Re: Router Flight Cases

[Cthulu, CCIE Candidate]

Mark,

Don't make me get on a plane and come over there;)  You don't have those
tanks behind you anymore;)

I went to the Mars Music store in KC, and found a SKB case for $199, and
purchased a 19-inch powerstrip for $59.   This case has a back and front
19inch rack inside, and meets flight standards, so it can fly I look
forward to lugging the 6-9 routers I have around the airport.   The security
check should be a breeze..."please turn on those blue computers so that we
know it's not a bomb."

Many, many, many thanks to all who responded and gave me some great leads!
Thanks to y'all, I was able to find exactly what I need.


Charles


P.S  Regarding "Mark's AGS"... I will be selling that on ebay in a few
weeks, and donating the proceeds to the American Cancer Society.   This AGS
router, which has IOS 11.x chips, 6 serial ports, 4 token ring ports, and 2
ethernet port ports, is a little "tempermental":  if it has been sitting
unused for a few days, you may need to reseat the cards to make it come up.
It is also LOUD, and I , being the deaf guy, am complaining so that tells
you something.   Other than that, works great!Email me if interested.

P.S.S  No, this AGS does NOT belong to Mark... he was making a funny at my
expense and attempting to muddy the legal waters... he's so Al Gore
sometimes!





""ML"" <[EMAIL PROTECTED]> wrote in message
8vsj17$jao$[EMAIL PROTECTED]">news:8vsj17$jao$[EMAIL PROTECTED]...
> Hey Man isnt that my AGS, HA HA, I think I left mine back at the old site.
>
> ML
> "Cthulu, CCIE Candidate" <[EMAIL PROTECTED]> wrote in message
> 8vbhjf$84i$[EMAIL PROTECTED]">news:8vbhjf$84i$[EMAIL PROTECTED]...
> > Hi, all,
> >
> > Y'all recall that I posted a few weeks ago for a router cabinet.  Well,
I
> > got some good leads, and then my circumstances have changed...again.   I
> > will be spending alot of time in KC in a corporate apartment for the
next
> > 2-8 months,  so rack mounting my routers at home won't do me any good.
I
> > want to take them with me on the plane to my new quarters.
> >
> > Does anyone know where I can buy one of those flight cases with the 19
> inch
> > rack inside that are about 3-4 feet high, and can can hold about 8 2500
> > sized routers? (The AGS will be staying at home.)   I plan on taking my
> > routers with me so that I can while the hours away with study.  The case
I
> > am looking for is very similar to what the instructors use to transport
> > their routers from class to class.   Most of us have seen them:  the
> > instructor pops the top and inside are the cabled routers ready for use.
> >
> > I have been all over the web, and can not find exactly what I need.  I
> don't
> > even know if flight case is the right word.
> >
> >
> > TIA,
> >
> > Charles
> >
> >
> >
> >
> > _
> > FAQ, list archives, and subscription info:
> http://www.groupstudy.com/list/cisco.html
> > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
> >
>
>
> _
> FAQ, list archives, and subscription info:
http://www.groupstudy.com/list/cisco.html
> Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
>


_
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: Headaches

[Cthulu, CCIE Candidate]

I used to get headaches due to the CIA beaming EMP at me.  After I wrapped
my head in aluminum foil, I eliminated the headaches and prevented them from
erasing the configs on my AGS.  Are you, by chance, close to Langley?


On a more serious note, you may be more senstive to EM and RF than most
folks.  If it persists, you should see your doctor and get it checked out.
You can reduce your exposure to the cell phone by using a headset which will
allow you to move the phone away from your head.  Of course, if you put the
phone in your pocket and use it in this manner, that can cause another slew
of problems I won't get into...

Charles




""Jason Roysdon"" <[EMAIL PROTECTED]> wrote in message
900aqs$kju$[EMAIL PROTECTED]">news:900aqs$kju$[EMAIL PROTECTED]...
> Troll, troll, troll.
>
> --
> Jason Roysdon, CCNA, MCSE, CNA, Network+, A+
> List email: [EMAIL PROTECTED]
> Homepage: http://jason.artoo.net/
> Cisco resources: http://r2cisco.artoo.net/
>
>
> "networker" <[EMAIL PROTECTED]> wrote in message
> [EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
> >
> > Is it just me?... or does anyone else get headache when using wireless
> > LAN technology... specifically the aironet 340's (802.11B DS).  I tried
> > turning down the signal strength to 1 mW (from the default of 35 mW)...
> > and that helps a bit, but still it's scary to think that there's enough
> > radiation that I can feel it.
> >
> > Also, I get headaches when using my nextel mobile phone too.
> >
> > Some of my co-workers get headaches too... but not everyone is affected.
> >
> > _
> > FAQ, list archives, and subscription info:
> http://www.groupstudy.com/list/cisco.html
> > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
> >
>
>
> _
> FAQ, list archives, and subscription info:
http://www.groupstudy.com/list/cisco.html
> Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
>


_
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: CCIE R/S written exam Frivilous Reply

[Cthulu, CCIE Candidate]

Eric,

Don't study...  studying is bad.  My score was actually better when I didn't
study.  In fact, since we don't have a President, I am issuing a ban on all
studying.  Anyone reading this message must stop studying and go see
Charley's Angles or Little Nicky.

If Bush can declare himself President, why can't I forbid everyone from
studying?

LOL  (  Flames to [EMAIL PROTECTED]  )

Sorry too much OSPF and EIGRP is making me cracky!  I think my NSSA LSA
just converted to a feasible successor.

Charles

P.S.  If the Boson test is poorly phrased with ambiguous answers, get it...
that means it is close to the real thing.



_
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: CCIE written qualification

[Cthulu, CCIE Candidate]

Don't study for it.  Just take it, and read the questions carefully.

Actually, pretend that you have already taken it, and study for the lab
instead, then when you feel ready, take the written.  Since the lab is much
harder, the written will be a breeze.

Good luck,

Charles


""Songbin Wei"" <[EMAIL PROTECTED]> wrote in message
[EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
> Can anybody provide me some information on how to pass the ccie written
> exam? Thanks.
>
>

_
> Get more from the Web.  FREE MSN Explorer download :
http://explorer.msn.com
>
> _
> FAQ, list archives, and subscription info:
http://www.groupstudy.com/list/cisco.html
> Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
>


_
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: Off Topic - Ask Miss Manners - Protocol and Behaviour

[Cthulu, CCIE Candidate]

Chuck,

Buddy, you don't need to stand on ceremony with me... geez!  And calling me
a guru too!   High praise!  Sure, I will be happy to sign your copy of Top
Down Network Design, and that other book I wrote under the pseudonym, Howard
Berkowitz.   LOL

All kidding aside, if I were the author in question, I would get a kick out
of being asked to autograph a book I had written.   Regards the nodding, nod
every 5 sentence so it does not seem excessive.  Disagree with every 10th
statement to keep the conversation interesting for the celebrity...


Charles

""Chuck Larrieu"" <[EMAIL PROTECTED]> wrote in message
001701c05fd3$ad376200$[EMAIL PROTECTED]">news:001701c05fd3$ad376200$[EMAIL PROTECTED]...
> Dear Miss Groupstudy Manners,
>
> I have the privilege and good fortune of attending a meeting at which
> someone who is recognized as one of the top people in the field, and
author
> of a well received book on the subject, will also be in attendance.
>
> My question is this: is it considered rude, not to mention obsequious, to
> whip out my copy of said person's book and ask for an autograph? Should
this
> be done during the introductions, at the first break, or out in the
parking
> lot?
>
> Also, how do I keep from hurting myself nodding my head in agreement with
> said guru?
>
> Thanks.
>
> Chuck
> --
> I am Locutus, a CCIE Lab Proctor. Xx_Brain_dumps_xX are futile. Your life
as
> it has been is over ( if you hope to pass ) From this time forward, you
will
> study US!
> ( apologies to the folks at Star Trek TNG )
>
> _
> FAQ, list archives, and subscription info:
http://www.groupstudy.com/list/cisco.html
> Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
>


_
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: ATM CONFIG

[Cthulu, CCIE Candidate]

Gil,


You did not give a lot of info here.  What is between the sides;  from your
email, I got this picture:

7206 ATM-Interface <-->'ACE A RAD'      'ACE A
RAD' <--> ATM-Interface Cat Switch


What is that "ACE a RAD" thing?   Is that your ATM switch?Are you
leasing ATM from a provider?  If so, unlikely that you have a SVC;
therefore, we can deal with PVC configuration.  Your provider, if this is
the case, should have given you the PVC's you are to use.



If you tell me more, I may be able to help.  Are you trying to configure
PVCs?  SVCs?  LANE?Do you own and operate that ACE thing?   Are you
leasing from a provider?I repeated myself!

Charles



First though
<[EMAIL PROTECTED]> wrote in message
D528DF24AEBCD311A17700508B92CBBF101F4F@NEWMAN">news:D528DF24AEBCD311A17700508B92CBBF101F4F@NEWMAN...
> Hi all,
>
>
>I need to configure an ATM connection between two sites.
> On one site their is a Cisco 7206 router with an ATM card connected to
> something called ACE a RAD box that connects me to the other side, on the
> other side their is an ACE box that connect to a Cisco Catalyst 2900XL
> switch L3 with an ATM card as well.
> What I need to do is, and I don't have a clue how to do, to configure them
> both to talk IP.
> I need your help in configuring it.
> I tried configuring it in the switch but in the VPI part he is telling me
> that I can only enter the value of 0.
>
>
> Help will be most appriciated.
>
>
>   thank you in advance
>
>
>GIL
> CCNA/CCDA
>
> **NOTE: New CCNA/CCDA List has been formed. For more information go to
> http://www.groupstudy.com/list/Associates.html
> _
> UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html
> FAQ, list archives, and subscription info: http://www.groupstudy.com
> Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
>


**NOTE: New CCNA/CCDA List has been formed. For more information go to
http://www.groupstudy.com/list/Associates.html
_
UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html
FAQ, list archives, and subscription info: http://www.groupstudy.com
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: Help about a technical interview I had PLEASE!

[Cthulu, CCIE Candidate]

There is also the possiblity that the CCIE was testing you, to see how you
would handle one of your fellow workers spouting wrong information.

I have sometimes deliberately and incorrectly stated some wrong information
to find out exactly how much someone knew about something, and how they
would handle it to hear someone else give out incorrect information.

It 's like an experienced mechanic asking a new mechanic  "How often do you
change the flush the radiator in a 1969 Volkswagen Beetle?"  as a way of
determing what they know.

Just a thought!

Charles

P.S.  You don't:  the 1969 beetle does not have a radiator!


""Leigh Anne Chisholm"" <[EMAIL PROTECTED]> wrote in message
001c01c01f48$07320980$[EMAIL PROTECTED]">news:001c01c01f48$07320980$[EMAIL PROTECTED]...
> John/Sam
>
> I interviewed with an organization recently and completely blew one
question.  I was asked what in an SMTP header will help troubleshoot email
delivery problems.  Now I immediately start thinking about framing formats,
and I don't know the frame format of an SMTP header.  I panic.  I say I
don't know.
>
> I get home, I realize they weren't asking what field in a frame, but
rather what information in the header that you can see as plain as day that
gets tacked on to an email message.  I feel very silly...
>
> I emailed the hiring manager, and asked if this is what they were
referring to, and provided him with a few examples of when I've used the
SMTP header to troubleshoot delivery problems before.
>
> If I get the job, wonderful--they like my initiative following up.  If I
don't... oh well.  I've been thinking about changing careers, because there
are very few companies in my city that I would like to work for...
>
> John--what if the CCIE was trying to find out not just what technical
knowledge you had, but how you handled difficult situations where two people
who worked together thought differently about what was right.  Would you
defer to the CCIE just because they're a CCIE or would you take initiative
to find the correct answer?  Would you follow up?  Maybe... maybe not.  It's
hard to guess what's going on in the heads of interviewers.  I like to keep
a positive attitude and not think the worst.  I'd HATE to think a CCIE
wouldn't know simple network concepts.
>
> > -Original Message-
> > From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of
> > Sam Adams
> > Sent: Friday, September 15, 2000 10:57 AM
> > To: 'John Barnes'; [EMAIL PROTECTED]
> > Subject: RE: Help about a technical interview I had PLEASE!
> >
> >
> > John,
> >
> > Besides the technical questions, how was the chemistry between you and
the
> > interviewer?  I know I went through a recent interview and I left
> > wondering
> > if I wanted to work with the interviewer.  Needless to say, I
> > wasn't offered
> > a second interview.  Guess he felt the same.
> >
> > -Original Message-
> > From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of
> > John Barnes
> > Sent: Thursday, September 14, 2000 3:09 PM
> > To: [EMAIL PROTECTED]
> > Subject: Help about a technical interview I had PLEASE!
> >
> >
> > I had technical with a CCIE interview yesterday, and
> > I'm not really sure were to go with this.
> >
> > He asked me a lot of pretty high level questions and
> > some not so high level, the problem is, I feel some of
> > the answers he wanted were wrong.  I'm going to post
> > the questions, the answers I gave, and the answers he
> > claimed to be correct.  If I'm wrong on these, I'd
> > like to know.  If I'm right, how would you deal with
> > this kind of thing?
> >
> > 1) What is the size of a token ring frame?
> > My answer: Token ring has a variable frame size.
> > His answer: 3 bytes..
> >
> > Isn't that the size of the Token frame?
> >
> > 2) What the MTU of a token ring frame?  (Isn't this
> > about the same question as #1?)
> > My answer: slightly larger that 16K (I couldn't
> > remember the exact number)
> > His answer: about 4470 bytes .
> >
> > Ahh... what?  He claimed I was thinking about
> > FDDI.g  Ah. Who's thinking about what?
> >
> > 3) What is the decision making process involved when a
> > packet enters a router?  What three criteria are used
> > to make this decision?
> >My answer:  It depends. Is this the first
> > packet with this destination to arrive at this router?
> >  What switching mode is the router configured for.
> >
> >His answer:  Forget about that stuff. how does
> > it determine which route to use.
> >
> >My answer:  longest match in the routing table
> >
> >His answer:  What if multiple routes exist in
> > the table.
> >
> >My answer:  It depends.
> >
> >Ok...I'm gonna cut to the chase. The answer he
> > wanted was longest match, Administrative distance,
> > then metric.  Ahh.. I'm pretty sure is wrong.   The
> > router looks at AD and Metrics long before the packet
> > enters the router.  The router uses AD and metric to
> > populate the routing tabl

Re: OSPF NSSA Type 7 LSA translated into Type 5 LSA

[Cthulu, CCIE Candidate]

Define the NSSA  area as NSSA.  (on all routers in teh NSSA area;  ABR
router will do the magic).

HTH,

Charles

More specifics:

From
http://www.cisco.com/univercd/cc/td/doc/product/software/ios120/12cgcr/np1_c
/1cprt1/1cospf.htm#xtocid1066410


Configure OSPF Not So Stubby Area (NSSA)
NSSA area is similar to OSPF stub area. NSSA does not flood Type 5 external
link state advertisements (LSAs) from the core into the area, but it has the
ability of importing AS external routes in a limited fashion within the
area.

NSSA allows importing of Type 7 AS external routes within NSSA area by
redistribution. These Type 7 LSAs are translated into Type 5 LSAs by NSSA
ABR which are flooded throughout the whole routing domain. Summarization and
filtering are supported during the translation.

Use NSSA to simplify administration if you are an Internet service provider
(ISP), or a network administrator that must connect a central site using
OSPF to a remote site that is using a different routing protocol.

Prior to NSSA, the connection between the corporate site border router and
the remote router could not be run as OSPF stub area because routes for the
remote site cannot be redistributed into stub area. A simple protocol like
RIP is usually run and handle the redistribution. This meant maintaining two
routing protocols. With NSSA, you can extend OSPF to cover the remote
connection by defining the area between the corporate router and the remote
router as an NSSA.

In router configuration mode, use the following command to specify area
parameters as needed to configure OSPF NSSA:

Command
Purpose
area area-id nssa [no-redistribution] [default-information-originate]
Define an area to be NSSA.




In router configuration mode on the ABR, use the following command to
control summarization and filtering of Type 7 LSA into Type 5 LSA:

Command
Purpose
summary address prefix mask [not advertise] [tag tag]
(Optional) Control the summarization and filtering during the translation



""Gerry Lian"" <[EMAIL PROTECTED]> wrote in message
000e01c020fe$47fb2fc0$[EMAIL PROTECTED]">news:000e01c020fe$47fb2fc0$[EMAIL PROTECTED]...
> Hi,
> Do you know how to translate NSSA type 7 LSA to Type 5 LSA ?
> NSSA type 7 will not be sent to OSPF backbone unless it can be translated
> from type 7(N1,N2) to type 5(E1,E2) at ABR.
> I don't know what command can do that.
>
> Thanks a lot
>
> Gerry Lian
>
> **NOTE: New CCNA/CCDA List has been formed. For more information go to
> http://www.groupstudy.com/list/Associates.html
> _
> UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html
> FAQ, list archives, and subscription info: http://www.groupstudy.com
> Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
>


**NOTE: New CCNA/CCDA List has been formed. For more information go to
http://www.groupstudy.com/list/Associates.html
_
UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html
FAQ, list archives, and subscription info: http://www.groupstudy.com
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: copy config answer who is John Galt

[Cthulu, CCIE Candidate]

Ayn Rand: lots of whiney characters, "oh, the weight of the world is on me.
boo hoo."

Kind a pre-Woody Allen thing...


""Dale Holmes"" <[EMAIL PROTECTED]> wrote in message
[EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
> That's correct... He is that putz from that idiotic book by the moron Ayn
> Rand...
>
>
> >From: [EMAIL PROTECTED]
> >Reply-To: [EMAIL PROTECTED]
> >To: "Stull, Cory" <[EMAIL PROTECTED]>
> >CC: [EMAIL PROTECTED], [EMAIL PROTECTED]
> >Subject: RE: copy config answer who is John Galt
> >Date: Tue, 19 Sep 2000 11:13:20 -0700
> >
> >
> >Gee. Last I checked, John Galt was a ficticious person in Ayn Rand's
"Atlas
> >Shrugged". Very popular with Libertarians.
> >http://globalfreedom.com/jg_index.html
> >
> >Karen E Young
> >ELF Technologies, Inc
> >[EMAIL PROTECTED]
> >
> >
> >
> >
> >
> > "Stull, Cory"
> > <[EMAIL PROTECTED]To: "'Louie Belt'"
> ><[EMAIL PROTECTED]>
> > >cc:
"'[EMAIL PROTECTED]'"
> ><[EMAIL PROTECTED]>
> > Sent by: Subject: RE: copy config
> >answer who is John Galt
> > nobody@groups
> > tudy.com
> >
> >
> > 09/19/2000
> > 06:11 AM
> > Please
> > respond to
> > "Stull, Cory"
> >
> >
> >
> >
> >
> >I'll bite..   John Galt is that guy who shot that guy?   Never mind.. He
> >only has two names so he can't be an assassin.  Is he a former president?
> >
> >
> >
> >-Original Message-
> >From: Louie Belt [mailto:[EMAIL PROTECTED]]
> >Sent: Monday, September 18, 2000 5:14 PM
> >To: 'Ed'; [EMAIL PROTECTED]
> >Subject: RE: copy configs
> >
> >
> >I prefer to memorize the entire config and then type it in to the second
> >router from memory - but that's just me. 
> >
> >LAB
> >
> >
> >Who is John Galt?
> >
> >
> >
> >**NOTE: New CCNA/CCDA List has been formed. For more information go to
> >http://www.groupstudy.com/list/Associates.html
> >_
> >UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html
> >FAQ, list archives, and subscription info: http://www.groupstudy.com
> >Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
> >
> >
> >
> >
> >**NOTE: New CCNA/CCDA List has been formed. For more information go to
> >http://www.groupstudy.com/list/Associates.html
> >_
> >UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html
> >FAQ, list archives, and subscription info: http://www.groupstudy.com
> >Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
>
> _
> Get Your Private, Free E-mail from MSN Hotmail at http://www.hotmail.com.
>
> Share information about yourself, create your own public profile at
> http://profiles.msn.com.
>
> **NOTE: New CCNA/CCDA List has been formed. For more information go to
> http://www.groupstudy.com/list/Associates.html
> _
> UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html
> FAQ, list archives, and subscription info: http://www.groupstudy.com
> Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
>


**NOTE: New CCNA/CCDA List has been formed. For more information go to
http://www.groupstudy.com/list/Associates.html
_
UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html
FAQ, list archives, and subscription info: http://www.groupstudy.com
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Can I picks a PIX?

[Cthulu, CCIE Candidate]

Hi, all,

Sorry for the cutesy subject header.  I just got aholt of a Pix firewall; t
was laying the office and I stumbled over it on my way to the vending
machine to pick up some Oreos.  After I ate my Oreos (a little stale, thanks
for asking), I realized that this was a Pix firewall!  I am 100% new to the
PIX, but that's irrelevant...

I immediately put it on our network like this:

My laptop  <-> Ethernet 1  PIX Firewall  Ethernet 0 <--->Catalyst
2900XL

Anyways, I am going to learn it, adn learn it good.  My question is:  can I
set up any of the interfaces to dynamically acquire an IP address via DHCP?
I want ehternet 0 to acquire an IP address from our DHCP server.

If the PIX supports it, I will put a DHCP server on it to service my laptop
on ethernet 1.  if it doesn't I am going to statically assign an IP address
to teh laptop and to ethernet 1, and run NAT to translate between
inside/outside addresses.

What am I trying to accomplish?  Nothing, just a learning experience for me.
Time to upgrade the image!


TIA,

Charles




**NOTE: New CCNA/CCDA List has been formed. For more information go to
http://www.groupstudy.com/list/Associates.html
_
UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html
FAQ, list archives, and subscription info: http://www.groupstudy.com
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: Can I picks a PIX?

[Cthulu, CCIE Candidate]

Hey, Rodgers,

Thanks!  Hope you don't mind, you are the only one to respond directly, can
you answer these?

Why would getting an IP address dynamically assigned to the PIX's outside
interface be a security risk?


Also, if the PIX can't act as a DHCP server,  what the heck is this command
for:

ip local pool

"The ip local pool command lets you create a pool of local addresses to be
used for assigning dynamic
ip addresses to remote VPN clients. The address range of this pool of local
addresses must not overlap
with any command statement that lets you specify an IP address. To delete an
address pool, use the no
ip local pool command. Use the show ip local pool command to view usage
information about the pool
of local addresses."

If I read that correctly, I can run some VPN software on my"remote" computer
and have it get an IP address from the PIX? (inside interface?)

TIA,

Charles



""Rodgers Moore"" <[EMAIL PROTECTED]> wrote in message
8qdh7m$94h$[EMAIL PROTECTED]">news:8qdh7m$94h$[EMAIL PROTECTED]...
> Nope.  Besides that would be contrary to good security policy.
>
> Rodgers Moore
>
> ""Cthulu, CCIE Candidate"" <[EMAIL PROTECTED]> wrote in message
> 8qb0n2$cip$[EMAIL PROTECTED]">news:8qb0n2$cip$[EMAIL PROTECTED]...
> > Hi, all,
> >
> > Sorry for the cutesy subject header.  I just got aholt of a Pix
firewall;
> t
> > was laying the office and I stumbled over it on my way to the vending
> > machine to pick up some Oreos.  After I ate my Oreos (a little stale,
> thanks
> > for asking), I realized that this was a Pix firewall!  I am 100% new to
> the
> > PIX, but that's irrelevant...
> >
> > I immediately put it on our network like this:
> >
> > My laptop  <-> Ethernet 1  PIX Firewall  Ethernet 0
<--->Catalyst
> > 2900XL
> >
> > Anyways, I am going to learn it, adn learn it good.  My question is:
can
> I
> > set up any of the interfaces to dynamically acquire an IP address via
> DHCP?
> > I want ehternet 0 to acquire an IP address from our DHCP server.
> >
> > If the PIX supports it, I will put a DHCP server on it to service my
> laptop
> > on ethernet 1.  if it doesn't I am going to statically assign an IP
> address
> > to teh laptop and to ethernet 1, and run NAT to translate between
> > inside/outside addresses.
> >
> > What am I trying to accomplish?  Nothing, just a learning experience for
> me.
> > Time to upgrade the image!
> >
> >
> > TIA,
> >
> > Charles
> >
> >
> >
> >
> > **NOTE: New CCNA/CCDA List has been formed. For more information go to
> > http://www.groupstudy.com/list/Associates.html
> > _
> > UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html
> > FAQ, list archives, and subscription info: http://www.groupstudy.com
> > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
> >
>
>
> **NOTE: New CCNA/CCDA List has been formed. For more information go to
> http://www.groupstudy.com/list/Associates.html
> _
> UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html
> FAQ, list archives, and subscription info: http://www.groupstudy.com
> Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
>


**NOTE: New CCNA/CCDA List has been formed. For more information go to
http://www.groupstudy.com/list/Associates.html
_
UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html
FAQ, list archives, and subscription info: http://www.groupstudy.com
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: Bye

[Cthulu, CCIE Candidate]

John,

Even though you have all the charm of a cranky pit viper with a thorn in its
butt, I really wish you would reconsider your decision to leave the group.
Your comments bring some relief from the tedium of studying, plus when you
focus on the topic, I suspect that you can really provide some good
information.

Congratulations on passing all your CCNP, etc. exams in 6 days!

Regardless of what you do, good luck!

Charles





""John Kaberna"" <[EMAIL PROTECTED]> wrote in message
009601c023ed$1cb63b60$[EMAIL PROTECTED]">news:009601c023ed$1cb63b60$[EMAIL PROTECTED]...
> Don't be mad cause you've been studying for 6 months and still haven't
> accomplished what took me a week.  :)  Keep it up though dude.  There is a
> scene in a movie that reminds me of you Juan.  See if anyone can recognize
> it.  Its not exact but a couple people will know it.
>
> Right now I'm washing lettuce.  A few more months I'll be on fries.  A
> couple of years.  And I make assistant manager.  And thats when the big
> bucks start rollin in. 
>
> - Original Message -
> From: Juan Blanco <[EMAIL PROTECTED]>
> To: 'Chris Larson' <[EMAIL PROTECTED]>; John Kaberna
> <[EMAIL PROTECTED]>; <[EMAIL PROTECTED]>
> Sent: Thursday, September 21, 2000 8:46 AM
> Subject: RE: Bye
>
>
> > That seems to me the joke of the new millennium.
> >
> > -Original Message-
> > From: Chris Larson [mailto:[EMAIL PROTECTED]]
> > Sent: Thursday, September 21, 2000 11:10 AM
> > To: John Kaberna; [EMAIL PROTECTED]
> > Subject: Re: Bye
> >
> >
> > Yeah right. YOu read all the books and passed the test in 6 days. Sure
ya
> > did.
> >
> > - Original Message -
> > From: John Kaberna 
> > To: [EMAIL PROTECTED] 
> > Sent: Thursday, September 21, 2000 1:43 AM
> > Subject: Bye
> >
> > Well the past couple weeks have been fun but reading through over 100
> emails
> > a day is too much.  I thought this list might have helped me along but
> > mostly it just wasted valuable time.  There is never a shortage of
stupid
> > questions and people that don't know how to read the archives to get 80%
> of
> > the questions answered.  If I have to read one more question asking what
> > book to read for the CCNA or some other test I'm gonna be sick.
> >
> > In the span of 6 days I read all the books and passed the pathetic CCNP.
> > What a joke that test was.  For those of you that asked me about the
> > Foundation test it was terribly easy.  Anyone that even reads the
material
> > and half understands it will pass.
> >
> > As far as the whiners, snitches, and morons you know what I think of
you.
> > People like you allow me to command a higher and higher rate every few
> > months cause no one wants to work with someone like that.  Keep it up.
I
> > even had one crybaby by the name of Louie Belt tell me he was going to
> have
> > me removed from this list and have my hotmail account terminated.  LOL.
> > Apparently he thought he was so influential that he had the power to
> > terminate my accounts just cause I called him a name.  :)  Nice try.
> >
> > For those that I've had positive interaction with feel free to email me
if
> > you have questions or want to chat.
> >
> > See ya.
> >
> > John
> >
>
> **NOTE: New CCNA/CCDA List has been formed. For more information go to
> http://www.groupstudy.com/list/Associates.html
> _
> UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html
> FAQ, list archives, and subscription info: http://www.groupstudy.com
> Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
>


**NOTE: New CCNA/CCDA List has been formed. For more information go to
http://www.groupstudy.com/list/Associates.html
_
UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html
FAQ, list archives, and subscription info: http://www.groupstudy.com
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: US DOD. How do they do it?

[Cthulu, CCIE Candidate]

You have got to be kidding!  What defence organization is this again?

"Hi, I am friendly, please tell me your secrets!  Also, can I have your
credit card number as I have never seen a Visa card before?"

Those folks that work in, for, around, over, under, and about DoD networks
are sworn to protect it, even after they leave.  Not only legally, but
morally and out of loyalty to their country.

I am forwarding your email to some folks that I think may be interested in
it.

Have a lovely day!

Charles



"wdwdawd wadwadad" <[EMAIL PROTECTED]> wrote in message
[EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
> Are there any listers with knowledge of Defense
> networks out there.  I am working with a defence type
> organisation (western world; not saddam!) and need
> info on how the US DOD use cisco in their services.
>
> For example do they rely on cisco's implementation of
> IPSEC for non classified traffic or do they just send
> in the clear on a private network.
> Do they utilise public networks.
> Do they utilise THE public network eg VPNS to remote
> sites?
> Do they outsouce portions of there network for
> "connectivity only" and implement their own controlled
> security at higher layers?
>
> I guess the minimum level of security for even
> non-class info would be 3des and classified would be
> sent on a completely seperate hardware (kgxxx)
> encryption based network.
>
> Do they utilise the catalyst range of switches and if
> so how do they maintain high levels of security at
> layer 2.  What stops the cleaner plugging in his
> lappie, dhcp'ing an address and shoot'n some nukes?
>
> Are there any US DOD public web pages on how they use
> cisco technology?
>
> There are many examples of other types of organisation
> (not in the killing industry) that also have a
> requirement for TOP SECRET levels of network security.
>  Are there any public web sites with examples of
> implementations?
>
> Thanks!
>
>
> __
> Do You Yahoo!?
> Send instant messages & get email alerts with Yahoo! Messenger.
> http://im.yahoo.com/
>
> **NOTE: New CCNA/CCDA List has been formed. For more information go to
> http://www.groupstudy.com/list/Associates.html
> _
> UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html
> FAQ, list archives, and subscription info: http://www.groupstudy.com
> Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
>


**NOTE: New CCNA/CCDA List has been formed. For more information go to
http://www.groupstudy.com/list/Associates.html
_
UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html
FAQ, list archives, and subscription info: http://www.groupstudy.com
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: US DOD. How do they do it?

[Cthulu, CCIE Candidate]

May I suggest that in the future you take better steps to cover yourself?
Do you really work at SITA-Societe Internationale de Telecommunications
Aeronautiques?

Au revoir!

Charles


""Cthulu, CCIE Candidate"" <[EMAIL PROTECTED]> wrote in message
8qeduj$3ss$[EMAIL PROTECTED]">news:8qeduj$3ss$[EMAIL PROTECTED]...
> You have got to be kidding!  What defence organization is this again?
>
> "Hi, I am friendly, please tell me your secrets!  Also, can I have your
> credit card number as I have never seen a Visa card before?"
>
> Those folks that work in, for, around, over, under, and about DoD networks
> are sworn to protect it, even after they leave.  Not only legally, but
> morally and out of loyalty to their country.
>
> I am forwarding your email to some folks that I think may be interested in
> it.
>
> Have a lovely day!
>
> Charles
>
>
>
> "wdwdawd wadwadad" <[EMAIL PROTECTED]> wrote in message
> [EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
> > Are there any listers with knowledge of Defense
> > networks out there.  I am working with a defence type
> > organisation (western world; not saddam!) and need
> > info on how the US DOD use cisco in their services.
> >
> > For example do they rely on cisco's implementation of
> > IPSEC for non classified traffic or do they just send
> > in the clear on a private network.
> > Do they utilise public networks.
> > Do they utilise THE public network eg VPNS to remote
> > sites?
> > Do they outsouce portions of there network for
> > "connectivity only" and implement their own controlled
> > security at higher layers?
> >
> > I guess the minimum level of security for even
> > non-class info would be 3des and classified would be
> > sent on a completely seperate hardware (kgxxx)
> > encryption based network.
> >
> > Do they utilise the catalyst range of switches and if
> > so how do they maintain high levels of security at
> > layer 2.  What stops the cleaner plugging in his
> > lappie, dhcp'ing an address and shoot'n some nukes?
> >
> > Are there any US DOD public web pages on how they use
> > cisco technology?
> >
> > There are many examples of other types of organisation
> > (not in the killing industry) that also have a
> > requirement for TOP SECRET levels of network security.
> >  Are there any public web sites with examples of
> > implementations?
> >
> > Thanks!
> >
> >
> > __
> > Do You Yahoo!?
> > Send instant messages & get email alerts with Yahoo! Messenger.
> > http://im.yahoo.com/
> >
> > **NOTE: New CCNA/CCDA List has been formed. For more information go to
> > http://www.groupstudy.com/list/Associates.html
> > _
> > UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html
> > FAQ, list archives, and subscription info: http://www.groupstudy.com
> > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
> >
>
>
> **NOTE: New CCNA/CCDA List has been formed. For more information go to
> http://www.groupstudy.com/list/Associates.html
> _
> UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html
> FAQ, list archives, and subscription info: http://www.groupstudy.com
> Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
>


**NOTE: New CCNA/CCDA List has been formed. For more information go to
http://www.groupstudy.com/list/Associates.html
_
UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html
FAQ, list archives, and subscription info: http://www.groupstudy.com
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: Can I picks a PIX?

[Cthulu, CCIE Candidate]

> Would you ever want a router interface to pick up an IP address via DHCP?
> Why or why not?
CR:  On a real world, production network, no.  However, in a lab setting,
just for the heck and convenience of it, it would be cool to have the
routers get an IP address always reserved for them from a local DHCP server.
That way, when you erase and rebuild, that is one less thing to do.  That is
about the only time I would actually use DHCP with a router.

>
> A non-addressable firewall is 100% effective at blocking unauthorized
> traffic, but 0% effective at allowing authorized traffic...

CR: In other words, a paperweight!


> **NOTE: New CCNA/CCDA List has been formed. For more information go to
> http://www.groupstudy.com/list/Associates.html
> _
> UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html
> FAQ, list archives, and subscription info: http://www.groupstudy.com
> Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
>


**NOTE: New CCNA/CCDA List has been formed. For more information go to
http://www.groupstudy.com/list/Associates.html
_
UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html
FAQ, list archives, and subscription info: http://www.groupstudy.com
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: OSPF AREA Confusion

[Cthulu, CCIE Candidate]

If I read your message correctly, you have:

Internal Routers(2)   Area 1   ABRArea0  ABR Area 2 Internal Routers(2)

A router in area 1 now has a link to area 2 (in other words, it has an
interface in area 1 and 2).

What you want will happen automatically.  Remember that OSPF enabled routers
have a complete picture of the network with themselves as the chewy creamy
center.   If a link goes down, that Dij algorithm gets recalculated, and
voila, a new picture of the network, with the failed link kicked aside.

Did I understand your question correctly?  If not, let me know.

HTH,

Charles



"vasu" <[EMAIL PROTECTED]> wrote in message
[EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
> Greetings,
> Guys
>  I am little bit confused with OSPF Configuration.   Please help me
> out.
>  1.Just imagine that i need 3 area's to be configured including area
> 0.
>  2. Assume that i have 2 routers in area 0
> and  Area 1 and  Area 2  are having  2 routers each.
>  3. Just imagine one of the router which was in area 1 gets new
> link and that to
> be  connceted to area 2  for fault tolerance.  That means i want
> the serial link which was only in area 1 to be functional by default
> and suppose if the link which is configured in area 1 fails the router
> should take area 2 link.
>  4. All  these areas are interconnected via serial links.
>
>  Hope this is sufficient to get the best solution
>   This is the problem what i am facing. Help me out.
>
> Atul
>
>
>
> **NOTE: New CCNA/CCDA List has been formed. For more information go to
> http://www.groupstudy.com/list/Associates.html
> _
> UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html
> FAQ, list archives, and subscription info: http://www.groupstudy.com
> Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
>


**NOTE: New CCNA/CCDA List has been formed. For more information go to
http://www.groupstudy.com/list/Associates.html
_
UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html
FAQ, list archives, and subscription info: http://www.groupstudy.com
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: US DOD. How do they do it? UPDATED

[Cthulu, CCIE Candidate]

It's been reported to official channels.  Let's just say that their response
was:

"Ha ha!  Hello!  What do you think we have here?"

More derisive laughter AT the individual apparently from France who
originated the question (SITA).  Then we exchanged some more jokes, and that
was it.

Hope this satisfies everyone's curiosity on what the "official response"
was.

Flames to:  [EMAIL PROTECTED]


Charles



""hal9001"" <[EMAIL PROTECTED]> wrote in message
009c01c024ce$2da1b850$0100a8c0@hal9000wksn1">news:009c01c024ce$2da1b850$0100a8c0@hal9000wksn1...
> Thought it was the Rainbow Series.
>
> Karl
>
> & Yes Who Are You?
> - Original Message -
> From: "Ejay Hire" <[EMAIL PROTECTED]>
> To: <[EMAIL PROTECTED]>
> Cc: <[EMAIL PROTECTED]>
> Sent: Friday, September 22, 2000 2:05 PM
> Subject: RE: US DOD. How do they do it?
>
>
> > Doesn't the DOD publish it's security protocols in a manual... I think
> they
> > call it the Red book?  Check out www.sans.org, www.antionline.com,
> > www.2600.org/com
> >
> >
> > Original Message Follows
> > From: "Johns, Andrew M ETC (CNE N654)" <[EMAIL PROTECTED]>
> > Reply-To: "Johns, Andrew M ETC (CNE N654)" <[EMAIL PROTECTED]>
> > To: "'[EMAIL PROTECTED]'" <[EMAIL PROTECTED]>
> > Subject: RE: US DOD.  How do they do it?
> > Date: Fri, 22 Sep 2000 09:10:44 +0100
> >
> > What kind of name is that anyway?
> > I do work for DOD and its not any real secret, our networks are
> > internalized. We use NIPRNET  SIPRNET. Nonclassified Internet Protocol
> > Routed Network and Secret Internet Protocol Routed Network. (I could
very
> > well have some of the words wrong as I don't memorize it). Our
connections
> > are to the NOCC, Network Operations Control Center. One in UK One in the
> US
> > (there are more but for simplicity...) The NOCC controls access of
NIPRNET
> > to the "outside". SIPRNET never goes outside. You can't get in. Course
> > anyone who wants in bad enough will figure it out, but I'm sure they
have
> > the biggest and baddest firewalls around.
> > Interestingly, there are some efforts underway (and some commands have
> done
> > it) to go on the economy for internet service since its very slow on
> NIPRNET
> > sometimes and we are charged from our budget for the bandwidth used.
> > My disclaimer is that I don't know ALL the details, this is my personal
> > understanding of the BASIC operation. I don't know everything.
> > I wrote this mostly for the group. Anything beyond this no one will get
> > access to.
> > What kind of name is that anyway? I think I would be embarrassed to use
> > it
> >
> > -Original Message-
> > From: Cthulu, CCIE Candidate [mailto:[EMAIL PROTECTED]]
> > Sent: Friday, September 22, 2000 3:04 AM
> > To: [EMAIL PROTECTED]
> > Subject: Re: US DOD. How do they do it?
> >
> >
> > May I suggest that in the future you take better steps to cover
yourself?
> > Do you really work at SITA-Societe Internationale de Telecommunications
> > Aeronautiques?
> >
> > Au revoir!
> >
> > Charles
> >
> >
> > ""Cthulu, CCIE Candidate"" <[EMAIL PROTECTED]> wrote in
message
> > 8qeduj$3ss$[EMAIL PROTECTED]">news:8qeduj$3ss$[EMAIL PROTECTED]...
> >  > You have got to be kidding!  What defence organization is this again?
> >  >
> >  > "Hi, I am friendly, please tell me your secrets!  Also, can I have
your
> >  > credit card number as I have never seen a Visa card before?"
> >  >
> >  > Those folks that work in, for, around, over, under, and about DoD
> > networks
> >  > are sworn to protect it, even after they leave.  Not only legally,
but
> >  > morally and out of loyalty to their country.
> >  >
> >  > I am forwarding your email to some folks that I think may be
interested
> > in
> >  > it.
> >  >
> >  > Have a lovely day!
> >  >
> >  > Charles
> >  >
> >  >
> >  >
> >  > "wdwdawd wadwadad" <[EMAIL PROTECTED]> wrote in message
> >  > [EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
> >  > > Are there any listers with knowledge of Defense
> >  > > networks out there.  I am working with a defence type
> >  > > organisation (western world; not saddam!) and need
> >  > > info on how the US DOD use cisco in

Re: OSPF AREA Confusion

[Cthulu, CCIE Candidate]

Ed,

You have a point... I answered this too thoughtlessly.

Internal Routers(2)   Area 1   ABRArea0  ABR Area 2 Internal Routers(2)
ABR Area 1

The basic question is if there is an ABR that has interfaces in area 1 and
2, will it send the updates to area 0 once area 0 loses its interface to
area 1?

If the ABR of area 2 has an interface in area 1 and area 0, then area 0 will
learn about area 1 routes via this ABR even if the ABR of area 0 loses its
link to area 1. (ABR is connecting 3 areas)

If the ABR of area 2 has an interface in area 1 but not in area 0 (assuming
area 2 has another ABR with an interface in area 2 and in area 0, then area
0 will not learn about the route in area 1. You can implement virtual links
to work around this.

I violated OSPF's most fundamental principle with my quick answer:  all
areas must touch area 0.

Sorry for any confusion, and thanks Ed for calling me on it!

Charles








>From: "Edward Moss" <[EMAIL PROTECTED]>
>To: "\"Cthulu, CCIE Candidate\"" <[EMAIL PROTECTED]>
>Subject: Re: OSPF AREA Confusion
>Date: Sun, 24 Sep 2000 19:05:36 -0500
>
>I dont think the statement is quite true
>If the link between area 0 and 1 goes down,
>There is still a link between area 1 and 2.
>
>But area 0 will have no knowledge of area 1 any more since the link is
down.
>A virtual link would be needed to connect area 1 and 0 via area 2.
>
>Ed
>
>

""Cthulu, CCIE Candidate"" <[EMAIL PROTECTED]> wrote in message
8qid12$2qi$[EMAIL PROTECTED]">news:8qid12$2qi$[EMAIL PROTECTED]...
>
>
> If I read your message correctly, you have:
>
> Internal Routers(2)   Area 1   ABRArea0  ABR Area 2 Internal
Routers(2)
>
> A router in area 1 now has a link to area 2 (in other words, it has an
> interface in area 1 and 2).
>
> What you want will happen automatically.  Remember that OSPF enabled
routers
> have a complete picture of the network with themselves as the chewy creamy
> center.   If a link goes down, that Dij algorithm gets recalculated, and
> voila, a new picture of the network, with the failed link kicked aside.
>
> Did I understand your question correctly?  If not, let me know.
>
> HTH,
>
> Charles
>
>
>
> "vasu" <[EMAIL PROTECTED]> wrote in message
> [EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
> > Greetings,
> > Guys
> >  I am little bit confused with OSPF Configuration.   Please help me
> > out.
> >  1.Just imagine that i need 3 area's to be configured including area
> > 0.
> >  2. Assume that i have 2 routers in area 0
> > and  Area 1 and  Area 2  are having  2 routers each.
> >  3. Just imagine one of the router which was in area 1 gets new
> > link and that to
> > be  connceted to area 2  for fault tolerance.  That means i want
> > the serial link which was only in area 1 to be functional by default
> > and suppose if the link which is configured in area 1 fails the router
> > should take area 2 link.
> >  4. All  these areas are interconnected via serial links.
> >
> >  Hope this is sufficient to get the best solution
> >   This is the problem what i am facing. Help me out.
> >
> > Atul
> >
> >
> >
> > **NOTE: New CCNA/CCDA List has been formed. For more information go to
> > http://www.groupstudy.com/list/Associates.html
> > _
> > UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html
> > FAQ, list archives, and subscription info: http://www.groupstudy.com
> > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
> >
>
>
> **NOTE: New CCNA/CCDA List has been formed. For more information go to
> http://www.groupstudy.com/list/Associates.html
> _
> UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html
> FAQ, list archives, and subscription info: http://www.groupstudy.com
> Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
>


**NOTE: New CCNA/CCDA List has been formed. For more information go to
http://www.groupstudy.com/list/Associates.html
_
UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html
FAQ, list archives, and subscription info: http://www.groupstudy.com
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: Archives down so I have a few questions regarding PIX Firewall

[Cthulu, CCIE Candidate]

Archives down so I have a few questions regarding PIX FirewallJoey,

I am looking for the same book, but have yet to find it.  As you may recall
from last week, I had a PIX firewall dropped in my lap gratis.  Up to that
time, I have had zero experience/exposure to the PIX, yet after a few days,
I am actually using it!!  This message is actually coming from behind the
PIX I configured.

I managed to accomplish this using the 'Configuration Guide for the PIX
Firewall'  that came with it.  The closest version of this I could find on
the Cisco website was:

http://www.cisco.com/univercd/cc/td/doc/product/iaabu/pix/pix_v51/


Between that and the smart PIX folks on this group, you should be able to
jerry rig something until a useful book comes out.

HTH,

Charles


""Fowler, Joey"" <[EMAIL PROTECTED]> wrote in message
E37739B46CE9D311A76700508B6CAF293CA93E@CORN">news:E37739B46CE9D311A76700508B6CAF293CA93E@CORN...


Ok archives are down and I didn't find anything is my personal copy from the
last 2 weeks. So here are my ??'s
What is a good book for administering PIX firewall? I have a basic
understanding of everything from someone who went to the class and I have
done some maintenance but I'm looking for a more in-depth understanding.
Doesn't matter whether it helps with Certification directly but would be a
plus. I'm guessing that's what the Security specialization is.
Thanks in Advance,
Joey


**NOTE: New CCNA/CCDA List has been formed. For more information go to
http://www.groupstudy.com/list/Associates.html
_
UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html
FAQ, list archives, and subscription info: http://www.groupstudy.com
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Migrating from EIGRP to OSPF

[Cthulu, CCIE Candidate]

Hi, all,

Does anyhone have any links, documents, etc. about migrating from EIGRP to
OSPF?  Any gotchas in the process?  Basically, I am looking for
recommendations/comments on the most efficient way to do this such that the
change is not visible on the network.

Given that the AD of EIGRP is lower than OSPF, my initial knee jerk reaction
is to simply build and lay OSPF over the EIGRP, then gradually remove EIGRP,
starting with the edges and working in towards the core. As I do that, OSPF
routes will be injected into the routing table.  The main problem I see with
this is that a more specific route will be inserted into the routing table,
regardless of the protocol source.Any thoughts/comments on that
approach?


TIA,

Charles



**NOTE: New CCNA/CCDA List has been formed. For more information go to
http://www.groupstudy.com/list/Associates.html
_
UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html
FAQ, list archives, and subscription info: http://www.groupstudy.com
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: ATM Config

[Cthulu, CCIE Candidate]

Also, don't forget to ensure that PVC switching is configured correctly on
the LS1010;

Something like this on each LS1010 interface that the routers are connected
to.
atm-pvc 44 102 interface atm 1/1/1 200

This is the same thing you did with the frame relay route command.

HTH,

Charles




""sdonoho"" <[EMAIL PROTECTED]> wrote in message
015101c027fb$774bba20$[EMAIL PROTECTED]">news:015101c027fb$774bba20$[EMAIL PROTECTED]...
> Kevin,
>  Not sure with out seeing your config but try mapping the destination
> address of the PVC:
>
> int ATM2/1
>  ip address 220.1.1.1 255.255.255.0
>  atm pvc 10 0 32 aal5snap
>  map-group trythis
> !
> map-list trythis
>  ip 220.1.1.2 atm-vc 10
>
>
> -Scott
>
> > -Original Message-
> > From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of
> > Kevin Wigle
> > Sent: Tuesday, September 26, 2000 11:01 AM
> > To: cisco
> > Subject: ATM Config
> >
> >
> > and while I'm asking
> >
> > getting lots of use out of the lab here..
> >
> > I've got 3 4700/4500s with an ATM interface, a 7505 with ATM and
> > an LS-1010.
> >
> > Using a config from Hutnick, I can't seem to get connectivity.
> >
> > On page 287 for the cmd "sh atm vc",  Status is shown as "ACTIVE".
> >
> > I only see "UP".  Also, I can't ping from one ATM router to the other.
> >
> > On the LS-1010, I see "UpAndNormal" for the ILMI state and "Idle" for
the
> > SSCOP state.
> >
> > Sitting on any router, (telnet in)  I cannot ping the ATM
> > interface of that
> > router, but I can ping any other address on the router as well as stuff
on
> > the lab network.
> >
> > Any thoughts?  No special config here, bare bones just trying to get
from
> > router to router over ATM.
> >
> > tia
> >
> > Kevin Wigle
> >
> >
> > **NOTE: New CCNA/CCDA List has been formed. For more information go to
> > http://www.groupstudy.com/list/Associates.html
> > _
> > UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html
> > FAQ, list archives, and subscription info: http://www.groupstudy.com
> > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
> >
>
> **NOTE: New CCNA/CCDA List has been formed. For more information go to
> http://www.groupstudy.com/list/Associates.html
> _
> UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html
> FAQ, list archives, and subscription info: http://www.groupstudy.com
> Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
>


**NOTE: New CCNA/CCDA List has been formed. For more information go to
http://www.groupstudy.com/list/Associates.html
_
UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html
FAQ, list archives, and subscription info: http://www.groupstudy.com
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: Migrating from EIGRP to OSPF

[Cthulu, CCIE Candidate]

Chuck,

The SPF/neighbor/database stuff of OSPF will pretty much look the same as if
its routes were inserted in the table;  the thing is that the OSPF routes
will be sitting around looking bored because they are NOT in the routing
table... kind of like my high school years when no one would dance with
me...thanks, Chuck, for bringing up painful memories!

LOL

Charles


""Chuck Larrieu"" <[EMAIL PROTECTED]> wrote in message
002701c027eb$8a5073a0$[EMAIL PROTECTED]">news:002701c027eb$8a5073a0$[EMAIL PROTECTED]...
> Would you guys cut it out!
>
> Now I've got another lab idea to try out, to whit: if you install OSPF
over
> EIGRP, what will the OSPF side of things look like? I.e. the spf tables? I
> am confident in predicting that the routing table will contain only the
> EIGRP routes, because those would be preferred due to lower admin
distance.
> ( all other things being equal )
>
> Such a lab would, of course, be of little practical use. Just another
> distraction to satisfy my idle curiosity.
>
> Geez, this will be another late night on the routers, I can tell.
>
> Chuck
>
> -Original Message-
> From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] On Behalf Of
> Cthulu, CCIE Candidate It's Not Dagon
> Sent: Tuesday, September 26, 2000 11:29 AM
> To: [EMAIL PROTECTED]
> Cc: [EMAIL PROTECTED]
> Subject: Re: Migrating from EIGRP to OSPF
>
> Hey, Brian,
>
> Thanks for the info.  I have some comments/clarification.
>
>
> >EIGRP carries a lower administrative distance vs. EIGRP.
> CR:  You mean EIGRP (90) has a lower AD than OSPF (110)?
>
>
> So you can
> >basically turn up OSPF on your routers, and then when it all looks
kosher,
> >what I would do is raise the administrative distance of EIGRP above
> >OSPF..this will cause the EIGRP routes to phase out and OSPF to
> >be used.  If it all goes crazyyou can revert by simply moving
> >EIGRP back to the default administrative distance.  If you were to have
> >cleared out your EIGRP config..it would be difficult to put things
> >back..
>
> CR:  That is an excellent suggestion!  It would be easy to write a script
> that lower/raise as needed.  Thank you!
>
>
> >Ok, why would a more specific route be inserted in OSPF vs. EIGRP?  If
you
> >deploy your OSPF to match that of your EIGRP, this should not
> >happen...its definitly avoidable.
>
> CR: I was not clear on this.  What I meant to say was that if EIGRP has a
> more specific/longest match route than OSPF (or vice versa), that route
will
> be inserted in the routing table rather than the OSPF route.  Recalling
past
> groupstudy discussions, a learned route gets inserted in the routing table
> in order of preference of:
>
> 1. Most specific/longest match
> 2. administrative distance
> 3. cost (metrics)
>
>
> I had a situation where a more specific EIGRP route stayed in the routing
> table even though adjustments has been made to prefer OSPF. For example,
if
> you enter a network 1.1.1.1 0.0.0.0 area 0 command under OSPF, the mask
that
> gets advertised with this route by OSPF is whatever mask you have on the
> interface.  Another thing is that if you advertise loopback interfaces,
OSPF
> treats them as stub hosts (with a /32 mask);  therfore, the route from
OSPF
> will be inserted in the routing table as it is more specific/longest
match,
> rather than the same route learned from EIGRP with its lower
administrative
> distance.  These are the types of problems I want to minimize.
>
>
> Many thanks, Brian, for the suggestions and feedback!
>
> Charles
>
> _
> Get Your Private, Free E-mail from MSN Hotmail at http://www.hotmail.com.
>
> Share information about yourself, create your own public profile at
> http://profiles.msn.com.
>
> **NOTE: New CCNA/CCDA List has been formed. For more information go to
> http://www.groupstudy.com/list/Associates.html
> _
> UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html
> FAQ, list archives, and subscription info: http://www.groupstudy.com
> Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
>
> **NOTE: New CCNA/CCDA List has been formed. For more information go to
> http://www.groupstudy.com/list/Associates.html
> _
> UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html
> FAQ, list archives, and subscription info: http://www.groupstudy.com
> Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
>


**NOTE: New CCNA/CCDA List has been formed. For more information go to
http://www.groupstudy.com/list/Associates.html
_
UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html
FAQ, list archives, and subscription info: http://www.groupstudy.com
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: Migrating from EIGRP to OSPF - Bad News!

[Cthulu, CCIE Candidate]

ack0
>  192.168.254.0/24 is variably subnetted, 3 subnets, 2 masks
> C   192.168.254.4/30 is directly connected, Serial1
> D   192.168.254.0/24 is a summary, 23:15:36, Null0
> D   192.168.254.0/30 [90/2681856] via 192.168.254.5, 23:15:35, Serial1
> C192.168.1.0/24 is directly connected, Loopback1
> C192.168.2.0/24 is directly connected, Loopback2
> C192.168.3.0/24 is directly connected, Loopback3
> Router#
> Router#
>
> -Original Message-
> From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] On Behalf Of
> Cthulu, CCIE Candidate It's Not Dagon
> Sent: Tuesday, September 26, 2000 11:29 AM
> To: [EMAIL PROTECTED]
> Cc: [EMAIL PROTECTED]
> Subject: Re: Migrating from EIGRP to OSPF
>
> Hey, Brian,
>
> Thanks for the info.  I have some comments/clarification.
>
>
> >EIGRP carries a lower administrative distance vs. EIGRP.
> CR:  You mean EIGRP (90) has a lower AD than OSPF (110)?
>
>
> So you can
> >basically turn up OSPF on your routers, and then when it all looks
kosher,
> >what I would do is raise the administrative distance of EIGRP above
> >OSPF..this will cause the EIGRP routes to phase out and OSPF to
> >be used.  If it all goes crazyyou can revert by simply moving
> >EIGRP back to the default administrative distance.  If you were to have
> >cleared out your EIGRP config..it would be difficult to put things
> >back..
>
> CR:  That is an excellent suggestion!  It would be easy to write a script
> that lower/raise as needed.  Thank you!
>
>
> >Ok, why would a more specific route be inserted in OSPF vs. EIGRP?  If
you
> >deploy your OSPF to match that of your EIGRP, this should not
> >happen...its definitly avoidable.
>
> CR: I was not clear on this.  What I meant to say was that if EIGRP has a
> more specific/longest match route than OSPF (or vice versa), that route
will
> be inserted in the routing table rather than the OSPF route.  Recalling
past
> groupstudy discussions, a learned route gets inserted in the routing table
> in order of preference of:
>
> 1. Most specific/longest match
> 2. administrative distance
> 3. cost (metrics)
>
>
> I had a situation where a more specific EIGRP route stayed in the routing
> table even though adjustments has been made to prefer OSPF. For example,
if
> you enter a network 1.1.1.1 0.0.0.0 area 0 command under OSPF, the mask
that
> gets advertised with this route by OSPF is whatever mask you have on the
> interface.  Another thing is that if you advertise loopback interfaces,
OSPF
> treats them as stub hosts (with a /32 mask);  therfore, the route from
OSPF
> will be inserted in the routing table as it is more specific/longest
match,
> rather than the same route learned from EIGRP with its lower
administrative
> distance.  These are the types of problems I want to minimize.
>
>
> Many thanks, Brian, for the suggestions and feedback!
>
> Charles
>
> _
> Get Your Private, Free E-mail from MSN Hotmail at http://www.hotmail.com.
>
> Share information about yourself, create your own public profile at
> http://profiles.msn.com.
>
> **NOTE: New CCNA/CCDA List has been formed. For more information go to
> http://www.groupstudy.com/list/Associates.html
> _
> UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html
> FAQ, list archives, and subscription info: http://www.groupstudy.com
> Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
>
> **NOTE: New CCNA/CCDA List has been formed. For more information go to
> http://www.groupstudy.com/list/Associates.html
> _
> UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html
> FAQ, list archives, and subscription info: http://www.groupstudy.com
> Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
>


**NOTE: New CCNA/CCDA List has been formed. For more information go to
http://www.groupstudy.com/list/Associates.html
_
UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html
FAQ, list archives, and subscription info: http://www.groupstudy.com
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

IP Classless (from Q&A Forum at Cisco)

[Cthulu, CCIE Candidate]

I got this off teh Q&A forum, and thought the group would enjoy reading
it...

Question: What is the function of command ip classless in such a network
OSPF is used as the routing protocol. Would it be possible to explain it by
giving an example?

Answer:

The ip classless command makes the router consider IP classless, so that it
will not consider IP addresses to be of class A, B, and so on.   So, it
enables IP addresses like 198.108.10.1 255.255.0.0. Also, when using
classful protocols like IGRP or RIP, it makes a routing decision based on
its classless nature.

It is used only if you have the gateway of last resort set and it determines
whether or not you forward traffic to the component of the major net that is
not in your forwarding table.

For example, your major network is 10.0.0.0 and subnetted with a prefix of
24 bit.  Let's say that you have packets going to 10.10.10.0 and that entry
is not
in your forwarding table.

If you have no ip classless the packet is dropped whether or not you have a
gateway of last resort. If you have classless on, the default route is used.




**NOTE: New CCNA/CCDA List has been formed. For more information go to
http://www.groupstudy.com/list/Associates.html
_
UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html
FAQ, list archives, and subscription info: http://www.groupstudy.com
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: Printing Flashcards

[Cthulu, CCIE Candidate]

Title: Printing Flashcards



Haven't tried them myself, but here are 
some...
 
http://www.rosecitysoftware.com/AcadFlashcards/
 
 
http://www.123flashme.com/
 
HTH,
 
Charles
 
 

  ""Fowler, Joey"" <[EMAIL PROTECTED]> wrote in message 
  E37739B46CE9D311A76700508B6CAF293CA94E@CORN">news:E37739B46CE9D311A76700508B6CAF293CA94E@CORN...
  Does anyone know of a program for creating 
  flashcards yourself and then printing them? I know I'd still have to cut them 
  and paste them on an index card, but I think at this rate I'll get 
  arthritis.
  Thanks, Joey Fowler Senior Network 
  Engineer Foodtrader.com 

Re: final thoughts - Migrating from EIGRP to OSPF ( new results )

[Cthulu, CCIE Candidate]

Bless you, Chuck!  When the Old Ones return, you will spared!

Seriously, many thanks for this thread and your extensive experimentation...
I am now much smarter for it!!

Charles



""Chuck Larrieu"" <[EMAIL PROTECTED]> wrote in message
00a501c029d4$097bfca0$[EMAIL PROTECTED]">news:00a501c029d4$097bfca0$[EMAIL PROTECTED]...
>
> Can't sleep until I  make some sense out of this one.  After reading the
> many fine replies to my original study I came to believe there was a flaw
in
> my methodology. Tonight's results seem to indicate this was true.
>
> So... for testing purposes I now know another behaviour of OSPF. On
loopback
> interfaces, the default behavior is to treat the loopbacks as stub
networks,
> with a summary of /32 I followed the advice of one Mr. Clue Less, and
> configured all loopbacks as point-to-point networks. ( I should note here
> that it appears that one can not configure loopbacks as broadcast
networks,
> no matter what the circumstance )
>
> Here are the results, using standard configurations. This first result is
> with EIGRP and OSPF both configured more or less mimicking a real network.
>
> Router#
> Router#sh ip route
> Codes: C - connected, S - static, I - IGRP, R - RIP, M - mobile, B - BGP
>D - EIGRP, EX - EIGRP external, O - OSPF, IA - OSPF inter area
>N1 - OSPF NSSA external type 1, N2 - OSPF NSSA external type 2
>E1 - OSPF external type 1, E2 - OSPF external type 2, E - EGP
>i - IS-IS, L1 - IS-IS level-1, L2 - IS-IS level-2, ia - IS-IS inter
> area
>* - candidate default, U - per-user static route, o - ODR
>P - periodic downloaded static route
>
> Gateway of last resort is not set
>
> C192.168.8.0/24 is directly connected, Loopback0
> C192.168.9.0/24 is directly connected, Loopback1
> C192.168.10.0/24 is directly connected, Loopback2
> C192.168.11.0/24 is directly connected, Loopback3
> D192.168.4.0/24 [90/2297856] via 192.168.254.2, 00:07:44, Serial0
> D192.168.5.0/24 [90/2297856] via 192.168.254.2, 00:07:44, Serial0
> D192.168.6.0/24 [90/2297856] via 192.168.254.2, 00:07:44, Serial0
> D192.168.7.0/24 [90/2297856] via 192.168.254.2, 00:07:44, Serial0
> D192.168.0.0/24 [90/2809856] via 192.168.254.2, 00:06:14, Serial0
>  192.168.254.0/30 is subnetted, 2 subnets
> D   192.168.254.4 [90/2681856] via 192.168.254.2, 00:07:45, Serial0
> C   192.168.254.0 is directly connected, Serial0
> D192.168.1.0/24 [90/2809856] via 192.168.254.2, 00:06:14, Serial0
> D192.168.2.0/24 [90/2809856] via 192.168.254.2, 00:06:15, Serial0
> D192.168.3.0/24 [90/2809856] via 192.168.254.2, 00:06:15, Serial0
> Router#
> Router#
> Router#sh ip route ospf
>
> Router#sh ip route
>
> Notice that there are no OSPF routes in the RIB at all.
>
> Next, I changed the OSPF administrative distance to 85 ( a bit lower than
> the EIGRP default distance )
>
> Here is the resulting change in the routing table:
>
> Router#sh ip route
> Codes: C - connected, S - static, I - IGRP, R - RIP, M - mobile, B - BGP
>D - EIGRP, EX - EIGRP external, O - OSPF, IA - OSPF inter area
>N1 - OSPF NSSA external type 1, N2 - OSPF NSSA external type 2
>E1 - OSPF external type 1, E2 - OSPF external type 2, E - EGP
>i - IS-IS, L1 - IS-IS level-1, L2 - IS-IS level-2, ia - IS-IS inter
> area
>* - candidate default, U - per-user static route, o - ODR
>P - periodic downloaded static route
>
> Gateway of last resort is not set
>
> C192.168.8.0/24 is directly connected, Loopback0
> C192.168.9.0/24 is directly connected, Loopback1
> C192.168.10.0/24 is directly connected, Loopback2
> C192.168.11.0/24 is directly connected, Loopback3
> O IA 192.168.4.0/24 [85/65] via 192.168.254.2, 00:01:22, Serial0
> O IA 192.168.5.0/24 [85/65] via 192.168.254.2, 00:01:22, Serial0
> O IA 192.168.6.0/24 [85/65] via 192.168.254.2, 00:01:22, Serial0
> O IA 192.168.7.0/24 [85/65] via 192.168.254.2, 00:01:22, Serial0
> O IA 192.168.0.0/24 [85/129] via 192.168.254.2, 00:01:23, Serial0
>  192.168.254.0/30 is subnetted, 2 subnets
> O   192.168.254.4 [85/128] via 192.168.254.2, 00:01:23, Serial0
> C   192.168.254.0 is directly connected, Serial0
> O IA 192.168.1.0/24 [85/129] via 192.168.254.2, 00:01:23, Serial0
> O IA 192.168.2.0/24 [85/129] via 192.168.254.2, 00:01:24, Serial0
> O IA 192.168.3.0/24 [85/129] via 192.168.254.2, 00:01:24, Serial0
> Router#
>
> This is a lot cleaner than what I was showing the other night.
>
> So now - it looks like Mr Cthulu Not Dagon can indeed migrate his real
> network from EIGRP to OSPF with very little problem. There may some issues
> here and there with the way OSPF handles loopbacks, as one caveat. I sure
> like the idea that, if memory serves, Brian proposed - changing the admin
> distances of the protocols, but retaining the EIGRP configurations, so
that
> they would not have to be rebuilt should things go bad with the migration.
>
> I also imagine th

Scripts!!!! and no budget!!!

[Cthulu, CCIE Candidate]

Hi, all,

I am currently on an interesting assignment where I have to pull routing
information and address information off of about 200-300 routers or switches
with router on a stick installed...without using ANY form of network
management software, and using only USER level access.

The information I need to know is:

-what interfaces are using used   (show ip interface brief)
-what addresses are on this interfaces (show ip address brief)
- what routing protocols are being used (show ip protocol summary)
- what are this's router's neigbhors (show cdp neighbor)
-what are this router's routing protocol neighbors (use commands such as
show ip bgp neighbor, show ip ospf neig)



So, armed only with telnet, a non-enable capable user account/password, and
my wits (stop laughing, Chuck!), I have to cull this information, and using
that d*mned visio, make a big picture.  After that, I must take the big
picture, and make address modifications, etc. to "improve stuff", then work
with a team to implement this new architecture.  This organization does not
have a consistent or clear picture of its network, but needs it for the
major league changes it must make.


So, my choices are to manually log onto each device, cull the information,
or come up with a script that would log onto each device, run these
commands, and turn on teh capture text feature of whatever terminal program
(telnet client) I am using, and output to a simple little text file named
after the router which has just been accessed.  Is Procomm Plus a good fit
here?  Can I buy/download that off the web?


My problem is I am script impaired;  I have searched the Cisco/groupstudy
websites, and can not find any references to help me build this script.  ANy
links would be appreciated.  I do not have any UNIX workstations available
to me... only Windows 95 on a
;(

TIA,

Charles






**NOTE: New CCNA/CCDA List has been formed. For more information go to
http://www.groupstudy.com/list/Associates.html
_
UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html
FAQ, list archives, and subscription info: http://www.groupstudy.com
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Guidelines for Deploying OSPF: Some structure to the design process?

[Cthulu, CCIE Candidate]

Hi, all,

What do y'all think about the following as a general rule of thumb for
deploying OSPF?  I pulled this information together from a variety of
sources, including Cisco TAC, this group, and the vending machine man who
gave me 50 cents back.  I think following these guidelines would result in
designs that reduce the load on the routers (less databases and networks to
process) plus make for easier troubleshooting.Of course, I also think
the Loch Ness monster is real ( I saw her playing water polo with my
mother-in-law;)

Anyways, your thoughts would be appreciated.

Guidelines for Deploying OSPF

Number of Areas Per Router
Router Series   Number of Areas
7xxx  <5
3xxx-4xxx <4
2xxx  <3


Number of Routers Per Area
<51 Routers Per Area

Number of Networks Per Router
Router Series   Number of Networks
7xxx  <150
3xxx-4xxx <100
2xxx  <50



Replies and flames equally welcome to:  [EMAIL PROTECTED]



Charles






_
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: Guidelines for Deploying OSPF: Some structure to the design process?

[Cthulu, CCIE Candidate]

Hi, Charles,

As usual, you reek of brilliance, and as usual, you have to respond to your
own post since no one else has.

This is an overly simplistic guideline, as it does not  include factors such
as memory:  a 7xxx router with 4MB memory won't be as effective as a 3xxx
with 128MB.Also, running other routing protocols and redistribution,
distribution lists, access lists, static routes, etc.  may also influence
this up/down the scale.

Otherwise, a good start... why haven't you gotten your CCIE yet if you are
so smart?


Flames to:  [EMAIL PROTECTED]


HTH,

Charles






""Cthulu, CCIE Candidate"" <[EMAIL PROTECTED]> wrote in message
8t9ukm$ba0$[EMAIL PROTECTED]">news:8t9ukm$ba0$[EMAIL PROTECTED]...
> Hi, all,
>
> What do y'all think about the following as a general rule of thumb for
> deploying OSPF?  I pulled this information together from a variety of
> sources, including Cisco TAC, this group, and the vending machine man who
> gave me 50 cents back.  I think following these guidelines would result in
> designs that reduce the load on the routers (less databases and networks
to
> process) plus make for easier troubleshooting.Of course, I also think
> the Loch Ness monster is real ( I saw her playing water polo with my
> mother-in-law;)
>
> Anyways, your thoughts would be appreciated.
>
> Guidelines for Deploying OSPF
>
> Number of Areas Per Router
> Router Series   Number of Areas
> 7xxx  <5
> 3xxx-4xxx <4
> 2xxx  <3
>
>
> Number of Routers Per Area
> <51 Routers Per Area
>
> Number of Networks Per Router
> Router Series   Number of Networks
> 7xxx  <150
> 3xxx-4xxx <100
> 2xxx  <50
>
>
>
> Replies and flames equally welcome to:  [EMAIL PROTECTED]
>
>
>
> Charles
>
>
>
>
>
>
> _
> FAQ, list archives, and subscription info:
http://www.groupstudy.com/list/cisco.html
> Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
>


_
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: Need some guidance on OSPF Stub area, inverse mask and loopback

[Cthulu, CCIE Candidate]

Daniel,

With OSPF, if you can spare the addresses, loopbacks are always a good idea.

1) Stub areas do LSAs 1/2 internally, and do NOT get  external routes (5)
injected into them. ABR of the stub area will generate 3/4 for its area,
stub or not.  .

2)  Good question!  My guess is if the ASBR is just an ASBR, then it will
not generate a 4 for itself;  if it is an ABR, then it will generate a 4 for
itself... I don't have my Thomas Thomas book to verify this, though.

3)  that network statement 0.0.0.0 255.255.255.255...whew, look out free
world... I wouldn't use it, personally!  Your second choice is better;
personally, I like to use network statements like so:network 1.1.1.1
0.0.0.0 area 11;  when I look at my configs, I can see instantly who is
participating in OSPF.

HTH,

Charles



""Daniel Boutet"" <[EMAIL PROTECTED]> wrote in message
8tc7g0$k4e$[EMAIL PROTECTED]">news:8tc7g0$k4e$[EMAIL PROTECTED]...
> Please could anyone confirm these statements:
>
> 1) No AS External LSA (type 5) originate from a stub area
> 2) No ASBR Summary LSA (type 4) originate from router
> if not an ABR router (internal router)
> 3) In the network statement you would use:
>
> router ospf 1
> network 0.0.0.0 255.255.255.255 area 10
> area 10 stub
>
> OSPF would run on all active interface (unless "passive-interface"
> command used on some interface)
>
> Would you still use a loopback address?
>
> interface loopback0
> ip address 192.168.10.1
> router ospf 1
> network 0.0.0.0 255.255.255.255 area 10
> area 10 stub
>
> Wouldn't your "network statement" advertise (more LSA's) your loopback
since
> it "fit"
> inside the all host address? Let's say you have 15 routers inside the stub
> network (this is
> a possibility, right?) would this produce
> unnecessary LSA's by advertising the loopbacks?
> Isn't the purpose of a stub area is to limit LSA?
>
> Or would you rewrite your network statement more restrictive:
>
> interface loopback0
> ip address 192.168.10.1
> router ospf 1
> network 192.168.100.1 0.0.63.255 area 10   (100+  allowed to be
> advertised)
> area 10 stub
>
> Am I understanding the concepts properly about the advertisement?
> Is my wildcard ok in my last network statement? This is how I figure the
> inverse mask:
>
> In short:   192.168. 0110 0100.1 (for readability only use third octet)
>. 0011 . (I matched the 0 bit for the
"I
> care"
>and the 1 bit
for
> the "Don't care"
> Thanks
>
> Daniel
>
>
>
> _
> FAQ, list archives, and subscription info:
http://www.groupstudy.com/list/cisco.html
> Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
>


_
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: My Layer 2 knowledge sucks

[Cthulu, CCIE Candidate]

I found Radia P's book to be a little whiney and dry.  Try Virtual LANs:
Construction, Operation, Utilization by Marina Smith, then if you are still
thirsting for knowledge, try Radia P.Get the concepts with Ethernet,
surely the easiest way to grasp L2 stuff, then you can master the concepts
to other L2 technologies.

HTH,

Charles







"Tom Holbrook" <[EMAIL PROTECTED]> wrote in message
[EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
> As far as the LAN goes, Radia Perlman's Interconnections (the 1999
version)
> is the bible. Black has some books about DSx, OC-x, and ATM that are very
> detailed, but imho not very easy to read.
>
> Hope this helps
> -Tom
>
> At 09:08 AM 10/27/2000 -0700, you wrote:
> >Not that I am an expert in the rest of the layers, but I am the weakest
at
> >Layer 2.
> >
> >I think I have to start from basics and build from there on.
> >Can somebody please name some resources where I can go ( or buy) to help
me
> >with this?
> >
> >TIA
> >A. Strobel
> >
> >
> >Get free email and a permanent address at http://www.amexmail.com/?A=1
> >
> >_
> >FAQ, list archives, and subscription info:
> >http://www.groupstudy.com/list/cisco.html
> >Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
>
> __
> Tom Holbrook
> Network Engineer
> Atlanta
> Earthlink
>
> _
> FAQ, list archives, and subscription info:
http://www.groupstudy.com/list/cisco.html
> Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
>


_
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: BCRAN questions

[Cthulu, CCIE Candidate]

John,

You are right about OSPF;  I am OSPF obsessed this week, so did not pay much
attention to the others.

Charles

"John lay" <[EMAIL PROTECTED]> wrote in message
[EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
> Hi Guys,
>
>
> While I am studying for the BCRAN, I found the following question
> with their answeres, I think that the answere of this questions are
> wrong. So I'd like to share this with you
>
>
> 1) choose all of the following that are correct
> a-A BRI connects to NT1 for 4-wire connection
> b-A BRI allways connects to TE1
>
> The answere b is correct and a is not. I think a should be correct
> as well.
>
> 2)Which two configuartions must be the same for OSPF routers
> to establish adjacency.
> a-Routing process ID
> b-Router ID
> c-Area ID
> d-Packet TTL
> e-Hello interval
>
> The answere a and c are correct. I think c and e should be correct
>
> 3) What is an asynchronous dialup?
> a-Dial on demand routing
> b-Dialup server
> c-PPP conncetion from end user
>
> The answere is b. I think it should be c
>
> 4)what is an extended access control list but not in a standard
> access list?
> a-Source hostname IP address and subnetmask
> b-Source network IP address and subnetmask
> c-Session layer information
> d-Destination port information
>
> the answere is b.
>
> 5)When configuring dialer information. Which statement is correct?
> a-Values of dialer-group and dialer-list must match.
> b-Values of dialer-group and dialer-list must be different.
> c-If you set a value for dialer-group you must not set a value
> for dialer-list
>
> The answere is C . I think it should be a.
>
> 6)Which of the following would you use to prioritize dial interfaces?
> a-Dialer access list
> b-Dialer pool
> c-Dialer interface
> d-Dialer profile
>
> The answere is d. I think it should be b.
>
> Waiting for your comments.
>
>
>
>
>
> ___
> Say Bye to Slow Internet!
> http://www.home.com/xinbox/signup.html
>
> _
> FAQ, list archives, and subscription info:
http://www.groupstudy.com/list/cisco.html
> Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
>


_
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: Guidelines for Deploying OSPF: Some structure to the designprocess?

[Cthulu, CCIE Candidate]

(snipped for brevity)


The virtual vs. real Charles predates the OSI model, therefore can not be
fit into any of layers.  BTW, thanks for reply;  I am trying to derive a
formula for that will build the optimal OSPF design for whatever situation;
such as

 (X routers) x (Y networks) + (Available CPU Power) + (Available Mem)  =
(This number of routers in an Area)

then

(X Routers) /(This number of routers in an Area) = Number of areas

Voila!  and other French  words I don't know the meaning of.



All that product and logarithm math scared me (calculus flashback!) ; but I
think I can get a formula from your posting as follows:  (X is the number of
each type of route).


1. The product of the number of intra-area routes in Area K  and the
logarithm of the number of routers in Area K
2. The number of summarized or explicit inter-area routes  seen in Area K
3. The number of routes external to the routing domain seen in Area K
>
>   The first term is the actual Dijkstra computation.
>   Summarization affects the second term.
>   Stubbiness and external aggregation affects the third term.




Area Database Size = ((intra-area routes)* X )+ (Summarized Routes) +
((Inter-area routes)*X) + ((Inter-AS routes)*X)

The above formula would give me the size of the database for an area.  I
could then figure out if what routers can handle it, and how many areas the
available resources (CPU) on each router would allow it to handle.



Many thanks!  I think I am either gettting an education here, or am deluding
myself...it's about the same feeling!  At the very least, I am thinking
about the resource requirements of OSPF as part of the design process;)


Thank you,

Charles



_
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: AGS+.....no console connection

[Cthulu, CCIE Candidate]

OK,

My AGS+ arrives tomorrow;  offhand, not having all the information does not
prevent me from shooting off my mouth so here goes:

>From Cisco:

Either the console port or the auxiliary port must be connected to an
asynchronous device in order to communicate with the AGS+.

The console port is a female, data communications equipment (DCE), DB-25
receptacle for connecting an ASCII terminal. Before you connect the console
port, set up the terminal as follows: 9600 baud, 8 data bits, no parity, and
2 stop bits.

The optional auxiliary port is a male, data terminal equipment (DTE), DB-25
receptacle for connection to a modem or other DCE device (such as a CSU/DSU
or another router).


Now if that doesn't work, upgrade your hyperterminal, and also ensure that
the serial port you are using not being used by anything else (check to
ensure that your OS also knows this).

If that doesn't work:

Put one of those db-25 to rj45 cisco modem adapters on the console port on
the ags+  if you got one.  Then connect an roll over cable to your pc's rj45
serial adapter thingie.  Then use the normal 9600n18 settings you use for
the other routers.


If that doesnt work, remove all cards, cuss, then firmly reseat them.  Also,
check your jumpers to ensure you have the console settings you think you
have.

See
http://www.cisco.com/univercd/cc/td/doc/product/core/cisagspl/agscfig/43494.
htm#xtocid281935


I think the AGS+ is a product of Satan and Cisco, but it makes a damned fine
frame relay switch if you don't mind going deaf from teh fans...


Charles





"Brian" <[EMAIL PROTECTED]> wrote in message
[EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
>
> I got an AGS+ in today and I am having trouble making a console connection
> to it.  I am an expert in the AGS+ and could really use some help.
>
> The CSC-MC+ is green.  It has the 20pin connection to the ENV card.
> The CSC-ENV is green.  It has the 20pin connection to the CSC-MC+,
> it also has the 4 pin "control" connection as well.
> The CSC/4 is green, the console cable is connected properly.
>
> I am using a normal serial cable, 8/n/1 9600.  The config register on the
> CSC/4 is at factory default (pins 2 and 9 jumped).
>
> I have removed all other cards until I can get the console.  Any ideas?
>
> Thanks,
>
> Brian
>
>
> ---
> Brian Feeny, CCNP, CCDP   [EMAIL PROTECTED]
> Network Administrator
> ShreveNet Inc. (ASN 11881)
>
> _
> FAQ, list archives, and subscription info:
http://www.groupstudy.com/list/cisco.html
> Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
>


_
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: Calling all techies in New York

[Cthulu, CCIE Candidate]

Um, Andi,

This is a "Cisco" list;  any "Cisco" stuff in this project?  If not, then is
just networking Windows PCs, hardly a challenging or interesting project for
most of the folks on this list...I know I experienced QWERTY forehead when I
read your post.  If there is more to this project than you posted, such as
Cisco equipment, interesting cabling, etc. then specify that;  otherwise,
you are looking for free labor.

Good luck,

Charles



"Andi Enyiema" <[EMAIL PROTECTED]> wrote in message
391567808.973174079798.JavaMail.root@web425-wra">news:391567808.973174079798.JavaMail.root@web425-wra...
> Hi,
> I've been given an assignment by a company to create a network of about 14
> computers.  I need the assistance of individuals who know about NT server,
> switches(Netgear fs524), cabling.
> Computers have a mixture of Win 95 and 98 and I'll need NT workstation to
be
> installed on all computers.  This is a big project for me so I would
> appreciate the assistance of individuals who know what they are doing and
> wouldn't mind the "live" practice sessions.  The venue is in Brooklyn.
> If interested, please reply or leave me a voice message at
> 718 404 3907 x1204
>
> Thanks and I look forward to working with you.
>
>
>
> _
> FAQ, list archives, and subscription info:
http://www.groupstudy.com/list/cisco.html
> Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
>


_
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

The Cabinet Out of Space (need equipment cabinet recommendation)

[Cthulu, CCIE Candidate]

Hi, all,

Apologies in advance to HP Lovecraft for mangling one of his story titles in
the subject header ;)

As some of you may know, 10,000 pounds of my household goods arrived this
week at my new home in Dallass, Texas!  My new home is slightly
smaller than my old one, and as a result, my wife, the artist, will be
sharing the computer room with me.

In order not to deafen her, and not to deafen myself further, I need a sound
proofed cabinet where I can put 4 2500 routers, 2 Cisco 3000 routers, 1
CS516, 2 token ring MAUs, 2 little 10baset hubs, and of course, the bane of
my CCIE studies, 1 loud, energy sucking AGS+  (BTW, AGS standards for
Aggravation, Grief, Stress).  All told, about 4 feet of equipment that I
need to rack and roll!  (Well, I don't really need to roll the equipment
around except for when my mother in law comes to visit, and I tell her that
I am moving the internet into her room to relieve congestion 8])

Any recommendations on what I can get that will house this equipment AND
kill the noise AND not look too ugly AND allow ample coolage for the
routers?  Wheels are optional, though would be nice to have, and I don't
care about locking doors;  a see through door to look at the LEDs would be
fun but not necessary.

I know that sources for racks have been discussed on this list;  I am
looking for specific cabinet recommendations, both the hardware and the
hardware vendor.

Many thanks,

Charles


P.S.  Anyone have an UPS (small as possible) recommendation that can handle
the equipment described above?




_
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: yourviews@skysports.com

[Cthulu, CCIE Candidate]

Well, now that really sucks!  I thought British football was like soccer,
but apparently, Erriccson the cell phone company is going to Sweden to
improve their British what the h*** are you talking about?

Unless they are going to replace the leather sphere with a Cisco AGS in the
game, and run X.25 interference plays, this is not the forum for streams of
consciousness rambling...they have opium dens for that, you know.

TIA,

Charles



_
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

EIGRP over OSPF and BGP

[Cthulu, CCIE Candidate]

Hi, all!

By the way, thanks to all who wrote me about where to find a cabinet... got
some good leads out of it!

Y'all know how I love to post messages addressing weird situation and
problems?  Usually, it intrigues Chuck L., causing hiim to suspend his
studies while he investigates what the heck I wrote about;)

Anyways, I got another one:

Given:

EIGRP 1 RTRA OSPF RTB BGP RTR C OSPF RTRD EIGRP1


I want RTRD and RTRA to become EIGRP peers and do the exchange routing
update thing.  Granted, they are not directly connected, and do not share a
common subnet.   If I set up a GRE tunnel between D and A, the picture then
becomes:

EIGRP1  RTRA <---tunnel---> RTRD EIGRP1

The tunnel becomes the common network, and therefore, EIGRP should be able
to work.  Only thing I am not sure about is the source interfaces for this
tunnel will be different at each end (that is, each source interface will be
in a different subnet).I don't have my rack online to test this out, so
would appreciate any comments.

Thoughts,  anyone?


Flames to:   [EMAIL PROTECTED]


Charles




_
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: EIGRP over OSPF and BGP

[Cthulu, CCIE Candidate]

Chuck,

Bless you for the configs, though I am put out that this one did not give
you pause...damn, I must be slipping;]I think I could attain
connectivity with this...reliability, stability, usuability, routability,
now that is another matter!

Many thanks again, I will be looking over the configs you sent me;


Charles





""Chuck Larrieu"" <[EMAIL PROTECTED]> wrote in message
005101c04ddf$405482e0$[EMAIL PROTECTED]">news:005101c04ddf$405482e0$[EMAIL PROTECTED]...
> Of course, Charles, I'll lay odds you won't get end to end ip connectivity
> anyway, given that mess you have created in the middle! :->
>
> Chuck
>
> -Original Message-
> From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] On Behalf Of
> Cthulu, CCIE Candidate
> Sent: Monday, November 13, 2000 5:15 PM
> To: [EMAIL PROTECTED]
> Subject: EIGRP over OSPF and BGP
>
> Hi, all!
>
> By the way, thanks to all who wrote me about where to find a cabinet...
got
> some good leads out of it!
>
> Y'all know how I love to post messages addressing weird situation and
> problems?  Usually, it intrigues Chuck L., causing hiim to suspend his
> studies while he investigates what the heck I wrote about;)
>
> Anyways, I got another one:
>
> Given:
>
> EIGRP 1 RTRA OSPF RTB BGP RTR C OSPF RTRD EIGRP1
>
>
> I want RTRD and RTRA to become EIGRP peers and do the exchange routing
> update thing.  Granted, they are not directly connected, and do not share
a
> common subnet.   If I set up a GRE tunnel between D and A, the picture
then
> becomes:
>
> EIGRP1  RTRA <---tunnel---> RTRD EIGRP1
>
> The tunnel becomes the common network, and therefore, EIGRP should be able
> to work.  Only thing I am not sure about is the source interfaces for this
> tunnel will be different at each end (that is, each source interface will
be
> in a different subnet).I don't have my rack online to test this out,
so
> would appreciate any comments.
>
> Thoughts,  anyone?
>
>
> Flames to:   [EMAIL PROTECTED]
>
>
> Charles
>
>
>
>
> _
> FAQ, list archives, and subscription info:
> http://www.groupstudy.com/list/cisco.html
> Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
>
> _
> FAQ, list archives, and subscription info:
http://www.groupstudy.com/list/cisco.html
> Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
>


_
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: Single area with large number networks.

[Cthulu, CCIE Candidate]

IMHO,  B is the best answer as link failures in the area will cause
recalculations.

D is a possible answer;  however, "excessive" is a subjective word:  OSPF
will generate the number of LSAs necessary to build its tables and the
picture of the network:  it will not go beyond the number needed to do so.
On the other hand, as a human, I may find a large number of LSAs
"excessive".

HTH,

Charles

D is kind of subjective, but it
""Ibrahim"" <[EMAIL PROTECTED]> wrote in message
[EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
>
>
> doesn't help. I tried before. I also opened the CCIE : TCP/IP routing
book,
> ACRC book .. but can't found the answer.
>
>
> Ibam
>
> >
> > Try this
> > http://www.cisco.com/public/pubsearch.html
> >
> > - Original Message -
> > From: "Ibrahim" <[EMAIL PROTECTED]>
> > To: <[EMAIL PROTECTED]>
> > Sent: Tuesday, November 14, 2000 11:52 PM
> > Subject: Single area with large number networks.
> >
> >
> > >
> > > Hi, this question is really confuse me :
> > > What are two possible problems that can occur when a single OSPF area
> > > includes a large number of networks?
> > > a. more reachable errors
> > > b. frequent routing table recalculation
> > > c. frequent adjacencies table recalculation
> > > d. excessive link- state entries in the link- state table
> > > The frequent routing table recalculation is true, but what
> > about the other
> > > one ?
> > >
> > > thanks,
> > > Ibrahim
> > >
> > >
> > > 
> > > Disclaimer:
> > > Please note that this correspondence is for the named person's use
only
> > and
> > > may contain information that is confidential and privileged. If you
> > received
> > > this correspondence in error, please immediately delete it from your
> > system
> > > and notify the sender. Please ensure that you do not disclose, copy or
> > rely
> > > on any part of this correspondence if you are not the intended
> > recipient.
> > > We apologize for any inconvenience and thank you for your assistance.
> > Please
> > > note that nothing in this correspondence shall be construed or
otherwise
> > > relied upon by the recipient as an offer, acceptance of an offer,
> > > representation, agreement or resolution of any kind.
> > > 
> > > Copyright(C)Davnet Singapore Pte. Ltd. 2000
> > >
> > >
>
> _
> FAQ, list archives, and subscription info:
http://www.groupstudy.com/list/cisco.html
> Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
>


_
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: EIGRP over OSPF and BGP

[Cthulu, CCIE Candidate]

Chuck,

OH YES!!  It's going to be a good day!  LOL

Your analysis of the serial/ethernet is right on:  this is exactly what I
had in mind.  This is actually an idea a friend of mine came up with to link
EIGRP over disparate and wildly varying routing protocols:  he came up with
3 ideas, I came up with 3 ideas, and then we both got way  interested in
this tunnel idea because it was so interesting.   We have been kicking it
around for about a day, but are still in the thinking stage.

At this point, I believe that our tunnel end points would most likely be the
ethernets; however, we have not set that in concrete yet.One of  the
goals is to keep it as automated as possible, and to use static routes as
little as possible. Having said that, in response to your question,  I don't
believe we can have either OSPF or BGP to advertise the tunnel network at
all as it may cause confusion.We can have OSPF and BGP advertise the
tunnel end point interfaces; and leave the tunnel network in EIGRP.EIGRP
routes will get redistributed into BGP and OSPF;  there may be some
ramifications to that we have not thought out.

Many thanks to all who wrote; I'll share our conclusions (whether technical
or not;) if anyone is interested.


Charles





""Chuck Larrieu"" <[EMAIL PROTECTED]> wrote in message
005e01c04df1$87901e00$[EMAIL PROTECTED]">news:005e01c04df1$87901e00$[EMAIL PROTECTED]...
> You know, Charles, I've been pondering this setup for a while now. ( See -
> you did too get me after all! :-> )
>
> Now I already posted the wisecrack about the mess in the middle, and
whether
> or not you would even be able to get IP connectivity end to end here.
>
> RouterA: ethernet EIGRP, serial=OSPF
> RouterB: serial1= OSPF, serial2=BGP
> RouterC: serial 1=BGP, serial2=OSPF
> RouterD: serial1=OSPF, ethernet=EIGRP
>
> As an intellectual exercise, I'm sure many of us can put together some
> configurations that work. The redistribution should not be al that bad,
> albeit a bit unusual.
>
> I'm wondering, though, about that BGP piece in the middle. Gonna use
static
> routes from B to C?
>
> Also - is my concept of the layout correct? Are your tunnel end points
going
> to be the two ethernet interfaces?
>
> I'm just wondering about the mechanics here.
>
> Damn you, Charles, now you done it! You are indeed an evil one :->
>
> Chuck
>
> Cthulu's question corner:
>
> Given:
>
> EIGRP 1 RTRA OSPF RTB BGP RTR C OSPF RTRD EIGRP1
>
>
> I want RTRD and RTRA to become EIGRP peers and do the exchange routing
> update thing.  Granted, they are not directly connected, and do not share
a
> common subnet.   If I set up a GRE tunnel between D and A, the picture
then
> becomes:
>
> EIGRP1  RTRA <---tunnel---> RTRD EIGRP1
>
> The tunnel becomes the common network, and therefore, EIGRP should be able
> to work.  Only thing I am not sure about is the source interfaces for this
> tunnel will be different at each end (that is, each source interface will
be
> in a different subnet).I don't have my rack online to test this out,
so
> would appreciate any comments.
>
> Thoughts,  anyone?
>
>
> Flames to:   [EMAIL PROTECTED]
>
>
> Charles
>
>
>
>
> _
> FAQ, list archives, and subscription info:
> http://www.groupstudy.com/list/cisco.html
> Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
>
> _
> FAQ, list archives, and subscription info:
http://www.groupstudy.com/list/cisco.html
> Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
>


_
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: Rumor Alert - Lab Changes - WAS: Flame bait.

[Cthulu, CCIE Candidate]

Song cue!  guess who!

all these rumors in my life
got to take some time
some time to get away

LOL

Charles


""Scott M. Trieste"" <[EMAIL PROTECTED]> wrote in message
8urngh$gd9$[EMAIL PROTECTED]">news:8urngh$gd9$[EMAIL PROTECTED]...
> Chuck,
>
> Thanks for the heads up.
>
> -Scott
>
> ""Chuck Larrieu"" <[EMAIL PROTECTED]> wrote in message
> 009801c04e52$e9daf6a0$[EMAIL PROTECTED]">news:009801c04e52$e9daf6a0$[EMAIL PROTECTED]...
> > Before you all get hot thinking about CCIE specialties and the money you
> can
> > make, you may want to facto in a couple of RUMORS about the CCIE track I
> > heard recently.
> >
> > Rumor #1 - The CCIE Design certification is being dropped. Why? Because
no
> > one can figure what it is supposed to be or do, and the lab itself is a
> > crock.
> >
> > Rumor #2 - The CCIE ISP/Dial lab is being revamped completely. It is
> turning
> > into DSL / Cable Modem etc. Don't know about the ISP side of things -
BGP,
> > IS-IS, peering, etc.
> >
> > Rumor #3 - The CCIE Security will involve configuring Cisco security
> > products on both Unix and NT boxes and doing VPN tunnels end to end,
> meaning
> > for the first time a candidate would be responsible for end user
equipment
> > in the lab.
> >
> > Them changes is coming.
> >
> > Remember - these are RUMORS, and may or may not be true. Always check
the
> > Cisco web site for the facts.
> >
> > Chuck
> >
> > -Original Message-
> > From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] On Behalf Of
> > Scott M. Trieste
> > Sent: Tuesday, November 14, 2000 5:56 AM
> > To: [EMAIL PROTECTED]
> > Subject: Flame bait.
> >
> > Ladies and gents!
> >
> > Just a thought.  But I was curious as to the most vicious combination of
> > Cisco paper.  It's no secret that a CCIE is by far the most sought after
> > cert on the planet.  That being the case I'd be curious to know what
kind
> of
> > position/compensation someone with CCIE/Design/R&S/Security would have.
> If
> > in fact this person exists.  Anyway, this is just a thought, feel free
to
> > flame away if you must.
> >
> > Regards,
> >
> > Scott M. Trieste
> > CCNP/Security,CCDP,MCSE+I+Win2k, RHCE
> >
> >
> > _
> > FAQ, list archives, and subscription info:
> > http://www.groupstudy.com/list/cisco.html
> > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
> >
> > _
> > FAQ, list archives, and subscription info:
> http://www.groupstudy.com/list/cisco.html
> > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
> >
>
>
> _
> FAQ, list archives, and subscription info:
http://www.groupstudy.com/list/cisco.html
> Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
>


_
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Passed the written... again

[Cthulu, CCIE Candidate]

Hi, all

I took and passed the CCIE written exam again yesterday.  I found out last
week that I had to retake it in order to schedule my lab;  the previous exam
I took "expired" due to the time elapse.

I did not study, so I can not recommend any reference materials, etc.   I
will say that since I have been studying for the lab, rather than the
written, that helped a little.


About the exam itself, and without violating the NDA,  it sucked.Cisco,
if you are reading this,   elimination through obscurity is not something to
brag about.   Sure,  I could test and fail an auto mechanic by asking him
obscure questions about buggy whips, but that does not test the true worth
of the auto mechanic.

Some of the questions are awful, loaded with subjective phrases and
ambiguous syntax and grammer.There were a few good questions that
addressed the technology of what we do.  It seemed to me that you were often
put in a situation where you have to pick the answer that sucked the least.


To give you an idea, pretending that this was a math exam, some of the
questions looked like this:


1.  How many sides are contained in a left-handed square?
A.  4 sides if there are 2 triangles present
B. None, a circle has 4 sides.
C. A right handed square has 4 sides.
D. All of the above.


2.  Chuck bought 5 bananas at the supermarket.  Priscilla bought 2 apples.
Howard robbed Pamela the cashier.  How much did Chuck pay for the apples?
A.  The bananas were 1 dollar a pound.
B.  False, the apples were really peaches.
C.  Howards got 5-10, with time off for good behavior.
D.  The log lady likes apples too.



I am exaggerating slightly, but not by much.  Just as important as knowing
the stuff, is the ability to decipher the questions and answers, and to get
inside the minds of the test writers (you be Clarice, the test writer is
Hannibal).

Anyways, that is all I got to say about that.   Good luck to all!

Charles




_
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: Passed the written... again

[Cthulu, CCIE Candidate]

Brad,

Yes, I tested for R&S .

My NDA friendly answer is that the good questions on the exam were as clear
as what you see in the sample.  However, the test questions are much harder
than these simple "what is" questions given on the web page.  Be prepared to
read quickly and analyze quicker.

Test tip!About a year or so ago, someone posted a tip to the groupstudy
that is very useful in test taking (I forget who it was).  Anyways, if there
are certain thing that you are not all that well versed in, such as hex to
binary to decimal conversions or IP address classes,   make a reference
sheet for yourself.  When you go to take your test, before you click that
start button, recreate your reference sheet on the paper provided.  By doing
it before you start teh test, you will not be wasting precious test time
building a handy reference sheet.   It can be very handy to have this to
refer to during the test.

Charles



""Brad Steinman"" <[EMAIL PROTECTED]> wrote in message
008301c04ff6$d0ddf490$5b5da4d0@steinmb">news:008301c04ff6$d0ddf490$5b5da4d0@steinmb...
> Could you compare (quality/style/etc) the questions were presented with -
to
> the sample questions at
>
http://www.cisco.com/warp/public/625/ccie/certifications/sample_routing.html
>
>
> I'm assuming you tested for R&S, I hope I'm not wrong. (i'm new to this
> list)
>
>
> Brad Steinman
> [EMAIL PROTECTED]
>
>
> From: "Sena, Elver" <[EMAIL PROTECTED]>
> To: "'Cthulu, CCIE Candidate'" <[EMAIL PROTECTED]>;
> <[EMAIL PROTECTED]>
> Sent: Thursday, November 16, 2000 12:27 PM
> Subject: RE: Passed the written... again
>
>
> : Are you sure you are not talking about the CID. :-)
> :
> : -Original Message-
> : From: Cthulu, CCIE Candidate [mailto:[EMAIL PROTECTED]]
> : Sent: Thursday, November 16, 2000 8:39 AM
> : To: [EMAIL PROTECTED]
> : Subject: Passed the written... again
> :
> :
> : Hi, all
> :
> : I took and passed the CCIE written exam again yesterday.  I found out
last
> : week that I had to retake it in order to schedule my lab;  the previous
> exam
> : I took "expired" due to the time elapse.
> :
> : I did not study, so I can not recommend any reference materials, etc.
I
> : will say that since I have been studying for the lab, rather than the
> : written, that helped a little.
> :
> :
> : About the exam itself, and without violating the NDA,  it sucked.
> Cisco,
> : if you are reading this,   elimination through obscurity is not
something
> to
> : brag about.   Sure,  I could test and fail an auto mechanic by asking
him
> : obscure questions about buggy whips, but that does not test the true
worth
> : of the auto mechanic.
> :
> : Some of the questions are awful, loaded with subjective phrases and
> : ambiguous syntax and grammer.There were a few good questions that
> : addressed the technology of what we do.  It seemed to me that you were
> often
> : put in a situation where you have to pick the answer that sucked the
> least.
> :
> :
> : To give you an idea, pretending that this was a math exam, some of the
> : questions looked like this:
> :
> :
> : 1.  How many sides are contained in a left-handed square?
> : A.  4 sides if there are 2 triangles present
> : B. None, a circle has 4 sides.
> : C. A right handed square has 4 sides.
> : D. All of the above.
> :
> :
> : 2.  Chuck bought 5 bananas at the supermarket.  Priscilla bought 2
apples.
> : Howard robbed Pamela the cashier.  How much did Chuck pay for the
apples?
> : A.  The bananas were 1 dollar a pound.
> : B.  False, the apples were really peaches.
> : C.  Howards got 5-10, with time off for good behavior.
> : D.  The log lady likes apples too.
> :
> :
> :
> : I am exaggerating slightly, but not by much.  Just as important as
knowing
> : the stuff, is the ability to decipher the questions and answers, and to
> get
> : inside the minds of the test writers (you be Clarice, the test writer is
> : Hannibal).
> :
> : Anyways, that is all I got to say about that.   Good luck to all!
> :
> : Charles
>
>
> _
> FAQ, list archives, and subscription info:
http://www.groupstudy.com/list/cisco.html
> Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
>


_
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: R/S Lab Changes

[Cthulu, CCIE Candidate]

MPOA is still on the list of lab things to do and requires ATM LANE;
therefore, even though ATM LANE has been removed, you'll still need to know
it in order to do MPOA.

Right?  Any ATM masters that can contradict or support this assertion?

Charles



""Don Snider"" <[EMAIL PROTECTED]> wrote in message
00f001c05269$a3c82320$[EMAIL PROTECTED]">news:00f001c05269$a3c82320$[EMAIL PROTECTED]...
I don't know if this has been posted before, there are some major changes in
the R/S Lab. This is from the Cisco Web Site. Start studying up on things
like QoS, Security, etc.

Effective immediately, the following topics have been removed from the lab
exam content:

LAT
DECnet
Apollo
Banyan VINES
ISO CLNS
XNS
ATM LANE
X.25
Effective February 1, 2001, the following topic will be removed from the lab
exam content:

Appletalk
 NOTE: These changes only affect the Routing and Switching Lab exam.
Some of the test topics may continue to appear on the Routing and Switching
Written exam.  Readers are advised to consult the Content Blueprint for the
Routing and Switching Written exam for a detailed list of topics tested on
the written exam.


_
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Router Flight Cases

[Cthulu, CCIE Candidate]

Hi, all,

Y'all recall that I posted a few weeks ago for a router cabinet.  Well, I
got some good leads, and then my circumstances have changed...again.   I
will be spending alot of time in KC in a corporate apartment for the next
2-8 months,  so rack mounting my routers at home won't do me any good.  I
want to take them with me on the plane to my new quarters.

Does anyone know where I can buy one of those flight cases with the 19 inch
rack inside that are about 3-4 feet high, and can can hold about 8 2500
sized routers? (The AGS will be staying at home.)   I plan on taking my
routers with me so that I can while the hours away with study.  The case I
am looking for is very similar to what the instructors use to transport
their routers from class to class.   Most of us have seen them:  the
instructor pops the top and inside are the cabled routers ready for use.

I have been all over the web, and can not find exactly what I need.  I don't
even know if flight case is the right word.


TIA,

Charles




_
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: Router Flight Cases THANK YOU

[Cthulu, CCIE Candidate]

I just wanted to publicly thank everyone that gave me such great leads and
recommendations.  Wow,  great responses!!!

Many of you recommended heading to the nearest music store, and there were
an equal number of recommendations for www.cabbagecases.com and
www.anvildealer.com. I will be making a trip to the music store next
week;  that way, I can look and paw over the merchandise;)



Again,  thank you!!!


Charles




_
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: access list editing

[Cthulu, CCIE Candidate]

Hi, Ron,

On Hyperterminal, set it to capture to a text file, then do the paste.
You'll then have a log of everything that scrolls by.

Flames to:  [EMAIL PROTECTED]


Charles



"Ronald Rella" <[EMAIL PROTECTED]> wrote in message
[EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
> Hi everybody.  I wonder if someone could assist me.  I have to add an
entry
> to an access list with an additional deny all statement at the end so I
have
> to edit the list and bring it back in.  I've used both QVT term and
> Hyperterm to access the router.  And I've used Note pad and Word pad to
> modify the list.  I have no problem copy and editing the list.  I edit the
> list, make my new entry and delete the extra deny all.  The problem I have
> is when I try to paste it back.  I am doing something stupid here.  I keep
> getting 'Invalid' something as it scrolls by.  I have tried coping the
> buffer.  I've tried basic copy and paste but the pasting is where I'm
having
> this problem.  I've even tried using the command 'No access-list deny any
> any', but that just removes the access list from the interface.  Can
someone
> enlighten me on what step I'm missing.  Thanks everyone.
>
> ___
> UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html
> FAQ, list archives, and subscription info: http://www.groupstudy.com
> Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
> ---


___
UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html
FAQ, list archives, and subscription info: http://www.groupstudy.com
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: BGP minimum

[Cthulu, CCIE Candidate]

Actually, I think it was Pikachu that said it to Meowth and Team Rocket when
they attacked Ash.

There is alot of ancient history, literature, and mythology in modern
cartoons if you are familar with both.  For example, I have always thought
that Garfield was a modern rendition of Henry the 8th...talk about losing
your head!

Apologies in advance, could not resist this thread.

Flames to:  [EMAIL PROTECTED]

Charles

P.S. Pikachu won, in case you were wondering.

"ElephantChild" <[EMAIL PROTECTED]> wrote in message
news:[EMAIL PROTECTED]...
> On Tue, 25 Jul 2000, Howard C. Berkowitz wrote:
>
> > Was it the Athenians or the Spartans that said to the Laconians, "If
> > we defeat you, we will burn your city to the ground, enslave the
> > survivors, and salt the ruins?"
> >
> > To which King Lacon responded, "If."
>
> The Athenians. Spartans and Laconians were one and the same, IIRC.
>
> --
> Bungee jumping and skydiving are for wimps. If you want to experience
> true gut-wrenching terror, have children. --Dusty Rhoades.
>
> ___
> UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html
> FAQ, list archives, and subscription info: http://www.groupstudy.com
> Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
> ---


___
UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html
FAQ, list archives, and subscription info: http://www.groupstudy.com
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: Sysco cert question

[Cthulu, CCIE Candidate]

Does that mean you use RIP rather than OSPF?  Which of these is a liquor
vector protocol, and which one is a drink state protocol?  For SYSCO exam
purposes, does OSPF stand for Oh S**T, Protocol Failure!

Flames for my stale humor and crudity to:  [EMAIL PROTECTED]

Sorry!

Charles


""Shawn T. Carroll"" <[EMAIL PROTECTED]> wrote in message
[EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
> All the information you'll need to pass the test is in the documentation
> on the back of the packets.  Be sure to practice.  I've found that 45
> degree tears in the side of the packet aid in the even distribution of
> condiment to jar/food.
>
> I haven't taken the 2.0, but I heard that there was an emphasis on
> deploying Lite Mayonnaise Packets.
>
> -Shawn
>
> On Tue, 1 Aug 2000, John Neiberger wrote:
>
> >You mean there's a lab???  Oh man...  well, I suppose everyone is making
> >their intro certs harder to get.  They're probably worried about the
> >dilution of the certification.  Are there any good study guides for the
lab?
> >
> >>  AHH the test is very difficult so be carefull... i kept spilling the
> >>  ketchup.
> >>  Beware of trick questions (they threw in one or two about "catsup"
which
> >>  being english i totally slipped up on!).
> >>  shame about the certificate the send you.its goes bad in the post
and
> >
> >>  the post office confisgate it?something about damaging the
> >natural
> >>  enviroment!!!what a cheek.
> >>
> >>  steve
> >>
> >>
> >>  >From: "Drew Anderson" <[EMAIL PROTECTED]>
> >>  >Reply-To: "Drew Anderson" <[EMAIL PROTECTED]>
> >>  >To: <[EMAIL PROTECTED]>
> >>  >CC: "'Solt, Jasper \(spawar\)'" <[EMAIL PROTECTED]>
> >>  >Subject: Sysco cert question
> >>  >Date: Tue, 1 Aug 2000 11:00:58 -0400
> >>  >
> >>  >I have been studying hard for the Sysco Certified Condiment Engineer
2.0
> >>  >Exam.
> >>  >
> >>  >Does anybody know how many ounces of ketchup are in one packet?  How
> >many
> >>  >mustard packets will be distibuted on an hourly basis?
> >>  >
> >>  >Does mustard always have to go into the yellow squeeze bottle?
> >>  >
> >>  >
> >>  >
> >>  >___
> >>  >UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html
> >>  >FAQ, list archives, and subscription info: http://www.groupstudy.com
> >>  >Report misconduct and Nondisclosure violations to
[EMAIL PROTECTED]
> >>
> >>

> >>  Get Your Private, Free E-mail from MSN Hotmail at
http://www.hotmail.com
> >>
> >>  ___
> >>  UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html
> >>  FAQ, list archives, and subscription info: http://www.groupstudy.com
> >>  Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
> >
> >
> >
> >
> >
> >___
> >Say Bye to Slow Internet!
> >http://www.home.com/xinbox/signup.html
> >
> >___
> >UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html
> >FAQ, list archives, and subscription info: http://www.groupstudy.com
> >Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
> >
>
> Shawn T. Carroll
> Network Support Specialist
> Alltel Information Services
> Williston, VT
> 802 872 2933
>
> --
>
> ___
> UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html
> FAQ, list archives, and subscription info: http://www.groupstudy.com
> Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
> ---


___
UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html
FAQ, list archives, and subscription info: http://www.groupstudy.com
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: Ethernet Troubleshooting Woes

[Cthulu, CCIE Candidate]

Do both the file servers adn the PCs use same the primary IPX frame
encapsulation?

Also, try this:

Pick a PC, and patch it directly into the NIC of the server (that is, make a
cross over cable, and path the drop from the PC to the drop for the server).
You'll remove alot of factors from teh equation.

If it doesn't work, then I would suspect a configuration problem:  also,
check the drivers for the NIC card:  you may need an update.

You may also want to get some CAT5, and connect the server directly to the
switch using CAT5...CAT3 makes me feel queasy!

Good luck, and HTH,

Charles







""Kevin Wigle"" <[EMAIL PROTECTED]> wrote in message
009301c0032c$66728740$[EMAIL PROTECTED]">news:009301c0032c$66728740$[EMAIL PROTECTED]...
> I had a similar incident recently with a W2K server.
>
> If it had to be rebooted, it came back up ok but the weirdest thing was
that
> Win95/98 clients couldn't log in but W2K Pro clients could.
>
> To top it off, Win95/98 clients could ping the server so "IP" was good.
>
> To fix it we would just reboot the server again until it "took".  Of
course
> this wasn't very satisfactory.
>
> The end story was that the nic on the server was set to auto.  Once we set
> it to manual on 10BaseT everything worked fine.
>
> I have always suspected anything that has "auto" associated with it.
>
> Kevin Wigle
>
> - Original Message -
> From: "David Jones" <[EMAIL PROTECTED]>
> To: "'John Neiberger'" <[EMAIL PROTECTED]>; <[EMAIL PROTECTED]>
> Sent: Thursday, 10 August, 2000 17:20
> Subject: RE: Ethernet Troubleshooting Woes
>
>
> > The first thing I would suggest is don't assume too much.  Usually, when
> > you're getting alignment errors and CRC's on a Cisco switch, it means
that
> > there is a mismatch between the switch port and the NIC's speed/duplex
> > settings.  Configure the switch port that the server is on and hardcode
it
> > for speed/duplex settings.  Here's an example:
> > conf t
> > int fa0/1
> > speed 100
> > dup full
> >
> > Try one thing at a time.  You would be amazed at what something so
simple
> > can affect you.
> >
> > HTH
> >
> > Dave
> >
> > -Original Message-
> > From: John Neiberger [mailto:[EMAIL PROTECTED]]
> > Sent: Thursday, August 10, 2000 3:56 PM
> > To: [EMAIL PROTECTED]
> > Subject: Ethernet Troubleshooting Woes
> >
> >
> > Okay, I'm going completely out of my mind.  I am at the end of my rope
> with
> > this problem and I have no idea where to go from here.  Basically, I'm
> > begging for suggestions!
> >
> > Several PCs at one of our branches are having difficulty running a
certain
> > application, which uses IPX on 802.3 frames.  We are also running IP on
> this
> > LAN with arpa frames.  There is a file server and printer on this LAN,
and
> > all IPX traffic is between the hosts and that file server.
> >
> > We are have ZERO problems with IP traffic on this LAN.  I've been
pinging
> > the tar out the hosts and they act perfectly normal, except for the file
> > server which had, at worst, a 98% success rate over time.
> >
> > On our ethernet switch, we are seeing alignment errors and CRC errors
> coming
> > from the file server.  The cable has been replaced and we verified that
it
> > is cat 5, but the problems still exist.  This is a new file server with
a
> > new NIC.
> >
> > Okay, the problem is that this particular application takes forever to
run
> > from a desktop out in the building.  yet, if you bring that very PC back
> to
> > the room where the switch is, the application runs very quickly.  This
led
> > us to believe that the cabling was bad.  However, if the cabling were
bad,
> > why are we having no problems with IP traffic?  None at all!  That just
> > doesn't make any sense to me.
> >
> > Granted, the cabling out to the desks is Cat 3 and this branch has had
> some
> > previous EMI problems in the room, but I just don't see how EMI could
> > selectively cause one application to fail without there being some
> > indication of problems with other applications.
> >
> > I've considered replacing the switch, but the problem only happens when
a
> PC
> > out in the main room uses the application, no matter what port it is
> > connected to.  Bring a PC back to the switch room and connect it to any
> port
> > and the program runs as advertised.  So, I'm not going to waste my time
> with
> > that.  I've also considered replacing the NIC in the server since we're
> > seeing errors coming from it, but that would not explain the problems
> we're
> > having, anyway, so that is probably pointless.
> >
> > any ideas?  Our next step is to hire a very expensive data center design
> > company to go up there and check things out.  We've had electricians
check
> > the room and they said they could find no obvious sources of EMI, even
> > though we know that it is prevalent there.
> >
> > Help...please helpI'm dying here, and I'm quickly losing faith in my
> > troubleshooting skills!
> >
> > TIA,
> > John
> >
> >
> >
> >
> >
> > __

Re: How to pronounce?l

[Cthulu, CCIE Candidate]

Here's the way new Texans pronounce it...


Tacacs = 'TIE- kax"

RADIUS = "Ray Dee Us"

HTH,

Charles


""Victor Jia"" <[EMAIL PROTECTED]> wrote in message
8nvea4$noh$[EMAIL PROTECTED]">news:8nvea4$noh$[EMAIL PROTECTED]...
> Can anyone tell how to pronounce the words TACACS, RADIUS? Anywhere can I
> find the pronounciation of all those abbreviations?
>
> Thanks.
>
>
> ___
> UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html
> FAQ, list archives, and subscription info: http://www.groupstudy.com
> Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
> ---


___
UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html
FAQ, list archives, and subscription info: http://www.groupstudy.com
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: Server Configuration Error.

[Cthulu, CCIE Candidate]

Paul,

We'll overlook it this time...just because you devote your time, money, and
resources to giving us a place to come together and share information
doesn't mean you can continue to make improvements that benefit us all!

Seriously, I appreciate what you do you have helped create a great
resource!Many many thanks!

Thank you!

Charles



""Paul Borghese"" <[EMAIL PROTECTED]> wrote in message
8nvfiu$tc9$[EMAIL PROTECTED]">news:8nvfiu$tc9$[EMAIL PROTECTED]...
> Hey Everyone,
>
> I made a slight configuration error when I rebuilt the new server and the
postings from the Newsfeed were not being redistributed to
> the mailing list.  This has now been solved.
>
> Sorry,
>
> Paul
>
>
> ___
> UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html
> FAQ, list archives, and subscription info: http://www.groupstudy.com
> Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
> ---


___
UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html
FAQ, list archives, and subscription info: http://www.groupstudy.com
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: Is there a command to view the OSPF entry in the user mode??

[Cthulu, CCIE Candidate]

What problem are you trying to solve?

The short , by default, answer is that you can't:  basically, you need to
view the configuration, something that is normally reserved for enable mode.
I am assuming that you do not want to use the various show ip ospf commands
to reverse engineer what interfaces are participating in the OSPF process,
and in what area.

HOWEVER

you can put the following commands in your configuration, and they will
enable you to view the configuration from user mode.

privilege exec level 1 show startup-config
privilege exec level 1 show


(You can also enter a similar command to view the running configuration).


Security Breach!  Danger! Danger!  Chuck Larrieu!

Be warned that this gives your user the ability to view your
configuration... including your enable password (use enable secret),
passwords on your vty's, etc.  In other words, they can see everything!  I
personally would  not do this on a production network...ever!  But since you
asked...


HTH,

Charles



""Sim, CT (Chee Tong)"" <[EMAIL PROTECTED]> wrote in message
[EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
> Dear all,
>
> Is there a command to view the OSPF entry in the USER MODE?? For example
as
> shown
>
> %%
> router ospf 100
>  redistribute static
>  network 57.198.47.0 0.0.0.255 area 57.198.47.0
>  network 57.192.243.48 0.0.0.3 area 57.198.47.0
>
> %
>
> How to get the "network 57.198.47.0 0.0.0.255 area 57.198.47.0"
> and the "network 57.192.243.48 0.0.0.3 area 57.198.47.0"
>  from the USER mode
>
> Router>
>
>
> Chee Tong
>
>
> ==
> De informatie opgenomen in dit bericht kan vertrouwelijk zijn en
> is uitsluitend bestemd voor de geadresseerde. Indien u dit bericht
> onterecht ontvangt wordt u verzocht de inhoud niet te gebruiken en
> de afzender direct te informeren door het bericht te retourneren.
> ==
> The information contained in this message may be confidential
> and is intended to be exclusively for the addressee. Should you
> receive this message unintentionally, please do not use the contents
> herein and notify the sender immediately by return e-mail.
>
>
> ==
>
> ___
> UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html
> FAQ, list archives, and subscription info: http://www.groupstudy.com
> Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
> ---


___
UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html
FAQ, list archives, and subscription info: http://www.groupstudy.com
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: Help -- How to load balance in OSPF environment?

[Cthulu, CCIE Candidate]

If you are hoping that 40% of the traffic will go over one interface, and
60% will go over the faster interface, OSPF can not do that (EIGRP/IGRP can
with the variance command for unequal loading).

However, OSPF will automatically load balance over up to 4 equal cost paths.
You can set the OSPF cost for each interface to be the same using the ip
ospf cost command.

Some info from Cisco about your question:

HTH,

Charles



>From Cisco TAC Q&A Forum


Q: How does OSPF calculate its metric or cost?

A: OSPF uses a reference bandwidth of 100 Mbps for cost calculation. The
formula to calculate the cost is reference bandwidth divided by interface
bandwidth. For example, in the case of Ethernet, it's 100 Mbps/10 Mbps = 10.

Note: If ip ospf cost  is used on the interface, it overrides this
formulated cost.


Question: Does OSPF automatically load balance or are additional commands
needed? (I have parallel T1 serial links going between an OSPF Area 0 router
and an Area 1 router.)

Answer:

The router will load-balance over two T1 links if it sees equal OSPF costs
to a given destination. The default is up to four parallel paths, and in
your case, it should be two. You can verify this by doing a sh ip route and
look for two paths to a given destination network across the WAN links.


Also, if IP fast-switching is turned on, the router will load-balance on a
per-destination basis, and if IP fast-switching is turned off, the router
will load-balance on a packet-by-packet basis.



...and also...

Question: Does OSPF support load balancing among serial lines?

Answer:

Yes, load balancing works in OSPF with up to four equal-cost paths, serial
or  otherwise.


Internetwork topologies are typically designed to provide redundant routes
in order to prevent a partitioned network. Redundancy is also useful to
provide
additional bandwidth for high traffic areas. If equal-cost paths between
nodes exist, Cisco routers automatically load-balance in an OSPF environment
.


Cisco routers can use up to four equal-cost paths for a given destination.
Packets might be distributed either on a per-destination (when fast
switching)
or a per-packet basis. Per-destination load balancing is the default
behavior.  Per-packet load balancing can be enabled by turning off fast
switching using
the no ip route-cache interface configuration command. For line speeds of 56
kbps and faster, it is recommended that you enable fast switching.



"HYniuniu" <[EMAIL PROTECTED]> wrote in message
news:[EMAIL PROTECTED]...
> We paln to have two leased lines connected between two routers.  One
> line is 512K and another is 768K.  Can we load balance between these two
> lines by using ospf?  If can,  how to? Eager for your advice.  Thank you
> very much!
>


___
UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html
FAQ, list archives, and subscription info: http://www.groupstudy.com
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: Questions on CCIE lab

[Cthulu, CCIE Candidate]

Maybe!  Maybe not!

Check out:
http://www.cisco.com/warp/public/625/ccie/certifications/routing.html#4




""Sharad"" <[EMAIL PROTECTED]> wrote in message
[EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
> Hi Friends
>
> I have a couple of questions about the CCIE lab tests.
> 1) How is the Frame relay cloud simulated in the exam. Are we asked to
used
> a Cisco router as a FR switch or is it  a Frame relay simulator
> 2) Do we have to use actual CSU/DSU's for point to point connections? Or
is
> it all done with Crossover cables ?
>
> Please let me know
> Thanks
>
> SV
>
> ___
> UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html
> FAQ, list archives, and subscription info: http://www.groupstudy.com
> Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
>


___
UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html
FAQ, list archives, and subscription info: http://www.groupstudy.com
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Does it have to be 255?

[Cthulu, CCIE Candidate]

Hi, all,

I wanted to stimulate some discussion on subnetting here.  I was playing
around with subnetting today (I was not trying to solve any problem in
particular).  Anyways,  on a router interface, I entered:


ip address 192.0.0.1 128.0.0.0


The router happily took it.  I could ping the interface...scarey!  I am well
aware that in the real world, we start things with a 255 on that first
octet.  But for discussion purposes...


why shouldn't I do this (see below):   Granted, classful routing protocols
such as RIP V1 would probably sicken and be unable to handle something like
this, but what of EIGRP and OSPF?  IS-IS?  Something like this would be good
for aggregation purposes (BGP)??


Technically, doing the straight math, we have two subnets containing all the
host addresses in the free world!!!  Wowza!  ("Bob, we just lost Wichita!")

0.0.0.0 to 127.255.255.255 (subnet number and its associated broadcast
address, first host address would be 0.0.0.1)
128.0.0.0 to 255.255.255.255 (subnet number and its associated broadcast
address, first host address would be 128.0.0.1)


Would be interesting to hear some theories and feedback

Flames to:  [EMAIL PROTECTED]


Charles









___
UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html
FAQ, list archives, and subscription info: http://www.groupstudy.com
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: ATM - LANE - LES SERVER

[Cthulu, CCIE Candidate]

The Charlie Answer:

LEC:  edge device such as a router with ATM interface.
LES:  registers clients and keeps a database of clients who have registered.
1 per ELAN.
BUS:  handles broadcasts, multicasts and "unknown" casts!!!   1 per ELAN.
LECS:  tells LEC what LES to use.1 per administrative domain (analogous
to an AS).



More info than you need:
http://www.cisco.com/univercd/cc/td/doc/cisintwk/idg4/nd2008.htm#xtocid29822
6


Good LANE presentation here (my CATM instructor who is a member of ATM forum
created them):

http://www.net2245.com/


HTH,

Charles



"Nadeem Khawaja" <[EMAIL PROTECTED]> wrote in message
[EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
> Could any body tell me what are the roles of LES Server in LANE
>
> Thanks
>
> ___
> UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html
> FAQ, list archives, and subscription info: http://www.groupstudy.com
> Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
>


___
UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html
FAQ, list archives, and subscription info: http://www.groupstudy.com
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: OSPF

[Cthulu, CCIE Candidate]

A WAN can be set up with one 1 area (or in your case, 2 areas).  there is no
requirement by OSPF that you use a certain number of areas.  If you have
more than 1 area, 1 of those areas must 0 as 0 is the backbone across which
other areas communicate with each other.


If you are asking if all the routers running OSPF in area 1 must physically
connect to area 0, the answer is no.  Only 1 router in area 1 must be
neighbors with a router in area 0:  that is the only requirement.

Good doc here:
http://www.cisco.com/cpress/cc/td/cpress/design/ospf/on0407.htm

I won't mention virtual links except to say don't use them.

HTH,

Charles






""Mike Baker"" <[EMAIL PROTECTED]> wrote in message
[EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
>
> Can a WAN be setup with only two areas - 0 and 1, even if all of the area
1s are
> not physically connected?
>
> Michael K. Baker
> Telecom Network Analyst
>
> ALLTEL Information Services
> 2000 Highland Road
> Twinsburg, Ohio 44087
> 330-963-1648
>
> www.alltel.com
> INIHGROBMALATNAWI
>
> ___
> UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html
> FAQ, list archives, and subscription info: http://www.groupstudy.com
> Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
>


___
UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html
FAQ, list archives, and subscription info: http://www.groupstudy.com
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: good source for ATM technology

[Cthulu, CCIE Candidate]

Some good info can be found here:

http://www.cisco.com/warp/public/121/index.shtml


http://www.cisco.com/univercd/cc/td/doc/cisintwk/idg4/nd2008.htm


There is not too much by the way of books for Cisco ATM;  I think
certificationzone is working on a whitepaper.


HTH,

Charles



""Rue Barb the Tangled"" <[EMAIL PROTECTED]> wrote in message
[EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
> I'm going to have to start messing with ATM - both for work (Cisco 7000's)
> and for the CCIE.
>
> I've looked at the Campus Design guide, but is there a good Cisco
reference
> for ATM - either book or web - and I need to get a grip not just on the
> Cisco side, but the physical side.
>
> Can't believe the BCRAN doesn't cover it.  Ah well.
>
> RB
> _
> Get Your Private, Free E-mail from MSN Hotmail at http://www.hotmail.com.
>
> Share information about yourself, create your own public profile at
> http://profiles.msn.com.
>
> ___
> UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html
> FAQ, list archives, and subscription info: http://www.groupstudy.com
> Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
>


___
UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html
FAQ, list archives, and subscription info: http://www.groupstudy.com
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: what is dark fiber?

[Cthulu, CCIE Candidate]

Actually, none of you are right!  Here's the only correct and right answer:

Dark fiber is when you poke an active SMF strand in your eye and blind
yourself in at least 1 eye.  Immediately after, you will stumble around in
the dark, tripping over the fiber that blinded you, hence the term, "dark
fiber."Interestingly enough, the term was coined by a Microsoft employee
working on a Nortel switch trying to connect to an IBM PS/2 to print to an
Apple LaserWriter.  There, I have insulted enough of the industry.


On a more serious note, taken from www.whatis.com website:


Dark fiber is optical fiber infrastructure (cabling and repeater) that is
currently in place but is not being used. Optical fiber conveys information
in the form of light pulses so the "dark" means no light pulses are being
sent. Dark fiber can refer to infrastructure that is in place but not yet
ready to use. For example, some electric utilities have installed optical
fiber cable where they already have power lines installed in the expectation
that they can lease the infrastructure to telephone or cable TV companies or
use it to interconnect their own offices. To the extent that these
installations are unused, they are described as dark.
"Dark fiber service" is service provided by local exchange carriers (local
exchange carrier) for the maintenance of optical fiber transmission capacity
between customer locations in which the light for the fiber is provided by
the customer rather than the LEC.

Works for me!  Dark fiber = any piece of INSTALLED fiber not lit up.  Your
carrier may or may not offer protection against backhoe cowboys who would
trench ya fiber right out of the ground...seriously!

Fibers, I mean, flames, to [EMAIL PROTECTED]

Charles





"Ty Hill" <[EMAIL PROTECTED]> wrote in message
[EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
> Depends on who you are talking to.  To me dark fiber means 1. fiber
strands
> that are currently not in use, or 2.  private fiber that you or your
company
> has installed, that is not part of the local telephone company's
> infrastructure.
> This is how I have been using the term for over 15 years.
>
>
>
> "Yee, Jason" wrote:
>
> > I think dark fibre means a OC3 or OC12 link
> >
> > Jason
> >
> > -Original Message-
> > From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of
> > bahadir korkmaz
> > Sent: Wednesday, September 06, 2000 12:04 AM
> > To: [EMAIL PROTECTED]
> > Subject: what is dark fiber?
> >
> > hi.
> > what is dark fiber?
> > i found some sites that says dark fiber means unused fiber.
> > is it so?
> > i think dark fiber must be different then unused fiber.
> > i mean for example. 10gigabit ethernet runs on dark fiber.
> > dark must be something related to bandwidth or wavelength.
> >
> > if someone knows dark fiber definition i ll be happy.
> >
_
> > Get Your Private, Free E-mail from MSN Hotmail at
http://www.hotmail.com.
> >
> > Share information about yourself, create your own public profile at
> > http://profiles.msn.com.
> >
> > ___
> > UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html
> > FAQ, list archives, and subscription info: http://www.groupstudy.com
> > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
> >
> > ___
> > UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html
> > FAQ, list archives, and subscription info: http://www.groupstudy.com
> > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
>
> **NOTE: New CCNA/CCDA List has been formed. For more information go to
> http://www.groupstudy.com/list/Associate-Announcement.html
> _
> UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html
> FAQ, list archives, and subscription info: http://www.groupstudy.com
> Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
>


**NOTE: New CCNA/CCDA List has been formed. For more information go to
http://www.groupstudy.com/list/Associate-Announcement.html
_
UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html
FAQ, list archives, and subscription info: http://www.groupstudy.com
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: Decreasing # of CCIE's Worldwide

[Cthulu, CCIE Candidate]

Well, sometimes, it would be nice if that CCIE would put his Zodiac sign
AFTER CCIE .  I mean, it would make genuflection so much easier!

It's nice to know that Cisco is dedicated to keeping the CCIE valuable in
terms of technical prowess and marketability.  I wonder if they will
reassign the numbers that get "decertified"?  It would be cool to become
CCIE 1024.

LOL

Charles



""Jon"" <[EMAIL PROTECTED]> wrote in message
8pb07m$gs8$[EMAIL PROTECTED]">news:8pb07m$gs8$[EMAIL PROTECTED]...
> My thoughts on the subject are rather simple.
>
> You see alot of IT people with 3, 4, 5, even 6 certs after their name.
> I am sure you are going to ask these people what real life Cisco
experience
> they have.
>
> When an Internetwork Expert signs his name all you see after is CCIE .
>
> Do you really need to know more?
>
> Jon
>
>
>
>
> **NOTE: New CCNA/CCDA List has been formed. For more information go to
> http://www.groupstudy.com/list/Associate-Announcement.html
> _
> UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html
> FAQ, list archives, and subscription info: http://www.groupstudy.com
> Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
>


**NOTE: New CCNA/CCDA List has been formed. For more information go to
http://www.groupstudy.com/list/Associate-Announcement.html
_
UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html
FAQ, list archives, and subscription info: http://www.groupstudy.com
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Learning ATM via Frame Relay

[Cthulu, CCIE Candidate]

Hi, all,

I attended a Cisco ATM class a few weeks at Global Knowledge (top notch
instructor, Mario Bigotti, ask for him by name).  I not only learned ATM,
and felt very comfortable..   I realized that my knowing frame relay,
especially configuing my big *ss AGS+ as a frame relay switch, really helped
me to understand the concepts, configuration of ATM!

Several years ago, I took a BISDN/ATM course:  I stunk.  ATM was mind
boggling, I could not follow the lecture at all;  the instructor gave me a
shiny ball to play with so that I would not distburb the class.   Not
coincdentally, at the time, I thought frame relay was something that
airplanes had.

Since then, I have mastered frame relay, and this ATM course was a snap!  In
a sense, you can learn ATM indirectly by mastering frame relay:  VPI/VCI are
just like DLCI,  PVC and SVC mean the same thing.  A frame relay switch
operates similar to an ATM switch.  My nickname for ATM is now "Kick *ss
Frame Relay."

This has been a unpaid public service announcement.  Flames to:
[EMAIL PROTECTED]


HTH,

Charles




**NOTE: New CCNA/CCDA List has been formed. For more information go to
http://www.groupstudy.com/list/Associate-Announcement.html
_
UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html
FAQ, list archives, and subscription info: http://www.groupstudy.com
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: VirtualCircuit.com site and domain for sale 2k

[Cthulu, CCIE Candidate]

Jesse,

I'll give you 50 cents if you take that domain and stick (jet flies
overheard).

...and don't send stuff like this to the group again!

Love,

Charles


""Brad Ellis"" <[EMAIL PROTECTED]> wrote in message
8pkcso$e7g$[EMAIL PROTECTED]">news:8pkcso$e7g$[EMAIL PROTECTED]...
> $5
>
> -Brad
> ""Bessette, Jesse"" <[EMAIL PROTECTED]> wrote in message
> [EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
> > VirtualCircuit.com site and domain for sale 2k
> > was appraised as high as $80,000.the link for the appraisle is listed
> > below..
> > This is a great name., tell someone...Sorry about the Spam
> >
> > http://www.afternic.com/index.cfm?a=research
> > 
> > &sa=listing&listID=974487
> >
> >
> >
> > Jesse Bessette
> > PC Architecture
> > MCP, TCP/IP Administator
> > 303-689-6931
> > Http://www.virtualcircuit.com 
> >
> >
>
>
> **NOTE: New CCNA/CCDA List has been formed. For more information go to
> http://www.groupstudy.com/list/Associates.html
> _
> UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html
> FAQ, list archives, and subscription info: http://www.groupstudy.com
> Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
>


**NOTE: New CCNA/CCDA List has been formed. For more information go to
http://www.groupstudy.com/list/Associates.html
_
UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html
FAQ, list archives, and subscription info: http://www.groupstudy.com
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: cisco switches

[Cthulu, CCIE Candidate]

Paraphrasing Blazing Saddles:

"Dunno.  Somethin' about where switch-switch go.  Jason only pawn in game of
life. "

LOL,

Charles



<[EMAIL PROTECTED]> wrote in message
[EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
> /
> Jason is no average dummy.  He's got a real live database providing
support to
> him.  I'll bet his boss thinks he's a guru.  He'll probably get his H-1B
> renewed.
> \
>
>
>
> Quoting Bellanca Smythe <[EMAIL PROTECTED]>:
>
> > I'm surprised Jason is getting so many people on this list helping him
> > troubleshoot his day to day job. Jason appears to be what the group
> > dislikes most - a paper network engineer.
> >
> > He's using the group to do all his consulting for him, for free.  If
you're
> > into supporting that, by all means, keep helping him.
> >
> > > -Original Message-
> > > From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of
> > > [EMAIL PROTECTED]
> > > Sent: Tuesday, September 12, 2000 9:34 PM
> > > To: [EMAIL PROTECTED]; [EMAIL PROTECTED]
> > > Subject: Re: cisco switches
> > >
> > >
> > > In a message dated 9/12/00 10:49:08 PM Eastern Daylight Time,
> > > [EMAIL PROTECTED] writes:
> > >
> > >
> > > << hi all,
> > >
> > > Do all cisco switches run IOS , I know 1900 do , but what about
> > > the others?
> > >
> > >
> > >
> > > Jason
> > >  >>
> > >
> > > Hey, you've asked a lot of beginner level questions in the past
> > > couple months
> > > that could be answered extremely simply by a simple phrase"RTFM"
;)
> > >
> > > To answer this one though since I just took the test...the 1900/2820
and
> > > 2900XL series switches use the IOS. I believe the Set based
> > > commands start at
> > > the 4000 series switches. Set based may actually start at 5000
> > > and up...I may
> > > be wrong on that...This could all be done by (once again) "RTFM"   ;)
> > >
> > > Hope I helped...
> > >
> > > Mark Zabludovsky ~ CCNA, CCDA, 1/4-NP
> > > [EMAIL PROTECTED]
> > >
> > > "Destiny is not a matter of chance, it is a matter of choice;
> > > it is not a
> > > thing to be waited for, it is a thing to be achieved."
> > >
> > >
> > >   ~William Jennings Bryan~
> > >
> > > **NOTE: New CCNA/CCDA List has been formed. For more information go to
> > > http://www.groupstudy.com/list/Associates.html
> > > _
> > > UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html
> > > FAQ, list archives, and subscription info: http://www.groupstudy.com
> > > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
> > >
> >
> > **NOTE: New CCNA/CCDA List has been formed. For more information go to
> > http://www.groupstudy.com/list/Associates.html
> > _
> > UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html
> > FAQ, list archives, and subscription info: http://www.groupstudy.com
> > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
> >
>
>
> -
> This mail sent through Atlantic.Net Webmail: http://webmail.atlantic.net/
>
> **NOTE: New CCNA/CCDA List has been formed. For more information go to
> http://www.groupstudy.com/list/Associates.html
> _
> UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html
> FAQ, list archives, and subscription info: http://www.groupstudy.com
> Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
>


**NOTE: New CCNA/CCDA List has been formed. For more information go to
http://www.groupstudy.com/list/Associates.html
_
UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html
FAQ, list archives, and subscription info: http://www.groupstudy.com
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

re: Free Folio: IOS 12.0

[Cthulu, CCIE Candidate]

Have your customer or mailer number ready.  Cisco is gettin' tight with
the lovin'!  

Flames to:  [EMAIL PROTECTED]

Charles

-Original Message-
From: [EMAIL PROTECTED] (Makarand Yerawadekar)
[mailto:[EMAIL PROTECTED]]
Posted At: Wednesday, May 10, 2000 4:59 AM
Posted To: cisco
Conversation: Free Folio: IOS 12.0
Subject: Free Folio: IOS 12.0


Dear Gang,

Please check the following URL --

http://www.cisco.com/pcgi-bin/lm/buffer/offer/networkagility/1276_landin
g/L319-166XD

please watch the wrap.

Bye

-Mak


___
UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html
FAQ, list archives, and subscription info: http://www.groupstudy.com
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
---

___
UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html
FAQ, list archives, and subscription info: http://www.groupstudy.com
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

re: can NAT block DNS broadcast?

[Cthulu, CCIE Candidate]

Microsoft sucks!

Having said that, we need a little more information.  

1. Are all your workstations registering dynamically with the Windows
DYNAMIC DNS?  Is the mail server registering with this DNS server
(actually, this doesn't have anything to do with your problem, I am just
curious).  

2.  Is the Mail server BEHIND teh NAT, or in front of the NAT in some
sort of DMZ?  (sounds like behind to me).

On second thought, skimpy information never stopped me from shooting off
my mouth before, so here's my guess:

The NAT mapping for the mail server is not being done correctly or
consistently.  In fact, suspect that the IP address for the mail server
is probably being NATed to another computer, other than the mail server.
You could fix this by forcing a static map of the private to public IP
address for the mail server such that it is always the same.  As a rule,
u should do this for all server types.

HTH, and if not, flames to:  [EMAIL PROTECTED]



-Original Message-
From: [EMAIL PROTECTED] ("Paul Yeo") [mailto:[EMAIL PROTECTED]]
Posted At: Wednesday, May 10, 2000 12:40 PM
Posted To: cisco
Conversation: can NAT block DNS broadcast?
Subject: can NAT block DNS broadcast?


hi everyone,

my customer has a mail server using windows DNS server. they complain
about 
problem receiving email, sometime mail could reach them 2 days late.
when 
the NAT is removed, everything is back to normal. what could be the
cause?

thanks a lot.


Get Your Private, Free E-mail from MSN Hotmail at http://www.hotmail.com

___
UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html
FAQ, list archives, and subscription info: http://www.groupstudy.com
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
---

___
UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html
FAQ, list archives, and subscription info: http://www.groupstudy.com
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Webster's Dictionary: Network topologies,technologies, and types: what's it all mean?

[Cthulu, CCIE Candidate]

Hi, all
 
At the risk of touching off a word war here,  I wanted to see if I could
get some verification from the group.  This is sort of a Howard B.
question in that it has philosophical undertones.   What I am trying to
accomplish is to cement my understanding of the terms below.  
 
I have been studying OSPF very heavily, and as you know, OSPF can pretty
much work over anything. It is the MIRACLE routing protocol, if you ask
me.   However, OSPF can be confounding in that it can treat the
underlying network as something that it is not.  For example, OSPF can
run on a broadcast network as it the broadcast network were actually a
point to multipoint network by executing the command ip ospf network
point-to-multipoint.  This brings me to the point of my post:
 
 
What is the topology in my example?Broadcast?  Point to multipoint?
Bus?  
 
What is the network technology?  Broadcast (such as Ethernet).  
 
What is the OSPF network type?   Point to multipoint (as set by me).  
 
 
Would it be accurate to say that term, "network topology" describes the
arrangement of the network's links or amount of connectivity between the
routers on the network?  On a broadcast network, what is the topology?
Would I consider it to be fully meshed as each router on a broadcast
network such as Ethernet would have a link to every other router?  Or
does network topology describe an integration of the links and the
network technology?
 
 
Network technology is an easy one to define, so I think.  It is the
complete _ compromising access methods, packet formation,
transmission methods, and so on.I am not sure what would fill in the
blank best:  protocol? suite?  means? mechanism?
 
 
OSPF network types are OSPF's description of what it or you describe the
network as.  It does NOT have to match the actual topology of the
network.  
 
 
Full mesh vs. partial mesh are somewhat easy to understand (amount of
connectivity between network devices on a network).  Would it be fair to
say that the amount of meshing defines the topology?  
 
 
I feel better after sharing my muddled thoughts with the group.  Am I
overthinking this?  
 
 
Flames to:   [EMAIL PROTECTED]  
 
 
Somewhere on the tank range...
 
Charles
 
 
 
 
 

___
UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html
FAQ, list archives, and subscription info: http://www.groupstudy.com
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

re: notebook PC as console

[Cthulu, CCIE Candidate]

Mind the blimey wrap!  This has a legacy parallel, 2 legacy DB serial
port, and of course, USB.  Should help!

http://catalog.belkin.com/IWCatProductPage.process?Merchant_Id=1&Section
_Id=35&pcount=&Product_Id=21004&Section.Section_Path=%2FUSB%2FHubs%2F#


Also, remember that Windows NT does NOT support USB;  Windows 98 does,
and so does little Windows 2000.  Windows 95 goes "Duh!  I smell USB!
What USB smell like?"  then you kick it real hard (kludges, drivers),
and it works until you start to rely on it, then it crashes.  Really,
you should say that Windows 95 doesn't support USB.  That is a better
answer!  

Charles


-Original Message-
From: [EMAIL PROTECTED] ("Bharat Suneja") [mailto:[EMAIL PROTECTED]]
Posted At: Friday, May 26, 2000 8:49 AM
Posted To: cisco
Conversation: notebook PC as console
Subject: Re: notebook PC as console


This question was posted by me to the newsgroup earlier - what if you
are
buying one of those new legacy-free PCs that has only USB ports ? I
searched
on the Belkin web site but did not find the USB-to-Serial converter. Let
me
know the part number if you know it.

Thanks,

Bharat Suneja

"Vijay Ramcharan" <[EMAIL PROTECTED]> wrote in message
6D0C88A4C9E3D311BDE40020AFFA39F5066626@EXSRVR">news:6D0C88A4C9E3D311BDE40020AFFA39F5066626@EXSRVR...
> Belkin has serial to USB converters available. USB to Ethernet is also
> available (in case you're interested).
> I'm pretty sure though that all notebooks do come with a serial port.
>
> Vijay Ramcharan, MCSE, CCNA
> mailto:[EMAIL PROTECTED]
>
>
> -Original Message-
> From: Priscilla Oppenheimer [mailto:[EMAIL PROTECTED]]
> Sent: Thursday, May 25, 2000 12:53 PM
> To: [EMAIL PROTECTED]
> Subject: notebook PC as console
>
>
> Sorry if this topic is way out of line and too stupid for most people,
but
> I'm really a Mac user, so I have an excuse. Because I will be teaching
> Sniffer Pro classes, I have to buy a new notebook PC for taking on the
> road. (Can't buy a Mac ;-()
>
> My question: I want the PC to also act as a console port to Cisco
routers
> and switches. It seems from my cursory investigation that a lot of the
> notebook PCs don't have a serial port anymore?? Or am I just not
looking
> hard enough at the spec sheets?
>
> Many of them have a USB port. But does Cisco use USB for its console
ports
> yet? I don't think so!?
>
> What do you all use for your PC console for a Cisco router or switch?
>
> Once the router or switch is configured, of course I'll use Telnet to
an
> Ethernet port, but I'm worried about that initial config.
>
> Thanks
>
> Priscilla
>
> __
> Priscilla Oppenheimer
> Phone 541-482-5685
> Fax   541-488-1708
> Web   http://www.priscilla.com
>
> ___
> UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html
> FAQ, list archives, and subscription info: http://www.groupstudy.com
> Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
>
> ___
> UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html
> FAQ, list archives, and subscription info: http://www.groupstudy.com
> Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
> ---


___
UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html
FAQ, list archives, and subscription info: http://www.groupstudy.com
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
---

___
UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html
FAQ, list archives, and subscription info: http://www.groupstudy.com
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

re: OSPF !!!

[Cthulu, CCIE Candidate]

Elias,

I am going to display my awesome lack of OSPF knowledge in public, so
bear with me:) 

 The ip ospf cost and ip ospf priority  are interface specific commands:
unless something drastic has happened at Cisco, you can not enter them
under the ospf process configuration mode as implied here.

Priority only affects DR elections:  it has no impact on route
selection.

Cost is a trickier one, but generally speaking, it does affect route
selection.  If you have two routes to the same destination, you can set
the cost of one higher than the other, and the lower cost one will be
preferred (assuming it is up and operational, of course).   

OSPF calculates the cost of each interface using the formula of
interface bandwidth/100Mbps;  the resulting number is the cost of the
interface by default.  


You could also indirectly set the interface cost by setting the
bandwidth of the interface higher or lower using the the bandwdith
command:  OSPF will then calculate based on that.

I am not going to get into load balancing between interfaces to the same
destination because, frankly, it's beyond the scope of my brain. I hope
the previous info helps even a little bit.

Flames to:  [EMAIL PROTECTED]

Charles





-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]
Posted At: Wednesday, June 14, 2000 5:59 PM
Posted To: cisco
Conversation: OSPF !!!
Subject: OSPF !!!


Hello everyone!

I have a bit of confusion with how to route selection occurs in OSPF by
icluding the following commands Please shade some light on this

Ok here comes

does cost and priority affects route selection ??

1. router ospf 3
 network 158.13.0.0 0.0.255.255 area 0
 default-information originate
 default-metric 1
 distance 85  
 ip ospf cost 10  
 ip ospf priority 4


2 router ospf 3
  network 158.13.0.0 0.0.255.255 area 0
 default-information originate
 default-metric 1
 distance 85 
 ip ospf cost 20
 ip ospf priority 5

Thanks,
Elias


Get free email and a permanent address at http://www.netaddress.com/?N=1

___
UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html
FAQ, list archives, and subscription info: http://www.groupstudy.com
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
---

___
UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html
FAQ, list archives, and subscription info: http://www.groupstudy.com
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

re: OSPF correction

[Cthulu, CCIE Candidate]

I may have to abdicate the throne:) 

Chuck Larrieu privately pointed out an error in my post:  

The correct formula for OSPF's calculating cost is 100 Mbps/bandwidth.


Thanks Chuck!!  I am also glad that I did not "James Cameron" on this
one!!

Charles




-Original Message-
From: [EMAIL PROTECTED] ("M Z") [mailto:[EMAIL PROTECTED]]
Posted At: Friday, June 16, 2000 1:33 AM
Posted To: cisco
Conversation: OSPF !!!
Subject: re: OSPF !!!


You are the OSPF king, charles :)
Load balancing with ospf happens automatically, assuming the two
interfaces 
have the same cost.
The fact that they are load balancing per packet or per destination
depends 
on the switching mechanism on the router.

Last note, if you want a router not to be a DR , set the priority to
zero, I 
believe the default is one, the decision if both routers have the same 
priority will go the router with the highest IP (router ID) address,
this is 
another good reason to use loopbacks with OSPF.



>From: "Cthulu, CCIE  Candidate" <[EMAIL PROTECTED]>
>Reply-To: "Cthulu, CCIE  Candidate" <[EMAIL PROTECTED]>
>To: [EMAIL PROTECTED]
>Subject: re: OSPF !!!
>Date: Thu, 15 Jun 2000 16:30:16 +0200
>
>Elias,
>
>I am going to display my awesome lack of OSPF knowledge in public, so
>bear with me:)
>
>  The ip ospf cost and ip ospf priority  are interface specific
commands:
>unless something drastic has happened at Cisco, you can not enter them
>under the ospf process configuration mode as implied here.
>
>Priority only affects DR elections:  it has no impact on route
>selection.
>
>Cost is a trickier one, but generally speaking, it does affect route
>selection.  If you have two routes to the same destination, you can set
>the cost of one higher than the other, and the lower cost one will be
>preferred (assuming it is up and operational, of course).
>
>OSPF calculates the cost of each interface using the formula of
>interface bandwidth/100Mbps;  the resulting number is the cost of the
>interface by default.
>
>
>You could also indirectly set the interface cost by setting the
>bandwidth of the interface higher or lower using the the bandwdith
>command:  OSPF will then calculate based on that.
>
>I am not going to get into load balancing between interfaces to the
same
>destination because, frankly, it's beyond the scope of my brain. I hope
>the previous info helps even a little bit.
>
>Flames to:  [EMAIL PROTECTED]
>
>Charles
>
>
>
>
>
>-Original Message-
>From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]
>Posted At: Wednesday, June 14, 2000 5:59 PM
>Posted To: cisco
>Conversation: OSPF !!!
>Subject: OSPF !!!
>
>
>Hello everyone!
>
>I have a bit of confusion with how to route selection occurs in OSPF by
>icluding the following commands Please shade some light on this
>
>Ok here comes
>
>does cost and priority affects route selection ??
>
>1. router ospf 3
>  network 158.13.0.0 0.0.255.255 area 0
>  default-information originate
>  default-metric 1
>  distance 85
>  ip ospf cost 10
>  ip ospf priority 4
>
>
>2 router ospf 3
>   network 158.13.0.0 0.0.255.255 area 0
>  default-information originate
>  default-metric 1
>  distance 85
>  ip ospf cost 20
>  ip ospf priority 5
>
>Thanks,
>Elias
>
>
>Get free email and a permanent address at
http://www.netaddress.com/?N=1
>
>___
>UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html
>FAQ, list archives, and subscription info: http://www.groupstudy.com
>Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
>---
>
>___
>UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html
>FAQ, list archives, and subscription info: http://www.groupstudy.com
>Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]


Get Your Private, Free E-mail from MSN Hotmail at http://www.hotmail.com

___
UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html
FAQ, list archives, and subscription info: http://www.groupstudy.com
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
---

___
UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html
FAQ, list archives, and subscription info: http://www.groupstudy.com
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

re: Help me catch a Hacker

[Cthulu, CCIE Candidate]

Nabil,

I did not bother to backtrack your message, and I am giving you the
benefit of the doubt;  however, your message has a distinct smell of
salmon about it.   Either that, or my paranoid sense is tingling
(apologies to Spider Man). 

First:  Get an UPS!  

Preferably one that you can lock.  Take come hot glue, and glue the
power cord into the router, and into the UPS (do so in such a way you
can tell if the power cord was removed).  Put a security tape (like the
"do not cross this line" tape used by the cops) over the power switch on
the router and on the UPS.  

(I find it hard to believe that you would have a multi-kilo dollar
router that is not on at least 100 buck UPS).  

That will help detect him/her at the physical layer.


I assume she/he gets in through the console port.  Secure it, and
require a password only you know.  

Put a modem on the AUX for yourself for OOB management.

Implement a TACACS/RADIUS, and assign this person a username/password.
Track the hell out of it:  there are more ways to do this than to choke
a cat.  

ACL! ACL! ACL!  Use them!  If this person is telneting, lock down your
telnet sessions.  

And, of course, you have SNMP!I assume that you have some type of
monitoring software?  If so, monitor the router:  whenever it goes down,
you should be paged immediately, and have a phone in that room with teh
router so that you can call this person and tell them to get out of
there NOW.  You should have a second number to their boss, and tell him
about this person.  Then you should have a third number to the boss of
the boss. 


Good luck catching your "hacker".  


Skeptical Charles




-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]
Posted At: Friday, June 16, 2000 6:05 PM
Posted To: cisco
Conversation: Help me catch a Hacker
Subject: Help me catch a Hacker


Greetings,

I've a 7000 router in a remote location and it seems 
the local admin hacking in by using the power outage 
excuse.  He changes the password by rebooting the 
router and peeks around.  I'm trying to catch him in 
the act or log his activities,  any ideas?

Thanks,

Nabil 

___
UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html
FAQ, list archives, and subscription info: http://www.groupstudy.com
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
---

___
UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html
FAQ, list archives, and subscription info: http://www.groupstudy.com
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

re: Difference between OSPF on NBMA Broadcast and Point-to-Multipoint?

[Cthulu, CCIE Candidate]

Hey, Michael,

Here I go again... Chuck, correct if I say anything wrong!!!:)  I am
quoting this from memory...

OSPF modifies its behavior based on what it defaults to on an interface.
For example, OSPF will default point to point over a point to point link
(i.e. HDLC), and will not elect a DR and the two routers on the link
will become neighbors.  Hello's are multicasted between each router.
LSA's are unicasted.   

You, as the human network engineer, can modify and tell OSPF how it
should behave.  For example, if you had two routers connected via their
ethernet (a broadcast network) interface, you could tell OSPF that the
network was point to point; it would not elect a DR as it normally would
on a broadcast network.  

When you tell OSPF that the network is Point to Multipoint, it will
treat the network as a collection of point to point links;  one of the
routers will be the hub (it has connectivity to all other routers), all
other routers will be spokes.  The spokes can talk to the hub and vice
versa, but not each other.  Again, as on a point to point network, no DR
is elected, multicasting is supported by default.  

When you tell OSPF that the network is nonbroadcast, you are telling it
that it can not multicast.  Since it can not multicast its hello's, the
routers on the NBMA network will not become neighbors.  You as the
engineer must execute the neighbor command, and tell the routers who
their neighbors are.  A DR is elected on a nonbroadcast, and the
priority could become important, depending on the amount of meshing you
have.





-Original Message-
From: [EMAIL PROTECTED] ("Yonker Bonk")
[mailto:[EMAIL PROTECTED]]
Posted At: Friday, June 16, 2000 11:20 PM
Posted To: cisco
Conversation: Difference between OSPF on NBMA Broadcast and
Point-to-Multipoint?
Subject: Difference between OSPF on NBMA Broadcast and
Point-to-Multipoint?


Could anyone clarify for me the difference between OSPF on NBMA
Broadcast 
and Point-to-Multipoint? The configuration looks the same to me. I'm
using 
the All-in-One CCIE Study Guide as reference, lab 37 or something. I
know 
that with P-to-M, that no DR is elected and whatnot, but could you give
me 
something more concrete? What is real world difference? When would you
ever 
run an NBMA network as broadcast? To cut down on configuration?
Thanks.

Michael

Get Your Private, Free E-mail from MSN Hotmail at http://www.hotmail.com

___
UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html
FAQ, list archives, and subscription info: http://www.groupstudy.com
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
---

___
UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html
FAQ, list archives, and subscription info: http://www.groupstudy.com
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

re: OSPF !!!

[Cthulu, CCIE Candidate]

Set priority of the existing DR to 0.  That'll force an election.  You
may need to manipulate the priorities of teh other routers to ensure the
router of your choice becomes the DR.  

HTH,

Charles


-Original Message-
From: [EMAIL PROTECTED] ("Tim McCabe") [mailto:[EMAIL PROTECTED]]
Posted At: Monday, June 19, 2000 9:12 PM
Posted To: cisco
Conversation: OSPF !!!
Subject: Re: OSPF !!!


Is there a way to force an election? I have the priorities set correctly
as
viewed in sho ip ospf nieghbor, however, the highest priority router is
not
the DR.

""Cthulu, CCIE Candidate"" <[EMAIL PROTECTED]> wrote in message
[EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
> Elias,
>
> I am going to display my awesome lack of OSPF knowledge in public, so
> bear with me:)
>
>  The ip ospf cost and ip ospf priority  are interface specific
commands:
> unless something drastic has happened at Cisco, you can not enter them
> under the ospf process configuration mode as implied here.
>
> Priority only affects DR elections:  it has no impact on route
> selection.
>
> Cost is a trickier one, but generally speaking, it does affect route
> selection.  If you have two routes to the same destination, you can
set
> the cost of one higher than the other, and the lower cost one will be
> preferred (assuming it is up and operational, of course).
>
> OSPF calculates the cost of each interface using the formula of
> interface bandwidth/100Mbps;  the resulting number is the cost of the
> interface by default.
>
>
> You could also indirectly set the interface cost by setting the
> bandwidth of the interface higher or lower using the the bandwdith
> command:  OSPF will then calculate based on that.
>
> I am not going to get into load balancing between interfaces to the
same
> destination because, frankly, it's beyond the scope of my brain. I
hope
> the previous info helps even a little bit.
>
> Flames to:  [EMAIL PROTECTED]
>
> Charles
>
>
>
>
>
> -Original Message-
> From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]
> Posted At: Wednesday, June 14, 2000 5:59 PM
> Posted To: cisco
> Conversation: OSPF !!!
> Subject: OSPF !!!
>
>
> Hello everyone!
>
> I have a bit of confusion with how to route selection occurs in OSPF
by
> icluding the following commands Please shade some light on this
>
> Ok here comes
>
> does cost and priority affects route selection ??
>
> 1. router ospf 3
>  network 158.13.0.0 0.0.255.255 area 0
>  default-information originate
>  default-metric 1
>  distance 85
>  ip ospf cost 10
>  ip ospf priority 4
>
>
> 2 router ospf 3
>   network 158.13.0.0 0.0.255.255 area 0
>  default-information originate
>  default-metric 1
>  distance 85
>  ip ospf cost 20
>  ip ospf priority 5
>
> Thanks,
> Elias
>
> 
> Get free email and a permanent address at
http://www.netaddress.com/?N=1
>
> ___
> UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html
> FAQ, list archives, and subscription info: http://www.groupstudy.com
> Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
> ---
>
> ___
> UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html
> FAQ, list archives, and subscription info: http://www.groupstudy.com
> Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
> ---


___
UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html
FAQ, list archives, and subscription info: http://www.groupstudy.com
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
---

___
UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html
FAQ, list archives, and subscription info: http://www.groupstudy.com
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

re: ACL Question

[Cthulu, CCIE Candidate]

Try this:


Given:  172.88.99.0/32

You want to permit only even-numbered addresse and deny odd number
addresses of the subnet 

!  The following line will permit all even numbered addresses. 
access-list 1 permit 172.88.99.0 0.0.0.254

! The following line will deny all odd numbered addresses.
access-list 1 deny 172.88.99.1 0.0.0.254

!  Finally, assuming you want to permit everything else.
access-list 1 permit any


Here's the math (I am focusing on the 4th octet only).  The key to
matching even/odd addresses is the last bit (1) of the octet.  This is
just one way to do it.

1. Matching Even numbers.
First, break it down into binary

    = 0 (4th octet of 172.88.99.0)
 1110   = 254 (4th octet of the wildcard mask).


Remeber that 1 means don't care, 0 means must match.  In the example
above,  the last bit of the 4th octet must be 0, (that is, if the last
bit is turned on, it will not match the above, and will therefore not be
permitted).

2. Matching Odd numbers.

 0001   = 1 (4th octet of 172.88.99.1)
 1110   = 254 (4th octet of the wildcard mask).

The last bit (1) must be turned on.  Since 1 must be turned on, this
will be match all odd numbered addresses.


That is a quick answer for a MOnday morning.

HTH,

Charles


-Original Message-
From: [EMAIL PROTECTED] ("Raymond Everson (Rainman)")
[mailto:[EMAIL PROTECTED]]
Posted At: Saturday, June 24, 2000 9:20 AM
Posted To: cisco
Conversation: ACL Question
Subject: ACL Question


*Still* haven't figured this one out:

Create an IP ACL, in as few lines as possible of course, which permits
only even-numbered IP addresses.

Ideas?

Rainman

___
UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html
FAQ, list archives, and subscription info: http://www.groupstudy.com
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
---

___
UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html
FAQ, list archives, and subscription info: http://www.groupstudy.com
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

RE: Sample Question Question

[Cthulu, CCIE Candidate]

Hey, gang,

That was a good one!   It's been a year since I took my last CCNP exam, but
I do believe that I improved my score by watching the wording.  Host address
vs. network address vs. subnet address mixed with classless or classful, add
a pinch of subnet zero, and oh, wait, let's use DLSW+!!!  Well, needless to
say, I know some engineers that are brilliant in the real world, but missed
points due to their overquick reading of a question.  

Raymond, thank you for including me the group that you did...I am highly
complimented!  

By the way, I am moving from Germany  to Texas in a few weeks.  My new
contributing address will still appear as "Cthulu, CCIE Candidate", but will
be homed on [EMAIL PROTECTED]   ( I don't know why, but the works
of H.P. Lovecraft seem appropriate literature for studying Cisco...is that
just me?)

Take care,

Charles
 

-Original Message-
From: Raymond Everson (Rainman) [mailto:[EMAIL PROTECTED]]
Sent: Monday, June 26, 2000 10:20 PM
To: Michael L. Williams; Daniel Ma; Cthulu, CCIE Candidate;
[EMAIL PROTECTED]; Bal Sandhu; Sanjay.Padmanabhan; Chuck Larrieu;
Lou Nelson; Aaron K. Dixon; [EMAIL PROTECTED]; Oz; study group
Subject: Re: Sample Question Question


Hi Michael, Daniel, Charles, Duarte, Bal, Sanjay, Chuck, Lou, Aaron, Sam,
Oz...

I've learned two things from this (seriies of) question(s).
#1:People would MUCH rather talk about meat/potatoes of tech
questions
than some of the off-subject crap that gets thrown into this
discussion
group; and
#2:There are some genuinely nice and interested people out there.

This question raises the paradox which we face when taking the CCIE written,
and then evaluating how to handle a lab scenario:  I don't have enough
information
to answer completely.  Please let me explain

Everyone agrees that the answer is "e. none of the above".   Review the
provided

answer all the way at the bottom.  Under normal circumstances (with no
consideration for zero subnet-enable)  the statement is correct, this
would
be
an illegal address/mask pair.  But, considering the possibilites of the
world,
I don't see a thing wrong with 193.243.12.43/25. ... and I would have been
totally messed up by that statement.

... which is why Sanjay and Michael and, of course Chuck are getting close
to
being ready for the lab. attention to detail the "Spot the Issue"
gotcha
in
the config with this scenario is a single line of code:  zero subnet-enable

btw:  Chuck Larrieu wins hands down for his completely awesome explanation
of
how to figure out what evens have in common, and what odds have in common.
After that, it's a simple matter of understanding inverse masking DOH!

Thanks a million, you're a fine bunch.

Rainman



"Michael L. Williams" wrote:

> I hope I'm right =)
>
> I would say the answer is E.  Here's why.
>
> 193.x.y.z is a Class C address.  So the first three octects of the subnet
> mask are the "network" portion, and the last octect is the "hosts"
portion.
>
> What they have done here by making the last octect 128 (1000 ),
instead
> of 0 ( ),  is to split that 256 hosts into two subnets, by taking
> that first bit away from the "hosts" and using it for "network". Each
subnet
> now has up to 128 hosts (of course you have to subtract 2; 1 for the
network
> and 1 for broadcast, so each subnet technically can only have up to 126
> hosts).
>
> So, the valid host addressess in the two subnets would be 193.243.12.1 -
> 193.243.12.126 (193.243.12.0 is the network address, and 193.243.12.127 is
> the broadcast for the 1st subnet), and 193.243.12.129 - 193.243.12.254
> (where 193.243.12.128 is the network address for subnet 2, and
> 193.243.12.255 is the broadcast address for subnet 2)
>
> So, is they ask us the "network address" for the IP address 193.243.12.43
> with a subnet mask of 255.255.255.128, the answer is 193.243.12.0.  If
there
> were to ask the "network address" for 193.243.12.181 with a subnet mask of
> 255.255.255.128, the answer is 193.243.12.128.
>
> Hope this helps some
>
> Mike W.
>
> - Original Message -
> From: "Raymond Everson (Rainman)" <[EMAIL PROTECTED]>
> Newsgroups: groupstudy.cisco
> Sent: Saturday, June 24, 2000 6:10 PM
> Subject: Sample Question Question
>
> > I ran across this question some time ago and kept the darned thing
> > because (I *guess*) I still have something to learn about IP ... . just
> > when I was *sure* I had it down cold.  Could you lend a fella a hand?
> >
> > Given the IP address of 193.243.12.43 and a subnet mask of
> > 255.255.255.128, what is the subnet address?
> >
> > a.194.243.12.32

Re: Migrating from EIGRP to OSPF

[Cthulu, CCIE Candidate It's Not Dagon]

Hey, Brian,

Thanks for the info.  I have some comments/clarification.


>EIGRP carries a lower administrative distance vs. EIGRP.
CR:  You mean EIGRP (90) has a lower AD than OSPF (110)?


So you can
>basically turn up OSPF on your routers, and then when it all looks kosher,
>what I would do is raise the administrative distance of EIGRP above
>OSPF..this will cause the EIGRP routes to phase out and OSPF to
>be used.  If it all goes crazyyou can revert by simply moving
>EIGRP back to the default administrative distance.  If you were to have
>cleared out your EIGRP config..it would be difficult to put things
>back..

CR:  That is an excellent suggestion!  It would be easy to write a script 
that lower/raise as needed.  Thank you!


>Ok, why would a more specific route be inserted in OSPF vs. EIGRP?  If you 
>deploy your OSPF to match that of your EIGRP, this should not
>happen...its definitly avoidable.

CR: I was not clear on this.  What I meant to say was that if EIGRP has a 
more specific/longest match route than OSPF (or vice versa), that route will 
be inserted in the routing table rather than the OSPF route.  Recalling past 
groupstudy discussions, a learned route gets inserted in the routing table 
in order of preference of:

1. Most specific/longest match
2. administrative distance
3. cost (metrics)


I had a situation where a more specific EIGRP route stayed in the routing 
table even though adjustments has been made to prefer OSPF. For example, if 
you enter a network 1.1.1.1 0.0.0.0 area 0 command under OSPF, the mask that 
gets advertised with this route by OSPF is whatever mask you have on the 
interface.  Another thing is that if you advertise loopback interfaces, OSPF 
treats them as stub hosts (with a /32 mask);  therfore, the route from OSPF 
will be inserted in the routing table as it is more specific/longest match, 
rather than the same route learned from EIGRP with its lower administrative 
distance.  These are the types of problems I want to minimize.


Many thanks, Brian, for the suggestions and feedback!

Charles

_
Get Your Private, Free E-mail from MSN Hotmail at http://www.hotmail.com.

Share information about yourself, create your own public profile at 
http://profiles.msn.com.

**NOTE: New CCNA/CCDA List has been formed. For more information go to
http://www.groupstudy.com/list/Associates.html
_
UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html
FAQ, list archives, and subscription info: http://www.groupstudy.com
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

RE: Migrating from EIGRP to OSPF - Bad News!

[Cthulu, CCIE Candidate It's Not Dagon]

The decision process for putting a route in the table is (roughly from my 
poor memory so correct at will) is:

1.  most specific/longest match
2. AD
3. metrics/cost stuff
4. lunar alignment (just kidding, I forgot this one)

So, since OSPF will always advertise loopbacks with a /32, they will almost 
always be inserted in the table even if EIGRP is advertising the same 
network and has a lower AD.

HTH,

CHarles



>From: Brian <[EMAIL PROTECTED]>
>To: Chuck Larrieu <[EMAIL PROTECTED]>
>CC: "Cthulu, CCIE Candidate It's Not Dagon" <[EMAIL PROTECTED]>,  
>   [EMAIL PROTECTED]
>Subject: RE: Migrating from EIGRP to OSPF - Bad News!
>Date: Wed, 27 Sep 2000 08:27:26 -0500 (CDT)
>
>
>The /32's are those the loopbacks?
>
>raising the EIGRP AD should work, it may take some time for the route to
>be invalidated though.
>
>Brian
>
>
>On Tue, 26 Sep 2000, Chuck Larrieu wrote:
>
> > Well, I couldn't resist. I had the router pod set up for a RIP to EIGRP
> > migration test yesterday.  I am not sure that the results will soothe 
>your
> > concerns, Mr. Cthulu.
> >
> > I would post configurations, but the file size  exceeds what Paul 
>allows.
> > Those who are interested, contact me off line, and I will send you a 
>text
> > file with configurations and routing tables.
> >
> > Following is a routing table resulting from placing OSPF onto a router
> > already running EIGRP.  Note that OSPF routes with a mask of /32 are 
>being
> > placed into the routing table. I am not sure why this is happening. 
>Several
> > tweaks have failed to eliminate these routes.  Nor did changing the 
>EIGRP
> > distance to 115 ( higher than OSPF's 110 ) eliminate EIGRP routes from 
>the
> > routing table.
> >
> > So now I have to wonder what is happening.
> >
> > If no one has a quick and good explanation, I'll try to post configs and
> > fool with this some more. Possibly I can place the routers on line and 
>let
> > folks poke around
> >
> > Look forward to some more discussion. Customer visits tomorrow, so I 
>won't
> > be back on line until very late in the day.
> >
> > Chuck
> >
> >
> > Router# show ip route
> > Codes: C - connected, S - static, I - IGRP, R - RIP, M - mobile, B - BGP
> >D - EIGRP, EX - EIGRP external, O - OSPF, IA - OSPF inter area
> >N1 - OSPF NSSA external type 1, N2 - OSPF NSSA external type 2
> >E1 - OSPF external type 1, E2 - OSPF external type 2, E - EGP
> >i - IS-IS, L1 - IS-IS level-1, L2 - IS-IS level-2, ia - IS-IS 
>inter
> > area
> >* - candidate default, U - per-user static route, o - ODR
> >P - periodic downloaded static route
> >
> > Gateway of last resort is not set
> >
> >  192.168.8.0/24 is variably subnetted, 2 subnets, 2 masks
> > D   192.168.8.0/24 [90/2809856] via 192.168.254.5, 23:15:32, Serial1
> > O IA192.168.8.1/32 [110/129] via 192.168.254.5, 00:05:44, Serial1
> >  192.168.9.0/24 is variably subnetted, 2 subnets, 2 masks
> > O IA192.168.9.1/32 [110/129] via 192.168.254.5, 00:05:45, Serial1
> > D   192.168.9.0/24 [90/2809856] via 192.168.254.5, 23:15:32, Serial1
> >  192.168.10.0/24 is variably subnetted, 2 subnets, 2 masks
> > D   192.168.10.0/24 [90/2809856] via 192.168.254.5, 23:15:33, 
>Serial1
> > O IA192.168.10.1/32 [110/129] via 192.168.254.5, 00:05:46, Serial1
> >  192.168.11.0/24 is variably subnetted, 2 subnets, 2 masks
> > O IA192.168.11.1/32 [110/129] via 192.168.254.5, 00:05:46, Serial1
> > D   192.168.11.0/24 [90/2809856] via 192.168.254.5, 23:15:33, 
>Serial1
> >  192.168.4.0/24 is variably subnetted, 2 subnets, 2 masks
> > D   192.168.4.0/24 [90/2297856] via 192.168.254.5, 23:15:34, Serial1
> > O IA192.168.4.1/32 [110/65] via 192.168.254.5, 00:05:47, Serial1
> >  192.168.5.0/24 is variably subnetted, 2 subnets, 2 masks
> > O IA192.168.5.1/32 [110/65] via 192.168.254.5, 00:05:47, Serial1
> > D   192.168.5.0/24 [90/2297856] via 192.168.254.5, 23:15:34, Serial1
> >  192.168.6.0/24 is variably subnetted, 2 subnets, 2 masks
> > D   192.168.6.0/24 [90/2297856] via 192.168.254.5, 23:15:34, Serial1
> > O IA192.168.6.1/32 [110/65] via 192.168.254.5, 00:05:47, Serial1
> >  192.168.7.0/24 is variably subnetted, 2 subnets, 2 masks
> > O IA192.168.7.1/32 [110/65] via 192.168.254.5, 00:05:47, Serial1
> > D   192.168.7.0/24 [90/2297856] via 192.168.254.5, 23:15:34, Serial1
> > C192.168.0.0/24 is directly connected