Re: looking for Cisco-COLT questions for CIT [7:31147]
Yarie, I just passed this one ( last Thursday ) and I only just got through, 5% over the pass mark. While I found BSCN material more challenging, I got the worst mark of any of my exams on CIT. ( I thought I was going to find out what what the machine says when you fail, still don't know, don't want to know ). My advice is know your trouble shooting model, and know your ISDN inside-out. Cheers Johnny. - Original Message - From: Yarie To: Sent: Monday, January 07, 2002 7:06 AM Subject: looking for Cisco-COLT questions for CIT [7:31147] Hi all, I am preparing for CIT exam, which I am going take on Friday. I heard that Cisco COLT questions are good and similar to those asked on the real exam. also heard that it is the hardest of all four exams. Is that true? can someone send me those questions for review? I don't have the CCO login. thanks allot, Yaron Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=31255t=31147 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
EIGRP Summary Question [7:31256]
When using EIGRP Summary: On the router that performs the summarization, it's routing table will have entry listed as Null0 for the summary routes And on the downstream routers, their routing table will only have the summaries - no reference to Null 0. However, the following paragraph is what I'm confused about:- By applying the longest match rule, the downstream routers will forward all destination prefixes using the summary address. Eventually, these routers will be forwarded to the router performing the summarization. The summarizing router will match the destination prefixes with their longer matching subnets. If any of the destination prefixes match the summary address only, the summarizing router will forward these packets to the null interface, and they will be discarded. But why / when would the destination prefixes match the summary address only?? Any help will be greatly appreciated. Best Regards, Hunt Lee IP Solution Analyst Cable Wireless Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=31256t=31256 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Permissions: read but don't copy [7:31128]
This is clear, thanks Pierre-Alex -Original Message- From: Windows NT/2000 Discussion List [mailto:[EMAIL PROTECTED]]On Behalf Of Kayne Ian (Softlab) Sent: Tuesday, January 08, 2002 3:08 AM To: [EMAIL PROTECTED] Subject: Re: Permissions: read but don't copy [7:31128] Content filtering isn't the issue here. If the user opens a document on the server and has to traverse the firewall to get it, the firewall will evaluate the request based on it's ruleset. If it finds the request is valid it will allow the data to be sent (ie: the document downloaded to the pc). At this point the user is able to copy and paste on the local machine, which is outside the control of the firewall. Content filtering only works to control what data you receive, not what you do after you've got it. Ian Kayne Technical Specialist - IT Solutions Softlab Ltd - A BMW Company -Original Message- From: Pierre-Alex J. Guanel [mailto:[EMAIL PROTECTED]] Sent: 07 January 2002 16:44 To: [EMAIL PROTECTED] Subject: Re: Permissions: read but don't copy [7:31128] Hi Daniel, You are right on the second point. The only way (that I know of)to accomplish the requirement is to deny the users the permission to write to their hard drive. Windows 2000 does have a very granular security, unfortunately, the way it is setup, if you can read a file from a server, you can also copy it to your machine. --- As Andy explained, since I have no control over the users' machine, I am stuck unless I use a web base interface (see previous messages)-- One the first point, I am not so sure. My understanding is that content filtering does look inside the packets (application layer) and uses what it sees to filter traffic. Any firewall expert want to comment? Pierre-Alex -Original Message- From: Daniel Cotts [mailto:[EMAIL PROTECTED]] Sent: Monday, January 07, 2002 10:32 AM To: 'Pierre-Alex J. Guanel' Subject: RE: Permissions: read but don't copy [7:31128] Firewalls make decisions based on IP addresses and port numbers. So that doesn't look like a good candidate. I would think that W2K would have your solution. (I am in the dumb user category with MicroSoft). Cannot you set rights on files or folders? Is your problem that they can do either a copy or a cut and paste once they can read the file? Just thinking out loud - it would seem that their local machine would have to be severely restricted - as in a dumb terminal. -Original Message- From: Pierre-Alex J. Guanel [mailto:[EMAIL PROTECTED]] Sent: Monday, January 07, 2002 6:19 AM To: [EMAIL PROTECTED] Subject: RE: Permissions: read but don't copy [7:31128] Can a Cisco firewall do this? Pierre-Alex -Original Message- From: Pierre-Alex J. Guanel [mailto:[EMAIL PROTECTED]] Sent: Monday, January 07, 2002 6:07 AM To: [EMAIL PROTECTED] Subject: Permissions: read but don't copy Hi all, I am running Windows 2000 Advanced Server. I would like to allow users (Windows 98 / Windows 2000 Professional) to read a file, but prevent them to copy it electronically to their desktop. It looks like Windows 2000 does not have the permissions to accomplish this. Has anyone done this before? Thanks, Pierre-Alex [EMAIL PROTECTED] -- The WINNT-L list is hosted on a Windows NT(TM) machine running L-Soft international's LISTSERV(R) software. For subscription/signoff info and archives, see http://peach.ease.lsoft.com/archives/winnt-l.html . COPYRIGHT INFO: http://peach.ease.lsoft.com/scripts/wa.exe?SHOWTPL=COPYRIGHTL=WINNT-L This email and any files transmitted with it are confidential and intended solely for the use of the individual or entity to whom they are addressed. If you are not the intended recipient or the person responsible for delivering to the intended recipient, be advised that you have received this email in error and that any use of the information contained within this email or attachments is strictly prohibited. Internet communications are not secure and Softlab does not accept any legal responsibility for the content of this message. Any opinions expressed in the email are those of the individual and not necessarily those of the Company. If you have received this email in error, or if you are concerned with the content of this email please notify the IT helpdesk by telephone on +44 (0)121 788 5480. -- The WINNT-L list is hosted on a Windows NT(TM) machine running L-Soft international's LISTSERV(R) software. For subscription/signoff info and archives, see http://peach.ease.lsoft.com/archives/winnt-l.html .
RE: Permissions: read but don't copy [7:31128]
On an off-topic note, PGP has a feature that will allow you to view an encrypted (file/message) but not save or print. The creative amongst us could modify the source and recompile, but -Original Message- From: Pierre-Alex J. Guanel [mailto:[EMAIL PROTECTED]] Sent: Tuesday, January 08, 2002 4:37 AM To: [EMAIL PROTECTED] Subject: RE: Permissions: read but don't copy [7:31128] This is clear, thanks Pierre-Alex -Original Message- From: Windows NT/2000 Discussion List [mailto:[EMAIL PROTECTED]]On Behalf Of Kayne Ian (Softlab) Sent: Tuesday, January 08, 2002 3:08 AM To: [EMAIL PROTECTED] Subject: Re: Permissions: read but don't copy [7:31128] Content filtering isn't the issue here. If the user opens a document on the server and has to traverse the firewall to get it, the firewall will evaluate the request based on it's ruleset. If it finds the request is valid it will allow the data to be sent (ie: the document downloaded to the pc). At this point the user is able to copy and paste on the local machine, which is outside the control of the firewall. Content filtering only works to control what data you receive, not what you do after you've got it. Ian Kayne Technical Specialist - IT Solutions Softlab Ltd - A BMW Company -Original Message- From: Pierre-Alex J. Guanel [mailto:[EMAIL PROTECTED]] Sent: 07 January 2002 16:44 To: [EMAIL PROTECTED] Subject: Re: Permissions: read but don't copy [7:31128] Hi Daniel, You are right on the second point. The only way (that I know of)to accomplish the requirement is to deny the users the permission to write to their hard drive. Windows 2000 does have a very granular security, unfortunately, the way it is setup, if you can read a file from a server, you can also copy it to your machine. --- As Andy explained, since I have no control over the users' machine, I am stuck unless I use a web base interface (see previous messages)-- One the first point, I am not so sure. My understanding is that content filtering does look inside the packets (application layer) and uses what it sees to filter traffic. Any firewall expert want to comment? Pierre-Alex -Original Message- From: Daniel Cotts [mailto:[EMAIL PROTECTED]] Sent: Monday, January 07, 2002 10:32 AM To: 'Pierre-Alex J. Guanel' Subject: RE: Permissions: read but don't copy [7:31128] Firewalls make decisions based on IP addresses and port numbers. So that doesn't look like a good candidate. I would think that W2K would have your solution. (I am in the dumb user category with MicroSoft). Cannot you set rights on files or folders? Is your problem that they can do either a copy or a cut and paste once they can read the file? Just thinking out loud - it would seem that their local machine would have to be severely restricted - as in a dumb terminal. -Original Message- From: Pierre-Alex J. Guanel [mailto:[EMAIL PROTECTED]] Sent: Monday, January 07, 2002 6:19 AM To: [EMAIL PROTECTED] Subject: RE: Permissions: read but don't copy [7:31128] Can a Cisco firewall do this? Pierre-Alex -Original Message- From: Pierre-Alex J. Guanel [mailto:[EMAIL PROTECTED]] Sent: Monday, January 07, 2002 6:07 AM To: [EMAIL PROTECTED] Subject: Permissions: read but don't copy Hi all, I am running Windows 2000 Advanced Server. I would like to allow users (Windows 98 / Windows 2000 Professional) to read a file, but prevent them to copy it electronically to their desktop. It looks like Windows 2000 does not have the permissions to accomplish this. Has anyone done this before? Thanks, Pierre-Alex [EMAIL PROTECTED] -- The WINNT-L list is hosted on a Windows NT(TM) machine running L-Soft international's LISTSERV(R) software. For subscription/signoff info and archives, see http://peach.ease.lsoft.com/archives/winnt-l.html . COPYRIGHT INFO: http://peach.ease.lsoft.com/scripts/wa.exe?SHOWTPL=COPYRIGHTL=WINNT-L This email and any files transmitted with it are confidential and intended solely for the use of the individual or entity to whom they are addressed. If you are not the intended recipient or the person responsible for delivering to the intended recipient, be advised that you have received this email in error and that any use of the information contained within this email or attachments is strictly prohibited. Internet communications are not secure and Softlab does not accept any legal responsibility for the content of this message. Any opinions expressed in the email are those of the individual and not necessarily those of the Company. If you have received this email in error, or if you are concerned with the content of this email please notify the IT helpdesk by telephone on +44 (0)121 788
RE: Offerings 29519 [7:31259]
[TABLE NOT SHOWN] Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=31259t=31259 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Isn't this what you we're looking for? 20467 [7:31260]
COPY ANY DVD MOVIE!! With our revolutionary system you can copy virtually any DVD Movie using your existing equipment! Conventional DVD copying equipment can cost thousands of $$$ This revolutionary system costs less than the price of 3 DVD Movies! CLICK HERE FOR MORE INFO If you wish to be removed simply Click Here Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=31260t=31260 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: 6509 switch [7:31251]
first thing to try and the easyist is to set his pc to 10/100 full and set the 6509 to do thissometimes autonegatation doesn`t work to well,,, to help abit more after changing the duplex/speed settings to the same... collisions as above... FCS,CRC usually means that the packets your switch is recieving are corrupt..check (1st driver 2nd card 3rd cable 4th switch port) Runts,giants.these are just odd sized packets .. check (1st OS of pc...doubt it..second driver) as said easyist thing to do is set the duplex/speed to manual first and see where you go from there.. HTH steve From: Ali, Abbas Reply-To: Ali, Abbas To: [EMAIL PROTECTED] Subject: 6509 switch [7:31251] Date: Tue, 8 Jan 2002 01:40:03 -0500 I am receiving lot of errors on my Ethernet Line Cards in 6509 switch. For example, Ports have different errors in FCS, CRC, Runts, Giants, and Collisions. Is it possible to narrow down whether it could be NIC Card, Bad Cable, auto negotiation etc? One of the users has a brand new computer and cable, but I am still showing the port he is connected to has lots of FCS, and collisions as well as runt frame. any help would be appreciated. Regards, Ali _ MSN Photos is the easiest way to share and print your photos: http://photos.msn.com/support/worldwide.aspx Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=31262t=31251 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Number Expansion Question. [7:31238]
How bout this? num-exp [0-9] 312223 The k1d William Lijewski wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... I am working on a lab at school and I'm stuck. They want us to be able to press any number to dial the full number 312223 I know that if you put just a . such as: num-exp . 312223 This will let you press ANY KEY, # and * included. Is there any easy way to make it just 0-9 without doing 10 seperate statements? Thanks Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=31263t=31238 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: EIGRP Summary Question [7:31256]
If for some reason one of the routes fails that is being summarized, the packet will match the summary to null 0 and be dropped. This is a safety mechanism so the router doesn't waste cycles on packets it can't route. Hunt Lee wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... When using EIGRP Summary: On the router that performs the summarization, it's routing table will have entry listed as Null0 for the summary routes And on the downstream routers, their routing table will only have the summaries - no reference to Null 0. However, the following paragraph is what I'm confused about:- By applying the longest match rule, the downstream routers will forward all destination prefixes using the summary address. Eventually, these routers will be forwarded to the router performing the summarization. The summarizing router will match the destination prefixes with their longer matching subnets. If any of the destination prefixes match the summary address only, the summarizing router will forward these packets to the null interface, and they will be discarded. But why / when would the destination prefixes match the summary address only?? Any help will be greatly appreciated. Best Regards, Hunt Lee IP Solution Analyst Cable Wireless Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=31264t=31256 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
FW: wireless issues [7:31265]
Hi, I am currently troubleshooting a wireless connectivity issue. My client is running LEAP (2 350 AP's running 11.08T [set to draft 8], ACS 2.6, clients running drivers 6.97 - firmware 4.2.3 - and client version 4.15) , which was working fine up until 2 days ago after a failed PIX install (network was returned to original configuration in which wireless service had worked fine). Both the AP's and the ACS box were located on the internal network before the failed PIX install - and after. The next morning wireless isn't working at all. The ACS server was rebooted during the PIX install. To describe the actual symptoms: clients are associating to one AP, then dissassociate, then associate to the other AP. When I debug eap, I get the following output: EAP: Sending Identity Request EAP: Received EAPOL START from IBM-C5AZ0 EAP: Sending Identity Request EAP: Received Identity Response from IBM-C5AZ0 EAP: Response not from most recent request. Dropping packet. EAP: Received Identity Response from IBM-C5AZ0 EAP: Forwarding packet to RADIUS server 27 days, 20:05:21 (Warning): No EAP-Authentication response for Station [IBM-C5A Z0]00409658a3ea from server 192.168.1.48 The AP shows users associating but not authenticating and, as stated earlier, the client shows that it is associating to one AP, then the other. This network had been operating stably up until this point and I don't see how a failed PIX install (which really ony affected the subnets and connections connecting to the internet) could provoke this kind of behavior. Any ideas, advice, etc.? Thanks, Erik Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=31265t=31265 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Boson practice tests [7:31209]
test 2 is best that is what i used. but don`t underestimate the power of the famous token ring white paper..which i no-longer have soorry...for explaining RIF`s HTH steve From: Hans Stout Reply-To: Hans Stout To: [EMAIL PROTECTED] Subject: Boson practice tests [7:31209] Date: Mon, 7 Jan 2002 16:38:35 -0500 Hello colleagues, I am preparing for the written CCIE (Routing Switching) and I came across the Boson CCIE practice exams. The questions look ok; does anybody have comments on the quality of these practice exams ? Your comments are welcome. Thanks in advance. Regards, Hans _ Get your FREE download of MSN Explorer at http://explorer.msn.com/intl.asp. _ Chat with friends online, try MSN Messenger: http://messenger.msn.com Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=31266t=31209 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: PPP link negotiation problem [7:31132]
sent-username is not an option for me under ppp chap. My options at ppp chap are hostname, password, wait, and refuse. Thanks McCallum, Robert wrote: what about ppp chap sent-username ? -Original Message- From: bergenpeak [mailto:[EMAIL PROTECTED]] Sent: 07 January 2002 13:09 To: [EMAIL PROTECTED] Subject: PPP link negotiation problem [7:31132] I'm working through the different ways one can configure CHAP authentication between two routers over a PPP serial link. If I configure ppp encap and ppp chap authentication and both sides of the link and use the global: username password for identification, the link comes up and IPCP is established. The routers have hostnames defined to be rtr-2505 and rtr-2514. When I try to use the simpler CHAP config, where one can encode in the interface directly the same hostname and password, I see the error: PPP Serial0: Using alternative CHAP hostname something PPP Serial0: CHAP Challenge id=14 received from something PPP Serial0: ignoring challenge with local name On both rtrs I have the following defined on the serial interface: ppp encap ppp authentication chap ppp chap hostname something ppp chap password else there are no usernames defined globally. Ideas? Thanks Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=31267t=31132 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: 6509 switch [7:31251]
On Tue, 8 Jan 2002, Ali, Abbas wrote: One of the users has a brand new computer and cable, but I am still showing the port he is connected to has lots of FCS, and collisions as well as runt frame. Hi :) Try hard-coding speed and duplex on each end, clearing the interface counters and trying again. Autonegotiation is less than perfect and can cause these kinds of symptoms (as discussed over the last couple of days...). Its at least the easiest thing to check. Rgds, - I. -- Ian Henderson CCNA, CCNP Network Engineer, iiNet Limited Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=31268t=31251 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: NSSA [7:31269]
Hi Friends, How can I inject external routes to OSPF via NSSA ASBR wihtout conversion of the LSA-7 to LSA-5. Thanks and cheers What problem are you trying to solve? If I understand you correctly, you don't want to use NSSA exactly as it's designed. Externals enter the NSSA and, subject to any filtering/summarization on the ABR, propagate as type 7's throughout the NSSA itself. They are converted to type 5s by the ABR. Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=31269t=31269 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: redistribute rip route to igrp [7:31270]
When i redistribute rip route to igrp process,do i have to input all the 5 metric ? how to get the metric value ? Thanks. Assume you don't input them, and IGRP receives the route. What would IGRP use as a metric that it distributes to the other IGRP routers? Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=31270t=31270 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: How to block MSN, and others. [7:31057]
Chuck wrote, Let he who has never done something stupid while learning this stuff cast the first stone ;- People who live in optical networks shouldn't cast stones. Further, executives of optical networking firms should only order VIP furniture when it is actually needed, rather than store it on upper floors. For, it is written, people who live in glass houses shouldn't store thrones. [Apologies in advance to those who are not native English speakers, and possibly to those who are.] Brian Whalen wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... How inept does a netadmin have to be to block his own servers. If Im that guys boss, he is so fired.. Brian Sonic Whalen Success = Preparation + Opportunity On Mon, 7 Jan 2002, John Allhiser wrote: This discussion reminds me of a popular quote I see all the time on another forum: There are seldom good technological solutions to behavioral problems. --attributed to Ed Crowley, Compaq Technical Consultant A friend of mine worked for a company that had a problem with a certain spammer. They blocked the IP address of the offending emailer at the gateway, and to their utter astonishment, the pernicious perpetrator changed its IP. The spam continued to flow. Eventually, after about 9 IPs were entered into the deny access-list, the legitmate email started having problems (the spammer seemed to have been stopped).+ Long story, short: The spammer was using the company's ISP's mail relay host addresses. By shutting down those IPs, they effectively shut down their Intenet mail service. --John -Original Message- From: Gaz [mailto:[EMAIL PROTECTED]] Sent: Sunday, January 06, 2002 1:56 PM To: [EMAIL PROTECTED] Subject: Re: How to block MSN, and others. [7:31057] I suppose it comes down to they type of company/employees. I'm more used to companies that leave things fairly open for employees, and demand (rather than expect) that the employee be responsible with it. Employees will understand that monitoring needs to be done at times and offenders be dealt with. Firm and fair sometimes works better than beat me if you can. Not always though, so admittedly it's horses for courses. Gaz Mike Sweeney wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... Let me put something into perspective here. It was said earlier about why give access then block it. Why indeed... the why is for BUSINESS reasons.. not day trading, not stock tickers, not chatting for hours(documented) with friends at the expense of work, viruses coming in on Hotmail attachments that bypass the clamped down exchange server and so on. The internet is given to employees for business reasons with the expectation that the employee will be responsible with it. Will there be personal use.. of course.. just like the phone. Why limit certain things? gee.. the company pays for a T1, they have 4,000 users, 100 decide to watch a Victoria Secret webcast at 300Kbps.. see the problem? This not theorical.. this really happened to one of my clients and the webcastusers/readaudio users managed to max out the T during working hours. The courts have already decided for good or bad that email is company property and they can do what they wish with it. I would imagine that web access falls under the same rules as it's a company building, desk, PC(or Mac), servers, connection and so on. My opinion MikeS Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=31271t=31057 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: popularity of the CID test [7:31081]
I agree that the test is difficult, and I can understand someone being frustrated after taking it. When the correct answers aren't black-and-white, there's a lot more second-guessing that comes into play. IMO, in order to truly test a candidate's design abilities, every question would have to have a fifth multiple choice of E: It depends and a text box for the candidate to explain his or her answer. Of course, the grading of said exam wouldn't exactly be scalable... there would hafta be proctors reading through the responses and deciding if they're valid or not... but hey it'd be more jobs for CCDP's right? Ok, bad idea. But I think the subjectiveness of many of the questions is what makes the test difficult, and when you take the test you get to decide if you're reading too much into a question, or not reading enough. Hal Logan CCAI, CCDP, CCNP+Voice Network Specialist / Adjunct Faculty Computing and Engineering Technology Manatee Community College -Original Message- From: Priscilla Oppenheimer [mailto:[EMAIL PROTECTED]] Sent: Monday, January 07, 2002 3:47 PM To: [EMAIL PROTECTED] Subject: Re: popularity of the CID test [7:31081] I don't agree that the CID test is badly written, although I have not seen the new version. (Is it really bad and in what ways?) I do agree that the CID test uses a different model from most of the other tests. (CCIE written is somewhat similar to CID). The test writer assumes that you know the basic technology answer. To get the right answer you have to think past the obvious, basic answer and think about the caveats, where and how to deploy the protocol or feature, the scalability, performance issues, etc. Answering correctly requires two-step thinking. People who remember that when they take the test get a better score and feel less frustrated. I think the test isn't popular because Cisco needs companies to train and certify droves of technician drones. Only a few gurus get to design or redesign networks. ;-) The mass majority of people don't think conceptually. A lot of schools these days focus on how to rather than creative, analytical thinking. I hope that changes and that the comment doesn't start a flame! Speaking of flames, however, I'm still burning from the idiotic comment someone made about one of our illustrious members not having operational experience. Whereas it wasn't true, it also missed the opportunity to see what a blessing it is to have a protocol designer amongst us. It would be as if James Watson dropped in on a discussion group for lab technicians. Or if Picasso dropped in on a discussion amongst Web-page graphics developers. There's more to Cisco certification than getting a job that will let you wear a beeper and spend time fixing stuff. Hopefully, you'll also get to create stuff. CCDPs and CCIEs get to do analytical, innovative, strategic work in addition to operational, tactical, configuration work. And that's where the adventurous, fun aspects of this industry come into play! Priscilla At 12:06 PM 1/7/02, Robert Padjen wrote: I am also quite surprised at the reality and perception regarding this exam. Based on book sales, there is a lot of interest in design (not as much as CCNA unfortunately), but the corporate environment stressed the CCIE and only looked to the CCNP. I think this was due to two factors. First, testers didn't push the DP track (whether it was the DA or the DP - I would contend both) and business don't seem to stress the design component outside of the carrier space and more tech-driven Fortune 500. The second is the perception that the exam is hard, which is the focus of this board. I would argue, failures aside, that the test is hard because it is badly written and it focuses on a different model then the other exams/tracks. As such, preparation should do it, or at least get an applicant close. The poor quality of the exam (both versions) is a bit of a tweak for me, as it made writing a book on the exam more difficult - one had to focus on the test passing and the 'correct, non-Cisco answer' concurrently. The reality is that Cisco should again revise this exam and review the design tracks, in my opinion, although with the CCIE now a one day exam and other factors I doubt this will happen. --- Steven A. Ridder wrote: It was the only test I ever failed. If you ask me, there's not much market demand for CCDP's (which makes the test a low priority), and for the amount you have to study to pass the test, it's not worth it. It's good to learn though, because it covers a lot of broad topics, from SNA to ATM LANE, AppleTalk, etc. Have fun at it. Study the BPX and IGX. Juan Blanco wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... TEAM, Why the popularity of the CID test is very low...Tips on this
Off Topic: Master's Degree in Inernetworking. Wort [7:31273]
Hi All, I appologize for the offtopic question but I wasn't able to obtain an answer anywhere else. Has anyone here attended the Dalhouse University for the Master's of Engineering in Inernetworking? I have been excepted into the program and would like to hear your opinion on it. Thanks, Alex Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=31273t=31273 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Routing Exam 503 [7:31275]
I am studying for the routing exam. I am using Sybex book, I have heard it has a lot of mistakes, but that is why you should use more then 1 book. I have heard arguments for both the Cert Library and the Prep Library, if you look at the different book sites, it seems cert library sells more copies and comes with a CD. Www.bookpool.com has the entire set for 96$ US. I have not bought it yet though. I think a lot of people shout just use cisco when they actually used other books but don't want to reveal what they really used. Yea, colt is gone, but if you go to http://ciscoguide.net there is like 100 questions for CCNP routing there. I made them into PDFs and keep them on my palm pilot. There is a free study guide on cramsession.com, its not that great, but its free. I am disappointed at there CCNP question of the day, because they are from the 400 exam series, so outdated. I wish they would hire someone to write new questions. They are pretty much useless. Anyway, my suggestion is just use more then one source, that is what I do to cross reference to make sure there is no mistakes. I am the type of person that once I do a question, I remember it. So when I see it somewhere else, and its wrong I notice it. Well hope this help :-) Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=31275t=31275 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: FW: Cat1900 from standard to enterprise [7:31084]
Cisco tightned down the IOS downloading a bit this past summer. You will need a contract SMARTNET or another type to download it. And then: only the IOS versions supported under your contract will be available to you for download and their respective upgrades. This is the way my local Cisco Reps have explained it to me. You may want to contact your local Cisco Rep to verify this and/or call Cisco to buy a contract on your equipment. Hope this helps, Jim -Original Message- From: Ziyaad [mailto:[EMAIL PROTECTED]] Sent: Tuesday, January 08, 2002 01:01 To: [EMAIL PROTECTED] Subject: Re: FW: Cat1900 from standard to enterprise [7:31084] I dont think you will need a CCO account for this link or you are talking about the software ?. If you wanna know the detailed procedure I can mail you separately Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=31274t=31084 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: EIGRP Summary Question [7:31256]
On Tue, 8 Jan 2002, Hunt Lee wrote: But why / when would the destination prefixes match the summary address only?? Hi :) For example, if you have three static routes pointing to three seperate interfaces each of which is a /25, and you summarise as a /23, the unused /25 would match the summary address only. ie: 10.1.2.0/23 - Null0 (summary address) 10.1.2.0/25 - Serial0 (static route) 10.1 2.128/25 - Serial1 (static route) 10.1.3.0/25 - Serial2 (static route) 10.1.3.128/25 - Null0 (no static route, matches the summarised route) Rgds, - I. -- Ian Henderson CCNA, CCNP Network Engineer, iiNet Limited Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=31276t=31256 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: PPP link negotiation problem [7:31132]
try ppp pap sent-username... Dave bergenpeak wrote: sent-username is not an option for me under ppp chap. My options at ppp chap are hostname, password, wait, and refuse. Thanks McCallum, Robert wrote: what about ppp chap sent-username ? -Original Message- From: bergenpeak [mailto:[EMAIL PROTECTED]] Sent: 07 January 2002 13:09 To: [EMAIL PROTECTED] Subject: PPP link negotiation problem [7:31132] I'm working through the different ways one can configure CHAP authentication between two routers over a PPP serial link. If I configure ppp encap and ppp chap authentication and both sides of the link and use the global: username password for identification, the link comes up and IPCP is established. The routers have hostnames defined to be rtr-2505 and rtr-2514. When I try to use the simpler CHAP config, where one can encode in the interface directly the same hostname and password, I see the error: PPP Serial0: Using alternative CHAP hostname something PPP Serial0: CHAP Challenge id=14 received from something PPP Serial0: ignoring challenge with local name On both rtrs I have the following defined on the serial interface: ppp encap ppp authentication chap ppp chap hostname something ppp chap password else there are no usernames defined globally. Ideas? Thanks -- David Madland Sr. Network Engineer CCIE# 2016 Qwest Communications Int. Inc. [EMAIL PROTECTED] 612-664-3367 Emotion should reflect reason not guide it Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=31277t=31132 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: wireless max distance question [7:30822]
For those interested, I found that old link about the guy who submerged his motherboard in -40 degree mineral oil ;) http://www.drffreeze.com/Test2.htm - Original Message - From: Steven A. Ridder To: Sent: Thursday, January 03, 2002 7:59 PM Subject: Re: wireless max distance question [7:30822] The one where the guy bought 3M super computer coolant and doused his whole computer in it? I've read any oil can work, but this won't corrode the plastic on circuit boards. Allen May wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... That is one of the funniest hacks I've ever seen ;) Have you ever seen the one where that guy tried the ultimate coolant on his motherboard? It was some kind of non-conductive oil cooled by a refrigerator compressor to below freezing. The entire motherboard was submerged benchmarks went way up...rofl. Allen - Original Message - From: Jarmoc, Jeff To: Sent: Thursday, January 03, 2002 3:43 PM Subject: RE: wireless max distance question [7:30822] There's also the good ol' 802.11b pringles can hack. I haven't tried it, and it's obviously not something you'd want to implement in a business environment, but I've thought about playing with it as a home toy. http://verma.sfsu.edu/users/wireless/pringles.php Jeff Jarmoc - CCSA, CCNA, MCSE Network Analyst - Grubb Ellis [EMAIL PROTECTED] -Original Message- From: Steven A. Ridder [mailto:[EMAIL PROTECTED]] Sent: Thursday, January 03, 2002 2:17 PM To: [EMAIL PROTECTED] Subject: Re: wireless max distance question [7:30822] I've heard of a Cisco antenna boosters. Check the qprg. or http://www.cisco.com/warp/public/cc/pd/witc/ao340ap/prodlit/airoa_ds.htm Some directional antennas can get up to 25 miles. You may need a line of sight though. Check with Cisco FYI, Linksys wireless access points can be hacked via firmware and stuff to get a +3 to +4 dB gain in power. http://www.wi2600.org/mediawhore/nf0/wireless/docs/802.11/WAP11/fun_with_the _wap11.txt -- RFC 1149 Compliant. FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=31261t=30822 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: OT Request; LAN/WAN monitoring software [7:31227]
It depends what kind of monitoring you are talking about. If you are looking for a cheap SNMP solution you should take a look at WhatsUp Gold. To analyze traffic patterns take a look at MRTG. Why can't you consider HP OV? They do have an NT version and I believe the cost is about 4k. It's pretty fairly priced I think. John Kaberna CCIE #7146 www.netcginc.com (415) 750-3800 Instructor for 5-day CCIE class for ccbootcamp.com __ CCIE Security Training www.netcginc.com/training.htm Michael Smith wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... A bit off topic, but would appreciate any suggestions - Looking for a software solution, not UNIX based, that has capabilities to centrally monitor hardware and network traffic on a small LAN/WAN network, that contains HP switches, Cisco routers and Compaq servers. HPOV is not an option, end user is not UNIX guru, and network is Win2k based. Any suggestions would be most appreciated. Regards, Michael Smith Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=31249t=31227 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Off Topic: Master's Degree in Inernetworking. Wort [7:31278]
You might want to figure out the correct spelling for Internetworking first... ;-) Otherwise, congrads ... I guess the main thing to check for is to see if it's acredited by one of the big 4.. ;-) Alex Palanker wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... Hi All, I appologize for the offtopic question but I wasn't able to obtain an answer anywhere else. Has anyone here attended the Dalhouse University for the Master's of Engineering in Inernetworking? I have been excepted into the program and would like to hear your opinion on it. Thanks, Alex Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=31278t=31278 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
pri max. cable distance [7:31279]
hi i want to learn exact maximum distance between router and pbx when using digital voice module (NM-HDV-1E-30).? How many meters can they apart from? Is this distance also valid for NM-1CE1B module when leased line connection? thanks Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=31279t=31279 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: IPv6 [7:31228]
Also, with multiservice networks on the rise the advanced QoS features will be well suited for voice and video. Especially in the service provider arena. Daniel Cotts wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... Security. BTW I had to look up RFC 1149. A classic! -Original Message- From: Steven A. Ridder [mailto:[EMAIL PROTECTED]] Sent: Monday, January 07, 2002 6:48 PM To: [EMAIL PROTECTED] Subject: IPv6 [7:31228] Another question, When's IPv6 gonna hit the mainstream? Or the backbone? Of all the stuff I ever read on it, the main reason it came into play was because of the impending depletion of public addresses. Well with NAT, firewall and other proxy services handiling a lot of requests onto the public internet, the depletion has been put out a few years (actually, does anyone have any good like, studies pointing out when this is supposed to happen now?). So what else is going to drive the adoption of IPv6? -- RFC 1149 Compliant. FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=31280t=31228 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Frame Relay Question [7:31210]
what's the unused column? -Patrick Scott Nawalaniec 01/07/02 05:10PM Hi Matt, You are correct...The DLCI is being learned from the frame-relay switch...You don't have it configured so it will show up under the unused column when the sho fram pvc command. Did you order the pvc and haven't configured it or assigned it to an interface/sub-interface? Or the provider assigned it to a wrong dlci which I just had happened last week and the week before. HTH, Scott -Original Message- From: matt [mailto:[EMAIL PROTECTED]] Sent: Monday, January 07, 2002 1:53 PM To: [EMAIL PROTECTED] Subject: Frame Relay Question [7:31210] So...I am looking at some frame links that a co-worker brought up not long ago. I issue a show frame-relay pvc command and notice that there are 3 dlci's being seen by the router yet there are only 2 circuits. The 3rd unknown dlci is listed as being unused. So, I look through the config some more and confirm that the 3rd dlci is not defined anywhere in the config. I am guessing my router is learning this dlci from the providers frame switch?? But why? Feel free to correct me if I am wrong...and thanks in advance for the help. matt __ Do You Yahoo!? Send FREE video emails in Yahoo! Mail! http://promo.yahoo.com/videomail/ Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=31281t=31210 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Routing Exam 503 [7:31275]
The reason everyone shouts just use Cisco for the 503 exam is because the Cisco Press book exactly follows the Routing 503 exam blueprint. Every chapter in the Cisco Press book is one of the sections covered in the actual exam. You can pass the exam by just using this book. Shawn K. -Original Message- From: Brian Zeitz [mailto:[EMAIL PROTECTED]] Sent: Tuesday, January 08, 2002 9:52 AM To: [EMAIL PROTECTED] Subject: Routing Exam 503 [7:31275] I am studying for the routing exam. I am using Sybex book, I have heard it has a lot of mistakes, but that is why you should use more then 1 book. I have heard arguments for both the Cert Library and the Prep Library, if you look at the different book sites, it seems cert library sells more copies and comes with a CD. Www.bookpool.com has the entire set for 96$ US. I have not bought it yet though. I think a lot of people shout just use cisco when they actually used other books but don't want to reveal what they really used. Yea, colt is gone, but if you go to http://ciscoguide.net there is like 100 questions for CCNP routing there. I made them into PDFs and keep them on my palm pilot. There is a free study guide on cramsession.com, its not that great, but its free. I am disappointed at there CCNP question of the day, because they are from the 400 exam series, so outdated. I wish they would hire someone to write new questions. They are pretty much useless. Anyway, my suggestion is just use more then one source, that is what I do to cross reference to make sure there is no mistakes. I am the type of person that once I do a question, I remember it. So when I see it somewhere else, and its wrong I notice it. Well hope this help :-) Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=31282t=31275 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: ATM with 7200 and IMA with CES [7:29368]
Actually I have done serveral IMA configs utilizing regular ole T1 circuits and you only need a single subnet if you configure an IMA interface and assign the interfaces to it via the ima group. http://www.cisco.com/warp/public/121/paima.html Dave GS wrote: You should ask you carrier what type of cards they are terminating the T1 lines to. Most carriers support IMA and all u need is properly configure your IMA group. If however you carrier have delivered three T1 in the form of three separate local loops and they are terminating your access to T1 cards then you have to: load balance/Share on ur 7200 using L3 ( such as equal cost load balancing through static routes or whatever). The problem of this setup is that it each local loop is required to have it own subnet. You will have to configure your ATM-IMA adaptor in what we call pass-through mode (which necessarily implies that each port functions as an individual T1 port without the benefits of IMA). The IMA-Mux you're looking for is useless for your case.. since all the IMA mux do is take a single input (normally E10) and delivers an inverse muxed stream (meaning ATM cells belonging to the same connection split over several outgoing links) If ur carrier is doing the latter I suggest u save ur self the headache and dump them :- Adam Wang wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... Hi group, I have a few 7200 with ATM-CES adapters in them. I want to depoly them over WAN with a 4.5 meg bandwidth to each. The telco handed to us 3 T1s. I would assume an IMA device of some kind is needed here. However, I still want to use the existing ATM-CES adapters for this case. How would I set this up if I use a Cisco IMA adapter? Are there any other external IMA mux besides the cisco's IMA adapter that I can use with my atm-ces module, and are less than $5000? I'm new to ATM, so any input would be greatly appreciated. Adam __ Do You Yahoo!? Check out Yahoo! Shopping and Yahoo! Auctions for all of your unique holiday gifts! Buy at http://shopping.yahoo.com or bid at http://auctions.yahoo.com -- David Madland Sr. Network Engineer CCIE# 2016 Qwest Communications Int. Inc. [EMAIL PROTECTED] 612-664-3367 Emotion should reflect reason not guide it Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=31283t=29368 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
CDP Duplex Message [7:31284]
How do I disable these messages in my show log? *Jan 8 08:00:57: %CDP-4-DUPLEX_MISMATCH: duplex mismatch discovered on FastEthernet0/0 (not full duplex), with blah.blah.com FastEthernet0/0 (full duplex). Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=31284t=31284 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Enterprise Voice and Video over Data (EVVOD) [7:31234]
The EVVOD class included alot of discussion about protocols, more specifically ISDN, ATM and Frame Relay framing structures as well as some of the voip signalling protocols(i.e skinny, H323, SIP, and the like.) Also there was info about integration with legacy PBXs, Voice Mail, and the basics of the Call Manager. The trouble is I haven't seen a book that encompasses all these topics effectivly. But..here are a handful that I've found to be helpful. All Cisco press by the way. Integrating Voice and Data Networks http://www.ciscopress.com/book.cfm?book=23 Good info about the evolution of traditional telephony to the present. Lots of VoATM, VoFR, and VoIP material. Deploying Cisco Voice over IP solutions http://www.ciscopress.com/book.cfm?book=206 Great source of practical solutions. CallManager Fundamentals http://www.ciscopress.com/book.cfm?book=201 Pretty obvious from the name what this is about. The gory details of the call manager. Hope this helps. Dave Luancing wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... Does anyone know of any good books. Ok, forget that last line, does anyone know of any books at all to use to study for the EVVOD class? __ Do You Yahoo!? Send FREE video emails in Yahoo! Mail! http://promo.yahoo.com/videomail/ Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=31285t=31234 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: CDP Duplex Message [7:31284]
could you have duplex mismatches? Try locking them down to same speeds. -- RFC 1149 Compliant. FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Enterprise Voice and Video over Data (EVVOD) [7:31234]
I had some lunk with the Intergrating Voice and Data Networks book. Also the internet helped me out. -- RFC 1149 Compliant. FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: CDP Duplex Message [7:31284]
I've seen this occur on when a Cisco switch is connected to another with a non-Cisco switch in the middle in the following manner: CISCOhalf-duplexNONCISCOfull-duplexCISCO CDP messages are not recognized by the non-Cisco switch, and are passed through unchanged. Each Cisco switch legitimately sets it's CDP duplex setting; however when they pass through the non-Cisco switch, the far-side Cisco switch is given the appearance of a duplex mismatch. Assuming there is no real duplex mismatch, you can try one of the following: -Disable CDP -Change the logging levels In both cases, check CCO for details. (CCO Logging Explained:) http://www.cisco.com/univercd/cc/td/doc/product/lan/cat5000/rel_5_4/config/logging.htm Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=31288t=31284 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Routing Exam 503 [7:31275]
Which Cisco Press book or books do you recommend? Ko Haag Kaminski, Shawn G wrote: The reason everyone shouts just use Cisco for the 503 exam is because the Cisco Press book exactly follows the Routing 503 exam blueprint. Every chapter in the Cisco Press book is one of the sections covered in the actual exam. You can pass the exam by just using this book. Shawn K. -Original Message- From: Brian Zeitz [mailto:[EMAIL PROTECTED]] Sent: Tuesday, January 08, 2002 9:52 AM To: [EMAIL PROTECTED] Subject: Routing Exam 503 [7:31275] I am studying for the routing exam. I am using Sybex book, I have heard it has a lot of mistakes, but that is why you should use more then 1 book. I have heard arguments for both the Cert Library and the Prep Library, if you look at the different book sites, it seems cert library sells more copies and comes with a CD. Www.bookpool.com has the entire set for 96$ US. I have not bought it yet though. I think a lot of people shout just use cisco when they actually used other books but don't want to reveal what they really used. Yea, colt is gone, but if you go to http://ciscoguide.net there is like 100 questions for CCNP routing there. I made them into PDFs and keep them on my palm pilot. There is a free study guide on cramsession.com, its not that great, but its free. I am disappointed at there CCNP question of the day, because they are from the 400 exam series, so outdated. I wish they would hire someone to write new questions. They are pretty much useless. Anyway, my suggestion is just use more then one source, that is what I do to cross reference to make sure there is no mistakes. I am the type of person that once I do a question, I remember it. So when I see it somewhere else, and its wrong I notice it. Well hope this help :-) Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=31290t=31275 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: CDP Duplex Message [7:31284]
Fix the problem and they will go away! Dave Russ Kreigh wrote: How do I disable these messages in my show log? *Jan 8 08:00:57: %CDP-4-DUPLEX_MISMATCH: duplex mismatch discovered on FastEthernet0/0 (not full duplex), with blah.blah.com FastEthernet0/0 (full duplex). -- David Madland Sr. Network Engineer CCIE# 2016 Qwest Communications Int. Inc. [EMAIL PROTECTED] 612-664-3367 Emotion should reflect reason not guide it Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=31291t=31284 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Routing Exam 503 [7:31275]
Use the cisco books as the main reference and use Sybex and examcram few weeks before the exam to fresh up. That is what I did. Regards Jon Gudmundsson -Original Message- From: Brian Zeitz [mailto:[EMAIL PROTECTED]] Sent: 8. janzar 2002 14:52 To: [EMAIL PROTECTED] Subject: Routing Exam 503 [7:31275] I am studying for the routing exam. I am using Sybex book, I have heard it has a lot of mistakes, but that is why you should use more then 1 book. I have heard arguments for both the Cert Library and the Prep Library, if you look at the different book sites, it seems cert library sells more copies and comes with a CD. Www.bookpool.com has the entire set for 96$ US. I have not bought it yet though. I think a lot of people shout just use cisco when they actually used other books but don't want to reveal what they really used. Yea, colt is gone, but if you go to http://ciscoguide.net there is like 100 questions for CCNP routing there. I made them into PDFs and keep them on my palm pilot. There is a free study guide on cramsession.com, its not that great, but its free. I am disappointed at there CCNP question of the day, because they are from the 400 exam series, so outdated. I wish they would hire someone to write new questions. They are pretty much useless. Anyway, my suggestion is just use more then one source, that is what I do to cross reference to make sure there is no mistakes. I am the type of person that once I do a question, I remember it. So when I see it somewhere else, and its wrong I notice it. Well hope this help :-) Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=31292t=31275 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Double NAT with PIX [7:31294]
I have a 525 PIX and running normal configuration. Inside network is in 10.0.0.0/16 segment and doing NAT with public address. Here is the situation. I have a client where I need to have an access through my PIX with VPN. The client is using VPN Concentrator and also has 10.0.0.0/16 for their inside network. They sent me the VPN Client CD that I installed in my laptop and gained access to their network through outside segment meaning I attached my PC between my PIX's E0 and Internet router in otherwords bypassed PIX and configured my PC with public address. Is it possible to connect to their network with me being attached to my Internal network. The question is since both the networks mine and theirs are on the same LAN Segment how is it possible? Thanks, Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=31294t=31294 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
OT: Sniffers [7:31296]
I was wondering if anyone had experience with sniffers, not free ones like tcpdump and tethereal, but appliances that are made for that purpose. Anyone have any suggestions and approximate prices? Thanks. Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=31296t=31296 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Sniffers [7:31296]
I have experience with all sorts of ones, from Distributed Sniffer Pro 4.5 down to the free ones like ethereal and eEye's one. I like ethereal the best because it's so lightwweight (Sniffer is so taxing on PC's) and can read any prodect's cap files. It does everything you need. The only problem I have is that it dosen't recognize some packets like the LOOP packet on Cisco's ethernet ports. Sniffers DSS can be useful to grab stuff off of remote networks and they sell sniffer PC's with gig fiber cards in them to sniff backbone traffic if needed. Sniffer also has an expert mode that can be helpful with problems. -- RFC 1149 Compliant. FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Double NAT with PIX [7:31294]
You should be able to have them point to a non-overlapping subnet and NAT them back to the desired 10.0.0.0/16. Usually when I have done this in the past, the customer was coming into a DMZ on my end and I performed that there. I don't see why you wouldn't be able to do that here? ms --- Ali, Abbas wrote: I have a 525 PIX and running normal configuration. Inside network is in 10.0.0.0/16 segment and doing NAT with public address. Here is the situation. I have a client where I need to have an access through my PIX with VPN. The client is using VPN Concentrator and also has 10.0.0.0/16 for their inside network. They sent me the VPN Client CD that I installed in my laptop and gained access to their network through outside segment meaning I attached my PC between my PIX's E0 and Internet router in otherwords bypassed PIX and configured my PC with public address. Is it possible to connect to their network with me being attached to my Internal network. The question is since both the networks mine and theirs are on the same LAN Segment how is it possible? Thanks, [EMAIL PROTECTED] __ Do You Yahoo!? Send FREE video emails in Yahoo! Mail! http://promo.yahoo.com/videomail/ Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=31298t=31294 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Sniffers [7:31296]
I've always used the Dolch products. I believe the one that I've used was a Dolch 64. You can get a variety of network card for it from 10/100, Token Ring, FDDI, and ATM. Of course the prices will vary depending on the cards, memory, etc, but they usually run around 10-15K. Not cheap, but it comes in a hardend case which packs up nicely for easy transportation. You can see their entire line at www.dolch.com. Of course if you are looking for something a little bit more inexpensive you could always get a copy of Etherpeek and load it on a PC. I've been using it of late and it works really well. You can take a look at it at www.wildpackets.com. You can also download a 30 day evaluation copy just to check out. Hope this helps! Eric -Original Message- From: Lupi, Guy To: [EMAIL PROTECTED] Sent: 1/8/2002 10:53 AM Subject: OT: Sniffers [7:31296] I was wondering if anyone had experience with sniffers, not free ones like tcpdump and tethereal, but appliances that are made for that purpose. Anyone have any suggestions and approximate prices? Thanks. Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=31299t=31296 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Sniffers [7:31300]
The one that use to be made by Network General, now owned by Network Associates are the best ones you can get IMHO. I have used the Ethernet, Token-Ring, Internetwork, and ATM sniffers and the are all great. They have to models, you can have them in a notebook for portable sniffing or you can get Distributed sniffers that sit on your network and you can remotely control when and what you want to capture. You may want the mark them after installing them in your wiring closets. A phone SE cleaned a wiring closet out and thought one was an old PC someone dropped off and through it out. They start at about $10,000 and go up to $35,000 for the ATM version. Here's is the link: http://www.sniffer.com/ Another one that I hear a lot about is EtherPeek, worth looking into. Jeff Kesemeyer CCNP, CCDP, MCSE, CNE www.bradshawlabs.com Your CCIE Rack Rental Source -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] On Behalf Of Lupi, Guy Sent: Tuesday, January 08, 2002 12:50 PM To: '[EMAIL PROTECTED]'; '[EMAIL PROTECTED]' Subject: OT: Sniffers I was wondering if anyone had experience with sniffers, not free ones like tcpdump and tethereal, but appliances that are made for that purpose. Anyone have any suggestions and approximate prices? Thanks. Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=31300t=31300 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Sniffers [7:31296]
What are the free sniffers that you suggest to use ? Regards, Mario Rodrigues -Original Message- From: Steven A. Ridder [mailto:[EMAIL PROTECTED]] Sent: Tuesday, January 08, 2002 4:02 PM To: [EMAIL PROTECTED] Subject: Re: Sniffers [7:31296] I have experience with all sorts of ones, from Distributed Sniffer Pro 4.5 down to the free ones like ethereal and eEye's one. I like ethereal the best because it's so lightwweight (Sniffer is so taxing on PC's) and can read any prodect's cap files. It does everything you need. The only problem I have is that it dosen't recognize some packets like the LOOP packet on Cisco's ethernet ports. Sniffers DSS can be useful to grab stuff off of remote networks and they sell sniffer PC's with gig fiber cards in them to sniff backbone traffic if needed. Sniffer also has an expert mode that can be helpful with problems. -- RFC 1149 Compliant. FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=31301t=31296 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Sniffers [7:31296]
Ethereal. It's been ported from Linux to Win32. It's lightweight. But it's not perfect and can crash. www.ethereal.com If you use Windows 2000 or XP, just be sure to install the winpcap diver 2.3 beta. Otherwise 2.2 should work. http://netgroup-serv.polito.it/winpcap/ -- RFC 1149 Compliant. FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Routing Exam 503 [7:31275]
For the Routing 503 exam, Building Scalable Cisco Networks by Catherine Paquet and Diane Teare. It's ISBN # 1578702283. For other Cisco Press books, go to www.ciscopress.com Shawn K. -Original Message- From: ko haag [mailto:[EMAIL PROTECTED]] Sent: Tuesday, January 08, 2002 11:22 AM To: [EMAIL PROTECTED] Subject: Re: Routing Exam 503 [7:31275] Which Cisco Press book or books do you recommend? Ko Haag Kaminski, Shawn G wrote: The reason everyone shouts just use Cisco for the 503 exam is because the Cisco Press book exactly follows the Routing 503 exam blueprint. Every chapter in the Cisco Press book is one of the sections covered in the actual exam. You can pass the exam by just using this book. Shawn K. -Original Message- From: Brian Zeitz [mailto:[EMAIL PROTECTED]] Sent: Tuesday, January 08, 2002 9:52 AM To: [EMAIL PROTECTED] Subject: Routing Exam 503 [7:31275] I am studying for the routing exam. I am using Sybex book, I have heard it has a lot of mistakes, but that is why you should use more then 1 book. I have heard arguments for both the Cert Library and the Prep Library, if you look at the different book sites, it seems cert library sells more copies and comes with a CD. Www.bookpool.com has the entire set for 96$ US. I have not bought it yet though. I think a lot of people shout just use cisco when they actually used other books but don't want to reveal what they really used. Yea, colt is gone, but if you go to http://ciscoguide.net there is like 100 questions for CCNP routing there. I made them into PDFs and keep them on my palm pilot. There is a free study guide on cramsession.com, its not that great, but its free. I am disappointed at there CCNP question of the day, because they are from the 400 exam series, so outdated. I wish they would hire someone to write new questions. They are pretty much useless. Anyway, my suggestion is just use more then one source, that is what I do to cross reference to make sure there is no mistakes. I am the type of person that once I do a question, I remember it. So when I see it somewhere else, and its wrong I notice it. Well hope this help :-) Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=31304t=31275 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
CCIE preparation [7:31305]
I have recently attained the CCNA and CCNP certifications and was a little curious about preparing for the rigorous CCIE. I would like to know some information pertaining to preparing for this certification. I do have some access to Cisco equipment, and I know that nothing beats hands on experience. However, I was most curious how to go about the reading part of the preparation process. Now I know that there are some must-haves out there such as Jeff Doyles 2 volumes of Routing TCP/IP and Halabi's Internet Routing Architectures , and that book by Caslow keeps popping up. Is it a good idea to invest in these books and then prepare for the lab with the hands-on? Or is it a better idea to read these books while doing the hands-on? Any advice is greatly appreciated. Thank you. _ MSN Photos is the easiest way to share and print your photos: http://photos.msn.com/support/worldwide.aspx Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=31305t=31305 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: wireless max distance question [7:30822]
For those interested, I found that old link about the guy who submerged his motherboard in -40 degree mineral oil ;) http://www.drffreeze.com/Test2.htm - Original Message - From: Steven A. Ridder To: Sent: Thursday, January 03, 2002 7:59 PM Subject: Re: wireless max distance question [7:30822] The one where the guy bought 3M super computer coolant and doused his whole computer in it? I've read any oil can work, but this won't corrode the plastic on circuit boards. Allen May wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... That is one of the funniest hacks I've ever seen ;) Have you ever seen the one where that guy tried the ultimate coolant on his motherboard? It was some kind of non-conductive oil cooled by a refrigerator compressor to below freezing. The entire motherboard was submerged benchmarks went way up...rofl. Allen - Original Message - From: Jarmoc, Jeff To: Sent: Thursday, January 03, 2002 3:43 PM Subject: RE: wireless max distance question [7:30822] There's also the good ol' 802.11b pringles can hack. I haven't tried it, and it's obviously not something you'd want to implement in a business environment, but I've thought about playing with it as a home toy. http://verma.sfsu.edu/users/wireless/pringles.php Jeff Jarmoc - CCSA, CCNA, MCSE Network Analyst - Grubb Ellis [EMAIL PROTECTED] -Original Message- From: Steven A. Ridder [mailto:[EMAIL PROTECTED]] Sent: Thursday, January 03, 2002 2:17 PM To: [EMAIL PROTECTED] Subject: Re: wireless max distance question [7:30822] I've heard of a Cisco antenna boosters. Check the qprg. or http://www.cisco.com/warp/public/cc/pd/witc/ao340ap/prodlit/airoa_ds.htm Some directional antennas can get up to 25 miles. You may need a line of sight though. Check with Cisco FYI, Linksys wireless access points can be hacked via firmware and stuff to get a +3 to +4 dB gain in power. http://www.wi2600.org/mediawhore/nf0/wireless/docs/802.11/WAP11/fun_with_the _wap11.txt -- RFC 1149 Compliant. FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=31302t=30822 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
What equip is really necessary for lab studies? [7:31295]
Hello all; I know the equipment subject has been discussed many times in this group, I have followed many of the threads. Of course it would be nice to buy every piece of equipment on the CCIE lab list but sometimes that is not practical for people that have kids to feed. Anyway I would like some input on what I equipment I really need to concentrate on. Right now I have a 2523 for my frame-relay switch, a 2524,2504,2 2610's and 2 1900's. All have latest IOS and is sufficient for doing most OSPF, BGP and anything else. I was planning on getting a 2513 for translation bridging, and a 5500 and 2620 so I can do a router on a stick and VLAN stuff. I am 99% sure I need fast ethernet to do ISL and inter-VLAN routing hence the 5500 and 2620. I realized yesterday that the 4500 can support fast ethernet and token ring so instead of the 2513 and 2620 I can use this. I am also planning on getting a Teletone simulator for ISDN. As far a VOIP,ATM,and the 3900 I was going to use some rack time for practice. Here is what I need input on: 1)5500 and 4500 for inter-Vlan routing and VTP- Can I get away with rack time? 2)ISDN simulator- Again can I get away with rack time? 3)VOIP,ATM,3900 -rack time? I just got the new CCIE Practical studies Part1 and don't see much inter-VLAN routing. I looks like a great book I only got it yesterday and its worth a look. They are going to put out volume2 which will go into BGP and IPX more. I assume Inter-VLAN routing be covered in the lab, just how much? If the recommendation from everyone is to get the equipment I will,I would rather spend it on a bootcamp a month before the LAB. I plan on taking the lab in Sept, but I want to nail down the equipment so I can have one less thing on my mind. I have access to a lot of equipment at work I just can't play that much. Thanks in advance everyone! Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=31295t=31295 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Sniffers [7:31296]
Ethereal -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Rodrigues, Mario Sent: Tuesday, January 08, 2002 12:43 PM To: [EMAIL PROTECTED] Subject: RE: Sniffers [7:31296] What are the free sniffers that you suggest to use ? Regards, Mario Rodrigues -Original Message- From: Steven A. Ridder [mailto:[EMAIL PROTECTED]] Sent: Tuesday, January 08, 2002 4:02 PM To: [EMAIL PROTECTED] Subject: Re: Sniffers [7:31296] I have experience with all sorts of ones, from Distributed Sniffer Pro 4.5 down to the free ones like ethereal and eEye's one. I like ethereal the best because it's so lightwweight (Sniffer is so taxing on PC's) and can read any prodect's cap files. It does everything you need. The only problem I have is that it dosen't recognize some packets like the LOOP packet on Cisco's ethernet ports. Sniffers DSS can be useful to grab stuff off of remote networks and they sell sniffer PC's with gig fiber cards in them to sniff backbone traffic if needed. Sniffer also has an expert mode that can be helpful with problems. -- RFC 1149 Compliant. FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=31306t=31296 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
6509 switch [7:31251]
I have had lots of FCS and collision errors on ports where one end is full duplex and the other half. [this is on general with switches, i dont think its 6509 specific] check his PC's nic settings re: FDx and speed, autonegotiation and compare that to the 6509 port's. I'd suspect that his PC is probably half duplexing and the switch is full. BTW you probably want to just nail the port (and NIC) to a given speed and duplex. -j. -- John W Reames / Director, Academic Computing, Morgan State University, MD [EMAIL PROTECTED] / http://jewel.morgan.edu/~reames / Fax: 410-319-3604 Calloway Hall Rm 326 / Voice: 443-885-3512 / Voicemail: 443-885-4502 Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=31307t=31251 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Router down for a few seconds, many times [7:31308]
I have a Cisco 4000 in the core that goes down for 15 seconds or so about 10 times a day. All interfaces are unreachable (pinging), and from what I can tell the actual interfaces never actually drop. I will console into it, but any ideas what I can look for? show processes and ?TIA Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=31308t=31308 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: CCIE preparation [7:31305]
You might also need / go thru the book - BGP configurtion and command reference - William Parkhurst. The book covers almost all the commands under BGP and simple example for all of those. my $0.02 rajesh Marcus Faust wrote: I have recently attained the CCNA and CCNP certifications and was a little curious about preparing for the rigorous CCIE. I would like to know some information pertaining to preparing for this certification. I do have some access to Cisco equipment, and I know that nothing beats hands on experience. However, I was most curious how to go about the reading part of the preparation process. Now I know that there are some must-haves out there such as Jeff Doyles 2 volumes of Routing TCP/IP and Halabi's Internet Routing Architectures , and that book by Caslow keeps popping up. Is it a good idea to invest in these books and then prepare for the lab with the hands-on? Or is it a better idea to read these books while doing the hands-on? Any advice is greatly appreciated. Thank you. _ MSN Photos is the easiest way to share and print your photos: http://photos.msn.com/support/worldwide.aspx Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=31310t=31305 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Router down for a few seconds, many times [7:31308]
Check the load on the link. Check cpu load. Check sh int to make sure no int's were reset. Check with your service provider to make sure they're not having any problems, check with the LEC to check your circut to see if it's dirty. -- RFC 1149 Compliant. FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: CCIE preparation [7:31305]
You will most likely read these books many times. I've found that doing the hands-on while reading the books helps me understand what is being said. At the same time, it takes some of the boredom out of trying to plow through books of this size! Hands-on experience is so critical that I can't stress it enough. When I first started doing the Cisco certification track many years ago, I learned a quick lesson that the real world is very unlike book-learning. So, my suggestion is to read the books while doing the hands-on. Shawn K. -Original Message- From: Marcus Faust [mailto:[EMAIL PROTECTED]] Sent: Tuesday, January 08, 2002 2:11 PM To: [EMAIL PROTECTED] Subject: CCIE preparation [7:31305] I have recently attained the CCNA and CCNP certifications and was a little curious about preparing for the rigorous CCIE. I would like to know some information pertaining to preparing for this certification. I do have some access to Cisco equipment, and I know that nothing beats hands on experience. However, I was most curious how to go about the reading part of the preparation process. Now I know that there are some must-haves out there such as Jeff Doyles 2 volumes of Routing TCP/IP and Halabi's Internet Routing Architectures , and that book by Caslow keeps popping up. Is it a good idea to invest in these books and then prepare for the lab with the hands-on? Or is it a better idea to read these books while doing the hands-on? Any advice is greatly appreciated. Thank you. _ MSN Photos is the easiest way to share and print your photos: http://photos.msn.com/support/worldwide.aspx Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=31312t=31305 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
CCIE security boson [7:31314]
All I just passed the CCIE for R/S. I am doing the CCIE for security. Is the www.boson.com/eula.htm any good? It is under CCIE Written CCNP Specialization try here: http://download.boson.com/downloads/boson/bos_rspc.exe Kage __ Do You Yahoo!? Send FREE video emails in Yahoo! Mail! http://promo.yahoo.com/videomail/ Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=31314t=31314 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: CCIE preparation [7:31305]
The written exam is primarily theory and background, with some (but not an overwhelming) amount of Cisco IOS content. Follow the blueprint and check out the recommended reading list: http://www.cisco.com/warp/public/625/ccie/certifications/routing.html For the Lab exam, here are a number of links providing the basics for it: http://www.cisco.com/warp/public/625/ccie/exam_preparation/lab.html http://www.cisco.com/warp/public/625/ccie/ccie_program/new_format.html - Original Message - From: Rajesh Kumar To: Sent: Tuesday, January 08, 2002 11:49 AM Subject: Re: CCIE preparation [7:31305] You might also need / go thru the book - BGP configurtion and command reference - William Parkhurst. The book covers almost all the commands under BGP and simple example for all of those. my $0.02 rajesh Marcus Faust wrote: I have recently attained the CCNA and CCNP certifications and was a little curious about preparing for the rigorous CCIE. I would like to know some information pertaining to preparing for this certification. I do have some access to Cisco equipment, and I know that nothing beats hands on experience. However, I was most curious how to go about the reading part of the preparation process. Now I know that there are some must-haves out there such as Jeff Doyles 2 volumes of Routing TCP/IP and Halabi's Internet Routing Architectures , and that book by Caslow keeps popping up. Is it a good idea to invest in these books and then prepare for the lab with the hands-on? Or is it a better idea to read these books while doing the hands-on? Any advice is greatly appreciated. Thank you. _ MSN Photos is the easiest way to share and print your photos: http://photos.msn.com/support/worldwide.aspx Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=31315t=31305 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
CCIE counters, r they going up? [7:31318]
Someone on the list (I think it was Chuck) used to try and keep track of how many new IE numbers they saw each week. I was wondering, with the new lab, how many on avg are passing ea. week or month. Just curious. Chris Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=31318t=31318 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: OT: Sniffers [7:31296]
Agilent.com has a software version of their Advisor hardware box. You can try the 45day trial of Advisor Software (SW) edition for free. If you like, you can buy just the parts you need. (Or if you are and educational facility - The full version is FREE) Later Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=31317t=31296 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: IPv6 [7:31228]
A peer of mine is doing some testing of IPv6, has a tunnel to the 6bone. There are a lot of organizations running some IPv6, more all the time. As for mainstream I would guess it's a good couple of years. It obviously cannot happen overnight but you will have the early adopters as as more people gain experience, competance and comfort with IPv6 it will grow and become mainstream. IPv6rtr#sh ipv6 int fa0/1.708 FastEthernet0/1.708 is up, line protocol is up IPv6 is enabled, link-local address is FE80::2B0:64FF:FE35:2801 Global unicast address(es): 3FFE:C00:8031:2::1, subnet is 3FFE:C00:8031:2::/64 Joined group address(es): FF02::1 FF02::2 FF02::1:FF35:2801 FF02::1:FF00:1 MTU is 1500 bytes ICMP error messages limited to one every 500 milliseconds ICMP redirects are enabled ND DAD is enabled, number of DAD attempts: 1 ND reachable time is 3 milliseconds ND advertised reachable time is 0 milliseconds ND advertised retransmit interval is 0 milliseconds ND router advertisements are sent every 200 seconds ND router advertisements live for 1800 seconds Hosts use stateless autoconfig for addresses. Here is a good URL for much more info than I have: http://www.6bone.net/ Dave Steven A. Ridder wrote: Another question, When's IPv6 gonna hit the mainstream? Or the backbone? Of all the stuff I ever read on it, the main reason it came into play was because of the impending depletion of public addresses. Well with NAT, firewall and other proxy services handiling a lot of requests onto the public internet, the depletion has been put out a few years (actually, does anyone have any good like, studies pointing out when this is supposed to happen now?). So what else is going to drive the adoption of IPv6? -- RFC 1149 Compliant. FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] -- David Madland Sr. Network Engineer CCIE# 2016 Qwest Communications Int. Inc. [EMAIL PROTECTED] 612-664-3367 Emotion should reflect reason not guide it Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=31319t=31228 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: OT: Sniffers [7:31296]
I use both the NAI Sniffer and WildPackets EtherPeek. I like EtherPeek best because the user interface is so intuitive. When trying to do a new task (like save names or whatever), it seems like my first method of doing it always works. With Sniffer, you have to fight the thing to get it to do what you want. Sniffer has an expert system that is somewhat useful for automatically determining problems. EtherPeek has NetSense which is similar. On the downside, EtherPeek used to do a poor job decoding some Cisco protocols such as EIGRP, VTP, and ISL. I know they have fixed EIGRP (for IP, but not IPX or AppleTalk) in their current version. I haven't checked VTP or ISL. I don't know pricing but I think they are quite expensive Priscilla At 12:53 PM 1/8/02, Lupi, Guy wrote: I was wondering if anyone had experience with sniffers, not free ones like tcpdump and tethereal, but appliances that are made for that purpose. Anyone have any suggestions and approximate prices? Thanks. Priscilla Oppenheimer http://www.priscilla.com Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=31320t=31296 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Update: BECN vs TCP congesttion control [7:31219]
I have been searching as to the purpose of these FECN and BECN bits, and I found this in an old newsgroup from 1994 from a guy who wrote part of Frame Relay standards. Looks like Howard and Pricilla were right in that IP wasn't a concern, as IBM had SDLC and ATT BellCore had x.25 and other netowrks. Looks like x.25 had congestion issues cause of no layer 4? Am I right? From: [EMAIL PROTECTED] (Fred R. Goldstein) Newsgroups: comp.dcom.frame-relay Subject: Re: Use of FECN/BECN for congestion management. Date: 16 Nov 1994 16:15:56 GMT Organization: Bolt Beranek and Newman Inc. Lines: 86 Message-ID: References: NNTP-Posting-Host: bbn.com I was part of the Frame Relay Congestion Control battle/brou-ha-ha, or whatever you prefer to call it, from around 1985 to the time the ANSI standards were published in 1991. So I _can_ give some historical background to the motivations behind BECN and FECN. I also wrote much of the text for FECN. When Frame Relay was conceived, there was little attention paid to congestion issues. Frame Relay became the standard because ATT was pushing HARD for a New Packet Mode Bearer Service (NPMBS) which would use Layer 2 multiplexing. This was invented by ATT as DMI Mode 3 which used full LAPD plus X.25 PLP with a single layer 3 channel in each L2 VC. In spring, 1986, ATT, IBM and Bellcore agreed to work on Frame Relay and advance it towards ANS status via ANSI T1D1 (later became T1S1). None of these companies had much IP experience at the time, and it was mostly X.25-experienced people working on it. So the congestion issues needed to be brought out. I was working for a company that sold connectionless networks, and we KNEW about congestion and the possibilities of congestion collapse. (Firsthand experience with congestion collapse in the eary '80s was a very good learning experience.) BTW, my main authority on this topic was Raj Jain, who invented slow-start (named CUTE, congestion control using timouts in the end-to-end layer) before Van did, and is credited in a footnote in Van's aticle. Since modern connectionless-network-layer-based networks use the transport layer for flow control, and have RECEIVER-based windows, we figured it was best to the the RECEIVER that the network was congested, because it could reduce its window size. We were still in the era when we expected OSI to catch on, and the North American OSI Implementors' Agreement for CLNP defined exactly how to use the Congestion Encountered bit in the CLNP header to dynamically adjust the windows size in TP4. Semantically, TP4 is a lot like TCP, and CLNP is a lot like IP, but IP lacks the CE bit. :-( Therefore I proposed the FECN bit. This made the FR header address field look different from LAPD, because we had to steal a bit (LAPD has 13 bits of address.) The technical name for this is Explicit Binary Feedback. IBM, on the other hand, had implemented a congestion control strategy for SNA using SDLC. In SDLC, the only window is in the SENDER. So they had no use for FECN, an asked for a BECN bit. We argued about it; having both bits was not widely supported at first because it would have shrunk the DLCI by another bit! Making it a per-connection option (the bit is FECN _or_ BECN) was also not popular. Eventually (by 1989) consensus moved towards having both bits. The DE bit was added because the networks needed a way to police the whole shebang. Since this was a telco service and telco like to sell rate-based services, they wanted a way to carry excessive (exceeds the CIR leaky bucket but not the EIR leaky bucket) traffic, but at lowered priority. DE does this quite nicely. Thus we have three bits stolen from the DLCI. The whole rate-based thing was written by T1S1.1 (Services) into T1.610-Addendum, while the FECN and BECH were written by T1S1.2 (Protocols) into T1.618 (Core Aspects of LAPF). The two mechanisms are unrelated! ATT, btw, was concerned about asymmetrical packet voice traffic, and they put in the Consolidated Link Layer Management message (CLLM), which is in effect a complex Frame Relay Source Quench. This isn't widely used. So in summary, the FECN bit was aimed at feeding the Layer 3 Congestion Encountered bit, which in turn was to shrink the L4 window (preferably before losing frames, and thus providing a smoother flow). The BECH bit was aimed at reducing the HDLC/SDLC window. CIR/EIR was aimed at protecting the network against users who didn't pace their traffic; in practice, it causes strategic discards which trigger VJ slow-start, and that forms an implicit feedback mechanism. The semantics of FECN and BECN (how you should react; how it is set) are also INDEPENDENT of one another; they were invented separately and have different notions of congestion. And because they're all optional, there's no reasonable possibility of conformance testing. It would be ideal if IP were to add a CE bit, like the one in CLNP. TUBA, of course, has it, but current IPv6 drafts
PIX and Websense [7:31323]
Are there other filtering servers that can be used with PIX beside Websense? I'm to find a Linux based filtering solution. Rodney Jackson Dallas Semiconductor Network Engineer (972) 371-4824 [GroupStudy.com removed an attachment of type application/octet-stream which had a name of Rodney Jackson.vcf] Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=31323t=31323 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: PIX and Websense [7:31323]
maybe one should try searching for the technology used instead of specific software packages. (Content Vectoring Protocol) a quick search on google yields tons of hits for cvp, linux, and cisco pix... I don't have the time for relev. checking. You could also try freshmeat.net -Patrick Rodney Jackson 01/08/02 04:16PM Are there other filtering servers that can be used with PIX beside Websense? I'm to find a Linux based filtering solution. Rodney Jackson Dallas Semiconductor Network Engineer (972) 371-4824 [GroupStudy.com removed an attachment of type application/octet-stream which had a name of Rodney Jackson.vcf] Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=31325t=31323 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: popularity of the CID test [7:31081]
Here I am again I would say that I am studding like a dog for this test but the more interesting is the following: The more your study the less you know and want to study more and more it is like a drug.. The test should be a requirement for a ccnp.. I have learn so much preparing for this test because the fact that everything in networking is not what you see In order for any one to be a good network engineer a level of thinking in a more conceptually way should be high... Any one who is planning for the CCIE should take the CCDP track, it will help a lot. JB -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Logan, Harold Sent: Tuesday, January 08, 2002 9:39 AM To: [EMAIL PROTECTED] Subject: RE: popularity of the CID test [7:31081] I agree that the test is difficult, and I can understand someone being frustrated after taking it. When the correct answers aren't black-and-white, there's a lot more second-guessing that comes into play. IMO, in order to truly test a candidate's design abilities, every question would have to have a fifth multiple choice of E: It depends and a text box for the candidate to explain his or her answer. Of course, the grading of said exam wouldn't exactly be scalable... there would hafta be proctors reading through the responses and deciding if they're valid or not... but hey it'd be more jobs for CCDP's right? Ok, bad idea. But I think the subjectiveness of many of the questions is what makes the test difficult, and when you take the test you get to decide if you're reading too much into a question, or not reading enough. Hal Logan CCAI, CCDP, CCNP+Voice Network Specialist / Adjunct Faculty Computing and Engineering Technology Manatee Community College -Original Message- From: Priscilla Oppenheimer [mailto:[EMAIL PROTECTED]] Sent: Monday, January 07, 2002 3:47 PM To: [EMAIL PROTECTED] Subject: Re: popularity of the CID test [7:31081] I don't agree that the CID test is badly written, although I have not seen the new version. (Is it really bad and in what ways?) I do agree that the CID test uses a different model from most of the other tests. (CCIE written is somewhat similar to CID). The test writer assumes that you know the basic technology answer. To get the right answer you have to think past the obvious, basic answer and think about the caveats, where and how to deploy the protocol or feature, the scalability, performance issues, etc. Answering correctly requires two-step thinking. People who remember that when they take the test get a better score and feel less frustrated. I think the test isn't popular because Cisco needs companies to train and certify droves of technician drones. Only a few gurus get to design or redesign networks. ;-) The mass majority of people don't think conceptually. A lot of schools these days focus on how to rather than creative, analytical thinking. I hope that changes and that the comment doesn't start a flame! Speaking of flames, however, I'm still burning from the idiotic comment someone made about one of our illustrious members not having operational experience. Whereas it wasn't true, it also missed the opportunity to see what a blessing it is to have a protocol designer amongst us. It would be as if James Watson dropped in on a discussion group for lab technicians. Or if Picasso dropped in on a discussion amongst Web-page graphics developers. There's more to Cisco certification than getting a job that will let you wear a beeper and spend time fixing stuff. Hopefully, you'll also get to create stuff. CCDPs and CCIEs get to do analytical, innovative, strategic work in addition to operational, tactical, configuration work. And that's where the adventurous, fun aspects of this industry come into play! Priscilla At 12:06 PM 1/7/02, Robert Padjen wrote: I am also quite surprised at the reality and perception regarding this exam. Based on book sales, there is a lot of interest in design (not as much as CCNA unfortunately), but the corporate environment stressed the CCIE and only looked to the CCNP. I think this was due to two factors. First, testers didn't push the DP track (whether it was the DA or the DP - I would contend both) and business don't seem to stress the design component outside of the carrier space and more tech-driven Fortune 500. The second is the perception that the exam is hard, which is the focus of this board. I would argue, failures aside, that the test is hard because it is badly written and it focuses on a different model then the other exams/tracks. As such, preparation should do it, or at least get an applicant close. The poor quality of the exam (both versions) is a bit of a tweak for me, as it made writing a book on the exam more difficult - one had to focus on the test passing and the 'correct, non-Cisco answer'
Router down for a few seconds, many times [7:31308]
Well, show log would be a good start. You haven't given us much to go on, but if the interfaces don't actually drop it could be a routing protocol problem. Or it could be a lot of other things :-) Does this happen at specific times? Regular intervals? Or is it random? Is there anything else happening on your network that you can correlate with this? What does the log show? Hopefully that will give you an idea of what to look at. You may then need to put on some debugs to get further information. Use debugs cautiously or they can hang a perfectly healthy router! JMcL - Forwarded by Jenny Mcleod/NSO/CSDA on 09/01/2002 09:02 am - NetEng cc: Sent by: Subject: Router down for a few seconds, many nobody@groupstudy.times [7:31308] com 09/01/2002 06:36 am Please respond to NetEng I have a Cisco 4000 in the core that goes down for 15 seconds or so about 10 times a day. All interfaces are unreachable (pinging), and from what I can tell the actual interfaces never actually drop. I will console into it, but any ideas what I can look for? show processes and ?TIA Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=31327t=31308 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Poll-interval option. [7:31328]
Hi all, Can somebody clarify me the meaning of the poll-interval sub option in more descriptive way in this command. 1. neighbor priority poll-interval Thanks Rajesh Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=31328t=31328 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: CDP Duplex Message [7:31284]
The CDP duplex error message may not mean you have a mis-match in the speed/duplex somewhere. The message occurs because CDP version 2 packets include duplex information. CDP version 1 doesn't include duplex info. If you have a older device that speaks CDP version 1 only and you're router speaks CDP version 2 then you'll get this message. Ways to fix it are to disable CDP, or change from CDP version 2 to version 1. You can do this by doing a 'no cdp advertise-v2' globally on the routers. Not sure about the switches. --- Bolton, Travis wrote: Make sure that both the router and the switch are hard set to the speed/duplex setting that you require. Such as possibly 100/full. Don't use Auto Negotiate. If you have any questions on this then give me an email and we can discuss further. -Original Message- From: MADMAN [mailto:[EMAIL PROTECTED]] Sent: Tuesday, January 08, 2002 10:33 AM To: [EMAIL PROTECTED] Subject: Re: CDP Duplex Message [7:31284] Fix the problem and they will go away! Dave Russ Kreigh wrote: How do I disable these messages in my show log? *Jan 8 08:00:57: %CDP-4-DUPLEX_MISMATCH: duplex mismatch discovered on FastEthernet0/0 (not full duplex), with blah.blah.com FastEthernet0/0 (full duplex). -- David Madland Sr. Network Engineer CCIE# 2016 Qwest Communications Int. Inc. [EMAIL PROTECTED] 612-664-3367 Emotion should reflect reason not guide it [EMAIL PROTECTED] __ Do You Yahoo!? Send FREE video emails in Yahoo! Mail! http://promo.yahoo.com/videomail/ Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=31329t=31284 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Update: BECN vs TCP congesttion control [7:31219]
I have been searching as to the purpose of these FECN and BECN bits, and I found this in an old newsgroup from 1994 from a guy who wrote part of Frame Relay standards. Looks like Howard and Pricilla were right in that IP wasn't a concern, as IBM had SDLC and ATT BellCore had x.25 and other netowrks. Looks like x.25 had congestion issues cause of no layer 4? Am I right? First, you've found an excellent source. Fred's ISDN in Perspective is one of the best books around. Second, you're still thinking in an IP-ish way when you talk about congestion issues. SDLC is part of SNA, and there are definitely flow control mechanisms in it. But there was an even more fundamental issue in the SNA world: the host was in control. As a terminal, you didn't transmit until you were invited to transmit. The controlling mainframe or front end did not send out invitations until it was ready to receive. Remember also that the mainframe (or equivalent) was assumed under the control of a single organization, who usually kept a very close eye on resource utilization. New devices COULDN'T be added to an SNA network without intervention by the system programming group. Now, as to X.25 -- you have to think telephony. We don't think of congestion during traditional telephone calls as an issue, because the PSTN uses connection admission control. If the core network is at capacity, you'll get the fast busy (technically reorder) signal and you can't make that call. X.25 had a bunch of congestion management features, but using a smart network/dumb host model rather than the reverse model in IP. To start with, it was an access, not an end-to-end protocol. The network was perfectly free to refuse to accept a call request if the network decided it didn't have the needed capacity. In extreme conditions, the network could clear calls in progress if the network became overcongested. ATM has the same capabilities. Early X.25 applications were telnet-like, and half duplex -- so there was end-to-end control at the application layer. X.25 also had a very limited end-to-end function at the packet layer, which was never widely implemented -- called the D bit. Typically, if you had X.25 network performance problems, the first bottleneck was bandwidth on the link to the network entry point. You would either upgrade the link, or reduce the number of simultaneous calls that it would accept (i.e., the number of users). I suppose I'm saying that SNA and X.25 were appropriate protocols for a much more centrally managed organization than today's networks. In the right context, they tend to be more reliable than many Internet applications, but they are more expensive in many ways. Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=31330t=31219 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: redistribute rip route to igrp [7:31270]
The answer to your question is YES. When used with the IGRP/EIGRP,the metric keyword sets the bandwidth value (in kbps), the delay (in tens of microseconds), the reliability (out of 255), and finally the maximum transmission unit (MTU). These five values constitute the SEED METRIC. The seed metric is the initial metric value of an imported route. After it is imported into IGRP/EIGRP AS, a RIP route begins its life as an IGRP/EIGRP route with composite metric derived from these values -- regardless of its former RIP metric. However, as the imported route is propagated to other IGRP/EIGRP routers, its metric value will increment according to the rules of IGRP/EIGRP. When a router receives updates from different routing protocols about the same network, it can't use dissimilar metrics to evaluate a route , so it uses the administrative distance to decide decide which protocol to believe. The lower the value of administrative distance the more believable the protocol. Bandwidth and dealy are the most important ones when calculating the composite metric. Hope this helps. Regds, Murtaza - Original Message - From: Howard C. Berkowitz To: Sent: Tuesday, January 08, 2002 6:21 AM Subject: Re: redistribute rip route to igrp [7:31270] When i redistribute rip route to igrp process,do i have to input all the 5 metric ? how to get the metric value ? Thanks. Assume you don't input them, and IGRP receives the route. What would IGRP use as a metric that it distributes to the other IGRP routers? Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=31331t=31270 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: OT Request; LAN/WAN monitoring software [7:31227]
Try www.ipswitch.com. There you will find what's up. Its a monitoring software. From: Michael Smith Reply-To: Michael Smith To: [EMAIL PROTECTED] Subject: OT Request; LAN/WAN monitoring software [7:31227] Date: Mon, 7 Jan 2002 19:45:57 -0500 A bit off topic, but would appreciate any suggestions - Looking for a software solution, not UNIX based, that has capabilities to centrally monitor hardware and network traffic on a small LAN/WAN network, that contains HP switches, Cisco routers and Compaq servers. HPOV is not an option, end user is not UNIX guru, and network is Win2k based. Any suggestions would be most appreciated. Regards, Michael Smith _ MSN Photos is the easiest way to share and print your photos: http://photos.msn.com/support/worldwide.aspx Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=31332t=31227 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Sniffers [7:31296]
Ethereal on Win32 is a great after-the-fact debugging/analysis tool Probably the best. My favorite part is not only does it open pcap files, but also GZIPPED pcap files. It supports a TON of protocols. http://www.ethereal.com/ However, as for actual packet capture and backend statistics and organization, I think tcpdump (and associated tools) on *BSD with full BPF is light years ahead of anything else. It's the only code out there given significant attention by the internet community for years. Yes, sorry, it's not a GUI by itself, but if you know what you are doing, you can extend tcpdump to all your packet capture needs with the help of maybe a few other tools out there. One only needs to do a search for tcpdump or pcap on sourceforge or freshmeat or google or some other search engine. tcpdump uses the Berkeley Packet Filter (BPF) and libpcap. http://www.tcpdump.org/ I have noticed one company that has a most interesting offering, Niksun, http://www.niksun.com/, has a product called NetVCR which seems more capable than just a web-based SnifferPro-like tool The collection and distributed features of the product seem very useful, it's more of a monitoring/statistics tool that scales to almost any traffic/bandwidth equation. This stuff may cost a lot, but it's definitely light years ahead of Distributed SnifferPro or any other commercial packet capture tool. Speaking of scaling to almost any amount of traffic, our next-generation sniffers are probably going to have to be driven by hardware. One currently possibility for this is Foundry's JetCore ASIC in their switch products. Foundry is building XRMON and sFlow (http://www.inmon.com/) software into this chip. This means you can do packet capture at multiple Gbps and get the details of every frame across the wire. Now you just have to write it to disk... -dre Steven A. Ridder wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... Ethereal. It's been ported from Linux to Win32. It's lightweight. But it's not perfect and can crash. www.ethereal.com If you use Windows 2000 or XP, just be sure to install the winpcap diver 2.3 beta. Otherwise 2.2 should work. http://netgroup-serv.polito.it/winpcap/ Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=31333t=31296 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Routing Exam 503 [7:31275]
The Cisco Press BSCN book is great. I highly recommend it. Do all of the labs if you can. The Cert Guide, on the other hand, is outrageously full of errata. And when I say errata, I don't just mean misprints (althought there are tons of those as well). LSAs and aggregate addresses often are described as going in the wrong direction. For example, if I understand the RFC correctly, OSPF type 4 LSAs are generated by ABRs, sent into non-backbone areas, and describe the ASBRS that are available in the AS. In the Cert Guide, type 4 LSAs are sent from the ABRs to ASBRs. That is done, according to the Cert Guide, so that the ASBR can send info on summary networks into other routing domains. So on and so on. Worst part of all is that the book is in its fourth printing and nothing has been done to fix it and there is no errata sheet on the Cisco Press web site. Having said all of that, the book is still borderline useful, but only if you already really know your stuff so you can see the many errors. I also read the Exam Cram book. It is a nice review but is very top-level, as you might expect. By the way, it is a myth that COLT exams are gone. I just tried one the other day. Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=31334t=31275 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Call Manager 3.1 [7:31335]
Hello, I'm wondering if I can load CallManager 3.1 on any Compaq server or I have to buy from Cisco? I got error message This application may only be installed on servers that were deployed using the standard Cisco-approved process when I tried to install it. Thanks in advance. Jim __ Do You Yahoo!? Send FREE video emails in Yahoo! Mail! http://promo.yahoo.com/videomail/ Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=31335t=31335 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
help on acl setup [7:31336]
Hello all, I have a question regarding acl setup. I have a network addr to deny access on odd ip addr and permit even ip addr in telnetting. Can anyone tell me how to setup? Thanks Jin Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=31336t=31336 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Call Manager 3.1 [7:31335]
Technically you must buy from cisco, but I've seen other ways of getting it lo load Jim Bond wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... Hello, I'm wondering if I can load CallManager 3.1 on any Compaq server or I have to buy from Cisco? I got error message This application may only be installed on servers that were deployed using the standard Cisco-approved process when I tried to install it. Thanks in advance. Jim __ Do You Yahoo!? Send FREE video emails in Yahoo! Mail! http://promo.yahoo.com/videomail/ Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=31337t=31335 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: ATM with 7200 and IMA with CES [7:29368]
Thanks Dave. There is no problem is assigning a single link to the min active IMA links. This will indeed allow you to utilize one link per IMA group. But that is not the problem. If the carrier doesn't support IMA (i.e. terminating the circuit to a T1 card and not a cell relay card with IMA support), all you will see is: status is up while the line protocol is down. That's why you will need to use pass through mode. Thanks - Original Message - From: MADMAN To: GS Cc: Sent: Tuesday, January 08, 2002 10:34 AM Subject: Re: ATM with 7200 and IMA with CES [7:29368] Actually I have done serveral IMA configs utilizing regular ole T1 circuits and you only need a single subnet if you configure an IMA interface and assign the interfaces to it via the ima group. http://www.cisco.com/warp/public/121/paima.html Dave GS wrote: You should ask you carrier what type of cards they are terminating the T1 lines to. Most carriers support IMA and all u need is properly configure your IMA group. If however you carrier have delivered three T1 in the form of three separate local loops and they are terminating your access to T1 cards then you have to: load balance/Share on ur 7200 using L3 ( such as equal cost load balancing through static routes or whatever). The problem of this setup is that it each local loop is required to have it own subnet. You will have to configure your ATM-IMA adaptor in what we call pass-through mode (which necessarily implies that each port functions as an individual T1 port without the benefits of IMA). The IMA-Mux you're looking for is useless for your case.. since all the IMA mux do is take a single input (normally E10) and delivers an inverse muxed stream (meaning ATM cells belonging to the same connection split over several outgoing links) If ur carrier is doing the latter I suggest u save ur self the headache and dump them :- Adam Wang wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... Hi group, I have a few 7200 with ATM-CES adapters in them. I want to depoly them over WAN with a 4.5 meg bandwidth to each. The telco handed to us 3 T1s. I would assume an IMA device of some kind is needed here. However, I still want to use the existing ATM-CES adapters for this case. How would I set this up if I use a Cisco IMA adapter? Are there any other external IMA mux besides the cisco's IMA adapter that I can use with my atm-ces module, and are less than $5000? I'm new to ATM, so any input would be greatly appreciated. Adam __ Do You Yahoo!? Check out Yahoo! Shopping and Yahoo! Auctions for all of your unique holiday gifts! Buy at http://shopping.yahoo.com or bid at http://auctions.yahoo.com -- David Madland Sr. Network Engineer CCIE# 2016 Qwest Communications Int. Inc. [EMAIL PROTECTED] 612-664-3367 Emotion should reflect reason not guide it Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=31338t=29368 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Call Manager 3.1 [7:31335]
Steven is correct. There are ways of getting CCM to load on non-certified platforms, but is obviously is not supported whatsoever by TAC. We utilize a configuration such as this in our traveling demo pod for customer demos on IP Telephony. I personally worked with some of our local Cisco SE's in getting a blessing of sorts on our config for this type of install. We were specifically told not to repeat what we were doing simply because of the fact that quality at times can be severely affected when CCM and Unity are run on lower powered boxes or laptops, and Cisco does not need customers trying to mess around with these sort of things. I'm limited in what I will say about this, since I am a firm supporter of customers using certified hardware, especially when dealing with voice, where quality is always under scrutiny. That's my two cents worth at least. Cheers. Steven A. Ridder wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... Technically you must buy from cisco, but I've seen other ways of getting it lo load Jim Bond wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... Hello, I'm wondering if I can load CallManager 3.1 on any Compaq server or I have to buy from Cisco? I got error message This application may only be installed on servers that were deployed using the standard Cisco-approved process when I tried to install it. Thanks in advance. Jim __ Do You Yahoo!? Send FREE video emails in Yahoo! Mail! http://promo.yahoo.com/videomail/ Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=31339t=31335 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Update: BECN vs TCP congesttion control [7:31219]
So I guess frame-relay assumes a smart network/dumb host type situation? The only other thing I saw was Fred's statement ...None of these companies had much IP experience at the time, and it was mostly X.25-experienced people working on it. So the congestion issues needed to be brought out. I was working for a company that sold connectionless networks, and we KNEW about congestion and the possibilities of congestion collapse. (Firsthand experience with congestion collapse in the eary '80s was a very good learning experience.)... What does he mean when he speaks about congestion collapse? Was this the case in a dumb network where too many calls would just bring it down? Did this bring up the need to create fecn/becn as a sort of next-generation type thing to correct the problems they may have experienced in previous type networks? Was there a parallel, but opposite school of thought in the TCP/IP networks (I guess the Internet and ARPANET) of a smart host/dumb network where the hosts and rotuters would handle congestion with TCP and ICMP source quench messages and the such? If I can assume that there were two schools of thought, can I also assume that frame-relay with it's smart network/dumb host model and tcp/ip's smart host, peer-to-peer network were never meant to merge? Also, what effect does becn/fecn (if implemented) have on TCP/IP's windowing? Any? Should the two never be used together, or can they co-exist peacefully if implemented right? Sorry to ask all these questions, but this is like a history lesson to me (IP was RFC'd in 1981, so I was 3 years old) and I learn best if I can get a grasp on not only how things are done, but why. -- RFC 1149 Compliant. FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
FW: CCIE preparation [7:31305]
Just yesturday I was putting something together for someone who used my boson to pass the written. Most of it is just some of the common wisdom from the history of this group. Here's what I had, and I welcome feedback (and good hearted abuse) from the group... my first draft follows -- Read um and Weep Here's the short list of books I would recommend to read (at a minimum) during your lab preparation. Find yourself a shady spot outside, and crack the spine of each of these page-turners, it's the only chance you'll have to see the sun for a few months: 7 Cisco Certification: Bridges, Routers and Switches for CCIEs, Second Edition by Andrew Bruce Caslow 7 Internet Routing Architectures, Second Edition by Bassam Halabi 7 CCIE Prof. Development Routing TCP/IP Volumes I II, Jeff Doyle 7 Cisco LAN Switching (CCIE professional development) 7 Cisco Catalyst LAN Switching by Louis R Rossi, Louis D. Rossi, Thomas Rossi 7 Configuring Cisco Routers for bridging, DLSW+, Desktop Protocols by Tan Nam-Kee 7 My own lab prep book, once I finish writing it (look for it sometime in 2003)... J Building your own Pod: One of the most important elements of your CCIE lab preparation is having equipment to practice on. My advice would be put together a home pod watching every dollar very carefully, and then sell it on ebay when you're done. If you do everything right, your practice time should only cost you the interest on your credit card, and the depreciation in the value of the equipment. What follows is a list of what I think has the makings of a great CCIE Lab practice pod: 7 One Cisco 2511 router to use as a terminal server. A 2509 would work fine if you have one, but trust me, before long you'll need the extra ports. 7 A router with multiple Serial ports to use as a Frame Relay switch. Cisco 2522's are popular for this, although in my own lab I use a 2610 with an 8-port serial module. 7 Two Cisco 2503's. 7 One Cisco 2504 (for the FatKid labs). 7 Four or five more Cisco 2500 series routers with a selection of Serial, Ethernet and Token Ring ports, (I love 2513's, because they have all three). 7 One ISDN emulator. 7 One Cat2924XL or Cat5k Switch. 7 One Cisco 3620 or 2620 with at least one Fast Ethernet port and a pair of FXS ports for VoIP. 7 Two CAB-OCTAL-ASYNC. These 8-lead octal cables (68 pin to 8 male RJ-45s) are used with the terminal server 7 One MAU. 7 Lots of DTE/DCE serial cables, AUI adapters, patch cables, and crossover cables. * Please note that all 2500 series routers should have 16 Megs of memory, 16 Megs of Flash and be loaded with an Enterprise Version of 12.1 IOS appropriate to its physical configuration. The only things missing from the list above is ATM and a Token Ring switch. I consider ATM just too darn expensive for a home pod, and a 3920 is hard to get, expensive, and easy to configure. For both these technologies, I would recommend renting some on-line lab time. OK, The Equipment Looks Good on the Rack, Now What? You'll also need practice labs to run on your routers. Here's a list of lab materials I think are useful, in order of complexity (easiest to hardest): 7 Cisco CCIE Lab Study Guide, Second Edition by Stephen Hutnik and Michael Satterlee 7 www.FatKid.com (these have the added advantage of being free) 7 www.solutionlabs.com 7 www.IPExpert.net 7 ccbootcmp Advice on Preparation: Know the CD. When you're in the lab, this will be one of your few friends. Know where the command reference are, and most importantly, know where the sample configurations are. Think how much time you can save if you cut-and-paste samples from the CD into your configurations. Print out and keep posted on the wall a copy of the exam blueprint. This should be a constant reminder of what you know, and what's left to figure out. Avoid first time pressure. Only a small percentage of people pass on the first attempt, and your four digit number is not de-valued if you make several attempts. Prepare for what you expect the exam to be, but be ready to accept the first attempt as exploratory expedition; a chance to map the terrain for future trips. Who knows; the extra calm of reduced expectations may actually help you pass. Watch the news feeds at www.groupstudy.com, these are excellent free resources. People are always posting problems, and working out how to help them not only builds goodwill, but helps develop your own understanding of these technologies. Focus on the core technologies; ISDN, Frame Relay, bridging, routing protocols, redistribution, etc. These will represent the bulk of the points in the lab, and you MUST have a very firm understanding of them to have any chance at all. Have a bucket of tools at your disposal. You should have a good grasp of IP Tunneling, Bridging, NAT, IRB, CRB, route filters, passive
RE: OT: Sniffers [7:31296]
You may want to go to Agilent.com. They have a software version of their Agilent Advisor hardware box. Its called Advisor Software SW edition. You can run the 30day demo and see if you like it. In addition, you can buy just the testing modual you need. (or if you are a valid educational user - the full version is free) While you are there you can subscribe to their free networking solutions ebook. (under promotions) Later M Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=31316t=31296 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Permissions: read but don't copy [7:31128]
Sure anything can be done. However I am thinking that you would need them to log into your server, at that point you remove rights. However, you would also need to turn of screen captures. That means that at the point that log in you turn off certen keys strokes on their key board. I am thinking that you need a program to do that or a c++ programer, but I am sure it can be done Pierre-Alex J. Guanel wrote: Thank you! Pierre-Alex -Original Message- From: Andy Leaning [mailto:[EMAIL PROTECTED]] Sent: Monday, January 07, 2002 10:12 AM To: Pierre-Alex J. Guanel Subject: Re: Permissions: read but don't copy [7:31128] Ain't no way PIX will do this. Content filtering refers to looking at the files going across it and possibly blocking them pending their content - ie if they are porn or come from suspect sites - not what the user does with them once they've got them. Even if this was doing what you wanted it requires an extra server (the content filtering server) which I think is about $8k - a lot. Without control over the desktops I can't see how you can achieve what you're trying to do. The only possible exception is that if the users were using a browser and viewing content on a server you control. You might then be able to do something with activeX etc (ie disable the save as function) in the browser. Andy - Original Message - From: Pierre-Alex J. Guanel To: Andy Leaning Cc: Cisco ; WindowsNT/2000 Newsgroup Sent: Monday, January 07, 2002 3:59 PM Subject: RE: Permissions: read but don't copy [7:31128] Hi Andy, Thank for the answer. I have no control over the users' desktop, therefore I cannot remove the write permission on their machines. The solution has to be implemented on the server. Also, I thought that the latest PIX were doing content filtering If not, I am surprised that Cisco does not support this feature. Pierre-Alex -Original Message- From: Andy Leaning [mailto:[EMAIL PROTECTED]] Sent: Monday, January 07, 2002 6:54 AM To: Pierre-Alex J. Guanel Subject: Re: Permissions: read but don't copy [7:31128] PIX can't prevent this - this application layer stuff - but you can do it in Windows. Simply remove write permission on the desktop folder for the logged on user. Of course they can still put the file elsewhere on the PC, I'd need to know more if you want this stopped as well. Andy Leaning - Original Message - From: Pierre-Alex J. Guanel Newsgroups: groupstudy.cisco Sent: Monday, January 07, 2002 12:19 PM Subject: RE: Permissions: read but don't copy [7:31128] Can a Cisco firewall do this? Pierre-Alex -Original Message- From: Pierre-Alex J. Guanel [mailto:[EMAIL PROTECTED]] Sent: Monday, January 07, 2002 6:07 AM To: [EMAIL PROTECTED] Subject: Permissions: read but don't copy Hi all, I am running Windows 2000 Advanced Server. I would like to allow users (Windows 98 / Windows 2000 Professional) to read a file, but prevent them to copy it electronically to their desktop. It looks like Windows 2000 does not have the permissions to accomplish this. Has anyone done this before? Thanks, Pierre-Alex = = = = = = = = = = = = = = = = = = Please send replys to: [EMAIL PROTECTED] = = = = = = = = = = = = = = = = = = - Do You Yahoo!? Send FREE video emails in Yahoo! Mail. Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=31322t=31128 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: What equip is really necessary for lab studies [7:31295]
Everyone asks this question, but the answer, Young Skywalker, comes from within. ;-) The answer is It depends. Ask yourself these questions and you'll probably come up with the answer that's right for you: 1. Where are my weak points technically? (My answers were Token Ring and ISDN, so that's where I spent my money) 2. How much am I willing to risk going into the lab? (If you don't have a lot of experience with ISDN, for example, is it worth not having a lot of ISDN time knowing that it could cost you points on the exam?) 3. What's my level of experience with the technologies that I can just review versus the ones I need to practice over and over again? If you're weak on everything, then buy everything with the context that you're just renting it until you pass your exam. It may give you the needed motivation to get the studying job done quicker. And then, once you've passed, resell the equipment at that present market value (in other words, don't expect to recoup your investment, because price erosion on equipment is a reality - just ask our friends on the list who paid $1000 for a 2501 a few short years ago). -e- - Original Message - From: Michael Witte To: Sent: Tuesday, January 08, 2002 11:14 AM Subject: What equip is really necessary for lab studies? [7:31295] Hello all; I know the equipment subject has been discussed many times in this group, I have followed many of the threads. Of course it would be nice to buy every piece of equipment on the CCIE lab list but sometimes that is not practical for people that have kids to feed. Anyway I would like some input on what I equipment I really need to concentrate on. Right now I have a 2523 for my frame-relay switch, a 2524,2504,2 2610's and 2 1900's. All have latest IOS and is sufficient for doing most OSPF, BGP and anything else. I was planning on getting a 2513 for translation bridging, and a 5500 and 2620 so I can do a router on a stick and VLAN stuff. I am 99% sure I need fast ethernet to do ISL and inter-VLAN routing hence the 5500 and 2620. I realized yesterday that the 4500 can support fast ethernet and token ring so instead of the 2513 and 2620 I can use this. I am also planning on getting a Teletone simulator for ISDN. As far a VOIP,ATM,and the 3900 I was going to use some rack time for practice. Here is what I need input on: 1)5500 and 4500 for inter-Vlan routing and VTP- Can I get away with rack time? 2)ISDN simulator- Again can I get away with rack time? 3)VOIP,ATM,3900 -rack time? I just got the new CCIE Practical studies Part1 and don't see much inter-VLAN routing. I looks like a great book I only got it yesterday and its worth a look. They are going to put out volume2 which will go into BGP and IPX more. I assume Inter-VLAN routing be covered in the lab, just how much? If the recommendation from everyone is to get the equipment I will,I would rather spend it on a bootcamp a month before the LAB. I plan on taking the lab in Sept, but I want to nail down the equipment so I can have one less thing on my mind. I have access to a lot of equipment at work I just can't play that much. Thanks in advance everyone! _ Do You Yahoo!? Get your free @yahoo.com address at http://mail.yahoo.com Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=31313t=31295 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: IPv6 [7:31228]
.bomb failures have lengthened the usefulness of v4 I am sure.. Brian Sonic Whalen Success = Preparation + Opportunity On Mon, 7 Jan 2002, Steven A. Ridder wrote: Another question, When's IPv6 gonna hit the mainstream? Or the backbone? Of all the stuff I ever read on it, the main reason it came into play was because of the impending depletion of public addresses. Well with NAT, firewall and other proxy services handiling a lot of requests onto the public internet, the depletion has been put out a few years (actually, does anyone have any good like, studies pointing out when this is supposed to happen now?). So what else is going to drive the adoption of IPv6? -- RFC 1149 Compliant. FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=31342t=31228 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: What equip is really necessary for lab studies [7:31295]
Further to what EA Louie.. If you are strong on ISDN, you could connect aux-modem-modem-aux, specify dialer profiles and work with it, u will need 2 pstn lines and most of the trigger stuff which works with ISDN will work. Also, you need enough equipment to practise most of IP routing protocols scenario's. rest of the things can be practised on racks (ATM/VOIP etc.) Nick Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=31343t=31295 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: What equip is really necessary for lab studies [7:31295]
You can always go to Cisco and use thier racks for free. If I need a few days on a big router or ATM, I use their stuff. (I could never justify purchasing all the equipment some people have -72xx routers, Cat 6500 switches, Wireless AP's, etc..) You just need to have your CCIE written passed. Call your account manager - he'll help you out. Plus, they have more inside info on all differnt things related to Cisco in case you need their help, or just want to know what on the road-map. Another cool thing we have at my company is an actual telephone switch (it's small though because it was designed for classroom training). It simulates T1 lines, ISDN, etc. Look for one of those. It beats crossover cables. Nick S. wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... Further to what EA Louie.. If you are strong on ISDN, you could connect aux-modem-modem-aux, specify dialer profiles and work with it, u will need 2 pstn lines and most of the trigger stuff which works with ISDN will work. Also, you need enough equipment to practise most of IP routing protocols scenario's. rest of the things can be practised on racks (ATM/VOIP etc.) Nick Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=31344t=31295 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: CCIE counters, r they going up? [7:31318]
I don't see a lot of announcements over on the CCIE list - just a couple in December, and none so far this month, unless I missed something. OTOH, I see that #8472 announced on 12/1 and #8548 announced on 12/18. that's the most recent I have seen. Not surprising with the holidays. I am not at the computer that has my history table on it. Chuck Kane, Christopher A. wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... Someone on the list (I think it was Chuck) used to try and keep track of how many new IE numbers they saw each week. I was wondering, with the new lab, how many on avg are passing ea. week or month. Just curious. Chris Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=31345t=31318 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Frame Relay too slow [7:31346]
This is a project I am doing. I am using 3 Cisco 2600 series routers to link two sites and Adtran Atlas 550 to simulate a Frame Relay and a ISDN line (as backup) network. The arrangement is this: server PC--router--router--Frame Relay(Atlas)--router--client PC |ISDN___| My problem is : When the client PC download file from the server PC, the transmitting speed is very slow (about 15KB/sec). The transmit starts with a speed of about 70KB/sec and then slowly drops to 15KB/sec. Appreciate for any suggestion(s). Anthony. Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=31346t=31346 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Frame Relay too slow [7:31346]
The placement of the ISDN line is not correct due to the aligment. Sorry for that. Anthony. Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=31347t=31346 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Call Manager 3.1 [7:31335]
Hi Jim, Just received Cisco AVVID IP Telephony Networks book, and according to that book, Cisco has certified Compaq DL320 and Compaq DL380 to run CallManager. Refer to this URL regarding the approved hardware for Compaq ProLiant http://www.cisco.com/warp/public/779/largeent/avvid/products/cmpq_srvrs.html HTH Hello, I'm wondering if I can load CallManager 3.1 on any Compaq server or I have to buy from Cisco? I got error message This application may only be installed on servers that were deployed using the standard Cisco-approved process when I tried to install it. Thanks in advance. Jim __ Do You Yahoo!? Send FREE video emails in Yahoo! Mail! http://promo.yahoo.com/videomail/ Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=31348t=31335 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
IGRP Subnet mask issues [7:31349]
I have two routers. One of them is running IGRP,BGP and OSPF and other is running IGRP only. The network between two IGRP routers is 30 bit mask. Here is the diagram: IGRP/BGP/OSPF IGRP R1-R2 10.3.255.10/3010.3.255.9/30 R1 has some 24 bit 10-netorks directly connected to it as well. I have following IGRP configuration R1: router igrp 1 redistribute ospf 1 redistribute bgp 65430 network 10.0.0.0 default-metric 10 100 255 255 1500 R2: router igrp 1 network 10.0.0.0 10.0.0.0/24 networks won't show up in the routing table of R2. Could someone explain why it is happening what is the fix. Thank you, Aamer Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=31349t=31349 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Router down for a few seconds, many times [7:31308]
Got logging setup somewhere looking for errors that correspond with this? Brian Sonic Whalen Success = Preparation + Opportunity On Tue, 8 Jan 2002, [EMAIL PROTECTED] wrote: Well, show log would be a good start. You haven't given us much to go on, but if the interfaces don't actually drop it could be a routing protocol problem. Or it could be a lot of other things :-) Does this happen at specific times? Regular intervals? Or is it random? Is there anything else happening on your network that you can correlate with this? What does the log show? Hopefully that will give you an idea of what to look at. You may then need to put on some debugs to get further information. Use debugs cautiously or they can hang a perfectly healthy router! JMcL - Forwarded by Jenny Mcleod/NSO/CSDA on 09/01/2002 09:02 am - NetEng cc: Sent by: Subject: Router down for a few seconds, many nobody@groupstudy.times [7:31308] com 09/01/2002 06:36 am Please respond to NetEng I have a Cisco 4000 in the core that goes down for 15 seconds or so about 10 times a day. All interfaces are unreachable (pinging), and from what I can tell the actual interfaces never actually drop. I will console into it, but any ideas what I can look for? show processes and ?TIA Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=31350t=31308 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Update: BECN vs TCP congesttion control [7:31219]
At 09:58 PM 1/8/02, Steven A. Ridder wrote: If I can assume that there were two schools of thought, can I also assume that frame-relay with its smart network/dumb host model and tcp/ip's smart host, peer-to-peer network were never meant to merge? I think it would be over-stating it a bit to say they were never meant to merge. ;-) TCP/IP has to run on top of something to be useful and Frame Relay has to have something above it to be useful. Also, what effect does becn/fecn (if implemented) have on TCP/IP's windowing? Any? Should the two never be used together, or can they co-exist peacefully if implemented right? In most cases TCP congestion control behaves independently of BECN and FECN. I don't think Cisco routers even have a way to let TCP end hosts know that BECN or FECN have been set, although there may be some advanced features that handle this and/or interact with RED or something. Anyone else know? Thanks. Sorry to ask all these questions, but this is like a history lesson to me (IP was RFC'd in 1981, so I was 3 years old) and I learn best if I can get a grasp on not only how things are done, but why. -- RFC 1149 Compliant. FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] Priscilla Oppenheimer http://www.priscilla.com Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=31351t=31219 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: IGRP Subnet mask issues [7:31349]
considering how often and to what depth this issue has been and continues to be discussed here and elsewhere, it shouldn't be too hard to discover the answer. try changing your network on the R1-R2 link to a /24 and see what happens. then report back your findings along with your own speculation. HTH chuck Aamer Kaleem wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... I have two routers. One of them is running IGRP,BGP and OSPF and other is running IGRP only. The network between two IGRP routers is 30 bit mask. Here is the diagram: IGRP/BGP/OSPF IGRP R1-R2 10.3.255.10/3010.3.255.9/30 R1 has some 24 bit 10-netorks directly connected to it as well. I have following IGRP configuration R1: router igrp 1 redistribute ospf 1 redistribute bgp 65430 network 10.0.0.0 default-metric 10 100 255 255 1500 R2: router igrp 1 network 10.0.0.0 10.0.0.0/24 networks won't show up in the routing table of R2. Could someone explain why it is happening what is the fix. Thank you, Aamer Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=31352t=31349 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
PIX with no NAT [7:31353]
I've been on Cisco's site for hours, but cannot find a conclusive answer to my question. When you disable NAT (NAT 0) to allow the use of public IP's behind the PIX, are the internal nodes allowed to start outbound connections by default?? I need to selectively allow nodes behind the firewall to start outbound connections on certain porthow should I accomplish this? Access-lists? Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=31353t=31353 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: IGRP Subnet mask issues [7:31349]
In general, you will not want to redistribute most BGP routes into your IGP. A common design is to redistribute one or two routes and to make them exterior routes in IGRP, or have your BGP speaker generate a default route for your autonomous system. When redistributing from BGP into IGP, only the routes learned using EBGP get redistributed. EBGP default administrative distance is 20 vs IGRP's 100. Make sure you meant IGRP and not EIGRP, if it is EIGRP then run no auto-summary to see the subnets. Regards, Murtaza P.S.: some more info from cisco site http://www.cisco.com/warp/public/105/21.html - Original Message - From: Aamer Kaleem To: Sent: Tuesday, January 08, 2002 8:10 PM Subject: IGRP Subnet mask issues [7:31349] I have two routers. One of them is running IGRP,BGP and OSPF and other is running IGRP only. The network between two IGRP routers is 30 bit mask. Here is the diagram: IGRP/BGP/OSPF IGRP R1-R2 10.3.255.10/3010.3.255.9/30 R1 has some 24 bit 10-netorks directly connected to it as well. I have following IGRP configuration R1: router igrp 1 redistribute ospf 1 redistribute bgp 65430 network 10.0.0.0 default-metric 10 100 255 255 1500 R2: router igrp 1 network 10.0.0.0 10.0.0.0/24 networks won't show up in the routing table of R2. Could someone explain why it is happening what is the fix. Thank you, Aamer Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=31354t=31349 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Lab Equipments [7:31040]
Hello Ejay, I allso have a AGS with serial-ports, but I havent been able to get these working. Can you tell me which cables you are using (part-number, pinout or where you bought them) and if you changed anything on the configuration of the AGS (Jumper eg)? Thanx Taco -Original Message- From: Hire, Ejay [mailto:[EMAIL PROTECTED]] Sent: maandag 7 januari 2002 15:00 To: [EMAIL PROTECTED] Subject: RE: Lab Equipments [7:31040] I have a 4-serial-port Cisco AGS I've been using as a Frame-Relay Switch I'd like to sell. $150.00 Also, I have the dte-dce cables to connect it to anything that uses a HD-60 serial port. (25xx 4xxx series, as well as anything that takes a Wic-1t card.) -Original Message- From: Prabhat Sen [mailto:[EMAIL PROTECTED]] Sent: Saturday, January 05, 2002 8:58 PM To: [EMAIL PROTECTED] Subject: Lab Equipments [7:31040] Hi Guys, Want to set up a home lab. I have listed some stuff that is should have. 3x2501 routers; 1x2522 or 2523; 3x2502/2504 routers A Cat5K switch or a 2900 (non XL); 1 TokenRing One ISDN Simulator; Token Ring Mau x 2; Token Ring NIC/Cables x 2; Probably two Cisco 2602 or maybe 4700/4500/3620 Token Ring 3920 Will adding an Intel Intelligent Server Adaptor be helpful ? Anything that i missed out. Pls send me your feedback, so that i can complete the set. Any ideas from where i can buy this cheap? Awaiting your feedback, Thanks, Prabhat __ Do You Yahoo!? Send FREE video emails in Yahoo! Mail! http://promo.yahoo.com/videomail/ Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=31355t=31040 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: PPP link negotiation problem [7:31132]
Your only choice is to use global username other router and password the sama as your router they must be identical on both sides. bergenpeak wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... sent-username is not an option for me under ppp chap. My options at ppp chap are hostname, password, wait, and refuse. Thanks McCallum, Robert wrote: what about ppp chap sent-username ? -Original Message- From: bergenpeak [mailto:[EMAIL PROTECTED]] Sent: 07 January 2002 13:09 To: [EMAIL PROTECTED] Subject: PPP link negotiation problem [7:31132] I'm working through the different ways one can configure CHAP authentication between two routers over a PPP serial link. If I configure ppp encap and ppp chap authentication and both sides of the link and use the global: username password for identification, the link comes up and IPCP is established. The routers have hostnames defined to be rtr-2505 and rtr-2514. When I try to use the simpler CHAP config, where one can encode in the interface directly the same hostname and password, I see the error: PPP Serial0: Using alternative CHAP hostname something PPP Serial0: CHAP Challenge id=14 received from something PPP Serial0: ignoring challenge with local name On both rtrs I have the following defined on the serial interface: ppp encap ppp authentication chap ppp chap hostname something ppp chap password else there are no usernames defined globally. Ideas? Thanks Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=31356t=31132 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: IGRP Subnet mask issues [7:31349]
Chuck, Changing the IGRP interfaces to /24 bit solves the problem. IGRP matches the incoming routes with its own interface Subnet mask and rejects the one which does not match. So, how to fix it without changing the IGRP interfaces mask. Thanx, Aamer Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=31357t=31349 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
