Re: Home LAB for CCIE ??? [7:37618]
The Catalyst 2924XL uses IOS . Catalyst 5000 series switches uses CatOS (the set based OS). You need at least a switch that is running CatOS in your home lab. Adrian ""mindiani mindiani"" wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > I am building my home CCIE lab. I got already 8 X 2500 series router , a > 4000 router and a 2924XL catalyst switch. I am wondering whether this > catalyst has everything I need to cover CAT 5000 OS.Should I need a > 2926T or a CAT 5000 ?. > > > > Chat with friends online, try MSN Messenger: Click Here Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=37789&t=37618 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: is Refubished or New? [7:37774]
If it is a refurbished item then it was most likely refurbished by Cisco. They have a database will all refurbished items sold. So, the best bet is to call Cisco. Adrian wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > Hello all > > I have purchased a 3662 access server recently. I would like to > be sure that the device is not refurbished. We appreciate if you > help me to get a list of sold 3662, or hint me to any other way > to check the matter. > > Regards, > Ali. > > > -- > This mail sent through UI webmail. Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=37790&t=37774 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: CID help needed [7:37854]
Here is a link to www.amazon.com that has the book: http://www.amazon.com/exec/obidos/ASIN/1578701716/qid=1015901893/sr=1-3/ref= sr_1_3/104-1616250-9067969 Adrian wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > Hi all, > > I'm searching for the Cisco Internetwork Design Manual. Can somebody > point me out where to find it ? Or mail it to me ? > > Cheers and thanx in advanced > > Ronald > > The Netherlands Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=37926&t=37854 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Help me get my first networking job [7:37721]
When I hire someone new I select the resumes that have at least a CCNA but at the interview I'll choose the ones with more experience. If I have to choose between 2 people, one with CCNA and no experience and one with no CCNA but a lot of experience, I'll choose the later one. Buy a router and play with it at home. And remember that the real engineer is the one that is able to learn by himself with a book on his hand and the router on the other. So, my advice is: play with the routers at the Academy as much as you can and you have the chance to gain a lot of experience. Then, you will see that a lot of companies will be looking for your skills. Adrian ""Ross Wood"" wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > Hi everyone, > > Can anyone give me some advice on getting my first networking job. I am > currently studying for my CCNA through the Cisco Networking Academy. Will my > CCNA get my foot in the door even if it is a junior network engineer. Is the > CCNA certificate really good to get if you want to get into networking? I > will be glad if anyone can answer some of these questions for me. > > Kind Regards > Ross Wood. Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=37929&t=37721 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: SWITCH FOR CCNP BCMSN COURSE [7:37847]
You will need a "set based" switch like Catalyst 5000. I saw e few on ebay.com for less than $1000. Adrian ""Anthony Ramsey"" wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > Hi All, > I was wondering if I could get some advice on the type > of Cisco switch to purchase for the BCMSN, CCNP > course. Looking over the book, it seems like there is > much emphasis on Layer 2 functionalities. I am using > the Cisco Press book by Krean Webb and the case > studies deal much with the "Set" commands. > Have any of you purchased a switch for this type of > course/LAB and based on your experience which switch > is most useful for this course and in using it for > future advanced CCIE courses? > > I appreciate your feeback- > Tony > > __ > Do You Yahoo!? > Try FREE Yahoo! Mail - the world's greatest free email! > http://mail.yahoo.com/ Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=37927&t=37847 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Simulators? [7:37870]
I sugest you buy a few routers (1600). They are running IOS and you can buy them on ebay.com for around $200 each. In no way a simulator alone will help you prepare for CCNP exams. Adrian ""Byron Mobley"" wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > Passed the CCNA about an hour ago and preparing to begin BSCN. Any good > simulators that will take me through ALL the CCNP exams? thanks in advance. Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=37923&t=37870 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: CCNP exams [7:38097]
CCNP is not easy to get. Someone that is CCNP certiffied is one that knows a great deal about networking. I do not know about you but I do not think I'll ever pass the CCNP exams without buying a few routers and switches. In which case $500 that you are bragging about is small change. But, if you make at least $65k/year I do not think $1000/3years (books and exams) is a big deal. It takes money to make money! Adrian ""Brian Zeitz"" wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > My comment is with the CCNP exams. When I started it was the 500 series, > which was not long ago, now its changing to the 600 series. For some > people it takes a while to pass a CCNP exam, so I have not had enough > time to get a lot done in the 500 series, let alone switch to 600. I > know the 600 is not out yet, but still. Also here is a question, why > would someone want to take the last exam in the CCNP series, because > when you take the last exam, your 2 year timer starts ticking. Where is > the motivation there? I think I am just going to work on the course > material, and not take the rest of the exams, $125 a pop is a lot, and > you're right there are so many exams. So for CCNP it would cost me $500. > Then if I wanted to do the security, another 400-500$, that saying if I > passed everything on the 1st go. Then the books and courseware. Then > re-certification, this is an expensive proposition. > > And I don't see a significant salary increase for CCNP certification. > Like a regular experienced Network engineer with MCSE/CCNA makes say > like 60-85K. Well that is the same range as a CCNP would make. I donno, > the way some of these help wanted ads are written, you would think that > CCNA is better then CCNP. I always see like "CCNA highly desired". > > I am already scheduled for 503, so there is nothing I can do about that. > But I ask myself this question. What is the difference between me going > to a testing center, paying 125$ for each of these exams vs. me going in > my bedroom, sitting down with a Boston or transcender to test my > knowledge. I think I might do just that. Besides, everyone says it is > more important to know the material, and then have some paper. I am not > knocking the CCNP, it's a great program. But right now I can afford > these ongoing cost, and the ongoing cost are not exactly justified. I > thought the exams for the CCNP did test my knowledge of the subject > fairly. My plan for right now is to learn all the material I would need > to be a CCNP, but not take the rest of the exams. If an employer request > I have my CCNP, Ill just say gimme $500 and Ill go do that. > > > > -Original Message- > From: Yahoudi [mailto:[EMAIL PROTECTED]] > Sent: Wednesday, March 13, 2002 2:15 AM > To: [EMAIL PROTECTED] > Subject: Re: Quality of Cisco exams [7:38063] > > should anyone be surprised that Cisco too is becoming victim to the > certification craze? > > 1) cert tests for everything under the sun > > 2) reduction of the CCIE Lab from two days to one > > 3) obsolete and EOL'd equipment in the Lab > > 4) lower level tests that have too many filler questions centered around > marketing materials > > 5) poorly worded questions? sometimes I wonder if this is just the > excuse of > those who don't really know the materials, but since I know your work, > Robert, in your case I will accept your judgement on this > > It would be impossible for Cisco to test for everything out there - old > and > new. The question becomes this: is any certification forward looking or > backwards looking? Face it, the whole reason for certification is for > companies to go to the marketplace and show potential buyers that if > they > buy a particular company's products, there are plenty of people around > who > can work on it. This goes for any technology - from Microsoft to Linux > to > Cisco to anyone. Certification is nothing more than a marketing tool, > and > one more means to help companies sell. If certification is too easy, > then > sure, there is some marketplace backlash, but if certification is too > hard, > requires too much expertise, too much experience, then that has negative > effects as well. > > One would hope that being a beta test, Cisco would throw out a lot of > the > bad questions just because their analysis shows them as bad questions. > But > you never can tell. I sometimes suspect that Cisco deliberately keeps a > certain percentage of bad questions in their exams just so that you have > to > be smarter than the average bear to pass, because you have to do so much > better with the remainder. Does that make sense? > > > ""Robert Pad
Re: CCIE lab time in Los Angeles [7:38052]
I think your price is right. I'd be willing to pay $220 for an 8 hours slot. Unfortunately I live in NY. I totally disagree with the Ebay suggestion from the other fellow. 2500 routers are not the biggest problem when setting up a CCIE lab. You need ISDN emulators, 5500 switches, 3900 switches etc.. And these are a lot more than $200! Adrian ""Seto Leo"" wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > I'm trying to convince my company to set up a lab suitable for studying for > the CCIE lab here in Los Angeles, CA. > > I want to gauge the interest in practice lab time. If I set up a lab with > the required equipment, who would be interested in buying time slots of lab > time? We would offer it for $220 for 8 hour time slots and allow people to > come in and meet myself and other people studying for the lab. We could > also talk about our experiences with various lab preparation books or courses. > > Are there interested parties out there? > > Send me an email if so, > > Leo Seto > [EMAIL PROTECTED] Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=38180&t=38052 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: CCIE #8965 [7:39498]
Great info. Nicely explained. Congtatulations! Thanks, Adrian ""Andrew Cook"" wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > I was able to get a free lab at the recent CPN Ops symposium in San Jose > last week, and I passed! Thanks to all on the list - I'm sure I got many > points from the tips I found here. > I signed up for the CPN event, and part of the registration asked if I'd > like to try for one of 20 free labs. Why not? Cisco replied that I > couldn't take the lab without passing a qualification exam. My written from > 2000 had expired without ever taking the lab. I was going to take the > written at the CPN event, but decided that getting a lab would be much > better! I quickly went out and retook the written. My seat in the free lab > was confirmed on Feb. 18th with a lab date of Sunday, March 17th. Not much > time! > My goal had been to pass the CCIE by the end of 2002, so even though I had > been studying for the lab, I really thought this would only be for > familiarization. I had recently reread both Doyle TCP/IP books and Halabi, > so I decided that I really needed to work on practice labs to get my time > under control. > Fortunately, I had the resources at work to put together everything I needed > except a 3900 series, but I got a few hours hands-on a 3920 from another > Sprint location. Rather than waste time with the corporate red-tape trying > to get approval for expensive lab scenarios, I just bought the Karl Solie > CCIE Prep vol. 1. > I can honestly say that the labs at the end of the book were excellent - > even though vol. 1 doesn't cover IPX or BGP, the included labs do. I > personally thought the book went into too much detail on many topics and > they could easily have condensed and added BGP and IPX - I think if you have > passed the written and are studying for the practical, certain assumptions > about base-level knowledge can be made. Even so, it was a very helpful > tool. > My only other study tool was a partner who wasn't even studying for the lab. > I gave a friend at work a visio of my physical lab setup and asked him to > make a few speed drills for me - simple scenarios of OSPF/IGRP/EIGRP/RIP/BGP > layouts with some redistribution that I would configure as quickly as > possible. Granted, there were no 'solutions', but I was just looking for > speed, and having fresh layouts to work with kept me from gaining > familiarity rather than real speed. He made 6 variations for me. This > *really* helped my speed, and I would recommend it to anyone. The faster > you can get IGP configured the more time you have for everything that rides > on top. If you don't have the colleagues, I'm sure the list would be glad > to help! > Lastly, I restricted myself to working only with the Cisco CDs and Hyperterm > during my scenarios. Don't get too used to special functions in TeraTerm or > anything else, and learn how to navigate the CD! I had at least two items > that I had absolutely no idea how to do until I found the info on the CD. > It would be very easy to blow an hour or more just searching for info, so > find stuff and remember what you did to get there. Especially if you know > your weak points (and I hope you do!) > Got my good news the next day - #8965!!! So here's my feedback: > Don't get hung up on any task! If you think something will be troublesome > at first glance, move on and come back to it. If future tasks rely on this > earlier task, this may not be possible. > Use the proctor! Cathy was sick, so my lab was proctored by Bill Parkhurst. > He clarified some ambiguous questions. There was also a mismatch between > some of my interface netmasks as configured and as printed on the layout and > he got me straightened out. > Take breaks! Hey, free sodas and coffee. > Check status often! Many times what was working fine will break or be > modified when you move to the next few tasks. Make sure that at the end of > the day, everything that was asked for still works. > Use the time! I 'finished' the lab with about 1.5 hours to go. I used that > time to double-check everything - every route, every BGP entry, topology > tables, cam tables, telnet-and-ping, IPX ping, DLSw peers, etc. There were > at least two people who finished earlier and left - I personally think that > you should use every minute they give you! > If the lab was cheaper, I'd end by suggesting you take it sooner rather than > later. However, I understand that no one wants to drop $1250 unless they > truly feel prepared. If you're lucky enough to be designated as a Cisco > Powered Network, there are supposed to be more opportunities for free labs > in
transcender, boson [7:26545]
Hi all I need yor help guys regardles wich test is more closer to the real CCNA test. Next week I have to sustain the exam and I'm little bit scared. A week ago, I done couple Boson test and I got between 80 and 90 %. Yesterday, I had a bad inspiration (or good one) and I took Transcender test. At this one, my score was lower, between 750 and 808. I could say that once I past and once not. Few questions were not covered by my book (CISCO Press), but generally speaking, the Transcender test is way harder than Boson. In conclusion, at what type of questions should I expect from CCNA test? Something similar with Transcender or Boson? I relly would appreciate if you could give me an advice. Thanks! Adrian For Bogdan Ungureanu, my email is [EMAIL PROTECTED] Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=26545&t=26545 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
To Bogdan Niculescu [7:26565]
Salut! Ma bucur ca gasesc si romani pe news-group-ul asta. Daca nu te deranjaza, poti sa-mi dai e-mailul tau? Multumesc, Adrian Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=26565&t=26565 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Passed CCNA!!!! [7:26759]
Hi all Today I passed CCNA test. Thank you guys for all your advices, specially thanks to Bogdan Ungureanu who helped me a lot. The next step will be MCSE. Thanks again, Adrian Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=26759&t=26759 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: 2901
Believe the original poster was actually looking for multi-layer switching (MLS)... the 2901 lacks this capability. You'll need a 2926G (note the G!), or a Catalyst 5000 with Sup3/NFFC/NFFCII, Sup IIG, Sup IIIG... or a 6000 with Sup+PFC. ""Raj Singh"" <[EMAIL PROTECTED]> wrote in message 96rdjl$tau$[EMAIL PROTECTED]">news:96rdjl$tau$[EMAIL PROTECTED]... > Look up Router on a Stick configurations. > > - raj > > ""Circusnuts"" <[EMAIL PROTECTED]> wrote in message > 004f01c09a60$6082d9e0$[EMAIL PROTECTED]">news:004f01c09a60$6082d9e0$[EMAIL PROTECTED]... > > Same precess as a Cat5K withought the RSM. > > > > Yes > > > > Phil > > > > - Original Message - > > From: "Craig Lindstrom" <[EMAIL PROTECTED]> > > To: <[EMAIL PROTECTED]> > > Sent: Monday, February 19, 2001 4:35 AM > > Subject: 2901 > > > > > > > Can a 2901 do layer3 switching with an external router? > > > > > > Craig Lindstrom > > > "Build a man a fire and you keep him warm for an evening, > > > set a man on fire and you keep him warm for the rest of his life." > > > > > > > > > > > > _ > > > FAQ, list archives, and subscription info: > > http://www.groupstudy.com/list/cisco.html > > > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] > > > > _ > > FAQ, list archives, and subscription info: > http://www.groupstudy.com/list/cisco.html > > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] > > > > > _ > FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] > _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Looking for 2520 Router - 2901 Switch
I've seen 2926s that sell for under $2k on Ebay - the 2901 is about as ugly a switch as you can find (yeah it does the job, but for $200 or so differences, just ain't worth it). Also seen 5002s that go for under $2k on Ebay. Patience is the key though. Don't get why everyone looks for a 2520. Get a 2523 - they go for cheaper than 2522s and have 10 serials ports (8 are low speed, 2 are high speed), vs the 4 (2 low 2 high) in a 2520. A 2520 might end up being a frame switch period - while a 2523 can do that and double up as a router too. "Brian" <[EMAIL PROTECTED]> wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > On Fri, 5 Jan 2001, Gordon Olson wrote: > > > I am looking for a 2520 router and 2901 Switch. I have been watching ebay > > for the last few weeks without success. ebay has 24 pages of stuff, no 2520, > > lots of 2521's. > > > > Does anyone have any recommedations on where I might look? I have found > > several different resellers but no one returns my emails so I figure they > > are either too busy or don't have one. > > If you or anyone else on this list is in still need of the 2901, I do have > one for $1800.00. > > > > > The 2901 switch, I understand has the same IOS as the CAT5000. Is there any > > other switches that also have the same IOS? > > yes, the 2926T, which is 24 ports instead of the cat 2901's 14 ports. The > 2926T is supervisor II based, so it has FEC capibility. The 2901 is > supervisor I based, so it does not. The 2901 supports ISL on all ports, > the 2926T only supports ISL on its supervisor ports. > > Bottom line is that a 2901 is the cheapest/best way to go imho, the 2926T > is going to run you more , and approach the cost of a 5002. > > Brian > > > > > > _ > > FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html > > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] > > > > --- > I'm buying used CISCO gear!! > email me for a quote > > Brian Feeny e:[EMAIL PROTECTED] > CCNP+Voice/ATM/Security p:318.222.2638x109 > CCDP f:318.221.6612 > Network Administrator > ShreveNet Inc. (ASN 11881) > > > > _ > FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] > _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Cisco 1605 - enough for CCNP?
I did the buy route - but here's some fruit for thought - you can get lots of lab time for equipment costs, but you don't get any refunds for labs, equipment can be resold. Having your own equipment is nice, but when there's a clock ticking (ie you're being billed) you're likely more motivated/compelled to do the labs you plan on doing. ATM equipment, voice, etc will add sizeably to costs of any lab. ISDN doesn't come cheap either. So I really don't know - either could work, give or take a little - but 1605s are for babies and branch offices - once you start wanting BGP, and the other enterprise stuffs, its will be frustrating. You'd want to throw it out of the window - get 2500s, big metal boxes that keep on going and going and going - much like the Energizer bunny! Regards, Adrian "Curtis Call" <[EMAIL PROTECTED]> wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > A good alternative to buying routers is to rent time on one of the > different labs out there on the internet. For me it's a lot cheaper to do > it that way. Instead of spending a couple thousand dollars on routers I > can use the same amount of money to buy around 200 hours of lab time. > > At 01:40 AM 11/26/00 +, you wrote: > >Hi,Dyland > > > > If your goal is just "PASS" the ccnp "EXAM", you don't need > >any router, but if you want to get the ccnp level "KNOWLEDGE", you'd > >better have at least 3 routers.If you don't get the ccnp level > >knowledge, your certification is just a paper > > > > > > > > > >On 25 Nov 2000 19:12:08 -0500, [EMAIL PROTECTED] (Dyland > >Desmarais) wrote: > > > > > > > >A friend and I are both going for the CCNP together. > > >We were thinking of each getting a Cisco 1605 so we can do the labs for the > > >640-503 exam. > > > > > >I just wanted to know if the Cisco 1605's are sufficient. They come with > > >IOS Software Version 11.2(9)P > > > > > >All responses appreciated and welcome. > > > > > >Dyland > > > > > >_ > > >FAQ, list archives, and subscription info: > > http://www.groupstudy.com/list/cisco.html > > >Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] > > > > > > >_ > >FAQ, list archives, and subscription info: > >http://www.groupstudy.com/list/cisco.html > >Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] > > _ > FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] > _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Switch preference (network topology) question
Jeff, Take a look at the 2948G-L3 and 4908G-L3 switches - both should be lower cost options that should easily keep up with your demands. Unless you have a need for AppleTalk, both of these switches would be better than attempting to go the 5000 route - more costly, less ports gained, etc. Some ideas how this might work - you could use the first/last (ie. unused) Gig ports in the 3548 stack to connect to the Gig ports on the 2948G-L3 and use the other 48 ports for more hosts. Or you could create 1 port-channel (2 Gig ports each) per 3548 to the 4908G-L3 (which allows you to add another 3548 in the future besides the three already present). Depending on what oversubscription you can manage on the Gig uplinks, you could run 4 3548 stacks redundantly to the 4908G-L3 (which should be plenty for growth). If you have to deal with extra protocols besides IP/IPX, then the RSM or better yet, RSFC/MSFCs should come into play with the bigger switches. Even then, most of these still do process switching for various protocols like AppleTalk, so you might be better off trying a 2650 (souped-up 2600 router) instead. Regards, Adrian ""Jeff Walzer"" <[EMAIL PROTECTED]> wrote in message 005901c05973$6c8599e0$[EMAIL PROTECTED]">news:005901c05973$6c8599e0$[EMAIL PROTECTED]... > By next year our office will have over 50 people. This does not include > people who will be in our building and working for other companies. That > number will be around 15 and it will grow. Basically, our building hosts our > company and various other companies and I am part of a two-man IT staff that > runs everything for all companies. Currently, we are using three 3548 XL > switches and a 2620 for interVLAN routing. > > In this scenario, would it be feasible (and cost-effective) for me to roll > out a 5000 (or a 5505) with a GBIC module and an RSM to take the load off > the 2620 (which also does routing for our Frame Relay network)? > > Thanks, > Jeff > > > > _ > FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] > _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Cat 4000 Switch
You might need a newer version of the software - look for those with CV/CiscoView. You also need the Java client on your PC as you do with the 2900/3500XL series switches for HTTP based management. If you can't find info in the docs, look at the latest product software version release notes. That's why all the new feature documentation usually lies. Regards, Adrian ""Paul Wiliams"" <[EMAIL PROTECTED]> wrote in message 902ifq$uei$[EMAIL PROTECTED]">news:902ifq$uei$[EMAIL PROTECTED]... > I've downloaded the complete Cat 4000 Switch manual, but cannot find the > command to enable management via http. I've been advised that its available > when set. ANy ideas? > > btw <<< > Paul Williams > Eurobet > > > _ > FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] > _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Network speeds ...
Let's see the math... Access port speed - 100 Mbps/FDX Number of ports per 2924 - 24 (23 access, 1 uplink) Uplink port speed - 100 Mbps/FDX Oversubscription ratio - 23:1 Assuming you have well behaved clients and network has been properly segmented (1,500 clients in a single broadcast domain DOES NOT qualify), with bursty office application traffic and maybe an 80/20 ratio of silent/active hosts at any one time. That would give approximately per host, 21.7 Mbps/FDX, worth of uplink bandwidth which is not too shabby at all. Do the same type of math to figure out if your server connections are ok at 100 Mbps/FDX... given your example, are the 40-50 servers servicing 1,000 - 1,500 or 30,000+ clients? Are clients roughly evenly distributed among the servers or are there some servers that every client connects to? The other aspects to consider is how the client desktops are configured - Win 95 running every protocol under the sun would sure add a lot of unnecessary noise (broadcasts especially) to all the client segments. Regards, Adrian ""Hornbeck, Timothy"" <[EMAIL PROTECTED]> wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > What is the best speed at each level to run your network? For example would > this configuration cause problems? > > 1000 - 1500 Local (30,000+ total) Clients (Windows95 to Catalyst > 2924) - 100MB/Full (200MB) > Access level Uplinks to Core (Catalyst 2924 to Catalyst 5500) - > 100MB/Full (200MB) > 40 - 50 Local Servers connected to Core (Novell and NT to Catalyst > 5500) - 100MB/Full (200MB) > > Shouldn't the servers have connections faster than the clients? What could > be some of the issues from this design? > > Thanks, > > Timothy J. Hornbeck > > **NOTE: New CCNA/CCDA List has been formed. For more information go to > http://www.groupstudy.com/list/Associates.html > _ > UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html > FAQ, list archives, and subscription info: http://www.groupstudy.com > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] > **NOTE: New CCNA/CCDA List has been formed. For more information go to http://www.groupstudy.com/list/Associates.html _ UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html FAQ, list archives, and subscription info: http://www.groupstudy.com Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
2900/3500XL Cluster Config STP
Curious question - anyone knows if a clustered stack of 2900/3500s will appear as a single STP bridge to other switches or each cluster switch appears as a seperate bridge? I'm guessing each switch is treated as a seperate bridge entity for the purposes of STP. The cause of concern would be if one stacks 16 3500s using Gigastack connectors into a cluster, and use the remaining Gig port on the top and bottom switches as uplinks, you'd end up with a pretty large STP diameter caused by the stacking... assuming the cluster is split right down the middle with a port between switches 8 and 9 in blocking state, the maximum diameter would be 17? (the 8 switches on either side plus the distribution/core switch the stack connects to). If one tunes STP accordingly, it would lengthen the network outages during STP convergence. Any thoughts on this - and designs with stacks of 2900s/3500s that are stringed one to another rather than each uplinked seperately to the uplink switch? Regards, Adrian **NOTE: New CCNA/CCDA List has been formed. For more information go to http://www.groupstudy.com/list/Associates.html _ UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html FAQ, list archives, and subscription info: http://www.groupstudy.com Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Arcane BGP question
Tom, Not an expert by any means, but I believe here's how you explain it:- Well known mandatory - is attributes that is ALWAYS present (eg. ORIGIN, AS-PATH, NEXT-HOP) Well known discretionary - is attributes that are optionally added/configured (eg. Local Preference) There is no bit that specifically indicated mandatory/discretionary - well known attributes are pre-defined as per the protocol specifications and thus should be recognized by all implementations. Well known attributes are always transitive. Regards, Adrian "Tom Pruneau" <[EMAIL PROTECTED]> wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > Greetings All > > I have a fairly Arcane BGP question, so any help will be appreciated > > > I'm specifically looking at the flags in the attribute type field of the > update packet. > > Bit 0 is the optional/well known bit > Bit 1 is the transitive/non-transitive bit > > What I can't figure out is what determines whether a well known attribute > is a > "well known mandatory" or a "well known discretionary" > > mandatory and discretionary don't seem to be the same thing as transitive > and non-transitive (although they do seem similar) > but there is no bit (at least according to the documentation I'm > referenceing (internet routing architectures by halabi and BGP 4 by John > Stewart) which specifically states whether a well knonw is mandatory or > discretionary. > > > Any Help? > > > Thanks Tons > > Tom Pruneau > Trainer Network Operations > GENUITY > 3 Van de Graff Drive Burlington Ma. 01803 > 24 Hr. Network Operations Center 800-436-8489 > If you need to get a hold of me my hours are 7AM-3PM ET Mon-Fri > > -- - > This email is composed of 82% post consumer recycled data bits > -- - > > "Once in a while you get shown the light > in the strangest of places if you look at it right" > > **NOTE: New CCNA/CCDA List has been formed. For more information go to > http://www.groupstudy.com/list/Associates.html > _ > UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html > FAQ, list archives, and subscription info: http://www.groupstudy.com > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] > **NOTE: New CCNA/CCDA List has been formed. For more information go to http://www.groupstudy.com/list/Associates.html _ UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html FAQ, list archives, and subscription info: http://www.groupstudy.com Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: path exists in BGP table, but no route in IP Routing table
Best guess given info given:- R4 does not have an IP route to the BGP advertised NEXT-HOP address for R1. If you do a "show ip bgp" on R4, the R1 route should show up as invalid. ""Sean Wu"" <[EMAIL PROTECTED]> wrote in message 8rgfm3$ce4$[EMAIL PROTECTED]">news:8rgfm3$ce4$[EMAIL PROTECTED]... > So what possible reason can cause this problem? > > I have four routers, > > R1 <---> R2 > ^ ^ > | | > | | > | | > v v > R3 <---> R4 > > AS1: R1 > AS2: R2 > AS3: R3+R4 > IBGP between R3 and R4, EBGP between R1/R2, R2/R4, R1/R3 > Everything else looks fine, and almost symetric configuration on R1/R3 and > R2/R4 > But R3 can see R2 in routing table and BGP table, while > R4 doesn't see R1's ip in ip routing table, but it does see R1 in BGP table > via two different paths > > Any idea? > > Thanks, > > > Sean > > > **NOTE: New CCNA/CCDA List has been formed. For more information go to > http://www.groupstudy.com/list/Associates.html > _ > UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html > FAQ, list archives, and subscription info: http://www.groupstudy.com > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] > **NOTE: New CCNA/CCDA List has been formed. For more information go to http://www.groupstudy.com/list/Associates.html _ UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html FAQ, list archives, and subscription info: http://www.groupstudy.com Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: path exists in BGP table, but no route in IP Routing table
Umm - sorry, it should be... "show ip bgp w.x.y.z" will indicate the next hop is (inaccessible). Regards, Adrian ""Adrian Chew"" <[EMAIL PROTECTED]> wrote in message 8rjji6$e79$[EMAIL PROTECTED]">news:8rjji6$e79$[EMAIL PROTECTED]... > Best guess given info given:- > > R4 does not have an IP route to the BGP advertised NEXT-HOP address for R1. > If you do a "show ip bgp" on R4, the R1 route should show up as invalid. > > ""Sean Wu"" <[EMAIL PROTECTED]> wrote in message > 8rgfm3$ce4$[EMAIL PROTECTED]">news:8rgfm3$ce4$[EMAIL PROTECTED]... > > So what possible reason can cause this problem? > > > > I have four routers, > > > > R1 <---> R2 > > ^ ^ > > | | > > | | > > | | > > v v > > R3 <---> R4 > > > > AS1: R1 > > AS2: R2 > > AS3: R3+R4 > > IBGP between R3 and R4, EBGP between R1/R2, R2/R4, R1/R3 > > Everything else looks fine, and almost symetric configuration on R1/R3 and > > R2/R4 > > But R3 can see R2 in routing table and BGP table, while > > R4 doesn't see R1's ip in ip routing table, but it does see R1 in BGP > table > > via two different paths > > > > Any idea? > > > > Thanks, > > > > > > Sean > > > > > > **NOTE: New CCNA/CCDA List has been formed. For more information go to > > http://www.groupstudy.com/list/Associates.html > > _ > > UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html > > FAQ, list archives, and subscription info: http://www.groupstudy.com > > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] > > > > > **NOTE: New CCNA/CCDA List has been formed. For more information go to > http://www.groupstudy.com/list/Associates.html > _ > UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html > FAQ, list archives, and subscription info: http://www.groupstudy.com > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] > **NOTE: New CCNA/CCDA List has been formed. For more information go to http://www.groupstudy.com/list/Associates.html _ UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html FAQ, list archives, and subscription info: http://www.groupstudy.com Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: BGP Route Decision Process (hmmm)
Shouldn't the BGP session itself never have been formed - with a duplicate Router ID error being the cause. Error code 2 (OPEN error) subcode 3 (bad BGP identifier) would be the notification message sent. I can't confirm this, but it would seem to be the most logical protocol design choice. Forget the decision process - you won't even get that far. Regards, Adrian ""Howard C. Berkowitz"" <[EMAIL PROTECTED]> wrote in message news:p05001914b60b7c7ebd85@[63.216.127.98]... > > > > > > I have one on the BGP Route Decision Process. In pages 168 & 169 of > >"Internet Routing Architectures," it gives the steps through attributes it > >takes when deciding between multiple routes to a destination. I wont list all > >of them but if you have the book you know what I'm talking about. If every > >attribute matches all the way down the list to the last one, the router with > >the highest IP or Loopback address will be the chosen one. > > > > This I understand perfectly and I know that it usually wouldn't even > >get this far down the list but I find myself again playing the devil's > >advocate. What if the loopbacks on both devices were the same? I know you > >could just change one but let's say you didn't. How would it finally make > >it's decision? Let's pretend everything was the same...would it just, ummm, > >pick one? Would it kinda just spin a wheel and see what it lands on kinda > >like telco's do to give an RFO? ;) > > > >Thanks ahead of time for responses folks...it's appreciated. Love your show. > > > >Mark Zabludovsky ~ CCNA, CCDA, 1/4-NP > > In formal testing methodology, as defined in ISO 9646, there are > three kinds of conditions that can be used to test protocols: > -- correct behavior, typically at the limits of parameters > -- incorrect behavior, where the packet is errored > -- inopportune behavior, where the individual packet is correct but the >context is wrong for receiving it > > What you are describing is an inopportune packet. BGP doesn't > consider how to handle such--it really doesn't have the information > to make a decision. Netsys might very well catch a configuration > error of this type. > > The specific response to receiving such an update really would be > implementation-dependent, but I suspect that most implementations > would use the most recently received update. > > _ > FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] > _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: CCIE Lab Exam Availability?
Side question - I was under the impression that CCIE retakes won't require you to start at the beginning of the queue of new/1st time exam candidates. Anyone knows for sure if there is a seperate queue for CCIE lab exam retakes and the length of time in this queue (the only info on CCO says 30 days minimum between lab exam attempts). Regards, Adrian ""Dorn, Joanne"" <[EMAIL PROTECTED]> wrote in message 83D62C21647AD31198BE00104B1F2F4D01ABB45D@USMASEXG101">news:83D62C21647AD31198BE00104B1F2F4D01ABB45D@USMASEXG101... > Good afternoon, > > We have an engineer within our company who needs to retake the CCIE Lab exam > by 12/15/00. His name is Tom Ohm and his student id is #395763502. > > The earliest possible dates for the San Jose and Raleigh locations are in > March. So, I was hoping that you might have some alternative dates > (hopefully prior to 12/15/00) somewhere else in North America. If not, > please just let me know if you have any available lab exams seats anywhere > prior to 12/15/00. > > Thank you for your assistance. > > Joanne > _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: BGP, Multihoming, and Me
John, There might be ways to get this done other than BGP... http://www.cisco.com/warp/public/cc/pd/iosw/ioft/ionetn/tech/emios_wp.htm Take a look at the multi-homing with NAT. I do see some possible problems - with DNS and how your hosts are resolved. You could have a server hosted elsewhere which points/re-directs traffic via either ISP via the 2 different links depending on which one is available or load-balance between the 2. Regards, Adrian "John Neiberger" <[EMAIL PROTECTED]> wrote in message 31767142.971447738012.JavaMail.imail@tiptoe">news:31767142.971447738012.JavaMail.imail@tiptoe... > I have a question that I'm sure has been referenced before but I couldn't > find an answer in the archives, and it's more practical than technical. > > We have a single T-1 connection to an ISP for customer access to our > internal webservers so that our banking customers can do web-based > transactions and get account information. This is such an important aspect > of our business that we decided to get a second T-1 to another ISP for > redundancy. We aren't as concerned with being able to load-balance, which > is a dicey prospect in this arrangement anyway. > > Now, the problem: we have a tiny subnet assigned to us from ISP-1, it's a > /27. Now let's say we get a connection to ISP-2 and we start running BGP. > Is ISP-2 probably going to have a problem letting us advertise such a small > set of routes? I've been hearing that big ISPs tend not to want to > advertise subnets smaller than a /18. If that's the case, our plan is in > trouble. > > Now, problem #2: even if we can advertise a /27 through ISP-2, ISP-1 is > going to have to agree to advertise our /27 along with their aggregate > advertisement. If they don't, and they only advertise their aggregate, this > will cause return traffic to our network to come through ISP-2 because it > will be advertising a more specific route, correct? If that's correct, do > ISPs tend to have a problem with this arrangement? > > Basically, are we setting ourselves up for disappointment? Are there any > other factors that I should be aware of that I'm not considering? Should I > become a yak herder and move to Nepal? > > Thanks, as usual... > John Neiberger > > > > > > ___ > Say Bye to Slow Internet! > http://www.home.com/xinbox/signup.html > > _ > FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] > _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Lightstream 100
The LS100 will be able to do the ATM basics such as CLIP (ATM Classical IP) and LANE (ATM LAN Emulation). The LS1010 will enable you to do newer features such as MPOA, CES, ATM QOS, etc. Current Cisco CCIE website still states actual configuration of the ATM switch is not required for the R/S exam. I'm not sure if the content is beyond CLIP/LANE and contains the newer technologies. A lot of the rental sites (if not all) don't seem to have any MPOA capable equipment so I would guess it hasn't reached the point that its a do or die. Also, most LS1010s I've seen used cost at least twice what it takes to do the CATM couse so attending a course might be a better choice to gain the necessary hands-on. Regards, Adrian ""FRS"" <[EMAIL PROTECTED]> wrote in message 8s72u2$9dq$[EMAIL PROTECTED]">news:8s72u2$9dq$[EMAIL PROTECTED]... > Hi, > > What is the difference between the LS 100 and the LS1010? > Will the LS100 provide the same purpose and functionality as the LS1010 when > preparing for the CCIE Lab? > > Thanks. > > > _ > FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] > _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: CCDP help for CCIE?
Brian, CCDA doesn't really relate much, but the CID test does help in preparation for the CCIE R/S _WRITTEN_ exam. Passing CCNP/CCDP and the CCIE written could mean you're like 33% ready for the CCIE lab. Regards, Adrian ""Brian Lodwick"" <[EMAIL PROTECTED]> wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > I have managed to pass all the tests and got CCNP, but my big goal is > CCIE. I took the CCNP route to break the load up into sections. I have heard > alot of people telling me, the information learned in the CCDA and CID tests > will help you in attaining the CCIE R&S, but after doing some studying over > the CCDA is see nothing that would seem usefull for the CCIE R&S. > I would like to get input from those who have been there and done that. > Would you reccomend studying the CCDP material in studying for CCIE R&S. I > feel the big reason people work on the CCDP after CCNP is because it adds > letters to the end of your name with only 2 tests. > > >>>Brian > _ > Get Your Private, Free E-mail from MSN Hotmail at http://www.hotmail.com. > > Share information about yourself, create your own public profile at > http://profiles.msn.com. > > _ > FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] > _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Bruce Caslow
Just checked MentorTech's website - its gone up to $3995.00! ""Frank Wells"" <[EMAIL PROTECTED]> wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > It is approximately $3600.00 > > > >From: Brian <[EMAIL PROTECTED]> > >Reply-To: Brian <[EMAIL PROTECTED]> > >To: Michael Le <[EMAIL PROTECTED]> > >CC: info <[EMAIL PROTECTED]>, [EMAIL PROTECTED] > >Subject: Re: Bruce Caslow > >Date: Thu, 26 Oct 2000 13:31:30 -0500 (CDT) > > > >On Thu, 26 Oct 2000, Michael Le wrote: > > > > > I took the course last week. Fred Ingham (who edited > > > about 10 chapters of Bruce's book) taught the class. > > > It was a very good class. I averaged about 15 hour > > > days, starting from 8:30-9 until they kicked my out at > > > 12 midnight. So yes, you get to work into the wee > > > hours, past all the other classes that leave at 5pm. > > > Fred made no claims as to how many people pass and > > > specifically said that taking the class without much > > > additional practice will make it very hard. > > > The class does cover most of what is needed though. > > > Most but not all, in that Cisco will use some weirder > > > configs and stricter ways to configure things. > > > Overall, all the past posts that said this class is > > > the best... I concur. > > > >What is the current cost of the class? > > > >Brian > > > > > > > > > > Michael Le > > > > > > > > > >--- > >Brian Feeny, CCNP, CCDP [EMAIL PROTECTED] > >Network Administrator > >ShreveNet Inc. (ASN 11881) > > > >_ > >FAQ, list archives, and subscription info: > >http://www.groupstudy.com/list/cisco.html > >Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] > > _ > Get Your Private, Free E-mail from MSN Hotmail at http://www.hotmail.com. > > Share information about yourself, create your own public profile at > http://profiles.msn.com. > > _ > FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] > _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Reverse Telnet to 2901
Brian, You have to be persistent and work really hard with "sh line". Look at the DTR, DCD, etc and check out the troubleshooting guide for modems/async ports on CCO. Check out the pinouts on connectors - there are non-standard pinouts on some of the old equipment - enough for some stuff to work, but cause other problems. I've seen... 2511 - 2924 requires a "modem dtr-active" on the 2511 line config to work 4700 with modems - using the normal console connector to rollover cable/straight cable to modem connector doesn't work for aux port - you get some dialing, etc, but signalling isn't complete - the connector is missing at least 1 required pin that is used LS100 - can't remember what finally worked - might have custom made the converter (DB-9 to RJ-45) on the LS100-side 766 - think you use a straight instead of rollover cable Regards, Adrian "Brian" <[EMAIL PROTECTED]> wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > > I am using a 2511 to reverse telnet into my lab. Everything works fine > except the Catalyst 2901. > > If I hook a cisco console cable from the 2901 to my pc, it works fine. If > I use my 2511 to console into it, it doesn't work: > > r2511#s2901 > Trying s2901 (192.168.1.1, 2006)... > % Connection refused by remote host > > What has to be done to connect to the catalyst? Everything is > 9600/8/n/1. > > Brian > > > --- > Brian Feeny, CCNP, CCDP [EMAIL PROTECTED] > Network Administrator > ShreveNet Inc. (ASN 11881) > > _ > FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] > _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: HEATED RESPONSE - WAS RE: Lab exam
Gee... must have been a really bad day huh? Can't say I disagree with what's been said though - there's a pretty big pipeline of people waiting for lab exam openings and from rumors heard of people getting throw out halfway through day one - there's more than enough attempts made without any hope of succeeding. The part that troubles me most is those newbie CCNPs or CCIE writtens who have no idea what they're in for next. If you ask me, having finished your CCNP/CCDP/CCIE written is like 20% of the battle - the rest is yet to come! It can be done - with practice, patience, practice, experience, practice, study - and most important of all - TIME! And if you contrast it to elite atheletes who train a couple of hours a day for a lifetime, you gotta actually admit the CCIE is actually less demanding. And if you needed a whole bunch of test questions and exam prep tools such as Boson for those written tests, KIV the CCIE - you'll save yourself a lot of grief and leave one extra spot available for someone else who stands a decent shot at it. Each CCNP/CCDP level test should be passable by just reading a book, and having had some hands on with Cisco equipment (say 20% of job over 2 years in some network admin position). The CCIE written should only need a bit of brushing up here and there after on some topics. You can try to memorize concepts and get certified - but lack of understanding will be a sure killer for the CCIE lab, and you'll never be the sharpest engineer out there. For those people who are starting out and struggling with subnetting and VLSM, networking likely isn't the line for you. For those who've gotten past CCNP/CCDP - stop, think twice, before you embark for the CCIE. I have a friend who started out more than two years ago for the CCIE, he's got his CCNP, passed his CCIE written, but is holding off the lab - he knows he's not ready. And that's not to say he's not sharp, he's got an engineering background, is the lead Cisco tech in his company, but he's got a girlfriend and life and time he'd rather spend doing other stuff as well besides preparing for the lab. Let's face it - the CCIE isn't for everyone. Unfortunately the hype has gathered a bunch of money hungry certification crazy folks into the race. Thankfully - it simply cannot be done without putting in the requisite effort - you would have to work very hard at trying to cheat to pass the CCIE lab - so hard, that its just like having worked/studied for it (hehe!). Fortunately, for those who dig it - the CCIE can be a very in-depth fulfilling lifetime experience - Cisco technology is full of neat surprises and tricks, and the world just needs more and more of us. Chuck, hang it there - it can be tough going, but someday soon. Thought for the future - all IT certifications should be lab based... a one day CCNP lab exam, 1/2 day CCNA lab exam - and make the MCSE a 2-day lab, that will sure weed out the thousands of paper MSCEs! Regards, Adrian ""Chuck Larrieu"" <[EMAIL PROTECTED]> wrote in message 004201c050d7$031878a0$[EMAIL PROTECTED]">news:004201c050d7$031878a0$[EMAIL PROTECTED]... > > WARNING: The following is a bit heated. > > YOU MAY WANT TO SKIP THIS ONE > > R > > A > > N > > T > > A > > N > > D > > R > > A > > V > > E > > > OK. Steam coming out of ears. I've been trying to avoid comment on a number > of these kinds of questions, but this does it. > > IF YOU DON'T WANT TO DO THE F*ING WORK, WHAT MAKES YOU THINK YOU DESERVE > TO BECOME A F***ING CCIE??? > > The certification is Cisco Certified Internetworking EXPERT! > > It is NOT Cisco Certified Internetworking SLACKER > > THERE ARE NOT SHORTCUTS DO THE DAMN WORK, OR GIVE IT UP > > Sorry, but there are far too many unqualified people clogging the pipelines, > for training classes and for the Lab itself. The certification is hard to > achieve for a reason. GET IT?? > > My apologies for losing my temper, but I am getting pretty tired of spending > all my spare moments in certification related activities while at the same > time seeing this kind of stuff coming across all the Cisco lists. > > RANT AND RAVE > > Chuck > > > > -Original Message- > From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] On Behalf Of > Hubert Pun > Sent: Friday, November 17, 2000 12:24 PM > To: Cisco Study Group > Subject: Lab exam > > Any one know what to expect on the lab exam? > for example, out of 100 points > how many points are BGP? > how many points are SNA or DLSw? > how many points are IPX? > how many points are OSPF? (is it still 20?) > how many points are Catalyst? > what equip
Re: Appletalk over frame-relay
Glad to help... see below for config examples... <[EMAIL PROTECTED]> wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > > I am trying to configure 5 Cisco router's with appletalk, can someone out > their send me a complete config list? Sure... hostname R1 <- change for your hostname ! bridge irb <- for Appletalk to work on Frame appletalk routing <- to route Appletalk ! enable secret apassword <- change to your own password ! interface s0 encapsulation frame-relay <- for Frame-Relay ip add x.x.x.x m.m.m.m <- insert your IP address frame-relay interface dlci 123 <- insert your DLCIs frame-relay interface dlci 234 <- if more than one, each must be seperate bridge-group 1 <- enables Appletalk ! interface e0 ip add x.x.x.x m.m.m.m <- insert your IP address bridge-group 1 <- enables Appletalk ! bridge 1 route ip <- for IP to work no bridge 1 bridge ip <- so IP and Appletalk don't conflict bridge 1 bridge appletalk <- ties Appletalk config together bridge 1 protocol ieee <- bridge protocol for Appletalk (sounds just like iMac too!) ! line con 0 no exec <- safety measure/better security, must supply enable password for access ! line aux 0 no exec <- safety measure/better security, must supply enable password for access ! line vty 0 4 no login <- safety measure/better security so no one can login from Internet! privilege level 15 <- specifies dumb mode, level 1 gives you everything/enable access You can cut and past the whole configs and modify for each router (just remember to remove the comments and put in your own IP addresses and DLCIs). If you don't know what DLCI to use, ask your provider. ;-) Regards, Adrian _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: ECP1
If all you want is the papers, you're better off getting ccbootcamp labs and the Caslow book. The content of the ECP1 class is gained by attending the class itself - I know, judging by your email, that's a LONG ways away. Having been to it and paid for it out of my own pockets - its highly recommended - but no class/material by itself will be enough for the CCIE. Its a long trip - but if there's any way you can get an employer to pay for it - go for it! Good luck. Regards, Adrian ""apbuild"" <[EMAIL PROTECTED]> wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > Any body interested in swaping or selling ECP1 study material? > > Yaks > > _ > FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] > _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Catalyst 6509/MSM meets Loveletter
Anyone seen what Loveletter can do to a network? Had a meltdown today - a couple of infected PCs were trying to scan network drives on Netware servers... at some points the MSM saw 14Gbps in/out of traffic, in (even with a maxed port channel config which we had its rated at 8Gbps in full-duplex!). Amazingly enough, the network was still alive (barely) despite all that was going on - IPX and IP (NCP) storms from the PCs... took a while to figure out cause some PCs got updated Netware client sofware in the morning. It took a whole of Sniffer work with span to figure out which were the culprits - got the lingering feeling there's more out there though. Average traffic that passes the MSMs are about 1.5-2Gbps on normal days. Wondering what others have experienced - we had no auto-generation of tons of emails to deal with, yet it was enough to cause tons of traffic. In each case - we would see a lot of Requests made on the Netware monitor by the infected PC/user, with no open files or data transfer actually taking place. Regards, Adrian _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Pix Performance Issues
""Kevin O'Gilvie"" <[EMAIL PROTECTED]> wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > > I only have 32 megs on the 515r, the upgrade adds 32 m and a licence which > makes it 515UR for 6k. I was thinking that it was pptp, but since I am using > local authentication, users authenticate at the fw with one username and > password, authentication is very fast but checking email browsing network > and saving files etc., is at a crawl. Just opening outlook can take 20 min. > I am hoping that the win2k client will solve some of these problems, can > someone send me the link. Therein lies the answer to your problem - VPNs on 56k modems aren't going to be fast. Browsing the network, checking email (with a live connection to the server), etc are all too bandwidth intensive for your 56k modems to keep up. Either get them on broadband, or change the way they work remotely. Regards, Adrian _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: help calulation of RAM (memory in router) [7:5093]
To see the amount of memory available on the router use: "sh version" command. The "sh mem" command shows statistics about the memory and also the amount of free memory. Check the link below from cisco to find out more info on "sh mem" command. http://www.cisco.com/univercd/cc/td/doc/product/software/ios120/12cgcr/fun_r/frprt3/frtroubl.htm#xtocid2839044 Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=5150&t=5093 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Memory upgrade [7:14015]
Hello, I have a 4000M+ in my home lab that I would like to give a main memory upgrade. Aside from voiding the warranty on my router, is there any reason that I should avoid buying a standard 32 meg SIMM for $35 instead of the standard Cisco part which costs anywhere from $80-$200? I checked the specs of the 8 meg Samsung part that my router came with and it seems to be a plain old 5v, 72 pin, 70ns, parity SIMM. I searched the archives and Google, but could not find any relevant info. Any input is greatly appreciated. Thanks for your time, Adrian Nixon Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=14015&t=14015 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Route-Map To Loopback Interface
I've seen this in some configurations where traffic is sent via a route-map to an IP address that is on the same subnet as a router's loopback interface. Eg. interface ethernet 0 ip address 192.168.1.1 255.255.255.0 ip policy route-map abc interface loopback 0 ip address 192.168.255.1 255.255.255.0 access-list 100 permit ip 192.168.1.0 0.0.0.255 192.168.2.0 0.0.0.255 route-map abc permit 10 match ip address 100 set ip next-hop 192.168.255.2 Could anyone explain how having traffic routed via a loopback interface might help in certain situations? Thanks. Regards, Adrian ___ UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html FAQ, list archives, and subscription info: http://www.groupstudy.com Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Route-Map To Loopback Interface
Brian, Thanks for the example - hitting the loopbacks on REMOTE routers is easy to understand (as is loopback interfaces for BGP connections and OSPF Router IDs). However, I've seen traffic being routed to an IP address on the same subnet as the router's loopback interface is on. Eg. E0 > R1 > Loop 0 > R1 > S0 > R2 > E0 > IP destination The actual destination IP address might be a subnet on some other remote router but the traffic is first directed to an IP address on the same subnet as the router's own loopback address. I believe its done to avoid some sort of traffic from hitting NAT on the way out, but having an access-list definition for NAT traffic should already take care of this. Take a look at the initial route-map configuration I gave - traffic from E0 bound for network 192.168.2.0/24 (not a destination on the router's own connected interfaces) is set for next-hop IP address of 192.168.255.2 (the router's loopback IP address is 192.168.255.1 with a /24 mask). Regards, Adrian "Brian" <[EMAIL PROTECTED]> wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > On Fri, 28 Jul 2000, Adrian Chew wrote: > > > I've seen this in some configurations where traffic is sent via a route-map > > to an IP address that is on the same subnet as a router's loopback > > interface. > > > > Eg. > > > > interface ethernet 0 > > ip address 192.168.1.1 255.255.255.0 > > ip policy route-map abc > > > > interface loopback 0 > > ip address 192.168.255.1 255.255.255.0 > > > > access-list 100 permit ip 192.168.1.0 0.0.0.255 192.168.2.0 0.0.0.255 > > > > route-map abc permit 10 > > match ip address 100 > > set ip next-hop 192.168.255.2 > > > > Could anyone explain how having traffic routed via a loopback interface > > might help in certain situations? > > load balacing for one. > > For example: > > R1 > ip cef > > int loopback 0 > ip address 10.1.1.1 255.255.255.0 > > int ethernet 0 > ip address 192.168.2.1 255.255.255.0 > > int serial 0 > ip address 192.168.1.1 255.255.255.252 > ip load-sharing per-packet > > int serial 1 > ip address 192.168.1.5 255.255.255.252 > ip load-sharing per-packet > > ip route 10.1.2.1 255.255.255.0 192.168.1.2 > ip route 10.1.2.1 255.255.255.0 192.168.1.6 > ip route 0.0.0.0 0.0.0.0 10.1.2.1 > > R2 > ip cef > > int loopback 0 > ip address 10.1.2.1 255.255.255.0 > > int serial 0 > ip address 192.168.1.2 255.255.255.252 > ip load-sharing per-packet > > int serial 1 > ip address 192.168.1.6 255.255.255.252 > ip load-sharing per-packet > > ip route 10.1.1.1 255.255.255.0 192.168.1.1 > ip route 10.1.1.1 255.255.255.0 192.168.1.5 > ip route 192.168.2.0 255.255.255.0 10.1.1.1 > > You could save yourself some configuring and whatnot by using an IGP to > get the dual routes injected instead of declaring them statically here, > but I did static here to illustrate > > Brian > > > > > Thanks. > > > > Regards, > > Adrian > > > > > > ___ > > UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html > > FAQ, list archives, and subscription info: http://www.groupstudy.com > > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] > > > > --- > Brian Feeny, CCNA, CCDA [EMAIL PROTECTED] > Network Administrator > ShreveNet Inc. (ASN 11881) > > ___ > UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html > FAQ, list archives, and subscription info: http://www.groupstudy.com > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] > --- ___ UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html FAQ, list archives, and subscription info: http://www.groupstudy.com Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Cisco specializations - Which?
Chuck, I'd say go for the VPN/PIX... and the LocalDirector too. You might want to check out the Cisco/ArrowPoint products, VPN 3000, 7100 series too. Aironet shouldn't give most people much trouble... though I haven't touched these. Have used both the Lucent's Orinoco and Jaguar's Waveaccess (Lucent bought this company out, obsoleting their entire product line!). Basically think of it as a wireless hub with a bit more configuration required. You shouldn't need more than a day or two of playing with them. Voice can be a total pain - especially if you have to integrate with old PBXs, and deal with telcos, etc. Most voice people don't have a clue when it comes to VoIP and interfacing with other vendors products. And if you ever though IOS can be a bit cryptic... wait till you see PBX commands... you might not need to actually know these, but its enough to tell you what a PAIN it will be working with the voice folks. I'd personally like to try out the Cisco IP telephony total solution sometime - but few companies are going to jump in right now. Give it 2-3 years, and Cisco might put the old PBXs out of business. Regards, Adrian ""Chuck Church"" <[EMAIL PROTECTED]> wrote in message 002e01bffb59$a9d06050$c50a48a6@superdave">news:002e01bffb59$a9d06050$c50a48a6@superdave... > Hopefully this won't cause a huge thread, but my company (a reseller) > naturally want's to sell everything Cisco makes, so I'm being asked to learn > the Aironet wireless, VPNs and firewall, and IP telephony. This is all in > addition to my current pursuit of the R&S CCIE. Since it's pretty hard to > be an expert in everything, what's the consensus on these three product > categories? I've done some VPN and Firewall with PIX, but haven't really > touched wireless or VoIP. > > Thanks, > Chuck Church > CCNP, MCNE, MCSE > > P.S. Today diagnosing a frame internet connection, I saw packets with an IP > protocol number 89 and multicast destination 224.0.0.9. Any idea what these > were? I didn't get a capture, saw them in a 'deb ip pack det'. > > ___ > UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html > FAQ, list archives, and subscription info: http://www.groupstudy.com > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] > --- ___ UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html FAQ, list archives, and subscription info: http://www.groupstudy.com Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Which older Access Router?
Jon, Try the CS-508 (8-port) or CS-516 (16-port). I think there's an even older something (ASM?) too. You should be able to get the CS-508/516 for $200-300 on Ebay... a lot cheaper than a 2509. Problem is its not flash upgradable and the software is pretty old (think 10.x is the last available). You could try TFTP booting it. I believe you might be able to do this too if you had a router with async interfaces (such as a 2521 with 10 serial ports... could use its 2 serial, 2 low-speed for Frame-Relay switching and the remaining 6 low-speed if you can get it wired correctly - but the cables needed would add to the cost!). Regards, Adrian ""Jon"" <[EMAIL PROTECTED]> wrote in message 8m5ck6$9il$[EMAIL PROTECTED]">news:8m5ck6$9il$[EMAIL PROTECTED]... > > > Could someone tell me which "older" router will fill the place of a 2509 for > dial-in or internet connection access to my lab. The AGS maybe? I would > like to be able to connect to the console ports of at least 6 devices. > > Thanks > Jon > > > ___ > UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html > FAQ, list archives, and subscription info: http://www.groupstudy.com > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] > --- ___ UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html FAQ, list archives, and subscription info: http://www.groupstudy.com Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Effects on convergence...
Karen, Did some searching and found this... http://www.cisco.com/warp/public/473/12.html It looks like the rules are simple for switched ports to desktops:- 1) Enable portfast 2) Disable trunking (DTP) 3) Disable port-channelling (PAgP) You might want to check out PortFast BPDU Guard - it looks like a new feature that puts a non-trunking PortFast port into "errdisable" instead of just STP blocking state when it receives BPDUs (which should never be received unless someone created a loop between 2 switches). Note seems to be only available on the high-end switches (5xxx/6xxx). Regards, Adrian <[EMAIL PROTECTED]> wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > > Okay... Since this isn't answering my question. Let me rephrase... > > How much time does PAgP take to do it's negotiation on a given port? DTP? > Assume that the port is set to either desirable or auto in both cases. > > Karen E Young > Network Engineer > ELF Technologies, Inc > [EMAIL PROTECTED] > > > > > "Croyle, > James"To: "'[EMAIL PROTECTED]'" <[EMAIL PROTECTED]> > cmsis.com>Subject: RE: Effects on convergence... > Sent by: > nobody@groupst > udy.com > > > 07/28/00 04:40 > PM > Please respond > to "Croyle, > James" > > > > > > I concur, but be VERY careful when changing the default diameter, > definitely > get opinions from Cisco and preferably other experts to look at your > complete network design first. > > Jim Croyle > Network Engineer (not listing certs anymore on this list... :-) > > -Original Message- > From: Donald B Johnson Jr [mailto:[EMAIL PROTECTED]] > Sent: Friday, July 28, 2000 9:41 PM > To: [EMAIL PROTECTED]; [EMAIL PROTECTED] > Subject: Re: Effects on convergence... > > > If you use the correct diameter for your net work you should not have a > problem. > Cisco says that by using their dia command it will set the timers correctly > in a switched network and convergernce will be optimally set. > Duck > - Original Message - > From: <[EMAIL PROTECTED]> > To: <[EMAIL PROTECTED]> > Sent: Friday, July 28, 2000 2:55 PM > Subject: Effects on convergence... > > > > Greetings! > > > > I was wondering if anyone knew the specifics on just how much of an > effect > > that PAgP, VTP, and DTP would have on convergence times. I had this info > > once upon a time but someone lost the document and we can't determine > when, > > who, or where it might have strayed to. I looked on CCO but that info > > doesn't seem to be posted anywhere and I can't test it out. The users > would > > get upset if I took down their network just to check something out and > > they're the ones who pay me so > > > > Thanks, > > > > Karen E Young > > Network Engineer > > ELF Technologies, Inc > > [EMAIL PROTECTED] > > > > > > > > ___ > > UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html > > FAQ, list archives, and subscription info: http://www.groupstudy.com > > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] > > ___ > UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html > FAQ, list archives, and subscription info: http://www.groupstudy.com > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] > > ___ > UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html > FAQ, list archives, and subscription info: http://www.groupstudy.com > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] > > > > > ___ > UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html > FAQ, list archives, and subscription info: http://www.groupstudy.com > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] > --- ___ UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html FAQ, list archives, and subscription info: http://www.groupstudy.com Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Another Oldie: Frame/Relay with 2 Switches in the middle VERY LONG POST!
Chuck, I can't be sure of the actual answer, but I would try the following:- 1) Don't use IP unnumbered, configure IP addresses on the Serial interfaces 2) Try frame-relay map commands (to eliminate any Inverse ARP issues) 3) You might want to troubleshoot EIGRP and see if you need the 'neigbor' command 4) Try static routes and see if the routers can ping each other I suspect somewhere along the way, things will start to work. The NNI/frame-relay switches aren't likely to be the problem unless they aren't processing Inverse ARP properly... I doubt it since IPX is working fine. Let me know what happens - I'm interested to try this out but can't do it until I get home in the evening. Regards, Adrian ""Chuck Larrieu"" <[EMAIL PROTECTED]> wrote in message 005e01bffc4d$201fcea0$[EMAIL PROTECTED]">news:005e01bffc4d$201fcea0$[EMAIL PROTECTED]... > Don't recall ever seeing an answer to this one. I kept it on file, waiting > for a moment when I could put together a lab and try a couple of things. > > The short answer is to configure the two middle routers as frame relay > switches, and do frame-relay routes as one normally would. > > I connected my two middle routers as frame relay switches and with an NNI > interface connecting the two. As has been discussed elsewhere, the router > interface with the DCE end of the cable must still be configured with a > clock rate. > > But I have been able to successfully route IPX between the two end routers > over the frame relay cloud ( the two middle routers ) Why IPX, you might > ask? Because my old friend, the 12.x IOS that refuses to route IP even > though it will route IPX phenomenon has reappeared, making me crazy once > again. > > Configurations follow, for those who might want to study what I have done. > > Setup: > > RouterA-FRSwitch---FRSwitch-RouterB > IP/IPX DTE/DCENNIDTE/DCE IP/IPX > 192.168.1.1 192.168.3.1 > > Router A > --- > sh run > Building configuration... > > Current configuration: > ! > version 12.1 > service timestamps debug uptime > service timestamps log uptime > no service password-encryption > ! > hostname Router_A > ! > ip subnet-zero > ! > ipx routing 0010.7b7e.ebd7 > cns event-service server > ! > interface Loopback0 > ip address 192.168.1.1 255.255.255.0 > ! > interface Ethernet0 > ip address 192.168.2.1 255.255.255.0 > ipx network > ! > interface Serial0 > ip unnumbered Ethernet0 > encapsulation frame-relay > ipx network ABAB > no fair-queue > clockrate 100 > frame-relay interface-dlci 100 > frame-relay lmi-type cisco > ! > interface Serial1 > ip unnumbered Ethernet0 > encapsulation ppp > shutdown > clockrate 100 > ! > router eigrp 1000 > network 192.168.1.0 > network 192.168.2.0 > ! > ip classless > no ip http server > ! > line con 0 > transport input none > line aux 0 > line vty 0 4 > no login > ! > end > > > Router_A#sh ipx route > > 3 Total IPX routes. Up to 1 parallel paths and 16 hops allowed. > > No default route known. > > C (NOVELL-ETHER), Et0 > C ABAB (FRAME-RELAY), Se0 > R [07/01] via ABAB.0010.7b7e.ebe1, 40s, Se0 > > Router_A#sh ip route > > Gateway of last resort is not set > > C192.168.1.0/24 is directly connected, Loopback0 > C192.168.2.0/24 is directly connected, Ethernet0 > > NO IP ROUTING! > - > > Router B > -- > Router_B#sh run > Building configuration... > > Current configuration: > ! > version 12.1 > service timestamps debug uptime > service timestamps log uptime > no service password-encryption > ! > hostname Router_B > ! > ip subnet-zero > ! > ipx routing 0010.7b7e.ebe1 > cns event-service server > ! > interface Loopback0 > ip address 192.168.3.1 255.255.255.0 > ! > interface Ethernet0 > ip address 192.168.4.1 255.255.255.0 > ipx network > ! > interface Serial0 > ip unnumbered Ethernet0 > encapsulation frame-relay > ipx network ABAB > clockrate 100 > frame-relay interface-dlci 300 > frame-relay lmi-type cisco > ! > interface Serial1 > ip unnumbered Ethernet0 > encapsulation ppp > shutdown > ! > router eigrp 1000 > network 192.168.3.0 > network 192.168.4.0 > ! > ip classless > no ip http server > ! > line con 0 > transport input none > line aux 0 > line vty 0 4 > passwo
Re: Another Oldie: Frame/Relay with 2 Switches in the middle VERY LONG POST!
Chuck, Here's what I found on Cisco's website with your problem with IP/Frame Relay... Serial interfaces using HDLC, PPP, LAPB, and Frame Relay encapsulations, as well as SLIP and tunnel interfaces, can be unnumbered. Serial interfaces using Frame Relay encapsulation can also be unnumbered, but the interface must be a point-to-point subinterface. It is not possible to use the unnumbered interface feature with X.25 or SMDS encapsulations. Regards, Adrian ""Chuck Larrieu"" <[EMAIL PROTECTED]> wrote in message 005e01bffc4d$201fcea0$[EMAIL PROTECTED]">news:005e01bffc4d$201fcea0$[EMAIL PROTECTED]... > Don't recall ever seeing an answer to this one. I kept it on file, waiting > for a moment when I could put together a lab and try a couple of things. > > The short answer is to configure the two middle routers as frame relay > switches, and do frame-relay routes as one normally would. > > I connected my two middle routers as frame relay switches and with an NNI > interface connecting the two. As has been discussed elsewhere, the router > interface with the DCE end of the cable must still be configured with a > clock rate. > > But I have been able to successfully route IPX between the two end routers > over the frame relay cloud ( the two middle routers ) Why IPX, you might > ask? Because my old friend, the 12.x IOS that refuses to route IP even > though it will route IPX phenomenon has reappeared, making me crazy once > again. > > Configurations follow, for those who might want to study what I have done. > > Setup: > > RouterA-FRSwitch---FRSwitch-RouterB > IP/IPX DTE/DCENNIDTE/DCE IP/IPX > 192.168.1.1 192.168.3.1 > > Router A > --- > sh run > Building configuration... > > Current configuration: > ! > version 12.1 > service timestamps debug uptime > service timestamps log uptime > no service password-encryption > ! > hostname Router_A > ! > ip subnet-zero > ! > ipx routing 0010.7b7e.ebd7 > cns event-service server > ! > interface Loopback0 > ip address 192.168.1.1 255.255.255.0 > ! > interface Ethernet0 > ip address 192.168.2.1 255.255.255.0 > ipx network > ! > interface Serial0 > ip unnumbered Ethernet0 > encapsulation frame-relay > ipx network ABAB > no fair-queue > clockrate 100 > frame-relay interface-dlci 100 > frame-relay lmi-type cisco > ! > interface Serial1 > ip unnumbered Ethernet0 > encapsulation ppp > shutdown > clockrate 100 > ! > router eigrp 1000 > network 192.168.1.0 > network 192.168.2.0 > ! > ip classless > no ip http server > ! > line con 0 > transport input none > line aux 0 > line vty 0 4 > no login > ! > end > > > Router_A#sh ipx route > > 3 Total IPX routes. Up to 1 parallel paths and 16 hops allowed. > > No default route known. > > C (NOVELL-ETHER), Et0 > C ABAB (FRAME-RELAY), Se0 > R [07/01] via ABAB.0010.7b7e.ebe1, 40s, Se0 > > Router_A#sh ip route > > Gateway of last resort is not set > > C192.168.1.0/24 is directly connected, Loopback0 > C192.168.2.0/24 is directly connected, Ethernet0 > > NO IP ROUTING! > - > > Router B > -- > Router_B#sh run > Building configuration... > > Current configuration: > ! > version 12.1 > service timestamps debug uptime > service timestamps log uptime > no service password-encryption > ! > hostname Router_B > ! > ip subnet-zero > ! > ipx routing 0010.7b7e.ebe1 > cns event-service server > ! > interface Loopback0 > ip address 192.168.3.1 255.255.255.0 > ! > interface Ethernet0 > ip address 192.168.4.1 255.255.255.0 > ipx network > ! > interface Serial0 > ip unnumbered Ethernet0 > encapsulation frame-relay > ipx network ABAB > clockrate 100 > frame-relay interface-dlci 300 > frame-relay lmi-type cisco > ! > interface Serial1 > ip unnumbered Ethernet0 > encapsulation ppp > shutdown > ! > router eigrp 1000 > network 192.168.3.0 > network 192.168.4.0 > ! > ip classless > no ip http server > ! > line con 0 > transport input none > line aux 0 > line vty 0 4 > password cisco > login > ! > end > > Router_B#sh ipx route > > 3 Total IPX routes. Up to 1 parallel paths and 16 hops allowed. > > No default route known. > > C ABAB (FRAME-RELAY), Se0 > C (NOVELL-ETHER), Et0 > R [07/01] via ABAB.0010.7b7e.ebd7,5s, Se0 > > Router_B#sh i
Re: 2948G-L3 troubles
Lorenzo, Try this... bridge irb int bvi 172 ip addr 192.168.172.1 255.255.255.0 ip helper ... ip helper ... int bvi 173 ip addr 192.168.173.1 255.255.255.0 ip helper ... ip helper ... int g49 no ip addr int g49.172 no ip addr encap dot1q 172 bridge-group 172 int g49.173 no ip addr encap dot1q 173 bridge-group 173 int FastEthernet1 no ip addr bridge-group 172 int FastEthernet2 no ip addr bridge-group 173 bridge-group 173 spanning-disabled Global: bridge 172 protocol ieee bridge 173 protocol ieee bridge 172 route ip bridge 173 route ip In your earlier configuration, I believe it would have routed traffic between g49.172 and g49.173 fine (so ports on VLAN 172 and 173 on the non-L3 switch should be able to ping hosts in the other VLAN). The 'spanning-disabled' should help the workstation port come up faster (sort of like portfast, but I believe in this case STP is TOTALLY disabled - don't create a LOOP!!!). Regards, Adrian ___ UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html FAQ, list archives, and subscription info: http://www.groupstudy.com Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: urgent 6509 msfc down.
Copy the IOS image onto a PCMCIA flash card on the Sup and boot from that or copy that over to the MSFC bootflash... http://www.cisco.com/univercd/cc/td/doc/product/lan/cat6000/sw_5_4/msfc/star tup.htm ""Amit Lilani"" <[EMAIL PROTECTED]> wrote in message 8njsca$c8q$[EMAIL PROTECTED]">news:8njsca$c8q$[EMAIL PROTECTED]... > hi guys, > > i have a 6509 switch with 2 sup 1's and 2 msfc's ( modules 15 and 16) > what went wrong was we upgraded the msfc module with the wrong ios code > (12.07.XE1). no it does not seem to come up and goes into a loop. still i > can go into RMON using the switch console command. put whenever i use xmodem > to upgrade the ios it FAILS... its gives the message timeout and say > automatic logout... i spoke to cisco tac... (very slow in responding back) > they mailed me back saying the baud rate can not go more that 9600 on a > console which is true..I DONT know how to proceeds ...any > clues...suggestions are most welcome > > thanks a lot for all your help > > amit. > > > ___ > UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html > FAQ, list archives, and subscription info: http://www.groupstudy.com > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] > --- ___ UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html FAQ, list archives, and subscription info: http://www.groupstudy.com Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
CCIE Lab - Definitive Books
I'm trying to narrow down the number of books/material from the choices available - specifically for CCIE lab preparation. Here's what I've compiled so far:- Cisco Certification - Caslow Internet Routing Architectures (I'm waiting for that 2nd ed. book!!! when???) - Halabi Routing TCP/IP, 2nd Ed. - Doyle Advanced IP Routing In Cisco Networks - Slattery/Burton CCIE Lab Study Guide - Hutnik (not definitive, but for more practice labs) Network Design and Case Studies, 2nd Ed. - Cisco Press CCIE Bootcamp Labs Books I'm thinking about but not sure if I should consider:- OSPF Network Design Solutions EIGRP Network Design Solutions Large Scale IP Network Solutions Internetworking SNA with Cisco Solutions I'm leaning towards the latter 2 as Routing TCP/IP already does an excellent job for EIGRP/OSPF. As for SNA - its just plain hard to find anything Cisco/SNA. Any other thoughts/suggestions? Regards, Adrian ___ UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html FAQ, list archives, and subscription info: http://www.groupstudy.com Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Help -- How to load balance in OSPF environment?
You must manually configure the OSPF interface cost such as:- int s0 ip ospf cost 1000 int s1 ip ospf cost 1000 OSPF only does load-balancing on equal-cost interfaces. The other method is to do this via configuring the interface bandwidth but this can affect anything else that uses the interface bandwidth parameter. "HYniuniu" <[EMAIL PROTECTED]> wrote in message news:[EMAIL PROTECTED]... > We paln to have two leased lines connected between two routers. One > line is 512K and another is 768K. Can we load balance between these two > lines by using ospf? If can, how to? Eager for your advice. Thank you > very much! > ___ UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html FAQ, list archives, and subscription info: http://www.groupstudy.com Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Exam 350-001, I'm so pissed!
The more I learn, the more I realize how little I actually know. Those people who've approached certification in the past using exam cram and Transcender and other exam preparation tools to pass aren't going to learn nearly as much as those who slog through the topics and understand the concepts. Seen far too many 'paper' MCSEs and sadly, all the paper-based Cisco certifications are getting that way these days. If you asked me, I say let CCNAs configure a simple 3 router lab 2 switch (19xxs) with IPX/RIP/IGRP, make CCNPs do all the basics for the various exams (STP, VLANs, IP routing, IPX routing, AppleTalk routing, bridging, redistribution, access-lists, etc) and CCIEs do anything and everything (as it is today). It will keep the population of certified Cisco engineers much lower, but you can be then truly assured of them being able to fully perform at the level they're certified at. CCNP will not be impossible to attain - a certain lab may cover some subset of topics (eg. BCMSN will be a switch lab, Support will be a troubleshooting lab). The CCIE will be as it is when you must combine all technologies, troubleshoot, and make it all work. Similarly, Networking Academy graduates (CCNAs) probably are able to do more than paper CCNAs who buy 1-2 books and maybe a router simulator... simply because they get structured training and hands-on lab time. My encouragement - learn, not cram. Understand, not memorize. Think, not dump. Work, not cheat. And lastly, when you think you know it all - that's when learning ceases (BIG mistake!). Regards, Adrian ""shanseverijn"" <[EMAIL PROTECTED]> wrote in message 8o9nkt$sun$[EMAIL PROTECTED]">news:8o9nkt$sun$[EMAIL PROTECTED]... > I just want to say for the record that this exam is a bunch of B.S. All > you tell you why. I took this test like a cuople weeks after I finished my > CCNP/CCDP just to see where I stand and what I need to hit for this thing. > Let me say that the CCIE exam 350-001 is highly overraded. So I scored a > modest 60% the first time. Not bad for not really studying and just going > off of experience and Theory. The problem I have is after studying for what > I needed and knowing that I was going to tear this test a new A-hole I went > in took the test and did everything the same except in the questionaire > that I filled out I marked that I was proficient in alot more areas than I > did the first time. The result well after blazing through the test in an > hour and feeling DAMN confident that I got at least a 90% on the sucker I > ended up getting a 58%. I WAS LIVID I was like what the hell??? I got > ROBBED!!! I only missed honestly like 5 questions. I can recite the whole > damn test in my sleep! I don't understand! I am so dman fustrated I can't > even see straight. Why am I writing this? Well I want to know do they > gauge or do anything weird with what you mark for what are you are > proficient in, in the questionnaire in the beginning of the test Like > weighingthe questions differently the second time around or something weird > like that... > > Somebody tell me > PS. The Exam Cram for the exam is excellent as usual. > > -- > Shannon Severijn > CCNP, CCDP, MCSE > Snot-Nosed Gen. X Punk Kid... (Cisco Mercenary) > [EMAIL PROTECTED] > > > ___ > UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html > FAQ, list archives, and subscription info: http://www.groupstudy.com > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] > ___ UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html FAQ, list archives, and subscription info: http://www.groupstudy.com Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Have 4 IP's, two feeds, one hub, what next?
Try this scenario... Use each feed to simulate a small business site - with NAT for multiple IP hosts behind the feed. Get another NT server up... put one per site. Get the two sites connected via IPSEC/VPN. Do this for practice:- 1) IPSEC/VPN without tunnel interfaces 2) IPSEC/VPN with tunnel interfaces (route IP, IPX, bridge NetBEUI) 3) Assume one of the sites has used REAL IP address space that they don't own, thus you have a more complicated NAT scenario 4) Run some services like a Web server on each NT server, that should be accessible for the Internet 5) Configure IOS Firewall feature set to protect each site With this sort of scenario, you'll need routers with a minimum of 2 LAN interfaces (1 to connect to the DSL/cable modem and the other to connect to each site's LAN). Segment your hub into 2 segments. The 1605R, 2514, 2611 are among the choices you could look out for (there might be a 3000 series older router that could work too - but I'm not sure of specifics and how much of the newer features work on those). Note, make sure you get static IPs with both your lines - DHCP will make the IPSEC/VPNs tough to do, and client-side PPPoE just simply isn't supported yet. Regards, Adrian "Sammi" <[EMAIL PROTECTED]> wrote in message news:[EMAIL PROTECTED]... > Ok, I was drawn out in another thread so I'll pop a question while I'm > delurked. > I currently have cable internet access, scheduled to have DSL added in > a couple weeks. So I will have two feeds and 4 IP's. > I have 5 PCs and one NT server currently up and running. > One Bay Networks Baystack 101 12 port 10BaseT hub. I believe it will > support segmenting. > My question; what sort of design should I attempt here for learning > purposes? I'd like to pick up some routers, perhaps one every two > months on my budget, figuring probably three will be needed? 25xx > series? > I'm really just thrashing, trying to figure out what it is I should > build. Perhaps I should begin studies for CCDA and in the course of my > studies the solution will come? > Any comments, suggestions, etc. always appreciated. > > ___ > UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html > FAQ, list archives, and subscription info: http://www.groupstudy.com > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] > ___ UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html FAQ, list archives, and subscription info: http://www.groupstudy.com Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Good question involving EIGRP & ISDN
Your traffic continues to use the BRI because of the IP fast-switching cache that is enabled by default in IOS. On your BRI interfaces, do this: int bri x/x no ip route-cache You can also use the "backup interface" command on the serial interfaces instead of floating static routes as you have currently setup. The IP route-cache can be cleared manually:- clear ip cache Note - I believe the route-cache should only be disabled on the BRI interfaces in this case... can anyone confirm this? Regards, Adrian "Andre Fecteau" <[EMAIL PROTECTED]> wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > Hello, > > I have two locations connected by a T1 and ISDN(BRI). The T1 is the > main and the BRI is > meant as backup for just in case the T1 fails for some reason. I have > EIGRP running > between the T1 with a private addressing scheme. I have a default route > leading out through > the BRI interface with a Administrative Distance of 250. The BRI > interfaces as well as the > interface leading to the Internet are all passive interfaces so the > routing info won't leak into > the internet. I have a default route on the side of the T1 that has an > interface leading to the > Internet. Everything works except once I shutdown one of the T1 > interfaces and the BRI > comes up all the traffic continues to use the BRI even after I bring the > T1 back online. I > want the BRI to go down and all traffic to resume using the T1 interface > for obvious > reasons. Can anyone tell me what's wrong with my configuration? It > works, but not > completely as needed!!! Help!!! > > Internet connected router: > router eigrp 10 > passive-interface Ethernet0/0 > passive-interface BRI1/0 > network X.X.X.X > no eigrp log-neighbor-changes > ! > ip nat inside source static X.X.X.X X.X.X.X extendable > ip nat inside source static X.X.X.X X.X.X.X extendable > ip nat inside source static X.X.X.X X.X.X.X extendable > ip nat inside source static X.X.X.X X.X.X.X extendable > ip nat inside source static X.X.X.X X.X.X.X extendable > ip nat inside source static X.X.X.X X.X.X.X extendable > ip classless > ip route 0.0.0.0 0.0.0.0 X.X.X.X --- To the default gateway internet > router. > ip route X.X.X.X X.X.X.X X.X.X.X 250 --- To the other side private. > > > Inside router (other side of T1): > router eigrp 10 > passive-interface BRI1/0 > network X.X.X.X > no auto-summary > no eigrp log-neighbor-changes > ! > ip classless > ip route 0.0.0.0 0.0.0.0 X.X.X.X--- To the T1 > ip route X.X.X.X X.X.X.X X.X.X.X 250 --- To the BRI > no ip http server > > Can I fix this problem by redistributing the static routes to eigrp? > And how do I do it? Cause my attempts have failed, if that's a viable > option anyway! > > Thanks, > Andre > > > ___ UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html FAQ, list archives, and subscription info: http://www.groupstudy.com Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: BGP Multi-Homing
Adding on to the question... 1) If a /24 is not acceptable, does the acceptable range start at /21 or /23 or? Here is what I believe is doable - but you need your providers to co-operate along:- 1) Get a /? from your provider, ensure they allow you to advertise a more specific route for the portion of their address space assigned to you. Then re-advertise this to your other providers (from what Howard say, it can't be a /24 so I'm wondering what's the minimum as per question above). You will need your own ASN. 2) Use a single provider, multi-homed BGP, and advertise the specific networks with the no-export community. Your provider will learn multiple routes to you via BGP but will not re-advertise them. Since you are using a portion of your provider's address space, it is already being advertised as a larger aggregate route so the rest of the Internet knows how to route to you via your provider. You can use private ASN space (get a private ASN number from your provider) for this. The 2nd option would alleviate the headaches of trying to get your own addresses and ASN but limits you to one provider. Any thoughts? Regards, Adrian ""John Deatherage"" <[EMAIL PROTECTED]> wrote in message 005601c01128$a2c11220$9a0419d1@johnm">news:005601c01128$a2c11220$9a0419d1@johnm... > Does anyone know where I can find good whitepapers or configuration examples > of BGP in multi-homed environments? ARIN won't give out anything less than > a /21, but some providers won't advertise networks unless the IPs belong to > you. Just another situation where politics are as much of a part of an > engineer's job as everything else. Good thing we have VPs to slam providers > Level 3 > > I've checked the archives and read recent posts by Howard Berkowitz (looking > forward to the whitepaper on Sept. 1st). Any other ideas??? > > This paragraph from Howard basically sums up what I'm discovering: > > Depends on the policy of the particular ISP, even tier 1. Some > simply don't want to advertise any /24 that's not part of their > address space, some won't do it except for direct customers who have > negotiated to advertise provider-independent address space, some > might not be willing to negotiate to advertise an a more-specific > assignment of another provider's space, and some don't care. > > ___ > UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html > FAQ, list archives, and subscription info: http://www.groupstudy.com > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] > ___ UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html FAQ, list archives, and subscription info: http://www.groupstudy.com Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
LS100, Fore ATM NIC, W2K, C5K
Anyone tried getting an ATM NIC on Windows 2000 to work with an Lightstream 100 and Catalyst 5000 LANE blade? I suspect Microsoft's lack of backward compatibility in their Windows 2000 ATM implementation is preventing this setup from working. I'm using a Marconi Forerunner LE 155 adapter. >From what I can find, the LS100 only supports UNI 3.0 and the help files in W2K says Microsoft's implementation is UNI 3.1. I tried using both auto-configured LECS address from the LS100 and using the well known LECS address (5155 on Cat 5000 being the LECS, LES/BUS, 12.0(9) something code). If anyone out there has any experience with ATM NICs and Windows 2000 talking to Cisco equipment, let us know your experiences. Meantime - gotta yank the card out and get it into my other test machine with NT4 (I know the Marconi drivers for NT4 has a UNI 3.0/3.1 selection option). Couldn't get my 3Com 3C339 Token Ring PCI card to work with W2K either - no drivers. P/S - It sure feels like Token Ring is dying - with the slowly dwindling supply of decently supported NICs for it. Regards, Adrian ___ UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html FAQ, list archives, and subscription info: http://www.groupstudy.com Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: CCIE Preparation
I would suggest it more as a supplemental book for the CCIE lab - for examples of configs, etc. Did skim through it for BGP examples, but that was cause I kept putting off getting the Halabi book waiting for the 2nd Ed to be released. What you should read are the bibles:- Routing TCP/IP Internet Routing Architectures Interconnections You might need to supplement with some others for bits and pieces of info... the best Token Ring bridging coverage for the exam I found was from various papers from Cisco and others found on the Net. Also Cisco Internetwork Design has TR stuff that gets useful. Regards, Adrian ""Raymond Smith"" <[EMAIL PROTECTED]> wrote in message 012e01c011cf$4621da20$a70a4f0c@raymonds">news:012e01c011cf$4621da20$a70a4f0c@raymonds... Hey guys do you know how good of a read is the following book in preparation for the CCIE written:- TITLE: CCIE Fundamentals: Network Design and Case Studies Need the 411 on this Peace! ___ UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html FAQ, list archives, and subscription info: http://www.groupstudy.com Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Does it have to be 255?
Stop thinkking subnets, start thinking in CIDR terms. It should
theoretically be possible to aggregate with up to a /0 (0.0.0.0/0 -
everything!).
However, if we look at usable address space, besides /0, some of the
smallest prefixes are not practical:-
0.0.0.0/1 = 0.0.0.0 - 127.255.255.255 (includes the 0.0.0.0 and 127.0.0.0
address space that is reserved for the all networks and loopback)
0.0.0.0/2 = 0.0.0.0 - 63.255.255.255 (includes the 0.0.0.0)
64.0.0.0/2 = 64.0.0.0 - 127.255.255.255 (includes the 127.0.0.0)
Starting from a /3 you can actually get usable aggredated address space:-
32.0.0.0/3 = 32.0.0.0 - 63.255.255.255
However, I doubt if any single AS has been given more than a Class A... so
the use of a prefix smaller than /8 is probably rare/unheard of in
practice... but theoretically should work with any classless IP routing
protocol.
Regards,
Adrian
""Cthulu, CCIE Candidate"" <[EMAIL PROTECTED]> wrote in message
8p3k0e$ik7$[EMAIL PROTECTED]">news:8p3k0e$ik7$[EMAIL PROTECTED]...
> Hi, all,
>
> I wanted to stimulate some discussion on subnetting here. I was playing
> around with subnetting today (I was not trying to solve any problem in
> particular). Anyways, on a router interface, I entered:
>
>
> ip address 192.0.0.1 128.0.0.0
>
>
> The router happily took it. I could ping the interface...scarey! I am
well
> aware that in the real world, we start things with a 255 on that first
> octet. But for discussion purposes...
>
>
> why shouldn't I do this (see below): Granted, classful routing protocols
> such as RIP V1 would probably sicken and be unable to handle something
like
> this, but what of EIGRP and OSPF? IS-IS? Something like this would be
good
> for aggregation purposes (BGP)??
>
>
> Technically, doing the straight math, we have two subnets containing all
the
> host addresses in the free world!!! Wowza! ("Bob, we just lost
Wichita!")
>
> 0.0.0.0 to 127.255.255.255 (subnet number and its associated broadcast
> address, first host address would be 0.0.0.1)
> 128.0.0.0 to 255.255.255.255 (subnet number and its associated broadcast
> address, first host address would be 128.0.0.1)
>
>
> Would be interesting to hear some theories and feedback
>
> Flames to: [EMAIL PROTECTED]
>
>
> Charles
>
>
>
>
>
>
>
>
>
> ___
> UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html
> FAQ, list archives, and subscription info: http://www.groupstudy.com
> Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
>
___
UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html
FAQ, list archives, and subscription info: http://www.groupstudy.com
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
ppp callback confusion
I'm a little confused about ppp callback, given several key sources of information. Fatkid.com includes a username and callback dial-string global command, however, Cisco docs do not. As well, I have configured dial callback without this global command and it seemed to work fine. Any ideas? TIA. Get Your Private, Free E-mail from MSN Hotmail at http://www.hotmail.com ___ UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html FAQ, list archives, and subscription info: http://www.groupstudy.com Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
CCO list
hi. i'm putting together a list of valuable links on the cisco CCO CD. if anyone has a list of search objects (titles, commands, etc.) please let me know. it seems there's a lot of useful info on the cd, but not guranteed to be found with most searchs. tia. Get Your Private, Free E-mail from MSN Hotmail at http://www.hotmail.com ___ UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html FAQ, list archives, and subscription info: http://www.groupstudy.com Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
fatkid question
hi. i was looking over fatkids dlsw 401 lab when i noticed that in the R4 config, the translational bridging command differs from Caslow 626-627. Fatkid shows: source-bridge transparent 400 50 4 1 should this in fact be: source-bridge transparent 400 50 1 4 since bridge 4 is in the ethernet domain. any help is appreciated. Get Your Private, Free E-mail from MSN Hotmail at http://www.hotmail.com ___ UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html FAQ, list archives, and subscription info: http://www.groupstudy.com Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Cat5k 10/100 module: ISL or not ISL?
ISL capable modules are usually denoted by and R at then end of the model number...ie WS-X5225R, where R represent Re-write. This means the card is capable of MAC rewrite, which is necessary for ISL. >From: "Mark Holloway" <[EMAIL PROTECTED]> >Reply-To: "Mark Holloway" <[EMAIL PROTECTED]> >To: <[EMAIL PROTECTED]> >Subject: Cat5k 10/100 module: ISL or not ISL? >Date: Mon, 29 May 2000 11:51:44 -0700 > >How do you know which modules are ISL capable? > >Thanks, >Mark > > >___ >UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html >FAQ, list archives, and subscription info: http://www.groupstudy.com >Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] Get Your Private, Free E-mail from MSN Hotmail at http://www.hotmail.com ___ UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html FAQ, list archives, and subscription info: http://www.groupstudy.com Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
fatkid VPN/NAT lab
i was trying to figure out the advanced VPN/NAT lab on fatkid. if anyone is familiar with this lab, and could offer some explanation, it would be greatly appreciated. i understand how to configure both, however, in this specific example i do not follow the logic. tia. Get Your Private, Free E-mail from MSN Hotmail at http://www.hotmail.com ___ UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html FAQ, list archives, and subscription info: http://www.groupstudy.com Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
dlsw scenario
here is another 3 router dlsw scenario... ethernet-routerA---serial---routerB---serial---routerC-tokenring | tokenring the goal is to have full connectivity without using border peers and only 2 dlsw peerings. that is to say that the ethernet users on routerA can communicate with the tokenring on routerB, as well as the tokenring on rC. my theory starts with routerA and routerC peering with routerB. next, routerB has an external ring, 100, as well as a virtual ring 200. i build a ringlist to include both these rings, and apply that ringlist to both remote peer statements. would this allow for full connectivity? Get Your Private, Free E-mail from MSN Hotmail at http://www.hotmail.com ___ UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html FAQ, list archives, and subscription info: http://www.groupstudy.com Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
dialer interface vs. bri
what factors need consideration when choosing to use dialer interfaces vs just bri interface? please cite examples. thanks. Get Your Private, Free E-mail from MSN Hotmail at http://www.hotmail.com ___ UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html FAQ, list archives, and subscription info: http://www.groupstudy.com Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
2501 Error [7:71445]
Hello I keep getting the following error message from a 2501 I was recently given. System Bootstrap, Version 4.14(9.1), SOFTWARE Copyright (c) 1986-1994 by cisco Systems 2500 processor with 16384 Kbytes of main memory ERR: Invalid chip id 0x80B5 (reversed = 0x1AD ) detected in System flash % System flash query failed. Access will be RD-ONLY --- System Configuration Dialog --- Refer to the 'Getting Started' Guide for additional help. Default settings are in square brackets '[]'. Configuring interface IP parameters for netbooting: Configuring interface Ethernet0: Is this interface in use? [yes]: n Configuring interface Serial0: Is this interface in use? [yes]: n Configuring interface Serial1: Is this interface in use? [yes]: n No usable interfaces System Bootstrap, Version 4.14(9.1), SOFTWARE Copyright (c) 1986-1994 by cisco Systems 2500 processor with 16384 Kbytes of main memory Restricted Rights Legend Use, duplication, or disclosure by the Government is subject to restrictions as set forth in subparagraph (c) of the Commercial Computer Software - Restricted Rights clause at FAR sec. 52.227-19 and subparagraph (c) (1) (ii) of the Rights in Technical Data and Computer Software clause at DFARS sec. 252.227-7013. cisco Systems, Inc. 1525 O'Brien Drive Menlo Park, California 94025 3000 Bootstrap Software (IGS-RXBOOT), Version 9.14(9), RELEASE SOFTWARE (fc1) Patchlevel = 9.1(12.6) Copyright (c) 1986-1994 by cisco Systems, Inc. Compiled Wed 28-Sep-94 14:10 by chansen ERR: Invalid chip id 0x80B5 (reversed = 0x1AD ) detected in System flash % System flash query failed. Access will be RD-ONLY cisco 2500 (68030) processor (revision D) with 16380K/2048K bytes of memory. Processor board serial number 01560488 DDN X.25 software, Version 2.0, NET2 and BFE compliant. 1 Ethernet/IEEE 802.3 interface. 2 Serial network interfaces. 32K bytes of non-volatile configuration memory. 16384K bytes of processor board System flash (Device not programmable) --- System Configuration Dialog --- Refer to the 'Getting Started' Guide for additional help. Default settings are in square brackets '[]'. Configuring interface Ethernet0: Is this interface in use? [yes]: n Configuring interface Serial0: Is this interface in use? [yes]: n Configuring interface Serial1: Is this interface in use? [yes]: n Press RETURN to get started! Does anyone have any info or even better a solution Thanks in advance Adrian Does anyone have any info or even better a solution Thanks in advance Adrian Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=71445&t=71445 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
OT: Is it worth it to pursue CCIE R&S and CCIE Security [7:57908]
Hi Everyone, My CCIE R&S lab is scheduled for December 2002 and Security is scheduled for January 2003. As the exam is approaching fast, I am beginning to wonder whether it is worth it to pursue the certification for several reasons. Let me explain 1) I just graduate with a Master degree in Computer Engineering at a university in the East Coast. I've been in the networking field for the past 20 months. I am currently working for a fortune 500 company as a network engineer. The pay is OK; however, the company is looking to downsize within the next couple of months. I think I will be out of work in the next couple of months. I've been looking for work for the past three months. At the moment, the job market is not that great and I've been having problem finding work. Last week I get an a job offer as an Oracle 9i DBA (I learn Oracle9i when I have free time and manage to get certified in 9i). I don't hate Oracle but networking is my first choice. If I can't find anything within the next few weeks, I would have no choice but to accept this position (it pays the bill). I know two colleagues that I am working with. They both have CCIEs (in the 5xxx #) and both are having problem finding work. None of them have been able to land new jobs for the past four months. They told me that the market is "flooded" with networking people and it is definitely an "employers" market. Both of these guys have at least 10 years of networking experience and it amazes me that they are having problem find work. To make the matter worse, even my own brother is a CCIE and he also is having problem find work. Granted that he only has two years of networking experience. Nevertheless, he has been looking for work for the past 5 months and no job offer. He is telling me the same thing that the market is "saturated" with networking folks. He has to compete with many qualified "unemployed" folks out there. That makes me question myself whether if it is worth it to pursue the CCIE R&S and CCIE Security given the market condition. These guys have years of experiences and "certified" and are without jobs. I would have virtually no chance with people like them even if I am CCIE certified. They are certified too. I know that it is too late to cancel the lab; however, this is just my personal feeling. I am wondering if anyone out there is feeling the same way. I would like to hear your take on this. Thanks. Adrian - Do you Yahoo!? Yahoo! Mail Plus - Powerful. Affordable. Sign up now Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=57908&t=57908 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
UPDATE: Is it worth it to pursue CCIE R&S and CCIE Security? [7:58013]
All, I am happy to report that my luck has changed for the better. Yesterday (Saturday), I had an interview with a manager of a tech consulting company which I find kinda strange; however, I was told that the company has contracts with other companies that they work mostly on weekends to upgrade the system infrastructure. So I went. At the interview the manager told me that they are a consulting company which requires the employees to have a broad knowledge with both networking skills, database and programming background. Instead of throwing technical questions at me, the manager asks me to show him the skill so that I can convince him that I am the right person for the job. He also told me that he interviewed five other CCIEs ealier during the week and he wasn't impressed will all of them because they don't have the database and programming skills. Well, I told the manager that besides what I am doing at my current job (which I told him that I will be layoff from the job due to the downsizing of the company) as a network engineer, I also know Oracle. Furthermore, I also have a lab at home which includes a few "franken" pix firewalls that I build to prepare for my CCIE Security lab that function just like a Pix525 that I built with "cheap" hardware. I also told him that I have experiences with setting and configuring TACACS and RADIUS using Cisco Freeware TACACS and FreeRadius and that my experience with Pix firewall is rock solid. The TACACS and RADIUS logging is imported to an Oracle9i database for auditing purposes. Last but not least, I also told him that I have experience with Wireless LAN using Extensible Authentication Protocol with Transport Layer Security (EAP-TLS) using FreeRadius and Public Key Infracstructure and Smart Certificate. To make the wirless network to be extremely secure, I implement IPSec over EAP-TLS. I gave him a demonstration by logging back to my home network and show him my skill. The manager was very impressed with my skills especially with the wireless, TACACS and RADIUS that he offers me a job on the spot. He is even more impressed that I learn these skills on Unix/Linux platforms which the cost of the software is essentially free and that since I have the programming skill, I know how to customize the source code. Needless to say, I get the job with a pay of $100k/year. My responsibility at the new company is to train other employees what I know about Pix Firewalls, Wireless security (EAP-TLS, LEAP, PEAP), building TACACS and free RADIUS on Solaris, BSD and linux platform, perl programming and Oracle9i and MySQL database. Two of the people whom I will train are CCIEs. Now, I can really concentrate on my R&S lab in Dec and Security in Jan. I would like to thank eveyone in this group for encouraging me with your wisdom in the past few days. Hopefully, I will pass the lab in my first try. Adrian - Do you Yahoo!? Yahoo! Mail Plus - Powerful. Affordable. Sign up now Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=58013&t=58013 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: VPN on PIX firewall 506 [7:58115]
Basically you can setup your pix firewall with man vpngroup (poor man approach) as you like. Each of the "vpngroup" can be described as individual users. Since you don't have the budget for either an ACS or MS (), this is the way to go. I've done this many times on my "franken" pix firewalls and it works beautifully. Actually, it was one of the questions that the manager at my "new" job asked me (how to setup remote VPN users on Cisco Pix firewall without Radius or Cisco ACS). When I showed him how it work with my demonstration, he was very impressed by it. Email me off-line if you want to know more on how to set it up. vpngroup adrian address-pool ippool vpngroup adrian split-tunnel 100 vpngroup adrian idle-time 1800 vpngroup adrian password pixuser1 vpngroup tony address-pool ippool vpngroup tony split-tunnel 100 vpngroup tony idle-time 1800 vpngroup tony password pixuser2 vpngroup michael address-pool ippool vpngroup michael split-tunnel 100 vpngroup michael idle-time 1800 vpngroup michael password pixuser1 vpngroup david address-pool ippool vpngroup david split-tunnel 100 vpngroup david idle-time 1800 vpngroup david password pixuser1 "[EMAIL PROTECTED]" wrote: I've used the 506 for VPN before and used a MS radius server to authenticate. A guide is included in the online manual for the PIX. -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] Sent: Tuesday, November 26, 2002 9:08 AM To: [EMAIL PROTECTED]; [EMAIL PROTECTED]; [EMAIL PROTECTED] Subject: VPN on PIX firewall 506 I got a Cisco secure PIX firewall 506 and Cisco 1700 series. I would to setup a VPN server and allow 10 remote users with authentication to connect to my company network via VPN client. I don't have any Cisco ACS and I don't have budget to buy it also. Is it possible to setup a VPN network ? Need help and guide. Best Regards CK Lau Do you Yahoo!? Yahoo! Mail Plus - Powerful. Affordable. Sign up now Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=58135&t=58115 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Hello (long response) [7:58824]
Elping, Please do NOT make any statements regarding CheckPoint Firewall without knowing all the facts. I've been working with both Checkpoint and Pix firewalls. I even build a few "franken" pix firewalls so that I can learn as much as I can about Cisco Pix firewalls. The "franken" pix firewall actually help me landed my current job that pays 100k/year. Both CheckPoint and Pix firewalls have its strength and weaknesses. I agree that Cisco TAC is much superior than CheckPoint support. The "no text configuration" that you refer to in CheckPoint, you must be refered to running CheckPoint on Winblows platforms. NEVER RUN FIREWALL ON A GENERAL PURPOSE OPERATING SYSTEM. If you worry about cost, check out CheckPoint SecurePlatform. If you are "unix" literate, does the term "tcpdump" mean anything to you? That's how you troubleshoot my friend. Now if you are talking about cost, Cisco Pix will beat CheckPoint by a long shot in term of performance for your $. However, for a small/medium business, Checkpoint does come with a lot of features such as URL filtering (native), http load balancing, etc which Pix doesn't have (without 3rd party products). For enterprise environment, CheckPoint does come with ClusterXL (aka, load-sharing or Active/Active Firewall), which again, Pix doesn't support. Last but not least, CheckPoint does have a very nice Management piece called "provider-1" that Cisco Pix doesn't have. I do have to say that the price for CP products is totally "outrageous"; however, CP is a good product. In terms of hardware product, you can run CheckPoint on Nokia Platforms which is very stable and proven product. New version of Nokia firewalls do come with Flash instead of hard-drive so that the reliability is very high. Nokia is a big partner with CP. You can get CP support if you purchase Nokia firewalls from Nokia. Nokia TAC is just as good as Cisco TAC. I've completed my first week at my new job as a Security Engineer and I am amazed at the # of Cisco Certified folks at my company that are completely incompetent and downright clueless at what they can do. We are a consulting company and being in the consulting business, you are forced to know pretty much about everything. I have a couple of CCIEs in the office came to me and ask me how to restart sendmail and postfix (we are a linux shop) in linux. Another CCIE asked me how to use "nmap" in unix. The last one is down right funny, one CCIE asked how to start Apache in Solaris. It just seems to me like R&S are all they know and nothing else. We also do R&S here but at these times, demands for those have not been that great. Therefore, we have to branch into other things such as Security (PIX, CheckPoint, Wireless, IDS, etc...) I brought these issues to my boss attention last wednesday and on thursay he ordered me to 'clean' house. The first thing I did was to send "pink" slips to all 4 CCIEs in the group and told them that they are fired because they don't know anything other than R&S. They were making $130k/year and sucking almost all of our budget. My advice to everyone out there is to keeping learning other things in addition to the R&S. The market for CCIEs is not as good as it used to be. You better know other things especially Unix and Firewalls than just merely R&S. There will be lot of good peopel competing for the same jobs and the only way you can show the potential employers that you are better than the other guy is by showing them that you know other things not just R&S. Just my .02c. Adrian elping wrote: I work with the checpoint firewall ...and let me tell you they are gui based and very easy to coinfigure...but do they suck.ther is no text configuration . the debugging sucks...and most of the times i have called checpoint for support ..i have done everything by the book...and they suggest reboot sucks .. 98 perfecnt of the time they suggest to stop the engine and restart it .. anyways i think anything that has a hardrive sucks ... i predict they (checkpoint) will die soon if they do not come out with a hardware product... Louis Young wrote: > if the topic of security comes,not actually only one vendor of cisco systems,there are many other options. > netscreen,checkpoint,etc. > why stick with cisco,just coz it is stronger?I don't think so :) > > - Original Message - > From: "Chuck Church" > To: "Louis Young" ; "Security" > Sent: Sunday, December 08, 2002 11:22 PM > Subject: Re: Hello > > > Couple reasons actually. I've worked with PIXs and VPN in the past, and > > would like to really become stronger in the technology, especially the IDS > > and AAA stuff. The R&S hasn't been the '
