Re: BGP Question [7:47646]

[Georg Pauwen]

Hi Annu,

I could be totally off here, but shouldn't you also advertise network 175.10 
in the IGRP process on R2 ?

r2#
router igrp 100
network 192.168.1.0
network 175.10.0.0

Just a thought.

Georg


>From: David Luu 
>Reply-To: David Luu 
>To: Annu Roopa , [EMAIL PROTECTED],
>[EMAIL PROTECTED]
>Subject: Re: BGP Question
>Date: Thu, 27 Jun 2002 17:28:45 -0700
>
>configs seem right, unless i overlooked something...some people have 
>reported that it works on some IOS, what IOS are you using? have you tried 
>different versions?
>
>At 01:23 PM 6/27/2002 -0700, Annu Roopa wrote:
>>Group,
>>
>>Here is a BGP scenario whic is troubling me. what am i
>>doing wrong ? The scenario is about BGP backdoor and
>>it looks like this.
>>
>> eBGP eBGP
>>172.16.1.0  10.1.1.0
>>   R2-R10---r12--175.10.10.1
>>   | |
>>   |-
>>
>>  192.168.1.0 IGRP
>>
>>The configs look as below. even thought i configure
>>BGP backdoor the path taken is thru the EBGP link ?
>>
>>
>>hostname R12
>>ip address 175.10.10.1 255.255.0.0
>>!
>>interface Serial0
>>ip address 10.1.1.2 255.255.255.0
>>no fair-queue
>>!
>>interface Serial1
>>ip address 192.168.1.2 255.255.255.0
>>!
>>router igrp 100
>>network 175.10.0.0
>>network 192.168.1.0
>>!
>>router bgp 300
>>bgp router-id 175.10.10.1
>>bgp log-neighbor-changes
>>network 10.1.1.0 mask 255.255.255.0
>>network 175.10.0.0
>>neighbor 10.1.1.1 remote-as 200
>>no auto-summary
>>
>>--
>>hostname R2
>>interface Loopback0
>>ip address 190.10.10.1 255.255.255.0
>>!
>>interface Serial0
>>ip address 172.16.1.1 255.255.255.0
>>!
>>interface Serial1
>>ip address 192.168.1.1 255.255.255.0
>>clockrate 64000
>>!
>>router igrp 100
>>network 192.168.1.0
>>!
>>router bgp 400
>>bgp log-neighbor-changes
>>network 175.10.0.0 backdoor
>>network 190.10.10.0 mask 255.255.255.0
>>network 190.10.10.0
>>network 192.168.1.0
>>neighbor 172.16.1.2 remote-as 200
>>
>>--
>>R2#show ip route
>>C   190.10.10.0 is directly connected, Loopback0
>>B175.10.0.0/16 [20/0] via 172.16.1.2, 00:05:45
>>C192.168.1.0/24 is directly connected, Serial1
>>B200.10.10.0/24 [20/0] via 172.16.1.2, 00:00:43
>>  180.10.0.0/24 is subnetted, 1 subnets
>>B   180.10.10.0 [20/0] via 172.16.1.2, 00:05:46
>>
>>R2#show ip bgp
>>BGP table version is 120, local router ID is
>>190.10.10.1
>>Status codes: s suppressed, d damped, h history, *
>>valid, > best, i - internal
>>Origin codes: i - IGP, e - EGP, ? - incomplete
>>
>>Network  Next HopMetric LocPrf
>>Weight Path
>>*> 175.10.0.0   172.16.1.2 0 200 300 i
>>*> 180.10.10.0/24   172.16.1.0 0 200 i
>>*> 190.10.10.0/24   0.0.0.0  0
>>32768 i
>>*> 192.168.1.0  0.0.0.0  0
>>32768 i
>>
>>Thanks in advance.
>>
>>
>>__
>>Do You Yahoo!?
>>Yahoo! - Official partner of 2002 FIFA World Cup
>>http://fifaworldcup.yahoo.com
>>_
>>Commercial lab list: http://www.groupstudy.com/list/commercial.html
>>Please discuss commercial lab solutions on this list.
>_
>Commercial lab list: http://www.groupstudy.com/list/commercial.html
>Please discuss commercial lab solutions on this list.
_
Send and receive Hotmail on your mobile device: http://mobile.msn.com




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=47646&t=47646
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

RE: Configuring NTP..Pls.help [7:47635]

[Ozan Akdemir]

Instead of using 3.rd party time server, you can configure one of your Cisco
routers as an ntp server and the others as ntp clients to sychronize them.
For ntp server;
In config mode type; 
router(config)#ntp master
router(config)#ntp authentication-key 
for ntp clients;
router(config)# ntp server (Ip address of NTP server Router) key 
router(config)# ntp authentication-key 

-Original Message-
From: Parameswaran S [mailto:[EMAIL PROTECTED]] 
Sent: Friday, June 28, 2002 7:56 AM
To: [EMAIL PROTECTED]
Subject: Configuring NTP..Pls.help [7:47635]

Hi group,

 

pls. help me to configure my cisco router to get sync.with an time server
software which is installed on an NT..or pls.suggest some good time server
software which can work with cisco boxes.

thanks in advance,

s.parameswaran.



-
Do You Yahoo!?
Sign-up for Video Highlights of 2002 FIFA World Cup




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=47645&t=47635
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

RE: Cat 2950 VTP Server and cat 3548 VTP Client don't talk to [7:47644]

[Mark Odette II]

Tony,

Aside from double-checking that the 3500 switch isn't in Transparent
mode for VTP, and that it has a lower revision number and same VTP
Domain name, you might roll back to wc3a or wc3b on the 12.0.5 code.

Your other option is to open a case with TAC!

Good luck, and let us know what you come up with... verrry interesting
situation.

Mark

-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] On Behalf Of
[EMAIL PROTECTED]
Sent: Friday, June 28, 2002 12:25 AM
To: [EMAIL PROTECTED]
Subject: Cat 2950 VTP Server and cat 3548 VTP Client don't talk to each
[7:47638]

I wonder if anyone went across this problem before: Cat2950 vtp server
and
Cat 3548 vtp client don't talk to each other. Other Cat2950 vtp clients
will
receive updates from the same Cat2950 vtp server with no problem. Very
odd.

All Cat 2950s run IOS version 12.1(6)EA2c (come with the switch), the
Cat
3548 runs IOS version 12.0(5)WC5.

Any suggestion?

Tony


__
Your favorite stores, helpful shopping tools and great gift ideas.
Experience the convenience of buying online with Shop@Netscape!
http://shopnow.netscape.com/

Get your own FREE, personal Netscape Mail account today at
http://webmail.netscape.com/




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=47644&t=47644
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

RE: Configuring NTP..Pls.help [7:47635]

[Mark Odette II]

Do a search on Google for "Public NTP Servers", and then choose from
what you get off of that as to what is your best choice.  Note that most
free/public time servers are region specific... or at least that's what
I found.

No extra software needed on the Cisco box to talk NTP  Just
configure it in Global Config mode to query an NTP SERVER of your
choice!

Oh... and the answer to how you configure the router is in the last
sentence If that's too hard to figure out, try a little research on
CCO :)



-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] On Behalf Of
Parameswaran S
Sent: Thursday, June 27, 2002 11:56 PM
To: [EMAIL PROTECTED]
Subject: Configuring NTP..Pls.help [7:47635]

Hi group,

 

pls. help me to configure my cisco router to get sync.with an time
server
software which is installed on an NT..or pls.suggest some good time
server
software which can work with cisco boxes.

thanks in advance,

s.parameswaran.



-
Do You Yahoo!?
Sign-up for Video Highlights of 2002 FIFA World Cup




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=47643&t=47635
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

RE: Configuring NTP..Pls.help [7:47635]

[Dan Penn]

Just sync them with the USNO servers...they are free.

Dan

-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] On Behalf Of
Parameswaran S
Sent: Thursday, June 27, 2002 10:56 PM
To: [EMAIL PROTECTED]
Subject: Configuring NTP..Pls.help [7:47635]

Hi group,

 

pls. help me to configure my cisco router to get sync.with an time
server
software which is installed on an NT..or pls.suggest some good time
server
software which can work with cisco boxes.

thanks in advance,

s.parameswaran.



-
Do You Yahoo!?
Sign-up for Video Highlights of 2002 FIFA World Cup




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=47641&t=47635
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

RE: IPSec to the tunnel endpoint withr IP unnumbered interface [7:47642]

[Mark Odette II]

Configure your Serial interface to use the Internet address assigned,
and establish an RFC1918 Subnet on the Ethernet Interface.

**The reason you have to do this is so that the IPSec engine has a
reference **point to distinguish between encrypted and non-encrypted
traffic- If I **recall correctly :)  I'm sure someone will correct me if
I'm wrong.

Then, create a NAT pool for the private net to get out to the internet,
as well as receive return traffic.

The rest should be gravy if you got an idea for configuring your VPN
under IOS.

Do a search on CCO for Security Tips and Tricks, and that should lend
you to the part of sample configs for VPN tunnels.

Good luck!

Mark

Disclaimer: I've not worked with the Avaya products so I can't speak for
that part of your situation.  Also, I'm not CSS1 certified, and as such-
I'm still learning myself, and am obviously not an expert.

You may want to open a TAC case for assistance.

-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] On Behalf Of
Firesox
Sent: Thursday, June 27, 2002 9:09 PM
To: [EMAIL PROTECTED]
Subject: IPSec to the tunnel endpoint withr IP unnumbered interface
[7:47622]

Folks,
I need some help with site to site vpn between 2610 and Avaya VPNet.
Avaya VPnet is configured correctly with appropriate SA and tunnel
endpoint.
I have a router configured as follows.
Ethernet Inetrface has the public IP address assigned to it.
Serial 0/0 is an Frame interface to the internet and has ip unnumbered
from
ethernet interface.
when I try to create IPSec tunnel using the crypto map command to s0/0
interface, I cannot connect to the remote site.
After some debugging, it seems as if the IPSec tunnel is being created
because the S0/0 interface has ip unnumbered command.
Could someone help me with the solution to this problem?

Thanks in advance




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=47642&t=47642
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: PBR [7:47463]

[piesupport]

PBR using "verify-availability" can verify next hop reachability in
route-maps.
You can also, as mentioned, specify a non connected next hop. This would
result in a recursive lookup in the routing table. Also you can specify
multiple next hops that the router can try.

Here is a URL and the command needed to do this verification process
mentioned above.
set ip next-hop verify-availability

http://www.cisco.com/univercd/cc/td/doc/product/software/ios121/121cgcr/ip_c
/ipcprt2/1cdindep.htm

Raza

""Chris Charlebois""  wrote in message
[EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
> The question is how would the router know the host is down without some
sort
> of heartbeat.
>
> My next question, and this shows my shallow knowledge of PBR, but can the
> next-hop be a non-local address?  For instance, can router 1 which is
> connected to subnets A and B use a host on subnet C as a next-hop, despite
> the fact that router 1 has to go through router 2 to get to subnet C?  If
it
> can, would this create a tunnel, so that traffic would get to the next-hop
> address, or would Router 2 receive the packets and try to route them
itself?




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=47640&t=47463
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Cat 2950 VTP Server and cat 3548 VTP Client don't talk to each [7:47638]

[[EMAIL PROTECTED]]

I wonder if anyone went across this problem before: Cat2950 vtp server and
Cat 3548 vtp client don't talk to each other. Other Cat2950 vtp clients will
receive updates from the same Cat2950 vtp server with no problem. Very odd.

All Cat 2950s run IOS version 12.1(6)EA2c (come with the switch), the Cat
3548 runs IOS version 12.0(5)WC5.

Any suggestion?

Tony


__
Your favorite stores, helpful shopping tools and great gift ideas.
Experience the convenience of buying online with Shop@Netscape!
http://shopnow.netscape.com/

Get your own FREE, personal Netscape Mail account today at
http://webmail.netscape.com/




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=47638&t=47638
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

RE: 802.11a [7:47639]

[Nathan Chessin]

Keep in mind that .11a will have much shorter range than .11b.  These are
not mutually exclusive technologies and should not be considered as such.
In other words, it isn't one or the other.  There are pros in cons with
both, and for investment protection, one should consider options that the
hardware, software and firmware will afford them in the future when
companies have the products for the standards.

Nate

-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of
Henry Chou
Sent: Thursday, June 27, 2002 8:13 PM
To: [EMAIL PROTECTED]; [EMAIL PROTECTED]
Cc: [EMAIL PROTECTED]; [EMAIL PROTECTED]; [EMAIL PROTECTED]
Subject: RE: 802.11a


IMHO, 2.4GHz frequency is a relatively "congested" RF band, and the most you
can only have is 3 non-overlapping channels, and that will be a limiting
factor in an enterprise environment regardless b or g.  My Panasonic 2.4GHz
cordless phone, my home theatre wireless control, my microwave oven...  all
compete for the 2.4GHz range.

802.11a uses 5.4GHz RF, UNII-1 and UNII-2 offer 8 non-overlapping channels
and the air is relatively "quiet" compared to the 2.4GHz band.  In 2-3
years, maybe there will be many devices running in this frequency range,...
who knows.  So, I still believe .11a will have its advantage over b and g.

Henryh





Reply-To: "Chris Young" 
To: "'Dennis Laganiere'" 
Subject: RE: 802.11a
Date: Thu, 27 Jun 2002 20:09:40 -0400

Dennis,

It looks like you are doing your homework on the wireless.  Make sure
that you don't discount .11g.  IMHO .11g will have a far greater market
impact than .11a for WLAN applications.  It offers backward
compatability with .11b and offers the higher data rate of 11.a.

Just my $.02
Chris


-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] On Behalf Of
Dennis Laganiere
Sent: Thursday, June 27, 2002 6:32 PM
To: Dennis Laganiere
Cc: '[EMAIL PROTECTED]'; '[EMAIL PROTECTED]';
'[EMAIL PROTECTED]'
Subject: RE: 802.11a

Several people sent me some excellent links.  Thank you all...

Here's what I ended up with...

Cisco - The Aironet 1200 access point can be configured to support any
of
the standards, but they only have 802.11b available right now.
NetGear - They have 802.11b and 802.11a access points, but nothing that
will
do both, which means losing all my current investment in NICs.
D-Link - They have an access point that does both.

I went ahead and ordered the D-link access point and a couple of NICs so
I
could start to play right away; and I'll "upgrade" to the Cisco unit
once
they have a real product offering...

Thanks all, you guys are great...

By the way, if there are any Cisco people on the list who would like to
put
me on a beta list, I'm open to it... :)

--- Dennis

-Original Message-
From: Dennis Laganiere
Sent: Thursday, June 27, 2002 3:06 PM
To: 'Harish DV/peakxv'; Dennis Laganiere
Cc: '[EMAIL PROTECTED]'; '[EMAIL PROTECTED]';
[EMAIL PROTECTED]
Subject: RE: 802.11a

There are several good write-ups on the technology on the CCO, so I knew
that; but I was looking for an actual product to play with to determine
if
the 5 MGHz traffic interferes with other systems in my manufacturing
group
(a major concern).  Cisco's Aironet 1200 access point has the
capability,
but it looks the antennas and NICs aren't out yet.  D-Link has a fully
functioning set-up I can use for my initial testing.

--- Dennis

-Original Message-
From: Harish DV/peakxv [mailto:[EMAIL PROTECTED]]
Sent: Thursday, June 27, 2002 2:20 PM
To: Dennis Laganiere
Cc: '[EMAIL PROTECTED]'; '[EMAIL PROTECTED]';
[EMAIL PROTECTED]
Subject: Re: 802.11a


802.11a works at 5GHz and can support upto 54mbps as compared to
2.4GHz/11mbps of 802.11b

This link might help

http://www.wlana.org/pdf/highspeed.pdf

Harish





   Dennis Laganiere

   ,
"'[EMAIL PROTECTED]'"
   ionics.com>


   Sent by:  cc:

   nobody@groupstudy.Subject:  802.11a

   com





   06/27/2002 01:39

   PM

   Please respond to

   Dennis Laganiere









I've been reading about the new, faster wireless solutions.  Is
anybody's
802.11a technology ready-for-prime time?  I'm ordering a Aironet 1200
access
point to play with, and it should be capable (with the right antenna),
but
I
understand Cisco's product is not out yet...  Anybody know anything
about
the new "a" standard?

Thanks...

--- Dennis
_
Commercial lab list: http://www.groupstudy.com/list/commercial.html
Please discuss commercial lab solutions on this list.
_
Commercial lab list: http://www.groupstudy.com/list/commercial.html
Please discuss commercial lab solutions on this list.
__

Re: multicast [7:47591]

[Priscilla Oppenheimer]

At 10:14 PM 6/27/02, Howard C. Berkowitz wrote:

> >IP multicast gets used for many purposes and those purposes may be at
> >different layers:
> >
> >Sending routing updates (EIGRP, OSPF, RIPv2) - Layer 3
> >Establishing routing protocol neighbor relationships (EIGRP, OSPF) -
Layer 3
> >Sending multimedia streaming audio or video - Layer 7 with some help from
> >Layer 6 (MPEG or whatever), Layer 5 (RTSP), and Layer 4 (UDP)
> >Finding services (Service Location Protocol) - Layer 7
> >Joining groups (IGMP) - Layer 3
> >Determining a dynamic L3 address assignment (IPv6) - Layer 3
>
>
>You're not saying, are you, that IP multicast exists at layers above
>3, are you?

No, I said it's used by upper layers. Those layers are aware of it, though. 
The Service Location Protocol (SLP) RFC, for example, states which IP 
multicast address to use. The Realtime Streaming Protocol (RTSP) knows 
about IP multicast too. I don't know the details, but RTSP specifies a 
method for a client to find out what IP multicast address a server is 
sending to. There's a presentation description that includes the multicast 
address. If you look at the RFC for RTSP, there's lots of discussion of 
multicast.

RTSP is nominally an application-layer protocol, at least according to the 
author of the RFC.

Priscilla

>I think it is correct to say that a higher-layer protocol
>may assume that a lower-layer protocol will require use of a layer 3
>multicast service, but doesn't itself implement multicast. The upper
>layer entity (in strict OSI terms) need not have direct access to the
>multicast network layer service, but potentially could indirectly
>request that functionality through higher-layer service interfaces.
>
>Without looking at the Transport Service Specification, I can't
>remember if it has the semantics, with the Connectionless Transport
>Service, of multicasts. My general recollection is that you use a
>network service address and let the Network Service figure out the
>semantics.
> >
> >There's probably lots of others too!
> >
> >Layer 2 multicasts are used for IP multicast, but for many other purposes
> >too, such as BPDU, CDP, VTP, DISL, AppleTalk Name Binding Protocol (NBP)
> >lookups, etc.
> >
> >Priscilla
> >
> >
> >>TIA
> >>
> >>Robert
> >
> >
> >Priscilla Oppenheimer
> >http://www.priscilla.com


Priscilla Oppenheimer
http://www.priscilla.com




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=47637&t=47591
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: 3725, 2621XM [7:47634]

[Chuck]

hey, Jen, "coma across" problems?  Just reading the IOS release notes puts
one into a coma every time :->

There are some GD releases of 12.1.14 and 12.1.15 for that particular box,
according to the CCO upgrade planner.

the 12.2.8T's are all SA's, FWIW. I see an Enterprise Plus release that is
ED.

I can't keep up on the various IOS releases myself. Don't know if this helps
or not.

Cheers.

Chuck


 wrote in message
[EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
> Hi all,
> Has anyone used either of these beasties yet?  I've got a couple to play
> with (sorry, evaluate for use in our network, if I can keep everyone
> else's hands off them :-)
> They run a rather new IOS version - 12.2(8)T4, which is enough to get me
> nervous at running the things in a production network; I have received
> conflicting information about whether the 2621XM will actually run a more
> stable version - I haven't tried loading an earlier version on it yet.
> We still have to support IPX in our network (don't ask), and we had enough
> problems with IPX bugs when migrating to 12.1.  Anyone run IPX with 12.2
> (or 12.2(T)) on these boxes or any other?  Coma across any problems?
> Anything I need to look out for?
>
> Thanks,
> JMcL
>
>
> Important:  This e-mail is intended for the use of the addressee and may
> contain information that is confidential, commercially valuable or subject
> to legal or parliamentary privilege.  If you are not the intended
recipient
> you are notified that any review, re-transmission, disclosure, use or
> dissemination of this communication is strictly prohibited by several
> Commonwealth Acts of Parliament.  If you have received this communication
in
> error please notify the sender immediately and delete all copies of this
> transmission together with any attachments.




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=47636&t=47634
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Configuring NTP..Pls.help [7:47635]

[Parameswaran S]

Hi group,

 

pls. help me to configure my cisco router to get sync.with an time server
software which is installed on an NT..or pls.suggest some good time server
software which can work with cisco boxes.

thanks in advance,

s.parameswaran.



-
Do You Yahoo!?
Sign-up for Video Highlights of 2002 FIFA World Cup




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=47635&t=47635
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

3725, 2621XM [7:47634]

[[EMAIL PROTECTED]]

Hi all,
Has anyone used either of these beasties yet?  I've got a couple to play 
with (sorry, evaluate for use in our network, if I can keep everyone 
else's hands off them :-)
They run a rather new IOS version - 12.2(8)T4, which is enough to get me 
nervous at running the things in a production network; I have received 
conflicting information about whether the 2621XM will actually run a more 
stable version - I haven't tried loading an earlier version on it yet.
We still have to support IPX in our network (don't ask), and we had enough 
problems with IPX bugs when migrating to 12.1.  Anyone run IPX with 12.2 
(or 12.2(T)) on these boxes or any other?  Coma across any problems? 
Anything I need to look out for?

Thanks,
JMcL 


Important:  This e-mail is intended for the use of the addressee and may
contain information that is confidential, commercially valuable or subject
to legal or parliamentary privilege.  If you are not the intended recipient
you are notified that any review, re-transmission, disclosure, use or
dissemination of this communication is strictly prohibited by several
Commonwealth Acts of Parliament.  If you have received this communication in
error please notify the sender immediately and delete all copies of this
transmission together with any attachments.




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=47634&t=47634
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: 802.11a [7:47603]

[Steven A. Ridder]

Cisco's antennas and cards will be out in august if that's not too late.  I
think G comes out in spring, depending on whe nit get's ratified.

G will work in the 1200 as well, plus you can play with cool security
features enterproses need and QoS.


""Dennis Laganiere""  wrote in message
[EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
> There are several good write-ups on the technology on the CCO, so I knew
> that; but I was looking for an actual product to play with to determine if
> the 5 MGHz traffic interferes with other systems in my manufacturing group
> (a major concern).  Cisco's Aironet 1200 access point has the capability,
> but it looks the antennas and NICs aren't out yet.  D-Link has a fully
> functioning set-up I can use for my initial testing.
>
> --- Dennis
>
> -Original Message-
> From: Harish DV/peakxv [mailto:[EMAIL PROTECTED]]
> Sent: Thursday, June 27, 2002 2:20 PM
> To: Dennis Laganiere
> Cc: '[EMAIL PROTECTED]'; '[EMAIL PROTECTED]';
[EMAIL PROTECTED]
> Subject: Re: 802.11a
>
>
> 802.11a works at 5GHz and can support upto 54mbps as compared to
> 2.4GHz/11mbps of 802.11b
>
> This link might help
>
> http://www.wlana.org/pdf/highspeed.pdf
>
> Harish
>
>
>
>
>
>   Dennis Laganiere
>
>   , "'[EMAIL PROTECTED]'"
>
>   ionics.com>
>
>   Sent by:  cc:
>
>   nobody@groupstudy.Subject:  802.11a
>
>   com
>
>
>
>
>
>   06/27/2002 01:39
>
>   PM
>
>   Please respond to
>
>   Dennis Laganiere
>
>
>
>
>
>
>
>
>
> I've been reading about the new, faster wireless solutions.  Is anybody's
> 802.11a technology ready-for-prime time?  I'm ordering a Aironet 1200
> access
> point to play with, and it should be capable (with the right antenna), but
> I
> understand Cisco's product is not out yet...  Anybody know anything about
> the new "a" standard?
>
> Thanks...
>
> --- Dennis
> _
> Commercial lab list: http://www.groupstudy.com/list/commercial.html
> Please discuss commercial lab solutions on this list.




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=47633&t=47603
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: req-qos like command for RSVP / BGP Sync [7:47614]

[Steven A. Ridder]

no.  You could do a LLQ or PQ type deployment which does guarantee BW, but
afaik, I have never seen rsvp be called for another protocol.


""Narvaez, Pablo""  wrote in message
[EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
> Does anyone know of a req-qos like command for any kind of
> application/port?  ... RSVP works with VoIP if I give the dial-peer the
> keyword req-qos and so does DLSw with dlsw rsvp. I know how RSVP works and
> the requirements to implement it. I'm just wondering if there's such
command
> (like req-qos for VoIP and dlsw rsvp for DLSw) that let us deploy RSVP for
> any kind of application/TCP/UDP-ports?  like a command inside a
> policy-map to be used with CBP so that the matching ports/applications may
> request BW allcation using the RSVP path I previously configured all
across
> the network path?
>
> About BGP Synchronization, if I have a non-full mesh network using
> Confederations with different IGP running in each Confed and have Sync
> enabled on ALL the routers, does sync apply for the whole "real" AS or it
> will be per-subAS using its own IGP? in other words, does Syn consider
> Confed sub-ASs as different ASs?
>
> TIA !!
>
> cheers,
>
> hockito




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=47632&t=47614
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: IS-IS in the lab exam [7:47616]

[Steven A. Ridder]

Chances are you will not get it, and if you do, it won't be too deep,
according to CCIE powersession in San Diego.  I'd recommend  knowing the
basics and configure everything a few times.


""Frank Jimenez""  wrote in message
[EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
> If it is not excluded on the list, then you should not exclude it in
> your studies
>
> Frank Jimenez, CCIE #5738
> [EMAIL PROTECTED]
>
> -Original Message-
> From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] On Behalf Of
> Kevin Banifaz
> Sent: Thursday, June 27, 2002 7:54 PM
> To: [EMAIL PROTECTED]
> Subject: IS-IS in the lab exam [7:47616]
>
>
> Does anyone know if there is any IS-IS in the lab.  I have not heard
> anyone
> mentioning it, even though it's not on the exclusion list.
> Just wondering
>
>
> _
> Send and receive Hotmail on your mobile device: http://mobile.msn.com




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=47631&t=47616
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: 802.11a [7:47606]

[Dennis Laganiere]

For my current needs I can live with a fork lift upgrade when 802.11g comes
allong.  So far I'm only out about $350 for the D-link access point that
supports both "b" and "a".  It will serve as a stop gap tool until the Cisco
solution is ready for prime-time.  Other then the wait, I completely agree
with you...

--- Dennis

- Original Message -
From: "Steve Ridder" 
To: 
Sent: Thursday, June 27, 2002 6:26 PM
Subject: RE: 802.11a [7:47606]


> HOLD OFF FOR 802.11G!!
> It runs on B's freq (so you get b's distance), you get a's speed (54mb)
and
> is backward compatable with b clients.
>
> I HIGHLY expect 802.11a to quietly go away.




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=47630&t=47606
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

RE: 802.11a [7:47628]

[Henry Chou]

IMHO, 2.4GHz frequency is a relatively "congested" RF band, and the most you 
can only have is 3 non-overlapping channels, and that will be a limiting 
factor in an enterprise environment regardless b or g.  My Panasonic 2.4GHz 
cordless phone, my home theatre wireless control, my microwave oven...  all 
compete for the 2.4GHz range.

802.11a uses 5.4GHz RF, UNII-1 and UNII-2 offer 8 non-overlapping channels 
and the air is relatively "quiet" compared to the 2.4GHz band.  In 2-3 
years, maybe there will be many devices running in this frequency range,... 
who knows.  So, I still believe .11a will have its advantage over b and g.

Henryh





Reply-To: "Chris Young" 
To: "'Dennis Laganiere'" 
Subject: RE: 802.11a
Date: Thu, 27 Jun 2002 20:09:40 -0400

Dennis,

It looks like you are doing your homework on the wireless.  Make sure
that you don't discount .11g.  IMHO .11g will have a far greater market
impact than .11a for WLAN applications.  It offers backward
compatability with .11b and offers the higher data rate of 11.a.

Just my $.02
Chris


-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] On Behalf Of
Dennis Laganiere
Sent: Thursday, June 27, 2002 6:32 PM
To: Dennis Laganiere
Cc: '[EMAIL PROTECTED]'; '[EMAIL PROTECTED]';
'[EMAIL PROTECTED]'
Subject: RE: 802.11a

Several people sent me some excellent links.  Thank you all...

Here's what I ended up with...

Cisco - The Aironet 1200 access point can be configured to support any
of
the standards, but they only have 802.11b available right now.
NetGear - They have 802.11b and 802.11a access points, but nothing that
will
do both, which means losing all my current investment in NICs.
D-Link - They have an access point that does both.

I went ahead and ordered the D-link access point and a couple of NICs so
I
could start to play right away; and I'll "upgrade" to the Cisco unit
once
they have a real product offering...

Thanks all, you guys are great...

By the way, if there are any Cisco people on the list who would like to
put
me on a beta list, I'm open to it... :)

--- Dennis

-Original Message-
From: Dennis Laganiere
Sent: Thursday, June 27, 2002 3:06 PM
To: 'Harish DV/peakxv'; Dennis Laganiere
Cc: '[EMAIL PROTECTED]'; '[EMAIL PROTECTED]';
[EMAIL PROTECTED]
Subject: RE: 802.11a

There are several good write-ups on the technology on the CCO, so I knew
that; but I was looking for an actual product to play with to determine
if
the 5 MGHz traffic interferes with other systems in my manufacturing
group
(a major concern).  Cisco's Aironet 1200 access point has the
capability,
but it looks the antennas and NICs aren't out yet.  D-Link has a fully
functioning set-up I can use for my initial testing.

--- Dennis

-Original Message-
From: Harish DV/peakxv [mailto:[EMAIL PROTECTED]]
Sent: Thursday, June 27, 2002 2:20 PM
To: Dennis Laganiere
Cc: '[EMAIL PROTECTED]'; '[EMAIL PROTECTED]';
[EMAIL PROTECTED]
Subject: Re: 802.11a


802.11a works at 5GHz and can support upto 54mbps as compared to
2.4GHz/11mbps of 802.11b

This link might help

http://www.wlana.org/pdf/highspeed.pdf

Harish





   Dennis Laganiere

   ,
"'[EMAIL PROTECTED]'"
   ionics.com>


   Sent by:  cc:

   nobody@groupstudy.Subject:  802.11a

   com





   06/27/2002 01:39

   PM

   Please respond to

   Dennis Laganiere









I've been reading about the new, faster wireless solutions.  Is
anybody's
802.11a technology ready-for-prime time?  I'm ordering a Aironet 1200
access
point to play with, and it should be capable (with the right antenna),
but
I
understand Cisco's product is not out yet...  Anybody know anything
about
the new "a" standard?

Thanks...

--- Dennis
_
Commercial lab list: http://www.groupstudy.com/list/commercial.html
Please discuss commercial lab solutions on this list.
_
Commercial lab list: http://www.groupstudy.com/list/commercial.html
Please discuss commercial lab solutions on this list.
_
Commercial lab list: http://www.groupstudy.com/list/commercial.html
Please discuss commercial lab solutions on this list.
_
Send and receive Hotmail on your mobile device: http://mobile.msn.com




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=47628&t=47628
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

RE: multicast [7:47591]

[Lopez, Robert]

A thanks to everyone who replied to this topic...

-Original Message-
From: Priscilla Oppenheimer [mailto:[EMAIL PROTECTED]]
Sent: Thursday, June 27, 2002 6:36 PM
To: [EMAIL PROTECTED]
Subject: Re: multicast [7:47591]


At 04:42 PM 6/27/02, Lopez, Robert wrote:
>At what OSI layer do IP multicasts lie?  Reading through CCO has made me
>more doubtful in my choices.

IP multicasts are sent to a layer 3 IP multicast address. That address is 
converted to a data-link-layer multicast address. The Internet Assigned 
Numbers Authority (IANA) owns a block of MAC-layer addresses that are used 
for group multicast addresses. The range of addresses for Ethernet is 
0x01:00:5E:00:00:00 through 0x01:00:5E:7F:FF:FF. When a host sends a frame 
to an IP group that is identified by a Class D address, the host inserts 
the low-order 23 bits of the Class D address into the low-order 23 bits of 
the MAC-layer destination address. The top 9 bits of the Class D address 
are not used. The top 25 bits of the MAC address are 0x01:00:5E followed by 
a zero bit (0001  0100 0 in binary).

IP multicast gets used for many purposes and those purposes may be at 
different layers:

Sending routing updates (EIGRP, OSPF, RIPv2) - Layer 3
Establishing routing protocol neighbor relationships (EIGRP, OSPF) - Layer 3
Sending multimedia streaming audio or video - Layer 7 with some help from 
Layer 6 (MPEG or whatever), Layer 5 (RTSP), and Layer 4 (UDP)
Finding services (Service Location Protocol) - Layer 7
Joining groups (IGMP) - Layer 3
Determining a dynamic L3 address assignment (IPv6) - Layer 3

There's probably lots of others too!

Layer 2 multicasts are used for IP multicast, but for many other purposes 
too, such as BPDU, CDP, VTP, DISL, AppleTalk Name Binding Protocol (NBP) 
lookups, etc.

Priscilla


>TIA
>
>Robert


Priscilla Oppenheimer
http://www.priscilla.com




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=47629&t=47591
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: multicast [7:47591]

[Michael L. Williams]

Did you copy/paste that right out of a textbook?  =)  Before I even saw
anything indicating that you authored that post, I got about 1/2 way through
the paragraph and was thinking to myself "This had to be from
Priscilla".

Mike W.

"Priscilla Oppenheimer"  wrote in message
[EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
> At 04:42 PM 6/27/02, Lopez, Robert wrote:
> >At what OSI layer do IP multicasts lie?  Reading through CCO has made me
> >more doubtful in my choices.
>
> IP multicasts are sent to a layer 3 IP multicast address. That address is
> converted to a data-link-layer multicast address. The Internet Assigned
> Numbers Authority (IANA) owns a block of MAC-layer addresses that are used
> for group multicast addresses. The range of addresses for Ethernet is
> 0x01:00:5E:00:00:00 through 0x01:00:5E:7F:FF:FF. When a host sends a frame
> to an IP group that is identified by a Class D address, the host inserts
> the low-order 23 bits of the Class D address into the low-order 23 bits of
> the MAC-layer destination address. The top 9 bits of the Class D address
> are not used. The top 25 bits of the MAC address are 0x01:00:5E followed
by
> a zero bit (0001  0100 0 in binary).
>
> IP multicast gets used for many purposes and those purposes may be at
> different layers:
>
> Sending routing updates (EIGRP, OSPF, RIPv2) - Layer 3
> Establishing routing protocol neighbor relationships (EIGRP, OSPF) - Layer
3
> Sending multimedia streaming audio or video - Layer 7 with some help from
> Layer 6 (MPEG or whatever), Layer 5 (RTSP), and Layer 4 (UDP)
> Finding services (Service Location Protocol) - Layer 7
> Joining groups (IGMP) - Layer 3
> Determining a dynamic L3 address assignment (IPv6) - Layer 3
>
> There's probably lots of others too!
>
> Layer 2 multicasts are used for IP multicast, but for many other purposes
> too, such as BPDU, CDP, VTP, DISL, AppleTalk Name Binding Protocol (NBP)
> lookups, etc.
>
> Priscilla
>
>
> >TIA
> >
> >Robert
> 
>
> Priscilla Oppenheimer
> http://www.priscilla.com




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=47627&t=47591
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

RE: IS-IS in the lab exam [7:47616]

[Frank Jimenez]

If it is not excluded on the list, then you should not exclude it in
your studies

Frank Jimenez, CCIE #5738
[EMAIL PROTECTED]

-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] On Behalf Of
Kevin Banifaz
Sent: Thursday, June 27, 2002 7:54 PM
To: [EMAIL PROTECTED]
Subject: IS-IS in the lab exam [7:47616]


Does anyone know if there is any IS-IS in the lab.  I have not heard
anyone
mentioning it, even though it's not on the exclusion list.
Just wondering


_
Send and receive Hotmail on your mobile device: http://mobile.msn.com




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=47626&t=47616
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

extra hop [7:47625]

[Priscilla Oppenheimer]

Hello Group Study,

Any ideas on why a router would show up twice in a trace route?

r1#trace 172.16.2.2

Type escape sequence to abort.
Tracing the route to 172.16.2.2

   1 172.16.1.3 12 msec 12 msec 12 msec
   2 172.16.1.3 12 msec 8 msec 8 msec
   3 172.16.2.2 24 msec 20 msec 20 msec

It's a frame-relay hub-and-spoke topology. I'm on one spoke trying to trace 
to another spoke through the hub. The trace succeeds. The network is 
working, but what's with the router replying twice? (It happens if I go the 
other way too.)

The hub router is 172.16.1.3. Why is it sending back the dest unreachable 
twice?

The topology is:

R1--R3-R2


Here are my configs:

r1
ip subnet-zero
no ip icmp rate-limit unreachable
!
interface Loopback0
  ip address 192.168.255.1 255.255.255.255
!
interface Ethernet0/0
  description to Cat 5K 3/1
  ip address 10.10.1.1 255.255.255.0
  half-duplex
!
interface TokenRing0/0
  description in ring 1
  ip address 192.168.1.1 255.255.255.0
  ring-speed 16
!
interface Serial1/0
  ip address 172.16.1.1 255.255.255.0
  encapsulation frame-relay
  ip ospf network point-to-point
  frame-relay interface-dlci 133
  frame-relay lmi-type ansi
!
router ospf 1
  log-adjacency-changes
  network 10.10.1.0 0.0.0.255 area 0.0.0.0
  network 172.16.0.0 0.0.255.255 area 0.0.0.0
  network 192.168.1.0 0.0.0.255 area 0.0.0.0
  network 192.168.255.1 0.0.0.0 area 0.0.0.0
!
ip classless



R3
ip subnet-zero
no ip icmp rate-limit unreachable
!
interface Loopback0
  ip address 192.168.255.3 255.255.255.255
!
interface Ethernet0/0
  description link to cat5k 3/3
  ip address 10.10.3.1 255.255.255.0
  half-duplex
!
interface Serial1/0
  description Frame relay
  no ip address
  encapsulation frame-relay
  no fair-queue
  no frame-relay inverse-arp
  frame-relay lmi-type ansi
!
interface Serial1/0.1 point-to-point
  description link to R1
  ip address 172.16.1.3 255.255.255.0
  ip ospf network point-to-point
  frame-relay interface-dlci 331
!
interface Serial1/0.2 point-to-point
  description link to R2
  ip address 172.16.2.3 255.255.255.0
  ip ospf network point-to-point
  frame-relay interface-dlci 332
!
router ospf 1
  log-adjacency-changes
  network 10.10.3.0 0.0.0.255 area 0.0.0.0
  network 172.16.0.0 0.0.255.255 area 0.0.0.0
  network 192.168.255.3 0.0.0.0 area 0.0.0.0
!
ip classless


R2
!
hostname r2
!
ip subnet-zero
no ip icmp rate-limit unreachable
!
interface Loopback0
  ip address 192.168.255.2 255.255.255.255
!
interface Ethernet0/0
  description to Cat 5K 3/2
  ip address 10.10.2.1 255.255.255.0
  half-duplex
!
interface TokenRing0/0
  ip address 192.168.2.1 255.255.255.0
  ring-speed 16
!
interface Serial1/0
  ip address 172.16.2.2 255.255.255.0
  encapsulation frame-relay
  ip ospf network point-to-point
  no fair-queue
  frame-relay interface-dlci 233
  frame-relay lmi-type ansi
!
router ospf 1
  log-adjacency-changes
  network 10.10.2.0 0.0.0.255 area 0.0.0.0
  network 172.16.0.0 0.0.255.255 area 0.0.0.0
  network 192.168.2.0 0.0.0.255 area 0.0.0.0
  network 192.168.255.2 0.0.0.0 area 0.0.0.0
ip classless


There's a Cisco router "in the cloud" acting as a Frame Relay switch, 
switching from DLCIs. I don't have its config. (This was a virtual lab). 
Thanks for any hints you can give me.

Priscilla



Priscilla Oppenheimer
http://www.priscilla.com




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=47625&t=47625
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: multicast [7:47591]

[Howard C. Berkowitz]

At 6:36 PM -0400 6/27/02, Priscilla Oppenheimer wrote:
>At 04:42 PM 6/27/02, Lopez, Robert wrote:
>>At what OSI layer do IP multicasts lie?  Reading through CCO has made me
>>more doubtful in my choices.
>
>IP multicasts are sent to a layer 3 IP multicast address. That address is
>converted to a data-link-layer multicast address. The Internet Assigned
>Numbers Authority (IANA) owns a block of MAC-layer addresses that are used
>for group multicast addresses. The range of addresses for Ethernet is
>0x01:00:5E:00:00:00 through 0x01:00:5E:7F:FF:FF. When a host sends a frame
>to an IP group that is identified by a Class D address, the host inserts
>the low-order 23 bits of the Class D address into the low-order 23 bits of
>the MAC-layer destination address. The top 9 bits of the Class D address
>are not used. The top 25 bits of the MAC address are 0x01:00:5E followed by
>a zero bit (0001  0100 0 in binary).
>
>IP multicast gets used for many purposes and those purposes may be at
>different layers:
>
>Sending routing updates (EIGRP, OSPF, RIPv2) - Layer 3
>Establishing routing protocol neighbor relationships (EIGRP, OSPF) - Layer 3
>Sending multimedia streaming audio or video - Layer 7 with some help from
>Layer 6 (MPEG or whatever), Layer 5 (RTSP), and Layer 4 (UDP)
>Finding services (Service Location Protocol) - Layer 7
>Joining groups (IGMP) - Layer 3
>Determining a dynamic L3 address assignment (IPv6) - Layer 3


You're not saying, are you, that IP multicast exists at layers above 
3, are you? I think it is correct to say that a higher-layer protocol 
may assume that a lower-layer protocol will require use of a layer 3 
multicast service, but doesn't itself implement multicast. The upper 
layer entity (in strict OSI terms) need not have direct access to the 
multicast network layer service, but potentially could indirectly 
request that functionality through higher-layer service interfaces.

Without looking at the Transport Service Specification, I can't 
remember if it has the semantics, with the Connectionless Transport 
Service, of multicasts. My general recollection is that you use a 
network service address and let the Network Service figure out the 
semantics.

>
>There's probably lots of others too!
>
>Layer 2 multicasts are used for IP multicast, but for many other purposes
>too, such as BPDU, CDP, VTP, DISL, AppleTalk Name Binding Protocol (NBP)
>lookups, etc.
>
>Priscilla
>
>
>>TIA
>>
>>Robert
>
>
>Priscilla Oppenheimer
>http://www.priscilla.com




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=47624&t=47591
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

RE: BGP Question [7:47600]

[Vicuna, Mark]

Annju,

seems like you are missing the 192.net statement in R2 for IGRP.

HTH,
Mark.
-Original Message-
From: Andy Fang [mailto:[EMAIL PROTECTED]]
Sent: Friday, 28 June 2002 8:09 AM
To: [EMAIL PROTECTED]
Subject: RE: BGP Question [7:47600]


Backdoor net admin distance = 200

EBGP net admin distance = 20

 

http://www.cisco.com/univercd/cc/td/doc/product/software/ios122/122cgcr/
fiprrp_r/bgp_r/1rfbgp2.htm#xtocid15

 

 

-Original Message-

From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of
Annu

Roopa

Sent: Thursday, June 27, 2002 4:23 PM

To: [EMAIL PROTECTED]; [EMAIL PROTECTED]

Subject: BGP Question

Group,

Here is a BGP scenario whic is troubling me. what am i

doing wrong ? The scenario is about BGP backdoor and

it looks like this.

eBGP eBGP

172.16.1.0 10.1.1.0

R2-R10---r12--175.10.10.1

| |

|-

192.168.1.0 IGRP

The configs look as below. even thought i configure

BGP backdoor the path taken is thru the EBGP link ?

 

hostname R12

ip address 175.10.10.1 255.255.0.0

!

interface Serial0

ip address 10.1.1.2 255.255.255.0

no fair-queue

!

interface Serial1

ip address 192.168.1.2 255.255.255.0

!

router igrp 100

network 175.10.0.0

network 192.168.1.0

!

router bgp 300

bgp router-id 175.10.10.1

bgp log-neighbor-changes

network 10.1.1.0 mask 255.255.255.0

network 175.10.0.0

neighbor 10.1.1.1 remote-as 200

no auto-summary

--

hostname R2

interface Loopback0

ip address 190.10.10.1 255.255.255.0

!

interface Serial0

ip address 172.16.1.1 255.255.255.0

!

interface Serial1

ip address 192.168.1.1 255.255.255.0

clockrate 64000

!

router igrp 100

network 192.168.1.0

!

router bgp 400

bgp log-neighbor-changes

network 175.10.0.0 backdoor

network 190.10.10.0 mask 255.255.255.0

network 190.10.10.0

network 192.168.1.0

neighbor 172.16.1.2 remote-as 200

--

R2#show ip route

C 190.10.10.0 is directly connected, Loopback0

B 175.10.0.0/16 [20/0] via 172.16.1.2, 00:05:45

C 192.168.1.0/24 is directly connected, Serial1

B 200.10.10.0/24 [20/0] via 172.16.1.2, 00:00:43

180.10.0.0/24 is subnetted, 1 subnets

B 180.10.10.0 [20/0] via 172.16.1.2, 00:05:46

R2#show ip bgp

BGP table version is 120, local router ID is

190.10.10.1

Status codes: s suppressed, d damped, h history, *

valid, > best, i - internal

Origin codes: i - IGP, e - EGP, ? - incomplete

Network Next Hop Metric LocPrf

Weight Path

*> 175.10.0.0 172.16.1.2 0 200 300 i

*> 180.10.10.0/24 172.16.1.0 0 200 i

*> 190.10.10.0/24 0.0.0.0 0

32768 i

*> 192.168.1.0 0.0.0.0 0

32768 i

Thanks in advance.

 

__

Do You Yahoo!?

Yahoo! - Official partner of 2002 FIFA World Cup

http://fifaworldcup.yahoo.com

_

Commercial lab list: http://www.groupstudy.com/list/commercial.html

Please discuss commercial lab solutions on this list.

_

Commercial lab list: http://www.groupstudy.com/list/commercial.html

Please discuss commercial lab solutions on this list.
-
Do You Yahoo!?
Sign-up for Video Highlights of 2002 FIFA World Cup




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=47623&t=47600
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

IPSec to the tunnel endpoint withr IP unnumbered interface [7:47622]

[Firesox]

Folks,
I need some help with site to site vpn between 2610 and Avaya VPNet.
Avaya VPnet is configured correctly with appropriate SA and tunnel endpoint.
I have a router configured as follows.
Ethernet Inetrface has the public IP address assigned to it.
Serial 0/0 is an Frame interface to the internet and has ip unnumbered from
ethernet interface.
when I try to create IPSec tunnel using the crypto map command to s0/0
interface, I cannot connect to the remote site.
After some debugging, it seems as if the IPSec tunnel is being created
because the S0/0 interface has ip unnumbered command.
Could someone help me with the solution to this problem?

Thanks in advance




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=47622&t=47622
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: Wireless Training [7:47535]

[[EMAIL PROTECTED]]

Basic stuff I can do on my own.  What is need is like Design, 3G, 
bluetooth, security, multicast, and MANs.
What I really want is other engineers' experiences at the training 
classes.  I know there are a lot of homepages and courses but I really do 
need opinions of the classes.

Theo






"Ken Diliberto" 
06/28/2002 12:45 AM

 
To: , 
cc: 
Subject:Re: Wireless Training [7:47535]


Theo,

Figure out what it is you want from training then go looking.  Do you
want to learn how to configure a card and AP?  Bridges? Doing site
surveys?  There's tons of stuff.

Ken

>>> "[EMAIL PROTECTED]" 
06/26/02 08:43PM >>>
Group-

Besides Cisco wireless related training, could anyone give me some
feedback
on any wireless training courses anyone might have taken?

I know about various training centers, like www.trainingwireless.com
and
others, but I would like to know about engineer's experiences at these

courses and which ones people are recommending.

Thanks!

Theo




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=47621&t=47535
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: Neighbor distribute-list command w/ Extended ACL [7:47272]

[Hunt Lee]

Hello Charles,

Sorry to do this to you, but I still have one more e.g. that I'm not too
sure (I found this on CCO) :(

access-list 101 permit ip 131.108.0.0 0.0.0.0 255.255.255.0 0.0.0.0

In this line, I understand that since the wildcard mask for both network &
mask are 0.0.0.0, it means that it will permit only 131.108.0.0 /24

access-list 101 deny ip 131.108.0.0 0.0.255.255 255.255.0.0 0.0.255.255

And in this line which is what I'm confused abt, I thought that on network,
it will deny 131.108.0.1 to 131.108.255.254, while the prefix being deny is
between /16 - /32.

However, Cisco CCO said it will permit route 131.108.0/24 (which I
understand), ... but deny 131.108/16 and all other subents of 131.108.0.0

Thanks for your help again.

Best Regards,
Hunt Lee



""Charles D Hammonds""  wrote in message
news:[EMAIL PROTECTED]...
> Hunt-
>
> > access-list 100 deny ip 192.108.0.0 0.0.255.255 255.255.0.0 0.0.255.255
>
> Remember that the wildcard mask is used to define which bits of the
network
> and mask fields to ignore. These bits are set to '1'. So, in this example,
> the last 2 octets in both the src(network) and dest(mask) fields are
ignored
> as all the bits in these octets are set to 1. Only the first 2 octets are
> compared so that any subnet/mask combo beneath the /16 will be denied.
>
> Hope this helps.
>
> Regards,
> Charles
>
> -Original Message-
> From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of
> Hunt Lee
> Sent: Tuesday, June 25, 2002 4:58 PM
> To: [EMAIL PROTECTED]
> Subject: Re: Neighbor distribute-list command w/ Extended ACL [7:47272]
>
>
> Hi Charles,
>
> Thanks so much for your explanation.  I understand your first eg., but I'm
> still confused how you get to the answer to the 2nd e.g., can you please
> elaborate a bit more on the steps for the 2nd e.g.??
>
> Thanks for your help again.
>
> Best Regards,
> Hunt Lee
>
>
> ""Charles D Hammonds""  wrote in message
> [EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
> > The statement
> >
> > access-list 100 permit ip 192.108.0.0 0.0.0.0 255.255.0.0 0.0.0.0
> >
> > could also be re-written as:
> >
> > access-list 100 permit ip host 192.108.0.0 host 255.255.0.0
> >
> > which means that only the aggregate /16 will be accepted.
> >
> > The second statement:
> >
> > access-list 100 deny ip 192.108.0.0 0.0.255.255 255.255.0.0 0.0.255.255
> >
> > denies the VLSM networks under the /16.
> >
> >
> > Charles
> >
> > -Original Message-
> > From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of
> > Dain Deutschman
> > Sent: Sunday, June 23, 2002 9:05 PM
> > To: [EMAIL PROTECTED]
> > Subject: Re: Neighbor distribute-list command w/ Extended ACL [7:47272]
> >
> >
> > It's kind of wierd. The source portion of the access list defines the
> > network whose updates are permited/denied...no suprise...the wierd part
is
> > that the destination portion specifies the subnet mask of that network.
> So,
> > in your example;
> >
> > access-list 100 permit ip 192.108.0.0 0.0.0.0 255.255.0.0 0.0.0.0
> > ( 192.108.0.0 [wildcard] 0.0.0.0 [subnet mask] 255.255.0.0 [wildcard]
> > 0.0.0.0)
> > ( 192.108.0.0/16 will be advertised )
> >
> > Maybe someone else can jump in...because the wildcard is 0.0.0.0 does it
> > mean that any other VLSM networks under the 192.108.0.0/16 supernet
would
> > also be advertised?
> >
> > access-list 100 deny ip 192.108.0.0 0.0.255.255 255.255.0.0 0.0.255.255
> > ( 192.108.0.0 [wildcard] 0.0.255.255 [ subnet mask ] 255.255.0.0
> [wildcard ]
> > 0.0.255.255)
> > (192.108.0.0/16 would be denied...the last two octets are ignored )
> >
> > I'm new to all this and learning it myself...so please...someone correct
> me
> > if I am wrong or add to my comments. Thanks. Dain.
> > ""Hunt Lee""  wrote in message
> > [EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
> > > Hi all,
> > >
> > > Can anyone please explain this to me?? I have read some examples
> regarding
> > > neighbor x.x.x.x distribute-list  in | out using extended Access-List
> > > from CCO, Internet Routing Arch (by Halabi) & BGP 4 Command &
Reference
> > (by
> > > Parkhurst), yet I'm still very confused.
> > >
> > > Below is one of them
> > >
> > > neighbor 120.23.4.1 distribute-list 100 in
> > >
> > > access-list 100 permit ip 192.108.0.0 0.0.0.0 255.255.0.0 0.0.0.0
> > >
> > > access-list 100 deny ip 192.108.0.0 0.0.255.255 255.255.0.0
0.0.255.255
> > >
> > >
> > >
> > > How do you read these things?? Any help will be greatly appreciated.
> > >
> > > Thanks,
> > >
> > > Hunt




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=47620&t=47272
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

RE: 802.11a [7:47606]

[Steve Ridder]

HOLD OFF FOR 802.11G!!
It runs on B's freq (so you get b's distance), you get a's speed (54mb) and
is backward compatable with b clients.

I HIGHLY expect 802.11a to quietly go away.


Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=47619&t=47606
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: BGP Question [7:47618]

[David Luu]

configs seem right, unless i overlooked something...some people have 
reported that it works on some IOS, what IOS are you using? have you tried 
different versions?

At 01:23 PM 6/27/2002 -0700, Annu Roopa wrote:
>Group,
>
>Here is a BGP scenario whic is troubling me. what am i
>doing wrong ? The scenario is about BGP backdoor and
>it looks like this.
>
> eBGP eBGP
>172.16.1.0  10.1.1.0
>   R2-R10---r12--175.10.10.1
>   | |
>   |-
>
>  192.168.1.0 IGRP
>
>The configs look as below. even thought i configure
>BGP backdoor the path taken is thru the EBGP link ?
>
>
>hostname R12
>ip address 175.10.10.1 255.255.0.0
>!
>interface Serial0
>ip address 10.1.1.2 255.255.255.0
>no fair-queue
>!
>interface Serial1
>ip address 192.168.1.2 255.255.255.0
>!
>router igrp 100
>network 175.10.0.0
>network 192.168.1.0
>!
>router bgp 300
>bgp router-id 175.10.10.1
>bgp log-neighbor-changes
>network 10.1.1.0 mask 255.255.255.0
>network 175.10.0.0
>neighbor 10.1.1.1 remote-as 200
>no auto-summary
>
>--
>hostname R2
>interface Loopback0
>ip address 190.10.10.1 255.255.255.0
>!
>interface Serial0
>ip address 172.16.1.1 255.255.255.0
>!
>interface Serial1
>ip address 192.168.1.1 255.255.255.0
>clockrate 64000
>!
>router igrp 100
>network 192.168.1.0
>!
>router bgp 400
>bgp log-neighbor-changes
>network 175.10.0.0 backdoor
>network 190.10.10.0 mask 255.255.255.0
>network 190.10.10.0
>network 192.168.1.0
>neighbor 172.16.1.2 remote-as 200
>
>--
>R2#show ip route
>C   190.10.10.0 is directly connected, Loopback0
>B175.10.0.0/16 [20/0] via 172.16.1.2, 00:05:45
>C192.168.1.0/24 is directly connected, Serial1
>B200.10.10.0/24 [20/0] via 172.16.1.2, 00:00:43
>  180.10.0.0/24 is subnetted, 1 subnets
>B   180.10.10.0 [20/0] via 172.16.1.2, 00:05:46
>
>R2#show ip bgp
>BGP table version is 120, local router ID is
>190.10.10.1
>Status codes: s suppressed, d damped, h history, *
>valid, > best, i - internal
>Origin codes: i - IGP, e - EGP, ? - incomplete
>
>Network  Next HopMetric LocPrf
>Weight Path
>*> 175.10.0.0   172.16.1.2 0 200 300 i
>*> 180.10.10.0/24   172.16.1.0 0 200 i
>*> 190.10.10.0/24   0.0.0.0  0
>32768 i
>*> 192.168.1.0  0.0.0.0  0
>32768 i
>
>Thanks in advance.
>
>
>__
>Do You Yahoo!?
>Yahoo! - Official partner of 2002 FIFA World Cup
>http://fifaworldcup.yahoo.com
>_
>Commercial lab list: http://www.groupstudy.com/list/commercial.html
>Please discuss commercial lab solutions on this list.




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=47618&t=47618
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: BGP synch question [7:47617]

[Carlos G Mendioroz]

Annu Roopa wrote:
> 
> Group,
> 
> I understand why BGP synch is needed but have some
> clarifications.When we have scenario as below
> 
>  R10-R1--R3---R2-R20
>  Ebgp  iBGP   EBGP
> 
> and R10 is in AS 100 and R1/R2/R3 in As200 and R20 in
> As300.In this scenario R2 will not advertise routes
> learnt thru R10 to R20 without having the routes in IP
> table right ??? The questions are:
> 
> 1. Assuming there is no IGP on R1/R2/R3 what are the
> options of having the routes in R2 in its IP table.
> Should we should have static routes for all networks ?
> Any other way.

BGP/No synch :-)

> 
> 2. When BGP (say on R2) looks for synchronization with
> an IGP what does it look for as a match?? - the
> network,mask and type (i mean IGP).They all should
> match in IP table to what is advertised by BGP from
> R10.

network/mask.
Iff IGP = OSPF, then also originating OSPF router-id should
match iBGP neighbour router-id.


> The reason i ask this is there are times when i have
> seen the route in IP table is /16 bit but /24 in BGP
> table (without *>) and it does not work.Also when the
> route is say OSPF E2 type is does not work.
> 
> 3.If there is are multiple entries in BGP table and i
> do a traceroute will the path taken be the (*>, valid
> best path) or according to the IP table. I guess *>
> path should match up with IP table path am i right ?
> in understanding this.

Packets will follow FIB (i.e. routing table) next hop.

> 
> =
> Thanks in advance for ur time and replies.
> Annu.
> 
> __
> Do You Yahoo!?
> Yahoo! - Official partner of 2002 FIFA World Cup
> http://fifaworldcup.yahoo.com
> _
> Commercial lab list: http://www.groupstudy.com/list/commercial.html
> Please discuss commercial lab solutions on this list.
-- 
Carlos G MendiorozLW7 EQI  Argentina




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=47617&t=47617
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

IS-IS in the lab exam [7:47616]

[Kevin Banifaz]

Does anyone know if there is any IS-IS in the lab.  I have not heard anyone 
mentioning it, even though it's not on the exclusion list.
Just wondering


_
Send and receive Hotmail on your mobile device: http://mobile.msn.com




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=47616&t=47616
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

RE: 802.11a [7:47615]

[Chris Young]

Dennis,

It looks like you are doing your homework on the wireless.  Make sure
that you don't discount .11g.  IMHO .11g will have a far greater market
impact than .11a for WLAN applications.  It offers backward
compatability with .11b and offers the higher data rate of 11.a.

Just my $.02
Chris


-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] On Behalf Of
Dennis Laganiere
Sent: Thursday, June 27, 2002 6:32 PM
To: Dennis Laganiere
Cc: '[EMAIL PROTECTED]'; '[EMAIL PROTECTED]';
'[EMAIL PROTECTED]'
Subject: RE: 802.11a

Several people sent me some excellent links.  Thank you all...

Here's what I ended up with...

Cisco - The Aironet 1200 access point can be configured to support any
of
the standards, but they only have 802.11b available right now.
NetGear - They have 802.11b and 802.11a access points, but nothing that
will
do both, which means losing all my current investment in NICs.
D-Link - They have an access point that does both.  

I went ahead and ordered the D-link access point and a couple of NICs so
I
could start to play right away; and I'll "upgrade" to the Cisco unit
once
they have a real product offering...

Thanks all, you guys are great...

By the way, if there are any Cisco people on the list who would like to
put
me on a beta list, I'm open to it... :)

--- Dennis

-Original Message-
From: Dennis Laganiere 
Sent: Thursday, June 27, 2002 3:06 PM
To: 'Harish DV/peakxv'; Dennis Laganiere
Cc: '[EMAIL PROTECTED]'; '[EMAIL PROTECTED]';
[EMAIL PROTECTED]
Subject: RE: 802.11a

There are several good write-ups on the technology on the CCO, so I knew
that; but I was looking for an actual product to play with to determine
if
the 5 MGHz traffic interferes with other systems in my manufacturing
group
(a major concern).  Cisco's Aironet 1200 access point has the
capability,
but it looks the antennas and NICs aren't out yet.  D-Link has a fully
functioning set-up I can use for my initial testing.

--- Dennis

-Original Message-
From: Harish DV/peakxv [mailto:[EMAIL PROTECTED]]
Sent: Thursday, June 27, 2002 2:20 PM
To: Dennis Laganiere
Cc: '[EMAIL PROTECTED]'; '[EMAIL PROTECTED]';
[EMAIL PROTECTED]
Subject: Re: 802.11a


802.11a works at 5GHz and can support upto 54mbps as compared to
2.4GHz/11mbps of 802.11b

This link might help

http://www.wlana.org/pdf/highspeed.pdf

Harish



 

  Dennis Laganiere

  ,
"'[EMAIL PROTECTED]'" 
  ionics.com>


  Sent by:  cc:

  nobody@groupstudy.Subject:  802.11a

  com

 

 

  06/27/2002 01:39

  PM

  Please respond to

  Dennis Laganiere

 

 





I've been reading about the new, faster wireless solutions.  Is
anybody's
802.11a technology ready-for-prime time?  I'm ordering a Aironet 1200
access
point to play with, and it should be capable (with the right antenna),
but
I
understand Cisco's product is not out yet...  Anybody know anything
about
the new "a" standard?

Thanks...

--- Dennis
_
Commercial lab list: http://www.groupstudy.com/list/commercial.html
Please discuss commercial lab solutions on this list.
_
Commercial lab list: http://www.groupstudy.com/list/commercial.html
Please discuss commercial lab solutions on this list.




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=47615&t=47615
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

req-qos like command for RSVP / BGP Sync [7:47614]

[Narvaez, Pablo]

Does anyone know of a req-qos like command for any kind of
application/port?  ... RSVP works with VoIP if I give the dial-peer the
keyword req-qos and so does DLSw with dlsw rsvp. I know how RSVP works and
the requirements to implement it. I'm just wondering if there's such command
(like req-qos for VoIP and dlsw rsvp for DLSw) that let us deploy RSVP for
any kind of application/TCP/UDP-ports?  like a command inside a
policy-map to be used with CBP so that the matching ports/applications may
request BW allcation using the RSVP path I previously configured all across
the network path?

About BGP Synchronization, if I have a non-full mesh network using
Confederations with different IGP running in each Confed and have Sync
enabled on ALL the routers, does sync apply for the whole "real" AS or it
will be per-subAS using its own IGP? in other words, does Syn consider
Confed sub-ASs as different ASs?

TIA !!

cheers,

hockito




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=47614&t=47614
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

FS:2 2501s w/16/8 and 12.1 [7:47613]

[CCIE #9340]

2 2501s w/16/8 and 12.1.  Both in good working condition.  Includes consoles
and DTE/DCE cable.  $500 + shipping

[EMAIL PROTECTED]




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=47613&t=47613
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: 802.11a [7:47606]

[Michael L. Williams]

If I'm not mistaken, one of the advantages of the 1200 series is that it's
modular so that  you can utilize the 802.11a standard, then when 802.11g is
finalized you can just swap the module

Mike W.

"Dennis Laganiere"  wrote in message
[EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
> Several people sent me some excellent links.  Thank you all...
>
> Here's what I ended up with...
>
> Cisco - The Aironet 1200 access point can be configured to support any of
> the standards, but they only have 802.11b available right now.
> NetGear - They have 802.11b and 802.11a access points, but nothing that
will
> do both, which means losing all my current investment in NICs.
> D-Link - They have an access point that does both.
>
> I went ahead and ordered the D-link access point and a couple of NICs so I
> could start to play right away; and I'll "upgrade" to the Cisco unit once
> they have a real product offering...
>
> Thanks all, you guys are great...
>
> By the way, if there are any Cisco people on the list who would like to
put
> me on a beta list, I'm open to it... :)
>
> --- Dennis
>
> -Original Message-
> From: Dennis Laganiere
> Sent: Thursday, June 27, 2002 3:06 PM
> To: 'Harish DV/peakxv'; Dennis Laganiere
> Cc: '[EMAIL PROTECTED]'; '[EMAIL PROTECTED]';
[EMAIL PROTECTED]
> Subject: RE: 802.11a
>
> There are several good write-ups on the technology on the CCO, so I knew
> that; but I was looking for an actual product to play with to determine if
> the 5 MGHz traffic interferes with other systems in my manufacturing group
> (a major concern).  Cisco's Aironet 1200 access point has the capability,
> but it looks the antennas and NICs aren't out yet.  D-Link has a fully
> functioning set-up I can use for my initial testing.
>
> --- Dennis
>
> -Original Message-
> From: Harish DV/peakxv [mailto:[EMAIL PROTECTED]]
> Sent: Thursday, June 27, 2002 2:20 PM
> To: Dennis Laganiere
> Cc: '[EMAIL PROTECTED]'; '[EMAIL PROTECTED]';
[EMAIL PROTECTED]
> Subject: Re: 802.11a
>
>
> 802.11a works at 5GHz and can support upto 54mbps as compared to
> 2.4GHz/11mbps of 802.11b
>
> This link might help
>
> http://www.wlana.org/pdf/highspeed.pdf
>
> Harish
>
>
>
>
>
>   Dennis Laganiere
>
>   , "'[EMAIL PROTECTED]'"
>   ionics.com>
>
>   Sent by:  cc:
>
>   nobody@groupstudy.Subject:  802.11a
>
>   com
>
>
>
>
>
>   06/27/2002 01:39
>
>   PM
>
>   Please respond to
>
>   Dennis Laganiere
>
>
>
>
>
>
>
>
>
> I've been reading about the new, faster wireless solutions.  Is anybody's
> 802.11a technology ready-for-prime time?  I'm ordering a Aironet 1200
> access
> point to play with, and it should be capable (with the right antenna), but
> I
> understand Cisco's product is not out yet...  Anybody know anything about
> the new "a" standard?
>
> Thanks...
>
> --- Dennis
> _
> Commercial lab list: http://www.groupstudy.com/list/commercial.html
> Please discuss commercial lab solutions on this list.




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=47612&t=47606
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: Router Sim [7:47550]

[Steve Ringley]

I tried the ISDN IM, and found that it would not run in XP.  This is Cisco's
offical position also.  I had a WinME box running, so I tried it there.  The
sim part had rpoblems and did not work well either.  Does the BGP IM
actually work?

""Johnny Routin""  wrote in message
[EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
> Cisco Interactive Mentor BGP
>
>
>
> ""Andrew Theologo""  wrote in message
> [EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
> > Hi
> >
> > I am looking for a router sim for the new exams, but it must include
BGP.
> >
> > Can any one point me in the correct direction ?
> >
> > Thanks
> >
> > Andrew




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=47610&t=47550
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

RE: 802.11a [7:47611]

[Dennis Laganiere]

As a last note on this topic, I checked Orinoko just to make sure.  That
have an access point that will support both, but the radio module and NICs
for 802.11a are not currently available, with no expected delivery data.  I
guess I'm still going with D-link...

By the way, here's an interesting article on some long range wireless stuff
that sounds pretty cool (watch the wrap)...

http://www.techtv.com/news/internet/story/0,24195,3389078,00.html

Thanks...

--- Dennis

-Original Message-
From: Dennis Laganiere 
Sent: Thursday, June 27, 2002 3:32 PM
To: Dennis Laganiere
Cc: '[EMAIL PROTECTED]'; '[EMAIL PROTECTED]';
'[EMAIL PROTECTED]'
Subject: RE: 802.11a

Several people sent me some excellent links.  Thank you all...

Here's what I ended up with...

Cisco - The Aironet 1200 access point can be configured to support any of
the standards, but they only have 802.11b available right now.
NetGear - They have 802.11b and 802.11a access points, but nothing that will
do both, which means losing all my current investment in NICs.
D-Link - They have an access point that does both. 

I went ahead and ordered the D-link access point and a couple of NICs so I
could start to play right away; and I'll "upgrade" to the Cisco unit once
they have a real product offering...

Thanks all, you guys are great...

By the way, if there are any Cisco people on the list who would like to put
me on a beta list, I'm open to it... :)

--- Dennis

-Original Message-
From: Dennis Laganiere
Sent: Thursday, June 27, 2002 3:06 PM
To: 'Harish DV/peakxv'; Dennis Laganiere
Cc: '[EMAIL PROTECTED]'; '[EMAIL PROTECTED]'; [EMAIL PROTECTED]
Subject: RE: 802.11a

There are several good write-ups on the technology on the CCO, so I knew
that; but I was looking for an actual product to play with to determine if
the 5 MGHz traffic interferes with other systems in my manufacturing group
(a major concern).  Cisco's Aironet 1200 access point has the capability,
but it looks the antennas and NICs aren't out yet.  D-Link has a fully
functioning set-up I can use for my initial testing.

--- Dennis

-Original Message-
From: Harish DV/peakxv [mailto:[EMAIL PROTECTED]]
Sent: Thursday, June 27, 2002 2:20 PM
To: Dennis Laganiere
Cc: '[EMAIL PROTECTED]'; '[EMAIL PROTECTED]'; [EMAIL PROTECTED]
Subject: Re: 802.11a


802.11a works at 5GHz and can support upto 54mbps as compared to
2.4GHz/11mbps of 802.11b

This link might help

http://www.wlana.org/pdf/highspeed.pdf

Harish



 

  Dennis Laganiere

  , "'[EMAIL PROTECTED]'"
  ionics.com>

  Sent by:  cc:

  nobody@groupstudy.Subject:  802.11a

  com

 

 

  06/27/2002 01:39

  PM

  Please respond to

  Dennis Laganiere

 

 





I've been reading about the new, faster wireless solutions.  Is anybody's
802.11a technology ready-for-prime time?  I'm ordering a Aironet 1200
access
point to play with, and it should be capable (with the right antenna), but
I
understand Cisco's product is not out yet...  Anybody know anything about
the new "a" standard?

Thanks...

--- Dennis
_
Commercial lab list: http://www.groupstudy.com/list/commercial.html
Please discuss commercial lab solutions on this list.




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=47611&t=47611
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: SSL Acceleration [7:47596]

[Joe Tutokey]

John,

My company is doing something similar. Our problem started with making
sure a clients web requestes stayed on the same server even while moving
from HTTP to HTTPS requests. We did not want to use redirects, so our Local
Director 416 could not cut it. I have installed a Cisco SCA-11000 SSL
accelerator in front of a Cisco CSS-11000 switch. Here are my thoughts so
far.

- the SCA-11000 passes any non-ssl traffic to the CSS-11000 to be load
balanced. The CSS-11000 does sticky load balancing on all HTTP packets
making sure the user maintains the same server.

- getting the key and cert into the SCA-11000, coming from a Win2K
server was a little interesting and I had to end up consulting some Cisco
TAC documents to find the exact steps to do this (only with a MS solution
though).

- when a customer transitions from a non-secure page to a secure page
(and maintain the same server), the URL will look something like this
"https:whatever.asp". The SCA will
decrypt the inbound stream and hand it off to the CSS to be load balanced.
With the CSS's layer 5 ability to balance by info in the url, I can use the
server name in the URL to make sure the secure connection makes it back to
the same server (and maintains the session the client started). This
requires that our web servers have a directory that is labeled with their
server name and that the code used for the sure site is in that directory on
all the servers (unique for each server, of course). This was the least code
rewrite intensive solution we could find. It's been a real learning
experience too!! :))

If anyone else has been doing some similar things I would love to hear about
it!

Joe

""John Neiberger""  wrote in message
[EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
> We're evaluating SSL acceleration for our web servers and the product
> currently up to bat is the Array 500TX.  With this device we can offload
> the SSL processing from the origin servers.  However, while testing the
> evaluation unit we're discovering that there's a lot more to this than
> simply loading the certs and keys onto the box and turning it on.
>
> For example, it may be that we have to rewrite portions of the code on
> our site to make it compatible with this solution.  There are also
> changes required on the web servers themselves to make them play nicely
> with the Array box.
>
> I'm wondering if any of you have implemented SSL accleration (with
> anyone's product) and what gotchas you might have run into.  I'm almost
> to the point of dropping the idea of SSL acceleration and simply
> suggesting that we add more servers!  :-)  That's by far the simplest
> solution and doesn't require any changes to our existing code or
> configurations.  We simply plug the server into our existing load
> balancing switch and, with a small tweak of that config, we're off and
> running.
>
> Any thoughts?
>
> John




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=47608&t=47596
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

req-qos like command for RSVP [7:47609]

[Narvaez, Pablo]

Does anyone know of a req-qos like command for any kind of
application/port?  ... RSVP works with VoIP if I give the dial-peer the
keyword req-qos and so does DLSw with dlsw rsvp. I know how RSVP works and
the requirements to implement it. I'm just wondering if there's such command
(like req-qos for VoIP and dlsw rsvp for DLSw) that let us deploy RSVP for
any kind of application/TCP/UDP-ports?  like a command inside a
policy-map to be used with CBP so that the matching ports/applications may
request BW allcation using the RSVP path I previously configured all across
the network path?

TIA !!

cheers,

hockito




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=47609&t=47609
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

FW: frame relay question [7:47498]

[GEORGE]

Thanks now I get it
-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] On Behalf Of
Chuck
Sent: Thursday, June 27, 2002 12:12 PM
To: [EMAIL PROTECTED]
Subject: Re: frame relay question [7:47498]

to the frame switch, each link can have the exact same dlci. if you have
fooled with using cisco routers as frame switches, you will get the idea
how
this is possible. the programming instruction says ( in English ) "any
frames using this port are dlci xx and if they are incoming, send them
out
that port as dlci yy"

essentially, a frame PCV is a series of links, each of which has a
unique
identifier.

cust_1---dlci_16--port_1_frameswitch_port_2dlci_397---port_7_framesw
itch
_port_9---dlci_120cust_1
cust_2---dlci_16--port_3_frameswitch_port_4dlci_397---port_8_framesw
itch
_port_8---dlci_120cust_2

the only thing that has to be unique in this situation is the port on
the
frame switch. along each link of the pvc, the dlci is unique only to
that
link. If any of these links were carrying multiple PVC's then there
would be
multiple and unique DLCI's for each PVC on that link.

so yes, from the telco standpoint, it is far easier for the switch tech
to
use the same methodology, and far easier for the telco to have some
standard
practice. my experience is the telco's really hate it when customers
start
asking for unique dlci numbering systems. plus it is likely that it will
take longer for your link to get working right, and you will have to
spend
time arguing with the switch tech.



""Kelly Cobean""  wrote in message
[EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
> You know, this brings up a good question...My company has sites all
across
> the country, and for every spoke site, we were able to get the exact
same
> DLCI, and at the hubs, we were able to get a range of DLCI's in
increments
> of 5 going out to each of the spokes.  How is this possible?  I
completely
> understand that the DLCI is locally significant, and that it only
defines
> the connection between the Frame switch and the customer CPE, but what
are
> the odds of the exact same DLCI on so many different switches being
> available?  Maybe there is something relevant to the fact that the
carrier's
> network is actually using ATM that makes this possible?  Thanks!
>
> -Original Message-
> From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of
> Chuck
> Sent: Wednesday, June 26, 2002 3:09 PM
> To: [EMAIL PROTECTED]
> Subject: Re: frame relay question [7:47498]
>
>
> good questions.
>
> in theory, you may request any dlci you wish, so long as it is in the
legal
> range for the carrier. this would be numbers 16 through 996? for some,
or
> through 1004? for others
>
> in fact, if you have a good rapport with your carrier, and they in
turn
have
> their act together, this is common practice.
>
> OTOH, in my experience, telcos just want to get the work done, and
they
will
> configure the dlci starting with 16 because it's easy to remember. the
> switch techs just bang out their configs with no conscious thought
> intervention.
>
> if you have nothing fancy going on ( and it appears you don't ) the
only
> required configuration on your router is setting the frame relay
> encapsulation, and setting the ip address. at that point the circuit
will
> come up. you can check this using the show frame pvc, show frame lmi
and
> show ip interface brief commands. lmi will detect and use the single
pvc
> with no other tweaks required. if you have multiple pvcs on a circuit,
you
> would, of course have to use frame map commands, or use point-to-point
> subinterfaces in conjunction with the frame interface-dlci command.
>
> best wishes.
>
>
> ""GEORGE""  wrote in message
> [EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
> > I have a newbie question, regarding frame-relay. When I order a
frame
> > relay circuit for two locations
> > Do the telco provide the dlci? Or I make it up? Once the frame relay
is
> > installed on both locations I guess using the dlci numbers it makes
the
> > connection , besides the ip and all other stuff
> > Can someone explain it please
> > thanks




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=47607&t=47498
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

RE: 802.11a [7:47606]

[Dennis Laganiere]

Several people sent me some excellent links.  Thank you all...

Here's what I ended up with...

Cisco - The Aironet 1200 access point can be configured to support any of
the standards, but they only have 802.11b available right now.
NetGear - They have 802.11b and 802.11a access points, but nothing that will
do both, which means losing all my current investment in NICs.
D-Link - They have an access point that does both.  

I went ahead and ordered the D-link access point and a couple of NICs so I
could start to play right away; and I'll "upgrade" to the Cisco unit once
they have a real product offering...

Thanks all, you guys are great...

By the way, if there are any Cisco people on the list who would like to put
me on a beta list, I'm open to it... :)

--- Dennis

-Original Message-
From: Dennis Laganiere 
Sent: Thursday, June 27, 2002 3:06 PM
To: 'Harish DV/peakxv'; Dennis Laganiere
Cc: '[EMAIL PROTECTED]'; '[EMAIL PROTECTED]'; [EMAIL PROTECTED]
Subject: RE: 802.11a

There are several good write-ups on the technology on the CCO, so I knew
that; but I was looking for an actual product to play with to determine if
the 5 MGHz traffic interferes with other systems in my manufacturing group
(a major concern).  Cisco's Aironet 1200 access point has the capability,
but it looks the antennas and NICs aren't out yet.  D-Link has a fully
functioning set-up I can use for my initial testing.

--- Dennis

-Original Message-
From: Harish DV/peakxv [mailto:[EMAIL PROTECTED]]
Sent: Thursday, June 27, 2002 2:20 PM
To: Dennis Laganiere
Cc: '[EMAIL PROTECTED]'; '[EMAIL PROTECTED]'; [EMAIL PROTECTED]
Subject: Re: 802.11a


802.11a works at 5GHz and can support upto 54mbps as compared to
2.4GHz/11mbps of 802.11b

This link might help

http://www.wlana.org/pdf/highspeed.pdf

Harish



 

  Dennis Laganiere

  , "'[EMAIL PROTECTED]'" 
  ionics.com>

  Sent by:  cc:

  nobody@groupstudy.Subject:  802.11a

  com

 

 

  06/27/2002 01:39

  PM

  Please respond to

  Dennis Laganiere

 

 





I've been reading about the new, faster wireless solutions.  Is anybody's
802.11a technology ready-for-prime time?  I'm ordering a Aironet 1200
access
point to play with, and it should be capable (with the right antenna), but
I
understand Cisco's product is not out yet...  Anybody know anything about
the new "a" standard?

Thanks...

--- Dennis
_
Commercial lab list: http://www.groupstudy.com/list/commercial.html
Please discuss commercial lab solutions on this list.




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=47606&t=47606
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

nbar command.... [7:47605]

[GEORGE]

I was configuring nbar for my network and when typing 
Match protocol I got this commands 
The one that I like the most and look for info on cisco site was 
Fastrack Has anyone used it here?
Does anyone have a url or sample config..
 
 
arpIP ARP
  bgpBorder Gateway Protocol
  bridge Bridging
  bstun  Block Serial Tunnel
  cdpCisco Discovery Protocol
  citrix Citrix Traffic
  compressedtcp  Compressed TCP
  cuseemeCU-SeeMe desktop video conference
  custom-01  Custom protocol custom-01
  custom-02  Custom protocol custom-02
  custom-03  Custom protocol custom-03
  custom-04  Custom protocol custom-04
  custom-05  Custom protocol custom-05
  custom-06  Custom protocol custom-06
  custom-07  Custom protocol custom-07
  custom-08  Custom protocol custom-08
  custom-09  Custom protocol custom-09
  custom-10  Custom protocol custom-10
  dhcp   Dynamic Host Configuration
  dlsw   Data Link Switching
  dnsDomain Name Server lookup
  egpExterior Gateway Protocol
  eigrp  Enhanced Interior Gateway Routing Protocol
  exchange   MS-RPC for Exchange
  fasttrack  FastTrack Traffic - KaZaA, Morpheus, Grokster...
  finger Finger
  ftpFile Transfer Protocol
  gopher Gopher
  greGeneric Routing Encapsulation
  http   World Wide Web traffic
  icmp   Internet Control Message
  imap   Internet Message Access Protocol
  ip IP
  ipinip IP in IP (encapsulation)
  ipsec  IP Security Protocol (ESP/AH)
  ipv6   IPV6
  ircInternet Relay Chat
  kerberos   Kerberos
  l2tp   L2F/L2TP tunnel
  ldap   Lightweight Directory Access Protocol
  llc2   llc2
  napsterNapster Traffic
  netbiosNetBIOS
  netshowMicrosoft Netshow
  nfsNetwork File System
  nntp   Network News Transfer Protocol
  notes  Lotus Notes(R)
  novadigm   Novadigm EDM
  ntpNetwork Time Protocol
  padPAD links
  pcanywhere Symantec pcANYWHERE
  pop3   Post Office Protocol
  pppoe  PPP over Ethernet
  pptp   Point-to-Point Tunneling Protocol
  printerprint spooler/lpd
  qllc   qllc protocol
  rcmd   BSD r-commands (rsh, rlogin, rexec)
  realaudio  Real Audio streaming protocol
  ripRouting Information Protocol
  rsrb   Remote Source-Route Bridging
  rsvp   Resource Reservation Protocol
  rtpReal Time Protocol
  secure-ftp FTP over TLS/SSL
  secure-httpSecured HTTP
  secure-imapInternet Message Access Protocol over TLS/SSL
  secure-irc Internet Relay Chat over TLS/SSL
  secure-ldapLightweight Directory Access Protocol over TLS/SSL
  secure-nntpNetwork News Transfer Protocol over TLS/SSL
  secure-pop3Post Office Protocol over TLS/SSL
  secure-telnet  Telnet over TLS/SSL
  smtp   Simple Mail Transfer Protocol
  snapshot   Snapshot routing support
  snmp   Simple Network Mangement Protocol
  socks  SOCKS
  sqlnet SQL*NET for Oracle
  sqlserver  MS SQL Server
  sshSecured Shell
  streamwork Xing Technology StreamWorks player
  stun   Serial Tunnel
  sunrpc Sun RPC
  syslog System Logging Utility
  telnet Telnet
  tftp   Trivial File Transfer Protocol
  vdoliveVDOLive streaming video
  vofr   voice over Frame Relay packets
  xwindows   X-Windows remote access




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=47605&t=47605
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: WHEN WILL CCIE 350-001 EXPIRE [7:47184]

[Frank Merrill]

Steven A. Ridder wrote:
> 
> I'm at the Networkers CCIE power session as I type, and I heard
> July.
> 
> Steve

And I was at the beach with my kids (Myrtle Beach,SC) when you were typing
that so I'd have to take your word for it, but sounds like it makes sense to
me.

I'm sure I'll hear the same at the event in July in Orlando.

Hope ya had fun this week.  The Customer appreciation event in Orlando is at
Universal Studios.  That ought to be fun. (I used to work for Universal's
parent company, so I've been there often enough, but I'll take another go
since it's part of the conference)

Good Luck!



Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=47604&t=47184
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

RE: 802.11a [7:47603]

[Dennis Laganiere]

There are several good write-ups on the technology on the CCO, so I knew
that; but I was looking for an actual product to play with to determine if
the 5 MGHz traffic interferes with other systems in my manufacturing group
(a major concern).  Cisco's Aironet 1200 access point has the capability,
but it looks the antennas and NICs aren't out yet.  D-Link has a fully
functioning set-up I can use for my initial testing.

--- Dennis

-Original Message-
From: Harish DV/peakxv [mailto:[EMAIL PROTECTED]]
Sent: Thursday, June 27, 2002 2:20 PM
To: Dennis Laganiere
Cc: '[EMAIL PROTECTED]'; '[EMAIL PROTECTED]'; [EMAIL PROTECTED]
Subject: Re: 802.11a


802.11a works at 5GHz and can support upto 54mbps as compared to
2.4GHz/11mbps of 802.11b

This link might help

http://www.wlana.org/pdf/highspeed.pdf

Harish



 

  Dennis Laganiere

  , "'[EMAIL PROTECTED]'"

  ionics.com>

  Sent by:  cc:

  nobody@groupstudy.Subject:  802.11a

  com

 

 

  06/27/2002 01:39

  PM

  Please respond to

  Dennis Laganiere

 

 





I've been reading about the new, faster wireless solutions.  Is anybody's
802.11a technology ready-for-prime time?  I'm ordering a Aironet 1200
access
point to play with, and it should be capable (with the right antenna), but
I
understand Cisco's product is not out yet...  Anybody know anything about
the new "a" standard?

Thanks...

--- Dennis
_
Commercial lab list: http://www.groupstudy.com/list/commercial.html
Please discuss commercial lab solutions on this list.




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=47603&t=47603
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: 802.11a [7:47594]

[Stephen Manuel]

Dennis,

The 802.11a standard operates in a different part of the broadcast spectrum,
5ghz versus 2.4ghz in the 802.11b standard.

It also operates with a high throughput, some vendors are touting a 72mb
"turbo rate"versus 11mb for 802.11b.

The issus is that the 802.11a and 802.11b standards are not compatible with
each other, meaning if you have an AP or wireless card you can't use it to
access or accessed with equipment from the other standard.

I've seen some vendors announcing equipment that supports both standards but
so far this isn't the norm.

The IEEE 802.11 committee is supposedly working on a 802.11g standard that
makes the A and B standards compatible.

Recently when I purchased my Linksys AP and Orinoco Gold cards, I almost
went with the A standard simply because of the added speed, but I realized
the B standard was installed in far more places. For instance, alot of
coffee shops, airports and other businesses are installed AP's as added
service, if you plan on using one of these public AP's more than likely it
will be of the 802.11b standard.

Bottomline, I decided to wait for a more compatible standard before moving
away from the 802.11b standard.

HTH,

Stephen Manuel

- Original Message -
From: "Dennis Laganiere" 
To: 
Sent: Thursday, June 27, 2002 5:16 PM
Subject: 802.11a [7:47594]


> I've been reading about the new, faster wireless solutions.  Is anybody's
> 802.11a technology ready-for-prime time?  I'm ordering a Aironet 1200
access
> point to play with, and it should be capable (with the right antenna), but
I
> understand Cisco's product is not out yet...  Anybody know anything about
> the new "a" standard?
>
> Thanks...
>
> --- Dennis




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=47602&t=47594
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: multicast [7:47591]

[Priscilla Oppenheimer]

At 04:42 PM 6/27/02, Lopez, Robert wrote:
>At what OSI layer do IP multicasts lie?  Reading through CCO has made me
>more doubtful in my choices.

IP multicasts are sent to a layer 3 IP multicast address. That address is 
converted to a data-link-layer multicast address. The Internet Assigned 
Numbers Authority (IANA) owns a block of MAC-layer addresses that are used 
for group multicast addresses. The range of addresses for Ethernet is 
0x01:00:5E:00:00:00 through 0x01:00:5E:7F:FF:FF. When a host sends a frame 
to an IP group that is identified by a Class D address, the host inserts 
the low-order 23 bits of the Class D address into the low-order 23 bits of 
the MAC-layer destination address. The top 9 bits of the Class D address 
are not used. The top 25 bits of the MAC address are 0x01:00:5E followed by 
a zero bit (0001  0100 0 in binary).

IP multicast gets used for many purposes and those purposes may be at 
different layers:

Sending routing updates (EIGRP, OSPF, RIPv2) - Layer 3
Establishing routing protocol neighbor relationships (EIGRP, OSPF) - Layer 3
Sending multimedia streaming audio or video - Layer 7 with some help from 
Layer 6 (MPEG or whatever), Layer 5 (RTSP), and Layer 4 (UDP)
Finding services (Service Location Protocol) - Layer 7
Joining groups (IGMP) - Layer 3
Determining a dynamic L3 address assignment (IPv6) - Layer 3

There's probably lots of others too!

Layer 2 multicasts are used for IP multicast, but for many other purposes 
too, such as BPDU, CDP, VTP, DISL, AppleTalk Name Binding Protocol (NBP) 
lookups, etc.

Priscilla


>TIA
>
>Robert


Priscilla Oppenheimer
http://www.priscilla.com




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=47601&t=47591
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

RE: BGP Question [7:47600]

[Andy Fang]

Backdoor net admin distance = 200

EBGP net admin distance = 20

 

http://www.cisco.com/univercd/cc/td/doc/product/software/ios122/122cgcr/fiprrp_r/bgp_r/1rfbgp2.htm#xtocid15

 

 

-Original Message-

From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Annu

Roopa

Sent: Thursday, June 27, 2002 4:23 PM

To: [EMAIL PROTECTED]; [EMAIL PROTECTED]

Subject: BGP Question

Group,

Here is a BGP scenario whic is troubling me. what am i

doing wrong ? The scenario is about BGP backdoor and

it looks like this.

eBGP eBGP

172.16.1.0 10.1.1.0

R2-R10---r12--175.10.10.1

| |

|-

192.168.1.0 IGRP

The configs look as below. even thought i configure

BGP backdoor the path taken is thru the EBGP link ?

 

hostname R12

ip address 175.10.10.1 255.255.0.0

!

interface Serial0

ip address 10.1.1.2 255.255.255.0

no fair-queue

!

interface Serial1

ip address 192.168.1.2 255.255.255.0

!

router igrp 100

network 175.10.0.0

network 192.168.1.0

!

router bgp 300

bgp router-id 175.10.10.1

bgp log-neighbor-changes

network 10.1.1.0 mask 255.255.255.0

network 175.10.0.0

neighbor 10.1.1.1 remote-as 200

no auto-summary

--

hostname R2

interface Loopback0

ip address 190.10.10.1 255.255.255.0

!

interface Serial0

ip address 172.16.1.1 255.255.255.0

!

interface Serial1

ip address 192.168.1.1 255.255.255.0

clockrate 64000

!

router igrp 100

network 192.168.1.0

!

router bgp 400

bgp log-neighbor-changes

network 175.10.0.0 backdoor

network 190.10.10.0 mask 255.255.255.0

network 190.10.10.0

network 192.168.1.0

neighbor 172.16.1.2 remote-as 200

--

R2#show ip route

C 190.10.10.0 is directly connected, Loopback0

B 175.10.0.0/16 [20/0] via 172.16.1.2, 00:05:45

C 192.168.1.0/24 is directly connected, Serial1

B 200.10.10.0/24 [20/0] via 172.16.1.2, 00:00:43

180.10.0.0/24 is subnetted, 1 subnets

B 180.10.10.0 [20/0] via 172.16.1.2, 00:05:46

R2#show ip bgp

BGP table version is 120, local router ID is

190.10.10.1

Status codes: s suppressed, d damped, h history, *

valid, > best, i - internal

Origin codes: i - IGP, e - EGP, ? - incomplete

Network Next Hop Metric LocPrf

Weight Path

*> 175.10.0.0 172.16.1.2 0 200 300 i

*> 180.10.10.0/24 172.16.1.0 0 200 i

*> 190.10.10.0/24 0.0.0.0 0

32768 i

*> 192.168.1.0 0.0.0.0 0

32768 i

Thanks in advance.

 

__

Do You Yahoo!?

Yahoo! - Official partner of 2002 FIFA World Cup

http://fifaworldcup.yahoo.com

_

Commercial lab list: http://www.groupstudy.com/list/commercial.html

Please discuss commercial lab solutions on this list.

_

Commercial lab list: http://www.groupstudy.com/list/commercial.html

Please discuss commercial lab solutions on this list.
-
Do You Yahoo!?
Sign-up for Video Highlights of 2002 FIFA World Cup




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=47600&t=47600
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: 802.11a [7:47599]

[Harish DV/peakxv]

802.11a works at 5GHz and can support upto 54mbps as compared to
2.4GHz/11mbps of 802.11b

This link might help

http://www.wlana.org/pdf/highspeed.pdf

Harish



   
 
  Dennis
Laganiere
  , "'[EMAIL PROTECTED]'"   
 
ionics.com>
  Sent by: 
cc:
  nobody@groupstudy.Subject: 
802.11a
 
com
   
 
   
 
  06/27/2002
01:39
 
PM
  Please respond
to
  Dennis
Laganiere
   
 
   
 




I've been reading about the new, faster wireless solutions.  Is anybody's
802.11a technology ready-for-prime time?  I'm ordering a Aironet 1200
access
point to play with, and it should be capable (with the right antenna), but
I
understand Cisco's product is not out yet...  Anybody know anything about
the new "a" standard?

Thanks...

--- Dennis
_
Commercial lab list: http://www.groupstudy.com/list/commercial.html
Please discuss commercial lab solutions on this list.




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=47599&t=47599
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

RE: BGP Question [7:47597]

[[EMAIL PROTECTED]]

Since you are using AS 200 as the in-between, we need the config on R10
also.  In addition, then display of "show ip bgp neig sum" command on each
router will also be helpful.

Derek

-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Annu
Roopa
Sent: Thursday, June 27, 2002 4:23 PM
To: [EMAIL PROTECTED]; [EMAIL PROTECTED]
Subject: BGP Question

Group,

Here is a BGP scenario whic is troubling me. what am i
doing wrong ? The scenario is about BGP backdoor and
it looks like this.

eBGP eBGP
   172.16.1.0  10.1.1.0
  R2-R10---r12--175.10.10.1
  | |
  |-

 192.168.1.0 IGRP

The configs look as below. even thought i configure
BGP backdoor the path taken is thru the EBGP link ?


hostname R12
ip address 175.10.10.1 255.255.0.0
!
interface Serial0
ip address 10.1.1.2 255.255.255.0
no fair-queue
!
interface Serial1
ip address 192.168.1.2 255.255.255.0
!
router igrp 100
network 175.10.0.0
network 192.168.1.0
!
router bgp 300
bgp router-id 175.10.10.1
bgp log-neighbor-changes
network 10.1.1.0 mask 255.255.255.0
network 175.10.0.0
neighbor 10.1.1.1 remote-as 200
no auto-summary

--
hostname R2
interface Loopback0
ip address 190.10.10.1 255.255.255.0
!
interface Serial0
ip address 172.16.1.1 255.255.255.0
!
interface Serial1
ip address 192.168.1.1 255.255.255.0
clockrate 64000
!
router igrp 100
network 192.168.1.0
!
router bgp 400
bgp log-neighbor-changes
network 175.10.0.0 backdoor
network 190.10.10.0 mask 255.255.255.0
network 190.10.10.0
network 192.168.1.0
neighbor 172.16.1.2 remote-as 200

--
R2#show ip route
C   190.10.10.0 is directly connected, Loopback0
B175.10.0.0/16 [20/0] via 172.16.1.2, 00:05:45
C192.168.1.0/24 is directly connected, Serial1
B200.10.10.0/24 [20/0] via 172.16.1.2, 00:00:43
 180.10.0.0/24 is subnetted, 1 subnets
B   180.10.10.0 [20/0] via 172.16.1.2, 00:05:46

R2#show ip bgp
BGP table version is 120, local router ID is
190.10.10.1
Status codes: s suppressed, d damped, h history, *
valid, > best, i - internal
Origin codes: i - IGP, e - EGP, ? - incomplete

   Network  Next HopMetric LocPrf
Weight Path
*> 175.10.0.0   172.16.1.2 0 200 300 i
*> 180.10.10.0/24   172.16.1.0 0 200 i
*> 190.10.10.0/24   0.0.0.0  0
32768 i
*> 192.168.1.0  0.0.0.0  0
32768 i

Thanks in advance.


__
Do You Yahoo!?
Yahoo! - Official partner of 2002 FIFA World Cup
http://fifaworldcup.yahoo.com
_
Commercial lab list: http://www.groupstudy.com/list/commercial.html
Please discuss commercial lab solutions on this list.




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=47597&t=47597
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: ccie real-time questions [7:47436]

[JohnZ]

Jerry,
Looks like Cisco will be answering your questions directly. By the way if
you don't know answers to these questions you need to hit the books way
hard. Instant answers will not help you if you ever wanna have a chance to
pass the LAB. That's the reason why you are trying to pass the written isn't
it. Do it the right way from the start and there will be less pain in the
end. Just my opinion.
""Jerry Yu""  wrote in message
[EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
> I just failed the 305-001, but I remember the following tricky questions.
> pls. offer your opinion or answers to them.
>
>
> thanks.
>
> jyu
>
>
> 1)
> A network administrator is using debug commands to check the performance
of
> a network. What steps can the administrator take to ensure that the
"debug"
> will not require too much CPU, or at least that she will not have to
reboot
> the router to disable debug?
> (mulitple answer)
> A. Make the debug command as specific as possible
> B. Use the max-time parameter of the debug command
> C. In configuration mode, enter 'scheduler interval 15'
> D. Configure a loopback to channel debug traffic
>
> 2) NETBEUI is:
> A. A routable protocol
> B. A non-routable protocol designed for small networks
> C. A routing protocol designed for large networks
> D. A data-link layer protocol
>
> 3)In a Distance Vector protocol, "counting to infinity":
> A. Calculates the time tacken for a protocol to converge
> B. Checks to make sure the number of route entries do not exceed a set
upper
> limit
> C. Counts the packets dropped during a routing loop
> D. Sets an upper limit for hop count, so that routing loops can be broken
if
> this limit is reached
>
> 4)A network contains 2000 IPX services. Remote sites connected via 56 Kbps
> lines intermittently lose the ability to logon to some NetWare servers.
The
> problem may be fixed by:
> A. Filtering SAPs at the remote routers
> B. Filtering SAPs at the central router
> C. Filtering SAP type 4
> D. Configuring "ipx maximum-paths 2" at the central router
>
> 5) In FDDI, the characteristics of "4B/5B Encoding" include: (multiple
> answer)
> A. Sending 4 bits of information using a 5 bit symbol
> B. Increasing the clock rate of the transmitter and receiver to 125 Mhz,
> which establishes an effective data rate of 100Mbps
> C. Increasing the distance between two FDDI stations to more than 2km,
when
> using multimode fiber
> D. Providing a workaround for the Optical Bypass Relay
>
> 6)The purpose of "Fast Link Pulse[FLP]" signals is:
> A. To identify link quality and shutdown the Ethernet port of the computer
> if the quality of a link is poor
> B. To indicate that collisions has occurred in the Ethernet segment - this
> is also known as a 'jam' signal
> C. To auto-negotiate the capabilities of Fast Ethernet devices connecting
> via 100BaseT technology
> D. To support the proprietary implementation of Gigabit Ethernet of some
> vendors




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=47598&t=47436
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

OT: SSL Acceleration [7:47596]

[John Neiberger]

We're evaluating SSL acceleration for our web servers and the product
currently up to bat is the Array 500TX.  With this device we can offload
the SSL processing from the origin servers.  However, while testing the
evaluation unit we're discovering that there's a lot more to this than
simply loading the certs and keys onto the box and turning it on.

For example, it may be that we have to rewrite portions of the code on
our site to make it compatible with this solution.  There are also
changes required on the web servers themselves to make them play nicely
with the Array box.

I'm wondering if any of you have implemented SSL accleration (with
anyone's product) and what gotchas you might have run into.  I'm almost
to the point of dropping the idea of SSL acceleration and simply
suggesting that we add more servers!  :-)  That's by far the simplest
solution and doesn't require any changes to our existing code or
configurations.  We simply plug the server into our existing load
balancing switch and, with a small tweak of that config, we're off and
running.

Any thoughts?

John




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=47596&t=47596
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

RE: multicast [7:47591]

[Raul F. Fernandez]

Robert,

Layer 3 is where multicasting takes place.

Raul

-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of
Lopez, Robert
Sent: Thursday, June 27, 2002 4:42 PM
To: [EMAIL PROTECTED]
Subject: multicast [7:47591]


At what OSI layer do IP multicasts lie?  Reading through CCO has made me
more doubtful in my choices.

TIA

Robert




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=47595&t=47591
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

802.11a [7:47594]

[Dennis Laganiere]

I've been reading about the new, faster wireless solutions.  Is anybody's
802.11a technology ready-for-prime time?  I'm ordering a Aironet 1200 access
point to play with, and it should be capable (with the right antenna), but I
understand Cisco's product is not out yet...  Anybody know anything about
the new "a" standard?

Thanks...

--- Dennis




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=47594&t=47594
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: multicast [7:47591]

[Steven A. Ridder]

I'm going to say the addresses are L3, udp used as transport is L4, and the
apps are L7, with some of the formats such as MPeg2 L6.


""Lopez, Robert""  wrote in message
[EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
> At what OSI layer do IP multicasts lie?  Reading through CCO has made me
> more doubtful in my choices.
>
> TIA
>
> Robert




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=47593&t=47591
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: Queueing Question [7:47587]

[Steven A. Ridder]

In transferring voice over the internet, the internet is not been a problem.
I just finished a VoIP soho vpn class and the Internet hasn't been the
problem, it's been the Queuing.

As for queuing, look up LLQ on Cisco, as that's what you want to implement.
Also check out LFI if applicable.

How are you connected to internet?


--
RFC 1149 Compliant




""timothy thielen""  wrote in message
[EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
> your problem probably isn't their network, but the Internet (if that is
> their transport).  VOIP doesn't mean: no long distance charges by putting
> our phone system on the internet.  You can queue all day, but if the
> internet is congested, your QOS goes right out the door.
>
> --Tim
>
> saj wrote:
> >
> > Hi,
> > I have a customer who is having serious problems
> > regarding voice quality.They are doing Voip thru
> > Multitech VOIP box and their internet connection is
> > thru Cisco 1720.They have two locations and both
> > locations have the similar setup.Is this possible to
> > implement any sort of queueing in this scenario?(As
> > voice is not coming directly to Cisco router,whereas
> > VOIP is done by Multitech box).Is this recommended to
> > implement priority queueing in this scenario?
> > Thanks.
> > Saj
> >
> > __
> > Do You Yahoo!?
> > Yahoo! - Official partner of 2002 FIFA World Cup
> > http://fifaworldcup.yahoo.com




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=47592&t=47587
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

multicast [7:47591]

[Lopez, Robert]

At what OSI layer do IP multicasts lie?  Reading through CCO has made me
more doubtful in my choices.

TIA

Robert




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=47591&t=47591
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

RE: Queueing Question [7:47587]

[timothy thielen]

your problem probably isn't their network, but the Internet (if that is
their transport).  VOIP doesn't mean: no long distance charges by putting
our phone system on the internet.  You can queue all day, but if the
internet is congested, your QOS goes right out the door.

--Tim

saj wrote:
> 
> Hi,
> I have a customer who is having serious problems
> regarding voice quality.They are doing Voip thru
> Multitech VOIP box and their internet connection is
> thru Cisco 1720.They have two locations and both
> locations have the similar setup.Is this possible to
> implement any sort of queueing in this scenario?(As
> voice is not coming directly to Cisco router,whereas
> VOIP is done by Multitech box).Is this recommended to
> implement priority queueing in this scenario?
> Thanks.
> Saj
> 
> __
> Do You Yahoo!?
> Yahoo! - Official partner of 2002 FIFA World Cup
> http://fifaworldcup.yahoo.com
> 
> 




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=47590&t=47587
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

RE: Ask the CCIE proctor at the online Cisco forum currently [7:47589]

[Creighton Bill-BCREIGH1]

Far from the only member :)

Bill Creighton CCNP
Senior System Engineer
Motorola
iDEN CNRC Packet Data


-Original Message-
From: Eric Rogers [mailto:[EMAIL PROTECTED]] 
Sent: Thursday, June 27, 2002 1:28 PM
To: [EMAIL PROTECTED]
Subject: Re: Ask the CCIE proctor at the online Cisco forum currently
[7:47583]

Let me welcome you to the "getting burned out on this stuff" club.. It's
great to know that I'm not the only member. :-)

-Eric

- Original Message -
From: "Chuck Larrieu" 
To: ""Eric Rogers"" 
Sent: Thursday, June 27, 2002 10:42 AM
Subject: Re: Ask the CCIE proctor at the online Cisco forum currently
[7:47581]


> oh boy. one more place to see questions like "how many CCIE's are there?"
> and "how long do I have to wait before I can get a lab date?" and "I have
my
> CCNA. Am I ready to take the Lab?"  :->
>
> I'll bookmark this one, but to be truthful, I don't see much of interest
> here. I must be getting burned out on this stuff.
>
> Chuck
>
>
> - Original Message -
> From: ""Eric Rogers"" 
> Newsgroups: groupstudy.cisco
> Sent: Thursday, 27 June, 2002 11:08 AM
> Subject: FYI: Ask the CCIE proctor at the online Cisco forum currently
> [7:47581]
>
>
> > this is just fill and watch the wrap
> >
> > #
> >
> > ##
> >
> > #
> >
> > ###
> >
> > ###
> >
> >
>
http://comws-sj-1.cisco.com/eforum/servlet/NetProf?page=netprof&CommCmd=MB%3
> F
> > cmd%3Dpass_through%26location%3Doutline%40%5E1%40%40.ee84bd9
> >
> >
> > -Eric




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=47589&t=47589
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: Weird Console Issue [7:47585]

[Chuck]

I don't see a registry setting for this router, but if I were to guess, I
would say that this particular router has some console port settings that
don't match the other routers, and therefore your HyperTerminal settings.

IIRC, you need to experiment and find the right baud setting. you should be
able to do this easily enough.

once you have the correct settings, then you can get in, peek at the
register ( sh ver - 0x2zzz ) and go through the steps to change to 0x2102

HTH





""Kevin Hafner""  wrote in message
[EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
> I have never seen this before, any help is greatly appreciated. Received a
> group of 7 routers today and was going through and wiping the NVRAM. I was
> able to directly connect to all routers and perform the required tasks
> except for one lone 2501. When connecting to the console line the router
> would not accept any of the actual keystrokes. It is almost like I am
> getting a random mapping to the keys on my computer. After rebooting I
typed
> the following keys n,,d,f,,,d,s,c, here is the
> results, weird mappings that don't remain the same. I am using
HyperTerminal
> Personal Edition with the default settings(9600 baud, 8 databits, no
parity,
> 1 stop bits, no flow control) to connect.
>
> System Bootstrap, Version 5.2(5), RELEASE SOFTWARE
> Copyright (c) 1986-1994 by cisco Systems
> 2500 processor with 16384 Kbytes of main memory
>
> F3: 6799388+89240+456028 at 0x360
>
>   Restricted Rights Legend
>
> Use, duplication, or disclosure by the Government is
> subject to restrictions as set forth in subparagraph
> (c) of the Commercial Computer Software - Restricted
> Rights clause at FAR sec. 52.227-19 and subparagraph
> (c) (1) (ii) of the Rights in Technical Data and Computer
> Software clause at DFARS sec. 252.227-7013.
>
>cisco Systems, Inc.
>170 West Tasman Drive
>San Jose, California 95134-1706
>
>
>
> Cisco Internetwork Operating System Software
> IOS (tm) 2500 Software (C2500-D-L), Version 12.0(9), RELEASE SOFTWARE
(fc1)
> Copyright (c) 1986-2000 by cisco Systems, Inc.
> Compiled Mon 24-Jan-00 22:06 by bettyl
> Image text-base: 0x030387D0, data-base: 0x1000
>
> cisco 2500 (68030) processor (revision D) with 16384K/2048K bytes of
memory.
> Processor board ID 02095949, with hardware revision 
> Bridging software.
> X.25 software, Version 3.0.0.
> 1 Ethernet/IEEE 802.3 interface(s)
> 2 Serial network interface(s)
> 32K bytes of non-volatile configuration memory.
> 8192K bytes of processor board System flash (Read ONLY)
>
>
>  --- System Configuration Dialog ---
>
> Would you like to enter the initial configuration dialog? [yes/no]:
723&;{sc
>
>
> Any help or ideas would be appreciated.
>
> Kevin




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=47588&t=47585
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Queueing Question [7:47587]

[saj]

Hi,
I have a customer who is having serious problems
regarding voice quality.They are doing Voip thru
Multitech VOIP box and their internet connection is
thru Cisco 1720.They have two locations and both
locations have the similar setup.Is this possible to
implement any sort of queueing in this scenario?(As
voice is not coming directly to Cisco router,whereas
VOIP is done by Multitech box).Is this recommended to
implement priority queueing in this scenario?
Thanks.
Saj

__
Do You Yahoo!?
Yahoo! - Official partner of 2002 FIFA World Cup
http://fifaworldcup.yahoo.com




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=47587&t=47587
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

RE: Help with RSP4+ and normal boot sequence in a [7:47408]

[David j]

Yes, they are different now, but we did all sort of test, including to use
exactly the same version.. by the way, both routers are working fine, but
what I don't know is which is booting "correctly"
[EMAIL PROTECTED] wrote:
> 
> I don't know, but your software versions are different. 
> 
> On the working on it is:
> (RSP-IK8SV-M), Version 12.2(7a)
> 
> On the broken one it is:
> (RSP-JK8SV-M), Version 12.2(7c)
> 
> Could that be a cause of the problem ... Sorry no access to
> internet
> currently?
> 
> -Original Message-
> From: David j [mailto:[EMAIL PROTECTED]] 
> Sent: 25 June 2002 20:39 
> To: [EMAIL PROTECTED]
> Subject: Help with RSP4+ and normal boot sequence in a 7
> [7:47408]
> 
> 
> Hi boys!
> I'm having problems with a 7500 I have upgraded a few weeks
> ago, when I type
> sh ver in others 7500 that I have, I can see these lines:
> ---xx---
> Cisco Internetwork Operating System Software
> IOS (tm) RSP Software (RSP-IK8SV-M), Version 12.2(7a), RELEASE
> SOFTWARE
> (fc2) Copyright (c) 1986-2002 by cisco Systems, Inc. Compiled
> Thu 21-Feb-02
> 04:23 by pwade Image text-base: 0x600109C8, data-base:
> 0x6179A000
> ROM: System Bootstrap, Version 12.0(10r)S1, RELEASE SOFTWARE
> (fc1)
> BOOTLDR: RSP Software (RSP-BOOT-M), Version 12.2(7a), RELEASE
> SOFTWARE (fc2)
> ---xx---
> However when I do the same on the problematic router I can see
> the
> following:
> 
> Cisco Internetwork Operating System Software
> IOS (tm) RSP Software (RSP-JK8SV-M), Version 12.2(7c), RELEASE
> SOFTWARE
> (fc1) Copyright (c) 1986-2002 by cisco Systems, Inc. Compiled
> Sat 11-May-02
> 11:02 by pwade Image text-base: 0x600109C8, data-base:
> 0x61B28000
> ROM: System Bootstrap, Version 12.0(10r)S1, RELEASE SOFTWARE
> (fc1)
> 
> So as you can see, I can't see any reference to the BOOTLDR.
> I've talked
> with the boys at TAC and they haven't got any solution (I've
> rebooted the
> router 4 or 5 times, upgraded and downgraded the software)
> Anybody knows
> what is the correct process for booting a 7500 with a RSP4+?
> Cisco says that
> RSP4+ boots the main image directly without loading the
> bootflash, but I
> have 7 routers loading the bootflash before loading the main
> image.
> 
> 




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=47584&t=47408
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Weird Console Issue [7:47585]

[Kevin Hafner]

I have never seen this before, any help is greatly appreciated. Received a
group of 7 routers today and was going through and wiping the NVRAM. I was
able to directly connect to all routers and perform the required tasks
except for one lone 2501. When connecting to the console line the router
would not accept any of the actual keystrokes. It is almost like I am
getting a random mapping to the keys on my computer. After rebooting I typed
the following keys n,,d,f,,,d,s,c, here is the
results, weird mappings that don't remain the same. I am using HyperTerminal
Personal Edition with the default settings(9600 baud, 8 databits, no parity,
1 stop bits, no flow control) to connect.

System Bootstrap, Version 5.2(5), RELEASE SOFTWARE
Copyright (c) 1986-1994 by cisco Systems
2500 processor with 16384 Kbytes of main memory

F3: 6799388+89240+456028 at 0x360

  Restricted Rights Legend

Use, duplication, or disclosure by the Government is
subject to restrictions as set forth in subparagraph
(c) of the Commercial Computer Software - Restricted
Rights clause at FAR sec. 52.227-19 and subparagraph
(c) (1) (ii) of the Rights in Technical Data and Computer
Software clause at DFARS sec. 252.227-7013.

   cisco Systems, Inc.
   170 West Tasman Drive
   San Jose, California 95134-1706



Cisco Internetwork Operating System Software
IOS (tm) 2500 Software (C2500-D-L), Version 12.0(9), RELEASE SOFTWARE (fc1)
Copyright (c) 1986-2000 by cisco Systems, Inc.
Compiled Mon 24-Jan-00 22:06 by bettyl
Image text-base: 0x030387D0, data-base: 0x1000

cisco 2500 (68030) processor (revision D) with 16384K/2048K bytes of memory.
Processor board ID 02095949, with hardware revision 
Bridging software.
X.25 software, Version 3.0.0.
1 Ethernet/IEEE 802.3 interface(s)
2 Serial network interface(s)
32K bytes of non-volatile configuration memory.
8192K bytes of processor board System flash (Read ONLY)


 --- System Configuration Dialog ---

Would you like to enter the initial configuration dialog? [yes/no]: 723&;{sc


Any help or ideas would be appreciated.

Kevin




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=47585&t=47585
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

RE: FYI: Ask the CCIE proctor at the online Cisco foru [7:47581]

[Michael Williams]

Thanks for the link  

Mike


Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=47586&t=47581
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: Ask the CCIE proctor at the online Cisco forum currently [7:47583]

[Eric Rogers]

Let me welcome you to the "getting burned out on this stuff" club.. It's
great to know that I'm not the only member. :-)

-Eric

- Original Message -
From: "Chuck Larrieu" 
To: ""Eric Rogers"" 
Sent: Thursday, June 27, 2002 10:42 AM
Subject: Re: Ask the CCIE proctor at the online Cisco forum currently
[7:47581]


> oh boy. one more place to see questions like "how many CCIE's are there?"
> and "how long do I have to wait before I can get a lab date?" and "I have
my
> CCNA. Am I ready to take the Lab?"  :->
>
> I'll bookmark this one, but to be truthful, I don't see much of interest
> here. I must be getting burned out on this stuff.
>
> Chuck
>
>
> - Original Message -
> From: ""Eric Rogers"" 
> Newsgroups: groupstudy.cisco
> Sent: Thursday, 27 June, 2002 11:08 AM
> Subject: FYI: Ask the CCIE proctor at the online Cisco forum currently
> [7:47581]
>
>
> > this is just fill and watch the wrap
> >
> > #
> >
> > ##
> >
> > #
> >
> > ###
> >
> > ###
> >
> >
>
http://comws-sj-1.cisco.com/eforum/servlet/NetProf?page=netprof&CommCmd=MB%3
> F
> > cmd%3Dpass_through%26location%3Doutline%40%5E1%40%40.ee84bd9
> >
> >
> > -Eric




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=47583&t=47583
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

RE: Cat 5000 problems [7:47573]

[Robert Cluett]

Is he running multiple (primary and secondary?) sups?


Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=47582&t=47573
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

FYI: Ask the CCIE proctor at the online Cisco forum currently [7:47581]

[Eric Rogers]

this is just fill and watch the wrap

#

##

#

###

###

http://comws-sj-1.cisco.com/eforum/servlet/NetProf?page=netprof&CommCmd=MB%3F
cmd%3Dpass_through%26location%3Doutline%40%5E1%40%40.ee84bd9


-Eric




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=47581&t=47581
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

RE: pix question [7:47556]

[Roberts, Larry]

And to top if off, unless your running the newest code, the only way to
enable the new code is to reinstall the OS...
In 6.2 they have added the ability to change from the command prompt, but in
older versions its only possible by reloading the OS, even if it's the same
OS.



Thanks

Larry
 

-Original Message-
From: Dan Penn [mailto:[EMAIL PROTECTED]] 
Sent: Thursday, June 27, 2002 11:37 AM
To: [EMAIL PROTECTED]
Subject: RE: pix question [7:47556]


Wrong, the 3DES isn't like most cisco features that you can just download.
They give you a code that you actually have to enter into the pix.

Dan

-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] On Behalf Of
Matthew Carpenter
Sent: Thursday, June 27, 2002 8:46 AM
To: [EMAIL PROTECTED]
Subject: Re: pix question [7:47556]

I don't think so
- Original Message -
From: "GEORGE" 
To: 
Sent: Thursday, June 27, 2002 9:03 AM
Subject: pix question [7:47556]


I have the 3des encryption disabled do I have to purchase a license to
enable it?

VPN-3DES:   Disabled




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=47580&t=47556
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: CCIE Communications & Services [7:47565]

[nrf]

Your questions are difficult to answer.  But I will try anyway


""YASSER ALY""  wrote in message
[EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
> Hi there (My first contribution in this list)
>
> Anybody here is preparing for the Communications & Services ?
> I have some questions that I would appreciate receiving an answer for
>
> 1) Do you consider the Communications & Services harder and more
recognized
> that the Routing & Switching or not ?

I don't know if C/S is harder but it is definitely less recognized, simply
because it's so new.  Most people will have never heard of it and will just
assume you're talking about the R/S. Recognition takes time, and the C/S
hasn't been around for very long.

>
> 2) Will the equipment list be common for both exams ? If so, will the
> changes that will be active the 4th of November reflect on the
> Communications & Services also ?

Yes, yes.   But the technologies tested are totally different.  You can look
at the Cisco website for more info.

>
> 3)I noticed that there are many versions on the qualification exam for the
> Communications & Services, how can this be true while there is only one
> standard lab exam ?

This is a question that has been asked many times by many people, including
myself.  It is such a common question that Cisco even decided to address it
here:

"Some CCIE candidates have asked why is there not a separate CCIE lab for
each specialty (Optical, Cable, Dial, WAN Switching, DSL, Content
Networking, Wireless, and Voice). The IE in CCIE stands for Internetwork
Expert. An Internetwork Expert is an individual who has demonstrated expert
level knowledge in the areas of IP and IP Routing (BGP, OSPF, ISIS, EIGRP,
IGRP, and RIP) and layer two technologies such as ATM and Frame Relay,
Switching, Quality of Service, Multicast, and ISDN. In addition MPLS,
MPLS/VPNs, and traffic engineering are components of the Communications and
Services CCIE track.
These are the elements of the General Knowledge component of every CCIE
Communications and Services written qualification exam. The Communications
and Services exam also requires expert level knowledge in one specialty area
(Optical, Cable, Dial, WAN Switching, DSL, Content Networking, Wireless, or
Voice). Many elements of the specialty areas are design related and are
therefore difficult if not impossible to evaluate in a hands-on
implementation-oriented lab exam. For this reason the evaluation of the
specialty areas is evaluated by the written qualification exam and the
General Knowledge component is evaluated in every written qualification exam
and the lab exam."

http://www.cisco.com/warp/public/625/ccie/certifications/services.html

So basically, while unusual, it is indeed true that there are multiple
writtens and one common lab, and the lab doesn't really have very much in
common with the written (you should carefully review the descriptions of
each written and of the lab to find out exactly what is tested on each).
Furthermore, there really is no such thing as a C/S "specialty" as others
have claimed.  For example, it doesn't matter which written you passed.  All
C/S CCIE's are equal in the eyes of Cisco.  There is no such thing as a
C/S-DSL or C/S-cable or C/S-optical.  There's only the C/S designation.


>
> 4) Is the blueprint for both exams the same or not ??

I assume you mean the written(s) and the lab.  Again, you should very
carefully review their descriptions.

http://www.cisco.com/warp/public/625/ccie/certifications/services.html#3

http://www.cisco.com/warp/public/625/ccie/certifications/services.html#4




>
> 5) I checked the CCIE population over Cisco site and didn't see any clue
how
> many CCIE's in Routing & Switching, How many in Communications & Services,
> and how many for Security, any clues ?

The Cisco Forums discussed this recently.  Apparently there are about 16 C/S
CCIE's and about 40 Security CCIE's.  There are of course lots of the
'old-school' CCIE's like the ISP-Dial guys and the WAN-switching guys too.


>
>
> 6) Finally, if it you have the option & knowledge to go either for the
> Routing & Switching or the Communications & Services, which one would you
> prefer and why ?

Impossible to say.  This should depend on what kinds of technologies you
work with and where you want your career  to go.  R/S is
enterprise-oriented, and C/S is service-provider oriented.  All I can say is
that if you like service-provider stuff, then you should look at C/S. (Of
course, if you really really like service-provider stuff, there is another
cert you should be looking at that shall remain unnamed, but suffice it to
say that it is run by another vendor).




>
>
> I am totally confused and need your advice because I want to go for the
> Routing & Switching, while my company wants me to go for the
Communications
> & Services. Which one worth more in your openion ??

See above.  Neither one is inherently "worth more".  It is only the
combination of your skill set and what you like to do t

Re: frame relay question [7:47498]

[Chuck]

to the frame switch, each link can have the exact same dlci. if you have
fooled with using cisco routers as frame switches, you will get the idea how
this is possible. the programming instruction says ( in English ) "any
frames using this port are dlci xx and if they are incoming, send them out
that port as dlci yy"

essentially, a frame PCV is a series of links, each of which has a unique
identifier.

cust_1---dlci_16--port_1_frameswitch_port_2dlci_397---port_7_frameswitch
_port_9---dlci_120cust_1
cust_2---dlci_16--port_3_frameswitch_port_4dlci_397---port_8_frameswitch
_port_8---dlci_120cust_2

the only thing that has to be unique in this situation is the port on the
frame switch. along each link of the pvc, the dlci is unique only to that
link. If any of these links were carrying multiple PVC's then there would be
multiple and unique DLCI's for each PVC on that link.

so yes, from the telco standpoint, it is far easier for the switch tech to
use the same methodology, and far easier for the telco to have some standard
practice. my experience is the telco's really hate it when customers start
asking for unique dlci numbering systems. plus it is likely that it will
take longer for your link to get working right, and you will have to spend
time arguing with the switch tech.



""Kelly Cobean""  wrote in message
[EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
> You know, this brings up a good question...My company has sites all across
> the country, and for every spoke site, we were able to get the exact same
> DLCI, and at the hubs, we were able to get a range of DLCI's in increments
> of 5 going out to each of the spokes.  How is this possible?  I completely
> understand that the DLCI is locally significant, and that it only defines
> the connection between the Frame switch and the customer CPE, but what are
> the odds of the exact same DLCI on so many different switches being
> available?  Maybe there is something relevant to the fact that the
carrier's
> network is actually using ATM that makes this possible?  Thanks!
>
> -Original Message-
> From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of
> Chuck
> Sent: Wednesday, June 26, 2002 3:09 PM
> To: [EMAIL PROTECTED]
> Subject: Re: frame relay question [7:47498]
>
>
> good questions.
>
> in theory, you may request any dlci you wish, so long as it is in the
legal
> range for the carrier. this would be numbers 16 through 996? for some, or
> through 1004? for others
>
> in fact, if you have a good rapport with your carrier, and they in turn
have
> their act together, this is common practice.
>
> OTOH, in my experience, telcos just want to get the work done, and they
will
> configure the dlci starting with 16 because it's easy to remember. the
> switch techs just bang out their configs with no conscious thought
> intervention.
>
> if you have nothing fancy going on ( and it appears you don't ) the only
> required configuration on your router is setting the frame relay
> encapsulation, and setting the ip address. at that point the circuit will
> come up. you can check this using the show frame pvc, show frame lmi and
> show ip interface brief commands. lmi will detect and use the single pvc
> with no other tweaks required. if you have multiple pvcs on a circuit, you
> would, of course have to use frame map commands, or use point-to-point
> subinterfaces in conjunction with the frame interface-dlci command.
>
> best wishes.
>
>
> ""GEORGE""  wrote in message
> [EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
> > I have a newbie question, regarding frame-relay. When I order a frame
> > relay circuit for two locations
> > Do the telco provide the dlci? Or I make it up? Once the frame relay is
> > installed on both locations I guess using the dlci numbers it makes the
> > connection , besides the ip and all other stuff
> > Can someone explain it please
> > thanks




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=47578&t=47498
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

RE: pix question [7:47556]

[Dan Penn]

Wrong, the 3DES isn't like most cisco features that you can just
download.  They give you a code that you actually have to enter into the
pix.

Dan

-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] On Behalf Of
Matthew Carpenter
Sent: Thursday, June 27, 2002 8:46 AM
To: [EMAIL PROTECTED]
Subject: Re: pix question [7:47556]

I don't think so
- Original Message -
From: "GEORGE" 
To: 
Sent: Thursday, June 27, 2002 9:03 AM
Subject: pix question [7:47556]


I have the 3des encryption disabled do I have to purchase a license to
enable it?

VPN-3DES:   Disabled




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=47577&t=47556
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: Wireless Training [7:47535]

[Ken Diliberto]

Theo,

Figure out what it is you want from training then go looking.  Do you
want to learn how to configure a card and AP?  Bridges? Doing site
surveys?  There's tons of stuff.

Ken

>>> "[EMAIL PROTECTED]" 
06/26/02 08:43PM >>>
Group-

Besides Cisco wireless related training, could anyone give me some
feedback
on any wireless training courses anyone might have taken?

I know about various training centers, like www.trainingwireless.com
and 
others, but I would like to know about engineer's experiences at these

courses and which ones people are recommending.

Thanks!

Theo




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=47576&t=47535
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

RE: IOS firewall feature set for Cisco 2514 [7:47523]

[Dan Penn]

You are right, the link I was reading was on a few "low volume" 2500's
like the FRAD etc.

Dan

-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] On Behalf Of
John Kaberna
Sent: Thursday, June 27, 2002 8:43 AM
To: [EMAIL PROTECTED]
Subject: Re: IOS firewall feature set for Cisco 2514 [7:47523]

Unless I'm not reading this right, they will support it til 2007.

http://www.cisco.com/warp/public/cc/general/qrg/eol_ai.htm


""Dan Penn""  wrote in message
[EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
> No Rick that guy is MOST mistaken some of the 2500 series has been
> EOS'd.  However cisco is pledging software support until 2005.
>
> Dan
>
> -Original Message-
> From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] On Behalf
Of
> Rick
> Sent: Wednesday, June 26, 2002 8:31 PM
> To: [EMAIL PROTECTED]
> Subject: Re: IOS firewall feature set for Cisco 2514 [7:47523]
>
> Where did you find info that Cisco does not support
> 25xx series anymore? I have 156 support contracts
> on 2509, 2511, and 2520's. I also just finished a
> network wide upgrade of IOS on these same boxes.
> I am concerned that Cisco just announced this and
> this leaves me with a serious problem.
>
>
>
> ""S M""  wrote in message
> [EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
> > I'm looking for Cisco 2514 IOS w/ firewall feature set. Cisco
doesn't
> > supports 25xx series anymore.
> >
> > Does anyone point me in the right direction to get the software.
> >
> > Thanks
> >
> > SM




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=47575&t=47523
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Cat 5000 problems [7:47573]

[Omer Ehsan Dar]

Hi all,
I was thinking of changing the flash of my Cat 5000 with Sup 1. where do
I get the flash and can the boot roms of cat switches be up graded like
in the routers. Also A friend of mine is facing a problem on his sup
engine the engine wont pick up its MAC address and also its own serial
number what might be the problem. He has tried reseating the module and
also tried removing the flash and booting the switch which it does. Also
he used the clear config all command but it also does not work.
any suggestions




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=47573&t=47573
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

RE: Rogue Wireless LANs [7:47287]

[Howard C. Berkowitz]

At 6:35 AM -0400 6/27/02, Evans, TJ wrote:
>I am not, by any stretch of the imagination, a lawyer ... however my
>understanding of the current interpretation of the laws applicable to
>WarDriving are that if the owner/operator does not make atleast some minimal
>effort to secure the transmissions then it is considered 'for public use'.
>So if the WAP is happily broadcasting it's SSID and no encryption is enabled
>... OTOH, if you capture packets, crack a wep key and spoof a MAC you are
>putting forth effort to get into somewhere that has the proverbial "No
>Entry" sign.
>
>Similar to how, currently, a basic port scan against someone's machine is
>not illegal.  It may violate your acceptable-use/subscription
>agreement/whatever and you may get a slap on the wrist or a nasty-gram from
>the lucky recipient, but AFAIK that is about as far as it goes ... until you
>actually attempt to launch an exploit against those services/ports.

The difference here is that the first case uses electromagnetic 
spectrum and the second doesn't.  Electromagnetic spectrum use is 
more regulated.  Let's put it this way--people have been successfully 
prosecuted for disclosing the content of unencrypted cellular or 
other radio communications.

Now, if you didn't disclose the information, or use it to penetrate, 
you probably would be OK. That's the basis of the legality of such 
things as short wave listening. It's specifically illegal to disclose 
it to a third party.  The lawyers could have fun arguing whether you 
are the third party disclosing to one of the parties to the 
communication.

Actually, if a broadcaster wants to be public access, they generally 
must positively register as such with the FCC.  A public broadcaster 
actually has more regulatory requirements, such as outage reporting. 
There may also be issues of ownership and monopoly within a given 
market area.

>
>
>... back to wardriving ...
>"Simple Bandwidth Leeching" is about all you could do without crossing any
>really bad lines, and even that is questionable - bandwidth is a company
>resource that they must provision, pay for, etc. and you are depriving them
>of the use of it.
>
>Obviously, if you do any of this and then proceed maliciously into their
>network, or pose as a member of that firm, etc. you are _at_that_point_
>definitively violating the law and deserve whatever befalls you ;)
>
>
>Again - that is my understanding of the current
>laws/policies/interpretations.  Corrections always accepted ...
>Thanks!
>TJ
>
>
>-Original Message-
>From: Howard C. Berkowitz [mailto:[EMAIL PROTECTED]]
>Sent: Wednesday, June 26, 2002 4:02 PM
>To: [EMAIL PROTECTED]
>Subject: RE: Rogue Wireless LANs [7:47287]
>
>At 2:26 PM -0400 6/26/02, Dan Penn wrote:
>>I think the take the company would take on it would depend highly on how
>>worried they are about security.  If they have a well written security
>>policy I think you would be in for some arguments from their legal
>>department.  On the other hand what if it's a company that doesn't even
>>know that employee Joe Schmoe has installed a WAP under his desk running
>>802.11 unsecured to world...I think in that situation they might be
>>interested to hear what you have to say.
>>
>>Over all this whole deal is very cloudy to say the least.  What legal
>>rights does a company have if they are broadcasting wireless
>>unsecured...it is like throwing money into the air then trying to arrest
>>someone if they take it.
>
>No, there really are very specific rules for electromagnetic
>emissions, beginning with the (US) Communications Act of 1934.
>Essentially, it says that any signals not explicitly meant for public
>broadcast may be intercepted, but that disclosure of the content to
>third parties is illegal.
>
>This is enforced by the Federal Communications Commission, which is
>the US agency that regulates, among other things, the use of spectrum
>space, and the licensing (when required) of parts of the spectrum.
>
>There certainly are blurred areas, such as disclosing statistical
>aggregates that do not reveal content, or intercepting communications
>by other than the primary signal (i.e., eavesdropping through
>incidental radiation, power line coupling, etc.).
>
>In general, though, the law is much more clear about hacking
>involving the electromagnetic spectrum in free space than it is on
>entering computers.
>
>>It's an old well known fact you don't say
>>"welcome" in your motd banner because you "welcomed" the intruder in.
>>You could say, you didn't know that you were unauthorized because you
>>could connect to it from somewhere not on their property and you were
>>never warned that you were unauthorized.  I'm not saying you would win
>>the legal battle...but there would most likely be a legal battle over
>>it.
>>
>>I am interested to know the outcome if anybody does actually try this
>>and approaches the company about it.
>>
>>Dan
>>
>>-Original Message-
>>From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECT

Re: Question about OSI [7:9811]

[Howard C. Berkowitz]

Let me try to respond for CertZone.  It looks like somebody mentally 
merged two questions. Network clearly is the answer for enabling 
hop-by-hop communications. A _set_ of hop-by-hop devices enables 
end-to-end communications.  So, the explanation is right for 
transport, but the question is wrong.

Actually, in a very subtle way, I could argue the question is right, 
because no end-to-end communications at the transport layer will take 
place unless the network layer works. But I won't argue that, because 
it's just too perverse a phrasing.

I would change the question to remove the hop-by-hop phrase, and 
replace it with end-to-end.

Can you tell us the question number or when you received it, so we 
can correct it?  I'm afraid, though, that it looks like my writing 
style, and, if so, I can only claim a mental slip.  I might have been 
writing two related questions and, in editing, gotten the question 
lines reversed.


>Good Luck next week let us know how you did.
>You will be fine.
>I have found a few objectional questions from cert-zone, but they are quick
>to accept input and make corrections to their material where necessary or
>expand on why and what the thinking was behind the question. They are a
>dedicated group of people.
>You should post the question to the main [EMAIL PROTECTED] list, there
>are many contributers to cert-zone that regularly read the board. You can
>probably get the author or one of their technical reviewers to clarify the
>issue for you on that board.
>I am going to copy those groups in this response so that everyone can
>benefit, being that those are widely published questions in these parts.
>Don
>
>
>- Original Message -
>From: "Marcial Rosales Garcia"
>To: "'Donald B Johnson Jr'"
>Sent: Thursday, June 27, 2002 4:32 AM
>Subject: RE: Question about OSI [1:9811]
>
>
>>  Hi Donald,
>>
>>  I have been for a while because I had to leave my studying for 5-6
>>  months. Because I am not looking just a degree or cert, because I already
>>  hold 5 years degree, I am not in a hurry to obtain the CCNA. I want to be
>>  very confident and skilled to be a real CCNA and then pass the exam.
>>  I am planning to take the exam next week, although I feel confident
>>  with many areas, sometimes I find answers to questions that screw me up.
>>  Sometimes they are questions from cisco sources, that are contridictory
>with
>>  the documentation or sometimes cannot see clearly that the answer is
>>  correct.
>>  The question I have posted comes from CertificationZone, most of the
>>  questions (free, because I don't pay money for questions) are correct and
>>  looks quite interesting, however, with this one I disagreed.
>>
>>  What I understood about "dumb" is that you meant the question was
>>  silly or stupid, or so simple that there wan't any need to ask it. That's
>>  why I responsed "I don't see (the question) so dumb".
>>
>>  I think that certification is not any race, I think is a reward to
>>  your effort along your career. I studied pretty hard to get the JAva
>>  Certification (6 months + prof. experience), I got 91% (minimum is 54%);
>>  however, I know people who just studied 1 months (without experience)
>(they
>>  wanted to get at least a degree that says: I can program in java) and got
>>  55%. Without studying, just making some mock exams you get that average,
>so
>>  how knowledge has this guy about java?
>>
>>  Thank you for your response, Donald.
>>  I wish we talk in other moment.
>>
>>  Best regards
>>  Marcial Rosales
>>
>>  -Original Message-
>>  From: Donald B Johnson Jr [mailto:[EMAIL PROTECTED]]
>>  Sent: 26 June 2002 21:51
>>  To: [EMAIL PROTECTED]; [EMAIL PROTECTED]; Marcial Rosales
>>  Garcia
>>  Subject: Re: Question about OSI [1:9811]
>>
>>
>>  Marcial
>>  I don't understand the statement "I don't see so dumb" please clarify.
>>  You are correct hops are routers.
>>  What I meant was the question is dumb because it is worded very poorly
and
>>  in my opinion the answer they are stating "trsansport" is incorrect.
>  > You made the statement "I found a question", that is dubious at best.
>>  You should cite the source of the question when posting. You can run
>across
>>  an endless supply of hot-shots posting Q&A on the internet. Remember the
>>  question and information are only as good as the source.
>>  What I am saying is be careful, check sources, and cross reference
>>  information. You would have a hard time finding another resource talking
>>  about "hop-by-hop communication" at the transport layer. Also my
substance
>>  reasoning is;
>>  Scenario: You are down to the last ? on your CCNA test. get it right and
>you
>>  pass, get it wrong and you fail. I would not want to hang my hat on that
>>  info, if the question was based around the concept of hops.
>>  By the way you have been on this group for awhile; Have you taken the
>test?
>>  When will you take the test? Are you a CCNA?
>>  Don
>>
>>
>>  >
>>  > I don't see so dumb, that's why 

Content Switching [7:47572]

[Brian Zeitz]

I looked around, there are no books available for this? I don't even see
any coming out. A few questions.





While doing Load Balancing on a CS11000, if you use Sticky sessions. Say
you set a session to stay on one server for 300 seconds. If the server
has a failure during that 300 second session, is it then transferred to
another server, or is the user just dropped?



Also, I was reading about Firewall sandwichining for the CS11000, having
2 content switches I the DMZ and 2 on my inside network. Is it difficult
to replicate the data from the DMZ to the inside? Are these ment do
this?



I don't own one of these yet. We are doing load balancing with some
hardware devices that seem to always want me to specify the web servers
to point to a gateway (the load balancer interface). This puts some
retraints on my design. Also seems to want to use NAT no matter what.




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=47572&t=47572
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

RE: IOS firewall feature set for Cisco 2514 [7:47523]

[Dan Penn]

Brad,

Check out the bottom of this page:

http://www.cisco.com/warp/public/cc/pd/rt/2500/2509/prodlit/1154_pp.htm

Dan

-Original Message-
From: Brad Ellis [mailto:[EMAIL PROTECTED]] 
Sent: Wednesday, June 26, 2002 10:14 PM
To: "Dan Penn"
Subject: Re: IOS firewall feature set for Cisco 2514 [7:47523]

dan,

where did you hear/read about them pledging support on the 2500's until
2005?

thanks,
-Brad Ellis
CCIE#5796 (R&S / Security)
Network Learning Inc
[EMAIL PROTECTED]
www.ccbootcamp.com/quicklinks.html (Cisco Training)
www.@!#$.com (Cisco R&S CCIE Discussion groups)
www.securityie.com (Cisco Security CCIE Discussion groups)
www.optsys.net (Cisco hardware)
Voice: 248-299-8114
FAX: 509-271-9288

- Original Message -
From: ""Dan Penn"" 
Newsgroups: groupstudy.cisco
Sent: Thursday, June 27, 2002 12:01 AM
Subject: RE: IOS firewall feature set for Cisco 2514 [7:47523]


> No Rick that guy is MOST mistaken some of the 2500 series has been
> EOS'd.  However cisco is pledging software support until 2005.
>
> Dan
>
> -Original Message-
> From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] On Behalf
Of
> Rick
> Sent: Wednesday, June 26, 2002 8:31 PM
> To: [EMAIL PROTECTED]
> Subject: Re: IOS firewall feature set for Cisco 2514 [7:47523]
>
> Where did you find info that Cisco does not support
> 25xx series anymore? I have 156 support contracts
> on 2509, 2511, and 2520's. I also just finished a
> network wide upgrade of IOS on these same boxes.
> I am concerned that Cisco just announced this and
> this leaves me with a serious problem.
>
>
>
> ""S M""  wrote in message
> [EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
> > I'm looking for Cisco 2514 IOS w/ firewall feature set. Cisco
doesn't
> > supports 25xx series anymore.
> >
> > Does anyone point me in the right direction to get the software.
> >
> > Thanks
> >
> > SM




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=47555&t=47523
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

RE: Help with RSP4+ and normal boot sequence in a 7 [7:47408]

[[EMAIL PROTECTED]]

I don't know, but your software versions are different. 

On the working on it is:
(RSP-IK8SV-M), Version 12.2(7a)

On the broken one it is:
(RSP-JK8SV-M), Version 12.2(7c)

Could that be a cause of the problem ... Sorry no access to internet
currently?

-Original Message-
From: David j [mailto:[EMAIL PROTECTED]] 
Sent: 25 June 2002 20:39 
To: [EMAIL PROTECTED]
Subject: Help with RSP4+ and normal boot sequence in a 7 [7:47408]


Hi boys!
I'm having problems with a 7500 I have upgraded a few weeks ago, when I type
sh ver in others 7500 that I have, I can see these lines:
---xx---
Cisco Internetwork Operating System Software
IOS (tm) RSP Software (RSP-IK8SV-M), Version 12.2(7a), RELEASE SOFTWARE
(fc2) Copyright (c) 1986-2002 by cisco Systems, Inc. Compiled Thu 21-Feb-02
04:23 by pwade Image text-base: 0x600109C8, data-base: 0x6179A000
ROM: System Bootstrap, Version 12.0(10r)S1, RELEASE SOFTWARE (fc1)
BOOTLDR: RSP Software (RSP-BOOT-M), Version 12.2(7a), RELEASE SOFTWARE (fc2)
---xx---
However when I do the same on the problematic router I can see the
following:

Cisco Internetwork Operating System Software
IOS (tm) RSP Software (RSP-JK8SV-M), Version 12.2(7c), RELEASE SOFTWARE
(fc1) Copyright (c) 1986-2002 by cisco Systems, Inc. Compiled Sat 11-May-02
11:02 by pwade Image text-base: 0x600109C8, data-base: 0x61B28000
ROM: System Bootstrap, Version 12.0(10r)S1, RELEASE SOFTWARE (fc1)

So as you can see, I can't see any reference to the BOOTLDR. I've talked
with the boys at TAC and they haven't got any solution (I've rebooted the
router 4 or 5 times, upgraded and downgraded the software) Anybody knows
what is the correct process for booting a 7500 with a RSP4+? Cisco says that
RSP4+ boots the main image directly without loading the bootflash, but I
have 7 routers loading the bootflash before loading the main image.




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=47570&t=47408
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

RE: Full-Duplex Communication [7:47562]

[Chris Charlebois]

That is a marketing issue, not a technical one.  The people who work with
switches everyday understand that when you are talking about full-duplex
bandwidth, it's split between up and down.  It's up to us to educate the
decision-makers and end-users, rather than muddle with the marketese.


Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=47567&t=47562
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: PBR [7:47463]

[Chris Charlebois]

The question is how would the router know the host is down without some sort
of heartbeat.

My next question, and this shows my shallow knowledge of PBR, but can the
next-hop be a non-local address?  For instance, can router 1 which is
connected to subnets A and B use a host on subnet C as a next-hop, despite
the fact that router 1 has to go through router 2 to get to subnet C?  If it
can, would this create a tunnel, so that traffic would get to the next-hop
address, or would Router 2 receive the packets and try to route them itself?


Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=47569&t=47463
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

RE: Full-Duplex Communication [7:47562]

[Michael Williams]

Cisco Breaker wrote:
> If  I connect a server to a swtich full duplex then if only one
> client
> connected with its gig eth card, he can't use 2 gigs. I think
> they are
> writing these manuals incorrectly. Cause you can use 1 gig for
> sending 1 gig
> for receiving. Not 2 gigs sending and receiving.

I wouldn't say they're writing the manuals incorrectly.  If anything, I
think they've made it clear that you have the rated bandwidth of the link
available in each direction.

> If you say to
> a customer
> that with gig ether channel they can reach up to 8 gigs on 6500
> swithes he
> will obviously thinks that he can send 8 gig and receive 8 gig
> not 4 gig RX
> for gig TX.


If you say to a customer that with did etherchannel they can reach up to 8
gigs in each direction, then you would be at fault for misrepresenting the
technology.  If you say that you can reach 8 gigs in total bandwidth, then
that would be a true statement.  But as the other person said, people that
use this everyday know what it means, and it's up to us to make sure the
customer knows what it means.

Mike W.


Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=47568&t=47562
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: pix question [7:47556]

[Matthew Carpenter]

I don't think so
- Original Message -
From: "GEORGE" 
To: 
Sent: Thursday, June 27, 2002 9:03 AM
Subject: pix question [7:47556]


I have the 3des encryption disabled do I have to purchase a license to
enable it?

VPN-3DES:   Disabled




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=47566&t=47556
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

RE: frame relay question [7:47498]

[Leiva, Angel]

Having worked building a Carrier's ATM-F/R backbone, I can tell you that the
scenario you posted isn't as unique as it may seem.

First of all, as you stated correctly, DLCIs are locally significant on a
per INTERFACE basis. That concept applies to both, the WAN switch and the
CPE.

Carrier's WAN Switches typically have plenty of INTERFACES (physical ports)
to provision customer PVCs on. Therefore, Carriers can provision as many
DLCI=16 for instance, as F/R interfaces each WAN Switch has.

At the hub location, the Carrier most likely will assign you a brand new
Interface (physical port). Therefore, you the customer, have the entire
range of DLCIs to request from the Carrier (16 through 1007 on Cisco WAN
switches).

There are WAN Switch Module DLCI limitations, depending on what type and
brand of WAN switch Carries use.

At each of the spoke locations, depending on the CIR your particular PVCs
require, the Carrier will either provision your PVC on an existing but
under-utilized Interface (meaning that you may or not get the DLCI you want,
although most likely you'll get what you ask for). Or if your PVC's CIR is
"fat" enough, it will be provisioned on a brand new Interface. Therefore,
you'll get any DLCI you want or ask for, provided that the Carrier's DCLI
policy allows it, and most do I believe.

Now, mapping customer's F/R PVC DLCIs to ATM PVI/VCIs is a whole lot
different beast on its own. But, that doen't have anything to do with
assigning similar DLCIs at the spoke sites.

Hth,

Thanks,

Angel


-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of
Kelly Cobean
Sent: Thursday, June 27, 2002 7:08 AM
To: [EMAIL PROTECTED]
Subject: RE: frame relay question [7:47498]


You know, this brings up a good question...My company has sites all across
the country, and for every spoke site, we were able to get the exact same
DLCI, and at the hubs, we were able to get a range of DLCI's in increments
of 5 going out to each of the spokes.  How is this possible?  I completely
understand that the DLCI is locally significant, and that it only defines
the connection between the Frame switch and the customer CPE, but what are
the odds of the exact same DLCI on so many different switches being
available?  Maybe there is something relevant to the fact that the carrier's
network is actually using ATM that makes this possible?  Thanks!

-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of
Chuck
Sent: Wednesday, June 26, 2002 3:09 PM
To: [EMAIL PROTECTED]
Subject: Re: frame relay question [7:47498]


good questions.

in theory, you may request any dlci you wish, so long as it is in the legal
range for the carrier. this would be numbers 16 through 996? for some, or
through 1004? for others

in fact, if you have a good rapport with your carrier, and they in turn have
their act together, this is common practice.

OTOH, in my experience, telcos just want to get the work done, and they will
configure the dlci starting with 16 because it's easy to remember. the
switch techs just bang out their configs with no conscious thought
intervention.

if you have nothing fancy going on ( and it appears you don't ) the only
required configuration on your router is setting the frame relay
encapsulation, and setting the ip address. at that point the circuit will
come up. you can check this using the show frame pvc, show frame lmi and
show ip interface brief commands. lmi will detect and use the single pvc
with no other tweaks required. if you have multiple pvcs on a circuit, you
would, of course have to use frame map commands, or use point-to-point
subinterfaces in conjunction with the frame interface-dlci command.

best wishes.


""GEORGE""  wrote in message
[EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
> I have a newbie question, regarding frame-relay. When I order a frame
> relay circuit for two locations
> Do the telco provide the dlci? Or I make it up? Once the frame relay is
> installed on both locations I guess using the dlci numbers it makes the
> connection , besides the ip and all other stuff
> Can someone explain it please
> thanks




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=47563&t=47498
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: IOS firewall feature set for Cisco 2514 [7:47523]

[John Kaberna]

Unless I'm not reading this right, they will support it til 2007.

http://www.cisco.com/warp/public/cc/general/qrg/eol_ai.htm


""Dan Penn""  wrote in message
[EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
> No Rick that guy is MOST mistaken some of the 2500 series has been
> EOS'd.  However cisco is pledging software support until 2005.
>
> Dan
>
> -Original Message-
> From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] On Behalf Of
> Rick
> Sent: Wednesday, June 26, 2002 8:31 PM
> To: [EMAIL PROTECTED]
> Subject: Re: IOS firewall feature set for Cisco 2514 [7:47523]
>
> Where did you find info that Cisco does not support
> 25xx series anymore? I have 156 support contracts
> on 2509, 2511, and 2520's. I also just finished a
> network wide upgrade of IOS on these same boxes.
> I am concerned that Cisco just announced this and
> this leaves me with a serious problem.
>
>
>
> ""S M""  wrote in message
> [EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
> > I'm looking for Cisco 2514 IOS w/ firewall feature set. Cisco doesn't
> > supports 25xx series anymore.
> >
> > Does anyone point me in the right direction to get the software.
> >
> > Thanks
> >
> > SM




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=47564&t=47523
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

CCIE Communications & Services [7:47565]

[YASSER ALY]

Hi there (My first contribution in this list)

Anybody here is preparing for the Communications & Services ?
I have some questions that I would appreciate receiving an answer for

1) Do you consider the Communications & Services harder and more recognized 
that the Routing & Switching or not ?

2) Will the equipment list be common for both exams ? If so, will the 
changes that will be active the 4th of November reflect on the 
Communications & Services also ?

3)I noticed that there are many versions on the qualification exam for the 
Communications & Services, how can this be true while there is only one 
standard lab exam ?

4) Is the blueprint for both exams the same or not ??

5) I checked the CCIE population over Cisco site and didn't see any clue how 
many CCIE's in Routing & Switching, How many in Communications & Services, 
and how many for Security, any clues ?


6) Finally, if it you have the option & knowledge to go either for the
Routing & Switching or the Communications & Services, which one would you 
prefer and why ?


I am totally confused and need your advice because I want to go for the 
Routing & Switching, while my company wants me to go for the Communications 
& Services. Which one worth more in your openion ??


Best Regards,
Yasser


_
MSN Photos is the easiest way to share and print your photos: 
http://photos.msn.com/support/worldwide.aspx




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=47565&t=47565
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: dot1Q bridged across two 1721's? [7:47440]

[John Dorffler]

I just helped a friend with almost the exact same problem. They have two
sites connected via a T1 but want use the DSL connection at one site. They
have workstations at each end and want to use the same subnet. Since they
don't have any other use for the T1 I used a modified configuration similar
to Example 3 in the link below:

http://www.cisco.com/warp/public/701/37.html

This gives an example of using transparent bridging to get traffic between
two Ethernet interfaces separated by routers and a T1. The thing that the
article does not mention is that you need to turn off IP routing on the
interfaces doing the bridging. In my case I could just use "no ip routing"
(I never thought I would use that command on a live network), but you may
need something more granular like IRB. The Caslow book has some simple
explanations of IRB.

Sincerely,
John Dorffler
CCIE #6677


""Jeffrey Reed""  wrote in message
[EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
> I have a scenario where I want to move part of two VLANs to a remote
> building off campus. These two VLANs are already part of my internal
network
> and due to some layer 8 constraints, we cant put them on new subnets once
> we move them to the new building. The VLANs need to be at both the remote
> office as well as the core of the network. Connectivity will be
facilitated
> by a T1 and a pair of 1721s. I know the 1721s will run 802.1Q, but can I
> bridge the two VLANs across the T1? I know its not a good idea to send
> broadcasts across an expensive T1, but were dealing with folks who do not
> care.
>
> I wasnt sure how the WAN side would handle dot1q tagging. Thanks for any
> thoughts!!
>
>
> Jeff Reed
> Confidential e-mail for addressee only.  Access to this e-mail by anyone
> else is unauthorized.  If you have received this message in error, please
> notify the sender immediately by reply e-mail and destroy the original
> communication.  1




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=47561&t=47440
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Full-Duplex Communication [7:47562]

[Cisco Breaker]

Full-Duplex Communication
You can select half-duplex or full-duplex communication. The advantage of
using full-duplex is that communication packets can flow in both directions
simultaneously, which results in doubling the throughput capacity on the
segment.

Full-duplex communication eliminates the performance degradation resulting
from packet collisions. Packets cannot collide because they each travel on
their own path--like cars going in opposite directions on a two-lane
highway. So while the effective bandwidth to a 10BaseT port configured for
half-duplex Ethernet is a maximum of 10 Mbps, with full-duplex Ethernet it
is doubled to 20 Mbps.
http://www.cisco.com/univercd/cc/td/doc/product/lan/cat3ks/3000/acopspcs.htm

Catalyst 5000 Series
Supervisor II engine ports on 10/100 ports on Fast EtherChannel-capable line
cards enable high-speed connectivity between switches, switches and routers,
and switches and servers. Up to four Fast Ethernet ports can be grouped to
provide up to 800 Mbps of load-sharing, redundant, and point-to-point
connections between the Catalyst 5500, 5509, 5505, 5002, and 5000 switches.
To achieve higher bandwidth, Gigabit EtherChannel can be deployed, which
supports up to 8 Gbps (full-duplex) of inter-switch bandwidth, and is
supported across the Catalyst 5000 Family.
http://www.cisco.com/univercd/cc/td/doc/pcat/ca5000.htm

If  I connect a server to a swtich full duplex then if only one client
connected with its gig eth card, he can't use 2 gigs. I think they are
writing these manuals incorrectly. Cause you can use 1 gig for sending 1 gig
for receiving. Not 2 gigs sending and receiving. If you say to a customer
that with gig ether channel they can reach up to 8 gigs on 6500 swithes he
will obviously thinks that he can send 8 gig and receive 8 gig not 4 gig RX
for gig TX.

Best regards,

Cisco Breaker




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=47562&t=47562
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: pix question [7:47556]

[A N]

Yes... you can get the DES key for free though.
- Original Message -
From: "GEORGE" 
To: 
Sent: Thursday, June 27, 2002 9:03 AM
Subject: pix question [7:47556]


> I have the 3des encryption disabled do I have to purchase a license to
> enable it?
>
> VPN-3DES:   Disabled




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=47560&t=47556
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: pix question [7:47556]

[Pieter Jan Bakhuijzen]

George,

>From the Cisco website:

168-bit 3DES keys may be purchased, and are available through the Cisco
MarketPlace.

If you have already purchased the 3DES Upgrade and you have your Cisco PIX
Firewall 3DES upgrade document with entitlement number (printed on
document), please register this as a Purchased License.

http://www.cisco.com/cgi-bin/Software/FormManager/formgenerator.pl?pid=221&f
id=324

Good luck,

Pieter Jan Bakhuijzen
iXio Networks
http://www.ixionetworks.com

""GEORGE""  wrote in message
[EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
> I have the 3des encryption disabled do I have to purchase a license to
> enable it?
>
> VPN-3DES:   Disabled




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=47558&t=47556
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

FW: Cisco VPN client and NAT [7:47430]

[GEORGE]

Yes linksys has that option, I ran into that problem
Its under the advance option

-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] On Behalf Of
Lidiya White
Sent: Wednesday, June 26, 2002 9:34 PM
To: [EMAIL PROTECTED]
Subject: RE: Cisco VPN client and NAT [7:47430]

IP Security Through Network Address Translation Support
http://www.cisco.com/univercd/cc/td/doc/product/access/acs_fix/827/827rl
nts/820feat.htm

I think Linksys just has an option for a checkmark on "IPSec through
NAT".  

-- Lidiya White


-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] On Behalf Of
Alex Lee
Sent: Wednesday, June 26, 2002 8:20 AM
To: [EMAIL PROTECTED]
Subject: Re: Cisco VPN client and NAT [7:47430]

So how does the Linksys or cisco 800 handles the IPSec thru PAT then ?
Thanks.

 Alex Lee

""Lidiya White""  wrote in message
news:[EMAIL PROTECTED]...
> PIX doesn't support IPSec transparency/IPSec over TCP. Concentrators
do.
> It all depends on the device that is between your client and PIX, that
> is doing PAT.
> IPSec uses ESP protocol, that doesn't have ports, so how can you
perform
> PAT (port address translation) for a protocol that doesn't understand
> port concept?
> Some routers can pass IPSec through the PAT (like Linksys, Cisco 800).
> So if the router/device that is doing PAT is IPSec aware, then you
> should be able to pass IPSec through. If not, then you have to make
sure
> that one-to-one address translation happens for your VPN clients, not
> one-to-many (PAT)...
> Hope this helps...




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=47559&t=47430
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

RE: pix question [7:47556]

[Tiger]

Yes, you need buy that license.

Best Regards
 
SeaTigerIII
CCSA, CLP4, CCDA, CCNP, MCSE4, MCSE2000
Email : [EMAIL PROTECTED]
web: http://seatigeriii.d2g.com

-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] 
Sent: Thursday, June 27, 2002 10:04 PM
To: [EMAIL PROTECTED]
Subject: pix question [7:47556]

I have the 3des encryption disabled do I have to purchase a license to
enable it?
 
VPN-3DES:   Disabled

[GroupStudy.com removed an attachment of type text/x-vcard which had a name
of jacky.vcf]




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=47557&t=47556
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

pix question [7:47556]

[GEORGE]

I have the 3des encryption disabled do I have to purchase a license to
enable it?
 
VPN-3DES:   Disabled




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=47556&t=47556
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: DHCP question [7:47477]

[Donald B Johnson Jr]

I believe the DHCP server reads the giaddr field which contains the relay
agents ip address. The server logicaly assumes that the host should be on
the same subnet as this address and fulfills the request from a matching
scope.
Here is a link to the rfc
ftp://ftp.isi.edu/in-notes/rfc1541.txt
don
- Original Message -
From: "Kevin Banifaz" 
To: 
Sent: Wednesday, June 26, 2002 1:00 PM
Subject: Re: DHCP question [7:47477]


> Yes it will be.  Setup a super scope then the two remote site scopes.
>
> >From: "dj"
> >Reply-To: "dj"
> >To: [EMAIL PROTECTED]
> >Subject: DHCP question [7:47477]
> >Date: Wed, 26 Jun 2002 09:39:31 -0400
> >
> >Let's assume a Win2k DHCP server is set up correctly with different IP
> >scopes for 2 remote sites.  Let's also assume remote-site routers are
> >set-up correctly with the correct IP helper-address.  When remote DHCP
> >clients start broadcasting for IP addresses at each remote site, and
> >these broadcasts are then forwarded by the remote-site routers as
> >unicast packets to the DHCP server, how does the DHCP server know from
> >which scope of IP address to full-fill a DHCP client request for a given
> >remote site.  Is the information embbeded within the DHCP packet itself?
> >
> >thanks
> >dj
> _
> Send and receive Hotmail on your mobile device: http://mobile.msn.com




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=47554&t=47477
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: Question about OSI [7:9811]

[Donald B Johnson Jr]

Good Luck next week let us know how you did.
You will be fine.
I have found a few objectional questions from cert-zone, but they are quick
to accept input and make corrections to their material where necessary or
expand on why and what the thinking was behind the question. They are a
dedicated group of people.
You should post the question to the main [EMAIL PROTECTED] list, there
are many contributers to cert-zone that regularly read the board. You can
probably get the author or one of their technical reviewers to clarify the
issue for you on that board.
I am going to copy those groups in this response so that everyone can
benefit, being that those are widely published questions in these parts.
Don


- Original Message -
From: "Marcial Rosales Garcia" 
To: "'Donald B Johnson Jr'" 
Sent: Thursday, June 27, 2002 4:32 AM
Subject: RE: Question about OSI [1:9811]


> Hi Donald,
>
> I have been for a while because I had to leave my studying for 5-6
> months. Because I am not looking just a degree or cert, because I already
> hold 5 years degree, I am not in a hurry to obtain the CCNA. I want to be
> very confident and skilled to be a real CCNA and then pass the exam.
> I am planning to take the exam next week, although I feel confident
> with many areas, sometimes I find answers to questions that screw me up.
> Sometimes they are questions from cisco sources, that are contridictory
with
> the documentation or sometimes cannot see clearly that the answer is
> correct.
> The question I have posted comes from CertificationZone, most of the
> questions (free, because I don't pay money for questions) are correct and
> looks quite interesting, however, with this one I disagreed.
>
> What I understood about "dumb" is that you meant the question was
> silly or stupid, or so simple that there wan't any need to ask it. That's
> why I responsed "I don't see (the question) so dumb".
>
> I think that certification is not any race, I think is a reward to
> your effort along your career. I studied pretty hard to get the JAva
> Certification (6 months + prof. experience), I got 91% (minimum is 54%);
> however, I know people who just studied 1 months (without experience)
(they
> wanted to get at least a degree that says: I can program in java) and got
> 55%. Without studying, just making some mock exams you get that average,
so
> how knowledge has this guy about java?
>
> Thank you for your response, Donald.
> I wish we talk in other moment.
>
> Best regards
> Marcial Rosales
>
> -Original Message-
> From: Donald B Johnson Jr [mailto:[EMAIL PROTECTED]]
> Sent: 26 June 2002 21:51
> To: [EMAIL PROTECTED]; [EMAIL PROTECTED]; Marcial Rosales
> Garcia
> Subject: Re: Question about OSI [1:9811]
>
>
> Marcial
> I don't understand the statement "I don't see so dumb" please clarify.
> You are correct hops are routers.
> What I meant was the question is dumb because it is worded very poorly and
> in my opinion the answer they are stating "trsansport" is incorrect.
> You made the statement "I found a question", that is dubious at best.
> You should cite the source of the question when posting. You can run
across
> an endless supply of hot-shots posting Q&A on the internet. Remember the
> question and information are only as good as the source.
> What I am saying is be careful, check sources, and cross reference
> information. You would have a hard time finding another resource talking
> about "hop-by-hop communication" at the transport layer. Also my substance
> reasoning is;
> Scenario: You are down to the last ? on your CCNA test. get it right and
you
> pass, get it wrong and you fail. I would not want to hang my hat on that
> info, if the question was based around the concept of hops.
> By the way you have been on this group for awhile; Have you taken the
test?
> When will you take the test? Are you a CCNA?
> Don
>
>
> >
> > I don't see so dumb, that's why I ask.
> > I think that the devices which enable hop-by-hop communications are
> > the router (network layer) and not the transport. Or maybe I am
> > misunderstanding the question.
> > I am serious, I am not joking.
> >
> > -Original Message-
> > From: Donald B Johnson Jr [mailto:[EMAIL PROTECTED]]
> > Sent: 26 June 2002 18:26
> > To: Marcial Rosales Garcia; [EMAIL PROTECTED]
> > Subject: Re: Question about OSI [1:9811]
> >
> >
> > That is a really dumb question.
> > Thank You,
> >
> > Donald B Johnson Jr
> > Adelphia Telecommunications Corp.
> > Engineering/Technical Operations
> > Corporate Manager Technical Support Services
> > CCNP CCDP MCSE + I
> > P# 888-277-6872 support line
> > Pg# 866-690-9276 pager
> > P# 814-260-3259 office
> > F# 814-260-3227 fax
> > [EMAIL PROTECTED]
> >
> >
> >
> > - Original Message -
> > From: "Marcial Rosales Garcia"
> > To:
> > Sent: Wednesday, June 26, 2002 1:37 PM
> > Subject: Question about OSI [1:9811]
> >
> >
> > > Hi all, I have found the following question which answer is not the
> > > one I had expected: Netw

RE: Router Sim [7:47550]

[Deepak Achar]

hi
u can try out with "mentor labs"

regards
deepak


Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=47552&t=47550
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: Router Sim [7:47550]

[Johnny Routin]

Cisco Interactive Mentor BGP



""Andrew Theologo""  wrote in message
[EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
> Hi
>
> I am looking for a router sim for the new exams, but it must include BGP.
>
> Can any one point me in the correct direction ?
>
> Thanks
>
> Andrew




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=47551&t=47550
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Router Sim [7:47550]

[Andrew Theologo]

Hi

I am looking for a router sim for the new exams, but it must include BGP.

Can any one point me in the correct direction ?

Thanks

Andrew




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=47550&t=47550
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

RE: frame relay question [7:47498]

[Kelly Cobean]

You know, this brings up a good question...My company has sites all across
the country, and for every spoke site, we were able to get the exact same
DLCI, and at the hubs, we were able to get a range of DLCI's in increments
of 5 going out to each of the spokes.  How is this possible?  I completely
understand that the DLCI is locally significant, and that it only defines
the connection between the Frame switch and the customer CPE, but what are
the odds of the exact same DLCI on so many different switches being
available?  Maybe there is something relevant to the fact that the carrier's
network is actually using ATM that makes this possible?  Thanks!

-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of
Chuck
Sent: Wednesday, June 26, 2002 3:09 PM
To: [EMAIL PROTECTED]
Subject: Re: frame relay question [7:47498]


good questions.

in theory, you may request any dlci you wish, so long as it is in the legal
range for the carrier. this would be numbers 16 through 996? for some, or
through 1004? for others

in fact, if you have a good rapport with your carrier, and they in turn have
their act together, this is common practice.

OTOH, in my experience, telcos just want to get the work done, and they will
configure the dlci starting with 16 because it's easy to remember. the
switch techs just bang out their configs with no conscious thought
intervention.

if you have nothing fancy going on ( and it appears you don't ) the only
required configuration on your router is setting the frame relay
encapsulation, and setting the ip address. at that point the circuit will
come up. you can check this using the show frame pvc, show frame lmi and
show ip interface brief commands. lmi will detect and use the single pvc
with no other tweaks required. if you have multiple pvcs on a circuit, you
would, of course have to use frame map commands, or use point-to-point
subinterfaces in conjunction with the frame interface-dlci command.

best wishes.


""GEORGE""  wrote in message
[EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
> I have a newbie question, regarding frame-relay. When I order a frame
> relay circuit for two locations
> Do the telco provide the dlci? Or I make it up? Once the frame relay is
> installed on both locations I guess using the dlci numbers it makes the
> connection , besides the ip and all other stuff
> Can someone explain it please
> thanks




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=47549&t=47498
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

RE: Ip Address Negotiated command [7:47546]

[Richard Botham]

Sandeep,
Depending on your config then yes.
( I would have though it would be the otehr way around - many bri's dialing
into a pri and the bri's getting their ip addresses ?)
Look at this link
http://www.cisco.com/warp/public/471/ddreasyip.html

HTH Richard


Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=47548&t=47546
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

RE: Rogue Wireless LANs [7:47287]

[Evans, TJ]

I am not, by any stretch of the imagination, a lawyer ... however my
understanding of the current interpretation of the laws applicable to
WarDriving are that if the owner/operator does not make atleast some minimal
effort to secure the transmissions then it is considered 'for public use'.
So if the WAP is happily broadcasting it's SSID and no encryption is enabled
... OTOH, if you capture packets, crack a wep key and spoof a MAC you are
putting forth effort to get into somewhere that has the proverbial "No
Entry" sign.

Similar to how, currently, a basic port scan against someone's machine is
not illegal.  It may violate your acceptable-use/subscription
agreement/whatever and you may get a slap on the wrist or a nasty-gram from
the lucky recipient, but AFAIK that is about as far as it goes ... until you
actually attempt to launch an exploit against those services/ports.


... back to wardriving ...
"Simple Bandwidth Leeching" is about all you could do without crossing any
really bad lines, and even that is questionable - bandwidth is a company
resource that they must provision, pay for, etc. and you are depriving them
of the use of it.

Obviously, if you do any of this and then proceed maliciously into their
network, or pose as a member of that firm, etc. you are _at_that_point_
definitively violating the law and deserve whatever befalls you ;)


Again - that is my understanding of the current
laws/policies/interpretations.  Corrections always accepted ... 
Thanks!
TJ


-Original Message-
From: Howard C. Berkowitz [mailto:[EMAIL PROTECTED]] 
Sent: Wednesday, June 26, 2002 4:02 PM
To: [EMAIL PROTECTED]
Subject: RE: Rogue Wireless LANs [7:47287]

At 2:26 PM -0400 6/26/02, Dan Penn wrote:
>I think the take the company would take on it would depend highly on how
>worried they are about security.  If they have a well written security
>policy I think you would be in for some arguments from their legal
>department.  On the other hand what if it's a company that doesn't even
>know that employee Joe Schmoe has installed a WAP under his desk running
>802.11 unsecured to world...I think in that situation they might be
>interested to hear what you have to say.
>
>Over all this whole deal is very cloudy to say the least.  What legal
>rights does a company have if they are broadcasting wireless
>unsecured...it is like throwing money into the air then trying to arrest
>someone if they take it.

No, there really are very specific rules for electromagnetic 
emissions, beginning with the (US) Communications Act of 1934. 
Essentially, it says that any signals not explicitly meant for public 
broadcast may be intercepted, but that disclosure of the content to 
third parties is illegal.

This is enforced by the Federal Communications Commission, which is 
the US agency that regulates, among other things, the use of spectrum 
space, and the licensing (when required) of parts of the spectrum.

There certainly are blurred areas, such as disclosing statistical 
aggregates that do not reveal content, or intercepting communications 
by other than the primary signal (i.e., eavesdropping through 
incidental radiation, power line coupling, etc.).

In general, though, the law is much more clear about hacking 
involving the electromagnetic spectrum in free space than it is on 
entering computers.

>It's an old well known fact you don't say
>"welcome" in your motd banner because you "welcomed" the intruder in.
>You could say, you didn't know that you were unauthorized because you
>could connect to it from somewhere not on their property and you were
>never warned that you were unauthorized.  I'm not saying you would win
>the legal battle...but there would most likely be a legal battle over
>it.
>
>I am interested to know the outcome if anybody does actually try this
>and approaches the company about it.
>
>Dan
>
>-Original Message-
>From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] On Behalf Of
>Ken Diliberto
>Sent: Wednesday, June 26, 2002 11:04 AM
>To: [EMAIL PROTECTED]
>Subject: Re: Rogue Wireless LANs [7:47287]
>
>Agreed.  This could be a big legal trap.
>
>If you use something like Network Stumbler, you're not actually using
>their network.  You're just seeing the broadcasts from it.  Maybe that
>would be a good approach.
>
>Ken
>
  "Thomas E. Lawrence"  06/25/02 11:09AM >>>
>I realize you are speaking in jest, but for those who might consider
>this
>approach as a means of drumming up business, you may want to give some
>thought.
>
>Connecting to a network to which you have no reason nor any right to
>connect
>can be considered hacking, and you could be subject to prosecution,
>ironically by an organization that is asking for trouble anyway.Just
>because
>I don't have locks on my doors does not mean it's ok for you to walk
>into my
>home any time you please.
>
>Please be careful how you approach a company when you have discovered
>by
>accident a particularly egregious vulnerability.
>
>Tom
>
>[snip]
***