you will save a lot of time for fixing other critical issues rather than figuring out what can be match/set in a route-map. HTH Gary Joseph Ezerski wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... For those that finished with an hour or so to spare, do you mind posting what your estimated typing speed is? I know it sounds funny, but I work with someone who can type 120 words a minute and it seems to make all the difference in a tight time situation like the lab. Thanks in advance, -Joe -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of McCallum, Robert Sent: Tuesday, November 20, 2001 5:45 AM To: 'Ccielab' (E-mail); Cisco@Groupstudy. Com (E-mail); George; Kev; kevin; sandra; sandra1; Warren Subject: CCIE One Day Lab FAIL O.k. I sat the exam last week and failed but by not a lot. Silly mistakes killed me. For those of you who have still to experience the one day lab then please read ahead. Mostly everyone on this list stated that there was no time to do the lab or check anything. I found this to be so untrue it was unreal. Most people on the lab finished with an hour to go and I had more time than this to check and try to get the annoying things that didn't work to work (although I failed to get two things working)... So from that, my advice is if you are stuck on something, move on and work your way through the workbook. Once you get to the end you should have plenty time to fix (if you can) the problems you left. From my experience of Brussels everything was there. The proctors turned up when they should, answered any questions you asked, there were icons for each element you had to configure, there was paper, there were pens, pencils, sharpeners and erasers. Lunch was horrible although I don't think anyone was to bothered about lunch, so if you are a person who cannot go without lunch bring a packed lunch with you (just don't put your answers in your lunch box !!). All in all enjoy the experience and READ the questions (even the smallest detail). I am resetting in Feb next year and I reckon the pressure will really be on then. Most people fail 1st time anyway is what I can say this time but next time ?? Robert McCallum Ext 730 3448 DDI : 01415663448 Mobile : 07818002241 Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=27037t=27029 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Terminal Server with SSH - Not cheap are they? [7:27038]
Hi all, I currently use a 2511 RJ Terminal Server on a site with dial up access through a modem. Ten pieces of Cisco equipment are then configured using reverse telnet to their consoles. Someone's thrown a spanner in the works. We now need to use something such as SSH to the Terminal Server. The 2500 doesn't support it. The nearest I could think of was a 2610 with an NM16A (16 port Async) module. Unfortunately to run a decent version of code with DES (for SSH support) this needs a DRAM and Flash upgrade. There isn't as far as I can find, a 16 port RJ45 Asynchronous module (closer replacement for the 2511RJ), so we need two octal cables. Total Price around #4500 as opposed to around #1800 for the 2511RJ. 2511's always seemed a bit steep for this job, but using a 2610 for it seems to be even more so, even though the 2610 itself is only #1100. I think all this still only gives me SSH version 1. Does anybody have any ideas for suitable replacements. Space is a concern, but I am thinking about putting a 1U server in there to do the same job if I can source a 16 port serial card that fits, and I'm also looking at whether Shiva are still in the market. All ideas accepted gladly, but this does have to get past a security board. I don't want full solutions, just asking for brief ideas. Thanks, Gaz Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=27038t=27038 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: PIX 501 [7:27002]
Yes they are Andy, and to be honest, I don't know if they just work as one interface, or if you can _USE_ all four for different firewall/vpn settings. Ole ~~~ Ole Drews Jensen Systems Network Manager CCNP, MCSE, MCP+I RWR Enterprises, Inc. [EMAIL PROTECTED] ~~~ http://www.RouterChief.com ~~~ NEED A JOB ??? http://www.oledrews.com/job ~~~ -Original Message- From: Andy Lee [mailto:[EMAIL PROTECTED]] Sent: Wednesday, November 21, 2001 11:33 AM To: [EMAIL PROTECTED] Subject: Re: PIX 501 [7:27002] But these are all inside interfaces are they not - I.E a 4 port switch for you Home Office LAN Regards Andy Lee - Original Message - From: Ole Drews Jensen To: Sent: Wednesday, November 21, 2001 4:07 PM Subject: RE: PIX 501 [7:27002] If you look here (watch for wordwrap) http://www.cisco.com/warp/public/cc/pd/fw/sqfw500/prodlit/px501_ds.htm You will see that it has 4 x 10/100 Mbps ethernet interfaces. This could be a newer model, but this one with 10 users and 3DES encryption license, can be bought from new for $495.- Hth, Ole ~~~ Ole Drews Jensen Systems Network Manager CCNP, MCSE, MCP+I RWR Enterprises, Inc. [EMAIL PROTECTED] ~~~ http://www.RouterChief.com ~~~ NEED A JOB ??? http://www.oledrews.com/job ~~~ -Original Message- From: David Tran [mailto:[EMAIL PROTECTED]] Sent: Wednesday, November 21, 2001 9:38 AM To: [EMAIL PROTECTED] Subject: Re: PIX 501 [7:27002] My take on the PIX501 is that it is similar to Cisco router 2501 in that the hardware is FIXED. It only has two interfaces. If you want to add another segment to your network (i.e. DMZ) then you have no choice but to upgrade to either a 515 or higher. Other than that, the PIX IOS code is the same through out the PIX Series (with the exception that for the 501 and 506 you don't have redundancy (fail-over support). - Original Message - From: Alex Lee To: Sent: Wednesday, November 21, 2001 9:57 AM Subject: Re: PIX 501 [7:27002] Has anyone used this PIX yet ? There were some discussions about this topic 2 weeks(?) ago but none of the participants to the discussion has had any actual hand-on experience with the PIX 501 at that time. I got a quote from our supplier for a new PIX DES bundle with 10 user licence for less than $500.00. Outgoing mail is certified Virus Free. Checked by AVG anti-virus system (http://www.grisoft.com). Version: 6.0.282 / Virus Database: 150 - Release Date: 25/09/2001 Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=27039t=27002 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Cisco Press [7:27040]
What is the difference between the Cisco Press Preperation Library and the Cisco Press Certification library? If someone is starting CCNP which is the best one to get? Thanks in Advance Brian Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=27040t=27040 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Terminal Server with SSH - Not cheap are they? [7:27038]
Put linux on an old 386/486, connect the console port of the 2500 to a serial port of the linux box. ssh to the linux box, start up a minicom session with the 2500 and from their you have access to all of your equipment. Use iptables on the box to restrict access to it. (by the way, as long as you can come up with the box, all this is FREE) -Patrick Gaz 11/21/01 01:04PM Hi all, I currently use a 2511 RJ Terminal Server on a site with dial up access through a modem. Ten pieces of Cisco equipment are then configured using reverse telnet to their consoles. Someone's thrown a spanner in the works. We now need to use something such as SSH to the Terminal Server. The 2500 doesn't support it. The nearest I could think of was a 2610 with an NM16A (16 port Async) module. Unfortunately to run a decent version of code with DES (for SSH support) this needs a DRAM and Flash upgrade. There isn't as far as I can find, a 16 port RJ45 Asynchronous module (closer replacement for the 2511RJ), so we need two octal cables. Total Price around #4500 as opposed to around #1800 for the 2511RJ. 2511's always seemed a bit steep for this job, but using a 2610 for it seems to be even more so, even though the 2610 itself is only #1100. I think all this still only gives me SSH version 1. Does anybody have any ideas for suitable replacements. Space is a concern, but I am thinking about putting a 1U server in there to do the same job if I can source a 16 port serial card that fits, and I'm also looking at whether Shiva are still in the market. All ideas accepted gladly, but this does have to get past a security board. I don't want full solutions, just asking for brief ideas. Thanks, Gaz Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=27041t=27038 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: PIX 501 [7:27002]
There's only one inside interface. The remaining 3 ports act as switched ports on the same network you assign to the inside interface. - Original Message - From: Ole Drews Jensen To: Sent: Wednesday, November 21, 2001 9:31 AM Subject: RE: PIX 501 [7:27002] Alex - you got me... I don't know if the 4 port switch works like one interface, of if you can use each of them as different subnets, but I hope to learn about that soon. Ole ~~~ Ole Drews Jensen Systems Network Manager CCNP, MCSE, MCP+I RWR Enterprises, Inc. [EMAIL PROTECTED] ~~~ http://www.RouterChief.com ~~~ NEED A JOB ??? http://www.oledrews.com/job ~~~ -Original Message- From: Alex Lee [mailto:[EMAIL PROTECTED]] Sent: Wednesday, November 21, 2001 11:01 AM To: [EMAIL PROTECTED] Subject: Re: PIX 501 [7:27002] I followed the link. The data sheet says : Quote Interfaces Console Port: RS-232 (RJ-45) 9600 baud Outside: Integrated 10BaseT port, half-duplex, RJ45 Inside: Integrated auto-sensing, auto-MDIX 4-port 10/100 switch, RJ45 Unquote The way I interpret this is that this PIX basically has two interfaces :- one outside (10BaseT port) and one inside but implemented as 4-port switch, which means you can only have two segments and no DMZ. Please correct me if I am wrong. Ole Drews Jensen wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... If you look here (watch for wordwrap) http://www.cisco.com/warp/public/cc/pd/fw/sqfw500/prodlit/px501_ds.htm You will see that it has 4 x 10/100 Mbps ethernet interfaces. This could be a newer model, but this one with 10 users and 3DES encryption license, can be bought from new for $495.- Hth, Ole ~~~ Ole Drews Jensen Systems Network Manager CCNP, MCSE, MCP+I RWR Enterprises, Inc. [EMAIL PROTECTED] ~~~ http://www.RouterChief.com ~~~ NEED A JOB ??? http://www.oledrews.com/job ~~~ -Original Message- From: David Tran [mailto:[EMAIL PROTECTED]] Sent: Wednesday, November 21, 2001 9:38 AM To: [EMAIL PROTECTED] Subject: Re: PIX 501 [7:27002] My take on the PIX501 is that it is similar to Cisco router 2501 in that the hardware is FIXED. It only has two interfaces. If you want to add another segment to your network (i.e. DMZ) then you have no choice but to upgrade to either a 515 or higher. Other than that, the PIX IOS code is the same through out the PIX Series (with the exception that for the 501 and 506 you don't have redundancy (fail-over support). - Original Message - From: Alex Lee To: Sent: Wednesday, November 21, 2001 9:57 AM Subject: Re: PIX 501 [7:27002] Has anyone used this PIX yet ? There were some discussions about this topic 2 weeks(?) ago but none of the participants to the discussion has had any actual hand-on experience with the PIX 501 at that time. I got a quote from our supplier for a new PIX DES bundle with 10 user licence for less than $500.00. Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=27042t=27002 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Terminal Server with SSH - Not cheap are they? [7:27038]
Although this would be considered high maintenance, you could think about a FreeBSD box with a Cyclades serial card. (you can get enough to handle A LOT more than 16 serial ports if you need it) You could get the BSD box in a 1U format. It supports ssh and telnet. The problem here is you would have to jimmy up your own cables. (just know the pinouts from the serial port to the console) The cyclades has some RJ45 outputs you could use, but you would need the right pin outs. Then you can use cu to console in to any box. At 01:04 PM 11/21/01 -0500, Gaz wrote: Hi all, I currently use a 2511 RJ Terminal Server on a site with dial up access through a modem. Ten pieces of Cisco equipment are then configured using reverse telnet to their consoles. Someone's thrown a spanner in the works. We now need to use something such as SSH to the Terminal Server. The 2500 doesn't support it. The nearest I could think of was a 2610 with an NM16A (16 port Async) module. Unfortunately to run a decent version of code with DES (for SSH support) this needs a DRAM and Flash upgrade. There isn't as far as I can find, a 16 port RJ45 Asynchronous module (closer replacement for the 2511RJ), so we need two octal cables. Total Price around #4500 as opposed to around #1800 for the 2511RJ. 2511's always seemed a bit steep for this job, but using a 2610 for it seems to be even more so, even though the 2610 itself is only #1100. I think all this still only gives me SSH version 1. Does anybody have any ideas for suitable replacements. Space is a concern, but I am thinking about putting a 1U server in there to do the same job if I can source a 16 port serial card that fits, and I'm also looking at whether Shiva are still in the market. All ideas accepted gladly, but this does have to get past a security board. I don't want full solutions, just asking for brief ideas. Thanks, Gaz -Carroll Kong Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=27043t=27038 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: CIP attached router support for Frame Relay [7:26756]
Hi John do you know someone who has used this : remoteFRAD ---routerF/R link--router--CIP with non Cisco remotefrad , I m not sure it will work John Neiberger a icrit dans le message : [EMAIL PROTECTED] If a FRAD is connected to the router, wouldn't he need to use frame relay switching? If so, what does he do with the incoming frame relay encapsulated data when it hits the router with the CIP? We did something similar a couple of years ago where we used frame relay switching to get from the remote FRAD to a local FRAD, but it was the local FRAD that had the connection to the FEP. Is there a way that he could utilize the CIP connection to the mainframe? I'm assuming the network he desires looks like this: remoteFRAD ---routerF/R link--router--CIP In our case, it looked like this; remoteFRADrouter-F/R linkrouter-FRADFEP Regards, John MADMAN 11/19/01 2:47:49 PM Yes though you seem concerned about the presence of the CIP, the CIP has nothing to do for or against your frame connection. Dave Hehdili Nizar wrote: Hi , all Is it possible to connect RFC 1490 compliant frads through a frame relay network to a directly attached Cisco 7500 with CIP card attached to mainframe. Thanks -- David Madland Sr. Network Engineer CCIE# 2016 Qwest Communications Int. Inc. [EMAIL PROTECTED] 612-664-3367 Emotion should reflect reason not guide it Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=27045t=26756 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Terminal Server with SSH - Not cheap are they? [7:27038]
It's not THAT high maintenance... I mean...how often have yo urebooted any linux/bsd box? : ) But cyclades are not cheap! : ( Carroll Kong 11/21/01 01:28PM Although this would be considered high maintenance, you could think about a FreeBSD box with a Cyclades serial card. (you can get enough to handle A LOT more than 16 serial ports if you need it) You could get the BSD box in a 1U format. It supports ssh and telnet. The problem here is you would have to jimmy up your own cables. (just know the pinouts from the serial port to the console) The cyclades has some RJ45 outputs you could use, but you would need the right pin outs. Then you can use cu to console in to any box. At 01:04 PM 11/21/01 -0500, Gaz wrote: Hi all, I currently use a 2511 RJ Terminal Server on a site with dial up access through a modem. Ten pieces of Cisco equipment are then configured using reverse telnet to their consoles. Someone's thrown a spanner in the works. We now need to use something such as SSH to the Terminal Server. The 2500 doesn't support it. The nearest I could think of was a 2610 with an NM16A (16 port Async) module. Unfortunately to run a decent version of code with DES (for SSH support) this needs a DRAM and Flash upgrade. There isn't as far as I can find, a 16 port RJ45 Asynchronous module (closer replacement for the 2511RJ), so we need two octal cables. Total Price around #4500 as opposed to around #1800 for the 2511RJ. 2511's always seemed a bit steep for this job, but using a 2610 for it seems to be even more so, even though the 2610 itself is only #1100. I think all this still only gives me SSH version 1. Does anybody have any ideas for suitable replacements. Space is a concern, but I am thinking about putting a 1U server in there to do the same job if I can source a 16 port serial card that fits, and I'm also looking at whether Shiva are still in the market. All ideas accepted gladly, but this does have to get past a security board. I don't want full solutions, just asking for brief ideas. Thanks, Gaz -Carroll Kong Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=27044t=27038 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: PIX 501 [7:27002]
Thanks Don, Ole ~~~ Ole Drews Jensen Systems Network Manager CCNP, MCSE, MCP+I RWR Enterprises, Inc. [EMAIL PROTECTED] ~~~ http://www.RouterChief.com ~~~ NEED A JOB ??? http://www.oledrews.com/job ~~~ -Original Message- From: Don Claybrook [mailto:[EMAIL PROTECTED]] Sent: Wednesday, November 21, 2001 12:23 PM To: [EMAIL PROTECTED] Subject: Re: PIX 501 [7:27002] There's only one inside interface. The remaining 3 ports act as switched ports on the same network you assign to the inside interface. - Original Message - From: Ole Drews Jensen To: Sent: Wednesday, November 21, 2001 9:31 AM Subject: RE: PIX 501 [7:27002] Alex - you got me... I don't know if the 4 port switch works like one interface, of if you can use each of them as different subnets, but I hope to learn about that soon. Ole ~~~ Ole Drews Jensen Systems Network Manager CCNP, MCSE, MCP+I RWR Enterprises, Inc. [EMAIL PROTECTED] ~~~ http://www.RouterChief.com ~~~ NEED A JOB ??? http://www.oledrews.com/job ~~~ -Original Message- From: Alex Lee [mailto:[EMAIL PROTECTED]] Sent: Wednesday, November 21, 2001 11:01 AM To: [EMAIL PROTECTED] Subject: Re: PIX 501 [7:27002] I followed the link. The data sheet says : Quote Interfaces Console Port: RS-232 (RJ-45) 9600 baud Outside: Integrated 10BaseT port, half-duplex, RJ45 Inside: Integrated auto-sensing, auto-MDIX 4-port 10/100 switch, RJ45 Unquote The way I interpret this is that this PIX basically has two interfaces :- one outside (10BaseT port) and one inside but implemented as 4-port switch, which means you can only have two segments and no DMZ. Please correct me if I am wrong. Ole Drews Jensen wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... If you look here (watch for wordwrap) http://www.cisco.com/warp/public/cc/pd/fw/sqfw500/prodlit/px501_ds.htm You will see that it has 4 x 10/100 Mbps ethernet interfaces. This could be a newer model, but this one with 10 users and 3DES encryption license, can be bought from new for $495.- Hth, Ole ~~~ Ole Drews Jensen Systems Network Manager CCNP, MCSE, MCP+I RWR Enterprises, Inc. [EMAIL PROTECTED] ~~~ http://www.RouterChief.com ~~~ NEED A JOB ??? http://www.oledrews.com/job ~~~ -Original Message- From: David Tran [mailto:[EMAIL PROTECTED]] Sent: Wednesday, November 21, 2001 9:38 AM To: [EMAIL PROTECTED] Subject: Re: PIX 501 [7:27002] My take on the PIX501 is that it is similar to Cisco router 2501 in that the hardware is FIXED. It only has two interfaces. If you want to add another segment to your network (i.e. DMZ) then you have no choice but to upgrade to either a 515 or higher. Other than that, the PIX IOS code is the same through out the PIX Series (with the exception that for the 501 and 506 you don't have redundancy (fail-over support). - Original Message - From: Alex Lee To: Sent: Wednesday, November 21, 2001 9:57 AM Subject: Re: PIX 501 [7:27002] Has anyone used this PIX yet ? There were some discussions about this topic 2 weeks(?) ago but none of the participants to the discussion has had any actual hand-on experience with the PIX 501 at that time. I got a quote from our supplier for a new PIX DES bundle with 10 user licence for less than $500.00. Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=27046t=27002 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Terminal Server with SSH - Not cheap are they? [7:27038]
Why not just build a linux box with ssh support and telnet from there to the term server? Another step - but probably more secure...and a lot cheaper than another router. Berry At 01:04 PM 11/21/2001 -0500, you wrote: Hi all, I currently use a 2511 RJ Terminal Server on a site with dial up access through a modem. Ten pieces of Cisco equipment are then configured using reverse telnet to their consoles. Someone's thrown a spanner in the works. We now need to use something such as SSH to the Terminal Server. The 2500 doesn't support it. The nearest I could think of was a 2610 with an NM16A (16 port Async) module. Unfortunately to run a decent version of code with DES (for SSH support) this needs a DRAM and Flash upgrade. There isn't as far as I can find, a 16 port RJ45 Asynchronous module (closer replacement for the 2511RJ), so we need two octal cables. Total Price around #4500 as opposed to around #1800 for the 2511RJ. 2511's always seemed a bit steep for this job, but using a 2610 for it seems to be even more so, even though the 2610 itself is only #1100. I think all this still only gives me SSH version 1. Does anybody have any ideas for suitable replacements. Space is a concern, but I am thinking about putting a 1U server in there to do the same job if I can source a 16 port serial card that fits, and I'm also looking at whether Shiva are still in the market. All ideas accepted gladly, but this does have to get past a security board. I don't want full solutions, just asking for brief ideas. Thanks, Gaz Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=27047t=27038 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Terminal Server with SSH - Not cheap are they? [7:27038]
seems to be the consensus... : ) Although if you telnet from the linux box then you are just as insecure as you originally were... -Patrick Berry Mobley 11/21/01 01:53PM Why not just build a linux box with ssh support and telnet from there to the term server? Another step - but probably more secure...and a lot cheaper than another router. Berry At 01:04 PM 11/21/2001 -0500, you wrote: Hi all, I currently use a 2511 RJ Terminal Server on a site with dial up access through a modem. Ten pieces of Cisco equipment are then configured using reverse telnet to their consoles. Someone's thrown a spanner in the works. We now need to use something such as SSH to the Terminal Server. The 2500 doesn't support it. The nearest I could think of was a 2610 with an NM16A (16 port Async) module. Unfortunately to run a decent version of code with DES (for SSH support) this needs a DRAM and Flash upgrade. There isn't as far as I can find, a 16 port RJ45 Asynchronous module (closer replacement for the 2511RJ), so we need two octal cables. Total Price around #4500 as opposed to around #1800 for the 2511RJ. 2511's always seemed a bit steep for this job, but using a 2610 for it seems to be even more so, even though the 2610 itself is only #1100. I think all this still only gives me SSH version 1. Does anybody have any ideas for suitable replacements. Space is a concern, but I am thinking about putting a 1U server in there to do the same job if I can source a 16 port serial card that fits, and I'm also looking at whether Shiva are still in the market. All ideas accepted gladly, but this does have to get past a security board. I don't want full solutions, just asking for brief ideas. Thanks, Gaz Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=27048t=27038 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: CCIE One Day Lab FAIL [7:27050]
I don't type that fast...but I am trying to master the short version of the commands...but commands like sh ip int br messes me up on routers with BRI interfaces C. A. Foster Sr. Network Engineer x5910 -Original Message- From: Joseph Ezerski [mailto:[EMAIL PROTECTED]] Sent: Wednesday, November 21, 2001 12:15 PM To: 'McCallum, Robert'; ''Ccielab' (E-mail)'; 'Cisco@Groupstudy. Com (E-mail)'; 'George'; 'Kev'; 'kevin'; 'sandra'; 'sandra1'; 'Warren' Subject: RE: CCIE One Day Lab FAIL For those that finished with an hour or so to spare, do you mind posting what your estimated typing speed is? I know it sounds funny, but I work with someone who can type 120 words a minute and it seems to make all the difference in a tight time situation like the lab. Thanks in advance, -Joe -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of McCallum, Robert Sent: Tuesday, November 20, 2001 5:45 AM To: 'Ccielab' (E-mail); Cisco@Groupstudy. Com (E-mail); George; Kev; kevin; sandra; sandra1; Warren Subject: CCIE One Day Lab FAIL O.k. I sat the exam last week and failed but by not a lot. Silly mistakes killed me. For those of you who have still to experience the one day lab then please read ahead. Mostly everyone on this list stated that there was no time to do the lab or check anything. I found this to be so untrue it was unreal. Most people on the lab finished with an hour to go and I had more time than this to check and try to get the annoying things that didn't work to work (although I failed to get two things working)... So from that, my advice is if you are stuck on something, move on and work your way through the workbook. Once you get to the end you should have plenty time to fix (if you can) the problems you left. From my experience of Brussels everything was there. The proctors turned up when they should, answered any questions you asked, there were icons for each element you had to configure, there was paper, there were pens, pencils, sharpeners and erasers. Lunch was horrible although I don't think anyone was to bothered about lunch, so if you are a person who cannot go without lunch bring a packed lunch with you (just don't put your answers in your lunch box !!). All in all enjoy the experience and READ the questions (even the smallest detail). I am resetting in Feb next year and I reckon the pressure will really be on then. Most people fail 1st time anyway is what I can say this time but next time ?? Robert McCallum Ext 730 3448 DDI : 01415663448 Mobile : 07818002241 Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=27050t=27050 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Routers for sale (with configs prices) [7:27049]
Hello again, I have four cisco routers, four back-to-back serial cables and two AUI-RJ45 transceivers for sale. With each router I am throwing in mounting brackets and screws. Shipping costs will be added to the price. The following asking prices reflect what I paid for these items a year and a half ago. Serial cables: 55$ ea. Transceivers: 30$ ea. 2513: 850$ 2503: 800$ 2504: 775$ 2501: 750$ Items would be shipped from Sterling, Virginia. _ Get your FREE download of MSN Explorer at http://explorer.msn.com/intl.asp 2504: Cisco Internetwork Operating System Software IOS (tm) 2500 Software (C2500-JS-L), Version 11.2(17), RELEASE SOFTWARE (fc1) ROM: System Bootstrap, Version 5.2(8a), RELEASE SOFTWARE BOOTFLASH: 3000 Bootstrap Software (IGS-RXBOOT), Version 10.2(8a), RELEASE SOFTW ARE (fc1) cisco 2500 (68030) processor (revision D) with 16384K/2048K bytes of memory. Processor board ID 02320154, with hardware revision Basic Rate ISDN software, Version 1.0. 1 Token Ring/IEEE 802.5 interface(s) 2 Serial network interface(s) 1 ISDN Basic Rate interface(s) 32K bytes of non-volatile configuration memory. 8192K bytes of processor board System flash (Read ONLY) 2513: Cisco Internetwork Operating System Software IOS (tm) 2500 Software (C2500-JS-L), Version 11.2(17), RELEASE SOFTWARE (fc1) ROM: System Bootstrap, Version 11.0(10c), SOFTWARE BOOTFLASH: 3000 Bootstrap Software (IGS-BOOT-R), Version 11.0(10c), RELEASE SOFT WARE (fc1) cisco 2500 (68030) processor (revision M) with 14336K/2048K bytes of memory. Processor board ID 06065394, with hardware revision 1 Ethernet/IEEE 802.3 interface(s) 1 Token Ring/IEEE 802.5 interface(s) 2 Serial network interface(s) 32K bytes of non-volatile configuration memory. 8192K bytes of processor board System flash (Read ONLY) 2503: Cisco Internetwork Operating System Software IOS (tm) 2500 Software (C2500-I-L), Version 12.0(9), RELEASE SOFTWARE (fc1) ROM: System Bootstrap, Version 11.0(10c)XB1, PLATFORM SPECIFIC RELEASE SOFTWARE (fc1) BOOTFLASH: 3000 Bootstrap Software (IGS-BOOT-R), Version 11.0(10c)XB1, PLATFORM SPECIFIC RELEASE SOFTWARE (fc1) cisco 2500 (68030) processor (revision D) with 16384K/2048K bytes of memory. Processor board ID 01971680, with hardware revision Basic Rate ISDN software, Version 1.1. 1 Ethernet/IEEE 802.3 interface(s) 2 Serial network interface(s) 1 ISDN Basic Rate interface(s) 32K bytes of non-volatile configuration memory. 8192K bytes of processor board System flash (Read ONLY) 2501: Cisco Internetwork Operating System Software IOS (tm) 2500 Software (C2500-DS-L), Version 11.3(11a), RELEASE SOFTWARE (fc1) ROM: System Bootstrap, Version 5.2(5), RELEASE SOFTWARE BOOTFLASH: 3000 Bootstrap Software (IGS-RXBOOT), Version 10.2(5), RELEASE SOFTWA RE (fc1) cisco 2500 (68030) processor (revision D) with 16384K/2048K bytes of memory. Processor board ID 01998038, with hardware revision 1 Ethernet/IEEE 802.3 interface(s) 2 Serial network interface(s) 32K bytes of non-volatile configuration memory. 8192K bytes of processor board System flash (Read ONLY) Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=27049t=27049 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Routers for sale (with configs prices) [7:27049]
not to down you or anything...but that's a touch steep for the market... I would suggest maybe half of each one of those prices would be fair. -Patrick kevin mezei 11/21/01 02:07PM Hello again, I have four cisco routers, four back-to-back serial cables and two AUI-RJ45 transceivers for sale. With each router I am throwing in mounting brackets and screws. Shipping costs will be added to the price. The following asking prices reflect what I paid for these items a year and a half ago. Serial cables: 55$ ea. Transceivers: 30$ ea. 2513: 850$ 2503: 800$ 2504: 775$ 2501: 750$ Items would be shipped from Sterling, Virginia. _ Get your FREE download of MSN Explorer at http://explorer.msn.com/intl.asp 2504: Cisco Internetwork Operating System Software IOS (tm) 2500 Software (C2500-JS-L), Version 11.2(17), RELEASE SOFTWARE (fc1) ROM: System Bootstrap, Version 5.2(8a), RELEASE SOFTWARE BOOTFLASH: 3000 Bootstrap Software (IGS-RXBOOT), Version 10.2(8a), RELEASE SOFTW ARE (fc1) cisco 2500 (68030) processor (revision D) with 16384K/2048K bytes of memory. Processor board ID 02320154, with hardware revision Basic Rate ISDN software, Version 1.0. 1 Token Ring/IEEE 802.5 interface(s) 2 Serial network interface(s) 1 ISDN Basic Rate interface(s) 32K bytes of non-volatile configuration memory. 8192K bytes of processor board System flash (Read ONLY) 2513: Cisco Internetwork Operating System Software IOS (tm) 2500 Software (C2500-JS-L), Version 11.2(17), RELEASE SOFTWARE (fc1) ROM: System Bootstrap, Version 11.0(10c), SOFTWARE BOOTFLASH: 3000 Bootstrap Software (IGS-BOOT-R), Version 11.0(10c), RELEASE SOFT WARE (fc1) cisco 2500 (68030) processor (revision M) with 14336K/2048K bytes of memory. Processor board ID 06065394, with hardware revision 1 Ethernet/IEEE 802.3 interface(s) 1 Token Ring/IEEE 802.5 interface(s) 2 Serial network interface(s) 32K bytes of non-volatile configuration memory. 8192K bytes of processor board System flash (Read ONLY) 2503: Cisco Internetwork Operating System Software IOS (tm) 2500 Software (C2500-I-L), Version 12.0(9), RELEASE SOFTWARE (fc1) ROM: System Bootstrap, Version 11.0(10c)XB1, PLATFORM SPECIFIC RELEASE SOFTWARE (fc1) BOOTFLASH: 3000 Bootstrap Software (IGS-BOOT-R), Version 11.0(10c)XB1, PLATFORM SPECIFIC RELEASE SOFTWARE (fc1) cisco 2500 (68030) processor (revision D) with 16384K/2048K bytes of memory. Processor board ID 01971680, with hardware revision Basic Rate ISDN software, Version 1.1. 1 Ethernet/IEEE 802.3 interface(s) 2 Serial network interface(s) 1 ISDN Basic Rate interface(s) 32K bytes of non-volatile configuration memory. 8192K bytes of processor board System flash (Read ONLY) 2501: Cisco Internetwork Operating System Software IOS (tm) 2500 Software (C2500-DS-L), Version 11.3(11a), RELEASE SOFTWARE (fc1) ROM: System Bootstrap, Version 5.2(5), RELEASE SOFTWARE BOOTFLASH: 3000 Bootstrap Software (IGS-RXBOOT), Version 10.2(5), RELEASE SOFTWA RE (fc1) cisco 2500 (68030) processor (revision D) with 16384K/2048K bytes of memory. Processor board ID 01998038, with hardware revision 1 Ethernet/IEEE 802.3 interface(s) 2 Serial network interface(s) 32K bytes of non-volatile configuration memory. 8192K bytes of processor board System flash (Read ONLY) Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=27051t=27049 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: CCIE One Day Lab FAIL [7:27052]
Aliases are a God send for all you slow of fingers out there. ex. alias exec g sho ip int brief typing g will now issue show ip int brief to the cli Cheers, Bryan -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Courtney Alexander Foster Sent: Wednesday, November 21, 2001 2:13 PM To: Joseph Ezerski; McCallum, Robert; 'Ccielab' (E-mail); Cisco@Groupstudy. Com (E-mail); George; Kev; kevin; sandra; sandra1; Warren Subject: RE: CCIE One Day Lab FAIL I don't type that fast...but I am trying to master the short version of the commands...but commands like sh ip int br messes me up on routers with BRI interfaces C. A. Foster Sr. Network Engineer x5910 -Original Message- From: Joseph Ezerski [mailto:[EMAIL PROTECTED]] Sent: Wednesday, November 21, 2001 12:15 PM To: 'McCallum, Robert'; ''Ccielab' (E-mail)'; 'Cisco@Groupstudy. Com (E-mail)'; 'George'; 'Kev'; 'kevin'; 'sandra'; 'sandra1'; 'Warren' Subject: RE: CCIE One Day Lab FAIL For those that finished with an hour or so to spare, do you mind posting what your estimated typing speed is? I know it sounds funny, but I work with someone who can type 120 words a minute and it seems to make all the difference in a tight time situation like the lab. Thanks in advance, -Joe -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of McCallum, Robert Sent: Tuesday, November 20, 2001 5:45 AM To: 'Ccielab' (E-mail); Cisco@Groupstudy. Com (E-mail); George; Kev; kevin; sandra; sandra1; Warren Subject: CCIE One Day Lab FAIL O.k. I sat the exam last week and failed but by not a lot. Silly mistakes killed me. For those of you who have still to experience the one day lab then please read ahead. Mostly everyone on this list stated that there was no time to do the lab or check anything. I found this to be so untrue it was unreal. Most people on the lab finished with an hour to go and I had more time than this to check and try to get the annoying things that didn't work to work (although I failed to get two things working)... So from that, my advice is if you are stuck on something, move on and work your way through the workbook. Once you get to the end you should have plenty time to fix (if you can) the problems you left. From my experience of Brussels everything was there. The proctors turned up when they should, answered any questions you asked, there were icons for each element you had to configure, there was paper, there were pens, pencils, sharpeners and erasers. Lunch was horrible although I don't think anyone was to bothered about lunch, so if you are a person who cannot go without lunch bring a packed lunch with you (just don't put your answers in your lunch box !!). All in all enjoy the experience and READ the questions (even the smallest detail). I am resetting in Feb next year and I reckon the pressure will really be on then. Most people fail 1st time anyway is what I can say this time but next time ?? Robert McCallum Ext 730 3448 DDI : 01415663448 Mobile : 07818002241 Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=27052t=27052 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
2501 LANFRAD-FX [7:27053]
Can someone tell me what the differences are between and the 2501 and the 2501-LANFRAD-FX? Also, how would I upgrade a LANFRAD to a straight 2501? Thanx in advance. Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=27053t=27053 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
critical issue on 6509 redundancy (second email - IGNORE the [7:27054]
hi heather, we are grappling w/ an issue regarding the 6509s that will comprise the interwan... is not entirely clear on the following issue: are the msfcs operationally independent OR can one msfc backup the other msfc? our requirement is that our dual supervisor 6509 has ONE router, w/ one msfc functional at a given time that they be IDENTICAL (this would be analagous to the 75xx environment where we have dual rsp4s, where one backs up the other)...we have not been able to test anything yet except for reloading msfcs...this particular 6509 is running 12.1(4)e1 it accepts identical ip address(es) using the alt ip but brian smith configured a 6509 w/ dual msfcs using 12.1(8) it does NOT accept an identical alternate ip address (which leads one to believe that a dual sup, dual msfc can only function as two INDEPENDENT routers) here is some sho output from the supervisor msfc, followed by the config for our 6509 @ irvine: cairvndts sh sys high Highavailability: enabled Highavailability versioning: disabled Highavailability Operational-status: ON cairvndtrsh red Designated Router: 1 Non-designated Router: 2 Redundancy Status: designated Config Sync AdminStatus : enabled Config Sync RuntimeStatus: enabled -- -- --- hostname cairvndtr (msfc) Current configuration : 2171 bytes ! version 12.1 service timestamps debug uptime service timestamps log uptime service password-encryption ! hostname cairvndtr ! boot system flash bootflash:c6msfc2-jsv-mz.121-4.E1 enable password 7 070C285F4D06 ! ip subnet-zero no ip domain-lookup ! redundancy high-availability config-sync cns event-service server ! ! ! interface Loopback0 ip address 10.254.254.1 255.255.255.252 alt ip address 10.254.254.1 255.255.255.252 no ip redirects no ip unreachables ! interface ATM4/0/0 description OC-3 #1 link to uscaidcatm - 2c4 OR MGX no ip address atm pvc 1 0 5 qsaal atm pvc 2 0 16 ilmi no atm ilmi-keepalive ! interface ATM4/0/0.850 point-to-point description IBGP link to ohdblndtr - a4/0/0.1050 ip address 10.254.250.9 255.255.255.252 ip route-cache same-interface pvc 8/50 protocol ip 10.254.250.10 broadcast ! ! interface ATM5/0/0 description OC-3 #2 link to uscaidcatm - 1b4 OR MGX no ip address atm pvc 1 0 5 qsaal atm pvc 2 0 16 ilmi no atm ilmi-keepalive ! interface ATM5/0/0.650 point-to-point description IBGP link to nyorbgdtr - a5/0/0.1050 ip address 10.254.250.1 255.255.255.252 ip route-cache same-interface pvc 6/50 protocol ip 10.254.250.2 broadcast ! ! interface Vlan254 description eBGP GE link to cairvindcr - port TBD ip address 10.254.251.1 255.255.255.252 alt ip address 10.254.251.1 255.255.255.252 ! router ospf 1 log-adjacency-changes network 10.254.250.0 0.0.0.3 area 0 network 10.254.250.8 0.0.0.3 area 0 network 10.254.251.0 0.0.0.3 area 0 network 10.254.254.0 0.0.0.3 area 0 ! router bgp 65000 bgp log-neighbor-changes neighbor 10.254.254.5 remote-as 65000 neighbor 10.254.254.5 update-source Loopback0 neighbor 10.254.254.5 soft-reconfiguration inbound neighbor 10.254.254.9 remote-as 65000 neighbor 10.254.254.9 update-source Loopback0 neighbor 10.254.254.9 soft-reconfiguration inbound ! ip classless no ip http server ! ! ! line con 0 transport input none line vty 0 4 exec-timeout 0 0 password 7 094F471A1A0A login length 0 transport input lat pad mop telnet rlogin udptn nasi line vty 5 15 password 7 14141B180F0B login transport input lat pad mop telnet rlogin udptn nasi ! end hostname cairvndts (supervisor engine) # * NON-DEFAULT CONFIGURATION * ! ! #time: Wed Oct 31 2001, 16:31:18 PST ! #version 6.1(1d) ! set password $2$MNDC$Sljq9eU1aFjRG0ymtvppi0 set enablepass $2$ZAXN$pzTXlahznEDjRDM1lUwiD1 set prompt cairvndts set banner motd ^C This is the future InterWAN 2.0 Core Router based in sunny Southern California!^C ! #errordetection set errordetection portcounter enable ! #system set system highavailability enable ! #! #vtp set vtp domain irvine-interwan set vtp mode transparent set vlan 1 name default type ethernet mtu 1500 said 11 state active set vlan 254 name eBGP-10.254.251.0/30 type ethernet mtu 1500 said 100254 state active set vlan 1002 name fddi-default type fddi mtu 1500 said 101002 state active set vlan 1004 name fddinet-default type fddinet mtu 1500 said 101004 state active stp ieee set vlan 1005 name trnet-default type trbrf mtu 1500 said 101005 state active stp ibm set vlan 1003 name token-ring-default type trcrf mtu 1500 said 101003 state active mode srb aremaxhop 7 stemaxhop 7 backupcrf off ! #ntp set timezone PST -8 0 ! #set boot command set boot
RE: PIX 501 [7:27002]
On Apr 13, 5:42am, Ole Drews Jensen wrote: } } If you look here (watch for wordwrap) } } http://www.cisco.com/warp/public/cc/pd/fw/sqfw500/prodlit/px501_ds.htm } } You will see that it has 4 x 10/100 Mbps ethernet interfaces. Read the description a little more closely. You will see, ...its integrated, high-performance four-port 10/100-Mbps switch. In other words, it only has two interfaces. One of them just happens to be a four port 10/100 switch (most likely unmanaged). }-- End of excerpt from Ole Drews Jensen Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=27055t=27002 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: PIX 501 [7:27002]
Yes I am starting to realize that now. I would've been nice though... :-) Have a good TG. Ole ~~~ Ole Drews Jensen Systems Network Manager CCNP, MCSE, MCP+I RWR Enterprises, Inc. [EMAIL PROTECTED] ~~~ http://www.RouterChief.com ~~~ NEED A JOB ??? http://www.oledrews.com/job ~~~ -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] Sent: Wednesday, November 21, 2001 1:43 PM To: Ole Drews Jensen; [EMAIL PROTECTED] Subject: RE: PIX 501 [7:27002] On Apr 13, 5:42am, Ole Drews Jensen wrote: } } If you look here (watch for wordwrap) } } http://www.cisco.com/warp/public/cc/pd/fw/sqfw500/prodlit/px501_ds.htm } } You will see that it has 4 x 10/100 Mbps ethernet interfaces. Read the description a little more closely. You will see, ...its integrated, high-performance four-port 10/100-Mbps switch. In other words, it only has two interfaces. One of them just happens to be a four port 10/100 switch (most likely unmanaged). }-- End of excerpt from Ole Drews Jensen Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=27056t=27002 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: PIX 501 [7:27002]
Hello, Mine just showed up today! I got the 3DES/10 user bundle and am configuring it as I write this. I will be deploying it at my home behind my Cisco 827 ADSL Router. So far it feels just like a 506, came with 6.11 loaded, anxious to get it up and running so I may configure a VPN to another PIX. Let me know if I can be of any assistance, I've configured several 2 interface 506's and 515's, simple NAT configurations, but have not worked with IPSec, etc. yet. I am working on MCNS right now. - Original Message - From: Alex Lee To: Sent: Wednesday, November 21, 2001 6:57 AM Subject: Re: PIX 501 [7:27002] Has anyone used this PIX yet ? There were some discussions about this topic 2 weeks(?) ago but none of the participants to the discussion has had any actual hand-on experience with the PIX 501 at that time. I got a quote from our supplier for a new PIX DES bundle with 10 user licence for less than $500.00. Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=27057t=27002 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Terminal Server with SSH - Not cheap are they? [7:27038]
High maintenance as in, there is a hdd, if it fails it is a pain in the butt to get your colocation guy to pull it out. Or have fun flying down there. It will cost money to do that, plus hdds will more likely fail than say a flash card. You COULD run FreeBSD on a flash card, but ultimately, doing all of this, configuring the system so it can handle a cyclades serial card, is a lot of work especially for people new to unix. I do not even want to get started on updating the software and what not. Not a problem for a unix administrator, but I get a feeling (sadly) there are very few good multi-classed hybrids who know unix and cisco. This is why people buy precanned solutions. So this is why I call it high maintenance. There is also a high foot print (learning curve) to get it started compared to the Cisco product which he already knows how to use fluently. Cyclades sells serial cards AND terminal servers. He might be able to just buy one of their terminal servers for about $2200 each. I never used them though. The serial cards he needs is maybe (with the 16 port box) about $800. Add that to a rackmount 1U PC using cheap parts for about $600, he is only at $1400 with a flexible box. Add the cost factor of setting it up, that is going to vary per builder's skill level in Unix and building PCs. Pricing is all relative. Well, depending on how much you trust your switch and if you can prevent arp spoofing, telnet to an cisco 2511RJ on the same switch might NOT be so bad. Then we are talking about maybe $500-600 (checkout dell's 1U racks). seems to be the consensus... : ) Although if you telnet from the linux box then you are just as insecure as you originally were... -Patrick Berry Mobley 11/21/01 01:53PM Why not just build a linux box with ssh support and telnet from there to the term server? Another step - but probably more secure...and a lot cheaper than another router. Berry At 01:42 PM 11/21/01 -0500, Patrick Ramsey wrote: It's not THAT high maintenance... I mean...how often have yo urebooted any linux/bsd box? : ) But cyclades are not cheap! : ( Carroll Kong 11/21/01 01:28PM Although this would be considered high maintenance, you could think about a FreeBSD box with a Cyclades serial card. (you can get enough to handle A LOT more than 16 serial ports if you need it) You could get the BSD box in a 1U format. It supports ssh and telnet. The problem here is you would have to jimmy up your own cables. (just know the pinouts from the serial port to the console) The cyclades has some RJ45 outputs you could use, but you would need the right pin outs. Then you can use cu to console in to any box. At 01:04 PM 11/21/01 -0500, Gaz wrote: Hi all, I currently use a 2511 RJ Terminal Server on a site with dial up access through a modem. Ten pieces of Cisco equipment are then configured using reverse telnet to their consoles. Someone's thrown a spanner in the works. We now need to use something such as SSH to the Terminal Server. The 2500 doesn't support it. The nearest I could think of was a 2610 with an NM16A (16 port Async) module. Unfortunately to run a decent version of code with DES (for SSH support) this needs a DRAM and Flash upgrade. There isn't as far as I can find, a 16 port RJ45 Asynchronous module (closer replacement for the 2511RJ), so we need two octal cables. Total Price around #4500 as opposed to around #1800 for the 2511RJ. 2511's always seemed a bit steep for this job, but using a 2610 for it seems to be even more so, even though the 2610 itself is only #1100. I think all this still only gives me SSH version 1. Does anybody have any ideas for suitable replacements. Space is a concern, but I am thinking about putting a 1U server in there to do the same job if I can source a 16 port serial card that fits, and I'm also looking at whether Shiva are still in the market. All ideas accepted gladly, but this does have to get past a security board. I don't want full solutions, just asking for brief ideas. Thanks, Gaz -Carroll Kong -Carroll Kong Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=27058t=27038 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
accessing remote router [7:27060]
Hello Everyone: I have remote router which has telnet password set but there is no enable mode password. I can telnet successfully enter user mode but if I try to enter enable mode it gives error. router_1enable % No password set Is there any way to access this router remotely without setting enable password on router? Thanks -hansraj Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=27060t=27060 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Boson Tests border on Unethical [7:26639]
The basic analysis here seems to make sense. But there is an implied assumption that doesn't. There will always be some people that take advantage of a situation, but the majority of people do not. Our society and economy, to say nothing of complex organizations in general, could not possibly function as they do unless that were the case. Boson has always suggested to me that tests should be written based on the stated exam criteria on CCO and the subjects covered in associated cisco curricula. YMMV. Jason - Boson author (bcmsn1, bscn2, bsci, quizware ccie) Kaminski, Shawn G wrote: It's easy to see what's happening here. All of Boson's tests are done by different authors. Each author is going to try like hell to get their questions as close as possible to the questions on the actual exams, if not right from the exams. Boson doesn't care because they state right in their author contract that they are not responsible for exams that contain questions that break the NDA. The author will be held responsible. It's not like Boson's going to double-check every authored exam for NDA violations. Anyway, the closer the author comes to the actual exam questions, the more exams he'll sell when word gets around that, for example, Boson Test #2 is the one you need to get. However, Boson isn't doing anything different than any other company selling certification practice exams. It's a ridiculously huge, cut-throat, and competitive market out there for study materials. Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=27061t=26639 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Routers for sale (with configs prices) [7:27049]
yeah, $30 for a transceiver. I don't think you'll find the suckers your looking for on this list. kevin mezei wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... Hello again, I have four cisco routers, four back-to-back serial cables and two AUI-RJ45 transceivers for sale. With each router I am throwing in mounting brackets and screws. Shipping costs will be added to the price. The following asking prices reflect what I paid for these items a year and a half ago. Serial cables: 55$ ea. Transceivers: 30$ ea. 2513: 850$ 2503: 800$ 2504: 775$ 2501: 750$ Items would be shipped from Sterling, Virginia. _ Get your FREE download of MSN Explorer at http://explorer.msn.com/intl.asp 2504: Cisco Internetwork Operating System Software IOS (tm) 2500 Software (C2500-JS-L), Version 11.2(17), RELEASE SOFTWARE (fc1) ROM: System Bootstrap, Version 5.2(8a), RELEASE SOFTWARE BOOTFLASH: 3000 Bootstrap Software (IGS-RXBOOT), Version 10.2(8a), RELEASE SOFTW ARE (fc1) cisco 2500 (68030) processor (revision D) with 16384K/2048K bytes of memory. Processor board ID 02320154, with hardware revision Basic Rate ISDN software, Version 1.0. 1 Token Ring/IEEE 802.5 interface(s) 2 Serial network interface(s) 1 ISDN Basic Rate interface(s) 32K bytes of non-volatile configuration memory. 8192K bytes of processor board System flash (Read ONLY) 2513: Cisco Internetwork Operating System Software IOS (tm) 2500 Software (C2500-JS-L), Version 11.2(17), RELEASE SOFTWARE (fc1) ROM: System Bootstrap, Version 11.0(10c), SOFTWARE BOOTFLASH: 3000 Bootstrap Software (IGS-BOOT-R), Version 11.0(10c), RELEASE SOFT WARE (fc1) cisco 2500 (68030) processor (revision M) with 14336K/2048K bytes of memory. Processor board ID 06065394, with hardware revision 1 Ethernet/IEEE 802.3 interface(s) 1 Token Ring/IEEE 802.5 interface(s) 2 Serial network interface(s) 32K bytes of non-volatile configuration memory. 8192K bytes of processor board System flash (Read ONLY) 2503: Cisco Internetwork Operating System Software IOS (tm) 2500 Software (C2500-I-L), Version 12.0(9), RELEASE SOFTWARE (fc1) ROM: System Bootstrap, Version 11.0(10c)XB1, PLATFORM SPECIFIC RELEASE SOFTWARE (fc1) BOOTFLASH: 3000 Bootstrap Software (IGS-BOOT-R), Version 11.0(10c)XB1, PLATFORM SPECIFIC RELEASE SOFTWARE (fc1) cisco 2500 (68030) processor (revision D) with 16384K/2048K bytes of memory. Processor board ID 01971680, with hardware revision Basic Rate ISDN software, Version 1.1. 1 Ethernet/IEEE 802.3 interface(s) 2 Serial network interface(s) 1 ISDN Basic Rate interface(s) 32K bytes of non-volatile configuration memory. 8192K bytes of processor board System flash (Read ONLY) 2501: Cisco Internetwork Operating System Software IOS (tm) 2500 Software (C2500-DS-L), Version 11.3(11a), RELEASE SOFTWARE (fc1) ROM: System Bootstrap, Version 5.2(5), RELEASE SOFTWARE BOOTFLASH: 3000 Bootstrap Software (IGS-RXBOOT), Version 10.2(5), RELEASE SOFTWA RE (fc1) cisco 2500 (68030) processor (revision D) with 16384K/2048K bytes of memory. Processor board ID 01998038, with hardware revision 1 Ethernet/IEEE 802.3 interface(s) 2 Serial network interface(s) 32K bytes of non-volatile configuration memory. 8192K bytes of processor board System flash (Read ONLY) Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=27062t=27049 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: CCIE One Day Lab FAIL [7:27063]
You would have to waste a lot of time setting aliases on all the routers C. A. Foster Sr. Network Engineer x5910 -Original Message- From: Bryan Ginman [mailto:[EMAIL PROTECTED]] Sent: Wednesday, November 21, 2001 2:27 PM To: Courtney Alexander Foster; Joseph Ezerski; McCallum, Robert; 'Ccielab' (E-mail); Cisco@Groupstudy. Com (E-mail); George; Kev; kevin; sandra; sandra1; Warren Subject: RE: CCIE One Day Lab FAIL Aliases are a God send for all you slow of fingers out there. ex. alias exec g sho ip int brief typing g will now issue show ip int brief to the cli Cheers, Bryan -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Courtney Alexander Foster Sent: Wednesday, November 21, 2001 2:13 PM To: Joseph Ezerski; McCallum, Robert; 'Ccielab' (E-mail); Cisco@Groupstudy. Com (E-mail); George; Kev; kevin; sandra; sandra1; Warren Subject: RE: CCIE One Day Lab FAIL I don't type that fast...but I am trying to master the short version of the commands...but commands like sh ip int br messes me up on routers with BRI interfaces C. A. Foster Sr. Network Engineer x5910 -Original Message- From: Joseph Ezerski [mailto:[EMAIL PROTECTED]] Sent: Wednesday, November 21, 2001 12:15 PM To: 'McCallum, Robert'; ''Ccielab' (E-mail)'; 'Cisco@Groupstudy. Com (E-mail)'; 'George'; 'Kev'; 'kevin'; 'sandra'; 'sandra1'; 'Warren' Subject: RE: CCIE One Day Lab FAIL For those that finished with an hour or so to spare, do you mind posting what your estimated typing speed is? I know it sounds funny, but I work with someone who can type 120 words a minute and it seems to make all the difference in a tight time situation like the lab. Thanks in advance, -Joe -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of McCallum, Robert Sent: Tuesday, November 20, 2001 5:45 AM To: 'Ccielab' (E-mail); Cisco@Groupstudy. Com (E-mail); George; Kev; kevin; sandra; sandra1; Warren Subject: CCIE One Day Lab FAIL O.k. I sat the exam last week and failed but by not a lot. Silly mistakes killed me. For those of you who have still to experience the one day lab then please read ahead. Mostly everyone on this list stated that there was no time to do the lab or check anything. I found this to be so untrue it was unreal. Most people on the lab finished with an hour to go and I had more time than this to check and try to get the annoying things that didn't work to work (although I failed to get two things working)... So from that, my advice is if you are stuck on something, move on and work your way through the workbook. Once you get to the end you should have plenty time to fix (if you can) the problems you left. From my experience of Brussels everything was there. The proctors turned up when they should, answered any questions you asked, there were icons for each element you had to configure, there was paper, there were pens, pencils, sharpeners and erasers. Lunch was horrible although I don't think anyone was to bothered about lunch, so if you are a person who cannot go without lunch bring a packed lunch with you (just don't put your answers in your lunch box !!). All in all enjoy the experience and READ the questions (even the smallest detail). I am resetting in Feb next year and I reckon the pressure will really be on then. Most people fail 1st time anyway is what I can say this time but next time ?? Robert McCallum Ext 730 3448 DDI : 01415663448 Mobile : 07818002241 Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=27063t=27063 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
MCNS Question [7:27064]
It would be greatly appreciated if anyone could give me a hand on this. I have read the MCNS Ciscopress several times (in particular between Chapter 15 to 18), yet I am still very confused about this: For IKE Authentication, I understand that one can use either: pre-shared keys = crypto isakmp policy 100 authentication pre-share or RSA. = (more scalable than Pre-shared key) crypto isakmp policy 100 authentication rsa-sig However, on RSA, what is the difference between RSA encrypted nonces and RSA Signatures? Thanks in advance. Best Regards, Hunt Lee IP Solution Analyst Cable and Wireless Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=27064t=27064 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Routers for sale (with configs prices) [7:27049]
Wow! I got my stuff from a company off the web much cheaper than that. Sorry to be a party pooper, but I have to agree with some of the other folks who've replied to this. kevin mezei wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... Hello again, I have four cisco routers, four back-to-back serial cables and two AUI-RJ45 transceivers for sale. With each router I am throwing in mounting brackets and screws. Shipping costs will be added to the price. The following asking prices reflect what I paid for these items a year and a half ago. Serial cables: 55$ ea. Transceivers: 30$ ea. 2513: 850$ 2503: 800$ 2504: 775$ 2501: 750$ Items would be shipped from Sterling, Virginia. _ Get your FREE download of MSN Explorer at http://explorer.msn.com/intl.asp 2504: Cisco Internetwork Operating System Software IOS (tm) 2500 Software (C2500-JS-L), Version 11.2(17), RELEASE SOFTWARE (fc1) ROM: System Bootstrap, Version 5.2(8a), RELEASE SOFTWARE BOOTFLASH: 3000 Bootstrap Software (IGS-RXBOOT), Version 10.2(8a), RELEASE SOFTW ARE (fc1) cisco 2500 (68030) processor (revision D) with 16384K/2048K bytes of memory. Processor board ID 02320154, with hardware revision Basic Rate ISDN software, Version 1.0. 1 Token Ring/IEEE 802.5 interface(s) 2 Serial network interface(s) 1 ISDN Basic Rate interface(s) 32K bytes of non-volatile configuration memory. 8192K bytes of processor board System flash (Read ONLY) 2513: Cisco Internetwork Operating System Software IOS (tm) 2500 Software (C2500-JS-L), Version 11.2(17), RELEASE SOFTWARE (fc1) ROM: System Bootstrap, Version 11.0(10c), SOFTWARE BOOTFLASH: 3000 Bootstrap Software (IGS-BOOT-R), Version 11.0(10c), RELEASE SOFT WARE (fc1) cisco 2500 (68030) processor (revision M) with 14336K/2048K bytes of memory. Processor board ID 06065394, with hardware revision 1 Ethernet/IEEE 802.3 interface(s) 1 Token Ring/IEEE 802.5 interface(s) 2 Serial network interface(s) 32K bytes of non-volatile configuration memory. 8192K bytes of processor board System flash (Read ONLY) 2503: Cisco Internetwork Operating System Software IOS (tm) 2500 Software (C2500-I-L), Version 12.0(9), RELEASE SOFTWARE (fc1) ROM: System Bootstrap, Version 11.0(10c)XB1, PLATFORM SPECIFIC RELEASE SOFTWARE (fc1) BOOTFLASH: 3000 Bootstrap Software (IGS-BOOT-R), Version 11.0(10c)XB1, PLATFORM SPECIFIC RELEASE SOFTWARE (fc1) cisco 2500 (68030) processor (revision D) with 16384K/2048K bytes of memory. Processor board ID 01971680, with hardware revision Basic Rate ISDN software, Version 1.1. 1 Ethernet/IEEE 802.3 interface(s) 2 Serial network interface(s) 1 ISDN Basic Rate interface(s) 32K bytes of non-volatile configuration memory. 8192K bytes of processor board System flash (Read ONLY) 2501: Cisco Internetwork Operating System Software IOS (tm) 2500 Software (C2500-DS-L), Version 11.3(11a), RELEASE SOFTWARE (fc1) ROM: System Bootstrap, Version 5.2(5), RELEASE SOFTWARE BOOTFLASH: 3000 Bootstrap Software (IGS-RXBOOT), Version 10.2(5), RELEASE SOFTWA RE (fc1) cisco 2500 (68030) processor (revision D) with 16384K/2048K bytes of memory. Processor board ID 01998038, with hardware revision 1 Ethernet/IEEE 802.3 interface(s) 2 Serial network interface(s) 32K bytes of non-volatile configuration memory. 8192K bytes of processor board System flash (Read ONLY) Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=27065t=27049 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: FastEtherchannel. from cat 6009 to a 7513 with 2 fast e [7:27066]
I did check the archives on this one. There has been much talk of fast ether channel for sure. But I did not find a definitive answer, so please humor me for this question on Fast Ether channel. I am configuring Fast Ether channel from a 7513 with 2 fast e ports to a cat 6009 with 2 fast e ports. I figure it should be an easy config, with a single vlan 1 on the cat 6009. So here is a config that i think will work. 7513# int port-channel 1 ip address x.x.x.x 255.255.254.0 ipx network XX ip helper-address x.x.x.x (dhcp server) int fa 0/0 channel-group 1 int fa0/1 channel-group 1 cat 6009# set port channel x/x-x auto (connected ports to router with cat5 straight through cables) that should do it? anythoughts would be very appreciated! thanks. jason Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=27066t=27066 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: CCIE One Day Lab FAIL [7:27067]
Cut and paste baby! Cut once, paste many. -Original Message- From: Courtney Alexander Foster [mailto:[EMAIL PROTECTED]] Sent: Wednesday, November 21, 2001 1:54 PM To: Bryan Ginman; Joseph Ezerski; McCallum, Robert; 'Ccielab' (E-mail); Cisco@Groupstudy. Com (E-mail); George; Kev; kevin; sandra; sandra1; Warren Subject: RE: CCIE One Day Lab FAIL You would have to waste a lot of time setting aliases on all the routers C. A. Foster Sr. Network Engineer x5910 -Original Message- From: Bryan Ginman [mailto:[EMAIL PROTECTED]] Sent: Wednesday, November 21, 2001 2:27 PM To: Courtney Alexander Foster; Joseph Ezerski; McCallum, Robert; 'Ccielab' (E-mail); Cisco@Groupstudy. Com (E-mail); George; Kev; kevin; sandra; sandra1; Warren Subject: RE: CCIE One Day Lab FAIL Aliases are a God send for all you slow of fingers out there. ex. alias exec g sho ip int brief typing g will now issue show ip int brief to the cli Cheers, Bryan -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Courtney Alexander Foster Sent: Wednesday, November 21, 2001 2:13 PM To: Joseph Ezerski; McCallum, Robert; 'Ccielab' (E-mail); Cisco@Groupstudy. Com (E-mail); George; Kev; kevin; sandra; sandra1; Warren Subject: RE: CCIE One Day Lab FAIL I don't type that fast...but I am trying to master the short version of the commands...but commands like sh ip int br messes me up on routers with BRI interfaces C. A. Foster Sr. Network Engineer x5910 -Original Message- From: Joseph Ezerski [mailto:[EMAIL PROTECTED]] Sent: Wednesday, November 21, 2001 12:15 PM To: 'McCallum, Robert'; ''Ccielab' (E-mail)'; 'Cisco@Groupstudy. Com (E-mail)'; 'George'; 'Kev'; 'kevin'; 'sandra'; 'sandra1'; 'Warren' Subject: RE: CCIE One Day Lab FAIL For those that finished with an hour or so to spare, do you mind posting what your estimated typing speed is? I know it sounds funny, but I work with someone who can type 120 words a minute and it seems to make all the difference in a tight time situation like the lab. Thanks in advance, -Joe -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of McCallum, Robert Sent: Tuesday, November 20, 2001 5:45 AM To: 'Ccielab' (E-mail); Cisco@Groupstudy. Com (E-mail); George; Kev; kevin; sandra; sandra1; Warren Subject: CCIE One Day Lab FAIL O.k. I sat the exam last week and failed but by not a lot. Silly mistakes killed me. For those of you who have still to experience the one day lab then please read ahead. Mostly everyone on this list stated that there was no time to do the lab or check anything. I found this to be so untrue it was unreal. Most people on the lab finished with an hour to go and I had more time than this to check and try to get the annoying things that didn't work to work (although I failed to get two things working)... So from that, my advice is if you are stuck on something, move on and work your way through the workbook. Once you get to the end you should have plenty time to fix (if you can) the problems you left. From my experience of Brussels everything was there. The proctors turned up when they should, answered any questions you asked, there were icons for each element you had to configure, there was paper, there were pens, pencils, sharpeners and erasers. Lunch was horrible although I don't think anyone was to bothered about lunch, so if you are a person who cannot go without lunch bring a packed lunch with you (just don't put your answers in your lunch box !!). All in all enjoy the experience and READ the questions (even the smallest detail). I am resetting in Feb next year and I reckon the pressure will really be on then. Most people fail 1st time anyway is what I can say this time but next time ?? Robert McCallum Ext 730 3448 DDI : 01415663448 Mobile : 07818002241 Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=27067t=27067 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: accessing remote router [7:27060]
If you have it enabled, you can http to the router and set the enable password. Otherwise call someone at the site -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Hansraj Patil Sent: Wednesday, November 21, 2001 2:18 PM To: [EMAIL PROTECTED] Subject: accessing remote router [7:27060] Hello Everyone: I have remote router which has telnet password set but there is no enable mode password. I can telnet successfully enter user mode but if I try to enter enable mode it gives error. router_1enable % No password set Is there any way to access this router remotely without setting enable password on router? Thanks -hansraj Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=27068t=27060 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Looking for CCIE LAB Study Group in Milwaukee, Wisconsin [7:27069]
If anyone knows of (or is interested in forming one) a study group for the CCIE Lab in Milwaukee, Wisconsin, feel free to email me. John _ Get your FREE download of MSN Explorer at http://explorer.msn.com/intl.asp Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=27069t=27069 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Off topic: Xyplex Boot Image [7:27070]
I have two Xyplex terminal servers, an 800 and a 1500. I don't have any operating software for them. Does anyone have the software or know where I can get copies? Thanks. Ken Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=27070t=27070 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Terminal Server with SSH - Not cheap are they? [7:27038]
Patrick, I had to reboot my two servers four times. That being said, they were like turbo 486 machines with 32MB (or was it 64MB) RAM and 1GB drives. The operating system was Red Hat version something-or-other. They were the smallest machines I could get my hands on at the time. They ran DNS for the entire organization, both internal and external. I only rebooted them when BIND would stop working because I fiddled with it so much. BTW, that 4 (twice each) times was over a 2 year period. Gotta love Linux. Ken Patrick Ramsey 11/21/01 12:41PM It's not THAT high maintenance... I mean...how often have yo urebooted any linux/bsd box? : ) But cyclades are not cheap! : ( [snip] Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=27072t=27038 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: accessing remote router [7:27060]
That worked!! I guess http is set be default on 2600 routers. Thanks a lot for your help. -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] Sent: Wednesday, November 21, 2001 1:44 PM To: [EMAIL PROTECTED] Subject: RE: accessing remote router [7:27060] If you have it enabled, you can http to the router and set the enable password. Otherwise call someone at the site -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Hansraj Patil Sent: Wednesday, November 21, 2001 2:18 PM To: [EMAIL PROTECTED] Subject: accessing remote router [7:27060] Hello Everyone: I have remote router which has telnet password set but there is no enable mode password. I can telnet successfully enter user mode but if I try to enter enable mode it gives error. router_1enable % No password set Is there any way to access this router remotely without setting enable password on router? Thanks -hansraj Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=27071t=27060 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: FastEtherchannel. from cat 6009 to a 7513 with 2 fast e [7:27073]
Off the top of my noodle that looks good Happy Turkey Day!! MADMAN Bullock, Jason wrote: I did check the archives on this one. There has been much talk of fast ether channel for sure. But I did not find a definitive answer, so please humor me for this question on Fast Ether channel. I am configuring Fast Ether channel from a 7513 with 2 fast e ports to a cat 6009 with 2 fast e ports. I figure it should be an easy config, with a single vlan 1 on the cat 6009. So here is a config that i think will work. 7513# int port-channel 1 ip address x.x.x.x 255.255.254.0 ipx network XX ip helper-address x.x.x.x (dhcp server) int fa 0/0 channel-group 1 int fa0/1 channel-group 1 cat 6009# set port channel x/x-x auto (connected ports to router with cat5 straight through cables) that should do it? anythoughts would be very appreciated! thanks. jason -- David Madland Sr. Network Engineer CCIE# 2016 Qwest Communications Int. Inc. [EMAIL PROTECTED] 612-664-3367 Emotion should reflect reason not guide it Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=27073t=27073 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Off topic: Xyplex Boot Image [7:27070]
I think you can get copies and upgrades off of www.itouch.com Scott -Original Message- From: Ken Diliberto [mailto:[EMAIL PROTECTED]] Sent: Wednesday, November 21, 2001 2:05 PM To: [EMAIL PROTECTED] Subject: Off topic: Xyplex Boot Image [7:27070] I have two Xyplex terminal servers, an 800 and a 1500. I don't have any operating software for them. Does anyone have the software or know where I can get copies? Thanks. Ken Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=27074t=27070 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: accessing remote router [7:27060]
No..there is no way other than console to set up the enable password even http wont work as per cisco doc. -Original Message- From: Bill Carter [mailto:[EMAIL PROTECTED]] Sent: Thursday, 22 November 2001 10:44 a.m. To: [EMAIL PROTECTED] Subject: RE: accessing remote router [7:27060] If you have it enabled, you can http to the router and set the enable password. Otherwise call someone at the site -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Hansraj Patil Sent: Wednesday, November 21, 2001 2:18 PM To: [EMAIL PROTECTED] Subject: accessing remote router [7:27060] Hello Everyone: I have remote router which has telnet password set but there is no enable mode password. I can telnet successfully enter user mode but if I try to enter enable mode it gives error. router_1enable % No password set Is there any way to access this router remotely without setting enable password on router? Thanks -hansraj Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=27077t=27060 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Cannot add dialer map statement [7:27078]
Hello colleagues, I am trying to add a dialer map statement to a dialer interface configuration. Even after removing the existing dialer map statement, upon entering the new one the system tells me that it cannot add the dialer map because there already exists a dynamic one. There is nothing showing in the running config, so I don4t know where the dynamic entry is stored. I have heard that this problem can occur with early IOS versions and that the workaround is to shut the BRI and then add the dialer map. This is not an option for me because I have to add the dialer map remotely. Does anybody have an idea ? Thanks in advance for your help. Regards, Hans _ Get your FREE download of MSN Explorer at http://explorer.msn.com/intl.asp Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=27078t=27078 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Sybex CCNA lab simulator int f0/0 [7:27080]
Please can someone tell me the correct syntax.. The Sybex CCNA lab simulator does not like my syntax for #int fastethernet I can get it to work with int f0/0 Is this a simulator bug or am I doing something wrong? Thanks -Anil Router#config t Enter configuration commands, one per line. End with CNTL/Z. Router(config)#hostname 2621A 2621A(config)#int fas 2621A(config)#int fastethernet f0/0 ^ % Invalid input detected at '^' marker. 2621A(config)#int fastethernet f0? % Unrecognized command 2621A(config)#int fastethernet f 0/0 ^ % Invalid input detected at '^' marker. 2621A(config)#int fastethernet f0/0 ^ % Invalid input detected at '^' marker. 2621A(config)#int f0/0 2621A(config-if)# Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=27080t=27080 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Sybex CCNA lab simulator int f0/0 [7:27080]
Well, the real router don't like it either. anil wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... Please can someone tell me the correct syntax.. The Sybex CCNA lab simulator does not like my syntax for #int fastethernet I can get it to work with int f0/0 Is this a simulator bug or am I doing something wrong? Thanks -Anil Router#config t Enter configuration commands, one per line. End with CNTL/Z. Router(config)#hostname 2621A 2621A(config)#int fas 2621A(config)#int fastethernet f0/0 ^ % Invalid input detected at '^' marker. 2621A(config)#int fastethernet f0? % Unrecognized command 2621A(config)#int fastethernet f 0/0 ^ % Invalid input detected at '^' marker. 2621A(config)#int fastethernet f0/0 ^ % Invalid input detected at '^' marker. 2621A(config)#int f0/0 2621A(config-if)# Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=27081t=27080 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: accessing remote router [7:27060]
I don't know about Cscio documents. But this worked for me. -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Tribavan Raina Sent: Wednesday, November 21, 2001 2:39 PM To: [EMAIL PROTECTED] Subject: RE: accessing remote router [7:27060] No..there is no way other than console to set up the enable password even http wont work as per cisco doc. -Original Message- From: Bill Carter [mailto:[EMAIL PROTECTED]] Sent: Thursday, 22 November 2001 10:44 a.m. To: [EMAIL PROTECTED] Subject: RE: accessing remote router [7:27060] If you have it enabled, you can http to the router and set the enable password. Otherwise call someone at the site -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Hansraj Patil Sent: Wednesday, November 21, 2001 2:18 PM To: [EMAIL PROTECTED] Subject: accessing remote router [7:27060] Hello Everyone: I have remote router which has telnet password set but there is no enable mode password. I can telnet successfully enter user mode but if I try to enter enable mode it gives error. router_1enable % No password set Is there any way to access this router remotely without setting enable password on router? Thanks -hansraj Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=27082t=27060 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Cisco PIX 520 [7:26898]
Idiot...I and everyone knows cisco.com but the reason people ask here dumb question is they want to save some time by asking someone who already gone thru that process and spent time reasearchin that topic.. Brad Ellis wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... www.cisco.com has that information. thanks, -Brad Ellis CCIE#5796 (RS / Security) Network Learning Inc [EMAIL PROTECTED] Inamul wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... Does anyone have step by step link to setup VPN on PIX 520 running code 5.2 ? thanks Inamul Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=27059t=26898 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: All you veterans... [7:26301]
According to my sources, veterans can now be reimbursed for their cisco exams with their MGIB money. I'm sending off the application for reimbursement today, and I'll post again to the list when (if) it goes through. What has me really kicking myself, I took four exams in march, and I can only find two of the score reports (y'know, the ones that say DO NOT LOSE THIS REPORT) Supposedly, we should be able to get reimbursed for anything we've taken since March 1, 2001. Assuming this actually works, then I guess all those nights in the cold, in the rain, in the snow, etc. may have actually been worth it =) Hal Logan Network Specialist / Adjunct Faculty Computing and Engineering Technology Manatee Community College -Original Message- From: Mcfadden, Chuck [mailto:[EMAIL PROTECTED]] Sent: Monday, November 19, 2001 6:52 PM To: [EMAIL PROTECTED] Subject: RE: All you veterans... [7:26301] Great idea, I'll sign the petition. ccie1ab -Original Message- From: Estes, Timothy R. [mailto:[EMAIL PROTECTED]] Sent: Thursday, November 15, 2001 3:09 PM To: [EMAIL PROTECTED] Subject: RE: All you veterans... [7:26301] I contacted Cisco, the Veterans Administration and the California Department of Veterans Affairs about this subject in July. Unfortunately I haven't hear anything in a while. The VA advised me that for veterans to be reimbursed for the Cisco Career Certification program, the program would have to be accredited by the state Department of Veterans Affairs in the state where Cisco's headquarters resides. I contacted the California Department of Veterans affairs and found them to be very cooperative. They wished to be put in contact with the correct people at Cisco, so I gave them all of the contact info I could from my perspective. After a couple of weeks, I received the following email from Cisco ([EMAIL PROTECTED])... Dear Timothy, Thank you for your feedback. Due to requests from our dedicated customers, such as yourself, Cisco has applied to have the Cisco Career Certification exams approved under the VA Reimbursement Program. Once the details are finalized we will post the information to our website. We thank you for your continued support of the Cisco Career Certifications program. Cisco Career Certifications I have no idea what the status of Cisco's application is. I hope them get it approved soon, I have the 4 CCNP test to go! Maybe as a group we could use our collective resources to expedite this application? Timothy Estes CCNA, CCDA Sr. Network Systems Analyst Intermedia Communications (WorldCom) Tampa FL [EMAIL PROTECTED] (formerly RM3 USN) -Original Message- From: Sal DiStefano [mailto:[EMAIL PROTECTED]] Sent: Wednesday, November 14, 2001 9:04 PM To: [EMAIL PROTECTED] Subject: Re: All you veterans... [7:26301] Funny the Golf Course Superintendents Association of America is on the list but not Cisco. I called and they said to send it in and they may pay for it anyway. Sal - Original Message - From: Jeff D To: Sent: Wednesday, November 14, 2001 5:32 PM Subject: All you veterans... [7:26301] Check it out for reimbursement: https://www.gibill.va.gov/Education/LCVets.htm Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=27011t=26301 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Tcp window size question [7:26861]
It's not as simple as just looking at the window size. First, the who is the receiving station. The how frequent depends. Normally, a TCP stack implements what is called delayed ACK, meaning it will not simply just send an ack the instant it receives a packet that requires an ack. It will normally wait some small amount of time (somewhere around 200-500ms) to see if it has any data to send that it can piggyback on the ack (this is good for slow networks). However, delayed acks don't come into play if the reciver gets multiple packets requiring an ack. On a fast network, the receiver is always getting multiple segments that require an ack, so it won't wait and will typically send an ack after the first 2 or 3 segments requiring an ack, depending on how fast the TCP stack can process the segments. This is a good thing since if the receiver waited until the max number of TCP segments had arrived per the window size, the sender will be idle until it receives an ack of all of the outstanding segments (even a delay of 10-20ms can be long on a fast network). A sender cannot send additional TCP segments once it sends the max allowed by the window, so it will sit there until it gets an ack. By sending acks every 2 or 3 segments, the receiver ensures that the sender can continually put packets on the wire and keep the traffic flowing smoothly. If you have a long delay, high bandwidth network such as a satellite link, it's possible the sender could completely fill the window size before receiving an ack (this is why it's generally a good idea to have very large window sizes on these types of networks). This can lead to long delays waiting for the ack from the receiver. It's also possible for the sender to fill the window if the receiver is a very slow computer since the sender can send TCP segments faster than the receiver can process them. Again, this can lead to long delays while the sender waits for acks of it's already sent segments. This topic and many others related to TCP/IP are given excellent coverage in TCP/IP Illustrated Vol 1 by the late, great Richard Stevens. I highly recommend it. HTH, Kent -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of z z Sent: Tuesday, November 20, 2001 9:28 AM To: [EMAIL PROTECTED] Subject: Tcp window size question [7:26861] Hi I used a sniffer to monitor my network traffic. I found even if the tcp window size is very big (around 32000), my ftp session is still getting one ack after every two pakets sent. So who is deciding how frequent the ack will be sent? I thought it should be decided by the TCP window size. Please correct me. __ Do You Yahoo!? Yahoo! GeoCities - quick and easy web site hosting, just $8.95/month. http://geocities.yahoo.com/ps/info1 Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=27010t=26861 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: dynamic VLAN [7:27006]
What version IOS do you have? Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=27017t=27006 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]