Re: MBA or CCIE [7:41809]
Sean Knox wrote: > > > I was actually heading towards my CCIE, but after getting my CCNP, I am > content with that for now and and getting more experience (fortunately I am > not some new wide-eyed kid in the field and have been doing this awhile). > Congrats on your decision to pursue your MBA and I wish you luck. > I made a similar decision myself within the last few weeks. I had planned on pursuing my CCIE-Security, but realize that I don't work enough with Cisco products on a daily basis, and certainly not with routing in a complex way, to feel that I would deserve the cert, even if I attained it. I'm going back to school for my MS in CS, starting classes in June. I think in the long run, an advanced degree is more of a benefit than an advanced vendor cert. But thats just me. Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=41848&t=41809 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Question about IOS software [7:42577]
All, I have an oldish CiscoPro 2200 (clone Catalyst 2901) running IOS version 2.1(4). I want to upgrade this to a recent IOS, and have a 4.5 version to put on it. I was told that I'll need to do this upgrade in steps and I see on the Cisco site that I must first upgrade to 2.4(5) and then ugrade again from there. My problem is, I can't find 2.4(5) for the Supervisor module anywhere! Any clues from the masses? Help? -Ds Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=42577&t=42577 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
OT: Switch for sale [7:42903]
All, Graduate school is forcing me to curtail my CCIE studies, and is straining my budget to boot! With this in mind, I am selling the switch from my home lab on eBay. It's an Etherswitch 2200 (Cat 2901 clone) running 4.5(13a). If you are interested, it is item 2021069952 with a "Buy it Now " price of $900. http://cgi.ebay.com/ws/eBayISAPI.dll?ViewItem&item=2021069952 Thanks, and good luck. -Ds Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=42903&t=42903 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Rack Mounting Kit for 1600/1720??? [7:43407]
Jim Newton wrote: > > I have a customer that swears that he has seen a kit to rack mount a > 1600/1720 router. Has anyone ever heard of this? > Yes, I've seen them as well. They are basically just a fancy shelf with a faceplate. They are sold on e-bay all the time. http://cgi.ebay.com/ws/eBayISAPI.dll?ViewItem&item=2021421586 Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=43415&t=43407 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Let the flamin' begin....dumbass beginner question [7:43771]
mark wrote: > > I just need to know where to start with them. If > it's not a clock rate issue, have I given enough info for anyone to give me > an educated guess as to what I'm doing wrong? If not, what other info can I > provide? A snipet from the output of sh run, specifically for your serial interfaces, the output of sh int serial X where X is the int number and, if running frame relay (I'd avoid PPP here) the output of the several show frame commands (esp. PVC info) That should give folks a better chance of helping... Also, make sure you have `no shut` the interfaces on both sides! Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=43771&t=43771 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: how to set duplex and speed on 2500 router int ??? [7:45270]
Andy Ethelston wrote: > > > Load the config using ifconfig, and then edit your file/etc/hostname > file so the information will be read on the next startup. > A "non-answer" is superior to a wrong answer. The file to edit to set a netmask is (quite logically) /etc/netmasks (actually, /etc/inet/netmasks, but there's a link, so all is well). Back to cisco, please... Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=45270&t=45270 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Cryptography and frame-relay [7:46621]
Paulo Roque wrote: > > Hi All, > > Is necessary to encrypt the comunication that goes over frame-relay links or > the frame-relay virtual circuits (PVC/SVC) mechanisms are secure enough to > protect my data? > I think that this is pretty subjective. What is the value of the data that is transiting this link? I always err on the side of caution when it comes to data protection, esp. since a frame link isn't so fast that the overhead of encryption would be a big deal. As to the question of PVC/SVC security, the answer is two fold. At first blush, you realize that your data is going over public right of way, so it is available for interception. But when it comes down to brass tacks, it isn't as easy to find your data among the millions of other packets within the cloud. Can it be done? Yes. Would an attacker choose this as the best attack vector? Probably not. Should you still take steps to protect against the attack? For sure. -Ds Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=46633&t=46621 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Very odd problem [7:50459]
Hello all, I have a problem that I can barely describe, let alone quantify. I seek the assistance of the masters, and suspect this might be an interesting thing for those of us in the student role. Here goes: I have an internal network seperated from a partner network via a 6500 switch/router which is also running NAT. There is also a Raptor firewall between my network and the border switch. There are some servers in the partner network that are accessed from my network. The 6500 has static NAT entries for those servers. The firwall rulebase is set to allow the connections. The problem is, I can not connect to a specific server in the partner network.. that is, until that server pings my workstation. After that, I can connect to them. What could be the cause of this? Could it be a NAT issue? Where might I start troubleshooting? -Ds Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=50459&t=50459 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Very odd problem [7:50459]
Symon Thurlow wrote: > > Any VPN between the sites? > Raptor 6.5, no VPNs in use. Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=50479&t=50459 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Very odd problem [7:50459]
"[EMAIL PROTECTED]" wrote: > > can you clarify a few things? > > 1. are you able to connect to any other servers on the partner network? I believe so, but I am not 100%. > 2. is your workstation address being NATed as well? ie is the real address > used when that specific server pings your workstation? Yes. The workstations are NATed from a pool of addresses. The servers on the partner net are static NATs > 3. any chance you have a traceroute/tracert result from your workstation to > the server? > Alas, I cannot. Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=50490&t=50459 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Very odd problem [7:50459]
"Lupi, Guy" wrote: > > Can the server initiate a tcp connection to you? After it pings me, I can connect using TCP as well as pinging. They have not tried to initiate a connection to me, so I can't say. > Have you checked the NAT > mapping to ensure you are allowed to initiate connections to that server? > It sounds like when the server pings you, it opens a "hole" through NAT > allowing you to then initiate a connection to it through that "hole". This > doesn't sound like it is in keeping with the proper function of stateful > NAT, which should just allow ICMP back throught the translation it created, > unless the NAT implementation isn't using stateful inspection. If you can > contact all the servers except that one, I would look for the difference > between the configuration for the other servers and that one. > I'm leaning that way as well... Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=50491&t=50459 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
IGS-R image
I have an old IGS-R that I'm trying to get up in my lab. The eprom has IOS 9. While it has been fun using IOS 9 I would like to use a more up to date IOS. At least IOS 11.0. But I can't figure out which IOS to use. Cisco does not list the IGS on their software site. Also this thing has no flash so I am trying to netboot it. I downloaded a couple of 11.1 images but it is not working. It only has 4 mb of Ram. Can anyone point me to the right image. I thought the IGS used the same image as the earlier 2500 but when I netboot those I get a buffer overflow error. Thanks for your help Drew _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: **SLA help
www.sans.org is a good place to start. Do a search on Policy or Acceptable Use Policies. Another good place is: http://www.eff.org/pub/CAF/policies/ This site list some policies from different educational institutions. Regards, Drew Maness Information Security Engineer Veritect www.veritect.com -Original Message- From: Howard C. Berkowitz [mailto:[EMAIL PROTECTED]] Sent: Sunday, January 28, 2001 2:09 PM To: [EMAIL PROTECTED] Subject: Re: **SLA help The sort of topics you are looking for are more likely to be under corporate security policies, or Acceptable Use Policies, than SLAs. SLAs tend to be concerned with how fast/reliably something can be done, rather than whether it is permissible or not. > >Deepak Sharma wrote: > >> Hello all >> >> Im making a SLA ( Service level agreement ) with my users in my region. >> Something along the lines of what type of internet browsing is allowed. >> What you are allowed to download and such >> >> and also something on how fast my IT dept. is going to be answering to >> user problems and requests. >> >> I recall someone posting a link of a web site where it had some examples >> of these type of documents. Plus any type of other help will be greatly >> appreciated. >> >> thanks > > Deepak >> _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Pix Bootp relay or IP forwarding
Is there a way to do bootp relay through a pix box; something similar to the IP forwarding in the router? The scenario: corporate network with a pix box separating separate areas of the corporate network. Problem is one side has the DHCP server on it and we need clients on the other side to receive dhcp addresses. How can I do this? After looking at CCO I think it can't be done. I know there is a DHCP Client and a minimal DHCP server with release 5.2 thank guys and gals Drew _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: SOLARIS SNMP MIB
[EMAIL PROTECTED] wrote: > > Hi, All > > I am looking for Sun's Solaris snmp mib about CPU UTILIZATION, MEM UTILIZATION. > > Please let me know these MIB oids. For the life of me, I can't imagine what this has to do with preparation for a Cisco exam. You'll find much better answers either on the Sun site (http://docs.sun.com) or on a Solaris related mailinglist or newsgroup... HAND _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Strange problem with Cisco 2501 routers
Do you have a TFTP server on the segment maybe with a file net-conf? It could be pulling a bad configuration file from a tftp server. Also it might be trying to pull a IOS image from a TFTP server that is not there. It might have a boot system tftp command in the config. I assume you just got these and you are experiencing the problem. Try going into ROM mode and change the Configuration register to ignore the start up config file (confreg 0x142). reload the router and see what the config look like. I have a feeling it is looking for something off a TFTP server. If you want you can make a copy of the config and then do a write erase. Change back the Config Register to 0x2102 (Router#config-reg 0x2102). Reload the router and see if you get the same error. Hope this helps Drew -Original Message- From: Ole Drews Jensen [mailto:[EMAIL PROTECTED]] Sent: Wednesday, February 07, 2001 7:31 AM To: 'John Neiberger'; [EMAIL PROTECTED] Cc: [EMAIL PROTECTED] Subject: RE: Strange problem with Cisco 2501 routers You're right, but I think he is talking about the UPDOWN messages. This could be due to a "shutdown" line in each interface, but it would help to see the configuration. Ole Ole Drews Jensen Systems Network Manager CCNA, MCSE, MCP+I RWR Enterprises, Inc. [EMAIL PROTECTED] http://www.CiscoKing.com NEED A JOB ??? http://www.oledrews.com/job -Original Message- From: John Neiberger [mailto:[EMAIL PROTECTED]] Sent: Wednesday, February 07, 2001 9:17 AM To: [EMAIL PROTECTED] Cc: [EMAIL PROTECTED] Subject: Re: Strange problem with Cisco 2501 routers The only startup errors evident in this output is this: > Unknown or ambiguous service arg - udp-small-servers > Unknown or ambiguous service arg - tcp-small-servers > Illegal IP keyword - classless You're probably seeing this because you are running IOS 11.1(7), but your config is pasted in from a router running at least 11.2. 11.1(7) apparently doesn't understand these lines: service udp-small-servers service tcp-small-servers ip classless You can upgrade your IOS or remove those lines from your config. The status messages about the interfaces are not strange in any way. They look quite normal, assuming the ethernet port was connected to something but the serial ports were not. HTH, John > > > Hi Folks, > > I have a few Cisco 2501 routers all eith the same > startup problem. On startup, the routers behave > normal, but after the "Press RETURN to get started" > message, the routers come up with errors about the > ethernet and serial interfaces, restarts and then hang > up completely. > > Thinking that the problem may be with the DRAM, Flash > or software, I have replaced these with ones from > other Cisco 2501 routers in good working condition, > but the problem remained the same. The typical output > from these routers is as shown at the end of this > posting. > > Any good ideas will be appreciated. > > Thank you. > > > > > System Bootstrap, Version (3.3), SOFTWARE > Copyright (c) 1986-1993 by cisco Systems > 2500 processor with 4096 Kbytes of main memory > > Unknown or ambiguous service arg - udp-small-servers > Unknown or ambiguous service arg - tcp-small-servers > Illegal IP keyword - classless > Booting ie11170n from Flash address space > F3: 3731220+95304+191716 at 0x360 > > Restricted Rights Legend > > Use, duplication, or disclosure by the Government is > subject to restrictions as set forth in subparagraph > (c) of the Commercial Computer Software - Restricted > Rights clause at FAR sec. 52.227-19 and subparagraph > (c) (1) (ii) of the Rights in Technical Data and > Computer > Software clause at DFARS sec. 252.227-7013. > >cisco Systems, Inc. >170 West Tasman Drive >San Jose, California 95134-1706 > > > > Cisco Internetwork Operating System Software > IOS (tm) 3000 Software (IGS-I-L), Version 11.1(7), > RELEASE SOFTWARE (fc2) > Copyright (c) 1986-1996 by cisco Systems, Inc. > Compiled Wed 23-Oct-96 20:37 by tej > Image text-base: 0x0301FC14, data-base: 0x1000 > > cisco 2500 (68030) processor (revision A) with > 4096K/2048K bytes of memory. > Processor board ID 01091217, with hardware revision > > Bridging software. > X.25 software, Version 2.0, NET2, BFE and GOSIP > compliant. > 1 Ethernet/IEEE 802.3 interface. > 2 Serial network interfaces. > 32K bytes of non-volatile configuration memory. > 4096K bytes of processor board System flash (Read > ONLY) > > > > Press RETURN to get started! > > > %LINEPROTO-5-UPDOWN: Line protocol on
Problems?
List traffic has decreased dramatically in the last week (only 4 messages this week). Is it just me? -ds _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: CCIE salary
Brian wrote: > > This really isn't true. Lets look at some basic facts: > > There are only ~6000 or so CCIE's in the world, possibly as many as 30% > are employed by cisco. > > There are over 6000 ISP's in the US alone. > > There are over 7000 AS's in the world. > > My point is, that if most of your CCIE's work for cisco and big big > companies, then their are a ton of networks, complex networks, that don't > even have CCIE's at the healm. Even a large company like UUnet may only > have a handfull of CCIE's. > Also take into account the large number of CCIE's who make their wages at training companies, and who aren't in the field. I know that when I was with IBM Global Network Services, we had just 2 that I knew of... _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Here's an easy one
Multicast MAC address' have the second bit odd. That is 01- or 03- to 0f- The 01-00-5E (I believe) is the multicast address assigned(?) to CGMP/IGMP -Original Message- From: Jack Williams [mailto:[EMAIL PROTECTED]] Sent: Friday, February 23, 2001 10:47 AM To: Williamson, Paul; [EMAIL PROTECTED] Subject: RE: Here's an easy one I'm sure the group will tell me if I put my foot in my mouth, but: Multicast *destination* MAC addresses start with 01-00-5E --Original Message-- From: "Williamson, Paul" <[EMAIL PROTECTED]> To: [EMAIL PROTECTED] Sent: February 23, 2001 3:23:34 PM GMT Subject: Here's an easy one Ok so we know how to convert a multicast ip into a mac, how about the reverse. I got a syslog message that made me curious:- "invalid traffic from multicast source address 0f:37:59:6f:df:0d" and i thought well i wonder what ip address that would be but i couldn't figure out the first octet. Should all multicast mac addresses start with 01-00-5e ?? Is this mac address invalid ? Anyone ? Thanks -Paul PLEASE READ: The information contained in this e-mail is confidential and intended for the named recipient(s) only. If you are not an intended recipient of this email you must not copy, distribute or take any further action in reliance on it and you should delete it and notify the sender immediately. Email is not a secure method of communication and Nomura International plc cannot accept responsibility for the accuracy or completeness of this message or any attachment(s). Please check this e-mail for virus infection, for which Nomura International plc accepts no responsibility. If verification of this email is sought then please request a hard copy. Unless otherwise stated any views or opinions presented are solely those of the author and do not represent those of Nomura International plc. This email is intended for informational purposes only and is not a solicitation or offer to buy or sell securities or related financial instruments. Nomura International plc is regulated by the Securities and Futures Authority Limited and is a member of the London Stock Exchange. _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Can someone interpret this please? - an Update
I have also received a call from one of our level one support staff that was trying to move a user computer from one side of the office to the other. It seems that the computer worked when they were on one side of the room but when they moved it to the other side of the room it could not get on the network. They were using the same port but in order for them to set up the computer on the other side of the room they had used a longer patch cable. It seems the longer cable put them over 325 feet. Since this office was only roughly 75 feet from the wiring closet, I had a cable guy come out and look at the run. Seems who ever put in the first cable, for some reason, left 200 and some odd feet of cable coiled up in the ceiling. -Original Message- From: Tony van Ree [mailto:[EMAIL PROTECTED]] Sent: Monday, February 26, 2001 1:50 PM To: John Neiberger; [EMAIL PROTECTED] Cc: [EMAIL PROTECTED] Subject: Re: Can someone interpret this please? - an Update Hi All, When they refer to long they often mean 'real long'. I once looked at a faulty LAN in this case the servers were falling of the end. They got smmart moved the servers out of the computer room and into the middle of the physical LAN this helped slightly. Eventually the rang me and I had a look. Straight away I saw late collision type things (I picked up on the CRC's and Fragments). A cable scan showed 450+ meters on a 10Base2 segment. What had happened was someone tied two segments together with a bit of thin cable about 50 metres long. Also the site used AMP outlets and the spare fly leads were still inserted in the sockets. A repeater and removal of about 100 meters of cable fixed the issue. These days you won't see this type of problem. Teunis Hobart, Tasmania Australia On Monday, February 26, 2001 at 01:19:29 PM, John Neiberger wrote: > I don't remember this thread, but I wanted to chime in. This one time > (at band camp) we had a file server connected to a hub, but someone set > the server to full duplex. This was wreaking all sorts of havoc on the > LAN. I noticed the large number of late collisions but I didn't know > what that indicated. Thanks to someone on this list, I checked the > duplex settings and voila, that was it. > > I've read many times that late collisions are often caused by extra > long ethernet cables, but I've never experienced that. I have, however, > experienced the duplex-caused late collisions many times. I have to > keep a close eye on the LAN guys around here. > > >>> "Kevin Wigle" <[EMAIL PROTECTED]> 2/26/01 12:59:01 PM >>> > Group, > > An update on that late-collision issue I brought to the list a while > back. > > Finally got to talk to a tech with my ISP today and we worked through > the > circuit. > > It seems the half-duplex / full-duplex answer wins the prize. > > At first they tried to get me to verify my router's settings and as I > have > done many times before, a sh int e0/1 indicated that the interface was > not > full-duplex. > > But he wanted me to give a command to change it to half-duplex "just to > see > what happens". > > But I suggested he do it on his end first - "just to see what > happens". > > In the meanwhile we were monitoring the router interface with sh int > and > observing console errors. > The console was constantly spewing out transmit errors - late > collision. > > The sniffer was seeing significant alignment errors. > > Anyway, he "does something" and immediately the console stops > scrolling > errors. > > amazing.. > > So, we're going to stress this circuit a bit before letting them close > the > ticket. > > It seems they paid more attention when we said we had a sniffer on the > line. > > thanks for all the responses! > > Kevin Wigle > > > > _ > FAQ, list archives, and subscription info: > http://www.groupstudy.com/list/cisco.html > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] > > > > _ > FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] > > -- www.tasmail.com _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: back-to-back cable AGS+ and 2523
On the AGS, unlike the 2500's and above, the DTE, DCE setting is actually a jumper on the serial card. You will have to go in and remove the card and set/verify the jumpers. This link will provide you the correct jumper settings. More than likely it is set for DCE, the default http://www.cisco.com/univercd/cc/td/doc/product/core/cisagspl/agscfig/34084. htm#xtocid2857013 Let me know if you have any other questions. I have two AGS running in my lab. One for a frame-switch. The other is pretending to be a 2502 until I can purchase one. Regards, Drew -Original Message- From: Daniel Cotts [mailto:[EMAIL PROTECTED]] Sent: Tuesday, February 27, 2001 8:04 AM To: 'ciscojolof'; [EMAIL PROTECTED] Subject: RE: back-to-back cable AGS+ and 2523 Do a "show controllers s 4" on the 2523 to verify that the router sees a DCE cable. I have no experience with the AGS+. However, some serial ports are sync while others are async. Which ones do you have? > -Original Message- > From: ciscojolof [mailto:[EMAIL PROTECTED]] > Sent: Tuesday, February 27, 2001 8:59 AM > To: [EMAIL PROTECTED] > Subject: back-to-back cable AGS+ and 2523 > > > HI guys, > > I have a problem having my AGS+ (DB26 DTE) talk to my 2523 (DB60 DCE). > I purchased a custome cable and tried to have it work in vain. > > THe configs are as follow > > > Router_2523 is DCE (provides clocking at 56000) > > > > > > > Router_AGS+#sh int s3 > Serial3 is up, line protocol is down > Hardware is MCI Serial > Internet address is 172.17.10.4 255.255.255.0 > MTU 1500 bytes, BW 56 Kbit, DLY 2 usec, rely 255/255, load 1/255 > Encapsulation HDLC, loopback not set, keepalive set (10 sec) > Last input never, output 0:00:20, output hang never > Last clearing of "show interface" counters never > Input queue: 0/75/0 (size/max/drops); Total output drops: 0 > Output queue: 0/64/0 (size/threshold/drops) > Conversations 0/1 (active/max active) > Reserved Conversations 0/0 (allocated/max allocated) > 5 minute input rate 0 bits/sec, 0 packets/sec > 5 minute output rate 0 bits/sec, 0 packets/sec > 0 packets input, 0 bytes, 0 no buffer > Received 0 broadcasts, 0 runts, 0 giants > 1 input errors, 0 CRC, 1 frame, 0 overrun, 0 ignored, 0 abort > 1258 packets output, 28716 bytes, 0 underruns > 0 output errors, 0 collisions, 429 interface resets, 0 restarts > 0 output buffer failures, 0 output buffers swapped out > 841 carrier transitions > Router_AGS+# > > Router_2523#sh int s4 > Serial4 is up, line protocol is down > Hardware is CD2430 in sync mode > Internet address is 172.17.10.2/24 > MTU 1500 bytes, BW 115 Kbit, DLY 2 usec, rely 255/255, > load 88/255 > Encapsulation HDLC, loopback not set, keepalive set (10 sec) > Last input 00:00:00, output 00:00:00, output hang never > Last clearing of "show interface" counters never > Input queue: 1/75/0 (size/max/drops); Total output drops: 0 > Queueing strategy: weighted fair > Output queue: 0/1000/64/0 (size/max total/threshold/drops) > Conversations 0/2/256 (active/max active/max total) > Reserved Conversations 0/0 (allocated/max allocated) > 5 minute input rate 4 bits/sec, 200 packets/sec > 5 minute output rate 4 bits/sec, 200 packets/sec > 1093746 packets input, 24255326 bytes, 0 no buffer > Received 0 broadcasts, 0 runts, 0 giants, 0 throttles > 119 input errors, 119 CRC, 0 frame, 0 overrun, 0 ignored, 0 abort > 1094957 packets output, 24283752 bytes, 0 underruns > 65 output errors, 0 collisions, 443 interface resets > 0 output buffer failures, 0 output buffers swapped out > 776 carrier transitions > DCD=up DSR=up DTR=up RTS=up CTS=up > > > > Router_2523# > > > _ > FAQ, list archives, and subscription info: > http://www.groupstudy.com/list/cisco.html > Report misconduct > and Nondisclosure violations to [EMAIL PROTECTED] > _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: FR + Poison Reverse...
OSPF does use Split horizon. I don't think OSPF uses PR because PR sets the route to infinity and I'm not sure what an ' infinity' cost would mean in OSPF. -Original Message- From: Z [mailto:[EMAIL PROTECTED]] Sent: Tuesday, February 27, 2001 12:47 AM To: Brian; [EMAIL PROTECTED] Subject: Re: FR + Poison Reverse... But I thought that I'd seen or heard of using split horizon with OSPF...maybe I'm thinking of Frame Relay...long day I guess... This has been an Eyez Only streaming e-mail broadcast...We are watching. NetEyez ~ CCNP, CCDA - Original Message - From: "Brian" <[EMAIL PROTECTED]> To: "Z" <[EMAIL PROTECTED]> Cc: <[EMAIL PROTECTED]> Sent: Tuesday, February 27, 2001 1:16 AM Subject: Re: FR + Poison Reverse... > > > split horizon and PR are both associated with distance vector protocols, > OSPF is a link state protocol. > > Brian > On Mon, 26 Feb 2001, Z wrote: > > > Hey Group, > > I recently pondered something while at work and nobody could give me a > > strait answer. Actually I feel a little embarrassed asking this due to me > > being an NP and I feel like I should know this. Guess this type of thing > > doesn't come up much around me. Question is: Can poison reverse (PR) be used > > with OSPF? I know split horizon is used with it but I just cant see why/how > > poison reverse would. My definition of PR is that it sets the link to the > > max hop count and deems it unreachable, hence the term poison. I can't see > > how this would work with OSPF because it doesn't use a hop count. Maybe I'm > > confused about PR. Does it set the link to the highest metric, and not hop > > count? Maybe I'm just used to hearing about PR in discussions of RIP that > > I'm assuming it set the hop count to the highest and has nothing to do with > > metric. Any clarity would help, thanks all... > > > > ...sorry for the rambling... > > > > > > This has been an Eyez Only streaming e-mail broadcast...We are watching. > > > > NetEyez ~ CCNP, CCDA > > > > > > > > _ > > FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html > > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] > > > > > --- > I'm buying / selling used CISCO gear!! > email me for a quote > > Brian Feeny,CCDP,CCNP+VAS Scarlett Parria > [EMAIL PROTECTED] [EMAIL PROTECTED] > 318-222-2638 x 109318-222-2638 x 101 > > Netjam, LLC http://www.netjam.net > 1401 Oden St. > Suite 18 > Shreveport, LA 71104 > Fax 318-221-6612 > > _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: NM-1E
Cisco now offers a WIC-1E for the 1600, 1700, 2600, and 3600. It retails for $238 USD on cdw.com It is only 10mb Hope that helps Drew -Original Message- From: Christopher M. Heffner [mailto:[EMAIL PROTECTED]] Sent: Tuesday, February 27, 2001 7:22 AM To: Gary Marsh; Kevin Wigle; Jim Brown; [EMAIL PROTECTED] Cc: [EMAIL PROTECTED] Subject: RE: NM-1E If you only the 2610 then you might want to think about selling or swapping the 2610 for a 2611 instead. It might be cheaper in the long run. I found out the hard way last week that any Lan module with the wic slots are NOT support by Cisco in the 2600 family. I was trying to add more serial interfaces to my 2621 last week to simulate the ANEW 2 labs. Cisco says only the NM-1E or NM-4E is support in slot 1 for LAN modules. My choices were to use either the NM-2W module for my serial interfaces or to upgrade from the WIC-1T cards to the WIC-2T or WIC-2AS cards or use my 3640 instead. Good Luck, Christopher M. Heffner IMCR Course Director Certified Cisco Systems Instructor CCSI, MCT, MCNI, CLI, ASE, CTT, A+ [EMAIL PROTECTED] -Original Message- From: Gary Marsh [mailto:[EMAIL PROTECTED]] Sent: Tuesday, February 27, 2001 6:35 AM To: Kevin Wigle; Jim Brown; [EMAIL PROTECTED] Cc: [EMAIL PROTECTED] Subject: RE: NM-1E If you live in the UK, then check out www.prodec.co.uk, telephone 01344 86 they will more than likely negotiate a good deal for you from their range of second hand Cisco kit. Gary -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Kevin Wigle Sent: Saturday, February 24, 2001 6:47 AM To: Jim Brown; [EMAIL PROTECTED] Cc: [EMAIL PROTECTED] Subject: Re: NM-1E well there is the NM-4E (4 ethernet ports) but if you think the 1E is expensive don't look there. - Original Message - From: "Jim Brown" <[EMAIL PROTECTED]> To: <[EMAIL PROTECTED]> Cc: <[EMAIL PROTECTED]> Sent: Friday, 23 February, 2001 13:35 Subject: WTB: NM-1E > > Sorry for posting this here, but I thought is semi-appropriate. This is gear > for my home lab. > > I'm looking for an Ethernet module for a 2600 series router and I think this > is the only one that is supported. > > I have checked E-bay for a while and there are none to be found. > > Can anyone help me out, retail hurts! ___ To unsubscribe from the CCIELAB list, send a message to [EMAIL PROTECTED] with the body containing: unsubscribe ccielab ___ To unsubscribe from the CCIELAB list, send a message to [EMAIL PROTECTED] with the body containing: unsubscribe ccielab ___ To unsubscribe from the CCIELAB list, send a message to [EMAIL PROTECTED] with the body containing: unsubscribe ccielab _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: IPSec, IKE, VPN study resources?
Brian Lodwick wrote: > > Group, >Can anyone out there help me out. I am trying to find resources for > study. I want to get learn as much as possible about IPSec and VPN > technology. I would like to see if anyone knows of some good resources to > learn more about this kind of stuff -IPSec tunnel and transport modes, > Security Associations, ISAKMP\OAKLEY process, The Diffie-Hellman algorithm, > and ... > There's a great book by William Stallings called "Network Security Essentials: Applications and Standards" Very good coverage of everything you mention... but it has been known to cause headache's if read too fast. =) (watch for wrap) http://www.amazon.com/exec/obidos/ASIN/0130160938/qid=983293248/sr=1-2/ref=sc_b_2/105-2661977-5737525 -Ds _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: IPSec, IKE, VPN study resources?
For a starting out point I would recommend Enhanced IP Services for Cisco Networks by Donald Lee. He does a great job explaining how cisco handles IPSEC and IKE. Next I would recommend Cryptography and Network Security - Principles and Practice by William Stallings. Probably the best free book I received from cisco. (Besides Small Business Networking for Dummies--I keep it smack dab in the middle of all my cisco/networking books. You should see peoples faces when they come across it ;) After that you should probably head to the RFC's: (God I'm starting to sound like Howard :) RFC2104 Hashing RFC2402 AH RFC2406 IPSec ESP RCF2405 RFC2408 ISAKMP and a bunch more Have fun Drew -Original Message- From: Brian Lodwick [mailto:[EMAIL PROTECTED]] Sent: Tuesday, February 27, 2001 8:40 AM To: [EMAIL PROTECTED] Subject: IPSec, IKE, VPN study resources? Group, Can anyone out there help me out. I am trying to find resources for study. I want to get learn as much as possible about IPSec and VPN technology. I would like to see if anyone knows of some good resources to learn more about this kind of stuff -IPSec tunnel and transport modes, Security Associations, ISAKMP\OAKLEY process, The Diffie-Hellman algorithm, and ... What I would really like to find is a book that gets right into the guts of it and goes through it inside and out. I'd also like to learn the history, and where the forefront is trying to push this technology. If anyone knows of any resources they have found helpfull I would really be gratefull for your response. Thanks in advance guys- >>>Brian _ Get your FREE download of MSN Explorer at http://explorer.msn.com _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: cat 6509 Frame Distribution
"Hinds, Christopher" wrote: > > Hi, > > On the config of a 6509 I have inherited I have a command I don't understand > nor ca find any info on ! Can anyone explain what : > > #frame distribution method > set port channel all distribution ip both > http://www.cisco.com/univercd/cc/td/doc/product/lan/cat6000/sw_5_3/cofigide/channel.htm (took all of 3 seconds to find that at the Cisco site...) _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: GROUPSTUDY REGISTRATION
Charles Nunie wrote: > > Hello everyone, > > My pal wants to join in on this studygroup but the web page is off. Any help? > About as much chance as I have of dumping my shares of Transmeta for anything less than a huge loss in the next 5 years... We all have to learn patience sooner or later. _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: dumb Linux terminal-router question
Priscilla Oppenheimer wrote: > > Next week I'm teaching basic router configuration to some high school > students. One of the students has a notebook computer that runs Linux. > Assuming there is a normal serial port on the notebook, will he able to > easily run a terminal emulator to connect to the console port on the Cisco > routers? > > I know he'll be able to do Telnet once we have an initial config, but > before we get to that point, can he config the routers in a similar fashion > to the HyperTerminal the Windoze users will be using? > I think minicom, which is a popular Linux term program, should do the trick. It should already be on the system. $ which minicom /usr/bin/minicom _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Off Topic: Any interest in new Sniffer Certification?
Before we had all the great books that we had today, the SnifferU courses were a great source for information. A lot of the low level stuff that it is hard to find information on, like what is B8ZS, how does it work and how does it differ from D4AMI. I don't know if I'll go for the certification but I'm glad to see they are bringing it back. It is definatly worth a look. -Original Message- From: Priscilla Oppenheimer [mailto:[EMAIL PROTECTED]] Sent: Wednesday, March 07, 2001 9:10 AM To: info; [EMAIL PROTECTED] Subject: Re: Off Topic: Any interest in new Sniffer Certification? It was a very interesting post. The poster probably should have used a private e-mail address so it wouldn't appear to be marketing spam, but it was still a relevant and important piece of news for the clueful people on the list. Priscilla At 06:00 AM 3/7/01, info wrote: >Eh, big deal. The original post's header indicated it was >Off topic. Plenty of threads on this list are about non Cisco >certifications. Protocol Analysis is a skill reserved for experts. >Some people on this list are CNX certified which is a certification >being superceded by the new cert program.it will be interesting >to see how they react to the new program. >Therefore the post has relevance to the list. Even if it came >from Sniffer's Marketing team, it wouldnt change that. > >.personally, I think protocol analysis is going to be extremely >important in Wireless environments as a security measure. > > > >Andy <[EMAIL PROTECTED]> wrote in message >[EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > > > > Gee, thanks for spamming a Cisco cert list with your marketing jizz > > propaganda crap press release. If you want to spam a cert list, start your > > own.. > > > > > > > > > > > > On Tue, 6 Mar 2001, info wrote: > > > > > http://biz.yahoo.com/prnews/010305/sfm057.html > > > > > > Was wondering if any of you had comments or interest > > > in the new Sniffer Cerficication just announced. See > > > link above or article below. > > > > > > > > > Sniffer Certification Program to Accredit IT Professionals With >First-Class > > > Troubleshooting and Protocol Analysis Skills for Managing Enterprise > > > Networks > > > > > > SANTA CLARA, Calif., March 5 /PRNewswire/ -- Sniffer Technologies, a > > > business unit of Network Associates (Nasdaq: NETA - news), today is >setting > > > a worldwide standard by introducing its IT certification program for >network > > > management called the Sniffer Certified Professional Program (SCPP). >While > > > meeting the industry's demand for network professionals with >vendor-specific > > > certification, the SCPP will identify IT professionals with first-class > > > Sniffer-specific troubleshooting and protocol analysis skills to protect >and > > > optimize networks across the enterprise. > > > > > > Developed through close collaboration with Sniffer University, the >Sniffer > > > Certified Professional Program will help employers identify >professionals > > > within their organizations who are equipped with the knowledge and >skills to > > > implement, operate and troubleshoot networks effectively. At the same >time, > > > SCPP will provide network professionals industry-recognized >accreditation as > > > experts in their field. > > > > > > ``The rapidly changing landscape of internetworking technologies is >creating > > > a shortage of qualified, trained professionals to manage >business-critical > > > networks,'' said Rich Baich, Director of Sniffer University's >Educational > > > Services, Sniffer Technologies. ``Companies recognize the critical role > > > network availability plays in the success of their business, and the >Sniffer > > > Certified Professional Program ensures they have trained professionals >to > > > ensure maximum uptime of their network.'' > > > > > > The Sniffer Certified Professional Program was developed using proven > > > psychometric processes to create quality tests targeted at network > > > professionals with in-depth knowledge of Sniffer technologies and > > > significant hands-on experience in real world environments. Each exam >tests > > > objectives and content that maps to Sniffer University's existing >curriculum > > > ensuring clear learning paths between product and technology emphasis >areas. > > > > > > The Sniffer Certified Professional program consists of three levels. The > > > first level, the Sniffer Certified Professional (SCP), includes a >60-minute > > > required core exam designed to test a candidate's knowledge in the use >of > > > Sniffer Technologies' network analyzer. The SCP credential is the basis >for > > > the entire program. > > > > > > The following levels, the Sniffer Certified Expert (SCE) and the Sniffer > > > Certified Master (SCM), evaluate a candidate's knowledge in their choice >of > > > a combination of other Sniffer products and technologies in various > > > networking environments. Additional SCPP exams validate skills for >products
Re: Internet usage?
> Do any of you know of any software utilities that can track and monitor > what percentage of internet bandwidth is being used by various tasks > such as streaming video, http, mp3, java, etc...? > > Thanks. Not sure why you think this is a topical issue for this group, but I'll do the ol' benefit of the doubt thing... Try SilentRunner from Raytheon... http://www.raytheon.com/c3i/c3iproducts/c3i021/c3i021.htm _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Slightly OT - Setting up syslog on Solaris for Remote logging of Cisco Routers
> I've seen a million people ask about syslog for windows, but nobody has > mentioned syslogd on Unix. > > I'm trying to find information on getting syslog on a Solaris platform to accept > logging messages from Cisco routers. By default, the syslog service does not > accept messages from external devices. I've found about 6 million links on how > to get this working on Linux, but the Solaris version and the Linux version are > different enough that those links have not been helpful. > > Anyone have a quick and dirty howto? > http://www.cisco.com/univercd/cc/td/doc/cisintwk/intsolns/dialnms/syslog.pdf _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: CCxx Market: Going Off Topic!
hal9001 wrote: > > Robert has any one actually fathomed WHY this has suddenly happened. I'm > not making any form of a political point here but it seems (just as a mark > of time) to have happened at the ending of one administration and the > take-up of another. > > Do people and the markets feel the "gravy train" has derailed what is the > sentiment in the USA? Why the sudden halt? Is Japan also a factor? I > think it affects us all world-wide now so is relevant in a general sense. > Can we take "market economics 101" to personal email? _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: TCPmag.com Salary Survey
Groupstudy wrote: > > What a joke. According to their chart an 18 year old kid right out of high > school who lives in Detriot could spend 81 hours of studying and then land > themselves a job paying $73K per year. > Didn't the survey specify "3 to 9 years of experience"? _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: New Tracks are up on the Cisco Website
Arthur Stewart wrote: > > Info on the new Communications & Services and Security Tracks are up on the > Cisco CCIE website > How about a URL? (I know, I can look, but it is usually considered polite to reference the source of any news or updates) _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Cisco Certs Becoming Paper CCXX - Reply to The Rock
"The.Rock" wrote: > > oh yeah one more thing...In case you forgot, certs don't prove anything > you really are an idiot if you think they "prove " something). The only > prove your ability to regurgitate info that you supposedly learned. Having > the know how, and knowing how to use are two different things. Lets say your > 8 years old and I give you a bunch of craftsman tools, does that mean you > know how to work on a car if someone said fix it? probably not. And there's > my point. You have the tools, but do you really know how to use them Your analogy is badly flawed. You start by referencing knowlege, but then drift into tools. In the internetworking world, tools would be the routers, switches, etc. And in the world of auto-mechanics, the knowlege would be your ASE certification. It would be a much stronger argument if you compared apples to apples instead of to oranges. _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: AW: Anyone tried setting up a Linux TFTP Server for Cisco?
Udo Konstantin wrote: > > Please can you more specify > A unix system is more secure than a Wxx system. > So you need to configure your linux box for an nsecure connect. > I know its off topic, but I hate such narrow minded comments... If you have ever installed any *ix system, you'd be darn well aware that the thing isw i d e open. There is almost no security there. It has to be added and maintained. Win32 systems are similar. Very trusting and friendly until they are properly taken care of. Is *ix inherently more secure? no way. I challenge anyone to make a valid, non-ideological based comparison of a base Win32 and a base Liux install. If Linux were so damned secure in its current state, I woulnd't see IDS logs filling up with folks scanning for obvious Linux vulns, now would I? Bottom dollar is, without proper administration, both Win32 and *ix suck big time. With proper care and feeding, they can both become releatively secure. _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Linux Security
Elijah Savage wrote: > > > No holy war here either. But I could not resist the reply to this > comment. Of course it depends on the administrator of the box, but it > depends also how you install it. I have never installed a linux box with > ftp or telnet by default(openssh). Because these boxes I setup are > usually dns or web servers you can install them so that they run in a > chrooted environments which tends to be a tad bit more secure. This is > one reason I like nix over any win platform because I can install what I > want and how I want it, which usually makes a nix box more secure than > any win platform. So to me how I stated above nix is more secure, but of > course you have to know what you are doing. You probably will say well > this is not a base install. And my reply is well if you do a custom > install which you can do right out of the box without recompiling the > kernel or anything fancy nix will me more secure than win32 platforms > out of the box. I would like to see a custom install on win32 instead of > click here to continue. > These examples prove my point. You have provided examples of a properly configured system. These are not, however, the norm. You can just as secure a Win32 system, maybe not during the installation process, but does that make a difference? Most Unix systems require alot of post- installation work to be secured, so the difference is moot. And just for an FYI, I am a Sun Certified SysAdmin and Network Admin, as well as a IBM Certified AIX admin, so I feel I know a thing or two about Unix. _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Security Issues
Deepak Sharma wrote: > > 1st question > > Any security issues with ATM?...i know it kinda acts like a VPN (and > those are pretty secure), but should i be running IPSEC or some other > type of encryption>>? ATM has nothing to do with a VPN, nor does it "act like one". ATM describes a method of crafting frames of fixed size (53k ?) and nothing more. If security is of concern, you must use encryption, which is an application type of thing. > 3661's latest IOS on a dedicated OC3?/...im thinking what if some1 > vampire taps the line??..can they see the data??.. Yes > > 2nd question > > I need to hack into my companys router (they want me to attempt > it)...any hacking scripts or holes i should be looking for?..there on a > 3700 i beleive with 2500's on the wan for the branch offices...ios > 10.0maybe...lol...maybe even lower... a quick web search will let you know enough to get started, this question has nothing to do with studying for a cisco certification, and is thus off topic here. > > 3rd question > > We have a checkpoint firewall...most "up to date" software revision ( > thats what my boss says, but i dont believe him..lol )...any > holes?...anything i can hack with??...progs and such Yes, but this question is also off topic, as it has equally nothing to do with studying for a cisco certification as the last question. In fact, its even more off topic since it has nothing to do with Cisco products at all. > ps. Im not a hacker.i know you all are thinking that...hehehm, also > any links or sites with this type of info would be nice Personally, that thought didn't even cross my mind. A hacker wouldn't have to be posting off topic questions trying to get info on holes in a particular OS or application, a hacker would find their own... As for links, allow me to introduce you to a thing called a search engine. My favorite is http://www.google.com _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: RTR-to-RTR
Actually you can connect two routers with a rollover cable (console cable) using the AUX ports. I have done it in the lab but can't find my configs. But it can be done. You don't need modems -Original Message- From: A. Geoffrey Cauchi [mailto:[EMAIL PROTECTED]] Sent: Wednesday, November 22, 2000 8:42 AM To: Montgomery, Robert WARCOM Contractor; [EMAIL PROTECTED] Subject: Re: RTR-to-RTR Yes But you have to used async leased line modems, or else two dial ups, one calling the other. Geoff - Original Message - From: "Montgomery, Robert WARCOM Contractor" <[EMAIL PROTECTED]> To: <[EMAIL PROTECTED]> Sent: Wednesday, November 22, 2000 5:05 PM Subject: RTR-to-RTR > Can two routers (through Async) be connected back-to-back via modems for a > lab? > > Rob > > _ > FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] > _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Need help with converting IP address to MAC address
Sisqo wrote: > > Cisco press book (BCMSN) does not really explain well the concept. I was > wondering if someone can help me break the barrier. > > Example in the book: > > 224.163.163.45 = 01-00-5E-23-A3-2D > > I thought 163=A3, why is the 2nd octet converted to 23? > There is no corelation between MAC address and IP address, save for the association you make when you assign an IP to an interface. _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Help about BGP regular expression
vtam wrote: > > In the book "Internet Architectures" by Hassam, it said that ^1 ?[0-9]*$ > identify all the AS_paths that start with 1 and of length 2-that is, AS1 and > its direct customs. But i think that ? means 0 or 1 occurrences, when it is > 0, the expression can be equal ^1[0-9]*$,means any single AS number start > with 1. > Am I right? If so, which is the right answer of all the AS_paths that start > with 1 and of length 2. Thanks. ^1 ?[0-9]*$ ^ ^ Is that space yours or the books? Broken apart, that regex matches (assuming standard egrep'ish metachars) ^ # beginning of line 1 # followed by the digit 1 (space) # followed by a space ? # 0 or 1 of the preceding characters (in this case a space) [0-9] # a single digit within the range of 0-9 * # 0 or more of the preceding characters, up to the end of # the pattern $ # end of line char So, is this equivalent to ^1[0-9]*$? I don't think so. Assuming that the pattern with a space was a typo, we are allowed an optional 1. Assuming it wasn't a typo, we are allowed the space character. Neither of these options would be matched by your more restrictive pattern. As for the specific pattern to match, you can't really say without knowing what you are matching with. Different regex engines support different metachars. _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Numbers . . . What numbers?
It saves address space. Instead of using separate networks/Ip address between the serial interface. You can use the IP unnumbered to use the Ethernet ip. Example 1: Without IP unnumbered --172.16.3.1/24 E0 [Router1)S0 192.168.1.2/252 --- 192.168.1.1/252 S0 [Router2]E0 172.16.4.1 --- Example 2: With IP unnumbered --172.16.3.1/24 E0 [Router1)S0 ip unnumbered --- ip unnumbered S0 [Router2]E0 172.16.4.1 --- In example 2 you have saved address space. Also in a large network you could reduce the size of the routing table because it doesn't have to keep track to the networks between the router. Hope that helps Drew -Original Message- From: Dyland Desmarais [mailto:[EMAIL PROTECTED]] Sent: Saturday, December 16, 2000 12:27 PM To: '[EMAIL PROTECTED]' Subject: Re: Numbers . . . What numbers? Which brings me back to my first question, what would be the benefit of doing this. Dyland == It means you want use the ip of another (specified) interface, e.g. ip unnumbered ethernet 0, as the ip of your serial interface. -- When I disagree with a rational man, I let reality be our final arbiter; If I am right, he will learn, If I am wrong, I will; one of us will win, but both of us will profit. - John Galt "Dyland Desmarais" <[EMAIL PROTECTED] <mailto:[EMAIL PROTECTED]>> wrote in message <[EMAIL PROTECTED]">news:[EMAIL PROTECTED]>... > Greetings all > > Could someone please shed some light on IP Unnumbered Serial Interfaces. > From my BSCN book, I understand this is getting ip routing to work on a > serial interface without specifying a specific ip to the serial interface > (using the ip unnumbered command) > > My question is why would anyone want to do this? > > thanx > > > Dyland _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: DSU/CSU Connections
Yes you can. You just need to create a cross over cable. If you search the archives, I believe last month, someone actually gave the pinouts. -Original Message- From: Mike Murphy [mailto:[EMAIL PROTECTED]] Sent: Tuesday, December 19, 2000 7:48 AM To: [EMAIL PROTECTED] Subject: DSU/CSU Connections Is it possible to connect two DSU/CSUs together. For example I have two 1720 Routers with DSU/DSU WICs. Can I cable these together through the DSU/CSUs for study purposes? Thanks, Mike _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: O/T stupid robot dog jokes
Last night at the DC user group, a Senior Executive VP told us that they are going to sue the robot dog because it is based on an operating system with a command prompt of '>' He said that the dogs were also no good because all they really do was PPP with CHAP. or was it PPTP? Oh yeah it was PPTP, but you can control it with the pptp flow-control static-rtt. I love distractions! Thanks Priscilla -Original Message- From: Priscilla Oppenheimer [mailto:[EMAIL PROTECTED]] Sent: Tuesday, December 19, 2000 12:04 PM To: [EMAIL PROTECTED] Subject: O/T stupid robot dog jokes Have any of you bought one of those new robot dogs for Christmas? I hear that they support TCP/IP! I wonder if they do ARP, ARP, ARP!? Maybe they even support rrRARP. I hope they don't SNAP at people! If they do a good job emulating real dogs, I'm sure they say "IP" a lot. And if you see them doing it, you can say, "ICMP!" Sorry! &;-) I thought we could use a little more levity in addition to the messages about Howard being sued. Happy Holidays! Priscilla Priscilla Oppenheimer http://www.priscilla.com _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: what's the mean of lo0,qfe0 and hme0?
Robert Padjen wrote: > > And for the trivia buffs - hme stands for... > > Happy MEal!!! > > It was a time when the Sun engineers were quite into > fast food! > Hrm... and all this time I thought it stood for Hundred Megabit Ethernet. Go figure. _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Additional CCIE Written Question
The scores do not increase because you fail it. The passing score is set on a 3 month average so if a bunch of people suddenly start passing the test with a high score, the passing score will go up. But it has nothing to do with you personally failing or passing. Right now the passing score is still at 70% -Original Message- From: Curtis Call [mailto:[EMAIL PROTECTED]] Sent: Wednesday, December 20, 2000 7:46 AM To: [EMAIL PROTECTED] Subject: Additional CCIE Written Question Ok I have another question about the CCIE written. I've heard the comment that if you fail the test then when you retake it your required passing score is higher. Does anyone know how much the passing score is increased by? I am considering taking the written at the end of this week to assess what areas I am weak in and to get an idea of the difficulty of the test. Would that be a bad idea for me to do? Given the high wait time for the lab I would like to take the written as soon as possible, I'm positive I could pass it in January after a few weeks of concentrated study but I figure if it doesn't hurt me too bad I might as well try the test right now and I just might get lucky and pass. _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Passed CCIE written.
Thanks to the group I finally passed the CCIE written test. 76% is not great but it is better than failing. Thanks for everyone on this list. Regards Drew _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Prototype and Pilot
A pilot is used when you want to prove a minimal amount of functionality. Let say, for security reasons, you want to implement SSH on your routers. You don't need to create a large scale network to test functionality for SSH. All you would do is take one router for each type, plus maybe take into account different IOS images and test the different configurations for SSH. This would be a pilot. A prototype is used when you need to prove a complex amount of functionality and interoperability. Let say you were asked to design a remote access solution for 10,000 sales people all using a small router XYZ connecting to a Core Router of type ZZZ. And you estimate that the Core Router of type ZZZ can handle N number of XYZ routers connecting to them. You also estimate that the company will need to purchase 1,000 ZZZ routers to handle the entire load. A prototype would be a couple of ZZZ routers and the appropriate amount of XYZ routers to test your theory. A prototype is usually a scaled version or modular version of your final design. Also note that the use of a pilot or a prototype is usually driven by the customer requirements. The more the customer requirements want you to prove the more likely you are to use a prototype. In short. A pilot test a minimal amount of functionality. A prototype is usually a scaled version of your design. Hope that helped more than it confused. Drew -Original Message- From: Hunt [mailto:[EMAIL PROTECTED]] Sent: Friday, December 29, 2000 1:23 PM To: [EMAIL PROTECTED] Subject: Prototype and Pilot Can anyone please tell me what is the difference between a prototype and a pilot? And when will you use them? Hunt _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Prototype and Pilot
I don't have my DCB CD here. The only CCDA book I have in the office is the Sybex Exam Notes by Devin Akin and Mr. Lammle. On page 243 the list "Pilot Smaller in scale;" and a "Prototype Larger than a pilot". They then go on in the next chapters to list the steps for starting a Pilot and Prototype continuing with the Pilot=Small Prototype=Large theme. Todd would you like to comment? Of course in the real world (I some times wonder if there is such a thing anymore) does it really matter what the difference is, or if even if there is one? This seems like one of those test questions that the original exam objective; knowing that you don't have to build a large scale test environment to prove your concept, gets turned around by someone into having to define what Pilot and Prototype are. It just seems silly. But I still do want to know the answer. Sick puppy I am. Have a good new years everyone. See you next year/decade/century/millennium. Drew -Original Message- From: Priscilla Oppenheimer [mailto:[EMAIL PROTECTED]] Sent: Friday, December 29, 2000 3:18 PM To: Maness, Drew; 'Hunt'; [EMAIL PROTECTED] Subject: RE: Prototype and Pilot It sounds like I may have had it backwards in my message, then?? Bottom line: the terms are not used precisely in the real world. We need to find out if the questioner just wants to know how to use the terms for the DCN test, which is my guess, and then help him with the Cisco DCN viewpoint. The Cisco Press DCN book just has this confusing thing to say on the topic: "For larger configurations, a prototype is generally more feasible. For smaller configurations, a pilot might be more practical. The decision will probably be made on relative costs; the costs for prototyping a portion of the network will be relatively small for a larger network. However, if the network itself is small, then prototyping it could involve costs that are relatively large compared to the total costs of the project, so demonstrating basic functionality with a pilot might be more feasible." Does anyone have any other more useful CCDA books that would answer this question? My book has a whole chapter on testing a network design, but I didn't address the objective of distinguishing a prototype and pilot, since I can't (and I didn't know Cisco expected anyone to. &;-) Priscilla At 02:26 PM 12/29/00, Maness, Drew wrote: >A pilot is used when you want to prove a minimal amount of functionality. >Let say, for security reasons, you want to implement SSH on your routers. >You don't need to create a large scale network to test functionality for >SSH. All you would do is take one router for each type, plus maybe take >into account different IOS images and test the different configurations for >SSH. This would be a pilot. > >A prototype is used when you need to prove a complex amount of functionality >and interoperability. Let say you were asked to design a remote access >solution for 10,000 sales people all using a small router XYZ connecting to >a Core Router of type ZZZ. And you estimate that the Core Router of type ZZZ >can handle N number of XYZ routers connecting to them. You also estimate >that the company will need to purchase 1,000 ZZZ routers to handle the >entire load. A prototype would be a couple of ZZZ routers and the >appropriate amount of XYZ routers to test your theory. A prototype is >usually a scaled version or modular version of your final design. > >Also note that the use of a pilot or a prototype is usually driven by the >customer requirements. The more the customer requirements want you to prove >the more likely you are to use a prototype. > >In short. A pilot test a minimal amount of functionality. A prototype is >usually a scaled version of your design. > >Hope that helped more than it confused. > >Drew > >-Original Message- >From: Hunt [mailto:[EMAIL PROTECTED]] >Sent: Friday, December 29, 2000 1:23 PM >To: [EMAIL PROTECTED] >Subject: Prototype and Pilot > > >Can anyone please tell me what is the difference between a prototype and a >pilot? And when will you use them? > >Hunt > > >_ >FAQ, list archives, and subscription info: >http://www.groupstudy.com/list/cisco.html >Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] > >_ >FAQ, list archives, and subscription info: >http://www.groupstudy.com/list/cisco.html >Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] Priscilla Oppenheimer http://www.priscilla.com _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Off topic
http://www.cisco.com/warp/public/701/14.html -Original Message- From: Naveen Sharma [mailto:[EMAIL PROTECTED]] Sent: Monday, January 01, 2001 10:08 PM To: [EMAIL PROTECTED] Subject: Off topic Dear Friends, Can any one give me wiring diagram for RJ-45 to DB 9 pin out and RJ-45 = to DB 25 pin out. Thanks for help Best regards Naveen _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: I'm stumped! (was EIGRP over ISDN) LONG
Your hold times look to be way low. >From your example a hold of 12 would indicate a high bandwidth interface such as Ethernet, FDDI or token ring. On this router I would bet that the hold time is set to 5. H Address Interface Hold Uptime SRTT RTO Q Seq (sec) (ms) Cnt Num 0 10.120.226.1BR0/0 12 00:00:380 5000 1 0 Try setting the hold time with the ip eigrp hold-time interface command to 60 and set the ip eigrp hello-interval to 180 Hope that helps Drew -Original Message- From: John Neiberger [mailto:[EMAIL PROTECTED]] Sent: Wednesday, January 03, 2001 7:51 AM To: [EMAIL PROTECTED] Subject: I'm stumped! (was EIGRP over ISDN) LONG I'm reposting this in the hopes that someone who didn't see it before might have some ideas about this. Heck, SWAGs, educated guesstimates, or telephone psychic impressions are also welcome. We are completely stumped about how to resolve this. I've even posted this question on the CCO Q&A Forum but I don't think anyone has been answering questions on there lately. Here is the problem: we have an ISDN BRI backup link between two sites, and we want to run eigrp over the link when it's in use. The problem is that even though the line is not flapping, eigrp is behaving as if it were flapping. My side NEVER sees hellos from the other side, but it does receive updates. The other side receives my hellos, but it thinks the link is bouncing and that my router is intermittently unavailable. My side never establishes the other as a neighbor. I've used every debugging command I can find to no avail. Nothing is giving me any information that I don't already know. We have no access lists configured, except for distribute lists but that shouldn't affect neighbor relationships, should it? Here is sample debug output (debug eigrp neighbors and debug eigrp packet): 3d01h: EIGRP: Sending HELLO on BRI0 nbr 10.120.226.2 3d01h: AS 2, Flags 0x0, Seq 0/0 idbQ 0/0 iidbQ un/rely 0/0 3d01h: EIGRP: Sending HELLO on BRI0 nbr 10.120.226.2 3d01h: AS 2, Flags 0x0, Seq 0/0 idbQ 0/0 iidbQ un/rely 0/0 3d01h: %LINK-3-UPDOWN: Interface BRI0:1, changed state to up 3d01h: %LINEPROTO-5-UPDOWN: Line protocol on Interface BRI0:1, changed state to up 3d01h: EIGRP: Sending HELLO on BRI0 nbr 10.120.226.2 3d01h: AS 2, Flags 0x0, Seq 0/0 idbQ 0/0 iidbQ un/rely 0/0 3d01h: EIGRP: Received UPDATE on BRI0 nbr 10.120.226.2 3d01h: AS 2, Flags 0x1, Seq 67/0 idbQ 0/0 3d01h: EIGRP: Neighbor(10.120.226.2) not yet found 3d01h: EIGRP: Received UPDATE on BRI0 nbr 10.120.226.2 3d01h: AS 2, Flags 0x1, Seq 67/0 idbQ 0/0 3d01h: EIGRP: Neighbor(10.120.226.2) not yet found 3d01h: %ISDN-6-CONNECT: Interface BRI0:1 is now connected to 303xx theirrouter 3d01h: EIGRP: Sending HELLO on BRI0 nbr 10.120.226.2 3d01h: AS 2, Flags 0x0, Seq 0/0 idbQ 0/0 iidbQ un/rely 0/0 3d01h: EIGRP: Received UPDATE on BRI0 nbr 10.120.226.2 3d01h: AS 2, Flags 0x1, Seq 67/0 idbQ 0/0 3d01h: EIGRP: Neighbor(10.120.226.2) not yet found 3d01h: EIGRP: Received UPDATE on BRI0 nbr 10.120.226.2 3d01h: AS 2, Flags 0x1, Seq 67/0 idbQ 0/0 3d01h: EIGRP: Neighbor(10.120.226.2) not yet found 3d01h: EIGRP: Sending HELLO on BRI0 nbr 10.120.226.2 3d01h: AS 2, Flags 0x0, Seq 0/0 idbQ 0/0 iidbQ un/rely 0/0 3d01h: EIGRP: Sending HELLO on BRI0 nbr 10.120.226.2 3d01h: AS 2, Flags 0x0, Seq 0/0 idbQ 0/0 iidbQ un/rely 0/0 3d01h: EIGRP: Received UPDATE on BRI0 nbr 10.120.226.2 3d01h: AS 2, Flags 0x1, Seq 67/0 idbQ 0/0 3d01h: EIGRP: Neighbor(10.120.226.2) not yet found Here is some info from the remote side: theirrouter# 1d02h: EIGRP: Retransmission retry limit exceeded 1d02h: EIGRP: Holdtime expired 1d02h: EIGRP: Neighbor 10.120.226.1 went down on BRI0/0 1d02h: EIGRP: New peer 10.120.226.1 theirrouter#sho ip eigrp neighbors IP-EIGRP neighbors for process 2 H Address Interface Hold Uptime SRTT RTO Q Seq (sec) (ms) Cnt Num 0 10.120.226.1BR0/0 12 00:00:380 5000 1 0 1d02h: EIGRP: Retransmission retry limit exceeded 1d02h: EIGRP: Holdtime expired 1d02h: EIGRP: Neighbor 10.120.226.1 went down on BRI0/0 1d02h: EIG
Re: [Cisco Certs]
Ganesh Chintalapati wrote: > > Dear all, > > I do have the same question, can any one help us in this regard > The only person that can answer this question is the person that is interviewing you. Unless, that is, there is a top secret cert->degree chart out there that none of us is aware of. Seriously, some managers don't give a squat what cert you may have (these are the good ones to work for, IMO, because they are generally old timers who came up the hard way and appreciate real skill) and others live and die by your letters... -Ds _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Useful things to do with trolls
Chuck Larrieu wrote: > > The ladened versus unladened must have something to do with traffic > shaping. That or MTU of the packet... _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Cascading Switches
I've looked through the archives as well as on CCO but could not find a definite answer to the limit of "cascading" switches, specifically catalyst 2900's. I saw the discussion earlier this year/last year that talked about the difference between "cascading" and "stacking". I'm not looking for shared management (stacking) but just how many switches can I cascade together to get the highest port concentration. Just a simple (or bad network design)of one switch to another to another to N... because I ran out of ports and do not want to by a real switch scenario How many can I connect? My first reaction to this question was that it had to be limited by the CAM of each switch but can't find an answer. Again it is for the 2900 series switch. Thanks Drew _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: NetRanger
"Rossetti, Stan" wrote: > > Has anybody ever used NetRanger? Is it a worthwhile device? Also, can you > monitor crc errors with it? Any information would be much appreciated. A bit off topic, but I have used and was pleased with the NR product. It is not, however, an IOS based device. It is really just a nice PC with dual NIC's in a rackmount case. The OS is Solaris x86, and the actual NR software is pre-installed and the box is hardened fairly well. The setup and configuration couldn't be easier, both on the sensor and the director unit. Also, on top of normal IDS stuff, the unit can monitor and log router ACL violations and, a neat feature, can be configured to shun connections for a certain period of time based on user configured criteria. **NOTE: New CCNA/CCDA List has been formed. For more information go to http://www.groupstudy.com/list/Associates.html _ UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html FAQ, list archives, and subscription info: http://www.groupstudy.com Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Quick question about pre-req for CCNP
I can't seem to find this anywhere, and haven't seen it discussed on the list. So, does anyone know if one must have a CCNA 2.0 in order to get the CCNP 2.0, or will my CCNA 1.0 qualify me? TIA **NOTE: New CCNA/CCDA List has been formed. For more information go to http://www.groupstudy.com/list/Associates.html _ UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html FAQ, list archives, and subscription info: http://www.groupstudy.com Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Rumor Alert - Lab Changes - WAS: Flame bait.
Chuck Larrieu wrote: > > > Rumor #3 - The CCIE Security will involve configuring Cisco security > products on both Unix and NT boxes and doing VPN tunnels end to end, meaning > for the first time a candidate would be responsible for end user equipment > in the lab. What do you mean when you say "end user equipment"? If what you say is true, it makes perfect sense to me, and seems reasonable. The CCIE Security isn't (shouldn't be?) about routers and friends, per se, but more about the Cisco Secure product line, which includes some software products. ACS is an application, not an appliance but it is an important part of the offering. Configuring a NetRanger is more about the Director software than it is about the sensor, for sure. Then we have the PIX and the VPN stuff, which I would expect to be more hands on hardware type events, but nowhere in my expectation do I see what could be considered "end user" stuff. Can you clarify what you meant? _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Rumor Alert - Lab Changes - WAS: Flame bait.
Chuck Larrieu wrote: > > All these things together are what lead me to speculate that the Security > Lab will include work on servers for the various Cisco Secure products, and > on PC's for the client side of VPN. Which makes perfect sense, because > security is far more than configuring access lists on routers and policies > on firewalls. > OK, got ya. Methinks you've been in routerworld for too long... Its been a long time since I've thought of servers and workstations as end user stuff =) _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE:
Can you identify the type of DOS. What IOS is he running? If this is a known bug is there a cisco bug track ID on it? Thanks Drew -Original Message- From: Sean Young [mailto:[EMAIL PROTECTED]] Sent: Wednesday, March 28, 2001 2:57 PM To: [EMAIL PROTECTED] Subject: Hi everyone, I have a story that wish to share with everyone. One of my friends works for a company that uses Cisco PIX as the firewall. This afternoon, he called and told me that the company firewall is experiencing a Denial of Service (DOS) attack. The attack is so heavy that the PIX is just simply gives up. The company contacts Cisco and the TAC told my friend that there is a bug in the Cisco PIX code and he will have to wait a few days for the new code to arrive. Frustrated, he decides to use his workstation which is running NetBSD, put in an extra NIC, shutoff all essential services but SSH and netfilter. Amazingly, the new BSD firewall withstand the DOS and connectivity is restored. The point of the story. Not everything from Cisco is good. Their code is just buggy as everyone else. Just because it carries the name Cisco doesn't mean it is safe. _ Get your FREE download of MSN Explorer at http://explorer.msn.com _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Cisco Certs Becoming Paper CCXX
B J wrote: > > The CCNA is far harder than any test one will encounter with a major in > Education, Anthropology, History, Business Management, etc. Do you really > think the dumbest CCNA isn't more knowledgable in many areas, one being > math, than your daughters first grade teacher? Why do so many people feel that comparing apples to oranges will strengthen their point? Anthropology has nothing to do with networking, and knowlege of one has nothing to do with knowlege of the other. And Its been a while, but I don't really remember any math problems on my CCNA test, unless you consider subnetting to be a real mathmatical challenge. > Bottom line: Remember this: As long as HR employees are hired because > they are great looking babes, they will have no clue on talent. Certs give > them something tangible and simple that they can understand. Degrees do the > same. Oh, I see now. You are a schmuck. _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: How long does DNS server cache an entry
Ruihai An wrote: > > This question is not related to Cisco, but I am sure some Cisco engineer > know the anwer Wow. Now here's a strict criteria for posting messages! Hey, I bet someone here can fix cars too. > > How long does DNS server cache an entry it resoved earlier ? The RFC for DNS, as well as any search engine (google too complex?) would have explaind this much quicker than a post to a mailing list dedicated to study for Cisco certifications... Since I'm bothering to make this post, further wasting bandwith, I might as well save you the search. Each DNS record has a TTL, which is used to specify how long that entry may be cached. So, long story short, its up to the owner of that domain as to how long it can be saved. Now back to cars... _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: CCIE Lab Candidate???? [Formerly no subject]
Greg Macaulay wrote: > > Perhaps I'm missing something (but I am in a bad mood this AM -- and this > is my first Flame) -- or maybe you are?? But did you somehow get a waiver > from John Chambers personally so you don't have to sit for and pass the CCIE > written??? I didn't see anywhere where the OP implied that he was exempt from the written exam. I would imagine that study for the lab would also be good preparation for the written exam, wouldn't you? > As for being a CCNP, CCDP, it would seem that by this time you would have at > least some of the answers to your questions!! He only asked 3 questions, and one was a plea for sage advice. I don't think that having a CCNP/DP gives someone insight about the quality of formal lab preparation programs, nor does having such certifications imply knowlege of the benefit of a home lab. On this list it seems to be common knowlege, but this poster seems to be new to the list. Lets put on our friendly faces. >Normally, these questions are > asked by newbies like CCNA Candidates, or those working towards the CCNP. > But by the time one reaches the NP/DP level one would expect at least some > familiarization with the process. > > Have you ever heard of the CCIE Blueprint?? What implies that he hasn't seen the blueprint? His questions aren't answered on the blueprint. _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Security Spcialization/Exam Series?
Henry Rollins wrote: > > Anyone taken these four exams yet? Any comments re difficulty/overlap > from one test to another? Is having a PIX in your lab a prerequisite to > effective studying? Thanks > http://www.cisco.com/warp/public/10/wwtraining/certprog/special1/course.html You have ~ 5 weeks to take all of these tests if you want the specialization. It (and the others as well, I think) is being retired as of May 14. _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Security Spcialization/Exam Series?
Arthur Stewart wrote: > > This is a new (non-CCNP+) security specialization and will not expire next > month. This is new information, do you have a URL that explains this new certification? I have never heard of it. > > You may want to check the archives, I remember some discussion of the > tests/beta tests in the fall of last year. All that I recall was talk of the beta for the CCIE - Security written. >Global Knowledge has detailed > course descriptions that you may want to see. If I recall correctly, > product documentation was recommended as a resource. Are you double sure that you aren't thinking of CCIE - Security? I checked all of the links that the OP supplied, and they say: Exam Number: 640-442 Associated Certifications: CCNP Security Specialist Exam Number: 9E0-571 Associated Certifications: CCNP Security Specialist Exam Number: 9E0-558 Associated Certifications: CCNP Security Specialist Exam Number: 9E0-570 Associated Certifications: CCNP Security Specialist I'd be curious as to what other cert you were thinking of, since I personally had been aiming towards the CCNP - Security myself, but now I have to dig in deep and go for CCIE - Security, which puts a big delay in my grand plan! The GK website has nothing I can find refering to an alternate Cisco certification, nor does the Cisco web. I'm stumped. _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Frame Relay switching [7:435]
I've also noticed that if you don't use the intf-dce command on the switch, regardless of whether the switch interface is or is not dce, you will not get lmi to work properly. -Original Message- From: Chuck Larrieu [mailto:[EMAIL PROTECTED]] Sent: Friday, April 13, 2001 9:30 AM To: [EMAIL PROTECTED] Subject: RE: Frame Relay switching [7:435] Once again, to clarify: The interface with the DCE end of the cable is the interface that requires the clock rate configured. This may be different than the interface that has the frame-relay intf-type DCE Frame relay intf-type dce does NOT require clock rate and does NOT require the DCE end of the cable. The difference is the physical versus the logical DCE. If you were to configure two Cisco routers back to back NNI, one of those routers would still require the clock rate set. A minor point, but one most misunderstood. Chuck -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] Sent: Thursday, April 12, 2001 11:45 PM To: [EMAIL PROTECTED] Subject:RE: Frame Relay switching [7:435] Thomas, On fr switch, dce side needs clock rate defined. If your interface is dte, simply assign clock rate on the dce side of other router (but of couse you must swap the dce-dte cable). No matter what you use, you may just use frame intf-type dce on the fr switch. This gives you the ability to define "frame route" which is what you want on the fr switch, right ? YY -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Thomas Sent: Friday, April 13, 2001 9:12 AM To: [EMAIL PROTECTED] Subject: Frame Relay switching [7:435] Hi All - I am setting up my 2501 router as a frame-relay switch. I succeed when setting both of its serial as DCE interfaces. However, I failed to have one serial acts as a DCE and one acts as a DTE. Is it possible to specify a switch as a "frame-relay" switch and have one of its serial acting as a DTE interface (and assign IP address...) ??? Thanks All FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=533&t=435 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Can you change Telnet's well known port? [7:717]
Fred Danson wrote: > > Thanks for the info, > > Does the telnet client that is built into Windows2000 Professional allow > changing of the destination port? Could I just click start --> Run and type > in telnet 63.1.1.1 :24 ?? > more like: telnet 63.1.1.1 24 I use this all the time to read my mail on the server. Its also handy for such things as manually sending a mail message via SMTP and manually creating HTTP requests. Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=729&t=717 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Opinions on Cisco Access Pro AP-EC's [7:1045]
I saw this device mentioned on another mailing list I read as a good item for a home lab. Basically, its a 2501 on a PC card. I wonder why I haven't seen this device mentioned in this group as a good piece to have. Are there any issues with this product that make it less suitable than a 1601, 2501, etc?? Curious... -Ds Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=1045&t=1045 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: CCIE Qual...Off-topic [7:1185]
Since I personally know the person that wrote those test and he is a list member, I would highly recommend that you purchase them, if you want to use them. We have a number of authors, be it books or test, on this list. That is what makes it a great list. But they wouldn't be here nor would they be writing their books/tests if they had to give it away. Like Stephen said, it is only 60 bucks and as Fred said, "extremely helpful" My .02 Drew -Original Message- From: Fred Danson [mailto:[EMAIL PROTECTED]] Sent: Thursday, April 19, 2001 7:17 AM To: [EMAIL PROTECTED] Subject: Re: CCIE Qual...Off-topic [7:1185] If I was you I would buy all three tests. I thought they were extremely helpful for the written. Fred >From: "Stephen Skinner" >Reply-To: "Stephen Skinner" >To: [EMAIL PROTECTED] >Subject: Re: CCIE Qual...Off-topic [7:1185] >Date: Thu, 19 Apr 2001 06:09:20 -0400 > >if i remember correctly i got KILLED for mearly suggesting the codes >stuff .and AM NOT going into it again.THANKFULLY boson have changed >the way you buy the exams and it is a lot MORE secure...so ...anyway here >is >the code > >1. startup the exam and hit the ORDER FULL VERSION button >2. imput your details >3. put in credit card number and BUY the thing.. > >in the long run ...it will save you so much HASSLE(not that at the time i >didnt DESERVE it) > >but if people on the list find out you cracked the exams they are less >likely to help you.TRUST ME ON THIS > > >it is only $60.. > >NO FLAMING PLEASE > >regards > >steve > > > >From: "Henry Rollins" > >Reply-To: "Henry Rollins" > >To: [EMAIL PROTECTED] > >Subject: Re: CCIE Qual...Off-topic [7:1185] > >Date: Thu, 19 Apr 2001 03:29:07 -0400 > > > >You can't gather a mere $60 to help you pursue a $1550 exam (with lab) > >with some hint of legitimacy? That is very sad. > > > >Of course MAYBE I'm overreacting and you simply lost your codes for the > >referenced exams which you have already purchased, and you wish to study > >RIGHT THIS MINUTE and the B O S O N offices are not open yet for you to > >get the codes again. Yeah...that's probably it. > > > >Shame on me for thinking such bad thoughts initially --- now where's my > >crack pipe ;-] > > > > > >Quoting "[EMAIL PROTECTED]" : > > > > > Could somebody provide me the signature files of CCIE Qual 1 & 2, for > > > converting the trial versions of Boson tests ? > > > > > > If you want to take it offline, reply. > > > > > > -a CCNP > > > > > > - > > > Get free personalized email at http://email.lycos.com > > > FAQ, list archives, and subscription info: > > > http://www.groupstudy.com/list/cisco.html > > > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] > > > > > > > > >-- > >FREE ANONYMOUS EMAIL! Sign up now. > >http://www.subdimension.com/freemail > >FAQ, list archives, and subscription info: > >http://www.groupstudy.com/list/cisco.html > >Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] > >_ >Get Your Private, Free E-mail from MSN Hotmail at http://www.hotmail.com. >FAQ, list archives, and subscription info: >http://www.groupstudy.com/list/cisco.html >Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ Get your FREE download of MSN Explorer at http://explorer.msn.com FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=1233&t=1185 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: T1 pinout [7:1297]
Here you go http://www.cisco.com/warp/public/471/75.html#command -Original Message- From: SH Wesson [mailto:[EMAIL PROTECTED]] Sent: Thursday, April 19, 2001 2:18 PM To: [EMAIL PROTECTED] Subject: T1 pinout [7:1297] Anyone know the pinout to a cable that use to connect two fractional T1 CSU/DSU back to back for testing. Thanks. _ Get your FREE download of MSN Explorer at http://explorer.msn.com FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=1309&t=1297 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Cisco IOS upgrade security policy [7:1408]
With the different major IOS releases, 11.1,11.2, 11.3, 12.0, 12.1..., How do security vulnerabilities get updated? My question really is this. Is running IOS 11.3.11b less secure than the latest release of 12.1? What is the upgrade policy associated with the IOS version? Should it be that if you are running 11.3 you should update to the latest version of 11.3 or is the recommendation to upgrade all the way to 12.1? Since it looks like different IOS versions along with platform version have different bugs associated with them, I was just wondering what other peoples corporate security policy was in relation to the Cisco IOS versions. Thanks for any insight Drew Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=1408&t=1408 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Frame LMI Multicasting [7:2893]
What is the purpose of LMI Multicasting? I've seen the "Allows a sender to transmit a single frame but have it delivered by the network to multiple recipients. " But that doesn't quite cut it. How would you use LMI multicasting and what is the difference between the frame interface-dlci broadcast command. Has anyone tried to use it in there lab? Any help would be appreciated. thanks Drew Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=2893&t=2893 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Cisco PIX vs Checkpoint FIrewall-1 [7:2878]
I don't think it is security holes at a lower layer. Checkpoint installs what they call a shiv between the network and data link layer to protect the IP stack. And if you were to take advantage of OS security flaws you would be doing it at the Session Layer and above, not the lower layers. About five years ago it used to be the case the application based firewalls did not protect the network as well as packet filtering. But that was because people didn't really understand what a firewall was. Most people considered a proxy server as a sort of firewall. I remember a client telling me they were protected because they used reserved ip address and M$ proxy. In fact at the time M$ was marketing their proxy server as a "poormans" firewall. But today firewalls protect the IP stack. And most people know that a proxy is not a firewall. So this hardware based is better than software based stuff does not ring true. When someone asks me which is better Pix or Checkpoint, I tell them it depends. I can find you studies that says Pix has better throughput than Checkpoint and vise versa. The real difference between them is that Checkpoint has a gui interface and Pix has the o'l command line. You can pretty much do the same thing with them, so what it comes down to is what are you or your staff more comfortable configuring. Are you a cisco shop, buy the pix, are you an NT/Unix shop, buy Checkpoint. Beyond that it is all marketing semantics. In fact I have heard, but not seen, that their is a new gui interface for the Pix. Anyone used it lately? I haven't had time to work with it, since I'm preparing for this little know lab called CCIE or something like that. What's an IGP? (oh my brain is starting to hurt...) -Original Message- From: Jim Brown [mailto:[EMAIL PROTECTED]] Sent: Friday, May 04, 2001 7:45 AM To: [EMAIL PROTECTED] Subject: RE: Cisco PIX vs Checkpoint FIrewall-1 [7:2878] Security holes in lower layers? Where did you come up with that, your Cisco rep? -Original Message- From: Eugene Nine [mailto:[EMAIL PROTECTED]] Sent: Thursday, May 03, 2001 5:01 PM To: [EMAIL PROTECTED] Subject: Re: Cisco PIX vs Checkpoint FIrewall-1 [7:2878] PIX goes up to layer 4, so it won't do things like URL filtering. Checkpoint (or other SW) can do higher layer protection but may not be as well at the lower layers (due to security holes in the OS, etc) Eugene ""Chuck Larrieu"" wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > Asked sincerely, what advantages do you see in provisions PIX plus > checkpoint? > > Chuck > > -Original Message- > From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] On Behalf Of > [EMAIL PROTECTED] > Sent: Thursday, May 03, 2001 2:47 PM > To: [EMAIL PROTECTED] > Subject: Re: Cisco PIX vs Checkpoint FIrewall-1 [7:2878] > > It depends on your security policy , design and needs , generally what we > advice our > customers is checkpoint + pix together > > Hatim badr a icrit : > > > Hi , > > > > I would like to know the pluses and minuses of each product . Currently > We > > are using checkpoint and I want to convince my management to switch to > cisco > > PIX firewall . > > > > Thanks > > > > Hatim > > > > > > Get free email and a permanent address at http://www.netaddress.com/?N=1 > > FAQ, list archives, and subscription info: > http://www.groupstudy.com/list/cisco.html > > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] > FAQ, list archives, and subscription info: > http://www.groupstudy.com/list/cisco.html > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] > FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=3204&t=2878 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: OT: Certifications worth? [7:3311]
ccnawan wrote: > > I have to ask this question in light of so many experienced certified people > looking for work. Why is there so many advertising on the jobs list, and > here. I see it everywhere, if being certified is worthwhile? It is not > because of the recent down turn. I saw this before. The advertised figure is > 150,000 supposedly open computer positions in the U.S. These figures are misleading. Open positions or not, companies tend to make do with what they have, and esp. in a time of uncertain economic conditions such as this. Certifications help, but they don't, IMO, do the job alone. You need a broad base of experience to give weight to the certifications, not the other way around. > My last position my pay was 54,000 + expenses, mileage, pretty good for > Kentucky. I recently got a call that wanted to pay me 40,000 for a more > advanced position. Network engineer. Companies are trying to pay less, and > less. Auto mechanics make more than 40,000 a year. College graduates in the computer field average 40K as a starting wage. I have been looking for a new position over the last few weeks, and have gotten several offers, the smallest of which was a 15% raise, and the greatest close to 40%. Its all in how you sell yourself, and what skills you have. As a reference, my current pay is closer to 100 than it is to 50. Keep looking, its out there. Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=3320&t=3311 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: FW: security opinions please [7:3666]
Eric Rivard wrote: > > If Cisco recommends and companies > like Microsoft and Excite are implementing it, I don't see how it can be > a security risk. It can be, and it is. But, so is just about everything. It is the probability of the risk being exploited that really matters, and in this case I see that as a small one. Now, lets talk about using Microsoft as a security benchmark... ;-) Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=3706&t=3666 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: security opinions please [7:3666]
Michael Cohen wrote: > > How does one go upon "penetrating" the internal VLAN on a switch while only > having access to the external VLAN and not traversing the PIX in the middle? > I have heard the response from numerous security engineers that anything is > possible however I guess I'm a novice because I have never seen nor heard of > this being done in the situation mentioned above. I attribute the idea of > physically seperating these networks (even though VLAN based seperation is > just as effective) as security paranoia. They say you have to do is flood the switch with ARP requests and overflow the CAM table... easy to talk about, hard to do in practice. There are, however, some tools that suppose to help you attack a switch. macof, part of dsniff, comes to mind. As does ettercap. In fact, I've never seen VLAN's mentioned as anything more than a handy way to break up broadcast domains. I don't consider them a security feature, and I don't know anyone else who does either. Some decent reads: http://mlarchive.ima.com/firewalls/1999/4507.html http://packetstorm.securify.com/9909-exploits/vlan_security.txt Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=3712&t=3666 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Question for EE majors [7:4566]
"[EMAIL PROTECTED]" wrote: > > This may be a rudimentary question for all the EE majors out there. > > Can anyone tell me what the 0x in front of 0x00-80-C2?( Why don't they > just use the 00?) 0x indicates hex. IIRC, 00 would indicate Octal. Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=4614&t=4566 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: what is a good intrusion detection software? [7:4610]
Sean Young wrote: > > I have a few suggestions for you: > > 1) get rid of Microsoft windows servers and Sun Solaris; > Use only NetBSD and software that are open-source, This is the most ignorant suggestion I have ever seen. How many times will it have to be repeated before it gets through... OS's aren't secure. None of them. Proper administration, among other things, makes them more secure, but nothing is ever totally secure. Anyone who thinks otherwise is a fool. And furthermore, I wish everyone would stop thumping their chests about *BSD and how wonderfully secure it is... > > 2) Replace Cisco routers with Juniper routers, Do you actually think this makes sense? > > 3) For IDS software, I strongly recommend Man-Trap and Man-Hunt. If you > are > > just a cheap-skate like me, Tripwire is a pretty solution too. Tripwire (or AIDE, take your pick) is not an IDS solution. It is a file integrity checker. I will not detect an intrusion, it detects the consequences of an intrusion, specifically the modification of files. For a network IDS, I think the general consensus is that SNORT is tops. For a host based IDS... well, I use commercial ones, so I really have no opinion. And to the OP... to be specifically technical, an IDS does nothing to assist your security. It allows you a greater incident response capability. (and anyone who mentions things like dynamic ACL updates and router shunning, etc... Show me a network that does this, I'd love to see one.) Maybe one day someone will release an IPS (intrusion prevention system) but until then, we can only react. Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=4635&t=4610 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Is it legal to distribute of Juniper Olive (JUNOS) code for [7:5131]
fingers wrote: > > Hi Sean > > I'm hoping it is legal, as I've been looking for this software for quite > some time. We'll be purchasing a few M40's in the next few months, and I'd > like to prepare for the new platform before the time. > A quick search of some meial archives on the web shows that Juniper has asked that it not be distributed, and stated that there is no lisence to use it, so it should not be used. Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=5131&t=5131 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Is it legal to distribute of Juniper Olive (JUNOS) code for [7:5170]
Nnanna Obuba wrote: > > Could you post this search result for us to see? > I see no such warning on there website > http://puck.nether.net/lists/juniper-nsp/0463.html The author used an @juniper.net email, so I assume he's in the know. Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=5170&t=5170 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: certificate [7:5200]
Jim Bond wrote: > > Hello, > > My client wants to use certificate server to > authenticate PCs on the network. Is there a way to do > it? I thought certificate has to be used with browser. > How do you give PC a certificate? 1. What the hell does this have to do with Cisco, with Cisco certifications or with study for Cisco certifications? Why on God's green earth would you think that this is the sort of place for your question? I'm really curious. 2. Of course you can authenticate users (who log into a PC on a network) using certificates. How do you give a PC a certificate? You copy the file on to it. Viola. Check the web, use a search engine, and learn the answers. Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=5211&t=5200 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: anybody ever connected 2600 AUX ports back2back? [7:5844]
You might just need to clear both lines. Clear line x Also are you using a rollover cable? -Original Message- From: Doug Hammond [mailto:[EMAIL PROTECTED]] Sent: Thursday, May 24, 2001 11:04 PM To: [EMAIL PROTECTED] Subject: Re: anybody ever connected 2600 AUX ports back2back? [7:5844] Some thoughts - Try putting in this command on your async interface: async default routing Also what type of cable are you using? I've always used the cisco black cable. And try to hard-code the rxspeed and txspeed. I never trust auto-select. Why are you using async65? Wouldn't it be async1? ""NRF"" wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > Well, now I've just tried back2back aux between a 2610 and a 2514. It still > doesn't work, exact same errors as before. > > > > > ""NRF"" wrote in message > [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > > So I'm trying to connect the AUX ports of 2 2610's back to back. I am > > following a known procedure on CCO where you can connect 2500's AUX ports > > back to back. > > http://www.cisco.com/warp/public/793/access_dial/auxback.html > > > > So I follow exactly what they do. But it doesn't work. Maybe the problem > > is that 2600's don't do back2back aux ports (the CCO example was for > > 2500's). But that doesn't make much sense, because why not? Anyway, has > > anybody ever gotten AUX 2600's (or any router for that matter) to connect > > back to back? > > > > For example, here is the Async config on one of the 2610's. > > > > interface Async65 > > ip address 192.168.10.1 255.255.255.0 > > no ip directed-broadcast > > encapsulation ppp > > async dynamic routing > > async mode dedicated > > > > Here is the aux line config: > > > > ine aux 0 > > modem InOut > > transport input all > > speed 38400 > > flowcontrol hardware > > > > So I believe that everything is good, it's exactly like the CCO config. > > Yet, the async interface just keeps bouncing up and down. For example: > > > > r1# > > 1d19h: %LINK-5-CHANGED: Interface Async65, changed state to reset > > r1# > > 1d19h: %LINK-3-UPDOWN: Interface Async65, changed state to up > > r1# > > 1d19h: %LINK-5-CHANGED: Interface Async65, changed state to reset > > > > > > Here's what happens when I debug async packet > > r1#debug async packet > > Async packet I/O debugging is on > > r1# > > 1d19h: %LINK-5-CHANGED: Interface Async65, changed state to reset > > r1# > > 1d19h: %LINK-3-UPDOWN: Interface Async65, changed state to up > > r1# > > 1d19h: APPP65: Output packet, len = 24, header = FF 3 C0 21 > > 1d19h: APPP65: Output packet, len = 24, header = FF 3 C0 21 > > 1d19h: APPP65: Output packet, len = 24, header = FF 3 C0 21 > > r1# > > 1d19h: APPP65: Output packet, len = 24, header = FF 3 C0 21 > > 1d19h: APPP65: Input packet, len = 24, header = FF 3 C0 21 > > 1d19h: APPP65: Output packet, len = 24, header = FF 3 C0 21 > > r1# > > > > Here's what happens when I debug async framing > > > > r1#debug async framing > > Async interface framing debugging is on > > r1# > > 1d19h: %LINK-5-CHANGED: Interface Async65, changed state to reset > > r1# > > 1d19h: Async65: Reset PPP framing on TTY65 > > r1# > > 1d19h: Async65: Setup PPP framing on TTY65 > > 1d19h: As65 PPP: Processed packet cached during autoselect > > r1# > > 1d19h: %LINK-3-UPDOWN: Interface Async65, changed state to up > > r1# > > 1d19h: As65: Enabling PPP framing in UART Microcode on TTY65 > > r1# > > 1d19h: As65: Enabling PPP framing in UART Microcode on TTY65 > > r1# > > 1d19h: As65: Enabling PPP framing in UART Microcode on TTY65 > > r1# > > 1d19h: As65: Enabling PPP framing in UART Microcode on TTY65 > > r1# > > 1d19h: As65: Enabling PPP framing in UART Microcode on TTY65 > > r1# > > 1d19h: As65: Enabling PPP framing in UART Microcode on TTY65 > > FAQ, list archives, and subscription info: > http://www.groupstudy.com/list/cisco.html > > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] > FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=5911&t=5844 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Privilege mode prompt is > on my routers [7:7154]
maybe prompt router> -Original Message- From: Michael Bambic [mailto:[EMAIL PROTECTED]] Sent: Monday, June 04, 2001 1:58 PM To: [EMAIL PROTECTED] Subject: Privilege mode prompt is > on my routers [7:7154] Students have been using my rack and now I've spent the last 1/2 an hour trying to figure out why or how my router prompt would be a > after typing enable and entering the password. I know I'm in privilege mode because I can do things such as show run etc that you can't do in user mode. Hope somebody can help... Mike Bambic Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=7156&t=7154 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: a question of security [7:15609]
> I am no security expert but I would think you could use private address > space on your internal network and use NAT on the router. Not the best > security design, but if you are limited to the specified resources, this may > work! > Using ACL's or, better yet, the firewall feature set, would be far better for your security posture than NAT. NAT is not a security solution Also, with the ease of use of open source firewall software and the low cost of the platforms it runs on, there is no excuse for not deploying some sort of firewall device. But keep in mind, this is just step one for securing your network... Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=15615&t=15609 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Fob ??? [7:16224]
> Does "Fob" in Key Fob stand for anything when referencing a Token? Weird > word/acronym (it)... > How on earth is this related to anything that this list is about? Anyway, a fob is a small pocket on the front of a man's pants or vest. I know I have some slacks that still have a fob, but just one or two pair. This was used to hold one's pocket watch in the time when gentelmen carried such things. It later evolved to reference the chain used to hold a pocketwatch (haven't you read the "Gift of the Magi"?) and then to anything attached to such a chain. So, since we don't generally wear pocketwatches, the fob is now an ornamental (or in this case not so ornamental) attachment to a chain, here being ones keychain. Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=16245&t=16224 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: CCIE Equipment Discounts [7:17980]
- Original Message - From: "Thomas Moore" To: Sent: Thursday, August 30, 2001 4:15 PM Subject: CCIE Equipment Discounts [7:17980] > Hi All... > > I am trying to cost-justify my employer paying for my CCIE Written and lab - > they've paid for me CCNP and CCDP but now are a little hesitant for the CCIE > due to budget constraints. I've heard over and over again that CCIE's can > get a discount on Cisco equipment, I've actually heard that it was 50%, by > themselves once they are CCIE certified. I've been trying to find supporting > documentation for this but have not been able too. > When I worked at AT&T, we had a 40% discount, which I think is the max one could expect. Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=17988&t=17980 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Spanning Tree Protocol [7:26538]
Randy Lopez wrote: > > What Multicast address does STP use? > Since spanning tree is a layer 2 protocol, why would it use any multicast address? STP is used between directly connected switches and uses BPDU packets, flooded out all ports for set up. Not multicast. http://www.cisco.com/warp/public/473/5.html Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=26548&t=26538 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Turning a PC Into a Franken-PIX [7:26539]
Francis Lind wrote: > > Hello all, I am currently planning on earning my CQS in Security but don't > have the money to buy a PIX. I had heard from my CCNP instructor that there > are directions out there on turning a PC into one. If anyone has a link or > the info I'd greatly appreciate it. > Word on the CCIE Security list is that you require a PIX flash card, which sells for ~ $700 US. With that, you could easily buy a 501 or maybe even a used 506 on Ebay. Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=26547&t=26539 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Passed CCNA&CCNP in a month [7:27142]
> Hello, my name is Judy White and one of my close friends gave me some very > good study material. The material was so good that I passed my CCNA and > CCNP in a month. That's 5 test in one month with minimum study time. The > questions and answers that my friend gave me to study was identical to the > ones on the actual test. If you are interested in obtaining a copy of this > material contact me at [EMAIL PROTECTED] > Seems like a shame to waste a month like that... or do you think that you actually learned something? Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=27191&t=27142 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Sysco cert question
I have been studying hard for the Sysco Certified Condiment Engineer 2.0 Exam. Does anybody know how many ounces of ketchup are in one packet? How many mustard packets will be distibuted on an hourly basis? Does mustard always have to go into the yellow squeeze bottle? ___ UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html FAQ, list archives, and subscription info: http://www.groupstudy.com Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Sysco cert question
I want to thank everyone for the enlightening responses to my original food service questions. This thread has been very very good to me over the last few days. I'll probably never be able to post a real question without being recognized as "that condiment dude" , "mustard boy" , or the "Sysco Kid." Drew -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Drew Anderson Sent: Tuesday, August 01, 2000 11:01 AM To: [EMAIL PROTECTED] Cc: 'Solt, Jasper (spawar)' Subject: Sysco cert question I have been studying hard for the Sysco Certified Condiment Engineer 2.0 Exam. Does anybody know how many ounces of ketchup are in one packet? How many mustard packets will be distibuted on an hourly basis? Does mustard always have to go into the yellow squeeze bottle? ___ UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html FAQ, list archives, and subscription info: http://www.groupstudy.com Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] ___ UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html FAQ, list archives, and subscription info: http://www.groupstudy.com Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Wireless Networks
Jean, IMNSHO, wireless will definitely be more of a factor in the networks of the future. Cisco are well prepared for it - and they've formed some pretty groovy alliances with wireless vendors such as Motorola to lead the way towards wireless convergence. Their broadband offering is through Spectrapoint Wireless - I don't know much about this company, but they've a pretty informative website: www.spectrapoint.com I work for Invisix - which is Cisco's alliance with Motorola. Invisix is geared more towards wireless data to handheld devices [pcs phones, pda's, etc.] Invisix' website is still pretty lame [we're overhauling as I write this] but perhaps worth a gander... www.invisix.com At present, it doesn't get much better than 40-64kbps but the technology is improving pretty much in pace with market demand for higher wireless data rates. We'll probably see ISDN rates or better in less than a year's time, and T1/E1 rates not long thereafter. A few keywords you might want to use in net searches for more info on this stuff: 3G, LMDS, GPRS, UMTS, HSPD This is a bit off topic for this list, so if you or anyone else on the list would care to discuss further, take it offline to [EMAIL PROTECTED] HTH, Drew Mooney Systems Integrator Invisix T-Mobil GPRS Team +44-(0)771-505-5944 -Original Message- From:m. jean stockton [EMAIL PROTECTED] Sent:Sun, 06 Aug 2000 18:49:55 -0400 To: [EMAIL PROTECTED] Subject: Wireless Networks are wireless the networks of the future? if so, how will cisco be prepared for it? mjs, ccna ___ UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html FAQ, list archives, and subscription info: http://www.groupstudy.com Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] ___ Visit http://www.visto.com/info, your free web-based communications center. Visto.com. Life on the Dot. ___ UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html FAQ, list archives, and subscription info: http://www.groupstudy.com Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: T1, FT1 and Channelized T1
Channelized implies that it's destined for circuit based equipment - for example, a PBX - to handle circuit switched voice and/or data traffic. Channelized means that the T1's [or FT1's] bandwidth is TDM'd [Time Division Multiplexed] into discrete 64k chunks. [even if there's only 56k available to handle voice/data traffic - there's still 64k chunks]. The discrete chunks lend themselves very well to synchronized switching and cross-connection - as in a PBX or any telephone switch. An unchannelized T1 is just a data pipe Nx64k wide. It's generally what would be at the router side of a CSU/DSU - more suitable for packet switched applications. This is - in a way - an oversimplification of this stuff, but I hope it's helping Drew Drew Mooney Systems Integrator Invisix T-Mobil GPRS Team +44-(0)771-505-5944 -Original Message- From:Jean Stockton [EMAIL PROTECTED] Sent:Tue, 08 Aug 2000 11:12:32 -0400 To: [EMAIL PROTECTED], [EMAIL PROTECTED], [EMAIL PROTECTED] Subject: RE: T1, FT1 and Channelized T1 fracT = 56k or 64k minimum (generally 64k) > -Original Message- > From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of > Oz > Sent: Tuesday, August 08, 2000 4:12 AM > To: Jim Bond; [EMAIL PROTECTED] > Subject: Re: T1, FT1 and Channelized T1 > > > T1 = 1.536mbps > Fractional T1 is 128 k minimum increasing in 64 k chunks > Channelized means it can be split up into 24 channels > > Some folks use the term fulll T which to me means a fat 1.536 meg pipe > yes I know it listed as 1.544 but thats the gross BW you lose 8k in > housekeeping.. > its real name should be a DS-1 > > i had great link that explained all this i will try and find it for you > > Oz > http://www.mcseco-op.com/helpfull_links.htm > Can someone tell a little on the difference among T1, > Fractional T1 and Channelized T1? I'm bit confused. > > > > ___ > UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html > FAQ, list archives, and subscription info: http://www.groupstudy.com > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] > ___ UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html FAQ, list archives, and subscription info: http://www.groupstudy.com Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] ___ Visit http://www.visto.com/info, your free web-based communications center. Visto.com. Life on the Dot. ___ UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html FAQ, list archives, and subscription info: http://www.groupstudy.com Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: canonical and non-canonical addresses
Neil, I'm not sure what your question is. The bits on the wire are transmitted the same 0100. Token-ring reads them one way (non-canonical) 0100, and Ethernet reads them another way (canonical)0010. It is how the network interface cards (NIC)/device drivers read the 0s and 1s that is different. I would be happy to help(since I have struggled with this myself) if you can clarify your question Regards, Drew R. Maness, CCNP, CCDA, CCSI, MCSE -Original Message- From: Neil Desai [mailto:[EMAIL PROTECTED]] Sent: Tuesday, August 15, 2000 12:47 PM To: [EMAIL PROTECTED] Subject: Re: canonical and non-canonical addresses Does any body know the answer to this one? Now I am getting a bit frustrated. I have posted to this group only a couple of times and I never get an answer. All I get is people asking me to look at the archives. I did as much homework as possible before asking the group. ""Neil Desai"" <[EMAIL PROTECTED]> wrote in message 8n9llp$83c$[EMAIL PROTECTED]">news:8n9llp$83c$[EMAIL PROTECTED]... > I am having a problem understanding the issues between canonical and > non-canonical addressing. I understand that the bits are flipped within the > byte. On page 32-33 of Interconnections Second Edition she gives the example > of the address a2-41-42-59-31-51. > Canonical: > 10100010 0101 0110 01011001 00110001 01010001 > Non-Canonical: > 01000101 1010 0110 10011010 10001100 10001010 > > If you look at this you can clearly see that the address in canonical format > is not a group address (last bit of first byte is zero) but in non-canonical > format it is a group address. At this point I can see a big problem because > she also states: > > ".the group bit in addresses was defined not as "the most significant bit" > or the "least significant bit" but rather as "the first bit on the wire." > Thus, an address that was a group address on 802.3 would not necessarily > look like a group address when transmitted on 802.5 because a different bit > would be transmitted first." > > Here is the confusion: In canonical format the least significant bit is > transmitted first and in non-canonical format the most significant bit is > transmitted first. So on the wire the 1's and 0's would be in the same > order. Here is an excerpt from RFC 2469: > > The figure below illustrates the difference between > canonical and non-canonical form using the canonical form address > 12-34-56-78-9A-BC as an example: > >In memory, 12 34 56 78 9A BC >canonical: 00010010 00110100 01010110 0000 10011010 1000 > > 1st bit appearing on LAN (group address indicator) > | >On LAN: 01001000 00101100 01101010 0000 01011001 0001 > >In memory, >MSB format: 01001000 00101100 01101010 0000 01011001 0001 >48 2C 6A 1E 59 3D > > > This shows that no matter how the information is stored in memory it looks > the same on the wire. So if it looks the same on the wire wouldn't an > adapter pickup the packet and flip the bits in the byte if it needed to. > Since it on the wire it looks like the bits are in non-canonical format a > canonical format media would automatically take the first byte and flip the > bits and so on, or so I would think. > > If anyone can figure out where I am going wrong please let me know. If it > would be best to talk, email me directly with a daytime phone number and I > will call you. Thanks. > Neil > > > > ___ > UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html > FAQ, list archives, and subscription info: http://www.groupstudy.com > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] > --- ___ UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html FAQ, list archives, and subscription info: http://www.groupstudy.com Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] ___ UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html FAQ, list archives, and subscription info: http://www.groupstudy.com Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Router for play @ home
"...And I used to get up every morn'n about an 'our before I went to bed and lick the road clean with my tongue..." -Original Message- From: Cohen, Michael [mailto:[EMAIL PROTECTED]] Sent: Wednesday, August 23, 2000 3:12 PM To: Group Study Subject: RE: Router for play @ home OC12? I'm waiting on the OC192VSR interfaces to stick in my GSR's! Till then I'll have to settle with my OC48's:) -Mike -Original Message- From: ZAPP, JULIAN F (PB) [mailto:[EMAIL PROTECTED]] Sent: Wednesday, August 23, 2000 2:08 PM To: 'Ledwidge, Feargal'; 'Mike Sholar'; Group Study Subject: RE: Router for play @ home 7513 are nice, but I have more fun with my 12000 GSR's. I would rather have OC12, but the OC3 connections are fast enough. -Original Message- From: Ledwidge, Feargal [mailto:[EMAIL PROTECTED]] Sent: Wednesday, August 23, 2000 12:23 PM To: 'Mike Sholar'; Group Study Subject: RE: Router for play @ home I think you 'll find that a couple of 7513's will make for a pretty good home lab ... ;-) Feargal -Original Message- From: Mike Sholar [mailto:[EMAIL PROTECTED]] Sent: Wednesday, August 23, 2000 5:29 AM To: Group Study Subject: Router for play @ home Hello people! Not exactly a cert question, but it applies. I will soon be getting cable intenet access at the house, and would like to purchase a cisco router to play with behind the cable modem. What series router should I be looking at, just to learn the ios and play around with. I am working on my CCNA, and realize a physical router is not necessary, but I will be progressing upwards and would like the experience. I looked at the 924 cable modem/router cisco sells, and the $899 price tag was a little much for play-time! Thanks for the input. Mike MCSE, MCP+I ___ UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html FAQ, list archives, and subscription info: http://www.groupstudy.com Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] ___ UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html FAQ, list archives, and subscription info: http://www.groupstudy.com Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] ___ UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html FAQ, list archives, and subscription info: http://www.groupstudy.com Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] ___ UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html FAQ, list archives, and subscription info: http://www.groupstudy.com Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Recommended Training Centers/ Instructors in VA,NC,SC,GA,FL
Any recommendations on training centers or specific instructors in VA,NC,SC,GA, or FL for BSCN class. Recommendations for the other CCNP classes would be also appreciated. I haven't heard great things about IKON. In a previous post Pricilla Oppenheimer had good things to say about Information Innovation, Inc. Haven't heard anything about Boson training in Tampa (provided by Skyline Computer Corp). Drew W. Anderson ___ UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html FAQ, list archives, and subscription info: http://www.groupstudy.com Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: CCIE Preparation
Raymond, It is a very good source for the CCIE written but must be supplemented. For example: the book talks about the RIF and RII but does not go as much in-depth as you will need. It is a very good place to start or review. You can also use it in studying for the CID test. -Original Message-From: Raymond Smith [mailto:[EMAIL PROTECTED]]Sent: Tuesday, August 29, 2000 8:39 AMTo: GroupstudySubject: CCIE Preparation Hey guys do you know how good of a read is the following book in preparation for the CCIE written:- TITLE: CCIE Fundamentals: Network Design and Case Studies Need the 411 on this Peace!
Archives Problem
Anyone else having problems searching the archives? ___ UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html FAQ, list archives, and subscription info: http://www.groupstudy.com Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: GroupStudy.com archives
Paul, Thank you again for all your hard work -Original Message- From: Paul Borghese [mailto:[EMAIL PROTECTED]] Sent: Wednesday, August 30, 2000 1:41 PM To: [EMAIL PROTECTED] Subject: GroupStudy.com archives The Archives are back online. If this happens again, please send me e-mail. Thanks, Paul ""Paul Borghese"" <[EMAIL PROTECTED]> wrote in message 005b01c012ac$a1ee5580$c81710ac@laptop">news:005b01c012ac$a1ee5580$c81710ac@laptop... > Ok, it must be down again. I will fix tonight. > > Paul > - Original Message - > From: "Dale Holmes" <[EMAIL PROTECTED]> > To: <[EMAIL PROTECTED]>; <[EMAIL PROTECTED]> > Sent: Wednesday, August 30, 2000 1:20 PM > Subject: Re: Trouble searching www.groupstudy.com archives > > > > Hmmm, I just had the same problem. A search of the [EMAIL PROTECTED] > list > > found 0 matches for the word CCNA... must be that the index of that list > is > > fubar. It could be a punch item from the move to the new server... > > > > Dale > > [=`) > > > > > > >From: George Zhang <[EMAIL PROTECTED]> > > >Reply-To: George Zhang <[EMAIL PROTECTED]> > > >To: [EMAIL PROTECTED] > > >Subject: Trouble searching www.groupstudy.com archives > > >Date: Wed, 30 Aug 2000 11:46:10 -0500 > > > > > >I tried to search the archives of this group at www.groupstudy.com. > > >However, I always get zero(0) match regardless the word I try to > > >search. In the mean time, I was able to search the CCIE lab group. Is > > >the search engine at www.groupstudy.com for the archives of this group > > >down? Any info is appreciated. > > > > > >Thanks. > > > > > >George Zhang, CCNP > > > > > > > > >___ > > >UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html > > >FAQ, list archives, and subscription info: http://www.groupstudy.com > > >Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] > > > > _ > > Get Your Private, Free E-mail from MSN Hotmail at http://www.hotmail.com. > > > > Share information about yourself, create your own public profile at > > http://profiles.msn.com. > > > > ___ > > UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html > > FAQ, list archives, and subscription info: http://www.groupstudy.com > > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] > > ___ > UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html > FAQ, list archives, and subscription info: http://www.groupstudy.com > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] > ___ UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html FAQ, list archives, and subscription info: http://www.groupstudy.com Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] ___ UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html FAQ, list archives, and subscription info: http://www.groupstudy.com Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: console 5500
Have you tried Stop Bits of 2 -Original Message-From: jahaughom [mailto:[EMAIL PROTECTED]]Sent: Thursday, August 31, 2000 5:21 PMTo: [EMAIL PROTECTED]Subject: console 5500 I am trying to get a console on a 5500 switch. When I bring up hyper term I am not getting anything. Occasionally I will get unintelligble items appear in the window. I have tried com1 com2 com3 bps 9600 flowcontrol hardware,none,xonxoff as well as different cables all the lights on the switch are green Any help would be greatly appreciated
RE: Mostly OT thought as I wake up
Howard, I always look forward to your posts... You sure your not a comedian? Tenlet I'm going to see if I can convince everyone here at work that it is actually is tenlet ;) -Original Message- From: Howard C. Berkowitz [mailto:[EMAIL PROTECTED]] Sent: Wednesday, September 06, 2000 6:00 AM To: [EMAIL PROTECTED] Subject: Mostly OT thought as I wake up There are so many posts about reverse telnet. If it's truly reversed, shouldn't it be tenlet? ___ UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html FAQ, list archives, and subscription info: http://www.groupstudy.com Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] ___ UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html FAQ, list archives, and subscription info: http://www.groupstudy.com Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
