is anyone? [7:73265]
hello all, is anyone taking CCIE lab on sept,Banglore?? SMS using the Yahoo! Messenger;Download latest version. Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=73265&t=73265 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Logging ICMP on a PIX [7:73232]
Tried debug icmp trace And logged that information to console/syslog debugging level? Martijn 6.2 http://www.cisco.com/univercd/cc/td/doc/product/iaabu/pix/pix_62/cmdref/gl.h tm#1028090 level Specify the syslog message level as a number or string. The level you specify means that you want that level and those less than the level. For example, if level is 3, syslog displays 0, 1, 2, and 3 messages. Possible number and string level values are: 0-emergencies-System unusable messages 1-alerts-Take immediate action 2-critical-Critical condition 3-errors-Error message 4-warnings-Warning message 5-notifications-Normal but significant condition 6-informational-Information message 7-debugging-Debug messages and log FTP commands and WWW URLs -Oorspronkelijk bericht- Van: Patrick Donlon [mailto:[EMAIL PROTECTED] Verzonden: woensdag 30 juli 2003 10:23 Aan: [EMAIL PROTECTED] Onderwerp: Logging ICMP on a PIX [7:73232] Do anyone know how to log ICMP traffic that is allowed through a PIX?? I can see denied ICMP no problem. I can log all my other traffic with logging trap debug set, but it can't see ICMP traffic passing through the firewall. Is this normally behaviour for 6.2(2)? Cheers Pat Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=73266&t=73232 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Example of reflexive access list with VPN access [7:73269]
Hello all, I need some help with ACL's. What my goal is to allow VNP traffic in to my network to one firewall (Static IP address). Also I want to allow traffic out of my FE 0/1 interface out to the net using "established" access lists. The services I want to let out are. HTTP HTTPS SMTP POP3 FTP SFTP If some one could help me out with a good start or at least a good explanation of the process and how established or reflexive lists work. my network set up is fairly simple ( internet )---Serial 0/1 |CISCO 2621XM| FE 0/1 (continued below) FE 0/1--|Firewall 1| 12.40.100.131 (Needs VPN port passed through) \ \ \ |Firewall 2| 12.40.100.132 (NO VPN ACCESS) All users need the above services. Thanks for all your help, Steven - CCNA Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=73269&t=73269 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: CCIE Lab experience! [7:73263]
As far as I understand, the lab is not 2 days anymore. It is only one day. And they don't break things and have you find and fix them. You just have to configure the network correctly and answer some questions. You could pass the lab by just reading books, but you'd have to have a pretty special ability to understand things without actually configuring them on a real router. Fred Reimer - CCNA Eclipsys Corporation, 200 Ashford Center North, Atlanta, GA 30338 Phone: 404-847-5177 Cell: 770-490-3071 Pager: 888-260-2050 NOTICE; This email contains confidential or proprietary information which may be legally privileged. It is intended only for the named recipient(s). If an addressing or transmission error has misdirected the email, please notify the author by replying to this message. If you are not the named recipient, you are not authorized to use, disclose, distribute, copy, print or rely on this email, and should immediately delete it from your computer. -Original Message- From: Alex Cosic [mailto:[EMAIL PROTECTED] Sent: Wednesday, July 30, 2003 10:52 PM To: [EMAIL PROTECTED] Subject: CCIE Lab experience! [7:73263] Hi there, I have finished my CCNP exam. Well, I live in Sydney, Australia and I still could not find job. I wish to carry on with CCIE. I do not have problem with passing writing CCIE exam, but what about practical exam of 2 days duration. I have found some programs on the net. But is it enough to pass without practice. I have passed my CCNP by only reading books and downloading simulation programs. Can somebody give me advice whether I could carry on without real hand on experince? Is there some way to volonteer to work for free? Is there some way to get free CCIE Lab experience? Thanks in advance Alex Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=73268&t=73263 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: *** BUS ERROR *** on cisco router 1603 [7:73161]
I tried it.In fact the flash in this faulty router works nice in other 1603.Also I get the folowing erroe when I am booting at rmon using either rommon1>boot eprom: or rommon2>boot flash: I even tried to clean the pins of the connector where PCMCIA Card fots.However the situation remains the same. Thanks in advance. *** BUS ERROR *** access address = 0xd030001 program counter = 0x4010b50 status register = 0x2710 vbr at time of exception = 0x400 special status word = 0x006d faulted cycle was a byte read C1600 processor with 2048 Kbytes of main memory a rommon 1 > dev Devices in device table: id name eprom: eprom flash: PCMCIA slot 1 rommon 2 > eprom monitor: command "eprom" not found rommon 3 > boot eprom: program load complete, entry point: 0x4018060, size: 0x1e1568 Restricted Rights Legend Use, duplication, or disclosure by the Government is subject to restrictions as set forth in subparagraph (c) of the Commercial Computer Software - Restricted Rights clause at FAR sec. 52.227-19 and subparagraph (c) (1) (ii) of the Rights in Technical Data and Computer Software clause at DFARS sec. 252.227-7013. cisco Systems, Inc. 170 West Tasman Drive San Jose, California 95134-1706 Cisco Internetwork Operating System Software IOS (tm) 1600 Software (C1600-BOOT-R), Version 11.1(10)AA, EARLY DEPLOYMENT RELE ASE SOFTWARE (fc1) Copyright (c) 1986-1997 by cisco Systems, Inc. Compiled Tue 18-Mar-97 14:01 by ccai Image text-base: 0x04018060, data-base: 0x02005000 *** BUS ERROR *** access address = 0xd03 program counter = 0x410d684 status register = 0x2700 vbr at time of exception = 0x400 special status word = 0x006d faulted cycle was a byte read monitor: command "boot" aborted due to exception rommon 4 > --- Gary Crouch wrote: > if you have a flash card remove and reseat it. > > >>> "Mr piyush shah" > 07/29/03 04:33AM >>> > Hi all > I have Cisco 1603 router with 1 Ethernet,1 port BRI > plus 1 T Serial interface which I was using to > connect 2 Mbps Leased line .Receptly it started > malfunctining with coutinious boot .The error ***BUS > ERROR*** .The log captured on console is attached > herewith .Can anybody pls help whether why is it so? > It is even not allowing me to enter into Rmon mode > by > pressing Break Key. > > Thanks in advance > > *** BUS ERROR *** > access address = 0xd030001 > program counter = 0x4010b50 > status register = 0x2710 > vbr at time of exception = 0x400 > special status word = 0x006d > faulted cycle was a byte read > > Initializing the PIT timer ... > Initializing the RAM vector table ... > Initializing monitor variables ... > Reset Cause: (SRST) software reset > C1600 processor with 2048 Kbytes of main memory > > getdevnum warning: device "PCMCIA slot 1" has size > of > zero > getdevnum warning: device "PCMCIA slot 1" has size > of > zero > open: read error...requested 0x4 bytes, got 0x0 > trouble reading device magic number > boot: cannot open "flash:" > boot: cannot determine first file name on device > "flash:"z > > > System Bootstrap, Version 11.1(10)AA, EARLY > DEPLOYMENT > RELEASE SOFTWARE (fc1) > Copyright (c) 1997 by cisco Systems, Inc. > > Sizing main memory ... found 0x0020 bytes > Testing lower main memory - data equals address > Testing lower main memory - checkerboard > Testing lower main memory - inverse checkerboard > Checksumming Monitor image ... > Initializing main memory ... > Hardware rev is 0x2 > Sizing NVRAM ... found 0x2000 bytes > Reading NVRAM ... > Reading cookie ... > Initializing the PCMCIA controller ... > > > > > > Send free SMS using the Yahoo! Messenger. Go to > http://in.mobile.yahoo.com/new/pc/ > [EMAIL PROTECTED] > Send free SMS using the Yahoo! Messenger. Go to http://in.mobile.yahoo.com/new/pc/ Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=73267&t=73161 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
eigrp help [7:73271]
Hi all, I need some help on eigro redistribution.I redist eigrp from two AS into each other.I can see all the routes in one AS and not the other. What do I need to do? Rgds, AK Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=73271&t=73271 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Logging ICMP on a PIX [7:73232]
Just out of curiosity, why do you want to log *all* ICMP traffic through your PIX? At logging level 4, you should see logs for selected ICMP traffic that is characteristic of a reconnaissance attack. Anyway, I hope you have a large disk(s) on your Syslog server :-) -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] Sent: Thursday, July 31, 2003 2:44 PM To: [EMAIL PROTECTED] Subject: RE: Logging ICMP on a PIX [7:73232] Tried debug icmp trace And logged that information to console/syslog debugging level? Martijn 6.2 http://www.cisco.com/univercd/cc/td/doc/product/iaabu/pix/pix_62/cmdref/gl.h tm#1028090 level Specify the syslog message level as a number or string. The level you specify means that you want that level and those less than the level. For example, if level is 3, syslog displays 0, 1, 2, and 3 messages. Possible number and string level values are: 0-emergencies-System unusable messages 1-alerts-Take immediate action 2-critical-Critical condition 3-errors-Error message 4-warnings-Warning message 5-notifications-Normal but significant condition 6-informational-Information message 7-debugging-Debug messages and log FTP commands and WWW URLs -Oorspronkelijk bericht- Van: Patrick Donlon [mailto:[EMAIL PROTECTED] Verzonden: woensdag 30 juli 2003 10:23 Aan: [EMAIL PROTECTED] Onderwerp: Logging ICMP on a PIX [7:73232] Do anyone know how to log ICMP traffic that is allowed through a PIX?? I can see denied ICMP no problem. I can log all my other traffic with logging trap debug set, but it can't see ICMP traffic passing through the firewall. Is this normally behaviour for 6.2(2)? Cheers Pat Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=73275&t=73232 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: CCIE Lab experience! [7:73263]
Reimer, Fred wrote: > As far as I understand, the lab is not 2 days anymore. It is only one day. > And they don't break things and have you find and fix them. You just have > to configure the network correctly and answer some questions. You could > pass the lab by just reading books, but you'd have to have a pretty special > ability to understand things without actually configuring them on a real > router. > > Fred Reimer - CCNA Yes I would think you'd have to have a "very" special ability to be able to pass the lab by reading only books, no hands on experience!!! Dave > > > Eclipsys Corporation, 200 Ashford Center North, Atlanta, GA 30338 > Phone: 404-847-5177 Cell: 770-490-3071 Pager: 888-260-2050 > > > NOTICE; This email contains confidential or proprietary information which > may be legally privileged. It is intended only for the named recipient(s). > If an addressing or transmission error has misdirected the email, please > notify the author by replying to this message. If you are not the named > recipient, you are not authorized to use, disclose, distribute, copy, print > or rely on this email, and should immediately delete it from your computer. > > > -Original Message- > From: Alex Cosic [mailto:[EMAIL PROTECTED] > Sent: Wednesday, July 30, 2003 10:52 PM > To: [EMAIL PROTECTED] > Subject: CCIE Lab experience! [7:73263] > > Hi there, > > I have finished my CCNP exam. > > Well, I live in Sydney, Australia and I still could not find job. I wish to > carry on with CCIE. I do not have problem with passing writing CCIE exam, > but > what about practical exam of 2 days duration. I have found some programs on > the net. But is it enough to pass without practice. I have passed my CCNP by > only reading books and downloading simulation programs. > > Can somebody give me advice whether I could carry on without real hand on > experince? > > Is there some way to volonteer to work for free? > > Is there some way to get free CCIE Lab experience? > > > Thanks in advance > > > Alex -- David Madland CCIE# 2016 Sr. Network Engineer Qwest Communications 612-664-3367 "Government can do something for the people only in proportion as it can do something to the people." -- Thomas Jefferson Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=73274&t=73263 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Logging ICMP on a PIX [7:73232]
Yes I tried that and scared the sh!t out of myself as this produces quite a bit of output to the console ;) Even when the loggin is to to trap only see below. Any more ideas as I thought I've had this working in the past but maybe on earlier versions of software, Cheers PIX(config)# debu icmp trace ICMP trace on Warning: this may cause problems on busy networks PIX4Internet(config)# 1: Outbound ICMP echo request (len 32 id 2 seq 46102) 172.16.6.91 > 172.16.6.91 > 194.#.#.2: Inbound ICMP echo reply (len 32 id 2 seq 46102) 194.#.#.2 > 172.16.6.91 > 172.16.6.91 3: Outbound ICMP echo request (len 32 id 2 seq 46358) 172.16.6.91 > 172.16.6.91 > 194.#.#.2: Inbound ICMP echo reply (len 32 id 2 seq 46358) 194.#.#.2 > 172.16.6.91 > 172.16.6.91 no debu icmp trace5: Outbound ICMP echo request (len 32 id 2 seq 46614) 172.16.6.91 > 172.16.6.91 > 194.26.184.42 6: Inbound ICMP echo reply (len 32 id 2 seq 46614) 194.#.#.2 > 172.16.6.91 > 172.16.6.91 ICMP trace off PIX4Internet(config)# PIX(config)# sh logg Syslog logging: enabled Facility: 19 Timestamp logging: disabled Standby logging: disabled Console logging: disabled Monitor logging: disabled Buffer logging: disabled Trap logging: level debugging, 29320465 messages logged Logging to inside 172.16.4.34 Logging to inside 172.16.4.159 History logging: disabled PIX(config)# wrote in message news:[EMAIL PROTECTED] > Tried > > debug icmp trace > > And logged that information to console/syslog debugging level? > > Martijn > > 6.2 > http://www.cisco.com/univercd/cc/td/doc/product/iaabu/pix/pix_62/cmdref/gl.h > tm#1028090 > level > Specify the syslog message level as a number or string. The level you > specify means that you want that level and those less than the level. For > example, if level is 3, syslog displays 0, 1, 2, and 3 messages. Possible > number and string level values are: > > 0-emergencies-System unusable messages > 1-alerts-Take immediate action > 2-critical-Critical condition > 3-errors-Error message > 4-warnings-Warning message > 5-notifications-Normal but significant condition > 6-informational-Information message > 7-debugging-Debug messages and log FTP commands and WWW URLs > > > > -Oorspronkelijk bericht- > Van: Patrick Donlon [mailto:[EMAIL PROTECTED] > Verzonden: woensdag 30 juli 2003 10:23 > Aan: [EMAIL PROTECTED] > Onderwerp: Logging ICMP on a PIX [7:73232] > > > Do anyone know how to log ICMP traffic that is allowed through a PIX?? I can > see denied ICMP no problem. > > I can log all my other traffic with logging trap debug set, but it can't see > ICMP traffic passing through the firewall. Is this normally behaviour for > 6.2(2)? > > Cheers > > Pat Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=73273&t=73232 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: CCIE Lab experience! [7:73263]
Alex, Congratulations on passing your NP exam(s). The lab exam is no longer the 2 day format. Details can be found at the following URL: http://www.cisco.com/en/US/learning/le3/le11/learning_ccie_lab_exam.html You must have more than just knowledge, but also speed - the ability to type very fast is even beneficial due to the length and quantity of configurations you will need to create and manipulate. There are several companies that offer lab simulations and remote access to their racks - this might be helpful since you say you've already got the understanding - just need the practical... Bill Creighton CCNP Network Design Engineer, eVPN NSPM AT&T Business Service Delivery > -Original Message- > From: Alex Cosic [mailto:[EMAIL PROTECTED] > Sent: Wednesday, July 30, 2003 9:52 PM > To: [EMAIL PROTECTED] > Subject: CCIE Lab experience! [7:73263] > > > Hi there, > > I have finished my CCNP exam. > > Well, I live in Sydney, Australia and I still could not find > job. I wish to > carry on with CCIE. I do not have problem with passing > writing CCIE exam, but > what about practical exam of 2 days duration. I have found > some programs on > the net. But is it enough to pass without practice. I have > passed my CCNP by > only reading books and downloading simulation programs. > > Can somebody give me advice whether I could carry on without > real hand on > experince? > > Is there some way to volonteer to work for free? > > Is there some way to get free CCIE Lab experience? > > > Thanks in advance > > > Alex Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=73277&t=73263 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
eigrp help [7:73272]
Hi all, I need some help on eigro redistribution.I redist eigrp from two AS into each other.I can see all the routes in one AS and not the other. What do I need to do? Rgds, AK Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=73272&t=73272 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
(CBWFQ ) class-default [7:73280]
What's the default queuing mechanism for the class-default queue within CBWFQ. The courseware says it's FIFO but my 7200 router displays otherwise? Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=73280&t=73280 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: CCIE Lab experience! [7:73263]
The day I meet ANYONE who can pass the CCIE lab by reading alone and no practical experience on a router or switch is the day I stop pursuing my Cisco certs. Bill Creighton CCNP Network Design Engineer, eVPN NSPM AT&T Business Service Delivery > -Original Message- > From: Reimer, Fred [mailto:[EMAIL PROTECTED] > Sent: Thursday, July 31, 2003 8:04 AM > To: [EMAIL PROTECTED] > Subject: RE: CCIE Lab experience! [7:73263] > > > As far as I understand, the lab is not 2 days anymore. It is > only one day. > And they don't break things and have you find and fix them. > You just have > to configure the network correctly and answer some questions. > You could > pass the lab by just reading books, but you'd have to have a > pretty special > ability to understand things without actually configuring > them on a real > router. > > Fred Reimer - CCNA > > > Eclipsys Corporation, 200 Ashford Center North, Atlanta, GA 30338 > Phone: 404-847-5177 Cell: 770-490-3071 Pager: 888-260-2050 > > > NOTICE; This email contains confidential or proprietary > information which > may be legally privileged. It is intended only for the named > recipient(s). > If an addressing or transmission error has misdirected the > email, please > notify the author by replying to this message. If you are not > the named > recipient, you are not authorized to use, disclose, > distribute, copy, print > or rely on this email, and should immediately delete it from > your computer. > > > -Original Message- > From: Alex Cosic [mailto:[EMAIL PROTECTED] > Sent: Wednesday, July 30, 2003 10:52 PM > To: [EMAIL PROTECTED] > Subject: CCIE Lab experience! [7:73263] > > Hi there, > > I have finished my CCNP exam. > > Well, I live in Sydney, Australia and I still could not find > job. I wish to > carry on with CCIE. I do not have problem with passing > writing CCIE exam, > but > what about practical exam of 2 days duration. I have found > some programs on > the net. But is it enough to pass without practice. I have > passed my CCNP by > only reading books and downloading simulation programs. > > Can somebody give me advice whether I could carry on without > real hand on > experince? > > Is there some way to volonteer to work for free? > > Is there some way to get free CCIE Lab experience? > > > Thanks in advance > > > Alex Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=73278&t=73263 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Logging ICMP on a PIX [7:73232]
I don't really want to see all ICMP traffic as it makes me cross eyed, I can filter it on the syslog server though (if the disk isn't full). It's just that when trouble shooting connections, e.g.. a vpn to an external company, icmp is normally allowed through so it would be nice to see it when setting up a connection. ""George Murage"" <> wrote in message news:[EMAIL PROTECTED] > Just out of curiosity, why do you want to log *all* ICMP traffic through > your PIX? At logging level 4, you should see logs for selected ICMP traffic > that is characteristic of a reconnaissance attack. > > Anyway, I hope you have a large disk(s) on your Syslog server :-) > > -Original Message- > From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] > Sent: Thursday, July 31, 2003 2:44 PM > To: [EMAIL PROTECTED] > Subject: RE: Logging ICMP on a PIX [7:73232] > > Tried > > debug icmp trace > > And logged that information to console/syslog debugging level? > > Martijn > > 6.2 > http://www.cisco.com/univercd/cc/td/doc/product/iaabu/pix/pix_62/cmdref/gl.h > tm#1028090 > level > Specify the syslog message level as a number or string. The level you > specify means that you want that level and those less than the level. For > example, if level is 3, syslog displays 0, 1, 2, and 3 messages. Possible > number and string level values are: > > 0-emergencies-System unusable messages > 1-alerts-Take immediate action > 2-critical-Critical condition > 3-errors-Error message > 4-warnings-Warning message > 5-notifications-Normal but significant condition > 6-informational-Information message > 7-debugging-Debug messages and log FTP commands and WWW URLs > > > > -Oorspronkelijk bericht- > Van: Patrick Donlon [mailto:[EMAIL PROTECTED] > Verzonden: woensdag 30 juli 2003 10:23 > Aan: [EMAIL PROTECTED] > Onderwerp: Logging ICMP on a PIX [7:73232] > > > Do anyone know how to log ICMP traffic that is allowed through a PIX?? I can > see denied ICMP no problem. > > I can log all my other traffic with logging trap debug set, but it can't see > ICMP traffic passing through the firewall. Is this normally behaviour for > 6.2(2)? > > Cheers > > Pat Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=73281&t=73232 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
VPN Client cannot connect [7:73276]
I am using a vpn client version 4.0.1, i connect to internet using an adsl modem and i dial my network using the client. the problem is after i put in my logon details into the logon screen..the connection times outwithout ever connecting. i have pasted the router config, the debug cry isa output and the cisco vpn client logg. your help will be highly appreciated. regards, Tunde [B]router config[/B] service timestamps debug uptime service timestamps log uptime service password-encryption ! hostname router ! logging buffered 4096 debugging aaa new-model ! ! aaa authentication login default local aaa authentication login userauthen local aaa authentication enable default enable aaa authorization commands 15 default local aaa authorization network groupauthor local aaa session-id common enable secret 5 $1$.fkm$4O8.dVegwONw0eriy2Hzb/ enable password 7 02020555020303 ! username test password 7 09584B1A0D memory-size iomem 15 ip subnet-zero no ip source-route ! ! ip domain-name rock ip name-server 192.168.123.3 ip name-server 192.168.123.13 ip name-server 192.168.123.15 ! no ip bootp server ip audit notify log ip audit po max-events 100 ip ssh time-out 120 ip ssh authentication-retries 3 ! crypto isakmp policy 10 hash md5 authentication pre-share group 2 ! crypto isakmp policy 30 encr 3des authentication pre-share group 2 crypto isakmp key cisco123 address x.x.x.x ! crypto isakmp client configuration group remotevpn key cisco123 dns 192.168.123.3 wins 192.168.123.2 domain rock.com pool VPN ! ! crypto ipsec transform-set cabweb esp-des esp-md5-hmac crypto ipsec transform-set vpn-transform-set esp-3des esp-sha-hmac crypto mib ipsec flowmib history tunnel size 200 crypto mib ipsec flowmib history failure size 200 ! crypto dynamic-map dynmap 30 set transform-set vpn-transform-set ! ! crypto map cabweb client authentication list userauthen crypto map cabweb isakmp authorization list groupauthor crypto map cabweb client configuration address respond crypto map cabweb 10 ipsec-isakmp set peer x.x.x.x set transform-set cabweb match address 111 crypto map cabweb 30 ipsec-isakmp dynamic dynmap ! ! ! ! interface Ethernet0 ip address 1.1.1.1 255.255.255.248 ip nat outside no ip mroute-cache full-duplex no cdp enable crypto map cabweb ! interface FastEthernet0 ip address 192.168.123.252 255.255.255.0 ip access-group 101 in no ip redirects no ip unreachables no ip proxy-arp ip nat inside no ip mroute-cache speed 100 half-duplex ntp disable no cdp enable standby 2 ip 192.168.123.1 standby 2 priority 150 standby 2 preempt ! ip local pool VPN 192.168.123.180 192.168.123.200 ip nat inside source list IP-NAT interface Ethernet0 overload ip nat inside source static 192.168.123.13 1.1.1.2 ip nat inside source static 192.168.123.2 1.1.1.3 ip nat inside source static 192.168.123.3 1.1.1.4 no ip classless ip route 0.0.0.0 0.0.0.0 1.1.1.6 ip route 0.0.0.0 0.0.0.0 192.168.123.4 100 no ip http server ip pim bidir-enable ! ! ip access-list standard IP-NAT deny 192.168.123.3 deny 192.168.123.2 deny 192.168.123.15 deny 192.168.123.13 permit 192.168.0.0 0.0.255.255 ! access-list 111 permit ip 192.168.123.0 0.0.0.255 192.168.124.0 0.0.0.255 no cdp run ! line con 0 exec-timeout 0 0 password 7 1416160E0E0B3D2A282D line aux 0 line vty 0 4 password 7 0507071820425D0617 ! no scheduler allocate end [B]debug output[/B] 2d06h: ISAKMP (0:2): retransmitting phase 1 AG_INIT_EXCH... 2d06h: ISAKMP (0:2): incrementing error counter on sa: retransmit phase 1 2d06h: ISAKMP (0:2): retransmitting phase 1 AG_INIT_EXCH 2d06h: ISAKMP (0:2): sending packet to 81.134.114.66 (R) AG_INIT_EXCH 2d06h: ISAKMP (0:0): received packet from 81.134.114.66 (N) NEW SA 2d06h: ISAKMP: local port 500, remote port 500 2d06h: ISAKMP (0:3): (Re)Setting client xauth list userauthen and state 2d06h: ISAKMP: Locking CONFIG struct 0x814F42E0 from crypto_ikmp_config_initialize_sa, count 3 2d06h: ISAKMP (0:3): processing SA payload. message ID = 0 2d06h: ISAKMP (0:3): processing ID payload. message ID = 0 2d06h: ISAKMP (0:3): processing vendor id payload 2d06h: ISAKMP (0:3): vendor ID seems Unity/DPD but bad major 2d06h: ISAKMP (0:3): vendor ID is XAUTH 2d06h: ISAKMP (0:3): processing vendor id payload 2d06h: ISAKMP (0:3): vendor ID is DPD 2d06h: ISAKMP (0:3): processing vendor id payload 2d06h: ISAKMP (0:3): vendor ID seems Unity/DPD but bad major 2d06h: ISAKMP (0:3): processing vendor id payload 2d06h: ISAKMP (0:3): vendor ID seems Unity/DPD but bad major 2d06h: ISAKMP (0:3): processing vendor id payload 2d06h: ISAKMP (0:3): vendor ID is Unity 2d06h: ISAKMP (0:3): Checking ISAKMP transform 1 against priority 30 policy 2d06h: ISAKMP: encryption... What? 7? 2d06h: ISAKMP: hash SHA 2d06h: ISAKMP: default group 2 2d06h: ISAKMP: auth XAUTHInitPreShared 2d06h: ISAKMP: life type in seconds 2d06h: ISAKMP: life duration (VPI) of 0x0 0x20 0xC4 0x9B 2d06h: ISAKMP: attribute 14 2d06h: ISAKMP (0:3):
RE: CCIE Lab experience! [7:73263]
I took the lab recently (before my time ran out) & there is a full day of config to do. Lots of everything & some nice little surprises. A couple of the guys on the same day were caught out by the wording & the way the questions were structured. You have to be able to understand it fully before you start working. Otherwise, it's back to the start & you've wasted an hour. -Original Message- From: Reimer, Fred [mailto:[EMAIL PROTECTED] Sent: 31 July 2003 14:04 To: [EMAIL PROTECTED] Subject: RE: CCIE Lab experience! [7:73263] As far as I understand, the lab is not 2 days anymore. It is only one day. And they don't break things and have you find and fix them. You just have to configure the network correctly and answer some questions. You could pass the lab by just reading books, but you'd have to have a pretty special ability to understand things without actually configuring them on a real router. Fred Reimer - CCNA Eclipsys Corporation, 200 Ashford Center North, Atlanta, GA 30338 Phone: 404-847-5177 Cell: 770-490-3071 Pager: 888-260-2050 NOTICE; This email contains confidential or proprietary information which may be legally privileged. It is intended only for the named recipient(s). If an addressing or transmission error has misdirected the email, please notify the author by replying to this message. If you are not the named recipient, you are not authorized to use, disclose, distribute, copy, print or rely on this email, and should immediately delete it from your computer. -Original Message- From: Alex Cosic [mailto:[EMAIL PROTECTED] Sent: Wednesday, July 30, 2003 10:52 PM To: [EMAIL PROTECTED] Subject: CCIE Lab experience! [7:73263] Hi there, I have finished my CCNP exam. Well, I live in Sydney, Australia and I still could not find job. I wish to carry on with CCIE. I do not have problem with passing writing CCIE exam, but what about practical exam of 2 days duration. I have found some programs on the net. But is it enough to pass without practice. I have passed my CCNP by only reading books and downloading simulation programs. Can somebody give me advice whether I could carry on without real hand on experince? Is there some way to volonteer to work for free? Is there some way to get free CCIE Lab experience? Thanks in advance Alex === This message has been checked for all known viruses by the Sirocom Virus Scanning Service === === This message has been checked for all known viruses by the Sirocom Virus Scanning Service WWW.SIROCOM.COM === Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=73286&t=73263 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: 65XX mmfc recovery [7:73261]
What is it your trying to do, boot the MSFC from the sup slot0? If so you can't from ROMMON. You must have a VLAN up and running or it will not work. since you apparently have a boot image in bootflash bring your MSFC up in the boot image, config up a VLAN and add you boot variable pointing to the image on the sup-slotx: and this should work. If you trying to get to the ROMMON from a switch con don't pull or power off the switch sup, just reload the MSFC and issue a break. Dave Todd Veillette wrote: > Yes, upgrade of the cat os went fine with high availability. > The images are there. One of the msfc is 100% and up in > production as I left it alone. The msfc's don't sync their bootflash > just the sup's. > > The upgrade boot loader image is on the msfc bootflash, and the actual > 12 full version is on slot1. I have tried to boot to rommon, but I can't > get there. I pull the good sup and msfc, and power off then on. > > Switch console as soon as I can, and see the bootimage decompressing, > then its trying to tftp:255.255.255.255slot:12image (it's supposed to > tftp) > just not sure it's correct. I can't break and get to rommon for some reason. > > What makes this so difficult is I get an hour outage window once a week - > so not much time to try stuff. > > -TV > > - Original Message - > From: "Jung, Jin" > To: "'Todd Veillette'" ; > Sent: Wednesday, July 30, 2003 8:58 AM > Subject: RE: 65XX mmfc recovery > > > >>You must be using SRM, with sup1 and Msfc1, >> >>Did you put the highavailbility versioning enable before you started the >>upgrade? >> >>If not you may have lost the images, or your Msfc started the sync in the >>process of upgrade. >> >>Boot to ROMMON and see what is on the flash of MSFCs. >> >> >> >>Jin jung,,, >> >> >>-Original Message- >>From: Todd Veillette [mailto:[EMAIL PROTECTED] >>Sent: Tuesday, July 29, 2003 7:58 PM >>To: [EMAIL PROTECTED] >>Subject: OT:65XX mmfc recovery >> >> >>All, >> >>Redundant sup1's both with msfc. Long story short upgrading msfc, with the >>boot image on bootflash and the catos in slot0. >> >>Via reset, switch sup, and/or switch console I can see the msfc's request > > as > >>in: >> >> tftp:255.255.255.255slot0:msfc_12.whatever.bin >> >>which results in error opening tftp. I'm guessing the "slot0" shouldn't be >>there, as this isn't part of the image's name. >> >>Change the name to above - will it work? >> >>If not, I think I need to bootrom chip and clear the bootldr and > > bootflash? > >>Oh the main problem here is my outage window is 1 hour if I'm lucky, once > > a > >>week. >> >>Any feedback would be appreciated. >> >>-TV >> >> >>___ >>You are subscribed to the GroupStudy.com CCIE R&S Discussion Group. >> >>Subscription information may be found at: >>http://www.groupstudy.com/list/CCIELab.html -- David Madland CCIE# 2016 Sr. Network Engineer Qwest Communications 612-664-3367 "Government can do something for the people only in proportion as it can do something to the people." -- Thomas Jefferson Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=73270&t=73261 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
CCNP >> MCSE >> hands on [7:73284]
Hi all, I have recently passed the CCNP but have little experience. I have started working on the MCSE Win2K Server. I have tried to get hands on practice by networking my desktop and laptop, and maybe add from there. But I can't even get the two to talk. Could someone please give a little advice?? I can ping but the Win98 laptop says it has no access to the network, whatever that means. The Win2K desktop seems to be able to see the whole C:\ drive of the laptop. I have used the HELP file and read books. I have run out of ideas. -edgar San Diego, CA Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=73284&t=73284 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: CCIE Lab experience! [7:73263]
hehehe ye. I'll do the same ""Creighton, Bill, NSPM"" wrote in message news:[EMAIL PROTECTED] > The day I meet ANYONE who can pass the CCIE lab by reading alone and no > practical experience on a router or switch is the day I stop pursuing my > Cisco certs. > > Bill Creighton CCNP > Network Design Engineer, eVPN > NSPM AT&T Business Service Delivery > > > > -Original Message- > > From: Reimer, Fred [mailto:[EMAIL PROTECTED] > > Sent: Thursday, July 31, 2003 8:04 AM > > To: [EMAIL PROTECTED] > > Subject: RE: CCIE Lab experience! [7:73263] > > > > > > As far as I understand, the lab is not 2 days anymore. It is > > only one day. > > And they don't break things and have you find and fix them. > > You just have > > to configure the network correctly and answer some questions. > > You could > > pass the lab by just reading books, but you'd have to have a > > pretty special > > ability to understand things without actually configuring > > them on a real > > router. > > > > Fred Reimer - CCNA > > > > > > Eclipsys Corporation, 200 Ashford Center North, Atlanta, GA 30338 > > Phone: 404-847-5177 Cell: 770-490-3071 Pager: 888-260-2050 > > > > > > NOTICE; This email contains confidential or proprietary > > information which > > may be legally privileged. It is intended only for the named > > recipient(s). > > If an addressing or transmission error has misdirected the > > email, please > > notify the author by replying to this message. If you are not > > the named > > recipient, you are not authorized to use, disclose, > > distribute, copy, print > > or rely on this email, and should immediately delete it from > > your computer. > > > > > > -Original Message- > > From: Alex Cosic [mailto:[EMAIL PROTECTED] > > Sent: Wednesday, July 30, 2003 10:52 PM > > To: [EMAIL PROTECTED] > > Subject: CCIE Lab experience! [7:73263] > > > > Hi there, > > > > I have finished my CCNP exam. > > > > Well, I live in Sydney, Australia and I still could not find > > job. I wish to > > carry on with CCIE. I do not have problem with passing > > writing CCIE exam, > > but > > what about practical exam of 2 days duration. I have found > > some programs on > > the net. But is it enough to pass without practice. I have > > passed my CCNP by > > only reading books and downloading simulation programs. > > > > Can somebody give me advice whether I could carry on without > > real hand on > > experince? > > > > Is there some way to volonteer to work for free? > > > > Is there some way to get free CCIE Lab experience? > > > > > > Thanks in advance > > > > > > Alex Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=73283&t=73263 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: CCIE Lab experience! [7:73263]
""Creighton, Bill, NSPM"" wrote in message news:[EMAIL PROTECTED] > The day I meet ANYONE who can pass the CCIE lab by reading alone and no > practical experience on a router or switch is the day I stop pursuing my > Cisco certs. I don't know. Superman became a skilled surgeon just by readng the medical library at a major university. ( I guess I'm dating myself here. That particular comic book episode has to have happened several decades ago ;-> ) > > Bill Creighton CCNP > Network Design Engineer, eVPN > NSPM AT&T Business Service Delivery > > > > -Original Message- > > From: Reimer, Fred [mailto:[EMAIL PROTECTED] > > Sent: Thursday, July 31, 2003 8:04 AM > > To: [EMAIL PROTECTED] > > Subject: RE: CCIE Lab experience! [7:73263] > > > > > > As far as I understand, the lab is not 2 days anymore. It is > > only one day. > > And they don't break things and have you find and fix them. > > You just have > > to configure the network correctly and answer some questions. > > You could > > pass the lab by just reading books, but you'd have to have a > > pretty special > > ability to understand things without actually configuring > > them on a real > > router. > > > > Fred Reimer - CCNA > > > > > > Eclipsys Corporation, 200 Ashford Center North, Atlanta, GA 30338 > > Phone: 404-847-5177 Cell: 770-490-3071 Pager: 888-260-2050 > > > > > > NOTICE; This email contains confidential or proprietary > > information which > > may be legally privileged. It is intended only for the named > > recipient(s). > > If an addressing or transmission error has misdirected the > > email, please > > notify the author by replying to this message. If you are not > > the named > > recipient, you are not authorized to use, disclose, > > distribute, copy, print > > or rely on this email, and should immediately delete it from > > your computer. > > > > > > -Original Message- > > From: Alex Cosic [mailto:[EMAIL PROTECTED] > > Sent: Wednesday, July 30, 2003 10:52 PM > > To: [EMAIL PROTECTED] > > Subject: CCIE Lab experience! [7:73263] > > > > Hi there, > > > > I have finished my CCNP exam. > > > > Well, I live in Sydney, Australia and I still could not find > > job. I wish to > > carry on with CCIE. I do not have problem with passing > > writing CCIE exam, > > but > > what about practical exam of 2 days duration. I have found > > some programs on > > the net. But is it enough to pass without practice. I have > > passed my CCNP by > > only reading books and downloading simulation programs. > > > > Can somebody give me advice whether I could carry on without > > real hand on > > experince? > > > > Is there some way to volonteer to work for free? > > > > Is there some way to get free CCIE Lab experience? > > > > > > Thanks in advance > > > > > > Alex Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=73282&t=73263 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: L2 vs L3 [7:73255]
>You have a lot of options. I recommend Sprint first, then Level-3, >then GX. Unless you are already in bed with Qwest or AT&T, they >won't give you the time-of-day for support (and you are going to >need good support for an offering like this). In particular, I >recommend Sprint's PW option (UTI on Cisco GSR), and Level-3's >(3)Packet MPLS-VPN option (Martini L2VPN on Laurel Networks). > I just checked the Sprintbiz site and they seem to offer a network-based IP VPN and a CPE-based IP VPN. It appears to me that these are both L3 VPNs. It's hard to find much more than marketing materials on their site, though, and I'd love to read more details. Are those the Sprint services you were referring to? And what is the PW option you refer to? I've already read a little about the Level-3 MPLS-VPN and it sounded like a good option but we come back to the full-mesh issue. It would take over 5300 PVCs to create a full mesh with their L2 VPN. A full mesh isn't a requirement, but it is a very nice feature of the Qwest PRN service and given our network design and traffic flow, that is a great benefit. John Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=73285&t=73255 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: CCNP >> MCSE >> hands on [7:73284]
Are you connecting through a hub or from pc to laptop using a crossover cable? Are the cables good? -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] Sent: Thursday, July 31, 2003 11:54 AM To: [EMAIL PROTECTED] Subject: CCNP >> MCSE >> hands on [7:73284] Hi all, I have recently passed the CCNP but have little experience. I have started working on the MCSE Win2K Server. I have tried to get hands on practice by networking my desktop and laptop, and maybe add from there. But I can't even get the two to talk. Could someone please give a little advice?? I can ping but the Win98 laptop says it has no access to the network, whatever that means. The Win2K desktop seems to be able to see the whole C:\ drive of the laptop. I have used the HELP file and read books. I have run out of ideas. -edgar San Diego, CA Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=73291&t=73284 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: L2 vs L3 [7:73255]
Actually John, contrary to what was stated, AT&T has a really great bunch of pre-sales engineers who do give customers lots of time, and the time of day if they need it, to talk about VPN's. Not to mention lots of support on the backend if you are already a customer. We've been running 2547 VPN's since 1998 over Fr/ATM and since 2000 over our IP backbone. Customers using VOIP really like our VPN's because they have inherent full mesh topologies and built in QOS using CBFWQ/LLQ/WRED. L2 VPN's are for carriers who don't have other choices, such as Sprint, which has IP globally, but not frame relay. They are able to provide a global VPN that way. They didn't really have a choice. Now, they have totally done an about face due to massive customer pressure and are implementing 2547 after saying for years that it wasn't necessary, sucks, etc. the industry choice appears to be 2547 though you can't forget the Qwest solution as it is popular with many customers. L2 is nice for end to end routing control also. But only if you NEED full mesh. Otherwise, there's nothing wrong with good old fashioned FR and ATM pvc's. 2547 VPN's are different and require some thought, because you are essentially routing WITH your carrier instead of transparently to your carrier. Michelle Michelle Truman CCIE # 8098 Principal Technical Consultant AT&T Solutions Center mailto:[EMAIL PROTECTED] Work: 651-998-0949 -Original Message- From: John Neiberger [mailto:[EMAIL PROTECTED] Sent: Thursday, July 31, 2003 10:55 AM To: [EMAIL PROTECTED] Subject: Re: L2 vs L3 [7:73255] >You have a lot of options. I recommend Sprint first, then Level-3, >then GX. Unless you are already in bed with Qwest or AT&T, they >won't give you the time-of-day for support (and you are going to >need good support for an offering like this). In particular, I >recommend Sprint's PW option (UTI on Cisco GSR), and Level-3's >(3)Packet MPLS-VPN option (Martini L2VPN on Laurel Networks). > I just checked the Sprintbiz site and they seem to offer a network-based IP VPN and a CPE-based IP VPN. It appears to me that these are both L3 VPNs. It's hard to find much more than marketing materials on their site, though, and I'd love to read more details. Are those the Sprint services you were referring to? And what is the PW option you refer to? I've already read a little about the Level-3 MPLS-VPN and it sounded like a good option but we come back to the full-mesh issue. It would take over 5300 PVCs to create a full mesh with their L2 VPN. A full mesh isn't a requirement, but it is a very nice feature of the Qwest PRN service and given our network design and traffic flow, that is a great benefit. John Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=73293&t=73255 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: CCNP >> MCSE >> hands on [7:73284]
you need an account on the 2k box with the cumputer name of the win 9x box. Then if you try to access the box it should ask you for a password. Simply enter the one you set and your good to go. Oh also do you have the client for MS networks installed Steve [EMAIL PROTECTED] wrote: > Hi all, > > I have recently passed the CCNP but have little experience. I have started > working on the MCSE Win2K Server. I have tried to get hands on practice by > networking my desktop and laptop, and maybe add from there. But I can't > even get > the two to talk. > > Could someone please give a little advice?? > > I can ping but the Win98 laptop says it has no access to the network, > whatever that means. The Win2K desktop seems to be able to see the whole > C:\ drive > of the laptop. I have used the HELP file and read books. I have run out of > ideas. > -edgar > San Diego, CA Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=73289&t=73284 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: VPN Ports [7:73290]
Steven Aiello wrote: > > Ok, > >I haven't gotten much of a bit on my access list question. > But no > worries I have a book and I'm going to try it my self. However > can any > on give me a list run down of the ports needed for a VPN? I didn't see your first message so I don't know what you're trying to accomplish, so if this message is a non sequitor, I apoligize... > > exp > > IPSec portx tcp IPSec doesn't use TCP ports. It uses IP protocol numbers. There are two types: The Authentication Header (AH) and Encapsulating Security Payload (ESP). AH uses IP protocol number 51 ESP uses IP protocol number 50 > Lt\2TP porty tcp You can run L2TP over UDP, in which case UDP port number 1701 is used. See RFC 2661 for more info. Talk to you later, Priscilla > > I would greatly apprecate the help > > I am very new to the VPN side and I want to be sure I don't > over look > any thing > > Steven > > Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=73292&t=73290 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: eigrp help [7:73272]
Can you post your configs so we can see exactly what you are doing? Thanks, -- Bill Lijewski CCIE #8642 ""PPC-DAT Ep-Ng-Ist"" wrote in message news:[EMAIL PROTECTED] > Hi all, > I need some help on eigro redistribution.I redist eigrp from two AS into > each other.I can see all the routes in one AS and not the other. What do I > need to do? > Rgds, > AK Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=73287&t=73272 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: L2 vs L3 [7:73255]
John Neiberger 7/31/03 10:36:14 AM >>> >>You have a lot of options. I recommend Sprint first, then Level-3, >>then GX. Unless you are already in bed with Qwest or AT&T, they >>won't give you the time-of-day for support (and you are going to >>need good support for an offering like this). In particular, I >>recommend Sprint's PW option (UTI on Cisco GSR), and Level-3's >>(3)Packet MPLS-VPN option (Martini L2VPN on Laurel Networks). >> > >I just checked the Sprintbiz site and they seem to offer a network-based IP >VPN and a CPE-based IP VPN. It appears to me that these are both L3 VPNs. >It's hard to find much more than marketing materials on their site, though, >and I'd love to read more details. Are those the Sprint services you were >referring to? And what is the PW option you refer to? > >I've already read a little about the Level-3 MPLS-VPN and it sounded like a >good option but we come back to the full-mesh issue. It would take over 5300 >PVCs to create a full mesh with their L2 VPN. A full mesh isn't a >requirement, but it is a very nice feature of the Qwest PRN service and >given our network design and traffic flow, that is a great benefit. > >John I hate to follow-up on my own posts but after further reading about Sprint's IP VPN network it appears to be very similar to the Qwest PRN except that it uses IS-IS at the core instead of OSPF, while they both appear to use IPSec for tunneling. Could it be that they're both based on 2764? I'm going to call our Sprint account rep and ask her about this service. She could probably put me in touch with an engineer who could answer some of these questions. John Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=73288&t=73255 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: VPN Ports [7:73290]
Don't forget UDP port 500 for ISAKMP! -Original Message- From: Priscilla Oppenheimer [mailto:[EMAIL PROTECTED] Sent: 31 July 2003 18:32 To: [EMAIL PROTECTED] Subject: RE: VPN Ports [7:73290] Steven Aiello wrote: > > Ok, > >I haven't gotten much of a bit on my access list question. > But no > worries I have a book and I'm going to try it my self. However > can any > on give me a list run down of the ports needed for a VPN? I didn't see your first message so I don't know what you're trying to accomplish, so if this message is a non sequitor, I apoligize... > > exp > > IPSec portx tcp IPSec doesn't use TCP ports. It uses IP protocol numbers. There are two types: The Authentication Header (AH) and Encapsulating Security Payload (ESP). AH uses IP protocol number 51 ESP uses IP protocol number 50 > Lt\2TP porty tcp You can run L2TP over UDP, in which case UDP port number 1701 is used. See RFC 2661 for more info. Talk to you later, Priscilla > > I would greatly apprecate the help > > I am very new to the VPN side and I want to be sure I don't > over look > any thing > > Steven === This message has been checked for all known viruses by the Sirocom Virus Scanning Service === === This message has been checked for all known viruses by the Sirocom Virus Scanning Service WWW.SIROCOM.COM === Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=73300&t=73290 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
VPN logging ACS server [7:73297]
Hello all, I have 3.6 Clients connecting to a PIX 515 and using Xauth. Everything is just grand except I need a way to get a reporting of everyuser that logs in and how long they were connected. Preferably including start and stop times. OUr ACS server is great for showing when the connection was made by making an entry in the "Passed Authentications" But it does not record when the VPN is torn down. Any solutions, suggestions, comments on how to capture the teardown so I can make a reporting of how long the user was connected? I sthere and ACS fix, a PIX fix..someother fix ( using an ISA server) I am open to all sorts of suggestions. thanks, jim Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=73297&t=73297 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: CCNP >> MCSE >> hands on [7:73284]
He's able to see the c:\ on the laptop so its not physical. Reboot. refresh cache - Original Message - From: "DeVoe, Charles (PKI)" To: Sent: Thursday, July 31, 2003 12:25 PM Subject: RE: CCNP >> MCSE >> hands on [7:73284] > Are you connecting through a hub or from pc to laptop using a crossover > cable? Are the cables good? > > -Original Message- > From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] > Sent: Thursday, July 31, 2003 11:54 AM > To: [EMAIL PROTECTED] > Subject: CCNP >> MCSE >> hands on [7:73284] > > > Hi all, > > I have recently passed the CCNP but have little experience. I have started > working on the MCSE Win2K Server. I have tried to get hands on practice by > networking my desktop and laptop, and maybe add from there. But I can't > even get > the two to talk. > > Could someone please give a little advice?? > > I can ping but the Win98 laptop says it has no access to the network, > whatever that means. The Win2K desktop seems to be able to see the whole > C:\ drive > of the laptop. I have used the HELP file and read books. I have run out of > ideas. > -edgar > San Diego, CA Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=73299&t=73284 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: CCNP >> MCSE >> hands on [7:73284]
Try rebooting it. - Original Message - From: To: Sent: Thursday, July 31, 2003 10:53 AM Subject: CCNP >> MCSE >> hands on [7:73284] > Hi all, > > I have recently passed the CCNP but have little experience. I have started > working on the MCSE Win2K Server. I have tried to get hands on practice by > networking my desktop and laptop, and maybe add from there. But I can't > even get > the two to talk. > > Could someone please give a little advice?? > > I can ping but the Win98 laptop says it has no access to the network, > whatever that means. The Win2K desktop seems to be able to see the whole > C:\ drive > of the laptop. I have used the HELP file and read books. I have run out of > ideas. > -edgar > San Diego, CA Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=73298&t=73284 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: CCIE Lab experience! [7:73263]
Hi Joel, After doing the lab could you tell us if there was Labs books that helped you? (and which one does not even get closed?) Thanks Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=73296&t=73263 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: CCIE Lab experience! [7:73263]
Team, Your opinion is always accepted as a good advice...Question if you are at a point where you are running out of time for the lab, what will be more efficient, take the lab (spend $2000[traveling and the lab fees]) or let your written qualifications expired and take it again[spend $300]... Thanks, Juan -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] Behalf Of Joel Satterley Sent: Thursday, July 31, 2003 12:12 PM To: [EMAIL PROTECTED] Subject: RE: CCIE Lab experience! [7:73263] I took the lab recently (before my time ran out) & there is a full day of config to do. Lots of everything & some nice little surprises. A couple of the guys on the same day were caught out by the wording & the way the questions were structured. You have to be able to understand it fully before you start working. Otherwise, it's back to the start & you've wasted an hour. -Original Message- From: Reimer, Fred [mailto:[EMAIL PROTECTED] Sent: 31 July 2003 14:04 To: [EMAIL PROTECTED] Subject: RE: CCIE Lab experience! [7:73263] As far as I understand, the lab is not 2 days anymore. It is only one day. And they don't break things and have you find and fix them. You just have to configure the network correctly and answer some questions. You could pass the lab by just reading books, but you'd have to have a pretty special ability to understand things without actually configuring them on a real router. Fred Reimer - CCNA Eclipsys Corporation, 200 Ashford Center North, Atlanta, GA 30338 Phone: 404-847-5177 Cell: 770-490-3071 Pager: 888-260-2050 NOTICE; This email contains confidential or proprietary information which may be legally privileged. It is intended only for the named recipient(s). If an addressing or transmission error has misdirected the email, please notify the author by replying to this message. If you are not the named recipient, you are not authorized to use, disclose, distribute, copy, print or rely on this email, and should immediately delete it from your computer. -Original Message- From: Alex Cosic [mailto:[EMAIL PROTECTED] Sent: Wednesday, July 30, 2003 10:52 PM To: [EMAIL PROTECTED] Subject: CCIE Lab experience! [7:73263] Hi there, I have finished my CCNP exam. Well, I live in Sydney, Australia and I still could not find job. I wish to carry on with CCIE. I do not have problem with passing writing CCIE exam, but what about practical exam of 2 days duration. I have found some programs on the net. But is it enough to pass without practice. I have passed my CCNP by only reading books and downloading simulation programs. Can somebody give me advice whether I could carry on without real hand on experince? Is there some way to volonteer to work for free? Is there some way to get free CCIE Lab experience? Thanks in advance Alex === This message has been checked for all known viruses by the Sirocom Virus Scanning Service === === This message has been checked for all known viruses by the Sirocom Virus Scanning Service WWW.SIROCOM.COM === Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=73294&t=73263 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: CCIE Lab experience! [7:73263]
I just can't see it happening (pass the CCIE lab with only reading books). I'm a CCNP/CCDP with a good, solid three years of hands-on Cisco experience under my belt and can't believe what I've learned by being able to actually configure and troubleshoot the equipment. There's no way that I could get that from just reading books. And I still don't feel prepared to tackle the CCIE lab yet! If you can't afford your own equipment, see if you can find a study group in your area. Most times, many members of the group already have all the equipment and you can work on scenarios together. Or, you can actually rent rack time very cheaply now if you want some hands-on practice. HTH, Shawn K. -Original Message- From: Alex Cosic [mailto:[EMAIL PROTECTED] Sent: Wednesday, July 30, 2003 10:52 PM To: [EMAIL PROTECTED] Subject: CCIE Lab experience! [7:73263] Hi there, I have finished my CCNP exam. Well, I live in Sydney, Australia and I still could not find job. I wish to carry on with CCIE. I do not have problem with passing writing CCIE exam, but what about practical exam of 2 days duration. I have found some programs on the net. But is it enough to pass without practice. I have passed my CCNP by only reading books and downloading simulation programs. Can somebody give me advice whether I could carry on without real hand on experince? Is there some way to volonteer to work for free? Is there some way to get free CCIE Lab experience? Thanks in advance Alex Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=73295&t=73263 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: CCIE Lab experience! [7:73263]
Depends on confidence, preparation, and budget - if I were not confident in my ability to pass, and I couldn't afford to blow $2K, I'd likely get a fresh 18 months and re-do the written. If, on the other hand, I could afford it, I'd get that initial attempt out of the way, since first-time passers are so rare, and then concentrate on the weak points. Bill Creighton CCNP Network Design Engineer, eVPN NSPM AT&T Business Service Delivery 231 Martingale Rd. Suite 800 Schaumburg, IL 60173-2008 Office: 847-407-4108 Fax: 847-598-6400 Mobile: 630-290-7000 [EMAIL PROTECTED] > -Original Message- > From: Juan Blanco [mailto:[EMAIL PROTECTED] > Sent: Thursday, July 31, 2003 12:35 PM > To: [EMAIL PROTECTED] > Subject: RE: CCIE Lab experience! [7:73263] > > > Team, > Your opinion is always accepted as a good advice...Question > if you are at a > point where > you are running out of time for the lab, what will be more > efficient, take > the lab (spend $2000[traveling and the lab fees]) or let your written > qualifications expired and take it again[spend $300]... > Thanks, > > Juan > > -Original Message- > From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] Behalf Of > Joel Satterley > Sent: Thursday, July 31, 2003 12:12 PM > To: [EMAIL PROTECTED] > Subject: RE: CCIE Lab experience! [7:73263] > > > I took the lab recently (before my time ran out) & there is a > full day of > config to do. Lots of everything & some nice little surprises. > > A couple of the guys on the same day were caught out by the > wording & the > way the questions were structured. You have to be able to > understand it > fully before you start working. > > Otherwise, it's back to the start & you've wasted an hour. > > -Original Message- > From: Reimer, Fred [mailto:[EMAIL PROTECTED] > Sent: 31 July 2003 14:04 > To: [EMAIL PROTECTED] > Subject: RE: CCIE Lab experience! [7:73263] > > As far as I understand, the lab is not 2 days anymore. It is > only one day. > And they don't break things and have you find and fix them. > You just have > to configure the network correctly and answer some questions. > You could > pass the lab by just reading books, but you'd have to have a > pretty special > ability to understand things without actually configuring > them on a real > router. > > Fred Reimer - CCNA > > > Eclipsys Corporation, 200 Ashford Center North, Atlanta, GA 30338 > Phone: 404-847-5177 Cell: 770-490-3071 Pager: 888-260-2050 > > > NOTICE; This email contains confidential or proprietary > information which > may be legally privileged. It is intended only for the named > recipient(s). > If an addressing or transmission error has misdirected the > email, please > notify the author by replying to this message. If you are not > the named > recipient, you are not authorized to use, disclose, > distribute, copy, print > or rely on this email, and should immediately delete it from > your computer. > > > -Original Message- > From: Alex Cosic [mailto:[EMAIL PROTECTED] > Sent: Wednesday, July 30, 2003 10:52 PM > To: [EMAIL PROTECTED] > Subject: CCIE Lab experience! [7:73263] > > Hi there, > > I have finished my CCNP exam. > > Well, I live in Sydney, Australia and I still could not find > job. I wish to > carry on with CCIE. I do not have problem with passing > writing CCIE exam, > but > what about practical exam of 2 days duration. I have found > some programs on > the net. But is it enough to pass without practice. I have > passed my CCNP by > only reading books and downloading simulation programs. > > Can somebody give me advice whether I could carry on without > real hand on > experince? > > Is there some way to volonteer to work for free? > > Is there some way to get free CCIE Lab experience? > > > Thanks in advance > > > Alex > === > This message has been checked for all known viruses by the > Sirocom Virus Scanning Service > === > > === >This message has been checked for all known viruses by the > Sirocom Virus Scanning Service > > WWW.SIROCOM.COM > === Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=73307&t=73263 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: L2 vs L3 [7:73255]
Thanks for the kind words, Michelle! Bill Creighton CCNP Network Design Engineer, eVPN NSPM AT&T Business Service Delivery 231 Martingale Rd. Suite 800 Schaumburg, IL 60173-2008 Office: 847-407-4108 Fax: 847-598-6400 Mobile: 630-290-7000 [EMAIL PROTECTED] > -Original Message- > From: Truman, Michelle, RTSLS > Sent: Thursday, July 31, 2003 12:33 PM > To: [EMAIL PROTECTED] > Subject: RE: L2 vs L3 [7:73255] > > > Actually John, contrary to what was stated, AT&T has a really great > bunch of pre-sales engineers who do give customers lots of > time, and the > time of day if they need it, to talk about VPN's. Not to > mention lots of > support on the backend if you are already a customer. We've > been running > 2547 VPN's since 1998 over Fr/ATM and since 2000 over our IP backbone. > Customers using VOIP really like our VPN's because they have inherent > full mesh topologies and built in QOS using CBFWQ/LLQ/WRED. > > L2 VPN's are for carriers who don't have other choices, such > as Sprint, > which has IP globally, but not frame relay. They are able to provide a > global VPN that way. They didn't really have a choice. Now, they have > totally done an about face due to massive customer pressure and are > implementing 2547 after saying for years that it wasn't necessary, > sucks, etc. > > the industry choice appears to be 2547 though you can't > forget the Qwest > solution as it is popular with many customers. L2 is nice for > end to end > routing control also. But only if you NEED full mesh. > Otherwise, there's > nothing wrong with good old fashioned FR and ATM pvc's. 2547 VPN's are > different and require some thought, because you are > essentially routing > WITH your carrier instead of transparently to your carrier. > > Michelle > > Michelle Truman CCIE # 8098 > Principal Technical Consultant > AT&T Solutions Center > mailto:[EMAIL PROTECTED] > Work: 651-998-0949 > > > > > > -Original Message- > From: John Neiberger [mailto:[EMAIL PROTECTED] > Sent: Thursday, July 31, 2003 10:55 AM > To: [EMAIL PROTECTED] > Subject: Re: L2 vs L3 [7:73255] > > > >You have a lot of options. I recommend Sprint first, then Level-3, > >then GX. Unless you are already in bed with Qwest or AT&T, they > >won't give you the time-of-day for support (and you are going to > >need good support for an offering like this). In particular, I > >recommend Sprint's PW option (UTI on Cisco GSR), and Level-3's > >(3)Packet MPLS-VPN option (Martini L2VPN on Laurel Networks). > > > > I just checked the Sprintbiz site and they seem to offer a > network-based > IP > VPN and a CPE-based IP VPN. It appears to me that these are both L3 > VPNs. > It's hard to find much more than marketing materials on their site, > though, > and I'd love to read more details. Are those the Sprint services you > were > referring to? And what is the PW option you refer to? > > I've already read a little about the Level-3 MPLS-VPN and it sounded > like a > good option but we come back to the full-mesh issue. It would > take over > 5300 > PVCs to create a full mesh with their L2 VPN. A full mesh isn't a > requirement, but it is a very nice feature of the Qwest PRN > service and > given our network design and traffic flow, that is a great benefit. > > John Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=73304&t=73255 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: CCNP >> MCSE >> hands on [7:73284]
Use a Mac. :-) Priscilla Duy Nguyen wrote: > > He's able to see the c:\ on the laptop so its not physical. > Reboot. > refresh cache > > - Original Message - > From: "DeVoe, Charles (PKI)" > To: > Sent: Thursday, July 31, 2003 12:25 PM > Subject: RE: CCNP >> MCSE >> hands on [7:73284] > > > > Are you connecting through a hub or from pc to laptop using a > crossover > > cable? Are the cables good? > > > > -Original Message- > > From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] > > Sent: Thursday, July 31, 2003 11:54 AM > > To: [EMAIL PROTECTED] > > Subject: CCNP >> MCSE >> hands on [7:73284] > > > > > > Hi all, > > > > I have recently passed the CCNP but have little experience. I > have started > > working on the MCSE Win2K Server. I have tried to get hands > on practice > by > > networking my desktop and laptop, and maybe add from there. > But I can't > > even get > > the two to talk. > > > > Could someone please give a little advice?? > > > > I can ping but the Win98 laptop says it has no access to the > network, > > whatever that means. The Win2K desktop seems to be able to > see the whole > > C:\ drive > > of the laptop. I have used the HELP file and read books. I > have run out > of > > ideas. > > -edgar > > San Diego, CA > > Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=73302&t=73284 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: CCNP >> MCSE >> hands on [7:73284]
Yup, realized that right after I hit send. I am used to troubleshooting things here. Have to double check everything a tech says he did. Had a guy one day tell me there was a network problem with a PC, everything at the PC checked out OK. I asked for the cable number, checked the database, check the switch port, and no activity. Went down to the machine, did a couple checks, decided to make sure the jumper cable was pushed in all the way. This is when I discovered that the cable wasn't even plugged in. Since then I check the obvious first. -Original Message- From: Duy Nguyen [mailto:[EMAIL PROTECTED] Sent: Thursday, July 31, 2003 2:29 PM To: [EMAIL PROTECTED] Subject: Re: CCNP >> MCSE >> hands on [7:73284] He's able to see the c:\ on the laptop so its not physical. Reboot. refresh cache - Original Message - From: "DeVoe, Charles (PKI)" To: Sent: Thursday, July 31, 2003 12:25 PM Subject: RE: CCNP >> MCSE >> hands on [7:73284] > Are you connecting through a hub or from pc to laptop using a crossover > cable? Are the cables good? > > -Original Message- > From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] > Sent: Thursday, July 31, 2003 11:54 AM > To: [EMAIL PROTECTED] > Subject: CCNP >> MCSE >> hands on [7:73284] > > > Hi all, > > I have recently passed the CCNP but have little experience. I have started > working on the MCSE Win2K Server. I have tried to get hands on practice by > networking my desktop and laptop, and maybe add from there. But I can't > even get > the two to talk. > > Could someone please give a little advice?? > > I can ping but the Win98 laptop says it has no access to the network, > whatever that means. The Win2K desktop seems to be able to see the whole > C:\ drive > of the laptop. I have used the HELP file and read books. I have run out of > ideas. > -edgar > San Diego, CA Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=73306&t=73284 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: CCIE Lab experience! [7:73263]
I'd take the lab the experience will help you a lot - less pressure for the next 'real' attempt. But then, I wasn't paying. -Original Message- From: Juan Blanco [mailto:[EMAIL PROTECTED] Sent: 31 July 2003 18:35 To: 'Joel Satterley'; [EMAIL PROTECTED] Subject: RE: CCIE Lab experience! [7:73263] Team, Your opinion is always accepted as a good advice...Question if you are at a point where you are running out of time for the lab, what will be more efficient, take the lab (spend $2000[traveling and the lab fees]) or let your written qualifications expired and take it again[spend $300]... Thanks, Juan -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] Behalf Of Joel Satterley Sent: Thursday, July 31, 2003 12:12 PM To: [EMAIL PROTECTED] Subject: RE: CCIE Lab experience! [7:73263] I took the lab recently (before my time ran out) & there is a full day of config to do. Lots of everything & some nice little surprises. A couple of the guys on the same day were caught out by the wording & the way the questions were structured. You have to be able to understand it fully before you start working. Otherwise, it's back to the start & you've wasted an hour. -Original Message- From: Reimer, Fred [mailto:[EMAIL PROTECTED] Sent: 31 July 2003 14:04 To: [EMAIL PROTECTED] Subject: RE: CCIE Lab experience! [7:73263] As far as I understand, the lab is not 2 days anymore. It is only one day. And they don't break things and have you find and fix them. You just have to configure the network correctly and answer some questions. You could pass the lab by just reading books, but you'd have to have a pretty special ability to understand things without actually configuring them on a real router. Fred Reimer - CCNA Eclipsys Corporation, 200 Ashford Center North, Atlanta, GA 30338 Phone: 404-847-5177 Cell: 770-490-3071 Pager: 888-260-2050 NOTICE; This email contains confidential or proprietary information which may be legally privileged. It is intended only for the named recipient(s). If an addressing or transmission error has misdirected the email, please notify the author by replying to this message. If you are not the named recipient, you are not authorized to use, disclose, distribute, copy, print or rely on this email, and should immediately delete it from your computer. -Original Message- From: Alex Cosic [mailto:[EMAIL PROTECTED] Sent: Wednesday, July 30, 2003 10:52 PM To: [EMAIL PROTECTED] Subject: CCIE Lab experience! [7:73263] Hi there, I have finished my CCNP exam. Well, I live in Sydney, Australia and I still could not find job. I wish to carry on with CCIE. I do not have problem with passing writing CCIE exam, but what about practical exam of 2 days duration. I have found some programs on the net. But is it enough to pass without practice. I have passed my CCNP by only reading books and downloading simulation programs. Can somebody give me advice whether I could carry on without real hand on experince? Is there some way to volonteer to work for free? Is there some way to get free CCIE Lab experience? Thanks in advance Alex === This message has been checked for all known viruses by the Sirocom Virus Scanning Service === === This message has been checked for all known viruses by the Sirocom Virus Scanning Service WWW.SIROCOM.COM === === This message has been checked for all known viruses by the Sirocom Virus Scanning Service === === This message has been checked for all known viruses by the Sirocom Virus Scanning Service WWW.SIROCOM.COM === Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=73301&t=73263 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: CCNP >> MCSE >> hands on [7:73284]
One other more useful comment. :-) Does the client or server have personal firewall software running? It could be blocking the NetBIOS ports, which would be a good thing (and probably the default) since they are infamous targets for script kiddies. Priscilla > > Duy Nguyen wrote: > > > > He's able to see the c:\ on the laptop so its not physical. > > Reboot. > > refresh cache > > > > - Original Message - > > From: "DeVoe, Charles (PKI)" > > To: > > Sent: Thursday, July 31, 2003 12:25 PM > > Subject: RE: CCNP >> MCSE >> hands on [7:73284] > > > > > > > Are you connecting through a hub or from pc to laptop using > a > > crossover > > > cable? Are the cables good? > > > > > > -Original Message- > > > From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] > > > Sent: Thursday, July 31, 2003 11:54 AM > > > To: [EMAIL PROTECTED] > > > Subject: CCNP >> MCSE >> hands on [7:73284] > > > > > > > > > Hi all, > > > > > > I have recently passed the CCNP but have little experience. > I > > have started > > > working on the MCSE Win2K Server. I have tried to get hands > > on practice > > by > > > networking my desktop and laptop, and maybe add from there. > > But I can't > > > even get > > > the two to talk. > > > > > > Could someone please give a little advice?? > > > > > > I can ping but the Win98 laptop says it has no access to the > > network, > > > whatever that means. The Win2K desktop seems to be able to > > see the whole > > > C:\ drive > > > of the laptop. I have used the HELP file and read books. I > > have run out > > of > > > ideas. > > > -edgar > > > San Diego, CA > > > > > > Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=73303&t=73284 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Loopback Interface [7:73305]
I know the loopback interface is useful for assigning the router ID. Is there any other purpose? Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=73305&t=73305 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: CCDA (DESGN 640-861) [7:73184]
At 8:17 PM + 7/29/03, Priscilla Oppenheimer wrote: >Fathalla Ahmed wrote: >> >> Hi, >> >> Any body knows if IPX and AppleTalk are included in the new >> CCDA exam? > >Although I haven't taken the test, I do have a copy of the course, and >there's no IPX or AppleTalk. > >Good luck with it. > >Priscilla Oppenheimer So we can say definitively there will be no apples versus oranges comparisons? (I'm excluding the NSA Orange Book, considering the Red Book is the network reference). Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=73310&t=73184 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Running out of Time - WAS - RE: CCIE Lab experience! [7:73263]
With the assumption this will be your first attempt, let me counter with another question. How much is the experience worth to you of sitting a lab to experience the situation and see the difficulty of the questions? It will demonstrate the topics that need improvement. Would the same money be better spent attending some training or purchasing some equipment? Further assumption is that you can afford either. Good luck in whatever you decide. > -Original Message- > From: Juan Blanco [mailto:[EMAIL PROTECTED] > Sent: Thursday, July 31, 2003 12:35 PM > To: [EMAIL PROTECTED] > Subject: RE: CCIE Lab experience! [7:73263] > > > Team, > Your opinion is always accepted as a good advice...Question > if you are at a > point where > you are running out of time for the lab, what will be more > efficient, take > the lab (spend $2000[traveling and the lab fees]) or let your written > qualifications expired and take it again[spend $300]... > Thanks, > > Juan Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=73312&t=73263 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: OT: SSL Remote Access VPNs [7:73253]
Joseph Brunner 7/30/03 5:24:39 PM >>> >www.netscaler.com > >their box does compression, and it has so many dos prevention and >other killer things it blows away the competition. We went with it >based on the performance it had during a syn flood blizard, and their >ssl vpn rocks! That's one of the units I've been asked to look at. It looks good on paper. What sorts of applications are you using it for? Are you doing much telnet/TN3270 or SSH? How about LDAP authentication? John Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=73308&t=73253 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Provider VPN Caveats [7:73207]
One thing that gets missed in the L2VPN versus L3VPN issue, with provider-provisioned LANs, is the people aspect both for the provider and customer. If you provision a L2VPN, it's a familiar interface to the customer. It's also much more familiar to telco/TDM technicians. I've seen market estimates that of telco staff, perhaps 10% would really be able to support L3VPN without extensive training. Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=73309&t=73207 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Loopback Interface [7:73305]
when doing unnumbered interfaces routing via loopbacks. Virtual templates, dialer interfaces etc... I use loopbacks for many testing reasons. load balancing and redundancy via BGP use as peer in DLSW for redundancy/stability generate routes Those are a couple I can think of off the top of me noodle Dave DeVoe, Charles (PKI) wrote: > I know the loopback interface is useful for assigning the router ID. Is > there any other purpose? -- David Madland CCIE# 2016 Sr. Network Engineer Qwest Communications 612-664-3367 "Government can do something for the people only in proportion as it can do something to the people." -- Thomas Jefferson Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=73315&t=73305 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
OSPF Book - Tom Thomas 2nd Edition [7:73318]
I'm looking for an evaluation of the second edition of Tom Thomas' "OSPF Network Design Solutions". I have the first edition and am wondering if there are major differences/improvements between the editions. Thanks in advance. Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=73318&t=73318 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Cisco Adv AVVID Troubleshooting and PBX Boot Camp [7:73314]
If anyone has attended this training class, please contact me. I am interested in this class, but I want same feedback on the class. "Through Complexity there is Simplicity, Through Simplicity there is Complexity" David L. Blair - CCNP, CIPTSS, CCNA, MCSE, CBE, Security+, A+, CIW Associate, 3Wizard Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=73314&t=73314 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Loopback Interface [7:73305]
To monitor the router, since its up/up if the router is up. Larry Letterman Cisco Systems -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of DeVoe, Charles (PKI) Sent: Thursday, July 31, 2003 12:16 PM To: [EMAIL PROTECTED] Subject: Loopback Interface [7:73305] I know the loopback interface is useful for assigning the router ID. Is there any other purpose? Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=73317&t=73305 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Loopback Interface [7:73305]
1) It's an interface that never goes down. 2) It has a neat use in a situation where you have a VPN router-to-router and are using NAT. You may have a server that uses a static NAT to allow access from outside. To allow traffic from the server to traverse the VPN tunnel - use a route-map to bounce the VPN traffic off an address in the subnet of the loopback interface (which has no NAT statements). 3) In labs a small router can source many routes. > -Original Message- > From: DeVoe, Charles (PKI) [mailto:[EMAIL PROTECTED] > Sent: Thursday, July 31, 2003 2:16 PM > To: [EMAIL PROTECTED] > Subject: Loopback Interface [7:73305] > > > I know the loopback interface is useful for assigning the > router ID. Is > there any other purpose? Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=73316&t=73305 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Cisco CallManager MCS Boot Camp [7:73313]
If anyone has attended this training class, please contact me. I am interested in this class, but I want same feedback on the class. "Through Complexity there is Simplicity, Through Simplicity there is Complexity" David L. Blair - CCNP, CIPTSS, CCNA, MCSE, CBE, Security+, A+, CIW Associate, 3Wizard Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=73313&t=73313 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: CCNP >> MCSE >> hands on [7:73284]
Typically, on a home or small business LAN, the firewall reconizes a network as internal (trusted) or Internet (damned dangerous), and has default port settings based on that. ZoneAlarm is a popular software firewall, and automagically detects networks based on TCP/IP settings. If you designate that you trust the network, the default is to leave the Windows networking ports open (that can be changed, of course). The Internet, however, is by default never trusted. ZA is actually pretty good -- I found a little porn package on a customer's home PC when it tried to phone home and we said words to the effect of "where did that come from?" Why silly, it came from an unprotected DSL connection! Annlee Priscilla Oppenheimer wrote: > One other more useful comment. :-) Does the client or server have personal > firewall software running? It could be blocking the NetBIOS ports, which > would be a good thing (and probably the default) since they are infamous > targets for script kiddies. > > Priscilla > > > >>Duy Nguyen wrote: >> >>>He's able to see the c: on the laptop so its not physical. >>>Reboot. >>>refresh cache >>> >>>- Original Message - >>>From: "DeVoe, Charles (PKI)" >>>To: >>>Sent: Thursday, July 31, 2003 12:25 PM >>>Subject: RE: CCNP >> MCSE >> hands on [7:73284] >>> >>> >>> Are you connecting through a hub or from pc to laptop using >> >>a >> >>>crossover >>> cable? Are the cables good? -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] Sent: Thursday, July 31, 2003 11:54 AM To: [EMAIL PROTECTED] Subject: CCNP >> MCSE >> hands on [7:73284] Hi all, I have recently passed the CCNP but have little experience. >> >>I >> >>>have started >>> working on the MCSE Win2K Server. I have tried to get hands >>> >>>on practice >>>by >>> networking my desktop and laptop, and maybe add from there. >>> >>>But I can't >>> even get the two to talk. Could someone please give a little advice?? I can ping but the Win98 laptop says it has no access to the >>> >>>network, >>> whatever that means. The Win2K desktop seems to be able to >>> >>>see the whole >>> C: drive of the laptop. I have used the HELP file and read books. I >>> >>>have run out >>>of >>> ideas. -edgar San Diego, CA Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=73311&t=73284 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: OT: SSL Remote Access VPNs [7:73253]
I am running compression based ssl vpn for extranet. this allows without a client 8 to 1 or so compression ratio for mostly spreadsheets sent over port 80. also the box is managed by ssh.. what do you mean by telnet ? most protocols such as ldap, exchange, etc, are very well compressed and work over the ssl vpn. Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=73319&t=73253 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Port Spanning (Monitoring) [7:73320]
Hey all, I have a 3640 router with 2 ethernet interfaces (I'm only using 1 of them) - I'd like to connect a sniffer up to the unused ethernet interface and monitor the traffic from the other interface. Is this possible on a router?? Stevo Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=73320&t=73320 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Loopback Interface [7:73305]
our remote routers are configured to do ddr through the loopback interface. -Original Message- From: Larry Letterman [mailto:[EMAIL PROTECTED] Sent: Thursday, July 31, 2003 1:40 PM To: [EMAIL PROTECTED] Subject: RE: Loopback Interface [7:73305] To monitor the router, since its up/up if the router is up. Larry Letterman Cisco Systems -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of DeVoe, Charles (PKI) Sent: Thursday, July 31, 2003 12:16 PM To: [EMAIL PROTECTED] Subject: Loopback Interface [7:73305] I know the loopback interface is useful for assigning the router ID. Is there any other purpose? Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=73321&t=73305 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: OT: SSL Remote Access VPNs [7:73253]
Joseph Brunner 7/31/03 4:10:58 PM >>> >I am running compression based ssl vpn for extranet. this allows >without a client 8 to 1 or so compression ratio for mostly spreadsheets sent >over port 80. > >also the box is managed by ssh.. what do you mean by telnet ? > >most protocols such as ldap, exchange, etc, are very well compressed and >work over the ssl vpn. By telnet I was asking if you were using a web-based telnet client to allow telnet or SSH access to internal devices like routers, switches, or servers. I'm especially interested if you're allowing TN3270 access to mainframe applications. Thanks, John Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=73322&t=73253 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Thursday Follies [7:73323]
Here's an interesting troubleshooting issue for you to chew on. There is a fairly simple solution that may or may not be obvious at first. Heck, I might have missed an even simpler solution. This is for the beginner-to-intermediate level people. All you advanced people please refrain from giving away the answer too quickly. :-) Here's the scenario: Imagine a location with a decent sized flat LAN where all hosts are supposed to get their IP addressing information via DHCP. Well, DHCP was implemented relatively recently and there is an old PC that was never converted to DHCP that is now trying to connect to the network. It has a hard-coded IP address that conflicts with one already in use, and the conflict causes the PC to disconnect from the network when it detects that its IP address is being used. 1. Using tools available only on the router or switch, how do you find out exactly which IP address is causing the conflict? 2. Hint: how might a device determine if its own IP address is in use? Have fun! John Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=73323&t=73323 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Loopback Interface [7:73305]
Loopbacks are handy for use with ip unnumbered. If you have a multipoint interface using subinterfaces you could give every subinterface the same address and keep everything on the same subnet. They're also handy for DNS. If your router hostname resolves to its loopback address you'll be able to reach the router using the hostname as long as there is at least one real interface up. If you were to resolve the name to an actual interface address you wouldn't be able to reach the router at all of that interface were down. John >>> Wilmes, Rusty 7/31/03 4:49:11 PM >>> our remote routers are configured to do ddr through the loopback interface. -Original Message- From: Larry Letterman [mailto:[EMAIL PROTECTED] Sent: Thursday, July 31, 2003 1:40 PM To: [EMAIL PROTECTED] Subject: RE: Loopback Interface [7:73305] To monitor the router, since its up/up if the router is up. Larry Letterman Cisco Systems -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of DeVoe, Charles (PKI) Sent: Thursday, July 31, 2003 12:16 PM To: [EMAIL PROTECTED] Subject: Loopback Interface [7:73305] I know the loopback interface is useful for assigning the router ID. Is there any other purpose? Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=73324&t=73305 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Port Spanning (Monitoring) [7:73320]
Look into IOS bridging. You would then see layer 2 broadcasts (not unicasts) come through the router. This is true regardless of whether or not the actual switch on port 1 is a span port or not. Even if the first router port (connected to the network) is on a switch's span port, the layer 2 bridge (done in ios by the router) still cant forward all traffic thru (like cat6 rspan). The routers dont have a "span" like way of doing this. Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=73326&t=73320 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: CCIE Lab experience! [7:73263]
Juan Blanco wrote: > > Team, > Your opinion is always accepted as a good advice...Question if > you are at a > point where > you are running out of time for the lab, what will be more > efficient, take > the lab (spend $2000[traveling and the lab fees]) or let your > written > qualifications expired and take it again[spend $300]... Well.. I dont know about the rest of you, but when I look at resumes, and I see someone has actually put CCIE "written" on it. I cant help but chukkle.. If you start something.. might as well finish what you started I say. I dont see the value in someone who is satisfied in achieving something half-assed.. > Thanks, > > Juan > > -Original Message- > From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] > Behalf Of > Joel Satterley > Sent: Thursday, July 31, 2003 12:12 PM > To: [EMAIL PROTECTED] > Subject: RE: CCIE Lab experience! [7:73263] > > > I took the lab recently (before my time ran out) & there is a > full day of > config to do. Lots of everything & some nice little surprises. > > A couple of the guys on the same day were caught out by the > wording & the > way the questions were structured. You have to be able to > understand it > fully before you start working. > > Otherwise, it's back to the start & you've wasted an hour. > > -Original Message- > From: Reimer, Fred [mailto:[EMAIL PROTECTED] > Sent: 31 July 2003 14:04 > To: [EMAIL PROTECTED] > Subject: RE: CCIE Lab experience! [7:73263] > > As far as I understand, the lab is not 2 days anymore. It is > only one day. > And they don't break things and have you find and fix them. > You just have > to configure the network correctly and answer some questions. > You could > pass the lab by just reading books, but you'd have to have a > pretty special > ability to understand things without actually configuring them > on a real > router. > > Fred Reimer - CCNA > > > Eclipsys Corporation, 200 Ashford Center North, Atlanta, GA > 30338 > Phone: 404-847-5177 Cell: 770-490-3071 Pager: 888-260-2050 > > > NOTICE; This email contains confidential or proprietary > information which > may be legally privileged. It is intended only for the named > recipient(s). > If an addressing or transmission error has misdirected the > email, please > notify the author by replying to this message. If you are not > the named > recipient, you are not authorized to use, disclose, distribute, > copy, print > or rely on this email, and should immediately delete it from > your computer. > > > -Original Message- > From: Alex Cosic [mailto:[EMAIL PROTECTED] > Sent: Wednesday, July 30, 2003 10:52 PM > To: [EMAIL PROTECTED] > Subject: CCIE Lab experience! [7:73263] > > Hi there, > > I have finished my CCNP exam. > > Well, I live in Sydney, Australia and I still could not find > job. I wish to > carry on with CCIE. I do not have problem with passing writing > CCIE exam, > but > what about practical exam of 2 days duration. I have found some > programs on > the net. But is it enough to pass without practice. I have > passed my CCNP by > only reading books and downloading simulation programs. > > Can somebody give me advice whether I could carry on without > real hand on > experince? > > Is there some way to volonteer to work for free? > > Is there some way to get free CCIE Lab experience? > > > Thanks in advance > > > Alex > === > This message has been checked for all known viruses by the > Sirocom Virus Scanning Service > === > > === >This message has been checked for all known viruses by the > Sirocom Virus Scanning Service > > WWW.SIROCOM.COM > === > > Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=73325&t=73263 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Thursday Follies [7:73323]
Wait!! I know: 1 - Turn off the ports to the help desk so they will call you (you can't call them because you can only use tools on the router or switch). You can then have them change the fixed IP address on the old machine since it's the one causing the conflict. :-) 2 - That depends on how aggressive the machine is. It may ask if the address is in use or it might just tell everyone else the address is in use. You *did* say to have fun. :-) >>> "John Neiberger" 07/31/03 03:29PM >>> [snip] 1. Using tools available only on the router or switch, how do you find out exactly which IP address is causing the conflict? 2. Hint: how might a device determine if its own IP address is in use? Have fun! John Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=73327&t=73323 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Thursday Follies [7:73323]
""Ken Diliberto"" wrote in message news:[EMAIL PROTECTED] > Wait!! I know: > > 1 - Turn off the ports to the help desk so they will call you (you > can't call them because you can only use tools on the router or switch). > You can then have them change the fixed IP address on the old machine > since it's the one causing the conflict. :-) > > 2 - That depends on how aggressive the machine is. It may ask if the > address is in use or it might just tell everyone else the address is in > use. > > > You *did* say to have fun. :-) reminds me of a similar happening in a netwrok I used to manage. We started having problems with a particular user who traveled regularly, and when he returned to the office, his laptop acted up. he kept getting this dup ip address error. We were all on DHCP, but you know how Windows 95 was about that. In any case, the dup ip error box pops up on both computers, as you know. so I sent out an e-mail to everyone, asking them to call the help desk and report if they saw this dup ip box on their screen. nothing happened. few days later, after our wandering user return from another trip, I happened to be walking around in a certain part of the office. Low and behold, there on the screen of one of the broker's pc's was the dup ip dialogue box we had asked people to report. I pointed it out to the user, and asked why he didn't report it. he said "oh - I read your e-mail, but I didn't think this was what you were talking about" users. especially if they are brokers ;-> oh yeah - the solution was to eliminate that particular IP from the DHCP scope. for some reason the Win NT server we were using for DHCP would not play nicely with that particvular address. Once we made the change the problem did not occur again. one of those %^$%&$%%@ things, I guess. > > >>> "John Neiberger" 07/31/03 03:29PM > >>> > [snip] > > 1. Using tools available only on the router or switch, how do you find > out > exactly which IP address is causing the conflict? > > 2. Hint: how might a device determine if its own IP address is in use? > > Have fun! > John Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=73328&t=73323 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: CCIE Lab experience! [7:73263]
Salvatore De Luca wrote: > Well.. I dont know about the rest of you, but when I look at > resumes, and I see someone has actually put CCIE "written" on > it. I cant help but chukkle.. If you start something.. might as > well finish what you started I say. I dont see the value in > someone who is satisfied in achieving something half-assed.. Well, I guess it's not like they also add "and I don't even want to try the lab", is it? Once I saw a resume though that said something like "Passed CCIE written test, which is half way of achieving CCIE certification." The passage "half way" made me chuckle, too. Thanks, Zsombor Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=73329&t=73263 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
