What does the number means? [7:56511]

[champion boliao]

hi,

i have list of IOS that supports MPLS.

12.0[3], 12.1[4.6], 12.1[7.3],  12.1[8.4],
@12.1(20011103:114302)

Please tell me what does the numbers in bracket mean.

thank you very much

 

 Yahoo! Travel
- Great flight deals, travel info and prizes!




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=56511&t=56511
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: What does the number means? [7:56511]

[Tim Metz]

ha... CCIE practice question (at least that's where I think I saw it)

I call it revision but I think the test answer is "maintenance version" -
the higher the number in brackets the more fixes that version of IOS
contains.

Tim

""champion boliao""  wrote in message
news:200210300815.IAA20427@;groupstudy.com...
> hi,
>
> i have list of IOS that supports MPLS.
>
> 12.0[3], 12.1[4.6], 12.1[7.3],  12.1[8.4],
@12.1(20011103:114302)
>
> Please tell me what does the numbers in bracket mean.
>
> thank you very much
>
>
>
>  Yahoo! Travel
> - Great flight deals, travel info and prizes!




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=56512&t=56511
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: MPLS on low-end hardware [7:56487]

[Umar Ahmed]

Guys,

What is the minimal flash/ram memory needed to run this code on a 26xx.

Rgds,

Umar.
""Reinhold Fischer""  wrote in message
news:200210300723.HAA11457@;groupstudy.com...
> Michael,
>
> if it is only for lab/learning purpose you can use the 12.0S
> images from ftp-eng.cisco.com. They are not supported by cisco,
> but work quite well. Use anonymous login and look under /isp
>
> Note: The cisco2500 image does not have too much MPLS features
> built in. No problems with the 2600 images here.
>
> -rwxr-xr-x   1 40002eng   8275120 Oct 15 02:07
c2500-p-l.120-22.4.S2
> -rwxr-xr-x   1 40002eng   5671856 Oct 15 02:07
c2600-p-mz.120-22.4.S2
> -rwxr-xr-x   1 40002eng   5846156 Oct 15 02:07
c3620-p-mz.120-22.4.S2
> -rwxr-xr-x   1 40002eng   6048724 Oct 15 02:07
c3640-p-mz.120-22.4.S2
> -rwxr-xr-x   1 40002eng   5372564 Oct 15 02:07
c4500-p-mz.120-22.4.S2
>
> hth
>
> Reinhold
>
> On Tue, Oct 29, 2002 at 08:58:28PM +, Michael Vasilenko wrote:
> > Hello!
> >
> > One question - is it possible to run MPLS (edge or LSR) on 26xx?
> > Any experience? Right IOS?
> >
> > --
> > Michael Vasilenko




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=56513&t=56487
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Lab setup information [7:56514]

[2000 mpls]

Hi,

I am currently trying to setup a network in my lab to provide MPLS features.

I am given 4 routers, 2 Cisco 7200 series and 2 Cisco 3600 series.

As I am an alien in this field. I have a few questions.

1) Does a router come with IOS by default?

2) What is the command to check the IOS version of a router?

3) If I want to upgrade the IOS version, says from 12.0 to 12.1, what should
I do? Can the IOS file be downloaded from internet?

4) Is IOS version backward compatible? Example, version 12.1 supports all
the features in version 12.0?

Please give me your advice and help me. I am dying.

Thank you very much.


Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=56514&t=56514
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

serial up, line ptotocol up..for a while [7:56515]

[Md Nazri]

hi all,

after i unshut the serial interface for frame relay service, the status was
up, up...but after a while(maybe 10 secs), it went back to up,down...and the
status up,up didn't represent the PVC is up because the Service Provider
always claim that their LMI status remained down during that
period...anybody pls explain why did i get up,up although LMI status is down.

Thanks

rgds
naz




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=56515&t=56515
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

RE: how to telnet to other FROM PIX? [7:56435]

[Kenny Smith]

Hi.. Mark and Dear senior

I reason that I want to enable GUI is because I want to know more about PIX 
features and I am quite familiar with CLI now

I have obtain my free DES activation key from cisco software center.  But my 
PIX version is 6.0 and PDM is version 1.0.  I can't use 
PIX(config)#activation-key command to input the key.

In order to install the key, I was told to install the new software image 
and entering the new activation-key.

But I want to know

1)What is the new software image that I need to install, new version of PDM?
2)After I use tftp to install the new flash image, in what step it will 
prompt me whether I want to install the activation-key?
3)After the installation complete, will my old configuration retain?
4)What is the different between PDM and PIX secure policy manager? Is 
license for secure policy manager free?

Thanks a lot!!


>From: "Mark W. Odette II" 
>Reply-To: "Mark W. Odette II" 
>To: [EMAIL PROTECTED]
>Subject: RE: how to telnet to other FROM PIX? [7:56435]
>Date: Wed, 30 Oct 2002 06:45:43 GMT
>
>Kenny,
>
>...Never had working on a PIX that didn't have any Encryption installed,
>I wouldn't know if it is absolutely true that you have to have it just
>to use the GUI, but if the requirements are such, then you need to go
>onto Cisco's website and apply for the free DES license key.
>
>After that, if you want to connect to a remote PIX using the GUI, you
>will need to follow the cook-book solution Cisco has posted on CCO for
>establishing a VPN tunnel between the two PIXen in question, and then
>you can use the GUI to remotely manage the other PIX.  Your best bet is
>to just forget about the GUI for now, and set up SSH on each PIX, and
>connect using that.  Learn the CLI well, and then use the GUI for all it
>really is good for- Monitoring functions.
>
>My biggest pet peeve is that the GUI does not support ALIAS commands in
>your PIX config... as well as a few other items like the such that are
>more advanced.
>
>For the time setting, just set the clock using the following syntax:
>
>Usage:  clock set  {  |  }
>
>clock summer-time  recurring [
>] []
>
>clock summer-time  date {  |  }
>  {  |  }
>[]
>
>no clock summer-time
>
>clock timezone   []
>
>no clock timezone
>
>show clock [detail]
>
>
>Hope that helps.
>
>Mark
>-Original Message-
>From: Kenny Smith [mailto:fwdog@;hotmail.com]
>Sent: Wednesday, October 30, 2002 12:04 AM
>To: [EMAIL PROTECTED]
>Subject: RE: how to telnet to other FROM PIX? [7:56435]
>
>Hi..  Thanks for your information.  I think I didn't fullfil the
>following
>two requirements in order to connect to the PIX via GUI.
>
>   e. The PIX Firewall clock is set to UTC. To determine if the PIX
>Firewall
>clock is set to UTC, enter the show clock command and check the output.
>
>singpix01(config)# sh clock
>06:54:07 Oct 30 2002
>
>May I know how to set clock to UTC, I found that I can't set the
>timezone.
>Why we need to set the clock to UTC in order to connect PIX via GUI?
>
>f. You have the activation key to use DES or above.
>
>I don't have it as shown below.  Do I need to buy ?
>singpix01(config)# sh ver
>
>Cisco Secure PIX Firewall Version 6.0(1)
>PIX Device Manager Version 1.0(1)
>
>Compiled on Thu 17-May-01 20:05 by morlee
>
>singpix01 up 9 days 22 hours
>
>Hardware:   PIX-515, 64 MB RAM, CPU Pentium 200 MHz
>Flash i28F640J5 @ 0x300, 16MB
>BIOS Flash AT29C257 @ 0xfffd8000, 32KB
>
>0: ethernet0: address is 0003.6bf6.e752, irq 11
>1: ethernet1: address is 0003.6bf6.e753, irq 10
>2: ethernet2: address is 00e0.b603.4830, irq 9
>3: ethernet3: address is 00e0.b603.482f, irq 9
>4: ethernet4: address is 00e0.b603.482e, irq 9
>5: ethernet5: address is 00e0.b603.482d, irq 9
>
>Licensed Features:
>Failover:   Enabled
>VPN-DES:Disabled
>VPN-3DES:   Disabled
>Maximum Interfaces: 6
>Cut-through Proxy:  Enabled
>Guards: Enabled
>Websense:   Enabled
>Throughput: Unlimited
>ISAKMP peers:   Unlimited
>
>Serial Number:  (XXX)
>Activation Key: X
>
> >From: "Ritchie, Brian"
> >Reply-To: "Ritchie, Brian"
> >To: [EMAIL PROTECTED]
> >Subject: RE: how to telnet to other FROM PIX? [7:56435]
> >Date: Tue, 29 Oct 2002 09:54:03 GMT
> >
> >The PIX does not support telnet in the same way that a router or switch
> >does, you can telnet to the PIX but you cannot telnet from it to other
> >hosts.
> >
> >To manage the PIX using a web browser you use HTTPS not HTTP, so the
>'url'
> >would be https://PIX_IP_Address. This will allow you to browse to it
> >assuming all other configuration tasks have been completed. If you are
> >still
> >having problems visit
> >http://www.cisco.com/univercd/cc/td/doc/product/iaabu/pix/pix_60/pdm_in
>/impr
> >ove.htm#xtocid1 for more help.
> >
> >Hope this helps, Brian
> >
> >
> >-Original Message-
> >From: Kenny Smith [mailto:fwdog@;hotmail.com]
> >Sent: 29 October 2002 06:56
> >To: [EMAIL PROTECTED]
> >Subject: how to telnet t

RE: serial up, line ptotocol up..for a while [7:56515]

[Peter van der Voort]

10 seconds? That almost sound like the keepalive time setting.
After the no shut, the router tried to bring the interface up, sending a
keepalive to the other side, but it didn't receive anything back so it
brought the interface down again.

You may want to check the way you are receiving you're clock and if the
encapsulation is the same on both sides of the serial link.

Peter

> -Original Message-
> From: Md Nazri [mailto:mdnazri@;telekom.com.my]
> Sent: Wednesday, October 30, 2002 10:01 AM
> To: [EMAIL PROTECTED]
> Subject: serial up, line ptotocol up..for a while [7:56515]
> 
> 
> hi all,
> 
> after i unshut the serial interface for frame relay service, 
> the status was
> up, up...but after a while(maybe 10 secs), it went back to 
> up,down...and the
> status up,up didn't represent the PVC is up because the 
> Service Provider
> always claim that their LMI status remained down during that
> period...anybody pls explain why did i get up,up although LMI 
> status is down.
> 
> Thanks
> 
> rgds
> naz




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=56518&t=56515
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Queuing question(s) again ! [7:56519]

[[EMAIL PROTECTED]]

Hi Folks,

I'm still confused on Cisco's Terminology and just want to clarify something
again.

We all know that priority queuing is the strictest form of queuing, in the
sense that the 'lower' queues have to defer / wait until the 'superior'
queues have been drained, before they (the lower queues) can be serviced.
But then what should I take this to mean? 

(Excerpt from the QoS guide):-
---
IP RTP Priority
The IP RTP Priority feature provides a strict priority queueing scheme that
allows delay-sensitive data such as voice to be dequeued and sent before
packets in other queues are dequeued. This feature can be used on serial
interfaces and Frame Relay PVCs in conjunction with either WFQ or CBWFQ on
the same outgoing interface. In either case, traffic matching the range of
UDP ports specified for the priority queue is guaranteed strict priority
over other CBWFQ classes or WFQ flows; packets in the priority queue are
always serviced first.
---

Should I take it to mean that all queuing schemes such is RTP and LLQ, which
use a variant of WFQ as their basis have

(1) 'modified' one queue to be act as a HIGH PQ, or if you like, System
Queue 0 in custom queuing, in that it has to be drained first, before the
other queues get serviced or  

(2) is it once again, a case of one queue having a higher weight which means
more data gets sent, (but not all data), at each pass.


My take on "Strict Priority queuing" and "Guaranteed Strict Priority" is
that once again that specific queue's have to be emptied completely, before
other queue's get serviced, and then and only then does WFQ / CBWFQ do it's
thing on the interface

Thanks for your insights into this as Cisco's terminology is driving me
kooky!

Manish

___
Manish Hira ( >)
Network Administrator
If you woke up breathing, Congratulations! 
You have another chance!




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=56519&t=56519
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: Queuing question(s) again ! [7:56519]

[\"\"B.J. Wilson\"\"]

Hi Manish -

Regarding your questions about queuing:

> Should I take it to mean that all queuing
> schemes such is RTP and LLQ, which
> use a variant of WFQ as their basis have
> 
> (1) 'modified' one queue to be act as a HIGH
> PQ, or if you like, System
> Queue 0 in custom queuing, in that it has to be
> drained first, before the
> other queues get serviced or  

Yes, I believe this to be true.  Keep in mind the "evolution" of queuing
mechanisms: after WFQ came CBWFQ and PQ simultaneously (I think - someone
correct my history if I'm mistaken).  PQ is *too* strict, and not granular
enough.  CBWFQ is too loose, and cannot guarantee that a certain type of
traffic will *always* get through.  Enter IP RTP Priority, which states that
RTP packets (usually voice) will *always* go through, and any other traffic
type will be handled in a WFQ fashion.  LLQ opens up the possibility of
giving
priority to other traffic types (not necessarily voice traffic), and then
handling everything else in a bandwidth-based WFQ fashion.

> (2) is it once again, a case of one queue
> having a higher weight which means
> more data gets sent, (but not all data), at
> each pass.

This is pure CBWFQ that you're describing here.

HTH,

BJ




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=56520&t=56519
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

GSR line card utilization guidelines [7:56521]

[bergenpeak]

I'm considering enabling some features on a E0 GSR line
card.  I'm going to monitor the line card CPU utilization
in order to track the impact the features have on the LC.

Does anyone have any general rules of thumb (or reference
document) that provides guidelines on how far, utilization
wise, a line card might be pushed before packet forwarding
performance is affected?  Said differently, what's the
threshold for line card utilization, that if exceeded,
probably means I should disable these features?

Thanks




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=56521&t=56521
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: CCNP Switching exam [7:56507]

[Robert Edmonds]

The switching exam questions that refer to IOS based switches will be more
like the 2900 and 3500 series and less like the 1900 series.

""Ahed Naimi""  wrote in message
news:200210300639.GAA02527@;groupstudy.com...
> Hi All;
> I am working on CCNP switching exam and I saw that , there are differences
> in commands between Cat 1900 and Cat 2900-3500 switches (IOS based
> switches). On which series of  IOS switches the exam
> questions are?
>
> Pls, advise




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=56523&t=56507
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: GSR line card utilization guidelines [7:56521]

[Peter van Oene]

At 12:27 PM 10/30/2002 +, bergenpeak wrote:
>I'm considering enabling some features on a E0 GSR line
>card.  I'm going to monitor the line card CPU utilization
>in order to track the impact the features have on the LC.
>
>Does anyone have any general rules of thumb (or reference
>document) that provides guidelines on how far, utilization
>wise, a line card might be pushed before packet forwarding
>performance is affected?  Said differently, what's the
>threshold for line card utilization, that if exceeded,
>probably means I should disable these features?

I would highly suggest conferring with your Cisco account team before 
implementing any features on a live network.  Furthermore, try and bench 
this stuff in a lab if at all possible.  The effects vary tremendously 
depending on Line card versions, features, IOS trains, etc.  Navigating 
this maze is a job for the folks with the most information :-)


>Thanks




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=56524&t=56521
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

RE: GBIC Types [7:56468]

[Net Admin (MNET)]

Hi,

Use the command - show port capabilities, that works on my 5500's.

Regards

Colin Tetluk
CCIE# 5767





-Original Message-
From: Larry Letterman [mailto:lletterm@;cisco.com]
Sent: Tuesday, October 29, 2002 11:35 PM
To: [EMAIL PROTECTED]
Subject: Re: GBIC Types [7:56468]


sh port

Tim Champion wrote:

>Does anyone know of a show command on a Catalyst 5k which will show the
type
>of GBIC installed, SH, LX/LH etc?
>
>Many thanks
>
>Tim




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=56526&t=56468
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

RE: Lab setup information [7:56514]

[Aaron Ajello]

1) yes
2) show version
3) hit www.cisco.com and search, read, search, read.
4) yes

good luck.



Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=56527&t=56514
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

RE: CCNP Switching exam [7:56507]

[Symon Thurlow]

Well actually there are questions on the set based OS and the IOS. I
don't recall a great deal in the menu structure of a 1900. You should be
able to find out on Cisco's site, although a quick look didn't come up
with much.

Symon

-Original Message-
From: Ahed Naimi [mailto:anaimi@;hotmail.com] 
Sent: 30 October 2002 06:39
To: [EMAIL PROTECTED]
Subject: CCNP Switching exam [7:56507]


Hi All;
I am working on CCNP switching exam and I saw that , there are
differences in commands between Cat 1900 and Cat 2900-3500 switches (IOS
based switches). On which series of  IOS switches the exam questions
are?

Pls, advise
=

 This email has been content filtered and
 subject to spam filtering. If you consider
 this email is unsolicited please forward
 the email to [EMAIL PROTECTED] and
 request that the sender's domain be
 blocked from sending any further emails.

=




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=56528&t=56507
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

RE: CCNP Switching exam [7:56507]

[Net Admin (MNET)]

I found that the CLSC course notes were the most helpful when I wrote, in
fact  90% of the exam was based on these notesthat was back in 2000, I
would think that LAN Switching notes today are still very valid for latest
exam!

Regards

Colin Tetluk
CCIE# 5767




-Original Message-
From: Symon Thurlow [mailto:sthurlow@;webvein.com]
Sent: Wednesday, October 30, 2002 4:33 PM
To: [EMAIL PROTECTED]
Subject: RE: CCNP Switching exam [7:56507]


Well actually there are questions on the set based OS and the IOS. I
don't recall a great deal in the menu structure of a 1900. You should be
able to find out on Cisco's site, although a quick look didn't come up
with much.

Symon

-Original Message-
From: Ahed Naimi [mailto:anaimi@;hotmail.com] 
Sent: 30 October 2002 06:39
To: [EMAIL PROTECTED]
Subject: CCNP Switching exam [7:56507]


Hi All;
I am working on CCNP switching exam and I saw that , there are
differences in commands between Cat 1900 and Cat 2900-3500 switches (IOS
based switches). On which series of  IOS switches the exam questions
are?

Pls, advise
=

 This email has been content filtered and
 subject to spam filtering. If you consider
 this email is unsolicited please forward
 the email to [EMAIL PROTECTED] and
 request that the sender's domain be
 blocked from sending any further emails.

=




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=56529&t=56507
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: Off Topic - of general interest [7:56500]

[Jim Haynes]

To me, it would be corporate welfare if the government subsidized the actual
investment into the telecom industry. If private investment is encouraged to
head that way because of the tax code or deregulation the so be it. It's not
Washington's money first.

IMHO

Jim




""Tim Metz""  wrote in message
news:200210300736.HAA14144@;groupstudy.com...
> Chuck,
>
> didn't this strike you as corporate welfare?
>
> Tim
>
>
> ""The Long and Winding Road""  wrote in
> message news:200210300050.AAA32516@;groupstudy.com...
> > saw this one come through today. Personally, I agree with the premise.
> >
> > http://ad.doubleclick.net/clk;3953254;5700831;g?http://207.27.3.33/2/
> > watch the wrap
> >
> > --
> >
> > www.chuckslongroad.info




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=56530&t=56500
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: serial up, line ptotocol up..for a while [7:56515]

[MADMAN]

All the interfaces will come up up for a short time after doing a no
shut until the interface realizes it's not seeing LMI in your example or
keepalive on an ethernet...

  Dave

Md Nazri wrote:
> 
> hi all,
> 
> after i unshut the serial interface for frame relay service, the status was
> up, up...but after a while(maybe 10 secs), it went back to up,down...and
the
> status up,up didn't represent the PVC is up because the Service Provider
> always claim that their LMI status remained down during that
> period...anybody pls explain why did i get up,up although LMI status is
down.
> 
> Thanks
> 
> rgds
> naz
-- 
David Madland
CCIE# 2016
Sr. Network Engineer
Qwest Communications
612-664-3367

"You don't make the poor richer by making the rich poorer." --Winston
Churchill




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=56531&t=56515
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: Queuing question(s) again ! [7:56519]

[Howard C. Berkowitz]

At 11:40 AM + 10/30/02, [EMAIL PROTECTED] wrote:
>Hi Folks,
>
>I'm still confused on Cisco's Terminology and just want to clarify something
>again.
>
>We all know that priority queuing is the strictest form of queuing, in the
>sense that the 'lower' queues have to defer / wait until the 'superior'
>queues have been drained, before they (the lower queues) can be serviced.
>But then what should I take this to mean?
>
>(Excerpt from the QoS guide):-
>---
>IP RTP Priority
>The IP RTP Priority feature provides a strict priority queueing scheme that
>allows delay-sensitive data such as voice to be dequeued and sent before
>packets in other queues are dequeued. This feature can be used on serial
>interfaces and Frame Relay PVCs in conjunction with either WFQ or CBWFQ on
>the same outgoing interface. In either case, traffic matching the range of
>UDP ports specified for the priority queue is guaranteed strict priority
>over other CBWFQ classes or WFQ flows; packets in the priority queue are
>always serviced first.
>---
>
>Should I take it to mean that all queuing schemes such is RTP and LLQ, which
>use a variant of WFQ as their basis have

I think you know this, but IP RTP Priority is a special case of LLQ.

>
>(1) 'modified' one queue to be act as a HIGH PQ, or if you like, System
>Queue 0 in custom queuing, in that it has to be drained first, before the
>other queues get serviced or

(1) is how I read the description in "Inside Cisco IOS Software Architecture"

>
>(2) is it once again, a case of one queue having a higher weight which means
>more data gets sent, (but not all data), at each pass.
>
>
>My take on "Strict Priority queuing" and "Guaranteed Strict Priority" is
>that once again that specific queue's have to be emptied completely, before
>other queue's get serviced, and then and only then does WFQ / CBWFQ do it's
>thing on the interface
>
>Thanks for your insights into this as Cisco's terminology is driving me
>kooky!
>
>Manish
>
>___
>Manish Hira ( >)
>Network Administrator
>If you woke up breathing, Congratulations!
>You have another chance!




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=56522&t=56519
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

LAN auditing [7:56516]

[Simon K Carvalho-TechSupport-Mumbai]

Hi all,

Does anybody know of a site or document providing info on the points to be
covered in a LAN Design and  performance audit? Like what to look out
for...focus areasetc.

Thanks 
Simon




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=56516&t=56516
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: CCIE LAB Re-Grade [7:56458]

[DAve Diaz]

you get a regrade and the same detail, takes ages apparently,  unless your 
really close you are giving cisco free money






>From: "Michael Witte" 
>Reply-To: "Michael Witte" 
>To: [EMAIL PROTECTED]
>Subject: CCIE LAB Re-Grade [7:56458]
>Date: Tue, 29 Oct 2002 15:50:12 GMT
>
>I took the lab on 9/24/2002 and did not pass. I didn't agree on my scores
>and put in for a re-grade on Sat.I know I did much better. Does anyone know
>what the process is and if they will be contacting me for credit card info
>ect?It also took them until Sat afternoon to get my grade so I think
>something was wrong down there. thanks.
_
Get faster connections -- switch to MSN Internet Access! 
http://resourcecenter.msn.com/access/plans/default.asp




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=56506&t=56458
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: CCIE LAB Re-Grade [7:56458]

[The Long and Winding Road]

""DAve Diaz""  wrote in message
news:200210301521.PAA21871@;groupstudy.com...
> you get a regrade and the same detail, takes ages apparently,  unless your
> really close you are giving cisco free money
>

CL: probably "takes forever" because the proctor would have to rebuild your
pod from the saved configurations, and then go through  the inspection
process again. It is probably a matter of finding the time and the space to
do so.

CL: I don't know, but from what I have seen in the Lab, the proctors grade
the previous day's exams while a new group is in taking their exam. So, in
between the interruptions from the current test takers and the work
necessary to save yesterday's setups and grade yesterdays results, it is no
doubt a matter of resources. it's not like they keep your pod intact for the
waiting period.



>
>
>
>
>
> >From: "Michael Witte"
> >Reply-To: "Michael Witte"
> >To: [EMAIL PROTECTED]
> >Subject: CCIE LAB Re-Grade [7:56458]
> >Date: Tue, 29 Oct 2002 15:50:12 GMT
> >
> >I took the lab on 9/24/2002 and did not pass. I didn't agree on my scores
> >and put in for a re-grade on Sat.I know I did much better. Does anyone
know
> >what the process is and if they will be contacting me for credit card
info
> >ect?It also took them until Sat afternoon to get my grade so I think
> >something was wrong down there. thanks.
> _
> Get faster connections -- switch to MSN Internet Access!
> http://resourcecenter.msn.com/access/plans/default.asp




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=56532&t=56458
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

IPX bridge on 6509?? [7:56533]

[Jason Owens]

I have a LAN segment in which I wish to move the routing from a 7206 to a
new 6509. On the 7206, The interface I want to move has the one main segment
(172.16.x.y/24) and around 15 secondary interfaces of various networks (My
predecessors apparently didn't like sub-interfaces). Unfortunately, IPX is
also being routed off of that interface. I want to separate all of these IP
networks into individual VLAN's and route between them. My question is how
can I get this one IPX network amongst the vlan's that need it? Is this
possible?


Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=56533&t=56533
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

ACS for Windows 2000 [7:56534]

[Marakalas]

Hi guys

I have problems in configuring ACS for RAS to
authenticate users using Active Directory on the
Windows domain? I'm having problems in getting this to work.

__
Do You Yahoo!?
Yahoo! Health - Feel better, live better
http://health.yahoo.com




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=56534&t=56534
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

ACS for Windows 2000 [7:56535]

[Marakalas]

Hi guys

I have problems in configuring ACS for RAS to
authenticate users using Active Directory on the
Windows domain? I'm having problems in getting this to
work.


__
Do you Yahoo!?
HotJobs - Search new jobs daily now
http://hotjobs.yahoo.com/




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=56535&t=56535
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

FXO vs other Analog Voice Card [7:56536]

[Paul Oh]

Hello All,

When FXO receives a phone call, it strips out corresponding called-number
that matches destination pattern settings.. For instance,

If call string that matches 333 , it will strip 333 and pass on last
four digit. IF there is next hop voip router only sees last four digit.
(Isn't that correct?.

Now, how can we make that happen for E&M card? (VIC-2E&M)?  "digit-strip" is
enabled by default, but next router only sees 333- instead of .

Help me out. Thank you.

-Paul


Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=56536&t=56536
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Off Topic - Expand Networks [7:56537]

[Ben Woltz]

Does anybody have any experience with Expand Networks Acellerator products?
Could anybody share with me the results you've seen with them?  More
specifically, if you've used them over a VPN?

--
Ben Woltz
[EMAIL PROTECTED]




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=56537&t=56537
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: Using the DOC CD?? [7:56497]

[Reza Sharifi]

Does any body know where to get a CD Doc on CD?(version 12.1)
The ones that come with routers are very old.


Thanks
Reza

""Cisco Nuts""  wrote in message
news:20021032.AAA21502@;groupstudy.com...
> Hello,
> Does any one know of any specific shortcuts ( one example) on how to use
the
> DOC Cd efficiently?
>
> I keep hearing and reading that you should know how to navigate this cd as
> it is your friend in the Lab but all I can do is get to the command and
> configuration guide and lookup specific features/cmds?
>
> Is there a better way? Can someone point out with an example?
>
> For eg. on CCO I can type
www.cisco.com/public/technotes/tech_protocol.shtml
> and get to the Technical Tips section.
>
> Is there a way to get this info. on the Doc CD?
>
> Thanks for your help.
>
> Sincerely.
>
>
>
>
>
> _
> Get a speedy connection with MSN Broadband.  Join now!
> http://resourcecenter.msn.com/access/plans/freeactivation.asp




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=56539&t=56497
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: GSR line card utilization guidelines [7:56521]

[Brad]

Take heed to the warning of not testing this on a producton network.  Never
had a problem w/CPU over utilization, BUT my organization has had A LOT of
problems with buffer utilization/overflow on GSR's on 12K's.  We have
experienced small pvc's (5MB or less) dragging down entire OC-3 aggregate
circuits due to buffer problems(not supposed to be possible).  Problem was
not solved even after we upgraded IOS & cards memory to maximum.  We ended
up buying 10K's for each hub to add a distribution layer to our network.
Expensive fix.

""bergenpeak""  wrote in message
news:200210301227.MAA27007@;groupstudy.com...
> I'm considering enabling some features on a E0 GSR line
> card.  I'm going to monitor the line card CPU utilization
> in order to track the impact the features have on the LC.
>
> Does anyone have any general rules of thumb (or reference
> document) that provides guidelines on how far, utilization
> wise, a line card might be pushed before packet forwarding
> performance is affected?  Said differently, what's the
> threshold for line card utilization, that if exceeded,
> probably means I should disable these features?
>
> Thanks




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=56540&t=56521
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: CCIE LAB Re-Grade [7:56458]

[Peter van Oene]

At 03:42 PM 10/30/2002 +, The Long and Winding Road wrote:
>""DAve Diaz""  wrote in message
>news:200210301521.PAA21871@;groupstudy.com...
> > you get a regrade and the same detail, takes ages apparently,  unless
your
> > really close you are giving cisco free money
> >
>
>CL: probably "takes forever" because the proctor would have to rebuild your
>pod from the saved configurations, and then go through  the inspection
>process again. It is probably a matter of finding the time and the space to
>do so.

I'm pretty sure they just run scripts to suck configs and mark the configs 
themselves.  I don't think they actually test if a config works, just that 
you have the right knobs on in the right places.  Hence, a regrade should 
just be a case of comparing the answer set to the candidates answers.



>CL: I don't know, but from what I have seen in the Lab, the proctors grade
>the previous day's exams while a new group is in taking their exam. So, in
>between the interruptions from the current test takers and the work
>necessary to save yesterday's setups and grade yesterdays results, it is no
>doubt a matter of resources. it's not like they keep your pod intact for the
>waiting period.
>
>
>
> >
> >
> >
> >
> >
> > >From: "Michael Witte"
> > >Reply-To: "Michael Witte"
> > >To: [EMAIL PROTECTED]
> > >Subject: CCIE LAB Re-Grade [7:56458]
> > >Date: Tue, 29 Oct 2002 15:50:12 GMT
> > >
> > >I took the lab on 9/24/2002 and did not pass. I didn't agree on my
scores
> > >and put in for a re-grade on Sat.I know I did much better. Does anyone
>know
> > >what the process is and if they will be contacting me for credit card
>info
> > >ect?It also took them until Sat afternoon to get my grade so I think
> > >something was wrong down there. thanks.
> > _
> > Get faster connections -- switch to MSN Internet Access!
> > http://resourcecenter.msn.com/access/plans/default.asp




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=56538&t=56458
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Contract Trainers for Cisco Telephony [7:56541]

[Kevin Hafner]

My company is looking for a Cisco contract trainer with experience teaching
the Cisco telephony classes, particularly 9E0-402 CIPT-Cisco IP Telephony.
Does anyone know of a site I can go to get a listing of available trainers,
or other resources I can explore in my search for a trainer capable of
teaching this material.

Thanks,

Kevin




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=56541&t=56541
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

RE: Contract Trainers for Cisco Telephony [7:56541]

[Priscilla Oppenheimer]

Only Cisco "Learning Partners" can legally teach Cisco classes. So  you
would want to deal with a such a company, not an individual contractor.
There's a site for learning about Learning Partners here:

http://www.cisco.com/en/US/learning/le31/le29/learning_learning_partners_home.html

I recommend Advanced Network Information. They were one of the fist Learning
Partners to specialize in voice/data integration. Both Howard Berkowitz and
I have done work for them and I think Howard would agree with me that they
are very competent. There's more info about them here:

http://www.ani-training.com/

Priscilla

Kevin Hafner wrote:
> 
> My company is looking for a Cisco contract trainer with
> experience teaching
> the Cisco telephony classes, particularly 9E0-402 CIPT-Cisco IP
> Telephony.
> Does anyone know of a site I can go to get a listing of
> available trainers,
> or other resources I can explore in my search for a trainer
> capable of
> teaching this material.
> 
> Thanks,
> 
> Kevin
> 
> 




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=56542&t=56541
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

About the new written CCIE exam (350-001) [7:56543]

[Jefferson Orsi Siratuti]

Hello,

I'm brazilian and I my english is not very well, so patience with me...

I can read a lot of messages about the new CCIE written exam, I'm studying
to do this exam too, then for those people that do the exam, topics as MPLS,
Advanced QoS, ATM, VoIP/FR/ATM are hardly covered?

If yes... what's is the tip, study guide to these topics?

I'm actually reading the Cisco Lan Switching (Cisco Press), so, after this
book, I will read the Doyle's Book, and Network Design and Case Studies (all
are Cisco Press)... Are there another good book for read? I think about
Cisco ATM (Cisco Press)???

Thanks and again sorry for my english...

Jefferson


Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=56543&t=56543
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: About the new written CCIE exam (350-001) [7:56543]

[Jason Viera]

Jefferson, the books you have mentioned are good, I'm not to sure that you
need to read a whole book on ATM for the written exam, although it wouldn't
hurt. You might want to read the CCIE certification book by Anthony
Bruno,(publisher Cisco Press) it covers just about everything.

Jason
""Jefferson Orsi Siratuti""  wrote in message
news:200210302010.UAA22473@;groupstudy.com...
> Hello,
>
> I'm brazilian and I my english is not very well, so patience with me...
>
> I can read a lot of messages about the new CCIE written exam, I'm studying
> to do this exam too, then for those people that do the exam, topics as
MPLS,
> Advanced QoS, ATM, VoIP/FR/ATM are hardly covered?
>
> If yes... what's is the tip, study guide to these topics?
>
> I'm actually reading the Cisco Lan Switching (Cisco Press), so, after this
> book, I will read the Doyle's Book, and Network Design and Case Studies
(all
> are Cisco Press)... Are there another good book for read? I think about
> Cisco ATM (Cisco Press)???
>
> Thanks and again sorry for my english...
>
> Jefferson




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=56544&t=56543
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: Queuing question(s) again ! [7:56519]

[[EMAIL PROTECTED]]

Hi,

Am I wrong or the CBWFQ does allow you to strict priority a traffic class
using the keyword 'priority' ?

Thanks,

Alaerte






"\"\"B.J. Wilson\"\"" @groupstudy.com em
30/10/2002 09:07:36

Favor responder a "\"\"B.J. Wilson\"\"" 

Enviado Por:  [EMAIL PROTECTED]


Para:  [EMAIL PROTECTED]
cc:

Assunto:Re: Queuing question(s) again ! [7:56519]


Hi Manish -

Regarding your questions about queuing:

> Should I take it to mean that all queuing
> schemes such is RTP and LLQ, which
> use a variant of WFQ as their basis have
>
> (1) 'modified' one queue to be act as a HIGH
> PQ, or if you like, System
> Queue 0 in custom queuing, in that it has to be
> drained first, before the
> other queues get serviced or

Yes, I believe this to be true.  Keep in mind the "evolution" of queuing
mechanisms: after WFQ came CBWFQ and PQ simultaneously (I think - someone
correct my history if I'm mistaken).  PQ is *too* strict, and not granular
enough.  CBWFQ is too loose, and cannot guarantee that a certain type of
traffic will *always* get through.  Enter IP RTP Priority, which states
that
RTP packets (usually voice) will *always* go through, and any other traffic
type will be handled in a WFQ fashion.  LLQ opens up the possibility of
giving
priority to other traffic types (not necessarily voice traffic), and then
handling everything else in a bandwidth-based WFQ fashion.

> (2) is it once again, a case of one queue
> having a higher weight which means
> more data gets sent, (but not all data), at
> each pass.

This is pure CBWFQ that you're describing here.

HTH,

BJ




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=56545&t=56519
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: Queuing question(s) again ! [7:56519]

[B.J. Wilson]

> Am I wrong or the CBWFQ does allow you to strict priority a traffic class
> using the keyword 'priority' ?

The priority keyword is what differentiates LLQ from CBWFQ.  The priority
command is used when configuring the "priority" LLQ queue, whereas the rest
of the queues in LLQ can be configured with the "bandwidth" command.  The
"priority" command is not used with CBWFQ.

HTH,

BJ




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=56547&t=56519
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

videoconference over frame relay [7:56548]

[johnman johnman]

Hi All

I am configuring videoconferencing  on frame relay for two sites.
I wondering if someone has a sample config ?





_
Choose an Internet access plan right for you -- try MSN! 
http://resourcecenter.msn.com/access/plans/default.asp




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=56548&t=56548
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: videoconference over frame relay [7:56548]

[John Huston]

What video equipment are you using?

""johnman johnman""  wrote in message
news:200210302119.VAB05984@;groupstudy.com...
> Hi All
>
> I am configuring videoconferencing  on frame relay for two sites.
> I wondering if someone has a sample config ?
>
>
>
>
>
> _
> Choose an Internet access plan right for you -- try MSN!
> http://resourcecenter.msn.com/access/plans/default.asp




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=56549&t=56548
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: videoconference over frame relay [7:56548]

[johnman johnman]

I am using small polycom cameras connected to my windows XP  computers. The 
main site is frame relay T1 (CIR 500) and the remote site is 640Kbps (CIR 
256)

Here is the sample config I want to test at my remote site

!
interface Serial0
description local circuit at remote site dlci 58
no ip address
encapsulation frame-relay
bandwidth 640
frame-relay traffic-shaping
frame-relay lmi-type ansi
!
interface Serial0.1 point-to-point
description subinterface to the main site
ip address 192.168.85.30 255.255.255.252
frame-relay class vcofr
frame-relay interface-dlci 52


access-list 110 permit ip any any dscp cs4
access-list 110 permit ip any any dscp af41
!
!
class-map video-conf
   match access-group 110
policy-map qos-policy
   class video-conf
 priority 256
class class-default
 fair-queue
!
!
map-class frame-relay vcofr
  frame-relay traffic-rate 576000 64
  no frame-relay adaptive-shaping
  service-policy output qos-policy




>From: "John Huston" 
>Reply-To: "John Huston" 
>To: [EMAIL PROTECTED]
>Subject: Re: videoconference over frame relay [7:56548]
>Date: Wed, 30 Oct 2002 21:22:18 GMT
>
>What video equipment are you using?
>
>""johnman johnman""  wrote in message
>news:200210302119.VAB05984@;groupstudy.com...
> > Hi All
> >
> > I am configuring videoconferencing  on frame relay for two sites.
> > I wondering if someone has a sample config ?
> >
> >
> >
> >
> >
> > _
> > Choose an Internet access plan right for you -- try MSN!
> > http://resourcecenter.msn.com/access/plans/default.asp
_
Get a speedy connection with MSN Broadband.  Join now! 
http://resourcecenter.msn.com/access/plans/freeactivation.asp




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=56550&t=56548
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

odd & even # IPs on an ACL [7:56551]

[Casey Miles]

Just wondering what the correct syntax would be if you wanted to have 
- two networks
- one network with students with Omiting odd numbered IPs.
- second network with faculty omiting the even numbered IPs.

Im looking for a one line command to do this.


Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=56551&t=56551
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: Update: OSPF Route mystery - what am I missing [7:55975]

[Rahul Kachalia]

Chuck,

I may not all answers, but have few broken pieces which may help you...

   When multiple ASBR advertises same LSA then router will choose an ASBR
that advertises lowest cost, if advertised cost from both ASBR is same then
lowest internal cost to reach ASBR will be considered. If advertised cost of
LSA & cost to reach ASBR is same in such case load-balancing will occur.

I tried identical scenario few months ago to check/debug loop &
following is my few findings (based on your topology)...

1. Upon receiving update from R4, R1 & R3 updates their RIP database &
redistributes into OSPF domain.
2. This will be flooded throughout the domain & both R1 & R3 prefers R2 for
route that is originated in RIP (This is because of adm.distance). And
flushes their RIP database.
3. Since RIP database is flushed LSA will removed or advertised as
unreachable to R2 by R1 & R3.
4. Within next 30 seconds, it repeats same story from step1 onwards.

You may have observed random ASBR selection by R2, this may be due to
timing-issue of updating & advertising on R1 & R3. First fix R1 & R3 by
route-map/distance etc to prefer R4 for routes advertised by R4, later you
will see R2 will choose R1 as ASBR but still has LSA info in LSDB. If you
want to load-balance then make equal cost between token ring & serial & see
if you can get your results. Make sure all the time you watch both RIP/OSPF
database changes while there is loop, its fun ;-)

thanks,
rahul.
""The Long and Winding Road""  wrote in
message news:200210210158.BAA20429@;groupstudy.com...
> in line ( like the skates )
>
>
> ""Nigel Taylor""  wrote in message
> news:200210202246.WAA27657@;groupstudy.com...
> > Chuck,
> > I can't believe anyone understood a word I wrote.  After
> reading
> > my post I could only laugh.  Nonetheless, I think you got what I was
> trying
> > to say and I do believe your thoughts and observations are correct.  In
> > reading your post I was trying to recall what could have possibly
provided
> > the material for the discussion you mentioned.
> >
> > The author that comes to mind is no other than "Terry Slattery".
>
> CL: Slattery remains an interesting read.  A lot different, and maybe not
a
> landmark work, a la Doyle, but still worth looking at.
>
>
> >I too did
> > notice the constant flapping of R4's common network using the "debug ip
> > routing" command.
> > I must say this is definitely interesting.  Lately, I've had the
> opportunity
> > to look at a few situations where the use of RIP lead to some very
unique
> > results as it pertains to redistribution. (check this one out...
> > http://www.cisco.com/warp/public/104/10.html).
> > Look at the route table on r2504 take note of the 3.22.x.x and 3.44.x.x
> > networks. Why is it on r2507 that the routes show as ospf exteranl type2
> > routes.  This is just another example of how rip simply works outside of
> the
> > rules.
>
> CL: I was going to say that it's because the routes are RIP routes that
have
> been redistributed into OSPF. However, looking at the configuration, I see
> the interfaces are in the OSPF domain as well. Maybe the configuration is
> being misreported? Maybe if an interface is in both a RIP and an OSPF
> domain, RIP takes preference? That can't be right.
>
> CL: hhhmmm.. fooling around with the configs a bit. Mystery upon
> mystery. I can't duplicate the result on the CCO link below. I'm wondering
> if there are some IOS bugs.
>
> CL: the other thing I got to wondering is if there is some provision in
the
> standard in the case of multiple ABSR's advertising the same route. I
can't
> find anything off hand. It might require a more careful read than I have
> time for right now.
>
>
> >
> > Although, at first look everything does seem to be very
straight-forward,
> > not until you get under the hood do you really see or observe the real
> > issues involved.  Thanks for keeping us all sane :-)
> >
> > Nigel
> >
> >
> >
> >
> > - Original Message -
> > From: "The Long and Winding Road"
> > To:
> > Sent: Sunday, October 20, 2002 5:33 PM
> > Subject: Re: Update: OSPF Route mystery - what am I missing [7:55975]
> >
> >
> > > funny you should mention it. I've spent the last forty minutes looking
> at
> > > debugs on all of the routers involved.
> > >
> > > given the topology,
> > >
> > >  R1tr--R2
> > >   |   |
> > >   |   serial  |serial
> > >   |   |
> > > R4tr--R3
> > >
> > >  R1, R2, and R3 are OSPF routers
> > >  R1, R4, and R3 are RIP ver 2 routers
> > >
> > >  2 way redistribution occurs on R1 and R3. The configurations for
> > >  redistribution are identical on both routers--
> > >
> > >
> > > here is what I believe I am seeing:
> > >
> > > R4 is advertising RIP routes to both R1 and R3
> > >
> > > R1 and R3, in turn, redistribute those routes into OSPF as E2's
> > >
> > > R2 receives those routes and installs them in

RE: IPX bridge on 6509?? [7:56533]

[Priscilla Oppenheimer]

Jason Owens wrote:
> 
> I have a LAN segment in which I wish to move the routing from a
> 7206 to a new 6509. On the 7206, The interface I want to move
> has the one main segment (172.16.x.y/24) and around 15
> secondary interfaces of various networks (My predecessors
> apparently didn't like sub-interfaces). Unfortunately, IPX is
> also being routed off of that interface. I want to separate all
> of these IP networks into individual VLAN's and route between
> them. My question is how can I get this one IPX network amongst
> the vlan's that need it? Is this possible?

Very interesting question. I will attempt to stir up some discussion to try
to get you an answer. :-)

Couldn't you bridge IPX traffic between these VLANs? To do this you wouldn't
put any ipx network numbers on the subinterfaces, but you would put the ones
that have IPX devices in the same bridge group.

The Cisco LAN Switching book also talks about Routed Switch Virtual
Interfaces (SVIs) for situations like this. Check Chapter 18.

You should take some time to learn how the IPX clients are getting L3
information in the current network. (Always characterize the exiting network
before designing enhancements.) Then take some time to think about the
traffic once you introduce VLANs and isolate broadcast domains. (Are VLANs
new to this network? Was it all one big broadcast domain before??)

When an IPX client boots, it broadcasts a Get Nearest Server (GNS) message,
as you may know. Either a router or server can respond to this. But it has
to be in the same broadcast domain to hear it. What is responding now? And
will it still be in the same broadcast domain in your new design?

After the client learns about a server, including its L3 address, it
broadcasts a Find Network Number message to find a router that can get it to
the server.

Through these messages, the client learns its own network number, the
address of a server, and the address of a local router.

Luckily, you don't have to worry about ARP broadcasts. Because a L3 address
in IPX is network.node, where node is the MAC address, there's no need for
ARP. If a client knows the L3 address for a devie it needs to reach, it also
knows the MAC address.

So, consider how all that is working now and what will happen when you
subdivide broadcast domains. Think about the logical design and then figure
out the configuration, hopefully with help from somebody who knows the 6509
better than I do! :-)

___

Priscilla Oppenheimer
www.troubleshootingnetworks.com
www.priscilla.com




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=56553&t=56533
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: odd & even # IPs on an ACL [7:56551]

[The Long and Winding Road]

in any octet 0 0 0 0 0 0 0 0

if the rightmost bit is 0 ( zero ) the number is even

if the rightmost bit is 1 ( one ) the number is odd

  = even
 0010 = even
 0100 = even
etc

 0001 = odd
  = odd
etc

you should be able to figure out a one line access-list using this info.


www.chuckslongroad.info




""Casey Miles""  wrote in message
news:20021030.WAA16240@;groupstudy.com...
> Just wondering what the correct syntax would be if you wanted to have
> - two networks
> - one network with students with Omiting odd numbered IPs.
> - second network with faculty omiting the even numbered IPs.
>
> Im looking for a one line command to do this.




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=56554&t=56551
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Fw: Update: OSPF Route mystery - what am I missing [7:55975]

[Rahul Kachalia]

Forgot to mention, let me know if you need logs I think i have it

thanks,
rahul.
- Original Message -
From: "Rahul Kachalia" 
Newsgroups: groupstudy.cisco
Sent: Wednesday, October 30, 2002 2:26 PM
Subject: Re: Update: OSPF Route mystery - what am I missing [7:55975]


Chuck,

I may not all answers, but have few broken pieces which may help you...

   When multiple ASBR advertises same LSA then router will choose an ASBR
that advertises lowest cost, if advertised cost from both ASBR is same then
lowest internal cost to reach ASBR will be considered. If advertised cost of
LSA & cost to reach ASBR is same in such case load-balancing will occur.

I tried identical scenario few months ago to check/debug loop &
following is my few findings (based on your topology)...

1. Upon receiving update from R4, R1 & R3 updates their RIP database &
redistributes into OSPF domain.
2. This will be flooded throughout the domain & both R1 & R3 prefers R2 for
route that is originated in RIP (This is because of adm.distance). And
flushes their RIP database.
3. Since RIP database is flushed LSA will removed or advertised as
unreachable to R2 by R1 & R3.
4. Within next 30 seconds, it repeats same story from step1 onwards.

You may have observed random ASBR selection by R2, this may be due to
timing-issue of updating & advertising on R1 & R3. First fix R1 & R3 by
route-map/distance etc to prefer R4 for routes advertised by R4, later you
will see R2 will choose R1 as ASBR but still has LSA info in LSDB. If you
want to load-balance then make equal cost between token ring & serial & see
if you can get your results. Make sure all the time you watch both RIP/OSPF
database changes while there is loop, its fun ;-)

thanks,
rahul.
""The Long and Winding Road""  wrote in
message news:200210210158.BAA20429@;groupstudy.com...
> in line ( like the skates )
>
>
> ""Nigel Taylor""  wrote in message
> news:200210202246.WAA27657@;groupstudy.com...
> > Chuck,
> > I can't believe anyone understood a word I wrote.  After
> reading
> > my post I could only laugh.  Nonetheless, I think you got what I was
> trying
> > to say and I do believe your thoughts and observations are correct.  In
> > reading your post I was trying to recall what could have possibly
provided
> > the material for the discussion you mentioned.
> >
> > The author that comes to mind is no other than "Terry Slattery".
>
> CL: Slattery remains an interesting read.  A lot different, and maybe not
a
> landmark work, a la Doyle, but still worth looking at.
>
>
> >I too did
> > notice the constant flapping of R4's common network using the "debug ip
> > routing" command.
> > I must say this is definitely interesting.  Lately, I've had the
> opportunity
> > to look at a few situations where the use of RIP lead to some very
unique
> > results as it pertains to redistribution. (check this one out...
> > http://www.cisco.com/warp/public/104/10.html).
> > Look at the route table on r2504 take note of the 3.22.x.x and 3.44.x.x
> > networks. Why is it on r2507 that the routes show as ospf exteranl type2
> > routes.  This is just another example of how rip simply works outside of
> the
> > rules.
>
> CL: I was going to say that it's because the routes are RIP routes that
have
> been redistributed into OSPF. However, looking at the configuration, I see
> the interfaces are in the OSPF domain as well. Maybe the configuration is
> being misreported? Maybe if an interface is in both a RIP and an OSPF
> domain, RIP takes preference? That can't be right.
>
> CL: hhhmmm.. fooling around with the configs a bit. Mystery upon
> mystery. I can't duplicate the result on the CCO link below. I'm wondering
> if there are some IOS bugs.
>
> CL: the other thing I got to wondering is if there is some provision in
the
> standard in the case of multiple ABSR's advertising the same route. I
can't
> find anything off hand. It might require a more careful read than I have
> time for right now.
>
>
> >
> > Although, at first look everything does seem to be very
straight-forward,
> > not until you get under the hood do you really see or observe the real
> > issues involved.  Thanks for keeping us all sane :-)
> >
> > Nigel
> >
> >
> >
> >
> > - Original Message -
> > From: "The Long and Winding Road"
> > To:
> > Sent: Sunday, October 20, 2002 5:33 PM
> > Subject: Re: Update: OSPF Route mystery - what am I missing [7:55975]
> >
> >
> > > funny you should mention it. I've spent the last forty minutes looking
> at
> > > debugs on all of the routers involved.
> > >
> > > given the topology,
> > >
> > >  R1tr--R2
> > >   |   |
> > >   |   serial  |serial
> > >   |   |
> > > R4tr--R3
> > >
> > >  R1, R2, and R3 are OSPF routers
> > >  R1, R4, and R3 are RIP ver 2 routers
> > >
> > >  2 way redistribution occurs on R1 and R3. The configurations for
> > >  redistribution 

Re: IPX bridge on 6509?? [7:56533]

[The Long and Winding Road]

""Priscilla Oppenheimer""  wrote in message
news:200210302236.WAA17724@;groupstudy.com...
> Jason Owens wrote:
> >
> > I have a LAN segment in which I wish to move the routing from a
> > 7206 to a new 6509. On the 7206, The interface I want to move
> > has the one main segment (172.16.x.y/24) and around 15
> > secondary interfaces of various networks (My predecessors
> > apparently didn't like sub-interfaces). Unfortunately, IPX is
> > also being routed off of that interface. I want to separate all
> > of these IP networks into individual VLAN's and route between
> > them. My question is how can I get this one IPX network amongst
> > the vlan's that need it? Is this possible?
>
> Very interesting question. I will attempt to stir up some discussion to
try
> to get you an answer. :-)

CL: nothing to "stir up". this is relatively straightforward


>
> Couldn't you bridge IPX traffic between these VLANs? To do this you
wouldn't
> put any ipx network numbers on the subinterfaces, but you would put the
ones
> that have IPX devices in the same bridge group.

CL: that's exactly right. works for all bridged protocols.


>
> The Cisco LAN Switching book also talks about Routed Switch Virtual
> Interfaces (SVIs) for situations like this. Check Chapter 18.


CL: don't know. can do this on the 3550's but I have little direct
experience with 65xx's

>
> You should take some time to learn how the IPX clients are getting L3
> information in the current network. (Always characterize the exiting
network
> before designing enhancements.) Then take some time to think about the
> traffic once you introduce VLANs and isolate broadcast domains. (Are VLANs
> new to this network? Was it all one big broadcast domain before??)

CL: as always, good advice


>
> When an IPX client boots, it broadcasts a Get Nearest Server (GNS)
message,
> as you may know. Either a router or server can respond to this. But it has
> to be in the same broadcast domain to hear it. What is responding now? And
> will it still be in the same broadcast domain in your new design?
>
> After the client learns about a server, including its L3 address, it
> broadcasts a Find Network Number message to find a router that can get it
to
> the server.
>
> Through these messages, the client learns its own network number, the
> address of a server, and the address of a local router.


CL: all of this is educational, and worth reviewing. the person who asked
the questions should be aware that if he bridges all of his formerly
separate IPX networks, all his IPX clients will end up in One Big Flat
Network, i.e. one broadcast domain. This might not be a bright idea,
depending on how many there are. An alternative might be upgrading to an
IP/IPX L3 image on the 6509, assuming he has the L3 supervisor. ( it doesn't
state so in the description )



>
> Luckily, you don't have to worry about ARP broadcasts. Because a L3
address
> in IPX is network.node, where node is the MAC address, there's no need for
> ARP. If a client knows the L3 address for a devie it needs to reach, it
also
> knows the MAC address.

CL: I always liked this idea of combining L2/L3 in the host address.
Unfortunately, MACs are more difficult to deal with than IP. And IPX never
seemed to have that wealth of troubleshooting tools that IP has. Maybe
because it was less troublesome to begin with? ;->

>
> So, consider how all that is working now and what will happen when you
> subdivide broadcast domains. Think about the logical design and then
figure
> out the configuration, hopefully with help from somebody who knows the
6509
> better than I do! :-)
>
> ___
>
> Priscilla Oppenheimer
> www.troubleshootingnetworks.com
> www.priscilla.com




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=56556&t=56533
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

PIX501 to VPN concentrator [7:56558]

[Stull, Cory]

Does anyone know if you can connect a PIX501 with version 6.2 software
"configured as a VPN client simulating more or less client software" that is
going through a static NAT to a VPN concentrator?
 
In theory it should work because you can do it with VPN client software but
does the PIX with version 6.2 configured as a VPN client also encapsulate
the ESP into UDP packets?
 
Cory Stull
CCNP,CCDP,MCSE
Communications Concepts Unlimited
262-814-7214




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=56558&t=56558
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

New Internet Draft of interest? [7:56557]

[Howard C. Berkowitz]

My colleagues Erik Eman and Thomas Eriksson and I have just published 
an Internet-Draft that tries to clarify the underlying theory and 
principles of routing.  It's still a work in progress, but may 
provide some useful background.


Title   : Routing Architecture Building Blocks: an 
Informational
   Taxonomy
Author(s)   : H. Berkowitz et al.
Filename: draft-eriksson-rabbit-00.txt
Pages   : 44
Date: 2002-10-29

This document identifies and categorizes the components of routing,
switching, forwarding, and addressing that may be used in routing
architectures.  The intention is to support the development of a new
routing architecture for the Internet.
The addressing architecture, address allocation and assignment
principles, and possibilities for renumbering are important aspects
when designing a routing architecture.  How routing information is
learned and methods for distributing it are other issues discussed in
this document.  A number of methods for data traffic forwarding are
also described and evaluated

A URL for this Internet-Draft is:
http://www.ietf.org/internet-drafts/draft-eriksson-rabbit-00.txt




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=56557&t=56557
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

CCNP Switching [7:56559]

[John Brandis]

Hi all,
 
in relation to the commecnts on the test, I have not seen a set based switch
for almost a year now, however I look at some of my SYNGRESS CCNP Switching
book, which makes a funny comment on how "ALL" core switchs are set based. I
would like to see the tests coming up in the future, as I feel (and this is
up for debate) that a certain degree of emphasys must be placed upon IOS
based commands at the core, as thats what I expect to see on these platforms
in the future.
 
What you think ?


**

visit http://www.solution6.com

UK Customers - http://www.solution6.co.uk

*

The Solution 6 Group is on the move. As of Monday 25 November, our Sydney HQ
will be located at

Level 14, 383 Kent Street, Sydney NSW 2002

General Phone:(02) 9278 0666
General Fax: (02) 9278 0555

*
This email message (and attachments) may contain information that is
confidential to Solution 6. If you are not the intended recipient you cannot
use, distribute or copy the message or attachments.  In such a case, please
notify the sender by return email immediately and erase all copies of the
message and attachments.  Opinions, conclusions and other information in
this message and attachments that do not relate to the official business of
Solution 6 are neither given nor endorsed by it.
*




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=56559&t=56559
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Another Internet Draft of Interest [7:56560]

[Nigel Taylor]

All,
 I just got through some of the presentations linked from the recent
nanog
meeting.  The draft in question was presented by Henk Uijterwaal titled  "New
Services  from RIPE NCC.

There is also this link on the nanog list to his latest draft.

http://www.ripe.net/home/henk/draft-ietf-ippm-owmetric-as-01.txt

I was just thinking about some of our current tools like ping, hping, and
traceroute which measures round trip delay vs one-way delay.  RFC 2679
discusses numerous reasons for calculating  one-way delay, however would
tools
like ping and traceroute with the existence of ping6 and traceroute6 be
rfc2679 compliant.  I've not done any research at this point but, would
operational tools in everyday use benefit from this new active measurement?

Here's a pretty good link that explains the concept for the "normal" folks
like myself.


Nigel




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=56560&t=56560
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: odd & even # IPs on an ACL [7:56551]

[Rajesh Kumar]

Take ex :

192.168.0.0/24 to 192.168.10.0/24 are the networks.

For filtering odd networks here is what the ACL will look like

192.168.1.0 and the WCM will be 0.0.254.255

For filtering even networks it will be 192.168.0.0 , WCM - 0.0.254.255.

Means that for ODD networks last bit of the third octet will always be 1

For the EVEN networks the last bit of the third octet will always be 0.  So
you care
only that bit in the WCM.


PS :  The chapter for ACL in CCIE Practical Studies by Karl Solie has an
example of this
and a good explanation.


Hope this helps.

Rajesh


Casey Miles wrote:

> Just wondering what the correct syntax would be if you wanted to have
> - two networks
> - one network with students with Omiting odd numbered IPs.
> - second network with faculty omiting the even numbered IPs.
>
> Im looking for a one line command to do this.




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=56561&t=56551
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Off Topic - Physical Layer - fiber connectors [7:56562]

[The Long and Winding Road]

ran into another one today. customer specified APC ( angle polished
connector ) for his fiber links.

I did some searching on the net, and I believe I understand a bit of the
physics involved. 8 degree reflection of the lightwave. used in cable tv
deployments. ( I may be misunderstanding )

I asked the customer to ask his fiber cable vendor instruct as to how we
would terminate to a Cisco switch. The answer was "use the SC connector, but
there will be some performance loss"

Anyone familiar with the APC fiber specification?

Chuck

--

www.chuckslongroad.info




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=56562&t=56562
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

RE: odd & even # IPs on an ACL [7:56551]

[Priscilla Oppenheimer]

Casey Miles wrote:
> 
> Just wondering what the correct syntax would be if you wanted
> to have
> - two networks
> - one network with students with Omiting odd numbered IPs.
> - second network with faculty omiting the even numbered IPs.
> 
> Im looking for a one line command to do this.

What makes a number odd? I would say that an odd number is of the form "2n +
1" for some n. Think about that in binary...

And now, for my annual joke. Do you know why computer people get confused
this time of year and start thinking about Santa Claus instead of the Great
Pumpkin? Because OCT 31 = DEC 25.

What HEX would you like to put on me for that joke? ;-)

I wish I could do ASCII art of a ghost or something, but I'll leave you with
this in decimal: 2816!

___

Priscilla Oppenheimer
www.troubleshootingnetworks.com
www.priscilla.com




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=56563&t=56551
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

RE: PIX501 to VPN concentrator [7:56558]

[Elijah Savage III]

Yes Cory I have done this exact thing before, go to cco and look up
EasyVPN.

-Original Message-
From: Stull, Cory [mailto:Cstull@;CCU.com] 
Sent: Wednesday, October 30, 2002 6:26 PM
To: [EMAIL PROTECTED]
Subject: PIX501 to VPN concentrator [7:56558]


Does anyone know if you can connect a PIX501 with version 6.2 software
"configured as a VPN client simulating more or less client software"
that is going through a static NAT to a VPN concentrator?
 
In theory it should work because you can do it with VPN client software
but does the PIX with version 6.2 configured as a VPN client also
encapsulate the ESP into UDP packets?
 
Cory Stull
CCNP,CCDP,MCSE
Communications Concepts Unlimited
262-814-7214




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=56564&t=56558
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

RE: PIX501 to VPN concentrator [7:56558]

[Elijah Savage III]

About half way of this url there is a example pix config.

http://www.cisco.com/en/US/products/sw/iosswrel/ps4382/products_feature_
guide09186a00800a8565.html

-Original Message-
From: Stull, Cory [mailto:Cstull@;CCU.com] 
Sent: Wednesday, October 30, 2002 6:26 PM
To: [EMAIL PROTECTED]
Subject: PIX501 to VPN concentrator [7:56558]


Does anyone know if you can connect a PIX501 with version 6.2 software
"configured as a VPN client simulating more or less client software"
that is going through a static NAT to a VPN concentrator?
 
In theory it should work because you can do it with VPN client software
but does the PIX with version 6.2 configured as a VPN client also
encapsulate the ESP into UDP packets?
 
Cory Stull
CCNP,CCDP,MCSE
Communications Concepts Unlimited
262-814-7214




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=56565&t=56558
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

RE: isdn dual bri [7:56498]

[Jenny McLeod]

Judging by where in the sequence the disconnect comes, have you tried
turning on debug ppp auth?  On the remote end as well, if you can.  Mind
you, I'm not sure why, on the configs given, the first two channels would
come up if that was the problem.

JMcL
Dwayne Saunders wrote:
> 
> Hi all can any one tell me why from my config that i can get
> the first 2 b
> channels up but the second 2 try to dial and the dissconnect I
> think I am
> missing something very simple.
> 
> 00:02:26: ISDN BRI0/1: isdn_is_bchannel_available: No Free
> B-channels
> 00:02:26: ISDN BR0/0: Outgoing call id = 0x8005
> 00:02:111669190656: ISDN BR0/0: Event: Call to 0198308308 at 64
> Kb/s9
> 00:02:26: %ISDN-6-LAYER2UP: Layer 2 for Interface BR0/0, TEI 76
> changed to
> up
> 00:02:26: ISDN BR0/0: received HOST_PROCEEDING call_id 0x8005
> 00:02:26: ISDN BR0/0: received HOST_CONNECT call_id 0x8005
> 00:02:26: %LINK-3-UPDOWN: Interface BRI0/0:1, changed state to
> up
> 00:02:26: %ISDN-6-CONNECT: Interface BRI0/0:1 is now connected
> to 0198308308
> 00:02:26: BR0/0:1 PPP: Treating connection as a callout
> 00:02:26: BR0/0:1 PPP: Phase is ESTABLISHING, Active Open
>  0:02:26: BR0/0:1 PPP: No remote authentication for call-out
> 00:02:26: BR0/0:1 CHAP: Using alternate hostname username
> 00:02:26: BR0/0:1 LCP: O CONFREQ [Closed] id 4 len 22
> 00:02:26: BR0/0:1 LCP:MagicNumber 0x30831CF7
> (0x050630831CF7)
> 00:02:26: BR0/0:1 LCP:MRRU 1524 (0x110405F4)
> 00:02:26: BR0/0:1 LCP:EndpointDisc 1 Local
> (0x1308017465736173)
> 00:02:26: ISDN BR0/0: Event: Connected to 0198308308 on B1 at
> 64 Kb/s
> 00:02:27: BR0/0:1 LCP: I CONFREQ [REQsent] id 1 len 33
> 00:02:27: BR0/0:1 LCP:VendorSpecific OUI 0x01
> (0x0004)
> 00:02:27: BR0/0:1 LCP:MRU 1524 (0x010405F4)
> 00:02:27: BR0/0:1 LCP:AuthProto CHAP (0x0305C22305)
> 00:02:27: BR0/0:1 LCP:MRRU 1524 (0x110405F4)
> 00:02:27: BR0/0:1 LCP:EndpointDisc 1 Local
> (0x130801737461636B)
> 00:02:27: BR0/0:1 LCP:LinkDiscriminator 24066 (0x17045E02)
> 00:02:27: BR0/0:1 LCP: O CONFREJ [REQsent] id 1 len 12
> 00:02:27: BR0/0:1 LCP:VendorSpecific OUI 0x17
> (0x0004)
> 00:02:27: BR0/0:1 LCP:LinkDiscriminator 24066 (0x17045E02)
> 00:02:27: BR0/0:1 LCP: I CONFACK [REQsent] id 4 len 22
> 00:02:27: BR0/0:1 LCP:MagicNumber 0x30831CF7
> (0x050630831CF7)
> 00:02:27: BR0/0:1 LCP:MRRU 1524 (0x110405F4)
> 00:02:27: BR0/0:1 LCP:EndpointDisc 1 Local
> (0x1308017465736173)
> 00:02:27: BR0/0:1 LCP: I CONFREQ [ACKrcvd] id 2 len 25
> 00:02:27: BR0/0:1 LCP:MRU 1524 (0x010405F4)
> 00:02:27: BR0/0:1 LCP:AuthProto CHAP (0x0305C22305)
> 00:02:27: BR0/0:1 LCP:MRRU 1524 (0x110405F4)
> 00:02:27: BR0/0:1 LCP:EndpointDisc 1 Local
> (0x130801737461636B)
> 00:02:27: BR0/0:1 LCP: O CONFACK [ACKrcvd] id 2 len 25
> 00:02:27: BR0/0:1 LCP:MRU 1524 (0x010405F4)
> 00:02:27: BR0/0:1 LCP:AuthProto CHAP (0x0305C22305)
> 00:02:27: BR0/0:1 LCP:MRRU 1524 (0x110405F4)
> 00:02:27: BR0/0:1 LCP:EndpointDisc 1 Local
> (0x130801737461636B)
> 00:02:27: BR0/0:1 LCP: State is Open
> 00:02:27: BR0/0:1 PPP: Phase is AUTHENTICATING, by the peer
> 00:02:27: BR0/0:1 CHAP: I CHALLENGE id 1 len 28 from "Dial IP"
> 00:02:27: BR0/0:1 CHAP: Using alternate hostname username
> 00:02:27: BR0/0:1 CHAP: Username Dial IP not found
> 00:02:27: BR0/0:1 CHAP: Using default password
> 00:02:27: BR0/0:1 CHAP: O RESPONSE id 1 len 26 from "username"
> 00:02:27: ISDN BR0/0: received HOST_DISCONNECT call_id 0x8005
> 00:02:27: ISDN BR0/0: Event:  Call to  was hung up.
> 00:02:27: %LINK-3-UPDOWN: Interface BRI0/0:1, changed state to
> down
> 00:02:27: BR0/0:1 PPP: Phase is TERMINATING
> 00:02:27: BR0/0:1 LCP: State is Closed
> 00:02:27: BR0/0:1 PPP: Phase is DOWN
> 00:02:42: %ISDN-6-LAYER2DOWN: Layer 2 for Interface BR0/0, TEI
> 76 changed to
> dow
> n
> conven02#
> conven02#
> conven02#
> conven02#
> conven02#
> conven02#
> conven02#u all
> All possible debugging has been turned off
> conven02#
> conven02#sh ru
> Building configuration...
> 
> Current configuration:
> !
> version 12.0
> service timestamps debug uptime
> service timestamps log uptime
> service password-encryption
> !
> hostname conven02
> !
> enable password 7 1511021F0725
> !
> memory-size iomem 10
> ip subnet-zero
> no ip domain-lookup
> isdn switch-type basic-net3
> !
> !
> !
> interface Ethernet0/0
>  description connected to EthernetLAN_1
>  ip address 192.168.1.1 255.255.255.0
>  no ip directed-broadcast
>  ip nat inside
> !
> interface BRI0/0
>  description connected to Internet
>  no ip address
>  no ip directed-broadcast
>  ip nat outside
>  encapsulation ppp
>  dialer rotary-group 1
>  isdn switch-type basic-net3
>  no cdp enable
> !
> interface BRI0/1
>  description connected to Internet
>  no ip address
>  no ip directed-broadcast
>  ip nat outside
>  encapsulation ppp
>  dialer rotary-group 1
>  isdn switch-type basic-net3
>  no cdp enable
> !
> interface Dialer1
>  description connected to Internet
>  ip addr

Re: ACS for Windows 2000 [7:56534]

[Tim Metz]

I had the same problem so I just made the acs server a domain controller and
all is well

Tim

""Marakalas""  wrote in message
news:200210301727.RAA17390@;groupstudy.com...
> Hi guys
>
> I have problems in configuring ACS for RAS to
> authenticate users using Active Directory on the
> Windows domain? I'm having problems in getting this to work.
>
> __
> Do You Yahoo!?
> Yahoo! Health - Feel better, live better
> http://health.yahoo.com




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=56567&t=56534
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

RE: Off Topic - Physical Layer - fiber connectors [7:56562]

[Jesse Loggins]

Optical Reflections and noise and distortion 
As in RF systems, reflections in RF / Optical systems are an issue. Optical
reflections back into the laser diode cause a disturbance in the lasers gain
cavity creating noise and distortion. The main sources of optical
reflections are connector interfaces. A simple way to avoid most of the
reflections at the interfaces is through the use of angle-polished
connectors. The tip of an angle-polished, or APC connector is polished at an
8 degree angle. This is the optimal angle to minimize reflections from
traveling back down the fiber into the laser. At this angle most reflections
occurring due to the connector will be angled out of the fiber and
dissipated harmlessly. Other general rules to minimize reflections: keep the
connector tip clean and scratch free and always replace the cap onto the tip
when the connector is not mated.

Found this info at this page--
http://www.anacomsystems.com/anacom/rfonfiber.htm

HTH


Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=56568&t=56562
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

PIX 525 [7:56569]

[John Chang]

What kind of throughput should I be getting if I am using a WinXP with the 
MS IPsec VPN client through a Cisco PIX 525?  How can I test it?

Thank you.




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=56569&t=56569
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

RE: serial up, line ptotocol up..for a while [7:56515]

[Jesse Loggins]

Would a mismatch of LMI types cause this?


Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=56570&t=56515
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: Yahoo messanger traffic can be seen/blocked? [7:56571]

[Mr piyush shah]

Hi all
I am network administrator and in our network there
are people who use Yahoo messangers.I have few
querries pertaining to this as under.
1. Is there any tool by which I can see whether who is
chating ?
2. Can I see the content of his chating using that
tool ?
3. If I want to block this  yahoo messanger in my
firewall (I use checkpoint 2000 ) what is the step to
be taken ?


Thanks in advance


Missed your favourite TV serial last night? Try the new, Yahoo! TV.
   visit http://in.tv.yahoo.com




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=56571&t=56571
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

RE: isdn dual bri [7:56498]

[Dwayne Saunders]

Jenny,
The other end is telstra but does the config look right for it to
work.

Regards

D'Wayne Saunders
Data Network Administrator

Phone:  +61 8 8950 7742
Mobile: +61 412 832 322
Fax:  +61 8 8952 1112

www.lasseters.com.au
  
World's First Government Licensed and Regulated Online Casino...


***
This email message (and attachments) may contain information that is
confidential to Lasseters Online. If you are not the intended recipient you
cannot use, distribute or copy the message or attachments. In such a case,
please notify the sender  by return email immediately and erase all copies
of the message and attachments. Opinions, conclusions and other information
in this message and attachments that do not relate to the official business
of Lasseters Online are neither given nor endorsed by it.

***




-Original Message-
From: Jenny McLeod [mailto:nobody@;groupstudy.com]
Sent: Thursday, 31 October 2002 12:46 PM
To: [EMAIL PROTECTED]
Subject: RE: isdn dual bri [7:56498]


Judging by where in the sequence the disconnect comes, have you tried
turning on debug ppp auth?  On the remote end as well, if you can.  Mind
you, I'm not sure why, on the configs given, the first two channels would
come up if that was the problem.

JMcL
Dwayne Saunders wrote:
> 
> Hi all can any one tell me why from my config that i can get
> the first 2 b
> channels up but the second 2 try to dial and the dissconnect I
> think I am
> missing something very simple.
> 
> 00:02:26: ISDN BRI0/1: isdn_is_bchannel_available: No Free
> B-channels
> 00:02:26: ISDN BR0/0: Outgoing call id = 0x8005
> 00:02:111669190656: ISDN BR0/0: Event: Call to 0198308308 at 64
> Kb/s9
> 00:02:26: %ISDN-6-LAYER2UP: Layer 2 for Interface BR0/0, TEI 76
> changed to
> up
> 00:02:26: ISDN BR0/0: received HOST_PROCEEDING call_id 0x8005
> 00:02:26: ISDN BR0/0: received HOST_CONNECT call_id 0x8005
> 00:02:26: %LINK-3-UPDOWN: Interface BRI0/0:1, changed state to
> up
> 00:02:26: %ISDN-6-CONNECT: Interface BRI0/0:1 is now connected
> to 0198308308
> 00:02:26: BR0/0:1 PPP: Treating connection as a callout
> 00:02:26: BR0/0:1 PPP: Phase is ESTABLISHING, Active Open
>  0:02:26: BR0/0:1 PPP: No remote authentication for call-out
> 00:02:26: BR0/0:1 CHAP: Using alternate hostname username
> 00:02:26: BR0/0:1 LCP: O CONFREQ [Closed] id 4 len 22
> 00:02:26: BR0/0:1 LCP:MagicNumber 0x30831CF7
> (0x050630831CF7)
> 00:02:26: BR0/0:1 LCP:MRRU 1524 (0x110405F4)
> 00:02:26: BR0/0:1 LCP:EndpointDisc 1 Local
> (0x1308017465736173)
> 00:02:26: ISDN BR0/0: Event: Connected to 0198308308 on B1 at
> 64 Kb/s
> 00:02:27: BR0/0:1 LCP: I CONFREQ [REQsent] id 1 len 33
> 00:02:27: BR0/0:1 LCP:VendorSpecific OUI 0x01
> (0x0004)
> 00:02:27: BR0/0:1 LCP:MRU 1524 (0x010405F4)
> 00:02:27: BR0/0:1 LCP:AuthProto CHAP (0x0305C22305)
> 00:02:27: BR0/0:1 LCP:MRRU 1524 (0x110405F4)
> 00:02:27: BR0/0:1 LCP:EndpointDisc 1 Local
> (0x130801737461636B)
> 00:02:27: BR0/0:1 LCP:LinkDiscriminator 24066 (0x17045E02)
> 00:02:27: BR0/0:1 LCP: O CONFREJ [REQsent] id 1 len 12
> 00:02:27: BR0/0:1 LCP:VendorSpecific OUI 0x17
> (0x0004)
> 00:02:27: BR0/0:1 LCP:LinkDiscriminator 24066 (0x17045E02)
> 00:02:27: BR0/0:1 LCP: I CONFACK [REQsent] id 4 len 22
> 00:02:27: BR0/0:1 LCP:MagicNumber 0x30831CF7
> (0x050630831CF7)
> 00:02:27: BR0/0:1 LCP:MRRU 1524 (0x110405F4)
> 00:02:27: BR0/0:1 LCP:EndpointDisc 1 Local
> (0x1308017465736173)
> 00:02:27: BR0/0:1 LCP: I CONFREQ [ACKrcvd] id 2 len 25
> 00:02:27: BR0/0:1 LCP:MRU 1524 (0x010405F4)
> 00:02:27: BR0/0:1 LCP:AuthProto CHAP (0x0305C22305)
> 00:02:27: BR0/0:1 LCP:MRRU 1524 (0x110405F4)
> 00:02:27: BR0/0:1 LCP:EndpointDisc 1 Local
> (0x130801737461636B)
> 00:02:27: BR0/0:1 LCP: O CONFACK [ACKrcvd] id 2 len 25
> 00:02:27: BR0/0:1 LCP:MRU 1524 (0x010405F4)
> 00:02:27: BR0/0:1 LCP:AuthProto CHAP (0x0305C22305)
> 00:02:27: BR0/0:1 LCP:MRRU 1524 (0x110405F4)
> 00:02:27: BR0/0:1 LCP:EndpointDisc 1 Local
> (0x130801737461636B)
> 00:02:27: BR0/0:1 LCP: State is Open
> 00:02:27: BR0/0:1 PPP: Phase is AUTHENTICATING, by the peer
> 00:02:27: BR0/0:1 CHAP: I CHALLENGE id 1 len 28 from "Dial IP"
> 00:02:27: BR0/0:1 CHAP: Using alternate hostname username
> 00:02:27: BR0/0:1 CHAP: Username Dial IP not found
> 00:02:27: BR0/0:1 CHAP: Using default password
> 00:02:27: BR0/0:1 CHAP: O RESPONSE id 1 len 26 from "username"
> 00:02:27: ISDN BR0/0: received HOST_DISCONNECT call_id 0x8005
> 00:02:27: ISDN BR0/0: Event:  Call to  was hung up.
> 00:02:27: %LINK-3-UPDOWN: Interface BRI0/0:1, changed state to
> down
> 00:02:27: BR0/0:1 PPP: Phase is TERMINATING
> 00:02:27: BR0/0:1 LCP: State is Closed
> 00:02:27: BR0/0:1 PPP: Phase is D

DHCP (client) problem on Cisco 2514 [7:56573]

[Steven]

Got this weird problem with a 2514 I use as a broadband router. I connect
the router to a DSL modem, but it doesn't get an IP address assigned. I got
the correct IOS, and have "ip address dhcp" configured on the outside
interface.
When I connect a PC directly to the DSL modem, it gets an IP address without
any problems... Of course I release the IP again before I disconnect the PC.
Also tried to statically assign the IP (obtained by DHCP with a PC) to my
router, and everything works just fine... But my provider changes the IP
every 24hrs.
:-(

I have other routers (not 2500s), but didn't have the time yet to try with
those. Wonder if any of you got similar problems and knows what is wrong?

Here is some debug output, FWIW

YahooBB-Router#
Oct 30 18:56:13 JST: DHCP: DHCP client process started:
Oct 30 18:56:17 JST: DHCP: Shutting down from get_netinfo()
Oct 30 18:56:17 JST: DHCP: Attempting to shutdown DHCP Client
Oct 30 18:56:18 JST: DHCP: allocate request
Oct 30 18:56:18 JST: DHCP: new entry. add to queue
Oct 30 18:56:18 JST: DHCP: SDiscover attempt # 1 for entry:
Oct 30 18:56:18 JST: DHCP: SDiscover: sending 298 byte length DHCP packet
Oct 30 18:56:18 JST: DHCP: SDiscover 298 bytes
Oct 30 18:56:21 JST: DHCP: SDiscover attempt # 2 for entry:
Oct 30 18:56:21 JST: DHCP: SDiscover: sending 298 byte length DHCP packet
Oct 30 18:56:21 JST: DHCP: SDiscover 298 bytes
Oct 30 18:56:24 JST: DHCP: SDiscover attempt # 3 for entry:
Oct 30 18:56:24 JST: DHCP: SDiscover: sending 298 byte length DHCP packet
Oct 30 18:56:24 JST: DHCP: SDiscover 298 bytes [OK]
YahooBB-Router#
YahooBB-Router#%Unknown DHCP problem.. No allocation possible




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=56573&t=56573
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: DHCP (client) problem on Cisco 2514 [7:56573]

[Steven]

I suppose posting the config would help...

YahooBB-Router#sh run
Building configuration...

Current configuration : 1779 bytes
!
! Last configuration change at 16:42:47 JST Wed Oct 30 2002
!
version 12.2
no service single-slot-reload-enable
service tcp-keepalives-in
service tcp-keepalives-out
service timestamps debug datetime localtime show-timezone
service timestamps log datetime localtime show-timezone
service password-encryption
service udp-small-servers
service tcp-small-servers
!
hostname YahooBB-Router
!
logging rate-limit console 10 except errors
enable secret 5 $1$c9.a$lpUgd8kGiwWmFJ.yTpfAD.
!
clock timezone JST 9
ip subnet-zero
no ip finger
ip name-server x.x.x.x
ip dhcp excluded-address 192.168.1.1 192.168.1.15
!
ip dhcp pool PrivateNet
network 192.168.1.0 255.255.255.0
default-router 192.168.1.1
dns-server x.x.x.x
!
ip cef
no ip dhcp-client network-discovery
!
!
!
!
interface Ethernet0
description toLAN
ip address 192.168.1.1 255.255.255.0
ip nat inside
no ip mroute-cache
load-interval 30
!
interface Ethernet1
description ToYahooBB_Modem
ip address dhcp
ip nat outside
no ip mroute-cache
load-interval 30
!
interface Serial0
no ip address
no ip mroute-cache
shutdown
!
interface Serial1
no ip address
no ip mroute-cache
shutdown
!
ip kerberos source-interface any
ip nat inside source list 101 interface Ethernet1 overload
ip classless
ip route 0.0.0.0 0.0.0.0 ethernet 1
no ip http server
!
access-list 1 permit x.x.x.x 0.0.0.255
access-list 1 permit x.x.x.x 0.0.0.255
access-list 1 deny any log
access-list 101 permit ip 192.168.1.0 0.0.0.255 any
!
!
line con 0
exec-timeout 500 0
transport input none
line aux 0
transport input all
line vty 0 4
access-class 1 in
exec-timeout 500 0
password 7 xxx
login
!
ntp clock-period 17180016
ntp server x.x.x.x
ntp server x.x.x.x
end

YahooBB-Router#


""Steven""  wrote in message
news:200210310447.EAA24091@;groupstudy.com...
> Got this weird problem with a 2514 I use as a broadband router. I connect
> the router to a DSL modem, but it doesn't get an IP address assigned. I
got
> the correct IOS, and have "ip address dhcp" configured on the outside
> interface.
> When I connect a PC directly to the DSL modem, it gets an IP address
without
> any problems... Of course I release the IP again before I disconnect the
PC.
> Also tried to statically assign the IP (obtained by DHCP with a PC) to my
> router, and everything works just fine... But my provider changes the IP
> every 24hrs.
> :-(
>
> I have other routers (not 2500s), but didn't have the time yet to try with
> those. Wonder if any of you got similar problems and knows what is wrong?
>
> Here is some debug output, FWIW
>
> YahooBB-Router#
> Oct 30 18:56:13 JST: DHCP: DHCP client process started:
> Oct 30 18:56:17 JST: DHCP: Shutting down from get_netinfo()
> Oct 30 18:56:17 JST: DHCP: Attempting to shutdown DHCP Client
> Oct 30 18:56:18 JST: DHCP: allocate request
> Oct 30 18:56:18 JST: DHCP: new entry. add to queue
> Oct 30 18:56:18 JST: DHCP: SDiscover attempt # 1 for entry:
> Oct 30 18:56:18 JST: DHCP: SDiscover: sending 298 byte length DHCP packet
> Oct 30 18:56:18 JST: DHCP: SDiscover 298 bytes
> Oct 30 18:56:21 JST: DHCP: SDiscover attempt # 2 for entry:
> Oct 30 18:56:21 JST: DHCP: SDiscover: sending 298 byte length DHCP packet
> Oct 30 18:56:21 JST: DHCP: SDiscover 298 bytes
> Oct 30 18:56:24 JST: DHCP: SDiscover attempt # 3 for entry:
> Oct 30 18:56:24 JST: DHCP: SDiscover: sending 298 byte length DHCP packet
> Oct 30 18:56:24 JST: DHCP: SDiscover 298 bytes [OK]
> YahooBB-Router#
> YahooBB-Router#%Unknown DHCP problem.. No allocation possible




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=56574&t=56573
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

RE: Yahoo messanger traffic can be seen/blocked? [7:56571]

[Paul Msava]

block socks port 1080



-Original Message-
From: [EMAIL PROTECTED] [mailto:nobody@;groupstudy.com]On Behalf Of
Mr piyush shah
Sent: Thursday, October 31, 2002 6:58 AM
To: [EMAIL PROTECTED]
Subject: Re: Yahoo messanger traffic can be seen/blocked? [7:56571]


Hi all
I am network administrator and in our network there
are people who use Yahoo messangers.I have few
querries pertaining to this as under.
1. Is there any tool by which I can see whether who is
chating ?
2. Can I see the content of his chating using that
tool ?
3. If I want to block this  yahoo messanger in my
firewall (I use checkpoint 2000 ) what is the step to
be taken ?


Thanks in advance


Missed your favourite TV serial last night? Try the new, Yahoo! TV.
   visit http://in.tv.yahoo.com




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=56575&t=56571
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: Another Internet Draft of Interest [7:56560]

[Howard C. Berkowitz]

"Nigel Taylor" All,
>  I just got through some of the presentations linked from the recent
>nanog
>meeting.  The draft in question was presented by Henk Uijterwaal titled 
"New
>Services  from RIPE NCC.
>
>There is also this link on the nanog list to his latest draft.
>
>http://www.ripe.net/home/henk/draft-ietf-ippm-owmetric-as-01.txt
>
>I was just thinking about some of our current tools like ping, hping, and
>traceroute which measures round trip delay vs one-way delay.  RFC 2679
>discusses numerous reasons for calculating  one-way delay, however would
>tools
>like ping and traceroute with the existence of ping6 and traceroute6 be
>rfc2679 compliant.  I've not done any research at this point but, would
>operational tools in everyday use benefit from this new active measurement?
>
>Here's a pretty good link that explains the concept for the "normal" folks
>like myself.

There are several problems with using timestamped measurement in the 
router itself.  Some of these may be reduced with IPv6, but, for 
others, external passive hardware or special router hardware seems 
necessary.  See our BGP convergence drafts, 
http://www.ietf.org/internet-drafts/draft-ietf-bgpconv-03.txt and 
http://www.ietf.org/internet-drafts/draft-ietf-bgpbas-00.txt

First, routers may not give sufficient precision in measurement, 
because they rate-limit ICMP to protect against ICMP floods, or 
simply don't prioritize it highly.  I mention IPv6 because 
authenticated source addresses may be used without fear of denial of 
service.

Second, the router may or may not have the capacity to capture and 
store a statistically valid amount of data. NetFlow data export, for 
example, summarizes to a degree. If you could shoot debug to syslog, 
you'd have a much better chance as long as the router could keep up 
with it, using something like a SPAN port.




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=56576&t=56560
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

RE: odd & even # IPs on an ACL [7:56551]

[Jennifer Mellone]

Cute!

So I'm thinking that tomorrow (Halloween) I'll put on a subnet mask.
It will be 255.255.0.0, and the two 0's will have little holes in the middle
for my eyes ;-)

- Jennifer Mellone


Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=56577&t=56551
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]