Re: Query on Site to Site VPN [7:46712]
Not necessarily, the following link explains how to set up a lan to lan tunnel using pixes where one is recieving an addres via DHCP. http://www.cisco.com/warp/customer/110/dynamicpix.html - Original Message - From: "Steven A. Ridder" To: Sent: Sunday, June 16, 2002 6:51 PM Subject: Re: Query on Site to Site VPN [7:46712] > You do need two static IP's in order to set up the crypto maps. > > -- > > RFC 1149 Compliant. > > > > ""Anil Kumar"" wrote in message > [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > > Hi All, > > > > I have an office which is connected to internet through an ISDN line with > a > > router.PIX firewall has been installed and connected in the same office. > > > > I have another office which is having a lease line to internet connected > > with PIX. The standard config has been followed on both the PIX > firewalls. > > > > Now if i need to create a site-to-site VPN tunnel between these PIX, will > it > > work, since once side i am getting a dynamic IP address from the ISP(ISDN > > Line). Other side since being a Lease Line, i have obtained static IP > address. > > > > Is it nessasary that i need to have both the side static Ip address. > > > > Can some one help on this.. > > > > > > > > Thanks in Advance.. > > > > Regards..Anil > > > > > > > > > > > > - > > Do You Yahoo!? > > Sign-up for Video Highlights of 2002 FIFA World Cup ** This email and any files transmitted with it are confidential and intended solely for the use of the individual or entity to whom they are addressed. If you have received this email in error please notify the system manager. This footnote also confirms that this email message has been swept for the presence of computer viruses. For more information contact [EMAIL PROTECTED] phone + 353 1 4093000 fax + 353 1 4093001 ** Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=46724&t=46712 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
IDS on windows 2000 [7:46723]
Hi, I cam across a guide for installing Snort on windows 2000 step-by-step, I will gladly FTP it to you. It's a nice powerpoint presentation. Does the group have an FTP site I could put this presentation on? This is a step-by-step guide for installing Snort on an IIS5/2000 box. If you have 2000, you could install VM ware and run, Linux, XP, Free BSD, .NET server, 2000 Server, Novell, or any other OS you can imagine. Or all of them at the same time. Brian -Original Message- From: Maccubbin, Duncan [mailto:[EMAIL PROTECTED]] Sent: Saturday, June 15, 2002 5:49 PM To: [EMAIL PROTECTED] Subject: RE: All this talk about IDS [7:46690] As for #3 all the info you need is at www.snort.org. -Original Message- From: Maximus To: [EMAIL PROTECTED] Sent: 6/15/02 12:16 PM Subject: All this talk about IDS [7:46690] I've decided to take the plunge. 1.Has anyone ever successfully installed Snort on a 2000 box? 2.I downloaded Snort 1.8.6 and WinPcap. Dunno why I pulled down Winpcap, but I did. 3.Either way I'm just a newbie to Snort(IDS) and can't find a down and dirty guide to get started... Any help would be appreciated. Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=46723&t=46723 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Not on;y is TR going... [7:46391]
I agree. Eventually catOS will go away. IOS will be the unified CLI for both routing and switching platforms. It also make sense for cisco since it will help reduce the cost of developments and supports. -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Michael L. Williams Sent: Sunday, June 16, 2002 10:42 AM To: [EMAIL PROTECTED] Subject: Re: Not on;y is TR going... [7:46391] Actually, if you're running Native IOS on your 6500s (which many HUGE corporations are now doing because of how redundancy is handled and besides it's like having a 280+port router =), then there is really a minimal differents in the 6500 and 3550 commands. They're both IOS, so no diff.. As far as Content Switching Module. I gotta say. who cares? Knowing L2/L3 switching is the most important in setting up a network and in the lab not "Layer 7" switching.. (although it does appear that Content Networking is covered as part of the CCIE Communications & Services) Not trying to dog you out or anything, but I think the 3550 will make an excellent low-cost replacement for 5000s in the CCIE lab (instead of the extra cost of throwing in a 6509 or something... that's a bit overkill for a lab rack). And a 3550 will FINALLY force people to start using IOS commands for L2 switching configuration and hopefully CatOS will completely die as a result of this change in the lab. (please no flames from the CatOS proponents... ) Mike W. wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > Yo Mark! Look at my retort to Larry. I was talking not only about the > IDS module but the Content Switching Module as well! > > It wasn't as if I was talking about the PIX and VPNs dude. I was talking > about modules and the replacement to the 5xxx switch. > > Got the point? I wasn't worried about PIX 506 commands vs PIX 535s but > rather 65xx commands vs the 3550. > > Theo Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=46722&t=46391 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: CBAC question [7:46713]
is it smtp or esmtp, as the latter doesn't work with cbac -- RFC 1149 Compliant. ""Marcin Michalski"" wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > Hi > I have 3 interfaces and router 2651 with FW IOS. > I want to use CBAC in my network. > My configuration looks like : > > LAN-eth0Router---s0---Internet > eth1 > | > DMZ > server x.x.x.x (SMTP, POP3) > > ip inspect name OUTBOUND smtp alert on audit-trail off > ip inspect name OUTBOUND ftp alert on audit-trail off > ip inspect name OUTBOUND http alert off audit-trail off > ip inspect name OUTBOUND sqlnet alert on audit-trail off > ip inspect name OUTBOUND streamworks alert on audit-trail off > ip inspect name OUTBOUND h323 alert on audit-trail off > ip inspect name OUTBOUND realaudio alert on audit-trail off > ip inspect name OUTBOUND tcp alert off audit-trail off > ip inspect name OUTBOUND udp alert off audit-trail off > ip inspect name INBOUND smtp alert off audit-trail off > ip inspect name INBOUND tcp alert off audit-trail off > ip inspect name INBOUND udp alert off audit-trail off > > For eth0 ( ip access-grouop 101 in) > access-list 101 permit ip 192.168.1.0 0.0.0.255 any > access-list 101 deny ip any any log > > For ser0 (ip access-group 102 in) > access-list 102 permit tcp any host x.x.x.x eq smtp log > access-list 102 permit tcp any host x.x.x.x eq pop3 log > access-list 102 permit tcp any host x.x.x.x eq 22 log > access-list 102 permit icmp any any > access-list 102 deny ip any any log > > For eth1(ip access-group 103 in) > access-list 103 permit icmp any any > access-list 103 permit tcp host x.x.x.x any eq smtp log > access-list 103 permit udp host x.x.x.x any eq domain log > access-list 103 deny ip any any log > > I have linux server in DMZ with SMTP and POP3. The problem is with SMTP ( > from LAN or from Internet) i can't connect to SMTP server. I have always > timeout. > In ip inspect session command , I watch the open connection.But it does > work. > I don't know, maybe there is a feature in CBAC and sendmail :) > Thanks for any help > Regards > MM Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=46720&t=46713 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Query on Site to Site VPN [7:46712]
You do need two static IP's in order to set up the crypto maps. -- RFC 1149 Compliant. ""Anil Kumar"" wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > Hi All, > > I have an office which is connected to internet through an ISDN line with a > router.PIX firewall has been installed and connected in the same office. > > I have another office which is having a lease line to internet connected > with PIX. The standard config has been followed on both the PIX firewalls. > > Now if i need to create a site-to-site VPN tunnel between these PIX, will it > work, since once side i am getting a dynamic IP address from the ISP(ISDN > Line). Other side since being a Lease Line, i have obtained static IP address. > > Is it nessasary that i need to have both the side static Ip address. > > Can some one help on this.. > > > > Thanks in Advance.. > > Regards..Anil > > > > > > - > Do You Yahoo!? > Sign-up for Video Highlights of 2002 FIFA World Cup Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=46721&t=46712 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Cat 5000 upgrade [7:46708]
20MB D total and 4MB F (4D on the supervisor itself, then a 16MB DRAM module for a total of 20MB of DRAM) thanks, -Brad Ellis CCIE#5796 (R&S / Security) Network Learning Inc [EMAIL PROTECTED] www.optsys.net (Cisco hardware) ""Omer Ehsan Dar"" wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > Hi all, > What is the max ram and flash you can have on a cat 5000 with Sup 1. > Any input?? > Thanks > Omer Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=46718&t=46708 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Not on;y is TR going... [7:46391]
Actually, if you're running Native IOS on your 6500s (which many HUGE corporations are now doing because of how redundancy is handled and besides it's like having a 280+port router =), then there is really a minimal differents in the 6500 and 3550 commands. They're both IOS, so no diff.. As far as Content Switching Module. I gotta say. who cares? Knowing L2/L3 switching is the most important in setting up a network and in the lab not "Layer 7" switching.. (although it does appear that Content Networking is covered as part of the CCIE Communications & Services) Not trying to dog you out or anything, but I think the 3550 will make an excellent low-cost replacement for 5000s in the CCIE lab (instead of the extra cost of throwing in a 6509 or something... that's a bit overkill for a lab rack). And a 3550 will FINALLY force people to start using IOS commands for L2 switching configuration and hopefully CatOS will completely die as a result of this change in the lab. (please no flames from the CatOS proponents... ) Mike W. wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > Yo Mark! Look at my retort to Larry. I was talking not only about the > IDS module but the Content Switching Module as well! > > It wasn't as if I was talking about the PIX and VPNs dude. I was talking > about modules and the replacement to the 5xxx switch. > > Got the point? I wasn't worried about PIX 506 commands vs PIX 535s but > rather 65xx commands vs the 3550. > > Theo Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=46719&t=46391 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
How to clear a deleted file on 1720 [7:46717]
Hi, I tried the squeeze command put it is not supported. I am running 122-2.XJ. Does any one know how to clear a deleted file on a 1720. Thanks. Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=46717&t=46717 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Cisoc 3550 SMI [7:46704]
To answer your questions: 1. Yes, 2. Yes, your supposed to...for legality of license. 3. And AFAIK, Yes. -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] Sent: Sunday, June 16, 2002 12:31 AM To: [EMAIL PROTECTED] Subject: Cisoc 3550 SMI [7:46704] Hi All We have a few of these at work in addition to a few Cisco 3550 EMI's. Can we upgrade the SMI to EMI just via the CCO? Do we need to pay for it? I have the option of downloading the Software but im hesitant to at the moment. Is the hardware between the two units identical? Cheers Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=46716&t=46704 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Advices for CCNP exams preparation [7:46714]
For any one who wants to contact me out of the list, this is my email address : [EMAIL PROTECTED] and my cel phone number is 002377578872 Thanks in advance Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=46715&t=46714 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Advices for CCNP exams preparation [7:46714]
Hi all, i'm a new CCNA(December 2001) preparing CCNP exam . I have the CBT (BSCN, BCMSN, BCRAN, CIT) and all the corresponding SYBEXs and also the complete Transcender. My problem is that i do not have any lab to test my skills (more labs on the new BSCN exam 640-603 for instance). Are my resources enough to prepare my CCNP ? if not where can i get labs at the lowest prices ? Please, i need help and advices. Best Regards Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=46714&t=46714 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
CBAC question [7:46713]
Hi I have 3 interfaces and router 2651 with FW IOS. I want to use CBAC in my network. My configuration looks like : LAN-eth0Router---s0---Internet eth1 | DMZ server x.x.x.x (SMTP, POP3) ip inspect name OUTBOUND smtp alert on audit-trail off ip inspect name OUTBOUND ftp alert on audit-trail off ip inspect name OUTBOUND http alert off audit-trail off ip inspect name OUTBOUND sqlnet alert on audit-trail off ip inspect name OUTBOUND streamworks alert on audit-trail off ip inspect name OUTBOUND h323 alert on audit-trail off ip inspect name OUTBOUND realaudio alert on audit-trail off ip inspect name OUTBOUND tcp alert off audit-trail off ip inspect name OUTBOUND udp alert off audit-trail off ip inspect name INBOUND smtp alert off audit-trail off ip inspect name INBOUND tcp alert off audit-trail off ip inspect name INBOUND udp alert off audit-trail off For eth0 ( ip access-grouop 101 in) access-list 101 permit ip 192.168.1.0 0.0.0.255 any access-list 101 deny ip any any log For ser0 (ip access-group 102 in) access-list 102 permit tcp any host x.x.x.x eq smtp log access-list 102 permit tcp any host x.x.x.x eq pop3 log access-list 102 permit tcp any host x.x.x.x eq 22 log access-list 102 permit icmp any any access-list 102 deny ip any any log For eth1(ip access-group 103 in) access-list 103 permit icmp any any access-list 103 permit tcp host x.x.x.x any eq smtp log access-list 103 permit udp host x.x.x.x any eq domain log access-list 103 deny ip any any log I have linux server in DMZ with SMTP and POP3. The problem is with SMTP ( from LAN or from Internet) i can't connect to SMTP server. I have always timeout. In ip inspect session command , I watch the open connection.But it does work. I don't know, maybe there is a feature in CBAC and sendmail :) Thanks for any help Regards MM Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=46713&t=46713 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Query on Site to Site VPN [7:46712]
Hi All, I have an office which is connected to internet through an ISDN line with a router.PIX firewall has been installed and connected in the same office. I have another office which is having a lease line to internet connected with PIX. The standard config has been followed on both the PIX firewalls. Now if i need to create a site-to-site VPN tunnel between these PIX, will it work, since once side i am getting a dynamic IP address from the ISP(ISDN Line). Other side since being a Lease Line, i have obtained static IP address. Is it nessasary that i need to have both the side static Ip address. Can some one help on this.. Thanks in Advance.. Regards..Anil - Do You Yahoo!? Sign-up for Video Highlights of 2002 FIFA World Cup Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=46712&t=46712 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: how to change MTU? [7:46685]
You figured it out. Thanks! I was using the "IP MTU x" command, and that wasn't working. The "mtu x" command did it. Do you know why ip mtu dosen't work? ""Dave Law"" wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > Steven, > > What syntax are you using to change it? There are two commands for changing > the mtu size. One is "mtu x" and the other is "ip mtu x" which will not > change the size automatically under physical mtu. > > -Dave > > Below is some additional info. regarding this. > > http://www.cisco.com/univercd/cc/td/doc/product/atm/c8540/12_0/13_19/cmd_ref /i.htm#xtocid13 Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=46711&t=46685 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
PIX and DSL [7:46710]
Dear All, I have the following Scenario: DSL router connected to the ISP, behind this router I will install 515E PIX firewall, Now without the PIX, we have to put a username and password inorder to access the web, how can we do the same after putting the PIX, I mean what is the needed configuration that enables the PIX to bypass or send by itself the internet username and password?? PLease advise, Mamoon Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=46710&t=46710 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: BGP w/ no synchronization [7:46707]
Hunt, Read this link and think about your scenario for a moment. "What is the problem to be solved?" http://www.cisco.com/warp/public/459/bgpfaq_5816.shtml#12 Then read this link. The emphasis here is that although RTA, RTB, RTC, RTD, and RTE are in the same confed AS1, RTB and RTC, and RTD and RTE, are in separate sub-ASs within the AS. What dies that mean? If RTB and RTD are propagating iBGP route information to RTC and RTE respectively then, the only way for these routes to be sync'd is by NLRI(through an IGP), route-reflectors or by using the "cisco-specific knob - no sync". By, using the "no sync" you're allowing BGP to overlook the native requirements of the protocol, which will install the route into the RIB. http://www.cisco.com/warp/public/459/16.html#A23.0 You might want to also look at rfc1965 which laid the foundation for the use of confederation within BGP, however this is superceded by rfc3065. Of course there are a number of other options that could be used to achieve full mesh within an AS. Some of those options include rfc1966, and rfc1863 http://www.ietf.org/rfc/rfc1863.txt http://www.ietf.org/rfc/rfc1966.txt HTH Nigel - Original Message - From: "Hunt Lee" To: Sent: Sunday, June 16, 2002 6:42 AM Subject: BGP w/ no synchronization [7:46707] > Okay folks, starting off some late nite studying and just noticed something > weird. Got a Confederation setup like: > > 150.150.150.0/24---RTA ---RTB ---RTD---RTF > | | > RTC RTE > > RTA, B, C, D, & E are in a Confederation called AS 1, in which:- > > RTA is sub-AS 65530 > RTB & RTC are both in sub-AS 65531 > RTD & RTE are both in sub-AS 65532 > > RTF is in AS 2 > > RTB, C, D & E are running OSPF as IGP. And OSPF is being redistributed into > BGP at RTB. > > The network 150.150.150.0/24 is being advertised into BGP by BGP "network" > command on RTA. > > Ok, here is the thing. The 150.150.150.0/24 network is being seen by RTA, > RTB, RTD, & RTF. I could ping 150.150.150.1 from these four routers. > However, it can't be seen by RTC & RTE (shown as follows). But when I put > "no synchronization" on the middle four routers (RTB, RTC, RTD, & RTE), then > everything becomes fine again...I thought since I used IGP (OSPF), and > if the router can see the EBGP Next-Hop (193.16.0.2) in their routing table, > then the synch. rule shouldn't apply anymore. > > Am I missing something here? > > RouterC#sh ip bgp > BGP table version is 4, local router ID is 172.16.0.2 > Status codes: s suppressed, d damped, h history, * valid, > best, i - > internal > Origin codes: i - IGP, e - EGP, ? - incomplete > >Network Next HopMetric LocPrf Weight Path > * i150.150.150.0/24 193.16.0.2 0100 0 (65530) i > i172.16.0.0/30172.16.0.1 0100 0 ? > * i172.16.0.12/30 172.16.0.18 30100 0 ? > *>i172.16.0.16/30 172.16.0.1 0100 0 ? > *>i193.16.0.0/30172.16.0.1 0100 0 ? > * i193.16.0.8/30172.16.0.18 0100 0 (65532) i > RouterC#sh ip route > Codes: C - connected, S - static, I - IGRP, R - RIP, M - mobile, B - BGP >D - EIGRP, EX - EIGRP external, O - OSPF, IA - OSPF inter area >N1 - OSPF NSSA external type 1, N2 - OSPF NSSA external type 2 >E1 - OSPF external type 1, E2 - OSPF external type 2, E - EGP >i - IS-IS, L1 - IS-IS level-1, L2 - IS-IS level-2, * - candidate > default >U - per-user static route, o - ODR > > Gateway of last resort is not set > > 172.16.0.0/30 is subnetted, 3 subnets > O 172.16.0.16 [110/128] via 172.16.0.1, 01:35:04, Serial1 > O 172.16.0.12 [110/192] via 172.16.0.1, 01:35:04, Serial1 > C 172.16.0.0 is directly connected, Serial1 > 193.16.0.0/30 is subnetted, 1 subnets > O 193.16.0.0 [110/74] via 172.16.0.1, 01:35:04, Serial1 > RouterC# > RouterC#ping 193.16.0.2 > > Type escape sequence to abort. > Sending 5, 100-byte ICMP Echos to 193.16.0.2, timeout is 2 seconds: > ! > Success rate is 100 percent (5/5), round-trip min/avg/max = 28/32/36 ms > RouterC# > > > Thanks all! > > Hunt Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=46709&t=46707 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Cat 5000 upgrade [7:46708]
Hi all, What is the max ram and flash you can have on a cat 5000 with Sup 1. Any input?? Thanks Omer Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=46708&t=46708 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
BGP w/ no synchronization [7:46707]
Okay folks, starting off some late nite studying and just noticed something weird. Got a Confederation setup like: 150.150.150.0/24---RTA ---RTB ---RTD---RTF | | RTC RTE RTA, B, C, D, & E are in a Confederation called AS 1, in which:- RTA is sub-AS 65530 RTB & RTC are both in sub-AS 65531 RTD & RTE are both in sub-AS 65532 RTF is in AS 2 RTB, C, D & E are running OSPF as IGP. And OSPF is being redistributed into BGP at RTB. The network 150.150.150.0/24 is being advertised into BGP by BGP "network" command on RTA. Ok, here is the thing. The 150.150.150.0/24 network is being seen by RTA, RTB, RTD, & RTF. I could ping 150.150.150.1 from these four routers. However, it can't be seen by RTC & RTE (shown as follows). But when I put "no synchronization" on the middle four routers (RTB, RTC, RTD, & RTE), then everything becomes fine again...I thought since I used IGP (OSPF), and if the router can see the EBGP Next-Hop (193.16.0.2) in their routing table, then the synch. rule shouldn't apply anymore. Am I missing something here? RouterC#sh ip bgp BGP table version is 4, local router ID is 172.16.0.2 Status codes: s suppressed, d damped, h history, * valid, > best, i - internal Origin codes: i - IGP, e - EGP, ? - incomplete Network Next HopMetric LocPrf Weight Path * i150.150.150.0/24 193.16.0.2 0100 0 (65530) i i172.16.0.0/30172.16.0.1 0100 0 ? * i172.16.0.12/30 172.16.0.18 30100 0 ? *>i172.16.0.16/30 172.16.0.1 0100 0 ? *>i193.16.0.0/30172.16.0.1 0100 0 ? * i193.16.0.8/30172.16.0.18 0100 0 (65532) i RouterC#sh ip route Codes: C - connected, S - static, I - IGRP, R - RIP, M - mobile, B - BGP D - EIGRP, EX - EIGRP external, O - OSPF, IA - OSPF inter area N1 - OSPF NSSA external type 1, N2 - OSPF NSSA external type 2 E1 - OSPF external type 1, E2 - OSPF external type 2, E - EGP i - IS-IS, L1 - IS-IS level-1, L2 - IS-IS level-2, * - candidate default U - per-user static route, o - ODR Gateway of last resort is not set 172.16.0.0/30 is subnetted, 3 subnets O 172.16.0.16 [110/128] via 172.16.0.1, 01:35:04, Serial1 O 172.16.0.12 [110/192] via 172.16.0.1, 01:35:04, Serial1 C 172.16.0.0 is directly connected, Serial1 193.16.0.0/30 is subnetted, 1 subnets O 193.16.0.0 [110/74] via 172.16.0.1, 01:35:04, Serial1 RouterC# RouterC#ping 193.16.0.2 Type escape sequence to abort. Sending 5, 100-byte ICMP Echos to 193.16.0.2, timeout is 2 seconds: ! Success rate is 100 percent (5/5), round-trip min/avg/max = 28/32/36 ms RouterC# Thanks all! Hunt Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=46707&t=46707 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: CCIE Written [7:46567]
Just passed mine too today. Crammed 1 week for it with token ring/bridging paper and your basic white paper on various subjects on CCO account. This test was way over due for me twoo years ago. What was interested for me was that as much as you worked or study about something, there are always questions that they ask you about something that you've never seen before. Just use good ole process of elimination. Onward with the lab!!! Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=46706&t=46567 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]