Re: read and not write TOS [7:36946]
Thank you. It's clear for me now. with IP Prec or DiffServ (which one is it?) IP precedence (3 bits), for layer 3 Priority for layer 2. Teresa - Original Message - From: Steven A. Ridder To: [EMAIL PROTECTED] Sent: Monday, March 04, 2002 9:19 PM Subject: Re: read and not write TOS [7:36946] I'm pretty good with QOS. If you connect your special switch to a router and you mark your packets with IP Prec or DiffServ (which one is it?) your packet will remain marked until they reach the destination. The only time you would lose these markings is if a router is programmed to strip the markings and replace them with something else. As for your CoS bits, they will be fine until they hit a layer 3 device. If they remain on a large flat L2 network, then they will remain untouched. If the packets have to go through a router of some sort (because they need to be routed to a different network) the L3 device will strip the layer 2 ethernet packet, replace them with it's own l2 packet based on what type of link it's going out of (PPP, HDLC, another ethernet netowrk) and send it on it's merry way. Unfortuately, that L2 packet had your 802.1p bits in it and it was trashed. So you lost them (unless you have the router map l2 to l3). Therefore, it's better to just mark L3. Finally, just because you mark your packets, doesn't mean you'll get any special treatment unles the routers are told to do so (unless you have WFQ enabled on the router, as WFQ automatically classifies based on IP Prec or DiffServ.). Look up MQC to create policies to do things with your marked packets. -- RFC 1149 Compliant. TP wrote in message news:[EMAIL PROTECTED]; I said special switch: it is a switch with ethernet ports and voice ports, with the voice processor and its stack. So, I can program the special switch in order to set the TOS (layer 3) per port basis and the COS (layer 2) per port basis. What happens to my packet (or frames) when I connect this switch to a router (827 per adsl) or to a layer 3 catalyst for different design? - Original Message - From: [EMAIL PROTECTED] To: [EMAIL PROTECTED] Sent: Friday, March 01, 2002 6:05 PM Subject: Re: read and not write TOS [7:36946] I don't think you can set the ToS bits on a switch. You can only set the CoS bit and the CoS will not be translated to a ToS on router unless you force it to in the configuration. ToS is a layer 3 function and CoS is a layer 2 function From: TP Reply-To: TP To: [EMAIL PROTECTED] Subject: read and not write TOS [7:36946] Date: Fri, 1 Mar 2002 06:14:30 -0500 Dear group, i have the following situation: a special switch connected to a cisco router via ethernet interface. This switch is enable to set TOS based on its ports. I'd like to configure the router in order to have different queuing based on the TOS (two or three queues). The router should read (and NOT write) the TOS and priorituze the traffic with the higher TOS: is it possible? If yes, maybe with access-list or samething different, can you provide the proper command lines? Thanks in advance Teresa _ MSN Photos is the easiest way to share and print your photos: http://photos.msn.com/support/worldwide.aspx Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=37241t=36946 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Network Design Question(revised) [7:37239]
Some things bother me. Cannot and will not be complete, this comes from the top of my hat. Business Get your business requirements for applications bandwith delay downtime(uptime) security (breach), zones Users security/policy amount of users total, per floor Information what kind of apps per dep etc etc in place chinese walls VIP's than you will know what kind of technology you have to choose. Layer 2 only, layer 3 etc. Multivlan, STP per vlan firewalls intra company? FIBER! THAN YOU MAY LOOK AT BOXES!!! Double SE's etc etc come from business req's! 65 or 60? see above.. Am not happy about making the 60/65 distri for the servers. For scaling and troubleshooting. Better highspeed dual core fibre attached gig switch. Maybe 2. The perimeter solution looks good, again depending of what you actually deploy and need. See no ids's though. what is security without a plan for the internal users? The will be code red'ed or something, separate your network into zones or vlan's and give users only access to necessary martijn jansen -Oorspronkelijk bericht- Van: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] Namens Afs Mehr Verzonden: dinsdag 5 maart 2002 7:59 Aan: [EMAIL PROTECTED] Onderwerp: Network Design Question(revised) [7:37239] Sorry all . My primary message was quite messed up . I just corrected it . Well . I am reconstructing the Network of a 10 storey building with 10 to 150 nodes per floor . about 75 meters tall . I proposed to use a collapsed backbone structure with 2950T switches for the floor with 50 nodes . For the collapsed backbone , I proposed two catalysts 6000 switches with Supervisor Engine IA and MSFC and PFC (for layer3 connectivity)and multiple 1000BaseT(16) modules for both distribution layer and core functionality . and redundant connectivity to access layer devices . I proposed to collect all the servers in a server farm and to connect all the servers directly to the 6000 switches(here is one of my problems should I connect to servers directly to core , or should I concentrate them on a seperate switch and to connect that switch to core) . For security , I proposed a DMZ , internal , perimeter structure with a PIX 525 in between . all the remote connections and dialup connections are concentrated on a 3660 router in the perimeter zone . Here are my other problems : Not sure whether I should go for 6500 or 6000 (I don't know whether the CEF and SFM will help me that much or not) I don't know where to find a complete listing for all the components I need for each device and the related part numbers including cables and power supplies ,... Any other comment on the design are appreciated . Thank you all for the time and help . _ Download MSN Explorer gratis van http://explorer.msn.nl/intl.asp; Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=37243t=37239 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: hey norco [7:37146]
Yeah...well i don't use the 'f*word' at work snapperhead (or mr.scary cisco systems guy..oooh)... Larry Letterman wrote in message news:[EMAIL PROTECTED]; I'll bet the people you work with are really impressed when you use the F* word in meetings at work Larry Letterman Cisco Systems [EMAIL PROTECTED] -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of norco Sent: Monday, March 04, 2002 7:17 PM To: [EMAIL PROTECTED] Subject: Re: hey norco [7:37146] Well i'm glad they did make it through - the f* word is indeed an effective form of punctuation - the next generation exclamation point. Kevin Wigle wrote in message news:[EMAIL PROTECTED]; hey I'm just amazed that all these responses with the f* word got through the list's amazing filters - Original Message - From: norco To: Sent: Monday, 04 March, 2002 17:34 Subject: Re: hey norco [7:37146] hey man don't mention it...! Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=37245t=37146 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Reverse Telnet SW for PC? [7:37246]
Does anybody know if there's any software out there to turn a PC into a Cisco 2509? What I need is the abillity to telnet to the PC and get the telnet traffic redirected out a COM port, just like reverse telnet in the Cisco. One solution is of course to get a 2509, but for the moment my budget woun't let me :-( and I've already got a PC with 8 COM ports. Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=37246t=37246 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Reverse Telnet SW for PC? [7:37246]
Have you tried Linux? Marc Johan Hjalmarsson wrote: Does anybody know if there's any software out there to turn a PC into a Cisco 2509? What I need is the abillity to telnet to the PC and get the telnet traffic redirected out a COM port, just like reverse telnet in the Cisco. One solution is of course to get a 2509, but for the moment my budget woun't let me :-( and I've already got a PC with 8 COM ports. Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=37248t=37246 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
CCIE written -Query [7:37247]
Hi Gurus, Need some info about the written exam, is the written exam like other cisco exams where u cant go back and i have heard that for multiple questions unlike other cisco exams where they say choose 3 out of 6, for ccie written they just say select the correct ones from the option in other words they dont say that u have to select 3 or any number from the possible options listed. Could all of you pls enlighten me. Thanks in advance. Cheers Naresh Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=37247t=37247 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Pix NAT - Two to one [7:37179]
Last I heard / checked this is not an option on the PIX. Documentation is very explicit - one for one mapping. The typical workaround is to add a secondary ip address to the machine. We have done this repeatedly; for DNS changes, for ISP address space changes, etc. Thanks! TJ -Original Message- From: Gaz [mailto:[EMAIL PROTECTED]] Sent: Monday, March 04, 2002 3:51 PM To: [EMAIL PROTECTED] Subject: Re: Pix NAT - Two to one [7:37179] Eventually, two separate static commands for two separate outside addresses going to two separate DMZ addresses. At the moment there is just one machine inside. Possibility of putting multiple addresses on the server but preferred option is not to do this. What I would like to miss out is the time required to wait for DNS to propagate when I split the single outside address to two. If I can leave the DNS pointing to two addresses and make the changes at the required time, there is no delay involved. Thanks, Gaz Patrick Ramsey wrote in message news:[EMAIL PROTECTED]; what is the overall goal? Gaz 03/04/02 03:06PM Hi all, Has anybody tried NAT'ing two outside addresses to one internal (DMZ) address on the same port (80) in some way. Not too difficult to get round, as I can get the DNS of one site changed and use the single address outside to single inside. The advantage would be that when the web sites are separated, to two machines inside, I would like to be able to change the pix settings immediately rather than change DNS and wait a couple of days for DNS to propagate. I'm sure there may be some simple way of doing it, but I couldn't find it whilst playing about today. Any ideas welcome. Thanks, Gaz Confidentiality DisclaimerThis email and any files transmitted with it may contain confidential and /or proprietary information in the possession of WellStar Health System, Inc. (WellStar) and is intended only for the individual or entity to whom addressed. This email may contain information that is held to be privileged, confidential and exempt from disclosure under applicable law. If the reader of this message is not the intended recipient, you are hereby notified that any unauthorized access, dissemination, distribution or copying of any information from this email is strictly prohibited, and may subject you to criminal and/or civil liability. If you have received this email in error, please notify the sender by reply email and then delete this email and its attachments from your computer. Thank you. * The information in this email is confidential and may be legally privileged. It is intended solely for the addressee. Access to this email by anyone else is unauthorized. If you are not the intended recipient, any disclosure, copying, distribution or any action taken or omitted to be taken in reliance on it, is prohibited and may be unlawful. When addressed to our clients any opinions or advice contained in this email are subject to the terms and conditions expressed in the governing KPMG client engagement letter. * Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=37250t=37179 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: PIX questions [7:37129]
Hmm .. never tried this , and assuming it works I certainly would never recommend /do it ... If you are truly desperate for telnet - would the pix allow you to make a static external address for the inside interface of the pix itself, and allow telnet to that and as part of the telnet permitted pool ? Anyway - if telnet is required, the usual ways are to either do a bounce telnet as below or to take it a step further use some port redirection on an internal host to accomplish the same thing . Probably worth saying one more time, for emphasis - none of these are recommended! a) Use SSH, it is free ... b) Even better - use 3DES VPN ... and then telnet from that host to the inside interface c) The bestest - use a 3DES VPN to a host and run SSH from there to the inside interface :) Thanks! TJ -Original Message- From: Ole Drews Jensen [mailto:[EMAIL PROTECTED]] Sent: Monday, March 04, 2002 3:15 PM To: [EMAIL PROTECTED] Subject: RE: PIX questions [7:37129] If you really want to create a loophole so you can telnet into the firewall from the outside, and you do not want to create a secure connection to it, you can place a dummy router (or other telnet ready device) on the inside, allow telnet to it from the outside, allow the device to telnet to the PIX, telnet to it and reverse telnet back to the PIX. Hth, Ole ~~~ Ole Drews Jensen Systems Network Manager CCNP, MCSE, MCP+I RWR Enterprises, Inc. [EMAIL PROTECTED] ~~~ http://www.RouterChief.com ~~~ NEED A JOB ??? http://www.oledrews.com/job ~~~ -Original Message- From: MJ [mailto:[EMAIL PROTECTED]] Sent: Monday, March 04, 2002 1:35 PM To: [EMAIL PROTECTED] Subject: Re: PIX questions [7:37129] Hunt/Swapnil - You can not telnet to the outside interface. You will need to configure SSH. Swapnil Jain wrote in message news:[EMAIL PROTECTED]; u dont need to add a conduit for telnet unless u have blocked port 23. just add telnet ip_address [netmask] [if_name] to allow telnet from ip_address bye swapnil Hunt Lee wrote in message news:[EMAIL PROTECTED]; Hi all, I have two questions about PIX 501, it would be great if someone can shed some light on this: 1)Currently, I'm using a software called RANCID to monitor and save configs for my works' routers.I know that RANCID uses a Clogin to get into the router, it then do a show running-config command to veiw the configs, and then backs it up. My question is, would PIX 501 supports Clogin? 2)Also, I know one can use conduit permit icmp any any to allow the PING packets to get thru the PIX. Would I be able to use a similar command which will allow me to telnet from outside network into the PIX? Please help... Best Regards, Hunt Lee * The information in this email is confidential and may be legally privileged. It is intended solely for the addressee. Access to this email by anyone else is unauthorized. If you are not the intended recipient, any disclosure, copying, distribution or any action taken or omitted to be taken in reliance on it, is prohibited and may be unlawful. When addressed to our clients any opinions or advice contained in this email are subject to the terms and conditions expressed in the governing KPMG client engagement letter. * Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=37251t=37129 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Setting up Catalyst 6500 as a Layer 2 switch [7:37177]
Have you verified that broadcast traffic is not flowing? Also - when you say directed IP is, you have done it host to hsot and not just host to switch, yes? To show up in Network Neighborhood I believe they will also need to be in the same workgroup ... or pointing to a WINS server for name resolution. Thanks! TJ -Original Message- From: Matt Fisher [mailto:[EMAIL PROTECTED]] Sent: Monday, March 04, 2002 4:12 PM To: [EMAIL PROTECTED] Subject: RE: Setting up Catalyst 6500 as a Layer 2 switch [7:37177] I am setting this up in VLAN 1. So the vlan was already setup in the VLAN database. I do have the ports in question set to switchport mode access. All of the ports are in the same vlan. Matt ---Previous Message--- I'm trying to setup a Cat 6500 running IOS 12.1 (c6sup22-dsv-mz.121-8a.E5) as a layer two switch and I'm running into some issues. I have a group of ports all on the same vlan, with switchport set to enable them as layer 2 switch ports. Directed IP traffic flows fine, but broadcast traffic is not flowing between the ports. The short story of the problem. In this test environment I have 5 NT servers plugged into the Cat 6500 and they can't see each other view Network Neighborhood. My current goal is to just get this switch to act like your basic unmanaged switch (I'll work on the more interesting settings after I get this basic functionality working.) Any ideas what I might be missing? Matt * The information in this email is confidential and may be legally privileged. It is intended solely for the addressee. Access to this email by anyone else is unauthorized. If you are not the intended recipient, any disclosure, copying, distribution or any action taken or omitted to be taken in reliance on it, is prohibited and may be unlawful. When addressed to our clients any opinions or advice contained in this email are subject to the terms and conditions expressed in the governing KPMG client engagement letter. * Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=37249t=37177 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
MPLS and AS5300 [7:37252]
Dear all Can AS5300 supports MPLS? If yes what is the IOS that supports it? I checked Cisco side but i couldn't find any info thanks __ Do You Yahoo!? Try FREE Yahoo! Mail - the world's greatest free email! http://mail.yahoo.com/ Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=37252t=37252 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: basic OSPF questions [7:37142]
Just a little note... The BSCN book mentions that the routers MUST agree on the cost of the link, however when performing the labs i had no problems whatsoever with OSPF-specific issues as a result of cost mismatch. And none of the OSPF labs caution you to double-check this requirement. BTW - BSCN p.127 states... all interfaces connected to the same link must agree on the link's cost. However, this is in reference to adjusting the cost for Cisco routers that are connected to non-Cisco routers that might use different methods to derive the metric. My conclusion is that this might have more to do with engineering traffic for the applications running over OSPF links. Correct me if I'm wrong. Elmer - Original Message - From: Peter van Oene To: Sent: Monday, March 04, 2002 9:39 PM Subject: RE: basic OSPF questions [7:37142] One thing to remember is that OSPF costs are calculated unidirectionally. For example, A's cost to C could be very different from C's cost to A. In general, IP traffic has to be engineered in both directions and it for some networks asymmetry in flow might make sense. I can't think of a reason off hand while watching a hockey game, but experience has taught me that many odd looking designs are rooted in rational, informed theory. Pete At 04:05 PM 3/4/2002 -0500, Ouellette, Tim wrote: I have a question regarding # 2. let's say both routera and router b are connected and advertising the link between them to router c. The connection from routera to routerc is a 64k frame circuit. The link betwen routerb and routerc is a 64k ISDN (1 b). If routera advertises the network between itself and routerb with a cost of 10, and routerb advertises that same network with a cost of 100. All other things being equal when routerc gets the two updates, he will prefer to take the frame circuit towards routera to get to that network. Why would anyways want this? What if the circuit between routerb and routerc was a backup ISDN that you had to pay extra for to bring up during normal business hours or something like that. I guess it all comes down to what your network is doing. Whether two boxes advertise the same cost to a network is really only dependent upon which path you want to take to get there. If they both advertise the same, you may potentially load balance. If that's not desired, crank up the cost of one of those boxes so it's path is less-desirable. router a --- routerb \/ \ / \/ routerc Was I just rambling? Did that make sense. Tim -Original Message- From: Priscilla Oppenheimer [mailto:[EMAIL PROTECTED]] Sent: Monday, March 04, 2002 2:48 PM To: [EMAIL PROTECTED] Subject: Re: basic OSPF questions [7:37142] At 08:59 AM 3/4/02, bergenpeak wrote: 2) Must a link cost be the same on for all routers that share the link? Is there a protocol reason for this? Some other reason? I couldn't find anything in RFC 2328 that says that two routers connected to a link MUST agree on the cost. The RFC writers use the term MUST carefully. If it were required, they would put it in the RFC. I think it would be a good idea to make them agree, though Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=37253t=37142 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Delete VLAN [7:37254]
In a VTP domain environment, when you use the command clear vlan 5 on a Catalyst configured as a VTP server, do you actually remove vlan 5 only from that Catalyst or from all Catalysts in that VTP domain? Thank you. Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=37254t=37254 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: basic OSPF questions [7:37142]
Hi Priscilla, The use of the ip ospf network point-to-point as a mechanism to enable one to advertise the loopback address as a subnet route is from Doyle (Routing TCP/IP V1), page 417, footnote 9. Priscilla Oppenheimer wrote: At 08:59 AM 3/4/02, bergenpeak wrote: 1) A loopback address is normally advertised by OSPF as a host route. The command ip ospf network point-to-point enables one to specify that the interface should be advertised as a subnet route. What are the benefits for doing this? I can't imagine any benefits. Where did you find this info?? I do see some mention in RFC 2328 of using a host versus a subnet for the Link ID. On point-to-point networks, if the neighbor's IP address is known, set the Link ID of the Type 3 link to the neighbor's IP address, and the Link Data to the mask 0x (indicating a host route) If a subnet has been assigned to the point-to-point link, set the Link ID of the Type 3 link to the subnet's IP address, and the Link Data to the subnet's mask... 2) Must a link cost be the same on for all routers that share the link? Is there a protocol reason for this? Some other reason? I couldn't find anything in RFC 2328 that says that two routers connected to a link MUST agree on the cost. The RFC writers use the term MUST carefully. If it were required, they would put it in the RFC. I think it would be a good idea to make them agree, though 3) In the Exstart phase, how is the master selected? Chappel's book says RID while Doyle's say highest interface IP address. Which is it? The router with the higher Router ID becomes the master. 4) I'm somewhat unclear on the Exchange and the Loading states. When a router goes into Exchange state, does it send all DDPs it knows about before processing any DDPs received from other adjancent neighbors? I think so, but I've never thought about the database synchronization issues associated with a router that is a neighbor to many routers. My guess is that it can only be in the exchange state with one router at a time. Otherwise it would be exchanging database info with one router as the info was being updated by another router?? Thus, a router goes into Exchange state, sends all DDPs it knows about, then goes into Loading state, where it issues LSRs for LSAs it wants more details on? Is this the process? Sounds right. See the RFC for the details. 5) Is there a difference between DBD and DDP packets? I would avoid the term DDP, since it means Datagram Delivery Protocol to AppleTalk people. ;-) Thanks Priscilla Oppenheimer http://www.priscilla.com Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=37255t=37142 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Cisco 1750 VIC-2 E/M Voice card problem [7:37236]
upgrade IOS. -- RFC 1149 Compliant. Ranma wrote in message news:[EMAIL PROTECTED]; Hi, anyone has the following problem ? I have an Cisco 1750 - 4V chassis and 2 voice EM Card Now after follow Cisco Recomendation and using IOS 12.1(5)T the machine cannot recognize the Voice EM Daughter cards. And use show run , no voice-port appear. After claiming RMA with Cisco, the same problem appear in the new Router. Anyone have the solution to this problem? Kenny Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=37257t=37236 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Catalyst Switch feature config AGAIN [7:37256]
Guys, Need your help to understand(RPF) Reverse Path forwarding Algorithm. Thanks to those who replied but Im still not clear how to configure this to work. Thanks for help TOM _ Join the worlds largest e-mail service with MSN Hotmail. http://www.hotmail.com Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=37256t=37256 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
policy routing and route tags [7:37258]
Is it possible to tag routes (via an IGP or BGP) and then perform a policy route decision which in part does a check for this tag? Specifically, the logic I'm looking for is a route-map which is applied in the packet forwarding phase which will change the forwarding behavior if the packet is for a destination which is covered by a route advertisement which has one of these special tags. Pseudo-logic for route-map: route-map permit 10 if (dst IP is covered by most specific route adverstisement which has a tag = XYZ) then set attribute=value etc. Extra credit for details on how this can be done on a Juniper or other platform. Thanks Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=37258t=37258 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: OSPF Network Types [7:37205]
The use of the ip ospf network point-to-multipoint non-broadcast command is really restricted to supporting some very select environments. The explanation I was given when I enquired was that it was brought out by Cisco to support RFC 1577 Classical IP over ATM scenarios. RFC 1577 Classical IP over ATM requires the use of routed PDU encapsulation as per RFC 1483. This precludes broadcast support as there is no traditional Data Link Layer information used in the encapsulation. The IP datagram is encapsulated directly into ATM cells using AAL 5. This requires the mapping of IP addresses to ATM addresses, which is handled by an ARP service, normally configured on a switch or ATM end station. That device receives registration requests and ARP requests and serves up address mappings to clients. The important thing here is that this environment is completely broadcast (and hence multicast) free, because there is no support for anything other than unicast. Now try running OSPF over that! The OSPF point-to-multipoint mode supports multicast and the routers will attempt to discover one another using IP multicast, except it will never work over a Classical IP network, hence the need to provide for a workaround. That's why Cisco brought out the OSPF point-to-multipoint non-broadcast mode. I can't imagine that anyone is still using it, because if you're still using ATM, the likelihood is that you've moved with the times and have been implementing LANE/MPLS etc., and that very definitely will support multicast. -- Edward Solomon CCNP, CCSI Technical Instructor Internal: 299082 External: 01252 559082 Fax: 01252 558722 e-mail: [EMAIL PROTECTED] Mail: IBM United Kingdom Ltd, Learning Services, Mailpoint PH1, The Hothouse, 115-117 Farnborough Road, Farnborough, Hampshire, GU14 7JG John Neiberger wrote in message news:[EMAIL PROTECTED]; I've been reading the CCO configuration guides and I now have a question. What is the difference between the following: ip ospf network point-to-multipoint and ip ospf network point-to-multipoint non-broadcast ?? More specifically, I really want to know when you would use the latter command. The example given on CCO is if we have excluded the broadcast keyword from a frame relay map. I don't think I've ever seen anyone configure a frame map without that keyword so I don't know why you'd ever want to do that. Any thoughts here? Thanks, John Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=37259t=37205 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
dialer unbindable [7:37260]
Dear Group, two cisco routers connected via ISDN and a both connected to the Internet with the same bri. One bri configured and two dilaer interfaces. From one router I can browse the internet and I can reach the other router (64k for the internet and 64K for lan-to-lan connection), but when the dialer 1 is up (to the internet) I can not ping the remote router and I have the following reject (from debug isdnq931): dialer unbindable. Any idea? Thanks in advance, Teresa Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=37260t=37260 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
cisco cpe 828 [7:37261]
Does Cisco Router 828 support BGP ?? and if yes which IOS image support the BGP config?? BR, Komy Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=37261t=37261 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Well it's my turn...CCIE#8878 [7:37145]
Congrats A Job well done.so, what were your methods of study??? Preparing for the written and the lab? the OTJT help in what way? how much did you do on your own? Details, details!!! Again Congrats, Jason Clark, CCNP [EMAIL PROTECTED] Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=37262t=37145 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
New CCNP Beta Exams - at a Discount [7:37264]
Limited Time Offer - Two Weeks Only Be the First to Take the New CCNP Beta Exams - at a Discount Now through March 18, 2002 Now through March 18, 2002, take new CCNP beta exams at a discounted rate of $50.00 (US dollars). To maintain the high quality and market responsiveness of Cisco Career Certification exams, Cisco has introduced refreshed CCNP exams with all new exam questions. The refresh effort upholds the quality and integrity of Cisco Career Certifications. The exams are currently in beta and offered at a discount to candidates. The CCNP beta exams include all four of the required exams for obtaining CCNP certification: Routing 641-603 (covers same content as in 640-503) Switching 641-604 (covers same content as in 640-504) Remote Access 641-605 (covers same content as in 640-505) Support 641-606 (covers same content as in 640-506) Register today by calling 1-800-829-NETS (6387)-option 2, then 4. Beta exams cost $50 each (US dollars). The beta ends on March 18, 2002. So hurry and register to reserve a seat! The new exams will test on the same topics covered under the current Routing, Switching, Remote Access, and CIT exams. Any individual who takes and passes a beta exam receives credit toward the appropriate certification track. Beta exams enable Cisco to ensure quality exam development. Beta exam results are not released until after the beta exam period has closed and all results are analyzed. Results are usually posted on the Cisco Career Certifications Tracking System approximately 8-12 weeks after the last day to test. Sincerely, Nader Nanjiani Marketing Programs Manager Cisco Career Certifications Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=37264t=37264 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Unidirectional communications (was simple OSPF) [7:37265]
One thing to remember is that OSPF costs are calculated unidirectionally. For example, A's cost to C could be very different from C's cost to A. In general, IP traffic has to be engineered in both directions and it for some networks asymmetry in flow might make sense. I can't think of a reason off hand while watching a hockey game, but experience has taught me that many odd looking designs are rooted in rational, informed theory. Pete There's a whole class of applications for this sort of thing, and indeed there is a Unidirectional Link Routing group in the IETF for dealing with them. Much of the leading research work is in France, where practical applications deal with using high-bandwidth satellite links in one direction to deliver educational content to Africa, and a low-speed terrestrial return link for acknowledgements. - Following up on this general issue of asymmetrical satellite+terrestrial communications, you might find this interesting: At 8:42 AM +0200 3/5/02, Hank Nussbacher wrote: New 12.2(8)T feature in Cisco IOS called TCP Windows Scaling: http://www.cisco.com/univercd/cc/td/doc/product/software/ios122/122newft/122t/122t8/tcpwslfn.htm Specifically made for satellite networks: ip tcp window-size 75 -Hank In general, TCP needs help to deal with long-delay or very-high-speed media. There is an assortment of RFCs on this, but this is more a matter of host than router concern. As a rule of thumb, you start getting in trouble with standard TCP at about 50 Mbps, and run into theoretical limits at about 600 Mbps. There are workarounds such as extended window and sequence fields, plus selective acknowledgement. Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=37265t=37265 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: ATM SVCs, was Re: OSPF Network Types [7:37205]
This brings up another point that's been bugging me lately. When would you ever implement ATM SVCs? It seems that modern networks tend to be very chatty and there's generally a lot going on, especially if you're running a routing protocol. This would tend to keep the SVC up all or most of the time. If that's the case, why not just nail up PVCs and be done with it? I can't think of a good example off the top of my head where it would be a _Really Good Idea_ to implement SVCs. In fact, what you've just described is called a Soft PVC. The argument is that there's less configuration to do if you use dynamic SVC setup than PVCs. Of course, this isn't a big issue in a small network. Remember, though, that manageability is one dimension of scalability. I suppose it's possible to have networks where connections aren't up all the time, but when they are you need the capabilities inherent in ATM. However, I just can't think of a really good example where SVCs would be a superior choice vs. PVCs. Any thoughts? John On Mon, 4 Mar 2002, Hunt Lee ([EMAIL PROTECTED]) wrote: John, For Frame-Relay PVCs, you would use: ip ospf network point-to-multipoint But for Frame-Relay SVCs or ATM SVCs, you would use: ip ospf network point-to-multipoint non-broadcast Best Regards, Hunt Lee John Neiberger wrote in message news:[EMAIL PROTECTED]; I've been reading the CCO configuration guides and I now have a question. What is the difference between the following: ip ospf network point-to-multipoint and ip ospf network point-to-multipoint non-broadcast ?? More specifically, I really want to know when you would use the latter command. The example given on CCO is if we have excluded the broadcast keyword from a frame relay map. I don't think I've ever seen anyone configure a frame map without that keyword so I don't know why you'd ever want to do that. Any thoughts here? Thanks, John [EMAIL PROTECTED] Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=37266t=37205 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: ATM SVCs, was Re: OSPF Network Types [7:37205]
Our campus network at Staples HQ had a ATM based backbone that had SVC's. Have no idea why, and there were always problems with the SVC's never being torn down properly, but they were used. -- RFC 1149 Compliant. John Neiberger wrote in message news:[EMAIL PROTECTED]; This brings up another point that's been bugging me lately. When would you ever implement ATM SVCs? It seems that modern networks tend to be very chatty and there's generally a lot going on, especially if you're running a routing protocol. This would tend to keep the SVC up all or most of the time. If that's the case, why not just nail up PVCs and be done with it? I can't think of a good example off the top of my head where it would be a _Really Good Idea_ to implement SVCs. I suppose it's possible to have networks where connections aren't up all the time, but when they are you need the capabilities inherent in ATM. However, I just can't think of a really good example where SVCs would be a superior choice vs. PVCs. Any thoughts? John On Mon, 4 Mar 2002, Hunt Lee ([EMAIL PROTECTED]) wrote: John, For Frame-Relay PVCs, you would use: ip ospf network point-to-multipoint But for Frame-Relay SVCs or ATM SVCs, you would use: ip ospf network point-to-multipoint non-broadcast Best Regards, Hunt Lee John Neiberger wrote in message news:[EMAIL PROTECTED]; I've been reading the CCO configuration guides and I now have a question. What is the difference between the following: ip ospf network point-to-multipoint and ip ospf network point-to-multipoint non-broadcast ?? More specifically, I really want to know when you would use the latter command. The example given on CCO is if we have excluded the broadcast keyword from a frame relay map. I don't think I've ever seen anyone configure a frame map without that keyword so I don't know why you'd ever want to do that. Any thoughts here? Thanks, John [EMAIL PROTECTED] Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=37267t=37205 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Firmware upgrades for Catalyst [7:37268]
Does anyone have any clear concise reference links to areas describing firmware upgrade options for the Caltalyst 5000? Are chip replacements required to do so? Anyidea what limitations for software and firmware levels are for the Supervisor 1 engine? Thanks, Curtis Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=37268t=37268 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
catalyst 5000 software/firmware [7:37269]
Does anyone have any clear concise reference links to areas describing firmware upgrade options for the Catalyst 5000? Are chip replacements required to do so? Anyidea what limitations for software and firmware levels are for the Supervisor 1 engine? Thanks, Curtis Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=37269t=37269 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Delete VLAN [7:37254]
Vlan 5 will also be cleared on all switches that are configured as clients as well. Also, any port that is configured on those switches will also lose their vlan assignment to vlan 5. Woody CCNP -Original Message- From: mlh [mailto:[EMAIL PROTECTED]] Sent: Tuesday, March 05, 2002 7:42 AM To: [EMAIL PROTECTED] Subject: Delete VLAN [7:37254] In a VTP domain environment, when you use the command clear vlan 5 on a Catalyst configured as a VTP server, do you actually remove vlan 5 only from that Catalyst or from all Catalysts in that VTP domain? Thank you. Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=37270t=37254 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Time based ACL on PIX? [7:37198]
You can use AAA time-of-day access feature with PIX to accomplish this. -Keyur Shah- CCIE# 4799 (Security; Routing and Switching) css1,scsa,scna,mct,mcse,cni,mcne Hello Computers Say Hello to Your Future! http://www.hellocomputers.com Toll-Free: 1.877.794.3556 Fremont: 510.795.6815 Santa Clara: 408.496.0801 Europe: +(44)20 7900 3011 Fax: 510.291.2250 -Original Message- From: matt [mailto:[EMAIL PROTECTED]] Sent: Monday, March 04, 2002 9:40 PM To: [EMAIL PROTECTED] Subject: Time based ACL on PIX? [7:37198] Hi all- I sent this out earlier but it didn't seem to post?? Anyway...I was wondering if it is possible to have services behind a PIX restricted to time?? Kinda like how you can with a Checkpoint. Initially I was thinking this was not possible as I have conduit based configurations on all the PIX's I maintainand am unaware of any such option on a conduit. But then I saw the time-range option for an extended ACL. So, my question: Can this be used on a PIX to limit access to a service to say 1 ipand only between certain hours? Has anyone does this...or is it even possible? I hope this makes sense. thanks, matt __ Do You Yahoo!? Yahoo! Sports - sign up for Fantasy Baseball http://sports.yahoo.com Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=37244t=37198 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Pix NAT - Two to one [7:37179]
Yep - seen the error. I don't want people to think I was being lazy. I spent a good few hours yesterday playing around with things like statics/alias to try and get this to work. That's good enough for me. I was wondering whether anyone had found a workaround, but it seems not. I think the only option is to tell customer to use multiple IP on servers. Thanks for the replies everyone. Anybody fancy having a look at my other Pix question - Pix Alias - Puzzled?? :-) Cheers, Gaz Joseph Brunner wrote in message news:[EMAIL PROTECTED]; pix will respond with error if you do more than 1 static command (specify more than one public private translation, using the static command). Pix dosent offer extendable either (im running 6 train on the pix) Joseph Brunner ASN 21572 MortgageIT MITLending New York, NY 10038 (212) 651 - 7695 Voice (212) 651 - 7795 Fax -Original Message- From: Hire, Ejay [mailto:[EMAIL PROTECTED]] Sent: Monday, March 04, 2002 3:52 PM To: [EMAIL PROTECTED] Subject: RE: Pix NAT - Two to one [7:37179] On a cisco router, you use the Extendable command. not sure about the pix. -Original Message- From: Gaz [mailto:[EMAIL PROTECTED]] Sent: Monday, March 04, 2002 3:07 PM To: [EMAIL PROTECTED] Subject: Pix NAT - Two to one [7:37179] Hi all, Has anybody tried NAT'ing two outside addresses to one internal (DMZ) address on the same port (80) in some way. Not too difficult to get round, as I can get the DNS of one site changed and use the single address outside to single inside. The advantage would be that when the web sites are separated, to two machines inside, I would like to be able to change the pix settings immediately rather than change DNS and wait a couple of days for DNS to propagate. I'm sure there may be some simple way of doing it, but I couldn't find it whilst playing about today. Any ideas welcome. Thanks, Gaz Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=37242t=37179 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Reverse Telnet SW for PC? [7:37246]
Yes, the software is called Linux. I do this exact thing and it works great! I have a digicard ($30 ebay) connected to a pentium 133 running linux. I setup minicom (Linux's answer to procomm) so when I type minicom router1 it goes to port 1 etc. When I first start the session I type minicom router1 to go to router 1 then suspend the session [CTRL-A] - J and type minicom router2. I do this for all of the routers so I eventually have 8 concurrent sessions. To change between routers you simply type [CTRL-A] -J then at the prompt fg # where # is the session number you want (i.e. fg 4 will jump to router 4). I find this setup to be as quick as using a 2509 or 2511. Plus the Linux box becomes my TFTP, NTP, TACACS, and SYSLOG server for the pod. If you really want to get fancy, you can create a user account for each router and replace the startup shell in the /etc/passwd file with /usr/bin/minicom router#. When you login to the account, minicom is automatically run dumping you right to the console port. Cool huh! Paul Borghese - Original Message - From: Johan Hjalmarsson To: Sent: Tuesday, March 05, 2002 5:14 AM Subject: Reverse Telnet SW for PC? [7:37246] Does anybody know if there's any software out there to turn a PC into a Cisco 2509? What I need is the abillity to telnet to the PC and get the telnet traffic redirected out a COM port, just like reverse telnet in the Cisco. One solution is of course to get a 2509, but for the moment my budget woun't let me :-( and I've already got a PC with 8 COM ports. Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=37263t=37246 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Catalyst 3508G XL , 2950T-24 [7:37098]
Rik, You're probably right, not great advice. Could probably just switch the connectors around just as quickly to see if it works. I do it quite a bit, but that doesn't mean it's the right thing to do. Anyway, did I miss something? I didn't see anything about it being a copper GBIC on the 3508. Shawn K. -Original Message- From: Rik Guyler [mailto:[EMAIL PROTECTED]] Sent: Monday, March 04, 2002 10:08 PM To: [EMAIL PROTECTED] Subject: RE: Catalyst 3508G XL , 2950T-24 [7:37098] That's not good advice. An LX GBIC uses a laser transmitter, which is powerful enough to burn a hole in your retina as a coworker of mine found out. Besides, this is a copper GBIC so no light to see. 12.0(5.3) is a new enough IOS to recognize the copper GBIC so this version will work on all of your 3500 switches. Rik -Original Message- From: Kaminski, Shawn G [mailto:[EMAIL PROTECTED]] Sent: Monday, March 04, 2002 10:07 AM To: [EMAIL PROTECTED] Subject: RE: Catalyst 3508G XL , 2950T-24 [7:37098] I don't believe that it's the IOS on the 3508. First, check to make sure your fiber is connected correctly. When the switch is powered up, you can see which side the laser is on in the GBIC connector. Then, if you cup the fiber in your hands, briefly (very briefly) look to see which connector the laser is on. Then make sure that the connector with the laser goes to the connector on the switch without the laser. If this isn't the problem, there's a good chance it's probably a bad GBIC. Shawn K. -Original Message- From: Chuck Collins [mailto:[EMAIL PROTECTED]] Sent: Monday, March 04, 2002 8:22 AM To: [EMAIL PROTECTED] Subject: RE: Catalyst 3508G XL , 2950T-24 [7:37098] I wouldn't upgrade the IOS. We had a 3550 that was doing the same thing (GBIC not blinking at all). We called into TAC and got a replacement. We did the upgrade first and when the switch would boot it would no recognize the Ethernet controller. It may be different for you since you have a 3508. I guess you would need to ask yourself do I feel lucky? Good Luck, Chuck Collins -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] Sent: Sunday, March 03, 2002 10:33 AM To: [EMAIL PROTECTED] Subject: Catalyst 3508G XL , 2950T-24 [7:37098] Dear all I need clarification regarding these two points thanking your help in proceed, First point: We have Catalyst 3508G XL , 8 GBIC slots , 12.0(5.2)XU IOS software. We tried to make operate it but the GBIC was not blinking at all , as I had read this document http://www.cisco.com/univercd/cc/td/doc/product/lan/c2900xl/1000gbic/ins tnot e.htm , I got conclusion that the switches detect and enable the GBIC only when they are running the minimum software releases which in case of Catalyst 3508G XL Cisco the minimum IOS Release is 12.0(5)XW , so in order to enable the GBIC we have to upgrade the IOS software from 12.0(5.2)XU to 12.0(5)XW . Second point: we have Catalyst 2950T-24 Switch-24 10/100 ports and 2 fixed 10/100/1000BaseT uplink ports, IOS available 12.0(5.3)WC(1). As I had read this document http://www.cisco.com/univercd/cc/td/doc/product/lan/cat2950/2950_wc/1169 303. htm , I got conclusion that we do not have to upgrade the ios image because the ios will support the following: Catalyst 2950T-24 24 fixed autosensing 10/100 ports and 2 fixed autosensing 10/100/1000 Ethernet ports. please tell me if there is something missing here , the equipment is placed far away from our office we need to put the network on there as soon as possible , in case we have to upgrade the ios of the any platform then please let us go ahead solving this issue. Warm regards, Ismail Al-shelh Network Engineer [GroupStudy.com removed an attachment of type application/ms-tnef] Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=37271t=37098 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Delete VLAN [7:37254]
the whole domain. Dave mlh wrote: In a VTP domain environment, when you use the command clear vlan 5 on a Catalyst configured as a VTP server, do you actually remove vlan 5 only from that Catalyst or from all Catalysts in that VTP domain? Thank you. -- David Madland Sr. Network Engineer CCIE# 2016 Qwest Communications Int. Inc. [EMAIL PROTECTED] 612-664-3367 Emotion should reflect reason not guide it Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=37272t=37254 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: MPLS and AS5300 [7:37252]
searching the software advisor by features, doesn't look like the as5300 support MPLS. Maybe someone can find something different. Woody CCNP -Original Message- From: Michalis Palis [mailto:[EMAIL PROTECTED]] Sent: Tuesday, March 05, 2002 7:02 AM To: [EMAIL PROTECTED] Subject: MPLS and AS5300 [7:37252] Dear all Can AS5300 supports MPLS? If yes what is the IOS that supports it? I checked Cisco side but i couldn't find any info thanks __ Do You Yahoo!? Try FREE Yahoo! Mail - the world's greatest free email! http://mail.yahoo.com/ Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=37274t=37252 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: cisco cpe 828 [7:37261]
Komy, I did a search for that feature in the software advisor and according to it, it doesn't support BGP. Woody CCNP -Original Message- From: Mohamed el-Komy [mailto:[EMAIL PROTECTED]] Sent: Tuesday, March 05, 2002 8:46 AM To: [EMAIL PROTECTED] Subject: cisco cpe 828 [7:37261] Does Cisco Router 828 support BGP ?? and if yes which IOS image support the BGP config?? BR, Komy Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=37273t=37261 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: MPLS and AS5300 [7:37252]
From the top of my head the cisco party line on this is to use the as5300 as a LAC for a 7200/7400/... LNS which would do the MPLS encaps. Then again there has been a lot of standards work on making the LNS/LAC communication over MPLS. There's my two cents for what it's worth. But these developing features really require research given your individual requirements. Good Luck, Darrell Woods, Randall, SOLCM wrote: searching the software advisor by features, doesn't look like the as5300 support MPLS. Maybe someone can find something different. Woody CCNP -Original Message- From: Michalis Palis [mailto:[EMAIL PROTECTED]] Sent: Tuesday, March 05, 2002 7:02 AM To: [EMAIL PROTECTED] Subject: MPLS and AS5300 [7:37252] Dear all Can AS5300 supports MPLS? If yes what is the IOS that supports it? I checked Cisco side but i couldn't find any info thanks __ Do You Yahoo!? Try FREE Yahoo! Mail - the world's greatest free email! http://mail.yahoo.com/ Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=37275t=37252 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: catalyst 5000 software/firmware [7:37269]
According to CCO link (watch for wrap) http://www.cisco.com/univercd/cc/td/doc/product/lan/cat5000/c5krn/sw_rns/78_ 5861.htm , all of the Catalyst 5000 family supervisor engine 4.x software releases require a minimum of 16-MB RAM installed on your supervisor engine. All Catalyst 5000 family supervisor engines with at least 16-MB DRAM fully support software release 4.x. Software release 5.x and above won't support the Cat5000 Supervisor I. Cisco recommends the software version 4.5(13a) for the Cat5000 Supervisor I. As for firmware, still looking. Shawn K. -Original Message- From: Curtis Phillips [mailto:[EMAIL PROTECTED]] Sent: Tuesday, March 05, 2002 9:43 AM To: [EMAIL PROTECTED] Subject: catalyst 5000 software/firmware [7:37269] Does anyone have any clear concise reference links to areas describing firmware upgrade options for the Catalyst 5000? Are chip replacements required to do so? Anyidea what limitations for software and firmware levels are for the Supervisor 1 engine? Thanks, Curtis Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=37277t=37269 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Stupid 2500 confreg question [7:37278]
is scroll lock on? -- RFC 1149 Compliant. Craig Columbus wrote in message news:[EMAIL PROTECTED]; Has anyone run into an issue where a 2500 series router won't respond to console input? Here's the deal: The PC is running 9600-8-N-1 and is connected to the 2500 console port. The router has had nvram erased and is being booted for the first time. Upon boot, the normal boot process is seen on the monitor screen. When prompted to enter configuration dialogue, it's not possible to input anything on the router. Typing does nothing and there is no response from the router. If Ctrl-F6-Break is pressed during boot, the router goes to the prompt, but after that, the router still won't accept any input from the console port. Has anyone experienced this issue? Is this a config register problem? If so, is there a fix other than experimenting with different settings on the PC side? If not, does anyone have an answer? Could it be bad boot ROM? Thanks, Craig Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=37279t=37278 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Stupid 2500 confreg question [7:37278]
Has anyone run into an issue where a 2500 series router won't respond to console input? Here's the deal: The PC is running 9600-8-N-1 and is connected to the 2500 console port. The router has had nvram erased and is being booted for the first time. Upon boot, the normal boot process is seen on the monitor screen. When prompted to enter configuration dialogue, it's not possible to input anything on the router. Typing does nothing and there is no response from the router. If Ctrl-F6-Break is pressed during boot, the router goes to the prompt, but after that, the router still won't accept any input from the console port. Has anyone experienced this issue? Is this a config register problem? If so, is there a fix other than experimenting with different settings on the PC side? If not, does anyone have an answer? Could it be bad boot ROM? Thanks, Craig Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=37278t=37278 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Controling bandwidth utilisation 2 Internet conns [7:37280]
Folks, I have a general question about restricting bandwidth on an HSSI interface. A part of our business is web hosting whereby each customer (site) uses whatever bandwidth it can take. Is there any way to control (restrict) bandwidth utilization for these sites or customers? I have worked in an ISP environment where we used frame relay and seperate physical interfaces on a Catalyst 5500 to connect leased line customers with specific BIRs and CIRs. In this way it is easy to do because each customer uses a specific interface. The other thing is that I have 2 Internet circuits; one for the hosting business and one for corporate use. I would like to implement a way to use them as redundant links for each other if one should go down. So if the Hosting circuit gets disconnected, traffic can still get out to the Internet using the other circuit and vice versa. If I can get this going, I might also be able to control traffic down either circuit to balance the load. Check out the attached gif for an idea of how the network is laid out. Anybody got any useful information on these issues? Thanks dudes and dudettes. Charles. [GroupStudy.com removed an attachment of type image/gif which had a name of network.gif] [GroupStudy.com removed an attachment of type text/x-vcard which had a name of cdowling.vcf] Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=37280t=37280 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Stupid 2500 confreg question [7:37282]
Yes, a few times. Way back I hd that problem with hypeterm, switched to terterm and things worked better. I know have a couple of 2500's in the lab that I cannot talk to via the console but that otherwise work fine, I think they're just old and tired and I don't feeled inclined to spend much time trying to figure out why though you may want to stick a breakout box on the console and check the output. Dave Craig Columbus wrote: Has anyone run into an issue where a 2500 series router won't respond to console input? Here's the deal: The PC is running 9600-8-N-1 and is connected to the 2500 console port. The router has had nvram erased and is being booted for the first time. Upon boot, the normal boot process is seen on the monitor screen. When prompted to enter configuration dialogue, it's not possible to input anything on the router. Typing does nothing and there is no response from the router. If Ctrl-F6-Break is pressed during boot, the router goes to the prompt, but after that, the router still won't accept any input from the console port. Has anyone experienced this issue? Is this a config register problem? If so, is there a fix other than experimenting with different settings on the PC side? If not, does anyone have an answer? Could it be bad boot ROM? Thanks, Craig _ Commercial lab list: http://www.groupstudy.com/list/commercial.html Please discuss commercial lab solutions on this list. -- David Madland Sr. Network Engineer CCIE# 2016 Qwest Communications Int. Inc. [EMAIL PROTECTED] 612-664-3367 Emotion should reflect reason not guide it Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=37282t=37282 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Stupid 2500 confreg question [7:37284]
Have you tried a different cable? - Original Message - From: Craig Columbus To: Cc: Sent: Tuesday, March 05, 2002 11:18 AM Subject: Stupid 2500 confreg question Has anyone run into an issue where a 2500 series router won't respond to console input? Here's the deal: The PC is running 9600-8-N-1 and is connected to the 2500 console port. The router has had nvram erased and is being booted for the first time. Upon boot, the normal boot process is seen on the monitor screen. When prompted to enter configuration dialogue, it's not possible to input anything on the router. Typing does nothing and there is no response from the router. If Ctrl-F6-Break is pressed during boot, the router goes to the prompt, but after that, the router still won't accept any input from the console port. Has anyone experienced this issue? Is this a config register problem? If so, is there a fix other than experimenting with different settings on the PC side? If not, does anyone have an answer? Could it be bad boot ROM? Thanks, Craig _ Commercial lab list: http://www.groupstudy.com/list/commercial.html Please discuss commercial lab solutions on this list. Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=37284t=37284 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Not the whole domain - Re: Delete VLAN [7:37254]
Hi,Dave, First, thank you for your answer. But I really got confused. Pls read the following excerpt about Deleting VLAN from the book of Cisco LAN Switching written by Clark Hamilton : You can remove VLANs from the management domain using the clear vlan vlan_number command. For example, if you want to remove VLAN 5 from your VTP management domain, you can type the command clear vlan 5 on a Catalyst configured as a VTP server. You cannot delete VLANs from a VTP client Catalyst. If the Catalyst is configured in transparent mode, you can delete the VLAN. However, the VLAN is removed only from the one Catalyst and is not deleted throughout the management domain. All VLAN creations and deletions are only locally significant on a transparent Catalyst. So, according the above words, it just remove the portion of vlan 5 on that Catalyst which clear command was executed. Is it right? From Woody's answer to my last question : Vlan 5 will also be cleared on all switches that are configured as clients as well. Also, any port that is configured on those switches will also lose their vlan assignment to vlan 5. I raised another question: if Woody is right, the portion of vlan 5 on the Catalysts configured as clients will also be removed, then my question is: Will all clients or just clients configured from that server-Catalyst which clear command is executed be removed? Sorry for taking you long time to read my questions. Any suggestion would be welcome. mlh - Original Message - From: MADMAN To: Sent: Tuesday, March 05, 2002 10:14 AM Subject: Re: Delete VLAN [7:37254] the whole domain. Dave mlh wrote: In a VTP domain environment, when you use the command clear vlan 5 on a Catalyst configured as a VTP server, do you actually remove vlan 5 only from that Catalyst or from all Catalysts in that VTP domain? Thank you. -- David Madland Sr. Network Engineer CCIE# 2016 Qwest Communications Int. Inc. [EMAIL PROTECTED] 612-664-3367 Emotion should reflect reason not guide it Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=37285t=37254 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
DHCP across PIX [7:37286]
Hi, My pc are located in one of the PIX interface. There is an DHCP server in the other interface. How to let the DHCP packet go through ? Broadcast ? Tks Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=37286t=37286 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Stupid 2500 confreg question [7:37287]
The cable is good and scroll lock isn't on. Same PC setup and cable work fine on other 2500 series. I haven't run into this particular issue before. Craig At 11:50 AM 3/5/2002 -0500, you wrote: Have you tried a different cable? - Original Message - From: Craig Columbus To: Cc: Sent: Tuesday, March 05, 2002 11:18 AM Subject: Stupid 2500 confreg question Has anyone run into an issue where a 2500 series router won't respond to console input? Here's the deal: The PC is running 9600-8-N-1 and is connected to the 2500 console port. The router has had nvram erased and is being booted for the first time. Upon boot, the normal boot process is seen on the monitor screen. When prompted to enter configuration dialogue, it's not possible to input anything on the router. Typing does nothing and there is no response from the router. If Ctrl-F6-Break is pressed during boot, the router goes to the prompt, but after that, the router still won't accept any input from the console port. Has anyone experienced this issue? Is this a config register problem? If so, is there a fix other than experimenting with different settings on the PC side? If not, does anyone have an answer? Could it be bad boot ROM? Thanks, Craig _ Commercial lab list: http://www.groupstudy.com/list/commercial.html Please discuss commercial lab solutions on this list. _ Commercial lab list: http://www.groupstudy.com/list/commercial.html Please discuss commercial lab solutions on this list. Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=37287t=37287 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Not the whole domain - Re: Delete VLAN [7:37254]
you have to pay attention to the CAT you are deleting the vlan fromif it is in transparent mode, then the vlan, like the book says will be deleted from the CAT only if it is in client mode, then no changes can be made VLAN wise on the switch. If it is the vtp server, then removing VLAN 5 will delete VLAN 5 from that CAT and all the other CAT's in the vtp domain... Read the quoted text you placed in your email to usIt describes the process as well as anybody could describe it. Are you havign problems following/determining what a switch is? (Server, client, transparent) -Patrick mlh 03/05/02 12:06PM Hi,Dave, First, thank you for your answer. But I really got confused. Pls read the following excerpt about Deleting VLAN from the book of Cisco LAN Switching written by Clark Hamilton : You can remove VLANs from the management domain using the clear vlan vlan_number command. For example, if you want to remove VLAN 5 from your VTP management domain, you can type the command clear vlan 5 on a Catalyst configured as a VTP server. You cannot delete VLANs from a VTP client Catalyst. If the Catalyst is configured in transparent mode, you can delete the VLAN. However, the VLAN is removed only from the one Catalyst and is not deleted throughout the management domain. All VLAN creations and deletions are only locally significant on a transparent Catalyst. So, according the above words, it just remove the portion of vlan 5 on that Catalyst which clear command was executed. Is it right? From Woody's answer to my last question : Vlan 5 will also be cleared on all switches that are configured as clients as well. Also, any port that is configured on those switches will also lose their vlan assignment to vlan 5. I raised another question: if Woody is right, the portion of vlan 5 on the Catalysts configured as clients will also be removed, then my question is: Will all clients or just clients configured from that server-Catalyst which clear command is executed be removed? Sorry for taking you long time to read my questions. Any suggestion would be welcome. mlh - Original Message - From: MADMAN To: Sent: Tuesday, March 05, 2002 10:14 AM Subject: Re: Delete VLAN [7:37254] the whole domain. Dave mlh wrote: In a VTP domain environment, when you use the command clear vlan 5 on a Catalyst configured as a VTP server, do you actually remove vlan 5 only from that Catalyst or from all Catalysts in that VTP domain? Thank you. -- David Madland Sr. Network Engineer CCIE# 2016 Qwest Communications Int. Inc. [EMAIL PROTECTED] 612-664-3367 Emotion should reflect reason not guide it Confidentiality Disclaimer This email and any files transmitted with it may contain confidential and /or proprietary information in the possession of WellStar Health System, Inc. (WellStar) and is intended only for the individual or entity to whom addressed. This email may contain information that is held to be privileged, confidential and exempt from disclosure under applicable law. If the reader of this message is not the intended recipient, you are hereby notified that any unauthorized access, dissemination, distribution or copying of any information from this email is strictly prohibited, and may subject you to criminal and/or civil liability. If you have received this email in error, please notify the sender by reply email and then delete this email and its attachments from your computer. Thank you. Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=37288t=37254 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Stupid 2500 confreg question [7:37287]
Reseat the Flash and the memory. This solved my PIX issue. neil Craig Columbus wrote in message news:[EMAIL PROTECTED]; The cable is good and scroll lock isn't on. Same PC setup and cable work fine on other 2500 series. I haven't run into this particular issue before. Craig At 11:50 AM 3/5/2002 -0500, you wrote: Have you tried a different cable? - Original Message - From: Craig Columbus To: Cc: Sent: Tuesday, March 05, 2002 11:18 AM Subject: Stupid 2500 confreg question Has anyone run into an issue where a 2500 series router won't respond to console input? Here's the deal: The PC is running 9600-8-N-1 and is connected to the 2500 console port. The router has had nvram erased and is being booted for the first time. Upon boot, the normal boot process is seen on the monitor screen. When prompted to enter configuration dialogue, it's not possible to input anything on the router. Typing does nothing and there is no response from the router. If Ctrl-F6-Break is pressed during boot, the router goes to the prompt, but after that, the router still won't accept any input from the console port. Has anyone experienced this issue? Is this a config register problem? If so, is there a fix other than experimenting with different settings on the PC side? If not, does anyone have an answer? Could it be bad boot ROM? Thanks, Craig _ Commercial lab list: http://www.groupstudy.com/list/commercial.html Please discuss commercial lab solutions on this list. _ Commercial lab list: http://www.groupstudy.com/list/commercial.html Please discuss commercial lab solutions on this list. Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=37289t=37287 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Stupid 2500 confreg question [7:37290]
Try setting the flow control in Hyperterm to None, that should do the trick. Steve -Original Message- From: MADMAN [mailto:[EMAIL PROTECTED]] Sent: 05 March 2002 16:46 To: Craig Columbus Cc: [EMAIL PROTECTED]; [EMAIL PROTECTED] Subject: Re: Stupid 2500 confreg question Yes, a few times. Way back I hd that problem with hypeterm, switched to terterm and things worked better. I know have a couple of 2500's in the lab that I cannot talk to via the console but that otherwise work fine, I think they're just old and tired and I don't feeled inclined to spend much time trying to figure out why though you may want to stick a breakout box on the console and check the output. Dave Craig Columbus wrote: Has anyone run into an issue where a 2500 series router won't respond to console input? Here's the deal: The PC is running 9600-8-N-1 and is connected to the 2500 console port. The router has had nvram erased and is being booted for the first time. Upon boot, the normal boot process is seen on the monitor screen. When prompted to enter configuration dialogue, it's not possible to input anything on the router. Typing does nothing and there is no response from the router. If Ctrl-F6-Break is pressed during boot, the router goes to the prompt, but after that, the router still won't accept any input from the console port. Has anyone experienced this issue? Is this a config register problem? If so, is there a fix other than experimenting with different settings on the PC side? If not, does anyone have an answer? Could it be bad boot ROM? Thanks, Craig _ Commercial lab list: http://www.groupstudy.com/list/commercial.html Please discuss commercial lab solutions on this list. -- David Madland Sr. Network Engineer CCIE# 2016 Qwest Communications Int. Inc. [EMAIL PROTECTED] 612-664-3367 Emotion should reflect reason not guide it _ Commercial lab list: http://www.groupstudy.com/list/commercial.html Please discuss commercial lab solutions on this list. Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=37290t=37290 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Stupid 2500 confreg question [7:37287]
like Dave suggested before, put a break out on it and go from thereyou may find that the serial port is expecting cts/rts and one of the pins are severed. I'm not sure what cisco requires to be 'live' on their 2500'san extremely half-assed search on google didn't yield anythign too interestingbut I'm sure you can find it out there... :) -Patrick Craig Columbus 03/05/02 12:17PM The cable is good and scroll lock isn't on. Same PC setup and cable work fine on other 2500 series. I haven't run into this particular issue before. Craig At 11:50 AM 3/5/2002 -0500, you wrote: Have you tried a different cable? - Original Message - From: Craig Columbus To: Cc: Sent: Tuesday, March 05, 2002 11:18 AM Subject: Stupid 2500 confreg question Has anyone run into an issue where a 2500 series router won't respond to console input? Here's the deal: The PC is running 9600-8-N-1 and is connected to the 2500 console port. The router has had nvram erased and is being booted for the first time. Upon boot, the normal boot process is seen on the monitor screen. When prompted to enter configuration dialogue, it's not possible to input anything on the router. Typing does nothing and there is no response from the router. If Ctrl-F6-Break is pressed during boot, the router goes to the prompt, but after that, the router still won't accept any input from the console port. Has anyone experienced this issue? Is this a config register problem? If so, is there a fix other than experimenting with different settings on the PC side? If not, does anyone have an answer? Could it be bad boot ROM? Thanks, Craig _ Commercial lab list: http://www.groupstudy.com/list/commercial.html Please discuss commercial lab solutions on this list. _ Commercial lab list: http://www.groupstudy.com/list/commercial.html Please discuss commercial lab solutions on this list. Confidentiality Disclaimer This email and any files transmitted with it may contain confidential and /or proprietary information in the possession of WellStar Health System, Inc. (WellStar) and is intended only for the individual or entity to whom addressed. This email may contain information that is held to be privileged, confidential and exempt from disclosure under applicable law. If the reader of this message is not the intended recipient, you are hereby notified that any unauthorized access, dissemination, distribution or copying of any information from this email is strictly prohibited, and may subject you to criminal and/or civil liability. If you have received this email in error, please notify the sender by reply email and then delete this email and its attachments from your computer. Thank you. Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=37291t=37287 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Not the whole domain - Re: Delete VLAN [7:37254]
Your quote from the book answers your own question. A switch in transparent mode does not partake in the VTP process. Switches in the same VTP domain that are either servers or clients do. So a change made on a server propagates throughout the VTP domain changing the information on the other servers and the clients. The prior responses to your question are correct. What might be confusing is the part that says you can't delete VLANs on a client. Clients don't save the VLAN information. They only learn it from servers. Change the server and you automatically change the clients. HTH -Original Message- From: mlh [mailto:[EMAIL PROTECTED]] Sent: Tuesday, March 05, 2002 11:07 AM To: [EMAIL PROTECTED] Subject: Not the whole domain - Re: Delete VLAN [7:37254] Hi,Dave, First, thank you for your answer. But I really got confused. Pls read the following excerpt about Deleting VLAN from the book of Cisco LAN Switching written by Clark Hamilton : You can remove VLANs from the management domain using the clear vlan vlan_number command. For example, if you want to remove VLAN 5 from your VTP management domain, you can type the command clear vlan 5 on a Catalyst configured as a VTP server. You cannot delete VLANs from a VTP client Catalyst. If the Catalyst is configured in transparent mode, you can delete the VLAN. However, the VLAN is removed only from the one Catalyst and is not deleted throughout the management domain. All VLAN creations and deletions are only locally significant on a transparent Catalyst. So, according the above words, it just remove the portion of vlan 5 on that Catalyst which clear command was executed. Is it right? From Woody's answer to my last question : Vlan 5 will also be cleared on all switches that are configured as clients as well. Also, any port that is configured on those switches will also lose their vlan assignment to vlan 5. I raised another question: if Woody is right, the portion of vlan 5 on the Catalysts configured as clients will also be removed, then my question is: Will all clients or just clients configured from that server-Catalyst which clear command is executed be removed? Sorry for taking you long time to read my questions. Any suggestion would be welcome. mlh - Original Message - From: MADMAN To: Sent: Tuesday, March 05, 2002 10:14 AM Subject: Re: Delete VLAN [7:37254] the whole domain. Dave mlh wrote: In a VTP domain environment, when you use the command clear vlan 5 on a Catalyst configured as a VTP server, do you actually remove vlan 5 only from that Catalyst or from all Catalysts in that VTP domain? Thank you. -- David Madland Sr. Network Engineer CCIE# 2016 Qwest Communications Int. Inc. [EMAIL PROTECTED] 612-664-3367 Emotion should reflect reason not guide it Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=37292t=37254 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Stupid 2500 confreg question [7:37287]
Yeah, it looks like I'll end up going in that direction. After exhausting Cisco and google, I was hoping that someone on the list could give me a quick answer. I'm still not sure that it's not a bad boot ROM. The boot ROM was recently upgraded, and although I'm told that it worked fine after the upgrade, I'm beginning to have my doubts. Thanks! Craig At 12:40 PM 3/5/2002 -0500, you wrote: like Dave suggested before, put a break out on it and go from thereyou may find that the serial port is expecting cts/rts and one of the pins are severed. I'm not sure what cisco requires to be 'live' on their 2500'san extremely half-assed search on google didn't yield anythign too interestingbut I'm sure you can find it out there... :) -Patrick Craig Columbus 03/05/02 12:17PM The cable is good and scroll lock isn't on. Same PC setup and cable work fine on other 2500 series. I haven't run into this particular issue before. Craig At 11:50 AM 3/5/2002 -0500, you wrote: Have you tried a different cable? - Original Message - From: Craig Columbus To: Cc: Sent: Tuesday, March 05, 2002 11:18 AM Subject: Stupid 2500 confreg question Has anyone run into an issue where a 2500 series router won't respond to console input? Here's the deal: The PC is running 9600-8-N-1 and is connected to the 2500 console port. The router has had nvram erased and is being booted for the first time. Upon boot, the normal boot process is seen on the monitor screen. When prompted to enter configuration dialogue, it's not possible to input anything on the router. Typing does nothing and there is no response from the router. If Ctrl-F6-Break is pressed during boot, the router goes to the prompt, but after that, the router still won't accept any input from the console port. Has anyone experienced this issue? Is this a config register problem? If so, is there a fix other than experimenting with different settings on the PC side? If not, does anyone have an answer? Could it be bad boot ROM? Thanks, Craig _ Commercial lab list: http://www.groupstudy.com/list/commercial.html Please discuss commercial lab solutions on this list. _ Commercial lab list: http://www.groupstudy.com/list/commercial.html Please discuss commercial lab solutions on this list. Confidentiality Disclaimer This email and any files transmitted with it may contain confidential and /or proprietary information in the possession of WellStar Health System, Inc. (WellStar) and is intended only for the individual or entity to whom addressed. This email may contain information that is held to be privileged, confidential and exempt from disclosure under applicable law. If the reader of this message is not the intended recipient, you are hereby notified that any unauthorized access, dissemination, distribution or copying of any information from this email is strictly prohibited, and may subject you to criminal and/or civil liability. If you have received this email in error, please notify the sender by reply email and then delete this email and its attachments from your computer. Thank you. Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=37293t=37287 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Not the whole domain - Re: Delete VLAN [7:37254]
mlh, the thing is, VLAN 5 will be deleted from the following switches: - all server-mode switches on the VTP domain, regardless of which one the command was issued - all client-mode switches on the VTP domain VLAN 5 won't be deleted from the following switches: - all switches that are in transparent mode on the VTP domain - any other switch that is not in the VTP domain Persio - Original Message - From: mlh To: Sent: Tuesday, March 05, 2002 2:06 PM Subject: Not the whole domain - Re: Delete VLAN [7:37254] Hi,Dave, First, thank you for your answer. But I really got confused. Pls read the following excerpt about Deleting VLAN from the book of Cisco LAN Switching written by Clark Hamilton : You can remove VLANs from the management domain using the clear vlan vlan_number command. For example, if you want to remove VLAN 5 from your VTP management domain, you can type the command clear vlan 5 on a Catalyst configured as a VTP server. You cannot delete VLANs from a VTP client Catalyst. If the Catalyst is configured in transparent mode, you can delete the VLAN. However, the VLAN is removed only from the one Catalyst and is not deleted throughout the management domain. All VLAN creations and deletions are only locally significant on a transparent Catalyst. So, according the above words, it just remove the portion of vlan 5 on that Catalyst which clear command was executed. Is it right? From Woody's answer to my last question : Vlan 5 will also be cleared on all switches that are configured as clients as well. Also, any port that is configured on those switches will also lose their vlan assignment to vlan 5. I raised another question: if Woody is right, the portion of vlan 5 on the Catalysts configured as clients will also be removed, then my question is: Will all clients or just clients configured from that server-Catalyst which clear command is executed be removed? Sorry for taking you long time to read my questions. Any suggestion would be welcome. mlh - Original Message - From: MADMAN To: Sent: Tuesday, March 05, 2002 10:14 AM Subject: Re: Delete VLAN [7:37254] the whole domain. Dave mlh wrote: In a VTP domain environment, when you use the command clear vlan 5 on a Catalyst configured as a VTP server, do you actually remove vlan 5 only from that Catalyst or from all Catalysts in that VTP domain? Thank you. -- David Madland Sr. Network Engineer CCIE# 2016 Qwest Communications Int. Inc. [EMAIL PROTECTED] 612-664-3367 Emotion should reflect reason not guide it Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=37294t=37254 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Not the whole domain - Re: Delete VLAN [7:37254]
let me try to explain a little better. Server - Has the ability to add and remove VLan's for a Domain. This will remove the vlan from all switches that are clients on the domain. Client - Can't add or delete a Vlan from the Domain. All information about Vlan's is received from the Server. Transparent - Can add and delete Vlan's but only on that switch. No other switches in the Domain will be affected. Woody CCNP -Original Message- From: mlh [mailto:[EMAIL PROTECTED]] Sent: Tuesday, March 05, 2002 12:07 PM To: [EMAIL PROTECTED] Subject: Not the whole domain - Re: Delete VLAN [7:37254] Hi,Dave, First, thank you for your answer. But I really got confused. Pls read the following excerpt about Deleting VLAN from the book of Cisco LAN Switching written by Clark Hamilton : You can remove VLANs from the management domain using the clear vlan vlan_number command. For example, if you want to remove VLAN 5 from your VTP management domain, you can type the command clear vlan 5 on a Catalyst configured as a VTP server. You cannot delete VLANs from a VTP client Catalyst. If the Catalyst is configured in transparent mode, you can delete the VLAN. However, the VLAN is removed only from the one Catalyst and is not deleted throughout the management domain. All VLAN creations and deletions are only locally significant on a transparent Catalyst. So, according the above words, it just remove the portion of vlan 5 on that Catalyst which clear command was executed. Is it right? From Woody's answer to my last question : Vlan 5 will also be cleared on all switches that are configured as clients as well. Also, any port that is configured on those switches will also lose their vlan assignment to vlan 5. I raised another question: if Woody is right, the portion of vlan 5 on the Catalysts configured as clients will also be removed, then my question is: Will all clients or just clients configured from that server-Catalyst which clear command is executed be removed? Sorry for taking you long time to read my questions. Any suggestion would be welcome. mlh - Original Message - From: MADMAN To: Sent: Tuesday, March 05, 2002 10:14 AM Subject: Re: Delete VLAN [7:37254] the whole domain. Dave mlh wrote: In a VTP domain environment, when you use the command clear vlan 5 on a Catalyst configured as a VTP server, do you actually remove vlan 5 only from that Catalyst or from all Catalysts in that VTP domain? Thank you. -- David Madland Sr. Network Engineer CCIE# 2016 Qwest Communications Int. Inc. [EMAIL PROTECTED] 612-664-3367 Emotion should reflect reason not guide it Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=37296t=37254 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: MS IAS Server [7:37281]
Michael, Try isaserver.org - They have some good docs, configs, and a message board. Jeff -Original Message- From: Mike Hennigan [mailto:[EMAIL PROTECTED]] Sent: Tuesday, March 05, 2002 7:30 AM To: [EMAIL PROTECTED] Subject: MS IAS Server I am attempting to setup http auth proxy with MS IAS server. Anyone who has some docs or guidance I would greatly appreciate it. Michael Hennigan, CCIE# 7993 Sr. Systems Engineer Infrastructure Specialist Western New York Computing Systems Phone: 716-250-3700 Cell: 716-553-1124 BEGIN:VCARD VERSION:2.1 X-GWTYPE:USER FN:Mike Hennigan EMAIL;WORK;PREF;NGW:[EMAIL PROTECTED] N:Hennigan;Mike X-GWUSERID:Mikeh END:VCARD __ To unsubscribe from the SECURITY list, send a message to [EMAIL PROTECTED] with the body containing: unsubscribe SECURITY Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=37281t=37281 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: catalyst 5000 software/firmware [7:37269]
Curtis, et. al, If my memory serves correctly, you have to have a SmartNet contract on the Switch in question to get the Firmware chips updated (which implies the Yes, you do have to get new chips to update the Firmware. The chips are labeled FW1 and FW2. I don't have the link handy, but the link that Shawn provided probably has a link to the FW upgrade info page... if not, just do a lookup on CCO for Firmware update on the Cat 5K. As a side note, once you educate yourself on the order in which to update the CatOS and the FW on the SUP I board, you'll also be armed with the knowledge to go look on Ebay, as there is a couple of sellers that sell the FW chips at a pretty reasonable price (IIRC - less than 20 bucks). HTHs, Mark -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Kaminski, Shawn G Sent: Tuesday, March 05, 2002 10:14 AM To: [EMAIL PROTECTED] Subject: RE: catalyst 5000 software/firmware [7:37269] According to CCO link (watch for wrap) http://www.cisco.com/univercd/cc/td/doc/product/lan/cat5000/c5krn/sw_rns/78_ 5861.htm , all of the Catalyst 5000 family supervisor engine 4.x software releases require a minimum of 16-MB RAM installed on your supervisor engine. All Catalyst 5000 family supervisor engines with at least 16-MB DRAM fully support software release 4.x. Software release 5.x and above won't support the Cat5000 Supervisor I. Cisco recommends the software version 4.5(13a) for the Cat5000 Supervisor I. As for firmware, still looking. Shawn K. -Original Message- From: Curtis Phillips [mailto:[EMAIL PROTECTED]] Sent: Tuesday, March 05, 2002 9:43 AM To: [EMAIL PROTECTED] Subject: catalyst 5000 software/firmware [7:37269] Does anyone have any clear concise reference links to areas describing firmware upgrade options for the Catalyst 5000? Are chip replacements required to do so? Anyidea what limitations for software and firmware levels are for the Supervisor 1 engine? Thanks, Curtis Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=37295t=37269 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
CCIE Starter [7:37283]
Dear All, I've recently started active study on CCIE and have limited experience but CCNP knowledge on Cisco kit. I'm in the process of buying what I need and I need some advice on where to start and would like to find out how you guys started out. What do I need for my home lab? I've looked at auctions on Ebay, is it alright to buy second-hand? Is there IOS upgrades available free from Cisco? If any of you know a good link to a specific equipment list I need I'd be very grateful, I've had a look on the Cisco Routing and Switching Lab equipment list but they only had the following - no real specifics: 2500 series routers 2600 series routers 3600 series routers 4000 and 4500 series routers 3900 series token ring switches Catalyst 5000 series switches I can only afford up to 3600 series routers, what can I do about the rest? Thank you for your help and I think this is a great group. Kind Regards, Danie Strydom London, UK - Do You Yahoo!? Try FREE Yahoo! Mail - the world's greatest free email! Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=37283t=37283 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Voice over IP [7:37298]
Greetings all, What is the minimum equipment I need to setup/test VoIP? I've a lot 26XX and 36XX routers around here. Any suggestions would be great. ThanksNabil Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=37298t=37298 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
NVRAM Problem [7:37297]
Hello All, Im facing some problems in out Branch office! there is a 3620 router i cannot save the running configuration! i have tried both commands i.e wr copy startup running but they both results in [Failed] message. when i shut down restart the router all my configurations wipes out from router! then i have to copy the configuration again! when i restart router it shows -2k NVRAM instead 128k NVRAM. I need help what should i do now! Any suggestion / comments are highly appreciable NOTE: We have no contracts through any vendors! Thanx in advance Rgds, SAJ __ Do You Yahoo!? Try FREE Yahoo! Mail - the world's greatest free email! http://mail.yahoo.com/ Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=37297t=37297 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Stupid 2500 confreg question [7:37299]
Every so often we'll get in a 2501 router that'll not respond to teraterm, CRT, hyperterm, etc. When we disable RTS/CTS - then we can get into the router. Don't know the reason, my co-worker said he found some link on CCO about it. Sean - Original Message - From: To: ; Cc: ; Sent: Tuesday, March 05, 2002 12:36 PM Subject: RE: Stupid 2500 confreg question Try setting the flow control in Hyperterm to None, that should do the trick. Steve -Original Message- From: MADMAN [mailto:[EMAIL PROTECTED]] Sent: 05 March 2002 16:46 To: Craig Columbus Cc: [EMAIL PROTECTED]; [EMAIL PROTECTED] Subject: Re: Stupid 2500 confreg question Yes, a few times. Way back I hd that problem with hypeterm, switched to terterm and things worked better. I know have a couple of 2500's in the lab that I cannot talk to via the console but that otherwise work fine, I think they're just old and tired and I don't feeled inclined to spend much time trying to figure out why though you may want to stick a breakout box on the console and check the output. Dave Craig Columbus wrote: Has anyone run into an issue where a 2500 series router won't respond to console input? Here's the deal: The PC is running 9600-8-N-1 and is connected to the 2500 console port. The router has had nvram erased and is being booted for the first time. Upon boot, the normal boot process is seen on the monitor screen. When prompted to enter configuration dialogue, it's not possible to input anything on the router. Typing does nothing and there is no response from the router. If Ctrl-F6-Break is pressed during boot, the router goes to the prompt, but after that, the router still won't accept any input from the console port. Has anyone experienced this issue? Is this a config register problem? If so, is there a fix other than experimenting with different settings on the PC side? If not, does anyone have an answer? Could it be bad boot ROM? Thanks, Craig _ Commercial lab list: http://www.groupstudy.com/list/commercial.html Please discuss commercial lab solutions on this list. -- David Madland Sr. Network Engineer CCIE# 2016 Qwest Communications Int. Inc. [EMAIL PROTECTED] 612-664-3367 Emotion should reflect reason not guide it _ Commercial lab list: http://www.groupstudy.com/list/commercial.html Please discuss commercial lab solutions on this list. _ Commercial lab list: http://www.groupstudy.com/list/commercial.html Please discuss commercial lab solutions on this list. Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=37299t=37299 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Not the whole domain - Re: Delete VLAN [7:37254]
What that blurb is saying is that if you remove a VLAN on a switch running transparent mode the VLAN will only be deleted on that switch. This is correct, transparent mode is basically turning VTP off. If you clear the VLAN from a server in the VTP domain then you will clear the VLAN on all switches within said domain. In Client mode you you can't do VLAN manipulation, the Server/s is/are King. Dave mlh wrote: Hi,Dave, First, thank you for your answer. But I really got confused. Pls read the following excerpt about Deleting VLAN from the book of Cisco LAN Switching written by Clark Hamilton : You can remove VLANs from the management domain using the clear vlan vlan_number command. For example, if you want to remove VLAN 5 from your VTP management domain, you can type the command clear vlan 5 on a Catalyst configured as a VTP server. You cannot delete VLANs from a VTP client Catalyst. If the Catalyst is configured in transparent mode, you can delete the VLAN. However, the VLAN is removed only from the one Catalyst and is not deleted throughout the management domain. All VLAN creations and deletions are only locally significant on a transparent Catalyst. So, according the above words, it just remove the portion of vlan 5 on that Catalyst which clear command was executed. Is it right? From Woody's answer to my last question : Vlan 5 will also be cleared on all switches that are configured as clients as well. Also, any port that is configured on those switches will also lose their vlan assignment to vlan 5. I raised another question: if Woody is right, the portion of vlan 5 on the Catalysts configured as clients will also be removed, then my question is: Will all clients or just clients configured from that server-Catalyst which clear command is executed be removed? Sorry for taking you long time to read my questions. Any suggestion would be welcome. mlh - Original Message - From: MADMAN To: Sent: Tuesday, March 05, 2002 10:14 AM Subject: Re: Delete VLAN [7:37254] the whole domain. Dave mlh wrote: In a VTP domain environment, when you use the command clear vlan 5 on a Catalyst configured as a VTP server, do you actually remove vlan 5 only from that Catalyst or from all Catalysts in that VTP domain? Thank you. -- David Madland Sr. Network Engineer CCIE# 2016 Qwest Communications Int. Inc. [EMAIL PROTECTED] 612-664-3367 Emotion should reflect reason not guide it -- David Madland Sr. Network Engineer CCIE# 2016 Qwest Communications Int. Inc. [EMAIL PROTECTED] 612-664-3367 Emotion should reflect reason not guide it Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=37300t=37254 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Cisco 1750 VIC-2 E/M Voice card problem [7:37236]
Ranma- Providing you have at least enough RAM (implying that you could set the router up to do a TFTP load of its IOS image for operation, as I'm doing temporarily), you could use the following image without any problem. 12.2(2T) (works like a charm with my FXS cards) Caveat: I don't have an EM card to verify against, but I bet it'll still work. the RAM/FLASH req's are: 40/16, which means the 1750 will need to have its memory maxed, as well as its flash. I suspect that since you have a 4V model, that shouldn't be a problem. Most 4Vs come with 32/16, and you can get the RAM upgraded to 48 by purchasing a 32MB chip from Crucial.com ... and the cool thing about Crucial is that FedEx 2Day is Free! Note: I have no affiliations to Crucial, I'm just really happy with their price/service. Good luck. Mark -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Ranma Sent: Tuesday, March 05, 2002 12:46 AM To: [EMAIL PROTECTED] Subject: Cisco 1750 VIC-2 E/M Voice card problem [7:37236] Hi, anyone has the following problem ? I have an Cisco 1750 - 4V chassis and 2 voice EM Card Now after follow Cisco Recomendation and using IOS 12.1(5)T the machine cannot recognize the Voice EM Daughter cards. And use show run , no voice-port appear. After claiming RMA with Cisco, the same problem appear in the new Router. Anyone have the solution to this problem? Kenny Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=37301t=37236 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Voice over IP [7:37298]
2600 is enough actualy Cisco's vg200 is a modified 2600... (that is what is used as the voip gateway) That gateway can also function as the call manager but you lose a lot fo functionallity (it is normaly used as a back up call manager) Say your call mnager is across a wan link and the wan link goes down...the 2600/vg200 will act as a temp call manager until the wan link comes back up, allowing all local calls. And if you bring a separate T into the 2600/vg200 then it can also route outbound calls if the wan link is down. If you plan on using a full featured call manager server, then you will need to contact cisco for a demo. -Patrick [EMAIL PROTECTED] 03/05/02 01:07PM Greetings all, What is the minimum equipment I need to setup/test VoIP? I've a lot 26XX and 36XX routers around here. Any suggestions would be great. ThanksNabil Confidentiality Disclaimer This email and any files transmitted with it may contain confidential and /or proprietary information in the possession of WellStar Health System, Inc. (WellStar) and is intended only for the individual or entity to whom addressed. This email may contain information that is held to be privileged, confidential and exempt from disclosure under applicable law. If the reader of this message is not the intended recipient, you are hereby notified that any unauthorized access, dissemination, distribution or copying of any information from this email is strictly prohibited, and may subject you to criminal and/or civil liability. If you have received this email in error, please notify the sender by reply email and then delete this email and its attachments from your computer. Thank you. Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=37303t=37298 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Cisco 1750 VIC-2 E/M Voice card problem [7:37236]
Ranma- Oh, I almost forgot to mention. When you issue a Show Diag at the enable prompt, you should see something to the affect of : Packet Voice DSP Module Slot 0: Number of DSPs: 2 -- indicates a 4V 1750 HW configuration; 1= 2V HW configuration. This might help in identifying if you do in fact have the Hardware requirments to support the Voice Cards. Mark -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Ranma Sent: Tuesday, March 05, 2002 12:46 AM To: [EMAIL PROTECTED] Subject: Cisco 1750 VIC-2 E/M Voice card problem [7:37236] Hi, anyone has the following problem ? I have an Cisco 1750 - 4V chassis and 2 voice EM Card Now after follow Cisco Recomendation and using IOS 12.1(5)T the machine cannot recognize the Voice EM Daughter cards. And use show run , no voice-port appear. After claiming RMA with Cisco, the same problem appear in the new Router. Anyone have the solution to this problem? Kenny Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=37304t=37236 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Not the whole domain - Re: Delete VLAN [7:37254]
I belive that the part about a VTP client not saving VLAN information is not correct. Yes, a client gets updates from the VTP server and Yes changes (add,delete,mods) can only be initaited on a server. But, I belive that the client does save the most current revision of the VTP domain config in memory. Also, If a VTP server reloads and some how loses (or has cleared) its VLAN info but retains the VTP domain configuration and its revision number somehow is lower than a clients revision, the server will accept config the VLAN conifguration from the client. Atleast that is what I think/remember. Oleg Oz... Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=37305t=37254 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Stupid 2500 confreg question [7:37287]
If you suspect the Boot ROMS, you could always order a couple more for the unit to prove ye/ne. The boot roms for the 2500 are free, minus S/H. ... of course, you may have already known that tidbit. :) Mark -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Craig Columbus Sent: Tuesday, March 05, 2002 11:52 AM To: [EMAIL PROTECTED] Subject: Re: Stupid 2500 confreg question [7:37287] Yeah, it looks like I'll end up going in that direction. After exhausting Cisco and google, I was hoping that someone on the list could give me a quick answer. I'm still not sure that it's not a bad boot ROM. The boot ROM was recently upgraded, and although I'm told that it worked fine after the upgrade, I'm beginning to have my doubts. Thanks! Craig At 12:40 PM 3/5/2002 -0500, you wrote: like Dave suggested before, put a break out on it and go from thereyou may find that the serial port is expecting cts/rts and one of the pins are severed. I'm not sure what cisco requires to be 'live' on their 2500'san extremely half-assed search on google didn't yield anythign too interestingbut I'm sure you can find it out there... :) -Patrick Craig Columbus 03/05/02 12:17PM The cable is good and scroll lock isn't on. Same PC setup and cable work fine on other 2500 series. I haven't run into this particular issue before. Craig At 11:50 AM 3/5/2002 -0500, you wrote: Have you tried a different cable? - Original Message - From: Craig Columbus To: Cc: Sent: Tuesday, March 05, 2002 11:18 AM Subject: Stupid 2500 confreg question Has anyone run into an issue where a 2500 series router won't respond to console input? Here's the deal: The PC is running 9600-8-N-1 and is connected to the 2500 console port. The router has had nvram erased and is being booted for the first time. Upon boot, the normal boot process is seen on the monitor screen. When prompted to enter configuration dialogue, it's not possible to input anything on the router. Typing does nothing and there is no response from the router. If Ctrl-F6-Break is pressed during boot, the router goes to the prompt, but after that, the router still won't accept any input from the console port. Has anyone experienced this issue? Is this a config register problem? If so, is there a fix other than experimenting with different settings on the PC side? If not, does anyone have an answer? Could it be bad boot ROM? Thanks, Craig _ Commercial lab list: http://www.groupstudy.com/list/commercial.html Please discuss commercial lab solutions on this list. _ Commercial lab list: http://www.groupstudy.com/list/commercial.html Please discuss commercial lab solutions on this list. Confidentiality Disclaimer This email and any files transmitted with it may contain confidential and /or proprietary information in the possession of WellStar Health System, Inc. (WellStar) and is intended only for the individual or entity to whom addressed. This email may contain information that is held to be privileged, confidential and exempt from disclosure under applicable law. If the reader of this message is not the intended recipient, you are hereby notified that any unauthorized access, dissemination, distribution or copying of any information from this email is strictly prohibited, and may subject you to criminal and/or civil liability. If you have received this email in error, please notify the sender by reply email and then delete this email and its attachments from your computer. Thank you. Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=37308t=37287 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Not the whole domain - Re: Delete VLAN [7:37254]
When I say changes, I mean changes with regard to a VTP domain. Oleg Oz... Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=37307t=37254 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Not the whole domain - Re: Delete VLAN [7:37254]
One more thing I forgot to mention. If a Client is powered off and disconnected (physicaly) from the network and then powered on. The client will retain the last known VTP domain/VLAN configuration. Oleg oz Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=37309t=37254 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: NVRAM Problem [7:37297]
SA J- Sounds like you need to invest in a SmartNet contract on that bad boy and get the System Board RMA'd. :( Mark -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of SA J Sent: Tuesday, March 05, 2002 12:07 PM To: [EMAIL PROTECTED] Subject: NVRAM Problem [7:37297] Hello All, Im facing some problems in out Branch office! there is a 3620 router i cannot save the running configuration! i have tried both commands i.e wr copy startup running but they both results in [Failed] message. when i shut down restart the router all my configurations wipes out from router! then i have to copy the configuration again! when i restart router it shows -2k NVRAM instead 128k NVRAM. I need help what should i do now! Any suggestion / comments are highly appreciable NOTE: We have no contracts through any vendors! Thanx in advance Rgds, SAJ __ Do You Yahoo!? Try FREE Yahoo! Mail - the world's greatest free email! http://mail.yahoo.com/ Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=37310t=37297 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Voice over IP [7:37298]
Fares- NM-1V with your choice of FXS, FXO, or EM VICs. IOS Plus (12.x(xT) feature set. 32MB RAM/8MB Flash These are the absolute SW/HW minimums. Oh yeah, and a little reading time on CCO about configuring VoX. :) Have fun. Mark -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of [EMAIL PROTECTED] Sent: Tuesday, March 05, 2002 12:07 PM To: [EMAIL PROTECTED] Subject: Voice over IP [7:37298] Greetings all, What is the minimum equipment I need to setup/test VoIP? I've a lot 26XX and 36XX routers around here. Any suggestions would be great. ThanksNabil Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=37311t=37298 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Stupid 2500 confreg question [7:37313]
Thanks for the top Sean. I found the article and it's the best lead so far. I'll test this afternoon. Thanks! Craig At 01:22 PM 3/5/2002 -0500, you wrote: Every so often we'll get in a 2501 router that'll not respond to teraterm, CRT, hyperterm, etc. When we disable RTS/CTS - then we can get into the router. Don't know the reason, my co-worker said he found some link on CCO about it. Sean - Original Message - From: To: ; Cc: ; Sent: Tuesday, March 05, 2002 12:36 PM Subject: RE: Stupid 2500 confreg question Try setting the flow control in Hyperterm to None, that should do the trick. Steve -Original Message- From: MADMAN [mailto:[EMAIL PROTECTED]] Sent: 05 March 2002 16:46 To: Craig Columbus Cc: [EMAIL PROTECTED]; [EMAIL PROTECTED] Subject: Re: Stupid 2500 confreg question Yes, a few times. Way back I hd that problem with hypeterm, switched to terterm and things worked better. I know have a couple of 2500's in the lab that I cannot talk to via the console but that otherwise work fine, I think they're just old and tired and I don't feeled inclined to spend much time trying to figure out why though you may want to stick a breakout box on the console and check the output. Dave Craig Columbus wrote: Has anyone run into an issue where a 2500 series router won't respond to console input? Here's the deal: The PC is running 9600-8-N-1 and is connected to the 2500 console port. The router has had nvram erased and is being booted for the first time. Upon boot, the normal boot process is seen on the monitor screen. When prompted to enter configuration dialogue, it's not possible to input anything on the router. Typing does nothing and there is no response from the router. If Ctrl-F6-Break is pressed during boot, the router goes to the prompt, but after that, the router still won't accept any input from the console port. Has anyone experienced this issue? Is this a config register problem? If so, is there a fix other than experimenting with different settings on the PC side? If not, does anyone have an answer? Could it be bad boot ROM? Thanks, Craig _ Commercial lab list: http://www.groupstudy.com/list/commercial.html Please discuss commercial lab solutions on this list. -- David Madland Sr. Network Engineer CCIE# 2016 Qwest Communications Int. Inc. [EMAIL PROTECTED] 612-664-3367 Emotion should reflect reason not guide it _ Commercial lab list: http://www.groupstudy.com/list/commercial.html Please discuss commercial lab solutions on this list. _ Commercial lab list: http://www.groupstudy.com/list/commercial.html Please discuss commercial lab solutions on this list. Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=37313t=37313 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: CCIE Starter [7:37283]
Ebay is a good place to shop. Also, if you get the unusual conigurations of things, you can usually save some $. I.e. If you want to work with Isdn, look at a 2516. It's a 2503 with a built in hub. Because it's not so easily recognized, you can get it cheaper. Also, take a look at the MC3810 's. Tjhey are a great (cheap!) way to work with voice because most people don't think about them. For switching, look at the 12xx switches. They are set based like the 5k, and you can trunk them to a 4x00 if you use the fddi port. Anyway, good luck. -Ejay -Original Message- From: Danie Strydom [mailto:[EMAIL PROTECTED]] Sent: Tuesday, March 05, 2002 1:04 PM To: [EMAIL PROTECTED] Subject: CCIE Starter [7:37283] Dear All, I've recently started active study on CCIE and have limited experience but CCNP knowledge on Cisco kit. I'm in the process of buying what I need and I need some advice on where to start and would like to find out how you guys started out. What do I need for my home lab? I've looked at auctions on Ebay, is it alright to buy second-hand? Is there IOS upgrades available free from Cisco? If any of you know a good link to a specific equipment list I need I'd be very grateful, I've had a look on the Cisco Routing and Switching Lab equipment list but they only had the following - no real specifics: 2500 series routers 2600 series routers 3600 series routers 4000 and 4500 series routers 3900 series token ring switches Catalyst 5000 series switches I can only afford up to 3600 series routers, what can I do about the rest? Thank you for your help and I think this is a great group. Kind Regards, Danie Strydom London, UK - Do You Yahoo!? Try FREE Yahoo! Mail - the world's greatest free email! Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=37306t=37283 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: CCIE Starter amp; Lab Equipment [7:37312]
Danie, I built my home lab entirely from Ebay. There are some good vendors on there, but the phrase buyer beware always comes to mind. I always look at the sellers feedback, not just for positive ratings but to see if they have sold equipment in the dollar value I am purchasing. Look to see if the seller has positive feedback on equipment in that price range. The sellers I can recommend (based on my own purchases and those of people I personally know) are: networkhardwareresale - great packaging, good prices, quick shipment; bluedesperateboy - good packaging, fair prices (little high, but top notch equipment); ciscoware; www.whirled-routes.com; magi-tech; snootfull; lskok If you look up their feedbacks, you will see the amount of business they do. If you are after good deals, be patient about purchasing and watch for good products at good-to-fair prices. It took me two months to build my home lab (Catalyst 5000 w/ Sup 2, 2-2501, 2-2503, 1-2502, 1-2513, 1-4000M, 1-2620, 1-2522, 1-2511RJ, 2-2900 Cat switches, plus all serial/ethernet cables) for around $9500. All of it from Ebay, and all of it worked when I received it. Costly yes, but nothing beats continuous hands on experience with the equipment for months (six so far) on end. Plus, I can configure almost anything I find in the CCNP and CCIE books I have (save some Token Ring and ATM of course), which is nice when you have questions about technologies and want to experiment to learn more about them. Personally, I will rent rack time to get at the 3900/3920 switches and ATM configurations. Also, I have not purchased from them, but Optsys.net has some pretty good deals on 2501 and 2503 router packages. I will be purchasing an ISDN simulator from them later this month. As for the Catalyst 5000 switch, you can substitute a Catalyst 2901 or a Catalyst 2926T (the T means 10/100T connections on the supervisor module versus the 10/100 Fiber connections on the 2926F). Search the archives for additional information on rack recommendations AND Ebay sellers to steer clear of as the topic gets brought up at least once a month. Best of luck to you in your studies. My apologies to the group for any perceived waste of bandwidth on this often discussed topic. After reading about it for the past seven months, I just wanted to drop my $.05 on the table. Regards, Justin Cluer From: Danie Strydom Reply-To: Danie Strydom To: [EMAIL PROTECTED] Subject: CCIE Starter [7:37283] Date: Tue, 5 Mar 2002 13:04:08 -0500 Dear All, I've recently started active study on CCIE and have limited experience but CCNP knowledge on Cisco kit. I'm in the process of buying what I need and I need some advice on where to start and would like to find out how you guys started out. What do I need for my home lab? I've looked at auctions on Ebay, is it alright to buy second-hand? Is there IOS upgrades available free from Cisco? If any of you know a good link to a specific equipment list I need I'd be very grateful, I've had a look on the Cisco Routing and Switching Lab equipment list but they only had the following - no real specifics: 2500 series routers 2600 series routers 3600 series routers 4000 and 4500 series routers 3900 series token ring switches Catalyst 5000 series switches I can only afford up to 3600 series routers, what can I do about the rest? Thank you for your help and I think this is a great group. Kind Regards, Danie Strydom London, UK _ Send and receive Hotmail on your mobile device: http://mobile.msn.com Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=37312t=37312 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Not the whole domain - Re: Delete VLAN [7:37254]
Hi, Patrick, Daniel, Persio, Woods, Dave, Oleg, Thank you all for your detailed explain. Finally, I got it. Please forgive me for my stupid questions. mlh Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=37316t=37254 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Slight point [7:37298]
VoIP does not require a Call Manager. VoIP is just that, Voice over IP. It does not specify any call features and only extremely limited call handling. Use of a Call Manager implies IP Telephony, which is an alternative to PBX switches. IP Telephony includes complex call handling, call routing, and features like forwarding, transfering, on-hold, conferencing, etc. VoIP (and any VoX) can be used as a point-to-point toll bypass solution, using traditional PBX switches to provide the call routing and other features. However, for any kind of certification, all you typically need to do is make a phone ring, which can be done without IP Telephony. Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=37315t=37298 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Slight point [7:37298]
heh..well yeah...how many of us have ip sioftware phones on our machines... but how fun is that to play with There's not a whole lot of experience gained either just setting up a couple'a ip phones...I think the amazement would wear off in about 5 minutes... :) Hey Bob! Yeah! Can ya hear me? Yeah! Cool! now what? uhhh...tear it down and use wireless nics on our handhelds repeat process.. Hey Bob! Yeah! Can ya hear me? Yeah! Cool! now what? :) I'm just in one of those crazy moods today Chris Charlebois 03/05/02 02:49PM VoIP does not require a Call Manager. VoIP is just that, Voice over IP. It does not specify any call features and only extremely limited call handling. Use of a Call Manager implies IP Telephony, which is an alternative to PBX switches. IP Telephony includes complex call handling, call routing, and features like forwarding, transfering, on-hold, conferencing, etc. VoIP (and any VoX) can be used as a point-to-point toll bypass solution, using traditional PBX switches to provide the call routing and other features. However, for any kind of certification, all you typically need to do is make a phone ring, which can be done without IP Telephony. Confidentiality Disclaimer This email and any files transmitted with it may contain confidential and /or proprietary information in the possession of WellStar Health System, Inc. (WellStar) and is intended only for the individual or entity to whom addressed. This email may contain information that is held to be privileged, confidential and exempt from disclosure under applicable law. If the reader of this message is not the intended recipient, you are hereby notified that any unauthorized access, dissemination, distribution or copying of any information from this email is strictly prohibited, and may subject you to criminal and/or civil liability. If you have received this email in error, please notify the sender by reply email and then delete this email and its attachments from your computer. Thank you. Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=37317t=37298 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: catalyst 5000 software/firmware [7:37269]
Let's start with a little padding so the URL does survive. A good place to start would be the following: (watch the wrap) http://www.cisco.com/univercd/cc/td/doc/product/lan/cat5000/c5krn/sw_rns/78_ 6583.htm -Original Message- From: Mark Odette II [mailto:[EMAIL PROTECTED]] Sent: Tuesday, March 05, 2002 12:04 PM To: [EMAIL PROTECTED] Subject: RE: catalyst 5000 software/firmware [7:37269] Curtis, et. al, If my memory serves correctly, you have to have a SmartNet contract on the Switch in question to get the Firmware chips updated (which implies the Yes, you do have to get new chips to update the Firmware. The chips are labeled FW1 and FW2. I don't have the link handy, but the link that Shawn provided probably has a link to the FW upgrade info page... if not, just do a lookup on CCO for Firmware update on the Cat 5K. As a side note, once you educate yourself on the order in which to update the CatOS and the FW on the SUP I board, you'll also be armed with the knowledge to go look on Ebay, as there is a couple of sellers that sell the FW chips at a pretty reasonable price (IIRC - less than 20 bucks). HTHs, Mark -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Kaminski, Shawn G Sent: Tuesday, March 05, 2002 10:14 AM To: [EMAIL PROTECTED] Subject: RE: catalyst 5000 software/firmware [7:37269] According to CCO link (watch for wrap) http://www.cisco.com/univercd/cc/td/doc/product/lan/cat5000/c5 krn/sw_rns/78_ 5861.htm , all of the Catalyst 5000 family supervisor engine 4.x software releases require a minimum of 16-MB RAM installed on your supervisor engine. All Catalyst 5000 family supervisor engines with at least 16-MB DRAM fully support software release 4.x. Software release 5.x and above won't support the Cat5000 Supervisor I. Cisco recommends the software version 4.5(13a) for the Cat5000 Supervisor I. As for firmware, still looking. Shawn K. -Original Message- From: Curtis Phillips [mailto:[EMAIL PROTECTED]] Sent: Tuesday, March 05, 2002 9:43 AM To: [EMAIL PROTECTED] Subject: catalyst 5000 software/firmware [7:37269] Does anyone have any clear concise reference links to areas describing firmware upgrade options for the Catalyst 5000? Are chip replacements required to do so? Anyidea what limitations for software and firmware levels are for the Supervisor 1 engine? Thanks, Curtis Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=37314t=37269 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
confreg 0x2922 ??? [7:37318]
I have found a reason for the second '2' in this, but anyone know what the 9 is??? cisco.com says it is undefined. We are getting this on one of the 3640's running 12.2.6c nobody remembers setting anything differently?? aha, bk Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=37318t=37318 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Actually, you'd be suprised.. [7:37298]
Actually, you'd be suprised how big a selling point it is to have a phone running on a iPaq at a tradeshow. Sure, it's a gimick, but it flashy and get the attention of the guys holding the puse strings. Oh, sure, you can talk for hours about reduced facility costs by using one network, or reduced administartion costs due to mobility and ease of configuration; You'll get blank stares. You can explain how IP telephony can combine half a dozen call centers spread over half the globe into one logical unit and you'll get a couple yawns. But whip out your iPaq and send and receive PSTN calls and they eat it up. Bright and shiny. Yeah, that's usually all you need :) Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=37320t=37298 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Voice over IP [7:37298]
It depends on what you are trying to accomplish. 2600's and 3600's are great for VoIP. You need an IP Plus feature set and then appropriate voice modules based on your needs. An NM-1v or NM-2v and some VIC's would get you started. If you tell us what exactly you are trying to do with VoIP we can recommend a more specific hardware choice. tm Tim Medley - CCNP+Voice, CCDP Sr. Network Architect VoIP Group iReadyWorld -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] On Behalf Of [EMAIL PROTECTED] Sent: Tuesday, March 05, 2002 1:07 PM To: [EMAIL PROTECTED] Subject: Voice over IP [7:37298] Greetings all, What is the minimum equipment I need to setup/test VoIP? I've a lot 26XX and 36XX routers around here. Any suggestions would be great. ThanksNabil Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=37322t=37298 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: confreg 0x2922 ??? [7:37318]
According to my config register calculator, the 9 means 9600 baud rate and break is disabled. -Original Message- From: brian kastor [mailto:[EMAIL PROTECTED]] Sent: Tuesday, March 05, 2002 4:26 PM To: [EMAIL PROTECTED] Subject: confreg 0x2922 ??? [7:37318] I have found a reason for the second '2' in this, but anyone know what the 9 is??? cisco.com says it is undefined. We are getting this on one of the 3640's running 12.2.6c nobody remembers setting anything differently?? aha, bk Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=37321t=37318 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
FW: confreg 0x2922 ??? [7:37318]
Sorry about that, the 9 indicates break disabled, the console baud rate with this register setting is 38400. (according to the calculator) -Original Message- From: Lupi, Guy Sent: Tuesday, March 05, 2002 4:57 PM To: 'brian kastor'; [EMAIL PROTECTED] Subject: RE: confreg 0x2922 ??? [7:37318] According to my config register calculator, the 9 means 9600 baud rate and break is disabled. -Original Message- From: brian kastor [mailto:[EMAIL PROTECTED]] Sent: Tuesday, March 05, 2002 4:26 PM To: [EMAIL PROTECTED] Subject: confreg 0x2922 ??? [7:37318] I have found a reason for the second '2' in this, but anyone know what the 9 is??? cisco.com says it is undefined. We are getting this on one of the 3640's running 12.2.6c nobody remembers setting anything differently?? aha, bk Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=37323t=37318 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Voice over IP [7:37298]
You can go cheap and get a 1751. Takes the same card and can allow up to 4 voice calls at once. -- RFC 1149 Compliant. Tim Medley wrote in message news:[EMAIL PROTECTED]; It depends on what you are trying to accomplish. 2600's and 3600's are great for VoIP. You need an IP Plus feature set and then appropriate voice modules based on your needs. An NM-1v or NM-2v and some VIC's would get you started. If you tell us what exactly you are trying to do with VoIP we can recommend a more specific hardware choice. tm Tim Medley - CCNP+Voice, CCDP Sr. Network Architect VoIP Group iReadyWorld -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] On Behalf Of [EMAIL PROTECTED] Sent: Tuesday, March 05, 2002 1:07 PM To: [EMAIL PROTECTED] Subject: Voice over IP [7:37298] Greetings all, What is the minimum equipment I need to setup/test VoIP? I've a lot 26XX and 36XX routers around here. Any suggestions would be great. ThanksNabil Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=37324t=37298 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
SE WI Users Group Meeting [7:37325]
The April Cisco Users group meeting for SE Wisconsin has been scheduled. See below for more information. All users, regardless of experience, are encouraged to attend. Wednesday, April 10th, 5pm - 7pm Location: Strong Financial Corporation 100 Heritage Reserve, Menomonee Falls 5:00 pm Strong's Network: Challenges and Opportunities 6:00 pm Open Forum To register: mailto:[EMAIL PROTECTED] Cisco User Group Planning Committee Gary Branger Harley-Davidson Ron Strand GE Medical Ken French WEPCO Cory Stull CCU Terry Lacher Fiserv Steve Sweeney Harley-Davidson Tisa Overman MasterLink Scott VanderHayden Strong Funds Dan Reddy Strong Funds Chris Zurowick GE Medical Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=37325t=37325 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Actually, you'd be suprised.. [7:37298]
That's funny, reminds me of the tours that we used to do in our data center. Hundreds of thousands of dollars of high technology and the predictable attention getter was a patch panel that had 3 red lights for each port, CD-RD- TD. It's amazing what pretty lights do to people Larry Puckette Network Analyst CCNA,MCP,LANCP Temple Inland [EMAIL PROTECTED] 512/434-1838 -Original Message- From: Chris Charlebois [mailto:[EMAIL PROTECTED]] Sent: Tuesday, March 05, 2002 3:44 PM To: [EMAIL PROTECTED] Subject:Actually, you'd be suprised.. [7:37298] Actually, you'd be suprised how big a selling point it is to have a phone running on a iPaq at a tradeshow. Sure, it's a gimick, but it flashy and get the attention of the guys holding the puse strings. Oh, sure, you can talk for hours about reduced facility costs by using one network, or reduced administartion costs due to mobility and ease of configuration; You'll get blank stares. You can explain how IP telephony can combine half a dozen call centers spread over half the globe into one logical unit and you'll get a couple yawns. But whip out your iPaq and send and receive PSTN calls and they eat it up. Bright and shiny. Yeah, that's usually all you need :) Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=37326t=37298 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: DHCP across PIX [7:37286]
Im not sure about the new 6.0 code but 5.0 code and below will not allow the PIX to pass broadcasts. kenairs wrote in message news:[EMAIL PROTECTED]; Hi, My pc are located in one of the PIX interface. There is an DHCP server in the other interface. How to let the DHCP packet go through ? Broadcast ? Tks Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=37327t=37286 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: confreg 0x2922 ??? [7:37318]
I do not agree with you. The 2922 means that the following bits are set : 1, 5, 8, 11 and 13. If bit 8 is set, break will be enabled. If bit 11 is set but not 12, baud rate will be 4800. I have this from (watch the word wrap): http://www.cisco.com/univercd/cc/td/doc/product/software/ios120/12cgcr/fun_r /frprt2/frreboot.htm#xtocid135347 Hth, Ole ~~~ Ole Drews Jensen Systems Network Manager CCNP, MCSE, MCP+I RWR Enterprises, Inc. [EMAIL PROTECTED] ~~~ http://www.RouterChief.com ~~~ NEED A JOB ??? http://www.oledrews.com/job ~~~ -Original Message- From: Lupi, Guy [mailto:[EMAIL PROTECTED]] Sent: Tuesday, March 05, 2002 4:02 PM To: [EMAIL PROTECTED] Subject: RE: confreg 0x2922 ??? [7:37318] According to my config register calculator, the 9 means 9600 baud rate and break is disabled. -Original Message- From: brian kastor [mailto:[EMAIL PROTECTED]] Sent: Tuesday, March 05, 2002 4:26 PM To: [EMAIL PROTECTED] Subject: confreg 0x2922 ??? [7:37318] I have found a reason for the second '2' in this, but anyone know what the 9 is??? cisco.com says it is undefined. We are getting this on one of the 3640's running 12.2.6c nobody remembers setting anything differently?? aha, bk Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=37328t=37318 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: DHCP across PIX [7:37286]
You cannot. The PIX does not support forwarding of DHCP requests (or any broadcast for that matter). Your only options are to hard-code your IP address or use the DHCP server built into the PIX. HTH, Kent -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of kenairs Sent: Tuesday, March 05, 2002 9:08 AM To: [EMAIL PROTECTED] Subject: DHCP across PIX [7:37286] Hi, My pc are located in one of the PIX interface. There is an DHCP server in the other interface. How to let the DHCP packet go through ? Broadcast ? Tks Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=37329t=37286 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
slip errors [7:37330]
Does anyone know any tuning strategies for clocking on a T1/fractional controller(service module)on a Cisco 2620 router. I am getting CRC errors, frame errors, output queue drops etc on my serial interface Fr Loss Secs,Line Err Secs,Degraded Mins,Errored Secs,Bursty Err Secs,Severely Err Secs,Unavail Secs etc on service module as per my Telco they say they are getting slip errors from my equipment they say its a clocking problem on my equipment. My clock is already set to Line as my Telco is providing the clock. I do not know what else I could change for clocking. Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=37330t=37330 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: CCIE Starter [7:37319]
I'm in the process of building my home lab for my CCNP and have used Ebay and NetworkHardwareResale.com. You can find good deals on Ebay but you have to be patient. When buying from Ebay, do your homework and know exactly what you need i.e.: model numbers, components, etc. and make sure the seller has a good history. Give the seller a call and make sure you are both on the same page. As for NetworkHardwareResale.com, their prices can be a bit on the high side (I got a 2509-RJ for $700 and 2926T for $900 - great deal! When it arrived, it work great but then one 10/100 port went out. Called back and because they did not have any more 2926T, they ware hard to find, so they took of $200. So the switch ended up costing me $600.) but their staff is REALLY REALLY helpful. I informed them that I was building a lab for my CCNP and that I was on a budget. They helped my find the equipment that best fit my budget and lab requirements. Most used Cisco resellers don't have a clue about what they are selling and have little knowledge to offer what it comes to putting a lab together. The bottom line: Do a lot of research and know exactly what you need. Compare process from Ebay and used Cisco dealers. You would be surprised the deals you will find. Call as many used Cisco dealer and Ebay sellers as you can and get info. Colin Justin C wrote: Danie, I built my home lab entirely from Ebay. There are some good vendors on there, but the phrase buyer beware always comes to mind. I always look at the sellers feedback, not just for positive ratings but to see if they have sold equipment in the dollar value I am purchasing. Look to see if the seller has positive feedback on equipment in that price range. The sellers I can recommend (based on my own purchases and those of people I personally know) are: networkhardwareresale - great packaging, good prices, quick shipment; bluedesperateboy - good packaging, fair prices (little high, but top notch equipment); ciscoware; www.whirled-routes.com; magi-tech; snootfull; lskok If you look up their feedbacks, you will see the amount of business they do. If you are after good deals, be patient about purchasing and watch for good products at good-to-fair prices. It took me two months to build my home lab (Catalyst 5000 w/ Sup 2, 2-2501, 2-2503, 1-2502, 1-2513, 1-4000M, 1-2620, 1-2522, 1-2511RJ, 2-2900 Cat switches, plus all serial/ethernet cables) for around $9500. All of it from Ebay, and all of it worked when I received it. Costly yes, but nothing beats continuous hands on experience with the equipment for months (six so far) on end. Plus, I can configure almost anything I find in the CCNP and CCIE books I have (save some Token Ring and ATM of course), which is nice when you have questions about technologies and want to experiment to learn more about them. Personally, I will rent rack time to get at the 3900/3920 switches and ATM configurations. Also, I have not purchased from them, but Optsys.net has some pretty good deals on 2501 and 2503 router packages. I will be purchasing an ISDN simulator from them later this month. As for the Catalyst 5000 switch, you can substitute a Catalyst 2901 or a Catalyst 2926T (the T means 10/100T connections on the supervisor module versus the 10/100 Fiber connections on the 2926F). Search the archives for additional information on rack recommendations AND Ebay sellers to steer clear of as the topic gets brought up at least once a month. Best of luck to you in your studies. My apologies to the group for any perceived waste of bandwidth on this often discussed topic. After reading about it for the past seven months, I just wanted to drop my $.05 on the table. Regards, Justin Cluer From: Danie Strydom Reply-To: Danie Strydom To: [EMAIL PROTECTED] Subject: CCIE Starter [7:37283] Date: Tue, 5 Mar 2002 13:04:08 -0500 Dear All, I've recently started active study on CCIE and have limited experience but CCNP knowledge on Cisco kit. I'm in the process of buying what I need and I need some advice on where to start and would like to find out how you guys started out. What do I need for my home lab? I've looked at auctions on Ebay, is it alright to buy second-hand? Is there IOS upgrades available free from Cisco? If any of you know a good link to a specific equipment list I need I'd be very grateful, I've had a look on the Cisco Routing and Switching Lab equipment list but they only had the following - no real specifics: 2500 series routers 2600 series routers 3600 series routers 4000 and 4500 series routers 3900 series token ring switches Catalyst 5000 series switches I can only afford up to 3600 series routers, what can I do about the rest? Thank you for your help and I think this is a great group. Kind Regards, Danie Strydom London, UK
Re: DHCP across PIX [7:37286]
my curiousity has been piqued by this conversation. why would you want to do DHCP across a firewall? wouldn't such a thing permit security breaches? Am I correct that this would become a concern in a network where you have a number of internal security zones ( research, sales, accounting departments all within the same company ) and the members of those departments, although firewalled from eachother, would still require DHCP for their addressing? Was this the idea / design of the guy who asked the original question? Chuck Kent Hundley wrote in message news:[EMAIL PROTECTED]; You cannot. The PIX does not support forwarding of DHCP requests (or any broadcast for that matter). Your only options are to hard-code your IP address or use the DHCP server built into the PIX. HTH, Kent -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of kenairs Sent: Tuesday, March 05, 2002 9:08 AM To: [EMAIL PROTECTED] Subject: DHCP across PIX [7:37286] Hi, My pc are located in one of the PIX interface. There is an DHCP server in the other interface. How to let the DHCP packet go through ? Broadcast ? Tks Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=37332t=37286 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
What is up with the new test [7:37331]
All read this below. Where have I been I did not know Cisco was coming out with new test, they just changed what will the new changes be? And how are they handling those already certified as a ccnp? Limited Time Offer - Two Weeks Only Be the First to Take the New CCNP Beta Exams - at a Discount Now through March 18, 2002 Now through March 18, 2002, take new CCNP beta exams at a discounted rate of $50.00 (US dollars). To maintain the high quality and market responsiveness of Cisco Career Certification exams, Cisco has introduced refreshed CCNP exams with all new exam questions. The refresh effort upholds the quality and integrity of Cisco Career Certifications. The exams are currently in beta and offered at a discount to candidates. The CCNP beta exams include all four of the required exams for obtaining CCNP certification: Routing 641-603 (covers same content as in 640-503) Switching 641-604 (covers same content as in 640-504) Remote Access 641-605 (covers same content as in 640-505) Support 641-606 (covers same content as in 640-506) Register today by calling 1-800-829-NETS (6387)-option 2, then 4. Beta exams cost $50 each (US dollars). The beta ends on March 18, 2002. So hurry and register to reserve a seat! The new exams will test on the same topics covered under the current Routing, Switching, Remote Access, and CIT exams. Any individual who takes and passes a beta exam receives credit toward the appropriate certification track. Beta exams enable Cisco to ensure quality exam development. Beta exam results are not released until after the beta exam period has closed and all results are analyzed. Results are usually posted on the Cisco Career Certifications Tracking System approximately 8-12 weeks after the last day to test. Sincerely, Nader Nanjiani Marketing Programs Manager Cisco Career Certifications www.digitalrage.org latest in Technical News and HowTo's www.digitalrage.org/phpBB Discussion Forums Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=37331t=37331 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: confreg 0x2922 ??? [7:37318]
According to my Handy Dandy Cisco Confreg Decoder Ring (standard issue to Academy instructors) the 9 turns on bits 8 and 11 (leaving 910 set to zero) which sets the console baud rate to 4800 sets disable break key. The bit functions are as follows (counting from right most position to left): 3 - 0 Boot Field 4 Fast Boot 5 Undefined (according to my decoder) 6 Ignore Configuration on Startup 7 Enable OEM bit (Ignore Cisco Startup Message) 8 Disable Break Key 9 Undefined (according to my decoder) 10IP Broadcast with all zeros 12-11 Console line speed: 10=1200, 11=2400, 01=4800, 00=9600 13Boot ROM is Netboot fails 14IP Broadcast if no net number 15Enable diagnostic messages and ignore NVRAM BTW, there used to be a page on CCO which detailed the purpose of each register bit(s) but I've lost the link and a search using several different terms was useless. Anybody still have that link? HTH, Prof. Tom Lisa, CCAI Community College of Southern Nevada Cisco ATC/Regional Networking Academy brian kastor wrote: I have found a reason for the second '2' in this, but anyone know what the 9 is??? cisco.com says it is undefined. We are getting this on one of the 3640's running 12.2.6c nobody remembers setting anything differently?? aha, bk Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=37333t=37318 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: OSPF Question [7:37228]
At 12:01 AM 3/5/02, Hunt Lee wrote: TCP / IP Vol1 by Jeff Doyle says if a subnet is summarized by a summary address, the subnet's instability will no longer be advertised. But if this is the case, then what happens if:- e.g. Router A advertised a summary route (advertising subnet 172.20.10.0 /24 to Router B. Now if a host in that subnet (say 172.20.10.1 is bouncing) - if this instability is hidden by the summary route, does it mean that Router B wouldn't realized that 172.20.10.1 is flapping, and continues to forward packets to it? Sure. It happens all the time. Bouncing hosts are rarely a concern of routing protocols or of non-local routers. The final router that needs to forward to the host would ARP for it and not get an answer. That router wouldn't tell anyone else there was a problem though. Well, I take that back. It might send an ICMP Host Unreachable to the sending end host. Routers wouldn't pick up on this though. Routers care about the reachability of networks, subnets, summarized supernets. (A host-specific route is an exception.) I'm not sure if that's what you meant to ask, though. It has nothing to do with summarization. It's just normal behavior Priscilla Please help... Best Regards, Hunt Lee Priscilla Oppenheimer http://www.priscilla.com Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=37334t=37228 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: basic OSPF questions [7:37142]
Ah, a footnote. Who reads footnotes? ;-) Just kidding. Thanks for bringing it up. I learned a lot. Priscilla At 05:44 AM 3/5/02, bergenpeak wrote: Hi Priscilla, The use of the ip ospf network point-to-point as a mechanism to enable one to advertise the loopback address as a subnet route is from Doyle (Routing TCP/IP V1), page 417, footnote 9. Priscilla Oppenheimer wrote: At 08:59 AM 3/4/02, bergenpeak wrote: 1) A loopback address is normally advertised by OSPF as a host route. The command ip ospf network point-to-point enables one to specify that the interface should be advertised as a subnet route. What are the benefits for doing this? I can't imagine any benefits. Where did you find this info?? I do see some mention in RFC 2328 of using a host versus a subnet for the Link ID. On point-to-point networks, if the neighbor's IP address is known, set the Link ID of the Type 3 link to the neighbor's IP address, and the Link Data to the mask 0x (indicating a host route) If a subnet has been assigned to the point-to-point link, set the Link ID of the Type 3 link to the subnet's IP address, and the Link Data to the subnet's mask... 2) Must a link cost be the same on for all routers that share the link? Is there a protocol reason for this? Some other reason? I couldn't find anything in RFC 2328 that says that two routers connected to a link MUST agree on the cost. The RFC writers use the term MUST carefully. If it were required, they would put it in the RFC. I think it would be a good idea to make them agree, though 3) In the Exstart phase, how is the master selected? Chappel's book says RID while Doyle's say highest interface IP address. Which is it? The router with the higher Router ID becomes the master. 4) I'm somewhat unclear on the Exchange and the Loading states. When a router goes into Exchange state, does it send all DDPs it knows about before processing any DDPs received from other adjancent neighbors? I think so, but I've never thought about the database synchronization issues associated with a router that is a neighbor to many routers. My guess is that it can only be in the exchange state with one router at a time. Otherwise it would be exchanging database info with one router as the info was being updated by another router?? Thus, a router goes into Exchange state, sends all DDPs it knows about, then goes into Loading state, where it issues LSRs for LSAs it wants more details on? Is this the process? Sounds right. See the RFC for the details. 5) Is there a difference between DBD and DDP packets? I would avoid the term DDP, since it means Datagram Delivery Protocol to AppleTalk people. ;-) Thanks Priscilla Oppenheimer http://www.priscilla.com Priscilla Oppenheimer http://www.priscilla.com Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=37335t=37142 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Well it's my turn...CCIE#8878 [7:37145]
congrats Richard! You deserve it. Waylon CCIE#7837 Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=37337t=37145 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
PIX Access-list Problem. [7:37336]
Hi all, I have a problem, does anyone can give me a answer? Which the following access-list is right to allow only telnet? 1. access-list 100 permit tcp 200.200.200.0 255.255.255.0 10.10.0.0 255.255.0.0 23 2. access-list 100 permit tcp 200.200.200.0 255.255.255.0 10.10.0.0 255.255.0.0 eq 23 Thank you very much. Ivan Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=37336t=37336 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Time based ACL on PIX? [7:37198]
I agree. You can't do it directly with a time-based list, because Pix doesn't support that (yet). You can use AAA as a workaround. Keyur Shah wrote in message news:[EMAIL PROTECTED]; You can use AAA time-of-day access feature with PIX to accomplish this. -Keyur Shah- CCIE# 4799 (Security; Routing and Switching) css1,scsa,scna,mct,mcse,cni,mcne Hello Computers Say Hello to Your Future! http://www.hellocomputers.com Toll-Free: 1.877.794.3556 Fremont: 510.795.6815 Santa Clara: 408.496.0801 Europe: +(44)20 7900 3011 Fax: 510.291.2250 -Original Message- From: matt [mailto:[EMAIL PROTECTED]] Sent: Monday, March 04, 2002 9:40 PM To: [EMAIL PROTECTED] Subject: Time based ACL on PIX? [7:37198] Hi all- I sent this out earlier but it didn't seem to post?? Anyway...I was wondering if it is possible to have services behind a PIX restricted to time?? Kinda like how you can with a Checkpoint. Initially I was thinking this was not possible as I have conduit based configurations on all the PIX's I maintainand am unaware of any such option on a conduit. But then I saw the time-range option for an extended ACL. So, my question: Can this be used on a PIX to limit access to a service to say 1 ipand only between certain hours? Has anyone does this...or is it even possible? I hope this makes sense. thanks, matt __ Do You Yahoo!? Yahoo! Sports - sign up for Fantasy Baseball http://sports.yahoo.com Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=37338t=37198 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: PIX Access-list Problem. [7:37336]
# 2. # 1 wont won't work as it doesn't specify the eq portion. It should ( at least on 5.2 code ) generate an error. All this is assuming that 200.200.200.0 is the correct source and 10.10.0.0 255.255.0.0 is the correct destination. Thanks Larry -Original Message- From: Ivan [mailto:[EMAIL PROTECTED]] Sent: Tuesday, March 05, 2002 7:22 PM To: [EMAIL PROTECTED] Subject: PIX Access-list Problem. [7:37336] Hi all, I have a problem, does anyone can give me a answer? Which the following access-list is right to allow only telnet? 1. access-list 100 permit tcp 200.200.200.0 255.255.255.0 10.10.0.0 255.255.0.0 23 2. access-list 100 permit tcp 200.200.200.0 255.255.255.0 10.10.0.0 255.255.0.0 eq 23 Thank you very much. Ivan Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=37340t=37336 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RIP issue :-) [7:37339]
Hi ! I am enabling RIP b/w two p-to-p network /30. But the strange thing is ,when I say RouterA__.1/30___.2/30__RouterB router rip ver 2 network 150.1.11.0 and exec show runn, it is showing the network as 150.1.0.0. Any comment on this... Stanzin Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=37339t=37339 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: PIX Access-list Problem. [7:37336]
Hi Ivan, Neither access-list would work, because if your trying to limit telnet access for the network 200.200.200. to network 10.10. then you would have this access-list: access-list 100 permit tcp 200.200.200.0 0.0.0.255 10.10.0.0 0.0.255.255 eq 23 This is because access-lists uses source wildcards. Scott -Original Message- From: Ivan [mailto:[EMAIL PROTECTED]] Sent: Tuesday, March 05, 2002 4:22 PM To: [EMAIL PROTECTED] Subject: PIX Access-list Problem. [7:37336] Hi all, I have a problem, does anyone can give me a answer? Which the following access-list is right to allow only telnet? 1. access-list 100 permit tcp 200.200.200.0 255.255.255.0 10.10.0.0 255.255.0.0 23 2. access-list 100 permit tcp 200.200.200.0 255.255.255.0 10.10.0.0 255.255.0.0 eq 23 Thank you very much. Ivan Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=37341t=37336 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: PIX Access-list Problem. [7:37336]
Oops Ivan, Its been a long day. I didn't see that this is for a PIX. The correct access-list would be #2. Scott -Original Message- From: Ivan [mailto:[EMAIL PROTECTED]] Sent: Tuesday, March 05, 2002 4:22 PM To: [EMAIL PROTECTED] Subject: PIX Access-list Problem. [7:37336] Hi all, I have a problem, does anyone can give me a answer? Which the following access-list is right to allow only telnet? 1. access-list 100 permit tcp 200.200.200.0 255.255.255.0 10.10.0.0 255.255.0.0 23 2. access-list 100 permit tcp 200.200.200.0 255.255.255.0 10.10.0.0 255.255.0.0 eq 23 Thank you very much. Ivan Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=37342t=37336 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]