Re: Priscilla Oppenheimer [7:49347]

[MADMAN]

So your saying that you configured the serial interface with ip
unnumbered, sourcing the ethernet interface of the repective routers. 
If you shut down the ethernet you can still access the remote router
over the serial??

  This is something new or have I been out of the unnumbered game too
long!!

  Dave

richard dumoulin wrote:
> 
> Peter ,
> 
> The book says clearly that the interface is pingable. Even more, I have
> tried it and it really works. I just took two routers connected by
> back_to_back serial cables with IP unnumbered configured on both. When I
> unplugg the Lan interface of one them, this router is still reachable by
the
> IP address.
> 
> Regards.
-- 
David Madland
Sr. Network Engineer
CCIE# 2016
Qwest Communications Int. Inc.
[EMAIL PROTECTED]
612-664-3367

"Emotion should reflect reason not guide it"




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=49393&t=49347
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

dialup configuration [7:49423]

[Waqar Ahmed]

Hi,

I have configure AUX port for routing and need to
configure asyn port s0/0. Need the configuration for
both to work simultaneously. AUX port configuration is
as.

interface Async65
 ip address 10.190.6.1 255.255.255.252
 no ip directed-broadcast
 encapsulation ppp
 keepalive 30
 async mode dedicated
 peer default ip address 10.190.6.2
 no cdp enable
 ppp authentication pap  


line aux 0
 no exec
 modem InOut
 modem autoconfigure discovery
 transport input all
 stopbits 1
 flowcontrol hardware
  

Regards



Waqar Ahmed





__
Do You Yahoo!?
Yahoo! Health - Feel better, live better
http://health.yahoo.com




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=49423&t=49423
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: VoIP Bandwidth Calculation you wil have to consider two [7:49406]

[Steven A. Ridder]

It's just one stream (the other users).  You don't talk, send out your
stream over the wan, have it come back to you.


""neil K.""  wrote in message
[EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
> Steve,
>
> It makes sense to consider two RTP flows as a conversation consists of
> full-duplex transmission.
> both people speak at the same time in a normal conversation, so that is
why.
> please let me know if you have any thoughts on this
>
> neil
>
> ""Steven A. Ridder""  wrote in message
> [EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
> > I'm not sure the context the document was written in, but it's only 24K
> > (give or take depending on the L2 encap) that you need to plan for.
> >
> > Steve
> >
> >
> > ""neil K.""  wrote in message
> > [EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
> > > Hi All,
> > >
> > > Using the standard formulas, I see for a bandwidth required for a
g.729
> > call
> > > is 24kbps without RTP compression.I used to do the same when using
other
> > > codecs.
> > > Recently I came across some VoIP documentation which said that you
will
> > have
> > > to consider two RTP flows to simulate a call, and hence the
requirement
> > for
> > > Bandwidth doubles.say g729 24 kbps becomes almost 48kbps if u consider
> two
> > > RTP flows.
> > >
> > > Any help will be highly appreciated.
> > >
> > > Thanks,
> > >
> > > Neil




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=49406&t=49406
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: Priscilla Oppenheimer [7:49347]

[Peter van Oene]

At 08:04 PM 7/21/2002 +, Chuck wrote:
>""Howard C. Berkowitz""  wrote in message
>[EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
> > At 5:25 PM + 7/21/02, richard dumoulin wrote:
> > >Well, I interpret it that you can ping the serial, no ?
> > >
> >
> > I would assume that. It makes no sense for an ISP to use unnumbered
> > interfaces, because it easily can use /30 or /31 private addresses.
> > It could use a small part of its registered address space, which
> > would let someone traceroute to the gateway.
>
>
>CL: I have a question about that. Recently I was doing some work for a
>government entity, with multiple sites statewide. I was doing some
>traceroutes to ascertain paths and potential security issues.  this
>organization had contracted with a third party of internet services, who
>also was contractually responsible for firewalls and other security devices
>and procedures. In any case, I saw two interesting phenomena while doing my
>testing. One was the presence of private IP numbers in some of the paths.
>The other was the lack of anything from particular hops along the path. EG
>the infamous * * * response, although the trace would continue and conclude
>to the destination I wanted to reach. as all my work commenced from my
>office across the public internet to the destination, this led me to
>conclude that the presence of 1918 addresses does not necessary disallow the
>successful completion of traces.


PV: 1918 certainly doesn't prevent the completion of traceroutes, but it 
does tend to break Path MTU Discovery which isn't ideal.




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=49389&t=49347
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: VoIP Bandwidth Calculation you wil have to consider two [7:49388]

[Michael L. Williams]

That 24Kbps would make sense as G.729 should compress the voice to 8Kbps for
a unidirectional voice signal, so 16Kbps for bi-directional  24Kbps
should be plenty for overhead and a bi-directional voice stream.  However,
if you want you could use G.729b (or G.729ab if you happen to be using
medium complexity) to enable Voice Activation Detection (VAD) and that can
reduce your overall bandwidth utilization by up to 40% by not sending data
when a party is not talking (and throw on some comfort noise while using
VAD).  That kicks azz, as that would lower the bandwidth needed for a G.729b
(or ab) call to roughly 14.4Kbps, so you could (in theory) jam up to four
simultaneous (close-to-toll-quality) calls over a single 64Kbps line.
NICE!!

Mike W.

"Steven A. Ridder"  wrote in message
[EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
> I'm not sure the context the document was written in, but it's only 24K
> (give or take depending on the L2 encap) that you need to plan for.
>
> Steve
>
>
> ""neil K.""  wrote in message
> [EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
> > Hi All,
> >
> > Using the standard formulas, I see for a bandwidth required for a g.729
> call
> > is 24kbps without RTP compression.I used to do the same when using other
> > codecs.
> > Recently I came across some VoIP documentation which said that you will
> have
> > to consider two RTP flows to simulate a call, and hence the requirement
> for
> > Bandwidth doubles.say g729 24 kbps becomes almost 48kbps if u consider
two
> > RTP flows.
> >
> > Any help will be highly appreciated.
> >
> > Thanks,
> >
> > Neil




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=49388&t=49388
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

RE: Motorola router with Cisco router [7:49228]

[Antero Vasconcelos]

which is the software on the cisco that does4nt come up?

CCna,CCNP CQS.


Antero Vasconcelos 
COMPTA - Parceria e Tecnologia 
Engenharia de Redes 
e-mail [EMAIL PROTECTED] 
Tel. (+351) 222070940 
Fax (+351) 222070935 
www www.compta.pt 





-Original Message-
From: Sujal G. Ajmera [mailto:[EMAIL PROTECTED]]
Sent: sexta-feira, 19 de Julho de 2002 12:08
To: [EMAIL PROTECTED]
Subject: Motorola router with Cisco router [7:49228]


Hi,

I have ppp as the encapsulation protocol at both ends but the line protocol
doesn't come up.

I interchanged the Motorola router at the other end with a Cisco router and
line protocol came up.

Any thoughts on this?

Thanks,


Sujal

[GroupStudy.com removed an attachment of type application/ms-tnef which had
a name of winmail.dat]




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=49425&t=49228
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: Wanted-CCIE Lessons Learned/Attitude/Plan [7:49167]

[Reza]

Tom,
Thanks for the input about taking the lab.
Where did you find 12.1 IOS Docs?.
I looked at Cisco Press and other book stores on line, they only have 12.0.
Is 12.1 being used in the lab?.

Thanks
Reza




""Thomas Larus""  wrote in message
news:[EMAIL PROTECTED]...
> (I recently failed my first attempt, so weigh my advice accordingly.)
>
>
> The short form is:
>
> 1)Read obsessively and quickly start doing simple labs
> 2) Labs will raise questions, sending you back to the books and IOS docs
> 3) Do complex lab scenarios created by other people until you are blue in
> the face
>
> 4) Always strive to nail down things you are unsure of, and nail down
every
> setting that you are permitted to nail down in you configs (advice from
> Caslow in NMC-1 class, which class is highly recommended and worth every
> penny).  An important motto of the quest for CCIE is "Nail everything
down."
>
> As for time periods, that is impossible for me to set out.  Everyone is
> different.  We all start at different places when we set out for the CCIE.
> Some are top network engineers when they start and have less to learn than
> someone like me.  I have found that this takes much more time than I ever
> planned for initially.
>
> You should read always and everywhere.  IOS docs, TAC articles, Cisco
Press
> Books, McGraw Hill technical expert books, Caslow, Doyle, etc.  You start
> off by doing labs on individual technologies, such as those provided by
> fatkid, ipexpert, and the like, or labbing up the scenarios in Doyle, etc.
> When you do these labs, you will have questions, which you send you back
to
> the books with a keen interest.  I think that reading in order to find an
> answer or to learn about something that you are dying to learn about leads
> to greater absorption than reading straight through a book with the goal
of
> reading so many pages a day.  I know we need to do both kinds of reading,
> but I am making the point that doing labs makes your absorption and
> compehension of what you read so much deeper.
>
> You can try to do you own labs, but you may find that you move much faster
> through teh material doing labs prepared by someone else.  Plus, doing
labs
> written by others gets you practice interpreting instructions.
>
> You soon move on to complex lab scenarios.  Do lots and lots of these.
The
> commercial labs will teach you a lot, and are worth spending money on,
even
> though they may not be perfect.  These commercial labs will teach you that
> many knowledgeable CCIEs make the same kinds of mistakes that you are
scared
> to death of making on the CCIE lab.  It is frustrating, yet somehow
> comforting, to find the glaring errors and omissions in expensive labs
> written by CCIEs.  The authors will tell you to configure something, and
> then completely forget to configure it themselves. (and then continue to
> forget to configure it through several revisions of their labs and lab
> solutions)  You learn from this that it is possible to pass the CCIE even
> though you are prone to making almost unforgivably glaring errors when you
> have years to do it right.  I am a bit absent-minded myself, so that is
> comforting.  (I simply need an 8-hour "lucid interval" of perfect focus on
> getting every detail right and avoiding landmines, while moving through
the
> tasks at high speed.)
>
> In short, use lab scenarios early on, and do reading and lab scenarios
> concurrently, and read everything.  I bought the 12.1 IOS Docs in printed
> format, and have really enjoyed reading them.  They are loaded with good
> stuff.  Do NOT buy the old books of IOS docs (I bought a bunch of these,
> mainly as half-price closeouts), because out-of-date docs are almost worse
> than no docs at all.  This IOS has changed a lot from 11.2 or even 12.0 to
> 12.1.
>
>
>
> ""Jennifer Mellone""  wrote in message
> [EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
> > LESSONS LEARNED, ATTITUDE, AND STRUCTURED STUDY PLAN
> >
> > I was wondering if anyone could elaborate on "lessons learned" when
> studying
> > for CCIE. What did you do right? What did you do wrong? If you had to do
> it
> > all over again, what would you change - especially if someone wants to
> pass
> > the first time?
> >
> > I think the attitude "do it right and try and pass the first time" could
> be
> > helpful (I know it doesn't always happen in reality). It seems more
> positive
> > than "I'll fail the first time so I know what to expect the second or
> third
> > or later time".
> >
> > My instinct tells me that determination and practicing on the routers
> every
> > night and on weekends for at least 6 months is key, and is easier said
> than
> > done. There are no short-cuts. This is fine; it's the price one must
pay.
> > But how does one do that in a methodical and structured manner such that
> all
> > the major stones are unturned? Of course, some stones will be unturned
> > quicker than others due to experience, and others will be slower due to
> lack
> > of exper

RE: Motorola router with Cisco router [7:49228]

[Sujal G. Ajmera]

12.5 on a 3660

-Original Message-
From: Antero Vasconcelos [mailto:[EMAIL PROTECTED]]
Sent: Tuesday, July 23, 2002 1:42 PM
To: Sujal G. Ajmera; [EMAIL PROTECTED]
Subject: RE: Motorola router with Cisco router [7:49228]


which is the software on the cisco that does4nt come up?

CCna,CCNP CQS.


Antero Vasconcelos
COMPTA - Parceria e Tecnologia
Engenharia de Redes
e-mail [EMAIL PROTECTED]
Tel. (+351) 222070940
Fax (+351) 222070935
www www.compta.pt





-Original Message-
From: Sujal G. Ajmera [mailto:[EMAIL PROTECTED]]
Sent: sexta-feira, 19 de Julho de 2002 12:08
To: [EMAIL PROTECTED]
Subject: Motorola router with Cisco router [7:49228]


Hi,

I have ppp as the encapsulation protocol at both ends but the line protocol
doesn't come up.

I interchanged the Motorola router at the other end with a Cisco router and
line protocol came up.

Any thoughts on this?

Thanks,


Sujal

[GroupStudy.com removed an attachment of type application/ms-tnef which had
a name of winmail.dat]




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=49426&t=49228
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: Off Topic - IP protocol scans [7:49358]

[richard dumoulin]

Chuck wrote:
> 
> never mind - I've done a bit of testing, and it appears that
> the IP number
> that is incrementing is a count of distinct events. I.e. if I
> do a test
> ping, let it sit a while, and do another test ping, I see the
> number
> increment.
> 
> I gotta get out more.

LOL, Chuck. Good to know anyway.
> 
> 
> 
> ""Chuck""  wrote in message
> [EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
> > I have a piece of equipment connected to the public internet
> for something
> > I'm doing with a friend. It is protected by an access-list
> restricting the
> > source address and the particular application.
> >
> > However, in monitoring the device, I am seeing what appear to
> be not only
> > TCP port scans, but IP protocol scans. I.e. a series of
> inquiries using
> > different successive IP protocol numbers.
> >
> > 17:43:26: datagramsize=48, IP 87: s=x.x.x.x (local),
> d=12.246.161.19, totl
> > 17:43:26: datagramsize=48, IP 87: s=x.x.x.x (local),
> d=12.246.161.19 (Fast
> > 17:43:26: datagramsize=70, IP 87: s=x.x.x.x (local),
> d=12.246.161.19 (Fast
> > 17:43:32: datagramsize=48, IP 88: s=x.x.x.x (local),
> d=12.246.161.19,
> totlen
> > 56,
> > 17:56:30: datagramsize=48, IP 90: s=x.x.x.x (local),
> d=61.37.239.23, totle
> > 17:56:36: datagramsize=48, IP 91: s=x.x.x.x (local),
> d=61.37.239.23, totle
> > ( this output is showing the reply my device is sending to
> the IP's in
> > question. )
> >
> > at least, I am assuming that the IP XX = the IP protocol
> number, as
> reported
> > by the debug.
> >
> > Just wondering if one of you security gurus might shed some
> light here,
> > seeing as how out of touch I seem to be. This one of the
> standard hacking
> > procedures? Been around a while? new because so many entities
> are now
> doing
> > a lot more to crack down on TCP port scanning?
> >
> > I checked the various registries. The behavior is coming from
> several
> > places, some Thailand, some Korea, some from customers of
> ATT.net
> >
> > Just looking to increase my awareness.
> >
> > thanks.
> >
> > Chuck
> 
> 




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=49407&t=49358
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: Lightstream PVC config problem... [7:49352]

[Joe Tutokey]

Edward,

I had the same exact issue from the same exact book, I am working with a
LS1010 ASP in a 5500 switch (pretty much the same as your setup). The
previous post was correct in saying that you only have to enter the PVC on
one of the interfaces, do a "show atm vc" (I think that's right) and you
will see a list of all VPI/VCI pairs, the ports they are on and the VPI/VCI
pair they connect to and the associated port. Even though you have only one
PVC statement you will see that the ports are cross-connected properly
(there will be two entires in the table). Also, when you look at the table
it should show that the VC status is "UP", if not there is another issue
going on.

Hope this helps!

Joe


""Edward Sohn""  wrote in message
news:[EMAIL PROTECTED]...
> Heya,
>
> I'm kinda new at the ATM bit, and I'm having trouble configuring an
> L1010...
>
> I'm simply trying to perform the configuration as documented in Lab18 in
> the CCIE Practical Studies book.  I have two active ATM interfaces,
> 12/0/0 and 12/0/2.
>
> As I go to enter in the first PVC command on 12/0/0, "atm pvc 0 112
> interface ATM12/0/2 0 121", I don't seem to have any problems.  It's on
> the corresponding PVC command that I get an error.  When I enter in the
> "atm pvc 0 121 interface ATM 12/0/0 0 112" command on the 12/0/2
> interface, i get an error stating, "%connection creation fails: vpi/vci
> has been used by other connections."
>
> I tried this many times, without luck.  I was simply configuring the
> interfaces with the exact same commands as the book says.  I looked on
> CCO, but couldn't find anything regarding this...
>
> Anyone run into this before?
>
> Thanks in advance,
>
> Eddie
>
> [GroupStudy.com removed an attachment of type image/jpeg which had a name
of
> Notebook.jpg]




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=49400&t=49352
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: Please confirm (conf#cdfecb5ec75237ba7cca6224113fe72d) [7:49401]

[Fuat Akar]

>
>Hi,
>
>You have tried to post to GroupStudy.com's Professional mailing list. 
>Because
>the server does not recognize you as a confirmed poster, you will be 
>required
>to authenticate that you are using a valid e-mail address and are not a
>spammer. By confirming this e-mail you certify that you are not sending
>Unsolicited Bulk Email (UBE).
>
>PLEASE DO NOT SEND YOUR ORIGINAL MESSAGE AGAIN!  BY CONFIRMING THIS EMAIL
>YOUR ORIGINAL MESSAGE (WHICH IS NOW QUEUED IN THE SERVER) WILL BE POSTED.
>
>
>By confirming this e-mail you also certify the following:
>
>1. The message does NOT break Cisco's Non-Disclosure requirements.
>
>2. The message is NOT designed to advertise a commercial product.
>
>3. You understand all postings become property of GroupStudy.com
>
>4. You have searched the archives prior to posting.
>
>5. The message is NOT inflammatory.
>
>6. The message is NOT a test message.
>
>To confirm, simply reply to this message.  No editing is necessary.  Once
>confirmed, you will be able to post without additional confirmations.
>
>
>Welcome to GroupStudy.com!
>
>
>--ORIGINAL MESSAGE-
>
>From [EMAIL PROTECTED]  Mon Jul  8 20:44:00 2002
>Received: from hotmail.com (f133.law15.hotmail.com [64.4.23.133])
>   by groupstudy.com (8.9.3/8.9.3) with ESMTP id UAA00403
>   GroupStudy Mailer; Mon, 8 Jul 2002 20:43:59 GMT
>Received: from mail pickup service by hotmail.com with Microsoft SMTPSVC;
>Mon, 8 Jul 2002 13:43:29 -0700
>Received: from 212.175.24.135 by lw15fd.law15.hotmail.msn.com with HTTP;
>   Mon, 08 Jul 2002 20:43:28 GMT
>X-Originating-IP: [212.175.24.135]
>From: "Fuat Akar" 
>To: [EMAIL PROTECTED]
>Date: Mon, 08 Jul 2002 23:43:28 +0300
>Mime-Version: 1.0
>Content-Type: text/plain; format=flowed
>Message-ID: 
>X-OriginalArrivalTime: 08 Jul 2002 20:43:29.0096 (UTC) 
>FILETIME=[1D8A1480:01C226C0]
>
>Hello Everybody,
>I need your experiences and help;
>I'm a network responsible for a large bussiness sized Service Provider and
>at our POPs we would like to give a wireless Internet service to our
>customers, but here I have got bandwidth limitation problem at wireless
>applications. As you know Wireless Bridges have  various connection speeds
>from 1Mbps up to 10 Mbps but at that time I would like to give our customer
>at speeds of 128k, 256k or 512kbps Internet bandwidth, what will be the
>right solution for these type of applications which need a bandwidth
>limitation? Maybe Inserting a Layer 3 Switch( or Layer4/7 switches) and
>defining the bandwidth limitation in the switch.
>
>I'll be pleased to get your comments and suggestions.
>
>Thanks
>Fuat AKAR
>
>
>
>
>_
>MSN Photos is the easiest way to share and print your photos:
>http://photos.msn.com/support/worldwide.aspx
>


_
Join the worlds largest e-mail service with MSN Hotmail. 
http://www.hotmail.com




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=49401&t=49401
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

RE: Lightstream PVC config problem... [7:49352]

[Andre Riscalla]

A couple of suggestions:

1) Verify that your ATM interfaces are up and up which i assume you
already did.

2) Since your LS1010 ATM interfaces are setup with UNI version 3.1, change
your ATM uni version on your routers to be 3.1. (The default is 3.0). 

Please provide the IOS version you are running on the LS1010 and on the
routers as well.

Thanks.

AR-


On Mon, 22 Jul 2002, Edward Sohn wrote:

> Thanks for the reply, Andre...
> 
> Hmmm...I was thinking the same way you did at first, but then the book's
> configuration actually has both "atm pvc" commands in each interface.
> Is that a typo, then?
> 
> Even so, I cannot get connectivity between my routers.  Here is my "sho
> run" for the L1010 and 2 routers:
> 
> L1010:
> 
> Current configuration:
> !
> version 11.2
> no service pad
> no service password-encryption
> no service udp-small-servers
> no service tcp-small-servers
> !
> hostname L1010
> !
> !
> ip host-routing
> no ip domain-lookup
> !
> atm address 47.0091.8100..0050.a2c6.4001.0050.a2c6.4001.00
> atm router pnni
>  node 1 level 56 lowest
>   redistribute atm-static
> !
> !
> interface ATM12/0/0
>  no atm auto-configuration
>  atm uni version 3.1
>  atm maxvp-number 8
>  atm maxvc-number 8192
>  atm maxvpi-bits 3
>  atm maxvci-bits 10
> !
> interface ATM12/0/1
> !
> interface ATM12/0/2
>  no atm auto-configuration
>  atm uni version 3.1
>  atm maxvp-number 8
>  atm maxvc-number 8192
>  atm maxvpi-bits 3
>  atm maxvci-bits 10
>  atm pvc 0 121  interface  ATM12/0/0 0 112
> !
> interface ATM12/0/3
> !
> interface ATM13/0/0
>  ip address 175.128.100.5 255.255.255.0
>  atm maxvp-number 0
> !
> interface Ethernet13/0/0
>  no ip address
> !
> no ip classless
> !
> line con 0
>  exec-timeout 0 0
> line aux 0
> line vty 0 4
>  login
> !
> end
> 
> ROUTER 1
> 
> Current configuration : 854 bytes
> !
> version 12.2
> service timestamps debug uptime
> service timestamps log uptime
> no service password-encryption
> !
> hostname R3620-1
> !
> !
> ip subnet-zero
> !
> !
> !
> !
> !
> !
> !
> !
> !
> fax interface-type fax-mail
> mta receive maximum-recipients 0
> !
> !
> !
> !
> interface FastEthernet0/0
>  ip address 165.128.1.1 255.255.255.0
>  duplex auto
>  speed auto
> !
> interface Serial0/0
>  no ip address
>  shutdown
>  clockrate 200
> !
> interface ATM1/0
>  no ip address
>  no atm ilmi-keepalive
> !
> interface ATM1/0.1 multipoint
>  ip address 165.128.100.1 255.255.255.0
>  map-group ip-Pvc
>  atm pvc 112 0 112 aal5snap
> !
> router eigrp 100
>  network 165.128.0.0
>  auto-summary
>  no eigrp log-neighbor-changes
> !
> ip classless
> ip http server
> !
> !
> !
> map-list ip-Pvc
>  ip 165.128.100.2 atm-vc 112 broadcast
> !
> call rsvp-sync
> !
> !
> mgcp profile default
> !
> dial-peer cor custom
> !
> !
> !
> !
> line con 0
> line aux 0
> line vty 0 4
> !
> !
> end
> 
> ROUTER 2:
> 
> Current configuration : 835 bytes
> !
> version 12.2
> service timestamps debug uptime
> service timestamps log uptime
> no service password-encryption
> !
> hostname r3620-2
> !
> !
> ip subnet-zero
> !
> !
> !
> !
> !
> !
> !
> !
> !
> fax interface-type fax-mail
> mta receive maximum-recipients 0
> !
> !
> !
> !
> interface FastEthernet0/0
>  ip address 165.128.2.2 255.255.255.0
>  duplex auto
>  speed auto
> !
> interface Serial0/0
>  no ip address
>  shutdown
> !
> interface ATM1/0
>  no ip address
>  no atm ilmi-keepalive
> !
> interface ATM1/0.1 multipoint
>  ip address 165.128.100.2 255.255.255.0
>  map-group ip-Pvc
>  atm pvc 121 0 121 aal5snap
> !
> router eigrp 100
>  network 165.128.0.0
>  auto-summary
>  no eigrp log-neighbor-changes
> !
> ip classless
> ip http server
> !
> !
> map-list ip-Pvc
>  ip 165.128.100.1 atm-vc 121 broadcast
> !
> call rsvp-sync
> !
> !
> mgcp profile default
> !
> dial-peer cor custom
> !
> !
> !
> !
> line con 0
> line aux 0
> line vty 0 4
> !
> !
> end
> 
> THANKS!
> 
> Eddie
> 
> -Original Message-
> From: Andre Riscalla [mailto:[EMAIL PROTECTED]] 
> Sent: Sunday, July 21, 2002 2:36 PM
> To: Edward Sohn
> Cc: [EMAIL PROTECTED]
> Subject: Re: Lightstream PVC config problem... [7:49352]
> 
> 
> 
> Edward,
> 
> You are simply trying to define the same PVC mapping 2 times... 
> Basically you need to see the mapping of a PVC in the LS1010 similar as
> a cross-connect - You only need to configure the cross-connect in ONE of
> the physical interface.
> 
> For example, let's say you want to configure a PVC from port 12/0/0
> (0/112) to port 12/0/2 (0/121) in your ATM switch. You would have 2 ways
> of doing this:
> 
> Either:
> 
> interface ATM12/0/0
>  no ip address
>  atm pvc 0 112  interface  ATM12/0/2 0 121
> !
> interface ATM12/0/2
>  no ip address
> !  
> Or:
> 
> interface ATM12/0/0
>  no ip address !
> interface ATM12/0/2
>  no ip address
>  atm pvc 0 121  interface  ATM12/0/0 0 112
> !
> 
> Hope this helps,
> 
> AR-
> 
> 
> On Sun, 21 Jul 2002, Edward Sohn wrote:
> 
> > Heya,
> >  
> > I'm kinda new a

Re: Priscilla Oppenheimer [7:49347]

[Chuck]

hhm learn something new every day. thanks.

that still gets back to how ip unnumbered "really" works, as opposed to how
most of us "think" it works. RFC 1812 specifically talks about using the RID
as the interface address:

"this memo has adopted an alternate  scheme, which has been invented
multiple times but which is probably   originally attributable to Phil Karn.
In this scheme, a router that  has unnumbered point to point lines also has
a special IP address, called a router-id in this memo.  The router-id is one
of the router's IP addresses (a router is required to have at least one IP
address).  This router-id is used as if it is the IP address of all
unnumbered interfaces."

whaddaya know - I did recall correctly :->

so it would appear that in the Cisco implementation, at least, for
unnumbered interfaces, the reference interface ip also becomes the RID for
purposes of unnumbered?

So what does this discovery do to the proposition that one "should" use a
loopback as the reference for unnumbered interfaces because loopbacks are
"never down"???

interesting discussion. learned something new.

Chuck




""richard dumoulin""  wrote in message
[EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
> No prob, see below.
>
>
>
> RB#sh run
> Building configuration...
>
> Current configuration:
> !
> version 11.2
> no service password-encryption
> no service udp-small-servers
> no service tcp-small-servers
> !
> hostname RB
> !
> enable password cisco
> !
> no ip domain-lookup
> !
> interface Ethernet0
>  ip address 192.168.1.1 255.255.255.0
> !
> interface Serial0
>  ip unnumbered Ethernet0
> !
> interface Serial1
>  no ip address
>  shutdown
> !
> interface Serial2
>  no ip address
>  shutdown
> !
> interface Serial3
>  no ip address
>  shutdown
> !
> interface Serial4
>  no ip address
>  shutdown
> !
> interface Serial5
>  no ip address
>  shutdown
> !
> interface Serial6
>  no ip address
>  shutdown
> !
> interface Serial7
>  no ip address
>  shutdown
> !
> interface Serial8
>  no ip address
>  shutdown
> !
> interface Serial9
>  no ip address
>  shutdown
> !
> interface BRI0
>  no ip address
>  shutdown
> !
> no ip classless
> ip route 0.0.0.0 0.0.0.0 Serial0
> !
> line con 0
> line aux 0
> line vty 0 4
>  password cisco
>  login
> !
> end
>
> RB#172.16.1.1
> Trying 172.16.1.1 ... Open
>
>
> User Access Verification
>
> Password:
> RA>en
> Password:
> RA#sh run
> Building configuration...
>
> Current configuration : 801 bytes
> !
> version 12.2
> service timestamps debug uptime
> service timestamps log uptime
> no service password-encryption
> !
> hostname RA
> !
> enable password cisco
> !
> memory-size iomem 10
> ip subnet-zero
> !
> !
> no ip domain-lookup
> !
> ip ssh time-out 120
> ip ssh authentication-retries 3
> !
> call rsvp-sync
> !
> !
> !
> !
> !
> !
> !
> !
> interface Ethernet0/0
>  ip address 172.16.1.1 255.255.0.0
>  no keepalive
>  half-duplex
> !
> interface Serial0/0
>  no ip address
>  shutdown
> !
> interface Serial0/1
>  no ip address
>  shutdown
> !
> interface Serial0/2
>  ip unnumbered Ethernet0/0
>  clockrate 200
> !
> interface Serial0/3
>  no ip address
>  shutdown
> !
> ip classless
> ip route 0.0.0.0 0.0.0.0 Serial0/2
> no ip http server
> !
> !
> !
> dial-peer cor custom
> !
> !
> !
> !
> !
> line con 0
> line aux 0
> line vty 0 4
>  password cisco
>  login
> line vty 5 15
>  login
> !
> no scheduler allocate
> end
>
> RA#
> RB#
> [Resuming connection 1 to 172.16.1.1 ... ]
>
> RA#
> RA#
> RB#172.16.1.1
> Trying 172.16.1.1 ... Open
>
>
> User Access Verification
>
> Password:
> RA>en
> Password:
> RA#ping 192.168.1.1
>
> Type escape sequence to abort.
> Sending 5, 100-byte ICMP Echos to 192.168.1.1, timeout is 2 seconds:
> !
> Success rate is 100 percent (5/5), round-trip min/avg/max = 4/4/8 ms
> RA#
> RB#term mon
> % Console already monitors
> RB#
> %LINEPROTO-5-UPDOWN: Line protocol on Interface Ethernet0, changed state
to
> down
> [Resuming connection 2 to 172.16.1.1 ... ]
>
> RA#ping 192.168.1.1
>
> Type escape sequence to abort.
> Sending 5, 100-byte ICMP Echos to 192.168.1.1, timeout is 2 seconds:
> !
> Success rate is 100 percent (5/5), round-trip min/avg/max = 4/4/8 ms
> RA#ping 192.168.1.1
>
> Type escape sequence to abort.
> Sending 5, 100-byte ICMP Echos to 192.168.1.1, timeout is 2 seconds:
> !
> Success rate is 100 percent (5/5), round-trip min/avg/max = 4/5/8 ms
> RA#
> RB#conf t
> Enter configuration commands, one per line.  End with CNTL/Z.
> RB(config)#int e0
> RB(config-if)#shut
> RB(config-if)#
> %LINK-5-CHANGED: Interface Ethernet0, changed state to administratively
> down^Z
> RB#d
> %SYS-5-CONFIG_I: Configured from console by consoleeb ip pa det
> IP packet debugging is on (detailed)
> RB#
> [Resuming connection 2 to 172.16.1.1 ... ]
>
> RA#
> IP: s=192.168.1.1 (local), d=172.16.1.1 (Serial0), len 40, sending
> TCP src=11001, dst=23, seq=3044171494, ack=4024004928, win=4288 ACK
> IP: s=192.168.1.1 (local), d=172.16.1.1 (Serial0), 

RE: Lightstream PVC config problem... [7:49352]

[The Edward Groove]

Hey Andre,

Thanks for your help thus far...Yes, all the
interfaces say up/up.  I have changed the router
versions to 3.1 as you suggested.  I still have no ip
connectivity.  Any other suggestions?

The routers/l1010 both have very up-to-date software,
as shown below from my "sho ver".

Thanks,

Eddie


ROUTER 1:

3600 Software (C3620-IS-M), Version 12.2(2)XT3, EARLY
DEPLOYMENT RELEASE SOFTWARE (fc1)
TAC Support: http://www.cisco.com/tac
Compiled Wed 13-Mar-02 23:15 by shawnk
Image text-base: 0x600089A8, data-base: 0x6153A000

ROM: System Bootstrap, Version 11.1(20)AA2, EARLY
DEPLOYMENT RELEASE SOFTWARE (fc1)

R3620-1 uptime is 1 day, 13 hours, 50 minutes
System returned to ROM by power-on
System image file is "flash:c3620-is-mz.122-2.xt3.bin"

cisco 3620 (R4700) processor (revision 0x81) with
58368K/7168K bytes of memory.
Processor board ID 20530878
R4700 CPU at 80Mhz, Implementation 33, Rev 1.0
Bridging software.
X.25 software, Version 3.0.0.
1 FastEthernet/IEEE 802.3 interface(s)
1 Serial network interface(s)
1 ATM network interface(s)
DRAM configuration is 32 bits wide with parity
disabled.
29K bytes of non-volatile configuration memory.
16384K bytes of processor board System flash
(Read/Write)
8192K bytes of processor board PCMCIA Slot0 flash
(Read/Write)

Configuration register is 0x2182



ROUTER 2:

3600 Software (C3620-IS-M), Version 12.2(2)XT3, EARLY
DEPLOYMENT RELEASE SOFTWARE (fc1)
TAC Support: http://www.cisco.com/tac
Compiled Wed 13-Mar-02 23:15 by shawnk
Image text-base: 0x600089A8, data-base: 0x6153A000

ROM: System Bootstrap, Version 11.1(20)AA2, EARLY
DEPLOYMENT RELEASE SOFTWARE (fc1)

r3620-2 uptime is 1 day, 13 hours, 51 minutes
System returned to ROM by power-on
System image file is "flash:c3620-is-mz.122-2.xt3.bin"

cisco 3620 (R4700) processor (revision 0x81) with
58368K/7168K bytes of memory.
Processor board ID 21963872
R4700 CPU at 80Mhz, Implementation 33, Rev 1.0
Bridging software.
X.25 software, Version 3.0.0.
1 FastEthernet/IEEE 802.3 interface(s)
1 Serial network interface(s)
1 ATM network interface(s)
DRAM configuration is 32 bits wide with parity
disabled.
29K bytes of non-volatile configuration memory.
32768K bytes of processor board System flash
(Read/Write)

Configuration register is 0x2182

---

L1010:

Cisco Internetwork Operating System Software
IOS (tm) LS1010 WA3-4 Software (LS1010-WP-M), Version
11.2(10)WA3(4a), RELEASE SOFTWARE
Copyright (c) 1986-1902 by cisco Systems, Inc.
Compiled Thu 14-Mar-02 14:50 by integ
Image text-base: 0x600108D0, data-base: 0x60436000

ROM: System Bootstrap, Version 11.2(1.4.WA3.0) [integ
1.4.WA3.0], RELEASE SOFTWARE

L1010 uptime is 1 day, 13 hours, 24 minutes
System restarted by reload
System image file is
"bootflash:ls1010-wp-mz.112-10.wa3.4a.bin", booted via
bootflash

cisco ASP (R4600) processor with 32768K bytes of
memory.
R4700 processor, Implementation 33, Revision 1.0
Last reset from power-on
1 Ethernet/IEEE 802.3 interface(s)
4 ATM network interface(s)
123K bytes of non-volatile configuration memory.

8192K bytes of Flash internal SIMM (Sector size 256K).
Configuration register is 0x2101





--- Andre Riscalla 
wrote:
> 
> A couple of suggestions:
> 
> 1) Verify that your ATM interfaces are up and up
> which i assume you
> already did.
> 
> 2) Since your LS1010 ATM interfaces are setup with
> UNI version 3.1, change
> your ATM uni version on your routers to be 3.1. (The
> default is 3.0). 
> 
> Please provide the IOS version you are running on
> the LS1010 and on the
> routers as well.
> 
> Thanks.
> 
> AR-
> 
> 
> On Mon, 22 Jul 2002, Edward Sohn wrote:
> 
> > Thanks for the reply, Andre...
> > 
> > Hmmm...I was thinking the same way you did at
> first, but then the book's
> > configuration actually has both "atm pvc" commands
> in each interface.
> > Is that a typo, then?
> > 
> > Even so, I cannot get connectivity between my
> routers.  Here is my "sho
> > run" for the L1010 and 2 routers:
> > 
> > L1010:
> > 
> > Current configuration:
> > !
> > version 11.2
> > no service pad
> > no service password-encryption
> > no service udp-small-servers
> > no service tcp-small-servers
> > !
> > hostname L1010
> > !
> > !
> > ip host-routing
> > no ip domain-lookup
> > !
> > atm address
> 47.0091.8100..0050.a2c6.4001.0050.a2c6.4001.00
> > atm router pnni
> >  node 1 level 56 lowest
> >   redistribute atm-static
> > !
> > !
> > interface ATM12/0/0
> >  no atm auto-configuration
> >  atm uni version 3.1
> >  atm maxvp-number 8
> >  atm maxvc-number 8192
> >  atm maxvpi-bits 3
> >  atm maxvci-bits 10
> > !
> > interface ATM12/0/1
> > !
> > interface ATM12/0/2
> >  no atm auto-configuration
> >  atm uni version 3.1
> >  atm maxvp-number 8
> >  atm maxvc-number 8192
> >  atm maxvpi-bits 3
> >  atm maxvci-bits 10
> >  atm pvc 0 121  interface  ATM12/0/0 0 112
> > !
> > interface ATM12/0/3
> > !
> > interface ATM13/0/0
> >  ip addres

Re: Priscilla Oppenheimer [7:49347]

[richard dumoulin]

Chuck wrote:
> 
> hhm learn something new every day. thanks.
> 
> that still gets back to how ip unnumbered "really" works, as
> opposed to how
> most of us "think" it works. RFC 1812 specifically talks about
> using the RID
> as the interface address:
> 
> "this memo has adopted an alternate  scheme, which has been
> invented
> multiple times but which is probably   originally attributable
> to Phil Karn.
> In this scheme, a router that  has unnumbered point to point
> lines also has
> a special IP address, called a router-id in this memo.  The
> router-id is one
> of the router's IP addresses (a router is required to have at
> least one IP
> address).  This router-id is used as if it is the IP address of
> all
> unnumbered interfaces."
> 
> whaddaya know - I did recall correctly :->
> 
> so it would appear that in the Cisco implementation, at least,
> for
> unnumbered interfaces, the reference interface ip also becomes
> the RID for
> purposes of unnumbered?
> 
> So what does this discovery do to the proposition that one
> "should" use a
> loopback as the reference for unnumbered interfaces because
> loopbacks are
> "never down"???

Good point Chuck.

Peter, I did not know the meaning of "quote", hehe.
> 
> interesting discussion. learned something new.
> 
> Chuck
> 
> 
> 
> 
> ""richard dumoulin""  wrote in message
> [EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
> > No prob, see below.
> >
> >
> >
> > RB#sh run
> > Building configuration...
> >
> > Current configuration:
> > !
> > version 11.2
> > no service password-encryption
> > no service udp-small-servers
> > no service tcp-small-servers
> > !
> > hostname RB
> > !
> > enable password cisco
> > !
> > no ip domain-lookup
> > !
> > interface Ethernet0
> >  ip address 192.168.1.1 255.255.255.0
> > !
> > interface Serial0
> >  ip unnumbered Ethernet0
> > !
> > interface Serial1
> >  no ip address
> >  shutdown
> > !
> > interface Serial2
> >  no ip address
> >  shutdown
> > !
> > interface Serial3
> >  no ip address
> >  shutdown
> > !
> > interface Serial4
> >  no ip address
> >  shutdown
> > !
> > interface Serial5
> >  no ip address
> >  shutdown
> > !
> > interface Serial6
> >  no ip address
> >  shutdown
> > !
> > interface Serial7
> >  no ip address
> >  shutdown
> > !
> > interface Serial8
> >  no ip address
> >  shutdown
> > !
> > interface Serial9
> >  no ip address
> >  shutdown
> > !
> > interface BRI0
> >  no ip address
> >  shutdown
> > !
> > no ip classless
> > ip route 0.0.0.0 0.0.0.0 Serial0
> > !
> > line con 0
> > line aux 0
> > line vty 0 4
> >  password cisco
> >  login
> > !
> > end
> >
> > RB#172.16.1.1
> > Trying 172.16.1.1 ... Open
> >
> >
> > User Access Verification
> >
> > Password:
> > RA>en
> > Password:
> > RA#sh run
> > Building configuration...
> >
> > Current configuration : 801 bytes
> > !
> > version 12.2
> > service timestamps debug uptime
> > service timestamps log uptime
> > no service password-encryption
> > !
> > hostname RA
> > !
> > enable password cisco
> > !
> > memory-size iomem 10
> > ip subnet-zero
> > !
> > !
> > no ip domain-lookup
> > !
> > ip ssh time-out 120
> > ip ssh authentication-retries 3
> > !
> > call rsvp-sync
> > !
> > !
> > !
> > !
> > !
> > !
> > !
> > !
> > interface Ethernet0/0
> >  ip address 172.16.1.1 255.255.0.0
> >  no keepalive
> >  half-duplex
> > !
> > interface Serial0/0
> >  no ip address
> >  shutdown
> > !
> > interface Serial0/1
> >  no ip address
> >  shutdown
> > !
> > interface Serial0/2
> >  ip unnumbered Ethernet0/0
> >  clockrate 200
> > !
> > interface Serial0/3
> >  no ip address
> >  shutdown
> > !
> > ip classless
> > ip route 0.0.0.0 0.0.0.0 Serial0/2
> > no ip http server
> > !
> > !
> > !
> > dial-peer cor custom
> > !
> > !
> > !
> > !
> > !
> > line con 0
> > line aux 0
> > line vty 0 4
> >  password cisco
> >  login
> > line vty 5 15
> >  login
> > !
> > no scheduler allocate
> > end
> >
> > RA#
> > RB#
> > [Resuming connection 1 to 172.16.1.1 ... ]
> >
> > RA#
> > RA#
> > RB#172.16.1.1
> > Trying 172.16.1.1 ... Open
> >
> >
> > User Access Verification
> >
> > Password:
> > RA>en
> > Password:
> > RA#ping 192.168.1.1
> >
> > Type escape sequence to abort.
> > Sending 5, 100-byte ICMP Echos to 192.168.1.1, timeout is 2
> seconds:
> > !
> > Success rate is 100 percent (5/5), round-trip min/avg/max =
> 4/4/8 ms
> > RA#
> > RB#term mon
> > % Console already monitors
> > RB#
> > %LINEPROTO-5-UPDOWN: Line protocol on Interface Ethernet0,
> changed state
> to
> > down
> > [Resuming connection 2 to 172.16.1.1 ... ]
> >
> > RA#ping 192.168.1.1
> >
> > Type escape sequence to abort.
> > Sending 5, 100-byte ICMP Echos to 192.168.1.1, timeout is 2
> seconds:
> > !
> > Success rate is 100 percent (5/5), round-trip min/avg/max =
> 4/4/8 ms
> > RA#ping 192.168.1.1
> >
> > Type escape sequence to abort.
> > Sending 5, 100-byte ICMP Echos to 192.168.1.1, timeout is 2
> seconds:
> > !
> > Success rate is 100 percent (5/5), round-trip min/avg/max =
>

RE: How to keep multiple switch ports on the same VLAN from [7:49427]

[Magondo, Michael]

The only problem I see with Access lists on the router is the ports
having to be in the same VLAN. This will allow them to see each other
without going through the router. If the ports do not need to see each
other why the need to be in the same VLAN, you could try put the ports
in separate VLANS 41-45 and then use ACL at L3.

Michael

-Original Message-
From: John Brandis [mailto:[EMAIL PROTECTED]] 
Sent: 23 July 2002 08:46 AM
To: [EMAIL PROTECTED]
Subject: RE: How to keep multiple switch ports on the same VLAN from
[7:49424]

you thought about access lists on your router that will be doing the
routing
? Some one else may be able to offer a better solution than this, I hope
so
at least. I would also like to know if there is a better way.

John

-Original Message-
From: Don Claybrook [mailto:[EMAIL PROTECTED]]
Sent: Tuesday, 23 July 2002 8:17 AM
To: [EMAIL PROTECTED]
Subject: How to keep multiple switch ports on the same VLAN from
[7:49410]


I have a customer who needs to have several ports on a 2924XL-EN in the
same
VLAN.  The customer does not want these ports to be able to communicate
with
one another, but would like all of them to be able to go to/through
another
port.  E.g., ports 1 to 5 would be on VLAN 50, they'd all be able to
access
port 6, on VLAN 60, but not each other.



I did find something on CCO about Private VLANs, but I see that the 2924
is
not on the list of hardware that supports PVLAN's.  Does anyone know of
a
way
to accomplish this segregation within the same VLAN, short of PVLAN's?
Any
help is much appreciated.



Thanks,



Don Claybrook
**

visit http://www.solution6.com
visit http://www.eccountancy.com - everything for accountants.

UK Customers - http://www.solution6.co.uk

*
This email message (and attachments) may contain information that is
confidential to Solution 6. If you are not the intended recipient you
cannot
use, distribute or copy the message or attachments.  In such a case,
please
notify the sender by return email immediately and erase all copies of
the
message and attachments.  Opinions, conclusions and other information in
this message and attachments that do not relate to the official business
of
Solution 6 are neither given nor endorsed by it.
*




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=49427&t=49427
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

CID 3.0 [7:49428]

[suaveguru]

Hi all,

anyone knows what I must emphasize on for CID 3.0. Is
SNA included ? AppleTalk ?

any form of inputs will be greatly appreciated

thanks

suaveguru

__
Do You Yahoo!?
Yahoo! Health - Feel better, live better
http://health.yahoo.com




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=49428&t=49428
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

OSPF summarizing BGP redistributed routes into 0/0 [7:49429]

[Stephane Litkowski]

Hi all,

I tried to use the "summary-address" OSPF command to summarize learned BGP
routes to a default summary route (0/0) and it seems that it doesn't work.

(fake BGP routes) - router A  1.0.0.0/32 (OSPF) -
router B


Router A :
--

router ospf 1
 log-adjacency-changes
 summary-address 0.0.0.0 0.0.0.0
 redistribute bgp 1 subnets
 network 1.0.0.0 0.255.255.255 area 0
!
router bgp 1
 bgp log-neighbor-changes
 network 5.0.0.0
 network 6.0.0.0
 network 7.0.0.0
 network 8.0.0.0
 network 9.0.0.0
 network 10.0.0.0
!
ip classless
ip route 5.0.0.0 255.0.0.0 Null0
ip route 6.0.0.0 255.0.0.0 Null0
ip route 7.0.0.0 255.0.0.0 Null0
ip route 8.0.0.0 255.0.0.0 Null0
ip route 9.0.0.0 255.0.0.0 Null0
ip route 10.0.0.0 255.0.0.0 FastEthernet0

Router B :
--

router ospf 1
 log-adjacency-changes
 network 1.0.0.0 0.255.255.255 area 0


On the router A, I can see that type 5 LSA is installed for 0/0 and
propagated to neighbor :

CustomerA#sh ip ospf database

   OSPF Router with ID (192.168.254.254) (Process ID 1)


Router Link States (Area 0)

Link ID ADV Router  Age Seq#   Checksum Link count
192.168.108.4   192.168.108.4   592 0x8003 0x6121   2
192.168.254.254 192.168.254.254 592 0x8006 0x7C72   2

Type-5 AS External Link States

Link ID ADV Router  Age Seq#   Checksum Tag
0.0.0.0 192.168.254.254 4   0x8001 0x2A22   0

But after some seconds, the external LSA is aged out and so disappears (by
what ) :

CustomerA#sh ip ospf database

   OSPF Router with ID (192.168.254.254) (Process ID 1)


Router Link States (Area 0)

Link ID ADV Router  Age Seq#   Checksum Link count
192.168.108.4   192.168.108.4   593 0x8003 0x6121   2
192.168.254.254 192.168.254.254 593 0x8006 0x7C72   2

Type-5 AS External Link States

Link ID ADV Router  Age Seq#   Checksum Tag
0.0.0.0 192.168.254.254 36000x8002 0x301B   1

CustomerA#sh ip ospf database

   OSPF Router with ID (192.168.254.254) (Process ID 1)


Router Link States (Area 0)

Link ID ADV Router  Age Seq#   Checksum Link count
192.168.108.4   192.168.108.4   597 0x8003 0x6121   2
192.168.254.254 192.168.254.254 596 0x8006 0x7C72   2


If I use another summary-address (like 4.0.0.0/6 or 8.0.0.0/5), it works
fine (external LSAs are not aged out).

Why this use doesn't work ?  What happens ? Why the LSA is aged out ?
The purpose of this test was to conditionnaly advertise default routes (if
BGP routes disappears, default route disappears).

NB : router A is 1750 router with IOS 12.1(14)

Thanks for help,


--
Stephane LITKOWSKI
Student in a French computer science school
EPITA Telecom & Network specialization
CCNA + CCNP
EMail : [EMAIL PROTECTED]




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=49429&t=49429
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Hardware Diagnostic - How to interpret [7:49431]

[Pierre-Alex Guanel]

I have had bus errors on my Cisco 4000 router. 

I ran a memory diagnostic on memory addresses 0x0004
to 0x067F which should have covered tests for DRAM lower location,
boot EPROM, Flash EPROM, and DRAM upper location as well as Onboard
ressources and system IO

( http://www.cisco.com/warp/public/112/appB.html#4000 ) 

The result of the test seems to indicate that my DRAM (lower location) is OK
but that the main board of the router is defective?

Is my interpretation correct?


>t m
Memory/Bus diagnostic

Starting Address [0x1000]? 0x0004
Ending Address [0x100]? 0x067F
Hex argument for variable tests [0x]?
Select Tests [all]?
Number of passes to run [2]?
Trigger word for hardare debugging [0]?
Message Level (0=silence, 1=summary, 2=normal)[2]?

Testing addresses between 0x4 and 0x67f

Begin pass 0, test 0
Bus Error control register: 0x0fb0
non-local memory transaction timeout
system overtemp
local memory transaction timeout
at address 0x202 in test number 0
 while attempting short read at add
ress: 0x202
SSW: 0x76d, B pipe: 0xb491, C pipe: 0x5491

Bus Error control register: 0x0fb0
non-local memory transaction timeout
system overtemp
local memory transaction timeout
at address 0x2020002 in test number 0
 while attempting short read at add
ress: 0x2020002
SSW: 0x76d, B pipe: 0xb491, C pipe: 0x5491

Bus Error control register: 0x0fb0
non-local memory transaction timeout
system overtemp
local memory transaction timeout
at address 0x2020004 in test number 0
 while attempting short read at add
ress: 0x2020004
SSW: 0x76d, B pipe: 0xb491, C pipe: 0x5491

Bus Error control register: 0x0fb0
non-local memory transaction timeout
system overtemp
local memory transaction timeout
at address 0x2020006 in test number 0
 while attempting short read at add
ress: 0x2020006
SSW: 0x76d, B pipe: 0xb491, C pipe: 0x5491

Bus Error control register: 0x0fb0
non-local memory transaction timeout
system overtemp
local memory transaction timeout
at address 0x2020008 in test number 0
 while attempting short read at add
ress: 0x2020008
SSW: 0x76d, B pipe: 0xb491, C pipe: 0x5491

Bus Error control register: 0x0fb0
non-local memory transaction timeout
system overtemp
local memory transaction timeout
at address 0x202000a in test number 0
 while attempting short read at add
ress: 0x202000a
SSW: 0x76d, B pipe: 0xb491, C pipe: 0x5491

Bus Error control register: 0x0fb0
non-local memory transaction timeout
system overtemp
local memory transaction timeout
at address 0x202000c in test number 0
 while attempting short read at add
ress: 0x202000c
SSW: 0x76d, B pipe: 0xb491, C pipe: 0x5491

Bus Error control register: 0x0fb0
non-local memory transaction timeout
system overtemp
local memory transaction timeout
at address 0x202000e in test number 0
 while attempting short read at add
ress: 0x202000e
SSW: 0x76d, B pipe: 0xb491, C pipe: 0x5491

Bus Error control register: 0x0fb0
non-local memory transaction timeout
system overtemp
local memory transaction timeout
at address 0x2020010 in test number 0
 while attempting short read at add
ress: 0x2020010
SSW: 0x76d, B pipe: 0xb491, C pipe: 0x5491

Bus Error control register: 0x0fb0
non-local memory transaction timeout
system overtemp
local memory transaction timeout
at address 0x2020012 in test number 0
 while attempting short read at add
ress: 0x2020012
SSW: 0x76d, B pipe: 0xb491, C pipe: 0x5491

Bus Error control register: 0x0fb0
non-local memory transaction timeout
system overtemp
local memory transaction timeout
at address 0x2020014 in test number 0
 while attempting short read at add
ress: 0x2020014
SSW: 0x76d, B pipe: 0xb491, C pipe: 0x5491

Bus Error control register: 0x0fb0
non-local memory transaction timeout
system overtemp
local memory transaction timeout
at address 0x2020016 in test number 0
 while attempting short read at add
ress: 0x2020016
SSW: 0x76d, B pipe: 0xb491, C pipe: 0x5491

Bus Error control register: 0x0fb0
non-local memory transaction timeout
system overtemp
local memory transaction timeout
at address 0x2020018 in test number 0
 while attempting short read at add
ress: 0x2020018
SSW: 0x76d, B pipe: 0xb491, C pipe: 0x5491

Bus Error control register: 0x0fb0
non-local memory transaction timeout
system overtemp
local memory transaction timeout
at address 0x202001a in test number 0
 while attempting short read at add
ress: 0x202001a
SSW: 0x76d, B pipe: 0xb491, C pipe: 0x5491

Bus Error control register: 0x0fb0
non-local memory transaction timeout
system overtemp
local memory transaction timeout
at address 0x202001c in test number 0
 while attempting short read at add
ress: 0x202001c
SSW: 0x76d, B pipe: 0xb491, C pipe: 0x5491

Bus Error control register: 0x0fb0
non-local memory transaction timeout
system overtemp
local memory transaction timeout
at address 0x202001e in test number 0
 while attempting short read at add
ress:

BSCI exam [7:49432]

[[EMAIL PROTECTED]]

Hi,

Today I passed the BSCI exam towards my CCIP certifictaion.I scored 930 and
the passing score was 700 and the number of questions are 57.The exam
contains all the routing protocol (more stress on IS-IS).

The pattern of the exam is different from other exams,The exam has some
design questions that needs to be implemented through the router
simulators,very much like the real router's hyperterminal (Cisco CIM) but
the functionality of help and tab commands are disabled here.One needs to
remember the complete configuration command.

Kind Regards /Thangavel

186K
Reading,Brkshire
Direct No   -0118 9064259
Mobile No  -07796292416
Post code: RG16LH
www.186k.co.uk

--
The greatest glory in living lies not in never falling,
 but in rising every time we fall ."
 -- Nelson Mandela





**
This e-mail is from 186k Ltd and is intended only for the 
addressee named above. As this e-mail may contain confidential
or priveleged information, if you are not the named addressee or
the person responsible for delivering the message to the named 
addressee, please advise the sender by return e-mail. The
contents should not be disclosed to any other person nor copies
taken.
186k Ltd is a Lattice Group company, registered in England 
& Wales No. 3751494 Registered Office 130 Jermyn Street 
London SW1Y 4UR
**




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=49432&t=49432
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

RE: 3640 ATM Support (NM-4T1-IMA) [7:48858]

[Randy Hsieh]

are u trying to run ima? if you have questions about the card, plug a
loopback plug in and the port should go green. if u don't think the 3660 is
recognizing the card, try reseating the card after rebooting the box.


Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=49433&t=48858
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: mpls-l2 vpn vs. vlan [7:49346]

[Kent Yu]

I cannot see any problem using vlan from your access layer up to the
aggregation point, as long as the PE has enough capacity to hold the routes.
If necessary, you can always use several PEs in one location to spread out
your aggregation, you may want to use some lower end routers/switches, kind
of like a distribution layer leading to the core devices in your POPs.

HTH
Kent


""bbfaye""  wrote in message
[EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
> we are handling a case of a MAN project now.
> We plan to use mpls-l2 vpn to connect the business subscribers.That means
we
> have to place some mpls-enabled machines on the access
nodes(expensive...).
> Another choice is using vlan.And the users' vlan are trunked to the
> aggressive
> nodes.I think it's not so good to do this,but not so sure about the
> disadvantage.
> Does anyone have experience or suggestion about using vlan and l2-mpls vpn
in
> the man?
> thanks a lot.




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=49414&t=49346
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: mpls-l2 vpn vs. vlan [7:49346]

[Peter van Oene]

Before going down this road, I tend to wonder what drives people this 
direction.  Exactly what is it about poorly scaling, flat networks that 
turn people on?  Last I checked, IP did a pretty decent job of providing a 
robust means of interconnection between remote sites.  To me, its LANE all 
over again, ie lets take a scalable, robust, intelligent technology and try 
and bridge with it.   As far as building MANs with Spanning Tree as your 
control protocol, I might suggest that it will give you a real headache 
from a scaling and provisioning standpoint.  You might want to find someone 
who worked at Yipes to give you some ideas.

As far as building MPLS based bridging networks I would suggest that in 
many cases, the technology is pretty fresh at this point. The ppvpn group 
in the ietf and the vendor community (same thing?) are still considering a 
number of candidate solutions.  However, at this point you should be able 
to find vendors capable of providing point to point topologies with various 
degrees of scaling properties.  As well, I have heard that Riverstone may 
have a point to multipoint (ie capable of replicating one packet across a 
series of point to point LSP's) solution, but I have not researched it.  In 
the future, a true VPLS solution should shake out that provides multi 
vendor compatible, 802.1d like bridging (ie mac learning with some type of 
listen/learn/forward STP like loop prevention).  Again though, I tend to 
ask myself, is this really what we want to do with our nifty IP networks.

I will say that I am fully behind replacing legacy frame/atm vpn networks 
with IP/MPLS networks in order to reduce the number of networks supported 
by a single provider.  There are definite efficiencies to be gained here.

Most access gear at this point supports some type of MPLS however.  What 
type of gear are you using currently that makes it prohibitively expensive 
to upgrade at this point?





At 08:12 PM 7/21/2002 +, bbfaye wrote:
>we are handling a case of a MAN project now.
>We plan to use mpls-l2 vpn to connect the business subscribers.That means we
>have to place some mpls-enabled machines on the access nodes(expensive...).
>Another choice is using vlan.And the users' vlan are trunked to the
>aggressive
>nodes.I think it's not so good to do this,but not so sure about the
>disadvantage.
>Does anyone have experience or suggestion about using vlan and l2-mpls vpn
in
>the man?
>thanks a lot.




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=49430&t=49346
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

RE: BSCI exam [7:49432]

[Tim O'Brien]

Nothing like "real-world" scenarios on test that are nothing like the
"real-world".. :)

Tim
CCIE 9015

-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of
[EMAIL PROTECTED]
Sent: Tuesday, July 23, 2002 9:15 AM
To: [EMAIL PROTECTED]
Subject: BSCI exam [7:49432]


Hi,

Today I passed the BSCI exam towards my CCIP certifictaion.I scored 930 and
the passing score was 700 and the number of questions are 57.The exam
contains all the routing protocol (more stress on IS-IS).

The pattern of the exam is different from other exams,The exam has some
design questions that needs to be implemented through the router
simulators,very much like the real router's hyperterminal (Cisco CIM) but
the functionality of help and tab commands are disabled here.One needs to
remember the complete configuration command.

Kind Regards /Thangavel

186K
Reading,Brkshire
Direct No   -0118 9064259
Mobile No  -07796292416
Post code: RG16LH
www.186k.co.uk

--
The greatest glory in living lies not in never falling,
 but in rising every time we fall ."
 -- Nelson Mandela





**
This e-mail is from 186k Ltd and is intended only for the
addressee named above. As this e-mail may contain confidential
or priveleged information, if you are not the named addressee or
the person responsible for delivering the message to the named
addressee, please advise the sender by return e-mail. The
contents should not be disclosed to any other person nor copies
taken.
186k Ltd is a Lattice Group company, registered in England
& Wales No. 3751494 Registered Office 130 Jermyn Street
London SW1Y 4UR
**




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=49436&t=49432
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: Lightstream PVC config problem... [7:49352]

[MADMAN]

Try using VPI 1 instead of 0.  I know 0 is a valid option but I have
seen it not work and we don't use it for other reasons that I don't know
the history of.  Also the framing and scrambling parameters are needed
if I recall.

  Here is a config I know works cause I was using it in the lab:

interface ATM0/0/0
 no ip address
 no ip directed-broadcast
 no ip route-cache cef
 no atm ilmi-keepalive
 scrambling cell-payload
 framing cbitplcp
!
interface ATM0/0/1
 no ip address
 no ip directed-broadcast
 no ip route-cache cef
 no atm ilmi-keepalive
 atm pvc 1 32  interface  ATM0/0/0 1 32
 scrambling cell-payload
 framing cbitplcp
  
 Dave

The Edward Groove wrote:
> 
> Hey Andre,
> 
> Thanks for your help thus far...Yes, all the
> interfaces say up/up.  I have changed the router
> versions to 3.1 as you suggested.  I still have no ip
> connectivity.  Any other suggestions?
> 
> The routers/l1010 both have very up-to-date software,
> as shown below from my "sho ver".
> 
> Thanks,
> 
> Eddie
> 
> ROUTER 1:
> 
> 3600 Software (C3620-IS-M), Version 12.2(2)XT3, EARLY
> DEPLOYMENT RELEASE SOFTWARE (fc1)
> TAC Support: http://www.cisco.com/tac
> Compiled Wed 13-Mar-02 23:15 by shawnk
> Image text-base: 0x600089A8, data-base: 0x6153A000
> 
> ROM: System Bootstrap, Version 11.1(20)AA2, EARLY
> DEPLOYMENT RELEASE SOFTWARE (fc1)
> 
> R3620-1 uptime is 1 day, 13 hours, 50 minutes
> System returned to ROM by power-on
> System image file is "flash:c3620-is-mz.122-2.xt3.bin"
> 
> cisco 3620 (R4700) processor (revision 0x81) with
> 58368K/7168K bytes of memory.
> Processor board ID 20530878
> R4700 CPU at 80Mhz, Implementation 33, Rev 1.0
> Bridging software.
> X.25 software, Version 3.0.0.
> 1 FastEthernet/IEEE 802.3 interface(s)
> 1 Serial network interface(s)
> 1 ATM network interface(s)
> DRAM configuration is 32 bits wide with parity
> disabled.
> 29K bytes of non-volatile configuration memory.
> 16384K bytes of processor board System flash
> (Read/Write)
> 8192K bytes of processor board PCMCIA Slot0 flash
> (Read/Write)
> 
> Configuration register is 0x2182
> 
> 
> 
> ROUTER 2:
> 
> 3600 Software (C3620-IS-M), Version 12.2(2)XT3, EARLY
> DEPLOYMENT RELEASE SOFTWARE (fc1)
> TAC Support: http://www.cisco.com/tac
> Compiled Wed 13-Mar-02 23:15 by shawnk
> Image text-base: 0x600089A8, data-base: 0x6153A000
> 
> ROM: System Bootstrap, Version 11.1(20)AA2, EARLY
> DEPLOYMENT RELEASE SOFTWARE (fc1)
> 
> r3620-2 uptime is 1 day, 13 hours, 51 minutes
> System returned to ROM by power-on
> System image file is "flash:c3620-is-mz.122-2.xt3.bin"
> 
> cisco 3620 (R4700) processor (revision 0x81) with
> 58368K/7168K bytes of memory.
> Processor board ID 21963872
> R4700 CPU at 80Mhz, Implementation 33, Rev 1.0
> Bridging software.
> X.25 software, Version 3.0.0.
> 1 FastEthernet/IEEE 802.3 interface(s)
> 1 Serial network interface(s)
> 1 ATM network interface(s)
> DRAM configuration is 32 bits wide with parity
> disabled.
> 29K bytes of non-volatile configuration memory.
> 32768K bytes of processor board System flash
> (Read/Write)
> 
> Configuration register is 0x2182
> 
> ---
> 
> L1010:
> 
> Cisco Internetwork Operating System Software
> IOS (tm) LS1010 WA3-4 Software (LS1010-WP-M), Version
> 11.2(10)WA3(4a), RELEASE SOFTWARE
> Copyright (c) 1986-1902 by cisco Systems, Inc.
> Compiled Thu 14-Mar-02 14:50 by integ
> Image text-base: 0x600108D0, data-base: 0x60436000
> 
> ROM: System Bootstrap, Version 11.2(1.4.WA3.0) [integ
> 1.4.WA3.0], RELEASE SOFTWARE
> 
> L1010 uptime is 1 day, 13 hours, 24 minutes
> System restarted by reload
> System image file is
> "bootflash:ls1010-wp-mz.112-10.wa3.4a.bin", booted via
> bootflash
> 
> cisco ASP (R4600) processor with 32768K bytes of
> memory.
> R4700 processor, Implementation 33, Revision 1.0
> Last reset from power-on
> 1 Ethernet/IEEE 802.3 interface(s)
> 4 ATM network interface(s)
> 123K bytes of non-volatile configuration memory.
> 
> 8192K bytes of Flash internal SIMM (Sector size 256K).
> Configuration register is 0x2101
> 
> --- Andre Riscalla
> wrote:
> >
> > A couple of suggestions:
> >
> > 1) Verify that your ATM interfaces are up and up
> > which i assume you
> > already did.
> >
> > 2) Since your LS1010 ATM interfaces are setup with
> > UNI version 3.1, change
> > your ATM uni version on your routers to be 3.1. (The
> > default is 3.0).
> >
> > Please provide the IOS version you are running on
> > the LS1010 and on the
> > routers as well.
> >
> > Thanks.
> >
> > AR-
> >
> >
> > On Mon, 22 Jul 2002, Edward Sohn wrote:
> >
> > > Thanks for the reply, Andre...
> > >
> > > Hmmm...I was thinking the same way you did at
> > first, but then the book's
> > > configuration actually has both "atm pvc" commands
> > in each interface.
> > > Is that a typo, then?
> > >
> > > Even so, I cannot get connectivity between my
> > routers.  Here is my "sho
> > > run" for the L1010 and 2 routers:

Everything working now? [7:49438]

[Paul Borghese]

GroupStudy is definitely causing me to age prematurely!  Ok, I think the
list, newsfeed, and website are back in operation.  I did disable the
archive search engine and may enable it later once things stabalize.

We need to obtain new hardware and we actually have the money to purchase
said new hardware :-).  With the free bandwidth from Swiftcomm and the
selling of banner advertisements, we have been able to create quite a trust
fund.  So I need suggestions on Intel based servers that are 1u in size.
The more redundancy and memory, the better.  Probably SCSI.  The new server
needs to work under RedHat Linux.

Any suggestions!

Paul Borghese




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=49438&t=49438
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

2600 Series VPN with 3DES [7:49440]

[Firesox]

I am configuring 2620 3DES feature set.  On the other side of IPSec is Avaya
VPNet.
I am debugging this and seems as the transform set is configured right.
VPNet is configured as follows:
Encryption: 3DES
Hash: SHA
Diffie-H Group1

Anyone know what tranform set setting I should be using?
Thanks




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=49440&t=49440
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Delay on ISDN Backup with Dialer Profiles !?!? [7:49441]

[Antonio Montana]

Hi all,

How can I configure a delay with dialer Profiles ??
Let's say I have a the following scenario with three routers (FR with OSPF).
In case of the failure of the connection between router_3 and router_1 ,
either router_2 or router_3 can bring up an ISDN line.
First it should come up the line between R1 and R3,
but if after let's say 90sec the ISDN isn't up, router_2 should connect to
router_3 via ISDN.
So, how can I configure delay under "int DialerXX" ??
In every case router_3 should be the Called Router, and the others the
calling routers ...



router_2
  * router_3
  ** 
  *  *
  **
router_1 *



on router_2

interface Dialer0
 description ** ISDN Backup to router_3 **
 ip address x.x.x.6 255.255.255.252
 encapsulation ppp
 dialer remote-name router_3
 dialer idle-timeout 300
 dialer string 123456
 dialer-group 1
-

on router_1

interface Dialer0
 description ** ISDN Backup to router_3 **
 ip address z.z.z.2 255.255.255.252
 encapsulation ppp
 dialer remote-name router_3
 dialer idle-timeout 300
 dialer string 123456
 dialer-group 1

-


on router_3

interface BRI0
 description ** ISDN Backup to router_1/router_2 **
  no ip address
  encapsulation ppp
  dialer pool-member 1
  dialer pool-member 2
  isdn switch-type basic-net3
  ppp authentication chap
 
 interface Dialer0
  description ** ISDN Backup to router_1 **
  ip address z.z.z.3 255.255.255.252
  encapsulation ppp
  dialer idle-timeout 300
  dialer pool 1 
  dialer map ip z.z.z.2 name router_1 broadcast
  dialer-group 1
  ppp authentication chap  

interface Dialer1
  description ** ISDN Backup to router_2 **
  ip address x.x.x.7 255.255.255.252
  encapsulation ppp
  dialer idle-timeout 300
  dialer pool 2 
  dialer map ip x.x.x.6 name router_2 broadcast
  dialer-group 1
  ppp authentication chap  

dialer list 1 . bla bla



any ideas ??

cheers,
monti






Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=49441&t=49441
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

RE: Delay on ISDN Backup with Dialer Profiles !?!? [7:49441]

[Antonio Montana]

Sorry for the confusing "diagram" ;)

router_1 connects to router_2 via FrameRelay
router_1 connects to router_3 via FrameRelay

All routers have ISDN connections

need something like the backup delay xx yy command but for dialer interfaces
?!?

cheers,
monti




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=49442&t=49441
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Cisco IOS Docs Hardcopy? [7:49444]

[Barbee Jason]

When logged in to CCO, I can go to the Product Upgrade tool, select
documentation, and see a large list of available documentation. I would like
to order the documentation set for 12.2, but I do not see it on the list.
Is there a way to order the complete set? or should I just enter quantity 1
for all the IOS documenations.
And I'm concerned about billing too, it appears it will charge our Cisco
Reseller for the shipping and/or costs.
Do these documents cost anything or is it just the cost of shipping?

I thought I had read a thread that mentioned this somewhere, but I couldn't
find it using the groupstudy google search engine, and the older archive
search engine gave a glimpse not found error. I apologize if some of the
questions here have already been answered.

Thanks everyone,
-Jason
[EMAIL PROTECTED]
www.cciewannabe.com - Remote Cisco Lab Access


Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=49444&t=49444
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

People of follow via the NewsFeed [7:49439]

[Paul Borghese]

If you follow this group via the Newsfeed (nntp://news.groupstudy.com) you
may have missed a few messages from this morning.  You can see what you
missed by going to the website:

http://www.groupstudy.com/form/list.php?f=7

Sorry for the inconvenience!

Paul Borghese


Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=49439&t=49439
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

RE: Everything working now? [7:49438]

[Mark W. Odette II]

Dude- Your Getting' a Dell! :-)

Seriously, I think you could pick up a Dell Refurb 1U system with
extended warranty at a steal... and they work great!

2U would be the way to go though, that way you can get RAID 5
Hot-Swap-ability, and have plenty of cooling space for the SCSI Drives.

BTW- What server DOESN'T work with RedHat??


-Original Message-
From: Paul Borghese [mailto:[EMAIL PROTECTED]] 
Sent: Tuesday, July 23, 2002 9:21 AM
To: [EMAIL PROTECTED]
Subject: Everything working now? [7:49438]

GroupStudy is definitely causing me to age prematurely!  Ok, I think the
list, newsfeed, and website are back in operation.  I did disable the
archive search engine and may enable it later once things stabalize.

We need to obtain new hardware and we actually have the money to
purchase
said new hardware :-).  With the free bandwidth from Swiftcomm and the
selling of banner advertisements, we have been able to create quite a
trust
fund.  So I need suggestions on Intel based servers that are 1u in size.
The more redundancy and memory, the better.  Probably SCSI.  The new
server
needs to work under RedHat Linux.

Any suggestions!

Paul Borghese




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=49446&t=49438
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: mpls-l2 vpn vs. vlan [7:49346]

[Howard C. Berkowitz]

At 1:46 PM + 7/23/02, Kent Yu wrote:
>I cannot see any problem using vlan from your access layer up to the
>aggregation point, as long as the PE has enough capacity to hold the routes.
>If necessary, you can always use several PEs in one location to spread out
>your aggregation, you may want to use some lower end routers/switches, kind
>of like a distribution layer leading to the core devices in your POPs.
>
>HTH
>Kent

Agreed, if the access devices have only one or two uplinks and don't 
need the rerouting ability of IP.

>
>
>""bbfaye""  wrote in message
>[EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
>>  we are handling a case of a MAN project now.
>>  We plan to use mpls-l2 vpn to connect the business subscribers.That means
>we
>>  have to place some mpls-enabled machines on the access
>nodes(expensive...).
>>  Another choice is using vlan.And the users' vlan are trunked to the
>>  aggressive
>>  nodes.I think it's not so good to do this,but not so sure about the
>>  disadvantage.
>>  Does anyone have experience or suggestion about using vlan and l2-mpls
vpn
>in
>>  the man?
>>  thanks a lot.




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=49445&t=49346
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: mpls-l2 vpn vs. vlan [7:49346]

[Howard C. Berkowitz]

At 1:46 PM + 7/23/02, Peter van Oene wrote:
>Before going down this road, I tend to wonder what drives people this
>direction.  Exactly what is it about poorly scaling, flat networks that
>turn people on?

My impression is that it is an unholy alliance of traditional telcos 
and traditional vendors to traditional telcos, coupled with 
FUD/cluelessness with certain enterprises who think L2 is 
automatically configurable and infinitely scalable.

I have seen estimates from telcos that without massive retraining, 
they think they can only support 10% L3, 90% L2 with their existing 
provisioning and support personnel.

>Last I checked, IP did a pretty decent job of providing a
>robust means of interconnection between remote sites.  To me, its LANE all
>over again, ie lets take a scalable, robust, intelligent technology and try
>and bridge with it.   As far as building MANs with Spanning Tree as your
>control protocol, I might suggest that it will give you a real headache
>from a scaling and provisioning standpoint.  You might want to find someone
>who worked at Yipes to give you some ideas.
>
>As far as building MPLS based bridging networks I would suggest that in
>many cases, the technology is pretty fresh at this point. The ppvpn group
>in the ietf and the vendor community (same thing?) are still considering a
>number of candidate solutions.  However, at this point you should be able
>to find vendors capable of providing point to point topologies with various
>degrees of scaling properties.  As well, I have heard that Riverstone may
>have a point to multipoint (ie capable of replicating one packet across a
>series of point to point LSP's) solution, but I have not researched it.  In
>the future, a true VPLS solution should shake out that provides multi
>vendor compatible, 802.1d like bridging (ie mac learning with some type of
>listen/learn/forward STP like loop prevention).  Again though, I tend to
>ask myself, is this really what we want to do with our nifty IP networks.
>
>I will say that I am fully behind replacing legacy frame/atm vpn networks
>with IP/MPLS networks in order to reduce the number of networks supported
>by a single provider.  There are definite efficiencies to be gained here.
>
>Most access gear at this point supports some type of MPLS however.  What
>type of gear are you using currently that makes it prohibitively expensive
>to upgrade at this point?
>
>
>
>
>
>At 08:12 PM 7/21/2002 +, bbfaye wrote:
>>we are handling a case of a MAN project now.
>>We plan to use mpls-l2 vpn to connect the business subscribers.That means
we
>>have to place some mpls-enabled machines on the access nodes(expensive...).
>>Another choice is using vlan.And the users' vlan are trunked to the
>>aggressive
>>nodes.I think it's not so good to do this,but not so sure about the
>>disadvantage.
>>Does anyone have experience or suggestion about using vlan and l2-mpls vpn
>in
>>the man?
>>thanks a lot.




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=49443&t=49346
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

RE: Priscilla Oppenheimer [7:49347]

[Kelly Cobean]

I'm curious what would happen if you took the "no keepalive" statement off
of the ethernet interface you are using.  By having this in place, you are
effectively "spoofing" the up condition on the interface by telling it that
"up" is ok, even if you aren't sending or receiving keepalives.  I would
imagine that if you took this off, then your test will fail.



Kelly Cobean, CCNP, CCSA, ACSA, MCSE, MCP+I
Network Engineer
AT&T Government Solutions, Inc.

Disclaimer:
The opinions expressed herein are those of the author alone, and do not
necessarily relfect those of AT&T Government Solutions, Inc., it's
management, or it's affiliates.

-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of
richard dumoulin
Sent: Monday, July 22, 2002 1:50 PM
To: [EMAIL PROTECTED]
Subject: Re: Priscilla Oppenheimer [7:49347]


No prob, see below.



RB#sh run
Building configuration...

Current configuration:
!
version 11.2
no service password-encryption
no service udp-small-servers
no service tcp-small-servers
!
hostname RB
!
enable password cisco
!
no ip domain-lookup
!
interface Ethernet0
 ip address 192.168.1.1 255.255.255.0
!
interface Serial0
 ip unnumbered Ethernet0
!
interface Serial1
 no ip address
 shutdown
!
interface Serial2
 no ip address
 shutdown
!
interface Serial3
 no ip address
 shutdown
!
interface Serial4
 no ip address
 shutdown
!
interface Serial5
 no ip address
 shutdown
!
interface Serial6
 no ip address
 shutdown
!
interface Serial7
 no ip address
 shutdown
!
interface Serial8
 no ip address
 shutdown
!
interface Serial9
 no ip address
 shutdown
!
interface BRI0
 no ip address
 shutdown
!
no ip classless
ip route 0.0.0.0 0.0.0.0 Serial0
!
line con 0
line aux 0
line vty 0 4
 password cisco
 login
!
end

RB#172.16.1.1
Trying 172.16.1.1 ... Open


User Access Verification

Password:
RA>en
Password:
RA#sh run
Building configuration...

Current configuration : 801 bytes
!
version 12.2
service timestamps debug uptime
service timestamps log uptime
no service password-encryption
!
hostname RA
!
enable password cisco
!
memory-size iomem 10
ip subnet-zero
!
!
no ip domain-lookup
!
ip ssh time-out 120
ip ssh authentication-retries 3
!
call rsvp-sync
!
!
!
!
!
!
!
!
interface Ethernet0/0
 ip address 172.16.1.1 255.255.0.0
 no keepalive
 half-duplex
!
interface Serial0/0
 no ip address
 shutdown
!
interface Serial0/1
 no ip address
 shutdown
!
interface Serial0/2
 ip unnumbered Ethernet0/0
 clockrate 200
!
interface Serial0/3
 no ip address
 shutdown
!
ip classless
ip route 0.0.0.0 0.0.0.0 Serial0/2
no ip http server
!
!
!
dial-peer cor custom
!
!
!
!
!
line con 0
line aux 0
line vty 0 4
 password cisco
 login
line vty 5 15
 login
!
no scheduler allocate
end

RA#
RB#
[Resuming connection 1 to 172.16.1.1 ... ]

RA#
RA#
RB#172.16.1.1
Trying 172.16.1.1 ... Open


User Access Verification

Password:
RA>en
Password:
RA#ping 192.168.1.1

Type escape sequence to abort.
Sending 5, 100-byte ICMP Echos to 192.168.1.1, timeout is 2 seconds:
!
Success rate is 100 percent (5/5), round-trip min/avg/max = 4/4/8 ms
RA#
RB#term mon
% Console already monitors
RB#
%LINEPROTO-5-UPDOWN: Line protocol on Interface Ethernet0, changed state to
down
[Resuming connection 2 to 172.16.1.1 ... ]

RA#ping 192.168.1.1

Type escape sequence to abort.
Sending 5, 100-byte ICMP Echos to 192.168.1.1, timeout is 2 seconds:
!
Success rate is 100 percent (5/5), round-trip min/avg/max = 4/4/8 ms
RA#ping 192.168.1.1

Type escape sequence to abort.
Sending 5, 100-byte ICMP Echos to 192.168.1.1, timeout is 2 seconds:
!
Success rate is 100 percent (5/5), round-trip min/avg/max = 4/5/8 ms
RA#
RB#conf t
Enter configuration commands, one per line.  End with CNTL/Z.
RB(config)#int e0
RB(config-if)#shut
RB(config-if)#
%LINK-5-CHANGED: Interface Ethernet0, changed state to administratively
down^Z
RB#d
%SYS-5-CONFIG_I: Configured from console by consoleeb ip pa det
IP packet debugging is on (detailed)
RB#
[Resuming connection 2 to 172.16.1.1 ... ]

RA#
IP: s=192.168.1.1 (local), d=172.16.1.1 (Serial0), len 40, sending
TCP src=11001, dst=23, seq=3044171494, ack=4024004928, win=4288 ACK
IP: s=192.168.1.1 (local), d=172.16.1.1 (Serial0), len 42, sending
TCP src=11001, dst=23, seq=3044171494, ack=4024004928, win=4288 ACK PSH
IP: s=172.16.1.1 (Serial0), d=192.168.1.1 (Serial0), len 42, rcvd 3
TCP src=23, dst=11001, seq=4024004928, ack=3044171496, win=4058 ACK PSH
IP: s=172.16.1.1 (Serial0), d=192.168.1.1 (Serial0), len 43, rcvd 3
TCP src=23, dst=11001, seq=4024004930, ack=3044171496, win=4058 ACK PSH
IP: s=192.168.1.1 (local), d=172.16.1.1 (Serial0), len 40, sending
TCP src=11001, dst=23, seq=3044171496, ack=4024004933, win=4283 ACKping
192.168.1.1

Type escape sequence to abort.
Sending 5, 100-byte ICMP Echos to 192.168.1.1, timeout is 2 seconds:
!!
IP: s=192.168.1.1 (local), d=172.16.1.1 (Serial0), len 41, sending
TCP src=11001, dst=23, seq=3044171496, ack=4024004933, win=4283 ACK PSH
IP: s=172

Re: Cisco IOS Docs Hardcopy? [7:49444]

[Reza]

Jason,
I am not sure but I think it depends on the type contract you have.
I have the same issue. I know there are people on this list that have
ordered 12.2 but when I look for it on the list I don't see it, I only see
12.1.

Reza



""Barbee Jason""  wrote in message
[EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
> When logged in to CCO, I can go to the Product Upgrade tool, select
> documentation, and see a large list of available documentation. I would
like
> to order the documentation set for 12.2, but I do not see it on the list.
> Is there a way to order the complete set? or should I just enter quantity
1
> for all the IOS documenations.
> And I'm concerned about billing too, it appears it will charge our Cisco
> Reseller for the shipping and/or costs.
> Do these documents cost anything or is it just the cost of shipping?
>
> I thought I had read a thread that mentioned this somewhere, but I
couldn't
> find it using the groupstudy google search engine, and the older archive
> search engine gave a glimpse not found error. I apologize if some of the
> questions here have already been answered.
>
> Thanks everyone,
> -Jason
> [EMAIL PROTECTED]
> www.cciewannabe.com - Remote Cisco Lab Access




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=49448&t=49444
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Serial Number Retrieval Tool [7:49449]

[Kwame]

Is there a tool out there for retrieval serial numbers from cisco switches?
Anyone?




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=49449&t=49449
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

pix quick help [7:49450]

[John Green]

to allow a workstation access so as to be able to use
and configure via the PDM, we give the command
http server enable
http 165.12.55.12 255.255.255.255 inside

what is the purpose for the command 
pdm location 165.12.55.12 255.255.255.255 inside

do we need both the commands to allow the workstation
be able to access PDM GUI ??


__
Do You Yahoo!?
Yahoo! Health - Feel better, live better
http://health.yahoo.com




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=49450&t=49450
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Vigilar spam? [7:49453]

[Paul Borghese]

Did anyone else get the vigilar.com spam?  I am trying to determine if
they are culling addresses from this list.  If they are we will make it
public they are spammers and arrange a boycott against their company.

 

Please contact me direct and do not reply to the entire list.

 

Thanks!

 

Paul




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=49453&t=49453
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

RE: Everything working now? [7:49438]

[Kelly Cobean]

Paul,
 I'm sure that you'll get 1000 diffent suggestions on this, but my
preference is Compaq.  The DL380-G2 offers everything you'll need.  You can
get Dual processors, SCSI-RAID, etc, and they are fully Redhat compliant.
We are using several of them with Redhat 7.2, and they are awesome.  They
are a little more expensive, but the support, service and quality you get
from Compaq are unmatched in the Intel-based server industry in my opinion.
Cost is probably around 4K/server once you outfit it with drives, etc.
Check CDW.com for prices and configurations.

HTH,

Kelly Cobean, CCNP, CCSA, ACSA, MCSE, MCP+I
Network Engineer
AT&T Government Solutions, Inc.

Disclaimer:
The opinions expressed herein are those of the author alone, and do not
necessarily relfect those of AT&T Government Solutions, Inc., it's
management, or it's affiliates.

-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of
Paul Borghese
Sent: Tuesday, July 23, 2002 10:21 AM
To: [EMAIL PROTECTED]
Subject: Everything working now? [7:49438]


GroupStudy is definitely causing me to age prematurely!  Ok, I think the
list, newsfeed, and website are back in operation.  I did disable the
archive search engine and may enable it later once things stabalize.

We need to obtain new hardware and we actually have the money to purchase
said new hardware :-).  With the free bandwidth from Swiftcomm and the
selling of banner advertisements, we have been able to create quite a trust
fund.  So I need suggestions on Intel based servers that are 1u in size.
The more redundancy and memory, the better.  Probably SCSI.  The new server
needs to work under RedHat Linux.

Any suggestions!

Paul Borghese




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=49454&t=49438
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: Cisco IOS Docs Hardcopy? [7:49444]

[Eric Rogers]

Product Number  Product Description
DOC-SRIOS12.2=Cisco IOS Release 12.2 Documentation Set

-Eric

- Original Message -
From: "Reza" 
To: 
Sent: Tuesday, July 23, 2002 9:19 AM
Subject: Re: Cisco IOS Docs Hardcopy? [7:49444]


> Jason,
> I am not sure but I think it depends on the type contract you have.
> I have the same issue. I know there are people on this list that have
> ordered 12.2 but when I look for it on the list I don't see it, I only see
> 12.1.
>
> Reza
>
>
>
> ""Barbee Jason""  wrote in message
> [EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
> > When logged in to CCO, I can go to the Product Upgrade tool, select
> > documentation, and see a large list of available documentation. I would
> like
> > to order the documentation set for 12.2, but I do not see it on the
list.
> > Is there a way to order the complete set? or should I just enter
quantity
> 1
> > for all the IOS documenations.
> > And I'm concerned about billing too, it appears it will charge our Cisco
> > Reseller for the shipping and/or costs.
> > Do these documents cost anything or is it just the cost of shipping?
> >
> > I thought I had read a thread that mentioned this somewhere, but I
> couldn't
> > find it using the groupstudy google search engine, and the older archive
> > search engine gave a glimpse not found error. I apologize if some of the
> > questions here have already been answered.
> >
> > Thanks everyone,
> > -Jason
> > [EMAIL PROTECTED]
> > www.cciewannabe.com - Remote Cisco Lab Access




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=49455&t=49444
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

RE: Cisco IOS Docs Hardcopy? [7:49444]

[Mark W. Odette II]

I just went back onto CCO, and this is what I found.  You just might
have overlooked what you were looking for.  The following is an excerpt
from the order site:

DOC-SRIOS11.3=  Cisco IOS Release 11.3 Documentation Suite
DOC-SRIOS12.0=  Cisco IOS Release 12.0 Documentation Suite
DOC-SRIOS12.1=  Cisco IOS 12.1 Documentation Suite
DOC-SRIOS12.2=  Cisco IOS Release 12.2 Documentation Set

So, it looks like, if you go looking for the above listed items, you
should find what you're looking for.  It was listed just after "Standard
Router Documentation for IOS Release ..."

Enjoy!
Mark  

-Original Message-
From: Barbee Jason [mailto:[EMAIL PROTECTED]] 
Sent: Tuesday, July 23, 2002 10:37 AM
To: [EMAIL PROTECTED]
Subject: Cisco IOS Docs Hardcopy? [7:49444]

When logged in to CCO, I can go to the Product Upgrade tool, select
documentation, and see a large list of available documentation. I would
like
to order the documentation set for 12.2, but I do not see it on the
list.
Is there a way to order the complete set? or should I just enter
quantity 1
for all the IOS documenations.
And I'm concerned about billing too, it appears it will charge our Cisco
Reseller for the shipping and/or costs.
Do these documents cost anything or is it just the cost of shipping?

I thought I had read a thread that mentioned this somewhere, but I
couldn't
find it using the groupstudy google search engine, and the older archive
search engine gave a glimpse not found error. I apologize if some of the
questions here have already been answered.

Thanks everyone,
-Jason
[EMAIL PROTECTED]
www.cciewannabe.com - Remote Cisco Lab Access




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=49456&t=49444
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

RE: pix quick help [7:49450]

[Mark W. Odette II]

I believe the answer is yes.

The HTTP command specifies what node is allowed to hit the HTTP Server,
while the PDM command defines the host allowed to log into the PDM App.

I'm sure someone will rightly correct me if I'm wrong. :)

-Mark

-Original Message-
From: John Green [mailto:[EMAIL PROTECTED]] 
Sent: Tuesday, July 23, 2002 11:35 AM
To: [EMAIL PROTECTED]
Subject: pix quick help [7:49450]

to allow a workstation access so as to be able to use
and configure via the PDM, we give the command
http server enable
http 165.12.55.12 255.255.255.255 inside

what is the purpose for the command 
pdm location 165.12.55.12 255.255.255.255 inside

do we need both the commands to allow the workstation
be able to access PDM GUI ??


__
Do You Yahoo!?
Yahoo! Health - Feel better, live better
http://health.yahoo.com




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=49457&t=49450
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

RE: Everything working now? [7:49438]

[Kevin Stone]

I'd agree with the 2u and Dell recommendations.  Much more flexible and
better redundancy in the 2u systems.  If the box will sit in a
"populated" area  be wary of the new Dell 2650, it's an extremely loud
system.

-Kevin


> -Original Message-
> From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] On 
> Behalf Of Mark W. Odette II
> Sent: Tuesday, July 23, 2002 11:51 AM
> To: [EMAIL PROTECTED]
> Subject: RE: Everything working now? [7:49438]
> 
> 
> Dude- Your Getting' a Dell! :-)
> 
> Seriously, I think you could pick up a Dell Refurb 1U system 
> with extended warranty at a steal... and they work great!
> 
> 2U would be the way to go though, that way you can get RAID 5 
> Hot-Swap-ability, and have plenty of cooling space for the 
> SCSI Drives.
> 
> BTW- What server DOESN'T work with RedHat??
> 
> 
> -Original Message-
> From: Paul Borghese [mailto:[EMAIL PROTECTED]] 
> Sent: Tuesday, July 23, 2002 9:21 AM
> To: [EMAIL PROTECTED]
> Subject: Everything working now? [7:49438]
> 
> GroupStudy is definitely causing me to age prematurely!  Ok, 
> I think the list, newsfeed, and website are back in 
> operation.  I did disable the archive search engine and may 
> enable it later once things stabalize.
> 
> We need to obtain new hardware and we actually have the money 
> to purchase said new hardware :-).  With the free bandwidth 
> from Swiftcomm and the selling of banner advertisements, we 
> have been able to create quite a trust fund.  So I need 
> suggestions on Intel based servers that are 1u in size. The 
> more redundancy and memory, the better.  Probably SCSI.  The 
> new server needs to work under RedHat Linux.
> 
> Any suggestions!
> 
> Paul Borghese
> Report misconduct 
> and Nondisclosure violations to [EMAIL PROTECTED]




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=49460&t=49438
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

RE: Cisco IOS Docs Hardcopy? [7:49444]

[Mark W. Odette II]

Jason,

Funny you should mention it.

I just received my order of documentation, which I placed over a month
ago.

One thing for sure, I got more documentation than I realized I ordered-
and it was all free.  I did not find an indication of charge for
shipping or the docs themselves.  Now I have enough documentation to
fill 5 bookshelves!

... and yes, part of that documentation is the 12.2 docs-- config guide,
debug docs, command guide, Voice-Video-Fax docs, and the list goes on.

All of it is soft-cover though, so don't expect hard-cover.

I received 1 very large box, a medium sized box, several small boxes and
bubble envelopes... 11 pieces in all.

Some of that was Voice docs though... ICS 7750, IP Phones, Call Manager,
CiscoWorks for Voice, etc.

I figured, if it was free, and I want to familiarize myself with that
stuff for the future, why the heck not order it!

I believe my Reseller Status is what allowed me to order it all for free
though.

Good Luck!

Mark Odette II
StellarConnection Services
CCNP, MCSE, A+ Certified.

-Original Message-
From: Barbee Jason [mailto:[EMAIL PROTECTED]] 
Sent: Tuesday, July 23, 2002 10:37 AM
To: [EMAIL PROTECTED]
Subject: Cisco IOS Docs Hardcopy? [7:49444]

When logged in to CCO, I can go to the Product Upgrade tool, select
documentation, and see a large list of available documentation. I would
like
to order the documentation set for 12.2, but I do not see it on the
list.
Is there a way to order the complete set? or should I just enter
quantity 1
for all the IOS documenations.
And I'm concerned about billing too, it appears it will charge our Cisco
Reseller for the shipping and/or costs.
Do these documents cost anything or is it just the cost of shipping?

I thought I had read a thread that mentioned this somewhere, but I
couldn't
find it using the groupstudy google search engine, and the older archive
search engine gave a glimpse not found error. I apologize if some of the
questions here have already been answered.

Thanks everyone,
-Jason
[EMAIL PROTECTED]
www.cciewannabe.com - Remote Cisco Lab Access




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=49451&t=49444
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

RE: Serial Number Retrieval Tool [7:49449]

[Arnold, Jamie]

I think Cricket will do this via rmon or SNMP?

-Original Message-
From: Kwame [mailto:[EMAIL PROTECTED]] 
Sent: Tuesday, July 23, 2002 12:29 PM
To: [EMAIL PROTECTED]
Subject: Serial Number Retrieval Tool [7:49449]


Is there a tool out there for retrieval serial numbers from cisco switches?
Anyone?




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=49458&t=49449
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

RE: Vigilar spam? [7:49453]

[[EMAIL PROTECTED]]

I've received a couple emails from them.  Same email sent to two of my
addresses; only one is on this list

I hate spam!!
I hate spam!!
I hate spam!!

Cheers,
mike j.




~~~
Michael Jablonski
ABN AMRO Asset Management Holdings, Inc.
161 North Clark St.
9th Flr
Chicago, IL  60601-2468
PH: 312.884.2996 
FAX: 312.278.5550
~~~





-Original Message-
From: Paul Borghese [mailto:[EMAIL PROTECTED]] 
Sent: Tuesday, July 23, 2002 12:04 PM
To: [EMAIL PROTECTED]
Subject: Vigilar spam? [7:49453]


Did anyone else get the vigilar.com spam?  I am trying to determine if
they are culling addresses from this list.  If they are we will make it
public they are spammers and arrange a boycott against their company.

 

Please contact me direct and do not reply to the entire list.

 

Thanks!

 

Paul




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=49462&t=49453
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: DHCP Server on Multiple VLANs [7:49403]

[Jake]

did you try the " ip helper address" command on each of the vlans to point
to a DHCP server?
""Don Pezet""  wrote in message
[EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
> Hey guys,
>
>  I have a Cisco 3620 connected to a 2948G-L3 which
> in turn provides layer three services to a cluster of
> 3548XLs. I have 9 operating VLANs and have been trying
> to work out a scenario for DHCP in my environment.
> Right now, we assign static IPs in all 9 vlans because
> we do not want to provide seperate DHCP servers for
> each. If we could find a way to get one server to
> provide DHCP to all the VLANs then we could implement
> it. The trick is, each VLAN is a different subnet.
>
>  I had heard that if you use the 3620 as a DHCP
> server, create subinterfaces on a FE port using ISL and
> assign IP addresses appropriately, and create multiple
> DHCP pools, then the router would issues IPs from pools
> that matched the interface it drew the request from.
> However, when I try this it just issues IPs from the
> first pool until it is full and then moves to the next.
>
>  Is there a way to make sure the router assigns
> correct IPs on the correct sub-interfaces? Is there a
> 3rd party DHCP server that would do this better?
>
>  Let me do a sample config to show what I tried.
> Each network has a network printer at .200 (don't ask)
> and a router sub-interface at .1 except the 10.10.10.0
> network which has reserved IPs through 100, but still a
> router interface at .1
>
> Here's the Cisco 3620 DHCP portion of the config:
> !
> ip dhcp excluded-address 10.10.10.1 10.10.10.100
> ip dhcp excluded-address 192.168.1.1
> ip dhcp excluded-address 192.168.1.200
> ip dhcp excluded-address 192.168.2.1
> ip dhcp excluded-address 192.168.2.200
> ip dhcp excluded-address 192.168.3.1
> ip dhcp excluded-address 192.168.3.200
> ip dhcp excluded-address 192.168.4.1
> ip dhcp excluded-address 192.168.4.200
> ip dhcp excluded-address 192.168.5.1
> ip dhcp excluded-address 192.168.5.200
> ip dhcp excluded-address 192.168.6.1
> ip dhcp excluded-address 192.168.6.200
> ip dhcp excluded-address 192.168.7.1
> ip dhcp excluded-address 192.168.7.200
> ip dhcp excluded-address 192.168.8.1
> ip dhcp excluded-address 192.168.8.200
> !
> ip dhcp pool Vlan1
>   network 10.10.10.0 /24
>   dns-server 4.2.2.1
>   default-router 10.10.10.1
> !
> ip dhcp pool Vlan10
>   network 192.168.1.0 /24
>   dns-server 4.2.2.1
>   default-router 192.168.1.1
> !
> ip dhcp pool Vlan20
>   network 192.168.2.0 /24
>   dns-server 4.2.2.1
>   default-router 192.168.2.1
> !
> ip dhcp pool Vlan30
>   network 192.168.3.0 /24
>   dns-server 4.2.2.1
>   default-router 192.168.3.1
> !
> ip dhcp pool Vlan40
>   network 192.168.4.0 /24
>   dns-server 4.2.2.1
>   default-router 192.168.4.1
> !
> ip dhcp pool Vlan50
>   network 192.168.5.0 /24
>   dns-server 4.2.2.1
>   default-router 192.168.5.1
> !
> ip dhcp pool Vlan60
>   network 192.168.6.0 /24
>   dns-server 4.2.2.1
>   default-router 192.168.6.1
> !
> ip dhcp pool Vlan70
>   network 192.168.7.0 /24
>   dns-server 4.2.2.1
>   default-router 192.168.7.1
> !
> ip dhcp pool Vlan80
>   network 192.168.8.0 /24
>   dns-server 4.2.2.1
>   default-router 192.168.8.1
> !
> interface FastEthernet1/0
>  description connected to Private Network
>  no ip address
>  duplex auto
>  speed auto
> !
> interface FastEthernet1/0.1
>  encapsulation isl 1
>  ip address 10.10.10.1 255.255.255.0
>  no ip redirects
> !
> interface FastEthernet1/0.10
>  encapsulation isl 10
>  ip address 192.168.1.1 255.255.255.0
>  no ip redirects
> !
> interface FastEthernet1/0.20
>  encapsulation isl 20
>  ip address 192.168.2.1 255.255.255.0
>  no ip redirects
> !
> interface FastEthernet1/0.30
>  encapsulation isl 30
>  ip address 192.168.3.1 255.255.255.0
>  no ip redirects
> !
> interface FastEthernet1/0.40
>  encapsulation isl 40
>  ip address 192.168.4.1 255.255.255.0
>  no ip redirects
> !
> interface FastEthernet1/0.50
>  encapsulation isl 50
>  ip address 192.168.5.1 255.255.255.0
>  no ip redirects
> !
> interface FastEthernet1/0.60
>  encapsulation isl 60
>  ip address 192.168.6.1 255.255.255.0
>  no ip redirects
> !
> interface FastEthernet1/0.70
>  encapsulation isl 70
>  ip address 192.168.7.1 255.255.255.0
>  no ip redirects
> !
> interface FastEthernet1/0.80
>  encapsulation isl 80
>  ip address 192.168.8.1 255.255.255.0
>  no ip redirects
> !
>
>
> Thanks,
>
> Don Pezet
> [EMAIL PROTECTED]




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=49463&t=49403
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

OSPF summarizing BGP redistributed routes into 0/0 [7:49461]

[Stephane LITKOWSKI]

Hi all,

I tried to use the "summary-address" OSPF command to summarize learned BGP
routes to a default summary route (0/0) and it seems that it doesn't work.

(fake BGP routes) - router A  1.0.0.0/32 (OSPF) -
router B


Router A :
--

router ospf 1
 log-adjacency-changes
 summary-address 0.0.0.0 0.0.0.0
 redistribute bgp 1 subnets
 network 1.0.0.0 0.255.255.255 area 0
!
router bgp 1
 bgp log-neighbor-changes
 network 5.0.0.0
 network 6.0.0.0
 network 7.0.0.0
 network 8.0.0.0
 network 9.0.0.0
 network 10.0.0.0
!
ip classless
ip route 5.0.0.0 255.0.0.0 Null0
ip route 6.0.0.0 255.0.0.0 Null0
ip route 7.0.0.0 255.0.0.0 Null0
ip route 8.0.0.0 255.0.0.0 Null0
ip route 9.0.0.0 255.0.0.0 Null0
ip route 10.0.0.0 255.0.0.0 FastEthernet0

Router B :
--

router ospf 1
 log-adjacency-changes
 network 1.0.0.0 0.255.255.255 area 0


On the router A, I can see that type 5 LSA is installed for 0/0 and
propagated to neighbor :

CustomerA#sh ip ospf database

   OSPF Router with ID (192.168.254.254) (Process ID 1)


Router Link States (Area 0)

Link ID ADV Router  Age Seq#   Checksum Link count
192.168.108.4   192.168.108.4   592 0x8003 0x6121   2
192.168.254.254 192.168.254.254 592 0x8006 0x7C72   2

Type-5 AS External Link States

Link ID ADV Router  Age Seq#   Checksum Tag
0.0.0.0 192.168.254.254 4   0x8001 0x2A22   0

But after some seconds, the external LSA is aged out and so disappears (by
what ) :

CustomerA#sh ip ospf database

   OSPF Router with ID (192.168.254.254) (Process ID 1)


Router Link States (Area 0)

Link ID ADV Router  Age Seq#   Checksum Link count
192.168.108.4   192.168.108.4   593 0x8003 0x6121   2
192.168.254.254 192.168.254.254 593 0x8006 0x7C72   2

Type-5 AS External Link States

Link ID ADV Router  Age Seq#   Checksum Tag
0.0.0.0 192.168.254.254 36000x8002 0x301B   1

CustomerA#sh ip ospf database

   OSPF Router with ID (192.168.254.254) (Process ID 1)


Router Link States (Area 0)

Link ID ADV Router  Age Seq#   Checksum Link count
192.168.108.4   192.168.108.4   597 0x8003 0x6121   2
192.168.254.254 192.168.254.254 596 0x8006 0x7C72   2


If I use another summary-address (like 4.0.0.0/6 or 8.0.0.0/5), it works
fine (external LSAs are not aged out).

Why this use doesn't work ?  What happens ? Why the LSA is aged out ?
The purpose of this test was to conditionnaly advertise default routes (if
BGP routes disappears, default route disappears).

NB : router A is 1750 router with IOS 12.1(14)

Thanks for help,


--
Stephane LITKOWSKI
Student in a French computer science school
EPITA Telecom & Network specialization
CCNA + CCNP
EMail : [EMAIL PROTECTED]




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=49461&t=49461
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

nbar message [7:49466]

[GEORGE]

I get this message when I try to apply a policy to my fast Ethernet
interface on a 7513
service-policy is supported only on VIP interfaces with DCEF
enabled




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=49466&t=49466
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: nbar message [7:49466]

[Steven A. Ridder]

turn on dcef or cef.


""GEORGE""  wrote in message
[EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
> I get this message when I try to apply a policy to my fast Ethernet
> interface on a 7513
> service-policy is supported only on VIP interfaces with DCEF
> enabled




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=49467&t=49466
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

RE: Cisco IOS Docs Hardcopy? [7:49444]

[Barbee Jason]

Wow. Maybe my eyes were strained last night, but that option was not there.
I logged in today and it was there. =DOC-SRIOS-12.2. Placed my order, and
when I called Cisco Customer Support to verify they said the balance due is
$0.00.
Thanks for your help!
-Jason


Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=49468&t=49444
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

RE: Everything working now? [7:49438]

[Paul Borghese]

Yea, but most co-location facilities charge on a per u basis.  While we
are currently being hosted for free at Swiftcomm, you never know when we
will need to pay again.

Therefore, I am trying to keep the footprint down to 1u.


Paul

-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] On Behalf Of
Kevin Stone
Sent: Tuesday, July 23, 2002 2:01 PM
To: [EMAIL PROTECTED]
Subject: RE: Everything working now? [7:49438]

I'd agree with the 2u and Dell recommendations.  Much more flexible and
better redundancy in the 2u systems.  If the box will sit in a
"populated" area  be wary of the new Dell 2650, it's an extremely loud
system.

-Kevin


> -Original Message-
> From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] On 
> Behalf Of Mark W. Odette II
> Sent: Tuesday, July 23, 2002 11:51 AM
> To: [EMAIL PROTECTED]
> Subject: RE: Everything working now? [7:49438]
> 
> 
> Dude- Your Getting' a Dell! :-)
> 
> Seriously, I think you could pick up a Dell Refurb 1U system 
> with extended warranty at a steal... and they work great!
> 
> 2U would be the way to go though, that way you can get RAID 5 
> Hot-Swap-ability, and have plenty of cooling space for the 
> SCSI Drives.
> 
> BTW- What server DOESN'T work with RedHat??
> 
> 
> -Original Message-
> From: Paul Borghese [mailto:[EMAIL PROTECTED]] 
> Sent: Tuesday, July 23, 2002 9:21 AM
> To: [EMAIL PROTECTED]
> Subject: Everything working now? [7:49438]
> 
> GroupStudy is definitely causing me to age prematurely!  Ok, 
> I think the list, newsfeed, and website are back in 
> operation.  I did disable the archive search engine and may 
> enable it later once things stabalize.
> 
> We need to obtain new hardware and we actually have the money 
> to purchase said new hardware :-).  With the free bandwidth 
> from Swiftcomm and the selling of banner advertisements, we 
> have been able to create quite a trust fund.  So I need 
> suggestions on Intel based servers that are 1u in size. The 
> more redundancy and memory, the better.  Probably SCSI.  The 
> new server needs to work under RedHat Linux.
> 
> Any suggestions!
> 
> Paul Borghese
> Report misconduct 
> and Nondisclosure violations to [EMAIL PROTECTED]




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=49470&t=49438
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: Vigilar spam? [7:49453]

[Paul Borghese]

Then please report it to any and every spam list you can think of.  Please
the more of us that take action, the better.

Here is some e-mails to help along the way.  Their corporate network is
being hosted by earthling (or at minimum their website).  Try complaining
to:

[EMAIL PROTECTED]
[EMAIL PROTECTED]
[EMAIL PROTECTED]


Their domain name was reserved using these addresses:

[EMAIL PROTECTED]
[EMAIL PROTECTED]

The actual e-mail came from a service called silverpop.com.  Please contact
them at:

[EMAIL PROTECTED] [EMAIL PROTECTED] [EMAIL PROTECTED]
[EMAIL PROTECTED]

Plus please complain to the silverpop hosting company, inflow:

[EMAIL PROTECTED] [EMAIL PROTECTED]


Please add to this list.  Let's get these guys shutdown!  They are culling
e-mail addresses from virtually every Cisco discussion group on the net (as
far as I can tell).

Paul


 wrote in message
[EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
> I've received a couple emails from them.  Same email sent to two of my
> addresses; only one is on this list
>
> I hate spam!!
> I hate spam!!
> I hate spam!!
>
> Cheers,
> mike j.
>
>
>
>
> ~~~
> Michael Jablonski
> ABN AMRO Asset Management Holdings, Inc.
> 161 North Clark St.
> 9th Flr
> Chicago, IL  60601-2468
> PH: 312.884.2996
> FAX: 312.278.5550
> ~~~
>
>
>
>
>
> -Original Message-
> From: Paul Borghese [mailto:[EMAIL PROTECTED]]
> Sent: Tuesday, July 23, 2002 12:04 PM
> To: [EMAIL PROTECTED]
> Subject: Vigilar spam? [7:49453]
>
>
> Did anyone else get the vigilar.com spam?  I am trying to determine if
> they are culling addresses from this list.  If they are we will make it
> public they are spammers and arrange a boycott against their company.
>
>
>
> Please contact me direct and do not reply to the entire list.
>
>
>
> Thanks!
>
>
>
> Paul




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=49469&t=49453
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: OSPF summarizing BGP redistributed routes into 0/0 [7:49471]

[Stephane LITKOWSKI]

Some more informations :

LSA for 0.0.0.0 (using summary-address) :

CustomerA#sh ip ospf database  external

   OSPF Router with ID (192.168.254.254) (Process ID 1)


Type-5 AS External Link States

  LS age: 5
  Options: (No TOS-capability, DC)
  LS Type: AS External Link
  Link State ID: 0.0.0.0 (External Network Number )
  Advertising Router: 192.168.254.254
  LS Seq Number: 8001
  Checksum: 0x2A22
  Length: 36
  Network Mask: /0
Metric Type: 2 (Larger than any link state path)
TOS: 0
Metric: 1
Forward Address: 0.0.0.0
External Route Tag: 0

CustomerA#sh ip ospf database  external

   OSPF Router with ID (192.168.254.254) (Process ID 1)


Type-5 AS External Link States

  Delete flag is set for this LSA
  LS age: MAXAGE(3600)
  Options: (No TOS-capability, DC)
  LS Type: AS External Link
  Link State ID: 0.0.0.0 (External Network Number )
  Advertising Router: 192.168.254.254
  LS Seq Number: 8002
  Checksum: 0x301B
  Length: 36
  Network Mask: /0
Metric Type: 2 (Larger than any link state path)
TOS: 0
Metric: 16777215
Forward Address: 0.0.0.0
External Route Tag: 1



LSA for 4.0.0.0 & 8.0.0.0 summary routes :


CustomerA#sh ip ospf database external

   OSPF Router with ID (192.168.254.254) (Process ID 1)


Type-5 AS External Link States

  LS age: 11
  Options: (No TOS-capability, DC)
  LS Type: AS External Link
  Link State ID: 4.0.0.0 (External Network Number )
  Advertising Router: 192.168.254.254
  LS Seq Number: 8001
  Checksum: 0xEC5E
  Length: 36
  Network Mask: /6
Metric Type: 2 (Larger than any link state path)
TOS: 0
Metric: 1
Forward Address: 0.0.0.0
External Route Tag: 0

  LS age: 11
  Options: (No TOS-capability, DC)
  LS Type: AS External Link
  Link State ID: 8.0.0.0 (External Network Number )
  Advertising Router: 192.168.254.254
  LS Seq Number: 8002
  Checksum: 0xAA9F
  Length: 36
  Network Mask: /5
Metric Type: 2 (Larger than any link state path)
TOS: 0
Metric: 1
Forward Address: 0.0.0.0
External Route Tag: 0


LSA 0.0.0.0 using default-originate command -> works fine

CustomerA#sh ip ospf database external

   OSPF Router with ID (192.168.254.254) (Process ID 1)


Type-5 AS External Link States

  LS age: 13
  Options: (No TOS-capability, DC)
  LS Type: AS External Link
  Link State ID: 0.0.0.0 (External Network Number )
  Advertising Router: 192.168.254.254
  LS Seq Number: 8001
  Checksum: 0x3C0F
  Length: 36
  Network Mask: /0
Metric Type: 2 (Larger than any link state path)
TOS: 0
Metric: 1
Forward Address: 0.0.0.0
External Route Tag: 1

So there's no difference, I just saw that using summary-address, the LSA
0.0.0.0 as an external route tag set to 0 and set to 1 when it is aged out.
I done the same test using a cisco 2500 router with IOS 12.2, and it's the
same, LSA is prematurely aged out when using summary-address command.

Thanks for the help.


Stephane



""Stephane LITKOWSKI""  a icrit dans le message de news:
[EMAIL PROTECTED]
> Hi all,
>
> I tried to use the "summary-address" OSPF command to summarize learned BGP
> routes to a default summary route (0/0) and it seems that it doesn't work.
>
> (fake BGP routes) - router A  1.0.0.0/32 (OSPF) -
> router B
>
>
> Router A :
> --
>
> router ospf 1
>  log-adjacency-changes
>  summary-address 0.0.0.0 0.0.0.0
>  redistribute bgp 1 subnets
>  network 1.0.0.0 0.255.255.255 area 0
> !
> router bgp 1
>  bgp log-neighbor-changes
>  network 5.0.0.0
>  network 6.0.0.0
>  network 7.0.0.0
>  network 8.0.0.0
>  network 9.0.0.0
>  network 10.0.0.0
> !
> ip classless
> ip route 5.0.0.0 255.0.0.0 Null0
> ip route 6.0.0.0 255.0.0.0 Null0
> ip route 7.0.0.0 255.0.0.0 Null0
> ip route 8.0.0.0 255.0.0.0 Null0
> ip route 9.0.0.0 255.0.0.0 Null0
> ip route 10.0.0.0 255.0.0.0 FastEthernet0
>
> Router B :
> --
>
> router ospf 1
>  log-adjacency-changes
>  network 1.0.0.0 0.255.255.255 area 0
>
>
> On the router A, I can see that type 5 LSA is installed for 0/0 and
> propagated to neighbor :
>
> CustomerA#sh ip ospf database
>
>OSPF Router with ID (192.168.254.254) (Process ID 1)
>
>
> Router Link States (Area 0)
>
> Link ID ADV Router  Age Seq#   Checksum Link count
> 192.168.108.4   192.168.108.4   592 0x8003 0x6121   2
> 192.168.254.254 192.168.254.254 592 0x8006 0x7C72   2
>
> Type-5 AS External Link States
>
> Link ID ADV Router  Age Seq#   Checksum Tag
> 0.0.0.0 192.168.254.254 4   0x8001 0x2A22   0
>
> But after some seconds, the external LSA is aged out and so disappears (by
> what ) :
>
> CustomerA#sh ip ospf database
>
>OSPF Router with ID (192.168.254.2

switch simulator review? [7:49472]

[Sean Wolfe]

Thinking of buying routersim.com's switch simulator to help me w/ BCMSN:

http://www.routersim.com/product_switchsim.asp

Does anybody have a review? Or recommend a similar product?

Thanks everybody, -Sean.


Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=49472&t=49472
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Xyplex Maxserver 1600 as a router terminal server? [7:49474]

[John Matney]

Anyone using a Maxserver series terminal server in their rack? I got a 24
port one for free and would love to use it in my lab. However, this thing
has proven a major PITA to configure! If anyone out there has configured
one of thse I would really appreciate some tips or examples.

Thanks in advance,
John Matney




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=49474&t=49474
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

RE: OSPF summarizing BGP redistributed routes into 0/0 [7:49461]

[Wes]

Stephane,

  You're missing the "default-information originate" command.  0/0 can not
be propagated into OSFP without it.  Static, conditional, dynamic,
redistributed, it doesn't matter.  You need that statement to allow the 0/0
route into OSPF.  (No doubt why it's showing up in the database but not in
the route-tables - your logic is correct and the route is being summarized,
but not allowed in)

  Read up on the default-information command; it's a neat one.  You can do
the conditional advertisement you're looking for with this command - and
make it very specific using a route-map.

  Good Luck
  --Wes


Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=49475&t=49461
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

RE: OSPF summarizing BGP redistributed routes into 0/0 [7:49476]

[Winston Shaw]

Hello Mr. Litkowski,

Based upon what is represented as your goal and diagram, I would suggest you
use a "default-information originate route-map" statement under the ospf
process on router A. The route map should clearly identify the bgp routes of
interest.

Winston V. Shaw
CCIE(#7991)



-Original Message-
From: Stephane LITKOWSKI [mailto:[EMAIL PROTECTED]]
Sent: Tuesday, July 23, 2002 12:26 PM
To: [EMAIL PROTECTED]
Subject: Re: OSPF summarizing BGP redistributed routes into 0/0
[7:49471]


Some more informations :

LSA for 0.0.0.0 (using summary-address) :

CustomerA#sh ip ospf database  external

   OSPF Router with ID (192.168.254.254) (Process ID 1)


Type-5 AS External Link States

  LS age: 5
  Options: (No TOS-capability, DC)
  LS Type: AS External Link
  Link State ID: 0.0.0.0 (External Network Number )
  Advertising Router: 192.168.254.254
  LS Seq Number: 8001
  Checksum: 0x2A22
  Length: 36
  Network Mask: /0
Metric Type: 2 (Larger than any link state path)
TOS: 0
Metric: 1
Forward Address: 0.0.0.0
External Route Tag: 0

CustomerA#sh ip ospf database  external

   OSPF Router with ID (192.168.254.254) (Process ID 1)


Type-5 AS External Link States

  Delete flag is set for this LSA
  LS age: MAXAGE(3600)
  Options: (No TOS-capability, DC)
  LS Type: AS External Link
  Link State ID: 0.0.0.0 (External Network Number )
  Advertising Router: 192.168.254.254
  LS Seq Number: 8002
  Checksum: 0x301B
  Length: 36
  Network Mask: /0
Metric Type: 2 (Larger than any link state path)
TOS: 0
Metric: 16777215
Forward Address: 0.0.0.0
External Route Tag: 1



LSA for 4.0.0.0 & 8.0.0.0 summary routes :


CustomerA#sh ip ospf database external

   OSPF Router with ID (192.168.254.254) (Process ID 1)


Type-5 AS External Link States

  LS age: 11
  Options: (No TOS-capability, DC)
  LS Type: AS External Link
  Link State ID: 4.0.0.0 (External Network Number )
  Advertising Router: 192.168.254.254
  LS Seq Number: 8001
  Checksum: 0xEC5E
  Length: 36
  Network Mask: /6
Metric Type: 2 (Larger than any link state path)
TOS: 0
Metric: 1
Forward Address: 0.0.0.0
External Route Tag: 0

  LS age: 11
  Options: (No TOS-capability, DC)
  LS Type: AS External Link
  Link State ID: 8.0.0.0 (External Network Number )
  Advertising Router: 192.168.254.254
  LS Seq Number: 8002
  Checksum: 0xAA9F
  Length: 36
  Network Mask: /5
Metric Type: 2 (Larger than any link state path)
TOS: 0
Metric: 1
Forward Address: 0.0.0.0
External Route Tag: 0


LSA 0.0.0.0 using default-originate command -> works fine

CustomerA#sh ip ospf database external

   OSPF Router with ID (192.168.254.254) (Process ID 1)


Type-5 AS External Link States

  LS age: 13
  Options: (No TOS-capability, DC)
  LS Type: AS External Link
  Link State ID: 0.0.0.0 (External Network Number )
  Advertising Router: 192.168.254.254
  LS Seq Number: 8001
  Checksum: 0x3C0F
  Length: 36
  Network Mask: /0
Metric Type: 2 (Larger than any link state path)
TOS: 0
Metric: 1
Forward Address: 0.0.0.0
External Route Tag: 1

So there's no difference, I just saw that using summary-address, the LSA
0.0.0.0 as an external route tag set to 0 and set to 1 when it is aged out.
I done the same test using a cisco 2500 router with IOS 12.2, and it's the
same, LSA is prematurely aged out when using summary-address command.

Thanks for the help.


Stephane



""Stephane LITKOWSKI""  a icrit dans le message de news:
[EMAIL PROTECTED]
> Hi all,
>
> I tried to use the "summary-address" OSPF command to summarize learned BGP
> routes to a default summary route (0/0) and it seems that it doesn't work.
>
> (fake BGP routes) - router A  1.0.0.0/32 (OSPF) -
> router B
>
>
> Router A :
> --
>
> router ospf 1
>  log-adjacency-changes
>  summary-address 0.0.0.0 0.0.0.0
>  redistribute bgp 1 subnets
>  network 1.0.0.0 0.255.255.255 area 0
> !
> router bgp 1
>  bgp log-neighbor-changes
>  network 5.0.0.0
>  network 6.0.0.0
>  network 7.0.0.0
>  network 8.0.0.0
>  network 9.0.0.0
>  network 10.0.0.0
> !
> ip classless
> ip route 5.0.0.0 255.0.0.0 Null0
> ip route 6.0.0.0 255.0.0.0 Null0
> ip route 7.0.0.0 255.0.0.0 Null0
> ip route 8.0.0.0 255.0.0.0 Null0
> ip route 9.0.0.0 255.0.0.0 Null0
> ip route 10.0.0.0 255.0.0.0 FastEthernet0
>
> Router B :
> --
>
> router ospf 1
>  log-adjacency-changes
>  network 1.0.0.0 0.255.255.255 area 0
>
>
> On the router A, I can see that type 5 LSA is installed for 0/0 and
> propagated to neighbor :
>
> CustomerA#sh ip ospf database
>
>OSPF Router with ID (192.168.254.254) (Process ID 1)
>
>
> Router Link States (Area 0)
>
> Link ID ADV Router  Age Seq#   Checksum Link 

Re: pix quick help [7:49450]

[Gaz]

I was under the impression that the PDM command is just a pain in the arse
cosmetic addition for use only within PDM.
I'm fairly certain it's nothing to do with access to PDM itself. I'll try
deleting them next time I get chance and see what effect it has on PDM, and
if PDM automatically puts them back (in the same way that it automatically
put them there in the first place)

As always...let me know if I'm talking rubbish.

Gaz


""Mark W. Odette II""  wrote in message
[EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
> I believe the answer is yes.
>
> The HTTP command specifies what node is allowed to hit the HTTP Server,
> while the PDM command defines the host allowed to log into the PDM App.
>
> I'm sure someone will rightly correct me if I'm wrong. :)
>
> -Mark
>
> -Original Message-
> From: John Green [mailto:[EMAIL PROTECTED]]
> Sent: Tuesday, July 23, 2002 11:35 AM
> To: [EMAIL PROTECTED]
> Subject: pix quick help [7:49450]
>
> to allow a workstation access so as to be able to use
> and configure via the PDM, we give the command
> http server enable
> http 165.12.55.12 255.255.255.255 inside
>
> what is the purpose for the command
> pdm location 165.12.55.12 255.255.255.255 inside
>
> do we need both the commands to allow the workstation
> be able to access PDM GUI ??
>
>
> __
> Do You Yahoo!?
> Yahoo! Health - Feel better, live better
> http://health.yahoo.com




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=49478&t=49450
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: OSPF summarizing BGP redistributed routes into 0/0 [7:49477]

[Peter van Oene]

Is another router sending out the same summary?

At 07:26 PM 7/23/2002 +, Stephane LITKOWSKI wrote:
>Some more informations :
>
>LSA for 0.0.0.0 (using summary-address) :
>
>CustomerA#sh ip ospf database  external
>
>OSPF Router with ID (192.168.254.254) (Process ID 1)
>
>
> Type-5 AS External Link States
>
>   LS age: 5
>   Options: (No TOS-capability, DC)
>   LS Type: AS External Link
>   Link State ID: 0.0.0.0 (External Network Number )
>   Advertising Router: 192.168.254.254
>   LS Seq Number: 8001
>   Checksum: 0x2A22
>   Length: 36
>   Network Mask: /0
> Metric Type: 2 (Larger than any link state path)
> TOS: 0
> Metric: 1
> Forward Address: 0.0.0.0
> External Route Tag: 0
>
>CustomerA#sh ip ospf database  external
>
>OSPF Router with ID (192.168.254.254) (Process ID 1)
>
>
> Type-5 AS External Link States
>
>   Delete flag is set for this LSA
>   LS age: MAXAGE(3600)
>   Options: (No TOS-capability, DC)
>   LS Type: AS External Link
>   Link State ID: 0.0.0.0 (External Network Number )
>   Advertising Router: 192.168.254.254
>   LS Seq Number: 8002
>   Checksum: 0x301B
>   Length: 36
>   Network Mask: /0
> Metric Type: 2 (Larger than any link state path)
> TOS: 0
> Metric: 16777215
> Forward Address: 0.0.0.0
> External Route Tag: 1
>
>
>
>LSA for 4.0.0.0 & 8.0.0.0 summary routes :
>
>
>CustomerA#sh ip ospf database external
>
>OSPF Router with ID (192.168.254.254) (Process ID 1)
>
>
> Type-5 AS External Link States
>
>   LS age: 11
>   Options: (No TOS-capability, DC)
>   LS Type: AS External Link
>   Link State ID: 4.0.0.0 (External Network Number )
>   Advertising Router: 192.168.254.254
>   LS Seq Number: 8001
>   Checksum: 0xEC5E
>   Length: 36
>   Network Mask: /6
> Metric Type: 2 (Larger than any link state path)
> TOS: 0
> Metric: 1
> Forward Address: 0.0.0.0
> External Route Tag: 0
>
>   LS age: 11
>   Options: (No TOS-capability, DC)
>   LS Type: AS External Link
>   Link State ID: 8.0.0.0 (External Network Number )
>   Advertising Router: 192.168.254.254
>   LS Seq Number: 8002
>   Checksum: 0xAA9F
>   Length: 36
>   Network Mask: /5
> Metric Type: 2 (Larger than any link state path)
> TOS: 0
> Metric: 1
> Forward Address: 0.0.0.0
> External Route Tag: 0
>
>
>LSA 0.0.0.0 using default-originate command -> works fine
>
>CustomerA#sh ip ospf database external
>
>OSPF Router with ID (192.168.254.254) (Process ID 1)
>
>
> Type-5 AS External Link States
>
>   LS age: 13
>   Options: (No TOS-capability, DC)
>   LS Type: AS External Link
>   Link State ID: 0.0.0.0 (External Network Number )
>   Advertising Router: 192.168.254.254
>   LS Seq Number: 8001
>   Checksum: 0x3C0F
>   Length: 36
>   Network Mask: /0
> Metric Type: 2 (Larger than any link state path)
> TOS: 0
> Metric: 1
> Forward Address: 0.0.0.0
> External Route Tag: 1
>
>So there's no difference, I just saw that using summary-address, the LSA
>0.0.0.0 as an external route tag set to 0 and set to 1 when it is aged out.
>I done the same test using a cisco 2500 router with IOS 12.2, and it's the
>same, LSA is prematurely aged out when using summary-address command.
>
>Thanks for the help.
>
>
>Stephane
>
>
>
>""Stephane LITKOWSKI""  a icrit dans le message de news:
>[EMAIL PROTECTED]
> > Hi all,
> >
> > I tried to use the "summary-address" OSPF command to summarize learned
BGP
> > routes to a default summary route (0/0) and it seems that it doesn't
work.
> >
> > (fake BGP routes) - router A  1.0.0.0/32 (OSPF) -
> > router B
> >
> >
> > Router A :
> > --
> >
> > router ospf 1
> >  log-adjacency-changes
> >  summary-address 0.0.0.0 0.0.0.0
> >  redistribute bgp 1 subnets
> >  network 1.0.0.0 0.255.255.255 area 0
> > !
> > router bgp 1
> >  bgp log-neighbor-changes
> >  network 5.0.0.0
> >  network 6.0.0.0
> >  network 7.0.0.0
> >  network 8.0.0.0
> >  network 9.0.0.0
> >  network 10.0.0.0
> > !
> > ip classless
> > ip route 5.0.0.0 255.0.0.0 Null0
> > ip route 6.0.0.0 255.0.0.0 Null0
> > ip route 7.0.0.0 255.0.0.0 Null0
> > ip route 8.0.0.0 255.0.0.0 Null0
> > ip route 9.0.0.0 255.0.0.0 Null0
> > ip route 10.0.0.0 255.0.0.0 FastEthernet0
> >
> > Router B :
> > --
> >
> > router ospf 1
> >  log-adjacency-changes
> >  network 1.0.0.0 0.255.255.255 area 0
> >
> >
> > On the router A, I can see that type 5 LSA is installed for 0/0 and
> > propagated to neighbor :
> >
> > CustomerA#sh ip ospf database
> >
> >OSPF Router with ID (192.168.254.254) (Process ID 1)
> >
> >
> > Router Link States (Area 0)
> >
> > Link ID ADV Router  Age Seq#   Checksum Link
count
> > 192.168.108.4   192.168.108.4   592 0x8003 0x6121   2
> > 192.1

RE: Need Cheap ATM Switch [7:48945]

[gregory parks]

I have an atm switch similar to the LS100 in almost every way except the
color of the case.  It was NEC before it became the LS100 and I will sell it
to you for a very reasonable price.  The swith does work and I have pictures
of it side by side with the LS100 to show the simalarities.  The best part
of all is they both take the same CLI commands.


Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=49479&t=48945
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

RE: How to keep multiple switch ports on the same VLAN from [7:49480]

[Winston Shaw]

Not sure, because I do not have a 2924XL-EN handy.
Try setting port security commands or setting cam filter commands. If it
takes these commands you are in business. Be careful of how you use them
though. Using MAC addresses for security can cause problems like shutting
ports down when the unwanted MAC tries to cross the port threshold.

Winston V. Shaw
CCIE(#7991)


-Original Message-
From: Don Claybrook [mailto:[EMAIL PROTECTED]]
Sent: Monday, July 22, 2002 3:17 PM
To: [EMAIL PROTECTED]
Subject: How to keep multiple switch ports on the same VLAN from
[7:49410]


I have a customer who needs to have several ports on a 2924XL-EN in the same
VLAN.  The customer does not want these ports to be able to communicate with
one another, but would like all of them to be able to go to/through another
port.  E.g., ports 1 to 5 would be on VLAN 50, they'd all be able to access
port 6, on VLAN 60, but not each other.



I did find something on CCO about Private VLANs, but I see that the 2924 is
not on the list of hardware that supports PVLAN's.  Does anyone know of a
way
to accomplish this segregation within the same VLAN, short of PVLAN's?  Any
help is much appreciated.



Thanks,



Don Claybrook




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=49480&t=49480
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: Cisco IOS Docs Hardcopy? [7:49444]

[Shawn Heisey]

Virtually any Cisco contract will entitle you to free documentation.  If
it shows up with an orderable quantity in the product upgrade tool, then
you can get it for free.

Thanks,
Shawn

"Mark W. Odette II" wrote:
> 
> Jason,
> 
> Funny you should mention it.
> 
> I just received my order of documentation, which I placed over a month
> ago.
> 
> One thing for sure, I got more documentation than I realized I ordered-
> and it was all free.  I did not find an indication of charge for
> shipping or the docs themselves.  Now I have enough documentation to
> fill 5 bookshelves!
> 
> ... and yes, part of that documentation is the 12.2 docs-- config guide,
> debug docs, command guide, Voice-Video-Fax docs, and the list goes on.
> 
> All of it is soft-cover though, so don't expect hard-cover.
> 
> I received 1 very large box, a medium sized box, several small boxes and
> bubble envelopes... 11 pieces in all.
> 
> Some of that was Voice docs though... ICS 7750, IP Phones, Call Manager,
> CiscoWorks for Voice, etc.
> 
> I figured, if it was free, and I want to familiarize myself with that
> stuff for the future, why the heck not order it!
> 
> I believe my Reseller Status is what allowed me to order it all for free
> though.
> 
> Good Luck!
> 
> Mark Odette II
> StellarConnection Services
> CCNP, MCSE, A+ Certified.
> 
> -Original Message-
> From: Barbee Jason [mailto:[EMAIL PROTECTED]]
> Sent: Tuesday, July 23, 2002 10:37 AM
> To: [EMAIL PROTECTED]
> Subject: Cisco IOS Docs Hardcopy? [7:49444]
> 
> When logged in to CCO, I can go to the Product Upgrade tool, select
> documentation, and see a large list of available documentation. I would
> like
> to order the documentation set for 12.2, but I do not see it on the
> list.
> Is there a way to order the complete set? or should I just enter
> quantity 1
> for all the IOS documenations.
> And I'm concerned about billing too, it appears it will charge our Cisco
> Reseller for the shipping and/or costs.
> Do these documents cost anything or is it just the cost of shipping?
> 
> I thought I had read a thread that mentioned this somewhere, but I
> couldn't
> find it using the groupstudy google search engine, and the older archive
> search engine gave a glimpse not found error. I apologize if some of the
> questions here have already been answered.

-- 
Shawn Heisey
Cisco Systems USA
Technical Lead for SLC-SECURITY team
Direct: +1 801 736 3939 ext 55153
Toll Free: +1 800 553 2447
Shift: Mon-Fri 8:30a-5:00p Mountain Daylight Time




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=49473&t=49444
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

RE: pix quick help [7:49450]

[Lidiya White]

PDM location commands have no functionality. Think of them as PDM build
a map of networks/hosts around it based on the static, nat, global and
route statements you have configured on your PIX. You can remove those
commands if you wish, but next time you'll use PDM, they'll be back in
your config. 
Just pay no attention to them. Again, they have no functionality; they
do not allow or disallow anything...

-- Lidiya White

-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] 
Sent: Tuesday, July 23, 2002 3:45 PM
To: [EMAIL PROTECTED]
Subject: Re: pix quick help [7:49450]

I was under the impression that the PDM command is just a pain in the
arse
cosmetic addition for use only within PDM.
I'm fairly certain it's nothing to do with access to PDM itself. I'll
try
deleting them next time I get chance and see what effect it has on PDM,
and
if PDM automatically puts them back (in the same way that it
automatically
put them there in the first place)

As always...let me know if I'm talking rubbish.

Gaz


""Mark W. Odette II""  wrote in message
[EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
> I believe the answer is yes.
>
> The HTTP command specifies what node is allowed to hit the HTTP
Server,
> while the PDM command defines the host allowed to log into the PDM
App.
>
> I'm sure someone will rightly correct me if I'm wrong. :)
>
> -Mark
>
> -Original Message-
> From: John Green [mailto:[EMAIL PROTECTED]]
> Sent: Tuesday, July 23, 2002 11:35 AM
> To: [EMAIL PROTECTED]
> Subject: pix quick help [7:49450]
>
> to allow a workstation access so as to be able to use
> and configure via the PDM, we give the command
> http server enable
> http 165.12.55.12 255.255.255.255 inside
>
> what is the purpose for the command
> pdm location 165.12.55.12 255.255.255.255 inside
>
> do we need both the commands to allow the workstation
> be able to access PDM GUI ??
>
>
> __
> Do You Yahoo!?
> Yahoo! Health - Feel better, live better
> http://health.yahoo.com




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=49483&t=49450
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

FW: nbar message [7:49466]

[GEORGE]

Got it!!!

-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] On Behalf Of
Steven A. Ridder
Sent: Tuesday, July 23, 2002 2:04 PM
To: [EMAIL PROTECTED]
Subject: Re: nbar message [7:49466]

turn on dcef or cef.


""GEORGE""  wrote in message
[EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
> I get this message when I try to apply a policy to my fast Ethernet
> interface on a 7513
> service-policy is supported only on VIP interfaces with DCEF
> enabled




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=49485&t=49466
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: Cisco IOS Docs Hardcopy? [7:49444]

[Ciaron Gogarty]

Cheers Guys... docs on da way!!!


- Original Message -
From: "Shawn Heisey" 
To: 
Sent: Tuesday, July 23, 2002 8:41 PM
Subject: Re: Cisco IOS Docs Hardcopy? [7:49444]


> Virtually any Cisco contract will entitle you to free documentation.  If
> it shows up with an orderable quantity in the product upgrade tool, then
> you can get it for free.
>
> Thanks,
> Shawn
>
> "Mark W. Odette II" wrote:
> >
> > Jason,
> >
> > Funny you should mention it.
> >
> > I just received my order of documentation, which I placed over a month
> > ago.
> >
> > One thing for sure, I got more documentation than I realized I ordered-
> > and it was all free.  I did not find an indication of charge for
> > shipping or the docs themselves.  Now I have enough documentation to
> > fill 5 bookshelves!
> >
> > ... and yes, part of that documentation is the 12.2 docs-- config guide,
> > debug docs, command guide, Voice-Video-Fax docs, and the list goes on.
> >
> > All of it is soft-cover though, so don't expect hard-cover.
> >
> > I received 1 very large box, a medium sized box, several small boxes and
> > bubble envelopes... 11 pieces in all.
> >
> > Some of that was Voice docs though... ICS 7750, IP Phones, Call Manager,
> > CiscoWorks for Voice, etc.
> >
> > I figured, if it was free, and I want to familiarize myself with that
> > stuff for the future, why the heck not order it!
> >
> > I believe my Reseller Status is what allowed me to order it all for free
> > though.
> >
> > Good Luck!
> >
> > Mark Odette II
> > StellarConnection Services
> > CCNP, MCSE, A+ Certified.
> >
> > -Original Message-
> > From: Barbee Jason [mailto:[EMAIL PROTECTED]]
> > Sent: Tuesday, July 23, 2002 10:37 AM
> > To: [EMAIL PROTECTED]
> > Subject: Cisco IOS Docs Hardcopy? [7:49444]
> >
> > When logged in to CCO, I can go to the Product Upgrade tool, select
> > documentation, and see a large list of available documentation. I would
> > like
> > to order the documentation set for 12.2, but I do not see it on the
> > list.
> > Is there a way to order the complete set? or should I just enter
> > quantity 1
> > for all the IOS documenations.
> > And I'm concerned about billing too, it appears it will charge our Cisco
> > Reseller for the shipping and/or costs.
> > Do these documents cost anything or is it just the cost of shipping?
> >
> > I thought I had read a thread that mentioned this somewhere, but I
> > couldn't
> > find it using the groupstudy google search engine, and the older archive
> > search engine gave a glimpse not found error. I apologize if some of the
> > questions here have already been answered.
>
> --
> Shawn Heisey
> Cisco Systems USA
> Technical Lead for SLC-SECURITY team
> Direct: +1 801 736 3939 ext 55153
> Toll Free: +1 800 553 2447
> Shift: Mon-Fri 8:30a-5:00p Mountain Daylight Time




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=49486&t=49444
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

mop enable [7:49487]

[GEORGE]

This command I looked it up at Cisco web site and it says it's a
maintenance operation protocol
But what does it do exactly?




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=49487&t=49487
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: How to keep multiple switch ports on the same VLAN from [7:49489]

[Michael L. Williams]

I agree with the other post... if you don't want 1 and 5 to access each
other, then what's the point of having them in the same VLAN?

Mike W.

"Winston Shaw"  wrote in message
[EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
> Not sure, because I do not have a 2924XL-EN handy.
> Try setting port security commands or setting cam filter commands. If it
> takes these commands you are in business. Be careful of how you use them
> though. Using MAC addresses for security can cause problems like shutting
> ports down when the unwanted MAC tries to cross the port threshold.
>
> Winston V. Shaw
> CCIE(#7991)
>
>
> -Original Message-
> From: Don Claybrook [mailto:[EMAIL PROTECTED]]
> Sent: Monday, July 22, 2002 3:17 PM
> To: [EMAIL PROTECTED]
> Subject: How to keep multiple switch ports on the same VLAN from
> [7:49410]
>
>
> I have a customer who needs to have several ports on a 2924XL-EN in the
same
> VLAN.  The customer does not want these ports to be able to communicate
with
> one another, but would like all of them to be able to go to/through
another
> port.  E.g., ports 1 to 5 would be on VLAN 50, they'd all be able to
access
> port 6, on VLAN 60, but not each other.
>
>
>
> I did find something on CCO about Private VLANs, but I see that the 2924
is
> not on the list of hardware that supports PVLAN's.  Does anyone know of a
> way
> to accomplish this segregation within the same VLAN, short of PVLAN's?
Any
> help is much appreciated.
>
>
>
> Thanks,
>
>
>
> Don Claybrook




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=49489&t=49489
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: L2/L3 traceroute [7:49260]

[Sasa Milic]

New version, v1.1.3, with numerous bug fixes :(, is posted on
http://www.geocities.com/milicsasa/Tools/

Now with Windows2000 support !

Regards,
  Sasa,
  CCIE 8635


"Wright, Jeremy" wrote:
> 
> does anyone know of a similar tool for windows. we dont have redhat on a
> laptop which would be a huge troubleshooting asset. tia.




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=49490&t=49260
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

RE: pix quick help [7:49450]

[Mark W. Odette II]

Thanks for the clarification!

I figured I'd learn the truth to what I thought when I read up on the
PDM documentation, or the PIX doc for the CSS1.

-Mark

-Original Message-
From: Lidiya White [mailto:[EMAIL PROTECTED]] 
Sent: Tuesday, July 23, 2002 4:28 PM
To: [EMAIL PROTECTED]
Subject: RE: pix quick help [7:49450]

PDM location commands have no functionality. Think of them as PDM build
a map of networks/hosts around it based on the static, nat, global and
route statements you have configured on your PIX. You can remove those
commands if you wish, but next time you'll use PDM, they'll be back in
your config. 
Just pay no attention to them. Again, they have no functionality; they
do not allow or disallow anything...

-- Lidiya White

-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] 
Sent: Tuesday, July 23, 2002 3:45 PM
To: [EMAIL PROTECTED]
Subject: Re: pix quick help [7:49450]

I was under the impression that the PDM command is just a pain in the
arse
cosmetic addition for use only within PDM.
I'm fairly certain it's nothing to do with access to PDM itself. I'll
try
deleting them next time I get chance and see what effect it has on PDM,
and
if PDM automatically puts them back (in the same way that it
automatically
put them there in the first place)

As always...let me know if I'm talking rubbish.

Gaz


""Mark W. Odette II""  wrote in message
[EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
> I believe the answer is yes.
>
> The HTTP command specifies what node is allowed to hit the HTTP
Server,
> while the PDM command defines the host allowed to log into the PDM
App.
>
> I'm sure someone will rightly correct me if I'm wrong. :)
>
> -Mark
>
> -Original Message-
> From: John Green [mailto:[EMAIL PROTECTED]]
> Sent: Tuesday, July 23, 2002 11:35 AM
> To: [EMAIL PROTECTED]
> Subject: pix quick help [7:49450]
>
> to allow a workstation access so as to be able to use
> and configure via the PDM, we give the command
> http server enable
> http 165.12.55.12 255.255.255.255 inside
>
> what is the purpose for the command
> pdm location 165.12.55.12 255.255.255.255 inside
>
> do we need both the commands to allow the workstation
> be able to access PDM GUI ??
>
>
> __
> Do You Yahoo!?
> Yahoo! Health - Feel better, live better
> http://health.yahoo.com




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=49491&t=49450
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: Everything working now? [7:49438]

[sam sneed]

I'm just curious, whats the newsgroup running on now?

""Paul Borghese""  wrote in message
[EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
> GroupStudy is definitely causing me to age prematurely!  Ok, I think the
> list, newsfeed, and website are back in operation.  I did disable the
> archive search engine and may enable it later once things stabalize.
>
> We need to obtain new hardware and we actually have the money to purchase
> said new hardware :-).  With the free bandwidth from Swiftcomm and the
> selling of banner advertisements, we have been able to create quite a
trust
> fund.  So I need suggestions on Intel based servers that are 1u in size.
> The more redundancy and memory, the better.  Probably SCSI.  The new
server
> needs to work under RedHat Linux.
>
> Any suggestions!
>
> Paul Borghese




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=49481&t=49438
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: Teaming network cards causes flapping [7:49254]

[E Joseph]

I have seen a similar error when we had 2 pcs on the
same switch with the same mac address.  (it was a
strange driver issue that caused pc's with that driver
to have the same, incorrect mac address) I don't
understand teaming, I would guess teaming has to come
up with a "shared" mac address to work.  The switch
may see that address moving back and forth between
teamed ports?? Maybe someone else can clarify..

 Ed


--- Gary Crouch  wrote:
> When I team our Intel NICs one of the ports on our
> cat 3500xl shows 
> addr_flapp about once every minuet
> is they any thing you need to do to support teaming?
> 
> no errors in non teamed mode.
> 
> Thanks
> 
> Gary
[EMAIL PROTECTED]


__
Do You Yahoo!?
Yahoo! Health - Feel better, live better
http://health.yahoo.com




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=49488&t=49254
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: mpls-l2 vpn vs. vlan [7:49346]

[Peter van Oene]

At 04:12 PM 7/23/2002 +, Howard C. Berkowitz wrote:
>At 1:46 PM + 7/23/02, Peter van Oene wrote:
> >Before going down this road, I tend to wonder what drives people this
> >direction.  Exactly what is it about poorly scaling, flat networks that
> >turn people on?
>
>My impression is that it is an unholy alliance of traditional telcos
>and traditional vendors to traditional telcos, coupled with
>FUD/cluelessness with certain enterprises who think L2 is
>automatically configurable and infinitely scalable.
>
>I have seen estimates from telcos that without massive retraining,
>they think they can only support 10% L3, 90% L2 with their existing
>provisioning and support personnel.


They obviously haven't configured L2VPN recently :) IP looks pretty good 
comparatively from a complexity standpoint.



> >Last I checked, IP did a pretty decent job of providing a
> >robust means of interconnection between remote sites.  To me, its LANE all
> >over again, ie lets take a scalable, robust, intelligent technology and
try
> >and bridge with it.   As far as building MANs with Spanning Tree as your
> >control protocol, I might suggest that it will give you a real headache
> >from a scaling and provisioning standpoint.  You might want to find
someone
> >who worked at Yipes to give you some ideas.
> >
> >As far as building MPLS based bridging networks I would suggest that in
> >many cases, the technology is pretty fresh at this point. The ppvpn group
> >in the ietf and the vendor community (same thing?) are still considering a
> >number of candidate solutions.  However, at this point you should be able
> >to find vendors capable of providing point to point topologies with
various
> >degrees of scaling properties.  As well, I have heard that Riverstone may
> >have a point to multipoint (ie capable of replicating one packet across a
> >series of point to point LSP's) solution, but I have not researched it. 
In
> >the future, a true VPLS solution should shake out that provides multi
> >vendor compatible, 802.1d like bridging (ie mac learning with some type of
> >listen/learn/forward STP like loop prevention).  Again though, I tend to
> >ask myself, is this really what we want to do with our nifty IP networks.
> >
> >I will say that I am fully behind replacing legacy frame/atm vpn networks
> >with IP/MPLS networks in order to reduce the number of networks supported
> >by a single provider.  There are definite efficiencies to be gained here.
> >
> >Most access gear at this point supports some type of MPLS however.  What
> >type of gear are you using currently that makes it prohibitively expensive
> >to upgrade at this point?
> >
> >
> >
> >
> >
> >At 08:12 PM 7/21/2002 +, bbfaye wrote:
> >>we are handling a case of a MAN project now.
> >>We plan to use mpls-l2 vpn to connect the business subscribers.That means
>we
> >>have to place some mpls-enabled machines on the access
nodes(expensive...).
> >>Another choice is using vlan.And the users' vlan are trunked to the
> >>aggressive
> >>nodes.I think it's not so good to do this,but not so sure about the
> >>disadvantage.
> >>Does anyone have experience or suggestion about using vlan and l2-mpls
vpn
> >in
> >>the man?
> >>thanks a lot.




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=49459&t=49346
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

RE: Everything working now? [7:49438]

[supernet]

$4,000? Kind of expensive. I built a dual P3 1.13GHz system for less
than $1,800:

Intel SIA2 motherboard with 2 P3 1.13GHz
1GB memory (IBM)
2x36GB Cheetah SCSI (15,000 rpm compared to 10,000 rpm)
CDRW+DVD
Lian-Li aluminum case
Accessories

The thing I like is it's very quite. Compaq servers' noise really
bothers me.

I bought everything from ebay and all brand new.

With $4,000, I can build another system for standby.

Yoshi

-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] On Behalf Of
Kelly Cobean
Sent: Tuesday, July 23, 2002 10:05 AM
To: [EMAIL PROTECTED]
Subject: RE: Everything working now? [7:49438]

Paul,
 I'm sure that you'll get 1000 diffent suggestions on this, but my
preference is Compaq.  The DL380-G2 offers everything you'll need.  You
can
get Dual processors, SCSI-RAID, etc, and they are fully Redhat
compliant.
We are using several of them with Redhat 7.2, and they are awesome.
They
are a little more expensive, but the support, service and quality you
get
from Compaq are unmatched in the Intel-based server industry in my
opinion.
Cost is probably around 4K/server once you outfit it with drives, etc.
Check CDW.com for prices and configurations.

HTH,

Kelly Cobean, CCNP, CCSA, ACSA, MCSE, MCP+I
Network Engineer
AT&T Government Solutions, Inc.

Disclaimer:
The opinions expressed herein are those of the author alone, and do not
necessarily relfect those of AT&T Government Solutions, Inc., it's
management, or it's affiliates.

-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of
Paul Borghese
Sent: Tuesday, July 23, 2002 10:21 AM
To: [EMAIL PROTECTED]
Subject: Everything working now? [7:49438]


GroupStudy is definitely causing me to age prematurely!  Ok, I think the
list, newsfeed, and website are back in operation.  I did disable the
archive search engine and may enable it later once things stabalize.

We need to obtain new hardware and we actually have the money to
purchase
said new hardware :-).  With the free bandwidth from Swiftcomm and the
selling of banner advertisements, we have been able to create quite a
trust
fund.  So I need suggestions on Intel based servers that are 1u in size.
The more redundancy and memory, the better.  Probably SCSI.  The new
server
needs to work under RedHat Linux.

Any suggestions!

Paul Borghese




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=49464&t=49438
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Passed routing 3.0 [7:49452]

[Richard Tufaro]

Hey all, want to thank all the people for the advice on the routing email.
Tough exam it was. Passable, but you need to be on the ball. Now iv got the
Switching test up next and was wondering if anyone has used Quizware as an
alternative to Boson? Thanks.

Richard Tufaro  - MCSE - CCNA - GSEC
Network Engineer - Anda Inc.
[EMAIL PROTECTED]




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=49452&t=49452
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: Cisco IOS Docs Hardcopy? [7:49444]

[Thomas Larus]

I believe it costs a fortune (over $1000) for us mere customers/end users.
I imagine Cisco thinks you resellers need to have it to support your
customers, so they don't have to do as much of the support.  I love my 12.1
printed docs, which I paid $400 plus shipping (around 43 dollars, I think)
on ebay.

My impression is that most people in this industry have no problem using the
CD documentation and reading just about everything from a screen.  I feel
like some sort of relic because I strongly favor reading from paper.

""Mark W. Odette II""  wrote in message
[EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
> Jason,
>
> Funny you should mention it.
>
> I just received my order of documentation, which I placed over a month
> ago.
>
> One thing for sure, I got more documentation than I realized I ordered-
> and it was all free.  I did not find an indication of charge for
> shipping or the docs themselves.  Now I have enough documentation to
> fill 5 bookshelves!
>
> ... and yes, part of that documentation is the 12.2 docs-- config guide,
> debug docs, command guide, Voice-Video-Fax docs, and the list goes on.
>
> All of it is soft-cover though, so don't expect hard-cover.
>
> I received 1 very large box, a medium sized box, several small boxes and
> bubble envelopes... 11 pieces in all.
>
> Some of that was Voice docs though... ICS 7750, IP Phones, Call Manager,
> CiscoWorks for Voice, etc.
>
> I figured, if it was free, and I want to familiarize myself with that
> stuff for the future, why the heck not order it!
>
> I believe my Reseller Status is what allowed me to order it all for free
> though.
>
> Good Luck!
>
> Mark Odette II
> StellarConnection Services
> CCNP, MCSE, A+ Certified.
>
> -Original Message-
> From: Barbee Jason [mailto:[EMAIL PROTECTED]]
> Sent: Tuesday, July 23, 2002 10:37 AM
> To: [EMAIL PROTECTED]
> Subject: Cisco IOS Docs Hardcopy? [7:49444]
>
> When logged in to CCO, I can go to the Product Upgrade tool, select
> documentation, and see a large list of available documentation. I would
> like
> to order the documentation set for 12.2, but I do not see it on the
> list.
> Is there a way to order the complete set? or should I just enter
> quantity 1
> for all the IOS documenations.
> And I'm concerned about billing too, it appears it will charge our Cisco
> Reseller for the shipping and/or costs.
> Do these documents cost anything or is it just the cost of shipping?
>
> I thought I had read a thread that mentioned this somewhere, but I
> couldn't
> find it using the groupstudy google search engine, and the older archive
> search engine gave a glimpse not found error. I apologize if some of the
> questions here have already been answered.
>
> Thanks everyone,
> -Jason
> [EMAIL PROTECTED]
> www.cciewannabe.com - Remote Cisco Lab Access




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=49465&t=49444
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Here we go again ( Pix 515) [7:49492]

[Kevin O'Gilvie]

Dear All,

I am jumping into a similar mess as when I started at my current company, 
but this time the Macs out number the PC's. Well here is the scoop:
180 Macs
50 PC's
Static Ip's
No DHCP
No FW
Quick Mail Server
and a whole bunch of other nasty things..
- They just purchases a Pix 515
- They just bought Exchange 5.5

My projects are:
Set up DHCP
Set up Pix
Set up Private Addressing
Set up Exchange
Migrate them from Quick Mail
etc etc
I have done this before but maybe you guys can help as to how I should go 
about this the quickest.

Thanks,

Kevin


_
Send and receive Hotmail on your mobile device: http://mobile.msn.com




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=49492&t=49492
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

OSPF Startup? [7:49493]

[Robert Cluett]

Can someone clarify this for me?

During OSPF Start up when is the DR/BDR election done?  The BSCN books
states it is in this order:

- Routing Table is Generated
  Down State
  Init State
  2way State (bidirection communication established)
- DR/BDR Election
  ExStart State (DR/BDR election done)
  Full State

So the routing table is first populated for each router, then the DR and BDR
are elected?

Thanks
Rob Cluett, CCNA




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=49493&t=49493
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

RE: OSPF summarizing BGP redistributed routes into 0/0 [7:49482]

[Vicuna, Mark]

Stephane,

Looks like you are using the wrong command to achieve the desired
result... you use 'summary-address' to define routes you want to
'summarize' for redistribution - it has nothing to do with a default
gateway address.  'default-information-orginate' is the command you want
to use to push out a default gateway into ospf for what you are trying
to achieve.


HTH,
Mark.

-Original Message-
From: Stephane LITKOWSKI [mailto:[EMAIL PROTECTED]]
Sent: Wednesday, 24 July 2002 04:15
To: [EMAIL PROTECTED]
Subject: OSPF summarizing BGP redistributed routes into 0/0 [7:49461]


Hi all,

I tried to use the "summary-address" OSPF command to summarize learned
BGP
routes to a default summary route (0/0) and it seems that it doesn't
work.

(fake BGP routes) - router A  1.0.0.0/32 (OSPF)
-
router B


Router A :
--

router ospf 1
 log-adjacency-changes
 summary-address 0.0.0.0 0.0.0.0
 redistribute bgp 1 subnets
 network 1.0.0.0 0.255.255.255 area 0
!
router bgp 1
 bgp log-neighbor-changes
 network 5.0.0.0
 network 6.0.0.0
 network 7.0.0.0
 network 8.0.0.0
 network 9.0.0.0
 network 10.0.0.0
!
ip classless
ip route 5.0.0.0 255.0.0.0 Null0
ip route 6.0.0.0 255.0.0.0 Null0
ip route 7.0.0.0 255.0.0.0 Null0
ip route 8.0.0.0 255.0.0.0 Null0
ip route 9.0.0.0 255.0.0.0 Null0
ip route 10.0.0.0 255.0.0.0 FastEthernet0

Router B :
--

router ospf 1
 log-adjacency-changes
 network 1.0.0.0 0.255.255.255 area 0


On the router A, I can see that type 5 LSA is installed for 0/0 and
propagated to neighbor :

CustomerA#sh ip ospf database

   OSPF Router with ID (192.168.254.254) (Process ID 1)


Router Link States (Area 0)

Link ID ADV Router  Age Seq#   Checksum Link
count
192.168.108.4   192.168.108.4   592 0x8003 0x6121   2
192.168.254.254 192.168.254.254 592 0x8006 0x7C72   2

Type-5 AS External Link States

Link ID ADV Router  Age Seq#   Checksum Tag
0.0.0.0 192.168.254.254 4   0x8001 0x2A22   0

But after some seconds, the external LSA is aged out and so disappears
(by
what ) :

CustomerA#sh ip ospf database

   OSPF Router with ID (192.168.254.254) (Process ID 1)


Router Link States (Area 0)

Link ID ADV Router  Age Seq#   Checksum Link
count
192.168.108.4   192.168.108.4   593 0x8003 0x6121   2
192.168.254.254 192.168.254.254 593 0x8006 0x7C72   2

Type-5 AS External Link States

Link ID ADV Router  Age Seq#   Checksum Tag
0.0.0.0 192.168.254.254 36000x8002 0x301B   1

CustomerA#sh ip ospf database

   OSPF Router with ID (192.168.254.254) (Process ID 1)


Router Link States (Area 0)

Link ID ADV Router  Age Seq#   Checksum Link
count
192.168.108.4   192.168.108.4   597 0x8003 0x6121   2
192.168.254.254 192.168.254.254 596 0x8006 0x7C72   2


If I use another summary-address (like 4.0.0.0/6 or 8.0.0.0/5), it works
fine (external LSAs are not aged out).

Why this use doesn't work ?  What happens ? Why the LSA is aged out ?
The purpose of this test was to conditionnaly advertise default routes
(if
BGP routes disappears, default route disappears).

NB : router A is 1750 router with IOS 12.1(14)

Thanks for help,


--
Stephane LITKOWSKI
Student in a French computer science school
EPITA Telecom & Network specialization
CCNA + CCNP
EMail : [EMAIL PROTECTED]




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=49482&t=49482
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

RE: DHCP Server on Multiple VLANs [7:49403]

[Winston Shaw]

Hello Don,

I think you could set up DHCP scopes on a server and use the "ip helper
address" command to direct dhcp discover broadcasts from your clients. The
router should place its own sub-interface address in the packet and send it
to the DHCP server. The server should then pick from the corresponding scope
depending on the router IP address. I know of at least one server which does
that but I do not want to mention it here.

Winston V. Shaw
CCIE(#7991)



-Original Message-
From: Don Pezet [mailto:[EMAIL PROTECTED]]
Sent: Monday, July 22, 2002 1:15 PM
To: [EMAIL PROTECTED]
Subject: DHCP Server on Multiple VLANs [7:49403]


Hey guys,

 I have a Cisco 3620 connected to a 2948G-L3 which
in turn provides layer three services to a cluster of
3548XLs. I have 9 operating VLANs and have been trying
to work out a scenario for DHCP in my environment.
Right now, we assign static IPs in all 9 vlans because
we do not want to provide seperate DHCP servers for
each. If we could find a way to get one server to
provide DHCP to all the VLANs then we could implement
it. The trick is, each VLAN is a different subnet. 

 I had heard that if you use the 3620 as a DHCP
server, create subinterfaces on a FE port using ISL and
assign IP addresses appropriately, and create multiple
DHCP pools, then the router would issues IPs from pools
that matched the interface it drew the request from.
However, when I try this it just issues IPs from the
first pool until it is full and then moves to the next. 

 Is there a way to make sure the router assigns
correct IPs on the correct sub-interfaces? Is there a
3rd party DHCP server that would do this better?

 Let me do a sample config to show what I tried.
Each network has a network printer at .200 (don't ask)
and a router sub-interface at .1 except the 10.10.10.0
network which has reserved IPs through 100, but still a
router interface at .1

Here's the Cisco 3620 DHCP portion of the config:
!
ip dhcp excluded-address 10.10.10.1 10.10.10.100
ip dhcp excluded-address 192.168.1.1
ip dhcp excluded-address 192.168.1.200
ip dhcp excluded-address 192.168.2.1
ip dhcp excluded-address 192.168.2.200
ip dhcp excluded-address 192.168.3.1
ip dhcp excluded-address 192.168.3.200
ip dhcp excluded-address 192.168.4.1
ip dhcp excluded-address 192.168.4.200
ip dhcp excluded-address 192.168.5.1
ip dhcp excluded-address 192.168.5.200
ip dhcp excluded-address 192.168.6.1
ip dhcp excluded-address 192.168.6.200
ip dhcp excluded-address 192.168.7.1
ip dhcp excluded-address 192.168.7.200
ip dhcp excluded-address 192.168.8.1
ip dhcp excluded-address 192.168.8.200
!
ip dhcp pool Vlan1
  network 10.10.10.0 /24
  dns-server 4.2.2.1
  default-router 10.10.10.1
!
ip dhcp pool Vlan10
  network 192.168.1.0 /24
  dns-server 4.2.2.1 
  default-router 192.168.1.1
!
ip dhcp pool Vlan20
  network 192.168.2.0 /24
  dns-server 4.2.2.1
  default-router 192.168.2.1
!
ip dhcp pool Vlan30
  network 192.168.3.0 /24
  dns-server 4.2.2.1
  default-router 192.168.3.1
!
ip dhcp pool Vlan40
  network 192.168.4.0 /24
  dns-server 4.2.2.1 
  default-router 192.168.4.1
!
ip dhcp pool Vlan50
  network 192.168.5.0 /24
  dns-server 4.2.2.1 
  default-router 192.168.5.1
!
ip dhcp pool Vlan60
  network 192.168.6.0 /24
  dns-server 4.2.2.1 
  default-router 192.168.6.1
!
ip dhcp pool Vlan70
  network 192.168.7.0 /24
  dns-server 4.2.2.1 
  default-router 192.168.7.1
!
ip dhcp pool Vlan80
  network 192.168.8.0 /24
  dns-server 4.2.2.1 
  default-router 192.168.8.1
!
interface FastEthernet1/0
 description connected to Private Network
 no ip address
 duplex auto
 speed auto
!
interface FastEthernet1/0.1
 encapsulation isl 1
 ip address 10.10.10.1 255.255.255.0
 no ip redirects
!
interface FastEthernet1/0.10
 encapsulation isl 10
 ip address 192.168.1.1 255.255.255.0
 no ip redirects
!
interface FastEthernet1/0.20
 encapsulation isl 20
 ip address 192.168.2.1 255.255.255.0
 no ip redirects
!
interface FastEthernet1/0.30
 encapsulation isl 30
 ip address 192.168.3.1 255.255.255.0
 no ip redirects
!
interface FastEthernet1/0.40
 encapsulation isl 40
 ip address 192.168.4.1 255.255.255.0
 no ip redirects
!
interface FastEthernet1/0.50
 encapsulation isl 50
 ip address 192.168.5.1 255.255.255.0
 no ip redirects
!
interface FastEthernet1/0.60
 encapsulation isl 60
 ip address 192.168.6.1 255.255.255.0
 no ip redirects
!
interface FastEthernet1/0.70
 encapsulation isl 70
 ip address 192.168.7.1 255.255.255.0
 no ip redirects
!
interface FastEthernet1/0.80
 encapsulation isl 80
 ip address 192.168.8.1 255.255.255.0
 no ip redirects
!


Thanks,

Don Pezet
[EMAIL PROTECTED]




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=49484&t=49403
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: OSPF Startup? [7:49493]

[Steven A. Ridder]

yes.



""Robert Cluett""  wrote in message
[EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
> Can someone clarify this for me?
>
> During OSPF Start up when is the DR/BDR election done?  The BSCN books
> states it is in this order:
>
> - Routing Table is Generated
>   Down State
>   Init State
>   2way State (bidirection communication established)
> - DR/BDR Election
>   ExStart State (DR/BDR election done)
>   Full State
>
> So the routing table is first populated for each router, then the DR and
BDR
> are elected?
>
> Thanks
> Rob Cluett, CCNA




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=49494&t=49493
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

RE: Teaming network cards causes flapping [7:49254]

[Wright, Jeremy]

the teaming we have does not share the mac address. it shares the ip and
you can see the mac address has 1 different character then the other.

-Original Message-
From: E Joseph
To: [EMAIL PROTECTED]
Sent: 7/23/02 5:00 PM
Subject: Re: Teaming network cards causes flapping [7:49254]

I have seen a similar error when we had 2 pcs on the
same switch with the same mac address.  (it was a
strange driver issue that caused pc's with that driver
to have the same, incorrect mac address) I don't
understand teaming, I would guess teaming has to come
up with a "shared" mac address to work.  The switch
may see that address moving back and forth between
teamed ports?? Maybe someone else can clarify..

 Ed


--- Gary Crouch  wrote:
> When I team our Intel NICs one of the ports on our
> cat 3500xl shows 
> addr_flapp about once every minuet
> is they any thing you need to do to support teaming?
> 
> no errors in non teamed mode.
> 
> Thanks
> 
> Gary
[EMAIL PROTECTED]


__
Do You Yahoo!?
Yahoo! Health - Feel better, live better
http://health.yahoo.com




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=49495&t=49254
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Passing score for 640-606 exam [7:49496]

[Charles McKnight]

Does anyone know what the passing score for Cisco 640-606 Support
exam is? 


Thanks


Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=49496&t=49496
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: OSPF Startup? [7:49493]

[Peter van Oene]

Generating candidate routes for a routing table is an OSPF function in this 
context, not a router function.  For that reason you need to think only 
about when in the OSPF state machine are DR/BDR roles detected/elected.  In 
general, this occurs on a per segment basis when an ospf speaking router 
initially transmits and listens for hellos.

At 01:08 AM 7/24/2002 +, Robert Cluett wrote:
>Can someone clarify this for me?
>
>During OSPF Start up when is the DR/BDR election done?  The BSCN books
>states it is in this order:
>
>- Routing Table is Generated
>   Down State
>   Init State
>   2way State (bidirection communication established)
>- DR/BDR Election
>   ExStart State (DR/BDR election done)
>   Full State
>
>So the routing table is first populated for each router, then the DR and BDR
>are elected?
>
>Thanks
>Rob Cluett, CCNA




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=49497&t=49493
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: How to keep multiple switch ports on the same VLAN from [7:49498]

[Thomas Larus]

Keep the two ports apart by keeping them in separate VLANs, and turn the
port that they both need to be able to access into a trunk port.

""Winston Shaw""  wrote in message
[EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
> Not sure, because I do not have a 2924XL-EN handy.
> Try setting port security commands or setting cam filter commands. If it
> takes these commands you are in business. Be careful of how you use them
> though. Using MAC addresses for security can cause problems like shutting
> ports down when the unwanted MAC tries to cross the port threshold.
>
> Winston V. Shaw
> CCIE(#7991)
>
>
> -Original Message-
> From: Don Claybrook [mailto:[EMAIL PROTECTED]]
> Sent: Monday, July 22, 2002 3:17 PM
> To: [EMAIL PROTECTED]
> Subject: How to keep multiple switch ports on the same VLAN from
> [7:49410]
>
>
> I have a customer who needs to have several ports on a 2924XL-EN in the
same
> VLAN.  The customer does not want these ports to be able to communicate
with
> one another, but would like all of them to be able to go to/through
another
> port.  E.g., ports 1 to 5 would be on VLAN 50, they'd all be able to
access
> port 6, on VLAN 60, but not each other.
>
>
>
> I did find something on CCO about Private VLANs, but I see that the 2924
is
> not on the list of hardware that supports PVLAN's.  Does anyone know of a
> way
> to accomplish this segregation within the same VLAN, short of PVLAN's?
Any
> help is much appreciated.
>
>
>
> Thanks,
>
>
>
> Don Claybrook




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=49498&t=49498
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

RE: Here we go again ( Pix 515) [7:49492]

[Kelly Cobean]

Man, you aren't asking much, are you? ;-)

Ok, here's the order I'd do things in...

First things first, get that firewall in place.  You don't list what their
internet connectivity is, but if they bought a PIX, it's safe to assume that
they have a persistent connection, and that being true, they're really
hanging it out there for someone to cut off, so to speak.  Network security
is always a primary concern, and the firewall won't take alot of time to set
up.  Not setting it up could be very costly.  If they already have a
light(er)-weight firewall like a Linux host running IP chains or IP tables,
replacing this first will save your users down-time later because you can
pre-configure your internet rulebase/access in preparation for your private
addressing.

Next, I'd do the DHCP and Private Addressing.  These go hand in hand, and
since your firewall is now in place, you can do the NAT/PAT translations as
needed and not have to rethink these later.

Third, get Exchange up and running.  If it's going on a different system
than Quick mail is running on, great!  Now you can get them running in
parallel, and move users accounts over one at a time or in batches.  There
are probably tools out there to do the mailbox format conversion.  Now that
your network is secure at layer3/4, you can focus on the nitty-gritty of the
user data. (Oh yeah, don't forget that backup!!!)

It's a 10,000 foot view, but that's how I'd do it.  I'm not really a MAC
guy, but I'd venture a guess that most or all of your MAC's run TCP/IP and
support DHCP, so from an L3/4 standpoint, they're really no different than
your PC's.

When doing multiple projects like this, I tend to work along the OSI model.
If the wiring is horrible, or the NIC's are all old 10Base2 nics and have
transceivers to hook them to your BaseT network, take care of the layer 1
stuff first.  Next, if the network is all unmanaged hubs, and your network
is one gigantic broadcast domain, start installing switches to quiet down
the network.  Next, get VLANs/routing/security in place for Layer3/4.  Next,
work on the "upper layers" where all of your apps and data live and talk.
Just my $0.02 worth.

HTH,
Kelly Cobean, CCNP, CCSA, ACSA, MCSE, MCP+I
Network Engineer
AT&T Government Solutions, Inc.

-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of
Kevin O'Gilvie
Sent: Tuesday, July 23, 2002 9:07 PM
To: [EMAIL PROTECTED]
Subject: Here we go again ( Pix 515) [7:49492]


Dear All,

I am jumping into a similar mess as when I started at my current company,
but this time the Macs out number the PC's. Well here is the scoop:
180 Macs
50 PC's
Static Ip's
No DHCP
No FW
Quick Mail Server
and a whole bunch of other nasty things..
- They just purchases a Pix 515
- They just bought Exchange 5.5

My projects are:
Set up DHCP
Set up Pix
Set up Private Addressing
Set up Exchange
Migrate them from Quick Mail
etc etc
I have done this before but maybe you guys can help as to how I should go
about this the quickest.

Thanks,

Kevin


_
Send and receive Hotmail on your mobile device: http://mobile.msn.com




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=49499&t=49492
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: OSPF Startup? [7:49493]

[Robert Cluett]

Correction (I am correcting myself)

Actually it goes like this:

- Neighbors are Established
Down State 
Init State 
2way State (bidirection communication established) 
- DR/BDR Election 
ExStart State (DR/BDR election done) 
- Routing Table is Generated
Loading (Sending LSU's, LSR's)
Full State (All LSR's Satisfied)
- SPF Algorithm Executed (Old Routing Table still in use)
- New Routing Table in use 


Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=49500&t=49493
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

RE: Passing score for 640-606 exam [7:49496]

[Alexey Zhukov]

Hi,

776

regards,
Alexey
-Original Message-
From: Charles McKnight [mailto:[EMAIL PROTECTED]]
Sent: Wednesday, July 24, 2002 8:50 AM
To: [EMAIL PROTECTED]
Subject: Passing score for 640-606 exam [7:49496]


Does anyone know what the passing score for Cisco 640-606 Support
exam is? 


Thanks




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=49501&t=49496
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: How to keep multiple switch ports on the same VLAN from [7:49503]

[Michael L. Williams]

Wha?!?  What would that accomplish?

Mike W.

"Thomas Larus"  wrote in message
[EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
> Keep the two ports apart by keeping them in separate VLANs, and turn the
> port that they both need to be able to access into a trunk port.




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=49503&t=49503
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

RE: OSPF Startup? [7:49493]

[Kelly Cobean]

Robert,
  You are correct.  Think of it this way, there first has to be a table
to populate before OSPF can populate it, so when the startup configuration
is read, the router takes the ip address statements from the interfaces,
along with any static routes, and creates the initial routing table.  Now
there is something for OSPF to populate.  Also, the config file must be read
to determine which interfaces will participate in the OSPF process, so the
"connected routes" must be known before the OSPF state-machine is started.

HTH,
Kelly Cobean, CCNP, CCSA, ACSA, MCSE, MCP+I
Network Engineer
AT&T Government Solutions, Inc.

-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of
Robert Cluett
Sent: Tuesday, July 23, 2002 9:08 PM
To: [EMAIL PROTECTED]
Subject: OSPF Startup? [7:49493]


Can someone clarify this for me?

During OSPF Start up when is the DR/BDR election done?  The BSCN books
states it is in this order:

- Routing Table is Generated
  Down State
  Init State
  2way State (bidirection communication established)
- DR/BDR Election
  ExStart State (DR/BDR election done)
  Full State

So the routing table is first populated for each router, then the DR and BDR
are elected?

Thanks
Rob Cluett, CCNA




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=49504&t=49493
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: DHCP Server on Multiple VLANs [7:49403]

[Michael L. Williams]

That's exactly what he should do

"Winston Shaw"  wrote in message
[EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
> Hello Don,
>
> I think you could set up DHCP scopes on a server and use the "ip helper
> address" command to direct dhcp discover broadcasts from your clients. The
> router should place its own sub-interface address in the packet and send
it
> to the DHCP server. The server should then pick from the corresponding
scope
> depending on the router IP address. I know of at least one server which
does
> that but I do not want to mention it here.
>
> Winston V. Shaw
> CCIE(#7991)
>
>
>
> -Original Message-
> From: Don Pezet [mailto:[EMAIL PROTECTED]]
> Sent: Monday, July 22, 2002 1:15 PM
> To: [EMAIL PROTECTED]
> Subject: DHCP Server on Multiple VLANs [7:49403]
>
>
> Hey guys,
>
>  I have a Cisco 3620 connected to a 2948G-L3 which
> in turn provides layer three services to a cluster of
> 3548XLs. I have 9 operating VLANs and have been trying
> to work out a scenario for DHCP in my environment.
> Right now, we assign static IPs in all 9 vlans because
> we do not want to provide seperate DHCP servers for
> each. If we could find a way to get one server to
> provide DHCP to all the VLANs then we could implement
> it. The trick is, each VLAN is a different subnet.
>
>  I had heard that if you use the 3620 as a DHCP
> server, create subinterfaces on a FE port using ISL and
> assign IP addresses appropriately, and create multiple
> DHCP pools, then the router would issues IPs from pools
> that matched the interface it drew the request from.
> However, when I try this it just issues IPs from the
> first pool until it is full and then moves to the next.
>
>  Is there a way to make sure the router assigns
> correct IPs on the correct sub-interfaces? Is there a
> 3rd party DHCP server that would do this better?
>
>  Let me do a sample config to show what I tried.
> Each network has a network printer at .200 (don't ask)
> and a router sub-interface at .1 except the 10.10.10.0
> network which has reserved IPs through 100, but still a
> router interface at .1
>
> Here's the Cisco 3620 DHCP portion of the config:
> !
> ip dhcp excluded-address 10.10.10.1 10.10.10.100
> ip dhcp excluded-address 192.168.1.1
> ip dhcp excluded-address 192.168.1.200
> ip dhcp excluded-address 192.168.2.1
> ip dhcp excluded-address 192.168.2.200
> ip dhcp excluded-address 192.168.3.1
> ip dhcp excluded-address 192.168.3.200
> ip dhcp excluded-address 192.168.4.1
> ip dhcp excluded-address 192.168.4.200
> ip dhcp excluded-address 192.168.5.1
> ip dhcp excluded-address 192.168.5.200
> ip dhcp excluded-address 192.168.6.1
> ip dhcp excluded-address 192.168.6.200
> ip dhcp excluded-address 192.168.7.1
> ip dhcp excluded-address 192.168.7.200
> ip dhcp excluded-address 192.168.8.1
> ip dhcp excluded-address 192.168.8.200
> !
> ip dhcp pool Vlan1
>   network 10.10.10.0 /24
>   dns-server 4.2.2.1
>   default-router 10.10.10.1
> !
> ip dhcp pool Vlan10
>   network 192.168.1.0 /24
>   dns-server 4.2.2.1
>   default-router 192.168.1.1
> !
> ip dhcp pool Vlan20
>   network 192.168.2.0 /24
>   dns-server 4.2.2.1
>   default-router 192.168.2.1
> !
> ip dhcp pool Vlan30
>   network 192.168.3.0 /24
>   dns-server 4.2.2.1
>   default-router 192.168.3.1
> !
> ip dhcp pool Vlan40
>   network 192.168.4.0 /24
>   dns-server 4.2.2.1
>   default-router 192.168.4.1
> !
> ip dhcp pool Vlan50
>   network 192.168.5.0 /24
>   dns-server 4.2.2.1
>   default-router 192.168.5.1
> !
> ip dhcp pool Vlan60
>   network 192.168.6.0 /24
>   dns-server 4.2.2.1
>   default-router 192.168.6.1
> !
> ip dhcp pool Vlan70
>   network 192.168.7.0 /24
>   dns-server 4.2.2.1
>   default-router 192.168.7.1
> !
> ip dhcp pool Vlan80
>   network 192.168.8.0 /24
>   dns-server 4.2.2.1
>   default-router 192.168.8.1
> !
> interface FastEthernet1/0
>  description connected to Private Network
>  no ip address
>  duplex auto
>  speed auto
> !
> interface FastEthernet1/0.1
>  encapsulation isl 1
>  ip address 10.10.10.1 255.255.255.0
>  no ip redirects
> !
> interface FastEthernet1/0.10
>  encapsulation isl 10
>  ip address 192.168.1.1 255.255.255.0
>  no ip redirects
> !
> interface FastEthernet1/0.20
>  encapsulation isl 20
>  ip address 192.168.2.1 255.255.255.0
>  no ip redirects
> !
> interface FastEthernet1/0.30
>  encapsulation isl 30
>  ip address 192.168.3.1 255.255.255.0
>  no ip redirects
> !
> interface FastEthernet1/0.40
>  encapsulation isl 40
>  ip address 192.168.4.1 255.255.255.0
>  no ip redirects
> !
> interface FastEthernet1/0.50
>  encapsulation isl 50
>  ip address 192.168.5.1 255.255.255.0
>  no ip redirects
> !
> interface FastEthernet1/0.60
>  encapsulation isl 60
>  ip address 192.168.6.1 255.255.255.0
>  no ip redirects
> !
> interface FastEthernet1/0.70
>  encapsulation isl 70
>  ip address 192.168.7.1 255.255.255.0
>  no ip redirects
> !
> interface FastEthernet1/0.80
>  encapsulation isl 80
>  ip address 192.168.8.1 255.255.255

RE: How to keep multiple switch ports on the same VLAN from [7:49507]

[John Brandis]

I like the idea put down earlier. Why have them on the same VLAN. From what
I know (an issue you can all debate) this would need to be assessed when you
design you network. The idea I use when building my switched network, is
grouping together users who have the same network needs, and allocating them
to the same VLAN. This keeps them away from the evil developers whilst at
the same time gives me the power to enforce restrictions upon what IP's they
can or cant access.

What do you all think ? Would love to hear it.

John

-Original Message-
From: Michael L. Williams [mailto:[EMAIL PROTECTED]]
Sent: Wednesday, 24 July 2002 12:54 PM
To: [EMAIL PROTECTED]
Subject: Re: How to keep multiple switch ports on the same VLAN from
[7:49503]


Wha?!?  What would that accomplish?

Mike W.

"Thomas Larus"  wrote in message
[EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
> Keep the two ports apart by keeping them in separate VLANs, and turn the
> port that they both need to be able to access into a trunk port.
**

visit http://www.solution6.com
visit http://www.eccountancy.com - everything for accountants.

UK Customers - http://www.solution6.co.uk

*
This email message (and attachments) may contain information that is
confidential to Solution 6. If you are not the intended recipient you cannot
use, distribute or copy the message or attachments.  In such a case, please
notify the sender by return email immediately and erase all copies of the
message and attachments.  Opinions, conclusions and other information in
this message and attachments that do not relate to the official business of
Solution 6 are neither given nor endorsed by it.
*




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=49507&t=49507
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: Priscilla Oppenheimer [7:49347]

[Chuck]

hhm learn something new every day. thanks.

 that still gets back to how ip unnumbered "really" works, as opposed to how
 most of us "think" it works. RFC 1812 specifically talks about using the
RID
 as the interface address:

 "this memo has adopted an alternate  scheme, which has been invented
 multiple times but which is probably   originally attributable to Phil
Karn.
 In this scheme, a router that  has unnumbered point to point lines also has
 a special IP address, called a router-id in this memo.  The router-id is
one
 of the router's IP addresses (a router is required to have at least one IP
 address).  This router-id is used as if it is the IP address of all
 unnumbered interfaces."

 whaddaya know - I did recall correctly :->

 so it would appear that in the Cisco implementation, at least, for
 unnumbered interfaces, the reference interface ip also becomes the RID for
 purposes of unnumbered?

 So what does this discovery do to the proposition that one "should" use a
 loopback as the reference for unnumbered interfaces because loopbacks are
 "never down"???

 interesting discussion. learned something new.

 Chuck



>
> ""richard dumoulin""  wrote in message
> [EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
> > No prob, see below.
> >
> >
> >
> > RB#sh run
> > Building configuration...
> >
> > Current configuration:
> > !
> > version 11.2
> > no service password-encryption
> > no service udp-small-servers
> > no service tcp-small-servers
> > !
> > hostname RB
> > !
> > enable password cisco
> > !
> > no ip domain-lookup
> > !
> > interface Ethernet0
> >  ip address 192.168.1.1 255.255.255.0
> > !
> > interface Serial0
> >  ip unnumbered Ethernet0
> > !
> > interface Serial1
> >  no ip address
> >  shutdown
> > !
> > interface Serial2
> >  no ip address
> >  shutdown
> > !
> > interface Serial3
> >  no ip address
> >  shutdown
> > !
> > interface Serial4
> >  no ip address
> >  shutdown
> > !
> > interface Serial5
> >  no ip address
> >  shutdown
> > !
> > interface Serial6
> >  no ip address
> >  shutdown
> > !
> > interface Serial7
> >  no ip address
> >  shutdown
> > !
> > interface Serial8
> >  no ip address
> >  shutdown
> > !
> > interface Serial9
> >  no ip address
> >  shutdown
> > !
> > interface BRI0
> >  no ip address
> >  shutdown
> > !
> > no ip classless
> > ip route 0.0.0.0 0.0.0.0 Serial0
> > !
> > line con 0
> > line aux 0
> > line vty 0 4
> >  password cisco
> >  login
> > !
> > end
> >
> > RB#172.16.1.1
> > Trying 172.16.1.1 ... Open
> >
> >
> > User Access Verification
> >
> > Password:
> > RA>en
> > Password:
> > RA#sh run
> > Building configuration...
> >
> > Current configuration : 801 bytes
> > !
> > version 12.2
> > service timestamps debug uptime
> > service timestamps log uptime
> > no service password-encryption
> > !
> > hostname RA
> > !
> > enable password cisco
> > !
> > memory-size iomem 10
> > ip subnet-zero
> > !
> > !
> > no ip domain-lookup
> > !
> > ip ssh time-out 120
> > ip ssh authentication-retries 3
> > !
> > call rsvp-sync
> > !
> > !
> > !
> > !
> > !
> > !
> > !
> > !
> > interface Ethernet0/0
> >  ip address 172.16.1.1 255.255.0.0
> >  no keepalive
> >  half-duplex
> > !
> > interface Serial0/0
> >  no ip address
> >  shutdown
> > !
> > interface Serial0/1
> >  no ip address
> >  shutdown
> > !
> > interface Serial0/2
> >  ip unnumbered Ethernet0/0
> >  clockrate 200
> > !
> > interface Serial0/3
> >  no ip address
> >  shutdown
> > !
> > ip classless
> > ip route 0.0.0.0 0.0.0.0 Serial0/2
> > no ip http server
> > !
> > !
> > !
> > dial-peer cor custom
> > !
> > !
> > !
> > !
> > !
> > line con 0
> > line aux 0
> > line vty 0 4
> >  password cisco
> >  login
> > line vty 5 15
> >  login
> > !
> > no scheduler allocate
> > end
> >
> > RA#
> > RB#
> > [Resuming connection 1 to 172.16.1.1 ... ]
> >
> > RA#
> > RA#
> > RB#172.16.1.1
> > Trying 172.16.1.1 ... Open
> >
> >
> > User Access Verification
> >
> > Password:
> > RA>en
> > Password:
> > RA#ping 192.168.1.1
> >
> > Type escape sequence to abort.
> > Sending 5, 100-byte ICMP Echos to 192.168.1.1, timeout is 2 seconds:
> > !
> > Success rate is 100 percent (5/5), round-trip min/avg/max = 4/4/8 ms
> > RA#
> > RB#term mon
> > % Console already monitors
> > RB#
> > %LINEPROTO-5-UPDOWN: Line protocol on Interface Ethernet0, changed state
> to
> > down
> > [Resuming connection 2 to 172.16.1.1 ... ]
> >
> > RA#ping 192.168.1.1
> >
> > Type escape sequence to abort.
> > Sending 5, 100-byte ICMP Echos to 192.168.1.1, timeout is 2 seconds:
> > !
> > Success rate is 100 percent (5/5), round-trip min/avg/max = 4/4/8 ms
> > RA#ping 192.168.1.1
> >
> > Type escape sequence to abort.
> > Sending 5, 100-byte ICMP Echos to 192.168.1.1, timeout is 2 seconds:
> > !
> > Success rate is 100 percent (5/5), round-trip min/avg/max = 4/5/8 ms
> > RA#
> > RB#conf t
> > Enter configuration commands, one per line.  End with CNTL/Z.
> > RB(config)#int e0
> > RB(config-if)#shut
> > RB(config-if)#
> > %L

Re: Lightstream PVC config problem... [7:49352]

[Chuck]

I believe you may need to configure a pvc on ATM12/0/1


> ""Edward Sohn""  wrote in message
> [EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
> > Thanks for the reply, Andre...
> >
> > Hmmm...I was thinking the same way you did at first, but then the book's
> > configuration actually has both "atm pvc" commands in each interface.
> > Is that a typo, then?
> >
> > Even so, I cannot get connectivity between my routers.  Here is my "sho
> > run" for the L1010 and 2 routers:
> >
> > L1010:
> >
> > Current configuration:
> > !
> > version 11.2
> > no service pad
> > no service password-encryption
> > no service udp-small-servers
> > no service tcp-small-servers
> > !
> > hostname L1010
> > !
> > !
> > ip host-routing
> > no ip domain-lookup
> > !
> > atm address 47.0091.8100..0050.a2c6.4001.0050.a2c6.4001.00
> > atm router pnni
> >  node 1 level 56 lowest
> >   redistribute atm-static
> > !
> > !
> > interface ATM12/0/0
> >  no atm auto-configuration
> >  atm uni version 3.1
> >  atm maxvp-number 8
> >  atm maxvc-number 8192
> >  atm maxvpi-bits 3
> >  atm maxvci-bits 10
> > !
> > interface ATM12/0/1
> > !
> > interface ATM12/0/2
> >  no atm auto-configuration
> >  atm uni version 3.1
> >  atm maxvp-number 8
> >  atm maxvc-number 8192
> >  atm maxvpi-bits 3
> >  atm maxvci-bits 10
> >  atm pvc 0 121  interface  ATM12/0/0 0 112
> > !
> > interface ATM12/0/3
> > !
> > interface ATM13/0/0
> >  ip address 175.128.100.5 255.255.255.0
> >  atm maxvp-number 0
> > !
> > interface Ethernet13/0/0
> >  no ip address
> > !
> > no ip classless
> > !
> > line con 0
> >  exec-timeout 0 0
> > line aux 0
> > line vty 0 4
> >  login
> > !
> > end
> >
> > ROUTER 1
> >
> > Current configuration : 854 bytes
> > !
> > version 12.2
> > service timestamps debug uptime
> > service timestamps log uptime
> > no service password-encryption
> > !
> > hostname R3620-1
> > !
> > !
> > ip subnet-zero
> > !
> > !
> > !
> > !
> > !
> > !
> > !
> > !
> > !
> > fax interface-type fax-mail
> > mta receive maximum-recipients 0
> > !
> > !
> > !
> > !
> > interface FastEthernet0/0
> >  ip address 165.128.1.1 255.255.255.0
> >  duplex auto
> >  speed auto
> > !
> > interface Serial0/0
> >  no ip address
> >  shutdown
> >  clockrate 200
> > !
> > interface ATM1/0
> >  no ip address
> >  no atm ilmi-keepalive
> > !
> > interface ATM1/0.1 multipoint
> >  ip address 165.128.100.1 255.255.255.0
> >  map-group ip-Pvc
> >  atm pvc 112 0 112 aal5snap
> > !
> > router eigrp 100
> >  network 165.128.0.0
> >  auto-summary
> >  no eigrp log-neighbor-changes
> > !
> > ip classless
> > ip http server
> > !
> > !
> > !
> > map-list ip-Pvc
> >  ip 165.128.100.2 atm-vc 112 broadcast
> > !
> > call rsvp-sync
> > !
> > !
> > mgcp profile default
> > !
> > dial-peer cor custom
> > !
> > !
> > !
> > !
> > line con 0
> > line aux 0
> > line vty 0 4
> > !
> > !
> > end
> >
> > ROUTER 2:
> >
> > Current configuration : 835 bytes
> > !
> > version 12.2
> > service timestamps debug uptime
> > service timestamps log uptime
> > no service password-encryption
> > !
> > hostname r3620-2
> > !
> > !
> > ip subnet-zero
> > !
> > !
> > !
> > !
> > !
> > !
> > !
> > !
> > !
> > fax interface-type fax-mail
> > mta receive maximum-recipients 0
> > !
> > !
> > !
> > !
> > interface FastEthernet0/0
> >  ip address 165.128.2.2 255.255.255.0
> >  duplex auto
> >  speed auto
> > !
> > interface Serial0/0
> >  no ip address
> >  shutdown
> > !
> > interface ATM1/0
> >  no ip address
> >  no atm ilmi-keepalive
> > !
> > interface ATM1/0.1 multipoint
> >  ip address 165.128.100.2 255.255.255.0
> >  map-group ip-Pvc
> >  atm pvc 121 0 121 aal5snap
> > !
> > router eigrp 100
> >  network 165.128.0.0
> >  auto-summary
> >  no eigrp log-neighbor-changes
> > !
> > ip classless
> > ip http server
> > !
> > !
> > map-list ip-Pvc
> >  ip 165.128.100.1 atm-vc 121 broadcast
> > !
> > call rsvp-sync
> > !
> > !
> > mgcp profile default
> > !
> > dial-peer cor custom
> > !
> > !
> > !
> > !
> > line con 0
> > line aux 0
> > line vty 0 4
> > !
> > !
> > end
> >
> > THANKS!
> >
> > Eddie
> >
> > -Original Message-
> > From: Andre Riscalla [mailto:[EMAIL PROTECTED]]
> > Sent: Sunday, July 21, 2002 2:36 PM
> > To: Edward Sohn
> > Cc: [EMAIL PROTECTED]
> > Subject: Re: Lightstream PVC config problem... [7:49352]
> >
> >
> >
> > Edward,
> >
> > You are simply trying to define the same PVC mapping 2 times...
> > Basically you need to see the mapping of a PVC in the LS1010 similar as
> > a cross-connect - You only need to configure the cross-connect in ONE of
> > the physical interface.
> >
> > For example, let's say you want to configure a PVC from port 12/0/0
> > (0/112) to port 12/0/2 (0/121) in your ATM switch. You would have 2 ways
> > of doing this:
> >
> > Either:
> >
> > interface ATM12/0/0
> >  no ip address
> >  atm pvc 0 112  interface  ATM12/0/2 0 121
> > !
> > interface ATM12/0/2
> >  no ip address
> > ! Heya,
> > >
> > > I'm kinda new at the ATM bit, and I'm having trouble configuring

Re: Looking for learning partner for CCIE lab [7:49510]

[james kang]

hi, guys
I am in toronto and just passed written test. i am looking for some learning
partner for new version lab test.
james




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=49510&t=49510
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

RE: Passing score for 640-606 exam [7:49496]

[Mark W. Odette II]

776

-Original Message-
From: Charles McKnight [mailto:[EMAIL PROTECTED]] 
Sent: Tuesday, July 23, 2002 8:50 PM
To: [EMAIL PROTECTED]
Subject: Passing score for 640-606 exam [7:49496]

Does anyone know what the passing score for Cisco 640-606 Support
exam is? 


Thanks




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=49513&t=49496
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]