Re: 800 IPSec throughput [7:63547]
Steve, I managed to get around 512kbits of troughput on a 827 with 32MB RAM installed. This was on a 3DES tunnel to a 3005, the processor was at 80 to 90% so I guess you wont get much more than that. Erwin ""Steve Dispensa"" wrote in message news:[EMAIL PROTECTED] > Hi all. > > I was wondering if anyone has practical experience with the 800 series > as ipsec devices. I'm particularly interested in field-measured > throughput and delay stats, but i'd settle for anecdotal evidence as > well. FWIW, I just got a few in and I'm underwhelmed... Granted, I > didn't order them to spec, but they shipped with 4MB DRAM and 8MB > Flash. Guess how many images run in 4MB... > > Then when I went to bump the image up (after upping the RAM), the stupid > tftp transfer kept timing out half way through. A little etherealing > showed that the device stopped responding to ARP requests during the > transfer (which had to be done from ROM due to limited flash space and > the fact that you can't delete the running IOS from flash). I finally > had to add static arp entries to my tftp server. Don't ask me why the > server felt the need to re-arp after 5 seconds, either. :-) > > Anyhow, thanks in advance. > > -sd Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=63563&t=63547 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: CCNP dumps????????????? [7:55156]
Go and find it in your own country ! ""Vinod Raju"" wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > Could someone please tell me where to avail latest CCNP dumps especially for > BSCI (routing) and BSCSN (switching)? > > Please reply fast > > Thanx in advance, > > Raj Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=55165&t=55156 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Voice Certification [7:52734]
I thought there are 4 exams to take for Voice Specialization. For one company to be specialized in it, how many people are ideally having certified as I understand there are some requirement for it. ""Bolton, Travis D"" wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > Team, > > I'm going to get my Voice Support certification and was wondering what order > I should take the tests (CVOICE, CIPT, or DQoS). Also are the boson exams > good for practice tests? > > Travis Bolton > Network Engineer II > CCNP,CCDA > > "Try not to become a man of success, but rather try to become a man of > value." > - Albert Einstein Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=52778&t=52734 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Caller ID for Callback [7:49377]
Anybody has experience in setting up Caller ID for Cisco routers, to control Callback features for remote users? Is this features supported on Cisco routers? I have experienced setting up using Lucent products, and now asking for any advice regarding this. Cisco routers support the remote access dial-in for remote users throught its analog modem module, but it is not yet supported on the software. Can Cisco2600 or Cisco3600 able to do that, or I need AS5300 to achieve this? Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=49377&t=49377 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
E&M VIC with MUX [7:47394]
I was just wondering if anyone here has been implented VoIP using E&M connected to the PABX on the other end, and connected directly to MUX (TDM Multiplexer). The question is whether it is possible to have such a connection from E&M VIC to the MUX? Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=47394&t=47394 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: CCIEWritten [7:46264]
Taking some time for conversion? Does it take some time too to read the questions and the multiple answers? The question is like asking about the Numerical Anaysis exam if it is allowed to bring a minicomputer to perform the iteration because it takes long time to perform the iterations. For CCIE Written exam, only a pen, paper, and a finger to click the mouse are permitted inside the room. :) ""Reza"" wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > Hello Group, > I have a question for people whom have taken the CCIE Written. Do they let > you use a calculator in this exam to convert from Hex to Dec and vise versa > or they just give you a sheet of paper and you have to convert the Hex to > Bin and back to Dec?. The reason I am asking this is that for example > converting 0xF00 to Dec takes some time to add the numbers to get 3840. > > Thanks > Reza Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=46268&t=46264 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: written [7:45056]
"Having passed all CISSP, CSS1, CCIE Security, CSPFA, MCNS, etc. does not a guarantee that someone will not have 0% in the security section of the exam". The bottom line is somebody still makes mistakes in the exam, and don't make mistake by saying that someone has never made mistakes in the exam, regardless of how many security certification tests have been taken. Hope this helps. wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > Yeah but I can sympathize with you man because several times on the test I > think that Cisco is wrong. Usually, Cisco is right on and I have to agree > because the right answer is just here. However, sometimes I don't think > the answer is there at all or I think the question is phrased in a way to > make me fail. I don't like those questions. > > So far, BSCN, BCSI, IDS, VPN, PIX, MCNS and QoS had questions that I could > not disagree with and though yeah, the correct answer is right here. The > questions properly tested my knowledge and if I was wrong, I agreed I was > wrong. These are good tests. Especially the CLI questions, very > respectable. > > However, for CCNA, CCDA, CID, CIT, and CCIE R&S/SEC written, some of the > questions I thought were more designed to make me fail rather than test my > real knowledge on the topic. It was like, I would take sometimes 3 > minutes just to try to figure out what the hell Cisco was asking. I never > had that problem with the other tests. I don't like it either when Cisco > plays English language word games on the test. Some of my friends are not > native English speakers can they can't understand the questions. In > particular, I don't like the IOS history questions. They really get me > vexed. Can you imagine this. > > Router> > Router>en > Password: > Question: What IOS version introduced NAT? > Question: 11.0 (Engineer shouts explictives!) > Question: wrong > Question: 10.2 > Question: wrong > Question: 11.1 > Question: wrong > > If my router asked me this I would throw it out the window and go buy a > Foundry machine asap! I don't understand why I need to know the history > of a command. So far, only Cisco is asking me these silly questions. > Understanding a topic is quite different from understanding the history. > Historical questions are just silly I think!I just can't understand > how I would be a better engineer if I knew the history of commands > expecially given that I now only use 12.0 and above. If someone wanted me > to do below 12.0 I would tell them to find a starving CCIE from Cali! > > And get this! I am a CISSP and a CSS1 and CCSE. You would think that I > know security right? I got a 0% on the CID security section twice! I > still don't know why. How could I not know enough when I got over 900 on > each of the CSS1 tests all on the first try??? I just don't > understand sometimes. > > Theodore Stout, CISSP > Senior Security Consultant > CCSE, CSS1, CCNP, CCDP, MCSE > > > > > > > > "Erwin" > Sent by: [EMAIL PROTECTED] > 05/26/2002 01:57 PM > Please respond to "Erwin" > > > To: [EMAIL PROTECTED] > cc: > Subject:Re: written [7:45056] > > > How would you know that the particular question does not have a correct > answer, based on the score you get--69%-- It does not sound convincing to > me. > Even you get that question rewarded to you, it does not mean you will get > 70% since I believe it is calculated using a statistical analysis > technique. > Even if you can get 70%, it does not mean that you master the topic well. > The most important thing is that you understand and master the topics, not > just "pass pass pass". Try to get distinction or high distinction > (unfortunately, the exam grade is only pass and fail). > > Good luck for your next exam. > > ""CJ"" wrote in message > [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > > Having obtained 69% and failing the CCIE qualification, There was one > > question > > which did not have a correct answer. Whom do I contact at Cisco address > this > > issue. [EMAIL PROTECTED] did not yet replay since the last 4 days. Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=45070&t=45056 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: written [7:45056]
How would you know that the particular question does not have a correct answer, based on the score you get--69%-- It does not sound convincing to me. Even you get that question rewarded to you, it does not mean you will get 70% since I believe it is calculated using a statistical analysis technique. Even if you can get 70%, it does not mean that you master the topic well. The most important thing is that you understand and master the topics, not just "pass pass pass". Try to get distinction or high distinction (unfortunately, the exam grade is only pass and fail). Good luck for your next exam. ""CJ"" wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > Having obtained 69% and failing the CCIE qualification, There was one > question > which did not have a correct answer. Whom do I contact at Cisco address this > issue. [EMAIL PROTECTED] did not yet replay since the last 4 days. Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=45063&t=45056 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Support Passed [7:44599]
So Support is the first exam you took? Kinda strange because normally once you passed Routing, Switching, and Remote Access, you start taking the support. How did you manage the troubleshooting section of Remote Access in Support ? =) It was quite sometime back when I finished my CCNP, but my suggestion about the Remote Access test is trying to understand each of the topic in the Exam Objectives and make sure you have hands-on on them. Good Luck ""Cody Lerum"" wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > Ok, well I started kinda backward, but I passed my CCNP Support test, and > I'm now working on my Remote Access. I have the cisco press books, which I > love, but is there anything I should know about the remote access test? > > > > Cody Lerum, CCNA, (1/4)CCNP Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=44601&t=44599 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Passed the written... Now on to the lab!! [7:44442]
If I still remember correctly, CCIE #350-001 exam will be replaced by CCIE #351-001 exam around October 2002. There will be an updated and more interesting new technology presented in the new exam wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > When will the current written-exam expire? > > Hamid > > ""Michael L. Williams"" wrote in message > news:... > > Just a quick note to everyone saying thanks for all of the good info > > and discussions. I've been in Groupstudy since I started studying > > CCNA and it has been invaluable to me. > > > > I guess now it's time to gear up for the lab... WOOHOO > > > > (just to echo what others have said) If you're anywhere close to ready > > > to take the written, do it now! I took the beta for the new written, > > and it's much different. Aside from information on routing protocols, > > > etc, many of the prep tests and study materials for the current > > written simply will not be enough to get through the new written. If > > you've finished CCNP (especially recently), the written shouldn't be a > > > problem if you bone up on some topics not covered much in CCNP like > > LANE, IS-IS, Token Ring (RIFs and all of the Source-route bridging > > methods), DLSw, basic STUN/BSTUN, etc The depth of > > routing/switching/WAN knowledge required isn't nearly that required > > for CCNP Routing/Switching/Remote Access exams > > > > Thanks again and wish me luck on the lab (whenever I take it) =) Mike > > W. Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=5&t=2 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: dispelling CCIE myths [7:44342]
nrf, reading all your long, sarcastic, and unreasonable comments, mostly having a negative impact on hte Groupstudy, are you actually a CCIE? You seem very jealous about ppl having a CCIE certifications, or at least demoralizing ppl not to take CCIE if not 50 years old with rich networking experience. ""Tom Monte"" wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > I want to write about all the posts that use the words "real" CCIE. I hope > we can beat this into the ground and never speak of it again. > > > 1.) I think people should spend more time on technical issues and career > opportunities and less on putting people into categories. "Yes, I have less > Cisco experience than most people on this list, oh my god crucify me now!" > > Lesson: Everyone starts knowing nothing. > > > 2.) I have been working on Cisco certifications since 1999 and I frequently > spend a month studying for a single test, while it took me a month to get my > MCSE and a month for my CNE. I also only spent about $1,000 on those > certifications and at least 8k on Cisco study materials. I also read alot > about how the CCIE is devalued, because of the new one day format. You have > less time and cover the same material that sounds harder to me. > > Lesson: It isn't easy and it isn't cheap. > > > 3.) Jobs only want someone with experience, but how do you get it? I didn't > get lucky enough to end up in a job where I got Cisco experience early in my > career. > > Lesson: No matter how smart you are, luck had something to do with your > success today. > > > This e-mail and any files transmitted with it are intended solely for > the person(s) to whom it is addressed. If you are not the intended > recipient, please delete the message and all copies of it from > your system, destroy any hard copies of it and contact the sender > by return e-mail. Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=44358&t=44342 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Cisco 2500 memory updrade [7:44329]
Did you upgrade the DIMM memory from 8MB to 16MB? Have you got the appropriate DIMM module, where did you buy it? Did you insert it properly? Is the error message the same after you tried to reboot one more time? >From what you have shown here, it indicates that the router is not able to detect the DIMM module you just inserted. ""Stefan Razeshu"" wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > I have tried to upgrade the DIMM memory for my 2500 .After I replace the > DIMM with a 16MB module i receive the following message: > System Bootstrap, Version 11.0(10c), SOFTWARE > Copyright (c) 1986-1996 by cisco Systems > and the router freeze. No Contole-Breake available. > Do you have any ideas? > Beat regards > Stefan Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=44331&t=44329 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: CCIE in 3-6 Months from cisco Interesting [7:43306]
Just some comments about the opinions of some contributors in this discussion. I sometimes see arrogance of CCIE being "Know-It-All about networking both theoretically and experiences". I see most people try to compare apples to oranges when talking about CCIE. Some people have a solid networking work experience, while still not being able to pass CCIE. While others manage to pass CCIE with less networking experience as the previous guy. Well CCIE Lab and the real world experience are different things. It is like comparing a top-notch businessman and a graduate who just finished his MBA. Maybe the businessman does not need any certification at all to make money, because of his experience. But it does not mean that a fresh graduate who just finishes his MBA only having 3-year working experience can be claimed he is a "book-rat" MBA degree. This sentence means demoralizing people who will accomplish CCIE and go further in their real-world experience to understand and learn more about their certification values. That's why Cisco has 2-year recertification program for CCIE. Having CCIE is just the beginning of exploring and understanding more about the real networking world. It does not matter how you get to manage to pass the lab, as long as it is not cheating, we have to appreciate and respect all those people who dedicate their whole time pursuing CCIE, and respect them when they get it. In future, we might not know that these people will have more experience than the people who claim them "lab-rats". The most important thing is to eventually balance both the theoretical, lab and real experience. For those who think themselves very well-experienced, and always try to demoralized people who get CCIE as lab-rat, be careful in the near future you might lose out to them. People need not be so proud of themselves just because of CCIE. ""nrf"" wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > ""Michael L. Williams"" wrote in message > [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > > It's not in Cisco's best interest to crank out CCIEs and I doubt that's > what > > they're doing (or going to do) After all, this is a job posting, and > I > > doubt they're going to hire and train enough people to make an impact in > the > > total number of CCIEs out there. (i.e. they may hire 5, 10, hell maybe > even > > 50 people, say, and so you're only taking 5/10/50 more CCIEs on top of the > > 7400 existing CCIEs ... not enough to impact the overall market/demand for > > CCIEs, IMHO). I agree with another poster here that, even spending > everyday > > at "work" for Cisco studying isn't enough to get through the new CCIE > > written, much less the lab. > > I agree with the premise that even TAC guys do not get as much hands-on as > they would like, especially with expensive gear. From my friends who are > and were at TAC, they have to fight for access to good equipment. > > > > > As far as the devaluing of the CCIE, I've see ramblings of this ever since > I > > joined Groupstudy, and I believe that it's mostly just alot of talk. > Sure, > > CCIEs aren't pulling in as high a salary as they were 2 years ago, but > most > > of that is due to the dot-bomb thing coming to an end as well as the job > > market/economy of the last year or so. Two things can devalue the cert: > > The number of CCIEs skyrocketing and/or people being able to attain the > CCIE > > without being qualified. I don't think anyone will argue that the CCIE > > written/lab combo pretty much keeps "paper CCIEs" from becoming a reality. > > Bullshi*. There are a significant number of guys lately who've passed the > lab who I wouldn't hesitate to call "paper" (heck, even they have honestly > referred to themselves as paper, usually after getting a few drinks into > them). > > But I do agree with the premise that the main reason for the devaluing of > the cert is the bad economy, and the lab-rats are a lesser consideration > (still important, but lesser). But on the other hand, I think it is the > case that the CCIE will probably never attain the status that it once did, > simply because the we will probably never see another huge network buildout > orgy like the dotcom boom again in our lifetime. So while I believe the > networking industry will get better, people who thinks it's going to get > back to, say, 1999, are just deluding themselves. > > > As far as the number of CCIEs skyrocketing, if I recall correctly, when I > > first started working on Cisco certification there were around 6000 CCIEs. > > Now there are around 7400 (worldwide). That's certainly not > "skyrocketing". > > Compare that to MSCEs where there was such a flood of new MSCEs on the > > market that simply supply/demand took over, and all of a sudden MSCEs were > a > > dime a dozen (no offense to people with MSCEs, just making a point about > the > > numbers). > > > > Also, I don't agree with the claim that the CCIEs best days are behind it. > > I believe this i
Re: BSCI-640-900 [7:44001]
Try Cisco Press BSCN book and other Cisco Press books which cover the additional materials, according to the Cisco 640-900 Exam Blue Print. Sometimes you have to find the resources and compile it for yourself, rather than waiting for the author to spoon-feed you. It is all in the exam blue print Good Luck ""fahim"" wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > Hi Group > Is there any Cisco Press Book/Exam Certification Guide available for 640-900 > exam, or any other publications? I've searched in ciscopress.com and other > website, there aren't any..If anyone has given the above exam, pls throw > some light (how did u prepare?) > > Fahim Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=44003&t=44001 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: CCNP604-503 ( Routing Exam) [7:43895]
It all dependsWell..do you feel that you master all the topics and materials..if it is..then stop reading...if not continue with other books... There are numerous books written for CCNP Routing..If you want I can give you a list..I have a list of 10 to 20 books... Your question is like "Everyone, I have read this, is this enough?" It depends on how much your understanding and how much you absorbed...what is your networking background, your hands-on experience...etc.. So I hope you know the answers.. Good Luck for the exam... ""rtiwari"" wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > HI , > I HAVE TODD LAMMLE'S CCNP ROUTING GUIDE. I HAVE STUDIED THAT. IS IT > SUFFICENT OR I HAVE TO READ THE CISCO PRESS BSCN BOOK ALSO. > PLEASE REPLY. > -RAVI > > Tim Potier wrote: > > > Buy the Cisco Press BSCN book... it has more information than you will > need, > > but worth the price. BUT, since you are taking the exam next week, I doubt > > you have time to read the entire book... so I would go to CCO and look at > > the exam outline, and cram from online resources. Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=43967&t=43895 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: BGP Multihoming Policy [7:43962]
Well, obviously, the users are connected to the ISP private ASNs. There are three of them and I would like to control the exit to my upstreams but I prefer to configure the BGP attributes in my local routers, instead of doing it in the remote routers at the user ends. Currently, all the users are only multihome to one ISP, but there is a possibility that they will have another upstream to different ISP. Thanks ""Howard C. Berkowitz"" wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > At 12:30 AM -0400 5/12/02, Erwin wrote: > >Suppose we are the ISP having 3 different AS connected to users for > >multihoming. If it is requested that the users prefer a particular path, say > >from AS1, instead of from AS2 or AS3. What is the best way to apply the > >configuration? Is it using BGP path selection process criteria, then we > >apply weight or Local Preference, or we use the policy for controlling > >inbound traffic by configuring MED or AS PATH? > > > >Thanks in advance > > I'd need to know a lot more about what problem you are trying to > solve. Are AS1-3 all internal to you, or are some of them your > upstreams? It's highly unlikely that an ISP could get three > registered AS, but you could use private ASNs. > > Do the users have ASNs of their own? Do any multihome to other > providers? Is their address space provider-assigned? If so, by you > or another ISP? > > Why do you want different paths? Traffic management? Controlling the > exit to your upstreams? > -- > "What Problem are you trying to solve?" > ***send Cisco questions to the list, so all can benefit -- not > directly to me*** > > Howard C. Berkowitz [EMAIL PROTECTED] > Chief Technology Officer, GettLab/Gett Communications http://www.gettlabs.com > Technical Director, CertificationZone.com http://www.certificationzone.com > "retired" Certified Cisco Systems Instructor (CID) #93005 Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=43966&t=43962 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: BGP Multihoming Policy [7:43962]
Thanks a lot, Rob for your answers. Is it possible to apply those policies in the ISP routers, rather than in users' routers. If so, which attributes are the most appropriate ? ""Rob Ehlers"" wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > on the user's router you'll want to have them apply a route-map to routes > from AS1 that sets the local pref to 200 (or something higher than the > default of 100). Those routes will then be used over any from the other AS's > for outbound traffic from that user. > > If the user wants to control inbound traffic, have them use AS Prepends to > make the ASPATH length longer on routers announced out less prefered paths. Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=43964&t=43962 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
BGP Multihoming Policy [7:43962]
Suppose we are the ISP having 3 different AS connected to users for multihoming. If it is requested that the users prefer a particular path, say from AS1, instead of from AS2 or AS3. What is the best way to apply the configuration? Is it using BGP path selection process criteria, then we apply weight or Local Preference, or we use the policy for controlling inbound traffic by configuring MED or AS PATH? Thanks in advance Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=43962&t=43962 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Re: CODE RED protection ! ! ! [7:15989]
have your check this link http://www.cisco.com/warp/public/63/ts_codred_worm.shtml Thanks Erwin -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of [EMAIL PROTECTED] Sent: Wednesday, August 15, 2001 3:06 PM To: [EMAIL PROTECTED] Subject: Re: Re: CODE RED protection ! ! ! [7:15989] my company just got hit by code red last week. the only logical thing to deploy on your routers is to block all access to port 80 in and out of all the interfaces by ACL. Unless you have the luxury of running IOS 12.1 and above on all your routers, you will not be able to use NBAR. Deployed the ACLs onto all interfaces to control all port 80 traffic. Use "ip route-cache flow" and "show ip cache flow" on your interfaces to detect the IP addresses that are propagating http traffic to port 80. You will have to look out for port 0050 under destination port when you perform a "show ip cache flow". Cheers. - Original Message - From: "Dennis Bailey" To: [EMAIL PROTECTED] Sent: Tue, 14 Aug 2001 15:34:19 -0400 Subject: Re: CODE RED protection ! ! ! [7:15989] Depending upon the router platform you can use NBAR. I am just really depressed right now because there are costumers getting involved in our business. I knew I wasn't the only one who liked to get dressed up but now think of the pressure that there will be with professionals out there.. ""Hamid"" wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > Hi group > > I have some costumers whom I belive are infected with CODE RED. Any ideas > how I can deny any traffic related to CODE RED on my router? > > Thanks > > Hamid -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] Check any e-mail over the Web for free at MailBreeze (http://www.mailbreeze.com) Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=16142&t=15989 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Cabling Product [7:4496]
Dear All, Does anyone know some web sites which test performance for UTP cable and Fibre Optics by independent ? I want to know the comparison for all cabling product such AMP, Beilden, AVAYA etc. Thanks for help. Rgds, chikodank Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=4496&t=4496 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
WatchGuard Firewall [7:1184]
Dear All, Does anybody here using WatchGuard as Firewall System ? If yes please help me to find out VPN configuration problem. I try to build VPN connection from remote user which usually access the internet through dial up connection. All guidance from WatchGuard have beed followed and also from local vendor assistant but still failed. Firebox shutdown the pptpd tunnel when remote user try to access to WatchGuard. I am using Ms Windows 98 which have already installed Ms DUN4.0 (strong encryption 128) and VPN Dial Up Adapter. Here i send debug capture from traffic monitor. 04/17/01 17:44 pptpd[1017]: Watchguard pptpd 2.2.0 started 04/17/01 17:44 pptpd[1017]: Using interface pptp0 04/17/01 17:44 kernel: pptp0: daemon attached. 04/17/01 17:44 pptpd[1017]: Connect: pptp0 [0] zzz.zzz.zz.zz 04/17/01 17:44 tunneld[141]: 16 bytes received from socket 10 04/17/01 17:44 tunneld[141]: recv call-clear-request from 202.155.40.11 04/17/01 17:44 tunneld[141]: killing child pid 1017 04/17/01 17:44 tunneld[141]: saving channel xxx.xxx.xx.xxx:yy.yy.y.yy to new fd 10 list 04/17/01 17:44 tunneld[141]: sent call-disconnect-notify 04/17/01 17:44 pptpd[1017]: Terminating on signal 2. 04/17/01 17:44 pptpd[1017]: Connection terminated. 04/17/01 17:44 pptpd[1017]: Persist flag not set, so we are exiting. 04/17/01 17:44 kernel: pptp0: pptp_sock_close 04/17/01 17:44 pptpd[1017]: CHAP will not try to logout user 04/17/01 17:44 pptpd[1017]: Exit. 04/17/01 17:44 tunneld[141]: rcvd SIGCHLD--ignoring 04/17/01 17:44 tunneld[141]: child pid 1017 died 04/17/01 17:44 tunneld[141]: setting channel xxx.xxx.xx.xxx:yy.yy.y.yy to be re-used 04/17/01 17:44 tunneld[141]: removing zzz.zzz.zz.zz from active list 04/17/01 17:44 tunneld[141]: closing fd 10 x : IP address for WatchGuard y : Private IP z : Remote IP Add Rgds, Erwin Novriyanto Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=1184&t=1184 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: (Euro-)ISDN->Cisco1750->Modem
The digital modems in the 36x0 can -Original Message- From: Holger Eichhorn [mailto:[EMAIL PROTECTED]] Sent: maandag 26 maart 2001 14:17 To: [EMAIL PROTECTED]; Ryan O'Connell Subject: Re: (Euro-)ISDN->Cisco1750->Modem Ryan O'Connell wrote: > On Mon, Mar 26, 2001 at 01:29:30PM +0200, Holger Eichhorn wrote: > > I have an (Euro-)ISDN-line. In basics the router can't handle analogue callins on an > > ISDN-line. > > My idea was: > > 1. Analogue callin goes to the BRI-Interface > > 2. BRI send it to the WIC-Interface > > 3. The modem is mounted on WIC and on AUX > > => the callin goes from WIC through the modem into the AUX > > 4. The result is: I have an analogue call on the AUX-Port. To configure an analogue > > callin on AUX-Port is not a problem. > > I don't know is it possible. > > No, this isn't possible. > You know other ways to connect analogue callins through ISDN-lines ? -- Holger Eichhorn IT Administration CSK - Computer Services Kaisha (Deutschland) GmbH http://www.csksoftware.com [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Ports for Citrix
Port 1494TCP inbound for ICA traffic (adjustable to port 80 in feature release 2) and port 1604UDP in and outbound for Program Neighborhood Outbound 1023-65535 (to client) check http://hqextsrvsft01.citrix.com/cgi-bin/webcgi.exe/,/?Session=1059012,U=1,ST =58,N=0005,K=29296,SXI=1,Case=obj(1076) Greetz, ERwin -Original Message- From: Robert Nickson [mailto:[EMAIL PROTECTED]] Sent: donderdag 8 maart 2001 10:10 To: [EMAIL PROTECTED] Subject: Ports for Citrix Does anyone know what ports citrix thin clients use ?? Cheers Bob _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] Erwin Vollering Project Engineer e [EMAIL PROTECTED] m 0620418981 ISSUE Information Technology B.V. Driemanssteeweg 200 3084CB Rotterdam t 010 240 4242 f 010 240 4200 i http://www.issue.nl _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
ICQ Port
Dear all, Does anybody know for ICQ Port to establish the connection. is it using TCP Port or UDP port ? I want to block this connection through my firewall. Big thank for your help. Rgds, Erwin _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Juniper switch
I want to compare cisco product with juniper product specially which support GBIC interface. Maybe, one of you have already used Juniper Switch product,..please share me about series of product that able to compare with Cisco 6000 Series. I need switch which support until 26 GBIC interface for Core layer. thanks for inform me. Erwin -Original Message- From: Chris Nwanonyiri [mailto:[EMAIL PROTECTED]] Sent: Wednesday, December 13, 2000 4:08 PM To: Babar Hameed; Erwin Novriyanto; Cisco Subject: Re: Juniper switch Here is the Url for Juniper products http://juniper.net/products/ --- Babar Hameed <[EMAIL PROTECTED]> wrote: > have u tried www.juniper.com? > > Babar Hameed > Network Engineer > Unisys Pakistan. > > > -Original Message- > From: "Erwin Novriyanto" > <[EMAIL PROTECTED]> > To: "Cisco" <[EMAIL PROTECTED]> > Date: Wed, 13 Dec 2000 13:07:27 +0700 > Subject: Juniper switch > > > Does any one know about web address for juniper > switch product..? > > > > Rgds, > > > > Erwin Novriyanto > > Network Engineer/ITD > > Phone. 7251142 Ext. 302 > > > > _ > > FAQ, list archives, and subscription info: > > http://www.groupstudy.com/list/cisco.html > > Report misconduct and Nondisclosure violations to > [EMAIL PROTECTED] > > > > > > _ > FAQ, list archives, and subscription info: > http://www.groupstudy.com/list/cisco.html > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] = Chris Nwanonyiri __ Do You Yahoo!? Yahoo! Shopping - Thousands of Stores. Millions of Products. http://shopping.yahoo.com/ _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Juniper switch
thanks for your info,..i guess the address is www.juniper.com its banking corp. ..:) i am looking forward for sales representative in Indonesia but,..they only in Singapore Erwin -Original Message- From: Babar Hameed [mailto:[EMAIL PROTECTED]] Sent: Wednesday, December 13, 2000 3:11 PM To: Erwin Novriyanto; Cisco Subject: Re: Juniper switch have u tried www.juniper.com? Babar Hameed Network Engineer Unisys Pakistan. -Original Message- From: "Erwin Novriyanto" <[EMAIL PROTECTED]> To: "Cisco" <[EMAIL PROTECTED]> Date: Wed, 13 Dec 2000 13:07:27 +0700 Subject: Juniper switch > Does any one know about web address for juniper switch product..? > > Rgds, > > Erwin Novriyanto > Network Engineer/ITD > Phone. 7251142 Ext. 302 > > _ > FAQ, list archives, and subscription info: > http://www.groupstudy.com/list/cisco.html > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] > _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Juniper switch
Does any one know about web address for juniper switch product..? Rgds, Erwin Novriyanto Network Engineer/ITD Phone. 7251142 Ext. 302 _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
No Subject
Dear All, One of my friends in egroups suggest me to contact TAC to solve our Cisco 1005 Series which have problem but i also need oone of you in Cisco Group Study to help me. I dont know exactly what is the problem, is it hardware or software problem or maybe..bugs of cisco. Here, i send copy of error message when i reload the router Queued messages: *** EXCEPTION *** software forced crash program counter = 0x20ba270 status register = 0x2704 vbr at time of exception = 0x0 monitor: command "boot" aborted due to exception monitor: command "boot" aborted due to exception System Bootstrap, Version 5.3.2(9) [vatran 9], RELEASE SOFTWARE (fc1) Copyright (c) 1994 by cisco Systems, Inc. C1000 processor with 8192 Kbytes of main memory program load complete, entry point: 0x18060, size: 0xd5980 %SYS-4-CONFIG_NEWER: Configurations from version 12.0 may not be correctly under stood. %QUICC-1-LOSTCARR: Unit 0, lost carrier. Transceiver problem? Failed to change line 1's speedprogram load complete, entry point: 0x2004000, si ze: 0x1679fa Self decompressing the image : # [OK ] . 8K bytes of non-volatile configuration memory. 2048K bytes of processor board PCMCIA flash (Read/Write) %Error opening tftp://255.255.255.255/network-confg (Timed out) %Error opening tftp://255.255.255.255/cisconet.cfg (Timed out) %Error opening tftp://255.255.255.255/router-confg (Timed out) %Error opening tftp://255.255.255.255/router.cfg (Timed out) router#sh ver Cisco Internetwork Operating System Software IOS (tm) 1005 Software (C1005-QY-M), Version 12.0(3), RELEASE SOFTWARE (fc1) Copyright (c) 1986-1999 by cisco Systems, Inc. Compiled Mon 08-Feb-99 18:29 by phanguye Image text-base: 0x02004000, data-base: 0x022D226C ROM: System Bootstrap, Version 5.3.2(9) [vatran 9], RELEASE SOFTWARE (fc1) BOOTFLASH: 1000 Bootstrap Software (C1000-RBOOT-R), Version 10.3(9), RELEASE SOF TWARE (fc1) router uptime is 4 minutes System restarted by error - software forced crash, PC 0x20BA270 System image file is "flash:c1005-qy-mz_120-3.bin" cisco 1000 (68360) processor (revision @) with 7680K/512K bytes of memory. Processor board ID 15293326 Bridging software. 1 Ethernet/IEEE 802.3 interface(s) 1 terminal line(s) 8K bytes of non-volatile configuration memory. 2048K bytes of processor board PCMCIA flash (Read/Write) Configuration register is 0x2102 This error is always there when i access to the router. I really appreciate if you can give me some suggestions to solve this problem. Rgds, Erwin Novriyanto Network Engineer/ITD Phone. 7251142 Ext. 302 _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Cisco 1750
Dear Cisco ers, Does anybody here come from cisco resellers or partner ? I need some help to describe or detail information about Cisco 1750. Actually, i will buy Cisco 1750 which support Voice and SDLC encapsulation. I have two cisco partners here which send me quotation for that. The first vendor, recommend me to use Cisco 1750-2V (10/100 Modular Router W/2 Voice Channels, IOS IP/Voice + SW), CD17-QHVL-12.0.5 (Cisco 1700 IP/IPX/AT/IBM/FW/VOICE PLUS IPSEC 56 feature Pack), and MEM1700-16D (Cisco 1700 16MB DRAM DIMM). They mention that, we need to buy all of it to get SDLC, Voice feature, and more features available with also additional memory. But, another vendor recommend me to only buy Cisco 1750-2V (10/100 Modular Router W/2 Voice Channels, IOS IP/Voice + SW)without additional CD and memory. What i need only for Voice and SDLC encapsulation, cause one of my equipment still use IBM product. for WAN connection will Frame Relay connection. Please give me true information about this Thank You very much Rgds, Erwin _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Back Up for FR Conn.
Dear All, I will implement Frame Relay connection from branch to head office. I have idea to provide back up connection to minimize down time if network failed. The scenario is,..when FR connection as primary goes down. The back up link by using Dial Up in int asycn will automaticaly dial to head office which already provide modem there. Does anyone can help how to build that scenario. Many thanks for your helps Rgds, Erwin **NOTE: New CCNA/CCDA List has been formed. For more information go to http://www.groupstudy.com/list/Associates.html _ UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html FAQ, list archives, and subscription info: http://www.groupstudy.com Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
MRTG on Windows NT
Dear All, I want to make MRTG on Windows NT for viewing our network performance, can anybody help me for the instruction. Like documentation for that,...thanks for your help. Bye Erwin ___ UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html FAQ, list archives, and subscription info: http://www.groupstudy.com Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Managing Traffic
Dear All, I need your idea how to manage traffic. On my router have two different traffic, IP and SDLC. Both protocol was running well on that router. But, since the IP traffic going up, the SDLC traffic can not running. Now, i just implement priority-list command and define priority-group on the interface which running on SDLC traffic but...its not work. The equipment still not work. Here I Send the configuration source-bridge ring-group 310 dlsw local-peer peer-id 10.100.101.1 dlsw remote-peer 0 tcp x.x.x.x dlsw remote-peer 0 tcp y.y.y.y ! interface Serial0/0 description ===> Leased Line to JAKARTA 64 Kbps ip address 10.10.5.5 255.255.255.252 no ip mroute-cache no fair-queue ! interface Serial0/1 description ==> Local DLSw connection to S121440 & 4F no ip address encapsulation sdlc bandwidth 19200 no keepalive priority-group 1 sdlc role primary sdlc vmac 4000.6492.c100 sdlc address 40 sdlc xid 40 017D0564 sdlc partner 4000.4500. 40 sdlc address 4F sdlc xid 4F 017E0577 sdlc partner 4000.4500. 4F sdlc dlsw 40 4F ! ip route (secure)... Do you have any idea how to make SDLC traffic become first priority or how to make SDLC traffic can use 30% bandwitdh from the total bandwidth Thanks for your help Erwin Novriyanto ___ UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html FAQ, list archives, and subscription info: http://www.groupstudy.com Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Copy Flash
Dear All, I have simple question, but i can not do this without enough information that i have. Can I use flash which copy from Cisco 2610 to Cisco 1750. Is flash (image file) can be used in every router series..? Thanks ___ UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html FAQ, list archives, and subscription info: http://www.groupstudy.com Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Use Async Port
Actually, I have Cisco Router 3640 which has 16 terminal lines and Cisco Router 2610 which has 2 Low-speed serial(sync/async) network interface(s). I already configure for both router that Cisco 2610 from interface serial async can connect to Cisco 3640 but connection cannot establish. Here I send the configure : Cisco 3640 ! ! interface Async112 description Dial Up Conn to GJKTggl01 no ip directed-broadcast ip nat inside encapsulation ppp ip tcp header-compression passive dialer in-band dialer idle-timeout 300 dialer map snapshot 1 name GJKTggl01 dialer map ip 10.1.4.2 name GJKTggl01 broadcast dialer hold-queue 10 dialer-group 1 async default routing async mode dedicated snapshot server 5 dialer no cdp enable ppp authentication chap ! router eigrp 10 network 10.0.0.0 ! ! line 112 script dialer dialnum script reset rstmdm modem InOut modem autoconfigure discovery transport input all stopbits 1 flowcontrol hardware Cisco 2610 interface Serial0 physical-layer async ip address 10.1.5.2 255.255.255.252 no ip directed-broadcast encapsulation ppp ip tcp header-compression passive dialer in-band dialer idle-timeout 600 dialer wait-for-carrier-time 20 dialer map snapshot 1 name JKTGSP01 5222146 dialer map ip 10.1.5.1 name JKTGSP01 broadcast 5222146 dialer hold-queue 10 dialer-group 1 async default routing async mode dedicated fair-queue 64 16 0 no cdp enable ppp authentication chap ! dialer-list 1 protocol ip permit line 1 script dialer dialnum script reset rstmdm modem InOut modem autoconfigure discovery transport input all stopbits 1 speed 115200 flowcontrol hardware try to debug, ...encapsulation failed, DDR fair queue failed. Does anyone have configuration for this...? Thanks ___ UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html FAQ, list archives, and subscription info: http://www.groupstudy.com Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Setting Configuration for VPN
Dear All, Does anyone have setting configuration for implement Virtual Private Network? What IOS can support for VPN..? Actually, VPN can implement in two Internet connection, for Example, we have conection to internet using dial up with serioal async to internet service provider use fix IP for head office and for remote user using dynamic IP with the same configuration as head office. Is this possible to make our VPN come true...? BTW, sould our router in online (already connect to internet) condition if i want configure for VPN, can make in offline..? I really need your assisstance for this problem, thanks for your help Regards Erwin ___ UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html FAQ, list archives, and subscription info: http://www.groupstudy.com Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
