Re: Riddle [7:41491]
I agree with you Chuck. It's very unsecure indeed... However, consider it as one of the certifications' riddle... Too theoretic, but must be solved... It has a solution, and it is ROUTER oriented. No IDS or CSPM included... In case you come up with something let me know... Thanx Dvass Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=41564t=41491 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Signature for blocking telnet to SMTP server [7:41565]
Hi, Is it possible to block telnet to SMTP server from port 25 with IDS. I want to create a custom signature for this but I don't know how this can be done. If I write a signature beginning with hello it will block all mail traffic because all of them starts with hello as I know. And are there any resources that tells how to write a custom signature. We are using CSPM 2.3.3i. Any help will be appreciated. Best regards, Cisco Breaker Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=41565t=41565 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Might be of InCisco GBIC Sourcing Support Policy [7:41567]
Its so Obvious that Cisco is trying to be like Microsoft by monopolizing the market. Ismail Al-shelh -Original Message- From: Matthew Crane [mailto:[EMAIL PROTECTED]] Sent: Monday, April 15, 2002 1:55 PM To: [EMAIL PROTECTED] Subject: Might be of InCisco GBIC Sourcing Support Policy [7:41476] April 10, 2002 Cisco GBIC Sourcing Support Policy We are continuing to receive questions concerning the consequences of Cisco end users acquiring GBICs (Gigabit Interface Converter) modules from non-Cisco sourced third parties or directly from GBIC suppliers for deployment in Cisco routers and switches. Apparently there is still some confusion on what Cisco's position and policy is in respect of these third party GBIC's, which is why I would like to summarize those for you and highlight the main points. I would also like to take this opportunity to outline what Cisco would expect from you as a Channel Partner when it comes to you supplying non-Cisco GBIC's together with Cisco equipment to end users. Cisco's policy: Products from non-Cisco sources do not qualify for Cisco support and may not be compatible with hardware, power, or software requirements. Cisco sourced GBIC's can be easily identified by the Cisco logo and trademarks on the label. If a GBIC does not have the Cisco label and trademarks on it, then it has not been sourced from Cisco and is subject to the conditions outlined below. GBIC's acquired through non-Cisco sources will be subject to the following conditions: 1) Cisco TAC is not under an obligation to support any non-Cisco GBIC modules; 2) Cisco SMARTnet will not cover non-Cisco GBIC modules; 3) Cisco does not guarantee the performance or results you may obtain by using a non-Cisco GBIC; 4) In the event that an end user experiences a support issue that Cisco determines is caused by use of a third party GBIC, Cisco will not provide warranty support or support under SMARTNet or another Cisco support program for that issue. On the other hand, where a product fault or defect occurs in the network and Cisco concludes that the fault or defect is not attributable to the use of a GBIC installed by our customers or partners, Cisco will continue to provide support for the affected product under warranty or a Cisco support program. The nature of the defect or error is the key to determining what Cisco's support obligations are. Cisco sources GBIC's from third party suppliers, who agree to follow Cisco quality standards. Sometimes, Cisco disqualifies a supplier because of quality issues with that supplier's product, or for other reasons (i.e. EMI or power requirements). Disqualified suppliers may continue to sell their GBIC's and please note that they or parties that have purchased from them may claim that their GBIC's are Cisco approved. Such statements are at best unreliable and our customers should understand that only by sourcing GBIC's directly from Cisco or a Cisco Authorized Channel, can our customers be confident they are getting Cisco approved modules that will qualify for Cisco support (Cisco sourced GBICs can be identified by the Cisco logo and trademarks on the label). We are taking appropriate legal action against suppliers using such false and misleading statements. What does Cisco expect from its Authorized Channels? Obviously we believe strongly that our GBIC's are superior in terms of quality and performance to any non-Cisco GBIC. Nevertheless, you may in certain instances prefer to resell third party GBIC's. As stated above, this may occasionally give rise to support and warranty issues, and may cause confusion with the end users. In order to prevent such issues and to protect Cisco's brand and reputation we would like to ask you to observe the following guidelines when reselling non-Cisco GBIC's together with or already installed in any Cisco products you are reselling: Inform the end user of the fact that he is receiving a non-Cisco GBIC; Inform the end user that such a non-Cisco GBIC will not qualify for Cisco support; Inform the end user of the brand of the non-Cisco GBIC and how they can obtain support on those products and what the warranty terms are. Although this statement specifically covers GBIC's, the same issues arise with other third party components e.g. memory or cables. With regard to those products the same principles as set out in this letter apply. For any specific questions please contact your Cisco channel account manager. Yours Sincerely Paris G Arey VP EMEA Channels Alliances Cisco Systems Inc. Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=41567t=41567 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: CIT Exam [7:41437]
please do not depend on cram sheets cause its gonna make you lost at the end , believe me you will not gain the concept by doing that. Ismail Al-shleh -Original Message- From: CODETEL [mailto:[EMAIL PROTECTED]] Sent: Monday, April 15, 2002 3:00 AM To: [EMAIL PROTECTED] Subject: CIT Exam [7:41437] Hello.. i'm going to take 640-506 exam next week and i would like to know about some good exam cram... someone could recommend good material for pass this exam? Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=41566t=41437 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
CEF pitfalls [7:41568]
I'm starting to understand CEF. I like what it does. But can anyone refer me to a list of the pitfalls, or features, to beware of? What are the problems with CEF and can I avoid them with workarounds or careful planning and configurations? -- TT Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=41568t=41568 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: 100Mbit cable can't shorter than 6 feets????? [7:41448]
Ouellette, Tim wrote: I've never heard of anything like that. YOu do have to be carefull with fiber though. I've got 10baset cables that are less than a foot and 100baset cables that are 10. I think there is a restriction (51.2 bittimes) for fast ethernet on the long end but nothing stated as to how short it can be. I use factory-terminated cable assemblies (jumpers) that are 1' (one foot) in length. They come in handy in certain situations where real estate is dear. Fiber is tricky. Our installer had one heck of a time terminating a short segment. Less is not always more when you're dealing with fiber. It depends on the skill of the installer and the sensitivity of the installation equipment. -- TT Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=41569t=41448 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Might be of InCisco GBIC Sourcing Support Policy [7:41570]
Ismail Al-Shelh wrote: Its so Obvious that Cisco is trying to be like Microsoft by monopolizing the market. Business is business. Specifying their own product is standard practice for any vendor. The pragmatic advice is to use Cisco whenever possible (that's a judgment call, the final decision is left to the contractor). But be aware of the consequences, which is what the last few paragraphs of the announcement indicate: --- begin quoted material --- What does Cisco expect from its Authorized Channels? Obviously we believe strongly that our GBIC's are superior in terms of quality and performance to any non-Cisco GBIC. Nevertheless, you may in certain instances prefer to resell third party GBIC's. As stated above, this may occasionally give rise to support and warranty issues, and may cause confusion with the end users. In order to prevent such issues and to protect Cisco's brand and reputation we would like to ask you to observe the following guidelines when reselling non-Cisco GBIC's together with or already installed in any Cisco products you are reselling: Inform the end user of the fact that he is receiving a non-Cisco GBIC; Inform the end user that such a non-Cisco GBIC will not qualify for Cisco support; Inform the end user of the brand of the non-Cisco GBIC and how they can obtain support on those products and what the warranty terms are. Although this statement specifically covers GBIC's, the same issues arise with other third party components e.g. memory or cables. With regard to those products the same principles as set out in this letter apply. --- end quoted material --- You're free to specify non-cisco, but be sure to apprise your client / boss of the risks. Losing TAC support is no small matter. -- TT Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=41570t=41570 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Multi Vlan and cat4006 sup3 [7:41571]
Hi All, Our customer wants to buy cat 4006 with sup3. But they use Appletalk. As I know the sup3 IOS doesnt support Appletalk routing yet, so I have to put a router for that, am I right? And also is it possible to assign the server's port into 2 vlans. If I can put the server's port which is on the switch to 2 Vlans (multi Vlan) it will be OK but is it possible? Any help will be appreciated. Best regards, Cisco Breaker Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=41571t=41571 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Whats going to happen ? [7:41572]
Dear All, Suppose that I create a MAC based VLAN with for example 100 computers. All of these computers either will get IP from the DHCP for the 10.0.1.0/24 IP block, or they can hard wired their own IP provided that the IP is their own, and it is in the 10.0.1.0/24 subnet. Now suppose one person changes his NIC at his computer. This of course will makes the switch won't recognize his new MAC address, and hard wired his IP to the one at 10.0.1.0/24. My question is will his connection get bumped out from the network ? Thanks Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=41572t=41572 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
CCIE Security Written Exam [7:41573]
Hi all, can you anybody advice me what is in the security exam? Thank you for your answer. Michal Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=41573t=41573 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Whats the difference between Classful Classless??? [7:41574]
Classfull routing protocol does not advertise and address mask with the advertise destination address, which means that it assumes a defaul mask for the three major address IP classes A,B,C. Classless on the other hand does advertise the mask, which means that it will advertise the mask along with the destination address, RIP version 2 is the case, great for subneting, VLSM. Jorge Matt Saunders wrote: Hi Group, Im really struggling to understand the requirement in using the ip classless command when you are configuring a default route. I noticed that RIP 2 is a classless protocol RIP ver 1 is a classfull. Can anyone help me understand what the difference is (in simple terms!!) as i want to move on with my studies though im sure this is something thats going to come up again Cheers Matt Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=41574t=41574 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Whats going to happen ? [7:41572]
Yes. -Original Message- From: Irwan Hadi [mailto:[EMAIL PROTECTED]] Sent: 16 April 2002 09:20 To: [EMAIL PROTECTED] Subject: Whats going to happen ? [7:41572] Dear All, Suppose that I create a MAC based VLAN with for example 100 computers. All of these computers either will get IP from the DHCP for the 10.0.1.0/24 IP block, or they can hard wired their own IP provided that the IP is their own, and it is in the 10.0.1.0/24 subnet. Now suppose one person changes his NIC at his computer. This of course will makes the switch won't recognize his new MAC address, and hard wired his IP to the one at 10.0.1.0/24. My question is will his connection get bumped out from the network ? Thanks DISCLAIMER This e-mail is intended only for the use of the addressees named above and may be confidential. If you are not an addressee you must not read it and must not use any information contained in nor copy it nor inform any person other than TeleCity Limited or the addressees of its existence or contents. If you have received this email and are not a named addressee, please delete it and notify the TeleCity IT department on 0161 226 7643 or by email at [EMAIL PROTECTED] Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=41575t=41572 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Might be of InCisco GBIC Sourcing Support Policy [7:41576]
What's wrong with the message below... sounds fair to me.. Ismail Al-Shelh wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... Its so Obvious that Cisco is trying to be like Microsoft by monopolizing the market. Ismail Al-shelh -Original Message- From: Matthew Crane [mailto:[EMAIL PROTECTED]] Sent: Monday, April 15, 2002 1:55 PM To: [EMAIL PROTECTED] Subject: Might be of InCisco GBIC Sourcing Support Policy [7:41476] April 10, 2002 Cisco GBIC Sourcing Support Policy We are continuing to receive questions concerning the consequences of Cisco end users acquiring GBICs (Gigabit Interface Converter) modules from non-Cisco sourced third parties or directly from GBIC suppliers for deployment in Cisco routers and switches. Apparently there is still some confusion on what Cisco's position and policy is in respect of these third party GBIC's, which is why I would like to summarize those for you and highlight the main points. I would also like to take this opportunity to outline what Cisco would expect from you as a Channel Partner when it comes to you supplying non-Cisco GBIC's together with Cisco equipment to end users. Cisco's policy: Products from non-Cisco sources do not qualify for Cisco support and may not be compatible with hardware, power, or software requirements. Cisco sourced GBIC's can be easily identified by the Cisco logo and trademarks on the label. If a GBIC does not have the Cisco label and trademarks on it, then it has not been sourced from Cisco and is subject to the conditions outlined below. GBIC's acquired through non-Cisco sources will be subject to the following conditions: 1) Cisco TAC is not under an obligation to support any non-Cisco GBIC modules; 2) Cisco SMARTnet will not cover non-Cisco GBIC modules; 3) Cisco does not guarantee the performance or results you may obtain by using a non-Cisco GBIC; 4) In the event that an end user experiences a support issue that Cisco determines is caused by use of a third party GBIC, Cisco will not provide warranty support or support under SMARTNet or another Cisco support program for that issue. On the other hand, where a product fault or defect occurs in the network and Cisco concludes that the fault or defect is not attributable to the use of a GBIC installed by our customers or partners, Cisco will continue to provide support for the affected product under warranty or a Cisco support program. The nature of the defect or error is the key to determining what Cisco's support obligations are. Cisco sources GBIC's from third party suppliers, who agree to follow Cisco quality standards. Sometimes, Cisco disqualifies a supplier because of quality issues with that supplier's product, or for other reasons (i.e. EMI or power requirements). Disqualified suppliers may continue to sell their GBIC's and please note that they or parties that have purchased from them may claim that their GBIC's are Cisco approved. Such statements are at best unreliable and our customers should understand that only by sourcing GBIC's directly from Cisco or a Cisco Authorized Channel, can our customers be confident they are getting Cisco approved modules that will qualify for Cisco support (Cisco sourced GBICs can be identified by the Cisco logo and trademarks on the label). We are taking appropriate legal action against suppliers using such false and misleading statements. What does Cisco expect from its Authorized Channels? Obviously we believe strongly that our GBIC's are superior in terms of quality and performance to any non-Cisco GBIC. Nevertheless, you may in certain instances prefer to resell third party GBIC's. As stated above, this may occasionally give rise to support and warranty issues, and may cause confusion with the end users. In order to prevent such issues and to protect Cisco's brand and reputation we would like to ask you to observe the following guidelines when reselling non-Cisco GBIC's together with or already installed in any Cisco products you are reselling: Inform the end user of the fact that he is receiving a non-Cisco GBIC; Inform the end user that such a non-Cisco GBIC will not qualify for Cisco support; Inform the end user of the brand of the non-Cisco GBIC and how they can obtain support on those products and what the warranty terms are. Although this statement specifically covers GBIC's, the same issues arise with other third party components e.g. memory or cables. With regard to those products the same principles as set out in this letter apply. For any specific questions please contact your Cisco channel account manager. Yours Sincerely Paris G Arey VP EMEA Channels Alliances Cisco Systems Inc. Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=41576t=41576 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
IOS Documentation [7:41577]
I have recently been asked to document the various IOS images used within our network to be used as a baseline. Has anyone had experience in putting together this kind of document? Many thanks in advance Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=41577t=41577 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Stupid Question time [7:41465]
What the hell, get them all. In fact, buy two sets since money seems to be no object to any of you. :-) I still can't understand all the hype over Boson when there are much better and less expensive alternatives out there. Hell, I've even written materials for Boson/Quizware but still feel that everyone could pass their exams using less expensive methods. Just my opinion because this forum is for helping people out. So look around a little before rushing out to buy the almighty overpriced Boson. Sorry, just a little grumpy this morning. I think I just realized how underpaid I really am! Just thankful to have a job right now, though! Shawn K. -Original Message- From: Kris Keen [SMTP:[EMAIL PROTECTED]] Sent: Tuesday, April 16, 2002 12:14 AM To: [EMAIL PROTECTED] Subject: Re: Stupid Question time [7:41465] Champ , cheers What Boson do you recommend? is yours, #3 the best or should I get them all? Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=41578t=41465 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Riddle [7:41491]
The last time I looked, a Cisco router would send an ICMP administratively unreachable message when an access list blocked a packet. What the source host does with that is not up to the router. Marc Dimitris Vassilopoulos wrote: Team, I was wondering Is it possible to make a router respond to an access-list blocking, using a custom-made user defined phrase? For example, if we deny telnet from a host we need to reply to him Access-list blocks incoming telnet... ? Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=41579t=41491 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Last changes [7:41580]
Hello everybody, I have one question for you. We have several routers that shows who and when made last changes in the configuration and who/when saved that changes in NVRAM. For example: Router# show run ... ... Current configuration : 2352 bytes ! ! Last configuration change at 11:45:15 UTC Tue Apr 9 by XXX ! NVRAM config last updated at 12:23:50 UTC Thu Apr 4 2002 by XXX ! ... ... How can I activate this messages in other routers?? We have other routers with the same IOS, almost the same configuration and they don't show these messages! I am very interested in this Thanks a lot! Mike. Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=41580t=41580 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Please confirm (conf#2f25cd26a34d4ca56db58b9a5770589f) [7:41581]
16/04/2002 12:16 [EMAIL PROTECTED] Destinatarios: [EMAIL PROTECTED] CC: Asunto: Please confirm (conf#2f25cd26a34d4ca56db58b9a5770589f) Hi, You have tried to post to GroupStudy.com's Professional mailing list. Because the server does not recognize you as a confirmed poster, you will be required to authenticate that you are using a valid e-mail address and are not a spammer. By confirming this e-mail you certify that you are not sending Unsolicited Bulk Email (UBE). PLEASE DO NOT SEND YOUR ORIGINAL MESSAGE AGAIN! BY CONFIRMING THIS EMAIL YOUR ORIGINAL MESSAGE (WHICH IS NOW QUEUED IN THE SERVER) WILL BE POSTED. By confirming this e-mail you also certify the following: 1. The message does NOT break Cisco's Non-Disclosure requirements. 2. The message is NOT designed to advertise a commercial product. 3. You understand all postings become property of GroupStudy.com 4. You have searched the archives prior to posting. 5. The message is NOT inflammatory. 6. The message is NOT a test message. To confirm, simply reply to this message. No editing is necessary. Once confirmed, you will be able to post without additional confirmations. Welcome to GroupStudy.com! --ORIGINAL MESSAGE- From [EMAIL PROTECTED] Tue Apr 16 07:16:40 2002 Received: from aurora.tsm.es ([194.224.100.20]) by groupstudy.com (8.9.3/8.9.3) with ESMTP id HAA12871 GroupStudy Mailer; Tue, 16 Apr 2002 07:16:36 -0400 From: [EMAIL PROTECTED] Received: by aurora.tsm.es; (8.8.8/1.3/10May95) id NAA15043; Tue, 16 Apr 2002 13:20:15 +0200 (MET DST) Subject: Last changes To: [EMAIL PROTECTED] Date: Tue, 16 Apr 2002 13:17:41 +0200 Message-ID: X-MIMETrack: Serialize by Router on abantos/TSM( =?iso-8859-1?Q?Versi=F3n__5=2E0=2E6a_|Febrero_8_=2C_2001=29_at_16=2F04=2F? = =?us-ascii?Q?2002?= 01:17:43 PM MIME-Version: 1.0 Content-type: text/plain; charset=us-ascii Hello everybody, I have one question for you. We have several routers that shows who and when made last changes in the configuration and who/when saved that changes in NVRAM. For example: Router# show run ... ... Current configuration : 2352 bytes ! ! Last configuration change at 11:45:15 UTC Tue Apr 9 by XXX ! NVRAM config last updated at 12:23:50 UTC Thu Apr 4 2002 by XXX ! ... ... How can I activate this messages in other routers?? We have other routers with the same IOS, almost the same configuration and they don't show these messages! I am very interested in this Thanks a lot! Mike. Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=41581t=41581 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Last changes [7:41582]
-- Remitido por Miguel Angel Encinar Blazquez/UN23812/OPERACION Y MANTENIMIENTO/TSM con fecha 02/02/2002 13:18 --- 16/04/2002 12:17 Miguel Angel Encinar Blazquez OPERACION Y MANTENIMIENTO Destinatarios: [EMAIL PROTECTED] CC: Asunto: Last changes Hello everybody, I have one question for you. We have several routers that shows who and when made last changes in the configuration and who/when saved that changes in NVRAM. For example: Router# show run ... ... Current configuration : 2352 bytes ! ! Last configuration change at 11:45:15 UTC Tue Apr 9 by XXX ! NVRAM config last updated at 12:23:50 UTC Thu Apr 4 2002 by XXX ! ... ... How can I activate this messages in other routers?? We have other routers with the same IOS, almost the same configuration and they don't show these messages! I am very interested in this Thanks a lot! Mike. Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=41582t=41582 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
IPX EIGRP Metrics [7:41585]
Is there any way to alter the metrics of IPX EIGRP other than changing the bandwidth on an interface? Specifically, I want to route IPX traffic over a 40Mbs link instead of a 100Mbs temporarily, and I don't want to alter the bandwidth on the interface as it will affect the IP routing. Thank you in advance. Steve Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=41585t=41585 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
silly encryption question [7:41583]
I am studying for my MCNS test. The Cisco Press book says that Diffie-Hillman public key encryption is used to create a secure channel to exchange DES private keys for data encryption. If Diffie-Hillman is secure enough to transfer the DES private keys, why not use it to transfer the data? This seems silly and needlessly complex. Can someone explain this? This e-mail and any files transmitted with it are intended solely for the person(s) to whom it is addressed. If you are not the intended recipient, please delete the message and all copies of it from your system, destroy any hard copies of it and contact the sender by return e-mail. Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=41583t=41583 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: A little help in the right direction [7:41500]
Joel, Start with a management summary which includes a statement that it will save your business X thousand creds per year, recouping capital and manpower implementation costs within Y months. Then write a load of blurb to prove it. Job done. Remember to think business, not technical, and that at the moment, only you know why it should be done. rgds Marc Joel Panetta wrote: Can anyone point me in the right direction to implement a pros and cons document for a back bone and infrastructure upgrade? we have a Catalyst 5000 back bone I want to push to 6509 with redundancy but have to put it all on paper. Thanks Joel Panetta - CCNA, MCP Network Engineer - Anda, Inc 954-217-4797 [EMAIL PROTECTED] Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=41584t=41500 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Stupid Question time [7:41465]
Name one alternative that's cheaper AND offers the flexibility, options (like toggling the score meter, showing answers ONLY when you're wrong WITH references to published explanations of the answers), and quality (not so say I've never seen a wrong answer on a Boson exam, but way better than the quality of a Brainbuzz cramsheet, etc). I don't mean my above comment in a smart ass way, because I'd really be interested in an alternative, but to simply pop into the group and make such statements without even a single URL or name of what you consider much better and less expensive doesn't lend much credibility to what you say. Mike W. Kaminski, Shawn G wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... What the hell, get them all. In fact, buy two sets since money seems to be no object to any of you. :-) I still can't understand all the hype over Boson when there are much better and less expensive alternatives out there. Hell, I've even written materials for Boson/Quizware but still feel that everyone could pass their exams using less expensive methods. Just my opinion because this forum is for helping people out. So look around a little before rushing out to buy the almighty overpriced Boson. Sorry, just a little grumpy this morning. I think I just realized how underpaid I really am! Just thankful to have a job right now, though! Shawn K. -Original Message- From: Kris Keen [SMTP:[EMAIL PROTECTED]] Sent: Tuesday, April 16, 2002 12:14 AM To: [EMAIL PROTECTED] Subject: Re: Stupid Question time [7:41465] Champ , cheers What Boson do you recommend? is yours, #3 the best or should I get them all? Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=41587t=41465 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Available Bandwidth on 2610 [7:41586]
I have a 2610 with 3 serial interfaces. All 3 are point-to-point T1's. When you do a sho int, it shows bandwidth as 1544 Kbit, but it shows available bandwidth as 1158Kbit, no matter what the current load on the interface is. Routing protocal is OSPF. What does this really mean? And/or how is this available bandwidth determined? Serial1/0 is up, line protocol is up Hardware is DSCC4 with integrated T1 CSU/DSU Description: PTP to MB-West Internet address is 10.32.1.37/30 MTU 1500 bytes, BW 1544 Kbit, DLY 2 usec, reliability 255/255, txload 1/255, rxload 1/255 Encapsulation HDLC, loopback not set Keepalive set (10 sec) Last input 00:00:02, output 00:00:02, output hang never Last clearing of show interface counters 8w5d Input queue: 0/75/0/0 (size/max/drops/flushes); Total output drops: 0 Queueing strategy: weighted fair Output queue: 0/1000/64/0 (size/max total/threshold/drops) Conversations 0/10/256 (active/max active/max total) Reserved Conversations 0/0 (allocated/max allocated) Available Bandwidth 1158 kilobits/sec 5 minute input rate 0 bits/sec, 0 packets/sec 5 minute output rate 0 bits/sec, 0 packets/sec 53324797 packets input, 1426721882 bytes, 0 no buffer Received 622749 broadcasts, 0 runts, 4 giants, 0 throttles 16 input errors, 1 CRC, 9 frame, 0 overrun, 0 ignored, 0 abort 53203873 packets output, 3470780381 bytes, 0 underruns 0 output errors, 0 collisions, 1 interface resets 0 output buffer failures, 0 output buffers swapped out 2 carrier transitions DCD=up DSR=up DTR=up RTS=up CTS=up Thanks in advance! Mark Rumfield Network Engineer Enterprise Products [EMAIL PROTECTED] Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=41586t=41586 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Whats going to happen ? [7:41572]
Personally, I've never come across a situation where MAC-based VLANs were useful. Port-based membership is more practical/common. You can always enforce port-security based on MAC address, but still have the same problem with regard to if someone changes their NIC, it'll require a call to you to change things up to make them work. Mike W. Irwan Hadi wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... Dear All, Suppose that I create a MAC based VLAN with for example 100 computers. All of these computers either will get IP from the DHCP for the 10.0.1.0/24 IP block, or they can hard wired their own IP provided that the IP is their own, and it is in the 10.0.1.0/24 subnet. Now suppose one person changes his NIC at his computer. This of course will makes the switch won't recognize his new MAC address, and hard wired his IP to the one at 10.0.1.0/24. My question is will his connection get bumped out from the network ? Thanks Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=41588t=41572 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Available Bandwidth on 2610 [7:41586]
Cisco routers reserve 25% (this value can be changed, but is not recommended)for routing, layer 2, etc. traffic. You can use the rest (75%) when configuring QoS. From: Mark Rumfield Reply-To: Mark Rumfield To: [EMAIL PROTECTED] Subject: Available Bandwidth on 2610 [7:41586] Date: Tue, 16 Apr 2002 08:16:35 -0400 I have a 2610 with 3 serial interfaces. All 3 are point-to-point T1's. When you do a sho int, it shows bandwidth as 1544 Kbit, but it shows available bandwidth as 1158Kbit, no matter what the current load on the interface is. Routing protocal is OSPF. What does this really mean? And/or how is this available bandwidth determined? Serial1/0 is up, line protocol is up Hardware is DSCC4 with integrated T1 CSU/DSU Description: PTP to MB-West Internet address is 10.32.1.37/30 MTU 1500 bytes, BW 1544 Kbit, DLY 2 usec, reliability 255/255, txload 1/255, rxload 1/255 Encapsulation HDLC, loopback not set Keepalive set (10 sec) Last input 00:00:02, output 00:00:02, output hang never Last clearing of show interface counters 8w5d Input queue: 0/75/0/0 (size/max/drops/flushes); Total output drops: 0 Queueing strategy: weighted fair Output queue: 0/1000/64/0 (size/max total/threshold/drops) Conversations 0/10/256 (active/max active/max total) Reserved Conversations 0/0 (allocated/max allocated) Available Bandwidth 1158 kilobits/sec 5 minute input rate 0 bits/sec, 0 packets/sec 5 minute output rate 0 bits/sec, 0 packets/sec 53324797 packets input, 1426721882 bytes, 0 no buffer Received 622749 broadcasts, 0 runts, 4 giants, 0 throttles 16 input errors, 1 CRC, 9 frame, 0 overrun, 0 ignored, 0 abort 53203873 packets output, 3470780381 bytes, 0 underruns 0 output errors, 0 collisions, 1 interface resets 0 output buffer failures, 0 output buffers swapped out 2 carrier transitions DCD=up DSR=up DTR=up RTS=up CTS=up Thanks in advance! Mark Rumfield Network Engineer Enterprise Products [EMAIL PROTECTED] _ MSN Photos is the easiest way to share and print your photos: http://photos.msn.com/support/worldwide.aspx Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=41589t=41586 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Might be of InCisco GBIC Sourcing Support Policy [7:41590]
Wow, with this wonderfully informative and relavent post, I feel ready to tackle the lab exam. Thanks so much for your precious insight into the world of capitalism and it's relavance to the topic of this list. Next time, keep your insights to yourself. Mr. Crane wasn't sharing this with us so that you could bash on Cisco for trying to maintain excellence in their product line by instituting a standard that they can control. -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] Sent: Tuesday, April 16, 2002 3:09 AM To: [EMAIL PROTECTED] Subject: RE: Might be of InCisco GBIC Sourcing Support Policy [7:41567] Its so Obvious that Cisco is trying to be like Microsoft by monopolizing the market. Ismail Al-shelh -Original Message- From: Matthew Crane [mailto:[EMAIL PROTECTED]] Sent: Monday, April 15, 2002 1:55 PM To: [EMAIL PROTECTED] Subject: Might be of InCisco GBIC Sourcing Support Policy [7:41476] April 10, 2002 Cisco GBIC Sourcing Support Policy We are continuing to receive questions concerning the consequences of Cisco end users acquiring GBICs (Gigabit Interface Converter) modules from non-Cisco sourced third parties or directly from GBIC suppliers for deployment in Cisco routers and switches. Apparently there is still some confusion on what Cisco's position and policy is in respect of these third party GBIC's, which is why I would like to summarize those for you and highlight the main points. I would also like to take this opportunity to outline what Cisco would expect from you as a Channel Partner when it comes to you supplying non-Cisco GBIC's together with Cisco equipment to end users. Cisco's policy: Products from non-Cisco sources do not qualify for Cisco support and may not be compatible with hardware, power, or software requirements. Cisco sourced GBIC's can be easily identified by the Cisco logo and trademarks on the label. If a GBIC does not have the Cisco label and trademarks on it, then it has not been sourced from Cisco and is subject to the conditions outlined below. GBIC's acquired through non-Cisco sources will be subject to the following conditions: 1) Cisco TAC is not under an obligation to support any non-Cisco GBIC modules; 2) Cisco SMARTnet will not cover non-Cisco GBIC modules; 3) Cisco does not guarantee the performance or results you may obtain by using a non-Cisco GBIC; 4) In the event that an end user experiences a support issue that Cisco determines is caused by use of a third party GBIC, Cisco will not provide warranty support or support under SMARTNet or another Cisco support program for that issue. On the other hand, where a product fault or defect occurs in the network and Cisco concludes that the fault or defect is not attributable to the use of a GBIC installed by our customers or partners, Cisco will continue to provide support for the affected product under warranty or a Cisco support program. The nature of the defect or error is the key to determining what Cisco's support obligations are. Cisco sources GBIC's from third party suppliers, who agree to follow Cisco quality standards. Sometimes, Cisco disqualifies a supplier because of quality issues with that supplier's product, or for other reasons (i.e. EMI or power requirements). Disqualified suppliers may continue to sell their GBIC's and please note that they or parties that have purchased from them may claim that their GBIC's are Cisco approved. Such statements are at best unreliable and our customers should understand that only by sourcing GBIC's directly from Cisco or a Cisco Authorized Channel, can our customers be confident they are getting Cisco approved modules that will qualify for Cisco support (Cisco sourced GBICs can be identified by the Cisco logo and trademarks on the label). We are taking appropriate legal action against suppliers using such false and misleading statements. What does Cisco expect from its Authorized Channels? Obviously we believe strongly that our GBIC's are superior in terms of quality and performance to any non-Cisco GBIC. Nevertheless, you may in certain instances prefer to resell third party GBIC's. As stated above, this may occasionally give rise to support and warranty issues, and may cause confusion with the end users. In order to prevent such issues and to protect Cisco's brand and reputation we would like to ask you to observe the following guidelines when reselling non-Cisco GBIC's together with or already installed in any Cisco products you are reselling: Inform the end user of the fact that he is receiving a non-Cisco GBIC; Inform the end user that such a non-Cisco GBIC will not qualify for Cisco support; Inform the end user of the brand of the non-Cisco GBIC and how they can obtain support on those products and what the warranty terms are. Although this statement specifically covers GBIC's, the same issues arise with other third party components e.g. memory or cables. With regard to those products the
RE: Might be of InCisco GBIC Sourcing Support Policy [7:41591]
Me not. -Original Message- From: Jason [mailto:[EMAIL PROTECTED]] Sent: Tuesday, April 16, 2002 12:07 PM To: [EMAIL PROTECTED] Subject: Re: Might be of InCisco GBIC Sourcing Support Policy [7:41576] What's wrong with the message below... sounds fair to me.. Ismail Al-Shelh wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... Its so Obvious that Cisco is trying to be like Microsoft by monopolizing the market. Ismail Al-shelh -Original Message- From: Matthew Crane [mailto:[EMAIL PROTECTED]] Sent: Monday, April 15, 2002 1:55 PM To: [EMAIL PROTECTED] Subject: Might be of InCisco GBIC Sourcing Support Policy [7:41476] April 10, 2002 Cisco GBIC Sourcing Support Policy We are continuing to receive questions concerning the consequences of Cisco end users acquiring GBICs (Gigabit Interface Converter) modules from non-Cisco sourced third parties or directly from GBIC suppliers for deployment in Cisco routers and switches. Apparently there is still some confusion on what Cisco's position and policy is in respect of these third party GBIC's, which is why I would like to summarize those for you and highlight the main points. I would also like to take this opportunity to outline what Cisco would expect from you as a Channel Partner when it comes to you supplying non-Cisco GBIC's together with Cisco equipment to end users. Cisco's policy: Products from non-Cisco sources do not qualify for Cisco support and may not be compatible with hardware, power, or software requirements. Cisco sourced GBIC's can be easily identified by the Cisco logo and trademarks on the label. If a GBIC does not have the Cisco label and trademarks on it, then it has not been sourced from Cisco and is subject to the conditions outlined below. GBIC's acquired through non-Cisco sources will be subject to the following conditions: 1) Cisco TAC is not under an obligation to support any non-Cisco GBIC modules; 2) Cisco SMARTnet will not cover non-Cisco GBIC modules; 3) Cisco does not guarantee the performance or results you may obtain by using a non-Cisco GBIC; 4) In the event that an end user experiences a support issue that Cisco determines is caused by use of a third party GBIC, Cisco will not provide warranty support or support under SMARTNet or another Cisco support program for that issue. On the other hand, where a product fault or defect occurs in the network and Cisco concludes that the fault or defect is not attributable to the use of a GBIC installed by our customers or partners, Cisco will continue to provide support for the affected product under warranty or a Cisco support program. The nature of the defect or error is the key to determining what Cisco's support obligations are. Cisco sources GBIC's from third party suppliers, who agree to follow Cisco quality standards. Sometimes, Cisco disqualifies a supplier because of quality issues with that supplier's product, or for other reasons (i.e. EMI or power requirements). Disqualified suppliers may continue to sell their GBIC's and please note that they or parties that have purchased from them may claim that their GBIC's are Cisco approved. Such statements are at best unreliable and our customers should understand that only by sourcing GBIC's directly from Cisco or a Cisco Authorized Channel, can our customers be confident they are getting Cisco approved modules that will qualify for Cisco support (Cisco sourced GBICs can be identified by the Cisco logo and trademarks on the label). We are taking appropriate legal action against suppliers using such false and misleading statements. What does Cisco expect from its Authorized Channels? Obviously we believe strongly that our GBIC's are superior in terms of quality and performance to any non-Cisco GBIC. Nevertheless, you may in certain instances prefer to resell third party GBIC's. As stated above, this may occasionally give rise to support and warranty issues, and may cause confusion with the end users. In order to prevent such issues and to protect Cisco's brand and reputation we would like to ask you to observe the following guidelines when reselling non-Cisco GBIC's together with or already installed in any Cisco products you are reselling: Inform the end user of the fact that he is receiving a non-Cisco GBIC; Inform the end user that such a non-Cisco GBIC will not qualify for Cisco support; Inform the end user of the brand of the non-Cisco GBIC and how they can obtain support on those products and what the warranty terms are. Although this statement specifically covers GBIC's, the same issues arise with other third party components e.g. memory or cables. With regard to those products the same principles as set out in this letter apply. For any specific questions please contact your Cisco channel account manager. Yours Sincerely Paris G Arey VP EMEA Channels Alliances Cisco Systems Inc.
Need info on setting up a CCIE practise Lab [7:41593]
Hi, I am interested in setting up a CCIE home LAB,Can anyone let me know how much money I would have to invest in buying the sufficient equipments for setting up the LAB.I am located in Reading,UK.Also I am interested in knowing quipment list and nearby places from where I can get the equipments. Kind Regards /Thangavel 186K Reading,Brkshire Direct No -0118 9064259 Mobile No -07796292416 Post code: RG16LH www.186k.co.uk -- The greatest glory in living lies not in never falling, but in rising every time we fall . -- Nelson Mandela ** This e-mail is from 186k Ltd and is intended only for the addressee named above. As this e-mail may contain confidential or priveleged information, if you are not the named addressee or the person responsible for delivering the message to the named addressee, please advise the sender by return e-mail. The contents should not be disclosed to any other person nor copies taken. 186k Ltd is a Lattice Group company, registered in England Wales No. 3751494 Registered Office 130 Jermyn Street London SW1Y 4UR ** Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=41593t=41593 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Fw: Last changes [7:41580]
Newly bootup router does not provide the info. But once you start to modify the config, it shows you the time and by who the changes were made. And once you save the changes to the NVRAM, it shows you when and who saved the changes. hktco - Original Message - From: To: Sent: Tuesday, April 16, 2002 7:18 PM Subject: Last changes [7:41580] Hello everybody, I have one question for you. We have several routers that shows who and when made last changes in the configuration and who/when saved that changes in NVRAM. For example: Router# show run ... ... Current configuration : 2352 bytes ! ! Last configuration change at 11:45:15 UTC Tue Apr 9 by XXX ! NVRAM config last updated at 12:23:50 UTC Thu Apr 4 2002 by XXX ! ... ... How can I activate this messages in other routers?? We have other routers with the same IOS, almost the same configuration and they don't show these messages! I am very interested in this Thanks a lot! Mike. Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=41592t=41580 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
2520 DRAM [7:41594]
Hello, Need some information here, have seen a cisco 2520 with these, after a #sh ver: ... cisco 2520 (68030) processor (revision N) with 14336K/2048K bytes of memory. ... Could anyone let me know if it's 16MB of Dram being shared with packet memory (2MB), or is 14mb of DRAM all that's available. And can IOS 12.2 be loaded effectively on these specs? many thanks. Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=41594t=41594 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Might be of InCisco GBIC Sourcing Support Policy [7:41595]
Looks like standard warranty wording to me. The Telco equipment manufacturers that I work with, in addition to the Cisco work that I do, say pretty much the same thing will happen to warranties if you use after-market, 3-party remanufactured devices. - Original Message - From: Ismail Al-Shelh To: Sent: Tuesday, April 16, 2002 08:56 Subject: RE: Might be of InCisco GBIC Sourcing Support Policy [7:41591] Me not. -Original Message- From: Jason [mailto:[EMAIL PROTECTED]] Sent: Tuesday, April 16, 2002 12:07 PM To: [EMAIL PROTECTED] Subject: Re: Might be of InCisco GBIC Sourcing Support Policy [7:41576] What's wrong with the message below... sounds fair to me.. Ismail Al-Shelh wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... Its so Obvious that Cisco is trying to be like Microsoft by monopolizing the market. Ismail Al-shelh -Original Message- From: Matthew Crane [mailto:[EMAIL PROTECTED]] Sent: Monday, April 15, 2002 1:55 PM To: [EMAIL PROTECTED] Subject: Might be of InCisco GBIC Sourcing Support Policy [7:41476] April 10, 2002 Cisco GBIC Sourcing Support Policy We are continuing to receive questions concerning the consequences of Cisco end users acquiring GBICs (Gigabit Interface Converter) modules from non-Cisco sourced third parties or directly from GBIC suppliers for deployment in Cisco routers and switches. Apparently there is still some confusion on what Cisco's position and policy is in respect of these third party GBIC's, which is why I would like to summarize those for you and highlight the main points. I would also like to take this opportunity to outline what Cisco would expect from you as a Channel Partner when it comes to you supplying non-Cisco GBIC's together with Cisco equipment to end users. Cisco's policy: Products from non-Cisco sources do not qualify for Cisco support and may not be compatible with hardware, power, or software requirements. Cisco sourced GBIC's can be easily identified by the Cisco logo and trademarks on the label. If a GBIC does not have the Cisco label and trademarks on it, then it has not been sourced from Cisco and is subject to the conditions outlined below. GBIC's acquired through non-Cisco sources will be subject to the following conditions: 1) Cisco TAC is not under an obligation to support any non-Cisco GBIC modules; 2) Cisco SMARTnet will not cover non-Cisco GBIC modules; 3) Cisco does not guarantee the performance or results you may obtain by using a non-Cisco GBIC; 4) In the event that an end user experiences a support issue that Cisco determines is caused by use of a third party GBIC, Cisco will not provide warranty support or support under SMARTNet or another Cisco support program for that issue. On the other hand, where a product fault or defect occurs in the network and Cisco concludes that the fault or defect is not attributable to the use of a GBIC installed by our customers or partners, Cisco will continue to provide support for the affected product under warranty or a Cisco support program. The nature of the defect or error is the key to determining what Cisco's support obligations are. Cisco sources GBIC's from third party suppliers, who agree to follow Cisco quality standards. Sometimes, Cisco disqualifies a supplier because of quality issues with that supplier's product, or for other reasons (i.e. EMI or power requirements). Disqualified suppliers may continue to sell their GBIC's and please note that they or parties that have purchased from them may claim that their GBIC's are Cisco approved. Such statements are at best unreliable and our customers should understand that only by sourcing GBIC's directly from Cisco or a Cisco Authorized Channel, can our customers be confident they are getting Cisco approved modules that will qualify for Cisco support (Cisco sourced GBICs can be identified by the Cisco logo and trademarks on the label). We are taking appropriate legal action against suppliers using such false and misleading statements. What does Cisco expect from its Authorized Channels? Obviously we believe strongly that our GBIC's are superior in terms of quality and performance to any non-Cisco GBIC. Nevertheless, you may in certain instances prefer to resell third party GBIC's. As stated above, this may occasionally give rise to support and warranty issues, and may cause confusion with the end users. In order to prevent such issues and to protect Cisco's brand and reputation we would like to ask you to observe the following guidelines when reselling non-Cisco GBIC's together with or already installed in any Cisco products you are reselling: Inform the end user of the fact that he is receiving a non-Cisco GBIC; Inform the end user that such a non-Cisco GBIC will not qualify for Cisco support;
Re: Multi Vlan and cat4006 sup3 [7:41571]
I just got a supIII installed in the lab a couple days ago and I don't see any multi vlan options aside from a trunk: C4006SUPIII(config-if)#switchport ? accessSet access mode characteristics of the interface host Set port host mode Set trunking mode of the interface nonegotiate Device will not engage in negotiation protocol on this interface private-vlan Set the private VLAN host association or promiscuous mapping trunk Set trunking characteristics of the interface C4006SUPIII(config-if)#switchport acc C4006SUPIII(config-if)#switchport access ? vlan Set VLAN when interface is in access mode As far as appletalk is concerned yes you need a appletalke capable router or bridge it. Dave As Cisco Breaker wrote: Hi All, Our customer wants to buy cat 4006 with sup3. But they use Appletalk. As I know the sup3 IOS doesnt support Appletalk routing yet, so I have to put a router for that, am I right? And also is it possible to assign the server's port into 2 vlans. If I can put the server's port which is on the switch to 2 Vlans (multi Vlan) it will be OK but is it possible? Any help will be appreciated. Best regards, Cisco Breaker -- David Madland Sr. Network Engineer CCIE# 2016 Qwest Communications Int. Inc. [EMAIL PROTECTED] 612-664-3367 Emotion should reflect reason not guide it Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=41596t=41571 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Boson and BCRAN/BCMSN [7:41597]
What Boson test is good for studying BCRAN? BCMSN? TIA. Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=41597t=41597 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Terminal server reverse telnet ? [7:41496]
Google rocks! Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=41598t=41496 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Fw: Last changes [7:41580]
Thank hktco, but what do you mean with newly bootup router?? Is this a feature of the IOS?? We have routers with the same IOS and similar configuration but some of them shows who made last changes and some of them don't I think this is a very interesting feature because you can see who made the last changes (very usefull when several users can modify configurations)Is there anybody who have the same doubt Thanks for your help -- Remitido por Miguel Angel Encinar Blazquez/UN23812/OPERACION Y MANTENIMIENTO/TSM con fecha 16/04/2002 15:45 --- 16/04/2002 13:58 hktco @groupstudy.com Por favor, responda a hktco Enviado por: [EMAIL PROTECTED] Destinatarios: [EMAIL PROTECTED] CC: Asunto: Fw: Last changes [7:41580] Newly bootup router does not provide the info. But once you start to modify the config, it shows you the time and by who the changes were made. And once you save the changes to the NVRAM, it shows you when and who saved the changes. hktco - Original Message - From: To: Sent: Tuesday, April 16, 2002 7:18 PM Subject: Last changes [7:41580] Hello everybody, I have one question for you. We have several routers that shows who and when made last changes in the configuration and who/when saved that changes in NVRAM. For example: Router# show run ... ... Current configuration : 2352 bytes ! ! Last configuration change at 11:45:15 UTC Tue Apr 9 by XXX ! NVRAM config last updated at 12:23:50 UTC Thu Apr 4 2002 by XXX ! ... ... How can I activate this messages in other routers?? We have other routers with the same IOS, almost the same configuration and they don't show these messages! I am very interested in this Thanks a lot! Mike. Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=41599t=41580 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Multi Vlan and cat4006 sup3 [7:41571]
Can you configure Appletalk routing between VLAN's on cat4006sup3? Best regards, MADMAN wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... I just got a supIII installed in the lab a couple days ago and I don't see any multi vlan options aside from a trunk: C4006SUPIII(config-if)#switchport ? accessSet access mode characteristics of the interface host Set port host mode Set trunking mode of the interface nonegotiate Device will not engage in negotiation protocol on this interface private-vlan Set the private VLAN host association or promiscuous mapping trunk Set trunking characteristics of the interface C4006SUPIII(config-if)#switchport acc C4006SUPIII(config-if)#switchport access ? vlan Set VLAN when interface is in access mode As far as appletalk is concerned yes you need a appletalke capable router or bridge it. Dave As Cisco Breaker wrote: Hi All, Our customer wants to buy cat 4006 with sup3. But they use Appletalk. As I know the sup3 IOS doesnt support Appletalk routing yet, so I have to put a router for that, am I right? And also is it possible to assign the server's port into 2 vlans. If I can put the server's port which is on the switch to 2 Vlans (multi Vlan) it will be OK but is it possible? Any help will be appreciated. Best regards, Cisco Breaker -- David Madland Sr. Network Engineer CCIE# 2016 Qwest Communications Int. Inc. [EMAIL PROTECTED] 612-664-3367 Emotion should reflect reason not guide it Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=41601t=41571 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: IOS Documentation [7:41577]
I have done this. In a large network CiscoWorks 2000 Resource Manager Essentials is invaluable. -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Tim Champion Sent: Tuesday, April 16, 2002 5:40 AM To: [EMAIL PROTECTED] Subject: IOS Documentation [7:41577] I have recently been asked to document the various IOS images used within our network to be used as a baseline. Has anyone had experience in putting together this kind of document? Many thanks in advance Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=41600t=41577 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
WIn 2K CA error with Cisco 2600 Routers, in VPN [7:41602]
Hi , I am facing a particular error , in my two routers , which are configured to enroll with the CA , which is the Win2K Advanced Server , setup with the cepsetup . I have got the routers enrolled with the CA server and the administrator on WIn2K server has also issued the certificates as well . As I give the command of crypto ca enroll xyz.com , it asks me for the password to create after which it gives me an error message of : R3(config)# Signing Certificate Reqeust Fingerprint: 9FBA1550 C448F5B0 A1073F33 BF4D4C99 Encryption Certificate Request Fingerprint: ADACBCA0 83E0352C B7106133 F03217ED 03:52:10: %CRYPTO-6-CERTREJECT: Certificate enrollment request was rejected by C ertificate Authority 03:52:11: %CRYPTO-6-CERTREJECT: Certificate enrollment request was rejected by C ertificate Authority what could be cause of this error , both of my routers are configurd properly , I am pasting there confis of the router below as well , do let me know what I should do . thanks, -- Navin Parwal Director Technosys tel: 91-141-372400 [EMAIL PROTECTED] R3#sh run Building configuration... Current configuration : 7328 bytes ! ! Last configuration change at 18:24:23 UTC Tue Apr 16 2002 ! NVRAM config last updated at 18:17:07 UTC Tue Apr 16 2002 ! version 12.2 service timestamps debug uptime service timestamps log uptime no service password-encryption ! hostname R3 ! ! memory-size iomem 10 ip subnet-zero ! ! ip domain-name xyz.com ip host server 192.168.255.2 ! ip audit notify log ip audit po max-events 100 ip ssh time-out 120 ip ssh authentication-retries 3 ! crypto ca identity xyz.com enrollment mode ra enrollment url http://server:80/certsrv/mscep/mscep.dll crl optional crypto ca certificate chain xyz.com certificate ra-sign 6169436B0007 308203CA 30820374 A0030201 02020A61 69436B00 07300D06 092A8648 86F70D01 01050500 306A3115 30130609 2A864886 F70D0109 01160670 61727761 6C310B30 09060355 04061302 494E3112 30100603 55040813 0972616A 61737468 FDBC2CAF 1625A3E4 D24F3F57 3F2C2DBD 2C9C1A5A 1123EDA1 348FECDE 54E8947D 16D77C4A FBAD quit ! call rsvp-sync ! ! ! ! ! ! ! ! interface Ethernet0/0 ip address 192.168.1.1 255.255.255.0 no keepalive half-duplex ! interface Serial0/0 ip address 172.16.1.1 255.255.255.252 no fair-queue ! interface Serial0/1 no ip address shutdown ! router rip network 172.16.0.0 network 192.168.1.0 network 192.168.2.0 network 192.168.255.0 ! ip classless ip http server ip pim bidir-enable ! ! dial-peer cor custom ! ! ! ! ! line con 0 line aux 0 line vty 0 4 ! no scheduler allocate end R3# R3#conf term Enter configuration commands, one per line. End with CNTL/Z. R3(config)#crypto ca enroll xyz.com % Start certificate enrollment .. % Create a challenge password. You will need to verbally provide this password to the CA Administrator in order to revoke your certificate. For security reasons your password will not be saved in the configuration. Please make a note of it. Password: Re-enter password: % The subject name in the certificate will be: R3.xyz.com % Include the router serial number in the subject name? [yes/no]: n % Include an IP address in the subject name? [yes/no]: n Request certificate from CA? [yes/no]: y % Certificate request sent to Certificate Authority % The certificate request fingerprint will be displayed. % The 'show crypto ca certificate' command will also show the fingerprint. R3(config)# Signing Certificate Reqeust Fingerprint: 9FBA1550 C448F5B0 A1073F33 BF4D4C99 Encryption Certificate Request Fingerprint: ADACBCA0 83E0352C B7106133 F03217ED 03:52:10: %CRYPTO-6-CERTREJECT: Certificate enrollment request was rejected by C ertificate Authority 03:52:11: %CRYPTO-6-CERTREJECT: Certificate enrollment request was rejected by C ertificate Authority R3(config)# R3(config)# Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=41602t=41602 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: silly encryption question [7:41583]
Tom, It's all about performance. Public key encryption/decryption such as DH is about 100-1000 times slower than the same process using shared key cryptography (it has to do with the type of algorithms required). Given this, the standard modus operandi is for two hosts to use public key cryptography to setup the shared key and then use shared key algorithms such as 3DES to achieve the best possible throughput for the least number of CPU cycles on each host. HTH, Kent -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Tom Monte Sent: Tuesday, April 16, 2002 5:01 AM To: [EMAIL PROTECTED] Subject: silly encryption question [7:41583] I am studying for my MCNS test. The Cisco Press book says that Diffie-Hillman public key encryption is used to create a secure channel to exchange DES private keys for data encryption. If Diffie-Hillman is secure enough to transfer the DES private keys, why not use it to transfer the data? This seems silly and needlessly complex. Can someone explain this? This e-mail and any files transmitted with it are intended solely for the person(s) to whom it is addressed. If you are not the intended recipient, please delete the message and all copies of it from your system, destroy any hard copies of it and contact the sender by return e-mail. Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=41603t=41583 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: IOS Documentation [7:41577]
Tim Champion wrote: I have recently been asked to document the various IOS images used within our network to be used as a baseline. Has anyone had experience in putting together this kind of document? Good question. I hope someone takes the time to answer. Documentation is one of the most important, and most neglected, aspects of the networking profession. Establishing a baseline is a good start. It includes not only traffic statistics but also configurations, cabling, logical and physical topologies, and anything else that might make the job of maintaining and troubleshooting a network an enjoyable challenge instead of the headache it can be without documentation. I have a potential customer who refuses to acknowledge the need for documentation. He's got an AVVID network that works just fine without having to hire a consultant to draw a bunch of diagrams as he puts it. The guy who installed it told him it was zero maintenance, and nothing I've said thus far can convince him otherwise. So I'm preparing a slideshow about network documentation and baselining. I'd appreciate any suggestions, horror stories, success stories, etc. My philosophy is: Plan for failure. I don't mean that in a pessimistic way. It's just that, given enough time, all networks fail in one way or another. Some events are disasters, others only an inconvenience that can be worked around and coped with by non-technical users. But in the long run, something serious will happen, It's our job to be prepared for that and to reduce the negative impact as much as possible. How do we convince clients to invest in baselining, contingency plans and the like? Does anyone have a good book on this? other than the usual ones, like the CIT cert exam preps and Semester 8 from the CNAP curriculum? Is there any specific book or chapter or website that gives a template for baselining, network documentation, contingency planning? -- TT Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=41604t=41577 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Swicthing and sniffing [7:41501]
Well.. on the big cats, 2900s and 1900s, you can set up a monitor port which gets a mirror of data from a port you specify. Works pretty well. You can sniff either port or specify a VLAN to be mirrored. I tend to use the hub as a quicky tool when I'm at an office and out of ports. On the cheapo switches like Linksys and Netgear, I dont know of any *mirror* function so it's drop and insert the hub. I'm sure other folks here have some tricks and tips.. MikeS Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=41606t=41501 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Signature for blocking telnet to SMTP server [7:41565]
Short answer: It's probably going to be impossible to write a signature that won't give you tons of false positives. The problem is that there is virutally no difference between someone manually typing mail commands via telnet to port 25 and a standard SMTP program sending the same commands. Long answer: There was an interesting thread on this topic recently on the firewalls mailing lists. Go to the archives here: http://www.nextrieve.com/knowledge/ and search in the firewalls list for 'telnet to port 25' for the year 2002 and you'll find some interesting tidbits related to trying to distinguish between a manual telnet to port 25 and a connection via an SMTP program. Bottom line, see the short answer. ;-) As far as writing custom sigs, see the Cisco docs, they show you how to do this. HTH, Kent -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Cisco Breaker Sent: Monday, April 15, 2002 11:52 PM To: [EMAIL PROTECTED] Subject: Signature for blocking telnet to SMTP server [7:41565] Hi, Is it possible to block telnet to SMTP server from port 25 with IDS. I want to create a custom signature for this but I don't know how this can be done. If I write a signature beginning with hello it will block all mail traffic because all of them starts with hello as I know. And are there any resources that tells how to write a custom signature. We are using CSPM 2.3.3i. Any help will be appreciated. Best regards, Cisco Breaker Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=41607t=41565 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Available Bandwidth on 2610 [7:41586]
You can change it with max-reserved-bandwidth command. Manuel Pajares wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... Cisco routers reserve 25% (this value can be changed, but is not recommended)for routing, layer 2, etc. traffic. You can use the rest (75%) when configuring QoS. From: Mark Rumfield Reply-To: Mark Rumfield To: [EMAIL PROTECTED] Subject: Available Bandwidth on 2610 [7:41586] Date: Tue, 16 Apr 2002 08:16:35 -0400 I have a 2610 with 3 serial interfaces. All 3 are point-to-point T1's. When you do a sho int, it shows bandwidth as 1544 Kbit, but it shows available bandwidth as 1158Kbit, no matter what the current load on the interface is. Routing protocal is OSPF. What does this really mean? And/or how is this available bandwidth determined? Serial1/0 is up, line protocol is up Hardware is DSCC4 with integrated T1 CSU/DSU Description: PTP to MB-West Internet address is 10.32.1.37/30 MTU 1500 bytes, BW 1544 Kbit, DLY 2 usec, reliability 255/255, txload 1/255, rxload 1/255 Encapsulation HDLC, loopback not set Keepalive set (10 sec) Last input 00:00:02, output 00:00:02, output hang never Last clearing of show interface counters 8w5d Input queue: 0/75/0/0 (size/max/drops/flushes); Total output drops: 0 Queueing strategy: weighted fair Output queue: 0/1000/64/0 (size/max total/threshold/drops) Conversations 0/10/256 (active/max active/max total) Reserved Conversations 0/0 (allocated/max allocated) Available Bandwidth 1158 kilobits/sec 5 minute input rate 0 bits/sec, 0 packets/sec 5 minute output rate 0 bits/sec, 0 packets/sec 53324797 packets input, 1426721882 bytes, 0 no buffer Received 622749 broadcasts, 0 runts, 4 giants, 0 throttles 16 input errors, 1 CRC, 9 frame, 0 overrun, 0 ignored, 0 abort 53203873 packets output, 3470780381 bytes, 0 underruns 0 output errors, 0 collisions, 1 interface resets 0 output buffer failures, 0 output buffers swapped out 2 carrier transitions DCD=up DSR=up DTR=up RTS=up CTS=up Thanks in advance! Mark Rumfield Network Engineer Enterprise Products [EMAIL PROTECTED] _ MSN Photos is the easiest way to share and print your photos: http://photos.msn.com/support/worldwide.aspx Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=41608t=41586 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Whats going to happen ? [7:41572]
Personally, I've never come across a situation where MAC-based VLANs were useful. Port-based membership is more practical/common. You can always enforce port-security based on MAC address, but still have the same problem with regard to if someone changes their NIC, it'll require a call to you to change things up to make them work. Mike W. I agree they aren't that useful, but they are in fairly common use with DSL and cable providers, who use the modem/router MAC address as a primitive form of security. And yes, equipment changes do cause problems. Irwan Hadi wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... Dear All, Suppose that I create a MAC based VLAN with for example 100 computers. All of these computers either will get IP from the DHCP for the 10.0.1.0/24 IP block, or they can hard wired their own IP provided that the IP is their own, and it is in the 10.0.1.0/24 subnet. Now suppose one person changes his NIC at his computer. This of course will makes the switch won't recognize his new MAC address, and hard wired his IP to the one at 10.0.1.0/24. My question is will his connection get bumped out from the network ? Thanks -- What Problem are you trying to solve? ***send Cisco questions to the list, so all can benefit -- not directly to me*** Howard C. Berkowitz [EMAIL PROTECTED] Chief Technology Officer, GettLab/Gett Communications http://www.gettlabs.com Technical Director, CertificationZone.com http://www.certificationzone.com retired Certified Cisco Systems Instructor (CID) #93005 Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=41610t=41572 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Signature for blocking telnet to SMTP server [7:41565]
well, if you are reffering to telnet just because somebody brings up a telnet app to connect to a certain port, (in this case, 25) your signature would not be based on the correct conversation between the telnet client and smtp server...rather base it on incorrect/non standard/delayed conversations. check out the rfc's (watch wrap) http://www.google.com/search?sourceid=navclientquerytime=4Cgy2q=smtp+rfc and if you find that for some reason, yoru yahoo mail can't get through, make changes accordingly... Run tcpdump on a linux box simultaneously on the same port you have your mail server on and watch the conversation from various mail exchanges. there's only so many out there...regardless of frontend, it's going to be postfix, sendmail, groupwise,lotus,M$,etc.. -Patrick You may also want to try searching for signatures already built. http://www.google.com/search?hl=enq=smtp+ids+signature Cisco Breaker 04/16/02 02:51AM Hi, Is it possible to block telnet to SMTP server from port 25 with IDS. I want to create a custom signature for this but I don't know how this can be done. If I write a signature beginning with hello it will block all mail traffic because all of them starts with hello as I know. And are there any resources that tells how to write a custom signature. We are using CSPM 2.3.3i. Any help will be appreciated. Best regards, Cisco Breaker Confidentiality Disclaimer This email and any files transmitted with it may contain confidential and /or proprietary information in the possession of WellStar Health System, Inc. (WellStar) and is intended only for the individual or entity to whom addressed. This email may contain information that is held to be privileged, confidential and exempt from disclosure under applicable law. If the reader of this message is not the intended recipient, you are hereby notified that any unauthorized access, dissemination, distribution or copying of any information from this email is strictly prohibited, and may subject you to criminal and/or civil liability. If you have received this email in error, please notify the sender by reply email and then delete this email and its attachments from your computer. Thank you. Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=41609t=41565 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: IPX EIGRP Metrics [7:41585]
You might consider using static routes since, as you say, it's only temporary. Is there such a thing as a floating static route for IPX? Never tried it. -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] Sent: Tuesday, April 16, 2002 8:10 AM To: [EMAIL PROTECTED] Subject: IPX EIGRP Metrics [7:41585] Is there any way to alter the metrics of IPX EIGRP other than changing the bandwidth on an interface? Specifically, I want to route IPX traffic over a 40Mbs link instead of a 100Mbs temporarily, and I don't want to alter the bandwidth on the interface as it will affect the IP routing. Thank you in advance. Steve Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=41605t=41585 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: IOS Documentation [7:41577]
You can do a snmpwalk on the router to grab that info. -Neil On Tue, 16 Apr 2002, Tom Scott wrote: Tim Champion wrote: I have recently been asked to document the various IOS images used within our network to be used as a baseline. Has anyone had experience in putting together this kind of document? Good question. I hope someone takes the time to answer. Documentation is one of the most important, and most neglected, aspects of the networking profession. Establishing a baseline is a good start. It includes not only traffic statistics but also configurations, cabling, logical and physical topologies, and anything else that might make the job of maintaining and troubleshooting a network an enjoyable challenge instead of the headache it can be without documentation. I have a potential customer who refuses to acknowledge the need for documentation. He's got an AVVID network that works just fine without having to hire a consultant to draw a bunch of diagrams as he puts it. The guy who installed it told him it was zero maintenance, and nothing I've said thus far can convince him otherwise. So I'm preparing a slideshow about network documentation and baselining. I'd appreciate any suggestions, horror stories, success stories, etc. My philosophy is: Plan for failure. I don't mean that in a pessimistic way. It's just that, given enough time, all networks fail in one way or another. Some events are disasters, others only an inconvenience that can be worked around and coped with by non-technical users. But in the long run, something serious will happen, It's our job to be prepared for that and to reduce the negative impact as much as possible. How do we convince clients to invest in baselining, contingency plans and the like? Does anyone have a good book on this? other than the usual ones, like the CIT cert exam preps and Semester 8 from the CNAP curriculum? Is there any specific book or chapter or website that gives a template for baselining, network documentation, contingency planning? -- TT Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=41612t=41577 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
OSPF vs EIGRP [7:41613]
What experiences have people had in setting up and maintaining OSPF vs EIGRP on a large network? I'm aware of the proprietary implications of EIGRP and the basic differences in design of the protocols - how they are _supposed_ to work, but, in practice, would you say one is more stable / dependable / manageable than the other? Also, what about OSPF between Cisco and non-Cisco products? Do they always work together like they're supposed to? If you have some first-hand experience with this, I'd really like to hear about it. Thanks, Doug. Douglas Madory,1st Lt Flt CC, C4I Systems 603 ACS / LGC UVA '99 WAHOOWA! Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=41613t=41613 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Multi Vlan and cat4006 sup3 [7:41571]
Sup3 is IP only right nowCome One Cisco at least get the IPX on there. -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Cisco Breaker Sent: Tuesday, April 16, 2002 9:04 AM To: [EMAIL PROTECTED] Subject: Re: Multi Vlan and cat4006 sup3 [7:41571] Can you configure Appletalk routing between VLAN's on cat4006sup3? Best regards, MADMAN wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... I just got a supIII installed in the lab a couple days ago and I don't see any multi vlan options aside from a trunk: C4006SUPIII(config-if)#switchport ? accessSet access mode characteristics of the interface host Set port host mode Set trunking mode of the interface nonegotiate Device will not engage in negotiation protocol on this interface private-vlan Set the private VLAN host association or promiscuous mapping trunk Set trunking characteristics of the interface C4006SUPIII(config-if)#switchport acc C4006SUPIII(config-if)#switchport access ? vlan Set VLAN when interface is in access mode As far as appletalk is concerned yes you need a appletalke capable router or bridge it. Dave As Cisco Breaker wrote: Hi All, Our customer wants to buy cat 4006 with sup3. But they use Appletalk. As I know the sup3 IOS doesnt support Appletalk routing yet, so I have to put a router for that, am I right? And also is it possible to assign the server's port into 2 vlans. If I can put the server's port which is on the switch to 2 Vlans (multi Vlan) it will be OK but is it possible? Any help will be appreciated. Best regards, Cisco Breaker -- David Madland Sr. Network Engineer CCIE# 2016 Qwest Communications Int. Inc. [EMAIL PROTECTED] 612-664-3367 Emotion should reflect reason not guide it Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=41614t=41571 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: IPX EIGRP Metrics [7:41585]
Steve, What IP routing protcol are you using? If you're using an IP routing protocol that only routes based on bandwidth (ie OSPF) you should be able to influence the IPX EIGRP routing decisions by changing the delay on the interface. If you're using EIGRP as your IP routing protcol as well, that doesn't do you much good. From there you have two possible solutions I can think of. One would be to change the bandwidth or delay to get your IPX traffic to do what you want, then use policy routing to force your IP traffic to do what you want. That sounds like the simplest approach. Your other option would be to tune the metrics under IP EIGRP so that they don't take delay into account, then change the delay on the interface however you see fit. I don't know if changing the metric weights in IP EIGRP would affect IPX EIGRP, so I'd shy away from that if at all possible. hth, Hal -Original Message- From: Stephen Barlow [mailto:[EMAIL PROTECTED]] Sent: Tuesday, April 16, 2002 8:10 AM To: [EMAIL PROTECTED] Subject: IPX EIGRP Metrics [7:41585] Is there any way to alter the metrics of IPX EIGRP other than changing the bandwidth on an interface? Specifically, I want to route IPX traffic over a 40Mbs link instead of a 100Mbs temporarily, and I don't want to alter the bandwidth on the interface as it will affect the IP routing. Thank you in advance. Steve Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=41615t=41585 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Multi Vlan and cat4006 sup3 [7:41571]
No appletalk or IPX, ya life is getting better :) Dave Cisco Breaker wrote: Can you configure Appletalk routing between VLAN's on cat4006sup3? Best regards, MADMAN wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... I just got a supIII installed in the lab a couple days ago and I don't see any multi vlan options aside from a trunk: C4006SUPIII(config-if)#switchport ? accessSet access mode characteristics of the interface host Set port host mode Set trunking mode of the interface nonegotiate Device will not engage in negotiation protocol on this interface private-vlan Set the private VLAN host association or promiscuous mapping trunk Set trunking characteristics of the interface C4006SUPIII(config-if)#switchport acc C4006SUPIII(config-if)#switchport access ? vlan Set VLAN when interface is in access mode As far as appletalk is concerned yes you need a appletalke capable router or bridge it. Dave As Cisco Breaker wrote: Hi All, Our customer wants to buy cat 4006 with sup3. But they use Appletalk. As I know the sup3 IOS doesnt support Appletalk routing yet, so I have to put a router for that, am I right? And also is it possible to assign the server's port into 2 vlans. If I can put the server's port which is on the switch to 2 Vlans (multi Vlan) it will be OK but is it possible? Any help will be appreciated. Best regards, Cisco Breaker -- David Madland Sr. Network Engineer CCIE# 2016 Qwest Communications Int. Inc. [EMAIL PROTECTED] 612-664-3367 Emotion should reflect reason not guide it -- David Madland Sr. Network Engineer CCIE# 2016 Qwest Communications Int. Inc. [EMAIL PROTECTED] 612-664-3367 Emotion should reflect reason not guide it Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=41616t=41571 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: 2520 DRAM [7:41594]
Hi Richard, your total DRAM is 14336+2048=16348K. The number before the slash (14336) is the amount of DRAM allocated for local memory, and the number after the slash (2048) is the amount of DRAM allocxated for I/O Memory. Which IOS feature set are you trying to load ? 16MB should be enough for most sets... Regards, Georg Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=41617t=41594 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: IOS Documentation [7:41577]
My selling point on documentation is that it's like carrying car insurance. Most of the time you don't really need it, but when you do need it you spend a lot less because you have it. Of course, the same people who don't want their network documented probably wouldn't carry automotive insurance if it weren't required by law, so you're back to square one. -Original Message- From: Tom Scott [mailto:[EMAIL PROTECTED]] Sent: Tuesday, April 16, 2002 10:26 AM To: [EMAIL PROTECTED] Subject: Re: IOS Documentation [7:41577] Tim Champion wrote: I have recently been asked to document the various IOS images used within our network to be used as a baseline. Has anyone had experience in putting together this kind of document? Good question. I hope someone takes the time to answer. Documentation is one of the most important, and most neglected, aspects of the networking profession. Establishing a baseline is a good start. It includes not only traffic statistics but also configurations, cabling, logical and physical topologies, and anything else that might make the job of maintaining and troubleshooting a network an enjoyable challenge instead of the headache it can be without documentation. I have a potential customer who refuses to acknowledge the need for documentation. He's got an AVVID network that works just fine without having to hire a consultant to draw a bunch of diagrams as he puts it. The guy who installed it told him it was zero maintenance, and nothing I've said thus far can convince him otherwise. So I'm preparing a slideshow about network documentation and baselining. I'd appreciate any suggestions, horror stories, success stories, etc. My philosophy is: Plan for failure. I don't mean that in a pessimistic way. It's just that, given enough time, all networks fail in one way or another. Some events are disasters, others only an inconvenience that can be worked around and coped with by non-technical users. But in the long run, something serious will happen, It's our job to be prepared for that and to reduce the negative impact as much as possible. How do we convince clients to invest in baselining, contingency plans and the like? Does anyone have a good book on this? other than the usual ones, like the CIT cert exam preps and Semester 8 from the CNAP curriculum? Is there any specific book or chapter or website that gives a template for baselining, network documentation, contingency planning? -- TT Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=41618t=41577 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Whats going to happen ? [7:41572]
I've never heard the term MAC-based VLAN before. Is this a reference to the use of VMPS? We considered doing VMPS for MAC based VLAN assignments, but ran into several issues, one of which was the fact that we have Cat3548 clusters that, while there are as many as 9 switches in the cluster, have only one IP address for the stack. The VMPS protocol specifies that when an access switch sends a VMPS request to the VMPS server, it identifies itself using it's own IP address and the port# that the device is trying to connect to. With a building of over 800 employees, managing this type of system would be pretty intensive because you need the MAC address of EVERY PC in the building that you desire to assign to a VLAN, typically with unkown's going into the fallback VLAN. -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Howard C. Berkowitz Sent: Tuesday, April 16, 2002 11:02 AM To: [EMAIL PROTECTED] Subject: Re: Whats going to happen ? [7:41572] Personally, I've never come across a situation where MAC-based VLANs were useful. Port-based membership is more practical/common. You can always enforce port-security based on MAC address, but still have the same problem with regard to if someone changes their NIC, it'll require a call to you to change things up to make them work. Mike W. I agree they aren't that useful, but they are in fairly common use with DSL and cable providers, who use the modem/router MAC address as a primitive form of security. And yes, equipment changes do cause problems. Irwan Hadi wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... Dear All, Suppose that I create a MAC based VLAN with for example 100 computers. All of these computers either will get IP from the DHCP for the 10.0.1.0/24 IP block, or they can hard wired their own IP provided that the IP is their own, and it is in the 10.0.1.0/24 subnet. Now suppose one person changes his NIC at his computer. This of course will makes the switch won't recognize his new MAC address, and hard wired his IP to the one at 10.0.1.0/24. My question is will his connection get bumped out from the network ? Thanks -- What Problem are you trying to solve? ***send Cisco questions to the list, so all can benefit -- not directly to me*** Howard C. Berkowitz [EMAIL PROTECTED] Chief Technology Officer, GettLab/Gett Communications http://www.gettlabs.com Technical Director, CertificationZone.com http://www.certificationzone.com retired Certified Cisco Systems Instructor (CID) #93005 Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=41619t=41572 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: OSPF vs EIGRP [7:41613]
I currently manage a Large network (300) routers running OSPF and IPX. When I first got here the network was Proteon routers. The routers were severely limited in memory. Think 2500's with 8Mb RAM. We had a Cisco 5500 w/ RSM in the core and started to replace the Proteons with Bay ASN. So we had a Proteon/Cisco/Bay OSPF network. The only vendor compatibility problems were Proteon vs. everything else. The Bay's and Cisco's worked together fine. The IPX network is very large. 900 routes and 3500 SAP's. The Bay couldn't handle it. Honestly they were underspec'd (done before I got here). So the customer decided to replace the Bay with Cisco. We now have 2 7206VXR's in the core and 300+ 2600's in the remotes with about 20 3600's in regional centers. I like OSPF because or all the built in tweaks with different areas etc. I know of a much larger network here locally running BGP and EIGRP. You can do lot's with EIGRP in terms of different AS's and summarization. They have done some innovative things with the network and it works very well. In essence they have made an EIGRP network look and behave like an OSPF network. I would also look at IS-IS. It is a clean, neat protocol. I know many who aren't in the SP area are scared of IS-IS but it is a great protocol. Think OSPF without the Area 0 concept. You create different Areas of L1 routers and tie them together with L1/L2 routers. The primary problem in any large network is memory consumption on the routers. If all the routers must maintain full routing tables you can eat up a lot of memory. Whether you go OSPF, EIGRP, or IS-IS, you need to segment the network into logical summarization boundaries. I would draw out your network from a layer-2 perspective, find the logical boundaries for summarization, and then see what works for a routing protocol. In a poorly designed large network it doesn't matter if you are running OSPF, EIGRP, or IS-IS. Have I done a good job of not answering your question??? Email me if you want to discuss this further. Bill Carter CCIE 5022 -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Madory Douglas C 1Lt 603 ACS/LGC Sent: Tuesday, April 16, 2002 10:21 AM To: [EMAIL PROTECTED] Subject: OSPF vs EIGRP [7:41613] What experiences have people had in setting up and maintaining OSPF vs EIGRP on a large network? I'm aware of the proprietary implications of EIGRP and the basic differences in design of the protocols - how they are _supposed_ to work, but, in practice, would you say one is more stable / dependable / manageable than the other? Also, what about OSPF between Cisco and non-Cisco products? Do they always work together like they're supposed to? If you have some first-hand experience with this, I'd really like to hear about it. Thanks, Doug. Douglas Madory,1st Lt Flt CC, C4I Systems 603 ACS / LGC UVA '99 WAHOOWA! Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=41620t=41613 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
OT: Website File Management Software [7:41621]
Wyyy OT. sorry. :-) Right now we have a couple of web servers with identical content and all file updates must be handled manually by myself or someone else in my group because we're the only ones with access to the secure part of our network. Even with only two servers, it gets to be a pain to manually copy files out to the web servers, especially since certain files can change multiple times per day. I'm thinking that companies that have a lot of servers, especially 'mirrored' servers, must have a better way of managing all of this and perhaps automating a portion of it. However, I don't even really know where to start looking. Do you know what products might be out there to handle this particular issue? Thanks, John Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=41621t=41621 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: OSPF question [7:41611]
Can you show us the rest of the config of R5-2602? Are you using any filtering? (i.e. distribute-lists/route-maps). I've seen routes (LSAs) in the OSPF database and not in the routing table due to filtering. What about clearing the route table? Curious - Is this the entire routing table? Because you don't have any OSPF routes in this table at all. -chris Hi, Group, I am having trouble with this OSPF configuration. Router R5-2602 in Area 0 learned a route from Area 1 from Router 6.6.6.6 , as shown as Summary Net link. Router 6.6.6.6 is the ABR. But this route does not appear in routing table, only in OSPF database. Anyone know why and how to fix it. Thanks Ruihai R5-2602#sh ip ospf da OSPF Router with ID (5.5.5.5) (Process ID 10) Router Link States (Area 0) Link ID ADV Router Age Seq# Checksum Link count 5.5.5.5 5.5.5.5 92 0x8002 0xB4D4 3 6.6.6.6 6.6.6.6 92 0x8003 0xBEFB 1 Net Link States (Area 0) Link ID ADV Router Age Seq# Checksum 150.100.2.6 6.6.6.6 93 0x8001 0x1F2 Summary Net Link States (Area 0) Link ID ADV Router Age Seq# Checksum 150.100.50.40 6.6.6.6 213 0x8001 0xFAD1 R5-2602# R5-2602#sh ip ospf ne Neighbor ID Pri State Dead Time Address Interface 6.6.6.6 1 FULL/ -00:01:47150.100.2.6 Serial0/0 R5-2602#sh ip route 1.0.0.0/24 is subnetted, 1 subnets C 1.2.3.0 is directly connected, FastEthernet0/1 S209.123.45.0/24 [1/0] via 192.168.1.1 65.0.0.0/24 is subnetted, 1 subnets S 65.215.18.0 [1/0] via 192.168.1.1 5.0.0.0/24 is subnetted, 1 subnets C 5.5.5.0 is directly connected, Loopback0 C192.168.1.0/24 is directly connected, FastEthernet0/1 150.100.0.0/16 is variably subnetted, 2 subnets, 2 masks C 150.100.2.0/23 is directly connected, Serial0/0 C 150.100.10.0/24 is directly connected, FastEthernet0/0 Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=41622t=41611 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Know of any good internetworking programs? [7:41468]
There are several books in print that are classroom oriented in that they explain the theory with the underlying math. Can others mention some? See if you can contact Doug Comer at Purdue University. The following info is several years old. Hope that it is still current. e-mail [EMAIL PROTECTED] web: http://www.cs.purdue.edu/people/comer He is the author/co-author of a series of books on TCP/IP. (among others) He regularly teaches workshops at Networld+Interop. He was one of several professors who attempted to create a part time high level networking academy for those already in the workforce. -Original Message- From: Greg Reaume [mailto:[EMAIL PROTECTED]] Sent: Monday, April 15, 2002 3:20 AM To: [EMAIL PROTECTED] Subject: OT: Know of any good internetworking programs? [7:41468] Hi all, I am currently a college student that will be receiving a diploma in Telecommunications Technology (http://www.telecomtech.org) from Sheridan College (http://www.sheridanc.on.ca) in Dec 2002. I have decided that I wish to pursue a bachelors degree and possibly a masters thereafter, specifically an engineering degree. After browsing local university program calendars I find that most programs with any telecommunications content are generally labeled, Electrical Engineering with a 'Specialization' in Telecommunications. I spoke to my current professors, who both have these degrees, and they say that the telecommunications content is a joke for the application in todays market unless you are looking only to deal with layer 1 technologies. Though my current program has provided me with an exceptional base of conceptual and technical knowledge, I feel the need to go deeper and truly understand the engineering detail of all this. I want to attend a program, International if I must, that was built from the ground up as an Internetwork Engineering program. A program with content focus above layer 1. I understand that all good engineering programs will contain advanced math and that all telecommunications oriented programs will contain electronics and physical layer material, though I do not want this to dominate the curriculum. I have found such programs as Internet Engineering (http://www.uow.edu.au/discover/courses/yr2002/benginternet.html) and Telecommunications Engineering (http://www.uow.edu.au/discover/courses/yr2002/cour736.html) in my brief and mostly futile searches, though only in 1 Australian University, Wollongong University. I post this here because I know that there are many knowledgeable and industry-aware poeple here, some of whom have made quite a name for themselves in our field. I figure that with the wealth of knowledge observing this forum there must be someone, that who themselves or through their associations, know of 'the' program I am looking for. I would greatly appreciate any leads or information anyone may be able to provide. Thanks for your time, Greg PS. I think this industry is in serious need of some type of educational search engine. In the short time I've spent on educational search pages I've found not one that specifically lists even a category acutely appropriate for the internetworking field. I am quite confident, being in a field related program and seeing the obvious void in this area, that such a definative resource would be a hit among seasoned academics and post-secondary students alike, wishing to extend their knowledge. Just a thought for anyone up to the challenge. :) Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=41623t=41468 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Stupid Question time [7:41465]
CCxx Productions and, soon, Network Learning. Disclaimer: I have also written materials for CCxx Productions and am working on some stuff for Network Learning -Original Message- From: Tom Monte [SMTP:[EMAIL PROTECTED]] Sent: Tuesday, April 16, 2002 8:00 AM To: 'Kaminski, Shawn G' Subject: RE: Stupid Question time [7:41465] what are the other options that are as good as Boson and cheaper? -Original Message- From: Kaminski, Shawn G [mailto:[EMAIL PROTECTED]] Sent: Tuesday, April 16, 2002 7:06 AM To: [EMAIL PROTECTED] Subject: RE: Stupid Question time [7:41465] What the hell, get them all. In fact, buy two sets since money seems to be no object to any of you. :-) I still can't understand all the hype over Boson when there are much better and less expensive alternatives out there. Hell, I've even written materials for Boson/Quizware but still feel that everyone could pass their exams using less expensive methods. Just my opinion because this forum is for helping people out. So look around a little before rushing out to buy the almighty overpriced Boson. Sorry, just a little grumpy this morning. I think I just realized how underpaid I really am! Just thankful to have a job right now, though! Shawn K. -Original Message- From: Kris Keen [SMTP:[EMAIL PROTECTED]] Sent: Tuesday, April 16, 2002 12:14 AM To: [EMAIL PROTECTED] Subject:Re: Stupid Question time [7:41465] Champ , cheers What Boson do you recommend? is yours, #3 the best or should I get them all? This e-mail and any files transmitted with it are intended solely for the person(s) to whom it is addressed. If you are not the intended recipient, please delete the message and all copies of it from your system, destroy any hard copies of it and contact the sender by return e-mail. Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=41624t=41465 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: 100Mbit cable can't shorter than 6 feets????? [7:41448]
I found this info on the Krone web site, the page was titled Length Matters Patch cords are an integral - and often overlooked - part of your network's cabling. Transmission protocols on today's networks run at specified frequencies. When those frequencies are interrupted or compromised with patch cords of random or unspecified lengths, the disturbance created causes signal loss and corrupted data flow. TrueNet patch cords are designed and manufactured at specified lengths - 4, 7, 10, and 15 feet - to correspond to the critical wavelengths of transmission frequencies. An average of all the key frequencies - 10, 100, Gigabit Ethernet, and ATM 155/622- was used to determine the optimal lengths for data transmission. Ryan -Original Message- From: Sim, CT (Chee Tong) [mailto:[EMAIL PROTECTED]] Sent: Sunday, April 14, 2002 7:46 PM To: [EMAIL PROTECTED] Subject: 100Mbit cable can't shorter than 6 feets? [7:41448] Hi.. everyone, My friend told me that 100Mbit cable can't SHORTER than 6 feets. Have everyone heard that this theory ? If yes, what is the reason or he is bull shitting. Tong == De informatie opgenomen in dit bericht kan vertrouwelijk zijn en is uitsluitend bestemd voor de geadresseerde. Indien u dit bericht onterecht ontvangt wordt u verzocht de inhoud niet te gebruiken en de afzender direct te informeren door het bericht te retourneren. == The information contained in this message may be confidential and is intended to be exclusively for the addressee. Should you receive this message unintentionally, please do not use the contents herein and notify the sender immediately by return e-mail. == Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=41625t=41448 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Stupid Question time [7:41465]
CCxx Productions, and soon, Network Learning. Disclaimer: I have written materials for CCxx Productions and am working on stuff for Network Learning -Original Message- From: Michael L. Williams [SMTP:[EMAIL PROTECTED]] Sent: Tuesday, April 16, 2002 8:18 AM To: [EMAIL PROTECTED] Subject: Re: Stupid Question time [7:41465] Name one alternative that's cheaper AND offers the flexibility, options (like toggling the score meter, showing answers ONLY when you're wrong WITH references to published explanations of the answers), and quality (not so say I've never seen a wrong answer on a Boson exam, but way better than the quality of a Brainbuzz cramsheet, etc). I don't mean my above comment in a smart ass way, because I'd really be interested in an alternative, but to simply pop into the group and make such statements without even a single URL or name of what you consider much better and less expensive doesn't lend much credibility to what you say. Mike W. Kaminski, Shawn G wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... What the hell, get them all. In fact, buy two sets since money seems to be no object to any of you. :-) I still can't understand all the hype over Boson when there are much better and less expensive alternatives out there. Hell, I've even written materials for Boson/Quizware but still feel that everyone could pass their exams using less expensive methods. Just my opinion because this forum is for helping people out. So look around a little before rushing out to buy the almighty overpriced Boson. Sorry, just a little grumpy this morning. I think I just realized how underpaid I really am! Just thankful to have a job right now, though! Shawn K. -Original Message- From: Kris Keen [SMTP:[EMAIL PROTECTED]] Sent: Tuesday, April 16, 2002 12:14 AM To: [EMAIL PROTECTED] Subject: Re: Stupid Question time [7:41465] Champ , cheers What Boson do you recommend? is yours, #3 the best or should I get them all? Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=41626t=41465 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: 2520 DRAM [7:41594]
Thanks Georg! Much obliged for the information. If I'm not mistaken most all feature sets for the 2520 can be run on 16MB/16MB dram/flash configuration?! Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=41627t=41594 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Website File Management Software [7:41621]
Use wget's mirror feature. Clayton Dukes Cisco Info Center SE Micromuse, Inc. CCNA, CCDA, CCDP, CCNP, NCC (h) 904-292-1881 (c) 904-477-7825 - Original Message - From: John Neiberger To: Sent: Tuesday, April 16, 2002 12:25 PM Subject: OT: Website File Management Software [7:41621] Wyyy OT. sorry. :-) Right now we have a couple of web servers with identical content and all file updates must be handled manually by myself or someone else in my group because we're the only ones with access to the secure part of our network. Even with only two servers, it gets to be a pain to manually copy files out to the web servers, especially since certain files can change multiple times per day. I'm thinking that companies that have a lot of servers, especially 'mirrored' servers, must have a better way of managing all of this and perhaps automating a portion of it. However, I don't even really know where to start looking. Do you know what products might be out there to handle this particular issue? Thanks, John Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=41628t=41621 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
WANTED!! MCS-7822/ COMPAQ DL320 [7:41630]
Guys, I urgently need to buy a secondhand callmanager kit and just wondering if any of you have one to sell or point me in the right direction. Thanks - George. Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=41630t=41630 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Stupid Question time [7:41465]
I didn't just pop into the group. I have been a member of this group for quite a while. I don't post very often because I find it nearly impossible to go over every message that comes into the group and try to offer a solution because of my job (Network Engineer at EDS) and all my other activities. I don't know how some of you guys and gals do it, but appreciate all the time you put into this and the answers you provide. I have learned more from this group than you can imagine. I usually post answers to certification questions because I have written many practice tests for CCxx Productions, did some work with Boson/Quizware, and am currently working on stuff for Network Learning (NLI). I have done a lot of research on this kind of stuff and you wouldn't believe the rip-offs out there. I believe that Boson has good quality products, but I'm just trying to let people know that there are other alternatives besides Boson, Boson, Boson. It's like a cult with this group. Even though I have a financial interest in most of these companies, I want to help people out by letting them know that there are other quality options that can save people a lot of money. I mean, would you rather spend $119.85 for all the Boson CCIE Written materials or spend $29.95 with CCxx and get it all in one package? Shawn K. -Original Message- From: Michael L. Williams [SMTP:[EMAIL PROTECTED]] Sent: Tuesday, April 16, 2002 8:18 AM To: [EMAIL PROTECTED] Subject: Re: Stupid Question time [7:41465] Name one alternative that's cheaper AND offers the flexibility, options (like toggling the score meter, showing answers ONLY when you're wrong WITH references to published explanations of the answers), and quality (not so say I've never seen a wrong answer on a Boson exam, but way better than the quality of a Brainbuzz cramsheet, etc). I don't mean my above comment in a smart ass way, because I'd really be interested in an alternative, but to simply pop into the group and make such statements without even a single URL or name of what you consider much better and less expensive doesn't lend much credibility to what you say. Mike W. Kaminski, Shawn G wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... What the hell, get them all. In fact, buy two sets since money seems to be no object to any of you. :-) I still can't understand all the hype over Boson when there are much better and less expensive alternatives out there. Hell, I've even written materials for Boson/Quizware but still feel that everyone could pass their exams using less expensive methods. Just my opinion because this forum is for helping people out. So look around a little before rushing out to buy the almighty overpriced Boson. Sorry, just a little grumpy this morning. I think I just realized how underpaid I really am! Just thankful to have a job right now, though! Shawn K. -Original Message- From: Kris Keen [SMTP:[EMAIL PROTECTED]] Sent: Tuesday, April 16, 2002 12:14 AM To: [EMAIL PROTECTED] Subject: Re: Stupid Question time [7:41465] Champ , cheers What Boson do you recommend? is yours, #3 the best or should I get them all? Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=41631t=41465 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Signature for blocking telnet to SMTP server [7:41565]
When people Telnet to SMTP server, what do they then do? Do they manually send the normal SMTP commands? Sorry, if that's a dumb question, but I'm just trying to figure out the situation. If they are not Telnetting in order to send ordinary SMTP commands (HELO, RSET, RCPT, DATA, etc). then of course, you could recognize them because by what they aren't doing. Let's say they are sending ordinary SMTP commands. Would it be possible then to recognize this by the timing? Even the fastest typist can't send those commands as fast as e-mail software can. That's my $0.0010. Please do answer, though. I'm trying to learn more about this curious thing of Telnetting to ports other than 23. Priscilla At 02:51 AM 4/16/02, Cisco Breaker wrote: Hi, Is it possible to block telnet to SMTP server from port 25 with IDS. I want to create a custom signature for this but I don't know how this can be done. If I write a signature beginning with hello it will block all mail traffic because all of them starts with hello as I know. And are there any resources that tells how to write a custom signature. We are using CSPM 2.3.3i. Any help will be appreciated. Best regards, Cisco Breaker Priscilla Oppenheimer http://www.priscilla.com Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=41632t=41565 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: IOS Documentation [7:41577]
At 11:18 AM 4/16/02, Neil Moore wrote: You can do a snmpwalk on the router to grab that info. -Neil That's a good idea. Regarding baselining and network documentation, I cover it in Top-Down Network Design. It think it is of utmost importance. A lot of real engineers are sick of hearing about it though. They think they can gut out any network downtime with hard work and perseverance. ;-) It's a personality thing. Some people don't even balance their checkbooks. When talking to these real engineers, try to avoid all the buzz words they've heard before. Make sure not to sound like you're coming from the ivory tower or that you learned your style from Catbert. Keep the discussion focused on the practical consequences of not having documentation and baselines. There is also a new book out from Cisco Press called Network Consultants Handbook. I haven't read it, but it looks good and seems to cover what you want. To quote Cisco Press, it is a complete resource for assessing, auditing, analyzing, and evaluating any network environment. You can download templates for documentation that the author developed from Cisco Press's Web site. Priscilla On Tue, 16 Apr 2002, Tom Scott wrote: Tim Champion wrote: I have recently been asked to document the various IOS images used within our network to be used as a baseline. Has anyone had experience in putting together this kind of document? Good question. I hope someone takes the time to answer. Documentation is one of the most important, and most neglected, aspects of the networking profession. Establishing a baseline is a good start. It includes not only traffic statistics but also configurations, cabling, logical and physical topologies, and anything else that might make the job of maintaining and troubleshooting a network an enjoyable challenge instead of the headache it can be without documentation. I have a potential customer who refuses to acknowledge the need for documentation. He's got an AVVID network that works just fine without having to hire a consultant to draw a bunch of diagrams as he puts it. The guy who installed it told him it was zero maintenance, and nothing I've said thus far can convince him otherwise. So I'm preparing a slideshow about network documentation and baselining. I'd appreciate any suggestions, horror stories, success stories, etc. My philosophy is: Plan for failure. I don't mean that in a pessimistic way. It's just that, given enough time, all networks fail in one way or another. Some events are disasters, others only an inconvenience that can be worked around and coped with by non-technical users. But in the long run, something serious will happen, It's our job to be prepared for that and to reduce the negative impact as much as possible. How do we convince clients to invest in baselining, contingency plans and the like? Does anyone have a good book on this? other than the usual ones, like the CIT cert exam preps and Semester 8 from the CNAP curriculum? Is there any specific book or chapter or website that gives a template for baselining, network documentation, contingency planning? -- TT Priscilla Oppenheimer http://www.priscilla.com Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=41634t=41577 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
OT: Need blank plates for Catalyst 5505 [7:41635]
Sorry for the off topic post, but does anyone have a power supply and 2 line card blank cover plates for a catalyst 5505 at a reasonable price? Thanks! __ Thomas Crowe Senior Systems Engineer / Senior Architect EMC Proven Master Architect CTS Professional Services - Atlanta __ [GroupStudy.com removed an attachment of type text/x-vcard which had a name of Thomas Crowe.vcf] Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=41635t=41635 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: OSPF vs EIGRP [7:41613]
Also, what about OSPF between Cisco and non-Cisco products? Do they always work together like they're supposed to? Doug, I've worked with OSPF in a multi-vendor environment and had no problems. All the required parameters in the Hello packets were met and neigh/adj's were established with no configuration changes needed. You need Area ID, Stub Flag, Auth and Hello/Dead Intervals to match. If you have problems getting neighbors to form, look for mismatches in the Hello packets. I can't answer your other questions from first hand experience. But I've heard other people comment that EIGRP tends to let you be 'sloppier' in your overall network design. OSPF works best when you can take advantage of multiple areas, summarization and use of stub networks. OSPF seems to require a little more thought and planning where as EIGRP seems to provide flexibility in a network that may not have been designed/or grown in the most optimal ways. -chris Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=41629t=41613 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Stupid Question time [7:41465]
Everybody else is bad except Network Learning, because you work for Network Learning and have written materials for CCXX productions? This is what I call an unbiased, honest opinion!! A Strobel Quoting Kaminski, Shawn G : CCxx Productions, and soon, Network Learning. Disclaimer: I have written materials for CCxx Productions and am working on stuff for Network Learning -Original Message- From: Michael L. Williams [SMTP:[EMAIL PROTECTED]] Sent: Tuesday, April 16, 2002 8:18 AM To: [EMAIL PROTECTED] Subject:Re: Stupid Question time [7:41465] Name one alternative that's cheaper AND offers the flexibility, options (like toggling the score meter, showing answers ONLY when you're wrong WITH references to published explanations of the answers), and quality (not so say I've never seen a wrong answer on a Boson exam, but way better than the quality of a Brainbuzz cramsheet, etc). I don't mean my above comment in a smart ass way, because I'd really be interested in an alternative, but to simply pop into the group and make such statements without even a single URL or name of what you consider much better and less expensive doesn't lend much credibility to what you say. Mike W. Kaminski, Shawn G wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... What the hell, get them all. In fact, buy two sets since money seems to be no object to any of you. :-) I still can't understand all the hype over Boson when there are much better and less expensive alternatives out there. Hell, I've even written materials for Boson/Quizware but still feel that everyone could pass their exams using less expensive methods. Just my opinion because this forum is for helping people out. So look around a little before rushing out to buy the almighty overpriced Boson. Sorry, just a little grumpy this morning. I think I just realized how underpaid I really am! Just thankful to have a job right now, though! Shawn K. -_-_-_ Mail3000 gives you 30 Megs of Email space free -_-_- This mail sent through http://mail3000.com/ Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=41637t=41465 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Can 2600 series RAM/Flash be used in 3600 series routers? [7:41638]
Hi all, I have a 3620 that has 4MB RAM/16MB Flash that serves as my VOIP router with 12.0(3) IOS. I also have a few 2621's laying around doing nothing with 32MB RAM/16MB Flash. Can I take the RAM and Flash from the 2621 and put them in the 3620? TIA, Jeff Hall Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=41638t=41638 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Lightstream Boot Order [7:41639]
Has anyone ever seen an L1010, while booting up, always try to boot from a flash card? Specifically, slot0? How does one set it so that the image is always searched for in the internal SIMM instead of looking at slot0 first? If you've seen this before (on any item, for that matter), please let me know what you did to re-point it to the internal flash... Just FYI, it does boot into the internal flash IOS, but it only does so after searching slot0 first... Thanks, Eddie _ Do You Yahoo!? Get your free @yahoo.com address at http://mail.yahoo.com Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=41639t=41639 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Cisco IDS Event Viewer Error Message [7:41640]
Hi all After upgrading sensor signature version to 20 when i choose view=sensor events=database i get NrldNameManager::insertSig,ID already exists message When i click ok it works without problem but what is that message? Any info will be will be appreciated Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=41640t=41640 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Stupid Question time [7:41465]
You didn't read my other posts carefully. I didn't say that evebody else is bad. I'm just offering an optional solution to try to help people save money on their study materials. It isn't any different than any one of you offering a solution to a different problem on this message board. Also, I don't work for Network Learning, I work for EDS. Shawn K. -Original Message- From: [EMAIL PROTECTED] [SMTP:[EMAIL PROTECTED]] Sent: Tuesday, April 16, 2002 3:24 PM To: [EMAIL PROTECTED] Subject: RE: Stupid Question time [7:41465] Everybody else is bad except Network Learning, because you work for Network Learning and have written materials for CCXX productions? This is what I call an unbiased, honest opinion!! A Strobel Quoting Kaminski, Shawn G : CCxx Productions, and soon, Network Learning. Disclaimer: I have written materials for CCxx Productions and am working on stuff for Network Learning -Original Message- From: Michael L. Williams [SMTP:[EMAIL PROTECTED]] Sent: Tuesday, April 16, 2002 8:18 AM To: [EMAIL PROTECTED] Subject: Re: Stupid Question time [7:41465] Name one alternative that's cheaper AND offers the flexibility, options (like toggling the score meter, showing answers ONLY when you're wrong WITH references to published explanations of the answers), and quality (not so say I've never seen a wrong answer on a Boson exam, but way better than the quality of a Brainbuzz cramsheet, etc). I don't mean my above comment in a smart ass way, because I'd really be interested in an alternative, but to simply pop into the group and make such statements without even a single URL or name of what you consider much better and less expensive doesn't lend much credibility to what you say. Mike W. Kaminski, Shawn G wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... What the hell, get them all. In fact, buy two sets since money seems to be no object to any of you. :-) I still can't understand all the hype over Boson when there are much better and less expensive alternatives out there. Hell, I've even written materials for Boson/Quizware but still feel that everyone could pass their exams using less expensive methods. Just my opinion because this forum is for helping people out. So look around a little before rushing out to buy the almighty overpriced Boson. Sorry, just a little grumpy this morning. I think I just realized how underpaid I really am! Just thankful to have a job right now, though! Shawn K. -_-_-_ Mail3000 gives you 30 Megs of Email space free -_-_- This mail sent through http://mail3000.com/ Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=41642t=41465 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: WANTED!! MCS-7822/ COMPAQ DL320 [7:41630]
Here you go, get it quick, and I get to borrow it next... :) http://cgi.ebay.com/ws/eBayISAPI.dll?ViewItemitem=2016448146 George Siaw wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... Guys, I urgently need to buy a secondhand callmanager kit and just wondering if any of you have one to sell or point me in the right direction. Thanks - George. Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=41633t=41630 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Can 2600 series RAM/Flash be used in 3600 series routers? [7:41643]
Open up both boxes and compare the physical dimensions of the Flash and DRAM. If memory serves, you can swap the flash but not the DRAM. -Original Message- From: hall [mailto:[EMAIL PROTECTED]] Sent: Tuesday, April 16, 2002 2:37 PM To: [EMAIL PROTECTED] Subject: Can 2600 series RAM/Flash be used in 3600 series routers? [7:41638] Hi all, I have a 3620 that has 4MB RAM/16MB Flash that serves as my VOIP router with 12.0(3) IOS. I also have a few 2621's laying around doing nothing with 32MB RAM/16MB Flash. Can I take the RAM and Flash from the 2621 and put them in the 3620? TIA, Jeff Hall Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=41643t=41643 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
What is the equivalent of a router's term leng 0 in a [7:41644]
TIA Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=41644t=41644 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Lightstream Boot Order [7:41639]
And a 'show boot' or a sh run gives you what? Any boot system ... type command? -Original Message- From: Edward Sohn [mailto:[EMAIL PROTECTED]] Sent: Tuesday, April 16, 2002 2:40 PM To: [EMAIL PROTECTED] Subject: Lightstream Boot Order [7:41639] Has anyone ever seen an L1010, while booting up, always try to boot from a flash card? Specifically, slot0? How does one set it so that the image is always searched for in the internal SIMM instead of looking at slot0 first? If you've seen this before (on any item, for that matter), please let me know what you did to re-point it to the internal flash... Just FYI, it does boot into the internal flash IOS, but it only does so after searching slot0 first... Thanks, Eddie _ Do You Yahoo!? Get your free @yahoo.com address at http://mail.yahoo.com Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=41645t=41639 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Lightstream Boot Order [7:41639]
Sorry, I forgot to mention that the ASP does boot up from internal flash, but it only does so AFTER looking at slot0 first, failing to find a card, and then moves on to boot from internal flash. what led me to believe that there is a persistent pointer to the slot0 is because after doing a sh flash i get an error message that reads along the lines of no card found in slot0 in answer to your question, show boot gives a similar response to sho flash (if i remember correctly--i'm away from the unit right now). -Original Message- From: Daniel Cotts [mailto:[EMAIL PROTECTED]] Sent: Tuesday, April 16, 2002 4:17 PM To: 'Edward Sohn'; [EMAIL PROTECTED] Subject: RE: Lightstream Boot Order [7:41639] And a 'show boot' or a sh run gives you what? Any boot system ... type command? -Original Message- From: Edward Sohn [mailto:[EMAIL PROTECTED]] Sent: Tuesday, April 16, 2002 2:40 PM To: [EMAIL PROTECTED] Subject: Lightstream Boot Order [7:41639] Has anyone ever seen an L1010, while booting up, always try to boot from a flash card? Specifically, slot0? How does one set it so that the image is always searched for in the internal SIMM instead of looking at slot0 first? If you've seen this before (on any item, for that matter), please let me know what you did to re-point it to the internal flash... Just FYI, it does boot into the internal flash IOS, but it only does so after searching slot0 first... Thanks, Eddie _ Do You Yahoo!? Get your free @yahoo.com address at http://mail.yahoo.com _ Do You Yahoo!? Get your free @yahoo.com address at http://mail.yahoo.com Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=41646t=41639 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Stupid Question time [7:41465]
Comments inline Kaminski, Shawn G wrote: I didn't just pop into the group. I must admit that my phrasing (pop into the group) probably sounded negative, but I can assure you that I in no way meant it to be so. I'm just trying to let people know that there are other alternatives besides Boson, Boson, Boson. It's like a cult with this group. Yeah... it is like a cult with this group. =) But at least for me personally, when I was doing CCNA, I got the Boson exams and I felt they helped alot to let you know what the real exam was for... And for every CCNP exam I used them and felt it was worth the (then) $29 per exam. I mean, would you rather spend $119.85 for all the Boson CCIE Written materials or spend $29.95 with CCxx and get it all in one package? I will (definitely) check out the CCxx materials. Again, all I was trying to point out in my previous post was that it's strange for someone to comment about cheaper and better materials and not leave a single web link, URL, company name, etc. Mike W. Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=41648t=41465 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
OSPF and required Hello parameters [7:41647]
This question is more protocol related than perhaps Cisco (vendor) specific. Someone posted a question to the group today pertaining to OSPF and EIGRP. One of the poster's questions were about OSPF and multi-vendor interoperability. I've worked with OSPF on different routers and have not run into any problems. But it got me thinking more about the Hello protocol. It's within the Hello protocol that there are certain criteria that must be met. ACCORDING TO CISCO they are: Hello/Dead Interval, Area ID, Stub Flag and Authentication [method and password]. So, I wanted to see what RFC 2328 had to say about it. I also checked John T. Moy's book, Anatomy of an Internet Routing Protocol. In both of those sources I find that the following must match: Network mask, HelloInterval and RouterDeadInterval and the E-bit of the Options Field. The exception being the Network mask (depending on the Network Type in use). RFC states: HelloInterval RouterDeadInterval Network Mask E-bit of Options Field (Area capable of processing AS-external-LSAs) Cisco implementation: Hello/Dead Interval Area ID Stub Flag Authentication Method/password I realize vendors have the choice of how closely they follow an RFC. I'm just trying to make sure I understand the protocol for what it is and for how Cisco deploys it. Can someone experienced with this protocol check my understanding? -chris Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=41647t=41647 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Stupid Question time [7:41465]
I have an un-bias opinion. For some of us who have already done a few exams, Boson is the only choice. Do you have test software for PIX, VPN, CVOICE etc.? I don't really use boson, I use books. But for CSS1, I might need to use them, just to get an idea if I have any weak spots. There is no 1 source for any exam. I have heard the term, you get what you pay for. -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] Sent: Tuesday, April 16, 2002 3:24 PM To: [EMAIL PROTECTED] Subject: RE: Stupid Question time [7:41465] Everybody else is bad except Network Learning, because you work for Network Learning and have written materials for CCXX productions? This is what I call an unbiased, honest opinion!! A Strobel Quoting Kaminski, Shawn G : CCxx Productions, and soon, Network Learning. Disclaimer: I have written materials for CCxx Productions and am working on stuff for Network Learning -Original Message- From: Michael L. Williams [SMTP:[EMAIL PROTECTED]] Sent: Tuesday, April 16, 2002 8:18 AM To: [EMAIL PROTECTED] Subject:Re: Stupid Question time [7:41465] Name one alternative that's cheaper AND offers the flexibility, options (like toggling the score meter, showing answers ONLY when you're wrong WITH references to published explanations of the answers), and quality (not so say I've never seen a wrong answer on a Boson exam, but way better than the quality of a Brainbuzz cramsheet, etc). I don't mean my above comment in a smart ass way, because I'd really be interested in an alternative, but to simply pop into the group and make such statements without even a single URL or name of what you consider much better and less expensive doesn't lend much credibility to what you say. Mike W. Kaminski, Shawn G wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... What the hell, get them all. In fact, buy two sets since money seems to be no object to any of you. :-) I still can't understand all the hype over Boson when there are much better and less expensive alternatives out there. Hell, I've even written materials for Boson/Quizware but still feel that everyone could pass their exams using less expensive methods. Just my opinion because this forum is for helping people out. So look around a little before rushing out to buy the almighty overpriced Boson. Sorry, just a little grumpy this morning. I think I just realized how underpaid I really am! Just thankful to have a job right now, though! Shawn K. -_-_-_ Mail3000 gives you 30 Megs of Email space free -_-_- This mail sent through http://mail3000.com/ Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=41649t=41465 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Website File Management Software [7:41621]
We use rdist to push new content on to production boxes and to keep consistency. Here is a link: http://www.magnicomp.com/rdist/ John Neiberger wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... Wyyy OT. sorry. :-) Right now we have a couple of web servers with identical content and all file updates must be handled manually by myself or someone else in my group because we're the only ones with access to the secure part of our network. Even with only two servers, it gets to be a pain to manually copy files out to the web servers, especially since certain files can change multiple times per day. I'm thinking that companies that have a lot of servers, especially 'mirrored' servers, must have a better way of managing all of this and perhaps automating a portion of it. However, I don't even really know where to start looking. Do you know what products might be out there to handle this particular issue? Thanks, John Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=41650t=41621 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
NLI CD-Rom [7:41651]
Hey , My CD-Rom in the NLI's CCIE RS Written Exam book is missing. Is there anyone on the list could create an image and send it to me. I still have my own user and pass im just missing the cd. If you could help me out then messege me personally. -Thanks- -Robert- Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=41651t=41651 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RJ45 rolled cables + Pentium 4 laptops with serial ports? [7:41652]
Does anybody have a list or know all the uses for a RJ45 rolled cable? The only think I know is using it for a connection to a router via a serial port. Also, does anyone out there know of a pentium 4 laptop that has a com/serial port built in? I know you can buy those USB/serial things but I haven't got good feedback on those. thanks- _ Send and receive Hotmail on your mobile device: http://mobile.msn.com Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=41652t=41652 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: What is better? MLPP or load balancing with IO [7:41249]
IOS load balancing can also be done, if one end is access router with static routes on both sides of the link. The load balancing may not be 100% due to some of the issues like fast switching,caching, etc. You may get balancing like 40-60. If both routers are running IGP protocols like OSPF, EIGRP then load balancing can be done without additional resources. MLPP is resource intensive. But it will do 100% load balncing. Hope this helps!! Thanks Jana. Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=41653t=41249 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
ccie 351-001 [7:41655]
is there any news about the beta CCIE new exam 351-001 ? any news, __ Do You Yahoo!? Yahoo! Tax Center - online filing with TurboTax http://taxes.yahoo.com/ Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=41655t=41655 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: RJ45 rolled cables + Pentium 4 laptops with serial ports? [7:41656]
go here... pad pad http://www.usbgear.com/usa/item_288.html This works under xp now too... my laptop has NO legacy ports on it...this cable works fine! (great actually, since if I don't have it plugged in, it doesn't use any resources!) -Patrick Aaron DuShey 04/16/02 05:04PM Does anybody have a list or know all the uses for a RJ45 rolled cable? The only think I know is using it for a connection to a router via a serial port. Also, does anyone out there know of a pentium 4 laptop that has a com/serial port built in? I know you can buy those USB/serial things but I haven't got good feedback on those. thanks- _ Send and receive Hotmail on your mobile device: http://mobile.msn.com Confidentiality Disclaimer This email and any files transmitted with it may contain confidential and /or proprietary information in the possession of WellStar Health System, Inc. (WellStar) and is intended only for the individual or entity to whom addressed. This email may contain information that is held to be privileged, confidential and exempt from disclosure under applicable law. If the reader of this message is not the intended recipient, you are hereby notified that any unauthorized access, dissemination, distribution or copying of any information from this email is strictly prohibited, and may subject you to criminal and/or civil liability. If you have received this email in error, please notify the sender by reply email and then delete this email and its attachments from your computer. Thank you. Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=41656t=41656 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: OSPF and required Hello parameters [7:41647]
With regards to the items below, I would say that Cisco follows the RFC, but just describes the issues a little differently. See comments below. At 04:28 PM 4/16/02, Kane, Christopher A. wrote: It's within the Hello protocol that there are certain criteria that must be met. ACCORDING TO CISCO they are: Hello/Dead Interval, Area ID, Stub Flag and Authentication [method and password]. So, I wanted to see what RFC 2328 had to say about it. I also checked John T. Moy's book, Anatomy of an Internet Routing Protocol. In both of those sources I find that the following must match: Network mask, HelloInterval and RouterDeadInterval and the E-bit of the Options Field. The exception being the Network mask (depending on the Network Type in use). RFC states: HelloInterval Cisco says this must agree also. RouterDeadInterval Cisco says this must agree also. Network Mask The RFC says to ignore this on point-to-point networks and on virtual links. Maybe Cisco just doesn't mention it because it's not a rule that always applies. E-bit of Options Field (Area capable of processing AS-external-LSAs) That's what Cisco calls the stub flag I bet. Cisco implementation: Hello/Dead Interval Area ID The RFC covers this too, but in the general discussion, not just in the discussion of Hellos. The Area ID in an OSPF packet must match the area of the receiving interface (except in the case of virtual links, in which case it must indicate the backbone). Stub Flag Authentication Method/password The RFC says this must agree on every OSPF packet. It just doesn't specifically mention that it must agree on Hello packets. I realize vendors have the choice of how closely they follow an RFC. If the RFC says must then a vendor must do what it says. It's only when it says should or in grey areas where the authors didn't make something clear that you run into problems. I'm just trying to make sure I understand the protocol for what it is and for how Cisco deploys it. Can someone experienced with this protocol check my understanding? -chris Priscilla Oppenheimer http://www.priscilla.com Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=41654t=41647 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Whats going to happen ? [7:41572]
Howard C. Berkowitz wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... I agree they aren't that useful, but they are in fairly common use with DSL and cable providers, who use the modem/router MAC address as a primitive form of security. And yes, equipment changes do cause problems. Very good point... shows my lack of exposure to those areas of networking. (meaning the ISP/Provider side of things) Mike W. Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=41657t=41572 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: What is better? MLPP or load balancing with IO [7:41249]
an alternative is CEF/dCEF, which is now supported down to the 36xx level. http://www.cisco.com/univercd/cc/td/doc/product/software/ios122/122cgcr/fswt ch_c/swprt1/xcfcef.htm#1000904 watch the wrap HTH J ACH wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... IOS load balancing can also be done, if one end is access router with static routes on both sides of the link. The load balancing may not be 100% due to some of the issues like fast switching,caching, etc. You may get balancing like 40-60. If both routers are running IGP protocols like OSPF, EIGRP then load balancing can be done without additional resources. MLPP is resource intensive. But it will do 100% load balncing. Hope this helps!! Thanks Jana. Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=41658t=41249 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Command Line and Web Interface [7:41660]
Hi, Iam recently looking into the Command Line interface and web interface of a router.To my surprise, when a Web Interface is invoked, it send some bulk of traffic on the network and remains constant if we don't do anything at the front end whereas on the contrary,I can see when a Command Line interface is invoked,it repeatedly sends some traffic (Telnet) everytime on the network irrespective of you do anything at the front end. So my question, which one is better?So far, I thought Command Line is better ,But, now I feel Web Interface is much better in terms of traffic. Has anybody noticed this. Further help is appreciated. Thanks, Jay _ MSN Photos is the easiest way to share and print your photos: http://photos.msn.com/support/worldwide.aspx Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=41660t=41660 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Whats going to happen ? [7:41572]
This is a perfect opportunity for me to learn something. What aspects/advantages of using MAC based VLAN assignments were causing you to consider using it? Considering in a large organization (5000+ IP devices... and that's not large to some people =) using MAC based VLAN assignment sounds like an administrative nightmare. Hell, port-based VLAN assignment is a pain enough sometimes =) Sometimes I just wanna thrown everything into ONE BIG BROADCAST DOMAIN and be done with it even setup all WAN routers to bridge instead of route Mmm.. Mike W. Kelly Cobean wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... I've never heard the term MAC-based VLAN before. Is this a reference to the use of VMPS? We considered doing VMPS for MAC based VLAN assignments, but ran into several issues, one of which was the fact that we have Cat3548 clusters that, while there are as many as 9 switches in the cluster, have only one IP address for the stack. The VMPS protocol specifies that when an access switch sends a VMPS request to the VMPS server, it identifies itself using it's own IP address and the port# that the device is trying to connect to. With a building of over 800 employees, managing this type of system would be pretty intensive because you need the MAC address of EVERY PC in the building that you desire to assign to a VLAN, typically with unkown's going into the fallback VLAN. -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Howard C. Berkowitz Sent: Tuesday, April 16, 2002 11:02 AM To: [EMAIL PROTECTED] Subject: Re: Whats going to happen ? [7:41572] Personally, I've never come across a situation where MAC-based VLANs were useful. Port-based membership is more practical/common. You can always enforce port-security based on MAC address, but still have the same problem with regard to if someone changes their NIC, it'll require a call to you to change things up to make them work. Mike W. I agree they aren't that useful, but they are in fairly common use with DSL and cable providers, who use the modem/router MAC address as a primitive form of security. And yes, equipment changes do cause problems. Irwan Hadi wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... Dear All, Suppose that I create a MAC based VLAN with for example 100 computers. All of these computers either will get IP from the DHCP for the 10.0.1.0/24 IP block, or they can hard wired their own IP provided that the IP is their own, and it is in the 10.0.1.0/24 subnet. Now suppose one person changes his NIC at his computer. This of course will makes the switch won't recognize his new MAC address, and hard wired his IP to the one at 10.0.1.0/24. My question is will his connection get bumped out from the network ? Thanks -- What Problem are you trying to solve? ***send Cisco questions to the list, so all can benefit -- not directly to me*** Howard C. Berkowitz [EMAIL PROTECTED] Chief Technology Officer, GettLab/Gett Communications http://www.gettlabs.com Technical Director, CertificationZone.com http://www.certificationzone.com retired Certified Cisco Systems Instructor (CID) #93005 Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=41659t=41572 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Command Line and Web Interface [7:41661]
Hi, Iam recently looking into the Command Line interface and web interface of a router.To my surprise, when a Web Interface is invoked, it send some bulk of traffic on the network and remains constant if we don't do anything at the front end whereas on the contrary,I can see when a Command Line interface is invoked,it repeatedly sends some traffic (Telnet) everytime on the network irrespective of you do anything at the front end. So my question, which one is better?So far, I thought Command Line is better ,But, now I feel Web Interface is much better in terms of traffic. Has anybody noticed this. Further help is appreciated. Thanks, Jay _ MSN Photos is the easiest way to share and print your photos: http://photos.msn.com/support/worldwide.aspx Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=41661t=41661 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
PAT, PIX 515 and VPN ..... [7:41662]
Cisco say that one gloabal IP address can be used for up to 64,000 local addresses I want to use the same method for 100 - 130 predominantly web-browsing end-users through a PIX 515. Has anyone had any experience of this .. and does anyone forsee any problems !!! this is the first time I have done this and I don't want to make any basic mistakes :) Also The PIX 515 can have a VAC installed to allow up to 2000 similtaneous VPN connections at any one time . but .. how many sessions can the PIX 515 manage on its own, without a VAC ?? Any help or suggestions will be greatly received ... Kind regards .. Paul Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=41662t=41662 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: OSPF and required Hello parameters [7:41647]
masks do not need to match on a virtual link for obvious reasons, those being that one cannot be certain of the end points. I suppose that in practical terms, one should always use /30's on serial links, and thus the end point masks would always match, but who can ever tell? I suppose it is possible that one end of a virtual link could be an ethernet or a token ring interface, and the distant end a serial interface, and thus it would be likely that masks do not match. ( and yes I know that in the case of Cisco, anyway, that the RID is the end point, and RID's don't have masks anyway. ) BTW, a virtual link hello has the v-bit set - it is that which determines that the packet is for purposes of a virtual link. the point to point link masks not having to match is interesting. one of these days I'll have to set something up in the lab, just to see. not generally being one to deliberately setting things up incorrectly, I sometimes miss out on these kinds of curiousities. Chuck Priscilla Oppenheimer wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... With regards to the items below, I would say that Cisco follows the RFC, but just describes the issues a little differently. See comments below. At 04:28 PM 4/16/02, Kane, Christopher A. wrote: It's within the Hello protocol that there are certain criteria that must be met. ACCORDING TO CISCO they are: Hello/Dead Interval, Area ID, Stub Flag and Authentication [method and password]. So, I wanted to see what RFC 2328 had to say about it. I also checked John T. Moy's book, Anatomy of an Internet Routing Protocol. In both of those sources I find that the following must match: Network mask, HelloInterval and RouterDeadInterval and the E-bit of the Options Field. The exception being the Network mask (depending on the Network Type in use). RFC states: HelloInterval Cisco says this must agree also. RouterDeadInterval Cisco says this must agree also. Network Mask The RFC says to ignore this on point-to-point networks and on virtual links. Maybe Cisco just doesn't mention it because it's not a rule that always applies. E-bit of Options Field (Area capable of processing AS-external-LSAs) That's what Cisco calls the stub flag I bet. Cisco implementation: Hello/Dead Interval Area ID The RFC covers this too, but in the general discussion, not just in the discussion of Hellos. The Area ID in an OSPF packet must match the area of the receiving interface (except in the case of virtual links, in which case it must indicate the backbone). Stub Flag Authentication Method/password The RFC says this must agree on every OSPF packet. It just doesn't specifically mention that it must agree on Hello packets. I realize vendors have the choice of how closely they follow an RFC. If the RFC says must then a vendor must do what it says. It's only when it says should or in grey areas where the authors didn't make something clear that you run into problems. I'm just trying to make sure I understand the protocol for what it is and for how Cisco deploys it. Can someone experienced with this protocol check my understanding? -chris Priscilla Oppenheimer http://www.priscilla.com Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=41663t=41647 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Whats going to happen ? [7:41572]
On Tue, Apr 16, 2002 at 07:03:57AM -0600, Michael L. Williams wrote: Personally, I've never come across a situation where MAC-based VLANs were useful. Port-based membership is more practical/common. You can always enforce port-security based on MAC address, but still have the same problem with regard to if someone changes their NIC, it'll require a call to you to change things up to make them work. The idea of doing MAC based VLAN is surely for security. I want that computers that aren;t registered yet to have an IP in the 172.16.0.0 subnet, while computers which already registered will have a routable IP address. Right now unregistered computers can still use the routable IP address by hard wired the IP address manually (not through DHCP), and this creates a problem. I'm also thinking to use a Foundry Netiron L3 switches to do this MAC based vlan, so that if someone in the 172.16.0.0 address wants to send data to other in the routable subnet, which is basically served by the same switch, the data doesn;t need to be delivered to the uplink first. Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=41666t=41572 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: NLI CD-Rom [7:41651]
Have you reported this to NLI directly? My experience has been that they are very much service oriented and would make good if they failed you. Chuck Robert Raver wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... Hey , My CD-Rom in the NLI's CCIE RS Written Exam book is missing. Is there anyone on the list could create an image and send it to me. I still have my own user and pass im just missing the cd. If you could help me out then messege me personally. -Thanks- -Robert- Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=41667t=41651 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Command Line and Web Interface [7:41660]
sounds like normal behaviour to me. http passes no traffic other than what is actually sent or received - no keepalives of any kind. telnet sessions require keepalives to remain active. Just my opinion, but I find the Cisco web interface practically useless for anything that involves real work. Chuck group study wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... Hi, Iam recently looking into the Command Line interface and web interface of a router.To my surprise, when a Web Interface is invoked, it send some bulk of traffic on the network and remains constant if we don't do anything at the front end whereas on the contrary,I can see when a Command Line interface is invoked,it repeatedly sends some traffic (Telnet) everytime on the network irrespective of you do anything at the front end. So my question, which one is better?So far, I thought Command Line is better ,But, now I feel Web Interface is much better in terms of traffic. Has anybody noticed this. Further help is appreciated. Thanks, Jay _ MSN Photos is the easiest way to share and print your photos: http://photos.msn.com/support/worldwide.aspx Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=41665t=41660 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]