RE: Kind suggestion is Needed! [7:50317]
Mr. Ahmad, I have found Tanenbaum's Computer Networks, 2nd edition to be a very good book. Radia Perlman's Bridges and Switches is also a classic. Alex a. ahmad wrote: Dear All, I just want to work on my basic concepts of networking and for that I need the name of some valuable books. I am no more interested in studying CCNA,CCNP books as I have already studied those books. I hope you can understand my point. I just want my base as strong as possible and then gradually move towards advance networking stuff. My ultimate aim is to be a Voice Engineer. Thanks in advance! AA Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=50329t=50317 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Huawei routers - a.k.a. futurewei.com [7:49778]
Groupstudy, I'd be very very surprised if Huawei violated Cisco's rights, simply because Huawei is the largest networking gear company in China, if they did anything suspicious, Cisco would surely find them. From what I know, Huawei is a pretty ethical company for a multi national corporation, and they sponsor a lot of research projects in Chinese universities. For the question in an earlier thread, Hua means China, Wei is effort or achievement. Alex Ron Tan wrote: Hi group, Huawei routers were introduced into the local market sometime in the past 2 months in an asian networking exhibition called Communicasia. That's where I met the Huawei distributor whom had volunteered to provide a demo set for me to play with (myself from an international mnc, has current projects to revamp our LAN/WAN structure) and guess what, my boss is requesting me to have a look at their routers ! The day the router came into the office, I noticed that there were no manuals provided. After meddling with the router, I believed that there was no need to request for one in the first place ! There will be no requirements to load the box with IOS, it is IOS (with a bit of differences). The whole thing was CLONED ! I'm not too sure about reversed-engineering but more on how Cisco is going to protect their market dominance. With boxes selling for 30-40% cheaper, I guess lots of ppl will be rushing off to buy it. Guess might as well I pack my bags for China to get a new set of certifications. Ron Tan Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=49804t=49778 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: PIX 520 Motherboard repair replace [7:48959]
I don't know the details, but I would imagine that the boot roms are different. I can't really see Cisco using a Phoenix bios... Finesse is the original OS used in PIXes, the boot roms probably have the Finesse kernel inside. Larry Letterman would probably know for sure. Alex Calorifer Gogu wrote: A couple of weeks back I bought for about $100 a defective CISCO PIX 520. The box came complete with one 16 MB Flash card and one NIC. The box was sold to me as Motherboard defective it is the Intell Al440LX moteherboard. I took apart PIX boxes before at work and noticed that they were actuall PC Mobos. That is why I reasoned that repairing the PIX 520 should be only a matter of replacing the board with an identicall one that retails for no more than $60. I also noticed that the newer boards on the PIX 520's are Intel SE440BX2 without sound modules. I went ahead and bought the new board and installed all cards but when I power up I get no console output. I reasoned that the Flash card might be bad and I installed one with 2 MB, still same results...No console output. I went to CCO and downloaded the Boothelper utilities to boot the PIX from the Floppy but that does not help either. I have read multiple discussions about Clone PIX and FrankenPIX where people stated that you can build one if you just have the Flash card... Aparently there is more to that. Any Ideeas? CISCO TAC told me that there is special drivers for the console port onboard the original Motherboards on a chip. I have some doubts about that considering that in all the times I contacted TAC with different issues I got vague answers and they allways missed the point regardless of the fact that I have a Partner contract. Meantime I acuired a local director with a working motherboard inside but without flash. I took that out and swapped out the PIX Mobo but I still get no console output. Meantime If I use the board as a PC board everithing is fine. Is there a certain BIOS that needs to be loaded on the Motherboard prior to installing the cards ? On the sho ver of some PIX 520 with 2 MB Flash there is a line: Finesse Bios V3.3 is this line refering to the bios on the board or on the Flash card ? Any insight in this issue will be appreciated Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=48967t=48959 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: PIX 520 Motherboard repair replace [7:48959]
Facts have spoken. I retract my prior statements. By extension, could you have used a differenet MB / CPU? Alex Mike Sweeney wrote: Special drivers? bunk- http://www.packetattack.com/frankenpix.html It can be replaced with a normal, garden varity Intel SE440BX motherboard. I happen to use a recycled PII 300Mhz slot1 processor which had been used as a paperweight for the last year ;) MikeS Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=48969t=48959 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Networkers Power Slides [7:47900]
Thanks Steve. The slides are very helpful. Alex Steven A. Ridder wrote: Oops, wrong link. pad pad pad http://www.cisco.com/networkers/nw02/presos.html -- RFC 1149 Compliant Clayton Dukes wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... I didn't see the power slides there, where are they? Clayton Dukes CCNA, CCDA, CCDP, CCNP, NCC - Original Message - From: Steven A. Ridder To: Sent: Tuesday, July 02, 2002 10:09 AM Subject: Re: Networkers Power Slides [7:47900] Found the link finally. pad pad http://www.cisco.com/networkers/nw02/update/index.html Steven A. Ridder wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... What are the power slides? But they are publically available, I just have to find the link -- RFC 1149 Compliant. JohnZ wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... Does any one have the link to the Power Slides from San Diego Networkers 02. Are these even available yet. Thanks Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=47965t=47900 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Pix don't route [7:46356]
Wayne, Why not use the router to terminate the links, and put the PIX behind the router? The PIX will inspect the traffic, and the router can send traffic to different links depending on where it originated from. Usually a 515 may be a better solution because it has a DMZ interface where the server can sit on, but I guess there is a cost concern. Alex Wayne Jang wrote: Hi, The Pix don't route, but can I do this? I have a 2 server 20 user small office. I have a Pix 506 sitting in front of a 2621 with a T1 and a DSL link to the Internet. I'm not looking to load balance or even do redundancy. I just want traffic from the servers to use the T1 and I want traffic from the users to use DSL. I could use access-lists on the 2621 to direct the traffic based on source address, but how will the 2621 know where the traffic came from? Won't all traffic have a source address of the Pix outside interface? What if I Nat the servers(on PIx) so that they will appear to have a different source IP than the users who will be behind the global outside address? I'll need more public addresses, but that would be fine. I can't get any help from Cisco Pre-Sales because they aren't sure. I can't get an engineer that knows more than me (not much). My fall back plan is to only use the 2621 and have a firewall IOS. But I would rather use the Pix, especially because we have already quoted the above solution and are working to save face. Thanks -- Wayne Jang Advanced Computer Technologies, Inc. 108 Main Street Norwalk, CT 06851 Wk 203-847-9433 Cell 203-943-6603 Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=46358t=46356 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: dial up problem [7:44244]
Yoschii, This sounds more like the so - called blind dial. Some countries will not have the dial tone when you connect the modem to it. In order to use dial up you have to disable the wait for dial tone feature otherwise your modem would just wait forever. Alex supernet wrote: When I travel to Japan, I have to disable wait for dial tone to make my Windows dial-up networking work. I was told Japan hotel PBXs were configured this way. Is this so-called EM delay start? Will disable wait for dial tone cause any problem in US? Thanks. Yoschii Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=44249t=44244 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: VTP Concentrator - client to client [7:44276]
Gaz, I think there might be some routing problems. IPSEC is not like a serial link, it will not pass all traffic, it only passed traffic from one endpoint of the tunnel to the other endpoint of the tunnel. In your scenario, once the packet gets to the concentrator, the concentrator wouldn't know how to pass the packet off to the other client. The issue is probably really the transient nature of the dial up sessions. Imagine two clients running on DSL, then I can see them communicate to each other through the concentrator. They just need static routes in between them. Any comments? Alex Gaz wrote: Hi all Someone was banding this question around at work today, so although it's possibly a little off topic, I don't feel too guilty because I don't need the answer, just interested. If two clients each access a network via the internet in to one VPN concentrator, is it possible in any way to let the two separate clients also access each other's networks? We had a few off the cuff ideas, but nothing that would seem to be a go'er. Things like running overlapping NAT on an internal router with two interfaces. Anybody got any mad ideas, or possibly any sane ones? Gaz Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=44287t=44276 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Puzzles -gt; WAS RE: My interview story [7:40553]
If you have 2 20' poles, a 32' rope strung between them, and the lowest point of the rope is 4' off of the ground, how far apart are the poles? If I understand correctly, I think the answer to this one is 16'. If the rope is attached to the ends of the poles, then the drop of the rope is 20' - 4' = 16'. The rope has total length of 32', the total length is composed of a drop and a horizontal span. So even though the shape of the rope is a parabola, we can just subtract the drop from the total length to get the span. Alex Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=40839t=40553 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: BGP question [7:40525]
Steve, Why is redistribution into an IGP a big no - no? My understanding is that this is what people usually do. If you use OSPF and E2 routes on the third router, then OSPF should find the optimal route. Alex Steven A. Ridder wrote: If I had 2 7206 routers dual homed to two different ISP's for redundancy, I know I don't NEED the full bgp table, but if I were to accept them for optimal routing within my network, how would I tell my internal routers who don;t run BGP which of the two 7206 routers to go to for a specific route oout to the internet? I assume doing a redistribution into the IGP is a big no-no, so how do small 3600's and 2600's inside the AS know which of the two routers to send the traffic to based on the fact that that one router has the better route? I can think of adding a third 7206 router which would run BGP, connect to the other two routers and accept the full table as well, and the internal routers would use that one as the gateway to the internet, but if I didn't have that third router, is there any other way? -- RFC 1149 Compliant. Get in my head: http://sar.dynu.com Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=40532t=40525 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: BGP question [7:40525]
That pretty much rules out redistributing into IGP. I am thinking that Steve's original suggestion is the only way to go, but I feel that there may be a problem accepting full routes from two different providers. Any comments? Alex [EMAIL PROTECTED] wrote: I'm no BGP guru, but I would have thought also that redistributing *full routes* (as opposed to a default) into your IGP might overload internal routers rather badly. The original poster referred to 2600s and 3600s inside the AS. JMcL - Forwarded by Jenny Mcleod/NSO/CSDA on 05/04/2002 09:36 am - Lomker, Michael Sent by: [EMAIL PROTECTED] 05/04/2002 08:38 am Please respond to Lomker, Michael To: [EMAIL PROTECTED] cc: Subject:RE: BGP question [7:40525] Why is redistribution into an IGP a big no - no? My understanding is that this is what people usually do. You'd have to be careful about advertising those routes back out to BGP again. There was a famous case of someone bringing down the Internet by creating such a loop. Needless to say, their ISP shouldn't have been accepting advertisements for networks that the company didn't own. Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=40548t=40525 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: MCNS Boson test [7:40224]
Hello, I used Bernard Omrani's test (#2, I think). I liked the questions, and Bernard replied promptly when I took issue with one of the questions. Alex Ole Drews Jensen wrote: This doesn't answer your question perfectly, but could be a good advise. What I do is to take all the tests, and the one I score the worst in I buy. I also look who wrote the test to see if I recognize a writer from a previous good test. I have not tried the MCNS tests yet, so I cannot give you any recommendations. Hth, Ole ~ Ole Drews Jensen Systems Network Manager CCNP, MCSE, MCP+I RWR Enterprises, Inc. [EMAIL PROTECTED] ~ http://www.RouterChief.com ~ Need a Job? http://www.OleDrews.com/job ~ -Original Message- From: Sanjay Dalal [mailto:[EMAIL PROTECTED]] Sent: Tuesday, April 02, 2002 1:49 PM To: [EMAIL PROTECTED] Subject: MCNS Boson test [7:40224] Does anyone know which test from BOSON is best for MCNS test ? There are three tests available at their site and am wondering which one should i buy ? MCNS #1 MCNS#2 MCNS #3 thanks in advance Sanjay Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=40234t=40224 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Embryonic connections [7:38451]
I think it refers to half open TCP connections. For example, you may have a whole bunch of SYN requests that your box has ACKed, but has not received a SYN ACK from. Alex Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=38461t=38451 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
concentrator 3000 vs. checkpoint vpn [7:37474]
Group, Has anyone used both concentrator 3000 and checkpoint vpn (either software or hardware)? What are each's advantages and disadvantages? I am interested in the following factors: Ease of installation and configuration, security, manageability, reporting and logging, scalability, and pricing. I've searched the archives but couldn't find any real world advices. Thanks, Alex Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=37474t=37474 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Cisco Symposium 2002 [7:36673]
Not sure if most of you already received this. https://www.cisco-eventreg.com/cpn2002/ Training sessions, free test, and if are already a qualified lab candidate, free CCIE lab test. Hurry up, the sessions are filling up really quickly. Alex Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=36673t=36673 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: 3DES [7:34756] AES? [7:34863]
FIPS197 was declared as the new AES in November, 2001. The standard will be in effect in May, 2002. When do we see it in actual products... not too sure. http://csrc.nist.gov/publications/fips/fips197/fips-197.pdf Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=34865t=34863 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Need Cisco guru help [7:34864]
I have a feeling this is a mismatch type of problem. Please see the link below: http://www.cisco.com/univercd/cc/td/doc/cisintwk/itg_v1/tr1918.htm Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=34866t=34864 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: CIT Test [7:34856]
I don't think it was difficult, it was simply illy - organized and poorly worded. As always, if it's too confusing to reason, process of elimination works great. Alex Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=34867t=34856 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: logging the access on a router [7:34346]
Hello, You can use access lists to log it. You can use either logging buffered (limited in number of entries) or use a dedicated log server. Alex Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=34353t=34346 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: DSL [7:30032]
Hello Farhn, www.dslreports.com can tell you a lot of about your provider. Like who provides the loop, the distance between you and the CO... Check it out. Alex Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=30038t=30032 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: How to disable NAT in Cisco PIX? [7:29641]
Hello David, I think your config should work, too. But here are a few suggestions nevertheless: 1. use nat (inside) 0 0 0 instead of nat (inside) 0 129.174.1.0 255.255.255.0 2. delete static (inside, outside) 129.174.1.0 129.174.1.0, it's not really needed. 3. Like Ejay said, do a traceroute. You mentioned that connectivity is fine, does that mean pings and traces work, just not http? Alex Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=29680t=29641 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: need advice [7:29392]
Hello Festus: 1. This is a persistent and difficult problem. The short answer is, you can't. There are a lot of products like Cyberpatrol, but they are not on the router. Usually they are on the proxy servers, end PC's and firewalls. They can block a lot of sites but not all. Filtering based on word list is not entirely accurate, either. But they do work. Since you are just trying to block porn access in a cybercafe, they are probably good candidates. But -- they cost money. 2. The second question is more like a Microsoft question, not sure. Alex Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=29415t=29392 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: CCIE Lab Book Review [7:28991]
I thought it was OK, but not in depth enough. It covered a pretty wide range of topics, so most of the labs seem to only scratch the surface. Not sure about the mistakes part. Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=28992t=28991 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: CCIE written questions [7:28862]
Hello Ike, From your email address I know you are based in China. Perhaps you are not very aware of Cisco's lawyer's fearsome powers due to geographical distance. I mean no ill will and this is simply a friendly reminder, but please refrain from posting actual test questions. You signed the Non - disclosure agreement when you took the test, and they can, and have, revoked people's certs because of leakage. Alex Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=28877t=28862 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
OT: outlook bashing [7:28107]
I wish it was easier to be security - conscious with Microsoft products.. but outlook is very difficult to secure. For a lot of users, it's tedious for them to disable preview panel and automatic preview; increase attachment security level and macros security level. These features should have never been implemented, or at least shipped disabled. I have received a good dozen infected emails this morning alone. Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=28109t=28107 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Diffle-Hellman Exchange Question [7:27952]
Hello Hunt, In my understanding the shared key never go across the network. Each peer computes it out separately. Where did you see in CCO saying that the DES key is sent across the internet? Alex Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=27998t=27952 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Diffle-Hellman Exchange Question [7:27952]
I have a link here for your reference. Read the section on RSA. http://www.cisco.com/warp/public/105/IPSECpart3.html Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=27999t=27952 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: 2500 Router problem [7:27695]
Hello James, Since your router 2 IP is on a different subnet you need to have either routes set up; or run some kind of routing protocol. Alex Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=27696t=27695 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: OSPF and E2's, why default? [7:27390]
Hello Christopher, If I am not mistaken, E2 is always used by default, but if E1 and E2 are both available for the same destination, E1 will be used. http://www.cisco.com/warp/public/104/3.html Alex Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=27403t=27390 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: vpn [7:26452]
If I understand you correctly, yes. The real destination IP is hidden, and the destination IP address visible to the internet is the VPN server on the other side. Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=26511t=26452 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Latency on the local access circuit [7:26263]
Paul, I have a feeling that you might have tried the below, but just for a suggestion: Is the ping time always high, or does it vary depending on the time of the day? If it's the latter, it might be a congestion problem, and you can check for the presence of FECN's on the frame switch. This happened to me once, and it turned out to be an incorrect CIR on the PVC. Alex Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=26300t=26263 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]