Re: Error on an interface FastEthernet of a router 3745 [7:73139]
You can use Cisco Error Message Decoder tool to interpret these kind of messages: http://www.cisco.com/kobayashi/support/tac/tools_trouble.shtml You need CCO login. Here is the error: 1. %GT96K_FEWAN-5-UNDERFLOW: Transmit underflow on int ... While a frame was being transmitted, the local buffer of the GT96K controller chip received insufficient data because data could not be transferred to the chip fast enough to keep pace with its output rate. Normally, such a prob lem is temporary, depending on transient peak loads within the system. *Recommended Action: * The system should recover. No action is required. *Related documents: *No specific documents apply to this error message. Hope it helps. /Nadeem Vikram JeetSingh wrote: >HI Joseba, > > >I have mostly seen the IP Fast Switching on the same interface in the >disabled mode by default, and you have forcefully enabled it. Try to disable >it and see the results. > >HTH > >Vikram > > >-Original Message- >From: Joseba Izaga [mailto:[EMAIL PROTECTED] >Sent: Saturday, July 19, 2003 6:26 AM >To: [EMAIL PROTECTED] >Subject: Error on an interface FastEthernet of a router 3745 [7:72610] > > >Hi, > >Do you now the reason of the folowing message: > >11:31:40: %GT96K_FEWAN-5-UNDERFLOW: Transmit underflow on int >FastEthernet0/0 >11:31:40: %GT96K_FEWAN-5-UNDERFLOW: Transmit underflow on int >FastEthernet0/0 > > >This is configuration I have on the interface > >interface FastEthernet0/0 > ip address 63.80.132.16 255.255.255.0 > ip route-cache same-interface > ip policy route-map mail > speed 100 > full-duplex > >Regards, > >Joseba Izaga Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=73139&t=73139 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
passed mpls [7:73140]
Finally passed MPLS with 925. Comparing to the other core exams for CCIP, this exam was by far the most intense. Any reason(s) why Cisco has this exam rated at 867 to pass? Rgds, Mark. Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=73140&t=73140 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: NM-1HSSI w/kentrox DataSMART T3/E3 [7:73129]
Don't you need clock on serials? /Nadeem Jablonski, Michael wrote: >Has anyone had any experience w/the following combination? > >3640 & NM-1HSSI & Kentrox DataSMART T3/E3 IDSU > >I've been trying, to no avail, to bring the HSSI up for a 12M DS3 The >CSU/DSU, according to the lights, is ready to send and receive data; but >when I bring up the int on the router, it shows down down. Here's the >router info: >~~~ >interface Hssi1/0 > bandwidth 12000 > ip address x.x.x.x 255.255.255.252 > serial restart_delay 0 > no cdp enable > >Hssi1/0 is down, line protocol is down > Hardware is M1T-HSSI-B > Internet address is x.x.x.x/30 > MTU 4470 bytes, BW 12000 Kbit, DLY 200 usec, > reliability 255/255, txload 1/255, rxload 1/255 > Encapsulation HDLC, crc 16, loopback not set > Keepalive set (10 sec) > Restart-Delay is 0 secs > Last input never, output never, output hang never > Last clearing of "show interface" counters never > Input queue: 0/75/0/0 (size/max/drops/flushes); Total output drops: 0 > Queueing strategy: fifo > Output queue :0/40 (size/max) > 5 minute input rate 0 bits/sec, 0 packets/sec > 5 minute output rate 0 bits/sec, 0 packets/sec > 0 packets input, 0 bytes, 0 no buffer > Received 0 broadcasts, 0 runts, 0 giants, 0 throttles > 0 parity > 0 input errors, 0 CRC, 0 frame, 0 overrun, 0 ignored, 0 abort > 0 packets output, 0 bytes, 0 underruns > 0 output errors, 0 applique, 8 interface resets > 0 output buffer failures, 0 output buffers swapped out > 13 carrier transitions LC=down CA=down TM=down LB=down TA=up >LA=down Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=73137&t=73129 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RADIUS load-balancing [7:73138]
Hi list, Does anyone have experience with CSS' server load-balancing, specifically RADIUS load-balancing? We got the following situation: LAC is generating all user authentication packets using an unique source port / source address pair. What happens: CSS treats all packets as an unique flow (as they seems to come from the same IP+port pair), so we got a problem with the server load-balancing... This behavior does make sense in almost all IP transactions, but not with RADIUS (as there is no need for flow persistence) so we'd like to overcome this limitation, due to our specific situation... Anyone has some idea to change this behavior on CSS boxes? * By the way, any thoughts in Alteon or Radware boxes? We have heard we can change this behavior on an Alteon box (with some limitations) and that the Radware box has an specific feature called RADIUS load-balancing, that solves this problem... is that right? Best regards. Rodrigo Kazuo Yamamoto Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=73138&t=73138 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
network simulator software... open or "iopened " :) [7:73136]
dear all, ada yang bisa kasih inputan software opensource atawa crack2an ya :) tentang network simulator/ lan - wan simulator ( switch-router-wan cloud-isdn-client .. any network device ) teng kiu hin Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=73136&t=73136 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Gigabit Copper Switch [7:73116]
It hasn't...! Larry Letterman Cisco Systems -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] Sent: Monday, July 28, 2003 4:21 PM To: [EMAIL PROTECTED] Subject: Re: Gigabit Copper Switch [7:73116] ""Larry Letterman"" wrote in message news:[EMAIL PROTECTED] > I could recommend a 7603, with a sup-2, and a 6548 10/100/1000 Line > card. Buts its kinda overkill if he just needs 24 ports of > 10/100/1000 since when did THAT ever stop you? ;-> > > > Larry Letterman > Cisco Systems > > > > > -Original Message- > From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] > Sent: Monday, July 28, 2003 12:30 PM > To: [EMAIL PROTECTED] > Subject: Re: Gigabit Copper Switch [7:73116] > > > I guess it might just be too expensive but I expected to see a > recomendation for a 4500 series switch. Gigabit copper capable and it > should have no problem handling the server farm load. > > David Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=73134&t=73116 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: NP-2T to 2500 [7:73127]
It should work like a charm. I have noticed that the back to back serial cables (1 cable instead of 2 separate DTE/DCE cables) seem to be very shaky (out of the 15-20 back to back cables at least 3 have been unable to reliably setup a serial connection)... Andre' -Original Message- From: Vic Dmon [mailto:[EMAIL PROTECTED] Sent: Monday, July 28, 2003 5:22 PM To: [EMAIL PROTECTED] Subject: NP-2T to 2500 [7:73127] Hi, has anyone had any problems with connceting a NP-2T serial interface to a 2500 serial interface. I ordered a cable with the DB60 end being the DTE and the DB50 (NP-2T) being the DCE. I have put the clockrate command on the DCE end but cannot get the interface to come up. I tried different clock rate settings also. I understand that this may be a problem with the jumper settings on the 4000 but I just want to confirm if anyone has ever come across this issue. Appreciate the help. 2500 show controller output: HD unit 0, idb = 0x250D1C, driver structure at 0x258730 buffer size 1524 HD unit 0, RS-449 DTE cable cpb = 0xE2, eda = 0x2940, cda = 0x2800 RX ring with 16 entries at 0xE22800 00 bd_ptr=0x2800 pak=0x256354 ds=0xE26108 status=80 pak_size=0 01 bd_ptr=0x2814 pak=0x256620 ds=0xE267C4 status=80 pak_size=0 02 bd_ptr=0x2828 pak=0x2568EC ds=0xE26E80 status=80 pak_size=0 03 bd_ptr=0x283C pak=0x256BB8 ds=0xE2753C status=80 pak_size=0 04 bd_ptr=0x2850 pak=0x256E84 ds=0xE27BF8 status=80 pak_size=0 05 bd_ptr=0x2864 pak=0x257150 ds=0xE282B4 status=80 pak_size=0 06 bd_ptr=0x2878 pak=0x25741C ds=0xE28970 status=80 pak_size=0 07 bd_ptr=0x288C pak=0x2576E8 ds=0xE2902C status=80 pak_size=0 08 bd_ptr=0x28A0 pak=0x2579B4 ds=0xE296E8 status=80 pak_size=0 09 bd_ptr=0x28B4 pak=0x257C80 ds=0xE29DA4 status=80 pak_size=0 10 bd_ptr=0x28C8 pak=0x257F4C ds=0xE2A460 status=80 pak_size=0 11 bd_ptr=0x28DC pak=0x258218 ds=0xE2AB1C status=80 pak_size=0 12 bd_ptr=0x28F0 pak=0x258994 ds=0xE2B1D8 status=80 pak_size=0 13 bd_ptr=0x2904 pak=0x258C60 ds=0xE2B894 status=80 pak_size=0 14 bd_ptr=0x2918 pak=0x258F2C ds=0xE2BF50 status=80 pak_size=0 15 bd_ptr=0x292C pak=0x2591F8 ds=0xE2C60C status=80 pak_size=0 16 bd_ptr=0x2940 pak=0x2594C4 ds=0xE2CCC8 status=80 pak_size=0 cpb = 0xE2, eda = 0x3000, cda = 0x3000 TX ring with 4 entries at 0xE23000 4000 NP-2T show controller output: MK5 unit 1, NIM slot 2, NIM type code 7, NIM version 1 idb = 0x69E8, driver structure at 0xE6EFB8, regaddr = 0x8200400 IB at 0x603D640: mode=0x0108, local_addr=0, remote_addr=0 N1=1524, N2=1, scaler=100, T1=1000, T3=2000, TP=1 buffer size 1524 DCE V.11 (RS-449 or X.21) serial cable attached, clockrate 56000 RX ring with 32 entries at 0x3D6A8 : RLEN=5, Rxhead 0 00 pak=0xE7228C ds=0x6046264 status=80 max_size=1524 pak_size=0 01 pak=0xE70FEC ds=0x6042C84 status=80 max_size=1524 pak_size=0 02 pak=0xE732D8 ds=0x6049188 status=80 max_size=1524 pak_size=0 03 pak=0xE71494 ds=0x60439FC status=80 max_size=1524 pak_size=0 04 pak=0xE716E8 ds=0x60440B8 status=80 max_size=1524 pak_size=0 05 pak=0xE73780 ds=0x6049F00 status=80 max_size=1524 pak_size=0 06 pak=0xE71240 ds=0x6043340 status=80 max_size=1524 pak_size=0 07 pak=0xE7193C ds=0x6044774 status=80 max_size=1524 pak_size=0 08 pak=0xE71B90 ds=0x6044E30 status=80 max_size=1524 pak_size=0 09 pak=0xE72038 ds=0x6045BA8 status=80 max_size=1524 pak_size=0 10 pak=0xE72734 ds=0x6046FDC status=80 max_size=1524 pak_size=0 11 pak=0xE72988 ds=0x6047698 status=80 max_size=1524 pak_size=0 12 pak=0xE72BDC ds=0x6047D54 status=80 max_size=1524 pak_size=0 13 pak=0xE73084 ds=0x6048ACC status=80 max_size=1524 pak_size=0 14 pak=0xE7352C ds=0x6049844 status=80 max_size=1524 pak_size=0 15 pak=0xE739D4 ds=0x604A5BC status=80 max_size=1524 pak_size=0 For more information about Barclays Capital, please visit our web site at http://www.barcap.com. Internet communications are not secure and therefore the Barclays Group does not accept legal responsibility for the contents of this message. Although the Barclays Group operates anti-virus programmes, it does not accept responsibility for any damage whatsoever that is caused by viruses being passed. Any views or opinions presented are solely those of the author and do not necessarily represent those of the Barclays Group. Replies to this email may be monitored by the Barclays Group for operational or business reasons. Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=73132&t=73127 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
changing routers [7:73131]
Hi List. I currently have a linksys with IP x.x.x.178 the new box has and ip of x.x.x.179. My problem is my mx record is set to 178 and I have already setup VPN using the 179 address on the new box. We have a consultant saying that we can add the 178 address to the outside interface which also has the 179 ip address. Is this true So that would mean my outside interface has two IP x.x.x178 and x.x.x.179 I would then need to forward smtp to an internal x.x.x.11 IP address. Can someone tell me if this is possible and if so how to do it. I was not aware that my outside interface could hold multiple IP addresses thanks Keith Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=73131&t=73131 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: New Network IPX [7:73113]
""J B"" wrote in message news:[EMAIL PROTECTED] > I'm not really familiar with IPX and I have to connect 3 remote branches to > a central site where the Novell server is located. > Can anybody point me to some sample configurations. easy enough to do. IPX was my first love and not a lot of trouble at all, particularly if you are just going to do IPX RIP turn on IPX routing on each local router: ipx routing ( global config ) Then you need and IPX network number on each WAN link. ipx network aabbcc ( interface config ) on the ethernet link your IPX netowrk command should also include the switch that matches the IPX net encapsulation your workstations are using. ipx network ccaa encap sap, for example. check how things are done at the central site. at this point IPX RIP routing is raring to go. there are lots of subtleties, but this basic config should do geez, its been a while. I actually had to look up some of these :-> > > Thanks > JB Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=73130&t=73113 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Gigabit Copper Switch [7:73116]
""Larry Letterman"" wrote in message news:[EMAIL PROTECTED] > I could recommend a 7603, with a sup-2, and a 6548 10/100/1000 > Line card. Buts its kinda overkill if he just needs 24 ports of > 10/100/1000 since when did THAT ever stop you? ;-> > > > Larry Letterman > Cisco Systems > > > > > -Original Message- > From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] > Sent: Monday, July 28, 2003 12:30 PM > To: [EMAIL PROTECTED] > Subject: Re: Gigabit Copper Switch [7:73116] > > > I guess it might just be too expensive but I expected to see a > recomendation for a 4500 series switch. Gigabit copper capable and it > should have no problem handling the server farm load. > > David Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=73133&t=73116 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Gigabit Copper Switch [7:73116]
I could recommend a 7603, with a sup-2, and a 6548 10/100/1000 Line card. Buts its kinda overkill if he just needs 24 ports of 10/100/1000 Larry Letterman Cisco Systems -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] Sent: Monday, July 28, 2003 12:30 PM To: [EMAIL PROTECTED] Subject: Re: Gigabit Copper Switch [7:73116] I guess it might just be too expensive but I expected to see a recomendation for a 4500 series switch. Gigabit copper capable and it should have no problem handling the server farm load. David Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=73128&t=73116 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
NM-1HSSI w/kentrox DataSMART T3/E3 [7:73129]
Has anyone had any experience w/the following combination? 3640 & NM-1HSSI & Kentrox DataSMART T3/E3 IDSU I've been trying, to no avail, to bring the HSSI up for a 12M DS3 The CSU/DSU, according to the lights, is ready to send and receive data; but when I bring up the int on the router, it shows down down. Here's the router info: ~~~ interface Hssi1/0 bandwidth 12000 ip address x.x.x.x 255.255.255.252 serial restart_delay 0 no cdp enable Hssi1/0 is down, line protocol is down Hardware is M1T-HSSI-B Internet address is x.x.x.x/30 MTU 4470 bytes, BW 12000 Kbit, DLY 200 usec, reliability 255/255, txload 1/255, rxload 1/255 Encapsulation HDLC, crc 16, loopback not set Keepalive set (10 sec) Restart-Delay is 0 secs Last input never, output never, output hang never Last clearing of "show interface" counters never Input queue: 0/75/0/0 (size/max/drops/flushes); Total output drops: 0 Queueing strategy: fifo Output queue :0/40 (size/max) 5 minute input rate 0 bits/sec, 0 packets/sec 5 minute output rate 0 bits/sec, 0 packets/sec 0 packets input, 0 bytes, 0 no buffer Received 0 broadcasts, 0 runts, 0 giants, 0 throttles 0 parity 0 input errors, 0 CRC, 0 frame, 0 overrun, 0 ignored, 0 abort 0 packets output, 0 bytes, 0 underruns 0 output errors, 0 applique, 8 interface resets 0 output buffer failures, 0 output buffers swapped out 13 carrier transitions LC=down CA=down TM=down LB=down TA=up LA=down Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=73129&t=73129 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
NP-2T to 2500 [7:73127]
Hi, has anyone had any problems with connceting a NP-2T serial interface to a 2500 serial interface. I ordered a cable with the DB60 end being the DTE and the DB50 (NP-2T) being the DCE. I have put the clockrate command on the DCE end but cannot get the interface to come up. I tried different clock rate settings also. I understand that this may be a problem with the jumper settings on the 4000 but I just want to confirm if anyone has ever come across this issue. Appreciate the help. 2500 show controller output: HD unit 0, idb = 0x250D1C, driver structure at 0x258730 buffer size 1524 HD unit 0, RS-449 DTE cable cpb = 0xE2, eda = 0x2940, cda = 0x2800 RX ring with 16 entries at 0xE22800 00 bd_ptr=0x2800 pak=0x256354 ds=0xE26108 status=80 pak_size=0 01 bd_ptr=0x2814 pak=0x256620 ds=0xE267C4 status=80 pak_size=0 02 bd_ptr=0x2828 pak=0x2568EC ds=0xE26E80 status=80 pak_size=0 03 bd_ptr=0x283C pak=0x256BB8 ds=0xE2753C status=80 pak_size=0 04 bd_ptr=0x2850 pak=0x256E84 ds=0xE27BF8 status=80 pak_size=0 05 bd_ptr=0x2864 pak=0x257150 ds=0xE282B4 status=80 pak_size=0 06 bd_ptr=0x2878 pak=0x25741C ds=0xE28970 status=80 pak_size=0 07 bd_ptr=0x288C pak=0x2576E8 ds=0xE2902C status=80 pak_size=0 08 bd_ptr=0x28A0 pak=0x2579B4 ds=0xE296E8 status=80 pak_size=0 09 bd_ptr=0x28B4 pak=0x257C80 ds=0xE29DA4 status=80 pak_size=0 10 bd_ptr=0x28C8 pak=0x257F4C ds=0xE2A460 status=80 pak_size=0 11 bd_ptr=0x28DC pak=0x258218 ds=0xE2AB1C status=80 pak_size=0 12 bd_ptr=0x28F0 pak=0x258994 ds=0xE2B1D8 status=80 pak_size=0 13 bd_ptr=0x2904 pak=0x258C60 ds=0xE2B894 status=80 pak_size=0 14 bd_ptr=0x2918 pak=0x258F2C ds=0xE2BF50 status=80 pak_size=0 15 bd_ptr=0x292C pak=0x2591F8 ds=0xE2C60C status=80 pak_size=0 16 bd_ptr=0x2940 pak=0x2594C4 ds=0xE2CCC8 status=80 pak_size=0 cpb = 0xE2, eda = 0x3000, cda = 0x3000 TX ring with 4 entries at 0xE23000 4000 NP-2T show controller output: MK5 unit 1, NIM slot 2, NIM type code 7, NIM version 1 idb = 0x69E8, driver structure at 0xE6EFB8, regaddr = 0x8200400 IB at 0x603D640: mode=0x0108, local_addr=0, remote_addr=0 N1=1524, N2=1, scaler=100, T1=1000, T3=2000, TP=1 buffer size 1524 DCE V.11 (RS-449 or X.21) serial cable attached, clockrate 56000 RX ring with 32 entries at 0x3D6A8 : RLEN=5, Rxhead 0 00 pak=0xE7228C ds=0x6046264 status=80 max_size=1524 pak_size=0 01 pak=0xE70FEC ds=0x6042C84 status=80 max_size=1524 pak_size=0 02 pak=0xE732D8 ds=0x6049188 status=80 max_size=1524 pak_size=0 03 pak=0xE71494 ds=0x60439FC status=80 max_size=1524 pak_size=0 04 pak=0xE716E8 ds=0x60440B8 status=80 max_size=1524 pak_size=0 05 pak=0xE73780 ds=0x6049F00 status=80 max_size=1524 pak_size=0 06 pak=0xE71240 ds=0x6043340 status=80 max_size=1524 pak_size=0 07 pak=0xE7193C ds=0x6044774 status=80 max_size=1524 pak_size=0 08 pak=0xE71B90 ds=0x6044E30 status=80 max_size=1524 pak_size=0 09 pak=0xE72038 ds=0x6045BA8 status=80 max_size=1524 pak_size=0 10 pak=0xE72734 ds=0x6046FDC status=80 max_size=1524 pak_size=0 11 pak=0xE72988 ds=0x6047698 status=80 max_size=1524 pak_size=0 12 pak=0xE72BDC ds=0x6047D54 status=80 max_size=1524 pak_size=0 13 pak=0xE73084 ds=0x6048ACC status=80 max_size=1524 pak_size=0 14 pak=0xE7352C ds=0x6049844 status=80 max_size=1524 pak_size=0 15 pak=0xE739D4 ds=0x604A5BC status=80 max_size=1524 pak_size=0 Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=73127&t=73127 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: PIX DNS Issue [7:72685]
Well that's exactly right... Thanks for the links Chavira! Stevo ""Chavira Luis"" wrote in message news:[EMAIL PROTECTED] > No, the PIX "translates" the response in a DNS proxy manner. This helps when > a host has a static translation using the pix. > > For example, imagine the 10.0.0.1 (inside) and 200.33.76.1 (outside) pair. > The external BIND will answer the query with the external IP, but the PIX > will translate the answer so the inside client won't have to "go" outside. > > please review this link: > NAT command (note the "dns" keyword) > http://www.cisco.com/univercd/cc/td/doc/product/iaabu/pix/pix_sw/v_63/cmdref /mr.htm#1032129 > ALIAS command (might not be useful to you) > http://www.cisco.com/univercd/cc/td/doc/product/iaabu/pix/pix_sw/v_63/cmdref /ab.htm > > Hope it helps some > > Luis Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=73126&t=72685 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Gigabit Copper Switch [7:73116]
I guess it might just be too expensive but I expected to see a recomendation for a 4500 series switch. Gigabit copper capable and it should have no problem handling the server farm load. David Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=73124&t=73116 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: FORTEZZA for Cisco router? [7:73114]
Egad I hope the fortezza has gotten easier to use. When I was in the Army I was trained on that card. I hated it. That's been several years but I shuddered when I read the name. I thought the military had rerouted and gone with a software based client solution to cover encryption anyway. David Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=73125&t=73114 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Gigabit Copper Switch [7:73116]
I looked at this switch last week and though about how nice it would be - until I saw it had no uplink ports (GBIC). That leaves a 3750. I'd look at that. >>> "Schlotterer, Matthew" 07/28/03 10:14AM >>> Can someone recommend a good 8 to 24 port, 1000BASE-T layer 2 switch for a server farm? I've found this 2970G-24T-E from Cisco, but it doesn't seem to be widely sold. Not sure if that's because its new or its old. Though I would like to go with a Cisco product, it doesn't appear they have anything. I'm contemplating getting a Foundry switch. Has anyone integrated a Foundry switch into a totally Cisco powered network before? Pros, Cons? Thanks Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=73123&t=73116 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Gigabit Copper Switch [7:73116]
Check out the 3500's/3700's or if you want some really power a Cat6k... -Original Message- From: Schlotterer, Matthew [mailto:[EMAIL PROTECTED] Sent: Monday, July 28, 2003 1:15 PM To: [EMAIL PROTECTED] Subject: Gigabit Copper Switch [7:73116] Can someone recommend a good 8 to 24 port, 1000BASE-T layer 2 switch for a server farm? I've found this 2970G-24T-E from Cisco, but it doesn't seem to be widely sold. Not sure if that's because its new or its old. Though I would like to go with a Cisco product, it doesn't appear they have anything. I'm contemplating getting a Foundry switch. Has anyone integrated a Foundry switch into a totally Cisco powered network before? Pros, Cons? Thanks For more information about Barclays Capital, please visit our web site at http://www.barcap.com. Internet communications are not secure and therefore the Barclays Group does not accept legal responsibility for the contents of this message. Although the Barclays Group operates anti-virus programmes, it does not accept responsibility for any damage whatsoever that is caused by viruses being passed. Any views or opinions presented are solely those of the author and do not necessarily represent those of the Barclays Group. Replies to this email may be monitored by the Barclays Group for operational or business reasons. Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=73122&t=73116 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Gigabit Copper Switch [7:73116]
Look at a 3750-24. Larry Letterman Cisco Systems -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] Sent: Monday, July 28, 2003 10:15 AM To: [EMAIL PROTECTED] Subject: Gigabit Copper Switch [7:73116] Can someone recommend a good 8 to 24 port, 1000BASE-T layer 2 switch for a server farm? I've found this 2970G-24T-E from Cisco, but it doesn't seem to be widely sold. Not sure if that's because its new or its old. Though I would like to go with a Cisco product, it doesn't appear they have anything. I'm contemplating getting a Foundry switch. Has anyone integrated a Foundry switch into a totally Cisco powered network before? Pros, Cons? Thanks Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=73119&t=73116 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Urgent Help On Cisco Radius [7:72617]
Comparing TACACS+ and RADIUS The following sections compare several features of TACACS+ and RADIUS. UDP and TCP RADIUS uses UDP while TACACS+ uses TCP. TCP offers several advantages over UDP. TCP offers a connection-oriented transport, while UDP offers best-effort delivery. RADIUS requires additional programmable variables such as re-transmit attempts and time-outs to compensate for best-effort transport, but it lacks the level of built-in support that a TCP transport offers: Using TCP provides a separate acknowledgment that a request has been received, within (approximately) a network round-trip time (RTT), regardless of how loaded and slow the backend authentication mechanism (a TCP acknowledgment) might be. TCP provides immediate indication of a crashed, or not running, server by a reset (RST). You can determine when a server crashes and returns to service if you use long-lived TCP connections. UDP cannot tell the difference between a server that is down, a slow server, and a non-existent server. Using TCP keepalives, server crashes can be detected out-of-band with actual requests. Connections to multiple servers can be maintained simultaneously, and you only need to send messages to the ones that are known to be up and running. TCP is more scalable and adapts to growing, as well as congested, networks. Packet Encryption RADIUS encrypts only the password in the access-request packet, from the client to the server. The remainder of the packet is unencrypted. Other information, such as username, authorized services, and accounting, could be captured by a third party. TACACS+ encrypts the entire body of the packet but leaves a standard TACACS+ header. Within the header is a field that indicates whether the body is encrypted or not. For debugging purposes, it is useful to have the body of the packets unencrypted. However, during normal operation, the body of the packet is fully encrypted for more secure communications. Authentication and Authorization RADIUS combines authentication and authorization. The access-accept packets sent by the RADIUS server to the client contain authorization information. This makes it difficult to decouple authentication and authorization. TACACS+ uses the AAA architecture, which separates authentication, authorization, and accounting. This allows separate authentication solutions that can still use TACACS+ for authorization and accounting. For example, with TACACS+, it is possible to use Kerberos authentication and TACACS+ authorization and accounting. After a NAS authenticates on a Kerberos server, it requests authorization information from a TACACS+ server without having to re-authenticate. The NAS informs the TACACS+ server that it has successfully authenticated on a Kerberos server, and the server then provides authorization information. During a session, if additional authorization checking is needed, the access server checks with a TACACS+ server to determine if the user is granted permission to use a particular command. This provides greater control over the commands that can be executed on the access server while decoupling from the authentication mechanism. Multiprotocol Support RADIUS does not support the following protocols: AppleTalk Remote Access (ARA) protocol NetBIOS Frame Protocol Control protocol Novell Asynchronous Services Interface (NASI) X.25 PAD connection TACACS+ offers multiprotocol support. Router Management RADIUS does not allow users to control which commands can be executed on a router and which cannot. Therefore, RADIUS is not as useful for router management or as flexible for terminal services. TACACS+ provides two methods to control the authorization of router commands on a per-user or per-group basis. The first method is to assign privilege levels to commands and have the router verify with the TACACS+ server whether or not the user is authorized at the specified privilege level. The second method is to explicitly specify in the TACACS+ server, on a per-user or per-group basis, the commands that are allowed. Interoperability Due to various interpretations of the RADIUS Request for Comments (RFCs), compliance with the RADIUS RFCs does not guarantee interoperability. Even though several vendors implement RADIUS clients, this does not mean they are interoperable. Cisco implements most RADIUS attributes and is consistently adding more. If customers use only the standard RADIUS attributes in their servers, they can probably interoperate between several vendors, providing that these vendors implement the same attributes. However, many vendors implement extensions that are proprietary attributes. If a customer uses one of these vendor-specific extended attributes, interoperability is not possible. Traffic Due to the previously cited differences between TACACS+ and RADIUS, the amount of traffic generated between the client and server will differ. The following examples illustrate the traffic between the client and server for TACACS+ a
Re: FORTEZZA for Cisco router? [7:73114]
Howard C. Berkowitz 7/28/03 11:37:44 AM >>> >Does anyone know if there's a FORTEZZA encryption product available, >presumably third-party, for Cisco routers? It's a NSA-approved >chipset, usually on PC card, for government "sensitive but >unclassified" traffic. CCO search doesn't give any hits. My first thought was a company called SafeNet, www.safenet-inc.com, but it appears that they don't have anything that does Fortezza. I then ran across this product: http://niap.nist.gov/cc-scheme/TTAP-CC-0001.html Is that the sort of thing you're looking for? Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=73118&t=73114 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: New Network IPX [7:73113]
Here you go: http://www.cisco.com/univercd/cc/td/doc/product/software/ios121/121cgcr/atip x_c/ipx/2cdipx.htm HTH, John >>> J B 7/28/03 11:35:43 AM >>> I'm not really familiar with IPX and I have to connect 3 remote branches to a central site where the Novell server is located. Can anybody point me to some sample configurations. Thanks JB Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=73117&t=73113 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: How many CCIEs in India ?? [7:73010]
This is just the beginning. Watch for the CCIE # in India to grow faster than CISCO expects. Quite a number of Engineering Graduates from Chennai are jumping into CCIE course. There is a substantial drop in Software enrolment due to excess supply vs. demand. The same situation will happen to CCIE soon. Hope CISCO will maintain its reputation in the market, otherwise it will be a steep fall like MICROSOFT had with MCSE - NT. ""Ganesh I"" wrote in message news:[EMAIL PROTECTED] > Hi > > I am very curious to know how many CCIEs are there in India. Does Cisco > publish this info on its site? > > Thanks > Ganesh Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=73121&t=73010 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Can router configured as host in IPv6 net? [7:73110]
Hello all, Is it possible to configure a Cisco router as just a host in IPv6 network. Would that be equivalent having a Windows PC running IPv6 stack in the network coexisting with other routers? Thanks, Rajesh Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=73110&t=73110 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
FORTEZZA for Cisco router? [7:73114]
Does anyone know if there's a FORTEZZA encryption product available, presumably third-party, for Cisco routers? It's a NSA-approved chipset, usually on PC card, for government "sensitive but unclassified" traffic. CCO search doesn't give any hits. Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=73114&t=73114 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RES: HSRP + ARP Problem [7:73098]
maybe something in the switch . . . are both routers active , noone in standby ? > _ > Henrique Issamu Terada, CCIE # 7460 > IT Support - Open Network > CPM S.A. - Tecnologia criando valor > Tel.: 55 11 4196-0710 > Fax: 55 11 4196-0900 > [EMAIL PROTECTED] > www.cpm.com.br > -- > --- > Esta mensagem pode conter informagco confidencial e/ou privilegiada. Se > vocj nco for o destinatario ou a pessoa autorizada a receber esta > mensagem, nco pode usar, copiar ou divulgar as informagues nela contidas > ou tomar qualquer agco baseada nessas informagues. Se vocj recebeu esta > mensagem por engano, por favor avise imediatamente o remetente, > respondendo o e-mail e em seguida apague-o. Agradecemos sua cooperagco. > > This message may contain confidential and/or privileged information. If > you are not the addressee or authorized to receive this for the addressee, > you must not use, copy, disclose or take any action based on this message > or any information herein. If you have received this message in error, > please advise the sender immediately by reply e-mail and delete this > message. Thank you for your cooperation. > > > -Mensagem original- > De: [EMAIL PROTECTED] [SMTP:[EMAIL PROTECTED] > Enviada em: segunda-feira, 28 de julho de 2003 10:58 > Para: [EMAIL PROTECTED] > Assunto: RE: HSRP + ARP Problem [7:73098] > > Try > > Where they also give you an alternative to use the burned HW in-address > instead of a virtual HW address. > > http://www.cisco.com/warp/public/473/62.pdf > > Martijn Jansen > > > -Oorspronkelijk bericht- > Van: Tim Champion [mailto:[EMAIL PROTECTED] > Verzonden: maandag 28 juli 2003 13:35 > Aan: [EMAIL PROTECTED] > Onderwerp: HSRP + ARP Problem [7:73098] > > > Bit of a strange one this. We have 2 7206 routers running HSRP that are > support by our telecoms provider. The fast ethernet interface of each is > connected into our 2950 along with a firewall. > > From the switch, or firewall, I can ping either of the 'real' ip addresses > but not the virtual address. I have used debug arp and seen the arp > request > go out for the virtual address (the telco has done the same and see's the > request come in) but there is no reply. If we configure a static arp entry > it all works fine. > > Anyone ever experienced anything like this??? > > Many thanks > > > Tim > Incoming mail is certified Virus Free. > Checked by AVG anti-virus system (http://www.grisoft.com). > Version: 6.0.504 / Virus Database: 302 - Release Date: 24/07/2003 > > --- Outgoing mail is certified Virus Free. Checked by AVG anti-virus system (http://www.grisoft.com). Version: 6.0.504 / Virus Database: 302 - Release Date: 24/07/2003 Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=73109&t=73098 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Port redirection on a PIX [7:73065]
I get the error "Invalid global IP address OUTSIDE". I also tried it w/o 'interface'. If you can offfer any more help I would appreciate it as I really need to get this fixed. Thanks. ""Robert Edmonds"" wrote in message news:[EMAIL PROTECTED] > With regards to these two lines: > > > static (inside,outside) tcp interface ftp 192.168.0.1 ftp netmask > > 255.255.255.255 0 0 > > static (inside,outside) tcp interface www 192.168.0.1 www netmask > > 255.255.255.255 0 0 > > I believe they should read: > > static (inside, outside) tcp interface OUTSIDE ftp 192.168.0.1 ftp netmask > 255.255.255.255 > static (inside, outside) tcp interface OUTSIDE ftp 192.168.0.1 ftp netmask > 255.255.255.255 > > If I am wrong, I'm sure I will be severely reprimanded...I mean corrected. > > > ""NetEng"" wrote in message > news:[EMAIL PROTECTED] > > I am still not able to connect to my web and ftp services. I have pasted > the > > relative info below. Am I missing something or do is my config wrong? > > : > > PIX Version 6.1(3) > > nameif ethernet0 outside security0 > > nameif ethernet1 inside security100 > > access-list 101 permit icmp any any unreachable > > access-list 101 permit icmp any any time-exceeded > > access-list 101 permit icmp any any echo-reply > > access-list 102 permit tcp any any eq ftp > > access-list 102 permit tcp any any eq www > > pager lines 24 > > interface ethernet0 10baset > > interface ethernet1 10full > > mtu outside 1500 > > mtu inside 1500 > > ip address outside dhcp setroute > > ip address inside 192.168.0.100 255.255.255.0 > > global (outside) 1 interface > > nat (inside) 1 0.0.0.0 0.0.0.0 0 0 > > static (inside,outside) tcp interface ftp 192.168.0.1 ftp netmask > > 255.255.255.255 0 0 > > static (inside,outside) tcp interface www 192.168.0.1 www netmask > > 255.255.255.255 0 0 > > access-group 102 in interface outside > > > > Thanks for the help so far > > > > > > ""Scott"" wrote in message > > news:[EMAIL PROTECTED] > > > static (inside,outside) tcp interface ftp 10.1.1.3 ftp netmask > > > 255.255.255.255 0 0 > > > > > > Scott > > > ""NetEng"" wrote in message > > > news:[EMAIL PROTECTED] > > > > I'm trying to do port redirection on my PIX and here's the example > from > > > > Cisco. My problem is my outside interface is set for DHCP. How do I > > change > > > > the command to reflect a dynamic outside address? > > > > > > > > static (inside,outside) tcp 172.18.124.99 ftp 10.1.1.3 ftp netmask > > > > 255.255.255.255 0 0 Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=73112&t=73065 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: PIM Mode question [7:73108]
Steve Telford wrote: > > Regarding PIM Sparse, Dense and Sparse-Dense modes, does anyone > know why the > often stated design preference for sparse-dense exists? I think that the logic is that with sparese-dense, the m-cast network could continue to function even if the RP were to die. It's just a fallback mechanism. > > I realise the Auto-RP requirement which is for Dense mode, > would mean an > otherwise sparse mode network needs to support dense. Is this > the main > driver for sparse-dense or is there some other technical reason? > > I see with software updates Auto-RP can now be supported under > sparse mode > only configured interfaces: > > ip pim autorp listener > > which causes the two auto-rp groups 224.0.1.39 and 224.0.1.40 > to be dense > mode flooded. > > Is there any other requirement for dense mode if the auto-rp > issue is taken > away? Anyone got any comments? > > cheers, > > teflon > > [GroupStudy removed an attachment of type image/gif] > > [GroupStudy removed an attachment of type Image/jpeg] > > Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=73115&t=73108 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Message: CI-2-ENVCRIT: +12 Voltage measured at ... [7:73111]
There is a known issue with the 7500 router and that exact indicator - below are excerpts from CCO with couple tests you can do (most effective if you have a spare power supply). But the chassis has been known to report false errors, this is not affected by the IOS version on the router. CCO link: http://www.cisco.com/en/US/partner/products/hw/routers/ps359/products_tech_note09186a008009494e.shtml#errors Valuable time and resources are often wasted replacing hardware that actually functions properly. This document helps troubleshoot common hardware issues with the Cisco 7500 series router chassis. If the router has two power supplies, and the combined bus voltages are low, it cannot be a power supply problem. This is because one power supply cannot drag down the output voltage of another due to the presence of isolation diodes. Suspect the Chassis Interface (CI) in this case, as well. If you have a spare power supply available, you can replace the one in the router to see if the problem goes away. If, after replacing the power supply, the errors are still seen, replace the Chassis Interface (CI). Bill Creighton CCNP Network Design Engineer, eVPN NSPM AT&T Business Service Delivery > -Original Message- > From: Marek [mailto:[EMAIL PROTECTED] > Sent: Monday, July 28, 2003 9:43 AM > To: [EMAIL PROTECTED] > Subject: Message: CI-2-ENVCRIT: +12 Voltage measured at ... [7:73105] > > > Hello, > > > I get on C7500 (IOS 12.2(2)T4) > this messages in the logs every 5min: > > %CI-2-ENVCRIT: +12 Voltage measured at 9.27 > > it started several weeks ago with last number just > below default warning threshold (11.61). Now it is below > critical threshold > (10.90). > I checked both power supplies, upgraded the IOS to 12.2(17), > tried resetting > (by unplugging it and plugging again) chassis interface. > Error is still there > and voltage is falling down. > Is this chassis interface (CI) failure or could it be something else? > > Regards, > Marek Kokoszczynski CCNP, CCDA > Routing Engineer > Futuro AS15833 Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=73111&t=73111 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
New Network IPX [7:73113]
I'm not really familiar with IPX and I have to connect 3 remote branches to a central site where the Novell server is located. Can anybody point me to some sample configurations. Thanks JB Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=73113&t=73113 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Gigabit Copper Switch [7:73116]
Can someone recommend a good 8 to 24 port, 1000BASE-T layer 2 switch for a server farm? I've found this 2970G-24T-E from Cisco, but it doesn't seem to be widely sold. Not sure if that's because its new or its old. Though I would like to go with a Cisco product, it doesn't appear they have anything. I'm contemplating getting a Foundry switch. Has anyone integrated a Foundry switch into a totally Cisco powered network before? Pros, Cons? Thanks Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=73116&t=73116 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
PIM Mode question [7:73108]
Regarding PIM Sparse, Dense and Sparse-Dense modes, does anyone know why the often stated design preference for sparse-dense exists? I realise the Auto-RP requirement which is for Dense mode, would mean an otherwise sparse mode network needs to support dense. Is this the main driver for sparse-dense or is there some other technical reason? I see with software updates Auto-RP can now be supported under sparse mode only configured interfaces: ip pim autorp listener which causes the two auto-rp groups 224.0.1.39 and 224.0.1.40 to be dense mode flooded. Is there any other requirement for dense mode if the auto-rp issue is taken away? Anyone got any comments? cheers, teflon [GroupStudy removed an attachment of type image/gif] [GroupStudy removed an attachment of type Image/jpeg] Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=73108&t=73108 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: RFC 2547 vs. RFC 2764 VPNs [7:73048]
>Also worth looking at is the hardware component: what will run on >the hardware you've already got (if anything)? IF you already >have most or all of the hardware pieces to implement Cisco's >version, then Cisco's probably makes sense. IF you already have >the requisite Nortel gear (Passports?), you're probably only >looking at upgrading to a new PCR (software version). One of the benefits of the solution I'm considering is that we don't have to change much at all on our CPE. Our branch sites would require static routing only, while two or three other sites would need to run OSPF. The OSPF-speaking routers form adjacencies with the Qwest PRN and will dynamically learn the routes to our spoke locations. One operational downside is that in order to add a new subnet at a spoke site I have to call Qwest and have them manually add a static route in the PRN, which will then be redistributed into OSPF. It seems like a pretty decent solution and it solves all sorts of problems we're having with the frame relay network. A solution like this would allow us to finally move to IP telephony and not run into serious bandwidth constraints and other issues caused by the use of FRTS. It would also allow us to expand the number of sites involved in video conferencing. All of this could occur without experiencing the shaping issues created when you have 3+ PVCs at most locations. For reference, Qwest is using the BSN-5000 (Shasta) for this service. There are still a few remote sites where we'd connect to some Juniper router but Shasta's do the bulk of the work. John Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=73106&t=73048 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Cisco ACS [7:73107]
Does anyone have a link as to where can I download an evaluation of Cisco ACS 3.2 on Cisco's website ? Thanks _ Rain coat or t-shirt? Find out with MSN Weather http://www.msn.co.za/weather/ Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=73107&t=73107 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Message: CI-2-ENVCRIT: +12 Voltage measured at ... [7:73105]
Hello, I get on C7500 (IOS 12.2(2)T4) this messages in the logs every 5min: %CI-2-ENVCRIT: +12 Voltage measured at 9.27 it started several weeks ago with last number just below default warning threshold (11.61). Now it is below critical threshold (10.90). I checked both power supplies, upgraded the IOS to 12.2(17), tried resetting (by unplugging it and plugging again) chassis interface. Error is still there and voltage is falling down. Is this chassis interface (CI) failure or could it be something else? Regards, Marek Kokoszczynski CCNP, CCDA Routing Engineer Futuro AS15833 Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=73105&t=73105 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: CCIE [7:72955]
Check these out. http://www.cisco.com/networkers/nw03/presos/voice.html V-- ""Muhtari Adanan"" wrote in message news:[EMAIL PROTECTED] > Anyone willing to share CCIE power sessions (2003)slides? Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=73102&t=72955 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Port redirection on a PIX [7:73065]
With regards to these two lines: > static (inside,outside) tcp interface ftp 192.168.0.1 ftp netmask > 255.255.255.255 0 0 > static (inside,outside) tcp interface www 192.168.0.1 www netmask > 255.255.255.255 0 0 I believe they should read: static (inside, outside) tcp interface OUTSIDE ftp 192.168.0.1 ftp netmask 255.255.255.255 static (inside, outside) tcp interface OUTSIDE ftp 192.168.0.1 ftp netmask 255.255.255.255 If I am wrong, I'm sure I will be severely reprimanded...I mean corrected. ""NetEng"" wrote in message news:[EMAIL PROTECTED] > I am still not able to connect to my web and ftp services. I have pasted the > relative info below. Am I missing something or do is my config wrong? > : > PIX Version 6.1(3) > nameif ethernet0 outside security0 > nameif ethernet1 inside security100 > access-list 101 permit icmp any any unreachable > access-list 101 permit icmp any any time-exceeded > access-list 101 permit icmp any any echo-reply > access-list 102 permit tcp any any eq ftp > access-list 102 permit tcp any any eq www > pager lines 24 > interface ethernet0 10baset > interface ethernet1 10full > mtu outside 1500 > mtu inside 1500 > ip address outside dhcp setroute > ip address inside 192.168.0.100 255.255.255.0 > global (outside) 1 interface > nat (inside) 1 0.0.0.0 0.0.0.0 0 0 > static (inside,outside) tcp interface ftp 192.168.0.1 ftp netmask > 255.255.255.255 0 0 > static (inside,outside) tcp interface www 192.168.0.1 www netmask > 255.255.255.255 0 0 > access-group 102 in interface outside > > Thanks for the help so far > > > ""Scott"" wrote in message > news:[EMAIL PROTECTED] > > static (inside,outside) tcp interface ftp 10.1.1.3 ftp netmask > > 255.255.255.255 0 0 > > > > Scott > > ""NetEng"" wrote in message > > news:[EMAIL PROTECTED] > > > I'm trying to do port redirection on my PIX and here's the example from > > > Cisco. My problem is my outside interface is set for DHCP. How do I > change > > > the command to reflect a dynamic outside address? > > > > > > static (inside,outside) tcp 172.18.124.99 ftp 10.1.1.3 ftp netmask > > > 255.255.255.255 0 0 Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=73104&t=73065 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: How many CCIEs in India ?? [7:73010]
hmm.. I am the second last CCIE , just cleared it 2 days ago and my number is 12026 and my mate had also cleared his lab and his number is 12027 , I am just going to submit my posting soon on this message board as well . In our group at least 5 persons have cleared there lab in the last 2 months So ther must be more then 80 at least . -- Navin Parwal MCSE,MCT,CCNP , CCDP, CCSP, CCIE (R/S) # 12026 Technosys https://ecardfile.com/id/parwal "If a man empties his purse into his head, no man can take it away from him. An investment in knowledge always pays the best interest." -Benjamin Franklin- ""Guruprasad Sanjeevi"" wrote in message news:[EMAIL PROTECTED] > Hi ganesh, > > Obviously, You can trust cisco for these kinda information > http://www.cisco.com/warp/public/625/ccie/ccie_program/ccie_present.html > > Regards > Guruprasad > > > -Original Message- > From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of > Ganesh I > Sent: Friday, July 25, 2003 2:47 PM > To: [EMAIL PROTECTED] > Subject: How many CCIEs in India ?? [7:73010] > > Hi > > I am very curious to know how many CCIEs are there in India. Does Cisco > publish this info on its site? > > Thanks > Ganesh Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=73103&t=73010 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: HSRP + ARP Problem [7:73098]
Could you debug HSRP for us? Thought DEBUG STANDBY should do it. Cisco 7200/7500 with PA-2FEISL HSRP gets stuck in init state on PA-2FEISL module in 7200/7500. CSCdr01156 (registered customers only) software upgrade; see bug for revision details Reset the interface using the shutdown and no shutdown commands SB: Ethernet0 state Virgin -> Listen SB: Starting up hot standby process SB:Ethernet0 Hello in 192.168.72.21 Active pri 90 hel 3 hol 10 ip 192.168.72.29 SB:Ethernet0 Hello in 192.168.72.21 Active pri 90 hel 3 hol 10 ip 192.168.72.29 SB:Ethernet0 Hello in 192.168.72.21 Active pri 90 hel 3 hol 10 ip 192.168.72.29 SB:Ethernet0 Hello in 192.168.72.21 Active pri 90 hel 3 hol 10 ip 192.168.72.29 SB: Ethernet0 state Listen -> Speak SB:Ethernet0 Hello out 192.168.72.20 Speak pri 100 hel 3 hol 10 ip 192.168.72.29 SB:Ethernet0 Hello in 192.168.72.21 Active pri 90 hel 3 hol 10 ip 192.168.72.29 SB:Ethernet0 Hello out 192.168.72.20 Speak pri 100 hel 3 hol 10 ip 192.168.72.29 SB:Ethernet0 Hello in 192.168.72.21 Active pri 90 hel 3 hol 10 ip 192.168.72.29 SB:Ethernet0 Hello out 192.168.72.20 Speak pri 100 hel 3 hol 10 ip 192.168.72.29 SB:Ethernet0 Hello in 192.168.72.21 Active pri 90 hel 3 hol 10 ip 192.168.72.29 SB: Ethernet0 state Speak -> Standby SB:Ethernet0 Hello out 192.168.72.20 Standby pri 100 hel 3 hol 10 ip 192.168.72.29 SB:Ethernet0 Hello in 192.168.72.21 Active pri 90 hel 3 hol 10 ip 192.168.72.29 SB:Ethernet0 Hello out 192.168.72.20 Standby pri 100 hel 3 hol 10 ip 192.168.72.29 SB:Ethernet0 Hello in 192.168.72.21 Active pri 90 hel 3 hol 10 ip 192.168.72.29 SB:Ethernet0 Hello out 192.168.72.20 Standby pri 100 hel 3 hol 10 ip 192.168.72.29 SB:Ethernet0 Hello in 192.168.72.21 Active pri 90 hel 3 hol 10 ip 192.168.72.29 SB: Ethernet0 Coup out 192.168.72.20 Standby pri 100 hel 3 hol 10 ip 192.168.72.29 SB: Ethernet0 state Standby -> Active SB:Ethernet0 Hello out 192.168.72.20 Active pri 100 hel 3 hol 10 ip 192.168.72.29 SB:Ethernet0 Hello in 192.168.72.21 Speak pri 90 hel 3 hol 10 ip 192.168.72.29 SB:Ethernet0 Hello out 192.168.72.20 Active pri 100 hel 3 hol 10 ip 192.168.72.29 SB:Ethernet0 Hello in 192.168.72.21 Speak pri 90 hel 3 hol 10 ip 192.168.72.29 SB:Ethernet0 Hello out 192.168.72.20 Active pri 100 hel 3 hol 10 ip 192.168.72.29 Martijn Jansen -Oorspronkelijk bericht- Van: Tim Champion [mailto:[EMAIL PROTECTED] Verzonden: maandag 28 juli 2003 13:35 Aan: [EMAIL PROTECTED] Onderwerp: HSRP + ARP Problem [7:73098] Bit of a strange one this. We have 2 7206 routers running HSRP that are support by our telecoms provider. The fast ethernet interface of each is connected into our 2950 along with a firewall. >From the switch, or firewall, I can ping either of the 'real' ip addresses but not the virtual address. I have used debug arp and seen the arp request go out for the virtual address (the telco has done the same and see's the request come in) but there is no reply. If we configure a static arp entry it all works fine. Anyone ever experienced anything like this??? Many thanks Tim Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=73100&t=73098 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: HSRP + ARP Problem [7:73098]
Try Where they also give you an alternative to use the burned HW in-address instead of a virtual HW address. http://www.cisco.com/warp/public/473/62.pdf Martijn Jansen -Oorspronkelijk bericht- Van: Tim Champion [mailto:[EMAIL PROTECTED] Verzonden: maandag 28 juli 2003 13:35 Aan: [EMAIL PROTECTED] Onderwerp: HSRP + ARP Problem [7:73098] Bit of a strange one this. We have 2 7206 routers running HSRP that are support by our telecoms provider. The fast ethernet interface of each is connected into our 2950 along with a firewall. >From the switch, or firewall, I can ping either of the 'real' ip addresses but not the virtual address. I have used debug arp and seen the arp request go out for the virtual address (the telco has done the same and see's the request come in) but there is no reply. If we configure a static arp entry it all works fine. Anyone ever experienced anything like this??? Many thanks Tim Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=73101&t=73098 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
LS100 Single mode card [7:73099]
Hi, group, Sorry for the off-topic question. I am building an ATM lab with LS100 switch. I was wonder if anybody has a spare singe mode card willing to let go for the LS100. If so, please contact me off-line. Thank you very much... Philip Lee Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=73099&t=73099 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
HSRP + ARP Problem [7:73098]
Bit of a strange one this. We have 2 7206 routers running HSRP that are support by our telecoms provider. The fast ethernet interface of each is connected into our 2950 along with a firewall. >From the switch, or firewall, I can ping either of the 'real' ip addresses but not the virtual address. I have used debug arp and seen the arp request go out for the virtual address (the telco has done the same and see's the request come in) but there is no reply. If we configure a static arp entry it all works fine. Anyone ever experienced anything like this??? Many thanks Tim Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=73098&t=73098 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: what's the bandwidth for this PIX-PIX VPN? [7:73088]
I only can think of the max troughput minus AH and new IP header. So 90%rougly? Experience says that you maybe can do some tweaking on the MTU side? Martijn Jansen -Oorspronkelijk bericht- Van: Richard Campbell [mailto:[EMAIL PROTECTED] Verzonden: maandag 28 juli 2003 10:07 Aan: [EMAIL PROTECTED] Onderwerp: what's the bandwidth for this PIX-PIX VPN? [7:73088] Hi.. I have a PIX 515 connected to internet, the bandwidth is 512K. Besides this PIX 515 also has PIX-PIX VPN to two of our branches. I found that when I transfer a big file via the PIX-PIX VPN, the bandwidth utilisation will never reach the maximum. But when I download big file from internet, it will reach Max. Why?? Note that there is not traffic shaping in the router? What is the Max bandwidth for PIX-PIX VPN on 512K link??? _ MSN 8 with e-mail virus protection service: 2 months FREE* http://join.msn.com/?page=features/virus Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=73096&t=73088 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: NOBODY emails [7:72997]
Hey!!! If nobody sends me an email did I really get an email at all? -Original Message- From: Vikram JeetSingh [mailto:[EMAIL PROTECTED] Sent: Friday, July 25, 2003 7:38 AM To: [EMAIL PROTECTED] Subject: RE: NOBODY emails [7:72997] No, I won't think that these mails are sent by some person. I have a rule on my outlook application which sends all mails addressed to [EMAIL PROTECTED] to a specific folder, but this one is directly coming to my Inbox, so I feel that it will be a Server or mailing application (Majordomo I believe) bug, which is sending personally addressed blank mails to some or all the list members. Just my point though. Vikram -Original Message- From: Antero Vasconcelos To: [EMAIL PROTECTED] Sent: 7/25/03 3:51 PM Subject: RE: NOBODY emails [7:72997] I4m just beeing tired of that person. antero -Original Message- From: Taufik Kurniawan [mailto:[EMAIL PROTECTED] Sent: sexta-feira, 25 de Julho de 2003 07:15 To: [EMAIL PROTECTED] Subject: Re: NOBODY emails [7:72997] I got .. about 10 emails At 03:56 25/07/2003 +, Puckette, Larry (TIFPC) wrote: >Is anybody else receiving multiple emails from [EMAIL PROTECTED] that >are empty?? > >Larry Puckette >Network Analyst >Temple Inland >[EMAIL PROTECTED] >512-434-1838 >Where there is no idol but money and power, there is no hope for integrity. > > -Original Message- >From: Maximus [mailto:[EMAIL PROTECTED] >Sent: Thursday, July 24, 2003 9:02 PM >To: [EMAIL PROTECTED] >Subject:RE: Vty access class [7:72990] > >I believe the standard ACL should be enough since your already specifying >transport input ssh on line vty 0 4. > >Just my $0.02 > >Jablonski, Michael wrote: > > > > I'm having a bit of trouble with extended access-lists for vty > > access. > > Basically I'd like to setup an extended access list that only > > allows ssh > > access from certain IPs, but after creating the list and > > applying it to the > > VTY I lose access. But if I use a standard acl only allowing > > certain IPs it > > works fine... > > > > ip access-list extended local_shell > > permit tcp host 192.168.1.2 host 192.168.1.1 eq 22 > > > > vty 0 4 > > access-class local_shell in > > transport input ssh > > > > Is the standard enough & is the above over-kill? > > > > Thanx, > > mkj *** Este email assim como os ficheiros que possa ter em anexo sao confidenciais e para uso exclusivo da pessoa ou organizacao para o qual foi enviado. Se recebeu esta mensagem por engano por favor notifique a Compta atraves do endereco [EMAIL PROTECTED] Esta mensagem foi verificada pelo sistema MAILsweeper nao tendo sido encontrados virus. http://www.mimesweeper.com MAILsweeper - Modulo da suite MIMEsweeper, solucao de filtragem de conteudos comercializada pela Compta SA. A Compta SA detem o mais alto nivel de especializacao MIMEsweeper, tendo sido reconhecida pela Clearswift como Premier Partner. *** This message is confidential and may contain privileged information intended solely for the named addressee(s). It may not be used or disclosed except for the purpose for which it has been sent. If you are not the intended recipient, you must not copy, distribute or take any action in reliance on it. If you have received this message in error, please notify Compta by emailing [EMAIL PROTECTED] quoting the sender and delete the message and any attached documents. This footnote confirms that this email message has been swept by MIMEsweeper for Content Security threats, including computer viruses *** Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=73095&t=72997 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Urgent Help On Cisco Radius [7:72617]
No! Radius and TACACS are not the same thing - look them up on CCO Best regards, Dom Stocqueler SysDom Technologies Visit our website - www.sysdom.org -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Mr piyush shah Sent: 28 July 2003 09:56 To: [EMAIL PROTECTED] Subject: Re: Urgent Help On Cisco Radius [7:72617] Rohit , cisco version of radius is termed as TACACS Server. It has the capability of any login users to provide authentication,authorisation as well as accounting. Means if the user coming in for logon needs to be a part of cisco database with necessary password. Also upon sucessful login cisco server will decide whether what rights to be given to you. Also a track of all the operations are kept by cisco server in the form of log. You can read the documentation that comes along with the CD and very self explainatory. Regards --- Nakul Malik wrote: > what topic ezxactly do u need help on? > give me some details and i might be able to help. > -Nakul > > -- > Nakul Malik > > H-342 > New Rajendra Nagar > New Delhi - 110060 > > Mobile: +91-9811424477 > Ph: +91-11- 2582 3488 > +91-11- 2585 0155 > Fax:: +91-11- 2575 2904 > > [EMAIL PROTECTED] > > ""Rohit Sundriyal"" wrote in message > news:[EMAIL PROTECTED] > > Team > > > > We need to setup cisco radius server.i have no > knowledge on this can > someone > > please help me out. > > > > Quit Urgent > > > > Rohit Sundriyal [EMAIL PROTECTED] Send free SMS using the Yahoo! Messenger. Go to http://in.mobile.yahoo.com/new/pc/ Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=73093&t=72617 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Bandwidth Utilization [7:73086]
Hi, how are you measuring the utilization. Should I assume passively using snmp. On a wan link its a diffrent you have to measure in/out in both directions. Setting/determining the threshold is highly dependent on what the utilization is over a certain period of time by baselining e.g 3 months, 6months etc regards, gab Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=73094&t=73086 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: what's the bandwidth for this PIX-PIX VPN? (the numbers) [7:73097]
PIX 515E Performance Summary Cleartext throughput: 188 Mbps Concurrent connections: 130,000 168-bit 3DES IPsec VPN throughput: Up to 140 Mbps with VAC+ or 63 Mbps with VAC 128-bit AES IPsec VPN throughput: Up to 135 Mbps with VAC+ 256-bit AES IPsec VPN throughput: Up to 140 Mbps with VAC+ Simultaneous VPN tunnels: 2000 from cco Martijn Jansen -Oorspronkelijk bericht- Van: Richard Campbell [mailto:[EMAIL PROTECTED] Verzonden: maandag 28 juli 2003 10:07 Aan: [EMAIL PROTECTED] Onderwerp: what's the bandwidth for this PIX-PIX VPN? [7:73088] Hi.. I have a PIX 515 connected to internet, the bandwidth is 512K. Besides this PIX 515 also has PIX-PIX VPN to two of our branches. I found that when I transfer a big file via the PIX-PIX VPN, the bandwidth utilisation will never reach the maximum. But when I download big file from internet, it will reach Max. Why?? Note that there is not traffic shaping in the router? What is the Max bandwidth for PIX-PIX VPN on 512K link??? _ MSN 8 with e-mail virus protection service: 2 months FREE* http://join.msn.com/?page=features/virus Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=73097&t=73097 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
802.1x - Aironet AP- RSA SecureID [7:73092]
Dear Experts, I am planning for a demo to my client on authenticating aironet client to RSA token server. I am not going to use CSACS as my radius server, the rsa ace server will be my radius server. I did tried authenticating telnet acces to router without using CSACS, and it works perfectly fine using RSA ACE server as the radius server. In the RSA Ace server i add the router as a comm server and i also set the shared secret key on both devices. Will it work if configured aironet client authenticate using 802.1x PEAP and then from the Aironet AP authenticate to RSA Ace server using radius protocol? i am not sure because i couldnt test the configuration. we used to have an Aironet AP 350 for a demo unit, however it has been lended to one our client for a few days. anyone care to share some experiences? Thanks in advance RD Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=73092&t=73092 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Latest Cisco PIX? [7:73084]
The 506 was discontinued, but it didn't really go away. It was replaced by the 506E. The same goes for the 515 (replaced by the 515E). Information on all of the current PIX firewalls is located at http://www.cisco.com/en/US/products/hw/vpndevc/ps2030/index.html. Jay Dunn IPI*GrammTech, Ltd. www.ipi-gt.com Nunquam Facilis Est -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Brian W. Sent: Sunday, July 27, 2003 8:14 PM To: [EMAIL PROTECTED] Subject: Re: Latest Cisco PIX? [7:73084] There was a 506 that was discontinued.. Brian - Original Message - From: "Shawn Xu" To: Sent: Sunday, July 27, 2003 2:23 PM Subject: Latest Cisco PIX? [7:73084] > Hi, > > I heard Cisco has PIX 560. However, I couldn't find Cisco PIX 560 from > www.cisco.com. The latest one is PIX 535. Is it right? > > Thanks > > Shawn Xu > > _ > The new MSN 8: advanced junk mail protection and 2 months FREE* > http://join.msn.com/?page=features/junkmail Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=73091&t=73084 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Urgent Help On Cisco Radius [7:72617]
Rohit , cisco version of radius is termed as TACACS Server. It has the capability of any login users to provide authentication,authorisation as well as accounting. Means if the user coming in for logon needs to be a part of cisco database with necessary password. Also upon sucessful login cisco server will decide whether what rights to be given to you. Also a track of all the operations are kept by cisco server in the form of log. You can read the documentation that comes along with the CD and very self explainatory. Regards --- Nakul Malik wrote: > what topic ezxactly do u need help on? > give me some details and i might be able to help. > -Nakul > > -- > Nakul Malik > > H-342 > New Rajendra Nagar > New Delhi - 110060 > > Mobile: +91-9811424477 > Ph: +91-11- 2582 3488 > +91-11- 2585 0155 > Fax:: +91-11- 2575 2904 > > [EMAIL PROTECTED] > > ""Rohit Sundriyal"" wrote in message > news:[EMAIL PROTECTED] > > Team > > > > We need to setup cisco radius server.i have no > knowledge on this can > someone > > please help me out. > > > > Quit Urgent > > > > Rohit Sundriyal [EMAIL PROTECTED] Send free SMS using the Yahoo! Messenger. Go to http://in.mobile.yahoo.com/new/pc/ Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=73090&t=72617 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Urgent Help On Cisco Radius [7:72617]
Rohit , cisco version of radius is termed as TACACS Server. It has the capability of any login users to provide authentication,authorisation as well as accounting. Means if the user coming in for logon needs to be a part of cisco database with necessary password. Also upon sucessful login cisco server will decide whether what rights to be given to you. Also a track of all the operations are kept by cisco server in the form of log. You can read the documentation that comes along with the CD and very self explainatory. Regards --- Nakul Malik wrote: > what topic ezxactly do u need help on? > give me some details and i might be able to help. > -Nakul > > -- > Nakul Malik > > H-342 > New Rajendra Nagar > New Delhi - 110060 > > Mobile: +91-9811424477 > Ph: +91-11- 2582 3488 > +91-11- 2585 0155 > Fax:: +91-11- 2575 2904 > > [EMAIL PROTECTED] > > ""Rohit Sundriyal"" wrote in message > news:[EMAIL PROTECTED] > > Team > > > > We need to setup cisco radius server.i have no > knowledge on this can > someone > > please help me out. > > > > Quit Urgent > > > > Rohit Sundriyal [EMAIL PROTECTED] Send free SMS using the Yahoo! Messenger. Go to http://in.mobile.yahoo.com/new/pc/ Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=73089&t=72617 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
what's the bandwidth for this PIX-PIX VPN? [7:73088]
Hi.. I have a PIX 515 connected to internet, the bandwidth is 512K. Besides this PIX 515 also has PIX-PIX VPN to two of our branches. I found that when I transfer a big file via the PIX-PIX VPN, the bandwidth utilisation will never reach the maximum. But when I download big file from internet, it will reach Max. Why?? Note that there is not traffic shaping in the router? What is the Max bandwidth for PIX-PIX VPN on 512K link??? _ MSN 8 with e-mail virus protection service: 2 months FREE* http://join.msn.com/?page=features/virus Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=73088&t=73088 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]