RE: Erasing a password from a 3524 switch [7:51709]

[Fathalla A. Fathalla]

this is a nother link.
http://www.cisco.com/warp/customer/474/pswdrec_2900xl.html

Regards,
Fathalla
-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of
Mamoon Dawood
Sent: Tuesday, August 20, 2002 8:58 AM
To: [EMAIL PROTECTED]
Subject: Erasing a password from a 3524 switch [7:51709]


Dear All,

How to erase Enable password from 3524 switch,

Regards,
Mamoon




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=51716&t=51709
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: ATM Management [7:51693]

[YASSER ALY]

Enable sending and receiving OAM cells. It will do similar job to LMI.

TO enable it on at ATM router interface

int atm 1/0.1

ip address ..

pvc 5/15 ( For example )

oam-pvc manage



If u have WAN switches like BPX & MGX u can enable this feature too.

HTH

 

> >hi all, > >i'm wondering is there a way we can manage an end-to-end
connection on ATM >as what we have with LMI in FrameRelayTQ > >rgds
misconduct and Nondisclosure violations to [EMAIL PROTECTED]



MSN Photos is the easiest way to share and print your photos: Click Here




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=51715&t=51693
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

RE: Erasing a password from a 3524 switch [7:51709]

[Fathalla A. Fathalla]

you can refer to the following link

http://www.cisco.com/univercd/cc/td/doc/product/lan/c2900xl/c2900atm/29xlatm
1/atmicg01/pebicg_4.htm

Regards,
Fathalla

-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of
Mamoon Dawood
Sent: Tuesday, August 20, 2002 8:58 AM
To: [EMAIL PROTECTED]
Subject: Erasing a password from a 3524 switch [7:51709]


Dear All,

How to erase Enable password from 3524 switch,

Regards,
Mamoon




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=51714&t=51709
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

OPSF, RIP, BGP Packet Generator Windows [7:51713]

[Robert D. Cluett]

Anyone know where I might find a packet generator to run under XP?




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=51713&t=51713
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

RE: Erasing a password from a 3524 switch [7:51709]

[Larry Letterman]

go to cco and download the http page on password breaking for the 29xx/35xx
models..


Larry Letterman
Cisco Systems
[EMAIL PROTECTED] 




-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of
Mamoon Dawood
Sent: Monday, August 19, 2002 10:58 PM
To: [EMAIL PROTECTED]
Subject: Erasing a password from a 3524 switch [7:51709]


Dear All,

How to erase Enable password from 3524 switch,

Regards,
Mamoon




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=51712&t=51709
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

RE: IP Multicast. [7:51648]

[Fathalla A. Fathalla]

I have used the bellow mentioned download link.

ftp://ftpeng.cisco.com/ipmulticast/training/index.html

Regards,
Fathalla
-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of
Larry Letterman
Sent: Monday, August 19, 2002 9:51 PM
To: [EMAIL PROTECTED]
Subject: RE: IP Multicast. [7:51648]


for a start you can get the book on IP multicast from
Cisco Press by Beau Williamson...It covers most of it
in detail...


Larry Letterman
Cisco Systems
[EMAIL PROTECTED]




-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of
Jose Tomas Pinal Salvador
Sent: Monday, August 19, 2002 11:17 AM
To: [EMAIL PROTECTED]
Subject: IP Multicast. [7:51648]


Hello Group.

Does anybody know where can I find a complete information about the IP
Multicast tecnoloy?

Thanks.


_
Join the worlds largest e-mail service with MSN Hotmail.
http://www.hotmail.com

[GroupStudy.com removed an attachment of type application/octet-stream which
had a name of Course Presentation Material.url]




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=51711&t=51648
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

RE: Traceroute IP displays twice (previous post by Pri [7:51710]

[Magondo, Michael]

Pricilla

Have you tried this with R3 configured with multipoint interface. I am
just curious if you will see the same behaviour.

Mike


-Original Message-
From: Priscilla Oppenheimer [mailto:[EMAIL PROTECTED]] 
Sent: 19 August 2002 08:27 PM
To: [EMAIL PROTECTED]
Subject: RE: Traceroute IP displays twice (previous post by Pri
[7:51633]

Hi Mark, etc.

I never got a satisfactory explanation for my results with Trace Route.
In
my case, a particular router was claiming to be the first hop and the
second
hop. That's different from what we're seeing in the current question,
where
two different routers are claiming to be the first hop (due to load
balancing).

Here are the syptoms:

r1#trace 172.16.2.2

Type escape sequence to abort.
Tracing the route to 172.16.2.2

   1 172.16.1.3 12 msec 12 msec 12 msec
   2 172.16.1.3 12 msec 8 msec 8 msec
   3 172.16.2.2 24 msec 20 msec 20 msec

It's a frame-relay hub-and-spoke topology. I'm on one spoke trying to
trace 
to another spoke through the hub. The trace succeeds. The network is 
working, but what's with the router replying twice? (It happens if I go
the 
other way too.)

The hub router is 172.16.1.3. Why is it sending back the dest
unreachable 
twice?

The topology is:

R1--R3-R2


Here are my configs:

r1
ip subnet-zero
no ip icmp rate-limit unreachable
!
interface Loopback0
  ip address 192.168.255.1 255.255.255.255
!
interface Ethernet0/0
  description to Cat 5K 3/1
  ip address 10.10.1.1 255.255.255.0
  half-duplex
!
interface TokenRing0/0
  description in ring 1
  ip address 192.168.1.1 255.255.255.0
  ring-speed 16
!
interface Serial1/0
  ip address 172.16.1.1 255.255.255.0
  encapsulation frame-relay
  ip ospf network point-to-point
  frame-relay interface-dlci 133
  frame-relay lmi-type ansi
!
router ospf 1
  log-adjacency-changes
  network 10.10.1.0 0.0.0.255 area 0.0.0.0
  network 172.16.0.0 0.0.255.255 area 0.0.0.0
  network 192.168.1.0 0.0.0.255 area 0.0.0.0
  network 192.168.255.1 0.0.0.0 area 0.0.0.0
!
ip classless



R3
ip subnet-zero
no ip icmp rate-limit unreachable
!
interface Loopback0
  ip address 192.168.255.3 255.255.255.255
!
interface Ethernet0/0
  description link to cat5k 3/3
  ip address 10.10.3.1 255.255.255.0
  half-duplex
!
interface Serial1/0
  description Frame relay
  no ip address
  encapsulation frame-relay
  no fair-queue
  no frame-relay inverse-arp
  frame-relay lmi-type ansi
!
interface Serial1/0.1 point-to-point
  description link to R1
  ip address 172.16.1.3 255.255.255.0
  ip ospf network point-to-point
  frame-relay interface-dlci 331
!
interface Serial1/0.2 point-to-point
  description link to R2
  ip address 172.16.2.3 255.255.255.0
  ip ospf network point-to-point
  frame-relay interface-dlci 332
!
router ospf 1
  log-adjacency-changes
  network 10.10.3.0 0.0.0.255 area 0.0.0.0
  network 172.16.0.0 0.0.255.255 area 0.0.0.0
  network 192.168.255.3 0.0.0.0 area 0.0.0.0
!
ip classless


R2
!
hostname r2
!
ip subnet-zero
no ip icmp rate-limit unreachable
!
interface Loopback0
  ip address 192.168.255.2 255.255.255.255
!
interface Ethernet0/0
  description to Cat 5K 3/2
  ip address 10.10.2.1 255.255.255.0
  half-duplex
!
interface TokenRing0/0
  ip address 192.168.2.1 255.255.255.0
  ring-speed 16
!
interface Serial1/0
  ip address 172.16.2.2 255.255.255.0
  encapsulation frame-relay
  ip ospf network point-to-point
  no fair-queue
  frame-relay interface-dlci 233
  frame-relay lmi-type ansi
!
router ospf 1
  log-adjacency-changes
  network 10.10.2.0 0.0.0.255 area 0.0.0.0
  network 172.16.0.0 0.0.255.255 area 0.0.0.0
  network 192.168.2.0 0.0.0.255 area 0.0.0.0
  network 192.168.255.2 0.0.0.0 area 0.0.0.0
ip classless


There's a Cisco router "in the cloud" acting as a Frame Relay switch, 
switching from DLCIs. I don't have its config. (This was a virtual lab).

Thanks for any hints you can give me.

Priscilla



Priscilla Oppenheimer
http://www.priscilla.com


Vicuna, Mark wrote:
> 
> While we are on the topic.. I remember a post by Priscilla a
> few months
> ago now (I think) with a traceroute showing 2 path entries of
> the same
> ip.  The result of the traceroute was not able to be reproduced
> (I
> think).   Anyone remember what the outcome of this was?  
> 
> 
> The archives are not searchable at this point in time.
> 
> 
> Cheers
> Mark.
> 
> > -Original Message-
> > From: Robert D. Cluett [mailto:[EMAIL PROTECTED]]
> > Sent: Monday, 19 August 2002 19:10
> > To: [EMAIL PROTECTED]
> > Subject: Re: traceroute IP displays twice [7:51622]
> > 
> > 
> > Thanks Raj!
> > 
> > ""Raj Santiago""  wrote in message
> > [EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
> > > i should have included this part as well to the previous
> post :
> > >
> > > >1 172.26.1.13 20 msec
> > >172.26.1.2 20 msec
> > >172.26.1.13 20 msec
> > >
> > > The above indicates, of the two possible paths the router 
> > has [172.26.1.2,
> > > 172.26.1.13] it has chosen the path 172.26.1.13.




Mess

Erasing a password from a 3524 switch [7:51709]

[Mamoon Dawood]

Dear All,

How to erase Enable password from 3524 switch,

Regards,
Mamoon




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=51709&t=51709
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Undeliverable mail--"cellpadding" [7:51708]

[postmaster]

The following mail can't be sent to [EMAIL PROTECTED]:

From: [EMAIL PROTECTED]
To: [EMAIL PROTECTED]
Subject: cellpadding
The file is the original mail




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=51708&t=51708
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

RE: Multiple Supervisors 6509 Chassis; Native IOS [7:51654]

[Larry Letterman]

If you have two gateways(6509's) why goto the expense of two msfc's
in each chassis ? The failure should cause the hsrp to switch to the
secondary
6509. Thats the way we run ours on our campus...


Larry Letterman
Cisco Systems
[EMAIL PROTECTED] 




-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of
Michael L. Williams
Sent: Monday, August 19, 2002 7:23 PM
To: [EMAIL PROTECTED]
Subject: Re: Multiple Supervisors 6509 Chassis; Native IOS [7:51654]


When you have two Sups and you're running Native IOS, you cannot run HSRP
between them...as you mentioned, one sup is active and the other is standby
and there's about 90-120 seconds of downtime when one sup fails because the
other sup has to re-initialize the hardware (the standby sup (if you watch
from a console while it boots) actually boots part way it loads IOS but
then waits... when the other sup fails, it "finishes" the boot process by
initializing the blades and then running as normal)

We have 2 6509s, and we run HSRP between the sups on them so that if there
is a sup failure, only the devices attached to the switch with the failed
sup are affected. the others work fine because HSRP will keep at least
one MSFC up and running.

If you use the following commands in global config mode, it will setup so
that when you make config changes on the primary sup and save them, that it
will automatically update the config on the backup sup too.

redundancy
 main-cpu
  auto-sync standard

Mike W.

"Maximus"  wrote in message
[EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
> This is how I learn: =)
> Running IOS on my 6509, I wanted to see the amount of downtime I would
cause
> by deliberately causing the primary SUP to fail by one executing a reload
on
> the primary module and two simply pulling the primary from the chassis.
> heeheehee
>
> What I found was the reload caused approximately 2 minutes downtime.  This
> was because the entire chassis of course booted.  The secondary module did
> however become the primary almost immediately following the reload
command.
> Now I figure that if I just removed the primary blade the system would
> failover immediately and not reboot my 10/100/1000 blades.  To my
surprise,
> this resulted in again 1 minute and 50 seconds downtime and network
> connectivity was restored.  BTW The blades also appeared to reboot.
>
> In terms of High Availability am I missing something?  Considering these
> results what would deter me from just sticking to HSRP.  I am a novice and
> looking for some constructive input.  With that said note the following:
>
> IOS:
> Cisco Catalyst 6000 (R7000) processor with 112640K/18432K bytes of memory.
> R7000 CPU at 300Mhz, Implementation 39, Rev 2.1, 256KB L2, 1024KB L3 Cache
> ROM: System Bootstrap, Version 12.1(11r)E1, RELEASE SOFTWARE (fc1)
> BOOTLDR: c6sup2_rp Software (c6sup2_rp-JSV-M), Version 12.1(11b)E4, EARLY
> DEPLOYMENT RELEASE SOFTWARE (fc1)
>
> Hardware:
> Router>sh mod
> Mod Ports Card Type  Model  Serial
> No.
> --- - -- -- --
--
> ---
>   12  Cat 6k sup 1 Enhanced QoS (Standby)WS-X6K-SUP1A-2GE
>   22  Cat 6k sup 1 Enhanced QoS (Active) WS-X6K-SUP1A-2GE
>   4   16  16 port 1000mb GBIC ethernet   WS-X6416-GBIC
>   9   48  48 port 10/100 mb RJ45 WS-X6348-RJ-45
>
> Comments?
> -Maximus




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=51707&t=51654
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

RE: Filtering [7:51667]

[Erick B.]

There is a NBAR PDLM for Napster, Gnutella, Grokster,
and a few others. But if your looking to block HTTP
transfers with a .mp3 in the URL that could block
traffic that is legit (some business-suitable audio
clip, etc) and really isn't a solution. Also the user
could zip/rar/arj up there mp3s instead, or use .ogg
files, bring them into work on CD, whatever. 

A better approach may to be use CAR or to rate-limit 
legit forms of traffic and all other traffic give 5%
of the bandwidth. This way the non-conforming traffic
is just slow and has lag. Users hate lag, but this
could also cause more calls/emails to you. Depending
on your traffic load and router model, memory, etc
this could have a hit on the routers performance.

In the end, its a no win situation since you're always
chasing the latest internet applications and trying to
block them. If the users are sophiscated they will get
around the slowdown or change to a different method of
obtaining the content. Just my opinion.

Erick

--- "Larkin, Richard"
 wrote:
> NBAR should do this
> 
> -Original Message-
> From: Chris Sweeting
> [mailto:[EMAIL PROTECTED]] 
> Sent: Tuesday, 20 August 2002 4:27 AM
> To: [EMAIL PROTECTED]
> Subject: Filtering [7:51667]
> 
> 
> What is the best tools for fiterring mp3's on a 2600
> router in general


__
Do You Yahoo!?
HotJobs - Search Thousands of New Jobs
http://www.hotjobs.com




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=51706&t=51667
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: Policy Routing Question [7:51689]

[Chuck's Long Road]

you pretty much understand how it works. You might be muddying the waters a
bit by bringing BGP into the picture

comment below:



""John Matney""  wrote in message
[EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
> -BEGIN PGP SIGNED MESSAGE-
> Hash: SHA1
>
>
> I've been reading the Cisco CCNP Cert Guide in partial preparation for
> the BSCI exan and I've come across a bit in the Policy Routing section
> that I just don't understand.
>
> The text states:
>
> "Policy routing does not allow traffic sent into another autonomous
> system to take a different path from the one that would have been chosen
> by that autonomous system." (pp. 551)


CL: sure. makes sense. I'm not sure why the authors would take this tack, as
policy routing applies only to inbound traffic. at best, it can set next
hop, as you note.  But nothing that the policy sets is untouchable by other
routers, same autonomous ystem or not.


>
> ~From the reading, I understand that policy routing is configured on an
> inbound interface and can filter on either source or both source and
> destination addresses. PR, via a route map, can set properties such as
> precedence, QoS and next-hop. All of these items only really have
> relevance on the router in which policy routing is being done. In other
> words, once the router policy routes the packet and specifies, for
> instance, the next-hop interface. Now, if that next-hop router chooses
> to drop, fragment or otherwise mangle the packet so be it, the first
> router has no control over it anymore, its done its job.


CL: yep


>
> So then, how does this quote apply? Perhaps, I'm completely missing the
> point (wouldn't be the first time). A router can only do what its
> configured to do. If I tell a packet to take path a to get to network b
> but network b would perfer its incoming traffic to come in via path c,
> the most network a can do to prevent this is to drop incoming traffic
> via path a. Correct?


CL: yep

>Even if we were running a EGP such as BGP4 and the
> distant router had a MED set to perfer path c, I could still push
> packets via path a given that I knew it existed.


CL: you can send a packet anyplace. that doesn't mean the destination router
has to accept it.

CL: but mixing policy routing and BGP in your mind is probably not a good
idea. the BGP settings that are done via route-maps associated with neighbor
statements apply to BGP routing information. Policy routing applies to data
packets, not to routing protocol information. Does that make sense?

CL: examples:

router bgp 9902
neighbor 1.1.1.1 remote-as 9990
neighbor 1.1.1.1 route-map take_my_sttings out
neighbor 1.1.1.1 route-map screw_your_settings in

as opposed to

interface s 0
ip policy route-map zzyzx


>
> Make sense? I'm a bit confused as to what the authors are getting to in
> this passage. Could someone help?


CL: HTH

>
> Thanks,
> John
>
>
> - --
> http://pgp.mit.edu:11371/pks/lookup?op=get&search=0x88EE7695
> Key fingerprint = DBD7 6AE2 E7BE 1572 B245  BF54 4913 C85A 88EE 7695
> -BEGIN PGP SIGNATURE-
> Version: GnuPG v1.1.90-nr1 (Windows XP)
> Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org
>
> iD8DBQE9YZ1hSRPIWojudpURAoAQAKCMOZu+TQcZOSW39mqtZooDzRGoBwCgm+Ti
> YMQGvYkbcXWMn/IhQZTmpnk=
> =hAME
> -END PGP SIGNATURE-




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=51705&t=51689
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

RE: Weird syslog. [7:51656]: nay help? [7:51704]

[Leo Song]

-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] On Behalf Of
Leo Song
Sent: August 19, 2002 3:00 PM
To: [EMAIL PROTECTED]
Subject: Weird syslog. [7:51656]

Would anyone help on this? Somehow I got the following so weird logging
messages on my 1720 router, thanks in advance.

#sh log
Syslog logging: enabled (0 messages dropped, 1 flushes, 0 overruns)
Console logging: level debugging, 190429 messages logged
Monitor logging: level debugging, 335 messages logged
Logging to: vty7(0)
Buffer logging: level debugging, 3 messages logged
Trap logging: level informational, 85 message lines logged
  
Log Buffer (4096 bytes):

^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@
^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@
^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@
^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@
^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@
^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@
^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@

Leo Song
System Engineer




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=51704&t=51704
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

CCbootcamp lab 8a [7:51682]

[Edward Sohn]

Can anyone shed some light on the solution to CCBootcamp's lab 8a?
Specifically, question 21 on Task two?
 
I thought it was just an "aggregate address" command router 7, but it's
not working how it's supposed to.  I cannot see the routes on R6 or R8.
Also, one of the routes (170.x.x.x) still shows up on router one, even
when I do a "summary only" argument on R7.  The summary I used on R7 is
"160.0.0.0 240.0.0.0"
 
Sorry to be so cryptic, but I guess this question is directed towards
anyone actually familiar with this lab.
 
Thanks in advance,
 
Eddie

[GroupStudy.com removed an attachment of type image/jpeg which had a name of
Notebook.jpg]




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=51682&t=51682
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

RE: Cisco 803 config [7:51129]

[Suresh Naipal]

Try 
ip address negotiated

You may need to check
http://www.cisco.com/go/fn
to verify your current IOS supports it.

Kind regards,

Swish


Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=51702&t=51129
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

RE: Switching and Remot access test [7:51128]

[Suresh Naipal]

Hi Joupin,
   That bascially sounds like what I did. I passed easily. Good luck.

Kind regards,

Swish



Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=51703&t=51128
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Aync Modem Problem [7:51701]

[John Brandis]

Hi All, Such a busy day..

configuring a 2509 with 2 modems connecting to async ports 1 and 2. The goal
here, is to simply dial out. Have a simple config,

Line Config of:
modem autodiscovery
modem inout
line 1-2

Group-Async 1
group range 1 -2
ip unnumbered loopback1
encaps ppp
async mode interactive

--
chat script mydialup ABORT ERROR ABORT "BUSY" " " "ATZ" OK "ATDT" \T connect
30 timeout

Whilst on the console, I try to start up a dial out conenction via my start
chat mydialup tty 1 55   , however I get the following error

% Chat script can not be run on line running other process

Any one know whats happening ? This line is not in use any where elseMy
sh line tty 1 has the following:

NAS_2509#sh line tty 1
 Tty Typ Tx/RxA Modem  Roty AccO AccI   Uses   Noise  Overruns   Int
*  1 TTY  19200/19200 - inout ---  0   1 0/0   -

Line 1, Location: "", Type: ""
Length: 24 lines, Width: 80 columns
Baud rate (TX/RX) is 19200/19200, no parity, 2 stopbits, 8 databits
Status: Ready, Active, No Exit Banner
Capabilities: Modem Callout, Modem RI is CD, 
  Line usable as async interface, Modem Discovery
Modem state: Ready
Modem hardware state: noCTS noDSR*  DTR RTS
Special Chars: Escape  Hold  Stop  Start  Disconnect  Activation
^^xnone   - -   none 
Timeouts:  Idle EXECIdle Session   Modem Answer  Session   Dispatch
   00:10:00nevernone not set
Idle Session Disconnect Warning
  never 
Login-sequence User Response
 00:00:30
Autoselect Initial Wait
  not set 
Modem type is unknown.
Session limit is not set.


Thanks all for any assistance you can provide.

John


**

visit http://www.solution6.com
visit http://www.eccountancy.com - everything for accountants.

UK Customers - http://www.solution6.co.uk

*
This email message (and attachments) may contain information that is
confidential to Solution 6. If you are not the intended recipient you cannot
use, distribute or copy the message or attachments.  In such a case, please
notify the sender by return email immediately and erase all copies of the
message and attachments.  Opinions, conclusions and other information in
this message and attachments that do not relate to the official business of
Solution 6 are neither given nor endorsed by it.
*




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=51701&t=51701
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

RE: Filtering [7:51667]

[Larkin, Richard]

NBAR should do this

-Original Message-
From: Chris Sweeting [mailto:[EMAIL PROTECTED]] 
Sent: Tuesday, 20 August 2002 4:27 AM
To: [EMAIL PROTECTED]
Subject: Filtering [7:51667]


What is the best tools for fiterring mp3's on a 2600 router in general




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=51700&t=51667
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

RE: Policy Routing Question [7:51689]

[Larkin, Richard]

You are right in that you are missing the point.
The statement is correct - you can decide that voice traffic to the next AS
should take path A, and all other traffic take path B (and you do this with
multiple route-maps within each router), but once you deliver the datagram
to the next AS, it is up to them as to how they route that traffic, ie, you
are not doing something like strict source routing in which you specify
exactly each hop the packet should take. There is no mechanism for you to
tell the next AS that this traffic should take an expedited path within
their environment, unless they have similar routing policies as you do.

That's the way I read it. Now I'm not sure about the BGP med attributes (I'm
getting the books next week!) but I simply read the statement at face value.

Richard Larkin
Technical Specialist
Communications Services
InfoHEALTH Alliance
(a DoH/DMR Consulting Alliance)
* Phone: (+61) 8 9318 6257
* Fax: (+61) 8 9318 6390
* Mobile: (+61) 41 731 0578
* mailto:[EMAIL PROTECTED]

-Original Message-
From: John Matney [mailto:[EMAIL PROTECTED]] 
Sent: Tuesday, 20 August 2002 9:46 AM
To: [EMAIL PROTECTED]
Subject: Policy Routing Question [7:51689]


-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1


I've been reading the Cisco CCNP Cert Guide in partial preparation for the
BSCI exan and I've come across a bit in the Policy Routing section that I
just don't understand.

The text states:

"Policy routing does not allow traffic sent into another autonomous system
to take a different path from the one that would have been chosen by that
autonomous system." (pp. 551)

~From the reading, I understand that policy routing is configured on an
inbound interface and can filter on either source or both source and
destination addresses. PR, via a route map, can set properties such as
precedence, QoS and next-hop. All of these items only really have relevance
on the router in which policy routing is being done. In other words, once
the router policy routes the packet and specifies, for instance, the
next-hop interface. Now, if that next-hop router chooses to drop, fragment
or otherwise mangle the packet so be it, the first router has no control
over it anymore, its done its job.

So then, how does this quote apply? Perhaps, I'm completely missing the
point (wouldn't be the first time). A router can only do what its configured
to do. If I tell a packet to take path a to get to network b but network b
would perfer its incoming traffic to come in via path c, the most network a
can do to prevent this is to drop incoming traffic via path a. Correct? Even
if we were running a EGP such as BGP4 and the distant router had a MED set
to perfer path c, I could still push packets via path a given that I knew it
existed.

Make sense? I'm a bit confused as to what the authors are getting to in this
passage. Could someone help?

Thanks,
John


- -- http://pgp.mit.edu:11371/pks/lookup?op=get&search=0x88EE7695
Key fingerprint = DBD7 6AE2 E7BE 1572 B245  BF54 4913 C85A 88EE 7695
-BEGIN PGP SIGNATURE-
Version: GnuPG v1.1.90-nr1 (Windows XP)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org

iD8DBQE9YZ1hSRPIWojudpURAoAQAKCMOZu+TQcZOSW39mqtZooDzRGoBwCgm+Ti
YMQGvYkbcXWMn/IhQZTmpnk=
=hAME
-END PGP SIGNATURE-




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=51698&t=51689
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: 802.1x Security on a 3550 [7:51645]

[Chuck's Long Road]

the documentation says it's supported, but since I don't have the means of
setting up authentication and testing, I'll have to take someone else's word
for it.

BTW, all you folks who were dancing in the streets at the announcement of
the removal of IPX, IGRP, and Token Ring, hope you are reading all these
3550 questions carefully. This all will be testable material come 11/4



""Brian Zeitz""  wrote in message
[EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
> Has anyone heard/used this yet? It allows you to authenticate users/Pass
> with a Radius Server using a 3550 switch (or higher end cat switch).
> This is an awesome idea to implement security on the LAN. I am planning
> on implementing it soon, don't get too excited, because unless you are
> running Windows XP clients, you cant use 802.1x yet. Windows 2000 will
> also support 802.1x soon. I happen to run all my clients on XP, if you
> are not on XP you might want to start thinking about it. Windows XP is
> the only client that supports 802.1x. This could be another great test
> question for the CSS1 betas. Man I love these 3550 switches, and XP :-)
>
>
>
> Brian




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=51699&t=51645
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: Multiple Supervisors 6509 Chassis; Native IOS [7:51654]

[Clay Calvert]

""Jagan Krishnaraj""  wrote in message
[EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
> Hi Maximus
>
> I am using 6509 Sup2, MSFC2 and native IOS. Condition is the same.
> If I pull the active sup it takes 2 minutes to reboot.
> And all the blades also reboot.

Just curious, have you set High-Availability?  I'm not sure if it is
available in Native mode.

According to this URL, the failover should only take about 2 seconds... with
HA.

http://www.cisco.com/warp/public/cc/pd/si/casi/ca6000/tech/hafc6_wp.pdf


> Larry
> Is this the usual thing.
> Pls let me know this is the type of redundancy provided in Cat 6509.
>
> thanks
> jagan krishnaraj




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=51697&t=51654
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

RE: Defective Cisco AP340 [7:51678]

[Colin Lim]

Kindly elaborate on lockup...
Is the green light on?
what you can try is to use a RJ-45 cross-cable and connect directly to your
laptop and try to manage it via http.
You'll probably also need to console in first, to make sure that your AP and
your laptop are in the same subnet to communicate.
Try to take it from there. If there are still problems, then probably the
unit is faulty.
hope it helps.


Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=51696&t=51678
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: Multiple Supervisors 6509 Chassis; Native IOS [7:51654]

[Michael L. Williams]

When you have two Sups and you're running Native IOS, you cannot run HSRP
between them...as you mentioned, one sup is active and the other is standby
and there's about 90-120 seconds of downtime when one sup fails because the
other sup has to re-initialize the hardware (the standby sup (if you watch
from a console while it boots) actually boots part way it loads IOS but
then waits... when the other sup fails, it "finishes" the boot process by
initializing the blades and then running as normal)

We have 2 6509s, and we run HSRP between the sups on them so that if there
is a sup failure, only the devices attached to the switch with the failed
sup are affected. the others work fine because HSRP will keep at least
one MSFC up and running.

If you use the following commands in global config mode, it will setup so
that when you make config changes on the primary sup and save them, that it
will automatically update the config on the backup sup too.

redundancy
 main-cpu
  auto-sync standard

Mike W.

"Maximus"  wrote in message
[EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
> This is how I learn: =)
> Running IOS on my 6509, I wanted to see the amount of downtime I would
cause
> by deliberately causing the primary SUP to fail by one executing a reload
on
> the primary module and two simply pulling the primary from the chassis.
> heeheehee
>
> What I found was the reload caused approximately 2 minutes downtime.  This
> was because the entire chassis of course booted.  The secondary module did
> however become the primary almost immediately following the reload
command.
> Now I figure that if I just removed the primary blade the system would
> failover immediately and not reboot my 10/100/1000 blades.  To my
surprise,
> this resulted in again 1 minute and 50 seconds downtime and network
> connectivity was restored.  BTW The blades also appeared to reboot.
>
> In terms of High Availability am I missing something?  Considering these
> results what would deter me from just sticking to HSRP.  I am a novice and
> looking for some constructive input.  With that said note the following:
>
> IOS:
> Cisco Catalyst 6000 (R7000) processor with 112640K/18432K bytes of memory.
> R7000 CPU at 300Mhz, Implementation 39, Rev 2.1, 256KB L2, 1024KB L3 Cache
> ROM: System Bootstrap, Version 12.1(11r)E1, RELEASE SOFTWARE (fc1)
> BOOTLDR: c6sup2_rp Software (c6sup2_rp-JSV-M), Version 12.1(11b)E4, EARLY
> DEPLOYMENT RELEASE SOFTWARE (fc1)
>
> Hardware:
> Router>sh mod
> Mod Ports Card Type  Model  Serial
> No.
> --- - -- -- --
--
> ---
>   12  Cat 6k sup 1 Enhanced QoS (Standby)WS-X6K-SUP1A-2GE
>   22  Cat 6k sup 1 Enhanced QoS (Active) WS-X6K-SUP1A-2GE
>   4   16  16 port 1000mb GBIC ethernet   WS-X6416-GBIC
>   9   48  48 port 10/100 mb RJ45 WS-X6348-RJ-45
>
> Comments?
> -Maximus




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=51695&t=51654
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

RE: Multiple Supervisors 6509 Chassis; Native IOS [7:51654]

[Larry Letterman]

we usually dont use dual msfc mods in our gateways..I'll ask some guys
on my team and find out...an dpost the reply.


Larry Letterman
Cisco Systems
[EMAIL PROTECTED] 




-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]
Sent: Monday, August 19, 2002 6:34 PM
To: [EMAIL PROTECTED]
Subject: Re: Multiple Supervisors 6509 Chassis; Native IOS [7:51654]


Hi Maximus

I am using 6509 Sup2, MSFC2 and native IOS. Condition is the same.
If I pull the active sup it takes 2 minutes to reboot.
And all the blades also reboot.

Larry
Is this the usual thing.
Pls let me know this is the type of redundancy provided in Cat 6509.

thanks
jagan krishnaraj




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=51694&t=51654
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

ATM Management [7:51693]

[Md Nazri]

hi all,

i'm wondering is there a way we can manage an end-to-end connection on ATM
as what we have with LMI in FrameRelayTQ

rgds
nazri




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=51693&t=51693
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: How to force a gratuitous ARP [7:51674]

[Marty Adkins]

John Neiberger wrote:
> 
> I'm planning on moving routing responsibilities from a router to our
> 6513 and I *really* need to minimize downtime.  I'll be moving an
> interface IP address from one device to another and this is the default
> gateway for all devices on that network.  The problem is that all
> devices on that subnet will have the wrong MAC address in their ARP
> caches.  I know that if I issue a unicast ping from the new router it
> will force the end host to update its ARP cache but a broadcast ping
> does not accomplish the same thing, probably because most devices ignore
> a broadcast ping, and I don't feel like pinging every device
> individually.
> 
> I can't configure HSRP just to gain the benefit of gratuitous ARP;
> simply configuring it will be disruptive and that's what I'm trying to
> avoid.
> 
With the new box being a Cisco, the good answer is you won't have to
do anything.  For many many years, Cisco routers have performed several
operations anytime you "no shut" an interface or change its IP address:
1) ARP broadcast as a duplicate IP address test (and hope nobody replies).
2) Gratuitous ARP reply sent to the broadcast MAC.
The latter causes every local host to blindly overwrite its previous
ARP entry.  Life goes on undisturbed...
If you want to observe this behavior without a protocol analyzer, type
"debug arp", then perform the change.

  Marty Adkins Email: [EMAIL PROTECTED]
  Chesapeake NetCraftsmen, LLC o:410.757.3050,
p:[EMAIL PROTECTED]
  1290 Bay Dale Drive, Suite 312   http://www.netcraftsmen.NET
  Arnold, MD  21012-2325   Cisco CCIE #1289




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=51692&t=51674
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: question re RED [7:51650]

[bergenpeak]

Hi Priscilla,

Thanks much for the response and the RFC reference.  Would one still
consider a vendor's implementation to be "RED" (compliant with RFC 2309)
if packets at the head of the queue are dropped instead of at the tail?

Thanks again.



Priscilla Oppenheimer wrote:
> 
> bergenpeak wrote:
> >
> > When RED is running on an interface, do packets get dropped
> > before being put into the queue (at the tail, based on ave
> > queue size, etc) or do they get dropped when they reach the
> > head of the queue?
> 
> Incoming packets get dropped before being queued, based on the average
queue
> size. As you probably know, this is different from the classic "tail drop,"
> however, which happens when the queue is full. (Packets at the end or tail
> of a stream of packets get dropped because the queue is full.)
> 
> RED drops arriving packets probabilistically. The probability of drop
> increases as the estimated average queue size grows. Note that RED responds
> to a time-averaged queue length, not an instantaneous one. Thus, if the
> queue has been mostly empty in the "recent past", RED won't tend to drop
> packets (unless the queue overflows, of course!). On the other hand, if the
> queue has recently been relatively full, indicating persistent congestion,
> newly arriving packets are more likely to be dropped.
> 
> I didn't make that up. I got it from RFC 2309. :-)
> 
> >
> > Is there any difference in when packets are dropped when WRED
> > is being used (instead of RED)?
> 
> Here is where it really gets interesting.
> 
> >From reading descriptions of RED versus WRED in the excellent book
> "Integrating Voice and Data Networks" by Scott Keagy, I would say that WRED
> does muck with packets already queued. Whereas RED cares only about the
size
> of the queue, WRED also has some scheduling capabilities. Here's what he
says:
> 
> "Unlike RED, which purely manages queue depth, WRED also has some
> characteristics of a scheduling algorithm. Instead of explicitly stating
> which packets will go next, WRED selects which packets will not go next.
> Most scheduling algorithms are "additive" in nature, where the final packet
> order is the result of each packet being explicitly placed in order. WRED
> starts with a random ordering of packets, and removes packets such that the
> desired packet ordering is approached. This "subtractive" process offers a
> very limited scheduling functionality. The additive process offers a much
> finer control, but the subtractive process uses far fewer system
resources."
> 
> "Whereas the additive ordering mechanism must actively move (or at least
> store a pointer for) each packet into a new reordered buffer, the
> subtractive mechanism merely discards packets that violate the ordering
> rules. Each packet requires less processing and less buffer resources when
> using the subtractive ordering mechanism."
> 
> Priscilla
> 
> >
> > Thanks




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=51691&t=51650
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

RE: Trafic Shaping [7:51661]

[Art Davis]

QoS Device Manager (QDM) is a great tool (small java applet) for this.

http://www.cisco.com/univercd/cc/td/doc/product/rtrmgmt/qdm/
http://www.cisco.com/warp/public/cc/pd/nemnsw/qodvmn/prodlit/qdm_ds.htm

Requires 12.1(5)T or later on your 2600, as it uses CEF & NBAR.

Art Davis
CCIE #6430


Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=51690&t=51661
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Policy Routing Question [7:51689]

[John Matney]

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1


I've been reading the Cisco CCNP Cert Guide in partial preparation for
the BSCI exan and I've come across a bit in the Policy Routing section
that I just don't understand.

The text states:

"Policy routing does not allow traffic sent into another autonomous
system to take a different path from the one that would have been chosen
by that autonomous system." (pp. 551)

~From the reading, I understand that policy routing is configured on an
inbound interface and can filter on either source or both source and
destination addresses. PR, via a route map, can set properties such as
precedence, QoS and next-hop. All of these items only really have
relevance on the router in which policy routing is being done. In other
words, once the router policy routes the packet and specifies, for
instance, the next-hop interface. Now, if that next-hop router chooses
to drop, fragment or otherwise mangle the packet so be it, the first
router has no control over it anymore, its done its job.

So then, how does this quote apply? Perhaps, I'm completely missing the
point (wouldn't be the first time). A router can only do what its
configured to do. If I tell a packet to take path a to get to network b
but network b would perfer its incoming traffic to come in via path c,
the most network a can do to prevent this is to drop incoming traffic
via path a. Correct? Even if we were running a EGP such as BGP4 and the
distant router had a MED set to perfer path c, I could still push
packets via path a given that I knew it existed.

Make sense? I'm a bit confused as to what the authors are getting to in
this passage. Could someone help?

Thanks,
John


- --
http://pgp.mit.edu:11371/pks/lookup?op=get&search=0x88EE7695
Key fingerprint = DBD7 6AE2 E7BE 1572 B245  BF54 4913 C85A 88EE 7695
-BEGIN PGP SIGNATURE-
Version: GnuPG v1.1.90-nr1 (Windows XP)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org

iD8DBQE9YZ1hSRPIWojudpURAoAQAKCMOZu+TQcZOSW39mqtZooDzRGoBwCgm+Ti
YMQGvYkbcXWMn/IhQZTmpnk=
=hAME
-END PGP SIGNATURE-




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=51689&t=51689
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: Multiple Supervisors 6509 Chassis; Native IOS [7:51654]

[Jagan Krishnaraj]

Hi Maximus

I am using 6509 Sup2, MSFC2 and native IOS. Condition is the same.
If I pull the active sup it takes 2 minutes to reboot.
And all the blades also reboot.

Larry
Is this the usual thing.
Pls let me know this is the type of redundancy provided in Cat 6509.

thanks 
jagan krishnaraj




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=51688&t=51654
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: How to force a gratuitous ARP [7:51674]

[Kevin Cullimore]

If the hosts are running snmp, and you have write access, it might be worth
seeing if you can get away with a wellfleet trick, wherein you delete
individual arp cache entries as they appear in the ipNetToMedia table (or
proprietary equivalent) by setting the ipNetToMediaType value to 2, and then
adding in the desired substitute entry.

Then again, if you're willing to endure enough downtime to contact each
member of the network, you can generate the contents of a batch file/shell
script based on ping or your favorite ip troubleshooting utility fairly
quickly using a spreadsheet (this, of course, would refer to one written
with "modern" programming values in mind, where efficiency and good form are
sacrificed in the name of quickly turning out an end product).

Or, you can contact all members of a manageably-sized broadcast domain in a
matter of seconds by making use of freeware port scanners and other script
kiddie toolkit favorites.



- Original Message -
From: "John Neiberger" 
To: 
Sent: 19 August 2002 5:13 pm
Subject: How to force a gratuitous ARP [7:51674]


> I'm planning on moving routing responsibilities from a router to our
> 6513 and I *really* need to minimize downtime.  I'll be moving an
> interface IP address from one device to another and this is the default
> gateway for all devices on that network.  The problem is that all
> devices on that subnet will have the wrong MAC address in their ARP
> caches.  I know that if I issue a unicast ping from the new router it
> will force the end host to update its ARP cache but a broadcast ping
> does not accomplish the same thing, probably because most devices ignore
> a broadcast ping, and I don't feel like pinging every device
> individually.
>
> I can't configure HSRP just to gain the benefit of gratuitous ARP;
> simply configuring it will be disruptive and that's what I'm trying to
> avoid.
>
> Any ideas?
>
> Thanks,
> John




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=51687&t=51674
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: Does Pix Support? [7:51519]

[ipguru1]

I can give you the name of a guy that LOVE'S MailSweeper.  I have done a
little admin
duty on it, but he raves about it.  That thing stops everything!

email offline and I can give you his email



Kevin O'Gilvie wrote:

> Hi All,
>
> I am pretty sure you all are in the same boat of spam management..
> Does the Pix have any pluggins for spam blocking..
> Can you guys reccommend a product for spam blocking for Exchange 5.5.
> I am looking at Mail Sweeper?
> Also looking for A gooD AV for Exchange 5.5, I am currently using
innoculate
> but There patters come out too lATE..
> TIA,
>
> KEVIN
>
> _
> Send and receive Hotmail on your mobile device: http://mobile.msn.com




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=51686&t=51519
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: Cisco Security Specialist 1 [7:51643]

[Richard Lee]

No, it is expired.

""Juan Blanco""  wrote in message
[EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
> Does the following is still available:
>
> For a limited time, candidates holding an active CCNP Security
> Specialization may obtain a Cisco Security Specialist 1 certification by
> passing the 9E0-571 CSPFA and 9E0-570 CSVPN exams.
>
> Thanks,




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=51685&t=51643
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: Multiple Supervisors 6509 Chassis; Native IOS [7:51654]

[Ken Diliberto]

I've been reading about the high availability in the 6500 (since we have
one and are getting over a dozen more).  What I understand so far is
that the existing flows are used for about 2 minutes while the new
active supervisor/MSFC relearns the network (routes, MAC's, etc).  Not
my idea of high availability.

So, existing sessions should continue fine.  New stuff may have a
problem.

Note:  I've been concerned with Hybrid mode (CatOS + IOS), not native. 
I'm not ready to tackle that yet.  :-)

>>> "Maximus"  08/19/02 11:48AM >>>
This is how I learn: =)
Running IOS on my 6509, I wanted to see the amount of downtime I would
cause
by deliberately causing the primary SUP to fail by one executing a
reload on
the primary module and two simply pulling the primary from the
chassis.
heeheehee

What I found was the reload caused approximately 2 minutes downtime. 
This
was because the entire chassis of course booted.  The secondary module
did
however become the primary almost immediately following the reload
command.
Now I figure that if I just removed the primary blade the system would
failover immediately and not reboot my 10/100/1000 blades.  To my
surprise,
this resulted in again 1 minute and 50 seconds downtime and network
connectivity was restored.  BTW The blades also appeared to reboot.

In terms of High Availability am I missing something?  Considering
these
results what would deter me from just sticking to HSRP.  I am a novice
and
looking for some constructive input.  With that said note the
following:

[snip]




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=51684&t=51654
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

RE: VLAN Encapsulation for Fibre [7:51680]

[Priscilla Oppenheimer]

John Brandis wrote:
> 
> Hi All,
> 
> What type of frame tagging Protocol is best for Gigabit
> Ethernet Fiber
> Interfaces. I understand that ISL is fine for standard fast
> ethernet ,
> however .10 is perhaps better for this situation.

Do you mean 802.10?? That was used for VLAN tagging on FDDI. Don't think
just because you have fiber-optic cabling you have to use 802.10, which was
for FDDI (which is an entirely different data-link layer).

I can't see why the solution would be any different for Gigabit Ethernet
versus Fast Ethernet. Use either ISL or 802.1Q, probably 802.1Q since it's
standards based, whereas ISL is Cisco-proprietary. Also, I don't think Cisco
supports ISL on some Gigabit Ethernet interfaces.

> 
> Thanks for advice on VOIP. Got it all sorted out, thanks to the
> nice people
> at NEC and your comments. 

That's good. And your haircut is working out well too I hope? ;-)

Priscilla
> 
> John
> Sydney Australia
> 
> 
> **
> 
> visit http://www.solution6.com
> visit http://www.eccountancy.com - everything for accountants.
> 
> UK Customers - http://www.solution6.co.uk
> 
> *
> This email message (and attachments) may contain information
> that is confidential to Solution 6. If you are not the intended
> recipient you cannot use, distribute or copy the message or
> attachments.  In such a case, please notify the sender by
> return email immediately and erase all copies of the message
> and attachments.  Opinions, conclusions and other information
> in this message and attachments that do not relate to the
> official business of Solution 6 are neither given nor endorsed
> by it.
> *
> 
> 




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=51683&t=51680
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: How to force a gratuitous ARP [7:51674]

[Kevin Cullimore]

Does this network contain servers? workstations? Both?

If the end-systems are running operating systems from the Northwestern
United States, you could push down a registry change involving the arp cache
timer.

If they are dhcp clients, option 35 is supposed to be associated with that
timer as well (I don't have equipment available to test with).

I'm not sure if there's a way to alter the mac address associated with the
gateway address on the 6513 (documented or otherwise), but if there is, and
you're removing the router from that network, that might be an option as
well.



- Original Message -
From: "John Neiberger" 
To: 
Sent: 19 August 2002 5:13 pm
Subject: How to force a gratuitous ARP [7:51674]


> I'm planning on moving routing responsibilities from a router to our
> 6513 and I *really* need to minimize downtime.  I'll be moving an
> interface IP address from one device to another and this is the default
> gateway for all devices on that network.  The problem is that all
> devices on that subnet will have the wrong MAC address in their ARP
> caches.  I know that if I issue a unicast ping from the new router it
> will force the end host to update its ARP cache but a broadcast ping
> does not accomplish the same thing, probably because most devices ignore
> a broadcast ping, and I don't feel like pinging every device
> individually.
>
> I can't configure HSRP just to gain the benefit of gratuitous ARP;
> simply configuring it will be disruptive and that's what I'm trying to
> avoid.
>
> Any ideas?
>
> Thanks,
> John




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=51681&t=51674
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

VLAN Encapsulation for Fibre [7:51680]

[John Brandis]

Hi All,

What type of frame tagging Protocol is best for Gigabit Ethernet Fiber
Interfaces. I understand that ISL is fine for standard fast ethernet ,
however .10 is perhaps better for this situation.

Thanks for advice on VOIP. Got it all sorted out, thanks to the nice people
at NEC and your comments. 

John
Sydney Australia


**

visit http://www.solution6.com
visit http://www.eccountancy.com - everything for accountants.

UK Customers - http://www.solution6.co.uk

*
This email message (and attachments) may contain information that is
confidential to Solution 6. If you are not the intended recipient you cannot
use, distribute or copy the message or attachments.  In such a case, please
notify the sender by return email immediately and erase all copies of the
message and attachments.  Opinions, conclusions and other information in
this message and attachments that do not relate to the official business of
Solution 6 are neither given nor endorsed by it.
*




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=51680&t=51680
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

RE: question re RED [7:51650]

[Priscilla Oppenheimer]

bergenpeak wrote:
> 
> When RED is running on an interface, do packets get dropped
> before being put into the queue (at the tail, based on ave
> queue size, etc) or do they get dropped when they reach the
> head of the queue?

Incoming packets get dropped before being queued, based on the average queue
size. As you probably know, this is different from the classic "tail drop,"
however, which happens when the queue is full. (Packets at the end or tail
of a stream of packets get dropped because the queue is full.)

RED drops arriving packets probabilistically. The probability of drop
increases as the estimated average queue size grows. Note that RED responds
to a time-averaged queue length, not an instantaneous one. Thus, if the
queue has been mostly empty in the "recent past", RED won't tend to drop
packets (unless the queue overflows, of course!). On the other hand, if the
queue has recently been relatively full, indicating persistent congestion,
newly arriving packets are more likely to be dropped.

I didn't make that up. I got it from RFC 2309. :-)

> 
> Is there any difference in when packets are dropped when WRED
> is being used (instead of RED)?

Here is where it really gets interesting.

>From reading descriptions of RED versus WRED in the excellent book
"Integrating Voice and Data Networks" by Scott Keagy, I would say that WRED
does muck with packets already queued. Whereas RED cares only about the size
of the queue, WRED also has some scheduling capabilities. Here's what he says:

"Unlike RED, which purely manages queue depth, WRED also has some
characteristics of a scheduling algorithm. Instead of explicitly stating
which packets will go next, WRED selects which packets will not go next.
Most scheduling algorithms are "additive" in nature, where the final packet
order is the result of each packet being explicitly placed in order. WRED
starts with a random ordering of packets, and removes packets such that the
desired packet ordering is approached. This "subtractive" process offers a
very limited scheduling functionality. The additive process offers a much
finer control, but the subtractive process uses far fewer system resources."

"Whereas the additive ordering mechanism must actively move (or at least
store a pointer for) each packet into a new reordered buffer, the
subtractive mechanism merely discards packets that violate the ordering
rules. Each packet requires less processing and less buffer resources when
using the subtractive ordering mechanism."

Priscilla


> 
> Thanks
> 
> 




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=51679&t=51650
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Defective Cisco AP340 [7:51678]

[Elijah Savage III]

All,



I have a Cisco access point 340 and only after being booted up for about
5 minutes the Ethernet port seems to lock up. Has anyone seen this
before or recommend anything. I have used a different switch tried hard
coding the speed and duplex but still the same thing happens.




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=51678&t=51678
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

RE: How to force a gratuitous ARP [7:51674]

[Priscilla Oppenheimer]

Can you stand 2 minutes of downtime? What are these devices on the subnet?
If they are Windows machines, you may not have a problem. Just take 2
minutes to make your change and the entry for the default gateway will be
gone from the devices' ARP cache! The timeout for ARP entries for Windows is
only 2 minutes from the testing that I have done. Your mileage may vary
depending on the version of Windows, but I'm pretty sure this is true for
most versions. Also, the timeout can be tuned by changing the ARPCacheLife
setting in the Registry, but it probably hasn't been changed.

Priscilla

John Neiberger wrote:
> 
> I'm planning on moving routing responsibilities from a router
> to our
> 6513 and I *really* need to minimize downtime.  I'll be moving
> an
> interface IP address from one device to another and this is the
> default
> gateway for all devices on that network.  The problem is that
> all
> devices on that subnet will have the wrong MAC address in their
> ARP
> caches.  I know that if I issue a unicast ping from the new
> router it
> will force the end host to update its ARP cache but a broadcast
> ping
> does not accomplish the same thing, probably because most
> devices ignore
> a broadcast ping, and I don't feel like pinging every device
> individually.
> 
> I can't configure HSRP just to gain the benefit of gratuitous
> ARP;
> simply configuring it will be disruptive and that's what I'm
> trying to
> avoid.
> 
> Any ideas?
> 
> Thanks,
> John
> 
> 




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=51677&t=51674
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

RE: AAA Authentication [7:51668]

[Maccubbin, Duncan]

No problem, this will explain it(watch the wrap):

http://www.cisco.com/univercd/cc/td/doc/product/software/ios121/121cgcr/secu
r_c/scprt1/index.htm

-Original Message-
From: Robert D. Cluett
To: [EMAIL PROTECTED]
Sent: 8/19/02 4:29 PM
Subject: AAA Authentication [7:51668]

I am going to install some sort of accounting and privlidge managment on
an
access server.  Essentially I want to restrict certain commands from
being
used and log the amount of time that a user has used the system.  Is
there a
method or application that will best suit this?




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=51676&t=51668
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

How to force a gratuitous ARP [7:51674]

[John Neiberger]

I'm planning on moving routing responsibilities from a router to our
6513 and I *really* need to minimize downtime.  I'll be moving an
interface IP address from one device to another and this is the default
gateway for all devices on that network.  The problem is that all
devices on that subnet will have the wrong MAC address in their ARP
caches.  I know that if I issue a unicast ping from the new router it
will force the end host to update its ARP cache but a broadcast ping
does not accomplish the same thing, probably because most devices ignore
a broadcast ping, and I don't feel like pinging every device
individually.

I can't configure HSRP just to gain the benefit of gratuitous ARP;
simply configuring it will be disruptive and that's what I'm trying to
avoid.

Any ideas?

Thanks,
John




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=51674&t=51674
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

RE: 2500 End-of-Life (CCIE Lab)? [7:51589]

[Nnanna Obuba]

Actually..a minor point of correction. I have 12.1 code running on my
3104s :)

Nnanna Obuba
CCIE # 6586
www.nantech.com/software
Become a BGP Guru for only $75 !!


--- Kelly Cobean  wrote:
> Additionally, from a business and/or testing standpoint, there is no
> reason
> to take the 2500 series routers out of the lab until the IOS-version
> standard exceeds the code-train for these devices.  For example, the
> Cisco
> 3000 (I have a 3104 at home) is basically the same router as a 2503,
> however
> the code stopped for this model at 11.2.  Since the lab is testing
> your
> knowledge of the IOS and not the hardware, I expect we'll see the
> 2500's in
> the lab as long as they can run the IOS being tested.
> 
> Kelly Cobean, CCNP, CCSA, ACSA, MCSE, MCP+I
> Network Engineer
> AT&T Government Solutions, Inc.
> 
> Disclaimer:
> The opinions expressed herein are those of the author alone, and do
> not
> necessarily relfect those of AT&T Government Solutions, Inc., it's
> management, or it's affiliates.
> 
> -Original Message-
> From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf
> Of
> Chuck's Long Road
> Sent: Sunday, August 18, 2002 12:20 PM
> To: [EMAIL PROTECTED]
> Subject: Re: 2500 End-of-Life (CCIE Lab)? [7:51589]
> 
> 
> I don't know this for a fact, but based on some things I have read in
> various places, I believe the CCIE Lab is considered a cost center by
> Cisco
> systems, and as such has to be run as a business, and show profit.
> 
> I.e. for internal accounting purposes, the Labs themselves occupy
> space, and
> are charged rent for that space. The Labs don't get equipment for
> free, but
> have to "buy" it. Salaries not only for the proctors, but for the
> entire
> CCIE certification organization are charged against revenue. This
> means
> folks like Lorne Braddock and Bill Parkhurst, not to mention the
> wonderful
> ladies who patiently answer the emails and doggedly hound you for
> payment
> :->
> 
> If that is the case, then decisions about changing equipment become
> business
> decisions as well as technical decisions.
> 
> One of my idle recreations is speculating on the economics of the
> CCIE Lab.
> I still think it is a money maker, but I don't know all the costs and
> factors.
> 
> 
> ""Robert D. Cluett""  wrote in message
> [EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
> > All, with the 2500 series now at  an "end-of-life" status, will the
> CCIE
> lab
> > soon eliminate this and otherwise turn our current personal lab
> investments
> > in to trash?  Any thoughts on this?
[EMAIL PROTECTED]


=
Nnanna Obuba CCIE # 6586


__
Do You Yahoo!?
HotJobs - Search Thousands of New Jobs
http://www.hotjobs.com




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=51675&t=51589
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

RE: Trafic Shaping [7:51661]

[Brunner Joseph]

you can block kazaa, etc with a simple access list.. all those
fast track network front end clients (kazaa, grokster, etc)
work on tcp/1214

so for me it would be

access-list 101 deny tcp any any eq 1214
access-list 101 permit ip any any


keep adding access-list 101 deny * * eq  as you find new
programs or services the students run to.

I would also put the students in a different ip range (private, public
whatever) than the staff, and deploy traffic shaping.. then
i would limit the students to a fair amount of bandwidth maximum
per second, say 786Kbps, or you can use car
which will make sure the teachers' ip block always get through.
research QOS on cisco's site for this.


Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=51673&t=51661
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: Multiple Supervisors 6509 Chassis; Native IOS [7:51654]

[Maximus]

SUP 1/MSFC 2

- Original Message -
From: "Larry Letterman" 
To: 
Sent: Monday, August 19, 2002 4:02 PM
Subject: RE: Multiple Supervisors 6509 Chassis; Native IOS [7:51654]


> I am assuming that both these are sup1/msfc1 modules...
>
>
>
> Larry Letterman
> Cisco Systems
> [EMAIL PROTECTED]
>
>
>
>
> -Original Message-
> From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of
> Maximus
> Sent: Monday, August 19, 2002 11:49 AM
> To: [EMAIL PROTECTED]
> Subject: Multiple Supervisors 6509 Chassis; Native IOS [7:51654]
>
>
> This is how I learn: =)
> Running IOS on my 6509, I wanted to see the amount of downtime I would
cause
> by deliberately causing the primary SUP to fail by one executing a reload
on
> the primary module and two simply pulling the primary from the chassis.
> heeheehee
>
> What I found was the reload caused approximately 2 minutes downtime.  This
> was because the entire chassis of course booted.  The secondary module did
> however become the primary almost immediately following the reload
command.
> Now I figure that if I just removed the primary blade the system would
> failover immediately and not reboot my 10/100/1000 blades.  To my
surprise,
> this resulted in again 1 minute and 50 seconds downtime and network
> connectivity was restored.  BTW The blades also appeared to reboot.
>
> In terms of High Availability am I missing something?  Considering these
> results what would deter me from just sticking to HSRP.  I am a novice and
> looking for some constructive input.  With that said note the following:
>
> IOS:
> Cisco Catalyst 6000 (R7000) processor with 112640K/18432K bytes of memory.
> R7000 CPU at 300Mhz, Implementation 39, Rev 2.1, 256KB L2, 1024KB L3 Cache
> ROM: System Bootstrap, Version 12.1(11r)E1, RELEASE SOFTWARE (fc1)
> BOOTLDR: c6sup2_rp Software (c6sup2_rp-JSV-M), Version 12.1(11b)E4, EARLY
> DEPLOYMENT RELEASE SOFTWARE (fc1)
>
> Hardware:
> Router>sh mod
> Mod Ports Card Type  Model  Serial
> No.
> --- - -- -- --
--
> ---
>   12  Cat 6k sup 1 Enhanced QoS (Standby)WS-X6K-SUP1A-2GE
>   22  Cat 6k sup 1 Enhanced QoS (Active) WS-X6K-SUP1A-2GE
>   4   16  16 port 1000mb GBIC ethernet   WS-X6416-GBIC
>   9   48  48 port 10/100 mb RJ45 WS-X6348-RJ-45
>
> Comments?
> -Maximus




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=51672&t=51654
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: Call Manager & Windows2000 Advanced Server [7:51659]

[Art Davis]

It's true that you can install Call Mangler on any Win2k Server, but if you
want TAC support I suggest checking out these links:

http://www.cisco.com/warp/public/cc/serv/mkt/sup/svsptl/iptlsv/cmuni_qp.htm

http://www.cisco.com/warp/public/752/qrg/cpqrg4.htm#70271

I've installed CM on the Compaq servers you mentioned, the MCS units
(repackaged Compaq DL380, DL320), and the ICS 7750 (unofficially, not really
favored by Cisco).  They're a little more forgiving on Unity - Compaq and
Dell servers both have Cisco's blessing.

Be careful about running other software, incl. Service Packs.  Cisco
purposely made the support list restrictive.


Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=51671&t=51659
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: How to set default route in 3550 [7:51616]

[John Huston]

The 3550 works like a 2951 or a like any Cisco IOS router.  I assume you
have a
layer three 3550 that has all Gigabit ports in it?  If so then, the default
route would be

0.0.0.0 0.0.0.0 

""Johnzaggat""  wrote in message
[EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
> Hi,
> I am basically trying to do following from cat 5000 but instead do it on
> 3550: Can any one tell me what would be equavalent commands:
>
> set int sc0 3 155.1.1.1 255.255.255.0
> set ip route default 155.1.1.2
>
> How would you accomplish the same for vlan 3 in cat 3550
> Also if I want to access telnet access from host 155.1.1.3 only how would I
> accomplish that on a 3550.
> thanks a lot,
> JZ




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=51670&t=51616
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: Call Manager & Windows2000 Advanced Server [7:51659]

[Brad Ellis]

Hamid,

I'd recommend checking the groupstudy archives.  I think we've beaten this
horse dead a couple times already.

Quick answer, Yes, you can load call mangler on any PC running windows 2000
server.

thanks,
-Brad Ellis
CCIE#5796 (R&S / Security)
Network Learning Inc
[EMAIL PROTECTED]
www.optsys.net (Cisco hardware)
Voice: 702-968-5100
FAX: 702-968-5104

""Hamid""  wrote in message
[EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
> Hi,
>
> Reading the Installation notes of Call Manager, I found that it mentiones
> only Cisco Media Convergence Server (MCS), customer-provided Compaq DL320
or
> DL380, or IBM xSeries server. Is it reaaly limited to these 3 platforms

>
> And by the way, could you Install Call Manager on a Windows 2000 Advanced
> Server or does it force you to use a special Edition?
>
>
> Thanks in advance,
>
> Hamid




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=51665&t=51659
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

RE: Trafic Shaping [7:51661]

[John Neiberger]

I would suggest a rate-limiting device like that available from
Packeteer.  It allows you to rate-limit certain classes of traffic
without changing your router configuration.  It might work really well
for this situation.  You might also try CAR on the incoming interfaces.

This is made more difficult because you don't have a good way to
influence which T1 incoming traffic arrives on.  Sure, you can
load-balance outgoing requests for content but those don't use up much
bandwidth.  It's the incoming traffic that gets you and that's the
hardest to influence.

If you're running BGP, you can advertise the student network addresses
out one interface while advertising the admin staff addresses out the
other.  If you then advertise the aggregate out both links you'll have a
failover should problems arise.  This isn't perfect but it might help. 
You might end up needing to take several different smaller steps in
order to alleviate the problem.

HTH,
John

>>> Chris Sweeting  8/19/02 2:10:33 PM >>>
We have student sharing internet access with our adminstrative staff
and the
the students are down loading mp3's from the internet.  The first thing
we
are trying to to is to route the traffic through different interface.
Well
the root of  problems is the mp3 down load from Kazzar napster etc .
any
suggestion 





-Original Message-
From: John Neiberger [mailto:[EMAIL PROTECTED]] 
Sent: Monday, August 19, 2002 4:10 PM
To: [EMAIL PROTECTED]; [EMAIL PROTECTED] 
Subject: Re: Trafic Shaping [7:51661]


Policy-based routing would allow you to accomplish this goal.  Look up
PBR on CCO to get configuration details.  Something like this would be
easy to setup.

One question:  what specifically are you load-balancing?  Web servers
offering up content to outside users, or internal users accessing web
servers on the outside?  If it's the former then you might have some
success; if it's the latter then it's almost pointless because the
greatest amount of traffic would be incoming, not outgoing, and you
have
no control over that.

Regardless, depending on what you're actually trying to accomplish,
PBR
may not be the best tool.  We'd need more details to give a better
answer.

Regards,
John

>>> "Chris Sweeting"  8/19/02 1:51:57 PM >>>
I have 2 T1 going to the Internet on a 2600 Cisco.  I want to load
balance
in a way that a certain range go out one port and another range go out
another port. Any suggestions




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=51669&t=51661
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

AAA Authentication [7:51668]

[Robert D. Cluett]

I am going to install some sort of accounting and privlidge managment on an
access server.  Essentially I want to restrict certain commands from being
used and log the amount of time that a user has used the system.  Is there a
method or application that will best suit this?




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=51668&t=51668
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

RE: 2500 End-of-Life (CCIE Lab)? [7:51589]

[Kelly Cobean]

Additionally, from a business and/or testing standpoint, there is no reason
to take the 2500 series routers out of the lab until the IOS-version
standard exceeds the code-train for these devices.  For example, the Cisco
3000 (I have a 3104 at home) is basically the same router as a 2503, however
the code stopped for this model at 11.2.  Since the lab is testing your
knowledge of the IOS and not the hardware, I expect we'll see the 2500's in
the lab as long as they can run the IOS being tested.

Kelly Cobean, CCNP, CCSA, ACSA, MCSE, MCP+I
Network Engineer
AT&T Government Solutions, Inc.

Disclaimer:
The opinions expressed herein are those of the author alone, and do not
necessarily relfect those of AT&T Government Solutions, Inc., it's
management, or it's affiliates.

-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of
Chuck's Long Road
Sent: Sunday, August 18, 2002 12:20 PM
To: [EMAIL PROTECTED]
Subject: Re: 2500 End-of-Life (CCIE Lab)? [7:51589]


I don't know this for a fact, but based on some things I have read in
various places, I believe the CCIE Lab is considered a cost center by Cisco
systems, and as such has to be run as a business, and show profit.

I.e. for internal accounting purposes, the Labs themselves occupy space, and
are charged rent for that space. The Labs don't get equipment for free, but
have to "buy" it. Salaries not only for the proctors, but for the entire
CCIE certification organization are charged against revenue. This means
folks like Lorne Braddock and Bill Parkhurst, not to mention the wonderful
ladies who patiently answer the emails and doggedly hound you for payment
:->

If that is the case, then decisions about changing equipment become business
decisions as well as technical decisions.

One of my idle recreations is speculating on the economics of the CCIE Lab.
I still think it is a money maker, but I don't know all the costs and
factors.


""Robert D. Cluett""  wrote in message
[EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
> All, with the 2500 series now at  an "end-of-life" status, will the CCIE
lab
> soon eliminate this and otherwise turn our current personal lab
investments
> in to trash?  Any thoughts on this?




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=51666&t=51589
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Filtering [7:51667]

[Chris Sweeting]

What is the best tools for fiterring mp3's on a 2600 router in general




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=51667&t=51667
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: Trafic Shaping [7:51661]

[John Neiberger]

Policy-based routing would allow you to accomplish this goal.  Look up
PBR on CCO to get configuration details.  Something like this would be
easy to setup.

One question:  what specifically are you load-balancing?  Web servers
offering up content to outside users, or internal users accessing web
servers on the outside?  If it's the former then you might have some
success; if it's the latter then it's almost pointless because the
greatest amount of traffic would be incoming, not outgoing, and you have
no control over that.

Regardless, depending on what you're actually trying to accomplish, PBR
may not be the best tool.  We'd need more details to give a better
answer.

Regards,
John

>>> "Chris Sweeting"  8/19/02 1:51:57 PM >>>
I have 2 T1 going to the Internet on a 2600 Cisco.  I want to load
balance
in a way that a certain range go out one port and another range go out
another port. Any suggestions




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=51664&t=51661
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: Multiple Supervisors 6509 Chassis; Native IOS [7:51654]

[Maximus]

thing about running the native IOS on the 6509 is the IOS autmatically
configures the Primary and Secondary supervisors for me.  Any change to the
primary config or say Active blade is immediately applied to the secondary.
Also note the secondary module is not available to configure while the
primary is active.  This means no console nor any other sort of access is
available.  It just remains say INACTIVE while the primary is online.

- Original Message -
From: Turpin, Mark
To: 'Maximus'
Sent: Monday, August 19, 2002 3:17 PM
Subject: RE: Multiple Supervisors 6509 Chassis; Native IOS [7:51654]


It would really help if you pasted your high availability config.
-Original Message-
From: Maximus [mailto:[EMAIL PROTECTED]]
Sent: Monday, August 19, 2002 1:49 PM
To:
Subject: Multiple Supervisors 6509 Chassis; Native IOS [7:51654]


This is how I learn: =)
Running IOS on my 6509, I wanted to see the amount of downtime I would cause
by deliberately causing the primary SUP to fail by one executing a reload on
the primary module and two simply pulling the primary from the chassis.
heeheehee
What I found was the reload caused approximately 2 minutes downtime.  This
was because the entire chassis of course booted.  The secondary module did
however become the primary almost immediately following the reload command.
Now I figure that if I just removed the primary blade the system would
failover immediately and not reboot my 10/100/1000 blades.  To my surprise,
this resulted in again 1 minute and 50 seconds downtime and network
connectivity was restored.  BTW The blades also appeared to reboot.
In terms of High Availability am I missing something?  Considering these
results what would deter me from just sticking to HSRP.  I am a novice and
looking for some constructive input.  With that said note the following:
IOS:
Cisco Catalyst 6000 (R7000) processor with 112640K/18432K bytes of memory.
R7000 CPU at 300Mhz, Implementation 39, Rev 2.1, 256KB L2, 1024KB L3 Cache
ROM: System Bootstrap, Version 12.1(11r)E1, RELEASE SOFTWARE (fc1)
BOOTLDR: c6sup2_rp Software (c6sup2_rp-JSV-M), Version 12.1(11b)E4, EARLY
DEPLOYMENT RELEASE SOFTWARE (fc1)
Hardware:
Router>sh mod
Mod Ports Card Type  Model  Serial
No.
--- - -- -- 
---
  12  Cat 6k sup 1 Enhanced QoS (Standby)WS-X6K-SUP1A-2GE
  22  Cat 6k sup 1 Enhanced QoS (Active) WS-X6K-SUP1A-2GE
  4   16  16 port 1000mb GBIC ethernet   WS-X6416-GBIC
  9   48  48 port 10/100 mb RJ45 WS-X6348-RJ-45
Comments?
-Maximus
 "The information transmitted is intended only for the person or entity to
which it is addressed and may contain confidential and/or privileged
material. Any review, retransmission, dissemination or other use of, or
taking of any action in reliance upon, this information by persons or
entities other than the intended recipient is prohibited. If you received
this in error, please contact the sender and delete the material from all
computers."




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=51663&t=51654
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: 2500 End-of-Life (CCIE Lab)? [7:51589]

[Priscilla Oppenheimer]

Well, a used '56 Chevy Bel Aire might not be worth much. But I'd take a used
'57 Chevy Bel Aire any day. ;-) They were a thing of beauty.

Seriously Old equipment isn't a waste of money while learning (assuming
you get a good price and the equipment actually works). I have MGS routers.
I get a little annoyed with them when I can't use 12.x features, but I bet I
can do a good portion of the CCIE lab with them.

Priscilla

Chuck's Long Road wrote:
> 
> ""Tim Ross""  wrote in message
> [EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
> > Have you been shopping eBay lately? Our personal lab
> investments are
> already
> > trash.
> 
> 
> CL: all that means is that the lab rat pool has exceeded
> equilibrium, and
> that the supply of used stuff exceeds the demand of the
> newcomers to the rat
> race. happens in every Ponzi scheme.
> 
> CL: used technology has never been much of an investment
> anyway. Used
> Packards. Used Corvettes. Used Bentleys. Even used 56 Chevy Bel
> Air's. Used
> Honus Wagner and Ty Cobb baseball cards. But never used
> computers or used
> routers or used television sets. How's the Billy Beer market
> doing?
> 
> >
> > Tim
> >
> > - Original Message -
> > From: "Robert D. Cluett"
> > To:
> > Sent: Sunday, August 18, 2002 8:27 AM
> > Subject: 2500 End-of-Life (CCIE Lab)? [7:51589]
> >
> >
> > > All, with the 2500 series now at  an "end-of-life" status,
> will the CCIE
> > lab
> > > soon eliminate this and otherwise turn our current personal
> lab
> > investments
> > > in to trash?  Any thoughts on this?
> 
> 




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=51653&t=51589
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

RE: Multiple Supervisors 6509 Chassis; Native IOS [7:51654]

[Larry Letterman]

I am assuming that both these are sup1/msfc1 modules...



Larry Letterman
Cisco Systems
[EMAIL PROTECTED] 




-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of
Maximus
Sent: Monday, August 19, 2002 11:49 AM
To: [EMAIL PROTECTED]
Subject: Multiple Supervisors 6509 Chassis; Native IOS [7:51654]


This is how I learn: =)
Running IOS on my 6509, I wanted to see the amount of downtime I would cause
by deliberately causing the primary SUP to fail by one executing a reload on
the primary module and two simply pulling the primary from the chassis.
heeheehee

What I found was the reload caused approximately 2 minutes downtime.  This
was because the entire chassis of course booted.  The secondary module did
however become the primary almost immediately following the reload command.
Now I figure that if I just removed the primary blade the system would
failover immediately and not reboot my 10/100/1000 blades.  To my surprise,
this resulted in again 1 minute and 50 seconds downtime and network
connectivity was restored.  BTW The blades also appeared to reboot.

In terms of High Availability am I missing something?  Considering these
results what would deter me from just sticking to HSRP.  I am a novice and
looking for some constructive input.  With that said note the following:

IOS:
Cisco Catalyst 6000 (R7000) processor with 112640K/18432K bytes of memory.
R7000 CPU at 300Mhz, Implementation 39, Rev 2.1, 256KB L2, 1024KB L3 Cache
ROM: System Bootstrap, Version 12.1(11r)E1, RELEASE SOFTWARE (fc1)
BOOTLDR: c6sup2_rp Software (c6sup2_rp-JSV-M), Version 12.1(11b)E4, EARLY
DEPLOYMENT RELEASE SOFTWARE (fc1)

Hardware:
Router>sh mod
Mod Ports Card Type  Model  Serial
No.
--- - -- -- 
---
  12  Cat 6k sup 1 Enhanced QoS (Standby)WS-X6K-SUP1A-2GE
  22  Cat 6k sup 1 Enhanced QoS (Active) WS-X6K-SUP1A-2GE
  4   16  16 port 1000mb GBIC ethernet   WS-X6416-GBIC
  9   48  48 port 10/100 mb RJ45 WS-X6348-RJ-45

Comments?
-Maximus




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=51662&t=51654
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Trafic Shaping [7:51661]

[Chris Sweeting]

I have 2 T1 going to the Internet on a 2600 Cisco.  I want to load balance
in a way that a certain range go out one port and another range go out
another port. Any suggestions




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=51661&t=51661
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

RE: ISDN Cable for lab? [7:51651]

[Jim Brown]

You probably won't be able to pass the lab without practice on a simulator
or the real thing.

-Original Message-
From: Robert D. Cluett [mailto:[EMAIL PROTECTED]] 
Sent: Monday, August 19, 2002 1:10 PM
To: [EMAIL PROTECTED]
Subject: Re: ISDN Cable for lab? [7:51651]


is it really worth it?

""Johnny Routin""  wrote in message
[EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
> No, you need an isdn simulator.
>
> --
> Johnny Routin
>
>
>
>
> ""Robert D. Cluett""  wrote in message
> [EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
> > Can a straight through cat 5 cable be used for ISDN connectivity in a
lab
> > (between 2 2503's)?




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=51660&t=51651
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Call Manager & Windows2000 Advanced Server [7:51659]

[Hamid]

Hi,

Reading the Installation notes of Call Manager, I found that it mentiones
only Cisco Media Convergence Server (MCS), customer-provided Compaq DL320 or
DL380, or IBM xSeries server. Is it reaaly limited to these 3 platforms 

And by the way, could you Install Call Manager on a Windows 2000 Advanced
Server or does it force you to use a special Edition?


Thanks in advance,

Hamid




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=51659&t=51659
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: ISDN Cable for lab? [7:51651]

[Robert D. Cluett]

is it really worth it?

""Johnny Routin""  wrote in message
[EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
> No, you need an isdn simulator.
>
> --
> Johnny Routin
>
>
>
>
> ""Robert D. Cluett""  wrote in message
> [EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
> > Can a straight through cat 5 cable be used for ISDN connectivity in a
lab
> > (between 2 2503's)?




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=51658&t=51651
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

RE: Simple (silly) question on PING [7:51580]

[Priscilla Oppenheimer]

cebuano wrote:
> 
> Just want to follow up on my first question. It turned out to
> be a
> misbehaving interface, i.e. Layer 1 issue. You do get a reply
> with
> a broadcast Ping from each host in the subnet.
> However, in spite of the one router interface giving me issues,
> I'm
> Still trying to TRACE the logic as to how a second router can
> elicit
> a PING reply from the first router when Router1 cannot initiate
> the
> PING, in spite of the fact that both have each other's ARP
> table
> Aware of each other. If only the "debug ip icmp" would give you
> an
> Error output when the PINGs don't succeed.

The "debug ip packet" command might give you more useful data. It does
output data even when the interface fails to actually send the packet.

Also, put a protocol analyzer on the network. Analyzers make better
troubleshooting tools than routers do.

You said you can ping RtrA's e0 from RtrB, but can't ping RtrB's e0 from
RtrA. This is indeed strange. Once you have fixed the physical-layer issues,
check for access lists. That's one of the few things I can think of that
would cause this problem. Also, check subnet masks. A router interface could
receive a ping request and reply to it just fine, even its subnet mask is
wrong. But it might fail to send a ping correctly if its subnet mask is wrong.

Actual behavior when there are L1-L3 problems and misconfigurations can be
pretty strange. It's often a waste of time to try to figure out the logic
because the behavior may be inherently illogical under error conditions.
Unless your job is to write the error-handling software routines, why ask
why? Just fix the problem. That's the advice I have been giving to network
admins for years and it has often helped them be more efficient. :-)

Priscilla



> Thanks. 
> Elmer
> P.S. Kevin, I wish I had vocabulary like yours :->
> 
> -Original Message-
> From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] On
> Behalf Of
> Kevin Cullimore
> Sent: Sunday, August 18, 2002 3:08 PM
> To: [EMAIL PROTECTED]
> Subject: Re: Simple (silly) question on PING [7:51580]
> 
> - Original Message -
> From: "cebuano" 
> To: 
> Sent: 17 August 2002 11:35 pm
> Subject: Simple (silly) question on PING [7:51580]
> 
> 
> > Hi all,
> > Just two simple but annoying PING questions.
> > 1. Why is it that on a broadcast medium, you can issue ping
> > 224.0.0.5 and have all OSPF routers respond (according to
> CCO), but
> when
> > I do a simple ping 192.168.10.255 on the subnet, no replies
> are seen
> > from all the interfaces on this subnet? I know you'll say my
> brain is
> > getting fried from too much "rack exposure".
> 
> This is one of those cases that underscore the extent to which
> communication
> protocol specifications sometimes define a range of acceptable
> behavior
> in
> the face of a given set of conditions rather than a single
> acceptable
> option. In some cases, the RFCs/Standards don't provide a
> reccomendation
> for
> how a given implementation should behave, leading to real-world
> interoperability issues. A more obvious case where these
> considerations
> matter involve the inexplicably persistent notion that distinct
> implementations of a given standard should behave identically
> given
> identical circumstances. In this case, whether or not a given
> icmp/ip
> implementation responds to echo requests addressed to a layer 3
> broadcast
> address is left up to the vendor (which used to provide a
> quick-n-dirty
> way
> of performing simplistic os fingerprinting within a given
> broadcast
> domain),
> based on the use of the may keyword when describing within RFC
> 1122 when
> describing the receiving host's behavior during that situation.
> 
> The key here is that the guidelines covering behavior in
> response to
> received multicast & broadcast traffic are separate, allowing
> for
> distinct
> behavior, which may, in turn, reflect different needs/goals to
> be
> addressed
> when dealing with the two different (though conceptually
> related) types
> of
> traffic.
> 
> 
> 
> 
> 
> > 2. Using a crossover to connect two Ethernet interfaces, I
> can ping
> > say RtrA's e0 from RtrB, but can't ping RtrB's e0 from RtrA.
> I know
> some
> > of you on the list have seen this before and have had a really
> > crystal-clear explanation for this.
> >
> > TIA,
> > Elmer
> 
> 




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=51657&t=51580
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Weird syslog. [7:51656]

[Leo Song]

Would anyone help on this? Somehow I got the following so weird logging
messages on my 1720 router, thanks in advance.

#sh log
Syslog logging: enabled (0 messages dropped, 1 flushes, 0 overruns)
Console logging: level debugging, 190429 messages logged
Monitor logging: level debugging, 335 messages logged
Logging to: vty7(0)
Buffer logging: level debugging, 3 messages logged
Trap logging: level informational, 85 message lines logged
  
Log Buffer (4096 bytes):

^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@
^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@
^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@
^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@
^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@
^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@
^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@^@

Leo Song
System Engineer




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=51656&t=51656
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

RE: IP Multicast. [7:51648]

[Larry Letterman]

for a start you can get the book on IP multicast from
Cisco Press by Beau Williamson...It covers most of it
in detail...


Larry Letterman
Cisco Systems
[EMAIL PROTECTED] 




-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of
Jose Tomas Pinal Salvador
Sent: Monday, August 19, 2002 11:17 AM
To: [EMAIL PROTECTED]
Subject: IP Multicast. [7:51648]


Hello Group.

Does anybody know where can I find a complete information about the IP
Multicast tecnoloy?

Thanks.


_
Join the worlds largest e-mail service with MSN Hotmail.
http://www.hotmail.com




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=51655&t=51648
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Multiple Supervisors 6509 Chassis; Native IOS [7:51654]

[Maximus]

This is how I learn: =)
Running IOS on my 6509, I wanted to see the amount of downtime I would cause
by deliberately causing the primary SUP to fail by one executing a reload on
the primary module and two simply pulling the primary from the chassis.
heeheehee

What I found was the reload caused approximately 2 minutes downtime.  This
was because the entire chassis of course booted.  The secondary module did
however become the primary almost immediately following the reload command.
Now I figure that if I just removed the primary blade the system would
failover immediately and not reboot my 10/100/1000 blades.  To my surprise,
this resulted in again 1 minute and 50 seconds downtime and network
connectivity was restored.  BTW The blades also appeared to reboot.

In terms of High Availability am I missing something?  Considering these
results what would deter me from just sticking to HSRP.  I am a novice and
looking for some constructive input.  With that said note the following:

IOS:
Cisco Catalyst 6000 (R7000) processor with 112640K/18432K bytes of memory.
R7000 CPU at 300Mhz, Implementation 39, Rev 2.1, 256KB L2, 1024KB L3 Cache
ROM: System Bootstrap, Version 12.1(11r)E1, RELEASE SOFTWARE (fc1)
BOOTLDR: c6sup2_rp Software (c6sup2_rp-JSV-M), Version 12.1(11b)E4, EARLY
DEPLOYMENT RELEASE SOFTWARE (fc1)

Hardware:
Router>sh mod
Mod Ports Card Type  Model  Serial
No.
--- - -- -- 
---
  12  Cat 6k sup 1 Enhanced QoS (Standby)WS-X6K-SUP1A-2GE
  22  Cat 6k sup 1 Enhanced QoS (Active) WS-X6K-SUP1A-2GE
  4   16  16 port 1000mb GBIC ethernet   WS-X6416-GBIC
  9   48  48 port 10/100 mb RJ45 WS-X6348-RJ-45

Comments?
-Maximus




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=51654&t=51654
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: ISDN Cable for lab? [7:51651]

[Johnny Routin]

No, you need an isdn simulator.

--
Johnny Routin




""Robert D. Cluett""  wrote in message
[EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
> Can a straight through cat 5 cable be used for ISDN connectivity in a lab
> (between 2 2503's)?




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=51652&t=51651
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

ISDN Cable for lab? [7:51651]

[Robert D. Cluett]

Can a straight through cat 5 cable be used for ISDN connectivity in a lab
(between 2 2503's)?




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=51651&t=51651
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

question re RED [7:51650]

[bergenpeak]

When RED is running on an interface, do packets get dropped
before being put into the queue (at the tail, based on ave
queue size, etc) or do they get dropped when they reach the
head of the queue?

Is there any difference in when packets are dropped when WRED
is being used (instead of RED)?

Thanks




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=51650&t=51650
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

RE: Traceroute IP displays twice (previous post by Pri [7:51633]

[Priscilla Oppenheimer]

Hi Mark, etc.

I never got a satisfactory explanation for my results with Trace Route. In
my case, a particular router was claiming to be the first hop and the second
hop. That's different from what we're seeing in the current question, where
two different routers are claiming to be the first hop (due to load
balancing).

Here are the syptoms:

r1#trace 172.16.2.2

Type escape sequence to abort.
Tracing the route to 172.16.2.2

   1 172.16.1.3 12 msec 12 msec 12 msec
   2 172.16.1.3 12 msec 8 msec 8 msec
   3 172.16.2.2 24 msec 20 msec 20 msec

It's a frame-relay hub-and-spoke topology. I'm on one spoke trying to trace 
to another spoke through the hub. The trace succeeds. The network is 
working, but what's with the router replying twice? (It happens if I go the 
other way too.)

The hub router is 172.16.1.3. Why is it sending back the dest unreachable 
twice?

The topology is:

R1--R3-R2


Here are my configs:

r1
ip subnet-zero
no ip icmp rate-limit unreachable
!
interface Loopback0
  ip address 192.168.255.1 255.255.255.255
!
interface Ethernet0/0
  description to Cat 5K 3/1
  ip address 10.10.1.1 255.255.255.0
  half-duplex
!
interface TokenRing0/0
  description in ring 1
  ip address 192.168.1.1 255.255.255.0
  ring-speed 16
!
interface Serial1/0
  ip address 172.16.1.1 255.255.255.0
  encapsulation frame-relay
  ip ospf network point-to-point
  frame-relay interface-dlci 133
  frame-relay lmi-type ansi
!
router ospf 1
  log-adjacency-changes
  network 10.10.1.0 0.0.0.255 area 0.0.0.0
  network 172.16.0.0 0.0.255.255 area 0.0.0.0
  network 192.168.1.0 0.0.0.255 area 0.0.0.0
  network 192.168.255.1 0.0.0.0 area 0.0.0.0
!
ip classless



R3
ip subnet-zero
no ip icmp rate-limit unreachable
!
interface Loopback0
  ip address 192.168.255.3 255.255.255.255
!
interface Ethernet0/0
  description link to cat5k 3/3
  ip address 10.10.3.1 255.255.255.0
  half-duplex
!
interface Serial1/0
  description Frame relay
  no ip address
  encapsulation frame-relay
  no fair-queue
  no frame-relay inverse-arp
  frame-relay lmi-type ansi
!
interface Serial1/0.1 point-to-point
  description link to R1
  ip address 172.16.1.3 255.255.255.0
  ip ospf network point-to-point
  frame-relay interface-dlci 331
!
interface Serial1/0.2 point-to-point
  description link to R2
  ip address 172.16.2.3 255.255.255.0
  ip ospf network point-to-point
  frame-relay interface-dlci 332
!
router ospf 1
  log-adjacency-changes
  network 10.10.3.0 0.0.0.255 area 0.0.0.0
  network 172.16.0.0 0.0.255.255 area 0.0.0.0
  network 192.168.255.3 0.0.0.0 area 0.0.0.0
!
ip classless


R2
!
hostname r2
!
ip subnet-zero
no ip icmp rate-limit unreachable
!
interface Loopback0
  ip address 192.168.255.2 255.255.255.255
!
interface Ethernet0/0
  description to Cat 5K 3/2
  ip address 10.10.2.1 255.255.255.0
  half-duplex
!
interface TokenRing0/0
  ip address 192.168.2.1 255.255.255.0
  ring-speed 16
!
interface Serial1/0
  ip address 172.16.2.2 255.255.255.0
  encapsulation frame-relay
  ip ospf network point-to-point
  no fair-queue
  frame-relay interface-dlci 233
  frame-relay lmi-type ansi
!
router ospf 1
  log-adjacency-changes
  network 10.10.2.0 0.0.0.255 area 0.0.0.0
  network 172.16.0.0 0.0.255.255 area 0.0.0.0
  network 192.168.2.0 0.0.0.255 area 0.0.0.0
  network 192.168.255.2 0.0.0.0 area 0.0.0.0
ip classless


There's a Cisco router "in the cloud" acting as a Frame Relay switch, 
switching from DLCIs. I don't have its config. (This was a virtual lab). 
Thanks for any hints you can give me.

Priscilla



Priscilla Oppenheimer
http://www.priscilla.com


Vicuna, Mark wrote:
> 
> While we are on the topic.. I remember a post by Priscilla a
> few months
> ago now (I think) with a traceroute showing 2 path entries of
> the same
> ip.  The result of the traceroute was not able to be reproduced
> (I
> think).   Anyone remember what the outcome of this was?  
> 
> 
> The archives are not searchable at this point in time.
> 
> 
> Cheers
> Mark.
> 
> > -Original Message-
> > From: Robert D. Cluett [mailto:[EMAIL PROTECTED]]
> > Sent: Monday, 19 August 2002 19:10
> > To: [EMAIL PROTECTED]
> > Subject: Re: traceroute IP displays twice [7:51622]
> > 
> > 
> > Thanks Raj!
> > 
> > ""Raj Santiago""  wrote in message
> > [EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
> > > i should have included this part as well to the previous
> post :
> > >
> > > >1 172.26.1.13 20 msec
> > >172.26.1.2 20 msec
> > >172.26.1.13 20 msec
> > >
> > > The above indicates, of the two possible paths the router 
> > has [172.26.1.2,
> > > 172.26.1.13] it has chosen the path 172.26.1.13.
> 
> 




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=51649&t=51633
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

IP Multicast. [7:51648]

[Jose Tomás Pinal Salvador]

Hello Group.

Does anybody know where can I find a complete information about the IP 
Multicast tecnoloy?

Thanks.


_
Join the worlds largest e-mail service with MSN Hotmail. 
http://www.hotmail.com




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=51648&t=51648
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

CSS Content Replication [7:51647]

[John Neiberger]

Does anyone have their CSS configured for Content Staging and
Replication?  I'm still researching a new method to push out new content
to our web servers without having to manually move the files to each
server individually.  I've checked into a few methods so far but most
actually make the process more difficult because of our specific
environment.  

I see that the CSS can replicate content from a Publisher out to
Subscriber servers, and this seems to be a potential solution to our
problem.  If I could manually move the files once and let the CSS mirror
the files to the other servers I'd be quite happy.  However, nothing is
ever that simple and I'd like to see if anyone else is using it
successfully?

Anyone?  Anyone?  Bueller?

Thanks,
John




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=51647&t=51647
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

RE: OSPF on secondary IP addresses [7:51525]

[Thorne Gene]

I looked at the doc for the "network area" command for 11.3, 12.0, 12.1 and
12.2. They all appear to treat secondary addresses the same way--the
secondary network is not advertised if the primary network/area statement is
deleted.


Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=51646&t=51525
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

RE: ISDN-SIMULATION [7:51598]

[Vicuna, Mark]

$700?  that's around $300 cheaper than the PDS/Blink-2's.  Anyone
recommend the Virtual Console product?
Looks like the budget it more achievable with this one.   ;)

Cheers  

> -Original Message-
> From: Mark Smith [mailto:[EMAIL PROTECTED]]
> Sent: Monday, 19 August 2002 12:31
> To: [EMAIL PROTECTED]
> Subject: Re: ISDN-SIMULATION [7:51598]
> 
> 
> I've not tried this one but this is the cheapest simulator I've seen. 
> 
> http://www.vconsole.net/simulator_isdn.html
> 
> Any one used this one? There are several others but all 
> others I've seen are
> more than $1000. Maybe they have other functionality that 
> this one doesn't
> but I can't imagine much else but a simple 2BRI ISDN 
> connection that I'd need.
> 
> Here's another one:
> 
> http://www.cheapisdn.com/
> (I usually see this one sell for about $1K on eBay)
> 
> And a couple on eBay currently:
> 
> http://cgi.ebay.com/ws/eBayISAPI.dll?ViewItem&item=2046342178
> http://cgi.ebay.com/ws/eBayISAPI.dll?ViewItem&item=2046745550
> http://cgi.ebay.com/ws/eBayISAPI.dll?ViewItem&item=2046406202
> 
> Not exactly cheap and I'm sure that they're not what you were 
> looking for
> but they'll do what you are looking for.
> 
> With any of these you can use the S/T ports that you have 
> available on your
> existing hardware.
>  
> 
> Quoting crow :
> 
> > Hi Group,
> > need some advise what would be the best way to
> > simulate a isdn connecten.
> > (also the cheapest plz)
> > my current lab include: 2x2501, 1x2503(1
> > BRIS/T),1x4000,1x4000m(8 briS/T)
> > maybe some of you are having some experience and want
> > to help me.
> > 
> > Thx in advance
> > Andy
> > [EMAIL PROTECTED]




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=51619&t=51598
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: 2500 End-of-Life (CCIE Lab)? [7:51589]

[Chuck's Long Road]

""Tim Ross""  wrote in message
[EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
> Have you been shopping eBay lately? Our personal lab investments are
already
> trash.


CL: all that means is that the lab rat pool has exceeded equilibrium, and
that the supply of used stuff exceeds the demand of the newcomers to the rat
race. happens in every Ponzi scheme.

CL: used technology has never been much of an investment anyway. Used
Packards. Used Corvettes. Used Bentleys. Even used 56 Chevy Bel Air's. Used
Honus Wagner and Ty Cobb baseball cards. But never used computers or used
routers or used television sets. How's the Billy Beer market doing?

>
> Tim
>
> - Original Message -
> From: "Robert D. Cluett"
> To:
> Sent: Sunday, August 18, 2002 8:27 AM
> Subject: 2500 End-of-Life (CCIE Lab)? [7:51589]
>
>
> > All, with the 2500 series now at  an "end-of-life" status, will the CCIE
> lab
> > soon eliminate this and otherwise turn our current personal lab
> investments
> > in to trash?  Any thoughts on this?




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=51620&t=51589
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

802.1x Security on a 3550 [7:51645]

[Brian Zeitz]

Has anyone heard/used this yet? It allows you to authenticate users/Pass
with a Radius Server using a 3550 switch (or higher end cat switch).
This is an awesome idea to implement security on the LAN. I am planning
on implementing it soon, don't get too excited, because unless you are
running Windows XP clients, you cant use 802.1x yet. Windows 2000 will
also support 802.1x soon. I happen to run all my clients on XP, if you
are not on XP you might want to start thinking about it. Windows XP is
the only client that supports 802.1x. This could be another great test
question for the CSS1 betas. Man I love these 3550 switches, and XP :-)



Brian




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=51645&t=51645
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Taking 640-604 Tommorrow [7:51644]

[Clark, John]

Any last minute advice or things I may need to review? Also if anyone is
taking the exam soon and wants to review together you can contact me via AIM
(Kewlb19) and we can review for the exam. 

to study I have used:

Network Academy Semester 7
Cisco Press CCNP Switching Exam Certification Guide (for 504 exam)
Transcender for 504 exam
Cisco Press Exam Software for 504 exam

Thanks,

Brian Clark - A+, Net+, CCA, MCSA, MCSE, CCNA
Network Engineer/Oracle Web Developer
Expanets Direct
Direct Number: 601-936-3123




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=51644&t=51644
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

RE: ISDN Help needed [7:51634]

[Shane Stockman]

I configured the following on the NAS and it then automaically worked.

aaa authentication login default local
aaa authentication login NO_AUTHEN none
aaa authentication ppp default local
aaa authorization network default local none
aaa session-id common


>From: "Claudia Walter" 
>To: "Shane Stockman" 
>Subject: RE: ISDN Help needed [7:51634]
>Date: Mon, 19 Aug 2002 13:52:07 +0100
>
>Hi Shane,
>
>mmmh, on one side you have configured the username and password under the
>global config...
>
>on ZA108005D you have done it ok:
>
>username FD_PMBURG password 0 bmw2002
>
>but on FD_PMBURG you have done it under the dialer ...
>
>ppp authentication chap callin
>ppp chap hostname FD_PMBURG
>ppp chap password 0 bmw2002
>
>As far as I understand that should work but maybe just for testing you
>should try to configure the user name there as well in the global config?
>
>This could be very well a software issue...
>
>NB: Please keep on sending your reply to the alias that the others can also
>benefit from this discussion.
>
>A good page on CCO about ISDN trouble-shooting is here...
>
>http://www.cisco.com/warp/public/779/smbiz/service/troubleshooting/ts_isdn.h
>tm
>
>Cheers,
>
>Claudia
>
>
>
>-Original Message-
>From: Shane Stockman [mailto:[EMAIL PROTECTED]]
>Sent: 19 August 2002 12:29
>To: [EMAIL PROTECTED]
>Subject: RE: ISDN Help needed [7:51634]
>
>
>Here is the NAS config - interface dialer 3
>
>version 12.2
>service timestamps debug datetime msec localtime
>service timestamps log datetime msec localtime
>no service password-encryption
>!
>hostname ZA108005D
>!
>logging buffered 32768 debugging
>no logging console
>enable password St1tch_12
>!
>
>username FD_PMBURG password 0 bmw2002
>memory-size iomem 10
>clock timezone za 2
>modem country mica south-africa
>ip subnet-zero
>!
>!
>no ip domain-lookup
>ip host FD_PMBURG 172.20.169.2
>!
>isdn switch-type primary-net5
>chat-script callback ABORT ERROR ABORT BUSY "" "ATDT \T" TIMEOUT 60 CONNECT
>\C
>chat-script offhook "" "ATH1" OK
>!
>!
>!
>!
>!
>!
>!
>fax interface-type fax-mail
>mta receive maximum-recipients 0
>!
>controller E1 2/0
>pri-group timeslots 1-31
>!
>controller E1 2/1
>pri-group timeslots 1-31
>!
>!
>!
>!
>interface Loopback1
>ip address 172.20.60.1 255.255.255.0
>!
>interface FastEthernet0/0
>speed 100
>full-duplex
>!
>interface FastEthernet0/1
>description
>ip address
>speed 100
>full-duplex
>standby 109 ip
>!
>interface FastEthernet2/0
>no ip address
>shutdown
>duplex auto
>speed auto
>!
>interface Serial2/0:15
>no ip address
>encapsulation ppp
>no logging event link-status
>dialer pool-member 1
>isdn switch-type primary-net5
>isdn incoming-voice modem
>no fair-queue
>ppp authentication pap chap
>!
>interface Serial2/1:15
>no ip address
>encapsulation ppp
>no logging event link-status
>dialer pool-member 1
>isdn switch-type primary-net5
>isdn incoming-voice modem
>no fair-queue
>ppp authentication pap chap
>!
>
>interface Group-Async1
>ip unnumbered FastEthernet0/1
>encapsulation ppp
>dialer in-band
>dialer idle-timeout 1800
>dialer-group 1
>autodetect encapsulation ppp
>async mode interactive
>peer default ip address pool PRI
>ppp callback permit
>ppp authentication chap pap
>group-range 97 126
>!
>interface Dialer3
>bandwidth 64
>ip address 172.20.61.13 255.255.255.252
>ip broadcast-address 172.20.61.15
>encapsulation ppp
>no ip route-cache
>no ip mroute-cache
>dialer pool 1
>dialer remote-name FD_PMBURG
>dialer idle-timeout 180
>dialer-group 1
>ppp authentication pap chap
>ppp chap hostname ZA108005D
>ppp chap password 0 bmw2002
>ppp multilink
>multilink max-links 2
>multilink load-threshold 180 either
>!
>router eigrp 328
>redistribute static
>network 172.20.0.0
>no auto-summary
>no eigrp log-neighbor-changes
>!
>ip classless
>ip http server
>ip pim bidir-enable
>!
>!
>access-list 101 deny   udp any any eq netbios-ns
>access-list 101 deny   udp any any eq netbios-dgm
>access-list 101 deny   udp any any eq 135
>access-list 101 deny   udp any any eq ntp
>access-list 101 deny   eigrp any any
>access-list 101 deny   udp any any eq rip
>access-list 101 permit ip any any log
>dialer-list 1 protocol ip list 101
>dialer-list 1 protocol ipx deny
>!
>snmp-server community ECOM RW
>snmp-server community FERNS RO
>call rsvp-sync
>!
>!
>mgcp profile default
>!
>dial-peer cor custom
>!
>!
>!
>!
>line con 0
>line 33 62
>script modem-off-hook offhook
>script callback callback
>modem InOut
>modem autoconfigure discovery
>transport input all
>autoselect during-login
>autoselect ppp
>flowcontrol hardware
>line 97 126
>script modem-off-hook offhook
>script callback callback
>modem InOut
>modem autoconfigure discovery
>transport input all
>autoselect during-login
>autoselect ppp
>flowcontrol hardware
>line aux 0
>line vty 0 4
>password tpop
>login
>!
>ntp clock-period 17179951
>ntp server 172.20.108.5
>time-range Business
>periodic weekdays 8:00 to 17:00
>!
>!
>end
>
>ZA108005D# sh ver
>Cisco Internetwork Operating System Software
>IOS (tm) 3600 Software (

Cisco Security Specialist 1 [7:51643]

[Juan Blanco]

Does the following is still available:

For a limited time, candidates holding an active CCNP Security
Specialization may obtain a Cisco Security Specialist 1 certification by
passing the 9E0-571 CSPFA and 9E0-570 CSVPN exams.

Thanks,




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=51643&t=51643
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Does cisco IOS support Frame Relay over ISDN... [7:51641]

[Daowei Chen]

Does Cisco IOS support Frame Relay over ISDN with multiple B channels
bundling?
If yes, how to config it?
Thank you.


Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=51641&t=51641
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

OT: 2501 for sale [7:51640]

[Mckenzie Bill]

Group,
I wanted to post it here first.

I have a Cisco 2501 with 16 Dram 16 Flash that I need to sell from my study
lab.

If anyone is interested, please email me.

Thanks,
Bill


Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=51640&t=51640
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

RE: Problem with Catalyst C1912 & 2924-XL [7:51637]

[Lupi, Guy]

What happens if you enable an 802.1q trunk instead?  The same thing?

-Original Message-
From: Maria [mailto:[EMAIL PROTECTED]]
Sent: Monday, August 19, 2002 7:55 AM
To: [EMAIL PROTECTED]
Subject: Problem with Catalyst C1912 & 2924-XL [7:51637]


Hello everyone,
I have in my lab at home a setup including a Catalyst
C1912 (Running Enterprise Software) and a Catalyst 2924C-XL. The Cat
2925C-XL has 2 x FL ports. Between the Cat C1912 and the Cat 2924C-XL I have
a Cat5 to FL media converter. Now If I hook the two up without any trunking
enabled it all works Ok. As soon as I enable an ISL trunk between the two
switches both switches still communicate and I can still ping to an external
address but as soon as I put some load on it like download a web page it
just times out. Thats the same with everything actually (mail,irc, etc). Can
anyone give me an idea what could be happening ? Any input would be
terrific,

Thanks

Maria




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=51639&t=51637
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

DNS 6509 Problem [7:51638]

[Richard Tufaro]

Has anyone experienced intermittent DNS timeout issues with a 6509 switch?
Locally the DNS server is functioning properly, but when across VLANS seems
to be timeout out intermittent. Any help would be appreciated.




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=51638&t=51638
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Problem with Catalyst C1912 & 2924-XL [7:51637]

[Maria]

Hello everyone,
I have in my lab at home a setup including a Catalyst
C1912 (Running Enterprise Software) and a Catalyst 2924C-XL. The Cat
2925C-XL has 2 x FL ports. Between the Cat C1912 and the Cat 2924C-XL I have
a Cat5 to FL media converter. Now If I hook the two up without any trunking
enabled it all works Ok. As soon as I enable an ISL trunk between the two
switches both switches still communicate and I can still ping to an external
address but as soon as I put some load on it like download a web page it
just times out. Thats the same with everything actually (mail,irc, etc). Can
anyone give me an idea what could be happening ? Any input would be
terrific,

Thanks

Maria




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=51637&t=51637
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

RE: ISDN Help needed [7:51634]

[Claudia Walter]

Hi Shane,

looks like the CHAP fails at the point where they exchange the information.
Make sure you have the following correctly configured:

on FD_PMBURG:

username ZA108005D password whatever

on ZA108005D:

username FD_PMBURG password whatever

Hope that this helps, if not then you will have to give us a bit more
information about the two routers config.

Cheers,

Claudia

-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of
Shane Stockman
Sent: 19 August 2002 11:38
To: [EMAIL PROTECTED]
Subject: ISDN Help needed [7:51634]


I get the following error message as soon as I dial into the NAS.If I do a
who on the NAS I can see that it gets connected but it disconnects as it
cannot get authenticated.
This my IOS on the NAS
IOS (tm) 3600 Software (C3640-IS-M), Version 12.2(8)T4,  RELEASE SOFTWARE
(fc1)

00:53:86758144308: %LINK-3-UPDOWN: Interface BRI0:1, changed state to up
00:53:88062060644: %DIALER-6-BIND: Interface BR0:1 bound to profile Di0
00:53:20: BR0:1 PPP: Treating connection as a callout
00:53:20: BR0:1 PPP: Authorization required
00:53:22: BR0:1 CHAP: I CHALLENGE id 2 len 30 from "ZA108005D"
00:53:22: BR0:1 CHAP: Using hostname from interface CHAP
00:53:22: BR0:1 CHAP: Using password from interface CHAP
00:53:22: BR0:1 CHAP: O RESPONSE id 2 len 30 from "FD_PMBURG"
00:53:22: BR0:1 CHAP: I FAILURE id 2 len 26 msg is "Authentication failure"
00:53:98784247808: %ISDN-6-CONNECT: Interface BRI0:1 is now connected to
0116547
600
00:53:98784247808: %ISDN-6-DISCONNECT: Interface BRI0:1  disconnected from
01165
47600 , call lasted 2 seconds
00:53:98834579456: %LINK-3-UPDOWN: Interface BRI0:1, changed state to down
00:53:98784247808: %DIALER-6-UNBIND: Interface BR0:1 unbound from profile
Di0
00:53:25: %ISDN-6-LAYER2DOWN: Layer 2 for Interface BR0, TEI 68 changed to
down
00:53:115964116991: %ISDN-6-LAYER2DOWN: Layer 2 for Interface BRI0, TEI 68
chang
ed to down


Please help
Thanks



_
MSN Photos is the easiest way to share and print your photos:
http://photos.msn.com/support/worldwide.aspx




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=51636&t=51634
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Erasing a password from a 3524 switch [7:51635]

[Mamoon Dawood]

Dear All,

How to erase Enable password from 3524 switch,

Regards,
Mamoon




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=51635&t=51635
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

ISDN Help needed [7:51634]

[Shane Stockman]

I get the following error message as soon as I dial into the NAS.If I do a 
who on the NAS I can see that it gets connected but it disconnects as it 
cannot get authenticated.
This my IOS on the NAS
IOS (tm) 3600 Software (C3640-IS-M), Version 12.2(8)T4,  RELEASE SOFTWARE 
(fc1)

00:53:86758144308: %LINK-3-UPDOWN: Interface BRI0:1, changed state to up
00:53:88062060644: %DIALER-6-BIND: Interface BR0:1 bound to profile Di0
00:53:20: BR0:1 PPP: Treating connection as a callout
00:53:20: BR0:1 PPP: Authorization required
00:53:22: BR0:1 CHAP: I CHALLENGE id 2 len 30 from "ZA108005D"
00:53:22: BR0:1 CHAP: Using hostname from interface CHAP
00:53:22: BR0:1 CHAP: Using password from interface CHAP
00:53:22: BR0:1 CHAP: O RESPONSE id 2 len 30 from "FD_PMBURG"
00:53:22: BR0:1 CHAP: I FAILURE id 2 len 26 msg is "Authentication failure"
00:53:98784247808: %ISDN-6-CONNECT: Interface BRI0:1 is now connected to 
0116547
600
00:53:98784247808: %ISDN-6-DISCONNECT: Interface BRI0:1  disconnected from 
01165
47600 , call lasted 2 seconds
00:53:98834579456: %LINK-3-UPDOWN: Interface BRI0:1, changed state to down
00:53:98784247808: %DIALER-6-UNBIND: Interface BR0:1 unbound from profile 
Di0
00:53:25: %ISDN-6-LAYER2DOWN: Layer 2 for Interface BR0, TEI 68 changed to 
down
00:53:115964116991: %ISDN-6-LAYER2DOWN: Layer 2 for Interface BRI0, TEI 68 
chang
ed to down


Please help
Thanks



_
MSN Photos is the easiest way to share and print your photos: 
http://photos.msn.com/support/worldwide.aspx




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=51634&t=51634
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Traceroute IP displays twice (previous post by Priscilla) [7:51633]

[Vicuna, Mark]

While we are on the topic.. I remember a post by Priscilla a few months
ago now (I think) with a traceroute showing 2 path entries of the same
ip.  The result of the traceroute was not able to be reproduced (I
think).   Anyone remember what the outcome of this was?  


The archives are not searchable at this point in time.


Cheers
Mark.

> -Original Message-
> From: Robert D. Cluett [mailto:[EMAIL PROTECTED]]
> Sent: Monday, 19 August 2002 19:10
> To: [EMAIL PROTECTED]
> Subject: Re: traceroute IP displays twice [7:51622]
> 
> 
> Thanks Raj!
> 
> ""Raj Santiago""  wrote in message
> [EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
> > i should have included this part as well to the previous post :
> >
> > >1 172.26.1.13 20 msec
> >172.26.1.2 20 msec
> >172.26.1.13 20 msec
> >
> > The above indicates, of the two possible paths the router 
> has [172.26.1.2,
> > 172.26.1.13] it has chosen the path 172.26.1.13.




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=51633&t=51633
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: traceroute IP displays twice [7:51622]

[Stephane LITKOWSKI]

When doing traceroute, for each hop, the router sends 3 probes.
As u have 2 equal paths to the destination, loadbalancing between equal cost
path occurs, so first probe is sent to the first path, the second to the
second path, and the third to the first path (if process swicthed).


--
Stephane LITKOWSKI
Student in a French computer science school
EPITA Telecom & Network specialization (Paris, FRANCE)
CCNA + CCNP
EMail : [EMAIL PROTECTED]


""Robert D. Cluett""  a icrit dans le message de news:
[EMAIL PROTECTED]
> All, any idea why this IP 172.26.1.13, shows twice?
>
> Kennedy-2502#traceroute 192.168.1.103
>
> Type escape sequence to abort.
> Tracing the route to 192.168.1.103
>
>   1 172.26.1.13 20 msec
> 172.26.1.2 20 msec
> 172.26.1.13 20 msec
>   2 172.26.1.6 36 msec
> 172.26.1.9 40 msec *




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=51632&t=51622
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: traceroute IP displays twice [7:51622]

[Robert D. Cluett]

Thanks Raj!

""Raj Santiago""  wrote in message
[EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
> i should have included this part as well to the previous post :
>
> >1 172.26.1.13 20 msec
>172.26.1.2 20 msec
>172.26.1.13 20 msec
>
> The above indicates, of the two possible paths the router has [172.26.1.2,
> 172.26.1.13] it has chosen the path 172.26.1.13.




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=51631&t=51622
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: VOIP ????? [7:51621]

[Vance Krier]

Hey John,

LOL!

You should also be able to get basic functionality out of the phones by
implementing IP Keyswitch on a router.  Check out the following link:

www.cisco.com/go/keyswitch

Good luck!
Vance



""John Brandis""  wrote in message
[EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
> Hi All,
>
> Over the weekend, i paid $22AUD to get a haircut, which has effected my
> thought processing skills come monday. Thus, I need help. Its not even a
> good haircut.
>
> My boss, without me, has purchased a Cisco 2950 switch and 10 IP
Telephones
> for a branch office. IP telephones, is something I have never worked with
> b4. I hope this is not stupid, however I am pretty sure that the IP
> telephones will not work by simply plugging into a 2950 switch. I am
> assuming, the branch office will need some sort of router/specialised
> software to intercept and manage the routing and IP assignment of each
> phone.
>
> Is it possible, if some one can lend any advice on the very basic
> requirments that they have used ?
>
> Any help/advice is much appreciated.
>
> John
> Sydney, Australia
>
>
> **
>
> visit http://www.solution6.com
> visit http://www.eccountancy.com - everything for accountants.
>
> UK Customers - http://www.solution6.co.uk
>
> *
> This email message (and attachments) may contain information that is
> confidential to Solution 6. If you are not the intended recipient you
cannot
> use, distribute or copy the message or attachments.  In such a case,
please
> notify the sender by return email immediately and erase all copies of the
> message and attachments.  Opinions, conclusions and other information in
> this message and attachments that do not relate to the official business
of
> Solution 6 are neither given nor endorsed by it.
> *




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=51630&t=51621
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]