Pix firewall and mail server - bad combo? [7:4748]
Hi all - I'm encountering some problems with mail delivery, and it seems that the Pix firewall may be the culprit. Here are the symptoms (IP and domain names have ben changed to protect the inept): - telnet to port 25 from a machine not passing through the pix and you get a standard response: 220 mail.mydomain.com ESMTP server (Post.Office v3.5.3 release 223) ready Wed, 16 May 2001 14:23:12 -0700 ehlo mydomain.com (my input) 250-mail.mydomain.com 250-HELP 250-EXPN 250-XREMOTEQUEUE 250-ETRN 250-PIPELINING 250 SIZE - telnet to port 25 from a machine that passes through the Pix, and you get this mess: telnet mail.mydomain.com 25 Trying 172.16.16.16... Connected to mail.mydomain.com. Escape character is '^]'. 220 22**0***20***00**00*0***200*2**0*00 ehlo mydomain.com (my input) 500 Command unknown: '' In the Pix config I have the following relevant entries (IP addresses have been changed): fixup protocol smtp 25 static (inside,outside) 172.16.16.16 172.16.16.16 netmask 255.255.255.255 0 0 conduit permit tcp host 172.16.16.16 eq smtp any conduit permit tcp host 172.16.16.16 eq pop3 any We're also getting log entries on the mail server that indicate timeouts - the biggest problem is that some of my users are getting repeats of messages - sometimes hundreds of them over the course of a week or more. Ideas? Doug [EMAIL PROTECTED] = Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=4748&t=4748 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Passed Switching 2.0 Exam [7:8647]
My heavens, what a horrible test. It felt like there was virtually nothing on MLS and multicast, but they were very interested in my choices for switches in different scenarios, what hardware could do what and what lights blinked when as a router powered up or was connected to a switch. And trunking - lots and lots of trunking. What do you need on this end vs. that end of a trunk, what if this is wrong, encapsulations... egad. Some of the worst wording on a test I've ever seen. Five questions into it I was taking notes so I would be better prepared when I came to take it again. Luckily I won't have to. Stuy materials: - Cisco LAN Switching (Cisco Press) - Exam Prep: Switching (Coriolis) - CCNP: Switching (Osborne) - Boson practice exams (www.boson.com) Good luck! Doug [EMAIL PROTECTED] = Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=8647&t=8647 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
MCNS Exam taken [7:28317]
I took the MCNS exam yesterday and found it to be one of the best written, most straightforward tests I've taken so far. The questions were well written and made sense for the most part. I only found myself scratching my head at one or two. The MCNS course materials (I took it through Global Knowledge) were a great source: http://www.amazon.com/exec/obidos/ASIN/1578701031/qid=1007671411/sr=8-1/ref=sr_8_7_1/103-8821679-8073459 (mind the wrap) and I'd recommend Boson test #2 - some questions were virtually word-for-word. One down, three to go. Doug [EMAIL PROTECTED] = Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=28317&t=28317 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: OT: Gawd I hate my life ;-> [7:31817]
At 11:39 PM 1/13/2002 -0500, you wrote: sigh. have not run into this before, not in two trips through the lab, not on any number of routers and IOS versions, both at home and in customer installations. Anyone got any clue what show IP protocol-discovery does? Google has a cached page on this: http://www.google.com/search?q=cache:adIy4mIe-I0C:www.cisco.com/univercd/cc/td/doc/product/software/ios122/122cgcr/fqos_c/fqcprt1/qcfnbar.htm+show+IP+protocol-discovery&hl=en Mind the wrap. But the closest they get to that command is: Router# show ip nbar protocol-discovery Displays the statistics for all interfaces on which Protocol Discovery is enabled. I don't know if this helps, but there ya go. BTW - For the life of me, I couldn't figure out why you hated your wife because of this issue. I really need to read the subject lines better. Doug [EMAIL PROTECTED] = Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=31826&t=31817 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Passed CSIDS - now a CSS1 [7:41227]
Just finished the CSIDS exam, completing the series of four to become a CSS1. My take, if anyone is interested, is below, and tests are in the order I took them: MCNS - I'm glad I took this one first, as it covered all the material of the next two exams. CSPFA - A slightly more focused rehash of MCNS. I referred back to MCNS quite a bit to clarify info. CSVPN - Again, most everything was covered in CSPFA and MCNS CSIDS - All in all, the easiest of the exams. In all cases, the only prep material I had was the courseware and Boson exams. I've worked with the Pix for 3 years, but unfortunately have no hands-on exposure to the CSDIS hardware. Almost all the tests were difficult, none terribly so, and the CSIDS exam was just this side of a joke. The tests were also better written than the CCNP/CCNA exams I've taken. If I wasn't so tired, this would be louder: woo hoo. Doug [EMAIL PROTECTED] = Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=41227&t=41227 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
OT - CCNA and CCNP books for sale [7:42484]
Hopefully appropriate, I have the following books for sale: Exam Cram CCNA (640-507) Sybex CCNA Study Guide, CD included (640-507) Osborne CCNP Routing Study Guide, sorry, CD is lost (640-503) Sybex Routing Study Guide, CD included (640-503) Osborne CCNP Switching Study Guide, CD included (640-504) It appears that Amazon sells these for $34, so does $25 sound fair if US shipping is included? The Exam Cram book is free with any purchase. Doug [EMAIL PROTECTED] = Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=42484&t=42484 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
