RE: Support Passed [7:44599]
Read the RA book and you'll be fine. -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] Sent: Monday, May 20, 2002 10:02 PM To: [EMAIL PROTECTED] Subject: Support Passed [7:44599] Ok, well I started kinda backward, but I passed my CCNP Support test, and I'm now working on my Remote Access. I have the cisco press books, which I love, but is there anything I should know about the remote access test? Cody Lerum, CCNA, (1/4)CCNP Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=44600t=44599 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Support Passed [7:44599]
So Support is the first exam you took? Kinda strange because normally once you passed Routing, Switching, and Remote Access, you start taking the support. How did you manage the troubleshooting section of Remote Access in Support ? =) It was quite sometime back when I finished my CCNP, but my suggestion about the Remote Access test is trying to understand each of the topic in the Exam Objectives and make sure you have hands-on on them. Good Luck Cody Lerum wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... Ok, well I started kinda backward, but I passed my CCNP Support test, and I'm now working on my Remote Access. I have the cisco press books, which I love, but is there anything I should know about the remote access test? Cody Lerum, CCNA, (1/4)CCNP Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=44601t=44599 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Help needed [7:44360]
Hi, thanx for your reply. what do you mean by default commands exactly? Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=44602t=44360 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
EIGRP NBMA and multicast together.. [7:44603]
Hi, Can anyone please help me on this- Its about EIGRP NBMA and multicast together.. EIGRP uses 224.0.0.10 for its hello packets. In an NBMA environment such as Frame Relay how does this work ? Does each FR interface need FR Multicasting enabled (I know of the BROADCAST cli option but not a MULTICAST one) or does EIGRP think cleverly and actually send out Unicasts to its known neighbours ? If so, how does it learn of new neighbours ? please reply to my e-mail address. Thanks in advance -Sul _ Click below to visit monsterindia.com and review jobs in India or Abroad http://monsterindia.rediff.com/jobs Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=44603t=44603 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: accessing server slow over t1 [7:44355]
Hey George, Before you start taking any actions, first use a Sniffer to see what is causing the delay. It's no use implementing anything unless you know it's going to be effective. Hth, Crestion Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=44604t=44355 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Securing SNMP [7:44605]
Greetings, I would like to run SNMP on my router and would like some advice on how I could secure it. I would also like some input from you guys on whether you recommend SNMP at all as it seems like the only route that I can take in monitoring traffic on our internet access link. Regards LK Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=44605t=44605 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Ip helper address: which is the mac address? [7:44608]
Dear group, When my CPE comes up, it makes a dhcp request. The DHCP server is located on a different subnet .Between dhcp client (CPE) and dhcp server there is a router whit ip helper-address configured. My question is the following: if the DHCP server has to assign a specific IP address to a specific MAC address (CPE's MAC address) but there is a router between them, the DCHP will read the router MAC address...how does it works? Where DHCP will read the correct mac address before giving the right IP address? Thanks in advace, Teresa Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=44608t=44608 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Ip helper address: which is the mac address? [7:44608]
TP wrote: Where DHCP will read the correct mac address before giving the right IP address? From the CHADDR (Client Hardware ADDRess) field in the DHCP packet. Regards, Marco. Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=44609t=44608 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Doyle on Lab Rats [7:44611]
Excerpt from Doyle's Vol.2 page 792. Labs also provide an area of the network where you can just play around with the commands, testing the effect of misconfigurations and practicing troubleshooting. The lab can be used in this way for training and CCIE preparation. Only with a lab can you THOROUGHLY experiment with configurations, break things to see what happens, and determine what symptoms identify misconfigurations. This is exactly how we are all educated in colleges and universities. Remember the labs in Physics, Chemistry, Biology, Human Anatomy... So for those of you that have no respect for lab rats, you might need to rethink your opinions. I say more swiss cheese to lab rats! Elmer P.S. Don't forget the wine. Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=44611t=44611 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Support Passed [7:44599]
Cody Lerum wrote: Ok, well I started kinda backward, but I passed my CCNP Support test, and I'm now working on my Remote Access. I have the cisco press books, which I love, but is there anything I should know about the remote access test? Cody Lerum, CCNA, (1/4)CCNP Know your ISDN pretty well. Know the U-T-S-R (use tange sparingly richard) sequence and reference points of a ISDN circuit. Bone up on a the protocols that make up ISDN, PPP and X.25 I had only a couple of X.25 questions but alot on ISDN, Frame and design(which router for what circumstance) I had two questions on connecting via DUN(windows) so give it a brief look. A few light questions on NAT and a few on AAA(basics) The books I used were the Cisco Academy series along with the lab book for some practice labs. The Exam Cram was terrible relative to the actual test which was somewhat surprising given the Routing and Switching books seemed to be a much better match to the test material. I used Trancenders and CCXX's study questions. Both matched well to the exam. BTW- the current exam NOT the new one in the wings. MikeS www.packetattack.com Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=44612t=44599 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Securing SNMP [7:44605]
Any way to configure anti-spoofing on the router, since it's trivial to spoof UDP packets? --- Pat- I create an access list that allows one ip address (my NMS) and denies all others. Collin Postman Pat wrote in message news:... Greetings, I would like to run SNMP on my router and would like some advice on how I could secure it. I would also like some input from you guys on whether you recommend SNMP at all as it seems like the only route that I can take in monitoring traffic on our internet access link. Regards LK Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=44610t=44605 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: debug ppp authentication [7:44575]
This is off a 2504. It's also on my other 2500s with 12.x code What are you running for a router? one of those space heaters from a long time ago ;-) MikeS CentralRouter#debug ppp authen CentralRouter#debug ppp authentication ? CentralRouter#debug ppp authentication PPP authentication debugging is on CentralRouter#ping 192.168.1.2 Type escape sequence to abort. Sending 5, 100-byte ICMP Echos to 192.168.1.2, timeout is 2 seconds: 00:05:16: %LINK-3-UPDOWN: Interface BRI0:1, changed state to up 00:05:16: %DIALER-6-BIND: Interface BRI0:1 bound to profile Dialer1. 00:05:16: BR0:1 PPP: Treating connection as a callout 00:05:16: BR0:1 PPP: Phase is AUTHENTICATING, by the peer 00:05:16: BR0:1 AUTH: Started process 0 pid 28 00:05:16: BR0:1 CHAP: I CHALLENGE id 1 len 33 from BranchRouter 00:05:16: BR0:1 CHAP: O RESPONSE id 1 len 34 from CentralRouter 00:05:16: BR0:1 CHAP: I SUCCESS id 1 len 4 00:05:17: %LINEPROTO-5-UPDOWN: Line protocol on Interface BRI0:1, changed state to up... 00:05:22: %ISDN-6-CONNECT: Interface BRI0:1 is now connected to 55 55. Success rate is 0 percent (0/5) CentralRouter# Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=44613t=44575 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Ip helper address: which is the mac address? [7:44608]
The DHCP server doesn't read the actually MAC address of the client PC. The DHCP client builds a DHCP request packet that includes the client's MAC address. The DHCP relay just passes that packet to the DHCP server, along with additional information (such as what subnet the request is coming from). Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=44615t=44608 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Doyle on Lab Rats [7:44611]
Nice of you to take Jeff's words and use them out of context. I believe what Jeff meant is that as we are experienced network engineers pursuing CCIE certification, we should set up a lab for practice as we cannot perform the necessary configurations on our production networks. The thing you forgot to mention while taking liberities with his words is that lab rats do not know what a production network looks like. JR -- Johnny Routin The Routin One cebuano wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... Excerpt from Doyle's Vol.2 page 792. Labs also provide an area of the network where you can just play around with the commands, testing the effect of misconfigurations and practicing troubleshooting. The lab can be used in this way for training and CCIE preparation. Only with a lab can you THOROUGHLY experiment with configurations, break things to see what happens, and determine what symptoms identify misconfigurations. This is exactly how we are all educated in colleges and universities. Remember the labs in Physics, Chemistry, Biology, Human Anatomy... So for those of you that have no respect for lab rats, you might need to rethink your opinions. I say more swiss cheese to lab rats! Elmer P.S. Don't forget the wine. Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=44616t=44611 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Fans too Noisey (2500 Series Router) [7:44571]
Maybe not if you keep the room temperature low enough, but your going to need a lot of air conditioning. ;-) Seriously, disconnecting fans will eventually cause your router, or any computer, to fry. Without heat dissapation, your components will eventually just quit working and fill your house with the lovely smell of burning circuits. You might try buying/building some sort of enclosure, but that enclosure will likely need a fan as well. Regards, Kent -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Will Francis Sent: Monday, May 20, 2002 3:07 PM To: [EMAIL PROTECTED] Subject: Fans too Noisey (2500 Series Router) [7:44571] Hi Guys I've got 7 2500 Series routers in my home lab but its just getting a bit too noisey, if the fans are unplug will this affect the routers. cheers Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=44617t=44571 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: problem with crypto access list !!! [7:44598]
Pat Some comments: 1. For IPSec to work the access list at the other end for the crypto map priority that is matched in the SA must be the mirror of yours ie. access-list 120 permit ip 10.54.1.0 0.0.0.255 10.55.1.0 0.0.0.255 2. issue a sh crypto ipsec sa command with the access list still active and the with the access list deleted. The output of this command will tell you if any IPSec connections have been formed. 3. Try a debug crypto isakmp and debug crypto ipsec and apply the crypto map to the interface and watch the debug output. Example outputs are on the CCO... 3. Is this same access list applied to the interface you telnet to the other router in such a way that removing it leaves a deny any any on that interface ( I assume the access list 20 you refer to is actually access list 120)? Hope this helps. Cheers Jim Gillen Snr Communications Engineer AUSTRAC Ph: 9950 0842 Fax: 9950 0074 pat 21/05/02 14:00:38 This message has been scanned by MAILSweeper. I am trying to set up site to site tunnel between cisco routers. I am having problem with crypto access list on remote outers. I am configrung access-list 120 crypto commands as follows crypto isakmp policy 10 authentication pre-share crypto isakmp key ** address XX.XX.XX.XX ! ! crypto ipsec transform-set test esp-3des esp-md5-hmac ! crypto map test 20 ipsec-isakmp set peer XX.XX.XX.XX set transform-set test match address 120 access-list 120 permit ip 10.55.1.0 0.0.0.255 10.54.1.0 0.0.0.255 I have acess to remote routers through telnet over the internet. List 20 is in no way related to my access. But when I try to remove access-list 20 i loose my telnet session can't ping it either. This happened on multiple remote routers. I am using IOS (tm) C2600 Software (C2600-IK9O3S-M), Version 12.2(3), RELEASE SOFTWARE (fc1) In ideas why this is happening ? Thank you all, Pat __ Do You Yahoo!? LAUNCH - Your Yahoo! Music Experience http://launch.yahoo.com __ To unsubscribe from the SECURITY list, send a message to [EMAIL PROTECTED] with the body containing: unsubscribe SECURITY ** This email and any files transmitted with it are confidential and intended solely for the use of the individual or entity to whom they are addressed. If you have received this email in error please notify the system manager. This footnote also confirms that this email message has been swept by MIMEsweeper for the presence of computer viruses. www.mimesweeper.com ** Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=44598t=44598 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Mounting Brackets? [7:44503]
Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=44614t=44503 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: problem with crypto access list !!! [7:44607]
What versions of code are you using on the routers. pat 05/21/02 01:32 AM Hello Jim, Thank you for the response. 1) When I said access-list 20 I meant 120. This is not applied to any interface. I am not doing telnet through tunnel. 2) Acess-lists are mirror image but the numbers are not same. One is 120 and other is 130. Does that matter ? 3) I have hub-spoke network. I am getting these problem on Spoke routers which are at remote site. Spoke 1: misconfigured 120. Tried to change it lost connection. Spoke 2: was able to establish tunnel. Wanted to change list 120 to include loop back interface IPs so that I can do ping test. When I removed 120 I lost connection. Spoke 3: Used debug commands. Able to kick in tunneling process only through Hub router. But tunnel never established. Phase I never kicked in when I pinged from Spoke 3 router. Appeared as though list 120 was not working on spoke 3. So tried to remove reapply. I lost connection when I removed it. 4) I am also using CBAC. But same problem appears with no CBAC. I actually tried Spoke 3 without CBAC. For me it sounds like some issue with Cisco IOS. But not sure. Don't know if anybody else on the group has faced same problem. Thanks, Pat --- Jim Gillen wrote: Pat Some comments: 1. For IPSec to work the access list at the other end for the crypto map priority that is matched in the SA must be the mirror of yours ie. access-list 120 permit ip 10.54.1.0 0.0.0.255 10.55.1.0 0.0.0.255 2. issue a sh cryptoipsec sa command with the access list still active and the with the access list deleted. The output of this command will tell you if any IPSec connections have been formed. 3. Try a debug crypto isakmp and debug crypto ipsec and apply the crypto map to the interface and watch the debug output. Example outputs are on the CCO... 3. Is this same access list applied to the interface you telnet to the other router in such a way that removing it leaves a deny any any on that interface ( I assume the access list 20 you refer to is actually access list 120)? Hope this helps. Cheers Jim Gillen Snr Communications Engineer AUSTRAC Ph: 9950 0842 Fax: 9950 0074 pat 21/05/02 14:00:38 This message has been scanned by MAILSweeper. I am trying to set up site to site tunnel between cisco routers. I am having problem with crypto access list on remote outers. I am configrung access-list 120 crypto commands as follows crypto isakmp policy 10 authentication pre-share crypto isakmp key ** address XX.XX.XX.XX ! ! crypto ipsec transform-set test esp-3des esp-md5-hmac ! crypto map test 20 ipsec-isakmp set peer XX.XX.XX.XX set transform-set test match address 120 access-list 120 permit ip 10.55.1.0 0.0.0.255 10.54.1.0 0.0.0.255 I have acess to remote routers through telnet over the internet. List 20 is in no way related to my access. But when I try to remove access-list 20 i loose my telnet session can't ping it either. This happened on multiple remote routers. I am using IOS (tm) C2600 Software (C2600-IK9O3S-M), Version 12.2(3), RELEASE SOFTWARE (fc1) In ideas why this is happening ? Thank you all, Pat __ Do You ahoo!? LAUNCH - Your Yahoo! Music Experience http://launch.yahoo.com __ To unsubscribe from the SECURITY list, send a message to [EMAIL PROTECTED] with the body containing: unsubscribe SECURITY ** This email and any files transmitted with it are confidential and intended solely for the use of the individual or entity to whom they are addressed. If you have received this email in error please notify the system manager. This footnote also confirms that this email message has been swept by MIMEsweeper for the presence of computer viruses. www.mimesweeper.com ** __ Do You Yahoo!? LAUNCH - Your Yahoo! Music Experience http://launch.yahoo.com __ To unsubscribe from the SECURITY list, send a message to [EMAIL PROTECTED] with the body containing: unsubscribe SECURITY Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=44607t=44607 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Securing SNMP [7:44605]
Yes. If your network is 192.168.1.0/24 deny all packets trying to enter your network with a source of 192.168.1.x. Dave Langa Kentane wrote: Any way to configure anti-spoofing on the router, since it's trivial to spoof UDP packets? --- Pat- I create an access list that allows one ip address (my NMS) and denies all others. Collin Postman Pat wrote in message news:... Greetings, I would like to run SNMP on my router and would like some advice on how I could secure it. I would also like some input from you guys on whether you recommend SNMP at all as it seems like the only route that I can take in monitoring traffic on our internet access link. Regards LK -- David Madland Sr. Network Engineer CCIE# 2016 Qwest Communications Int. Inc. [EMAIL PROTECTED] 612-664-3367 Emotion should reflect reason not guide it Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=44618t=44605 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: problem with crypto access list !!! [7:44606]
Did you mean access-list 120, as opposed to access-list 20? If you have a crypto map applied to an interface, and remove the ACL associated with the crypto map, you get the same results as if you deleted an interface-applied ACL without removing the application- IOS assumes the null ACL is a deny any (or encrypt everything), and you will stone up traffic on that interface. Good real-world lesson- it won't matter in the lab because (I assume) everything is direct console access- but if you're accessing a customer router in-band from its outside interface, remove the crypto map from the interface if you're modifying tunnels, otherwise you'll be calling him/her to reboot it :-) - Original Message - From: pat To: ; Sent: Tuesday, May 21, 2002 12:00 AM Subject: problem with crypto access list !!! I am trying to set up site to site tunnel between cisco routers. I am having problem with crypto access list on remote outers. I am configrung access-list 120 crypto commands as follows crypto isakmp policy 10 authentication pre-share crypto isakmp key ** address XX.XX.XX.XX ! ! crypto ipsec transform-set test esp-3des esp-md5-hmac ! crypto map test 20 ipsec-isakmp set peer XX.XX.XX.XX set transform-set test match address 120 access-list 120 permit ip 10.55.1.0 0.0.0.255 10.54.1.0 0.0.0.255 I have acess to remote routers through telnet over the internet. List 20 is in no way related to my access. But when I try to remove access-list 20 i loose my telnet session can't ping it either. This happened on multiple remote routers. I am using IOS (tm) C2600 Software (C2600-IK9O3S-M), Version 12.2(3), RELEASE SOFTWARE (fc1) In ideas why this is happening ? Thank you all, Pat __ Do You Yahoo!? LAUNCH - Your Yahoo! Music Experience http://launch.yahoo.com __ To unsubscribe from the SECURITY list, send a message to [EMAIL PROTECTED] with the body containing: unsubscribe SECURITY Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=44606t=44606 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Doyle on Lab Rats [7:44611]
I think that everyone agrees that in order to pass the CCIE lab, you have to spend a decent amount of time in a lab playing with scenarios and technologies you might otherwise have never experienced in a real life network, or experienced it so long ago that you don't have any where else to test and learn it. No matter who you are, you are going to have to get some of your experience for the CCIE lab in a lab on your own, not a production network. Perhaps some people do get all of their experience in a production network..or several production networks and I am not going to dispute that, but it is certainly the exception, not the rule. I think the problem here is with people who get all of their experience in a lab network. Today, it is possible to pass the CCIE written and lab with little to no real world experience and that is not what the CCIE is about. I can hardly fault someone who has the time, money and desire to sit down and attempt the CCIE without much real world experience because I am seeing more and more employers looking for entry to mid-level network engineers with CCIE's required or highly desired. I don't think that was the original intent of the CCIE either. The CISSP already does, or is going to require that you send your resume in with your application to be a CISSP. In fact, they audit them to make sure that people aren't lying on their applications. I don't claim to know all the details of the CISSP certification process, but what would something like this do for the CCIE program? It appears to keep the CISSP relavent. Does it really? -Original Message- From: Johnny Routin [mailto:[EMAIL PROTECTED]] Sent: Tuesday, May 21, 2002 10:11 AM To: [EMAIL PROTECTED] Subject: Re: Doyle on Lab Rats [7:44611] Nice of you to take Jeff's words and use them out of context. I believe what Jeff meant is that as we are experienced network engineers pursuing CCIE certification, we should set up a lab for practice as we cannot perform the necessary configurations on our production networks. The thing you forgot to mention while taking liberities with his words is that lab rats do not know what a production network looks like. JR -- Johnny Routin The Routin One cebuano wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... Excerpt from Doyle's Vol.2 page 792. Labs also provide an area of the network where you can just play around with the commands, testing the effect of misconfigurations and practicing troubleshooting. The lab can be used in this way for training and CCIE preparation. Only with a lab can you THOROUGHLY experiment with configurations, break things to see what happens, and determine what symptoms identify misconfigurations. This is exactly how we are all educated in colleges and universities. Remember the labs in Physics, Chemistry, Biology, Human Anatomy... So for those of you that have no respect for lab rats, you might need to rethink your opinions. I say more swiss cheese to lab rats! Elmer P.S. Don't forget the wine. Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=44620t=44611 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Securing SNMP [7:44605]
hi, you may - define an access-list let only the host you want to to snmp access the kit - enable ip verify unicast reverse path checking on all interfaces. cheers! sen Quoting Langa Kentane : Any way to configure anti-spoofing on the router, since it's trivial to spoof UDP packets? --- Pat- I create an access list that allows one ip address (my NMS) and denies all others. Collin Postman Pat wrote in message news:... Greetings, I would like to run SNMP on my router and would like some advice on how I could secure it. I would also like some input from you guys on whether you recommend SNMP at all as it seems like the only route that I can take in monitoring traffic on our internet access link. Regards LK cheers - sen Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=44621t=44605 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Doyle on Lab Rats [7:44611]
I posted this message in response to a lot of rap, crap, xyz-rap, etc. that individuals who devote their time, effort and money towards advancing their knowledge and skill (and hopefully career) by building their own home lab because this is the ONLY way they can get experience are getting. When are we going to stop shoving this chicken-and-egg syndrome down their throat? Everybody has to start somewhere. Hell, do you think med school students start their career in medicine by working in a production clinic? The only time they get to that level is after years of learning the ins/outs involved in clinical practice IN A LAB environment. Nothing personal, but I just wanted to encourage lab rats who've been discriminated against and wrongfully labeled by people who feel insecure with their career. Hope that clears things up. Elmer - Original Message - From: Johnny Routin To: Sent: Tuesday, May 21, 2002 10:11 AM Subject: Re: Doyle on Lab Rats [7:44611] Nice of you to take Jeff's words and use them out of context. I believe what Jeff meant is that as we are experienced network engineers pursuing CCIE certification, we should set up a lab for practice as we cannot perform the necessary configurations on our production networks. The thing you forgot to mention while taking liberities with his words is that lab rats do not know what a production network looks like. JR -- Johnny Routin The Routin One cebuano wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... Excerpt from Doyle's Vol.2 page 792. Labs also provide an area of the network where you can just play around with the commands, testing the effect of misconfigurations and practicing troubleshooting. The lab can be used in this way for training and CCIE preparation. Only with a lab can you THOROUGHLY experiment with configurations, break things to see what happens, and determine what symptoms identify misconfigurations. This is exactly how we are all educated in colleges and universities. Remember the labs in Physics, Chemistry, Biology, Human Anatomy... So for those of you that have no respect for lab rats, you might need to rethink your opinions. I say more swiss cheese to lab rats! Elmer P.S. Don't forget the wine. Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=44623t=44611 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Securing SNMP [7:44605]
Check out the SNMP section in this doc: http://www.cisco.com/univercd/cc/td/doc/cisintwk/ics/cs003.htm Additionally to the above suggestions, I would add: -Do not allow SNMP write capability, you almost never need it -Choose a _strong_ SNMP RO community. It should contain special characters such as #,$,@,,^, etc. It's usually useful to pick a phrase that you can remember, such as all engineers choose good passwords, pick the first letter or letters from each word: all e c g p and then selectively substitute special chars for certain alpha chars: @ll $ c g ) for example. DO NOT pick things like company name, organization name, sports team mascots, pets names, etc. In general, treat the SNMP community string with the same care you would want the administrator of your payroll server to use for their password. (and assume if the payroll gets compromised, you don't get paid) -Consider using SNMPv3 so that you can use encryption. Alternatively, setup an IPSec tunnel between the monitoring stations and the routers for securing SNMP based communications. HTH, Kent -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Postman Pat Sent: Tuesday, May 21, 2002 4:49 AM To: [EMAIL PROTECTED] Subject: Securing SNMP [7:44605] Greetings, I would like to run SNMP on my router and would like some advice on how I could secure it. I would also like some input from you guys on whether you recommend SNMP at all as it seems like the only route that I can take in monitoring traffic on our internet access link. Regards LK Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=44622t=44605 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Console Kit for 1924 [7:44619]
This link may help you if you want to get one made http://www.cisco.com/univercd/cc/td/doc/product/lan/28201900/1928v5x/icg5x/c sspec.htm (watch word-wrap) Rah -Original Message- From: Justin Clark [mailto:[EMAIL PROTECTED]] Sent: 21 May 2002 15:52 To: [EMAIL PROTECTED] Subject: Console Kit for 1924 [7:44619] I have an older Cisco Cat 1924 switch with a db9 console port on it. Does anyone know where I can buy barter or steal a set of cables to get me into the thing, I have tried every combination of cable I currently have but they are apparently all the wrong pin-outs. Thanks, Justin Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=44624t=44619 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Errata for Coriolis books? [7:44638]
Now that Coriolis is kaput, does anyone have the errata for Exam Prep books 640-503 (Routing) and 640-504 (Switching)? I've tried to use google to see if any were available, but apparently Coriolis was using a dynamic page on their support website, so google didn't cache it. I'm already concerned with the errors that I'm finding, and I've only just finished Chapter 2 of the Switching book. Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=44638t=44638 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
council cable --- Cisco to Nortel/Bay [7:44639]
5/21/200210:45am Tuesday Professionals, I have a Cisco terminal server controlling 15 Cisco routers/switches/PIXs I would like to add support for 4 Nortel routers. The Nortel council cable is DB9 female to BD 9 female strait thru. My plan is to plug plastic terminal adapters [ DB 9 to RJ 45 ] into the Nortel devices. Can anyone give me an idea for the pin out on this ? Thanks, Richard // Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=44639t=44639 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Errata for Coriolis books? [7:44638]
I'm not sure that they ever made errata files available to the public(at least none of any substance). And I have good reason to believe that, like all publishers, they ignored the feedback that they begged for. After a few automated we'll be in touch responses, I gave up on them. Only ever read one book (routing) and it was pretty bad. Only good for very final review so you won't be misled. Robert Kulagowski wrote: Now that Coriolis is kaput, does anyone have the errata for Exam Prep books 640-503 (Routing) and 640-504 (Switching)? I've tried to use google to see if any were available, but apparently Coriolis was using a dynamic page on their support website, so google didn't cache it. I'm already concerned with the errors that I'm finding, and I've only just finished Chapter 2 of the Switching book. Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=44640t=44638 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Errata for Coriolis books? [7:44638]
I was hoping that wasn't going to be the case (in that they apparently never did anything with the feedback). Does anyone have recommendations for a publisher that 1) Has good reading material for CCNP and 2) Actually maintains an errata page that incorporates feedback? As far as #2, I've had good results with Sybex, at least on the CCNA material. The support person answered emails quickly, and a few days later I would see that the errata page had been updated. One thing that the support person told me was that errata had to be checked with the authors, so this might also factor in. I see from the archive that Priscilla O. is still an active contributor; do any other authors of CCXX material frequent this or other lists? Thanks. Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=44641t=44638 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Errata for Coriolis books? [7:44638]
I'm a big fan of most Cisco Press books. However, they totally ignore feedback and I know of times where folks have pointed out clear errata only to see the book go through several more printings with the same errrors. I read both CCNP libraries and found all but one of the books in them to be anywhere from satisfactory to great. Stay away from the routing book in the Cert Library (as opposed to the Prep Library) - at least until you know the material well enough to spot where the author or the editors didn't know the fundamentals of some of the material (lots of LSAs going the wrong direction, etc). In any case, I recommend one or both libraries. They can be found reasonably priced at bookpool and several others I have seen metioned here. Robert Kulagowski wrote: I was hoping that wasn't going to be the case (in that they apparently never did anything with the feedback). Does anyone have recommendations for a publisher that 1) Has good reading material for CCNP and 2) Actually maintains an errata page that incorporates feedback? As far as #2, I've had good results with Sybex, at least on the CCNA material. The support person answered emails quickly, and a few days later I would see that the errata page had been updated. One thing that the support person told me was that errata had to be checked with the authors, so this might also factor in. I see from the archive that Priscilla O. is still an active contributor; do any other authors of CCXX material frequent this or other lists? Thanks. Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=44642t=44638 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Inquiry [7:44643]
Greetings, I am preparing for my CCIE in Security, can you suggest some few books to use as a guide?? You can assume I am a beginner in this field ; I do posses ccna-wan and mid way ccnp-LAN. Much Thanks. -Regards -Abe Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=44643t=44643 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Doyle on Lab Rats [7:44611]
Your comments are false and you sound very ignorant. I work with guys who have 20 years experience and to trouble shoot a problem take months. This is because they don't know how the protocols work. How much money can a company afford to lose when production is downloading for a considerable amount of time? That's why as a mangersÂ’ we send Engineers on training to learn about new and merging technologies. And thatÂ’s before you can put or do any upgrades to the production network you must first try it out in the lab. Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=44644t=44611 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Errata for Coriolis books? [7:44638]
Actually, I believe Richard Deal (author of the Coriolis Exam Cram Switching) frequents this list occasionally. Hopefully, he'll see this and can address your concerns. Shawn K. -Original Message- From: Robert Kulagowski [mailto:[EMAIL PROTECTED]] Sent: Tuesday, May 21, 2002 1:13 PM To: [EMAIL PROTECTED] Subject: RE: Errata for Coriolis books? [7:44638] I was hoping that wasn't going to be the case (in that they apparently never did anything with the feedback). Does anyone have recommendations for a publisher that 1) Has good reading material for CCNP and 2) Actually maintains an errata page that incorporates feedback? As far as #2, I've had good results with Sybex, at least on the CCNA material. The support person answered emails quickly, and a few days later I would see that the errata page had been updated. One thing that the support person told me was that errata had to be checked with the authors, so this might also factor in. I see from the archive that Priscilla O. is still an active contributor; do any other authors of CCXX material frequent this or other lists? Thanks. Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=44646t=44638 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Errata for Coriolis books? [7:44638]
Most of the Sybex books I've read have been too dummied down to be of any use by themselves, but Todd Lammle's writing style is easy enough to understand that you can take a technology you know nothing about, read a couple pages, then have a handle on the basics of it. From there it's easier (for me at least) to cross reference with a more detailed book without getting mired down in the jargon. The ciscopress books worked nicely for me along those lines, as the old ciscopress ccnp books read like stereo instructions. For the IGP's on the routing exam, you may want to check out Solie's CCIE Practical Studies book. It goes into more detail than you need to for the NP exams, but everything is demonstrated in lab walk-thru exercises that you can set up with a few routers. I haven't checked out the ciscopress books for any of the NP exams (I took mostly the older versions) but you may want to pick that up, as Solie's book doesn't cover BGP. -Original Message- From: Robert Kulagowski [mailto:[EMAIL PROTECTED]] Sent: Tuesday, May 21, 2002 1:13 PM To: [EMAIL PROTECTED] Subject: RE: Errata for Coriolis books? [7:44638] I was hoping that wasn't going to be the case (in that they apparently never did anything with the feedback). Does anyone have recommendations for a publisher that 1) Has good reading material for CCNP and 2) Actually maintains an errata page that incorporates feedback? As far as #2, I've had good results with Sybex, at least on the CCNA material. The support person answered emails quickly, and a few days later I would see that the errata page had been updated. One thing that the support person told me was that errata had to be checked with the authors, so this might also factor in. I see from the archive that Priscilla O. is still an active contributor; do any other authors of CCXX material frequent this or other lists? Thanks. Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=44647t=44638 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Errata for Coriolis books? [7:44638]
One thing to add there, the most recent revision of the Networking Academy curriculum has animations that would have saved me hours and hours of headaches if I'd had them when I was first learning OSPF, and it also presents BGP in an understandable manner. -Original Message- From: s vermill [mailto:[EMAIL PROTECTED]] Sent: Tuesday, May 21, 2002 1:30 PM To: [EMAIL PROTECTED] Subject: RE: Errata for Coriolis books? [7:44638] I'm a big fan of most Cisco Press books. However, they totally ignore feedback and I know of times where folks have pointed out clear errata only to see the book go through several more printings with the same errrors. I read both CCNP libraries and found all but one of the books in them to be anywhere from satisfactory to great. Stay away from the routing book in the Cert Library (as opposed to the Prep Library) - at least until you know the material well enough to spot where the author or the editors didn't know the fundamentals of some of the material (lots of LSAs going the wrong direction, etc). In any case, I recommend one or both libraries. They can be found reasonably priced at bookpool and several others I have seen metioned here. Robert Kulagowski wrote: I was hoping that wasn't going to be the case (in that they apparently never did anything with the feedback). Does anyone have recommendations for a publisher that 1) Has good reading material for CCNP and 2) Actually maintains an errata page that incorporates feedback? As far as #2, I've had good results with Sybex, at least on the CCNA material. The support person answered emails quickly, and a few days later I would see that the errata page had been updated. One thing that the support person told me was that errata had to be checked with the authors, so this might also factor in. I see from the archive that Priscilla O. is still an active contributor; do any other authors of CCXX material frequent this or other lists? Thanks. Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=44648t=44638 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: problem with crypto access list !!! [7:44598]
You will solve this problem if you first remove the crypto map xxx in the interface where you attach this crypto map xxx, then you can remove access-list or change configuration in the crypto map,etc. When you finish the reconfiguration, you put again the crypto map in the correct interface. Hope this help. -- -- Alfredo Pulido [EMAIL PROTECTED] CCDA Dept. Sistemas, IdecNet S.A. Juan XXIII 44 // E-35004 Las Palmas de Gran Canaria, Las Palmas // SPAIN Tel: +34 828 111 000 Fax: +34 828 111 112 http://www.idecnet.com/ -- Jim Gillen escribis en el mensaje [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... Pat Some comments: 1. For IPSec to work the access list at the other end for the crypto map priority that is matched in the SA must be the mirror of yours ie. access-list 120 permit ip 10.54.1.0 0.0.0.255 10.55.1.0 0.0.0.255 2. issue a sh crypto ipsec sa command with the access list still active and the with the access list deleted. The output of this command will tell you if any IPSec connections have been formed. 3. Try a debug crypto isakmp and debug crypto ipsec and apply the crypto map to the interface and watch the debug output. Example outputs are on the CCO... 3. Is this same access list applied to the interface you telnet to the other router in such a way that removing it leaves a deny any any on that interface ( I assume the access list 20 you refer to is actually access list 120)? Hope this helps. Cheers Jim Gillen Snr Communications Engineer AUSTRAC Ph: 9950 0842 Fax: 9950 0074 pat 21/05/02 14:00:38 This message has been scanned by MAILSweeper. I am trying to set up site to site tunnel between cisco routers. I am having problem with crypto access list on remote outers. I am configrung access-list 120 crypto commands as follows crypto isakmp policy 10 authentication pre-share crypto isakmp key ** address XX.XX.XX.XX ! ! crypto ipsec transform-set test esp-3des esp-md5-hmac ! crypto map test 20 ipsec-isakmp set peer XX.XX.XX.XX set transform-set test match address 120 access-list 120 permit ip 10.55.1.0 0.0.0.255 10.54.1.0 0.0.0.255 I have acess to remote routers through telnet over the internet. List 20 is in no way related to my access. But when I try to remove access-list 20 i loose my telnet session can't ping it either. This happened on multiple remote routers. I am using IOS (tm) C2600 Software (C2600-IK9O3S-M), Version 12.2(3), RELEASE SOFTWARE (fc1) In ideas why this is happening ? Thank you all, Pat __ Do You Yahoo!? LAUNCH - Your Yahoo! Music Experience http://launch.yahoo.com __ To unsubscribe from the SECURITY list, send a message to [EMAIL PROTECTED] with the body containing: unsubscribe SECURITY ** This email and any files transmitted with it are confidential and intended solely for the use of the individual or entity to whom they are addressed. If you have received this email in error please notify the system manager. This footnote also confirms that this email message has been swept by MIMEsweeper for the presence of computer viruses. www.mimesweeper.com ** Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=44645t=44598 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Bridge and switch [7:44649]
Could somebody will please describe me the difference in between bridge and switch. Thanks Ravi Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=44649t=44649 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Bridge and switch [7:44649]
Marketing! A switch is simply a multiport bridge. Bridges originally had very few ports, as few as two. When hardware became faster and manufacturers started adding more ports to their bridges they started calling them switches to differentiate them from their slower brethren with fewer ports. John rtiwari 5/21/02 12:57:01 PM Could somebody will please describe me the difference in between bridge and switch. Thanks Ravi Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=44651t=44649 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Bridge and switch [7:44649]
A switch is a multiport bridge. Think of a bridge that bridges together 2 networks (i.e. has two interfaces, one in each network). Then supposed you upgrade to a 3 port bridge, that can connect 3 networks. keep adding ports up to 4, 8, 12, 24, or even 48 and that's a switch. The switch operates pretty much like a bridge where it watches the source MAC addresses in frames, builds a table of MAC addresses and corresponding ports (the CAM table), and forwards broadcasts or traffic destined for a MAC address not in it's CAM table out all ports (except the one it received the frame on) Mike W. rtiwari wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... Could somebody will please describe me the difference in between bridge and switch. Thanks Ravi Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=44652t=44649 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Logic and Lab Rats [7:44653]
At 1:49 PM -0400 5/21/02, Thompson Alton wrote: Your comments are false and you sound very ignorant. I work with guys who have 20 years experience and to trouble shoot a problem take months. I suggest, Sir, that you examine your logic. The Internet and predecessors (including enterprise networks) are at least 20-30 years old. I first used a time-sharing computer, with remote access, about 1968. Cisco certification is under 10 years old. The Internet and its predecessors worked before Cisco certification Some people with 20 years experience, therefore, MUST be very knowledgeable on protocols. Other people with 20 years experience are not. This is because they don't know how the protocols work. How much money can a company afford to lose when production is downloading for a considerable amount of time? That's why as a mangersm we send Engineers on training to learn about new and merging technologies. And thatms before you can put or do any upgrades to the production network you must first try it out in the lab. Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=44653t=44653 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Bridge and switch [7:44649]
A bridge spans a body of water so that two pieces of land can be connected and switch is used to control the flow of electricityJust kidding! Try this link (watch for wrap)!: http://www.cisco.com/univercd/cc/td/doc/cisintwk/ito_doc/bridging.htm Shawn K. -Original Message- From: rtiwari [mailto:[EMAIL PROTECTED]] Sent: Tuesday, May 21, 2002 2:57 PM To: [EMAIL PROTECTED] Subject: Bridge and switch [7:44649] Could somebody will please describe me the difference in between bridge and switch. Thanks Ravi Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=44654t=44649 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Bridge and switch [7:44649]
Switching is a marketing term. You would be wise to focus on Bridging and Routing and when the word switch appears, read to fine print to figure out if the device in question bridges or routes. At 02:57 PM 5/21/2002 -0400, rtiwari wrote: Could somebody will please describe me the difference in between bridge and switch. Thanks Ravi Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=44655t=44649 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Bridge and switch [7:44649]
ideally when during evalution there was a need for a device to interconnect two networks and bridges came into existence which let two segments to be connected, so that alfi in accounts can send messages to rita in marketing. when the greedy boss extended the company he bought in many computers and users segments started growing and the evalution commanded the need for a switch, a multi port bridge later when the greedy boss starting expaning to many cities rotuers were born to interconnect the offices :) sen - Quoting rtiwari : Could somebody will please describe me the difference in between bridge and switch. Thanks Ravi cheers - sen Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=44656t=44649 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Bridge and switch [7:44649]
Switch = mega interfaced bridge. Dave rtiwari wrote: Could somebody will please describe me the difference in between bridge and switch. Thanks Ravi -- David Madland Sr. Network Engineer CCIE# 2016 Qwest Communications Int. Inc. [EMAIL PROTECTED] 612-664-3367 Emotion should reflect reason not guide it Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=44658t=44649 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Logic and Lab Rats [7:44653]
Do you remember Mainframe systems??? Do you remember LU and PU and logic controllers?? Do they all work the same as IP networks or VOIP and IP telephony networks? Do you know all the traffic in your data network??? You seem to be bitter about something. Do you want someone with 20 years experience Appling a network change without testing out first in a lab environment??? Last but certainly not least, how many mainframe guys know IP networking. You provide me a listÂ…Answer is very few. Many PBX or Telecomm Engineer knows VOIP or IP Telephony?? Answer is very few. Giving me dates when things start is like tell me that we still need to go print a circuit board for two days and use tubes, diodes, and transistors, instead a sing microprocessor. Finally, There are many people with 20 years of experience who feel that they donÂ’t need to learn new technologies and therefore still trying fight progress. We do not know every thing out there but at least we can try to be knowledge as possible. You need to be more appreciative of people who want to be the best. Be weather it be CCIE or Cissp. They have to study just like any other professional. If my doctor doesnÂ’t put in at least 100 hours of training and giving me a diagnostic, I will sue his pants off. Stop being an idiot Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=44657t=44653 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Earth and grounding for CISCO products [7:44558]
If you want a quick test to see if the earth is good or not, your voltmeter will do (on AC mode). Just stick one lead into the live socket and the other into the ground socket. If it reads the same as when measured between live and neutral, then your ground is good. Alternatively, if you measure more than a few volts between the ground and neutral, then the ground is not good. Here's another test you can try that gives you a little more confidence in determining if you have a good ground. If your voltmeter contains an ohmeter (most multimeters do), then try measuring the resistance between the questionable ground and another known good ground (found at another location - preferably a circuit breaker panel on bare steel). If the resistance is only a few ohms ( 10 ohms from the long meter test lead resistances), then your ground is probably good. Before you do this test, check the voltage first, so you don't damage your meter. To get the extra meter lead distance required to measure between these distant points, you can use an extension cord. Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=44659t=44558 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Bridge and switch [7:44649]
John and Mike are both right. As a matter of fact, there are several definitions. In my opinion, the whole topic is adequately described in Interconnections, by Radia Perlman. Her take (in a nutshell) is that they are technically one in the same and that the difference is marketing terminology. Ethernet switches are essentially multi-port transparent bridges (but what bridge isn't 2 ports or more?). A Ethernet switch or bridge with only 2 ports could be called a switch or bridge depending on which one is a better market term. As time has evolved, new functionality has been introduced into Ethernet switches, but at their base functionality, it's all pretty much the same. -Original Message- From: Michael L. Williams [mailto:[EMAIL PROTECTED]] Sent: Tuesday, May 21, 2002 3:20 PM To: [EMAIL PROTECTED] Subject: Re: Bridge and switch [7:44649] A switch is a multiport bridge. Think of a bridge that bridges together 2 networks (i.e. has two interfaces, one in each network). Then supposed you upgrade to a 3 port bridge, that can connect 3 networks. keep adding ports up to 4, 8, 12, 24, or even 48 and that's a switch. The switch operates pretty much like a bridge where it watches the source MAC addresses in frames, builds a table of MAC addresses and corresponding ports (the CAM table), and forwards broadcasts or traffic destined for a MAC address not in it's CAM table out all ports (except the one it received the frame on) Mike W. rtiwari wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... Could somebody will please describe me the difference in between bridge and switch. Thanks Ravi Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=44660t=44649 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: debug ppp authentication [7:44575]
Here is what I had on mine: 2 2524's RTG# 2d01h: Se0 PPP: Treating connection as a dedicated line 2d01h: Se0 PAP: O AUTH-REQ id 2 len 14 from RTG 2d01h: Se0 PAP: I AUTH-REQ id 2 len 14 from RTF 2d01h: Se0 PAP: I AUTH-ACK id 2 len 5 2d01h: Se0 PAP: Authenticating peer RTF 2d01h: Se0 PAP: O AUTH-ACK id 2 len 5 I configed RTG and RTF with pap auth. on s 0, did a shut and a no shut and got this result. Config on RTG: Current configuration: ! interface Serial0 ip address 1.1.1.2 255.255.255.0 encapsulation ppp no fair-queue service-module 56k clock source internal ppp authentication pap ppp pap sent-username RTG password 7 070C285F4D06 end Config on RTF: Current configuration: ! interface Serial0 ip address 1.1.1.1 255.255.255.0 encapsulation ppp no fair-queue ppp authentication pap ppp pap sent-username RTF password 7 060506324F41 end Using ver. RTF#sh ver Cisco Internetwork Operating System Software IOS (tm) 2500 Software (C2500-JS-L), Version 12.1(2), RELEASE SOFTWARE (fc1) Hope this helps. From: Mike Sweeney Reply-To: Mike Sweeney To: [EMAIL PROTECTED] Subject: RE: debug ppp authentication [7:44575] Date: Tue, 21 May 2002 09:58:36 -0400 This is off a 2504. It's also on my other 2500s with 12.x code What are you running for a router? one of those space heaters from a long time ago ;-) MikeS CentralRouter#debug ppp authen CentralRouter#debug ppp authentication ? CentralRouter#debug ppp authentication PPP authentication debugging is on CentralRouter#ping 192.168.1.2 Type escape sequence to abort. Sending 5, 100-byte ICMP Echos to 192.168.1.2, timeout is 2 seconds: 00:05:16: %LINK-3-UPDOWN: Interface BRI0:1, changed state to up 00:05:16: %DIALER-6-BIND: Interface BRI0:1 bound to profile Dialer1. 00:05:16: BR0:1 PPP: Treating connection as a callout 00:05:16: BR0:1 PPP: Phase is AUTHENTICATING, by the peer 00:05:16: BR0:1 AUTH: Started process 0 pid 28 00:05:16: BR0:1 CHAP: I CHALLENGE id 1 len 33 from BranchRouter 00:05:16: BR0:1 CHAP: O RESPONSE id 1 len 34 from CentralRouter 00:05:16: BR0:1 CHAP: I SUCCESS id 1 len 4 00:05:17: %LINEPROTO-5-UPDOWN: Line protocol on Interface BRI0:1, changed state to up... 00:05:22: %ISDN-6-CONNECT: Interface BRI0:1 is now connected to 55 55. Success rate is 0 percent (0/5) CentralRouter# _ Send and receive Hotmail on your mobile device: http://mobile.msn.com Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=44661t=44575 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Logic and Lab Rats [7:44653]
Shucks, folks, 'most everyone knows that the real world has its moments. Users. They generally provide considerable exposure to that which is perceived as real. 'Course, it's always nice to have a test-bed; but I think lab rat is a different definition. So, perhaps to lighten things up, here's a little ditty from the past. = Psychologists have recently decided to refrain from using white rats as experimental animals. So, instead, they decided to use lawyers. It seems the psycs wanted to avoid an emotional attachment... ;-) But, on real-world experience (get the thread!?), the psychological community found that there was a hidden advantage in the change. There are some things that white rats just won't do. Happy M-o-n-d-a-y Best, G. VP OCG Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=44662t=44653 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: CCIE Written Question [7:44578]
Very good. just on time. I am going to take my CCIE written this Friday. Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=44663t=44578 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Logic and Lab Rats [7:44653]
Why do you folks bother arguing these useless points? If you lost a job to someone who had less experience than you or vice versa, don't cry foul, go learn how to interview or reevaluate exactly what it is you bring to an employer and make sure you are getting that across. At 03:56 PM 5/21/2002 -0400, Thompson Alton wrote: Do you remember Mainframe systems??? Do you remember LU and PU and logic controllers?? Do they all work the same as IP networks or VOIP and IP telephony networks? Do you know all the traffic in your data network??? You seem to be bitter about something. Do you want someone with 20 years experience Appling a network change without testing out first in a lab environment??? Last but certainly not least, how many mainframe guys know IP networking. You provide me a listAnswer is very few. Many PBX or Telecomm Engineer knows VOIP or IP Telephony?? Answer is very few. Giving me dates when things start is like tell me that we still need to go print a circuit board for two days and use tubes, diodes, and transistors, instead a sing microprocessor. Finally, There are many people with 20 years of experience who feel that they dont need to learn new technologies and therefore still trying fight progress. We do not know every thing out there but at least we can try to be knowledge as possible. You need to be more appreciative of people who want to be the best. Be weather it be CCIE or Cissp. They have to study just like any other professional. If my doctor doesnt put in at least 100 hours of training and giving me a diagnostic, I will sue his pants off. Stop being an idiot Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=44664t=44653 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Bridge and switch [7:44649]
This begs the question, what is the difference between a multi-port bridge and a switch? Or, what is a switch when it routes? I personally think bridge and router convey with relatively little ambiguity the function of a device whereas switch is simply a tool that marketing folks use when they need to reverse their previous opinion on devices. IE, after telling folks routers are better than bridges for a few years (in order to sell routers), when it becomes more lucrative to sell bridges again, one can simply call the bridge a switch and superficially maintains ones integrity. Furthermore, when it becomes more lucrative to sell routers again, one can simply call the router a layer 3 switch and again perform the switchback without visibly contradicting ones previous assertion. I think the chain looks something like this bridges - routers - switches - l3 switches - etc etc At 04:02 PM 5/21/2002 -0400, MADMAN wrote: Switch = mega interfaced bridge. Dave rtiwari wrote: Could somebody will please describe me the difference in between bridge and switch. Thanks Ravi -- David Madland Sr. Network Engineer CCIE# 2016 Qwest Communications Int. Inc. [EMAIL PROTECTED] 612-664-3367 Emotion should reflect reason not guide it Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=44665t=44649 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Bridge and switch [7:44649]
is it good to say that Bridge supports up to 16 ports ans is software based. but Switch supports any number od ports and is hardware based. Peter van Oene wrote: This begs the question, what is the difference between a multi-port bridge and a switch? Or, what is a switch when it routes? I personally think bridge and router convey with relatively little ambiguity the function of a device whereas switch is simply a tool that marketing folks use when they need to reverse their previous opinion on devices. IE, after telling folks routers are better than bridges for a few years (in order to sell routers), when it becomes more lucrative to sell bridges again, one can simply call the bridge a switch and superficially maintains ones integrity. Furthermore, when it becomes more lucrative to sell routers again, one can simply call the router a layer 3 switch and again perform the switchback without visibly contradicting ones previous assertion. I think the chain looks something like this bridges - routers - switches - l3 switches - etc etc At 04:02 PM 5/21/2002 -0400, MADMAN wrote: Switch = mega interfaced bridge. Dave rtiwari wrote: Could somebody will please describe me the difference in between bridge and switch. Thanks Ravi -- David Madland Sr. Network Engineer CCIE# 2016 Qwest Communications Int. Inc. [EMAIL PROTECTED] 612-664-3367 Emotion should reflect reason not guide it Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=44666t=44649 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Logic and Lab Rats [7:44653]
Peter, your a genius very good point. Jason CCIE 8748 Peter van Oene wrote: Why do you folks bother arguing these useless points? If you lost a job to someone who had less experience than you or vice versa, don't cry foul, go learn how to interview or reevaluate exactly what it is you bring to an employer and make sure you are getting that across. At 03:56 PM 5/21/2002 -0400, Thompson Alton wrote: Do you remember Mainframe systems??? Do you remember LU and PU and logic controllers?? Do they all work the same as IP networks or VOIP and IP telephony networks? Do you know all the traffic in your data network??? You seem to be bitter about something. Do you want someone with 20 years experience Appling a network change without testing out first in a lab environment??? Last but certainly not least, how many mainframe guys know IP networking. You provide me a listAnswer is very few. Many PBX or Telecomm Engineer knows VOIP or IP Telephony?? Answer is very few. Giving me dates when things start is like tell me that we still need to go print a circuit board for two days and use tubes, diodes, and transistors, instead a sing microprocessor. Finally, There are many people with 20 years of experience who feel that they dont need to learn new technologies and therefore still trying fight progress. We do not know every thing out there but at least we can try to be knowledge as possible. You need to be more appreciative of people who want to be the best. Be weather it be CCIE or Cissp. They have to study just like any other professional. If my doctor doesnt put in at least 100 hours of training and giving me a diagnostic, I will sue his pants off. Stop being an idiot Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=44667t=44653 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Help with pix!! [7:44668]
Hi users I was wondering if can someone help me out this this problem I been experiencing Users behind the firewall can open a session on this web site http://www.oit.ohio-state.edu/userpass.html it has a link to a telnet session to a particular port 1607 I create an access-list allowing some networks to access this site and the application I then applied it to the inside interface but no luck. Here are some commands I did a nslookup to site itself to figure out the ip address 128.146.60.10 Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=44668t=44668 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Bridge and switch [7:44649]
ditto, you won't get an argument from me!!! Peter van Oene wrote: This begs the question, what is the difference between a multi-port bridge and a switch? Or, what is a switch when it routes? I personally think bridge and router convey with relatively little ambiguity the function of a device whereas switch is simply a tool that marketing folks use when they need to reverse their previous opinion on devices. IE, after telling folks routers are better than bridges for a few years (in order to sell routers), when it becomes more lucrative to sell bridges again, one can simply call the bridge a switch and superficially maintains ones integrity. Furthermore, when it becomes more lucrative to sell routers again, one can simply call the router a layer 3 switch and again perform the switchback without visibly contradicting ones previous assertion. I think the chain looks something like this bridges - routers - switches - l3 switches - etc etc At 04:02 PM 5/21/2002 -0400, MADMAN wrote: Switch = mega interfaced bridge. Dave rtiwari wrote: Could somebody will please describe me the difference in between bridge and switch. Thanks Ravi -- David Madland Sr. Network Engineer CCIE# 2016 Qwest Communications Int. Inc. [EMAIL PROTECTED] 612-664-3367 Emotion should reflect reason not guide it -- David Madland Sr. Network Engineer CCIE# 2016 Qwest Communications Int. Inc. [EMAIL PROTECTED] 612-664-3367 Emotion should reflect reason not guide it Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=44669t=44649 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Logic and Lab Rats [7:44653]
I thought the experience versus certification debate had finally died a few days ago, but now it resurfaces over on the professional list. I may as well weigh in. The problem here is clear. Some folks with lots of experience are scared (or merely offended) that some manager or client might think some relative newbie with great-sounding certs is as good or better (or even nearly as good) as the more experienced folks. Many of these experienced people gained their experience in difficult or underpaid conditions. The last thing they want is some ambitious upstart invaders studying hard in the lab, then walking into their field and being treated as their peers. The experience is everything crowd should relax right now, because in this economy, they are in the driver's seat. One the other hand, the lab rats, myself included, are justifiably scared. We knew that if by studying hard we managed to reach a higher position than our experience alone would justify, we might face some hostility from those with lots of experience. Now, however, we are given to understand that for employers right now, experience is king, since there are plenty of folks with lots of experience and good certs to fill all positions that HAVE to be filled (as opposed to those positions that employers advertise but are in no hurry to fill). Then, there's the common complaint that, I'm always having to fix the networks screwed up by the paper-CCNAs, paper-MCSEs, Lab Rats, etc.I have enough experience to know that plenty of the screwing-up of networks is done by folks with lots of experience. It doesn't take long in the field to run across an arrogant but extremely experienced guy who thinks he is the only person in his company who knows anything, and then proceeds to break things that he then cannot fix. A little humility is called for in a field where almost no one can know everything and where most of the greatest gurus make glaring errors. Best regards, Tom Larus Howard C. Berkowitz wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... At 1:49 PM -0400 5/21/02, Thompson Alton wrote: Your comments are false and you sound very ignorant. I work with guys who have 20 years experience and to trouble shoot a problem take months. I suggest, Sir, that you examine your logic. The Internet and predecessors (including enterprise networks) are at least 20-30 years old. I first used a time-sharing computer, with remote access, about 1968. Cisco certification is under 10 years old. The Internet and its predecessors worked before Cisco certification Some people with 20 years experience, therefore, MUST be very knowledgeable on protocols. Other people with 20 years experience are not. This is because they don't know how the protocols work. How much money can a company afford to lose when production is downloading for a considerable amount of time? That's why as a mangersm we send Engineers on training to learn about new and merging technologies. And thatms before you can put or do any upgrades to the production network you must first try it out in the lab. Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=44670t=44653 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
DHCP NACK problems [7:44671]
This may or may not be a Cisco issue but I am running DHCP on a NT 4.0 server and it's been giving Nacks for the past 5 days and is causing a major headache. Every Nack has been coming from the same subnet as the DHCP server which seems even more strange. I've watched the packets being broadcasted with a sniffer and I can see the client requesting, the server replying with all the DHCP information, the client request again, and the server then giving a nack. If I get an IP from a VLAN or token ring subnet, I don't have any problems. I've been trying to find a rogue DHCP server but there doesn't seem to be one. I don't think it's any of the routers because they don't need to cross them to get to the DHCP server (except VLAN and token ring which don't seem to have problems). Has anyone had similar problems and if so, did you come across a solution? We're starting to think the DHCP database might be corrupted and ready to blow it away (ack!) Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=44671t=44671 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Console Kit for 1924 [7:44619]
Man- I had one of these a few years ago and if I'm not mistaken it's a DB9 female to DB9 female Null. All the best !!! Phil -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] On Behalf Of Justin Clark Sent: Tuesday, May 21, 2002 10:52 AM To: [EMAIL PROTECTED] Subject: Console Kit for 1924 [7:44619] I have an older Cisco Cat 1924 switch with a db9 console port on it. Does anyone know where I can buy barter or steal a set of cables to get me into the thing, I have tried every combination of cable I currently have but they are apparently all the wrong pin-outs. Thanks, Justin Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=44672t=44619 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Operation Firmware is invalid? Please help...Urgent [7:44673]
Cisco ws-c1900 switch. Using db9F-rollover-db9F or null modem cable I can connect to the console port and get into Diag Console fine, but when I try to just plug in and configure the switch it just starts spitting out ATQ0H0 in hyperterminal PE. I hunted around and a couple places that I found said try updating the firmware. So I hit cisco's site and downloaded cat1900A.9.00.04.bin which was the only 1900 firmware I could find, The previous version was 5.34. So anyway, I did the XModem firmware upgrade, as soon as it asks me to send the file it kicks back an error that says Transfer cancelled by remote system (convenietly after it has erased existing firmware) and then prints out: Operation firmware version: 0.00Status: Invalid Boot firmware version: 1.10 WARNING!!! Operation Firmware is invalid. Upgrade firmware to enable switch operation. Im stuck at this point, does anyone know what to do or how to get a copy of the firmware that works on this switch? and then at that point what kind of cables, etc do i need to configure the darn thing. If anyone can get back to me in a hurry or has a version of the firmware that DOES work on this model it would be greatly apprecieated as this switch is dead in the water, along with the LAN that is suppost to be connected to it. Thanks, Justin Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=44673t=44673 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Logic and Lab Rats [7:44653]
Last but certainly not least, how many mainframe guys know IP networking. You provide me a list?Answer is very few. Not where I work. I know and have worked with quite a few mainframe guys (and at least one extremely knowledgeable mainframe gal - although I'm not sure she'd appreciate the term) who are also quite comfortable with IP (i.e. to CCNP level at least, although they don't all have the certs). ALL of the mainframe comms people I work with, and probably all of the mainframe OS people as well, have at least a basic understanding of IP networking. After all, these days mainframes run IP. The mainframe world hasn't stood still over the last twenty years, any more than the IP world, and anyone with ten year old mainframe experience is likely to be lost in a current mainframe environment. I'd be quite happy about somebody with twenty years network experience - or 3 months, for that matter - applying a network change without first lab testing - *in certain circumstances*. I have done it myself several times, because in those particular situations, testing in a lab environment wasn't feasible and wouldn't have picked up the most likely problems anyway. What I *wouldn't* be happy about would be somebody (of any experience level) doing so if they hadn't had their plans and design well checked, hadn't weighed up the risks, couldn't say what their post-install checks would be, what their monitoring plans were, and what their contingency plans were. In my opinion common sense beats both certs and experience hands down, and fortunately none of them are mutually exclusive. Pity common sense isn't easily tested for (and anyway, even the most sensible people tend to have what the hell did I do that for episodes occasionally). JMcL Important: This e-mail is intended for the use of the addressee and may contain information that is confidential, commercially valuable or subject to legal or parliamentary privilege. If you are not the intended recipient you are notified that any review, re-transmission, disclosure, use or dissemination of this communication is strictly prohibited by several Commonwealth Acts of Parliament. If you have received this communication in error please notify the sender immediately and delete all copies of this transmission together with any attachments. Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=44674t=44653 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Inquiry [7:44643]
Oh News flash! Consider getting a job where you use Cisco Security products? And you work for Cisco too... Now I really wonder about that company Theo elmoufti Sent by: [EMAIL PROTECTED] 05/22/2002 02:47 AM Please respond to elmoufti To: [EMAIL PROTECTED] cc: Subject:Inquiry [7:44643] Greetings, I am preparing for my CCIE in Security, can you suggest some few books to use as a guide?? You can assume I am a beginner in this field ; I do posses ccna-wan and mid way ccnp-LAN. Much Thanks. -Regards -Abe Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=44675t=44643 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Logic and Lab Rats [7:44653]
Whadda ya mean remember? We still have them and we have to support them as well as TR, Ethernet , SNA, Cisco,IP,Cabletron, Coax, etc. -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] Sent: Tuesday, May 21, 2002 12:57 PM To: [EMAIL PROTECTED] Subject: RE: Logic and Lab Rats [7:44653] Do you remember Mainframe systems??? Do you remember LU and PU and logic controllers?? Do they all work the same as IP networks or VOIP and IP telephony networks? Do you know all the traffic in your data network??? You seem to be bitter about something. Do you want someone with 20 years experience Appling a network change without testing out first in a lab environment??? Last but certainly not least, how many mainframe guys know IP networking. You provide me a listAnswer is very few. Many PBX or Telecomm Engineer knows VOIP or IP Telephony?? Answer is very few. Giving me dates when things start is like tell me that we still need to go print a circuit board for two days and use tubes, diodes, and transistors, instead a sing microprocessor. Finally, There are many people with 20 years of experience who feel that they dont need to learn new technologies and therefore still trying fight progress. We do not know every thing out there but at least we can try to be knowledge as possible. You need to be more appreciative of people who want to be the best. Be weather it be CCIE or Cissp. They have to study just like any other professional. If my doctor doesnt put in at least 100 hours of training and giving me a diagnostic, I will sue his pants off. Stop being an idiot Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=44676t=44653 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Fans too Noisey (2500 Series Router) [7:44571]
Take the covers off and take a big, giant fat and blow, baby, blow. Are better yet, how about moving it out of the living room or put some insulation in the room that it's in. But then again, 2500's are so cheap these days why bother. Remove the fans and buy another one when it melts! -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Kent Hundley Sent: Tuesday, May 21, 2002 7:19 AM To: [EMAIL PROTECTED] Subject: RE: Fans too Noisey (2500 Series Router) [7:44571] Maybe not if you keep the room temperature low enough, but your going to need a lot of air conditioning. ;-) Seriously, disconnecting fans will eventually cause your router, or any computer, to fry. Without heat dissapation, your components will eventually just quit working and fill your house with the lovely smell of burning circuits. You might try buying/building some sort of enclosure, but that enclosure will likely need a fan as well. Regards, Kent -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Will Francis Sent: Monday, May 20, 2002 3:07 PM To: [EMAIL PROTECTED] Subject: Fans too Noisey (2500 Series Router) [7:44571] Hi Guys I've got 7 2500 Series routers in my home lab but its just getting a bit too noisey, if the fans are unplug will this affect the routers. cheers Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=44677t=44571 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Bridge and switch [7:44649]
And it's worth mentioning a couple other things too, just to confuse matters. ;-) Although a switch behaves like a multiport bridge, it is often placed in a topology where a hub used to go. Because a switch has so many ports, people use them to connect individual stations. Bridges were rarely used that way. Bridges connect networks. A switch can forward multiple frames at once, whereas many bridges couldn't. Due to the advanced switching fabric (to use another marketing term), a switch can forward a frame from port 1 to port 2 while at the same time forwarding a frame form port 3 to port 4, for example. Switch design is much more complex than bridge design. Bridges (and first generation switches) had a shared bus and very few bells and whistles. Modern switches use technologies such as ASICs shared memory crosspoint (crossbar) architectures star-wired architectures methods to eliminate head of the line blocking virtual output queuing etc. You get the idea. Priscilla At 03:19 PM 5/21/02, John Neiberger wrote: Marketing! A switch is simply a multiport bridge. Bridges originally had very few ports, as few as two. When hardware became faster and manufacturers started adding more ports to their bridges they started calling them switches to differentiate them from their slower brethren with fewer ports. John rtiwari 5/21/02 12:57:01 PM Could somebody will please describe me the difference in between bridge and switch. Thanks Ravi Priscilla Oppenheimer http://www.priscilla.com Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=44679t=44649 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Errata for Coriolis books? [7:44638]
I have a new book coming out soon for the Support Test. And I plan to manage my own errata sheet (which hopefully will be very small ;-) rather than let the publisher do it. There's more info here: http://www.troubleshootingnetworks.com/ Priscilla At 01:13 PM 5/21/02, Robert Kulagowski wrote: I was hoping that wasn't going to be the case (in that they apparently never did anything with the feedback). Does anyone have recommendations for a publisher that 1) Has good reading material for CCNP and 2) Actually maintains an errata page that incorporates feedback? As far as #2, I've had good results with Sybex, at least on the CCNA material. The support person answered emails quickly, and a few days later I would see that the errata page had been updated. One thing that the support person told me was that errata had to be checked with the authors, so this might also factor in. I see from the archive that Priscilla O. is still an active contributor; do any other authors of CCXX material frequent this or other lists? Thanks. Priscilla Oppenheimer http://www.priscilla.com Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=44678t=44638 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Bridge and switch [7:44649]
At 05:11 PM 5/21/02, rtiwari wrote: is it good to say that Bridge supports up to 16 ports ans is software based. No, I think the discriminator is 15 ports. Just KIDDING! Seriously, assigning a number is not necessary. Most bridges had just two ports, but there probably were a few vendors that had bridges with a few more ports. Most bridges were hardware based. Well, there was that irksome bridge software for the IBM PC that turned it into a source-routing bridge. Throw two NICs into an old PC, run that software, and you could extend your network. Caused all sorts of problems if the PC was underpowered. ;-) Switches have more sophisticated hardware and numerous ports. That's really about all you can say (other than the it's marketing answer and my more detailed answer about switching fabrics.) but Switch supports any number od ports and is hardware based. Peter van Oene wrote: This begs the question, what is the difference between a multi-port bridge and a switch? Or, what is a switch when it routes? I personally think bridge and router convey with relatively little ambiguity the function of a device whereas switch is simply a tool that marketing folks use when they need to reverse their previous opinion on devices. IE, after telling folks routers are better than bridges for a few years (in order to sell routers), when it becomes more lucrative to sell bridges again, one can simply call the bridge a switch and superficially maintains ones integrity. Furthermore, when it becomes more lucrative to sell routers again, one can simply call the router a layer 3 switch and again perform the switchback without visibly contradicting ones previous assertion. I think the chain looks something like this bridges - routers - switches - l3 switches - etc etc At 04:02 PM 5/21/2002 -0400, MADMAN wrote: Switch = mega interfaced bridge. Dave rtiwari wrote: Could somebody will please describe me the difference in between bridge and switch. Thanks Ravi -- David Madland Sr. Network Engineer CCIE# 2016 Qwest Communications Int. Inc. [EMAIL PROTECTED] 612-664-3367 Emotion should reflect reason not guide it Priscilla Oppenheimer http://www.priscilla.com Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=44680t=44649 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Logic and Lab Rats [7:44653]
At 03:56 PM 5/21/02, Thompson Alton wrote: Do you remember Mainframe systems??? Yes. (And if you were asking Howard, the answer is emphatically YES ;-) Do you remember LU and PU and logic controllers?? Yes. Do they all work the same as IP networks or VOIP and IP telephony networks? Yes, pretty much. Networking 30, 20, 10 years ago dealt with the same stuff we're still dealing with today: layers cables wireless (not as much as there is now, but definitely some) circuits (both virtual and real) connectionless versus connection-oriented reliability versus low overhead connection establishment and teardown flow control windowing packetization signaling error detection error correction ACKs and NACKs and WAKs (WAKs kind of fell out of favor) dynamic and static addressing dynamic and static routing pesky users security (although the old-timers should have done better with this ;-) network management transferring files and other data database lookups You get the picture. Do you know all the traffic in your data network??? You seem to be bitter about something. Do you want someone with 20 years experience Appling a network change without testing out first in a lab environment??? Some changes can't be tested in a lab. They could be phased in carefully instead. With good design, testing, troubleshooting methodology, I would be OK with this. Last but certainly not least, how many mainframe guys know IP networking. Many. (Gals too.) You provide me a listAnswer is very few. Many PBX or Telecomm Engineer knows VOIP or IP Telephony?? They're learning. (This is an issue the other way around too, of course. I really struggled with voice at first due to a lack of PBX, telephony knowledge, but I did OK finally, got my CVOICE cert whoopee.) Answer is very few. Giving me dates when things start is like tell me that we still need to go print a circuit board for two days and use tubes, diodes, and transistors, instead a sing microprocessor. Finally, There are many people with 20 years of experience who feel that they dont need to learn new technologies and therefore still trying fight progress. Most old-timers aren't that way, though. We do not know every thing out there but at least we can try to be knowledge as possible. You need to be more appreciative of people who want to be the best. Be weather it be CCIE or Cissp. They have to study just like any other professional. If my doctor doesnt put in at least 100 hours of training and giving me a diagnostic, I will sue his pants off. Lab rats do deserve respect, if that's your point. To get a CCIE is extremely difficult, whether you did it with experience or not. Gotta run. Hope I didn't babble too much. ;-) Stop being an idiot Priscilla Oppenheimer http://www.priscilla.com Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=44681t=44653 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
anybody ever try to make a token ring crossover cable ? [7:44682]
5/21/20029:00pm Tuesday Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=44682t=44682 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: anybody ever try to make a token ring crossover cable ? [7:44683]
No such thing. Thanks Larry -Original Message- From: nettable_walker [mailto:[EMAIL PROTECTED]] Sent: Tuesday, May 21, 2002 9:06 PM To: [EMAIL PROTECTED] Subject: anybody ever try to make a token ring crossover cable ? [7:44682] 5/21/20029:00pm Tuesday Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=44683t=44683 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Logic and Lab Rats [7:44653]
Amen to that. Humility is called for on both sides. Apparently I've been tagged around here as the 'King Experience' guy. The very ironic thing is that on another message board, I was the person who was arguing that experience was NOT as important as other posters had indicated (this was an experience vs. college degree argument). Basically it boiled down to the fact that while experience is indeed extremely valuable, particularly nowadays, even experience can sometimes be taken too far. For example, one guy said that experience always wins no matter what (which is patently false), so I gave him the example of 2 guys, whereas both guys had good experience, but the first guy had stellar degrees from the most famous schools, all kinds of certs, a killer personality, and everything else, whereas the second guy had none of that (besides the experience ), but he had a day's more experience. Hey, if experience really beat everything all the time, then companies should always pick the second guy, because after all, he had more experience (one additional day). Clearly this is false. My point is simply this. Experience, education, certs, work attitude, etc. etc., they all form your suite of qualifications. None of them should be pursued at the exclusion of all others. In fact, the best strategy seems to be to work on your weaknesses. For example, if you have lots of certs and education, but no experience, then get experience. Conversely, if you have lots of experience, but no certs and no education, then go get certs and education. Thomas Larus wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... I thought the experience versus certification debate had finally died a few days ago, but now it resurfaces over on the professional list. I may as well weigh in. The problem here is clear. Some folks with lots of experience are scared (or merely offended) that some manager or client might think some relative newbie with great-sounding certs is as good or better (or even nearly as good) as the more experienced folks. Many of these experienced people gained their experience in difficult or underpaid conditions. The last thing they want is some ambitious upstart invaders studying hard in the lab, then walking into their field and being treated as their peers. The experience is everything crowd should relax right now, because in this economy, they are in the driver's seat. One the other hand, the lab rats, myself included, are justifiably scared. We knew that if by studying hard we managed to reach a higher position than our experience alone would justify, we might face some hostility from those with lots of experience. Now, however, we are given to understand that for employers right now, experience is king, since there are plenty of folks with lots of experience and good certs to fill all positions that HAVE to be filled (as opposed to those positions that employers advertise but are in no hurry to fill). Then, there's the common complaint that, I'm always having to fix the networks screwed up by the paper-CCNAs, paper-MCSEs, Lab Rats, etc.I have enough experience to know that plenty of the screwing-up of networks is done by folks with lots of experience. It doesn't take long in the field to run across an arrogant but extremely experienced guy who thinks he is the only person in his company who knows anything, and then proceeds to break things that he then cannot fix. A little humility is called for in a field where almost no one can know everything and where most of the greatest gurus make glaring errors. Best regards, Tom Larus Howard C. Berkowitz wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... At 1:49 PM -0400 5/21/02, Thompson Alton wrote: Your comments are false and you sound very ignorant. I work with guys who have 20 years experience and to trouble shoot a problem take months. I suggest, Sir, that you examine your logic. The Internet and predecessors (including enterprise networks) are at least 20-30 years old. I first used a time-sharing computer, with remote access, about 1968. Cisco certification is under 10 years old. The Internet and its predecessors worked before Cisco certification Some people with 20 years experience, therefore, MUST be very knowledgeable on protocols. Other people with 20 years experience are not. This is because they don't know how the protocols work. How much money can a company afford to lose when production is downloading for a considerable amount of time? That's why as a mangersm we send Engineers on training to learn about new and merging technologies. And thatms before you can put or do any upgrades to the production network you must first try it out in the lab. Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=44685t=44653 -- FAQ, list archives, and subscription info:
Re: Console Kit for 1924 [7:44619]
Are you sure it's not DB9 to DB9 rolled? We have some of these older 1900s around, and we simply take the standard Cisco console (rolled) cable and stick a RJ-45 to DB9 connector on (similar to the one used to connect the cable to the laptop). Mike W. Phil Lorenz wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... Man- I had one of these a few years ago and if I'm not mistaken it's a DB9 female to DB9 female Null. All the best !!! Phil -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] On Behalf Of Justin Clark Sent: Tuesday, May 21, 2002 10:52 AM To: [EMAIL PROTECTED] Subject: Console Kit for 1924 [7:44619] I have an older Cisco Cat 1924 switch with a db9 console port on it. Does anyone know where I can buy barter or steal a set of cables to get me into the thing, I have tried every combination of cable I currently have but they are apparently all the wrong pin-outs. Thanks, Justin Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=44686t=44619 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Logic and quot;Lab Ratsquot; [7:44653]
Thompson Alton wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... Do you remember Mainframe systems??? Do you remember LU and PU and logic controllers?? Do they all work the same as IP networks or VOIP and IP telephony networks? Do you know all the traffic in your data network??? You seem to be bitter about something. Do you want someone with 20 years experience Appling a network change without testing out first in a lab environment??? But look at it the other way. Do you want some new guy fresh off the street (or fresh off his cert) but who has no experience fiddling around on a mission-critical part of your network? I didn't think so. Last but certainly not least, how many mainframe guys know IP networking. You provide me a list.Answer is very few. Many PBX or Telecomm Engineer knows VOIP or IP Telephony?? Answer is very few. Giving me dates when things start is like tell me that we still need to go print a circuit board for two days and use tubes, diodes, and transistors, instead a sing microprocessor. On the other hand, who's more likely to show up to work late? Or show up drunk or high? Or get into a fight with his coworkers? Or surf porn in front of female coworkers? The guy who's been in the working world for 25 years or a new kid? Experience is not just about knowing which command does what. It's also about general work attitudes and maturity. Finally, There are many people with 20 years of experience who feel that they don't need to learn new technologies and therefore still trying fight progress. There are also a whole lot of new guys who feel they don't need to learn new technologies too. They get their nice shiny CCxx or whatever and they feel that they that's the end of the road. Pride and ignorance exist in both camps. But pride and ignorance generally exists less with the experienced guys because of the laws of evolution. If you were always proud and ignorant and you felt you never had to learn new things, chances are you wouldn't have survived for very long in the industry anyway, so how exactly did you manage to rack up all that experience? That's not to say that there are no experienced guys who are proud and ignorant, but it's just less likely. We do not know every thing out there but at least we can try to be knowledge as possible. You need to be more appreciative of people who want to be the best. Be weather it be CCIE or Cissp. They have to study just like any other professional. If my doctor doesn't put in at least 100 hours of training and giving me a diagnostic, I will sue his pants off. Aw come on now. You might have a young doc fresh out of med school who's just been studying 100 hours a week. On the other hand, you might have an old-doc who's still studying.working for 100 hours a week. So who's likely to be the better doc? Or, let me put it to you more bluntly - if you need life-saving surgery, who do you want operating on you - the guy straight out of med school or the guy who's been around for decades? Exactly. Stop being an idiot Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=44684t=44653 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Logic and Lab Rats [7:44653]
On the other hand, who's more likely to show up to work late? Or show up drunk or high? Or get into a fight with his coworkers? Or surf porn in front of female coworkers? The guy who's been in the working world for 25 years or a new kid? Umm, off-topic, but enlighten me, please. Why is it worse to surf porn in front of female coworkers than it is to surf porn in front of male coworkers? What if it was a woman surfing porn in front of coworkers? Do your opinions change? ;-) JMcL Important: This e-mail is intended for the use of the addressee and may contain information that is confidential, commercially valuable or subject to legal or parliamentary privilege. If you are not the intended recipient you are notified that any review, re-transmission, disclosure, use or dissemination of this communication is strictly prohibited by several Commonwealth Acts of Parliament. If you have received this communication in error please notify the sender immediately and delete all copies of this transmission together with any attachments. Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=44687t=44653 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Logic and Lab Rats [7:44653]
At 03:56 PM 5/21/02, Thompson Alton wrote: Do you remember Mainframe systems??? Yes. (And if you were asking Howard, the answer is emphatically YES ;-) HeHe! Heck I was doing some file transfer troubleshooting on a Mainframe towards the end of last year, I got elected because I knew the switches, routers, lan/wan protocols, sniffers, nethealth, openview and somehow I recalled some of the MVS things I did 15 years ago. The mainframe people on both sides of the circuit were blaming it on the network, and our main MVS guy was going on vacation for a couple of weeks. I was able to prove that it was an MVS application problem. The main point here is that there is a heck of a lot more to think about when running a network than to worry about what the cisco equipment is doing. Do you remember LU and PU and logic controllers?? Yes. Do they all work the same as IP networks or VOIP and IP telephony networks? Yes, pretty much. Networking 30, 20, 10 years ago dealt with the same stuff we're still dealing with today: layers cables wireless (not as much as there is now, but definitely some) circuits (both virtual and real) connectionless versus connection-oriented reliability versus low overhead connection establishment and teardown flow control windowing packetization signaling error detection error correction ACKs and NACKs and WAKs (WAKs kind of fell out of favor) dynamic and static addressing dynamic and static routing pesky users security (although the old-timers should have done better with this ;-) network management transferring files and other data database lookups You get the picture. So Pricilla are you saying that there are more than 7 layers in the protocol stack? Mike Mandulak NCIA (not certified in anything ;-) Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=44688t=44653 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]