Re: Jeff Doyle's official response re: lab rats [7:45001]
""Kevin Cullimore"" wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > I'm concerned that his focus is a little too narrow (and possibly distracted > based upon the employer change) to be regarded as "the" authority on the > cert over and above someone like, say, Bruce Caslow. I'm going by the > blueprint, but it seems as if the exam encompasses a wider scope than the > contents of Vol I & II (my opinion probably doesn't count, but I always > regarded those two books as ones to read to gain perspective on routing, not > pass a test). > > More importantly, this post underscores a level of description problem with > many portions of the thread. > > It's inadequate to only consider the case of a person with just lab > experience vs. the case of the person with no formal/training but (possibly > too) much experience: there exist too many in-between cases where the > outcome differs. > > In the case of someone with clear potential who has managed to envelop > themselves in a firm theoretical grounding and a deep empirical > understanding of router behavior under controlled conditions without the > benefit of on-the-job experience, The attitude of employers is all-too-often > to go with the experienced competent individual (all else being equal), > since they can immediately apply their experience to scenarios they have > encountered before, scenarios that would take far too long and consume far > too much in the way of financial equipment to stumble across in a lab > setting. I would just add there's more to just experience than understanding the technology. There's also the aspect of general work attitudes and mentality. To give you one example, what if the network is totally fuc*ed and the bosses are yelling at everybody and threatening their jobs if they don't get it back up. The experienced guy is more likely to have been in this kind of stressful situation before and can therefore remain cool and focused, whereas the inexperienced guy has a greater chance to be totally rattled. Or another example is political acumen. The experienced guy might be more effective than the inexperienced guy not because of his technical skills but because of his political skills. A lot of projects are highly open-ended where a network engineer is responsible for marshaling company resources. Through his years on the job, the experienced guy just "knows" how to get things done - he knows who to ask for things, how and when to ask for them, etc. The inexperienced guy might still be brilliant technically because he studied hard, but it's less likely that he has developed this general political effectiveness. Those are just some examples. Surely there are many more. The point I'm making here is that the value of experience is not strictly confined to technical matters. And that's also not to say that experience is always more important than everything else, because it is not. I believe that it's important to present an entire suite of qualifications to an employer - experience, certs, education, etc. > > > > - Original Message - > From: "cebuano" > To: > Sent: Friday, May 24, 2002 9:55 PM > Subject: Jeff Doyle's official response re: lab rats [7:45001] > > > > Dear fellow professionals, > > In fear of "taking a person's words and using them out of context", > > I decided to ask Mr. Doyle himself. He was kind enough to respond > > to my e-mail, and I'm posting this with the hope of encouraging both > > "lab rats" and gurus alike to aim for knowledge, not only certs, > > and in the process help your fellow man/woman. > > I put my faith in everyone to be civilized and not bash Mr. Doyle's > > reputation, even if you disagree with his point of view. > > Last but not least, I hope that this will put an end to personal attacks > > that have become more common lately, unlike what groupstudy.com > > used to be 2 to 3 years ago when I first signed up. > > > > Thank you. > > Elmer > > > > - Original Message - > > From: Jeff Doyle > > To: elmer > > Sent: Friday, May 24, 2002 2:28 PM > > Subject: Re: Please care to comment on Vol.2 page 792 > > > > Hi Elmer, > > > > Thanks for the clarification-- my definition of "lab rat" is a bit > different > > than yours. At Juniper, the lab rats tend to be the most experienced field > > engineers. Nonetheless, under your definition (lab rat = someone with more > > theoretical than practical experience), the statement applies equally to > > those > > with some practical experience and those with little or none. > > > > I know exactly the kinds of "old timers" to which you refer-- typically > these > > are guys who have gained their knowledge gradually over the years through > > practical experience. Scratch the surface of most of these guys, and you > will > > find little understanding of the foundations of the protocols and > > technologies > > they think they are experts at. Therein lies the source of their > derogatory > > attitude toward "newbies": Inse
Re: Jeff Doyle's official response re: lab rats [7:45001]
What employer change are you talking about ? I believe Jeff Doyle was never a Cisco employee. Schwantz ""Kevin Cullimore"" wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > I'm concerned that his focus is a little too narrow (and possibly distracted > based upon the employer change) to be regarded as "the" authority on the > cert over and above someone like, say, Bruce Caslow. I'm going by the > blueprint, but it seems as if the exam encompasses a wider scope than the > contents of Vol I & II (my opinion probably doesn't count, but I always > regarded those two books as ones to read to gain perspective on routing, not > pass a test). > > More importantly, this post underscores a level of description problem with > many portions of the thread. > > It's inadequate to only consider the case of a person with just lab > experience vs. the case of the person with no formal/training but (possibly > too) much experience: there exist too many in-between cases where the > outcome differs. > > In the case of someone with clear potential who has managed to envelop > themselves in a firm theoretical grounding and a deep empirical > understanding of router behavior under controlled conditions without the > benefit of on-the-job experience, The attitude of employers is all-too-often > to go with the experienced competent individual (all else being equal), > since they can immediately apply their experience to scenarios they have > encountered before, scenarios that would take far too long and consume far > too much in the way of financial equipment to stumble across in a lab > setting. > > > > - Original Message - > From: "cebuano" > To: > Sent: Friday, May 24, 2002 9:55 PM > Subject: Jeff Doyle's official response re: lab rats [7:45001] > > > > Dear fellow professionals, > > In fear of "taking a person's words and using them out of context", > > I decided to ask Mr. Doyle himself. He was kind enough to respond > > to my e-mail, and I'm posting this with the hope of encouraging both > > "lab rats" and gurus alike to aim for knowledge, not only certs, > > and in the process help your fellow man/woman. > > I put my faith in everyone to be civilized and not bash Mr. Doyle's > > reputation, even if you disagree with his point of view. > > Last but not least, I hope that this will put an end to personal attacks > > that have become more common lately, unlike what groupstudy.com > > used to be 2 to 3 years ago when I first signed up. > > > > Thank you. > > Elmer > > > > - Original Message - > > From: Jeff Doyle > > To: elmer > > Sent: Friday, May 24, 2002 2:28 PM > > Subject: Re: Please care to comment on Vol.2 page 792 > > > > Hi Elmer, > > > > Thanks for the clarification-- my definition of "lab rat" is a bit > different > > than yours. At Juniper, the lab rats tend to be the most experienced field > > engineers. Nonetheless, under your definition (lab rat = someone with more > > theoretical than practical experience), the statement applies equally to > > those > > with some practical experience and those with little or none. > > > > I know exactly the kinds of "old timers" to which you refer-- typically > these > > are guys who have gained their knowledge gradually over the years through > > practical experience. Scratch the surface of most of these guys, and you > will > > find little understanding of the foundations of the protocols and > > technologies > > they think they are experts at. Therein lies the source of their > derogatory > > attitude toward "newbies": Insecurity in their own skills. > > > > I regularly conduct technical interviews for Juniper, and I can tell you > that > > if a candidate has a deep understanding of the theories and facts of the > > various IP networking protocols, I am impressed regardless of the > candidate's > > practical experience. If the engineer is smart and aggressive, it is easy > > enough to team him or her up with a mentor to add the practical > experience. > > > > There is an opposite view on all this: I've encountered many people with > > CCIEs > > that think the certification is all they need to land a high-level > networking > > job. For me, seeing the CCIE certification on a resume makes me look > closer, > > and is usually enough to make me schedule a face-to-face interview. But > once > > the interview takes place, I expect the candidate to impress me with a > level > > of knowledge that goes well beyond what is required to pass the lab. The > > first > > three or four minutes of the interview is generally enough for me to > > determine > > whether the candidate truly knows his or her stuff, or whether the CCIE > was > > won by learning just what is needed to pass the lab and no more. > > > > All this long-winded reply is saying is: Yes, getting the CCIE will help > you > > get ahead even if your practical experience is limited. It is an excellent > > way > > to prove your capabilities to prospective employers, but be sure the depth > of > >
Need help with wiring a lab [7:45015]
Hello all I have 4 2524s I purchased. Each one has a 5n1 Serial and FT1/NT1 DSU/CSU card along with a BRI Card. I need help wiring the FT1/NT1s. I looked for info this that is for a beginner but most of it is just wiring diagrams with no explanation on how to do it. Any help would be appreciated. Fran Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=45015&t=45015 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Jeff Doyle's official response re: lab rats [7:45001]
I'm concerned that his focus is a little too narrow (and possibly distracted based upon the employer change) to be regarded as "the" authority on the cert over and above someone like, say, Bruce Caslow. I'm going by the blueprint, but it seems as if the exam encompasses a wider scope than the contents of Vol I & II (my opinion probably doesn't count, but I always regarded those two books as ones to read to gain perspective on routing, not pass a test). More importantly, this post underscores a level of description problem with many portions of the thread. It's inadequate to only consider the case of a person with just lab experience vs. the case of the person with no formal/training but (possibly too) much experience: there exist too many in-between cases where the outcome differs. In the case of someone with clear potential who has managed to envelop themselves in a firm theoretical grounding and a deep empirical understanding of router behavior under controlled conditions without the benefit of on-the-job experience, The attitude of employers is all-too-often to go with the experienced competent individual (all else being equal), since they can immediately apply their experience to scenarios they have encountered before, scenarios that would take far too long and consume far too much in the way of financial equipment to stumble across in a lab setting. - Original Message - From: "cebuano" To: Sent: Friday, May 24, 2002 9:55 PM Subject: Jeff Doyle's official response re: lab rats [7:45001] > Dear fellow professionals, > In fear of "taking a person's words and using them out of context", > I decided to ask Mr. Doyle himself. He was kind enough to respond > to my e-mail, and I'm posting this with the hope of encouraging both > "lab rats" and gurus alike to aim for knowledge, not only certs, > and in the process help your fellow man/woman. > I put my faith in everyone to be civilized and not bash Mr. Doyle's > reputation, even if you disagree with his point of view. > Last but not least, I hope that this will put an end to personal attacks > that have become more common lately, unlike what groupstudy.com > used to be 2 to 3 years ago when I first signed up. > > Thank you. > Elmer > > - Original Message - > From: Jeff Doyle > To: elmer > Sent: Friday, May 24, 2002 2:28 PM > Subject: Re: Please care to comment on Vol.2 page 792 > > Hi Elmer, > > Thanks for the clarification-- my definition of "lab rat" is a bit different > than yours. At Juniper, the lab rats tend to be the most experienced field > engineers. Nonetheless, under your definition (lab rat = someone with more > theoretical than practical experience), the statement applies equally to > those > with some practical experience and those with little or none. > > I know exactly the kinds of "old timers" to which you refer-- typically these > are guys who have gained their knowledge gradually over the years through > practical experience. Scratch the surface of most of these guys, and you will > find little understanding of the foundations of the protocols and > technologies > they think they are experts at. Therein lies the source of their derogatory > attitude toward "newbies": Insecurity in their own skills. > > I regularly conduct technical interviews for Juniper, and I can tell you that > if a candidate has a deep understanding of the theories and facts of the > various IP networking protocols, I am impressed regardless of the candidate's > practical experience. If the engineer is smart and aggressive, it is easy > enough to team him or her up with a mentor to add the practical experience. > > There is an opposite view on all this: I've encountered many people with > CCIEs > that think the certification is all they need to land a high-level networking > job. For me, seeing the CCIE certification on a resume makes me look closer, > and is usually enough to make me schedule a face-to-face interview. But once > the interview takes place, I expect the candidate to impress me with a level > of knowledge that goes well beyond what is required to pass the lab. The > first > three or four minutes of the interview is generally enough for me to > determine > whether the candidate truly knows his or her stuff, or whether the CCIE was > won by learning just what is needed to pass the lab and no more. > > All this long-winded reply is saying is: Yes, getting the CCIE will help you > get ahead even if your practical experience is limited. It is an excellent > way > to prove your capabilities to prospective employers, but be sure the depth of > your theoretical knowledge well exceeds the rather limited things you need to > know to pass the lab. > > As for your two PS's: I used 11-something for most of the book, and wrote the > BGP chapters quite early, which accounts for the outdated statement you cite > (and a few others). I have been discussing doing a second edition of the book > with Cisco Press to bring it up to date. The conflictin
Re: Provider Backbone Engineering and CCIEs [7:44876]
It's interesting that by quickly perusing the thread one that one could infer an equation of troubleshooting tool with "device capable of revealing the content of packets sent across the transmission medium." I'd have to agree that making that sort of data readily available to those stuck bet is not the Cisco router family's /IOS' strong point. I'd have to note that this is somewhat vendor specific. Nortel routers not currently serving as dust epicenters in technology museums ARE, to some extent, packet sniffers (via pcap), but then again, since they didn't deliberately assemble the most underpowered microprocessor-based boxes they could get away with, the difference approaches understandability. I'd have to concur that having packet captures available is my first choice as far as implements of troubleshooting are concerned (it's amazing what a dedicated sniffer pc at a remote workstation can do to reduce the number of sleepless nights spent on seemingly intractable problems). I'd have to say that I've recently come to regard snmp-enabled CSU/DSU's as a reasonable substitute for overpriced, media-specific inline WAN packet capturing tools. Certain debug argument hierarchies, for example those associated with ppp & ospf, DO give enough header information to solve some problems such as mtu negotiation mismatches. - Original Message - From: "Priscilla Oppenheimer" To: Sent: Friday, May 24, 2002 4:30 PM Subject: Re: Provider Backbone Engineering and CCIEs [7:44876] > Well, maybe I overstated it a bit. ;-) My main complaint about the debug > commands is that the output is too cryptic. Also, some of them were clearly > designed for the Cisco developers not for the end user of the router > (network admin, engineer). The information they provide is simply not > helpful. > > Inserting a sniffer can definitely be a pain on a WAN, on the other hand. > Plus WAN sniffers are terribly expensive. Actually inserting a sniffer is > more of a pain than it used to be on LANs too. But at least the result is a > plain-language decode of every packet. > > By the way, do you remember which EIGRP debug commands you used and how > they helped solve the problem? That might be helpful info for us (if you > have time to explain, no biggie if you don't.) > > Thanks > > Priscilla > > At 03:35 PM 5/24/02, MADMAN wrote: > >I have to respectfully disagree, > > > > Done correctly with caution when necessary the router is an excellant > >and often the only troubleshooting tool. If your unpacking a Sniffer > >your in deep doo doo as it's quite rare I require it to solve a network > >problem. Don't get me wrong, they are essential and have a purpose but > >too often people are going too deep too fast to solve problems that do > >not require an analyzer. > > > > I used a couple of EIGRP debugs yesterday to help a hospital whose > >core 6500 was melting down and for those that do remote support debug is > >our friend. > > > > DebugDave > > > > > >Priscilla Oppenheimer wrote: > > > > > > At 07:32 AM 5/24/02, dre wrote: > > > > Cisco router to solve any problem, even those that shouldn't be solved > > > >with > > > >a router! > > > > > > And how about all the people who try to turn the router into a > > > troubleshooting tool? You wouldn't believe how many times I've had to > > > convince people that the debug commands aren't a replacement for a > sniffer. > > > Not only are there issues with eating CPU resources to display the debug > > > info, but a lot of the commands don't show packets (which they > shouldn't). > > > Also, regardless of whether they show events or packets, they don't > display > > > the information in English (in many cases). In fact, many of the debug > > > commands were written to help Cisco software and hardware developers do > > > some debugging on flaky code/hardware. They weren't written to help a > > > network administrator or engineer. > > > > > > I know this is a tangent from the real discussion, but I just wanted to > > > make that additional point about a Cisco router not being the solution to > > > every problem. > > > > > > Priscilla > > > > > > > > > > > > Priscilla Oppenheimer > > > http://www.priscilla.com > >-- > >David Madland > >Sr. Network Engineer > >CCIE# 2016 > >Qwest Communications Int. Inc. > >[EMAIL PROTECTED] > >612-664-3367 > > > >"Emotion should reflect reason not guide it" > > > Priscilla Oppenheimer > http://www.priscilla.com Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=45013&t=44876 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Coriolis/Examcram [7:44924]
Went through this a few days ago- http://www.groupstudy.com/form/read.php?f=7&i=44638&t=44638 See "Errata for Coriolis Books" thread from 2002-05-21. Yes, I noticed a lot of errors in the Exam Prep Switching book from Coriolis. I've got the Exam Cram Switching by Richard Deal coming in the mail from half.com. If it wasn't for the fact that I got an email from Richard saying that I could send him questions if I found any in his book, and the high ratings that it received in places like Amazon (unlike the other Exam Cram books) I wouldn't have spent the $. I'm not imagining that Exam Prep Routing is going to be much better than Exam Prep Switching, but we'll see. Still have high hopes for the Support book by Priscilla O. Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=45012&t=44924 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Private Addressing over Distances [7:44946]
Thanks Craig. Yes I know 128.128.0.0 is not technically a standard private address defined in RFC 1918, but those are just so that ISPs have a standard address in which to block routing information for. Therefore a private address within a network can be any class A B or C address. Thanks for your reply. Jarred Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=45011&t=44946 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Doyle on Lab Rats [7:44611]
""Michael L. Williams"" wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > "Tom Scott" wrote in message > [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > > I've seen a goodly number of network administrators who are in positions > of > > power, but > > who don't know even the basics of classful subnetting, VLSM, routing, L2 > LAN > > switching, > > and VLANs. (Even some telco ATM techs who don't understand the difference > > between > > L2/LAN switches vs. VLAN switches, but that's a whole 'nother story in > > itself). These > > hands-on guys moved up from the ranks of network operating systems (NOSs), > > usually > > Novell, Unix and Windows. I respect their ability to handle a production > > network but > > it's a shame they won't listen to the young CCNAs and CCNPs who work for > > them. They > > (the old desktop/NOS guys who moved up to network management roles) > couldn't > > even > > conceive of migrating their RIP networks to OSPF, but with the help of > their > > CCNx/CCDx > > employees they could really do something good. It's the age-old problem of > > control and > > fear of the unknown. > > I couldn't have said it better myself.. you really hit some key points, > especially about the people that moved their way up from desktop to NOS to > network not trusting the CCNx/CCDx, not being able to fathom moving from RIP > to OSPF, etc. Well, on the other hand, surely you have also seen the flip-side of the coin. For example, I run into CCxx's who hold little experience but have shut their ears to people who do hold more experience, under the guide that 'what he's telling me wasn't in the Cisco textbooks so it can't possibly be true...'. It too is often coupled with feelings of insecurity - the paper- CCxx guy feels nervous about his job and doesn't want to reveal to the other guys on his team just how inexperienced he really is, so he never wants to do any work in front of anybody else for fear of making a bonehead mistake, etc. etc., and he never has anything meaningful to contribute during meetings because he doesn't want to say something foolish. The fact is, arrogance and insecurity cuts both ways. Both sides (the experienced guys and the inexperienced guys) are guilty from time to time. And it's bad no matter who's doing it. > > Good comments! > Mike W. Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=45010&t=44611 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Doyle on Lab Rats [7:44611]
The problem, again, is not with guys who are willing to learn and stay humble and hungry. There is nothing wrong with being a lab-rat per se. The problems come when those lab-rats now start demanding the same pay and respect as guys who also hold their CCIE and have many years of experience. For example, to extend your med-school analogy, there's no problem with some fresh kid who's in med-school and is carving up cadavers for surgery practice. The problem comes when that kid becomes a whiz at cadaver-carving, but still hasn't done a real live operation, but because of his cadaver-carving skills now thinks he should be automatically promoted to Head of Surgery. ""cebuano"" wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > I posted this message in response to a lot of rap, crap, xyz-rap, etc. that > individuals who devote their time, effort and money towards advancing > their knowledge and skill (and hopefully career) by building their own home > lab because this is the ONLY way they can get experience are getting. > When are we going to stop shoving this chicken-and-egg syndrome down > their throat? Everybody has to start somewhere. > Hell, do you think med school students start their career in medicine by > working in a "production" clinic? The only time they get to that level is > after years of learning the ins/outs involved in clinical practice IN A > LAB environment. > Nothing personal, but I just wanted to encourage "lab rats" who've been > discriminated against and wrongfully labeled by people who feel insecure > with their career. > > Hope that clears things up. > > Elmer > > - Original Message - > From: "Johnny Routin" > To: > Sent: Tuesday, May 21, 2002 10:11 AM > Subject: Re: Doyle on Lab Rats [7:44611] > > > > Nice of you to take Jeff's words and use them out of context. I believe > > what Jeff meant is that as we are experienced network engineers pursuing > > CCIE certification, we should set up a lab for practice as we cannot > perform > > the necessary configurations on our production networks. The thing you > > forgot to mention while taking liberities with his words is that lab rats > do > > not know what a production network looks like. > > > > > > JR > > -- > > Johnny Routin > > The "Routin" One > > > > > > > > ""cebuano"" wrote in message > > [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > > > Excerpt from Doyle's Vol.2 page 792. > > > "Labs also provide an area of the network where you can just play around > > > with the commands, testing the effect of misconfigurations and > practicing > > > troubleshooting. The lab can be used in this way for training and CCIE > > > preparation. Only with a lab can you THOROUGHLY experiment with > > > configurations, break things to see what happens, and determine what > > > symptoms identify misconfigurations." > > > > > > This is exactly how we are all educated in colleges and universities. > > > Remember the labs in Physics, Chemistry, Biology, Human Anatomy... > > > So for those of you that have no respect for lab rats, you might need > > > to rethink your opinions. > > > I say more swiss cheese to lab rats! > > > > > > Elmer > > > P.S. Don't forget the wine. Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=45009&t=44611 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Router memory [7:44925]
Thanks for the reply, guess we'll go for 2 x 32 all around. Kevin - Original Message - From: "Mark Odette II" To: "'Kevin Wigle'" ; Sent: Friday, 24 May, 2002 00:07 Subject: RE: Router memory [7:44925] > AFAIK, if it came with 16, then that means they only populated one of > the two DRAM slots. To go to 64 though, you'll need to remove the 16, > and then add 2 x 32MB to get what you want. > > This comes from the experience of upgrading 2620s that were purchased 2, > almost 3 years ago for VoIP Gateways, and I just upgraded all 4 of them > in the last 90 days. > > Your only true way of knowing what you have is to pop the top :( > ... but I'm sure you can safely order 2 32's and you'll be good to go. > In fact, I don't believe they sell a 64MB chip for them. :) > > Crucial.COM has always been wonderful to me for timely shipment and > price. > > HTHs, > Mark > > -Original Message- > From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] On Behalf Of > Kevin Wigle > Sent: Thursday, May 23, 2002 10:07 PM > To: [EMAIL PROTECTED] > Subject: Router memory [7:44925] > > Hey group! > > Early versions of the 2600 came with only 16 megs DRAM. Then it was > changed > to 32 meg. > > How can I tell if 32 megs is 1x32 or 2x16 without taking off the top? > > Need to upgrade to 64 meg and want to get the correct package. > > Kevin Wigle Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=45008&t=44925 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Jeff Doyle's official response re: lab rats [7:45001]
You say that guys like this have no connection to me. Boy, I wish that were true. If it were, I really would be able to mind my own business. Let's presume that I am a CCIE (I may or may not be). The connection is simply this. HR people and other people in charge of hiring will read or hear comments like what was stated by that guy. They will then conclude that maybe the certification isn't particularly valuable at all. Therefore the kind of 'trash-talk' these lab-rats (or even wanna-be lab-rats) engage in has a negative effect on the perception of the cert. For example, a hiring manager might see a comment like that and think, well, this guy who just barely got into networking is talking so confidently about being a CCIE in no time flat, which possibly means that the cert must not be very hard, which therefore means that perhaps it's not as valuable as it seems, so why should I prefer such certified people when I look for an employee? As I'm sure you would agree, perception is often stronger than reality. It doesn't really matter if you're good if nobody thinks you're good. If people in power start hearing enough of this kind of talk, then perception of the cert will inevitably start to change in a negative way. That, my friend, is the connection. It is an unfortunate reality of life that we are judged based on the actions of our community. Call it guilt-by-association, call it whatever you want. Just don't call it untrue. ""Scott H."" wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > Why does it always have to be a contest of who's is biggest? If this guy > thinks he can pass the lab then by all means take the class and give the lab > a shot. I'm sure Cisco would be happy to collect the money from him each > time he takes it. I guess what I'm trying to say here is take care of your > own business and don't let all the other crap get to you. People like this > just add to the statistics of mass failure. > > The real problem with this reasoning is that you end up lumping people into > the same category because they don't have 10 years of experience. Too many > times I have been told that my certs are only "paper" because I don't have > this experience. My response is simple, "mind your own friggin business." > Just because I don't have 10 years of experience doesn't mean I'm any less > of a person. And guess what? Eventually I will have 10 years of experience > and people will still say I don't "really" know what I'm doing. > > By the way, would your quest for the holy grail really happen if you were > only gonna make $15/hr? I don't think so. > > ""nrf"" wrote in message > [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > > That's an excellent way to sum it up. Too much has been written about the > > value (or non-value) of the CCIE, or any cert for that matter. What > > everybody should instead be aiming for is real knowledge. If a cert helps > > you acquire this knowledge, then so be it. But the cert is by no means > the > > end of the road.It is the extreme idea held by certain people who > think > > that all they have to do is pass the lab and money will automatically fall > > out of the sky that I object to. > > > > For example, here is one particular post from another message board that I > > participate in. > > > > "I passes [sic] my CCNA few months ago. It was an OK test, but I almost > > failed it. I was planning on taking my CCNP and CCIE, but I didnt think I > > could do it. So I decided to look for a training course. Anyway, people > that > > are trying to pass CCIE or are planning on taking CCIE, I wan't to let you > > guys know that I found a great school for Cisco training. It is called > [name > > deleted]...Wahoo, soon I will pass my CCIE and will be making over 100K" > > > > Lest anybody thinks I am making this quote up, you can email me privately > > and I will give you the exact message board where you can find this. A > guy > > who barely passed the CCNA and now wants to ge the CCIE so that he can > make > > a high salary - needless to say, it is this kind of attitude that gives > the > > lab-rat such a bad name. Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=45007&t=45001 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Spanish Inquisition project [7:44906]
That machine is how I've always thought of netview, at least to the extremely sophisticated extent to which it wasn't implemented and leveraged within networks I have supported in the past. - Original Message - From: "Howard C. Berkowitz" To: Sent: Friday, May 24, 2002 10:34 PM Subject: RE: Spanish Inquisition project [7:44906] > At 4:42 PM -0400 5/24/02, s vermill wrote: > >Our chief weapon is suprise...surprise and fear...fear and surprise Our > >two weapons are fear and surprise...and ruthless efficiency Our *three* > >weapons are fear, surprise, and ruthless efficiency...and an almost > >fanatical devotion to the Pope Our *four*...no... *Amongst* our > >weapons Amongst our weaponry...are such elements as fear, surprise > >I'll come in again. > > > >http://servlet.java.sun.com/javaone/conf/sessions/945/google-sf2001.jsp > > > >I'm not sure if these slides are any more serious than the skit. > > > > Consider, in another film by these stellar intellects, the Most > Important Machine in the Hospital, and its significance to Cisco > certification. Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=45006&t=44906 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: SYSLOG time stamp problem [7:44949]
Just make sure it's in your hosts file, that should do it...on a unix system, on a win syslog, there may be a dns lookup option not enabled. Clayton Dukes Cisco Info Center SE CCNA, CCDA, CCDP, CCNP, NCC (h) 904-292-1881 (c) 904-477-7825 -- Free Cisco Training at http://www.gdd.net - Original Message - From: "Jeffrey Reed" To: Sent: Friday, May 24, 2002 3:12 PM Subject: RE: SYSLOG time stamp problem [7:44949] > Clayton, thanks, the service timestamps was the trick. > > One more thing, the hostname is not being displayed in the syslog GUI, > however, I do have the hostname configured on the switch & router in the > 6509. Any ideas on that one? > > Thanks!! > > Jeffrey Reed > Classic Networking, Inc. > > -Original Message- > >From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of > Clayton Dukes > Sent: Friday, May 24, 2002 12:17 PM > To: [EMAIL PROTECTED] > Subject: Re: SYSLOG time stamp problem [7:44949] > > Try this: > > service timestamps debug datetime localtime show-timezone > service timestamps log datetime localtime show-timezone > ! > clock timezone EST -5 > clock summer-time EDT recurring > > > > Clayton Dukes > Cisco Info Center SE > CCNA, CCDA, CCDP, CCNP, NCC > (h) 904-292-1881 > (c) 904-477-7825 > -- > Free Cisco Training at http://www.gdd.net > > > > - Original Message - > >From: "Alex Lee" > To: > Sent: Friday, May 24, 2002 10:53 AM > Subject: Re: SYSLOG time stamp problem [7:44949] > > > > My take is that the time stamp is correct but it is using UTC time which > is > > 4 hour ahead of U.S. East Coast's Day Light Saving Time. > > > > ""Jeffrey Reed"" wrote in message > > [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > > > I set up a syslog server and have a problem with the time stamp in a sys > > log > > > message. When a message is sent to my syslog server (using solar winds > > > syslog monitor) the date/time field is correct, but the time stamp with > > the > > > message itself is not, its 4 hours ahead. I show calendar and clock on > the > > > 6500 MSFC and they are both set correctly. I have the system set up for > > EST > > > and daylight savings, so I think the syslog facility is not factoring in > > > those settings. Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=44987&t=44949 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Jeff Doyle's official response re: lab rats [7:45001]
Why does it always have to be a contest of who's is biggest? If this guy thinks he can pass the lab then by all means take the class and give the lab a shot. I'm sure Cisco would be happy to collect the money from him each time he takes it. I guess what I'm trying to say here is take care of your own business and don't let all the other crap get to you. People like this just add to the statistics of mass failure. The real problem with this reasoning is that you end up lumping people into the same category because they don't have 10 years of experience. Too many times I have been told that my certs are only "paper" because I don't have this experience. My response is simple, "mind your own friggin business." Just because I don't have 10 years of experience doesn't mean I'm any less of a person. And guess what? Eventually I will have 10 years of experience and people will still say I don't "really" know what I'm doing. By the way, would your quest for the holy grail really happen if you were only gonna make $15/hr? I don't think so. ""nrf"" wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > That's an excellent way to sum it up. Too much has been written about the > value (or non-value) of the CCIE, or any cert for that matter. What > everybody should instead be aiming for is real knowledge. If a cert helps > you acquire this knowledge, then so be it. But the cert is by no means the > end of the road.It is the extreme idea held by certain people who think > that all they have to do is pass the lab and money will automatically fall > out of the sky that I object to. > > For example, here is one particular post from another message board that I > participate in. > > "I passes [sic] my CCNA few months ago. It was an OK test, but I almost > failed it. I was planning on taking my CCNP and CCIE, but I didnt think I > could do it. So I decided to look for a training course. Anyway, people that > are trying to pass CCIE or are planning on taking CCIE, I wan't to let you > guys know that I found a great school for Cisco training. It is called [name > deleted]...Wahoo, soon I will pass my CCIE and will be making over 100K" > > Lest anybody thinks I am making this quote up, you can email me privately > and I will give you the exact message board where you can find this. A guy > who barely passed the CCNA and now wants to ge the CCIE so that he can make > a high salary - needless to say, it is this kind of attitude that gives the > lab-rat such a bad name. Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=45005&t=45001 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Spanish Inquisition project [7:44906]
At 4:42 PM -0400 5/24/02, s vermill wrote: >Our chief weapon is suprise...surprise and fear...fear and surprise Our >two weapons are fear and surprise...and ruthless efficiency Our *three* >weapons are fear, surprise, and ruthless efficiency...and an almost >fanatical devotion to the Pope Our *four*...no... *Amongst* our >weapons Amongst our weaponry...are such elements as fear, surprise >I'll come in again. > >http://servlet.java.sun.com/javaone/conf/sessions/945/google-sf2001.jsp > >I'm not sure if these slides are any more serious than the skit. > Consider, in another film by these stellar intellects, the Most Important Machine in the Hospital, and its significance to Cisco certification. Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=45003&t=44906 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Automated dialout from Cisco 3640 [7:45004]
Hai, I am using 3640 with NM 16 AM module. I would like to implement a application with the following functionality. One computer dialin to cisco, and it will connect, and then from this I want to dialout to another NAS automatically. eg. Node A dials to Async 97 (of cisco), and then Async 104 (of cisco) should dialout to NAS (Node B), Then NOde A and Node B can communicate each other. Is it possible to do it using Cisco 3640 with NM 8 AM or NM 16 AM?? if possible how can I achieve this.. Does easy IP will help here ?? or any other possible ways... Thanks, Kiran Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=45004&t=45004 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Jeff Doyle's official response re: lab rats [7:45001]
That's an excellent way to sum it up. Too much has been written about the value (or non-value) of the CCIE, or any cert for that matter. What everybody should instead be aiming for is real knowledge. If a cert helps you acquire this knowledge, then so be it. But the cert is by no means the end of the road.It is the extreme idea held by certain people who think that all they have to do is pass the lab and money will automatically fall out of the sky that I object to. For example, here is one particular post from another message board that I participate in. "I passes [sic] my CCNA few months ago. It was an OK test, but I almost failed it. I was planning on taking my CCNP and CCIE, but I didnt think I could do it. So I decided to look for a training course. Anyway, people that are trying to pass CCIE or are planning on taking CCIE, I wan't to let you guys know that I found a great school for Cisco training. It is called [name deleted]...Wahoo, soon I will pass my CCIE and will be making over 100K" Lest anybody thinks I am making this quote up, you can email me privately and I will give you the exact message board where you can find this. A guy who barely passed the CCNA and now wants to ge the CCIE so that he can make a high salary - needless to say, it is this kind of attitude that gives the lab-rat such a bad name. Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=45002&t=45001 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Jeff Doyle's official response re: lab rats [7:45001]
Dear fellow professionals, In fear of "taking a person's words and using them out of context", I decided to ask Mr. Doyle himself. He was kind enough to respond to my e-mail, and I'm posting this with the hope of encouraging both "lab rats" and gurus alike to aim for knowledge, not only certs, and in the process help your fellow man/woman. I put my faith in everyone to be civilized and not bash Mr. Doyle's reputation, even if you disagree with his point of view. Last but not least, I hope that this will put an end to personal attacks that have become more common lately, unlike what groupstudy.com used to be 2 to 3 years ago when I first signed up. Thank you. Elmer - Original Message - From: Jeff Doyle To: elmer Sent: Friday, May 24, 2002 2:28 PM Subject: Re: Please care to comment on Vol.2 page 792 Hi Elmer, Thanks for the clarification-- my definition of "lab rat" is a bit different than yours. At Juniper, the lab rats tend to be the most experienced field engineers. Nonetheless, under your definition (lab rat = someone with more theoretical than practical experience), the statement applies equally to those with some practical experience and those with little or none. I know exactly the kinds of "old timers" to which you refer-- typically these are guys who have gained their knowledge gradually over the years through practical experience. Scratch the surface of most of these guys, and you will find little understanding of the foundations of the protocols and technologies they think they are experts at. Therein lies the source of their derogatory attitude toward "newbies": Insecurity in their own skills. I regularly conduct technical interviews for Juniper, and I can tell you that if a candidate has a deep understanding of the theories and facts of the various IP networking protocols, I am impressed regardless of the candidate's practical experience. If the engineer is smart and aggressive, it is easy enough to team him or her up with a mentor to add the practical experience. There is an opposite view on all this: I've encountered many people with CCIEs that think the certification is all they need to land a high-level networking job. For me, seeing the CCIE certification on a resume makes me look closer, and is usually enough to make me schedule a face-to-face interview. But once the interview takes place, I expect the candidate to impress me with a level of knowledge that goes well beyond what is required to pass the lab. The first three or four minutes of the interview is generally enough for me to determine whether the candidate truly knows his or her stuff, or whether the CCIE was won by learning just what is needed to pass the lab and no more. All this long-winded reply is saying is: Yes, getting the CCIE will help you get ahead even if your practical experience is limited. It is an excellent way to prove your capabilities to prospective employers, but be sure the depth of your theoretical knowledge well exceeds the rather limited things you need to know to pass the lab. As for your two PS's: I used 11-something for most of the book, and wrote the BGP chapters quite early, which accounts for the outdated statement you cite (and a few others). I have been discussing doing a second edition of the book with Cisco Press to bring it up to date. The conflicting statements about OSPF P-T-MP is a known error, and should be corrected soon in newer printings of the book. Best regards, Jeff At 11:46 PM 5/23/2002 -0400, you wrote: Jeff, Thanks for the response. I know you are a very busy (and sought after) man. I just happened to read this particular page at a time when people new to the networking field are despised by old timers who feel that "lab rats" don't deserve to pass the CCIE lab since all they have is lab experience. I was wondering if you personally feel that most of what one gets tested on in the lab have little resemblance with most production networks. Two reasons for asking you are: 1.Obviouly, every lab candidate as well as my CCIE friends regard you as the authority on this particular certification. 2. You are the author of the second CCIE bible which I am quoting. What is your opinion on a person who passes the lab with very little "real" networking experience? Respectfully, Elmer Deloso P.S. What IOS version did you use as reference when you wrote Vol.2? Because after checking CCO, page93 of your book talks about BGP version number negotiation until both neighbors agree on the same version. The Cisco implementation of BGP in Cisco IOS Release 12.0(6)T or later releases supports BGP Version 4 only and does not support dynamic negotiation down to Version 2. P.P.S. Does Ciscopress consult you regarding errata to your books? Because Vol.1 page 417 says OSPF packets in point-to-multipoint are multicast, but pages 433 and 451 say these are unicast. Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=45001&t=45
Re: Token ring Question. [7:44805]
you can do transparent bridging between Token Ring and Ethernet. It requires a Translational Bridging.. See the following URL: (watch for wrap) http://www.cisco.com/univercd/cc/td/doc/cisintwk/ito_doc/mmbridge.htm Mike W. "2504s" wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > A router is being used as a transparent bridge between a Token Ring network > and an Ethernet network. Host X on the Token ring sends a packet to Host Y > on the Ethernet. > > What would the source MAC address on the Ethernet Host ? > > does anyone know the answer? thank you. > > Cj Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=45000&t=44805 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Doyle on Lab Rats [7:44611]
"Tom Scott" wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > I've seen a goodly number of network administrators who are in positions of > power, but > who don't know even the basics of classful subnetting, VLSM, routing, L2 LAN > switching, > and VLANs. (Even some telco ATM techs who don't understand the difference > between > L2/LAN switches vs. VLAN switches, but that's a whole 'nother story in > itself). These > hands-on guys moved up from the ranks of network operating systems (NOSs), > usually > Novell, Unix and Windows. I respect their ability to handle a production > network but > it's a shame they won't listen to the young CCNAs and CCNPs who work for > them. They > (the old desktop/NOS guys who moved up to network management roles) couldn't > even > conceive of migrating their RIP networks to OSPF, but with the help of their > CCNx/CCDx > employees they could really do something good. It's the age-old problem of > control and > fear of the unknown. I couldn't have said it better myself.. you really hit some key points, especially about the people that moved their way up from desktop to NOS to network not trusting the CCNx/CCDx, not being able to fathom moving from RIP to OSPF, etc. Good comments! Mike W. Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=44999&t=44611 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Bridge and switch [7:44649]
"Priscilla Oppenheimer" wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > Regarding the difference between a MAC table and CAM table: They are just > different names for the same thing. One small quibble (heheh. don't you expect this from me by now =) Although they do essentially refer to the same thing (a table of MAC addresses) (I know you know this, Priscilla, I'm just pointing out for others), the table of MAC addresses kept by a switch (in Cisco switches, I can't speak for other vendors) is stored in a type of memory, CAM memory, which is different than RAM and operates using a different mechanism (see my other recent post in this thread).. so, although we commonly refer to it as the CAM table (and as good Cisco network people we should cuz that's what Cisco calls it) we're really referring to is the table of MAC addresses that happen to be stored in CAM memory.. Mike W. Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=44998&t=44649 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Bridge and switch [7:44649]
First let me say that I was looking for a book to recommend to a friend, and I picked up this same book in the store and thumbed through I actually happen to stop on the part where it talked about how a switch (bridge) builds a routing table etc... I put the book down, pointed at it, and told my friend "Don't by this book!" I am appalled at what passes for techincal books (I guess I'm more sensitive about networking topics). but in the technical field, one must be careful about the terms they use because they can mean different things. packet -vs- frame, etc. > Cisco calls the mac table a "content addressable memory" table. without > spending more time than I have at the moment, I can't find a history on CCO > as to why they do this. Here is some info I found on CAM... basically, you can use the data to find itself in memory (as opposed to having to know it's address in memory).. (all of the following info is from various web pages found through Google) Content-Addressable Memory (CAM): In this information-handling model, each possible piece of information has one and only one possible storage location. The data is its own key. It is important to differentiate CAM from a hash key or traditional index. With conventional indexing schemes the data content is used with a hash or index to produce the address location of the data. The address has no real or direct relationship with the information contained in the data. With CAM, the data describes its own storage location. This also means all like data will always be found close together in the physical data structure. There is a direct relationship between the information in the data and its location in the physical data store. In a symbolic system information is stored in an external mechanism. In the example of the computer it is stored in files on the disks. As the information has been encoded in some form of file system in order to retrieve that information one must know the index system of the files. In other words, data can only be accessed by certain attributes. In a connectionist system the data is stored in the activation pattern of the units. Hence, if a processing unit receives excitatory input from one of its connections, each of its other connections will either be excited or inhibited. If these connections represent the attributes of the data then the data may be recalled by any one of its attributes, not just those that are part of an indexing system. As these connections represent the content of the data, this type of memory is called content addressable memory. This type of memory has the advantage of allowing greater flexibility of recall and is more robust. You can compare CAM to the inverse of RAM. When read, RAM produces the data for a given address. Conversely, CAM produces an address for a given data word. When searching for data within a RAM block, the search is performed serially. Thus, finding a particular data word can take many cycles. CAM searches all addresses in parallel and produces the address storing a particular word. You can use CAM for any application requiring high-speed searches, such as networking, communications, data compression, and cache management. Mike W. Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=44997&t=44649 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Spanish Inquisition project [7:44906]
s vermill wrote: > Our chief weapon is suprise...surprise and fear...fear and surprise Our > two weapons are fear and surprise...and ruthless efficiency Our *three* > weapons are fear, surprise, and ruthless efficiency...and an almost > fanatical devotion to the Pope Our *four*...no... *Amongst* our > weapons Amongst our weaponry...are such elements as fear, surprise > I'll come in again. > > http://servlet.java.sun.com/javaone/conf/sessions/945/google-sf2001.jsp > > I'm not sure if these slides are any more serious than the skit. Have I been fooled yet again?! I'm checking with our friends at java.sun.com. According to the URL above, the slideshow was used at an actual session, not a BOF. That is an indication, but not necessarily incontrovertible proof, that it's for real. -- TT Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=44995&t=44906 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: CCDP Prerequisites? [7:44966]
I just passed the CCDP and yes you must have te CCNA and the CCDA. Personally speaking, I don't think the test is worth it! It tested me on knowledge that I thought was basically useless and the security section was just terrible. Unprofessional I thought. Theo "[EMAIL PROTECTED]" http://www.groupstudy.com/form/read.php?f=7&i=44996&t=44966 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: CCIE Wanted. [7:44940]
How about reverse H1b status? The average first-year salaries for highly trained software professionals: India $5,000 - $8,000 China $6,000 - $8,000 Russia $5,000 - $8,000 Pakistan $3,600 - $6,120 Philippines $8,000 - $10,000 Bulgaria $3,600 - $6,000 Sources: National Association Okay, a ccie in india making what? Maybe 11k.. See full article http://computerworld.com/managementtopics/management/outsourcing/story/0%2C10801%2C71292%2C00.html?nlid=PM Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=44994&t=44940 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Provider Backbone Engineering and CCIEs [7:44876]
""MADMAN"" wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > Priscilla Oppenheimer wrote: > > > > Well, maybe I overstated it a bit. ;-) My main complaint about the debug > > commands is that the output is too cryptic. Also, some of them were clearly > > designed for the Cisco developers not for the end user of the router > > (network admin, engineer). The information they provide is simply not > > helpful. > > > > Inserting a sniffer can definitely be a pain on a WAN, on the other hand. > > Plus WAN sniffers are terribly expensive. Actually inserting a sniffer is > > more of a pain than it used to be on LANs too. But at least the result is a > > plain-language decode of every packet. > > > > By the way, do you remember which EIGRP debug commands you used and how > > they helped solve the problem? That might be helpful info for us (if you > > have time to explain, no biggie if you don't.) > > > > Thanks > > > > Priscilla > > Actually I used debug eigrp packet found a couple of neighbors were > bouncing eratically which I had also noticed in the ip routing table. I > tried pinging these neighbors and was loosing many packets, this is over > a 100M ethernet. Since this customer mentioned that they had done some > work on a Microsoft server including adding a second interface (arghhh) > I had a good suspect. Since I have seen in the past multiinterfaced > servers do wierd things like foward multicast packets I suspected a > possible routing loop. I enabled debug ip icmp and basically crashed > the MSFC. It was so busy spewing out ICMP TTL expired messages that > caused the CPU to hit 99% and the router was not able to maintain it's > routing functions etc... I asked the customer to grab the server guy > and have him shut down the second interface, problem solved. CL: you sure you didn't say something more like "grab the server guy and throttle him a good one!" ??? > > The IP ICMP debug was really the helper here but the point is I was > able to find the problem using debug, I'm 300 miles from this customer, > much more quickly than finding someone locally who could drive a sniffer > and read/email the output. I admit crashing the router was not good but > "normally" a ip icmp debug will not do that hence I say use any debug > with some caution and customer warning, this may be hazardous to your > network!! > > Dave > > David Madland > Sr. Network Engineer > CCIE# 2016 > Qwest Communications Int. Inc. > [EMAIL PROTECTED] > 612-664-3367 > > "Emotion should reflect reason not guide it" Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=44993&t=44876 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: CCIE Wanted. [7:44940]
Never mind the fact that India and Pakistan are on the brink of war and are sabre rattling with Nukes!! - Original Message - From: "Wes Stevens" To: Sent: Friday, May 24, 2002 10:17 PM Subject: Re: CCIE Wanted. [7:44940] > You may as well quit posting this and wasting our time and yours. No one who > has their ccie is going to go to India and get paided local wages in local > currency. > > Offer US wages in dollars and you may get a few bites. > > > >From: "[EMAIL PROTECTED]" > >Reply-To: "[EMAIL PROTECTED]" > >To: [EMAIL PROTECTED] > >Subject: CCIE Wanted. [7:44940] > >Date: Fri, 24 May 2002 06:34:17 -0400 > > > > > Hi. > > > > > > Re-posting this mail as the number of responses were a few. Forward this > > > mail to your friends. > > > > > > Network Solutions Ltd, a Bangalore based company is looking for CCIEs. > > > Visit www.netsol.co.in for more info on the company. We are among the > >Top > > > Network Integrators in the Country moving towards the No.1 Spot. > > > > > > The Positions will be out of Bangalore, Mumbai and New Delhi. > > > > > > Interested Candidates willing to relocate to India may apply. > > > > > > Compensation will be on par/better-than with what the industry in India > > > Pays. We pay in INR only. > > > > > > Thanks. > > > Sunil Satyanathan > _ > Send and receive Hotmail on your mobile device: http://mobile.msn.com Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=44992&t=44940 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Provider Backbone Engineering and CCIEs [7:44876]
Priscilla Oppenheimer wrote: > > Well, maybe I overstated it a bit. ;-) My main complaint about the debug > commands is that the output is too cryptic. Also, some of them were clearly > designed for the Cisco developers not for the end user of the router > (network admin, engineer). The information they provide is simply not > helpful. > > Inserting a sniffer can definitely be a pain on a WAN, on the other hand. > Plus WAN sniffers are terribly expensive. Actually inserting a sniffer is > more of a pain than it used to be on LANs too. But at least the result is a > plain-language decode of every packet. > > By the way, do you remember which EIGRP debug commands you used and how > they helped solve the problem? That might be helpful info for us (if you > have time to explain, no biggie if you don't.) > > Thanks > > Priscilla Actually I used debug eigrp packet found a couple of neighbors were bouncing eratically which I had also noticed in the ip routing table. I tried pinging these neighbors and was loosing many packets, this is over a 100M ethernet. Since this customer mentioned that they had done some work on a Microsoft server including adding a second interface (arghhh) I had a good suspect. Since I have seen in the past multiinterfaced servers do wierd things like foward multicast packets I suspected a possible routing loop. I enabled debug ip icmp and basically crashed the MSFC. It was so busy spewing out ICMP TTL expired messages that caused the CPU to hit 99% and the router was not able to maintain it's routing functions etc... I asked the customer to grab the server guy and have him shut down the second interface, problem solved. The IP ICMP debug was really the helper here but the point is I was able to find the problem using debug, I'm 300 miles from this customer, much more quickly than finding someone locally who could drive a sniffer and read/email the output. I admit crashing the router was not good but "normally" a ip icmp debug will not do that hence I say use any debug with some caution and customer warning, this may be hazardous to your network!! Dave David Madland Sr. Network Engineer CCIE# 2016 Qwest Communications Int. Inc. [EMAIL PROTECTED] 612-664-3367 "Emotion should reflect reason not guide it" Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=44991&t=44876 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: CCIE Wanted. [7:44940]
You may as well quit posting this and wasting our time and yours. No one who has their ccie is going to go to India and get paided local wages in local currency. Offer US wages in dollars and you may get a few bites. >From: "[EMAIL PROTECTED]" >Reply-To: "[EMAIL PROTECTED]" >To: [EMAIL PROTECTED] >Subject: CCIE Wanted. [7:44940] >Date: Fri, 24 May 2002 06:34:17 -0400 > > > Hi. > > > > Re-posting this mail as the number of responses were a few. Forward this > > mail to your friends. > > > > Network Solutions Ltd, a Bangalore based company is looking for CCIEs. > > Visit www.netsol.co.in for more info on the company. We are among the >Top > > Network Integrators in the Country moving towards the No.1 Spot. > > > > The Positions will be out of Bangalore, Mumbai and New Delhi. > > > > Interested Candidates willing to relocate to India may apply. > > > > Compensation will be on par/better-than with what the industry in India > > Pays. We pay in INR only. > > > > Thanks. > > Sunil Satyanathan _ Send and receive Hotmail on your mobile device: http://mobile.msn.com Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=44990&t=44940 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Spanish Inquisition project [7:44906]
Our chief weapon is suprise...surprise and fear...fear and surprise Our two weapons are fear and surprise...and ruthless efficiency Our *three* weapons are fear, surprise, and ruthless efficiency...and an almost fanatical devotion to the Pope Our *four*...no... *Amongst* our weapons Amongst our weaponry...are such elements as fear, surprise I'll come in again. http://servlet.java.sun.com/javaone/conf/sessions/945/google-sf2001.jsp I'm not sure if these slides are any more serious than the skit. Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=44989&t=44906 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Provider Backbone Engineering and CCIEs [7:44876]
Well, maybe I overstated it a bit. ;-) My main complaint about the debug commands is that the output is too cryptic. Also, some of them were clearly designed for the Cisco developers not for the end user of the router (network admin, engineer). The information they provide is simply not helpful. Inserting a sniffer can definitely be a pain on a WAN, on the other hand. Plus WAN sniffers are terribly expensive. Actually inserting a sniffer is more of a pain than it used to be on LANs too. But at least the result is a plain-language decode of every packet. By the way, do you remember which EIGRP debug commands you used and how they helped solve the problem? That might be helpful info for us (if you have time to explain, no biggie if you don't.) Thanks Priscilla At 03:35 PM 5/24/02, MADMAN wrote: >I have to respectfully disagree, > > Done correctly with caution when necessary the router is an excellant >and often the only troubleshooting tool. If your unpacking a Sniffer >your in deep doo doo as it's quite rare I require it to solve a network >problem. Don't get me wrong, they are essential and have a purpose but >too often people are going too deep too fast to solve problems that do >not require an analyzer. > > I used a couple of EIGRP debugs yesterday to help a hospital whose >core 6500 was melting down and for those that do remote support debug is >our friend. > > DebugDave > > >Priscilla Oppenheimer wrote: > > > > At 07:32 AM 5/24/02, dre wrote: > > > Cisco router to solve any problem, even those that shouldn't be solved > > >with > > >a router! > > > > And how about all the people who try to turn the router into a > > troubleshooting tool? You wouldn't believe how many times I've had to > > convince people that the debug commands aren't a replacement for a sniffer. > > Not only are there issues with eating CPU resources to display the debug > > info, but a lot of the commands don't show packets (which they shouldn't). > > Also, regardless of whether they show events or packets, they don't display > > the information in English (in many cases). In fact, many of the debug > > commands were written to help Cisco software and hardware developers do > > some debugging on flaky code/hardware. They weren't written to help a > > network administrator or engineer. > > > > I know this is a tangent from the real discussion, but I just wanted to > > make that additional point about a Cisco router not being the solution to > > every problem. > > > > Priscilla > > > > > > > > Priscilla Oppenheimer > > http://www.priscilla.com >-- >David Madland >Sr. Network Engineer >CCIE# 2016 >Qwest Communications Int. Inc. >[EMAIL PROTECTED] >612-664-3367 > >"Emotion should reflect reason not guide it" Priscilla Oppenheimer http://www.priscilla.com Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=44988&t=44876 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Help with Pix 506 to 506 VPN [7:44931]
Never mind. I rebooted one of the firewalls and it must have cleared the ipsec and isakmp SAs. ""Wayne Jang"" wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > Hey, > > I have a pix to pix vpn that was working fine. I changed the outside ip > address on one of the Pix's for a ISP reasons. I then made all the > necessary changes on the remote Pix(set peer, and isakmp key.) I > also performed a "clear xlate" on both firewalls. tonight i can vpn to both > firewalls, but earlier I couldn't ping addresses on the remote end with a > workstation behind one of the firewalls. However, I could ping remote ip > address from within the firewall. So the tunnel is up, but why can't the > workstations hit those remote addresses? Do I need to clear some crypto or > isakmp sa? > > Any help would be greatly appreciated. > > -- > Wayne Jang > Advanced Computer Technologies, Inc. > 108 Main Street > Norwalk, CT 06851 > Wk 203-847-9433 > Cell 203-943-6603 Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=44986&t=44931 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Provider Backbone Engineering and CCIEs [7:44876]
I have to respectfully disagree, Done correctly with caution when necessary the router is an excellant and often the only troubleshooting tool. If your unpacking a Sniffer your in deep doo doo as it's quite rare I require it to solve a network problem. Don't get me wrong, they are essential and have a purpose but too often people are going too deep too fast to solve problems that do not require an analyzer. I used a couple of EIGRP debugs yesterday to help a hospital whose core 6500 was melting down and for those that do remote support debug is our friend. DebugDave Priscilla Oppenheimer wrote: > > At 07:32 AM 5/24/02, dre wrote: > > Cisco router to solve any problem, even those that shouldn't be solved > >with > >a router! > > And how about all the people who try to turn the router into a > troubleshooting tool? You wouldn't believe how many times I've had to > convince people that the debug commands aren't a replacement for a sniffer. > Not only are there issues with eating CPU resources to display the debug > info, but a lot of the commands don't show packets (which they shouldn't). > Also, regardless of whether they show events or packets, they don't display > the information in English (in many cases). In fact, many of the debug > commands were written to help Cisco software and hardware developers do > some debugging on flaky code/hardware. They weren't written to help a > network administrator or engineer. > > I know this is a tangent from the real discussion, but I just wanted to > make that additional point about a Cisco router not being the solution to > every problem. > > Priscilla > > > > Priscilla Oppenheimer > http://www.priscilla.com -- David Madland Sr. Network Engineer CCIE# 2016 Qwest Communications Int. Inc. [EMAIL PROTECTED] 612-664-3367 "Emotion should reflect reason not guide it" Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=44984&t=44876 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Provider Backbone Engineering and CCIEs [7:44876]
At 02:42 PM 5/24/02, Howard C. Berkowitz wrote: >Only tool? Match up column A and column B (I'm only citing things >that actually are in my own shop), and cite the equivalent routers. > > tack hammer6" spike > 8 oz two-faced mallet 4d finishing > 16 oz two-faced mallet 16d galvanized common > 10 lb sledge 18gauge brad > 16 oz black rubber mallet 8d bright common > 16 oz ball-pein3" masonry > drywall hammer drywall nail > 8 oz ball pein 2" masonry > 2 lb sledge16d bright common > 24 oz wood handled carpenter 8d finishing > 32 oz all metal carpenter 6d finishing > Meat tenderizer3/4" aluminum roofing > 8 oz wood handled carpenterwire staple for Romex > dead blow hammer carpet tacks Oh, I thought that was router debug output! ;-) It could have said: 4d3h: %LINK-3-UPDOWN: Interface Serial0/1, changed state to 6d finishing 4d3h: carpet tACKs 4d3h: Se0/1 CHAP: O CHALLENGE id 32 oz len 3/4" from Romex 4d3h: %LINK-3-UPDOWN: Interface Serial0/1, changed state to 4d finishing 4d3h: two-faced mallet communications established 4d3h: %LINK-3-UPDOWN: Interface Serial0/1, wood handled carpenter failed 4d3h: tACK hammer 4d3h Se0/1 CHAP: Using alternate hostname black rubber mallet 4d3h: %LINK-3-UPDOWN: Interface Serial0/1, changed state to 6d dead blow hammer 4d3h: failed wire staple for Romex 4d3h: 8d bright common channel 16d galvanized 4d3h: drywall circuit nailed 4d3h: drywall hit firewall 4d3h: 10 lb sledge hit firewall 4d3h: go back to using a ball-pein for communications 4d3h: go back to work now! Priscilla Priscilla Oppenheimer http://www.priscilla.com Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=44985&t=44876 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Provider Backbone Engineering and CCIEs [7:44876]
Because pop3 username and password use two packets (one for "USER username" and another for "PASS password" command). With telnet, every keystroke is transmitted in separate packet. It is possible to collect them all and reconstruct username/password, but it's not trivial as with pop3. Sasa CCIE 8635 Henrique Duarte wrote: > > Why can't I sniff my telnet login/password in clear text but can sniff my > pop3 login/password in clear text? I'm using Sniffer Pro 4.5. Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=44983&t=44876 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: SYSLOG time stamp problem [7:44949]
Clayton, thanks, the service timestamps was the trick. One more thing, the hostname is not being displayed in the syslog GUI, however, I do have the hostname configured on the switch & router in the 6509. Any ideas on that one? Thanks!! Jeffrey Reed Classic Networking, Inc. -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Clayton Dukes Sent: Friday, May 24, 2002 12:17 PM To: [EMAIL PROTECTED] Subject: Re: SYSLOG time stamp problem [7:44949] Try this: service timestamps debug datetime localtime show-timezone service timestamps log datetime localtime show-timezone ! clock timezone EST -5 clock summer-time EDT recurring Clayton Dukes Cisco Info Center SE CCNA, CCDA, CCDP, CCNP, NCC (h) 904-292-1881 (c) 904-477-7825 -- Free Cisco Training at http://www.gdd.net - Original Message - From: "Alex Lee" To: Sent: Friday, May 24, 2002 10:53 AM Subject: Re: SYSLOG time stamp problem [7:44949] > My take is that the time stamp is correct but it is using UTC time which is > 4 hour ahead of U.S. East Coast's Day Light Saving Time. > > ""Jeffrey Reed"" wrote in message > [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > > I set up a syslog server and have a problem with the time stamp in a sys > log > > message. When a message is sent to my syslog server (using solar winds > > syslog monitor) the date/time field is correct, but the time stamp with > the > > message itself is not, its 4 hours ahead. I show calendar and clock on the > > 6500 MSFC and they are both set correctly. I have the system set up for > EST > > and daylight savings, so I think the syslog facility is not factoring in > > those settings. Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=44975&t=44949 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Provider Backbone Engineering and CCIEs [7:44876]
""Howard C. Berkowitz"" wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > At 1:25 PM -0400 5/24/02, Chuck wrote: > >""Priscilla Oppenheimer"" wrote in message > >[EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > >> At 07:32 AM 5/24/02, dre wrote: > >> > Cisco router to solve any problem, even those that shouldn't be solved > >> >with > >> >a router! > >> > >snip for brevity > >> > >> I know this is a tangent from the real discussion, but I just wanted to > >> make that additional point about a Cisco router not being the solution to > > every problem. > > This goes beyond tangent. It is a sin. > > > > > > >most of us here are really just a bunch of router jocks. what do you think > >we would use? ;-> > >when your only tool is a hammer, all your problems look like nails!!! :-> > > > >Chuck > > Only tool? Match up column A and column B (I'm only citing things > that actually are in my own shop), and cite the equivalent routers. > > tack hammer6" spike > 8 oz two-faced mallet 4d finishing > 16 oz two-faced mallet 16d galvanized common > 10 lb sledge 18gauge brad > 16 oz black rubber mallet 8d bright common > 16 oz ball-pein3" masonry > drywall hammer drywall nail > 8 oz ball pein 2" masonry > 2 lb sledge16d bright common > 24 oz wood handled carpenter 8d finishing > 32 oz all metal carpenter 6d finishing > Meat tenderizer3/4" aluminum roofing > 8 oz wood handled carpenterwire staple for Romex > dead blow hammer carpet tacks cisco makes routers of any number of sizes, for all occasions. an 827, for example, might take the place of a tack hammer, while a 3660 or a 7206 might make a good replacement for a 10 lb sledge. in fact, after a frustrating all nighter, trying to fix some problem or another, I have often been tempted to use my routers in such a fashion ;-> Chuck Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=44982&t=44876 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Provider Backbone Engineering and CCIEs [7:44876]
At 1:25 PM -0400 5/24/02, Chuck wrote: >""Priscilla Oppenheimer"" wrote in message >[EMAIL PROTECTED]">news:[EMAIL PROTECTED]... >> At 07:32 AM 5/24/02, dre wrote: >> > Cisco router to solve any problem, even those that shouldn't be solved >> >with >> >a router! >> >snip for brevity >> >> I know this is a tangent from the real discussion, but I just wanted to >> make that additional point about a Cisco router not being the solution to > every problem. This goes beyond tangent. It is a sin. > > >most of us here are really just a bunch of router jocks. what do you think >we would use? ;-> >when your only tool is a hammer, all your problems look like nails!!! :-> > >Chuck Only tool? Match up column A and column B (I'm only citing things that actually are in my own shop), and cite the equivalent routers. tack hammer6" spike 8 oz two-faced mallet 4d finishing 16 oz two-faced mallet 16d galvanized common 10 lb sledge 18gauge brad 16 oz black rubber mallet 8d bright common 16 oz ball-pein3" masonry drywall hammer drywall nail 8 oz ball pein 2" masonry 2 lb sledge16d bright common 24 oz wood handled carpenter 8d finishing 32 oz all metal carpenter 6d finishing Meat tenderizer3/4" aluminum roofing 8 oz wood handled carpenterwire staple for Romex dead blow hammer carpet tacks Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=44981&t=44876 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Provider Backbone Engineering and CCIEs [7:44876]
Why can't I sniff my telnet login/password in clear text but can sniff my pop3 login/password in clear text? I'm using Sniffer Pro 4.5. Thanks, -H - Original Message - From: "Priscilla Oppenheimer" To: Sent: Friday, May 24, 2002 1:20 PM Subject: Re: Provider Backbone Engineering and CCIEs [7:44876] > At 07:32 AM 5/24/02, dre wrote: > > Cisco router to solve any problem, even those that shouldn't be solved > >with > >a router! > > And how about all the people who try to turn the router into a > troubleshooting tool? You wouldn't believe how many times I've had to > convince people that the debug commands aren't a replacement for a sniffer. > Not only are there issues with eating CPU resources to display the debug > info, but a lot of the commands don't show packets (which they shouldn't). > Also, regardless of whether they show events or packets, they don't display > the information in English (in many cases). In fact, many of the debug > commands were written to help Cisco software and hardware developers do > some debugging on flaky code/hardware. They weren't written to help a > network administrator or engineer. > > I know this is a tangent from the real discussion, but I just wanted to > make that additional point about a Cisco router not being the solution to > every problem. > > Priscilla > > > > > > Priscilla Oppenheimer > http://www.priscilla.com Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=44980&t=44876 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
IP TV 3917 [7:44979]
Hi, I am having problem with my new IPTV3417. The IPTV3417 has Window 2000 server and my lap top is Window XP. I tried to view the sample file in the media file but it says that the Content manager is not authorized to view it. Also, when I tried to view it using the IP TV Viewer that I installed in my laptop, the media window does not have the screen. Also, I can find my scheduled programs but not ondemand video. Please help or redirect this request to others Thanks _ Chat with friends online, try MSN Messenger: http://messenger.msn.com Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=44979&t=44979 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Provider Backbone Engineering and CCIEs [7:44876]
Really? So I shouldn't being doing a "show mem" and looking at the data contained in specific memory addresses labeled *packet data* to turn my router into a sniffer? :-) -Original Message- From: Priscilla Oppenheimer [mailto:[EMAIL PROTECTED]] Sent: Friday, May 24, 2002 1:20 PM To: [EMAIL PROTECTED] Subject: Re: Provider Backbone Engineering and CCIEs [7:44876] At 07:32 AM 5/24/02, dre wrote: > Cisco router to solve any problem, even those that shouldn't be solved >with >a router! And how about all the people who try to turn the router into a troubleshooting tool? You wouldn't believe how many times I've had to convince people that the debug commands aren't a replacement for a sniffer. Not only are there issues with eating CPU resources to display the debug info, but a lot of the commands don't show packets (which they shouldn't). Also, regardless of whether they show events or packets, they don't display the information in English (in many cases). In fact, many of the debug commands were written to help Cisco software and hardware developers do some debugging on flaky code/hardware. They weren't written to help a network administrator or engineer. I know this is a tangent from the real discussion, but I just wanted to make that additional point about a Cisco router not being the solution to every problem. Priscilla Priscilla Oppenheimer http://www.priscilla.com Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=44978&t=44876 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Friday Follies of sorts - answering questions [7:44952]
Chuck, This is a very interesting post. I did some checking and I found this link that might address the requirement based on the design. This can be done by using 6500 switches instead of routers as depicted in your lovely ASCII art. http://www.cisco.com/warp/public/cc/pd/si/casi/ca6000/tech/cat65_wp.htm They make the following note.. Configuring Policers The next step is to define a policer. The Catalyst 6500 supports microflow and aggregate policing. A Microflow policer defines the policing of a single flow, which is defined by a session with a unique SA/DA MAC address, SA/DA IP address and TCP/UDP port numbers. For each new flow that is initiated through a port of a VLAN, the microflow can be used to limit the amount of data received for that flow by the switch. I notice you're using the "LX" based fiber connection between your routers but the design does suggest a "campus" or MAN type architecture. In this design I'm guessing that the 6500 with dual MFSC's and PFC's as noted on the link would provide for redundancy in the design. In looking at the QoS requirements using a router (possibly using a 7500) the GEIP link does mention support for the following - "Support for IP Quality of Service (QoS)/Class of Service (CoS), including CAR, ACL and MPLS/tag switching". A couple of questions here would be.. A couple of questions here would be 1. What is the problem you are trying to solve? (I've always wanted to say this...) :-> 2. What type of analysis have been done to determine traffic flows(ftp, smtp, multicast..etc) 3. QoS based on destination subnets ( How are the subnets being determined)? 4 . The design suggest this is a P-t-P connection for an internal network. Is it? 5 . The traffic that would be given QoS to the DA subnet to what? An Application Server/Farm? I'm currently reading for the second time a book recommended by Priscilla on the list that I think may provide you some insight in what you're trying to accomplish. The book's author is James D. McCabe and the title is Practical Computer Network Analysis and Design - ISBN 1558604987 HTH Nigel - Original Message - From: "Chuck" To: Sent: Friday, May 24, 2002 10:59 AM Subject: Friday Follies of sorts - answering questions [7:44952] > I got to thinking about this after posting a question to a company internal > mailing list. Based on some of the responses I received from other > engineers, I wondered at what point one has enough information to answer a > question. At what point asking for further clarification is essentially a > sign that you don't know the answer and you are just stalling. > > Please be assured, I am not looking for "the answer". I have what I need, > including some working configs, which I will post to the list if there is > enough interest. > > I am more interested in the opinions of any number of you folks whose > insight I appreciate. > > So.. here is the e-mail I sent internally. My question is - given what > you see, do you have enough information to provide an answer? If not, why > not? > > > Start question: > - > > > have a complex QoS traffic shaping rate limiting question. > > internet--->source_router--->gigE_port--->LX_fiber_connection--->gigE > _port>destination_router--->multiple subnets > > the customer wants to rate limit traffic across the fiber link based on > destination ip subnet. I'm racking my brain trying to figure out how to do > this on something other than a frame or an ATM link. Can't seem to find > the appropriate examples on CCO. > > Question - can one configure different QoS rate limits for different > destination subnets over the same physical interface? All the example I > find are for technologies that use PVC's. I had thought policy routing, > using the route-maps to change TOS bits, and using map classes (?) to > differentiate, but that severely limits the number of subnets I can > manage. > > I have found some docs on CCO, but the examples center around MAC and IP > precedence, not subnet. > > If you have reasonable expertise in QoS rate limiting, can you give me a > call regarding the options I have? > > - > end of question > > > remember - I have what I need. I am just curious about the nature of > questions and answers, and the clarification process required to provide > answers. Call this a seminar in the design process, maybe? > > I look forward to your sage replies. > > Chuck Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=44977&t=44952 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Bridge and switch [7:44649]
Both bridges and switches learn the port to use to reach a MAC destination. If they haven't learned it yet, they flood the frame out all ports except the originating port. Jean Andrews has written some superb books on PC technology. I have a book by her called "A+ Guide to Managing and Maintaining Your PC" that is excellent. But she should stick to her day job. She doesn't seem to know networking. Her description of bridges and switches is false, as you say. Maybe she could write some fiction in her spare time. ;-) The only real difference between bridges and switches is in their architectures, both hardware and software. Switches have more ports. Switches have a more complex switching fabric that lets them forward multiple frames at once. They are often implemented as a crossbar. Think of a bridge as being like a literal bridge across a river or whatever. Think of a switch as being like a complicated Japanese Pachinko machine! Regarding the difference between a MAC table and CAM table: They are just different names for the same thing. Priscilla At 10:57 AM 5/24/02, Kevin Jones wrote: >Ok. I found the source of the information. I would like to here your >feedback on this. > >Course Technology * Thompson Learning, i-Net+ Guide to Internet >Technologies, Jean Andrews, p. 443-445 > >"What is the difference between a bridge and a switch? The main difference >is how they work. A bridge broadcasts data to one or more LANs while a >switch knows which LAN a packet should be sent to." > >"In order to determine which network the packet should be sent to, the >bridge creates and maintains a routing table that lists the computers on >each LAN. A separate table is kept for each LAN. When a data packet >reaches the bridge, the bridge looks at the packet's destination address, >then searches the routing table for the originating LAN, looking for the >destination address of the data packet. If it finds the address in this >routing table, it drops the packet, knowing that the packet will have >already reached its destination, because it was broadcast to all nodes on >the LAN by the LAN's hub." > >"If the bridge did not find the destination address in the routing table for >that LAN, it broadcasts the packet to all nodes on all LANs it is connected >to except the LAN that the packet came from. Therefore, a bridge only makes >a single decision, 'Is this packet destined for a node on its own network?' >If the answer is 'No,', then the bridge simply broadcasts it to all other >LANs." > >"A switch, on the other hand, deosn not work by sending broadcast messages. >Just like bridges, switches also keep tables of all the MAC addresses of all >the devices connected to the switch. They use these tables to determine >which path to use when sending packets." > >"... Using the destination address in the header of the packet, the switch >would refer to its tables and determine the LAN to which the packet is >addressed. The switch then forwards the packet to the proper LAN, rather >than broadcasting the packet to all the LANs." > > From this thread, and from past experience, shall we assume that this is >completely false? While i-Net plus only skims the surface of network >technology, this book (like many others) seems to have a lot of errors. >Another example would be the fact that the MAC tables are referred to as >routing tables. > >That reminds me, what is the difference between a MAC table and a CAM table? > >Kevin Priscilla Oppenheimer http://www.priscilla.com Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=44974&t=44649 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Provider Backbone Engineering and CCIEs [7:44876]
""Priscilla Oppenheimer"" wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > At 07:32 AM 5/24/02, dre wrote: > > Cisco router to solve any problem, even those that shouldn't be solved > >with > >a router! > snip for brevity > > I know this is a tangent from the real discussion, but I just wanted to > make that additional point about a Cisco router not being the solution to every problem. most of us here are really just a bunch of router jocks. what do you think we would use? ;-> when your only tool is a hammer, all your problems look like nails!!! :-> Chuck > > Priscilla > > > > > > Priscilla Oppenheimer > http://www.priscilla.com Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=44976&t=44876 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Provider Backbone Engineering and CCIEs [7:44876]
At 07:32 AM 5/24/02, dre wrote: > Cisco router to solve any problem, even those that shouldn't be solved >with >a router! And how about all the people who try to turn the router into a troubleshooting tool? You wouldn't believe how many times I've had to convince people that the debug commands aren't a replacement for a sniffer. Not only are there issues with eating CPU resources to display the debug info, but a lot of the commands don't show packets (which they shouldn't). Also, regardless of whether they show events or packets, they don't display the information in English (in many cases). In fact, many of the debug commands were written to help Cisco software and hardware developers do some debugging on flaky code/hardware. They weren't written to help a network administrator or engineer. I know this is a tangent from the real discussion, but I just wanted to make that additional point about a Cisco router not being the solution to every problem. Priscilla Priscilla Oppenheimer http://www.priscilla.com Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=44973&t=44876 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: PIX - PAT configuration problem [7:44957]
Hello, That is a pretty standard way of doing PAT overloading. I use it on 4 or 5 firewalls in this manner. I would suggest double,then triple checking The global for typo's. I suspect that the PAT global might have an incorrect address. Try and see if those uses that have a PAT address can ping outside address's. Start with the next hop address, and work from there. Let us know if they can ping , or is everything blocked. Thanks Larry -Original Message- From: Ufuk Yasibeyli [mailto:[EMAIL PROTECTED]] Sent: Friday, May 24, 2002 10:23 AM To: [EMAIL PROTECTED] Subject: PIX - PAT configuration problem [7:44957] Hello everybody, I have configured a PIX 515E v6.1(2) with following for NAT/PAT address translation : ip address outside x.y.z.2 255.255.255.0 ip address inside 192.168.0.1 255.255.255.0 route outside 0.0.0.0 0.0.0.0 x.y.z.1 1 global (outside) 1 x.y.z.100-x.y.z.253 global (outside) 1 x.y.z.254 nat (inside) 1 0.0.0.0 0.0.0.0 0 0 Inside hosts have necessary permissions for initiating web traffic and all the hosts which gets an address from NAT pool(100-253) can browse the web. However, clients which are allocated from PAT address(254), can not browse the web. These clients can resolve DNS names to IP addresses though. when I issue "show xlat" command, PAT addresses are shown as allocated to some clients, which I verify that they can't access to web. I have used Cisco Output interpretter tool. But it didn't give me any warning or configuration error. And I think the config is pretty straight forward. (Which might be the reason of a mistake I can't see) One friend informed that PIX has a problem in a configuration like this, where outside address is in the same segment with the address used for PAT. Can someone confirm this information, and if so, is this behaviour a bug or a configuration mistake I am making. Best regards, Ufuk Yasibeyli Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=44972&t=44957 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: CCDP Prerequisites? [7:44966]
Miguel, "Unfair it seems" , but it is, in fact, true. One must sit for and pass the CCDA exam as a pre-requisite of sitting for the CCDP. After all, a little MORE knowledge certainly wont hurt? ;) HTH, Rob H. NP, DP, blah,blah,blah. Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=44971&t=44966 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: CCDP Prerequisites? [7:44966]
> Hi > Can anyone tell me what the current prerequisites are for > taking the DP > exam? I was told that if you have the CCNP you can write the > DP exam without > writing the DA exam first. Is this true? I am hearing now > that you must > write the DA exam as well. The only way you can avoid DA is if you have CCIE ... There is a nice tree structure of requirements on cert. tracking site. Marko. Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=44970&t=44966 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
GROUPstudy.com......with the Emphasis on GROUP [7:44969]
you know ,,, i amreally starting to get fed-up with the "lets bash howard" brigade... i have and will continue to put your teaching`s (howard) into practise... this IS A COMMUNITY of professionals who HELP eachother i have been in recept of many tips form a great many CCIE/CCNA/CCNP`s i will happily take any help form anyone regardless of the Cert.i have myself helped a CCIE and i am only a CCNP... this help was provided because as per most of us we dont work in enviroments were we have access to every piece of equipment there is on the planet.. so i help him . i have also been helped by a CCNA is he any less a human bieng.NO let us remeber why we signed up ...to HELP SHARE and LEARN... Pleasent Weekend study.,.. steve - Original Message - From: "Howard C. Berkowitz" To: Sent: Wednesday, May 22, 2002 2:49 PM Subject: Re: Logic and Lab Rats [7:44714] > I'm not saying to close the thread or not, although I think the > moderators (I am one) are starting to block messages that come across > as personal attacks. > > What I see is the fundamental misperception in this thread is an > assumption there is a binary choice between experience and new > training. I freely admit there are experienced people that have had 1 > year of experience 20 times. But other experienced people have BOTH > the experience and the in-depth protocol knowledge, which puts them > in a position to learn even faster -- if they want to. > > Earlier in the thread, someone said "would you put something in > production without lab testing?" As with everything else in > networking, "it depends." A large ISP, for example, will test a new > IOS release in a lab, but they can't possibly have a lab that will > let them see the effects of the change on tens of thousands of > routers. This is true of router manufacturers as well. > > For very large networks, it may be possible to use true (i.e., Monte > Carlo) simulation or mathematical analysis. But experience does have > a major role in Internet backbone engineering. Let me simply say > that backbone engineering is at a level far more specialized and > complex than the CCIE level, and there haven't been formalized ways > to learn it. Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=44969&t=44969 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: SYSLOG time stamp problem [7:44949]
Try this: service timestamps debug datetime localtime show-timezone service timestamps log datetime localtime show-timezone ! clock timezone EST -5 clock summer-time EDT recurring Clayton Dukes Cisco Info Center SE CCNA, CCDA, CCDP, CCNP, NCC (h) 904-292-1881 (c) 904-477-7825 -- Free Cisco Training at http://www.gdd.net - Original Message - From: "Alex Lee" To: Sent: Friday, May 24, 2002 10:53 AM Subject: Re: SYSLOG time stamp problem [7:44949] > My take is that the time stamp is correct but it is using UTC time which is > 4 hour ahead of U.S. East Coast's Day Light Saving Time. > > ""Jeffrey Reed"" wrote in message > [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > > I set up a syslog server and have a problem with the time stamp in a sys > log > > message. When a message is sent to my syslog server (using solar winds > > syslog monitor) the date/time field is correct, but the time stamp with > the > > message itself is not, its 4 hours ahead. I show calendar and clock on the > > 6500 MSFC and they are both set correctly. I have the system set up for > EST > > and daylight savings, so I think the syslog facility is not factoring in > > those settings. Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=44961&t=44949 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
MCNS [7:44968]
I am set to take the MCNS soon; can anyone offer any words of wisdom? Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=44968&t=44968 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: CCDP Prerequisites? [7:44966]
You need CCNP +CCDA first -- RFC 1149 Compliant. ""Miguel Mitras"" wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > Hi > Can anyone tell me what the current prerequisites are for taking the DP > exam? I was told that if you have the CCNP you can write the DP exam without > writing the DA exam first. Is this true? I am hearing now that you must > write the DA exam as well. > > Unfair, it seems. Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=44967&t=44966 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
CCDP Prerequisites? [7:44966]
Hi Can anyone tell me what the current prerequisites are for taking the DP exam? I was told that if you have the CCNP you can write the DP exam without writing the DA exam first. Is this true? I am hearing now that you must write the DA exam as well. Unfair, it seems. Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=44966&t=44966 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: SYSLOG time stamp problem [7:44949]
you need to add logging facilites for messages in the syslog.conf file in /etc/ research setting up syslog.conf on google. also do a "netstat -na" you should see /home/jbrunner as root@ns> netstat -na Active Internet connections (servers and established) Proto Recv-Q Send-Q Local Address Foreign Address State udp0 0 0.0.0.0:514 0.0.0.0:* (this is syslog running, listing on 514 UDP) Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=44965&t=44949 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Spanish Inquisition project [7:44906]
No one expects the spanish inquisition!!! Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=44963&t=44906 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Banner MOTD [7:44828]
How? ""test toby"" wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > yes Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=44962&t=44828 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Spanish Inquisition project [7:44906]
No one expects the spanish inquisition!!!Tom Scott wrote: > > I can't seem to find anything about the Spanish Inquisition > project on > the cisco.com website. > > -- TT > > Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=44964&t=44906 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Bridge and switch [7:44649]
I used to wonder why I had such a hard time grasping technology concepts until I reached a level where I actually understood some of this stuff. Then I found that a lot of sources either did not understand the concepts themselves or worse yet, they were so imprecise with their language and terminology, that they created confusion in the mind of the newbie learner. Some comments below: ""Kevin Jones"" wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > Ok. I found the source of the information. I would like to here your > feedback on this. > > Course Technology * Thompson Learning, i-Net+ Guide to Internet > Technologies, Jean Andrews, p. 443-445 > > "What is the difference between a bridge and a switch? The main difference > is how they work. A bridge broadcasts data to one or more LANs while a > switch knows which LAN a packet should be sent to." ? since both are layer 2 devices, and layer two has no concept of "LAN" let alone "different LAN's" what does this mean? > > "In order to determine which network the packet should be sent to, the > bridge creates and maintains a routing table that lists the computers on The use of the term "routing table" is inaacurate. layer two does not "route" I believe the proper term is "forwarding base", which is more generic, and more proper. > each LAN. A separate table is kept for each LAN. ?? not on any bridge or switch I've ever worked with >When a data packet > reaches the bridge, the bridge looks at the packet's destination address, > then searches the routing table for the originating LAN, looking for the > destination address of the data packet. If it finds the address in this > routing table, it drops the packet, knowing that the packet will have > already reached its destination, because it was broadcast to all nodes on > the LAN by the LAN's hub." sigh. totally wrong in concept and in explaination... > > "If the bridge did not find the destination address in the routing table for > that LAN, it broadcasts the packet to all nodes on all LANs it is connected > to except the LAN that the packet came from. Therefore, a bridge only makes > a single decision, 'Is this packet destined for a node on its own network?' > If the answer is 'No,', then the bridge simply broadcasts it to all other > LANs." ??. I think I begin to understand what the author is intending. The author appears to be saying that each port on a bridge is associated with a LAN. This can be considered conceptually correct in a manner of speaking, but again, the imprecision of terminology is causing confusion.. > > "A switch, on the other hand, deosn not work by sending broadcast messages. > Just like bridges, switches also keep tables of all the MAC addresses of all > the devices connected to the switch. They use these tables to determine > which path to use when sending packets." here we go,,, the author now gets into the correct concept - MAC addresses - which bridges use also. > > "... Using the destination address in the header of the packet, the switch > would refer to its tables and determine the LAN to which the packet is > addressed. The switch then forwards the packet to the proper LAN, rather > than broadcasting the packet to all the LANs." the author continues to confuse L2 and L3 terminaology. L2 is "frame" - recall your CCNA materials. > > From this thread, and from past experience, shall we assume that this is > completely false? While i-Net plus only skims the surface of network > technology, this book (like many others) seems to have a lot of errors. > Another example would be the fact that the MAC tables are referred to as > routing tables. no kidding there are errors. just goes to show > > That reminds me, what is the difference between a MAC table and a CAM table? Cisco calls the mac table a "content addressable memory" table. without spending more time than I have at the moment, I can't find a history on CCO as to why they do this. > > Kevin Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=44960&t=44649 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: CCIE Wanted. [7:44940]
Hi Sunil, Is this strictly for the IEs? If you will consider a CCNP with ISP and VoIP experience, then please indicate the pay in USD. I will love to work in India. Tunji >From: "[EMAIL PROTECTED]" >Reply-To: "[EMAIL PROTECTED]" >To: [EMAIL PROTECTED] >Subject: CCIE Wanted. [7:44940] >Date: Fri, 24 May 2002 06:34:17 -0400 > > > Hi. > > > > Re-posting this mail as the number of responses were a few. Forward this > > mail to your friends. > > > > Network Solutions Ltd, a Bangalore based company is looking for CCIEs. > > Visit www.netsol.co.in for more info on the company. We are among the >Top > > Network Integrators in the Country moving towards the No.1 Spot. > > > > The Positions will be out of Bangalore, Mumbai and New Delhi. > > > > Interested Candidates willing to relocate to India may apply. > > > > Compensation will be on par/better-than with what the industry in India > > Pays. We pay in INR only. > > > > Thanks. > > Sunil Satyanathan _ Chat with friends online, try MSN Messenger: http://messenger.msn.com Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=44959&t=44940 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Friday Follies of sorts - answering questions [7:44952]
Maybe I shot off the answer too soon. If you are just looking for what questions to ask, then here's what I'd ask: 1. What equipment, IOS/CatOS rev? 2. What speeds are the links? (You already have this) 3. What is the purpose of this (get the big picture) 4. Who are you limiting? What speeds to they get? What types of traffic is getting limited? Is it a strict limit or is there some leeway in passing the traffic as long as there's room on the links? -- RFC 1149 Compliant. ""Steven A. Ridder"" wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > Try this (not I used standard access list that not only did subnet, but also > port. > > rate-limit output access-group 101 8000 2000 2000 conform-action transmit > excee > d-action drop > ! > acces-list 101 permit tcp 10.10.10.0 0.0.0.255 any eq 80 > > -- > > RFC 1149 Compliant. > > > > ""Chuck"" wrote in message > [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > > I got to thinking about this after posting a question to a company > internal > > mailing list. Based on some of the responses I received from other > > engineers, I wondered at what point one has enough information to answer a > > question. At what point asking for further clarification is essentially a > > sign that you don't know the answer and you are just stalling. > > > > Please be assured, I am not looking for "the answer". I have what I need, > > including some working configs, which I will post to the list if there is > > enough interest. > > > > I am more interested in the opinions of any number of you folks whose > > insight I appreciate. > > > > So.. here is the e-mail I sent internally. My question is - given what > > you see, do you have enough information to provide an answer? If not, why > > not? > > > > > > Start question: > > - > > > > > > have a complex QoS traffic shaping rate limiting question. > > > > internet--->source_router--->gigE_port--->LX_fiber_connection--->gigE > > _port>destination_router--->multiple subnets > > > > the customer wants to rate limit traffic across the fiber link based on > > destination ip subnet. I'm racking my brain trying to figure out how to > do > > this on something other than a frame or an ATM link. Can't seem to find > > the appropriate examples on CCO. > > > > Question - can one configure different QoS rate limits for different > > destination subnets over the same physical interface? All the example I > > find are for technologies that use PVC's. I had thought policy routing, > > using the route-maps to change TOS bits, and using map classes (?) to > > differentiate, but that severely limits the number of subnets I can > > manage. > > > > I have found some docs on CCO, but the examples center around MAC and IP > > precedence, not subnet. > > > > If you have reasonable expertise in QoS rate limiting, can you give me a > > call regarding the options I have? > > > > - > > end of question > > > > > > remember - I have what I need. I am just curious about the nature of > > questions and answers, and the clarification process required to provide > > answers. Call this a seminar in the design process, maybe? > > > > I look forward to your sage replies. > > > > Chuck Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=44958&t=44952 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
PIX - PAT configuration problem [7:44957]
Hello everybody, I have configured a PIX 515E v6.1(2) with following for NAT/PAT address translation : ip address outside x.y.z.2 255.255.255.0 ip address inside 192.168.0.1 255.255.255.0 route outside 0.0.0.0 0.0.0.0 x.y.z.1 1 global (outside) 1 x.y.z.100-x.y.z.253 global (outside) 1 x.y.z.254 nat (inside) 1 0.0.0.0 0.0.0.0 0 0 Inside hosts have necessary permissions for initiating web traffic and all the hosts which gets an address from NAT pool(100-253) can browse the web. However, clients which are allocated from PAT address(254), can not browse the web. These clients can resolve DNS names to IP addresses though. when I issue "show xlat" command, PAT addresses are shown as allocated to some clients, which I verify that they can't access to web. I have used Cisco Output interpretter tool. But it didn't give me any warning or configuration error. And I think the config is pretty straight forward. (Which might be the reason of a mistake I can't see) One friend informed that PIX has a problem in a configuration like this, where outside address is in the same segment with the address used for PAT. Can someone confirm this information, and if so, is this behaviour a bug or a configuration mistake I am making. Best regards, Ufuk Yasibeyli Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=44957&t=44957 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: SYSLOG time stamp problem [7:44949]
Speaking of syslog, if a syslog daemon is running on a unix machine, is that all that needs to happen for it to collect messages. I can get a Kiwi syslog program to work, but if I have a customer set up syslog on unix, nothing is in the logs, even though the router claims to have sent him messages (and all connectivity is working). -- RFC 1149 Compliant. ""Jeffrey Reed"" wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > I set up a syslog server and have a problem with the time stamp in a sys log > message. When a message is sent to my syslog server (using solar winds > syslog monitor) the date/time field is correct, but the time stamp with the > message itself is not, its 4 hours ahead. I show calendar and clock on the > 6500 MSFC and they are both set correctly. I have the system set up for EST > and daylight savings, so I think the syslog facility is not factoring in > those settings. > > How can I get the syslog message to display the correct time? > > Thanks!! > > Jeff Reed Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=44956&t=44949 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: SYSLOG time stamp problem [7:44949]
set ntp client enable set ntp server 10.0.1.1 set ntp server 10.0.1.2 set timezone EST -5 0 set summertime enable Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=44955&t=44949 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Friday Follies of sorts - answering questions [7:44952]
Try this (not I used standard access list that not only did subnet, but also port. rate-limit output access-group 101 8000 2000 2000 conform-action transmit excee d-action drop ! acces-list 101 permit tcp 10.10.10.0 0.0.0.255 any eq 80 -- RFC 1149 Compliant. ""Chuck"" wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > I got to thinking about this after posting a question to a company internal > mailing list. Based on some of the responses I received from other > engineers, I wondered at what point one has enough information to answer a > question. At what point asking for further clarification is essentially a > sign that you don't know the answer and you are just stalling. > > Please be assured, I am not looking for "the answer". I have what I need, > including some working configs, which I will post to the list if there is > enough interest. > > I am more interested in the opinions of any number of you folks whose > insight I appreciate. > > So.. here is the e-mail I sent internally. My question is - given what > you see, do you have enough information to provide an answer? If not, why > not? > > > Start question: > - > > > have a complex QoS traffic shaping rate limiting question. > > internet--->source_router--->gigE_port--->LX_fiber_connection--->gigE > _port>destination_router--->multiple subnets > > the customer wants to rate limit traffic across the fiber link based on > destination ip subnet. I'm racking my brain trying to figure out how to do > this on something other than a frame or an ATM link. Can't seem to find > the appropriate examples on CCO. > > Question - can one configure different QoS rate limits for different > destination subnets over the same physical interface? All the example I > find are for technologies that use PVC's. I had thought policy routing, > using the route-maps to change TOS bits, and using map classes (?) to > differentiate, but that severely limits the number of subnets I can > manage. > > I have found some docs on CCO, but the examples center around MAC and IP > precedence, not subnet. > > If you have reasonable expertise in QoS rate limiting, can you give me a > call regarding the options I have? > > - > end of question > > > remember - I have what I need. I am just curious about the nature of > questions and answers, and the clarification process required to provide > answers. Call this a seminar in the design process, maybe? > > I look forward to your sage replies. > > Chuck Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=44954&t=44952 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
VPN Design [7:44953]
Hi All, 1. Could anyone please tell me what needs to be done on the PIX firewall if the Cisco VPN concentrator is placed in such a way as the public interface is in the DMZ and private interface on the inside network. 2. This design of placing the Concentraor in the DMZ is a little complex as compared to keeping the Concentrator Parallel to Firewall, which has security risks.Also in the case of Parallel design concentrator public address has to be in the IP subnet as the Firewall and the External Router( If I am not wrong) can this be overcome by placing the Concentrator in the DMZ. 3. Does the firewall need some routing capability so that it can route Encrypted packets to go thru concentrator or can it be done by adding routes to the servers pointing to concentrator. 4. What will have to be done if there are some AS-400 servers and we are planning to use IPsec. Any help will be highly appreciated. Thanks, Neil Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=44953&t=44953 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Friday Follies of sorts - answering questions [7:44952]
I got to thinking about this after posting a question to a company internal mailing list. Based on some of the responses I received from other engineers, I wondered at what point one has enough information to answer a question. At what point asking for further clarification is essentially a sign that you don't know the answer and you are just stalling. Please be assured, I am not looking for "the answer". I have what I need, including some working configs, which I will post to the list if there is enough interest. I am more interested in the opinions of any number of you folks whose insight I appreciate. So.. here is the e-mail I sent internally. My question is - given what you see, do you have enough information to provide an answer? If not, why not? Start question: - have a complex QoS traffic shaping rate limiting question. internet--->source_router--->gigE_port--->LX_fiber_connection--->gigE _port>destination_router--->multiple subnets the customer wants to rate limit traffic across the fiber link based on destination ip subnet. I'm racking my brain trying to figure out how to do this on something other than a frame or an ATM link. Can't seem to find the appropriate examples on CCO. Question - can one configure different QoS rate limits for different destination subnets over the same physical interface? All the example I find are for technologies that use PVC's. I had thought policy routing, using the route-maps to change TOS bits, and using map classes (?) to differentiate, but that severely limits the number of subnets I can manage. I have found some docs on CCO, but the examples center around MAC and IP precedence, not subnet. If you have reasonable expertise in QoS rate limiting, can you give me a call regarding the options I have? - end of question remember - I have what I need. I am just curious about the nature of questions and answers, and the clarification process required to provide answers. Call this a seminar in the design process, maybe? I look forward to your sage replies. Chuck Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=44952&t=44952 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Bridge and switch [7:44649]
Ok. I found the source of the information. I would like to here your feedback on this. Course Technology * Thompson Learning, i-Net+ Guide to Internet Technologies, Jean Andrews, p. 443-445 "What is the difference between a bridge and a switch? The main difference is how they work. A bridge broadcasts data to one or more LANs while a switch knows which LAN a packet should be sent to." "In order to determine which network the packet should be sent to, the bridge creates and maintains a routing table that lists the computers on each LAN. A separate table is kept for each LAN. When a data packet reaches the bridge, the bridge looks at the packet's destination address, then searches the routing table for the originating LAN, looking for the destination address of the data packet. If it finds the address in this routing table, it drops the packet, knowing that the packet will have already reached its destination, because it was broadcast to all nodes on the LAN by the LAN's hub." "If the bridge did not find the destination address in the routing table for that LAN, it broadcasts the packet to all nodes on all LANs it is connected to except the LAN that the packet came from. Therefore, a bridge only makes a single decision, 'Is this packet destined for a node on its own network?' If the answer is 'No,', then the bridge simply broadcasts it to all other LANs." "A switch, on the other hand, deosn not work by sending broadcast messages. Just like bridges, switches also keep tables of all the MAC addresses of all the devices connected to the switch. They use these tables to determine which path to use when sending packets." "... Using the destination address in the header of the packet, the switch would refer to its tables and determine the LAN to which the packet is addressed. The switch then forwards the packet to the proper LAN, rather than broadcasting the packet to all the LANs." >From this thread, and from past experience, shall we assume that this is completely false? While i-Net plus only skims the surface of network technology, this book (like many others) seems to have a lot of errors. Another example would be the fact that the MAC tables are referred to as routing tables. That reminds me, what is the difference between a MAC table and a CAM table? Kevin Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=44951&t=44649 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: SYSLOG time stamp problem [7:44949]
My take is that the time stamp is correct but it is using UTC time which is 4 hour ahead of U.S. East Coast's Day Light Saving Time. ""Jeffrey Reed"" wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > I set up a syslog server and have a problem with the time stamp in a sys log > message. When a message is sent to my syslog server (using solar winds > syslog monitor) the date/time field is correct, but the time stamp with the > message itself is not, its 4 hours ahead. I show calendar and clock on the > 6500 MSFC and they are both set correctly. I have the system set up for EST > and daylight savings, so I think the syslog facility is not factoring in > those settings. Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=44950&t=44949 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
SYSLOG time stamp problem [7:44949]
I set up a syslog server and have a problem with the time stamp in a sys log message. When a message is sent to my syslog server (using solar winds syslog monitor) the date/time field is correct, but the time stamp with the message itself is not, its 4 hours ahead. I show calendar and clock on the 6500 MSFC and they are both set correctly. I have the system set up for EST and daylight savings, so I think the syslog facility is not factoring in those settings. How can I get the syslog message to display the correct time? Thanks!! Jeff Reed Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=44949&t=44949 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Private Addressing over Distances [7:44946]
Well...technically, 128.128.0.0 isn't a private address re: RFC1918. :-) But more to the point of your question, you can run whatever addresses you want over a private point-to-point connection. Craig At 09:38 AM 5/24/2002 -0400, you wrote: >Hello Everyone, > > I have a newbie question to ask. If, for example, I had a building in >one location (for say, the state of maryland) and then another building in >another location (for say, the state of virginia), would I be able to have >the locations directly connect to each other via phone lines and still be >able to use my private addressing? Or MUST I use an ISP and either do NAT >or use their external ip addresses? In other words, if I had a private >class B address of 128.128.0.0 and wanted to use that across a distance, >would the phone company have a direct link between my two buildings (is it >possible?) and allow my own addressing? (keep in mind in this example I am >not worried about connecting to the Internet, just my intranet, which is why >I do not think an ISP or NAT or external addressing should matter at all) > >Thank you everyone, i have learned so much on this message board. I am >taking my CCNP Routing June 7th and this question just was bothering me =) >I am a newbie to how the phone system interconnects networks, I only know my >end of the job hehe. Thanks again. > >Jarred >CCNA Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=44948&t=44946 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Doyle on Lab Rats [7:44611]
Thompson Alton wrote: > Your comments are false and you sound very ignorant. > I work with guys who have 20 years experience and to trouble shoot a problem > take months. This is because they don't know how the protocols work. How > much money can a company afford to lose when production is downloading for a > considerable amount of time? That's why as a mangers? we send Engineers on > training to learn about new and merging technologies. And that?s before you > can put or do any upgrades to the production network you must first try it > out in the lab. An ideal scneario would be to pass the CCNP with production network experience or at least with plenty of lab experience from home/office labs and the Cisco Academies that are popping up all over the country. Moving to the CCIE, the ideal is pretty much production network plus home/office labs. If you're not working with routers and switches that are actually used in a production network, passing the CCIE is not as meaningful as it would be for those who have daily hands-on experience with real design and troubleshooting. I've seen a goodly number of network administrators who are in positions of power, but who don't know even the basics of classful subnetting, VLSM, routing, L2 LAN switching, and VLANs. (Even some telco ATM techs who don't understand the difference between L2/LAN switches vs. VLAN switches, but that's a whole 'nother story in itself). These hands-on guys moved up from the ranks of network operating systems (NOSs), usually Novell, Unix and Windows. I respect their ability to handle a production network but it's a shame they won't listen to the young CCNAs and CCNPs who work for them. They (the old desktop/NOS guys who moved up to network management roles) couldn't even conceive of migrating their RIP networks to OSPF, but with the help of their CCNx/CCDx employees they could really do something good. It's the age-old problem of control and fear of the unknown. -- TT Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=44947&t=44611 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Private Addressing over Distances [7:44946]
Hello Everyone, I have a newbie question to ask. If, for example, I had a building in one location (for say, the state of maryland) and then another building in another location (for say, the state of virginia), would I be able to have the locations directly connect to each other via phone lines and still be able to use my private addressing? Or MUST I use an ISP and either do NAT or use their external ip addresses? In other words, if I had a private class B address of 128.128.0.0 and wanted to use that across a distance, would the phone company have a direct link between my two buildings (is it possible?) and allow my own addressing? (keep in mind in this example I am not worried about connecting to the Internet, just my intranet, which is why I do not think an ISP or NAT or external addressing should matter at all) Thank you everyone, i have learned so much on this message board. I am taking my CCNP Routing June 7th and this question just was bothering me =) I am a newbie to how the phone system interconnects networks, I only know my end of the job hehe. Thanks again. Jarred CCNA Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=44946&t=44946 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Solution to RIP default routing problem [7:44944]
>From what I've heard the behavior was changed in 12.1 in that the default is no longer automatically inected into rip. JR -- Johnny Routin The "Routin" One ""John Dorffler"" wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > Thanks for all the input on this. BTW, here is what I had on the router > trying to inject the default route: > > router rip > network 192.168.12.0 > network 192.168.23.0 > ! > ip classless > ip route 0.0.0.0 0.0.0.0 192.168.12.1 > > On a set of 2500 routers, this did not work as planned using 12.1.x. I tried > 12.1.15 and 12.1.13, both GD releases. When I backed down to 12.0.20, it > worked as expected. Strangely, this config worked on my 4000 routers using > 12.1.13. > > I don't know whether to chalk this up as a bug in the 12.1 code for the 2500 > series (I was using the IP only image in each case) or that Cisco is > starting to phase this "feature" out. In my mind it is obnoxious to assume > that you want to automatically inject the default route into RIP (or any IGP > for that matter), so I hope that Cisco is indeed removing it. > > Thank you, > John Dorffler > CCIE #6677 Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=44945&t=44944 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Solution to RIP default routing problem [7:44944]
Thanks for all the input on this. BTW, here is what I had on the router trying to inject the default route: router rip network 192.168.12.0 network 192.168.23.0 ! ip classless ip route 0.0.0.0 0.0.0.0 192.168.12.1 On a set of 2500 routers, this did not work as planned using 12.1.x. I tried 12.1.15 and 12.1.13, both GD releases. When I backed down to 12.0.20, it worked as expected. Strangely, this config worked on my 4000 routers using 12.1.13. I don't know whether to chalk this up as a bug in the 12.1 code for the 2500 series (I was using the IP only image in each case) or that Cisco is starting to phase this "feature" out. In my mind it is obnoxious to assume that you want to automatically inject the default route into RIP (or any IGP for that matter), so I hope that Cisco is indeed removing it. Thank you, John Dorffler CCIE #6677 Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=44944&t=44944 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Token ring Question. [7:44805]
A router is being used as a transparent bridge between a Token Ring network and an Ethernet network. Host X on the Token ring sends a packet to Host Y on the Ethernet. What would the source MAC address on the Ethernet Host ? does anyone know the answer? thank you. Cj - Original Message - From: "Reza Sharifi" To: Sent: Thursday, May 23, 2002 5:30 PM Subject: Re: Token ring Question. [7:44805] > Ivan, > > Take a look at the subject (CCIE written question) > that Dennis responded to on May 20. > > He is a great source for this group. > > Thanks > Reza > > > ""Ivan"" wrote in message > [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > > Hi all, > > > > I have a interest question, doesn't any one know the answer? > > > > A router is being used as a translation bridge between a Token Ring > network > > and an Ethernet network. Host X on the Token ring sends a packet to Host Y > > on the Ethernet. The soursce MAC address of the packet is 400.a089.0002. > How > > would the MAC address be interpreted in an Ethernet environment? > > > > does anyone know the answer? thank you. > > > > Ivan Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=44943&t=44805 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
NAT References [7:44942]
Hi guys. Regarding the NAT, could somebody recommend which book is good for reference beside Cisco Documentation. Thank in advance. Syam _ Get your FREE download of MSN Explorer at http://explorer.msn.com/intl.asp. Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=44942&t=44942 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Provider Backbone Engineering and CCIEs [7:44876]
""Ron Trunk"" wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > Howard and dre, > First of all, thanks for the excellent thread! You've given me a great deal > kids (ha!), I'm going to go over it in detail. Thanks for all the links > too! It's helpful to know what the best things to read are. Very cool. I know exactly how you feel, so any feedback would be highly appreciated. > At the risk of extended an already belabored subject, I did want to comment > Cisco router to solve any problem, even those that shouldn't be solved with > a router! Exactly the reason why the CCIE: Design didn't pan out, and why the CND/CID course material is a wee bit out-of-date. Real world experience is impossible to test on any type of standardized exam. There is no "shortcut" class or paper written to teach you what you need to know for the real-world. > You guys have obviously great expertise in a relatively specialized field. The "Internet" is considered a specialized field in networking? I never thought of it that way before. Please explain what you mean. I think that a CCIE: R&S is more specialized. No knowledge of SONET, per se (never touched an ADM or DCS). No real knowledge of ATM (never been inside an ATM switch). No real knowledge of anything except R&S. That's specialized! > Should everyone have to understand all these issues before they can rightly > call themselves a network engineer? Well plenty of NT administrators call themselves network engineers or network administrators. I think you can call yourself anything you want. It's not like you are claiming to be "Dr. Ron" with no Ph.D. However, if I were a hiring manager and needed this level of expertise for a TBD requisition for employment at my business, you can bet I'm not going to "just hire up a CCIE". Something to think about for a lot of people on this list who think CCIE is the Holy Grail. CCIE is *not* the Holy Grail. It's just one path to get to it. One path out of maybe thousands. But a highly respected one by some people, much like a paladin journeying against a band of ogres (the Shrek kind, not the mean kind). > How many SP jobs are there at that > level, especially in today's market? You'll find somewhere in our posts that there is so much need for these types of people, it is like an unstoppable force (in my mind). How else are we supposed to build this thing (and even keep it from crashing constantly) that allows us to have these discussions right now? How many job postings are there on hotjobs or dice right now? Who cares about that?! Move to a third-world country and connect them to the Internet! There's a job for you! > I would love to be able to specialize > like you have, but the realities of my job require me to be conversant in > everything Cisco sells. To use Howard's medical analogy, while I want to > master neurosurgery, I work in the ER and have to deal with everything from > heart attacks to broken bones to earwax. You can "specialize" like we have! Are you assuming that my job doesn't require me to be conversant in everything Cisco sells? And I seriously doubt you are as equally conversant in everything Cisco sells as some people out there. Cisco sells a lot of software in addition to their large set of hardware gear that ranges from R&S gear to IP Phones to ATM switches to DSLAM's to CDN products. And Cisco is not the only network equipment vendor. And they aren't the only software vendor specializing in networked applications. I work in the ER and do neurosurgery all the in same hour sometimes, to use your frame of reference. Networking is a *dynamic* field, filled with almost supernatural levels of constantly changing equations. It's best to be able to wear about a dozen different hats everyday. You have to pretend you're an end-user, a sys admin, a programmer, a content provider, a telco switch tech, a routing person, a switching person, a project manager, and a regular human in the same 5 minutes sometimes. That's what's so great about it, IMO. > To push the medical analogy just a bit farther, I think having the CCIE is > like graduating from medical school. You have mastered a body of knowledge > and have earned the right to put letters after your name, but no one is > going to give you a scalpel until you have completed a lengthy internship. > That's where the experience comes in. It's important to know where to cut. > It is even more important to know when not to cut. I'm not a medical student, so I can't say. I'm not going to bother to try to do analogies. There's a really long and detailed thread on NANOG-L right now discussing this exact same topic. It's seems like they really aren't getting anywhere with it. I think the exciting thing about the networking field is that it can't be described. It's so new, it's so exciting, and it's so constantly evolving and changing. Just so people don't get the wrong idea about me and where I come from, I want you guy
CCIE Wanted. [7:44940]
> Hi. > > Re-posting this mail as the number of responses were a few. Forward this > mail to your friends. > > Network Solutions Ltd, a Bangalore based company is looking for CCIEs. > Visit www.netsol.co.in for more info on the company. We are among the Top > Network Integrators in the Country moving towards the No.1 Spot. > > The Positions will be out of Bangalore, Mumbai and New Delhi. > > Interested Candidates willing to relocate to India may apply. > > Compensation will be on par/better-than with what the industry in India > Pays. We pay in INR only. > > Thanks. > Sunil Satyanathan Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=44940&t=44940 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Virus Attack and how to tackle it? [7:44936]
You look this page from Cisco. http://www.cisco.com/warp/public/63/nbar_acl_codered.shtml I hope this help. -- -- Alfredo Pulido [EMAIL PROTECTED] CCDA Dept. Sistemas, IdecNet S.A. Juan XXIII 44 // E-35004 Las Palmas de Gran Canaria, Las Palmas // SPAIN Tel: +34 828 111 000 Fax: +34 828 111 112 http://www.idecnet.com/ -- ""a. ahmad"" escribis en el mensaje [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > Dear Members, > > 1-We are getting Virus attack message on our proxy(Squid)Machine not only > from our own IP Pool but also from outside, Please guide how to tackle it as > it is constantly chocking our Bandwidth. i.e. one of the virus attack > message we are getting on our proxy(squid) machine is as under:- > > 106226.976 5 202.192.204.130 TCP_Miss/503 1210 Get > http://www/_mem_bin/..%255c../..%255../..%255../winnt/system32/cmd.exe? - > DIRECT/www - > > 106228.156 6 202.192.204.130 TCP_Miss/503 1266 Get > http://www/msadc/..%255c../..%255c../..%255c../..%c1%1c../..%c1%1c../..%c1%1 c../winnt/system32/cmd.exe? - DIRECT/www - > > 106229.324 3 202.192.204.130 TCP_Miss/503 1170 Get > http://www/Scripts/..%c1%1c../winnt/system32/cmd.exe? - DIRECT/www - > > 106230.625 23 202.192.204.130 TCP_Miss/503 1170 Get > http://www/Scripts/..%c0%2f../winnt/system32/cmd.exe? - DIRECT/www - > > 106231.841 8 202.192.204.130 TCP_Miss/503 1170 Get > http://www/Scripts/..%c0%af../winnt/system32/cmd.exe? - DIRECT/www - > > ...etc etc > > 2- we want to trace that which IP's are utilizing our maximum bandwidtth so > that we can limit that trafiic accordingly in order to get Maximum efficiency? > > Thank you in advance! > Ahmad Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=44939&t=44936 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Virus Attack and how to tackle it? [7:44936]
Hi, This is a trace of Nimda and code Red wormFirst thing you can do is Run a Nimda/code Red scanner in your network and then Apply IIS patch for all the affected Microsoft Server.Also you can secure your Network perimeter by configuring NBAR on cisco routers or if you have a content switch you can try filtering Nimda on that...or if you have an IDS,you can configure shunning the source. Kind Regards /Thangavel 186K Reading,Brkshire Direct No -0118 9064259 Mobile No -07796292416 Post code: RG16LH www.186k.co.uk -- The greatest glory in living lies not in never falling, but in rising every time we fall ." -- Nelson Mandela "a. ahmad" cc: Sent by: Fax to: nobody@groupsSubject: Virus Attack and how to tackle it? [7:44936] tudy.com 24/05/2002 08:16 Please respond to "a. ahmad" Dear Members, 1-We are getting Virus attack message on our proxy(Squid)Machine not only from our own IP Pool but also from outside, Please guide how to tackle it as it is constantly chocking our Bandwidth. i.e. one of the virus attack message we are getting on our proxy(squid) machine is as under:- 106226.976 5 202.192.204.130 TCP_Miss/503 1210 Get http://www/_mem_bin/..%255c../..%255../..%255../winnt/system32/cmd.exe? - DIRECT/www - 106228.156 6 202.192.204.130 TCP_Miss/503 1266 Get http://www/msadc/..%255c../..%255c../..%255c../..%c1%1c../..%c1%1c../..%c1%1c../winnt/system32/cmd.exe? - DIRECT/www - 106229.324 3 202.192.204.130 TCP_Miss/503 1170 Get http://www/Scripts/..%c1%1c../winnt/system32/cmd.exe? - DIRECT/www - 106230.625 23 202.192.204.130 TCP_Miss/503 1170 Get http://www/Scripts/..%c0%2f../winnt/system32/cmd.exe? - DIRECT/www - 106231.841 8 202.192.204.130 TCP_Miss/503 1170 Get http://www/Scripts/..%c0%af../winnt/system32/cmd.exe? - DIRECT/www - ...etc etc 2- we want to trace that which IP's are utilizing our maximum bandwidtth so that we can limit that trafiic accordingly in order to get Maximum efficiency? Thank you in advance! Ahmad ** This e-mail is from 186k Ltd and is intended only for the addressee named above. As this e-mail may contain confidential or priveleged information, if you are not the named addressee or the person responsible for delivering the message to the named addressee, please advise the sender by return e-mail. The contents should not be disclosed to any other person nor copies taken. 186k Ltd is a Lattice Group company, registered in England & Wales No. 3751494 Registered Office 130 Jermyn Street London SW1Y 4UR ** Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=44938&t=44936 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: PIX and MS Active Directory [7:44797]
Thanks Brian, just in case any ones else is interested here's a useful link for the microsoft stuff http://www.microsoft.com/technet/treeview/default.asp?url=/TechNet/ittasks/t asks/adrepfir.asp Cheers Pat -- email me on : [EMAIL PROTECTED] ""Brian Hill"" wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > John, > > SMTP only works if you have two sites in two different domains. In addition, > you have to have an exchange server with KMS and a CA to encrypt. Pat, I > would suggest creating a tunnel from pix to pix and running the replication > through there. AD uses RPC, which doesn't translate due to the fact that it > uses random port numbers after the initial session establishment. > > Brian Hill > CCNP, CCDP, MCSE 2000 (Charter Member),MCSE+I (NT4.0), > MCSA (Charter Member), MCP+I, MCP(21), Inet+, Net+, A+ > Lead Technology Architect, TechTrain > Author: Cisco, The Complete Reference > http://www.alfageek.com Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=44937&t=44797 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Virus Attack and how to tackle it? [7:44936]
Dear Members, 1-We are getting Virus attack message on our proxy(Squid)Machine not only from our own IP Pool but also from outside, Please guide how to tackle it as it is constantly chocking our Bandwidth. i.e. one of the virus attack message we are getting on our proxy(squid) machine is as under:- 106226.976 5 202.192.204.130 TCP_Miss/503 1210 Get http://www/_mem_bin/..%255c../..%255../..%255../winnt/system32/cmd.exe? - DIRECT/www - 106228.156 6 202.192.204.130 TCP_Miss/503 1266 Get http://www/msadc/..%255c../..%255c../..%255c../..%c1%1c../..%c1%1c../..%c1%1c../winnt/system32/cmd.exe? - DIRECT/www - 106229.324 3 202.192.204.130 TCP_Miss/503 1170 Get http://www/Scripts/..%c1%1c../winnt/system32/cmd.exe? - DIRECT/www - 106230.625 23 202.192.204.130 TCP_Miss/503 1170 Get http://www/Scripts/..%c0%2f../winnt/system32/cmd.exe? - DIRECT/www - 106231.841 8 202.192.204.130 TCP_Miss/503 1170 Get http://www/Scripts/..%c0%af../winnt/system32/cmd.exe? - DIRECT/www - ...etc etc 2- we want to trace that which IP's are utilizing our maximum bandwidtth so that we can limit that trafiic accordingly in order to get Maximum efficiency? Thank you in advance! Ahmad Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=44936&t=44936 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]