RE: add a 3rd T1 [7:51304]
Group, Lets say I am using 2 T1's point to point from my hub to a spoke site. Currently load balancing through equal paths and eigrp. If this is reaching max capacity quickly, what options are right to explore to increase the WAN capacity from this foundation of dual T1's. Most spoke sites are running a cisco 2621 and the core is working with a 7513, with some serial ports available. thanks in advance for any thoughts provided ! Jason Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=51304t=51304 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: oc3 config [7:37587]
Guys, I have been reading on the list for sometime, and I am always in awe. Anyone out there know a quick and dirty trick to configure a point to point ATM OC3 between two cisco routers? the line is offered by verizon and I am using 2 7500 cisco routers. help. thanks! jason Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=37587t=37587 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: How would you design a Network ? [7:32067] wrap up... [7:32155]
thanks for the good feedback from the list and madman, chuck, howard, and steve. I admit the static routes work efficiently, and they do the load balancing as required. It just seems a bit uncool to be all static , that's all. If we go any direction it will probably be with eigrp, I like the idea of the WAN update controls inherent when forced to carrying IPX/SPX to some sites from the core. i could have done without the archive crack from patrick. ;-) jason -Original Message- From: Chuck Larrieu [mailto:[EMAIL PROTECTED]] Sent: Tuesday, January 15, 2002 05:25 PM To: [EMAIL PROTECTED] Subject: Re: How would you design a Network ? [7:32067] why do you think you need to change? seriously? what would dynamic routing give you that you don't have now - in terms of stability and the like? it might seem an odd thing to say, but I believe that dynamic routing in small environments, and maybe even in some larger environments, is over rated, no matter whose routers or what routing protocols you use. BTW, I am personally acquainted with a portion of the network of a very large technology company that consists entirely of static routes. Over 3000 of them. They had a particular good reason for doing it this way. But my point is that there are considerations other than because you can or because you want to Chuck Bullock, Jason wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... Listers. I would like to make some routing changes to a mostly static routing environment. Currently everything is either routed via default gateway, or static route statements. the environment consists of about 30 remote point to point WAN sites, with most data traffic consisting of IP. We have several sites on dual T1's, and all sites are terminating at a central corporate location. So a big star network. The vendor of choice is cisco for routing and switching. Anyone see OSPF, EIGRP, BGP, IGRP, ISIS as the way to go? I would like to make this network more dynamic, just having a hard time justifying the move. All thoughts appreciated! thanks, Jason Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=32155t=32155 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: How would you design a Network ? [7:32067]
Listers. I would like to make some routing changes to a mostly static routing environment. Currently everything is either routed via default gateway, or static route statements. the environment consists of about 30 remote point to point WAN sites, with most data traffic consisting of IP. We have several sites on dual T1's, and all sites are terminating at a central corporate location. So a big star network. The vendor of choice is cisco for routing and switching. Anyone see OSPF, EIGRP, BGP, IGRP, ISIS as the way to go? I would like to make this network more dynamic, just having a hard time justifying the move. All thoughts appreciated! thanks, Jason Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=32067t=32067 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: SSL Accelerators [7:30724]
tell you what the f5 bigip still works very nice... -Original Message- From: matt shiite [mailto:[EMAIL PROTECTED]] Sent: Wednesday, January 02, 2002 07:44 PM To: [EMAIL PROTECTED] Subject: Re: SSL Accelerators [7:30724] Personnally I have used the Alteon series loadbalancers with their ISD ssl accelerator. I can't complain...they have worked like a champ. Just another option for ya :) ms --- Gaz wrote: Not providing many/any answers here I'm afraid - just asking more questions. Is SSL that suitable for caching? I would have thought that most SSL traffic would be unique (Session ID's/transaction info etc). That's not a cocky question, I really don't know. I suppose there will be static content within the SSL pages. I've used Intel SSL accelerators which seem to perform pretty well. We also do a fair bit of load balancing with Foundry Networks kit (Server Irons/Big Irons) and they're pretty nippy and pretty cheap compared to Cisco, and have the advantage that their CLI is very close to Cisco. I suppose it depends what scale you're doing it on. From what I've seen of the Cisco CSS (Arrowpoint kit) they seem to offer greater functionality/flexibility than Foundry, but not seen much of them working in anger yet. Be interesting to hear what Stratacache really mean by caching content in SSL-ready format. Gaz John Neiberger wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... We are looking at buying some new load balancing switches and new cache engines and somewhere in that mix we want to add SSL acceleration. One vendor that we're looking at sells load balancing switches with SSL acceleration built-in. Of course, they really like their way of doing this. The other vendor has a cache engine with SSL acceleration and they say there is a significant performance increase by caching content in SSL-ready format. Do any of you have any thoughts here? The first vendor is F5 and I really like the looks of their Big IP series. The second vendor is Stratacache and I really don't know much about them despite having talked to them about this. :-) Any tips? Thanks, John [EMAIL PROTECTED] __ Do You Yahoo!? Send your FREE holiday greetings online! http://greetings.yahoo.com Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=30741t=30724 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Switch types for BCMSN [7:29391]
right on with the menu driven on the early 1900's ... they are goofy. jason -Original Message- From: Daniel Cotts [mailto:[EMAIL PROTECTED]] Sent: Monday, December 17, 2001 02:48 PM To: [EMAIL PROTECTED] Subject: RE: Switch types for BCMSN [7:29391] Cisco has had two releases of the 2900XL series. The early ones were deeper and (I believe) used a 9 pin console cable. I seem to remember that they did not have the XL logo. Confirmation/denial requested from the list. For set based command switches then best to be specific: 2901, 2926. BTW 4000s are set based. 3500XL are IOS based. -Original Message- From: John Neiberger [mailto:[EMAIL PROTECTED]] Sent: Monday, December 17, 2001 1:14 PM To: [EMAIL PROTECTED] Subject: Re: Switch types for BCMSN [7:29391] The 1900 series is also menu-driven. To make things more confusing, their IOS-type command set is different than the IOS-like commands on the 2900XL series. John Dennis Laganiere 12/17/01 11:45:33 AM I'm trying to sort out once-and-for-all where the demarcation line is between families of switches. Here's what I've got so far: IOS-Based Cat 1900 series Cat 2820 series Cat 2900XL series Set-based Cat5000 series Cat 6000 series Cat 6500 series Cat 2900 However, the 2900XL uses different commands for trunking, portfast and uplinkfast then the other IOS based switches. Does that sound right? --- Dennis Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=29402t=29391 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: recomendations on cat 5 type for data center, requested. [7:28441]
great info on the cam table commands! question: I would like to hear from the list members so inclined to read and respond to this meager cabling question. With a new data center in mind, (probably gig Ethernet over all 4 pairs of copper) is there a call to use cat 5 Shielded cable due to the surrounding equipment, interference, etc... This seems odd to me, I am thinking just go with Unshielded Twisted Pair on the Cat 5 runs from say the servers to the switch, and anywhere not utilizing fiber. Anyone have any experience with shielded TP for cat 5? Is this a real solution, and is it necessary? Thanks in advance, the list is always entertaining~! Jason exert from cisco.com Shielded twisted-pair cable is the most commonly used cable in Token-Ring environments. The media interface connectors (MICs) and baluns---used to connect shielded twisted-pair and unshielded twisted-pair cabling---create a loopback when they are disconnected; the loopback might cause anomalies with the switch. Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=28441t=28441 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: VPN between Checkpoint and Pix [7:27787]
do a search on the cco and this comes up. http://www.cisco.com/warp/public/707/cp-r.shtml jason -Original Message- From: Ramesh c [mailto:[EMAIL PROTECTED]] Sent: Friday, November 30, 2001 05:04 AM To: [EMAIL PROTECTED] Subject: VPN between Checkpoint and Pix [7:27787] Hi guys, Is there any site which give details(Configuration,specs)abt VPN between Pix firewall and checkpt firewall using IPSec. TIA Cheers Ramesh Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=27798t=27787 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: IPX stands for- PIX Private Internet Exchange [7:27647]
Novell Internet Packet Exchange (IPX) -Original Message- From: Patrick Ramsey [mailto:[EMAIL PROTECTED]] Sent: Thursday, November 29, 2001 12:32 PM To: [EMAIL PROTECTED] Subject: Re: IPX stands for- PIX Private Internet Exchange [7:27647] heh what? ipx is a protocol mlh 11/29/01 12:19AM IPX stands for - PIX Private Internet Exchange (Cisco) Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=27709t=27647 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Suggestions on setting up a remote site on a semi-trusted [7:27417]
Hi listers. could sure use some help. I am trying to identify all the potential ports to permit through my acl's to allow PC's to connect from a vendors LAN to my LAN. The PC's will need to authenticate on my lan to the pdc to utilize a sql server application and ms exchange. The catch, the vendor will put all the pc's on a single subnet, but will not allow a single port not defined as required through their acl. If there were not any port restrictions, no problem, but we work with what we can. thanks! jason lan -- vendor router -- my router - lan with sql, and pdc Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=27417t=27417 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: FastEtherchannel. from cat 6009 to a 7513 with 2 fast e [7:27066]
I did check the archives on this one. There has been much talk of fast ether channel for sure. But I did not find a definitive answer, so please humor me for this question on Fast Ether channel. I am configuring Fast Ether channel from a 7513 with 2 fast e ports to a cat 6009 with 2 fast e ports. I figure it should be an easy config, with a single vlan 1 on the cat 6009. So here is a config that i think will work. 7513# int port-channel 1 ip address x.x.x.x 255.255.254.0 ipx network XX ip helper-address x.x.x.x (dhcp server) int fa 0/0 channel-group 1 int fa0/1 channel-group 1 cat 6009# set port channel x/x-x auto (connected ports to router with cat5 straight through cables) that should do it? anythoughts would be very appreciated! thanks. jason Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=27066t=27066 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Passed CCIE Written, life is good [7:26584]
True, the written exam is tough, but really all about understanding rif and dlsw technologies. From there it comes down to memorizing the questions and taking the test a few times. I know guys that took that thing over 8 times in a row, just to pass it. I just got lucky and happened to pass it on the first time. Been a few months, and still have not scheduled the daunting lab though. jason -Original Message- From: Logan, Harold [mailto:[EMAIL PROTECTED]] Sent: Tuesday, November 20, 2001 11:23 AM To: [EMAIL PROTECTED] Subject: RE: Passed CCIE Written, life is good [7:26584] I would rate the IE written as much more difficult than the CCNP Exams, and slightly more difficult than the CID exam. Hal Logan Network Specialist / Adjunct Faculty Computing and Engineering Technology Manatee Community College -Original Message- From: Henk Wolf [mailto:[EMAIL PROTECTED]] Sent: Sunday, November 18, 2001 8:50 AM To: [EMAIL PROTECTED] Subject: RE: Passed CCIE Written, life is good [7:26584] Tnx for the feedback. Did you do CCNP / CCDP as well? If so how do these exams compare to the Written CCIE? Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=26868t=26584 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: CPU Usage - How Much Is Too Much? [7:26739]
I am going through this now. We are seeing anywhere from 1% to 20% on routers, and 25% to 65% on the switches as acceptable during normal hours of business. jason -Original Message- From: Andrew Michael [mailto:[EMAIL PROTECTED]] Sent: Monday, November 19, 2001 01:32 PM To: [EMAIL PROTECTED] Subject: CPU Usage - How Much Is Too Much? [7:26739] Hi everyone. Percentage-wise, what is the general consensus on excessive CPU usage on a router? Thanks in advance. Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=26743t=26739 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: 6500 conditions. [7:26272]
Hey there. dig the list, always have. I am looking to confirm a rumor on the cat 6513 switch. I was thinking of doing gig Ethernet from my server farm to the switch through the core. Only problem, is I am looking at like 70 servers each with a gig port, hopefully Ethernet. This is about 5 blades in the cat 6513, with 16 ports per blade. Now the rumor. Sounds like cisco's cat 6513 will only support 30 gig backplane for the gig Ethernet line cards. This means theoretical maxing out the switch with 30 Ethernet gig ports to servers running gig nic's. Has anyone else heard this? I think the gig fiber solution scales to a 250 gig backplane, but this gig Ethernet limitation concerns me thanks for all responses in advance! jason Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=26272t=26272 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: loopback the WIC card, how is it done?
Hey Listers. I was thinking about this cool thing one of the cisco TAC engineers did when helping me troubleshoot a tricky network problem a few months ago. They looped up my serial interface on a 2600 to verify the WIC card was working properly, and that the attached CSU was not faulty. They configured the WIC interface to show up and up , even though there T1 was down. The problem is , I can not remember the command sets that were run to make this work. ! Anyone know this one? ugh. jason -Original Message- From: Tony van Ree To: David A. Lauer; [EMAIL PROTECTED] Sent: 3/19/2001 4:17 PM Subject: RE: loopback test Hi, If you want to check your protocol stack you should be able to ping yourself, check you ip interfaces and/or check your route table (assuming IP is used). There are a number of utilities that check network cards. Teunis Hobart, Tasmania Australia On Monday, March 19, 2001 at 07:56:26 AM, David A. Lauer wrote: Why would you need to? Do you have a link light at the interface port and the hub/switch? Does the interface show Interface UP line Protocol up? Cat 5 ethernet uses the 568B pinout for the RJ45 connectors. You could create loopback plug by cross-connecting pins 1-3 and 2-6. -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of zd z Sent: Monday, March 19, 2001 4:26 AM To: [EMAIL PROTECTED] Subject: loopback test Is there any one knows how to do the loopback test on ethernet or fastethernet port ? __ Do You Yahoo!? Get email at your own domain with Yahoo! Mail. http://personal.mail.yahoo.com/ _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] -- www.tasmail.com _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: VPNing out of a LAN
Mark, I just got some help from the group, and cooked up a config to support this exact solution you are looking into. email me off-line, and I can send you the config. jason -Original Message- From: Gordon T. White [mailto:[EMAIL PROTECTED]] Sent: Friday, March 02, 2001 3:16 PM To: [EMAIL PROTECTED] Subject: Re: VPNing out of a LAN sounds like you just need to let ISAKMP and ESP packets to/from that particular host. you may have some issues if you are using private address space behind the pix. m N wrote: Hi, Is it possible to configure our Pix 520 to be able to create a sole VPN connection on the LAN itself? In other words, we want to have one person connect to another VPN via his work computer on the company LAN. Right now we know that we cannot create a VPN connection from our desktops to another remote network while we are on our company network. But for one user, is it possible to configure PIX to allow him to go through our LAN/WAN without having him have to use a modem to dialup and go through an ISP? Any help would be appreciated! Thanks. Mark __ Do You Yahoo!? Get email at your own domain with Yahoo! Mail. http://personal.mail.yahoo.com/ _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: How to setup a cisco secure VPN client with a PIX 515 only?
Hey list, I want to check to see if there was a member of the list that has put this type of solution together. I am running a cisco PIX 515 with 4.4 os and no failover. We have clients that will use a local ISP to dial up internet connectivity, and they then want to vpn into our corporate network. I have purchased the cisco Secure VPN software for the clients and I am looking for the best way to configure the PIX as the VPN endpoint for the clients coming from the internet. Anyone done this kind of thing successfully, ? want to share some pointers? thanks, jason _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: VPN and NAT
Tony, What are you using as your vpn end point, a pix / concentrator ? With the two you will need to create a static map in the nat table to direct the vpn client request to the proper device behind the nat table. you need the ike client to perform this with win 2k, I have this working into a pix vpn solution. jason -Original Message- From: Tony Russell [mailto:[EMAIL PROTECTED]] Sent: Thursday, February 22, 2001 11:28 AM To: '[EMAIL PROTECTED]' Subject: VPN and NAT I am trying to use a vpn client to get to our corporate network. I am using a private address space and natting at my router to provide Internet access. When I try to VPN from a workstation on my LAN it fails. Has anyone gotten a Windows 2000 machine to VPN when NAT is involved. What will it take to make this work? Tony Russell Network Engineer IBEAM Broadcasting _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: solar winds registration
Hey Paul, thanks for clearing that up. What is that copyright holder's address you speak off? Jason -Original Message- From: Paul Borghese [mailto:[EMAIL PROTECTED]] Sent: Thursday, July 27, 2000 5:06 PM To: [EMAIL PROTECTED] Subject: Re: solar winds registration This list does not promote or condone the illegal distribution of Copyrighted software. Please do not respond with the registration key. A copy of this message has been sent to the copyright holder. Paul Borghese - Original Message - From: "Bullock, Jason" [EMAIL PROTECTED] To: [EMAIL PROTECTED] Sent: Thursday, July 27, 2000 1:17 PM Subject: RE: solar winds registration Hey Group, Anyone have a registration key for the Solar Winds Network Discovery suite? Jason ___ UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html FAQ, list archives, and subscription info: http://www.groupstudy.com Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] ___ UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html FAQ, list archives, and subscription info: http://www.groupstudy.com Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] ___ UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html FAQ, list archives, and subscription info: http://www.groupstudy.com Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: solar winds registration
Hey Group, Anyone have a registration key for the Solar Winds Network Discovery suite? Jason ___ UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html FAQ, list archives, and subscription info: http://www.groupstudy.com Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: NAT and IOS firewall
Title: Access-Lists Hey there, I have seen several posts to the list dealing with NAT, but I am looking for a config idea on setting up NAT with an IOS firewall feature set all on the same 2600. Anyone out there, have an positive or negative experiences with this design idea? I am also looking for some config parameters ! thanks, Jason