Re: Jeff Doyle's official response re: lab rats [7:45001]

[nrf]

""Kevin Cullimore""  wrote in message
[EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
> I'm concerned that his focus is a little too narrow (and possibly
distracted
> based upon the employer change) to be regarded as "the" authority on the
> cert over and above someone like, say, Bruce Caslow. I'm going by the
> blueprint, but it seems as if the exam encompasses a wider scope than the
> contents of Vol I & II (my opinion probably doesn't count, but I always
> regarded those two books as ones to read to gain perspective on routing,
not
> pass a test).
>
> More importantly, this post underscores a level of description problem
with
> many portions of the thread.
>
> It's inadequate to only consider the case of a person with just lab
> experience vs. the case of the person with no formal/training but
(possibly
> too) much experience: there exist too many in-between cases where the
> outcome differs.
>
> In the case of someone with clear potential who has managed to envelop
> themselves in a firm theoretical grounding and a deep empirical
> understanding of router behavior under controlled conditions without the
> benefit of on-the-job experience, The attitude of employers is
all-too-often
> to go with the experienced competent individual (all else being equal),
> since they can immediately apply their experience to scenarios they have
> encountered before, scenarios that would take far too long and consume far
> too much in the way of financial equipment to stumble across in a lab
> setting.

I would just add there's more to just experience than understanding the
technology.  There's also the aspect of general work attitudes and
mentality.  To give you one example, what if the network is totally fuc*ed
and the bosses are yelling at everybody and threatening their jobs if they
don't get it back up.  The experienced guy is more likely to have been in
this kind of stressful situation before and can therefore remain cool and
focused, whereas the inexperienced guy has a greater chance to be totally
rattled.   Or another example is political acumen.  The experienced guy
might be more effective than the inexperienced guy not because of his
technical skills but because of his political skills.   A lot of projects
are highly open-ended where a network engineer is responsible for marshaling
company resources.  Through his years on the job, the experienced guy just
"knows" how to get things done - he knows who to ask for things, how and
when to ask for them, etc.  The inexperienced guy might still be brilliant
technically because he studied hard, but it's less likely that he has
developed this general political effectiveness.

Those are just some examples.  Surely there are many more.  The point I'm
making here is that the value of experience is not strictly confined to
technical matters.   And that's also not to say that experience is always
more important than everything else, because it is not.  I believe that it's
important to present an entire suite of qualifications to an employer -
experience, certs, education, etc.


>
>
>
> - Original Message -
> From: "cebuano"
> To:
> Sent: Friday, May 24, 2002 9:55 PM
> Subject: Jeff Doyle's official response re: lab rats [7:45001]
>
>
> > Dear fellow professionals,
> > In fear of "taking a person's words and using them out of context",
> > I decided to ask Mr. Doyle himself. He was kind enough to respond
> > to my e-mail, and I'm posting this with the hope of encouraging both
> > "lab rats" and gurus alike to aim for knowledge, not only certs,
> > and in the process help your fellow man/woman.
> > I put my faith in everyone to be civilized and not bash Mr. Doyle's
> > reputation, even if you disagree with his point of view.
> > Last but not least, I hope that this will put an end to personal attacks
> > that have become more common lately, unlike what groupstudy.com
> > used to be 2 to 3 years ago when I first signed up.
> >
> > Thank you.
> > Elmer
> >
> > - Original Message -
> > From: Jeff Doyle
> > To: elmer
> > Sent: Friday, May 24, 2002 2:28 PM
> > Subject: Re: Please care to comment on Vol.2 page 792
> >
> > Hi Elmer,
> >
> > Thanks for the clarification-- my definition of "lab rat" is a bit
> different
> > than yours. At Juniper, the lab rats tend to be the most experienced
field
> > engineers. Nonetheless, under your definition (lab rat = someone with
more
> > theoretical than practical experience), the statement applies equally to
> > those
> > with some practical experience and those with little or none.
> >
> > I know exactly the kinds of "old timers" to which you refer-- typically
> these
> > are guys who have gained their knowledge gradually over the years
through
> > practical experience. Scratch the surface of most of these guys, and you
> will
> > find little understanding of the foundations of the protocols and
> > technologies
> > they think they are experts at. Therein lies the source of their
> derogatory
> > attitude toward "newbies": Inse

Re: Jeff Doyle's official response re: lab rats [7:45001]

[Schwantz]

What employer change are you talking about ? I believe Jeff Doyle was never
a Cisco employee.

Schwantz

""Kevin Cullimore""  wrote in message
[EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
> I'm concerned that his focus is a little too narrow (and possibly
distracted
> based upon the employer change) to be regarded as "the" authority on the
> cert over and above someone like, say, Bruce Caslow. I'm going by the
> blueprint, but it seems as if the exam encompasses a wider scope than the
> contents of Vol I & II (my opinion probably doesn't count, but I always
> regarded those two books as ones to read to gain perspective on routing,
not
> pass a test).
>
> More importantly, this post underscores a level of description problem
with
> many portions of the thread.
>
> It's inadequate to only consider the case of a person with just lab
> experience vs. the case of the person with no formal/training but
(possibly
> too) much experience: there exist too many in-between cases where the
> outcome differs.
>
> In the case of someone with clear potential who has managed to envelop
> themselves in a firm theoretical grounding and a deep empirical
> understanding of router behavior under controlled conditions without the
> benefit of on-the-job experience, The attitude of employers is
all-too-often
> to go with the experienced competent individual (all else being equal),
> since they can immediately apply their experience to scenarios they have
> encountered before, scenarios that would take far too long and consume far
> too much in the way of financial equipment to stumble across in a lab
> setting.
>
>
>
> - Original Message -
> From: "cebuano"
> To:
> Sent: Friday, May 24, 2002 9:55 PM
> Subject: Jeff Doyle's official response re: lab rats [7:45001]
>
>
> > Dear fellow professionals,
> > In fear of "taking a person's words and using them out of context",
> > I decided to ask Mr. Doyle himself. He was kind enough to respond
> > to my e-mail, and I'm posting this with the hope of encouraging both
> > "lab rats" and gurus alike to aim for knowledge, not only certs,
> > and in the process help your fellow man/woman.
> > I put my faith in everyone to be civilized and not bash Mr. Doyle's
> > reputation, even if you disagree with his point of view.
> > Last but not least, I hope that this will put an end to personal attacks
> > that have become more common lately, unlike what groupstudy.com
> > used to be 2 to 3 years ago when I first signed up.
> >
> > Thank you.
> > Elmer
> >
> > - Original Message -
> > From: Jeff Doyle
> > To: elmer
> > Sent: Friday, May 24, 2002 2:28 PM
> > Subject: Re: Please care to comment on Vol.2 page 792
> >
> > Hi Elmer,
> >
> > Thanks for the clarification-- my definition of "lab rat" is a bit
> different
> > than yours. At Juniper, the lab rats tend to be the most experienced
field
> > engineers. Nonetheless, under your definition (lab rat = someone with
more
> > theoretical than practical experience), the statement applies equally to
> > those
> > with some practical experience and those with little or none.
> >
> > I know exactly the kinds of "old timers" to which you refer-- typically
> these
> > are guys who have gained their knowledge gradually over the years
through
> > practical experience. Scratch the surface of most of these guys, and you
> will
> > find little understanding of the foundations of the protocols and
> > technologies
> > they think they are experts at. Therein lies the source of their
> derogatory
> > attitude toward "newbies": Insecurity in their own skills.
> >
> > I regularly conduct technical interviews for Juniper, and I can tell you
> that
> > if a candidate has a deep understanding of the theories and facts of the
> > various IP networking protocols, I am impressed regardless of the
> candidate's
> > practical experience. If the engineer is smart and aggressive, it is
easy
> > enough to team him or her up with a mentor to add the practical
> experience.
> >
> > There is an opposite view on all this: I've encountered many people with
> > CCIEs
> > that think the certification is all they need to land a high-level
> networking
> > job. For me, seeing the CCIE certification on a resume makes me look
> closer,
> > and is usually enough to make me schedule a face-to-face interview. But
> once
> > the interview takes place, I expect the candidate to impress me with a
> level
> > of knowledge that goes well beyond what is required to pass the lab. The
> > first
> > three or four minutes of the interview is generally enough for me to
> > determine
> > whether the candidate truly knows his or her stuff, or whether the CCIE
> was
> > won by learning just what is needed to pass the lab and no more.
> >
> > All this long-winded reply is saying is: Yes, getting the CCIE will help
> you
> > get ahead even if your practical experience is limited. It is an
excellent
> > way
> > to prove your capabilities to prospective employers, but be sure the
depth
> of
> > 

Need help with wiring a lab [7:45015]

[Francis Lind]

Hello all I have 4 2524s I purchased. Each one has a 5n1 Serial and FT1/NT1
DSU/CSU card along with a BRI Card. I need help wiring the FT1/NT1s. I
looked for info this that is for a beginner  but most of it is just wiring
diagrams with no explanation on how to do it. Any help would be appreciated.



Fran


Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=45015&t=45015
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: Jeff Doyle's official response re: lab rats [7:45001]

[Kevin Cullimore]

I'm concerned that his focus is a little too narrow (and possibly distracted
based upon the employer change) to be regarded as "the" authority on the
cert over and above someone like, say, Bruce Caslow. I'm going by the
blueprint, but it seems as if the exam encompasses a wider scope than the
contents of Vol I & II (my opinion probably doesn't count, but I always
regarded those two books as ones to read to gain perspective on routing, not
pass a test).

More importantly, this post underscores a level of description problem with
many portions of the thread.

It's inadequate to only consider the case of a person with just lab
experience vs. the case of the person with no formal/training but (possibly
too) much experience: there exist too many in-between cases where the
outcome differs.

In the case of someone with clear potential who has managed to envelop
themselves in a firm theoretical grounding and a deep empirical
understanding of router behavior under controlled conditions without the
benefit of on-the-job experience, The attitude of employers is all-too-often
to go with the experienced competent individual (all else being equal),
since they can immediately apply their experience to scenarios they have
encountered before, scenarios that would take far too long and consume far
too much in the way of financial equipment to stumble across in a lab
setting.



- Original Message -
From: "cebuano" 
To: 
Sent: Friday, May 24, 2002 9:55 PM
Subject: Jeff Doyle's official response re: lab rats [7:45001]


> Dear fellow professionals,
> In fear of "taking a person's words and using them out of context",
> I decided to ask Mr. Doyle himself. He was kind enough to respond
> to my e-mail, and I'm posting this with the hope of encouraging both
> "lab rats" and gurus alike to aim for knowledge, not only certs,
> and in the process help your fellow man/woman.
> I put my faith in everyone to be civilized and not bash Mr. Doyle's
> reputation, even if you disagree with his point of view.
> Last but not least, I hope that this will put an end to personal attacks
> that have become more common lately, unlike what groupstudy.com
> used to be 2 to 3 years ago when I first signed up.
>
> Thank you.
> Elmer
>
> - Original Message -
> From: Jeff Doyle
> To: elmer
> Sent: Friday, May 24, 2002 2:28 PM
> Subject: Re: Please care to comment on Vol.2 page 792
>
> Hi Elmer,
>
> Thanks for the clarification-- my definition of "lab rat" is a bit
different
> than yours. At Juniper, the lab rats tend to be the most experienced field
> engineers. Nonetheless, under your definition (lab rat = someone with more
> theoretical than practical experience), the statement applies equally to
> those
> with some practical experience and those with little or none.
>
> I know exactly the kinds of "old timers" to which you refer-- typically
these
> are guys who have gained their knowledge gradually over the years through
> practical experience. Scratch the surface of most of these guys, and you
will
> find little understanding of the foundations of the protocols and
> technologies
> they think they are experts at. Therein lies the source of their
derogatory
> attitude toward "newbies": Insecurity in their own skills.
>
> I regularly conduct technical interviews for Juniper, and I can tell you
that
> if a candidate has a deep understanding of the theories and facts of the
> various IP networking protocols, I am impressed regardless of the
candidate's
> practical experience. If the engineer is smart and aggressive, it is easy
> enough to team him or her up with a mentor to add the practical
experience.
>
> There is an opposite view on all this: I've encountered many people with
> CCIEs
> that think the certification is all they need to land a high-level
networking
> job. For me, seeing the CCIE certification on a resume makes me look
closer,
> and is usually enough to make me schedule a face-to-face interview. But
once
> the interview takes place, I expect the candidate to impress me with a
level
> of knowledge that goes well beyond what is required to pass the lab. The
> first
> three or four minutes of the interview is generally enough for me to
> determine
> whether the candidate truly knows his or her stuff, or whether the CCIE
was
> won by learning just what is needed to pass the lab and no more.
>
> All this long-winded reply is saying is: Yes, getting the CCIE will help
you
> get ahead even if your practical experience is limited. It is an excellent
> way
> to prove your capabilities to prospective employers, but be sure the depth
of
> your theoretical knowledge well exceeds the rather limited things you need
to
> know to pass the lab.
>
> As for your two PS's: I used 11-something for most of the book, and wrote
the
> BGP chapters quite early, which accounts for the outdated statement you
cite
> (and a few others). I have been discussing doing a second edition of the
book
> with Cisco Press to bring it up to date. The conflictin

Re: Provider Backbone Engineering and CCIEs [7:44876]

[Kevin Cullimore]

It's interesting that by quickly perusing the thread one that one could
infer an equation of troubleshooting tool with "device capable of revealing
the content of packets sent across the transmission medium."

I'd have to agree that making that sort of data readily available to those
stuck bet is not the Cisco router family's /IOS' strong point.

I'd have to note that this is somewhat vendor specific. Nortel routers not
currently serving as dust epicenters in technology museums ARE, to some
extent, packet sniffers (via pcap), but then again, since they didn't
deliberately assemble the most underpowered microprocessor-based boxes they
could get away with, the difference approaches understandability.

I'd have to concur that having packet captures available is my first choice
as far as implements of troubleshooting are concerned (it's amazing what a
dedicated sniffer pc at a remote workstation can do to reduce the number of
sleepless nights spent on seemingly intractable problems).

I'd have to say that I've recently come to regard snmp-enabled CSU/DSU's as
a reasonable substitute for overpriced, media-specific inline WAN packet
capturing tools.

Certain debug argument hierarchies, for example those associated with ppp &
ospf, DO give enough header information to solve some problems such as mtu
negotiation mismatches.

- Original Message -
From: "Priscilla Oppenheimer" 
To: 
Sent: Friday, May 24, 2002 4:30 PM
Subject: Re: Provider Backbone Engineering and CCIEs [7:44876]


> Well, maybe I overstated it a bit. ;-) My main complaint about the debug
> commands is that the output is too cryptic. Also, some of them were
clearly
> designed for the Cisco developers not for the end user of the router
> (network admin, engineer). The information they provide is simply not
> helpful.
>
> Inserting a sniffer can definitely be a pain on a WAN, on the other hand.
> Plus WAN sniffers are terribly expensive. Actually inserting a sniffer is
> more of a pain than it used to be on LANs too. But at least the result is
a
> plain-language decode of every packet.
>
> By the way, do you remember which EIGRP debug commands you used and how
> they helped solve the problem? That might be helpful info for us (if you
> have time to explain, no biggie if you don't.)
>
> Thanks
>
> Priscilla
>
> At 03:35 PM 5/24/02, MADMAN wrote:
> >I have to respectfully disagree,
> >
> >   Done correctly with caution when necessary the router is an excellant
> >and often the only troubleshooting tool. If your unpacking a Sniffer
> >your in deep doo doo as it's quite rare I require it to solve a network
> >problem.  Don't get me wrong, they are essential and have a purpose but
> >too often people are going too deep too fast to solve problems that do
> >not require an analyzer.
> >
> >   I used a couple of EIGRP debugs yesterday to help a hospital whose
> >core 6500 was melting down and for those that do remote support debug is
> >our friend.
> >
> >   DebugDave
> >
> >
> >Priscilla Oppenheimer wrote:
> > >
> > > At 07:32 AM 5/24/02, dre wrote:
> > > >  Cisco router to solve any problem, even those that shouldn't be
solved
> > > >with
> > > >a router!
> > >
> > > And how about all the people who try to turn the router into a
> > > troubleshooting tool? You wouldn't believe how many times I've had to
> > > convince people that the debug commands aren't a replacement for a
> sniffer.
> > > Not only are there issues with eating CPU resources to display the
debug
> > > info, but a lot of the commands don't show packets (which they
> shouldn't).
> > > Also, regardless of whether they show events or packets, they don't
> display
> > > the information in English (in many cases). In fact, many of the debug
> > > commands were written to help Cisco software and hardware developers
do
> > > some debugging on flaky code/hardware. They weren't written to help a
> > > network administrator or engineer.
> > >
> > > I know this is a tangent from the real discussion, but I just wanted
to
> > > make that additional point about a Cisco router not being the solution
to
> > > every problem.
> > >
> > > Priscilla
> > >
> > > 
> > >
> > > Priscilla Oppenheimer
> > > http://www.priscilla.com
> >--
> >David Madland
> >Sr. Network Engineer
> >CCIE# 2016
> >Qwest Communications Int. Inc.
> >[EMAIL PROTECTED]
> >612-664-3367
> >
> >"Emotion should reflect reason not guide it"
> 
>
> Priscilla Oppenheimer
> http://www.priscilla.com




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=45013&t=44876
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

RE: Coriolis/Examcram [7:44924]

[Robert Kulagowski]

Went through this a few days ago-
http://www.groupstudy.com/form/read.php?f=7&i=44638&t=44638

See "Errata for Coriolis Books" thread from 2002-05-21.

Yes, I noticed a lot of errors in the Exam Prep Switching book from
Coriolis.  I've got the Exam Cram Switching by Richard Deal coming in the
mail from half.com.  If it wasn't for the fact that I got an email from
Richard saying that I could send him questions if I found any in his book,
and the high ratings that it received in places like Amazon (unlike the
other Exam Cram books) I wouldn't have spent the $.  I'm not imagining that
Exam Prep Routing is going to be much better than Exam Prep Switching, but
we'll see.

Still have high hopes for the Support book by Priscilla O.



Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=45012&t=44924
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: Private Addressing over Distances [7:44946]

[Jarred Nicholls]

Thanks Craig.  Yes I know 128.128.0.0 is not technically a standard private
address defined in RFC 1918, but those are just so that ISPs have a standard
address in which to block routing information for.  Therefore a private
address within a network can be any class A B or C address.  Thanks for your
reply.

Jarred


Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=45011&t=44946
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: Doyle on Lab Rats [7:44611]

[nrf]

""Michael L. Williams""  wrote in message
[EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
> "Tom Scott"  wrote in message
> [EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
> > I've seen a goodly number of network administrators who are in positions
> of
> > power, but
> > who don't know even the basics of classful subnetting, VLSM, routing, L2
> LAN
> > switching,
> > and VLANs. (Even some telco ATM techs who don't understand the
difference
> > between
> > L2/LAN switches vs. VLAN switches, but that's a whole 'nother story in
> > itself). These
> > hands-on guys moved up from the ranks of network operating systems
(NOSs),
> > usually
> > Novell, Unix and Windows. I respect their ability to handle a production
> > network but
> > it's a shame they won't listen to the young CCNAs and CCNPs who work for
> > them. They
> > (the old desktop/NOS guys who moved up to network management roles)
> couldn't
> > even
> > conceive of migrating their RIP networks to OSPF, but with the help of
> their
> > CCNx/CCDx
> > employees they could really do something good. It's the age-old problem
of
> > control and
> > fear of the unknown.
>
> I couldn't have said it better myself..  you really hit some key
points,
> especially about the people that moved their way up from desktop to NOS to
> network not trusting the CCNx/CCDx, not being able to fathom moving from
RIP
> to OSPF, etc.

Well, on the other hand, surely you have also seen the flip-side of the
coin.  For example, I run into CCxx's who hold little experience but have
shut their ears to people who do hold more experience, under the guide that
'what he's telling me wasn't in the Cisco textbooks so it can't possibly be
true...'.  It too is often coupled with  feelings of insecurity - the paper-
CCxx guy feels nervous about his job and doesn't want to reveal to the other
guys on his team just how inexperienced he really is, so he never wants to
do any work in front of anybody else for fear of making a bonehead mistake,
etc. etc., and he never has anything meaningful to contribute during
meetings because he doesn't want to say something foolish.

The fact is, arrogance and insecurity cuts both ways.  Both sides (the
experienced guys and the inexperienced guys) are guilty from time to time.
And it's bad no matter who's doing it.


>
> Good comments!
> Mike W.




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=45010&t=44611
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: Doyle on Lab Rats [7:44611]

[nrf]

The problem, again, is not with guys who are willing to learn and stay
humble and hungry.  There is nothing wrong with being a lab-rat per se.

The problems come when those lab-rats now start demanding the same pay and
respect as guys who also hold their CCIE and have many years of experience.
For example, to extend your med-school analogy, there's no problem with some
fresh kid who's in med-school and is carving up cadavers for surgery
practice.  The problem comes when that kid becomes a whiz at
cadaver-carving, but still hasn't done a real live operation, but because of
his cadaver-carving skills now thinks he should be automatically promoted to
Head of Surgery.

""cebuano""  wrote in message
[EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
> I posted this message in response to a lot of rap, crap, xyz-rap, etc.
that
> individuals who devote their time, effort and money towards advancing
> their knowledge and skill (and hopefully career) by building their own
home
> lab because this is the ONLY way they can get experience are getting.
> When are we going to stop shoving this chicken-and-egg syndrome down
> their throat? Everybody has to start somewhere.
> Hell, do you think med school students start their career in medicine by
> working in a "production" clinic? The only time they get to that level is
> after years of learning the ins/outs involved in clinical practice IN A
> LAB environment.
> Nothing personal, but I just wanted to encourage "lab rats" who've been
> discriminated against and wrongfully labeled by people who feel insecure
> with their career.
>
> Hope that clears things up.
>
> Elmer
>
> - Original Message -
> From: "Johnny Routin"
> To:
> Sent: Tuesday, May 21, 2002 10:11 AM
> Subject: Re: Doyle on Lab Rats [7:44611]
>
>
> > Nice of you to take Jeff's words and use them out of context.  I believe
> > what Jeff meant is that as we are experienced network engineers pursuing
> > CCIE certification, we should set up a lab for practice as we cannot
> perform
> > the necessary configurations on our production networks.  The thing you
> > forgot to mention while taking liberities with his words is that lab
rats
> do
> > not know what a production network looks like.
> >
> >
> > JR
> > --
> > Johnny Routin
> > The "Routin" One
> >
> >
> >
> > ""cebuano""  wrote in message
> > [EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
> > > Excerpt from Doyle's Vol.2 page 792.
> > > "Labs also provide an area of the network where you can just play
around
> > > with the commands, testing the effect of misconfigurations and
> practicing
> > > troubleshooting. The lab can be used in this way for training and CCIE
> > > preparation. Only with a lab can you THOROUGHLY experiment with
> > > configurations, break things to see what happens, and determine what
> > > symptoms identify misconfigurations."
> > >
> > > This is exactly how we are all educated in colleges and universities.
> > > Remember the labs in Physics, Chemistry, Biology, Human Anatomy...
> > > So for those of you that have no respect for lab rats, you might need
> > > to rethink your opinions.
> > > I say more swiss cheese to lab rats!
> > >
> > > Elmer
> > > P.S. Don't forget the wine.




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=45009&t=44611
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: Router memory [7:44925]

[Kevin Wigle]

Thanks for the reply, guess we'll go for 2 x 32 all around.

Kevin

- Original Message - 
From: "Mark Odette II" 
To: "'Kevin Wigle'" ; 
Sent: Friday, 24 May, 2002 00:07
Subject: RE: Router memory [7:44925]


> AFAIK, if it came with 16, then that means they only populated one of
> the two DRAM slots.  To go to 64 though, you'll need to remove the 16,
> and then add 2 x 32MB to get what you want.
> 
> This comes from the experience of upgrading 2620s that were purchased 2,
> almost 3 years ago for VoIP Gateways, and I just upgraded all 4 of them
> in the last 90 days.
> 
> Your only true way of knowing what you have is to pop the top :(
> ... but I'm sure you can safely order 2 32's and you'll be good to go.
> In fact, I don't believe they sell a 64MB chip for them. :)
> 
> Crucial.COM has always been wonderful to me for timely shipment and
> price.
> 
> HTHs,
> Mark
> 
> -Original Message-
> From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] On Behalf Of
> Kevin Wigle
> Sent: Thursday, May 23, 2002 10:07 PM
> To: [EMAIL PROTECTED]
> Subject: Router memory [7:44925]
> 
> Hey group!
> 
> Early versions of the 2600 came with only 16 megs DRAM.  Then it was
> changed
> to 32 meg.
> 
> How can I tell if 32 megs is 1x32 or 2x16 without taking off the top?
> 
> Need to upgrade to 64 meg and want to get the correct package.
> 
> Kevin Wigle




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=45008&t=44925
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: Jeff Doyle's official response re: lab rats [7:45001]

[nrf]

You say that guys like this have no connection to me.  Boy, I wish that were
true.  If it were, I really would be able to mind my own business.

Let's presume that I am a CCIE (I may or may not be). The connection is
simply this.   HR people and other people in charge of hiring will read or
hear comments like what was stated by that guy.  They will then conclude
that maybe the certification isn't particularly valuable at all.
Therefore the kind of 'trash-talk' these lab-rats (or even wanna-be
lab-rats) engage in has a negative effect on the perception of the cert.
For example, a hiring manager might see a comment like that and think, well,
this guy who just barely got into networking is talking so confidently about
being a CCIE in no time flat, which possibly means that the cert must not be
very hard, which therefore means that perhaps it's not as valuable as it
seems, so why should I prefer such certified people when I look for an
employee?

As I'm sure you would agree, perception is often stronger than reality.  It
doesn't really matter if you're good if nobody thinks you're good.  If
people in power start hearing enough of this kind of talk, then perception
of the cert will inevitably start to change in a negative way.  That, my
friend, is the connection.  It is an unfortunate reality of life that we are
judged based on the actions of our community.  Call it guilt-by-association,
call it whatever you want.  Just don't call it untrue.

""Scott H.""  wrote in message
[EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
> Why does it always have to be a contest of who's is biggest?  If this guy
> thinks he can pass the lab then by all means take the class and give the
lab
> a shot.  I'm sure Cisco would be happy to collect the money from him each
> time he takes it.  I guess what I'm trying to say here is take care of
your
> own business and don't let all the other crap get to you.  People like
this
> just add to the statistics of mass failure.
>
> The real problem with this reasoning is that you end up lumping people
into
> the same category because they don't have 10 years of experience.  Too
many
> times I have been told that my certs are only "paper" because I don't have
> this experience.  My response is simple, "mind your own friggin business."
> Just because I don't have 10 years of experience doesn't mean I'm any less
> of a person.  And guess what?  Eventually I will have 10 years of
experience
> and people will still say I don't "really" know what I'm doing.
>
> By the way, would your quest for the holy grail really happen if you were
> only gonna make $15/hr?  I don't think so.
>
> ""nrf""  wrote in message
> [EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
> > That's an excellent way to sum it up.  Too much has been written about
the
> > value (or non-value) of the CCIE, or any cert for that matter.  What
> > everybody should instead be aiming for is real knowledge.  If a cert
helps
> > you acquire this knowledge, then so be it.  But the cert is by no means
> the
> > end of the road.It is the extreme idea held by certain people who
> think
> > that all they have to do is pass the lab and money will automatically
fall
> > out of the sky that I object to.
> >
> > For example, here is one particular post from another message board that
I
> > participate in.
> >
> >  "I passes [sic] my CCNA few months ago. It was an OK test, but I almost
> > failed it. I was planning on taking my CCNP and CCIE, but I didnt think
I
> > could do it. So I decided to look for a training course. Anyway, people
> that
> > are trying to pass CCIE or are planning on taking CCIE, I wan't to let
you
> > guys know that I found a great school for Cisco training. It is called
> [name
> > deleted]...Wahoo, soon I will pass my CCIE and will be making over 100K"
> >
> > Lest anybody thinks I am making this quote up, you can email me
privately
> > and I will give you the exact message board where you can find this.  A
> guy
> > who barely passed the CCNA and now wants to ge the CCIE so that he can
> make
> > a high salary - needless to say, it is this kind of attitude that gives
> the
> > lab-rat such a bad name.




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=45007&t=45001
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: Spanish Inquisition project [7:44906]

[Kevin Cullimore]

That machine is how I've always thought of netview, at least to the
extremely sophisticated extent to which it wasn't implemented and leveraged
within networks I have supported in the past.



- Original Message -
From: "Howard C. Berkowitz" 
To: 
Sent: Friday, May 24, 2002 10:34 PM
Subject: RE: Spanish Inquisition project [7:44906]


> At 4:42 PM -0400 5/24/02, s vermill wrote:
> >Our chief weapon is suprise...surprise and fear...fear and surprise
Our
> >two weapons are fear and surprise...and ruthless efficiency  Our
*three*
> >weapons are fear, surprise, and ruthless efficiency...and an almost
> >fanatical devotion to the Pope  Our *four*...no... *Amongst* our
> >weapons  Amongst our weaponry...are such elements as fear,
surprise
> >I'll come in again.
> >
> >http://servlet.java.sun.com/javaone/conf/sessions/945/google-sf2001.jsp
> >
> >I'm not sure if these slides are any more serious than the skit.
> >
>
> Consider, in another film by these stellar intellects, the Most
> Important Machine in the Hospital, and its significance to Cisco
> certification.




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=45006&t=44906
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: SYSLOG time stamp problem [7:44949]

[Clayton Dukes]

Just make sure it's in your hosts file, that should do it...on a unix
system, on a win syslog, there may be a dns lookup option not enabled.


Clayton Dukes
Cisco Info Center SE
CCNA, CCDA, CCDP, CCNP, NCC
(h) 904-292-1881
(c) 904-477-7825
--
Free Cisco Training at http://www.gdd.net


- Original Message -
From: "Jeffrey Reed" 
To: 
Sent: Friday, May 24, 2002 3:12 PM
Subject: RE: SYSLOG time stamp problem [7:44949]


> Clayton, thanks, the service timestamps was the trick.
>
> One more thing, the hostname is not being displayed in the syslog GUI,
> however, I do have the hostname configured on the switch & router in the
> 6509. Any ideas on that one?
>
> Thanks!!
>
> Jeffrey Reed
> Classic Networking, Inc.
>
> -Original Message-
> >From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of
> Clayton Dukes
> Sent: Friday, May 24, 2002 12:17 PM
> To: [EMAIL PROTECTED]
> Subject: Re: SYSLOG time stamp problem [7:44949]
>
> Try this:
>
> service timestamps debug datetime localtime show-timezone
> service timestamps log datetime localtime show-timezone
> !
> clock timezone EST -5
> clock summer-time EDT recurring
>
>
>
> Clayton Dukes
> Cisco Info Center SE
> CCNA, CCDA, CCDP, CCNP, NCC
> (h) 904-292-1881
> (c) 904-477-7825
> --
> Free Cisco Training at http://www.gdd.net
>
>
>
> - Original Message -
> >From: "Alex Lee"
> To:
> Sent: Friday, May 24, 2002 10:53 AM
> Subject: Re: SYSLOG time stamp problem [7:44949]
>
>
> > My take is that the time stamp is correct but it is using UTC time which
> is
> > 4 hour ahead of U.S. East Coast's Day Light Saving Time.
> >
> > ""Jeffrey Reed""  wrote in message
> > [EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
> > > I set up a syslog server and have a problem with the time stamp in a
sys
> > log
> > > message. When a message is sent to my syslog server (using solar
winds
> > > syslog monitor) the date/time field is correct, but the time stamp
with
> > the
> > > message itself is not, its 4 hours ahead. I show calendar and clock on
> the
> > > 6500 MSFC and they are both set correctly. I have the system set up
for
> > EST
> > > and daylight savings, so I think the syslog facility is not factoring
in
> > > those settings.




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=44987&t=44949
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: Jeff Doyle's official response re: lab rats [7:45001]

[Scott H.]

Why does it always have to be a contest of who's is biggest?  If this guy
thinks he can pass the lab then by all means take the class and give the lab
a shot.  I'm sure Cisco would be happy to collect the money from him each
time he takes it.  I guess what I'm trying to say here is take care of your
own business and don't let all the other crap get to you.  People like this
just add to the statistics of mass failure.

The real problem with this reasoning is that you end up lumping people into
the same category because they don't have 10 years of experience.  Too many
times I have been told that my certs are only "paper" because I don't have
this experience.  My response is simple, "mind your own friggin business."
Just because I don't have 10 years of experience doesn't mean I'm any less
of a person.  And guess what?  Eventually I will have 10 years of experience
and people will still say I don't "really" know what I'm doing.

By the way, would your quest for the holy grail really happen if you were
only gonna make $15/hr?  I don't think so.

""nrf""  wrote in message
[EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
> That's an excellent way to sum it up.  Too much has been written about the
> value (or non-value) of the CCIE, or any cert for that matter.  What
> everybody should instead be aiming for is real knowledge.  If a cert helps
> you acquire this knowledge, then so be it.  But the cert is by no means
the
> end of the road.It is the extreme idea held by certain people who
think
> that all they have to do is pass the lab and money will automatically fall
> out of the sky that I object to.
>
> For example, here is one particular post from another message board that I
> participate in.
>
>  "I passes [sic] my CCNA few months ago. It was an OK test, but I almost
> failed it. I was planning on taking my CCNP and CCIE, but I didnt think I
> could do it. So I decided to look for a training course. Anyway, people
that
> are trying to pass CCIE or are planning on taking CCIE, I wan't to let you
> guys know that I found a great school for Cisco training. It is called
[name
> deleted]...Wahoo, soon I will pass my CCIE and will be making over 100K"
>
> Lest anybody thinks I am making this quote up, you can email me privately
> and I will give you the exact message board where you can find this.  A
guy
> who barely passed the CCNA and now wants to ge the CCIE so that he can
make
> a high salary - needless to say, it is this kind of attitude that gives
the
> lab-rat such a bad name.




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=45005&t=45001
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

RE: Spanish Inquisition project [7:44906]

[Howard C. Berkowitz]

At 4:42 PM -0400 5/24/02, s vermill wrote:
>Our chief weapon is suprise...surprise and fear...fear and surprise  Our
>two weapons are fear and surprise...and ruthless efficiency  Our *three*
>weapons are fear, surprise, and ruthless efficiency...and an almost
>fanatical devotion to the Pope  Our *four*...no... *Amongst* our
>weapons  Amongst our weaponry...are such elements as fear, surprise
>I'll come in again.
>
>http://servlet.java.sun.com/javaone/conf/sessions/945/google-sf2001.jsp
>
>I'm not sure if these slides are any more serious than the skit.
>

Consider, in another film by these stellar intellects, the Most 
Important Machine in the Hospital, and its significance to Cisco 
certification.




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=45003&t=44906
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Automated dialout from Cisco 3640 [7:45004]

[Kiran Kumar M]

Hai,

I am using 3640 with NM 16 AM module. I would like to implement a
application with the following functionality.

One computer dialin to cisco, and it will connect, and then from this I
want to dialout to another NAS automatically. 

eg. Node A dials to Async 97 (of cisco), and then Async 104 (of cisco)
should dialout to NAS (Node B), Then NOde A and Node B can communicate
each other. 

Is it possible to do it using Cisco 3640 with NM 8 AM or NM 16
AM?? if possible how can I achieve this.. Does easy IP will help here
?? or any other possible ways...

Thanks,
Kiran




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=45004&t=45004
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: Jeff Doyle's official response re: lab rats [7:45001]

[nrf]

That's an excellent way to sum it up.  Too much has been written about the
value (or non-value) of the CCIE, or any cert for that matter.  What
everybody should instead be aiming for is real knowledge.  If a cert helps
you acquire this knowledge, then so be it.  But the cert is by no means the
end of the road.It is the extreme idea held by certain people who think
that all they have to do is pass the lab and money will automatically fall
out of the sky that I object to.

For example, here is one particular post from another message board that I
participate in.

 "I passes [sic] my CCNA few months ago. It was an OK test, but I almost
failed it. I was planning on taking my CCNP and CCIE, but I didnt think I
could do it. So I decided to look for a training course. Anyway, people that
are trying to pass CCIE or are planning on taking CCIE, I wan't to let you
guys know that I found a great school for Cisco training. It is called [name
deleted]...Wahoo, soon I will pass my CCIE and will be making over 100K"

Lest anybody thinks I am making this quote up, you can email me privately
and I will give you the exact message board where you can find this.  A guy
who barely passed the CCNA and now wants to ge the CCIE so that he can make
a high salary - needless to say, it is this kind of attitude that gives the
lab-rat such a bad name.




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=45002&t=45001
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Jeff Doyle's official response re: lab rats [7:45001]

[cebuano]

Dear fellow professionals,
In fear of "taking a person's words and using them out of context",
I decided to ask Mr. Doyle himself. He was kind enough to respond
to my e-mail, and I'm posting this with the hope of encouraging both
"lab rats" and gurus alike to aim for knowledge, not only certs,
and in the process help your fellow man/woman.
I put my faith in everyone to be civilized and not bash Mr. Doyle's
reputation, even if you disagree with his point of view.
Last but not least, I hope that this will put an end to personal attacks
that have become more common lately, unlike what groupstudy.com
used to be 2 to 3 years ago when I first signed up.

Thank you.
Elmer

- Original Message -
From: Jeff Doyle
To: elmer
Sent: Friday, May 24, 2002 2:28 PM
Subject: Re: Please care to comment on Vol.2 page 792

Hi Elmer,

Thanks for the clarification-- my definition of "lab rat" is a bit different
than yours. At Juniper, the lab rats tend to be the most experienced field
engineers. Nonetheless, under your definition (lab rat = someone with more
theoretical than practical experience), the statement applies equally to
those
with some practical experience and those with little or none.

I know exactly the kinds of "old timers" to which you refer-- typically these
are guys who have gained their knowledge gradually over the years through
practical experience. Scratch the surface of most of these guys, and you will
find little understanding of the foundations of the protocols and
technologies
they think they are experts at. Therein lies the source of their derogatory
attitude toward "newbies": Insecurity in their own skills.

I regularly conduct technical interviews for Juniper, and I can tell you that
if a candidate has a deep understanding of the theories and facts of the
various IP networking protocols, I am impressed regardless of the candidate's
practical experience. If the engineer is smart and aggressive, it is easy
enough to team him or her up with a mentor to add the practical experience.

There is an opposite view on all this: I've encountered many people with
CCIEs
that think the certification is all they need to land a high-level networking
job. For me, seeing the CCIE certification on a resume makes me look closer,
and is usually enough to make me schedule a face-to-face interview. But once
the interview takes place, I expect the candidate to impress me with a level
of knowledge that goes well beyond what is required to pass the lab. The
first
three or four minutes of the interview is generally enough for me to
determine
whether the candidate truly knows his or her stuff, or whether the CCIE was
won by learning just what is needed to pass the lab and no more.

All this long-winded reply is saying is: Yes, getting the CCIE will help you
get ahead even if your practical experience is limited. It is an excellent
way
to prove your capabilities to prospective employers, but be sure the depth of
your theoretical knowledge well exceeds the rather limited things you need to
know to pass the lab.

As for your two PS's: I used 11-something for most of the book, and wrote the
BGP chapters quite early, which accounts for the outdated statement you cite
(and a few others). I have been discussing doing a second edition of the book
with Cisco Press to bring it up to date. The conflicting statements about
OSPF
P-T-MP is a known error, and should be corrected soon in newer printings of
the book.

Best regards,
Jeff

At 11:46 PM 5/23/2002 -0400, you wrote:

  Jeff,
  Thanks for the response. I know you are a very busy (and sought after) man.
  I just happened to read this particular page at a time when people new to
the
  networking field are despised by old timers who feel that "lab rats" don't
  deserve to pass the CCIE lab since all they have is lab experience.
  I was wondering if you personally feel that most of what one gets tested on
  in the lab have little resemblance with most production networks.
  Two reasons for asking you are:
  1.Obviouly, every lab candidate as well as my CCIE friends regard you as
  the authority on this particular certification.
  2. You are the author of the second CCIE bible which I am quoting.

  What is your opinion on a person who passes the lab with very little
  "real" networking experience?

  Respectfully,
  Elmer Deloso

  P.S. What IOS version did you use as reference when you wrote Vol.2?
  Because after checking CCO, page93 of your book talks about BGP
  version number negotiation until both neighbors agree on the same
  version. The Cisco implementation of BGP in Cisco IOS Release 12.0(6)T
  or later releases supports BGP Version 4 only and does not support
  dynamic negotiation down to Version 2.

  P.P.S. Does Ciscopress consult you regarding errata to your books?
  Because Vol.1 page 417 says OSPF packets in point-to-multipoint are
  multicast, but pages 433 and 451 say these are unicast.




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=45001&t=45

Re: Token ring Question. [7:44805]

[Michael L. Williams]

you can do transparent bridging between Token Ring and Ethernet.  It
requires a Translational Bridging..

See the following URL: (watch for wrap)

http://www.cisco.com/univercd/cc/td/doc/cisintwk/ito_doc/mmbridge.htm

Mike W.

"2504s"  wrote in message
[EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
> A router is being used as a transparent bridge between a Token Ring
network
> and an Ethernet network. Host X on the Token ring sends a packet to Host Y
> on the Ethernet.
>
> What would the source MAC address on the  Ethernet Host ?
>
> does anyone know the answer? thank you.
>
> Cj




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=45000&t=44805
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: Doyle on Lab Rats [7:44611]

[Michael L. Williams]

"Tom Scott"  wrote in message
[EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
> I've seen a goodly number of network administrators who are in positions
of
> power, but
> who don't know even the basics of classful subnetting, VLSM, routing, L2
LAN
> switching,
> and VLANs. (Even some telco ATM techs who don't understand the difference
> between
> L2/LAN switches vs. VLAN switches, but that's a whole 'nother story in
> itself). These
> hands-on guys moved up from the ranks of network operating systems (NOSs),
> usually
> Novell, Unix and Windows. I respect their ability to handle a production
> network but
> it's a shame they won't listen to the young CCNAs and CCNPs who work for
> them. They
> (the old desktop/NOS guys who moved up to network management roles)
couldn't
> even
> conceive of migrating their RIP networks to OSPF, but with the help of
their
> CCNx/CCDx
> employees they could really do something good. It's the age-old problem of
> control and
> fear of the unknown.

I couldn't have said it better myself..  you really hit some key points,
especially about the people that moved their way up from desktop to NOS to
network not trusting the CCNx/CCDx, not being able to fathom moving from RIP
to OSPF, etc.

Good comments!
Mike W.




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=44999&t=44611
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: Bridge and switch [7:44649]

[Michael L. Williams]

"Priscilla Oppenheimer"  wrote in message
[EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
> Regarding the difference between a MAC table and CAM table: They are just
> different names for the same thing.

One small quibble (heheh. don't you expect this from me by now =)

Although they do essentially refer to the same thing (a table of MAC
addresses) (I know you know this, Priscilla, I'm just pointing out for
others), the table of MAC addresses kept by a switch (in Cisco switches, I
can't speak for other vendors) is stored in a type of memory, CAM memory,
which is different than RAM and operates using a different mechanism (see my
other recent post in this thread).. so, although we commonly refer to it
as the CAM table (and as good Cisco network people we should cuz that's what
Cisco calls it) we're really referring to is the table of MAC addresses that
happen to be stored in CAM memory..

Mike W.




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=44998&t=44649
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: Bridge and switch [7:44649]

[Michael L. Williams]

First let me say that I was looking for a book to recommend to a friend, and
I picked up this same book in the store and thumbed through I actually
happen to stop on the part where it talked about how a switch (bridge)
builds a routing table etc...  I put the book down, pointed at it, and
told my friend "Don't by this book!"  I am appalled at what passes for
techincal books (I guess I'm more sensitive about networking topics).
but in the technical field, one must be careful about the terms they use
because they can mean different things. packet -vs- frame, etc.

> Cisco calls the mac table a "content addressable memory" table. without
> spending more time than I have at the moment, I can't find a history on
CCO
> as to why they do this.

Here is some info I found on CAM...  basically, you can use the data to
find itself in memory (as opposed to having to know it's address in
memory).. (all of the following info is from various web pages found
through Google)

Content-Addressable Memory (CAM):  In this information-handling model, each
possible piece of information has one and only one possible storage
location. The data is its own key. It is important to differentiate CAM from
a hash key or traditional index.  With conventional indexing schemes the
data content is used with a hash or index to produce the address location of
the data. The address has no real or direct relationship with the
information contained in the data. With CAM, the data describes its own
storage location. This also means all like data will always be found close
together in the physical data structure. There is a direct relationship
between the information in the data and its location in the physical data
store.

In a symbolic system information is stored in an external mechanism. In the
example of the computer it is stored in files on the disks. As the
information has been encoded in some form of file system in order to
retrieve that information one must know the index system of the files. In
other words, data can only be accessed by certain attributes. In a
connectionist system the data is stored in the activation pattern of the
units. Hence, if a processing unit receives excitatory input from one of its
connections, each of its other connections will either be excited or
inhibited. If these connections represent the attributes of the data then
the data may be recalled by any one of its attributes, not just those that
are part of an indexing system. As these connections represent the content
of the data, this type of memory is called content addressable memory. This
type of memory has the advantage of allowing greater flexibility of recall
and is more robust.

You can compare CAM to the inverse of RAM. When read, RAM produces the data
for a given address. Conversely, CAM produces an address for a given data
word. When searching for data within a RAM block, the search is performed
serially. Thus, finding a particular data word can take many cycles. CAM
searches all addresses in parallel and produces the address storing a
particular word.  You can use CAM for any application requiring high-speed
searches, such as networking, communications, data compression, and cache
management.

Mike W.




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=44997&t=44649
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: Spanish Inquisition project [7:44906]

[Tom Scott]

s vermill wrote:

> Our chief weapon is suprise...surprise and fear...fear and surprise 
Our
> two weapons are fear and surprise...and ruthless efficiency  Our
*three*
> weapons are fear, surprise, and ruthless efficiency...and an almost
> fanatical devotion to the Pope  Our *four*...no... *Amongst* our
> weapons  Amongst our weaponry...are such elements as fear, surprise
> I'll come in again.
>
> http://servlet.java.sun.com/javaone/conf/sessions/945/google-sf2001.jsp
>
> I'm not sure if these slides are any more serious than the skit.

Have I been fooled yet again?!

I'm checking with our friends at java.sun.com. According to the URL above,
the
slideshow was used at an actual session, not a BOF. That is an indication,
but not
necessarily incontrovertible proof, that it's for real.

-- TT




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=44995&t=44906
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: CCDP Prerequisites? [7:44966]

[[EMAIL PROTECTED]]

I just passed the CCDP and yes you must have te CCNA and the CCDA.

Personally speaking, I don't think the test is worth it!  It tested me on 
knowledge that I thought was basically useless and the security section 
was just terrible.  Unprofessional I thought.

Theo






"[EMAIL PROTECTED]" http://www.groupstudy.com/form/read.php?f=7&i=44996&t=44966
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

RE: CCIE Wanted. [7:44940]

[jeff sicuranza]

How about reverse H1b status?

The average first-year salaries for highly trained software professionals:

India $5,000 - $8,000 
China $6,000 - $8,000 
Russia $5,000 - $8,000 
Pakistan $3,600 - $6,120 
Philippines $8,000 - $10,000 
Bulgaria $3,600 - $6,000 
Sources: National Association 

Okay, a ccie in india making what? Maybe 11k.. 

See full article

http://computerworld.com/managementtopics/management/outsourcing/story/0%2C10801%2C71292%2C00.html?nlid=PM



Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=44994&t=44940
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: Provider Backbone Engineering and CCIEs [7:44876]

[Chuck]

""MADMAN""  wrote in message
[EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
> Priscilla Oppenheimer wrote:
> >
> > Well, maybe I overstated it a bit. ;-) My main complaint about the debug
> > commands is that the output is too cryptic. Also, some of them were
clearly
> > designed for the Cisco developers not for the end user of the router
> > (network admin, engineer). The information they provide is simply not
> > helpful.
> >
> > Inserting a sniffer can definitely be a pain on a WAN, on the other
hand.
> > Plus WAN sniffers are terribly expensive. Actually inserting a sniffer
is
> > more of a pain than it used to be on LANs too. But at least the result
is a
> > plain-language decode of every packet.
> >
> > By the way, do you remember which EIGRP debug commands you used and how
> > they helped solve the problem? That might be helpful info for us (if you
> > have time to explain, no biggie if you don't.)
> >
> > Thanks
> >
> > Priscilla
>
>   Actually I used debug eigrp packet found a couple of neighbors were
> bouncing eratically which I had also noticed in the ip routing table.  I
> tried pinging these neighbors and was loosing many packets, this is over
> a 100M ethernet.  Since this customer mentioned that they had done some
> work on a Microsoft server including adding a second interface (arghhh)
> I had a good suspect.  Since I have seen in the past multiinterfaced
> servers do wierd things like foward multicast packets I suspected a
> possible routing loop.  I enabled debug ip icmp and basically crashed
> the MSFC.  It was so busy spewing out ICMP TTL expired messages that
> caused the CPU to hit 99% and the router was not able to maintain it's
> routing functions etc...  I asked the customer to grab the server guy
> and have him shut down the second interface, problem solved.


CL: you sure you didn't say something more like "grab the server guy and
throttle him a good one!" ???


>
>   The IP ICMP debug was really the helper here but the point is I was
> able to find the problem using debug, I'm 300 miles from this customer,
> much more quickly than finding someone locally who could drive a sniffer
> and read/email the output.  I admit crashing the router was not good but
> "normally" a ip icmp debug will not do that hence I say use any debug
> with some caution and customer warning, this may be hazardous to your
> network!!
>
>   Dave
>
> David Madland
> Sr. Network Engineer
> CCIE# 2016
> Qwest Communications Int. Inc.
> [EMAIL PROTECTED]
> 612-664-3367
>
> "Emotion should reflect reason not guide it"




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=44993&t=44876
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: CCIE Wanted. [7:44940]

[GOGARTY]

Never mind the fact that India and Pakistan  are on the brink of war and
are sabre rattling with Nukes!!


- Original Message -
From: "Wes Stevens" 
To: 
Sent: Friday, May 24, 2002 10:17 PM
Subject: Re: CCIE Wanted. [7:44940]


> You may as well quit posting this and wasting our time and yours. No one
who
> has their ccie is going to go to India and get paided local wages in local
> currency.
>
> Offer US wages in dollars and you may get a few bites.
>
>
> >From: "[EMAIL PROTECTED]"
> >Reply-To: "[EMAIL PROTECTED]"
> >To: [EMAIL PROTECTED]
> >Subject: CCIE Wanted. [7:44940]
> >Date: Fri, 24 May 2002 06:34:17 -0400
> >
> > > Hi.
> > >
> > > Re-posting this mail as the number of responses were a few. Forward
this
> > > mail to your friends.
> > >
> > > Network Solutions Ltd, a Bangalore based company is looking for CCIEs.
> > > Visit www.netsol.co.in for more info on the company. We are among the
> >Top
> > > Network Integrators in the Country moving towards the No.1 Spot.
> > >
> > > The Positions will be out of   Bangalore, Mumbai and New Delhi.
> > >
> > > Interested Candidates willing to relocate to India may apply.
> > >
> > > Compensation will be on par/better-than with what the industry in
India
> > > Pays.  We pay in INR only.
> > >
> > > Thanks.
> > > Sunil Satyanathan
> _
> Send and receive Hotmail on your mobile device: http://mobile.msn.com




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=44992&t=44940
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: Provider Backbone Engineering and CCIEs [7:44876]

[MADMAN]

Priscilla Oppenheimer wrote:
> 
> Well, maybe I overstated it a bit. ;-) My main complaint about the debug
> commands is that the output is too cryptic. Also, some of them were clearly
> designed for the Cisco developers not for the end user of the router
> (network admin, engineer). The information they provide is simply not
> helpful.
> 
> Inserting a sniffer can definitely be a pain on a WAN, on the other hand.
> Plus WAN sniffers are terribly expensive. Actually inserting a sniffer is
> more of a pain than it used to be on LANs too. But at least the result is a
> plain-language decode of every packet.
> 
> By the way, do you remember which EIGRP debug commands you used and how
> they helped solve the problem? That might be helpful info for us (if you
> have time to explain, no biggie if you don't.)
> 
> Thanks
> 
> Priscilla

  Actually I used debug eigrp packet found a couple of neighbors were
bouncing eratically which I had also noticed in the ip routing table.  I
tried pinging these neighbors and was loosing many packets, this is over
a 100M ethernet.  Since this customer mentioned that they had done some
work on a Microsoft server including adding a second interface (arghhh)
I had a good suspect.  Since I have seen in the past multiinterfaced
servers do wierd things like foward multicast packets I suspected a
possible routing loop.  I enabled debug ip icmp and basically crashed
the MSFC.  It was so busy spewing out ICMP TTL expired messages that
caused the CPU to hit 99% and the router was not able to maintain it's
routing functions etc...  I asked the customer to grab the server guy
and have him shut down the second interface, problem solved.

  The IP ICMP debug was really the helper here but the point is I was
able to find the problem using debug, I'm 300 miles from this customer,
much more quickly than finding someone locally who could drive a sniffer
and read/email the output.  I admit crashing the router was not good but
"normally" a ip icmp debug will not do that hence I say use any debug
with some caution and customer warning, this may be hazardous to your
network!!

  Dave

David Madland
Sr. Network Engineer
CCIE# 2016
Qwest Communications Int. Inc.
[EMAIL PROTECTED]
612-664-3367

"Emotion should reflect reason not guide it"




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=44991&t=44876
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: CCIE Wanted. [7:44940]

[Wes Stevens]

You may as well quit posting this and wasting our time and yours. No one who 
has their ccie is going to go to India and get paided local wages in local 
currency.

Offer US wages in dollars and you may get a few bites.


>From: "[EMAIL PROTECTED]" 
>Reply-To: "[EMAIL PROTECTED]" 
>To: [EMAIL PROTECTED]
>Subject: CCIE Wanted. [7:44940]
>Date: Fri, 24 May 2002 06:34:17 -0400
>
> > Hi.
> >
> > Re-posting this mail as the number of responses were a few. Forward this
> > mail to your friends.
> >
> > Network Solutions Ltd, a Bangalore based company is looking for CCIEs.
> > Visit www.netsol.co.in for more info on the company. We are among the 
>Top
> > Network Integrators in the Country moving towards the No.1 Spot.
> >
> > The Positions will be out of   Bangalore, Mumbai and New Delhi.
> >
> > Interested Candidates willing to relocate to India may apply.
> >
> > Compensation will be on par/better-than with what the industry in India
> > Pays.  We pay in INR only.
> >
> > Thanks.
> > Sunil Satyanathan
_
Send and receive Hotmail on your mobile device: http://mobile.msn.com




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=44990&t=44940
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

RE: Spanish Inquisition project [7:44906]

[s vermill]

Our chief weapon is suprise...surprise and fear...fear and surprise  Our
two weapons are fear and surprise...and ruthless efficiency  Our *three*
weapons are fear, surprise, and ruthless efficiency...and an almost
fanatical devotion to the Pope  Our *four*...no... *Amongst* our
weapons  Amongst our weaponry...are such elements as fear, surprise 
I'll come in again.

http://servlet.java.sun.com/javaone/conf/sessions/945/google-sf2001.jsp

I'm not sure if these slides are any more serious than the skit.




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=44989&t=44906
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: Provider Backbone Engineering and CCIEs [7:44876]

[Priscilla Oppenheimer]

Well, maybe I overstated it a bit. ;-) My main complaint about the debug 
commands is that the output is too cryptic. Also, some of them were clearly 
designed for the Cisco developers not for the end user of the router 
(network admin, engineer). The information they provide is simply not
helpful.

Inserting a sniffer can definitely be a pain on a WAN, on the other hand. 
Plus WAN sniffers are terribly expensive. Actually inserting a sniffer is 
more of a pain than it used to be on LANs too. But at least the result is a 
plain-language decode of every packet.

By the way, do you remember which EIGRP debug commands you used and how 
they helped solve the problem? That might be helpful info for us (if you 
have time to explain, no biggie if you don't.)

Thanks

Priscilla

At 03:35 PM 5/24/02, MADMAN wrote:
>I have to respectfully disagree,
>
>   Done correctly with caution when necessary the router is an excellant
>and often the only troubleshooting tool. If your unpacking a Sniffer
>your in deep doo doo as it's quite rare I require it to solve a network
>problem.  Don't get me wrong, they are essential and have a purpose but
>too often people are going too deep too fast to solve problems that do
>not require an analyzer.
>
>   I used a couple of EIGRP debugs yesterday to help a hospital whose
>core 6500 was melting down and for those that do remote support debug is
>our friend.
>
>   DebugDave
>
>
>Priscilla Oppenheimer wrote:
> >
> > At 07:32 AM 5/24/02, dre wrote:
> > >  Cisco router to solve any problem, even those that shouldn't be solved
> > >with
> > >a router!
> >
> > And how about all the people who try to turn the router into a
> > troubleshooting tool? You wouldn't believe how many times I've had to
> > convince people that the debug commands aren't a replacement for a
sniffer.
> > Not only are there issues with eating CPU resources to display the debug
> > info, but a lot of the commands don't show packets (which they
shouldn't).
> > Also, regardless of whether they show events or packets, they don't
display
> > the information in English (in many cases). In fact, many of the debug
> > commands were written to help Cisco software and hardware developers do
> > some debugging on flaky code/hardware. They weren't written to help a
> > network administrator or engineer.
> >
> > I know this is a tangent from the real discussion, but I just wanted to
> > make that additional point about a Cisco router not being the solution to
> > every problem.
> >
> > Priscilla
> >
> > 
> >
> > Priscilla Oppenheimer
> > http://www.priscilla.com
>--
>David Madland
>Sr. Network Engineer
>CCIE# 2016
>Qwest Communications Int. Inc.
>[EMAIL PROTECTED]
>612-664-3367
>
>"Emotion should reflect reason not guide it"


Priscilla Oppenheimer
http://www.priscilla.com




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=44988&t=44876
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: Help with Pix 506 to 506 VPN [7:44931]

[Wayne Jang]

Never mind.  I rebooted one of the firewalls and it must have cleared the
ipsec and isakmp SAs.


""Wayne Jang""  wrote in message
[EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
> Hey,
>
> I have a pix to pix vpn that was working fine.  I changed the outside ip
> address on one of the Pix's for a ISP reasons.  I then made all the
> necessary changes on the remote Pix(set peer, and isakmp key.)  I
> also performed a "clear xlate" on both firewalls.  tonight i can vpn to
both
> firewalls, but earlier I couldn't ping addresses on the remote end with a
> workstation behind one of the firewalls.  However, I could ping remote ip
> address from within the firewall.  So the tunnel is up, but why can't the
> workstations hit those remote addresses?  Do I need to clear some crypto
or
> isakmp sa?
>
> Any help would be greatly appreciated.
>
> --
> Wayne Jang
> Advanced Computer Technologies, Inc.
> 108 Main Street
> Norwalk, CT 06851
> Wk 203-847-9433
> Cell 203-943-6603




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=44986&t=44931
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: Provider Backbone Engineering and CCIEs [7:44876]

[MADMAN]

I have to respectfully disagree,

  Done correctly with caution when necessary the router is an excellant
and often the only troubleshooting tool. If your unpacking a Sniffer
your in deep doo doo as it's quite rare I require it to solve a network
problem.  Don't get me wrong, they are essential and have a purpose but
too often people are going too deep too fast to solve problems that do
not require an analyzer.  

  I used a couple of EIGRP debugs yesterday to help a hospital whose
core 6500 was melting down and for those that do remote support debug is
our friend.

  DebugDave


Priscilla Oppenheimer wrote:
> 
> At 07:32 AM 5/24/02, dre wrote:
> >  Cisco router to solve any problem, even those that shouldn't be solved
> >with
> >a router!
> 
> And how about all the people who try to turn the router into a
> troubleshooting tool? You wouldn't believe how many times I've had to
> convince people that the debug commands aren't a replacement for a sniffer.
> Not only are there issues with eating CPU resources to display the debug
> info, but a lot of the commands don't show packets (which they shouldn't).
> Also, regardless of whether they show events or packets, they don't display
> the information in English (in many cases). In fact, many of the debug
> commands were written to help Cisco software and hardware developers do
> some debugging on flaky code/hardware. They weren't written to help a
> network administrator or engineer.
> 
> I know this is a tangent from the real discussion, but I just wanted to
> make that additional point about a Cisco router not being the solution to
> every problem.
> 
> Priscilla
> 
> 
> 
> Priscilla Oppenheimer
> http://www.priscilla.com
-- 
David Madland
Sr. Network Engineer
CCIE# 2016
Qwest Communications Int. Inc.
[EMAIL PROTECTED]
612-664-3367

"Emotion should reflect reason not guide it"




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=44984&t=44876
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: Provider Backbone Engineering and CCIEs [7:44876]

[Priscilla Oppenheimer]

At 02:42 PM 5/24/02, Howard C. Berkowitz wrote:
>Only tool?  Match up column A and column B (I'm only citing things
>that actually are in my own shop), and cite the equivalent routers.
>
>  tack hammer6" spike
>  8 oz two-faced mallet  4d finishing
>  16 oz two-faced mallet 16d galvanized common
>  10 lb sledge   18gauge brad
>  16 oz black rubber mallet  8d bright common
>  16 oz ball-pein3" masonry
>  drywall hammer drywall nail
>  8 oz ball pein 2" masonry
>  2 lb sledge16d bright common
>  24 oz wood handled carpenter   8d finishing
>  32 oz all metal carpenter  6d finishing
>  Meat tenderizer3/4" aluminum roofing
>  8 oz wood handled carpenterwire staple for Romex
>  dead blow hammer   carpet tacks


Oh, I thought that was router debug output! ;-) It could have said:

4d3h: %LINK-3-UPDOWN: Interface Serial0/1, changed state to 6d finishing
4d3h: carpet tACKs
4d3h: Se0/1 CHAP: O CHALLENGE id 32 oz len 3/4" from Romex
4d3h: %LINK-3-UPDOWN: Interface Serial0/1, changed state to 4d finishing
4d3h: two-faced mallet communications established
4d3h: %LINK-3-UPDOWN: Interface Serial0/1, wood handled carpenter failed
4d3h: tACK hammer
4d3h Se0/1 CHAP: Using alternate hostname black rubber mallet
4d3h: %LINK-3-UPDOWN: Interface Serial0/1, changed state to 6d dead blow
hammer
4d3h: failed wire staple for Romex
4d3h: 8d bright common channel 16d galvanized
4d3h: drywall circuit nailed
4d3h: drywall hit firewall
4d3h: 10 lb sledge hit firewall
4d3h: go back to using a ball-pein for communications
4d3h: go back to work now!

Priscilla




Priscilla Oppenheimer
http://www.priscilla.com




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=44985&t=44876
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: Provider Backbone Engineering and CCIEs [7:44876]

[Sasa Milic]

Because pop3 username and password use two packets (one for
"USER username" and another for "PASS password" command).
With telnet, every keystroke is transmitted in separate
packet. It is possible to collect them all and reconstruct
username/password, but it's not trivial as with pop3.

Sasa
CCIE 8635

Henrique Duarte wrote:
> 
> Why can't I sniff my telnet login/password in clear text but can sniff my
> pop3 login/password in clear text? I'm using Sniffer Pro 4.5.




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=44983&t=44876
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

RE: SYSLOG time stamp problem [7:44949]

[Jeffrey Reed]

Clayton, thanks, the service timestamps was the trick.

One more thing, the hostname is not being displayed in the syslog GUI,
however, I do have the hostname configured on the switch & router in the
6509. Any ideas on that one?

Thanks!!

Jeffrey Reed
Classic Networking, Inc.

-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of
Clayton Dukes
Sent: Friday, May 24, 2002 12:17 PM
To: [EMAIL PROTECTED]
Subject: Re: SYSLOG time stamp problem [7:44949]

Try this:

service timestamps debug datetime localtime show-timezone
service timestamps log datetime localtime show-timezone
!
clock timezone EST -5
clock summer-time EDT recurring



Clayton Dukes
Cisco Info Center SE
CCNA, CCDA, CCDP, CCNP, NCC
(h) 904-292-1881
(c) 904-477-7825
--
Free Cisco Training at http://www.gdd.net



- Original Message -
From: "Alex Lee"
To:
Sent: Friday, May 24, 2002 10:53 AM
Subject: Re: SYSLOG time stamp problem [7:44949]


> My take is that the time stamp is correct but it is using UTC time which
is
> 4 hour ahead of U.S. East Coast's Day Light Saving Time.
>
> ""Jeffrey Reed""  wrote in message
> [EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
> > I set up a syslog server and have a problem with the time stamp in a sys
> log
> > message. When a message is sent to my syslog server (using solar winds
> > syslog monitor) the date/time field is correct, but the time stamp with
> the
> > message itself is not, its 4 hours ahead. I show calendar and clock on
the
> > 6500 MSFC and they are both set correctly. I have the system set up for
> EST
> > and daylight savings, so I think the syslog facility is not factoring in
> > those settings.




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=44975&t=44949
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: Provider Backbone Engineering and CCIEs [7:44876]

[Chuck]

""Howard C. Berkowitz""  wrote in message
[EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
> At 1:25 PM -0400 5/24/02, Chuck wrote:
> >""Priscilla Oppenheimer""  wrote in message
> >[EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
> >>  At 07:32 AM 5/24/02, dre wrote:
> >>  >  Cisco router to solve any problem, even those that shouldn't be
solved
> >>  >with
> >>  >a router!
> >>
> >snip for brevity
> >>
> >>  I know this is a tangent from the real discussion, but I just wanted
to
> >>  make that additional point about a Cisco router not being the solution
to
> >  every problem.
>
> This goes beyond tangent. It is a sin.
>
> >
> >
> >most of us here are really just a bunch of router jocks. what do you
think
> >we would use? ;->
> >when your only tool is a hammer, all your problems look like nails!!! :->
> >
> >Chuck
>
> Only tool?  Match up column A and column B (I'm only citing things
> that actually are in my own shop), and cite the equivalent routers.
>
>  tack hammer6" spike
>  8 oz two-faced mallet  4d finishing
>  16 oz two-faced mallet 16d galvanized common
>  10 lb sledge   18gauge brad
>  16 oz black rubber mallet  8d bright common
>  16 oz ball-pein3" masonry
>  drywall hammer drywall nail
>  8 oz ball pein 2" masonry
>  2 lb sledge16d bright common
>  24 oz wood handled carpenter   8d finishing
>  32 oz all metal carpenter  6d finishing
>  Meat tenderizer3/4" aluminum roofing
>  8 oz wood handled carpenterwire staple for Romex
>  dead blow hammer   carpet tacks


cisco makes routers of any number of sizes, for all occasions. an 827, for
example, might take the place of a tack hammer, while a 3660 or a 7206 might
make a good replacement for a 10 lb sledge.

in fact, after a frustrating all nighter, trying to fix some problem or
another, I have often been tempted to use my routers in such a fashion ;->

Chuck




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=44982&t=44876
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: Provider Backbone Engineering and CCIEs [7:44876]

[Howard C. Berkowitz]

At 1:25 PM -0400 5/24/02, Chuck wrote:
>""Priscilla Oppenheimer""  wrote in message
>[EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
>>  At 07:32 AM 5/24/02, dre wrote:
>>  >  Cisco router to solve any problem, even those that shouldn't be solved
>>  >with
>>  >a router!
>>
>snip for brevity
>>
>>  I know this is a tangent from the real discussion, but I just wanted to
>>  make that additional point about a Cisco router not being the solution to
>  every problem.

This goes beyond tangent. It is a sin.

>
>
>most of us here are really just a bunch of router jocks. what do you think
>we would use? ;->
>when your only tool is a hammer, all your problems look like nails!!! :->
>
>Chuck

Only tool?  Match up column A and column B (I'm only citing things 
that actually are in my own shop), and cite the equivalent routers.

 tack hammer6" spike
 8 oz two-faced mallet  4d finishing
 16 oz two-faced mallet 16d galvanized common
 10 lb sledge   18gauge brad
 16 oz black rubber mallet  8d bright common
 16 oz ball-pein3" masonry
 drywall hammer drywall nail
 8 oz ball pein 2" masonry
 2 lb sledge16d bright common
 24 oz wood handled carpenter   8d finishing
 32 oz all metal carpenter  6d finishing
 Meat tenderizer3/4" aluminum roofing
 8 oz wood handled carpenterwire staple for Romex
 dead blow hammer   carpet tacks




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=44981&t=44876
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: Provider Backbone Engineering and CCIEs [7:44876]

[Henrique Duarte]

Why can't I sniff my telnet login/password in clear text but can sniff my
pop3 login/password in clear text? I'm using Sniffer Pro 4.5.

Thanks,

-H

- Original Message -
From: "Priscilla Oppenheimer" 
To: 
Sent: Friday, May 24, 2002 1:20 PM
Subject: Re: Provider Backbone Engineering and CCIEs [7:44876]


> At 07:32 AM 5/24/02, dre wrote:
> >  Cisco router to solve any problem, even those that shouldn't be solved
> >with
> >a router!
>
> And how about all the people who try to turn the router into a
> troubleshooting tool? You wouldn't believe how many times I've had to
> convince people that the debug commands aren't a replacement for a
sniffer.
> Not only are there issues with eating CPU resources to display the debug
> info, but a lot of the commands don't show packets (which they shouldn't).
> Also, regardless of whether they show events or packets, they don't
display
> the information in English (in many cases). In fact, many of the debug
> commands were written to help Cisco software and hardware developers do
> some debugging on flaky code/hardware. They weren't written to help a
> network administrator or engineer.
>
> I know this is a tangent from the real discussion, but I just wanted to
> make that additional point about a Cisco router not being the solution to
> every problem.
>
> Priscilla
>
>
>
> 
>
> Priscilla Oppenheimer
> http://www.priscilla.com




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=44980&t=44876
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

IP TV 3917 [7:44979]

[sparkest pig]

Hi,
I am having problem with my new IPTV3417.  The IPTV3417 has Window 2000 
server and my lap top is Window XP.  I tried to view the sample file in the 
media file but it says that the Content manager is not authorized to view 
it.  Also, when I tried to view it using the IP TV Viewer that I installed 
in my laptop, the media window does not have the screen.  Also, I can find 
my scheduled programs but not ondemand video.  Please help or redirect this 
request to others

Thanks




_
Chat with friends online, try MSN Messenger: http://messenger.msn.com




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=44979&t=44979
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

RE: Provider Backbone Engineering and CCIEs [7:44876]

[Moffett, Ryan]

Really?   So I shouldn't being doing a "show mem" and looking at the data
contained in specific memory addresses labeled *packet data* to turn my
router into a sniffer? :-)

-Original Message-
From: Priscilla Oppenheimer [mailto:[EMAIL PROTECTED]]
Sent: Friday, May 24, 2002 1:20 PM
To: [EMAIL PROTECTED]
Subject: Re: Provider Backbone Engineering and CCIEs [7:44876]


At 07:32 AM 5/24/02, dre wrote:
>  Cisco router to solve any problem, even those that shouldn't be solved
>with
>a router!

And how about all the people who try to turn the router into a 
troubleshooting tool? You wouldn't believe how many times I've had to 
convince people that the debug commands aren't a replacement for a sniffer. 
Not only are there issues with eating CPU resources to display the debug 
info, but a lot of the commands don't show packets (which they shouldn't). 
Also, regardless of whether they show events or packets, they don't display 
the information in English (in many cases). In fact, many of the debug 
commands were written to help Cisco software and hardware developers do 
some debugging on flaky code/hardware. They weren't written to help a 
network administrator or engineer.

I know this is a tangent from the real discussion, but I just wanted to 
make that additional point about a Cisco router not being the solution to 
every problem.

Priscilla





Priscilla Oppenheimer
http://www.priscilla.com




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=44978&t=44876
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: Friday Follies of sorts - answering questions [7:44952]

[Nigel Taylor]

Chuck,
   This is a very interesting post.  I did some checking and I found
this link that might address the requirement based on the design.  This can
be done by using 6500 switches instead of routers as depicted in your lovely
ASCII art.

http://www.cisco.com/warp/public/cc/pd/si/casi/ca6000/tech/cat65_wp.htm

They make the following note..
Configuring Policers
The next step is to define a policer. The Catalyst 6500 supports microflow
and aggregate policing. A Microflow policer defines the policing of a single
flow, which is defined by a session with a unique SA/DA MAC address, SA/DA
IP address and TCP/UDP port numbers. For each new flow that is initiated
through a port of a VLAN, the microflow can be used to limit the amount of
data received for that flow by the switch.

I notice you're using the "LX" based fiber connection between your routers
but the design does suggest  a "campus" or MAN type architecture.  In this
design I'm guessing that the 6500 with dual MFSC's and PFC's as noted on the
link would provide for redundancy in the design.

In looking at the QoS requirements using a router (possibly using  a 7500)
the GEIP link does mention support for the following - "Support for IP
Quality of Service (QoS)/Class of Service (CoS), including CAR, ACL and
MPLS/tag switching".

A couple of questions here would be..

A couple of questions here would be

1.  What is the problem you are trying to solve?  (I've always wanted to say
this...)  :->
2.  What type of analysis have been done to determine traffic flows(ftp,
smtp, multicast..etc)
3.  QoS based on destination subnets ( How are the subnets being
determined)?
4 .  The design suggest this is a P-t-P connection for an internal network.
Is it?
5 .  The traffic that would be given QoS to the DA subnet to what? An
Application Server/Farm?

I'm currently reading for the second time a book recommended by Priscilla on
the list that I think may
provide you some insight in what you're trying to accomplish.  The book's
author is James D. McCabe
and the title is Practical Computer Network Analysis and Design - ISBN
1558604987

HTH

Nigel


- Original Message -
From: "Chuck" 
To: 
Sent: Friday, May 24, 2002 10:59 AM
Subject: Friday Follies of sorts - answering questions [7:44952]


> I got to thinking about this after posting a question to a company
internal
> mailing list. Based on some of the responses I received from other
> engineers, I wondered at what point one has enough information to answer a
> question. At what point asking for further clarification is  essentially a
> sign that you don't know the answer and you are just stalling.
>
> Please be assured, I am not looking for "the answer". I have what I need,
> including some working configs, which I will post to the list if there is
> enough interest.
>

> I am more interested in the opinions of any number of you folks whose
> insight I appreciate.
>
> So.. here is the e-mail I sent internally. My question is - given what
> you see, do you have enough information to provide an answer? If not, why
> not?
>
>
> Start question:
> -
>
>
>   have a complex QoS traffic shaping rate limiting question.
>
>  internet--->source_router--->gigE_port--->LX_fiber_connection--->gigE
> _port>destination_router--->multiple subnets
>
>  the customer wants to rate limit traffic across the fiber link based on
>  destination ip subnet. I'm racking my brain trying to figure out how to
do
>  this on something other than a frame or an ATM link. Can't seem to find
>  the appropriate examples on CCO.
>
>  Question - can one configure different QoS rate limits for different
>  destination subnets over the same physical interface? All the example I
>  find are for technologies that use PVC's. I had thought policy routing,
>  using the route-maps to change TOS bits, and using map classes (?) to
>  differentiate, but that severely limits the number of subnets I can
>  manage.
>
>  I have found some docs on CCO, but the examples center around MAC and IP
>  precedence, not subnet.
>
>  If you have reasonable expertise in QoS rate limiting, can you give me a
>  call regarding the options I have?
>
> -
> end of question
>
>
> remember - I have what I need. I am just curious about the nature of
> questions and answers, and the clarification process required to provide
> answers. Call this a seminar in the design process, maybe?
>
> I look forward to your sage replies.
>
> Chuck




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=44977&t=44952
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: Bridge and switch [7:44649]

[Priscilla Oppenheimer]

Both bridges and switches learn the port to use to reach a MAC destination. 
If they haven't learned it yet, they flood the frame out all ports except 
the originating port.

Jean Andrews has written some superb books on PC technology. I have a book 
by her called "A+ Guide to Managing and Maintaining Your PC" that is 
excellent. But she should stick to her day job. She doesn't seem to know 
networking. Her description of bridges and switches is false, as you say. 
Maybe she could write some fiction in her spare time. ;-)

The only real difference between bridges and switches is in their 
architectures, both hardware and software. Switches have more ports. 
Switches have a more complex switching fabric that lets them forward 
multiple frames at once. They are often implemented as a crossbar. Think of 
a bridge as being like a literal bridge across a river or whatever. Think 
of a switch as being like a complicated Japanese Pachinko machine!

Regarding the difference between a MAC table and CAM table: They are just 
different names for the same thing.

Priscilla


At 10:57 AM 5/24/02, Kevin Jones wrote:
>Ok. I found the source of the information.  I would like to here your
>feedback on this.
>
>Course Technology * Thompson Learning, i-Net+ Guide to Internet
>Technologies, Jean Andrews, p. 443-445
>
>"What is the difference between a bridge and a switch?  The main difference
>is how they work.  A bridge broadcasts data to one or more LANs while a
>switch knows which LAN a packet should be sent to."
>
>"In order to determine which network the packet should be sent to, the
>bridge creates and maintains a routing table that lists the computers on
>each LAN.  A separate table is kept for each LAN.  When a data packet
>reaches the bridge, the bridge looks at the packet's destination address,
>then searches the routing table for the originating LAN, looking for the
>destination address of the data packet.  If it finds the address in this
>routing table, it drops the packet, knowing that the packet will have
>already reached its destination, because it was broadcast to all nodes on
>the LAN by the LAN's hub."
>
>"If the bridge did not find the destination address in the routing table for
>that LAN, it broadcasts the packet to all nodes on all LANs it is connected
>to except the LAN that the packet came from.  Therefore, a bridge only makes
>a single decision, 'Is this packet destined for a node on its own network?'
>If the answer is 'No,', then the bridge simply broadcasts it to all other
>LANs."
>
>"A switch, on the other hand, deosn not work by sending broadcast messages.
>Just like bridges, switches also keep tables of all the MAC addresses of all
>the devices connected to the switch.  They use these tables to determine
>which path to use when sending packets."
>
>"... Using the destination address in the header of the packet, the switch
>would refer to its tables and determine the LAN to which the packet is
>addressed.  The switch then forwards the  packet to the proper LAN, rather
>than broadcasting the packet to all the LANs."
>
> From this thread, and from past experience, shall we assume that this is
>completely false?  While i-Net plus only skims the surface of network
>technology, this book (like many others) seems to have a lot of errors.
>Another example would be the fact that the MAC tables are referred to as
>routing tables.
>
>That reminds me, what is the difference between a MAC table and a CAM table?
>
>Kevin


Priscilla Oppenheimer
http://www.priscilla.com




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=44974&t=44649
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: Provider Backbone Engineering and CCIEs [7:44876]

[Chuck]

""Priscilla Oppenheimer""  wrote in message
[EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
> At 07:32 AM 5/24/02, dre wrote:
> >  Cisco router to solve any problem, even those that shouldn't be solved
> >with
> >a router!
>
snip for brevity
>
> I know this is a tangent from the real discussion, but I just wanted to
> make that additional point about a Cisco router not being the solution to
 every problem.


most of us here are really just a bunch of router jocks. what do you think
we would use? ;->
when your only tool is a hammer, all your problems look like nails!!! :->

Chuck


>
> Priscilla
>
>
>
> 
>
> Priscilla Oppenheimer
> http://www.priscilla.com




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=44976&t=44876
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: Provider Backbone Engineering and CCIEs [7:44876]

[Priscilla Oppenheimer]

At 07:32 AM 5/24/02, dre wrote:
>  Cisco router to solve any problem, even those that shouldn't be solved
>with
>a router!

And how about all the people who try to turn the router into a 
troubleshooting tool? You wouldn't believe how many times I've had to 
convince people that the debug commands aren't a replacement for a sniffer. 
Not only are there issues with eating CPU resources to display the debug 
info, but a lot of the commands don't show packets (which they shouldn't). 
Also, regardless of whether they show events or packets, they don't display 
the information in English (in many cases). In fact, many of the debug 
commands were written to help Cisco software and hardware developers do 
some debugging on flaky code/hardware. They weren't written to help a 
network administrator or engineer.

I know this is a tangent from the real discussion, but I just wanted to 
make that additional point about a Cisco router not being the solution to 
every problem.

Priscilla





Priscilla Oppenheimer
http://www.priscilla.com




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=44973&t=44876
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

RE: PIX - PAT configuration problem [7:44957]

[Roberts, Larry]

Hello,

That is a pretty standard way of doing PAT overloading. I use it on 4 or 5
firewalls in this manner. I would suggest double,then triple checking
The global for typo's. I suspect that the PAT global might have an incorrect
address. Try and see if those uses that have a PAT address can ping outside
address's.
Start with the next hop address, and work from there. 

Let us know if they can ping , or is everything blocked.


Thanks

Larry 

-Original Message-
From: Ufuk Yasibeyli [mailto:[EMAIL PROTECTED]] 
Sent: Friday, May 24, 2002 10:23 AM
To: [EMAIL PROTECTED]
Subject: PIX - PAT configuration problem [7:44957]


Hello everybody,

I have configured a PIX 515E v6.1(2) with following 
for NAT/PAT address translation : 

ip address outside x.y.z.2 255.255.255.0
ip address inside 192.168.0.1 255.255.255.0
route outside 0.0.0.0 0.0.0.0 x.y.z.1 1

global (outside) 1 x.y.z.100-x.y.z.253
global (outside) 1 x.y.z.254

nat (inside) 1 0.0.0.0 0.0.0.0 0 0


Inside hosts have necessary permissions for initiating web traffic and 
all the hosts which gets an address from NAT pool(100-253) can browse the
web. However, clients which are allocated from PAT address(254), can not
browse the web. These clients can resolve DNS names to IP addresses though. 
when I issue "show xlat" command, PAT addresses are shown as allocated to
some clients, which I verify that they can't access to web.

I have used Cisco Output interpretter tool. But it didn't give me 
any warning or configuration error. And I think the config is pretty
straight forward. (Which might be the reason of a mistake I can't see)

One friend informed that PIX has a problem in a configuration like this,
where 
outside address is in the same segment with the address used for PAT. Can
someone confirm this information, and if so, is this behaviour a bug 
or a configuration mistake I am making.

Best regards,

Ufuk Yasibeyli




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=44972&t=44957
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: CCDP Prerequisites? [7:44966]

[[EMAIL PROTECTED]]

Miguel,

"Unfair it seems" , but it is, in fact, true.  One must sit for and pass the 
CCDA exam as a pre-requisite of sitting for the CCDP.  After all, a little 
MORE knowledge certainly wont hurt?  ;)

HTH,

Rob H.   NP, DP, blah,blah,blah.




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=44971&t=44966
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

RE: CCDP Prerequisites? [7:44966]

[Marko Milivojevic]

> Hi
> Can anyone tell me what the current prerequisites are for 
> taking the DP
> exam? I was told that if you have the CCNP you can write the 
> DP exam without
> writing the DA exam first. Is this true? I am hearing now 
> that you must
> write the DA exam as well.

The only way you can avoid DA is if you have CCIE ... There is a
nice tree structure of requirements on cert. tracking site.


Marko.




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=44970&t=44966
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

GROUPstudy.com......with the Emphasis on GROUP [7:44969]

[stephen skinner1]

you know ,,,


i amreally starting to get fed-up with the "lets bash howard" brigade...

i have and will continue to put your teaching`s (howard) into practise...

this IS A COMMUNITY of professionals who HELP eachother

i have been in recept of  many tips form a great many CCIE/CCNA/CCNP`s 

i will happily take any help form anyone regardless of the Cert.i have
myself helped a CCIE and i am only a CCNP...

this help was provided because as per most of us we dont work in enviroments
were we have access to every piece of equipment there is on the planet..

so i help him .

i have also been helped by a CCNA

is he any less a human bieng.NO

let us remeber why we signed up ...to HELP SHARE and LEARN...


Pleasent Weekend study.,..

steve


- Original Message -
From: "Howard C. Berkowitz" 
To: 
Sent: Wednesday, May 22, 2002 2:49 PM
Subject: Re: Logic and Lab Rats [7:44714]


> I'm not saying to close the thread or not, although I think the
> moderators (I am one) are starting to block messages that come across
> as personal attacks.
>
> What I see is the fundamental misperception in this thread is an
> assumption there is a binary choice between experience and new
> training. I freely admit there are experienced people that have had 1
> year of experience 20 times.  But other experienced people have BOTH
> the experience and the in-depth protocol knowledge, which puts them
> in a position to learn even faster -- if they want to.
>
> Earlier in the thread, someone said "would you put something in
> production without lab testing?"  As with everything else in
> networking, "it depends."  A large ISP, for example, will test a new
> IOS release in a lab, but they can't possibly have a lab that will
> let them see the effects of the change on tens of thousands of
> routers.  This is true of router manufacturers as well.
>
> For very large networks, it may be possible to use true (i.e., Monte
> Carlo) simulation or mathematical analysis. But experience does have
> a major role in Internet backbone engineering.  Let me simply say
> that backbone engineering is at a level far more specialized and
> complex than the CCIE level, and there haven't been formalized ways
> to learn it.




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=44969&t=44969
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: SYSLOG time stamp problem [7:44949]

[Clayton Dukes]

Try this:

service timestamps debug datetime localtime show-timezone
service timestamps log datetime localtime show-timezone
!
clock timezone EST -5
clock summer-time EDT recurring



Clayton Dukes
Cisco Info Center SE
CCNA, CCDA, CCDP, CCNP, NCC
(h) 904-292-1881
(c) 904-477-7825
--
Free Cisco Training at http://www.gdd.net



- Original Message -
From: "Alex Lee" 
To: 
Sent: Friday, May 24, 2002 10:53 AM
Subject: Re: SYSLOG time stamp problem [7:44949]


> My take is that the time stamp is correct but it is using UTC time which
is
> 4 hour ahead of U.S. East Coast's Day Light Saving Time.
>
> ""Jeffrey Reed""  wrote in message
> [EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
> > I set up a syslog server and have a problem with the time stamp in a sys
> log
> > message. When a message is sent to my syslog server (using solar winds
> > syslog monitor) the date/time field is correct, but the time stamp with
> the
> > message itself is not, its 4 hours ahead. I show calendar and clock on
the
> > 6500 MSFC and they are both set correctly. I have the system set up for
> EST
> > and daylight savings, so I think the syslog facility is not factoring in
> > those settings.




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=44961&t=44949
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

MCNS [7:44968]

[Joe Rubino]

I am set to take the MCNS soon; can anyone offer any words of wisdom?


Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=44968&t=44968
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: CCDP Prerequisites? [7:44966]

[Steven A. Ridder]

You need CCNP +CCDA first

--

RFC 1149 Compliant.



""Miguel Mitras""  wrote in message
[EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
> Hi
> Can anyone tell me what the current prerequisites are for taking the DP
> exam? I was told that if you have the CCNP you can write the DP exam
without
> writing the DA exam first. Is this true? I am hearing now that you must
> write the DA exam as well.
>
> Unfair, it seems.




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=44967&t=44966
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

CCDP Prerequisites? [7:44966]

[Miguel Mitras]

Hi
Can anyone tell me what the current prerequisites are for taking the DP
exam? I was told that if you have the CCNP you can write the DP exam without
writing the DA exam first. Is this true? I am hearing now that you must
write the DA exam as well.

Unfair, it seems.


Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=44966&t=44966
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: SYSLOG time stamp problem [7:44949]

[Brunner Joseph]

you need to add logging facilites for messages in the syslog.conf file in
/etc/

research setting up syslog.conf on google. also do a "netstat -na"

you should see

/home/jbrunner as root@ns>  netstat -na
Active Internet connections (servers and established)
Proto Recv-Q Send-Q Local Address   Foreign Address State
udp0  0 0.0.0.0:514 0.0.0.0:*


(this is syslog running, listing on 514 UDP)


Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=44965&t=44949
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

RE: Spanish Inquisition project [7:44906]

[s vermill]

No one expects the spanish inquisition!!!


Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=44963&t=44906
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: Banner MOTD [7:44828]

[Frank Hafta]

How?

""test toby""  wrote in message
[EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
> yes




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=44962&t=44828
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

RE: Spanish Inquisition project [7:44906]

[s vermill]

No one expects the spanish inquisition!!!Tom Scott wrote:
> 
> I can't seem to find anything about the Spanish Inquisition
> project on
> the cisco.com website.
> 
> -- TT
> 
> 




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=44964&t=44906
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: Bridge and switch [7:44649]

[Chuck]

I used to wonder why I had such a hard time grasping technology concepts
until I reached a level where I actually understood some of this stuff. Then
I found that a lot of sources either did not understand the concepts
themselves or worse yet, they were so imprecise with their language and
terminology, that they created confusion in the mind of the newbie learner.
Some comments below:


""Kevin Jones""  wrote in message
[EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
> Ok. I found the source of the information.  I would like to here your
> feedback on this.
>
> Course Technology * Thompson Learning, i-Net+ Guide to Internet
> Technologies, Jean Andrews, p. 443-445
>
> "What is the difference between a bridge and a switch?  The main
difference
> is how they work.  A bridge broadcasts data to one or more LANs while a
> switch knows which LAN a packet should be sent to."

? since both are layer 2 devices, and layer two has no concept of "LAN"
let alone "different LAN's"  what does this mean?


>
> "In order to determine which network the packet should be sent to, the
> bridge creates and maintains a routing table that lists the computers on

The use of the term "routing table" is inaacurate. layer two does not
"route"

I believe the proper term is "forwarding base", which is more generic, and
more proper.


> each LAN.  A separate table is kept for each LAN.

?? not on any bridge or switch I've ever worked with

>When a data packet
> reaches the bridge, the bridge looks at the packet's destination address,
> then searches the routing table for the originating LAN, looking for the
> destination address of the data packet.  If it finds the address in this
> routing table, it drops the packet, knowing that the packet will have
> already reached its destination, because it was broadcast to all nodes on
> the LAN by the LAN's hub."

sigh. totally wrong in concept and in explaination...


>
> "If the bridge did not find the destination address in the routing table
for
> that LAN, it broadcasts the packet to all nodes on all LANs it is
connected
> to except the LAN that the packet came from.  Therefore, a bridge only
makes
> a single decision, 'Is this packet destined for a node on its own
network?'
> If the answer is 'No,', then the bridge simply broadcasts it to all other
> LANs."

??. I think I begin to understand what the author is intending. The
author appears to be saying that each port on a bridge is associated with a
LAN. This can be considered conceptually correct in a manner of speaking,
but again, the imprecision of terminology is causing confusion..


>
> "A switch, on the other hand, deosn not work by sending broadcast
messages.
> Just like bridges, switches also keep tables of all the MAC addresses of
all
> the devices connected to the switch.  They use these tables to determine
> which path to use when sending packets."


here we go,,, the author now gets into the correct concept - MAC addresses -
which bridges use also.

>
> "... Using the destination address in the header of the packet, the switch
> would refer to its tables and determine the LAN to which the packet is
> addressed.  The switch then forwards the  packet to the proper LAN, rather
> than broadcasting the packet to all the LANs."

the author continues to confuse L2 and L3 terminaology. L2 is "frame" -
recall your CCNA materials.


>
> From this thread, and from past experience, shall we assume that this is
> completely false?  While i-Net plus only skims the surface of network
> technology, this book (like many others) seems to have a lot of errors.
> Another example would be the fact that the MAC tables are referred to as
> routing tables.


no kidding there are errors. just goes to show

>
> That reminds me, what is the difference between a MAC table and a CAM
table?


Cisco calls the mac table a "content addressable memory" table. without
spending more time than I have at the moment, I can't find a history on CCO
as to why they do this.

>
> Kevin




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=44960&t=44649
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: CCIE Wanted. [7:44940]

[Tunji Suleiman]

Hi Sunil,

Is this strictly for the IEs? If you will consider a CCNP with ISP and VoIP 
experience, then please indicate the pay in USD. I will love to work in 
India.

Tunji


>From: "[EMAIL PROTECTED]" 
>Reply-To: "[EMAIL PROTECTED]" 
>To: [EMAIL PROTECTED]
>Subject: CCIE Wanted. [7:44940]
>Date: Fri, 24 May 2002 06:34:17 -0400
>
> > Hi.
> >
> > Re-posting this mail as the number of responses were a few. Forward this
> > mail to your friends.
> >
> > Network Solutions Ltd, a Bangalore based company is looking for CCIEs.
> > Visit www.netsol.co.in for more info on the company. We are among the 
>Top
> > Network Integrators in the Country moving towards the No.1 Spot.
> >
> > The Positions will be out of   Bangalore, Mumbai and New Delhi.
> >
> > Interested Candidates willing to relocate to India may apply.
> >
> > Compensation will be on par/better-than with what the industry in India
> > Pays.  We pay in INR only.
> >
> > Thanks.
> > Sunil Satyanathan
_
Chat with friends online, try MSN Messenger: http://messenger.msn.com




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=44959&t=44940
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: Friday Follies of sorts - answering questions [7:44952]

[Steven A. Ridder]

Maybe I shot off the answer too soon.  If you are just looking for what
questions to ask, then here's what I'd ask:

1.  What equipment, IOS/CatOS rev?
2.  What speeds are the links?  (You already have this)
3.  What is the purpose of this (get the big picture)
4.  Who are you limiting?  What speeds to they get?  What types of traffic
is getting limited?  Is it a strict limit or is there some leeway in passing
the traffic as long as there's room on the links?


--

RFC 1149 Compliant.



""Steven A. Ridder""  wrote in message
[EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
> Try this (not I used standard access list that not only did subnet, but
also
> port.
>
> rate-limit output access-group 101 8000 2000 2000 conform-action transmit
> excee
> d-action drop
> !
> acces-list 101 permit tcp 10.10.10.0 0.0.0.255 any eq 80
>
> --
>
> RFC 1149 Compliant.
>
>
>
> ""Chuck""  wrote in message
> [EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
> > I got to thinking about this after posting a question to a company
> internal
> > mailing list. Based on some of the responses I received from other
> > engineers, I wondered at what point one has enough information to answer
a
> > question. At what point asking for further clarification is  essentially
a
> > sign that you don't know the answer and you are just stalling.
> >
> > Please be assured, I am not looking for "the answer". I have what I
need,
> > including some working configs, which I will post to the list if there
is
> > enough interest.
> >
> > I am more interested in the opinions of any number of you folks whose
> > insight I appreciate.
> >
> > So.. here is the e-mail I sent internally. My question is - given
what
> > you see, do you have enough information to provide an answer? If not,
why
> > not?
> >
> >
> > Start question:
> > -
> >
> >
> >   have a complex QoS traffic shaping rate limiting question.
> >
> >  internet--->source_router--->gigE_port--->LX_fiber_connection--->gigE
> > _port>destination_router--->multiple subnets
> >
> >  the customer wants to rate limit traffic across the fiber link based on
> >  destination ip subnet. I'm racking my brain trying to figure out how to
> do
> >  this on something other than a frame or an ATM link. Can't seem to find
> >  the appropriate examples on CCO.
> >
> >  Question - can one configure different QoS rate limits for different
> >  destination subnets over the same physical interface? All the example I
> >  find are for technologies that use PVC's. I had thought policy routing,
> >  using the route-maps to change TOS bits, and using map classes (?) to
> >  differentiate, but that severely limits the number of subnets I can
> >  manage.
> >
> >  I have found some docs on CCO, but the examples center around MAC and
IP
> >  precedence, not subnet.
> >
> >  If you have reasonable expertise in QoS rate limiting, can you give me
a
> >  call regarding the options I have?
> >
> > -
> > end of question
> >
> >
> > remember - I have what I need. I am just curious about the nature of
> > questions and answers, and the clarification process required to provide
> > answers. Call this a seminar in the design process, maybe?
> >
> > I look forward to your sage replies.
> >
> > Chuck




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=44958&t=44952
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

PIX - PAT configuration problem [7:44957]

[Ufuk Yasibeyli]

Hello everybody,

I have configured a PIX 515E v6.1(2) with following 
for NAT/PAT address translation : 

ip address outside x.y.z.2 255.255.255.0
ip address inside 192.168.0.1 255.255.255.0
route outside 0.0.0.0 0.0.0.0 x.y.z.1 1

global (outside) 1 x.y.z.100-x.y.z.253
global (outside) 1 x.y.z.254

nat (inside) 1 0.0.0.0 0.0.0.0 0 0


Inside hosts have necessary permissions for initiating web traffic and 
all the hosts which gets an address from NAT pool(100-253) can browse
the web.
However, clients which are allocated from PAT address(254), can not
browse the web.
These clients can resolve DNS names to IP addresses though. 
when I issue "show xlat" command, PAT addresses are shown as allocated
to
some clients, which I verify that they can't access to web.

I have used Cisco Output interpretter tool. But it didn't give me 
any warning or configuration error. And I think the config is pretty
straight forward. (Which might be the reason of a mistake I can't see)

One friend informed that PIX has a problem in a configuration like this,
where 
outside address is in the same segment with the address used for PAT.
Can someone
confirm this information, and if so, is this behaviour a bug 
or a configuration mistake I am making.

Best regards,

Ufuk Yasibeyli




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=44957&t=44957
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: SYSLOG time stamp problem [7:44949]

[Steven A. Ridder]

Speaking of syslog, if a syslog daemon is running on a unix machine, is that
all that needs to happen for it to collect messages.  I can get a Kiwi
syslog program to work, but if I have a customer set up syslog on unix,
nothing is in the logs, even though the router claims to have sent him
messages (and all connectivity is working).

--

RFC 1149 Compliant.



""Jeffrey Reed""  wrote in message
[EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
> I set up a syslog server and have a problem with the time stamp in a sys
log
> message. When a message is sent to my syslog server (using solar winds
> syslog monitor) the date/time field is correct, but the time stamp with
the
> message itself is not, its 4 hours ahead. I show calendar and clock on the
> 6500 MSFC and they are both set correctly. I have the system set up for
EST
> and daylight savings, so I think the syslog facility is not factoring in
> those settings.
>
> How can I get the syslog message to display the correct time?
>
> Thanks!!
>
> Jeff Reed




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=44956&t=44949
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

RE: SYSLOG time stamp problem [7:44949]

[Brunner Joseph]

set ntp client enable
set ntp server 10.0.1.1
set ntp server 10.0.1.2
set timezone EST -5 0
set summertime enable


Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=44955&t=44949
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: Friday Follies of sorts - answering questions [7:44952]

[Steven A. Ridder]

Try this (not I used standard access list that not only did subnet, but also
port.

rate-limit output access-group 101 8000 2000 2000 conform-action transmit
excee
d-action drop
!
acces-list 101 permit tcp 10.10.10.0 0.0.0.255 any eq 80

--

RFC 1149 Compliant.



""Chuck""  wrote in message
[EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
> I got to thinking about this after posting a question to a company
internal
> mailing list. Based on some of the responses I received from other
> engineers, I wondered at what point one has enough information to answer a
> question. At what point asking for further clarification is  essentially a
> sign that you don't know the answer and you are just stalling.
>
> Please be assured, I am not looking for "the answer". I have what I need,
> including some working configs, which I will post to the list if there is
> enough interest.
>
> I am more interested in the opinions of any number of you folks whose
> insight I appreciate.
>
> So.. here is the e-mail I sent internally. My question is - given what
> you see, do you have enough information to provide an answer? If not, why
> not?
>
>
> Start question:
> -
>
>
>   have a complex QoS traffic shaping rate limiting question.
>
>  internet--->source_router--->gigE_port--->LX_fiber_connection--->gigE
> _port>destination_router--->multiple subnets
>
>  the customer wants to rate limit traffic across the fiber link based on
>  destination ip subnet. I'm racking my brain trying to figure out how to
do
>  this on something other than a frame or an ATM link. Can't seem to find
>  the appropriate examples on CCO.
>
>  Question - can one configure different QoS rate limits for different
>  destination subnets over the same physical interface? All the example I
>  find are for technologies that use PVC's. I had thought policy routing,
>  using the route-maps to change TOS bits, and using map classes (?) to
>  differentiate, but that severely limits the number of subnets I can
>  manage.
>
>  I have found some docs on CCO, but the examples center around MAC and IP
>  precedence, not subnet.
>
>  If you have reasonable expertise in QoS rate limiting, can you give me a
>  call regarding the options I have?
>
> -
> end of question
>
>
> remember - I have what I need. I am just curious about the nature of
> questions and answers, and the clarification process required to provide
> answers. Call this a seminar in the design process, maybe?
>
> I look forward to your sage replies.
>
> Chuck




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=44954&t=44952
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

VPN Design [7:44953]

[neil K.]

Hi All,

1. Could anyone please tell me what needs to be done on the PIX firewall if
the
Cisco VPN concentrator is placed in such a way as the public interface is in
the DMZ and private interface on the inside network.
2. This design of placing the Concentraor in the DMZ is a little complex as
compared to keeping the Concentrator Parallel to Firewall, which has
security
risks.Also in the case of Parallel design concentrator public address has to
be in the IP subnet as the
Firewall and the External Router( If I am not wrong) can this be overcome by
placing the Concentrator in the DMZ.
3. Does the firewall need some routing capability so that it can route
Encrypted packets to go thru concentrator or can it be done by adding routes
to the servers pointing to concentrator.
4. What will have to be done if there are some AS-400 servers and we are
planning to use IPsec.

Any help will be highly appreciated.

Thanks,

Neil




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=44953&t=44953
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Friday Follies of sorts - answering questions [7:44952]

[Chuck]

I got to thinking about this after posting a question to a company internal
mailing list. Based on some of the responses I received from other
engineers, I wondered at what point one has enough information to answer a
question. At what point asking for further clarification is  essentially a
sign that you don't know the answer and you are just stalling.

Please be assured, I am not looking for "the answer". I have what I need,
including some working configs, which I will post to the list if there is
enough interest.

I am more interested in the opinions of any number of you folks whose
insight I appreciate.

So.. here is the e-mail I sent internally. My question is - given what
you see, do you have enough information to provide an answer? If not, why
not?


Start question:
-


  have a complex QoS traffic shaping rate limiting question.

 internet--->source_router--->gigE_port--->LX_fiber_connection--->gigE
_port>destination_router--->multiple subnets

 the customer wants to rate limit traffic across the fiber link based on
 destination ip subnet. I'm racking my brain trying to figure out how to do
 this on something other than a frame or an ATM link. Can't seem to find
 the appropriate examples on CCO.

 Question - can one configure different QoS rate limits for different
 destination subnets over the same physical interface? All the example I
 find are for technologies that use PVC's. I had thought policy routing,
 using the route-maps to change TOS bits, and using map classes (?) to
 differentiate, but that severely limits the number of subnets I can
 manage.

 I have found some docs on CCO, but the examples center around MAC and IP
 precedence, not subnet.

 If you have reasonable expertise in QoS rate limiting, can you give me a
 call regarding the options I have?

-
end of question


remember - I have what I need. I am just curious about the nature of
questions and answers, and the clarification process required to provide
answers. Call this a seminar in the design process, maybe?

I look forward to your sage replies.

Chuck




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=44952&t=44952
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: Bridge and switch [7:44649]

[Kevin Jones]

Ok. I found the source of the information.  I would like to here your
feedback on this.

Course Technology * Thompson Learning, i-Net+ Guide to Internet
Technologies, Jean Andrews, p. 443-445

"What is the difference between a bridge and a switch?  The main difference
is how they work.  A bridge broadcasts data to one or more LANs while a
switch knows which LAN a packet should be sent to."

"In order to determine which network the packet should be sent to, the
bridge creates and maintains a routing table that lists the computers on
each LAN.  A separate table is kept for each LAN.  When a data packet
reaches the bridge, the bridge looks at the packet's destination address,
then searches the routing table for the originating LAN, looking for the
destination address of the data packet.  If it finds the address in this
routing table, it drops the packet, knowing that the packet will have
already reached its destination, because it was broadcast to all nodes on
the LAN by the LAN's hub."

"If the bridge did not find the destination address in the routing table for
that LAN, it broadcasts the packet to all nodes on all LANs it is connected
to except the LAN that the packet came from.  Therefore, a bridge only makes
a single decision, 'Is this packet destined for a node on its own network?'
If the answer is 'No,', then the bridge simply broadcasts it to all other
LANs."

"A switch, on the other hand, deosn not work by sending broadcast messages.
Just like bridges, switches also keep tables of all the MAC addresses of all
the devices connected to the switch.  They use these tables to determine
which path to use when sending packets."

"... Using the destination address in the header of the packet, the switch
would refer to its tables and determine the LAN to which the packet is
addressed.  The switch then forwards the  packet to the proper LAN, rather
than broadcasting the packet to all the LANs."

>From this thread, and from past experience, shall we assume that this is
completely false?  While i-Net plus only skims the surface of network
technology, this book (like many others) seems to have a lot of errors.
Another example would be the fact that the MAC tables are referred to as
routing tables.

That reminds me, what is the difference between a MAC table and a CAM table?

Kevin




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=44951&t=44649
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: SYSLOG time stamp problem [7:44949]

[Alex Lee]

My take is that the time stamp is correct but it is using UTC time which is
4 hour ahead of U.S. East Coast's Day Light Saving Time.

""Jeffrey Reed""  wrote in message
[EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
> I set up a syslog server and have a problem with the time stamp in a sys
log
> message. When a message is sent to my syslog server (using solar winds
> syslog monitor) the date/time field is correct, but the time stamp with
the
> message itself is not, its 4 hours ahead. I show calendar and clock on the
> 6500 MSFC and they are both set correctly. I have the system set up for
EST
> and daylight savings, so I think the syslog facility is not factoring in
> those settings.




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=44950&t=44949
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

SYSLOG time stamp problem [7:44949]

[Jeffrey Reed]

I set up a syslog server and have a problem with the time stamp in a sys log
message. When a message is sent to my syslog server (using solar winds
syslog monitor) the date/time field is correct, but the time stamp with the
message itself is not, its 4 hours ahead. I show calendar and clock on the
6500 MSFC and they are both set correctly. I have the system set up for EST
and daylight savings, so I think the syslog facility is not factoring in
those settings.

How can I get the syslog message to display the correct time?

Thanks!!

Jeff Reed




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=44949&t=44949
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: Private Addressing over Distances [7:44946]

[Craig Columbus]

Well...technically, 128.128.0.0 isn't a private address re: RFC1918.  :-)

But more to the point of your question, you can run whatever addresses you 
want over a private point-to-point connection.

Craig


At 09:38 AM 5/24/2002 -0400, you wrote:
>Hello Everyone,
>
>  I have a newbie question to ask.  If, for example, I had a building in
>one location (for say, the state of maryland) and then another building in
>another location (for say, the state of virginia), would I be able to have
>the locations directly connect to each other via phone lines and still be
>able to use my private addressing?  Or MUST I use an ISP and either do NAT
>or use their external ip addresses?  In other words, if I had a private
>class B address of 128.128.0.0 and wanted to use that across a distance,
>would the phone company have a direct link between my two buildings (is it
>possible?) and allow my own addressing?  (keep in mind in this example I am
>not worried about connecting to the Internet, just my intranet, which is why
>I do not think an ISP or NAT or external addressing should matter at all)
>
>Thank you everyone, i have learned so much on this message board.  I am
>taking my CCNP Routing June 7th and this question just was bothering me =)
>I am a newbie to how the phone system interconnects networks, I only know my
>end of the job hehe. Thanks again.
>
>Jarred
>CCNA




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=44948&t=44946
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: Doyle on Lab Rats [7:44611]

[Tom Scott]

Thompson Alton wrote:

> Your comments are false and you sound very ignorant.
> I work with guys who have 20 years experience and to trouble shoot a
problem
> take months. This is because they don't know how the protocols work. How
> much money can a company afford to lose when production is downloading for
a
> considerable amount of time? That's why as a mangers? we send Engineers on
> training to learn about new and merging technologies. And that?s before you
> can put or do any upgrades to the production network you must first try it
> out in the lab.

An ideal scneario would be to pass the CCNP with production network
experience or at
least with plenty of lab experience from home/office labs and the Cisco
Academies that
are popping up all over the country. Moving to the CCIE, the ideal is pretty
much
production network plus home/office labs. If you're not working with routers
and
switches that are actually used in a production network, passing the CCIE is
not as
meaningful as it would be for those who have daily hands-on experience with
real design
and troubleshooting.

I've seen a goodly number of network administrators who are in positions of
power, but
who don't know even the basics of classful subnetting, VLSM, routing, L2 LAN
switching,
and VLANs. (Even some telco ATM techs who don't understand the difference
between
L2/LAN switches vs. VLAN switches, but that's a whole 'nother story in
itself). These
hands-on guys moved up from the ranks of network operating systems (NOSs),
usually
Novell, Unix and Windows. I respect their ability to handle a production
network but
it's a shame they won't listen to the young CCNAs and CCNPs who work for
them. They
(the old desktop/NOS guys who moved up to network management roles) couldn't
even
conceive of migrating their RIP networks to OSPF, but with the help of their
CCNx/CCDx
employees they could really do something good. It's the age-old problem of
control and
fear of the unknown.

-- TT




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=44947&t=44611
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Private Addressing over Distances [7:44946]

[Jarred Nicholls]

Hello Everyone,

 I have a newbie question to ask.  If, for example, I had a building in
one location (for say, the state of maryland) and then another building in
another location (for say, the state of virginia), would I be able to have
the locations directly connect to each other via phone lines and still be
able to use my private addressing?  Or MUST I use an ISP and either do NAT
or use their external ip addresses?  In other words, if I had a private
class B address of 128.128.0.0 and wanted to use that across a distance,
would the phone company have a direct link between my two buildings (is it
possible?) and allow my own addressing?  (keep in mind in this example I am
not worried about connecting to the Internet, just my intranet, which is why
I do not think an ISP or NAT or external addressing should matter at all)

Thank you everyone, i have learned so much on this message board.  I am
taking my CCNP Routing June 7th and this question just was bothering me =) 
I am a newbie to how the phone system interconnects networks, I only know my
end of the job hehe. Thanks again.

Jarred
CCNA




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=44946&t=44946
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: Solution to RIP default routing problem [7:44944]

[Johnny Routin]

>From what I've heard the behavior was changed in 12.1 in that the default is
no longer automatically inected into rip.


JR
--
Johnny Routin
The "Routin" One



""John Dorffler""  wrote in message
[EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
> Thanks for all the input on this. BTW, here is what I had on the router
> trying to inject the default route:
>
> router rip
>  network 192.168.12.0
>  network 192.168.23.0
> !
> ip classless
> ip route 0.0.0.0 0.0.0.0 192.168.12.1
>
> On a set of 2500 routers, this did not work as planned using 12.1.x. I
tried
> 12.1.15 and 12.1.13, both GD releases. When I backed down to 12.0.20, it
> worked as expected. Strangely, this config worked on my 4000 routers using
> 12.1.13.
>
> I don't know whether to chalk this up as a bug in the 12.1 code for the
2500
> series (I was using the IP only image in each case) or that Cisco is
> starting to phase this "feature" out. In my mind it is obnoxious to assume
> that you want to automatically inject the default route into RIP (or any
IGP
> for that matter), so I hope that Cisco is indeed removing it.
>
> Thank you,
> John Dorffler
> CCIE #6677




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=44945&t=44944
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Solution to RIP default routing problem [7:44944]

[John Dorffler]

Thanks for all the input on this. BTW, here is what I had on the router
trying to inject the default route:

router rip
 network 192.168.12.0
 network 192.168.23.0
!
ip classless
ip route 0.0.0.0 0.0.0.0 192.168.12.1

On a set of 2500 routers, this did not work as planned using 12.1.x. I tried
12.1.15 and 12.1.13, both GD releases. When I backed down to 12.0.20, it
worked as expected. Strangely, this config worked on my 4000 routers using
12.1.13.

I don't know whether to chalk this up as a bug in the 12.1 code for the 2500
series (I was using the IP only image in each case) or that Cisco is
starting to phase this "feature" out. In my mind it is obnoxious to assume
that you want to automatically inject the default route into RIP (or any IGP
for that matter), so I hope that Cisco is indeed removing it.

Thank you,
John Dorffler
CCIE #6677




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=44944&t=44944
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: Token ring Question. [7:44805]

[2504s]

A router is being used as a transparent bridge between a Token Ring network
and an Ethernet network. Host X on the Token ring sends a packet to Host Y
on the Ethernet.

What would the source MAC address on the  Ethernet Host ?

does anyone know the answer? thank you.

Cj

- Original Message -
From: "Reza Sharifi" 
To: 
Sent: Thursday, May 23, 2002 5:30 PM
Subject: Re: Token ring Question. [7:44805]


> Ivan,
>
> Take a look at the subject (CCIE written question)
> that Dennis responded to on  May 20.
>
> He is a great source for this group.
>
> Thanks
> Reza
>
>
> ""Ivan""  wrote in message
> [EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
> > Hi all,
> >
> > I have a interest question, doesn't any one know the answer?
> >
> > A router is being used as a translation bridge between a Token Ring
> network
> > and an Ethernet network. Host X on the Token ring sends a packet to Host
Y
> > on the Ethernet. The soursce MAC address of the packet is 400.a089.0002.
> How
> > would the MAC address be interpreted in an Ethernet environment?
> >
> > does anyone know the answer? thank you.
> >
> > Ivan




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=44943&t=44805
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

NAT References [7:44942]

[norsyam ariffin]

Hi guys.

Regarding the NAT, could somebody recommend which book is good for reference 
beside Cisco Documentation.

Thank in advance.

Syam

_
Get your FREE download of MSN Explorer at http://explorer.msn.com/intl.asp.




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=44942&t=44942
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: Provider Backbone Engineering and CCIEs [7:44876]

[dre]

""Ron Trunk""  wrote in message
[EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
> Howard and dre,
> First of all, thanks for the excellent thread!  You've given me a great
deal

> kids (ha!), I'm going to go over it in detail.  Thanks for all the links
> too!  It's helpful to know what the best things to read are.

Very cool.  I know exactly how you feel, so any feedback would be highly
appreciated.

> At the risk of extended an already belabored subject, I did want to
comment

> Cisco router to solve any problem, even those that shouldn't be solved
with
> a router!

Exactly the reason why the CCIE: Design didn't pan out, and why the
CND/CID course material is a wee bit out-of-date.  Real world experience
is impossible to test on any type of standardized exam.  There is no
"shortcut"
class or paper written to teach you what you need to know for the
real-world.

> You guys have obviously great expertise in a relatively specialized field.

The "Internet" is considered a specialized field in networking?  I never
thought of it that way before.  Please explain what you mean.

I think that a CCIE: R&S is more specialized.  No knowledge of
SONET, per se (never touched an ADM or DCS).  No real knowledge
of ATM (never been inside an ATM switch).  No real knowledge of
anything except R&S.  That's specialized!

> Should everyone have to understand all these issues before they can
rightly
> call themselves a network engineer?

Well plenty of NT administrators call themselves network engineers or
network administrators.  I think you can call yourself anything you want.
It's not like you are claiming to be "Dr. Ron" with no Ph.D.

However, if I were a hiring manager and needed this level of expertise
for a TBD requisition for employment at my business, you can bet I'm
not going to "just hire up a CCIE".  Something to think about for a lot
of people on this list who think CCIE is the Holy Grail.

CCIE is *not* the Holy Grail.  It's just one path to get to it. One path
out of maybe thousands. But a highly respected one by some people,
much like a paladin journeying against a band of ogres (the Shrek kind,
not the mean kind).

> How many SP jobs are there at that
> level, especially in today's market?

You'll find somewhere in our posts that there is so much need for these
types of people, it is like an unstoppable force (in my mind).  How else
are we supposed to build this thing (and even keep it from crashing
constantly) that allows us to have these discussions right now?

How many job postings are there on hotjobs or dice right now?
Who cares about that?!  Move to a third-world country and connect
them to the Internet!  There's a job for you!

> I would love to be able to specialize
> like you have, but the realities of my job require me to be conversant in
> everything Cisco sells.  To use Howard's medical analogy, while I want to
> master neurosurgery, I work in the ER and have to deal with everything
from
> heart attacks to broken bones to earwax.

You can "specialize" like we have!  Are you assuming that my job doesn't
require me to be conversant in everything Cisco sells?  And I seriously
doubt you are as equally conversant in everything Cisco sells as some
people out there.  Cisco sells a lot of software in addition to their large
set of hardware gear that ranges from R&S gear to IP Phones to ATM
switches to DSLAM's to CDN products.  And Cisco is not the only
network equipment vendor.  And they aren't the only software vendor
specializing in networked applications.

I work in the ER and do neurosurgery all the in same hour sometimes,
to use your frame of reference.

Networking is a *dynamic* field, filled with almost supernatural levels
of constantly changing equations.  It's best to be able to wear about a
dozen different hats everyday.  You have to pretend you're an end-user,
a sys admin, a programmer, a content provider, a telco switch tech,
a routing person, a switching person, a project manager, and a regular
human in the same 5 minutes sometimes.  That's what's so great about it,
IMO.

> To push the medical analogy just a bit farther, I think having the CCIE is
> like graduating from medical school.  You have mastered a body of
knowledge
> and have earned the right to put letters after your name, but no one is
> going to give you a scalpel until you have completed a lengthy internship.
> That's where the experience comes in.   It's important to know where to
cut.
> It is even more important to know when not to cut.

I'm not a medical student, so I can't say.  I'm not going to bother to try
to do
analogies.  There's a really long and detailed thread on NANOG-L right
now discussing this exact same topic.  It's seems like they really aren't
getting anywhere with it.

I think the exciting thing about the networking field is that it can't be
described.  It's so new, it's so exciting, and it's so constantly evolving
and changing.

Just so people don't get the wrong idea about me and where I come from,
I want you guy

CCIE Wanted. [7:44940]

[[EMAIL PROTECTED]]

> Hi.
> 
> Re-posting this mail as the number of responses were a few. Forward this
> mail to your friends.
> 
> Network Solutions Ltd, a Bangalore based company is looking for CCIEs.
> Visit www.netsol.co.in for more info on the company. We are among the Top
> Network Integrators in the Country moving towards the No.1 Spot.
> 
> The Positions will be out of   Bangalore, Mumbai and New Delhi.
> 
> Interested Candidates willing to relocate to India may apply.
> 
> Compensation will be on par/better-than with what the industry in India
> Pays.  We pay in INR only.
> 
> Thanks.
> Sunil Satyanathan




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=44940&t=44940
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: Virus Attack and how to tackle it? [7:44936]

[Alfredo Pulido]

You look this page from Cisco.

http://www.cisco.com/warp/public/63/nbar_acl_codered.shtml


I hope this help.

--
--
 Alfredo Pulido   [EMAIL PROTECTED]
CCDA
 Dept. Sistemas, IdecNet S.A.
 Juan XXIII 44 // E-35004 Las Palmas de Gran Canaria,
 Las Palmas // SPAIN
 Tel: +34 828 111 000   Fax: +34 828 111 112
 http://www.idecnet.com/
--
""a. ahmad""  escribis en el mensaje
[EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
> Dear Members,
>
> 1-We are getting Virus attack message on our proxy(Squid)Machine not only
> from our own IP Pool but also from outside, Please guide how to tackle it
as
> it is constantly chocking our Bandwidth. i.e. one of the virus attack
> message we are getting on our proxy(squid) machine is as under:-
>
> 106226.976 5 202.192.204.130 TCP_Miss/503 1210 Get
> http://www/_mem_bin/..%255c../..%255../..%255../winnt/system32/cmd.exe? -
> DIRECT/www -
>
> 106228.156 6 202.192.204.130 TCP_Miss/503 1266 Get
>
http://www/msadc/..%255c../..%255c../..%255c../..%c1%1c../..%c1%1c../..%c1%1
c../winnt/system32/cmd.exe? - DIRECT/www -
>
> 106229.324 3 202.192.204.130 TCP_Miss/503 1170 Get
> http://www/Scripts/..%c1%1c../winnt/system32/cmd.exe? - DIRECT/www -
>
> 106230.625 23 202.192.204.130 TCP_Miss/503 1170 Get
> http://www/Scripts/..%c0%2f../winnt/system32/cmd.exe? - DIRECT/www -
>
> 106231.841 8 202.192.204.130 TCP_Miss/503 1170 Get
> http://www/Scripts/..%c0%af../winnt/system32/cmd.exe? - DIRECT/www -
>
>

...etc etc
>
> 2- we want to trace that which IP's are utilizing our maximum bandwidtth
so
> that we can limit that trafiic accordingly in order to get Maximum
efficiency?
>
> Thank you in advance!
> Ahmad




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=44939&t=44936
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: Virus Attack and how to tackle it? [7:44936]

[[EMAIL PROTECTED]]

Hi,

This is a trace of Nimda and code Red wormFirst thing you can do is Run
a Nimda/code Red scanner in your network and then Apply IIS patch for all
the affected Microsoft  Server.Also you can secure your Network perimeter
by configuring NBAR on cisco routers or if you have  a content switch you
can try filtering Nimda on that...or if you have an IDS,you can configure
shunning the source.

Kind Regards /Thangavel

186K
Reading,Brkshire
Direct No   -0118 9064259
Mobile No  -07796292416
Post code: RG16LH
www.186k.co.uk

--
The greatest glory in living lies not in never falling,
 but in rising every time we fall ."
 -- Nelson Mandela




   
   
"a.
ahmad"
  
cc:
Sent by: Fax
to:
nobody@groupsSubject: Virus Attack and how
to tackle it? [7:44936]
   
tudy.com
   
   
   
   
   
24/05/2002
   
08:16
   
Please
respond
to
"a.
ahmad"
   
   
   
   




Dear Members,

1-We are getting Virus attack message on our proxy(Squid)Machine not only
from our own IP Pool but also from outside, Please guide how to tackle it
as
it is constantly chocking our Bandwidth. i.e. one of the virus attack
message we are getting on our proxy(squid) machine is as under:-

106226.976 5 202.192.204.130 TCP_Miss/503 1210 Get
http://www/_mem_bin/..%255c../..%255../..%255../winnt/system32/cmd.exe? -
DIRECT/www -

106228.156 6 202.192.204.130 TCP_Miss/503 1266 Get
http://www/msadc/..%255c../..%255c../..%255c../..%c1%1c../..%c1%1c../..%c1%1c../winnt/system32/cmd.exe?
 - DIRECT/www -

106229.324 3 202.192.204.130 TCP_Miss/503 1170 Get
http://www/Scripts/..%c1%1c../winnt/system32/cmd.exe? - DIRECT/www -

106230.625 23 202.192.204.130 TCP_Miss/503 1170 Get
http://www/Scripts/..%c0%2f../winnt/system32/cmd.exe? - DIRECT/www -

106231.841 8 202.192.204.130 TCP_Miss/503 1170 Get
http://www/Scripts/..%c0%af../winnt/system32/cmd.exe? - DIRECT/www -

...etc

etc

2- we want to trace that which IP's are utilizing our maximum bandwidtth so
that we can limit that trafiic accordingly in order to get Maximum
efficiency?

Thank you in advance!
Ahmad
**
This e-mail is from 186k Ltd and is intended only for the 
addressee named above. As this e-mail may contain confidential
or priveleged information, if you are not the named addressee or
the person responsible for delivering the message to the named 
addressee, please advise the sender by return e-mail. The
contents should not be disclosed to any other person nor copies
taken.
186k Ltd is a Lattice Group company, registered in England 
& Wales No. 3751494 Registered Office 130 Jermyn Street 
London SW1Y 4UR
**




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=44938&t=44936
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: PIX and MS Active Directory [7:44797]

[Patrick Donlon]

Thanks Brian, just in case any ones else is interested here's a useful link
for the microsoft stuff
http://www.microsoft.com/technet/treeview/default.asp?url=/TechNet/ittasks/t
asks/adrepfir.asp


Cheers

Pat

--

email me on : [EMAIL PROTECTED]

""Brian Hill""  wrote in message
[EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
> John,
>
> SMTP only works if you have two sites in two different domains. In
addition,
> you have to have an exchange server with KMS and a CA to encrypt. Pat, I
> would suggest creating a tunnel from pix to pix and running the
replication
> through there. AD uses RPC, which doesn't translate due to the fact that
it
> uses random port numbers after the initial session establishment.
>
> Brian Hill
> CCNP, CCDP, MCSE 2000 (Charter Member),MCSE+I (NT4.0),
> MCSA (Charter Member), MCP+I, MCP(21), Inet+, Net+, A+
> Lead Technology Architect, TechTrain
> Author: Cisco, The Complete Reference
> http://www.alfageek.com




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=44937&t=44797
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Virus Attack and how to tackle it? [7:44936]

[a. ahmad]

Dear Members,

1-We are getting Virus attack message on our proxy(Squid)Machine not only
from our own IP Pool but also from outside, Please guide how to tackle it as
it is constantly chocking our Bandwidth. i.e. one of the virus attack
message we are getting on our proxy(squid) machine is as under:-

106226.976 5 202.192.204.130 TCP_Miss/503 1210 Get
http://www/_mem_bin/..%255c../..%255../..%255../winnt/system32/cmd.exe? -
DIRECT/www -

106228.156 6 202.192.204.130 TCP_Miss/503 1266 Get
http://www/msadc/..%255c../..%255c../..%255c../..%c1%1c../..%c1%1c../..%c1%1c../winnt/system32/cmd.exe?
 - DIRECT/www -

106229.324 3 202.192.204.130 TCP_Miss/503 1170 Get
http://www/Scripts/..%c1%1c../winnt/system32/cmd.exe? - DIRECT/www -

106230.625 23 202.192.204.130 TCP_Miss/503 1170 Get
http://www/Scripts/..%c0%2f../winnt/system32/cmd.exe? - DIRECT/www -

106231.841 8 202.192.204.130 TCP_Miss/503 1170 Get
http://www/Scripts/..%c0%af../winnt/system32/cmd.exe? - DIRECT/www -

...etc
 etc 

2- we want to trace that which IP's are utilizing our maximum bandwidtth so
that we can limit that trafiic accordingly in order to get Maximum efficiency?

Thank you in advance!
Ahmad




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=44936&t=44936
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]