Re: radius server recommendations [7:1113]
Yes. In windows 2000 it is called IAS. There is a bunch of information in the W2K help file and even more in the resource kit. Easier than Linux, integrates with NT or W2K and you can use it to hone your mine-sweeper skills! TTFN, Bill Pearch, Anchorage AK MCSE, MCT, CCNP, ARNG Original Message- >From: "Scott" >To: "[EMAIL PROTECTED]" >Cc: >Bcc: >Subj: Re: radius server recommendations [7:1113] >Type: IPM.Note >Sent: Wednesday, April 18, 2001 11:28 AM > >work with Cisco routers? > - Original Message - > From: [EMAIL PROTECTED] > To: [EMAIL PROTECTED] > Sent: Wednesday, April 18, 2001 2:41 PM > Subject: Re: radius server recommendations [7:1113] > > > Win2000 has radius built in. Look up remote access services. > > ""Scott"" wrote in message >news:... > > Thanks for the suggestion but need to keep it on Windows NT or 2000. >Don't > > have any UNIX machines unfortunately. > > > > > > - Original Message - > > From: Tim Lovelace > > To: scott > > Sent: Wednesday, April 18, 2001 2:20 PM > > Subject: RE: radius server recommendations [7:1113] > > > > > > > What about the free UNIX tacacs+ that Cisco provides? Not quite as nice >as > > > ACS but it does work > > > > > > -Original Message- > > > From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of > > > scott > > > Sent: Wednesday, April 18, 2001 12:58 PM > > > To: [EMAIL PROTECTED] > > > Subject: radius server recommendations [7:1113] > > > > > > > > > I am looking for a good inexpensive radius server software. Any > > > suggestions. Would love to use tacacs+ but due to budget constraints >can > > > not afford Cisco Secure ACS. > > > > > > Thanks for your input > > > > > > Scott CCNA, MCSE, MCP+I, A+ > > > Senior Consultant > > > Andersen, LLP. > > > FAQ, list archives, and subscription info: > > > http://www.groupstudy.com/list/cisco.html > > > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] > > FAQ, list archives, and subscription info: >http://www.groupstudy.com/list/cisco.html > > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] >FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html >Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=1182&t=1113 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Differences between TACACS+ and Cisco ACS [7:2245]
With NT/2000 and IIS4 or IIS5 we can make any HTTP:// site a HTTPS:// site with a couple of mouse clicks. If you are using Win2K there is a heck of a help file that will walk you through the process, step by step. TTFN, Bill Pearch, Anchorage AK -Original Message- From: Sean Young [mailto:[EMAIL PROTECTED]] Sent: Sunday, April 29, 2001 7:19 PM To: [EMAIL PROTECTED] Subject: Re: Differences between TACACS+ and Cisco ACS [7:2245] "You can access it using a browser anywhere". This is what I am worried about. When you are talking about controlling ACS via the web browser interface, does it use standard "http" or "https". If it uses the standard http, then everything can be captured by a sniffer. Can anyone confirm this? Thanks. Sean >From: "nana" >Reply-To: "nana" >To: [EMAIL PROTECTED] >Subject: Re: Differences between TACACS+ and Cisco ACS [7:2245] >Date: Sun, 29 Apr 2001 18:08:09 -0400 > >CiscoSecure Version 2.6 was for Windows NT/2000 is actually a very improved >product compared to its preds. Easy to configure and manage. You can >access it using a browser anywhere. It also allows you to control the >admin access itself so that others can manage usersgroups etc but not the >top admin level functions >"Sean Young" wrote in message >[EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > > Hi Everyone, > > > > The company I am working for is considering purchasing Cisco ACS > > software. This piece of software will be running on Solaris platform. > > Currently, I am using TACACS+ (self-supported software with source code) > > on our environment running on both Solaris and linux platforms (Primary > > TACACS is on Solaris and backup is on Linux). We've modified the source > > code so that each user has his/her own privilige password so that we > > have a record of who is doing what on the network devices (accounting > > purpose). Everything is running smoothly and the company is happy with > > the result. > > > > In my opinion, learning CLI in Unix/linux is not an easy task to master. > > Because of this, I am solely responsible for the TACACS servers. >Finding > > someone to train for this thing is NOT an easy thing (thanks to >Microsoft > > mentality of POINT-and-CLICK attitude of new people coming into the IT > > field these days). I've tried to train several people for this task but > > it was unsuccessful. Because of this, the company is considering of > > migrating the TACACS server from Solaris/Linux over to Microsoft Windows > > platforms (YIKES) so that we can find additional support staffs. > > The software package that we consider is Cisco ACS. I have several > > questions regarding this package: > > > > 1) Is this software stable on a Windows platform? (Sorry I have to ask) > > 2) How long does it take to train a newbie to be efficient with Cisco > >ACS running on Winblows platform? > > 3) Does Cisco ACS support enable privilege for each individual user (i.e > >does each user have his/own enable password)? > > > > If anyone has done it before or have a similar experience, I would like > > to hear from you. > > > > Many thanks. > > Sean > > _ > > Get your FREE download of MSN Explorer at http://explorer.msn.com > > FAQ, list archives, and subscription info: >http://www.groupstudy.com/list/cisco.html > > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] >FAQ, list archives, and subscription info: >http://www.groupstudy.com/list/cisco.html >Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ Get your FREE download of MSN Explorer at http://explorer.msn.com FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=2535&t=2245 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Differences between TACACS+ and Cisco ACS [7:2245]
Did some looking into the documentation on ACS for NT/2K and it looks like Cisco is using a non MS web server, rather than building on IIS 4 or 5. So you can do what you can do with it. If Cisco doesn't include HTTPS you don't get HTTPS. I know IIS, not ACS - sorry. I hope to remedy that in the near future. If you are using Win2K as your ACS server it is possible to make use of IPSec to other W2K boxes based on local IPSec policy or domain level IPSec policy. This would give you the secure communication you are looking for, even if the application does not support HTTPS. YMMV, VWPBL, OSTCAAT. TTFN, Bill Pearch, Anchorage AK -Original Message- From: Sean Young To: [EMAIL PROTECTED] Sent: 4/30/2001 4:41 AM Subject: RE: Differences between TACACS+ and Cisco ACS [7:2245] Bill, Are you sure about this? I've contacted Cisco TAC support and have been told it is NOT possible because Cisco ACS itself does NOT https. Can anyone confirm this? Thanks Sean >From: "Bill Pearch" >Reply-To: "Bill Pearch" >To: [EMAIL PROTECTED] >Subject: RE: Differences between TACACS+ and Cisco ACS [7:2245] >Date: Mon, 30 Apr 2001 02:16:01 -0400 > >With NT/2000 and IIS4 or IIS5 we can make any HTTP:// site a HTTPS:// site >with a couple of mouse clicks. If you are using Win2K there is a heck of a >help file that will walk you through the process, step by step. >TTFN, >Bill Pearch, Anchorage AK > >-Original Message- >From: Sean Young [mailto:[EMAIL PROTECTED]] >Sent: Sunday, April 29, 2001 7:19 PM >To: [EMAIL PROTECTED] >Subject: Re: Differences between TACACS+ and Cisco ACS [7:2245] > > >"You can access it using a browser anywhere". This is what I am worried >about. When you are talking about controlling ACS via the web browser >interface, does it use standard "http" or "https". If it uses the >standard http, then everything can be captured by a sniffer. > >Can anyone confirm this? Thanks. > >Sean > > > >From: "nana" > >Reply-To: "nana" > >To: [EMAIL PROTECTED] > >Subject: Re: Differences between TACACS+ and Cisco ACS [7:2245] > >Date: Sun, 29 Apr 2001 18:08:09 -0400 > > > >CiscoSecure Version 2.6 was for Windows NT/2000 is actually a very >improved > >product compared to its preds. Easy to configure and manage. You can > >access it using a browser anywhere. It also allows you to control the > >admin access itself so that others can manage usersgroups etc but not the > >top admin level functions > >"Sean Young" wrote in message > >[EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > > > Hi Everyone, > > > > > > The company I am working for is considering purchasing Cisco ACS > > > software. This piece of software will be running on Solaris platform. > > > Currently, I am using TACACS+ (self-supported software with source >code) > > > on our environment running on both Solaris and linux platforms >(Primary > > > TACACS is on Solaris and backup is on Linux). We've modified the >source > > > code so that each user has his/her own privilige password so that we > > > have a record of who is doing what on the network devices (accounting > > > purpose). Everything is running smoothly and the company is happy >with > > > the result. > > > > > > In my opinion, learning CLI in Unix/linux is not an easy task to >master. > > > Because of this, I am solely responsible for the TACACS servers. > >Finding > > > someone to train for this thing is NOT an easy thing (thanks to > >Microsoft > > > mentality of POINT-and-CLICK attitude of new people coming into the IT > > > field these days). I've tried to train several people for this task >but > > > it was unsuccessful. Because of this, the company is considering of > > > migrating the TACACS server from Solaris/Linux over to Microsoft >Windows > > > platforms (YIKES) so that we can find additional support staffs. > > > The software package that we consider is Cisco ACS. I have several > > > questions regarding this package: > > > > > > 1) Is this software stable on a Windows platform? (Sorry I have to >ask) > > > 2) How long does it take to train a newbie to be efficient with Cisco > > >ACS running on Winblows platform? > > > 3) Does Cisco ACS support enable privilege for each individual user >(i.e > > >does each user have his/own enable password)? > > > > > > If anyone has done it before or have a similar experience, I would >like > > > to hear f
RE: VLAN's and Routers [7:2534]
Of course dualies are feasible. That's all a router is after all. :)
The biggest problem with adding NIC's to a server split between subnets is
one of name resolution. You might need to put custom HOST and LMHOST files
on your workstations to point them to the appropriate IP address. Example:
hosts on the 10.1.1.0/24 network need to be able to resolve MAIL to
10.1.1.5, but hosts on the 10.1.2.0/24 network need to resolve the same
name, MAIL, to 10.1.2.5 Make sure that the first network doesn't wind up
looking for the NIC on the second network. Oh, and Win9x doesn't generally
deal well with multiple NICs, so this is an NT/2K only type of deal. Or
*nix. :)
This is not a substitution for routing between VLANS. I would not recommend
using NT 4 as a router but W2K does a decent job in a pinch. It even does
RIP v2 and OSPF. There is even a stripped down version of IGMP. Hell of an
ok P/NAT box. Just remember that a server is there to serve and there is
only so much PCI bus to go around. You don't want to run the thing out of
internal bandwidth while you are trying to shuffle I/O to the SQL or
Exchange processes. If you decide to do it, be sure to monitor your
server's performance and keep tabs on the end users experience so that you
know if things go south. All in all, it's usually cheaper in support
dollars to have a dedicated router - even if it does have a Microsoft OS.
Novel handles the name thing a bit differently than NT/2K, so if that's your
server disregard.
For information on HOST and LMHOST files, see the documentation in the
sample files on your server. Remember that you can preload part of the
LMHOST file using the #PRE tag and #DOM is for your domain controllers.
Now, after I go and say all that let us all gather round and face the facts:
This is a Cisco type email list. There IS a Cisco answer.
TTFN,
Bill 'layer 4 and up is for end users' Pearch, Anchorage AK
-Original Message-
From: Sammi [mailto:[EMAIL PROTECTED]]
Sent: Tuesday, May 01, 2001 7:35 AM
To: [EMAIL PROTECTED]
Subject: Re: VLAN's and Routers [7:2534]
Are dual NIC's feasible? Seems on the surface to be cheaper and more
straightforward but haven't seen it mentioned so I may be missing
something.
I can actually give each department their own server but accessing the
email server would present problems.
On 1 May 2001 10:47:35 -0400, [EMAIL PROTECTED] ("Curtis Call")
wrote:
>You could buy a special NIC card for your server that can handle ISL
>encapsulated frames. It might be cheaper to buy a router though since I
>don't think the lower end switches support ISL anyway.
>
>At 12:25 PM 4/30/01, you wrote:
>>Thanks all, that clarifies somewhat.
>>
>>On 30 Apr 2001 14:06:09 -0400, [EMAIL PROTECTED] ("Karen E Young")
>>wrote:
>>
>> > Usually there needs to be some form of communication
>> >between VLANS though, so practically speaking you do need a router.
>>
>>What I would like to do is create broadcast domains for different
>>departments, ie finance, admin. But all departments would need to
>>communicate with the same server(s).
>>I'd like to implement VLAN's without the expense of having to purchase
>>routers, but doesn't seem like it's feasible?
>>
>>I have ordered P. Openheimer's (sp) Top Down Design book and that may
>>better guide me in trying to implement an efficient network design.
>>FAQ, list archives, and subscription info:
>>http://www.groupstudy.com/list/cisco.html
>>Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
>FAQ, list archives, and subscription info:
http://www.groupstudy.com/list/cisco.html
>Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
FAQ, list archives, and subscription info:
http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=2858&t=2534
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Sniffers [7:3035]
Give some attention to: www . ethereal . com <filter avoidance! Works with Win9X, NT and 2K. TTFN, Bill Pearch, Anchorage AK We got 3-4 inches of snow last night! -Original Message- From: Victor Chan [mailto:[EMAIL PROTECTED]] Sent: Thursday, May 03, 2001 7:05 AM To: [EMAIL PROTECTED] Subject: Sniffers [7:3035] Do anyone know of any free sniffers? Is there any web sites you can refer me to? Thanks. Victor FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=3043&t=3035 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Protocol Type 0x886F [7:3737]
One possible solution to this issue that was practiced early in the wolfpack development was to have a nic in each cluster node that was connected via cross over cable to the other node. By having a pair of NIC's dedicated to heartbeat we can avoid having the heartbeat flood the network. TTFN, Bill in Anchorage -Original Message- From: Darren Crawford [mailto:[EMAIL PROTECTED]] Sent: Wednesday, May 09, 2001 11:26 AM To: [EMAIL PROTECTED] Subject: Re: Protocol Type 0x886F [7:3737] I ran into this same problem at my current client. Apparently this is a necessary evil in a NT clustered environment for load balancing and fault tolerancy. There are two 1,514 byte packets sent every second by default. One to the MAC of the NIC and the other to the multicast address. The size of these packets cannot be adjusted but the interval of how often they occur can. The heartbeat can be set between 100 and 1 milliseconds (default is 1000). The time period before the device is determined dead can be set between 5 and 100 (default is 5). We did the following: Registry items alivestatus (aka AliveMsgPeriod) and aliveperiod (aka AliveMsgTolerance) were changed to 1 and 9 respectively. What this meant on the network was that there were only 6 pairs of heartbeats per minute instead of 60. This should be adjusted based on the organizations tolerance of a failure. HTH Darren At 12:47 AM 05/09/2001 -0400, Andy Prima wrote: >Dear all, >I need help on protocol type 0x886F. It seems that this kind of Ethernet >Broadcast is circling around my network and I do not have a clue what it >really is. > >TIA >andy >FAQ, list archives, and subscription info: >http://www.groupstudy.com/list/cisco.html >Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] *** Darren S. Crawford Lucent Technologies Worldwide Services 2377 Gold Meadow WayPhone: (916) 859-5200 x310 Suite 230 Fax: (916) 859-5201 Sacramento, CA 95670Pager: (800) 467-1467 Email: [EMAIL PROTECTED] Epager: [EMAIL PROTECTED] http://www.lucent.com Network Systems Consultant - CCNA, CCIE Written "Providing the Power Operable Networks." *** FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=3960&t=3737 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Protocol Type 0x886F [7:3737]
Breaking things is bad. I pull my suggestion and have bookmarked the page for future reference. TTFN, Bill -Original Message- From: Darren Crawford To: [EMAIL PROTECTED] Sent: 5/10/2001 9:10 AM Subject: RE: Protocol Type 0x886F [7:3737] A word of caution here. Per the documentation I pulled down figuring this out, the crossover cable solution causes load balancing not to work. See Article ID: Q242248 - http: // support. microsoft. com/ support/ kb / articles/Q242/2/48.ASP (NOTE: spaces inserted to avoid URL striping). HTH Darren p.s. I have a Word document with several of these articles which I will send to anyone who's interested. At 09:49 PM 05/09/2001 -0800, Bill Pearch wrote: >One possible solution to this issue that was practiced early in the wolfpack >development was to have a nic in each cluster node that was connected via >cross over cable to the other node. By having a pair of NIC's dedicated to >heartbeat we can avoid having the heartbeat flood the network. >TTFN, >Bill in Anchorage > >-Original Message- >From: Darren Crawford [mailto:[EMAIL PROTECTED]] >Sent: Wednesday, May 09, 2001 11:26 AM >To: [EMAIL PROTECTED] >Subject: Re: Protocol Type 0x886F [7:3737] > > >I ran into this same problem at my current client. Apparently this is a >necessary evil in a NT clustered environment for load balancing and fault >tolerancy. There are two 1,514 byte packets sent every second by default. >One >to the MAC of the NIC and the other to the multicast address. The size of >these packets cannot be adjusted but the interval of how often they occur >can. The heartbeat can be set between 100 and 1 milliseconds (default >is >1000). The time period before the device is determined dead can be set >between >5 and 100 (default is 5). > >We did the following: > >Registry items alivestatus (aka AliveMsgPeriod) and aliveperiod (aka >AliveMsgTolerance) were changed to 1 and 9 respectively. What this >meant on >the network was that there were only 6 pairs of heartbeats per minute >instead >of 60. > >This should be adjusted based on the organizations tolerance of a failure. > >HTH > >Darren > >At 12:47 AM 05/09/2001 -0400, Andy Prima wrote: >>Dear all, >>I need help on protocol type 0x886F. It seems that this kind of Ethernet >>Broadcast is circling around my network and I do not have a clue what it >>really is. >> >>TIA >>andy >>FAQ, list archives, and subscription info: >>http://www.groupstudy.com/list/cisco.html >>Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] > > >*** * >*** >Darren S. Crawford >Lucent Technologies Worldwide Services >2377 Gold Meadow WayPhone: (916) 859-5200 x310 >Suite 230 Fax: (916) 859-5201 >Sacramento, CA 95670Pager: (800) 467-1467 >Email: [EMAIL PROTECTED] Epager: [EMAIL PROTECTED] >http://www.lucent.com Network Systems >Consultant - CCNA, CCIE Written > >"Providing the Power Operable Networks." > >*** * >*** >FAQ, list archives, and subscription info: >http://www.groupstudy.com/list/cisco.html >Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] *** Darren S. Crawford Lucent Technologies Worldwide Services 2377 Gold Meadow WayPhone: (916) 859-5200 x310 Suite 230 Fax: (916) 859-5201 Sacramento, CA 95670Pager: (800) 467-1467 Email: [EMAIL PROTECTED] Epager: [EMAIL PROTECTED] http://www.lucent.com Network Systems Consultant - CCNA, CCIE Written "Providing the Power Operable Networks." *** FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=4087&t=3737 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: OT Looking for tech presentation tips [7:5111]
Welcome to the stage, where the bright lights and the intense heat can cause the most seasoned professional to. Hey, I don't think you want to hear that part. :) If you don't like to 'present' then don't. Make it hands on, and introduce concepts and theory as 'breaks' between the hands on. Assign reading and hold roundtable discussions. Or even better yet, have one of the staff study up on something and have THEM present a 10 minute blurb on it. Ok, so maybe that last one is for the truely evil out there. Do what you are comfortabe with, and work into the areas where you think you have difficulty. Example: I'm darn good at talking about technical stuff. I have a more difficult time writing about techinical stuff, especially when I am not sure of my audience. Over the past week I've been writing up a SAN design document that covers the design process, design decision points and product selection. When ever I would come upon a block I'd borrow one of the techs from the service department and I'd start talking. 15 minutes later I would be back at my desk writing. And always remember: No one goes to class hoping the teacher will fail. No one goes to a concert hoping the soloist will forget her lines. Everyone in the room wants you to do well - for thier own benifit. You will do well Rashid. Your experience and depth of knowledge make you a pro. The rest is just talking. TTFN, Bill Pearch, Anchorage AK MCSE, MCT, CCNP, ARNG -Original Message- From: Rashid Lohiya [mailto:[EMAIL PROTECTED]] Sent: Saturday, May 19, 2001 2:37 AM To: [EMAIL PROTECTED] Subject: OT Looking for tech presentation tips [7:5111] Hey Guys, I am a CCNP with 15 yrs of network experience, I am well travelled in the course of my work. I think I generally know what I am doing, but have great difficulty explaining myself to more junior staff. I can design/configure/troubleshoot networks and create accurate diagrams/documents/reports etc. As I am the Senior in my department, my boss is expecting me to help train the 6 x new trainees/graduates that are in the Network department. I once had to give a presentation and I was shaking and stuttering and I must have seemed insecure and unconfident. I was lost for words and really stressed. I was sweating and confused, I knew the answers to their questions, but I just could not explain to them. Any tips on how to overcome this? Rashid Lohiya [EMAIL PROTECTED] 020 8509 2990 07785 362626 www.pioneer-computers.com FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=5192&t=5111 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: another OT: why you UNIX guys look down on we NT guys? [7:6813]
Um, yes. Only more of them because there are more distro's. Watch http://packetstorm.securify.com/ Now, one of the nice things is that with *nix you don't always have to reboot after you install the changes... TTFN, Bill 'Think VMS' Pearch, Anchorage -Original Message- Do they release "service packs" and patches and security patches on a weekly basis for Unix like they do for NT? Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=6813&t=6813 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Layer3 switch vs Router [7:7406]
Speed. Actually, that's the answer a 3Com engineer gave me when I asked him that very question. TTFN, Bill in Anchorage -Original Message- From: Denton, Jason [mailto:[EMAIL PROTECTED]] Sent: Wednesday, June 06, 2001 11:35 AM To: [EMAIL PROTECTED] Subject: Layer3 switch vs Router [7:7406] Can anyone tell me what the REAL difference is between a layer3 switch and a router? Jason Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=7471&t=7406 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: BGP for 2 T1's to one LAN [7:7511]
The answer is: It depends. :) When you make use of round robin DNS your clients do recieve multiple records. This is from a single hit to www.microsoft.com and shows the dns cache on the local machine. www.microsoft.com. -- Record Name . . . . . : www.microsoft.com Record Type . . . . . : 5 Time To Live . . . . : 7124 Data Length . . . . . : 4 Section . . . . . . . : Answer CNAME Record . . . . : www.microsoft.akadns.net Record Name . . . . . : www.microsoft.akadns.net Record Type . . . . . : 1 Time To Live . . . . : 7124 Data Length . . . . . : 4 Section . . . . . . . : Answer A (Host) Record . . . : 207.46.131.91 Record Name . . . . . : www.microsoft.akadns.net Record Type . . . . . : 1 Time To Live . . . . : 7124 Data Length . . . . . : 4 Section . . . . . . . : Answer A (Host) Record . . . : 207.46.230.229 Record Name . . . . . : www.microsoft.akadns.net Record Type . . . . . : 1 Time To Live . . . . : 7124 Data Length . . . . . : 4 Section . . . . . . . : Answer A (Host) Record . . . : 207.46.230.218 Now, just because the host recieves this information, doesn't mean that the host will USE all this information. YMMV, VWPBL, TOSTCAAT. And this only addresses redundancy near the top of the OSI model. You are also looking to make redundancy happen at the bottom, and that's why you have two T-1s, and you've gotten some good answers on that. And if it's so bloody important, you probably will be wanting to put in some redundancy at the server as well, perhaps Win2K Network Load Balancing or something from the *nix world. And remember, always ask 'What happens if Mars explodes?' TTFN, Bill in Anchorage -Original Message- If the ISP dies then, yes you'll lose both sites, but the world is a single point of failure. I believe the problem with the DNS solution is that although a DNS TTL can be set to 0, there is only a requirement to support TTL down to 2 days. So DNS info can be cached for this period by non-authorative DNS'. Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=7540&t=7511 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Cisco AVVID vs. 3Com [7:33705]
One thing that Cisco reps mention when the NBX comes up is that 3Com's solution is voice over ethernet, rather than a VOIP solution. Then they admit that Cisco doesn't play well in the small implementation market (less than 50 phones) unless there are some unusual requirements that are tailored for VOIP. TTFN, Bill -Original Message- From: Bill Carter [mailto:[EMAIL PROTECTED]] Sent: Wednesday, January 30, 2002 8:18 AM To: [EMAIL PROTECTED] Subject: RE: Cisco AVVID vs. 3Com [7:33705] My company is a Cisco Voice partner and a 3Com Voice Partner. The office I work out of uses the 3Com NBX for about 20 phones. It works, no real complaints. Some of the earlier versions of code were pretty bad. Downsides, NBX has 1 hard drive, if it goes we are down. No way to backup. 3Com may be providing a new solution, I'm not sure??? Here is our position when selling to a customers. If they are a small office (0-30 phones), with no need for VoIP connecting different offices, 3Com is probably the best choice. Cost is a lot less than Cisco solution for same customer and customer wants basic features (voice-mail, auto-attendant, call-park, call-transfer, speaker phone). For customers with larger offices (40+ phones), the potential for VoIP with branch offices we go Cisco. We end up selling Cisco to 95% of our customers. In-line powered phones is a big advantage. Power outlets at the desk are usually filled, it's nice to avoid power strips at every desk. I see 3Com has a price advantage and Cisco has a Technology advantage. Support from Cisco is excellent. Lots of time the problem people have with the Cisco solution is the complexity. Cisco VoIP can work in many different environments, 3Com is more positioned for the standard/simple small office. Don't forget data integration with IP phone system. XML applications to the phone are a very good thing. Some applications on the phones our customers like are phone directories, time-clock sign-in/sign-out (for hourly staff). You have to look at the survivability of the company. 3Com has problems turning a profit. Networkers hate 3Com NICs, 3Com has exited the core switching market. They now sell NICs (most professionals hate them), modems (commodity), low end switches (commodity), home broadband routers (Cable/DSL commodity), and a low end phone system. How long will this model work Will they dump the NBX in the next 12 months??? -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Stull, Cory Sent: Wednesday, January 30, 2002 9:48 AM To: [EMAIL PROTECTED] Subject: OT: Cisco AVVID vs. 3Com [7:33705] Does anyone have any working experience or good opinions on Cisco's IP Telephony solution compared to 3Com? I'm trying to make a buying decision and right now am very up in the air. 3Com has a nice and more cost effective solution that even would allow me to (coming soon) be able to use my existing legacy Lucent/Nortel phones with their NBX system. But 3Com doesn't have IP to the phone yet and they seem to have some proprietary voice over ethernet... Their inline power is also consisting of power patch panels or the power coupler.. not pretty. Any comments? Thanks Cory Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=33813&t=33705 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Cisco Press Vs Sybex Which Way Forward ===> [7:13243]
And I felt just the opposite about the McGraw Hill stuff. Especially BCRAN. Mind you, I didn't take it back to B&N for a refund... My study method for my CCNP was read. Everything. My study method for my MCSE was read. Everything. My study method for the CCIE is turning out to be read. Everything. And then play with it some... The point to this is; for me, the more times I am able to ingest the same idea put in a different manner the better I am able to understand the material. I like the Sybex books. They aren't always the best for every detail of every subject, but they do say the same things a different way. That helps. Which way forward? Read everything. TTFN, Bill in Anchorage -Original Message- From: Sean Wolfe [mailto:[EMAIL PROTECTED]] Sent: Monday, July 23, 2001 8:32 AM To: [EMAIL PROTECTED] Subject: FW: Cisco Press Vs Sybex Which Way Forward ===> [7:13243] I am currently using the McGraw Hill BCRAN book and LOVE it. I used the CCNA Cisco Press book and got so frustrated I bought the Exam Cram CCNA book. I found the CCNA book to be too verbose and confusing. But I really recommend the McGraw Hill stuff. Really nice layout and fun to read. -Sean. > -Original Message- > From: Ayers, Michael [SMTP:[EMAIL PROTECTED]] > Sent: Monday, July 23, 2001 9:06 AM > To: [EMAIL PROTECTED] > Subject: RE: Cisco Press Vs Sybex Which Way Forward ===> [7:13243] > > I use both Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=13459&t=13243 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Associate and Professional Email Lists [7:16217]
I searched the CCO and I can't find anything in the documentation about this vacation thing. What is the part number for that? Is there a certification associated with the configuration of a 'vacation'? What release are we up to? TTFN, Bill in Anchorage -Original Message- From: Priscilla Oppenheimer [mailto:[EMAIL PROTECTED]] Sent: Friday, August 17, 2001 6:40 PM To: [EMAIL PROTECTED] Subject: Re: Associate and Professional Email Lists [7:16217] When I go on vaction I ... Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=16444&t=16217 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
OT: Nortel BLN cross over to Cisco routers [7:32253]
I've been 'blessed' with a loaded BLN. There is a quad sync serial card (5280) and an OSync card, as well as a quad token ring card and a Sonet\SDH card. I'll easily make use of the 4 token ring interfaces, but what I'd really like to do is use the serial interfaces as a FR switch. Does anyone know a.) Can the BLN act as a FR switch and b.) are there cross over cables out there to connect these things to a Cisco 25XX/26XX? TTFN and Thanks, Bill Pearch, Anchorage AK Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=32253&t=32253 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Director Replication - NT4.0 via a Wan Helppppppppp [7:33398]
What is needed to replicate correctly in NT4? Connectivity. Ie, can you ping from the PDC at the hub to the BDC's at the edges. Name resolution. Is WINS working correctly? Have you checked your database lately? Is WINS replicating to the edge WINS servers correctly? Ports. Are there any access lists in place preventing the type of traffic generated by NTDS replication? Double check your WINS info. That is the most common cause of failed replication in NT4 (personal experience.) TTFN, Bill -Original Message- From: Juan Blanco [mailto:[EMAIL PROTECTED]] Sent: Sunday, January 27, 2002 10:51 AM To: [EMAIL PROTECTED] Subject: Director Replication - NT4.0 via a Wan Help [7:33373] Team, I have the following problem, I am setting up a director replication in which I will be able to replicate all users login scripts regardless of how authentication is done by the PDC or any BDC. Everything is configured properly (directory replication) and works without problem at the Frame-Relay Hub but it does not work at any of the Frame-Relay spokes, It is not working accross the WAN. Any tips or suggestion is appreciated. Network logical layout: Windows NT 4.0 One Domain 7 sites via Frame-Relay Hub-and-Spoke The network is fully functional except directory replication Thanks, Juan Blanco MCSE, CCNA, CCNP, CCDA, CCDP(one day CCIE) Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=33398&t=33398 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: MCSE vs. CCNA/CCNP [7:23471]
I have been asked this question a lot. My answer is, as with a lot of stuff... It depends. What do you want to do for a living? If you want to do server stuff, desktop support, hell desk, email, general admin and get blamed for everything that goes wrong with the LAN, then pursue the MCSE. If you want to do LAN, WAN, Ethernet, VoIP, pull wires, terminate cables, and get blamed for everything that goes wrong with the email\F&P\password\database, then go after the Cisco stuff. And there is another option If you want to get blamed for everything, get both! Nothing carries weight like experience, regardless of certification. TTFN, Bill 'It's not my fault this time' Pearch, Anchorage AK -Original Message- From: Thomas N. [mailto:[EMAIL PROTECTED]] Sent: Thursday, October 18, 2001 6:28 PM To: [EMAIL PROTECTED] Subject: MCSE vs. CCNA/CCNP [7:23471] Hi All, I know this may be a stupid question, but I just wanna know your feeling in comparing between the value of MCSE and CCNA/CCNP certifications. If you are a hiring manager or a technical person who handles the interviewing, what certification is more value or more "weight" to you...? Cheers, Thomas N. Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=23487&t=23471 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
OT: Bay BLN Documentation [7:24620]
Searching for BLN Documentation - came up empty on www.nortel.com Anyone know where the BLN docs can be found? TIA, Bill in Anchorage Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=24620&t=24620 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
