Cross Over command for ethernet ports.. [7:50310]
Do any of the Catalyst switches support the ability to change a port from straigth through to a cross-over port via command line? Somebody told me some of the switches do but I have never seen it before. Thanks, Patrick Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=50310t=50310 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Pix don't route [7:46356]
Wayne, You have to put the PIX behind the router, as the PIX does not have T1 interfaces...just LAN interface. UNFORTUNATELY.AND I REALLY HATE TO SAY THISBUT...this sounds like a good application for RADware's LinkProof. You would plug your router and DSL into this device and it will select the best route for traffic...granted you will get assymnetrical traffic patterns with this...but it will do what you are looking for...then put the PIX behind the LinkProof box. FYI...I am not slamming RADware but I try to make Cisco solutions fit first when applicable and I compete a lot against other RADware products. Sincerely, Patrick J Greene -Original Message- From: Wayne Jang [mailto:[EMAIL PROTECTED]] Sent: Wednesday, June 12, 2002 1:10 PM To: [EMAIL PROTECTED] Subject: Pix don't route [7:46356] Hi, The Pix don't route, but can I do this? I have a 2 server 20 user small office. I have a Pix 506 sitting in front of a 2621 with a T1 and a DSL link to the Internet. I'm not looking to load balance or even do redundancy. I just want traffic from the servers to use the T1 and I want traffic from the users to use DSL. I could use access-lists on the 2621 to direct the traffic based on source address, but how will the 2621 know where the traffic came from? Won't all traffic have a source address of the Pix outside interface? What if I Nat the servers(on PIx) so that they will appear to have a different source IP than the users who will be behind the global outside address? I'll need more public addresses, but that would be fine. I can't get any help from Cisco Pre-Sales because they aren't sure. I can't get an engineer that knows more than me (not much). My fall back plan is to only use the 2621 and have a firewall IOS. But I would rather use the Pix, especially because we have already quoted the above solution and are working to save face. Thanks -- Wayne Jang Advanced Computer Technologies, Inc. 108 Main Street Norwalk, CT 06851 Wk 203-847-9433 Cell 203-943-6603 Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=46364t=46356 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Terminal Server load balancing [7:44002]
What are you balancing on? Have you configured the CSS to balance on least connections because the default is round robin. These are your load balancing options, Round Robin(default),Weighted Round Robin,Least Connections/Bytes, and ArrowPoint Content Aware (ACA). If you want to balance based on least connections, in the content rule specify balance leastconn to balance based on connections. Sincerely, Patrick J Greene -Original Message- From: Cisco Breaker [mailto:[EMAIL PROTECTED]] Sent: Monday, May 13, 2002 3:26 AM To: [EMAIL PROTECTED] Subject: Terminal Server load balancing [7:44002] Hi, We have implemented load balancing between 5 microsoft terminal servers. The problem is when I looked at the second server I see 5 people connected but from the CSS view there is only 2 people connected. We tried this example with clearing counters on CSS and restarting all terminal servers to make sure everyone disconnected. After that again we check the statistics and nothing changed. For ex. Cisco shows 4 Microsoft shows 8. All the statistic gathered by issuing sh service summary and sh summary are not accurate as Microsoft Terminal Server Managers. What can be the problem? Any help will be appreciated? Best regards, Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=44209t=44002 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Ip telephony [7:44202]
For basic product comparisons, go to www.telezoo.com . They have some good high level comps and then you can dig into the details from there. Sincerely, Patrick J Greene -Original Message- From: Jon Mcglashan [mailto:[EMAIL PROTECTED]] Sent: Tuesday, May 14, 2002 7:25 AM To: [EMAIL PROTECTED] Subject: Ip telephony [7:44202] Hi, Does anyone have any information on differences / benefits between cisco ipt versus 3com ipt. Jon McGlashan Diagonal Secure Networks Ltd [EMAIL PROTECTED] http://www.dsnuk.com Tel: +44 (0)1256 869000 Fax: +44 (0)1256 869001 This e-mail may contain confidential and/or privileged information. It is for the exclusive use of the intended recipient(s). If you are not the intended recipient(s), you must not use, distribute, copy or take any action in reliance on it, since to do so is strictly prohibited and may be unlawful. If you have received this e-mail in error, please return it to the sender immediately and delete it from your system. E-mail messages are not secure and attachments may contain software viruses which may damage your system. Whilst we have taken every reasonable precaution to minimise this risk, we cannot accept any liability for any damage which you sustain as a result of these factors. You are advised to carry out your own virus checks before opening any attachment. Any views or opinions expressed in this e-mail are solely those of the author and do not represent those of the Diagonal Group unless otherwise stated. Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=44216t=44202 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: 19 Rack for 6-8 Routers [7:44021]
Check out APCthey have 21U enclosures with wheels. Sincerely, Patrick J Greene -Original Message- From: Antonio Montana [mailto:[EMAIL PROTECTED]] Sent: Monday, May 13, 2002 7:51 AM To: [EMAIL PROTECTED] Subject: OT: 19 Rack for 6-8 Routers [7:44021] Hi all, Does anybody know where I can buy a 19 inch rack 10-12RU (maybe with wheels) for my homelab ?? Have 7 Routers and a 2901 that are staying arround on the floor. I live in germany, so would be great if someone knows an european or german vendor. Don't want the americans to ship a 30kg packet to europe :) Thanks a lot monti Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=44024t=44021 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Give up...Cannot ping from one spoke to another?? [7:43795]
If are not using the ip ospf network command, then how are you advertising your routes, static route and then redistrubute static within OSPF? When you do a show routes on one of the hub routers, are you seeing the routing table for all network in your WAN or just the 2 network that router is connected to? Sincerely, Patrick J Greene -Original Message- From: Cisco Nuts [mailto:[EMAIL PROTECTED]] Sent: Thursday, May 09, 2002 9:15 PM To: [EMAIL PROTECTED] Subject: Give up...Cannot ping from one spoke to another?? [7:43795] Hello, I have RTA configed as a FR hub with multipoint subif. I have RTB, RTC and RTE configed as spokes using only the serial intf. - FR network type Non-Broadcast. Have 1 single FR map statement on the spokes pointing to the hub. Have 3 map statements on the hub pointing back to each of the 3 spokes. Have Ospf configed. Area 0 the FR network for the serials. Area 1 on RTA, Area 10 on RTB and Area 4 on RTE each for the Ethernet side. Also have the neighbor statement on each spoke pointing to the hub with a priority of 2. A show ip route reveals all the OSPF networks (O IA routes) on each router. I can only ping from the hub router RTA to networks on the spoke routers BUT I cannot ping from one spoke router to a network on another spoke router EVEN though the routes are in the routing table? Why is that? A CATCH: I am not allowed to use the ip ospf network command anywhere nor FR map statements on each spoke pointing to the other spokes?? What is the way that will allow me to ping from RTB to RTC thru RTA the hub router? I tried the default-information originate on the hub rtr. RTA but this does not seem to help - even though it installs a default route on each spoke router. I am giving up after tiring me eyes on CCO. Anyone with any ideas? Thank you for your help. _ MSN Photos is the easiest way to share and print your photos: http://photos.msn.com/support/worldwide.aspx Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=43823t=43795 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
IP Based DLSAM [7:43827]
Does Cisco offer a IP based DSLAM that does not require ATM? All of the current solutions I can find, like the 6260, are all IP+ATM. We have a Gig MAN in place and do not want to overlay an ATM infrastructure just to connect DSLAMs. We would like to just put a DSLAM in place, connect it via Gig, or DS3 ( no ATM). Sincerely, Patrick J Greene Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=43827t=43827 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: ISP Topology Design [7:43836]
Check out the Tech Talk at http://forums.cisco.com/eforum/servlet/NetProf?page=Emerging_Technologies_discussion on Internet Data Center Design...it may be of some use. Patrick -Original Message- From: Chris Headings [mailto:[EMAIL PROTECTED]] Sent: Fri 5/10/2002 11:52 AM To: [EMAIL PROTECTED] Cc: Subject: ISP Topology Design [7:43836] Hello all! Does anyone know of any books/material that would be geared more toward ISP network design? Looking for as much as I can find... Thanks Chris Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=43869t=43836 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Layer 2 Test Tool [7:43484]
I believe Fluke has a meter which will assist in this too. -Original Message- From: Maccubbin, Duncan [mailto:[EMAIL PROTECTED]] Sent: Tue 5/7/2002 10:02 AM To: [EMAIL PROTECTED] Cc: Subject: RE: Layer 2 Test Tool [7:43484] Not sure what equipment you are using but starting with CAT OS 6.1: Layer 2 Traceroute The Layer 2 Traceroute utility allows you to identify the physical path that a packet will take when going from a source to a destination. The Layer 2 Traceroute utility determines the path by looking at the forwarding engine tables of the switches in the path. -Original Message- From: Lowell Sharrah [mailto:[EMAIL PROTECTED]] Sent: Tuesday, May 07, 2002 9:39 AM To: [EMAIL PROTECTED] Subject: Re: Layer 2 Test Tool [7:43484] cisco's CDP but you must have all cisco devices for this to work. Seelinger Bruce 05/07/02 08:40AM Does anyone know of a layer 2 connectivity test tool - something the equivalent of a MAC address based ping tool, (yes - I know that ping uses ICMP at layer 3, but you get the idea). Basically, have a bridged network where we want to perform a simple test to see if certain MAC filters are working appropriately. Need to probe a target node based on it's MAC address and see if it responds. Searched the net pretty extensively but no luck. Any ideas? Thanks in advance for the help. Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=43512t=43484 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Pix load balance? [7:42974]
The Cisco CSS11xxx can do NAT without degrading performance. I have had excellent experiences setting this up for clients. -Original Message- From: Brian Zeitz [mailto:[EMAIL PROTECTED]] Sent: Tue 5/7/2002 12:24 PM To: [EMAIL PROTECTED] Cc: Subject: RE: Pix load balance? [7:42974] Dumb question, does any of these devices use nat? I just read that pix to DMZ interface uses dNat, not sure if that is faster. I was reading my Alteon Web Switch book last night, it says you CAN do nat, but I don't know if layer 4-7 switches actually DO nat normall. If it's a switch, it should be switching right, the translation gets done in layer 4. kinda confused. -Original Message- From: Gragido, William [mailto:[EMAIL PROTECTED]] Sent: Tuesday, May 07, 2002 12:09 PM To: Brian Zeitz; [EMAIL PROTECTED] Subject: RE: Pix load balance? [7:42974] The best way to load balance is to use an application layer (layer 4-7) switch. I am not too familiar with Cisco's offering of this technology (sadly), but have worked extensively with Foundry's ServerIrons and they are excellent devices! -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Brian Zeitz Sent: Tuesday, May 07, 2002 8:50 AM To: [EMAIL PROTECTED] Subject: RE: Pix load balance? [7:42974] Load balancing is supposed to be done on content switches according to what I am reading. I cannot be done on the firewall withing the site, nor can it be done with different ISPs. Brian Zeitz MCSE, CCNP -Original Message- From: Gaz [mailto:[EMAIL PROTECTED]] Sent: Tuesday, May 07, 2002 6:58 AM To: [EMAIL PROTECTED] Subject: Re: Pix load balance? [7:42974] What's the reason? I'm not disputing the fact, just wondering what the limitation is. I take it that the limitation is only that it cannot do stateful failover with two active PIXes? Cheers, Gaz wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... Yeah, I asked the same questions last month. They can not. If you really need firewall and Load balancing, FW-1 is the way to go. Theo CSS1, CCNP, CCSE Patrick Sent by: [EMAIL PROTECTED] 05/06/2002 06:28 AM Please respond to Patrick To: [EMAIL PROTECTED] cc: Subject:Re: Pix load balance? [7:42974] No. GEORGE wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... Can you load balance to pix firewalls? Has anyone done this? Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=43534t=42974 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Pix load balance? [7:42974]
Yes if you front-end them with a Cisco Content Switch...the CSS11000. It will also provide fault-tolerance. -Original Message- From: Patrick [mailto:[EMAIL PROTECTED]] Sent: Sun 5/5/2002 5:28 PM To: [EMAIL PROTECTED] Cc: Subject: Re: Pix load balance? [7:42974] No. GEORGE wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... Can you load balance to pix firewalls? Has anyone done this? Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=43352t=42974 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: PIX performance problem again ! [7:38955]
Have you checked the basics like port and duplex matching on the switch/hub it's connected to? Sincerely Patrick Greene -Original Message- From: Mohannad Khuffash [mailto:[EMAIL PROTECTED]] Sent: Wed 3/20/2002 2:47 PM To: [EMAIL PROTECTED] Cc: Subject: PIX performance problem again ! [7:38955] Dear all, My problem with th PIX still present! the throughput between my inside cleints an the out side ftp server still very low ! the only node between them is the PIX,and the speed cann't be more than 50K B/s, i have checked the two cisco fixing problem for such like these cases: DNS pointer and IDENT protocols, but the problem is still present Please can any one help me ? Thanks in advance for your efforts -- Mohannad N. Khuffash Network Administrator Palestine Telecommunication Company Tel: 00972-02-2982330 Fax:00972-02-2980235 Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=39026t=38955 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: QoS fro VPN connection [7:37534]
For QoS on tunnels you must pre-classify the traffic before encryption and tunneling take place. You can do this on GRE, L2F/L2TP, and IPSec tunnels. If you are doing an Ipsec tunnel the commands you want to look at are (config)Crypto map secured-partner-x (config-crypto-map)Qos pre-classify Sincerely, Patrick J. Greene Information Technologies Enterprises, LLC Visit our Managed Hosting Division at www.AlwaysWEB.com -Original Message- From: Emil [mailto:[EMAIL PROTECTED]] Sent: Thursday, March 07, 2002 4:51 AM To: [EMAIL PROTECTED] Subject: QoS fro VPN connection [7:37534] Hello, I Have a following problem. I have Cisco 1750 router with vpn ipsec tunnel to PIX ( Central Office) I want to encrypt with IPSEC traffic to Central LAN, but I want traffic destined for inerrnet goes through central PIX too, so I have to tunnel this traffic ( e.g with IPSEC AH) Now I have 2 questions: 1. AM I right, that Pix cannot route the incomming packet out to the same interface, so I need e.g. Proxy in central LAN where traffic destined for internet can go through? 2. Is that any way to set up some QoS for traffic on 1751 router going to central LAN ( give this traffic higher priority than traffic for the internet) Problem is packet going to central LAN and going to the internet via central PIX will have the same IP header (after IPSEC encryprtion) I found a feature called QoS for VPN but this is for 2600 and bigger router Thanks for any help. Emil Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=37556t=37534 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Ethernet Trivia mostly, Need an EE's answer probably. [7:13232]
I do believe the shortest patch cord length for 10/100Base-T is 1 meter. -Original Message- From: NY50TT To: [EMAIL PROTECTED] Sent: 7/21/2001 12:48 PM Subject: Ethernet Trivia mostly, Need an EE's answer probably. [7:13199] We all hear about max cable lengths for Ethernet. But is there a minimum? If the TX pair of one side connects to the RX pair of the other, then collisions, if any, happen at the ingress of the hub or switch in the buffer, or on the buffer of the nic if just using a really short cross over, is this right? I've looked and looked, and haven't been able to get an answer that says the minimun length of a Category 5 100Base connection is x feet even the spec seems to be silent on it. What am I missing in my knowledge of physics and electronics? p.s. My foot long patches between hosts and a hub don't seem to cause errors. I'll stick a sniffer in this week and see if I see any. I'm manufacturing these 3 inch patch cables for my test. Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=13232t=13232 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: how to enlarge Switching Backplane of 6509 [7:5487]
There is actually a caveat with using the SFM's. If you put ANY non fabric enabled cards in that chassis then the entire chassis will step down to the 32Gbps backplane...this includes any FlexWan modules. Patrick Greene -Original Message- From: Chuck Larrieu [mailto:[EMAIL PROTECTED]] Sent: Wednesday, May 23, 2001 3:59 AM To: [EMAIL PROTECTED] Subject: RE: how to enlarge Switching Backplane of 6509 [7:5487] It's always fun to have one of these discussions, especially when I could be sleeping. This one seems to be turning into yet another of those what is truth? questions. When dealing with Cisco, it is sometimes difficult to tell. The following link would appear to say something other than what you have quoted. Granted, mine is a quick skim. But it does seem to state that one SFM card provides 256G and the other is for redundancy. http://www.cisco.com/warp/public/cc/pd/si/casi/ca6000/prodlit/c6sfm_ds.htm notice that later in the link, Cisco starts talking bout packets per second ( PPS ) If you add the MSFC card you get 30mpps and if you add the DCF card on top of that you get 100mpps. I bring this up because I had a conversation off line with someone about needing the MSFC and DCF in order to get the 256G backplane. Cisco's own configuration tool indicates no. The person with whom I was discussing this indicated he has done a lot of research and his finding was yes. My own reading tells me that if I were an EE I might actually understand the link a bit better, and perhaps it would make more sense. As is stands, I am perceiving it as a lot of double-talk. This next link is where you, Frank, may have gotten your quote about the failover. http://www.cisco.com/univercd/cc/td/doc/product/lan/cat6000/sft_6_1/configgd /swfab.htm#xtocid223541 I just opened NetformX, the configuration tool my boss paid a LOT of money for me to use in my design work. Once again I can't prove that I ever saw the SFM card described as 128G, and now it appears that the one card is indeed 256G. Serves me right for not checking this stuff every hour of every day :- Chuck -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] On Behalf Of frank Sent: Tuesday, May 22, 2001 11:37 PM To: [EMAIL PROTECTED] Subject:Re: how to enlarge Switching Backplane of 6509 [7:5487] but a cisco engineer told me i should just use one . for why upgrade to 256G,the customer is god ,he wants to pay ,i don't care.^_^ According to the following ,it seems if we use 2 sfm,just one is active ,another is not. The following is from cisco website. 128-Gbps Switch Fabric Module. The Switch Fabric Module requires Supervisor Engine 2. Switch Fabric Modules must be installed in either slot 5 or 6 of the Catalyst 6500 series switches. For redundancy, you can install a second Switch Fabric Module. The Switch Fabric Module first installed functions as the primary module. When two modules are installed at the same time, the module in slot 5 functions as the primary module, and the module installed in slot 6 functions as the backup. If you reset the Switch Fabric Module installed in slot 5, the module in slot 6 becomes the active one. v Chuck Larrieu wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... Takes two to get 256 Takes slots 5 6, making your 6509 a 6507 ;- Idle curiosity - why do you need a 256 gig back plane? Assuming all seven of the other slots each contain the 16 port Gig E blades, and each port was going full duplex, that comes out to 224 gigs, according to my fingers. Oh yeah, through in the two Gig E ports on the sup module, and that gets to 226. I am still trying to figure how you can move that much data, given the way networks normally work. ;- Chuck -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] On Behalf Of frank Sent: Tuesday, May 22, 2001 8:53 PM To: [EMAIL PROTECTED] Subject: Re: how to enlarge Switching Backplane of 6509 [7:5487] do i need one or two 128G Switch Fabric Module? dave mauro wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... Don't expect to find this spelled out clearly anywhere on CCO, but to the best of my knowledge, you must have: 1. Supervisor Engine 2 (with PFC2) 2. MSFC2 3. 128G Switch Fabric Module 4. 16-port GE module (WS-X6516-GBIC or WS-X6816-GBIC) 5. Distributed Forwarding Card (DFC) Until recently this last piece has not been available... Search CCO for details on these fine products. Bring your wallet. Dave On Tue, 22 May 2001, frank wrote: from 32G to 256G? Thanks Frank FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] FAQ, list archives, and subscription info:
Cisco VPN Client..... [7:2865]
Is there anyway to force the Cisco VPN client to use port 80 for communications? This would be used to get through firewall's allowing only port 80. Thank You, Patrick Greene CCNP,CCDP,MCSE,MCNE Information Technologies Enterprises Email:[EMAIL PROTECTED] Office:800-535-6544 Mobile:704-953-6949 Fax:704-896-5797 URL: www.infotechent.net and www.alwaysweb.com [GroupStudy.com removed an attachment of type image/gif which had a name of PRTNRPR.GIF] [GroupStudy.com removed an attachment of type image/bmp which had a name of MCSP_P.bmp] Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=2865t=2865 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: IP Helper-address questions [7:247]
I assume when you say PDC, you are referring to an NT server PDC. I must also assume you have TCP/IP installed on all NT servers needing to communicate to each other. If so, then the ip-helper command is of no use. It merely forwards bootp and DHCP requests. If you need a PDC and a BDC to communicate then just make sure both servers are reporting to a common WINS server. From the WINS server the PDC and BDC will know what IP addresses they nees to use to communicate. As long as the servers can ping each other and WINS is configured properly then you are cooking. Thanks, Patrick -Original Message- From: David Eitel To: [EMAIL PROTECTED] Sent: 4/11/2001 2:45 PM Subject: IP Helper-address questions [7:247] I have two routers connected via serial point to point link. Router 1 has an ethernet segment with PDC info I want forwarded to Router 2 ethernet segment. No ip directed broadcast is configured on all interfaces. I want netbios traffic passed from one segment to the other. I have placed an IP helper-address statement on the ethernet interface needing the help. Do I need to use the ip helper-address on all interfaces to the source ip helper-address? Is the ip forward-protocol also necessary? Any advice would be greatly appreciated David Eitel FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=263t=247 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Bridge Groups.... [7:105]
Can you put an ethernet interface in multiple bridge groups without necessarily routing or bridging between the multiple groups? For example, Fast 1/0 belongs to Bridge Groups 1,2 and 3 and ATM 1/0.1 belongs to BG 1, ATM 1/0.2 belongs to BG 2, etc. Or am I going to have to wait for the IOS that supports sub interfaces on the ethernet interface? Thanks, Patrick Greene Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=105t=105 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Transparent Bridging and DHCP
Here's the problem... I have a 3640 running 12.1.5YB with an OC-3 and Fast-E. I have about 200 pvc's defined as point-to-point and belonging to bridge group 1. The Fast-E is also a member of Bridge group 1. I also have the router configured to be a dhcp server. My problem is that the device on the pvc does not get an ip address from the router, however it will get an address from a dhcp server on the other end of the Fast-E. Thanks, Patrick _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: MSFC CPU Utilization Pegged at 99%....but a sh proc cpu does not reveal anything past 1%
Actually traced the issue down to a device (possibly a 2948 Switch) sending a stream of UDP packets causing the CPU to peg. Filtered all UDP and everything calmed down. In the process of tracing down the culprit. Thanks for everyone's input. Patrick Greene -Original Message- From: Robert Padjen [mailto:[EMAIL PROTECTED]] Sent: Sunday, February 04, 2001 3:28 PM To: Greene, Patrick; [EMAIL PROTECTED] Subject: Re: MSFC CPU Utilization Pegged at 99%but a sh proc cpu does not reveal anything past 1% Check to see if you have a multicast (or several) stream going through. We are seeing the first signs of a bug on ours where it appears that all packets are written to MLS and process switching. --- "Greene, Patrick" [EMAIL PROTECTED] wrote: Have a 6509 with 2 MSFC's. The MSFC's are running 12.1(2)E. Just had one of the MSFC's spike to 99%. A sh proc cpu reveals that total utlization should add up to about 5%. A reload of the module causes the exact same thing. A no changes have been made. Anybody seen this before. Also, the other MSFC and Switch Utilization are both showing about 3-5%, which is normal. Thank You, Patrick Greene _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] = Robert Padjen __ Get personalized email addresses from Yahoo! Mail - only $35 a year! http://personal.mail.yahoo.com/ _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: BGP Route Filtering
Santosh, Are you establishing as neighbors? sh ip bgp summ This should show your neighbors configured and that you're table version are sync'd If nocan you ping the address you have configured as a neighbor. You must be able to ping the neighbor address before BGP can establish. Is is based on TCP. Also, put in your BGP configuration no synchronization - This will allow BGP to establish before EIGRP finishes. no auto-summary Also, if you want to use the Loopback interface as the IP address to be referenced by the neighbors then use the following command ie neighbor 1.1.1.1 remote-as 400 neighbor 1.1.1.1 update-source Loopback0 (Or whatever Loopback you want to use) Patrick Greene -Original Message- From: Santosh Koshy [mailto:[EMAIL PROTECTED]] Sent: Thursday, February 01, 2001 5:08 PM To: [EMAIL PROTECTED] Subject: BGP Route Filtering I am testing BGP in a lab -- - | RA |--| RB| -- - 1) Router A has networks 155.134.1.x, 2.x, 3.x and 4.x beind it 2) Router B has networks 128.128.1.x, 2.x, 129.129.1.x, 2.x, 130.130.1.x behind it Router_A# router bgp 400 network 128.128.0.0 neighbor 1.1.1.2 remote-as 300 I am just propogating 128.128.x.x across to router A and it works fine Router_B# Router bgp 300 network 155.134.0.0 neighbor 1.1.1.1 remote-as 400 I am trying to propogate just networks 155.134.1.x and 4.x to router B... and I cannot seem to do it... Santosh Koshy Communications Analyst _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
MSFC CPU Utilization Pegged at 99%....but a sh proc cpu does not reveal anything past 1%
Have a 6509 with 2 MSFC's. The MSFC's are running 12.1(2)E. Just had one of the MSFC's spike to 99%. A sh proc cpu reveals that total utlization should add up to about 5%. A reload of the module causes the exact same thing. A no changes have been made. Anybody seen this before. Also, the other MSFC and Switch Utilization are both showing about 3-5%, which is normal. Thank You, Patrick Greene _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: BGP trainning course (more advancet the better)
IMS in Atlanta now has a very thorough 5-day course www.imsinc.com Patrick -Original Message- From: [EMAIL PROTECTED] To: [EMAIL PROTECTED]; [EMAIL PROTECTED] Sent: 12/21/2000 7:26 AM Subject: RE: BGP trainning course (more advancet the better) HI, Golbalknowledge has a great course in Toronto called Advanced BGP, most recommended. -Original Message- From: Adam Obszynski [mailto:[EMAIL PROTECTED]] Sent: ??? ? 21 ? 2000 12:37 To: [EMAIL PROTECTED] Subject: BGP trainning course (more advancet the better) Is somebody here who nows place when BGP course trainning can be attended ? _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: GNS replies from furthest server
Why don't you just put a PREFERRED SERVER statement on the Netware Client? That will take care of it. Patrick -Original Message- From: Shaun Wakelen [mailto:[EMAIL PROTECTED]] Sent: Tuesday, December 12, 2000 4:29 AM To: [EMAIL PROTECTED] Subject: GNS replies from furthest server Can anybody shed some light on this problem. We have installed a gigabit network using 3548's and 4908's. Two 3548's have Novell servers (NetWare 4) connected to them, and also have links to WAN routers. These are connected to two 4908's running IRB and HSRP. To the 4908's are four further 3548's to which the Novell clients are attached. The problem is, when a client starts up, the GNS request is being replied to by a server on the other side of the WAN link, and not a local one. If the remote server is disconnected then a different remote server replies. The IPX routing table shows the local servers with the lowest hop count and metric. This was originally an ATM network, which works perfectly. I now have several bumps where I have been hitting my head against a brick wall! Any ideas Thanking you in advance Shaun Wakelen This e-mail and any attachments may contain privileged, confidential and/or copyright information and is for the sole use of the intended addressee. If you are not the named recipient, please notify the sender immediately and do not disclose the contents to another person, use it for any purpose, or store or copy the information in any medium.This message is subject to and does not create or vary any contractual relationship between Telindus K-NET Ltd and you. _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: More on VLANs
There's a lot more to this than just typing what I tell you in examples. Your VTP configuration must be setup on the switch side and the MSFC side. And yes MLS is enabled at the global level but not at the interface level. Would you like the URL's to VTP Configuration too? Patrick -Original Message- From: Ben Hockenhull [mailto:[EMAIL PROTECTED]] Sent: Monday, December 04, 2000 11:22 PM To: Greene, Patrick Cc: [EMAIL PROTECTED] Subject: RE: More on VLANs At 5:22 PM -0500 12/4/00, Greene, Patrick wrote: You need to enable routing for that VLAN interface with the mls command. Example interface vlan 200 ip address 10.1.1.1 255.255.255.0 mls rp vtp-domain vtp_domain_name mls rp ip Hmmm. According to the docs, MLS is enabled by default on the MSFC. I did enable mls rp ip on the interface and it had no effect. I was unable to config mls rp vtp-domain as the MSFC muttered something about a null domain. Ben -- Ben Hockenhull [EMAIL PROTECTED] "Revenge is a dish best served with pinto beans and muffins." _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: More on VLANs
Here is the VTP configuration URL http://www.cisco.com/univercd/cc/td/doc/product/lan/cat6000/sw_5_4/config/vt p.htm#32923 Good luck Here is a good MLS Troubleshooting URL too which may be helpful http://www.cisco.com/warp/public/473/13.html Patrick -Original Message- From: Ben Hockenhull [mailto:[EMAIL PROTECTED]] Sent: Friday, December 08, 2000 2:31 PM To: Greene, Patrick Subject: RE: More on VLANs That would be great! -- Ben Hockenhull [EMAIL PROTECTED] On Fri, 8 Dec 2000, Greene, Patrick wrote: There's a lot more to this than just typing what I tell you in examples. Your VTP configuration must be setup on the switch side and the MSFC side. And yes MLS is enabled at the global level but not at the interface level. Would you like the URL's to VTP Configuration too? Patrick -Original Message- From: Ben Hockenhull [mailto:[EMAIL PROTECTED]] Sent: Monday, December 04, 2000 11:22 PM To: Greene, Patrick Cc: [EMAIL PROTECTED] Subject: RE: More on VLANs At 5:22 PM -0500 12/4/00, Greene, Patrick wrote: You need to enable routing for that VLAN interface with the mls command. Example interface vlan 200 ip address 10.1.1.1 255.255.255.0 mls rp vtp-domain vtp_domain_name mls rp ip Hmmm. According to the docs, MLS is enabled by default on the MSFC. I did enable mls rp ip on the interface and it had no effect. I was unable to config mls rp vtp-domain as the MSFC muttered something about a null domain. Ben -- Ben Hockenhull [EMAIL PROTECTED] "Revenge is a dish best served with pinto beans and muffins." _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: More on VLANs
This URL explains it all http://www.cisco.com/univercd/cc/td/doc/product/lan/cat6000/sw_5_4/msfc/mls. htm#xtocid244531 Patrick -Original Message- From: Ben Hockenhull [mailto:[EMAIL PROTECTED]] Sent: Monday, December 04, 2000 11:22 PM To: Greene, Patrick Cc: [EMAIL PROTECTED] Subject: RE: More on VLANs At 5:22 PM -0500 12/4/00, Greene, Patrick wrote: You need to enable routing for that VLAN interface with the mls command. Example interface vlan 200 ip address 10.1.1.1 255.255.255.0 mls rp vtp-domain vtp_domain_name mls rp ip Hmmm. According to the docs, MLS is enabled by default on the MSFC. I did enable mls rp ip on the interface and it had no effect. I was unable to config mls rp vtp-domain as the MSFC muttered something about a null domain. Ben -- Ben Hockenhull [EMAIL PROTECTED] "Revenge is a dish best served with pinto beans and muffins." _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Catalyst Sup IOS to Catalyst OS
Title: RE: Catalyst Sup IOS to Catalyst OS Are you talking about coverting your switch to Cisco IOS? If so, then there is about a 20 step process to do this which you can find on Cisco's web site. Patrick Greene -Original Message- From: Wibowo Nur Susetio [mailto:[EMAIL PROTECTED]] Sent: Monday, December 04, 2000 10:54 PM To: '[EMAIL PROTECTED]' Subject: Catalyst Sup IOS to Catalyst OS Importance: High Any body knows, how to change the Mode operation from Catalyst Supervisor IOS mode to Catalyst Softaware on Catalyst 6509? _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: High availability with Cisco PIX.
Title: RE: High availability with Cisco PIX. No flames for suggestion a non-Cisco box please. But, I heard RadWare has a firewall loadbalancing appliance so you can have 2 active PIX's instead of using the PIX-FO option. I have not used it nor heard anything about it..but it may be an option. Patrick -Original Message- From: Yadav, Arvind K (CAP, GECIS) [mailto:[EMAIL PROTECTED]] Sent: Monday, December 04, 2000 9:39 AM To: 'Girish G. Pai'; Ryan Ngai Hon Kong; [EMAIL PROTECTED] Subject: RE: High availability with Cisco PIX. Importance: High Ciso PIX does not support HSRP, but it support failover by using other PIX box. You don't require a dedicated Ethernet port. It has a failover port you to connect two PIX by using this failover port with failover cable Arvind. -Original Message- From: Girish G. Pai [SMTP:[EMAIL PROTECTED]] Sent: Monday, December 04, 2000 5:04 AM To: Ryan Ngai Hon Kong; [EMAIL PROTECTED] Subject: RE: High availability with Cisco PIX. As per my knowledge goes Cisco PIX does not support HSRP, but it does support Failover. To have this feature you need to have another PIX hardware of the similar configurations. During normal condition failover unit will work as monitor. You can also have statefull failover wherein active sessions need not be re-started during changeover, but feature needs to have a dedicated Ethernet port towards the both PIX units. Girish -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Ryan Ngai Hon Kong Sent: Monday, December 04, 2000 1:37 PM To: '[EMAIL PROTECTED]' Subject: High availability with Cisco PIX. Does anyone know if Cisco PIX could provide redundant or fail-over, work hand-in-hand with HSRP? Ryan Ngai @ ENT E-mail: hkngai Ext:6805 _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: More on VLANs
Title: RE: More on VLANs You need to enable routing for that VLAN interface with the mls command. Example interface vlan 200 ip address 10.1.1.1 255.255.255.0 mls rp vtp-domain vtp_domain_name mls rp ip Patrick Greene -Original Message- From: Ben Hockenhull [mailto:[EMAIL PROTECTED]] Sent: Monday, December 04, 2000 2:22 PM To: [EMAIL PROTECTED] Subject: More on VLANs Now that I have the native vlan and trunking issue resolved, I'm turning my attention to another problem. I have a host that will reside on a vlan all by itself. I've created the vlan (vlan 200) and configured a fast ethernet port to be a member of that vlan, and attached the host to it. The port is up, and I can ping the host on that vlan from the switch management interface, once I set the management interface to an IP in that vlan, and set the vlan membership of the management port appropriately. However, I am unable to ping the host from inside the MSFC. I've configured a vlan200 interface, assigned it an IP and brought the interface up, but I can't reach the host. Vlan200 is allowed on the ISL trunk to the MSFC. I suspect that this is because I misunderstand something fundamental about how vlans work on the Cat 6500. I further suspect that this is related to the native vlan problem I was having before. If I change the vlan on the host port to the native vlan, and change the vlan interface on the MSFC to the native vlan, I can ping from the MSFC. Therefore, I think that frames from vlan200 are not being forwarded to the MSFC for some reason. The documentation I've read doesn't seem to touch on this too much. Ben -- Ben Hockenhull [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: 4 NET WORK CARDS IN ONE SERVER
Just plug and go...W2K is Plug and Play and works quite well..better than Win9x ever was. I too am curious as to why you would take this route. If you are trying to run FEC and aggregrate bandwidth then be sure to distribute the cards across all of the buses on the motherboard otherwise you will only accomplish some fault tolerance. I have done some extensive performance tests of aggregating 100Mbs cards using FEC (Fast Ether ChannelThis was the Intel Server Card) and the increased CPU load managing the FEC negated the minimal increase in throughput...not to mention the major Disk Array bottleneck. Patrick -Original Message-From: L Reid [mailto:[EMAIL PROTECTED]]Sent: Saturday, November 18, 2000 9:51 PMTo: [EMAIL PROTECTED]Subject: 4 NET WORK CARDS IN ONE SERVER How do I set up four network cards in one NT 2000 server? Is there a book that you know of? Thanks in advance guys= = = = = = = = = = = = = = = = = =[EMAIL PROTECTED]= = = = = = = = = = = = = = = = = = Do You Yahoo!?Yahoo! Calendar - Get organized for the holidays!
RE: GSR and Ethernet0
Title: RE: GSR and Ethernet0 The E0 on the GSR RPS is strictly for management purposes and will not route. Just get a 2924 with an SX GBIC and you have ethernet. If you can afford a $30K Gig Line card then a $2000 switch should be no problem. Patrick -Original Message- From: Adam Obszynski [mailto:[EMAIL PROTECTED]] Sent: Monday, November 20, 2000 10:43 AM To: [EMAIL PROTECTED] Subject: GSR and Ethernet0 Hello cisco, Do you know some cheap solution to connect ethernet clients to GSR ? I looking for solution ho to connect cheap BGP peers via ethernet... -- Regards, Adam ObszyƱski ATM Inc. +48-22-5156418 _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: GSR and Ethernet0....Correction
Title: RE: GSR and Ethernet0 Meant to spec a 3524 not a 29242924 does not support Gig uplinks. -Original Message-From: Greene, Patrick [mailto:[EMAIL PROTECTED]]Sent: Monday, November 20, 2000 2:23 PMTo: 'Adam Obszynski'; [EMAIL PROTECTED]Subject: RE: GSR and Ethernet0 The E0 on the GSR RPS is strictly for management purposes and will not route. Just get a 2924 with an SX GBIC and you have ethernet. If you can afford a $30K Gig Line card then a $2000 switch should be no problem. Patrick -Original Message- From: Adam Obszynski [mailto:[EMAIL PROTECTED]] Sent: Monday, November 20, 2000 10:43 AM To: [EMAIL PROTECTED] Subject: GSR and Ethernet0 Hello cisco, Do you know some cheap solution to connect ethernet clients to GSR ? I looking for solution ho to connect cheap BGP peers via ethernet... -- Regards, Adam ObszyƱski ATM Inc. +48-22-5156418 _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
CCIE Design Written......
Title: CCIE Design Written.. Has anybody taken this or heard about it? Has anybody taken or heard about the lab? Thank You, Patrick Greene CCDP,MCSE,MCNE
RE: Last minute CID exam comments?
Title: RE: Last minute CID exam comments? Just Passed CID this monring. I meant to reshedule it for next week but forgot while working 50 hours in 3 days this week. Last night was thinking OH SH--!! I forgot to reschedule my CID. So any way...I crammed for 1 hour with Boson (excellent CRAM tool), Exam Cram book for CID sucked rocks. Be prepared for about 5 StrataSphere questions...(Strata what?...Boson covered some of these luckily) Had about 10-15 Appletalk questions, about 10 IPX questions, and about 10 SNA questions...100 questions overall...Very Challenging. The only reason I passed with minimal studies is because I have been doing infrastructure design and integration for almost 10 years. Good Luck!! Patrick Greene CCDP, MCSE, MCNE -Original Message- From: Glenn Johnson [mailto:[EMAIL PROTECTED]] Sent: Friday, November 03, 2000 11:35 AM To: [EMAIL PROTECTED] Subject: Last minute CID exam comments? I'm taking the CID exam later today -- any last minute tips would be appreciated. I've read the cisco press book and reviewed the objectives. I'm just curious about what surprises (if any) people may have come across. (All in a generalized NON-nda violation way of course :-) Thanks _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Firewall in ATM environment (design question).
Title: RE: Firewall in ATM environment (design question). Ryan, What sort of Internet link do you have..what speed? What model router do you have at the internet. You may want to just put the Firewall Feature Set on your internet router an be done with it, depending on the link speed going to Net. Patrick Greene -Original Message- From: Ryan Ngai Hon Kong [mailto:[EMAIL PROTECTED]] Sent: Tuesday, October 17, 2000 3:45 AM To: '[EMAIL PROTECTED]' Subject: RE: Firewall in ATM environment (design question). Ryan Ngai @ ENT E-mail: hkngai Ext:6805 -Original Message- From: Ryan Ngai Hon Kong Sent: Tuesday, October 17, 2000 12:00 PM To: '[EMAIL PROTECTED]' Subject: Firewall in ATM environment (design question). Hi guys, Just another design question. - non cisco ATM switch - Cisco Router - Internet ATM - non cisco ATM switch - LAN 1 Core - non cisco ATM switch - Internal Network Switch - non cisco ATM switch - Remote Network A - non cisco ATM switch - Remote Network B - non cisco ATM switch - LAN 2 Where do you think we can position a firewall? Other alternative such as create LANE or propose switch to create VLAN is welcome. Thanks. Ryan Ngai @ ENT E-mail: hkngai Ext:6805 _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: (boot) mode?
Title: RE: (boot) mode? I have seen this if the flash is bad or missing altogether on a 2500. Patrick -Original Message- From: Brian Lodwick [mailto:[EMAIL PROTECTED]] Sent: Friday, October 13, 2000 8:00 AM To: [EMAIL PROTECTED] Subject: (boot) mode? Hello everyone, I was wondering if anyone has come across a router where the hostname showed up as such: Router(boot)# one of my peers has told me this means the router did not fully boot up. Is this true? Boot mode is what he called it. Any help is much appreciated in advance. Brian _ Get Your Private, Free E-mail from MSN Hotmail at http://www.hotmail.com. Share information about yourself, create your own public profile at http://profiles.msn.com. _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Backdoor account using AAA
Currently the syntax to setup a backdoor local account on a box when aaa fails is To configure: (config)# aaa new-model aaa authentication login default local group radius username password aaa authentication login console line aaa authorization exec console none line console 0 (config-line)# password authorization exec console login authentication console My question: Is there a way to make this password uncrackable with the GetPass. This is possible with the enable password using the command "enable secret". Thank You, Patrick Greene President and CEO Information Technologies Enterprises Office:704-896-9495 Cell:704-953-6949 www.infotechent.net Check out our Internet Services Division - www.alwaysweb.com
RE: Limit Bandwidth?
Title: Limit Bandwidth? This depends on the router you are using. If you have a 7xxx or 12000 GSR then you can use CAR (Committed Access Rate). Patrick Greene -Original Message-From: Nova Rich [mailto:[EMAIL PROTECTED]]Sent: Friday, October 13, 2000 10:32 AMTo: '[EMAIL PROTECTED]'Subject: Limit Bandwidth? Guys, is there a way to limit bandwidth with an access list or something? I'm trying give an ether segment T1 bandwidth when I have T3 feed from telco. What's the best way. Ken
RE: Bandwidth on Catalyst 6500
Title: RE: Bandwidth on Catalyst 6500 I believe CAR is only going to be available on the 12000 GSRs, 7000's, and 7500's. The PFC will provide the functionality you are looking for. Patrick Greene -Original Message- From: Jason A. Diegmueller [mailto:[EMAIL PROTECTED]] Sent: Thursday, September 28, 2000 8:31 PM To: [EMAIL PROTECTED] Subject: Re: Bandwidth on Catalyst 6500 Hi all Can anyone share with me experience on how to do bandwidth control using 6509 switch with MSFC PFC. Basically, I have a number of VLANS created on the Ethernet module and I would like to limit the amount of bandwidth for each VLAN. (eg. VLAN10 - 1Mbps and so on) Also, can this be done on a per port basis? Thanks in advance. Look in to CAR -- Committed Access Rate. It's used with the rate-limit command. I believe CEF is a prereq to using CAR. **NOTE: New CCNA/CCDA List has been formed. For more information go to http://www.groupstudy.com/list/Associates.html _ UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html FAQ, list archives, and subscription info: http://www.groupstudy.com Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Portfast ???
Title: RE: Portfast ??? Set portfast on any ports connecting to workstations..this will greatly improve the negotiation time when the station is coming up. Just do not set port fast on ports connecting to hubs or switches as it does not check for loops via spanning tree Patrick -Original Message- From: ed smith [mailto:[EMAIL PROTECTED]] Sent: Wednesday, September 06, 2000 9:33 AM To: [EMAIL PROTECTED] Subject: Portfast ??? I'm swapping out a 2900XL with a 2924C XL to give us Fiber capability. Since we have customers on the current switch I want to keep down time to a minimum. One suggestion has been to, on the new switch put it into portfast mode. Has anyone done this before? Are there any problems you encountered or things I should be aware of? Just a quick note today Thanks for any input. Ed CCNA _ Get Your Private, Free E-mail from MSN Hotmail at http://www.hotmail.com. Share information about yourself, create your own public profile at http://profiles.msn.com. ___ UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html FAQ, list archives, and subscription info: http://www.groupstudy.com Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: cisco documentation
Theres a fix on their website...you must make a Registry mod to make it work. -Original Message-From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]Sent: Wednesday, September 06, 2000 11:20 AMTo: [EMAIL PROTECTED]; [EMAIL PROTECTED]Subject: RE: cisco documentation You must be using W2K which isn't supported until this month by the DOC CD. -Original Message-From: computer services [mailto:[EMAIL PROTECTED]]Sent: Wednesday, September 06, 2000 9:23 AMTo: groupstudySubject: cisco documentation Importance: Low Hi guys , i m having a problem when ever i install cisco documentation cd . i installed the software and when i launch documentation cd it does not show any thing .(it does not come to loop back address 127.x.x.x what i think it suppose to do so )but when i explore that cd and click to index or home html files it show main page .but when i click to any of the link , it shows code .i made sure that my explorer settings are not to show source code. i m having same problem in netscape too. will u please tell me how can i fix this problem Thanks in advance. Muhammad
RE: bgp summarization
Title: RE: bgp summarization You can use the aggregate-address command however this is a manual task... auto-summary is enabled by default and will provide what you are looking for...it will auto-summarize based on classful addressing...just make sure your are using classful addressing and should only be done if the AS owns the WHOLE major net Patrick Greene -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] Sent: Wednesday, September 06, 2000 5:34 AM To: [EMAIL PROTECTED] Subject: bgp summarization Hello, i'm trying to solve the following problem: R1 and R2 are talking bgp R1 is sending R2 the follwing subnets: 1.0.0.0/10 1.64.0.0/10 1.128.0.0/10 1.192.0.0/10 is there a way for R1 to auto-summarize these subnets without specifying a summary address (i mean to autosummarize any subnets it receives) ; i'm thinking on this beacuse of a practical case with thousands of subnets announced through BGP by an unpolite peer, and there is not a good idea to filter the routes received. Regards, --- Gabriel Neagoe, GN379-RIPE Networking solutions consultant CCNP, CCDA ST Romania tel: +401 20 40 300 fax: +401 20 40 310 --- ___ UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html FAQ, list archives, and subscription info: http://www.groupstudy.com Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Nobody able to help me ?
Title: RE: Nobody able to help me ? What kind of switch? Patrick -Original Message- From: Piatnitchi Cristian [mailto:[EMAIL PROTECTED]] Sent: Wednesday, September 06, 2000 11:32 AM To: '[EMAIL PROTECTED]' Subject: Nobody able to help me ? Hi all I have to monitor the traffic for 3 ports configured to work in trunking Is there any possibility to monitor these values trough the SNMP ? Does anybody know the OID and the mib that should I compile for that ? Thanks in advance Cristian Piatnitchi ___ UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html FAQ, list archives, and subscription info: http://www.groupstudy.com Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Nobody able to help me ?
Title: RE: Nobody able to help me ? Try compiling this MIB and you should be able to find a Trunk Status. This assumes you are using a Cat 5000. CISCO-VTP-MIB.my Patrick Greene -Original Message- From: Piatnitchi Cristian [mailto:[EMAIL PROTECTED]] Sent: Wednesday, September 06, 2000 11:32 AM To: '[EMAIL PROTECTED]' Subject: Nobody able to help me ? Hi all I have to monitor the traffic for 3 ports configured to work in trunking Is there any possibility to monitor these values trough the SNMP ? Does anybody know the OID and the mib that should I compile for that ? Thanks in advance Cristian Piatnitchi ___ UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html FAQ, list archives, and subscription info: http://www.groupstudy.com Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Static Route Question
Title: RE: Static Route Question We are assuming the T1 is no longer there!? -Original Message- From: Nadine Langlois [mailto:[EMAIL PROTECTED]] Sent: Tuesday, September 05, 2000 2:34 PM To: [EMAIL PROTECTED] Subject: Static Route Question To the Group, I currently have a situation where I need some advice or some suggestions for where to look for information. I have a client who is an ISP. I was called by a contact there and told to remove a static route - it belonged to a customer who was using their T1 service but had changed providers. So I removed the route. For the record, this is a Cisco 2511 running IOS 11.1 over BGP. The client then called back and said that they could now not access the customer's web site or send them e-mail. I added the route back, but I can't figure out why removing the static route caused them to lose these capabilities. Surely you don't need a static route to every web site's IP address to access it or to send out e-mail. I searched around on the web, CCO - looked through my ACRC book and other routing books and didn't find an answer. What am I missing here? Nadine ___ UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html FAQ, list archives, and subscription info: http://www.groupstudy.com Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Load balancing two T1 of two ISP
Title: RE: Load balancing two T1 of two ISP Rayza, The only way to truely load-balance this scenario is via BGP. What this entails is you acquiring your own Autonomous-System(AS) number from ARIN. Once you have your own AS you can then setup BGP on your routers going to your ISP's (I am assuming you have 2 different ISP's and not just 2 links going to the same ISP). BGP will then provide optimal routing and fault-tolerance. We design and install Internet Co-Location Facilities nationwide. We are generally provisioning at least redundant DS3's with a fully redundant router and switch core with full BGP routing. If you would like any addional assistance...please feel free to email me privately. Patrick Greene Information Technologies Enterprise (ITE) [EMAIL PROTECTED] 704-896-9495 -Original Message- From: rayza manesh [mailto:[EMAIL PROTECTED]] Sent: Tuesday, September 05, 2000 3:10 PM To: [EMAIL PROTECTED] Subject: Load balancing two T1 of two ISP Dear Group members, I have been search every corner of Cisco site to see if I will find anything about the following scenario. I have read some white paper that explain BGP in enterprise level but I need little bit more of a smaller picture. Anyhow thanks for your help. how would you implement Load balancing between two T-1 internet connections from two different ISP on a LAN. By this question I mean if there are two active internet connection terminated on two different routers connecting to the LAN setting a bandwidth threshold that when it passes that on the primary router sends/reroutes the traffic to the secondary router (path). the type of traffic are FTP from outside downloading files and HTTP traffic from inside browsing the Internet. Thanks for your help Rayza _ Get Your Private, Free E-mail from MSN Hotmail at http://www.hotmail.com. Share information about yourself, create your own public profile at http://profiles.msn.com. ___ UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html FAQ, list archives, and subscription info: http://www.groupstudy.com Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: ftp out
Title: RE: ftp out ! Allow any internal connection back in access-list 101 permit tcp any any established ! Allow FTP for non-passive ftp modes access-list 101 permit tcp any eq ftp-data gt 1024 access-list 101 deny tcp any any -Original Message- From: SH Wesson [mailto:[EMAIL PROTECTED]] Sent: Tuesday, September 05, 2000 3:23 PM To: [EMAIL PROTECTED] Subject: ftp out How do I configre an access list such that it only allow users to ftp out, but not any ftp in. Thanks. _ Get Your Private, Free E-mail from MSN Hotmail at http://www.hotmail.com. Share information about yourself, create your own public profile at http://profiles.msn.com. ___ UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html FAQ, list archives, and subscription info: http://www.groupstudy.com Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Load balancing two T1 of two ISP
Title: RE: Load balancing two T1 of two ISP Ok..."request" The semanticsof this are irrelevant...please don't waste our time with them. [Greene, Patrick] -Original Message-From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]Sent: Tuesday, September 05, 2000 4:29 PMTo: [EMAIL PROTECTED]; [EMAIL PROTECTED]; [EMAIL PROTECTED]Subject: RE: Load balancing two T1 of two ISP I believe that your statement... "What this entails is you acquiring your own Autonomous-System(AS) number from ARIN" ...Is incorrect as you do not acquire an AS from ARIN. -Original Message-From: Greene, Patrick [mailto:[EMAIL PROTECTED]]Sent: Tuesday, September 05, 2000 2:54 PMTo: 'rayza manesh'; [EMAIL PROTECTED]Subject: RE: Load balancing two T1 of two ISPImportance: Low Rayza, The only way to truely load-balance this scenario is via BGP. What this entails is you acquiring your own Autonomous-System(AS) number from ARIN. Once you have your own AS you can then setup BGP on your routers going to your ISP's (I am assuming you have 2 different ISP's and not just 2 links going to the same ISP). BGP will then provide optimal routing and fault-tolerance. We design and install Internet Co-Location Facilities nationwide. We are generally provisioning at least redundant DS3's with a fully redundant router and switch core with full BGP routing. If you would like any addional assistance...please feel free to email me privately. Patrick Greene Information Technologies Enterprise (ITE) [EMAIL PROTECTED] 704-896-9495 -Original Message- From: rayza manesh [mailto:[EMAIL PROTECTED]] Sent: Tuesday, September 05, 2000 3:10 PM To: [EMAIL PROTECTED] Subject: Load balancing two T1 of two ISP Dear Group members, I have been search every corner of Cisco site to see if I will find anything about the following scenario. I have read some white paper that explain BGP in enterprise level but I need little bit more of a smaller picture. Anyhow thanks for your help. how would you implement Load balancing between two T-1 internet connections from two different ISP on a LAN. By this question I mean if there are two active internet connection terminated on two different routers connecting to the LAN setting a bandwidth threshold that when it passes that on the primary router sends/reroutes the traffic to the secondary router (path). the type of traffic are FTP from outside downloading files and HTTP traffic from inside browsing the Internet. Thanks for your help Rayza _ Get Your Private, Free E-mail from MSN Hotmail at http://www.hotmail.com. Share information about yourself, create your own public profile at http://profiles.msn.com. ___ UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html FAQ, list archives, and subscription info: http://www.groupstudy.com Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: deep trouble
Title: RE: deep trouble You've got line problems.just by specifying the switch-type and plugging in the ISDN you should get layer 1 -Original Message- From: Ravi Kumar [mailto:[EMAIL PROTECTED]] Sent: Thursday, August 31, 2000 7:13 AM To: [EMAIL PROTECTED] Subject: deep trouble hi friends I am in deep trouble. help required I am ravi kumar from HYDERABAD, INDIA i have a 2503 router in my office. recently we got ISDN connection from local basic telephone service provider (DOT) and bought ISDN internet account from local ISP. I want to provide internet access to all my staff through this router. i configured my router's BRI 0 port with following commands for DDR. 1)router# config terminal 2) ip route 0.0.0.0 0.0.0.0 bri 0 and 3) ip router 0.0.0.0 0.0.0.0 next hop count 3) dialer-list 4 protocol ip permit 4)interface bri 0 (i did not assign any ip address to bri port, since ISP server will give ip address to port once connection is established) 5) isdn switch type basic-net3 6) isdn spid1 7digit number 7) dialer-group 4 8) dialer map ip nexthopaddress numbertodial (basically ISP will give only phone number to dial. but by using isdn card in my pc and dialing to ISP, i got dial-up server ip address. i used this address as gateway address for my router) 9) encapsulation ppp 10) ppp authentication pap username xyz password abc 11) dialer idle-timout 30 after this i saved configuration and rebooted the router. if i run show ip interface, it is showing bri 0 is up and line protocol is up. but if i run show isdn status, it is showing bri 0 layer is deactivated and layer 1 is not active. my queries are 1) is this configuration is right or wrong? 2) if it is right, how it initiate the call to isp? 3) if it is not right, pls let me know step by step cofiguration to dialup ISP. your help in this regard is highly apprecaited. regards ravi kumar B. Get free email and a permanent address at http://www.netaddress.com/?N=1 ___ UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html FAQ, list archives, and subscription info: http://www.groupstudy.com Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Route maps???
Title: RE: Route maps??? Look in the BGP Design Guides. Route Maps are used extensively for route redistribution between routing protocols. For example, you only want to redistribute routes for a small part of one network into a another. This is common with ISP's and environments where there are 2 Internet providers coming into 1 BGP AS. Patrick Greene -Original Message- From: Niraj Palikhey [mailto:[EMAIL PROTECTED]] Sent: Tuesday, August 01, 2000 10:13 AM To: [EMAIL PROTECTED] Subject: Route maps??? Hi, I am trying to understand route maps. I see it mentioned in the NAT and OSPF papers that I downloaded from Cisco's web site but they are not very clear about it. I looked up the EIGRP book but no there is no mention about it. Same for the ACRC books by Lammle or Cisco Press. Where can I find info. on it so I can learn how to implement route maps? Is there any information on the CCO Login site? Thank you. Kind regards, [EMAIL PROTECTED] Get Your Private, Free E-mail from MSN Hotmail at http://www.hotmail.com ___ UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html FAQ, list archives, and subscription info: http://www.groupstudy.com Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: CCDA
Title: RE: CCDA I just took the CCDA in June and my test would not allow me to go back to questions. Patrick -Original Message- From: Rodolfo [mailto:[EMAIL PROTECTED]] Sent: Tuesday, August 01, 2000 1:35 PM To: [EMAIL PROTECTED] Subject: Re: CCDA Study WAN protocols especially ATM and yes time is crucial. Go through the test and answer the quick and easy questions without scenarios first. Second, read the first scenario and answer the associated questions. Do the same for the second scenario then go back and answer the rest of the questions. Good Luck Jean-Michel Roberts [EMAIL PROTECTED] wrote in message A0EBB9481596D311BC450008C72B661E10D41C@VODACTMAIL1" TARGET="_blank">news:A0EBB9481596D311BC450008C72B661E10D41C@VODACTMAIL1... Hi all, I plan on writing the CCDA exam soon and I am using the Designing Cisco Networks book by Cisco Press. The material is quite easy, but I'd just like to know a few things: - Should one know the tables that are in the book of by heart. - Should one also learn the info in the Appendix. - How long does one have to complete the exam and how many questions are there Thanks in advance. Cheers, Jean-Michel (MCSE ; MCP+I ; CCNA) ___ UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html FAQ, list archives, and subscription info: http://www.groupstudy.com Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] --- ___ UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html FAQ, list archives, and subscription info: http://www.groupstudy.com Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Workgroup across VLANs
Title: Re: Workgroup across VLANs You need to set up a either a central WINS server or has replicating Wins servers, the first is preferred. It sounds as if the workstations have been broadcasting for each others address, hence the privacy between VLANS. WINS acts just like DNS however it is a NETBIOS to IP translation. Patrick Greene President and CEO Information Technologies Enterprises Office:800-535-6544 Mobile:704-491-5234 Sent from my BlackBerry Wireless Handheld (www.BlackBerry.net)
