Re: HSRP
The MAC address criteria is used when the routers bidding for active status have the same priority At 08:52 PM 22/11/2000 +0400, Naveen Sharma wrote: >Dear friends, > >Cisco press book says lowest MAC address router becomes the active router >(In HSRP). At other place it says router with highest standby priority >becomes the active router. > >Can any one clarify the situation of active and standby routers in HSRP.I >am confused. > >Thanks in advance. > >Regards > >Naveen _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: CCIE TroubleShooting Part
Depends on your paper, and thats going a little beyond the NDA. At 11:45 PM 23/11/2000 -0800, ShahzaD Ali wrote: >Hi there, > >Is it true you need to troubleshoot entirely a new scnerio when you are >trouble shooting in day 2? AnyOne knows about this? > >Regards, > >SchahzaD _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: IP routing tables
Hi Jenny, To see the actual protocol-specific routing table you have to use the protocol specific command... For example : sh ip ospf database sh ip bgp Cheers. At 11:07 AM 27/11/2000 +1100, [EMAIL PROTECTED] wrote: >Hi all, >Does anyone know if there is an IOS command that will show the routing >table for (or contributed by) a particular routing protocol, when there are >multiple routing protocols running? >In other words, a command to show what the IP routing table would look like >if there was only a single routing protocol. > >I am aware of 'show ip route [protocol]', but that appears to give a subset >of the actual routing table. For example, 'show ip route ospf' simply >chops all the non-ospf routes out of the output of 'show ip route'. I'd >like a command that shows what ospf (or eigrp or whatever) routes exist, >even the ones that are not actually used because they are, for example, >over-ridden by a static route for the same destination. > >If anyone can work out what I'm trying to ask, congratulations, because I >don't think I've expressed it very well. If anyone knows an answer, even >better :-) > >JMcL > >_ >FAQ, list archives, and subscription info: >http://www.groupstudy.com/list/cisco.html >Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Frame Relay Problem
Hi All, I hope someone can shed some light on the problem I have come across in the following scenario : Three routers, R1,R2 and R3 all connected via a Frame Relay cloud with a router in the middle doing frame relay switching. The frame switch is _not_ fully meshed. R1 is acting as the hub with R2 and R3 being spokes off R1. Hence there is a PVC betweenR1 and R2 and a PVC between R1 and R3. There is _no_ PVC between R2 and R3. The particular lab exercise here specifies that each router much be able to ping every other router in the frame cloud. BUT the use of the 'frame-relay map' command is forbidden, and only R1 can be configured using a subinterface. As I have it configured R1 can ping both R2 and R3 as expected. However, both R2 and R3 can only ping R1 (the hub) yet cannot ping each other. The question stipulates you should use routing and not Layer2 to Layer3 mapping. A debug on the ping from R2 to R3 shows that there is no map entry for R3 hence encapsulation failed. A look at 'sh frame map' shows there is only 1 entry and it is for R1. This sh frame map is identical on R2 and R3. So the question is, how can I get R2 and R3 to be able to ping each other using routing and not the frame relay map command. It's got two of us here studying for our CCIE stumped, so im hoping someone out there has an idea as to how this can be accomplished. Also, as this is for the CCIE, static routes are not an option. Cheers. Jim. _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Frame Relay Problem
Nope, all one subnet. i.e all interfaces are on the 10.1.X.X/16 subnet Hence the problem. Im well aware this is the normal partial mesh behavior and that its quiet easily rectified using map statements... but for this particular setup it requests the use of routing and not frame relay map statements. At 06:26 PM 26/11/2000 -1000, Frank B. wrote: >Unless I'm mis-reading you here this is the correct behavior for a >partial mesh. Unless you provide a full mesh you won't get dynamic >mappings for both spokes. Also, I assume the PVC from R1 to R2 is one >subnet and the PVC from R1 to R3 is another subnet--Frame relay and >Inverse ARP alone can't route between them. > >So if you can't get a PVC between R2 and R3...then run any routing >protocol on all 3 routers and you should be able to ping from R2 to R3 >and vice-versa (RIP will work fine to prove this point.) Hope this >helps...and as always, comments are welcome ( and in fact expected >;-)Frank > >James Wilson wrote: > > > > Hi All, > > > > I hope someone can shed some light on the problem I have come across in the > > following scenario : > > > > Three routers, R1,R2 and R3 all connected via a Frame Relay cloud with a > > router in the middle doing frame relay switching. The frame switch is _not_ > > fully meshed. R1 is acting as the hub with R2 and R3 being spokes off R1. > > Hence there is a PVC betweenR1 and R2 and a PVC between R1 and R3. There is > > _no_ PVC between R2 and R3. > > > > The particular lab exercise here specifies that each router much be able to > > ping every other router in the frame cloud. BUT the use of the 'frame-relay > > map' command is forbidden, and only R1 can be configured using a > subinterface. > > > > As I have it configured R1 can ping both R2 and R3 as expected. However, > > both R2 and R3 can only ping R1 (the hub) yet cannot ping each other. The > > question stipulates you should use routing and not Layer2 to Layer3 > > mapping. A debug on the ping from R2 to R3 shows that there is no map entry > > for R3 hence encapsulation failed. A look at 'sh frame map' shows there is > > only 1 entry and it is for R1. This sh frame map is identical on R2 and R3. > > > > So the question is, how can I get R2 and R3 to be able to ping each other > > using routing and not the frame relay map command. > > > > It's got two of us here studying for our CCIE stumped, so im hoping someone > > out there has an idea as to how this can be accomplished. > > > > Also, as this is for the CCIE, static routes are not an option. > > > > Cheers. > > > > Jim. > > > > _ > > FAQ, list archives, and subscription info: > http://www.groupstudy.com/list/cisco.html > > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Frame Relay Problem
Config : R1 ! version 11.3 service timestamps debug uptime service timestamps log uptime no service password-encryption ! hostname R1-Ob ! ! ! ! hub ether 0 1 link-test auto-polarity ! hub ether 0 2 link-test auto-polarity ! hub ether 0 3 link-test auto-polarity !hub ether 0 4 link-test auto-polarity ! hub ether 0 5 link-test auto-polarity ! hub ether 0 6 link-test auto-polarity ! hub ether 0 7 link-test auto-polarity ! hub ether 0 8 link-test auto-polarity ! interface Ethernet0 no ip address shutdown ! interface Serial0 no ip address encapsulation frame-relay no ip mroute-cache clockrate 64000 ! interface Serial0.1 multipoint ip address 10.1.1.1 255.255.0.0 frame-relay interface-dlci 101 frame-relay interface-dlci 102 ! interface Serial1 no ip address shutdown ! router ospf 1 network 10.1.0.0 0.0.255.255 area 0 neighbor 10.1.1.3 neighbor 10.1.1.2 default-information originate always metric-type 1 ! ip classless ! line con 0 line aux 0 line vty 0 4 login ! end R2 ! version 11.2 no service password-encryption no service udp-small-servers no service tcp-small-servers ! hostname R2-Sambuca ! ! ip subnet-zero ! hub ether 0 1 link-test auto-polarity ! hub ether 0 2 link-test auto-polarity ! hub ether 0 3 link-test auto-polarity ! hub ether 0 4 link-test auto-polarity ! hub ether 0 5 link-test auto-polarity ! hub ether 0 6 link-test auto-polarity ! hub ether 0 7 link-test auto-polarity ! hub ether 0 8 link-test auto-polarity ! interface Ethernet0 no ip address shutdown ! interface Serial0 ip address 10.1.1.2 255.255.0.0 encapsulation frame-relay ip ospf priority 0 no fair-queue frame-relay interface-dlci 100 ! interface Serial1 no ip address shutdown ! router ospf 1 network 10.1.0.0 0.0.255.255 area 0 ! no ip classless ! ! line con 0 line aux 0 line vty 0 4 login ! end R3 ! version 12.0 service timestamps debug uptime service timestamps log uptime no service password-encryption ! hostname R3-Budvar ! ! ip subnet-zero ip cef ! ! ! interface ATM1/0 no ip address no ip directed-broadcast shutdown no atm ilmi-keepalive ! interface ATM4/0 no ip address no ip directed-broadcast shutdown no atm ilmi-keepalive ! interface Serial5/0 ip address 10.1.1.3 255.255.0.0 no ip directed-broadcast encapsulation frame-relay ip ospf interface-retry 0 ip ospf priority 0 no ip mroute-cache no fair-queue frame-relay interface-dlci 100 ! interface Serial5/1 no ip address no ip directed-broadcast shutdown ! interface Serial5/2 no ip address no ip directed-broadcast shutdown ! interface Serial5/3 no ip address no ip directed-broadcast shutdown ! interface Serial5/4 no ip address no ip directed-broadcast shutdown ! interface Serial5/5 no ip address no ip directed-broadcast shutdown ! interface Serial5/6 no ip address no ip directed-broadcast shutdown ! interface Serial5/7 no ip address no ip directed-broadcast shutdown ! interface TokenRing6/0/0 no ip address no ip directed-broadcast no ip route-cache distributed shutdown ! interface TokenRing6/0/1 no ip address no ip directed-broadcast no ip route-cache distributed shutdown ! interface TokenRing6/0/2 no ip address no ip directed-broadcast no ip route-cache distributed shutdown ! interface TokenRing6/0/3 no ip address no ip directed-broadcast no ip route-cache distributed shutdown ! router ospf 1 network 10.1.0.0 0.0.255.255 area 0 distance 1 ! ip classless ! ! ! line con 0 transport input none line aux 0 line vty 0 4 ! end At 10:00 PM 26/11/2000 -0500, you wrote: >If you could post the configs it would help, but here's some ideas to try. > >Are you sure have inverse ARP working? >Have you tried a static route to R3 (from R2) gatewayed to R1's IP and the >same on R3 to R2 via R1's IP? >Look into Proxy ARP. >Just a thought, I've never tried this but, is there a way to make a static >ARP entry? > >Rodgers Moore > >"James Wilson" <[EMAIL PROTECTED]> wrote in message >[EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > > Hi All, > > > > I hope someone can shed some light on the problem I have come across in >the > > following scenario : > > > > Three routers, R1,R2 and R3 all connected via a Frame Relay cloud with a > > router in the middle doing frame relay switching. The frame switch is >_not_ > > fully meshed. R1 is acting as the hub with R2 and R3 being spokes off R1. > > Hence there is a PVC betweenR1 and R2 and a PVC between R1 and R3. There >is > > _no_ PVC between R2 and R3. > > > > The particular lab exercise here specifies that each router much be able >to > > ping every other router in the frame cloud. BUT the use of the >'frame-relay > > map' command is forbidden
RE: Frame Relay Problem
All interfaces on the frame relay network are in the same 10.1.x.x/16 subnet. Hence there is a connected route comming from the frame relay interface which will be preferred over any default route or any other route. At 10:43 AM 26/11/2000 -0600, Aaron K. Dixon wrote: >You will need to either generate default routes for the spokes or use policy >routing to set the default next hop. > >Regards, >Aaron K. Dixon > >-Original Message- >From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of >Frank B. >Sent: Sunday, November 26, 2000 10:27 PM >To: James Wilson >Cc: [EMAIL PROTECTED]; [EMAIL PROTECTED] >Subject: Re: Frame Relay Problem > > >Unless I'm mis-reading you here this is the correct behavior for a >partial mesh. Unless you provide a full mesh you won't get dynamic >mappings for both spokes. Also, I assume the PVC from R1 to R2 is one >subnet and the PVC from R1 to R3 is another subnet--Frame relay and >Inverse ARP alone can't route between them. > >So if you can't get a PVC between R2 and R3...then run any routing >protocol on all 3 routers and you should be able to ping from R2 to R3 >and vice-versa (RIP will work fine to prove this point.) Hope this >helps...and as always, comments are welcome ( and in fact expected >;-)Frank > >James Wilson wrote: > > > > Hi All, > > > > I hope someone can shed some light on the problem I have come across in >the > > following scenario : > > > > Three routers, R1,R2 and R3 all connected via a Frame Relay cloud with a > > router in the middle doing frame relay switching. The frame switch is >_not_ > > fully meshed. R1 is acting as the hub with R2 and R3 being spokes off R1. > > Hence there is a PVC betweenR1 and R2 and a PVC between R1 and R3. There >is > > _no_ PVC between R2 and R3. > > > > The particular lab exercise here specifies that each router much be able >to > > ping every other router in the frame cloud. BUT the use of the >'frame-relay > > map' command is forbidden, and only R1 can be configured using a >subinterface. > > > > As I have it configured R1 can ping both R2 and R3 as expected. However, > > both R2 and R3 can only ping R1 (the hub) yet cannot ping each other. The > > question stipulates you should use routing and not Layer2 to Layer3 > > mapping. A debug on the ping from R2 to R3 shows that there is no map >entry > > for R3 hence encapsulation failed. A look at 'sh frame map' shows there is > > only 1 entry and it is for R1. This sh frame map is identical on R2 and >R3. > > > > So the question is, how can I get R2 and R3 to be able to ping each other > > using routing and not the frame relay map command. > > > > It's got two of us here studying for our CCIE stumped, so im hoping >someone > > out there has an idea as to how this can be accomplished. > > > > Also, as this is for the CCIE, static routes are not an option. > > > > Cheers. > > > > Jim. > > > > _ > > FAQ, list archives, and subscription info: >http://www.groupstudy.com/list/cisco.html > > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] > >_ >FAQ, list archives, and subscription info: >http://www.groupstudy.com/list/cisco.html >Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Frame Relay Problem
Your suggestions are good, unfortunately i have already tried most of them and other break the rules of the lab Here's a run down : - R1 is currently configured with 1 multipoint subinterface with multiple frame-relay interface-dlci commands. - The rules state only 1 subinterface can be used, and also state only the one 10.1.0.0/16 subnet can be used so that rules out the multiple subnets. - The lab stipulates the ip addresses for R1, R2 and R2 be 10.1.1.1/16, 10.1.1.2/16, 10.1.1.3/16 respectively. So there goes the multiple point to point interfaces / multiple subnets idea. bummer. As you said, Map statements are not to be used. The direct quote from the lab is "Also, one of the problems in this lab [i.e r2 not being able to ping r3] can be solved with multiple frame map ip statements, but this is not the solution i want you to use. Solve the problem with routing, not layer 3 to layer 2 mapping". Hence ruling out any static frame mapping or arp type solutions as these are all layer 2 to layer 3 mapping techniques. The use of OSPF is permitted and required throughout the lab, with alll frame relay interfaces being in Area 0. At 06:58 PM 26/11/2000 -1000, Frank B. wrote: >Ah...now I need more info. Below you stated "only R1 can be configured >using a subinterface"--so that's my first question: > >Is it configured with sub-int's, one for ea PVC? If yes, and they are >configured as point-to-point then I believe that each separate PVC is >required to be on a separate subnet since the router treats each as a >separate interface. In this scenario my original response will work. > >If no, then are you using one multipoint subint on R1 the Hub router? >If so, one subnet works for all three interfaces but I believe you'll >need map statements at the spokes. I understand this isn't an option. >So please provide more details... > >If your lab exercise doesn't explicitly disallow point-to-point >subinterfaces at the hub router, R1, then I'd configure it that way, >with 2 differnet subnets and run RIP on all 3 routers...it will work. >If I missed another restriction you're facing please advise >soonest...I'm now very interested in this one. Thanks, Frank > >James Wilson wrote: > > > > Nope, all one subnet. i.e all interfaces are on the 10.1.X.X/16 subnet > > > > Hence the problem. > > > > Im well aware this is the normal partial mesh behavior and that its quiet > > easily rectified using map statements... but for this particular setup it > > requests the use of routing and not frame relay map statements. > > > > At 06:26 PM 26/11/2000 -1000, Frank B. wrote: > > >Unless I'm mis-reading you here this is the correct behavior for a > > >partial mesh. Unless you provide a full mesh you won't get dynamic > > >mappings for both spokes. Also, I assume the PVC from R1 to R2 is one > > >subnet and the PVC from R1 to R3 is another subnet--Frame relay and > > >Inverse ARP alone can't route between them. > > > > > >So if you can't get a PVC between R2 and R3...then run any routing > > >protocol on all 3 routers and you should be able to ping from R2 to R3 > > >and vice-versa (RIP will work fine to prove this point.) Hope this > > >helps...and as always, comments are welcome ( and in fact expected > > >;-)Frank > > > > > >James Wilson wrote: > > > > > > > > Hi All, > > > > > > > > I hope someone can shed some light on the problem I have come > across in the > > > > following scenario : > > > > > > > > Three routers, R1,R2 and R3 all connected via a Frame Relay cloud > with a > > > > router in the middle doing frame relay switching. The frame switch > is _not_ > > > > fully meshed. R1 is acting as the hub with R2 and R3 being spokes > off R1. > > > > Hence there is a PVC betweenR1 and R2 and a PVC between R1 and R3. > There is > > > > _no_ PVC between R2 and R3. > > > > > > > > The particular lab exercise here specifies that each router much be > able to > > > > ping every other router in the frame cloud. BUT the use of the > 'frame-relay > > > > map' command is forbidden, and only R1 can be configured using a > > > subinterface. > > > > > > > > As I have it configured R1 can ping both R2 and R3 as expected. > However, > > > > both R2 and R3 can only ping R1 (the hub) yet cannot ping each > other. The > > > > question stipulates you should use routing and not Layer2 to Layer3 > > > > mapping. A
Frame Relay Problem -- SOLUTION CONFIGs
All, Thanks for the help, especially Aaron Dixon... Below are the working configs, solved through using Policy Routing which i hadnt thought of. R1 ! version 11.3 service timestamps debug uptime service timestamps log uptime no service password-encryption ! hostname R1-Ob ! ! interface Ethernet0 no ip address shutdown ! interface Serial0 no ip address encapsulation frame-relay no ip mroute-cache clockrate 64000 ! interface Serial0.1 multipoint ip address 10.1.1.1 255.255.0.0 no ip split-horizon frame-relay interface-dlci 101 frame-relay interface-dlci 102 ! interface Serial1 no ip address shutdown ! ip classless ! ! line con 0 line aux 0 line vty 0 4 login ! end R2 ! version 11.2 no service password-encryption no service udp-small-servers no service tcp-small-servers ! hostname R2-Sambuca ! ! ip subnet-zero ! ! interface Ethernet0 no ip address shutdown ! interface Serial0 ip address 10.1.1.2 255.255.0.0 encapsulation frame-relay ip ospf priority 0 ip policy route-map POLICY no fair-queue frame-relay interface-dlci 100 ! interface Serial1 no ip address shutdown ! ip local policy route-map POLICY no ip classless access-list 1 permit 10.1.0.0 0.0.255.255 route-map POLICY permit 10 match ip address 1 set ip next-hop 10.1.1.1 ! !! ! line con 0 line aux 0 line vty 0 4 login ! end R3 ! version 12.0 service timestamps debug uptime service timestamps log uptime no service password-encryption ! hostname R3-Budvar ! ! ip subnet-zero ip cef ! ! interface Serial5/0 ip address 10.1.1.3 255.255.0.0 no ip directed-broadcast encapsulation frame-relay ip ospf interface-retry 0 ip ospf priority 0 no ip mroute-cache ip policy route-map POLICY no fair-queue frame-relay interface-dlci 100 ! ip local policy route-map POLICY ip classless ! access-list 1 permit 10.1.0.0 0.0.255.255 route-map POLICY permit 10 match ip address 1 set ip next-hop 10.1.1.1 ! ! ! line con 0 transport input none line aux 0 line vty 0 4 ! end _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Speed Tip
Good tip... but be very very careful -- If you accidently saved this file somewhere you would be disqualified immediately as part of the CCIE lab rules. Cheers. On 0, Tony Olzak <[EMAIL PROTECTED]> wrote: > Hard to believe, but most people don't know you can use notepad in the lab. Here's >how I do a base config on all my routers: > > en > config t > ip classless > ip subnet-zero > no ip domain-lookup > alias exec cb clear ip bgp * > alias exec ci clear ip route * > alias exec cx clear ipx route * > alias exec i show ip route > alias exec ix show ipx route > alias exec si show ip interface brief > alias exec sx show ipx interface brief > enable secret cisco > > line con 0 > exec-timeout 0 0 > password cisco > > line aux 0 > exec-timeout 0 0 > password cisco > > line vty 0 4 > exec-timeout 0 0 > password cisco > > Then at the end just type "hostname " and you are done. > > Put all this in notepad, copy it, then paste to host while in the terminal program. > > I couldn't believe how many people tell me they type all this junk at every router. >This will save you probably 20 minutes. > > Tony > -- [=[ www.cisco.com ]] James Wilson cisco Systems Customer Service Engineer, I Global On Site Services|||| |||| Phone : +61-2-8448-7919 Pager : +61-2-9430-6381 ..:||:..:||:.. [=[ USA +1-800-829-2447 ]=[ Aust 1800-121-531 ]] "I am convinced that life is 10% what happens to me and 90% how I react" _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Speed Tip
Hi Chuck, Whilst you are permitted to use Notepad or any other program present on your Testing PC, the rules of the CCIE Lab state without that at _no time_ can you save a file to the hard disk. If during the marking breaks the CCIE proctor finds that you have saved a file to the hard drive anywhere he will fail you immediately. Cheers. On 0, Chuck Larrieu <[EMAIL PROTECTED]> wrote: > Rules of the game: I trust you mean that you must remember to delete the > file from the PC you are using prior to leaving. I.e. you can't leave it for > the next person to find. Correct? > > I have received tips such as Tony's from other sources. If you check my > feeble web site www.chuck.to/CCIEAdvice.txt you will see that one of those > from whom I have gathered advice has offered something similar. I have also > received this advice verbally from a couple of folks as well. > > Chuck > > -Original Message- > From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] On Behalf Of > James Wilson > Sent: Saturday, December 02, 2000 7:41 PM > To: Tony Olzak > Cc: [EMAIL PROTECTED] > Subject: Re: Speed Tip > > Good tip... but be very very careful -- If you accidently saved this file > somewhere you would be disqualified immediately as part of the CCIE lab > rules. > > Cheers. > > On 0, Tony Olzak <[EMAIL PROTECTED]> wrote: > > Hard to believe, but most people don't know you can use notepad in the > lab. Here's how I do a base config on all my routers: > > > > en > > config t > > ip classless > > ip subnet-zero > > no ip domain-lookup > > alias exec cb clear ip bgp * > > alias exec ci clear ip route * > > alias exec cx clear ipx route * > > alias exec i show ip route > > alias exec ix show ipx route > > alias exec si show ip interface brief > > alias exec sx show ipx interface brief > > enable secret cisco > > > > line con 0 > > exec-timeout 0 0 > > password cisco > > > > line aux 0 > > exec-timeout 0 0 > > password cisco > > > > line vty 0 4 > > exec-timeout 0 0 > > password cisco > > > > Then at the end just type "hostname " and you are done. > > > > Put all this in notepad, copy it, then paste to host while in the terminal > program. > > > > I couldn't believe how many people tell me they type all this junk at > every router. This will save you probably 20 minutes. > > > > Tony > > > > -- > [=[ www.cisco.com ]] > James Wilson cisco Systems > Customer Service Engineer, I > Global On Site Services |||| > |||| > Phone : +61-2-8448-7919 > Pager : +61-2-9430-6381 ..:||:..:||:.. > [=[ USA +1-800-829-2447 ]=[ Aust 1800-121-531 ]] > "I am convinced that life is 10% what happens to me and 90% how I react" > > _ > FAQ, list archives, and subscription info: > http://www.groupstudy.com/list/cisco.html > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] -- [=[ www.cisco.com ]] James Wilson cisco Systems Customer Service Engineer, I Global On Site Services|||| |||| Phone : +61-2-8448-7919 Pager : +61-2-9430-6381 ..:||:..:||:.. [=[ USA +1-800-829-2447 ]=[ Aust 1800-121-531 ]] "I am convinced that life is 10% what happens to me and 90% how I react" _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Help Needed
Normal, no. Common, yes. i.e Its quite common to see CPUHOG messages when performing online insertion and removal on a router. Though in a perfect world this would not be normal behavior. All it means is that a process, in this case the Microcode Loader, has taken up alot of CPU time (possibly hung) and the watchdog has terminated the process to allow other processes to use the CPU. Most likely this process was affected by the online insertion or removal (as you would expect for a microcode loader) and as a result needs to be whipped back inline. The other two messages from RSP-3-SLAVECHANGE are normal. Cheers On 0, Abdul Mujeeb <[EMAIL PROTECTED]> wrote: > Hi > > While doing the RSP failover test for cisco 7507 running on IOS version > 12.0(13). > i found this message > What does this below output mean , > > > 19:%SYS-3-CPUHOG: Task ran for 2968 msec (53/44), process = Microc > ode Loader, PC = 602A6368. > -Traceback= 602A6370 602A6D64 602A43AC 60251804 602517F0 > > Dec 2 21:41:21: %RSP-3-SLAVECHANGE: Slave changed state from Slave to > Non-parti > cipant > Dec 2 21:41:22: %RSP-3-SLAVECHANGE: Slave changed state from > Non-participant to > Slave > > > > > is it something normal > > Thanks in Advance. > > Regards, > Abdul Mujeeb > > _ > FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] -- [=[ www.cisco.com ]] James Wilson cisco Systems Customer Service Engineer, I Global On Site Services|||| |||| Phone : +61-2-8448-7919 Pager : +61-2-9430-6381 ..:||:..:||:.. [=[ USA +1-800-829-2447 ]=[ Aust 1800-121-531 ]] "I am convinced that life is 10% what happens to me and 90% how I react" _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Serial port with identity crisis
Hi Tim, This is typical behavior when using Frame Relay in a main serial interface. This is because unless you are using a point a point sub interface the router relys on map statements or classes to map layer 3 ip addresses to layer 2 DLCIs in the frame cloud -- even though you have given the interface its ip with 'ip address'. You can get around it at follows : Scenario 1: interface serial 0 ip address 10.1.1.1 255.255.255.0 encap frame frame map ip 10.1.1.1 100 <-- Will allow you to ping yourself frame map ip 10.1.1.2 100 <-- Will allow you to ping your neighbor or interface serial 0 no ip address encap frame ! int ser 0.1 point-to-point ip address 10.1.1.1 255.255.255.252 <-- Hey its point to point, save yerself some IP addresses frame interface-dlci 100 Cheers jim. At 11:27 PM 12/03/2000 -0800, Tim Ross wrote: >I have been upgrading a couple 3104 routers (2 serial port, 1 ether, 1 >BRI) and got them up and running on 11.1 IOS as DTE devices into an AGS+ >operating as a frame-switch. The two 3104's can ping each other, but can't >ping its own serial port. This is the first time that I have had this >happen. I can ping a remote serial port, but not the local serial port. >Can someone explain why this happens? Since this, I have upgraded the (2) >3104's to IOS ver 12.0.9 and am having worse problems, but am still >curious about the local router unable to ping its own ser0 port. > >Thanks, >Tim _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: SecureDelivery PassPhrase Change Confirmation
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Isn't this list confirmed double opt-in and posts restricted to members? - - James D. Wilson, CCDA, MCP "non sunt multiplicanda entia praeter necessitatem" William of Ockham (1285-1347/49) -BEGIN PGP SIGNATURE- Version: PGP 6.0.2 Comment: I live for the sound ... of nothing but net iQA/AwUBOrtxByavYwibXjmcEQKXdACgvVVXFxz37BB7I0zfXEuhhW64qy0AoLkX ohBbhwyM7gSTkPvXyH+dukYl =GWXp -END PGP SIGNATURE- _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE:
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 HP Openview Network Node Manager... - - James D. Wilson, CCDA, MCP "non sunt multiplicanda entia praeter necessitatem" William of Ockham (1285-1347/49) - -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Scott Sent: Tuesday, April 03, 2001 8:35 AM To: [EMAIL PROTECTED] Subject: I am in need of a software program that will monitor the ports on a Catalyst 5505 and log when ports go down and up etc... If anyone has any information on this topic please let me know Thanks, -BEGIN PGP SIGNATURE- Version: PGP 6.0.2 Comment: I live for the sound ... of nothing but net iQA/AwUBOsqH4iavYwibXjmcEQKZWQCdH3jeO3KdzqCs8CXdSj3OlG3vxx8An2xc /qalsf1P0nbJPcvE/yA+Je51 =DKDw -END PGP SIGNATURE- _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: TEEN PORN SPAM... [7:543]
How about a 7 day delay of posting rights. One week after subscribing the person would have to reply to a message sent to the original subscribing address. For those seven days the subscriber receives posts but cannot post themselves. Most spammers use throw-away accounts that are valid for maybe a day or two. If there was a week delay the account would be closed by then and the posting rights would never be verified. It would (1) reduce if not eliminate spammers with spamware that auto-acks the subscription and (2) force the new subscribers to sit back for a week and read the feed and get a feel for the list. - James D. Wilson, CCDA, MCP "non sunt multiplicanda entia praeter necessitatem" William of Ockham (1285-1347/49) -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Paul Borghese Sent: Friday, April 13, 2001 8:00 PM To: [EMAIL PROTECTED] Subject: Re: TEEN PORN SPAM... [7:543] We need some ideas on how to block spam more efficiently. Any suggestions? Paul - Original Message - From: "Angel Castillo" To: Sent: Friday, April 13, 2001 8:24 PM Subject: TEEN PORN SPAM... [7:543] > I am utterly offended by the previous posting regarding teen porn. I > sincerely hope that all of the technical people that use this site figure > out a way to "put a big brain techie hurt" on the person that posted it. > > Hopefully the webmaster has some ideas as well... > > > Angel M. Castillo > FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=604&t=543 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: MyGirlFriend Dogs [7:9891]
A better question is why the Groupstudy mail server does NOT record the IP address of the submitter of the message in the headers. Sendmail records this information by default unless you configure it not to do so. For that matter, why the groupstudy mail server does not have RFC compliant DNS records configured for their mail server - the forward and reverse dns do not match, causing TCP wrappers to record it as a security risk in your syslogs. Its been broken for a long time... - James D. Wilson, CCDA, MCP "non sunt multiplicanda entia praeter necessitatem" William of Ockham (1285-1347/49) -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of fgdfg Sent: Monday, June 25, 2001 6:37 PM To: [EMAIL PROTECTED] Subject: MyGirlFriend Dogs [7:9891] Nice dog... [GroupStudy.com removed an attachment of type application/x-msdownload which had a name of BullBull.exe] Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=10074&t=9891 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: How prevalent is ISL in the "real world"? [7:33758]
On this same subject, how secure or how vulnerable is ISL or dot1q trunking? Is it vulnerable to arp attacks? -- James D. Wilson, CCDA, MCP Sr. Network/Security Engineer "non sunt multiplicanda entia praeter necessitatem" William of Ockham (1285-1347/49) -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Chuck Larrieu Sent: Wednesday, January 30, 2002 4:09 PM To: [EMAIL PROTECTED] Subject: Re: How prevalent is ISL in the "real world"? [7:33758] It might be an issue of installed base, or lack thereof. I believe recent CatOS releases have corrected this, but for a long while, the Cat 400x series did ISL on trunks, while doing 802.1q on ports. Older boxes, of course, may only do ISL. In these days of tight budgets it can be difficult to convince customers to upgrade absolutely, everyone should upgrade to the open standard. absolutely, everyone should migrate from token ring to ethernet. absolutely, everyone should eliminate native IPX, NetBEUI, and AppleTalk from their networks. ;-> Chuck ""Peter van Oene"" wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > What are the current advantages for running ISL over 802.1q? I would > expect its proprietary nature to be enough to warrant choosing against it. > > Pete > > > At 03:47 PM 1/30/2002 -0500, you wrote: > >Is ISL still widely used? Are there still many shops out there using it? (I > >assume Cisco only outfits) It seems that Cisco has all but dropped support > >for it in favor of dot1q. > > > >Sean Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=33795&t=33758 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Console Connection Using Linux [7:35035]
For Linux/Unix I'd recommend c-kermit; it is a powerful open-source program that is easy to use. -- James D. Wilson, CCDA, MCP Sr. Network/Security Engineer "non sunt multiplicanda entia praeter necessitatem" William of Ockham (1285-1347/49) -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] Sent: Sunday, February 10, 2002 4:18 PM To: [EMAIL PROTECTED] Subject: RE: Console Connection Using Linux [7:35035] SSH works well, is secure, and comes with a number of distros Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=35062&t=35035 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Stitched up on .NET [7:38919]
"Be afraid. Be very afraid." At least if you plan on having any sensitive information used with it. But hey, King Bill decried that all Microsoft software is now secure and security is number one at Micro$oft, so you should be safe. -- James D. Wilson, CCDA, MCP Sr. Network/Security Engineer "non sunt multiplicanda entia praeter necessitatem" William of Ockham (1285-1347/49) -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Steven A. Ridder Sent: Wednesday, March 20, 2002 5:21 AM To: [EMAIL PROTECTED] Subject: Re: Stitched up on .NET [7:38919] GO to the source at www.microsoft.com, go to www.nwfusion.com, www.infoworld.com, www.winntmag.com, search on google.com. -- RFC 1149 Compliant. Get in my head: http://sar.dynu.com ""Matthew Tayler"" wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > My boss has landed me in it and I have to do some form of presentation on > Thursday of the value of .NET. Being told 20 minutes ago hasn't helped the > situation. > > Ok I can out about what it does or allegedly does, but has anyone any idea > where to find critical assessments of .NET please > > Thanks in advance > > Matt T Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=38990&t=38919 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: If it's a 2611, you're out of luck [7:39788]
I have a 1751 trunked to my c2924XL running IP/FW/IDS/PLUS/IPSEC/3DES and it only supports dot1q trunking on the 100Mb interface. Works like a champ, though. -- James D. Wilson, CCDA, MCP Sr. Network/Security Engineer "non sunt multiplicanda entia praeter necessitatem" William of Ockham (1285-1347/49) -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Rik Guyler Sent: Thursday, March 28, 2002 5:44 PM To: [EMAIL PROTECTED] Subject: RE: If it's a 2611, you're out of luck [7:39788] Another bit of good info to know: Traditionally, the 1700 series would not support trunking, either ISL or Dot1Q. That includes both the 1720 and 1750. In these cases, you had to purchase a 2600 with IP Plus, which is an expensive proposition to avoid the necessity of 2 or more E/FE interfaces. I just setup for a client a 1721 router which DOES support both trunking encapsulations and does it with IP only IOS! This is a huge savings over the traditional options for inter-VLAN routing. There are also new 1751 and 1760 models which I believe also support both modes of trunks. Rik -Original Message- From: Larry Letterman [mailto:[EMAIL PROTECTED]] Sent: Thursday, March 28, 2002 2:23 PM To: [EMAIL PROTECTED] Subject: RE: If it's a 2611, you're out of luck [7:39788] apparently last week some one on the list made the ethernets work in a 2600 router at 10mb Larry Letterman Cisco Systems [EMAIL PROTECTED] -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] Sent: Thursday, March 28, 2002 10:15 AM To: [EMAIL PROTECTED] Subject: If it's a 2611, you're out of luck [7:39788] Vlan trunking requires a fast ethernet connection. It cannot be trunked with a 261X. You'd need a 262X. If you have to deal with a 2611, your options become much more limited. You could replace the 2611 with a 2620. Or you could get a ethernet module for the 2611. Unfortunately, last time I checked (whish was a couple years ago, given) those ethernet modules came in two models, 1 and 4 port, and cost about $1000 per port. Another option would be to replace the 2611 with a 1750. It's got one fast ethernet port. If this network is as small as it sounds, it'd be a viable option. Oh, and about trunking, the way it works is you define the switch port connected to the router as a trunk. This allows multiple (in your case, all) vlans to use the one port. The router is configured with subinterfaces on the fastethernet port, one for each vlan. The router can then route between these vlans. Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=39893&t=39788 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: 1,000 Commission Per Sale! 10215 [7:13926]
since they have to pay for every minute on the 888 number everyone should be sure and call them and let them know how much you appreciate having their spam shoved down your mailbox. Call long, call often. - James D. Wilson, CCDA, MCP "non sunt multiplicanda entia praeter necessitatem" William of Ockham (1285-1347/49) -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of [EMAIL PROTECTED] Sent: Thursday, July 26, 2001 5:12 PM To: [EMAIL PROTECTED] Subject: 1,000 Commission Per Sale! 10215 [7:13919] $1,000 Commission Per Sale! Great Vacations and Endless Opportunities! Thank you for responding to our ad for Entrepreneurs. We are presently taking on dealers who have seasoned sales experience or experience in running a small business and understand the ins and outs of sales. Our product is simple, We sell One Vacation Package that everyone wants. The customer receives: 8 luxury cruises (Carnival, Princess, Norwegian etc), 6 Las Vegas vacations (some even include airfare), and 12 Luxury Resort Vacations to places like Disney/Orlando (airfare is even included for 2 people), 8 days and 7 nights in the Bahamas (airfare included for 2 people) and much more. You will sell this package for an incredibly low price of only$1,399 and guess how much of that you keep. That's right your commission is $1,000 on every sale! Your product will only cost you $399 (buy as you go, you don't need to keep an inventory). There are independent dealers selling 7 to 10 of these every week, every week. Think about what you will be offering, over 25 premium vacations for what most people will pay for one vacation. Your customers will never be asked to attend any timeshare presentations and there is never a catch with any of these vacations. All vacations are open ended and 100% transferable to friends and family. Who would pay $3500 for a cruise when they can have 8 (same quality) cruises for only $1,399? All you need to do is put out some flyers and place a few inexpensive classified ads and then just sit back and watch your customers flock to you. A motivated dealer can plan on closing at least 3 deals his first week doing this. *** Make this business as big as you want it. How much would you pay to make $3,000 to $7,000 every week? Well we are going to make it very easy for you to get involved with our company, Your cost is a one time fee of only: $995. Here is what you will get with your investment: 1 presentation kit, a completely customized marketing strategy, professional marketing advice, flyers (on disk) and classified ads that work and much much more! But don't forget the most important thing, you are getting a real turn-key business selling a product that is in HUGE demand that you can work right out of your house. Spend more time with your family and do the things that you want to do. *** If you are truly interested in this opportunity and have sales experience and have $995 to invest in a time tested business of your own, we want to talk to you! Serious inquiries only. PS: You may be wondering how we can give so many vacations away for such a small price, well, the concept is simple. Every time a ship leaves port they are 30% unoccupied. Cruiselines lose money of every cabin that is empty. They would rather give away the cabin for free than have it empty because they know that if a couple goes on a beautiful luxury cruise for free, they will spend more money on the extras like: alcohol, tennis lessions, souviniers, clothes, etc. Statistically, a customer vacationing for free will spend more than the paying customers on the cruise so the cruiseline makes millions of dollars even though they are giving cabins away for free. It is that simple. The same applies to resorts. *** Call us toll free at 888-354-2111 Serious inquiries only. __ We strongly oppose the use of SPAM email and do not want anyone who does not wish to receive our mailings to receive them. As a result, we have retained the services of an independent 3rd party to administer our list management and remove list. This is not SPAM. If you do not wish to receive further mailings, please click below and enter your email at the bottom of the page. You may then rest-assured that you will never receive another email from us again. http://www.removeyou.com Member ID 027316 Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=13926&t=13926 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: DNL Blackhole list for GroupStudy [7:14082]
I almost forgot, add a 5 day delay before permission is granted to post to the list. This will make it usless to spammers and promote reading the list posts for a few delays before you post yourself - something that is a standard recommendation to people signing up to any mailing list. - James D. Wilson, CCDA, MCP "non sunt multiplicanda entia praeter necessitatem" William of Ockham (1285-1347/49) -Original Message----- From: James Wilson [mailto:[EMAIL PROTECTED]] Sent: Sunday, July 29, 2001 7:22 PM To: Paul Borghese; [EMAIL PROTECTED] Subject: RE: DNL Blackhole list for GroupStudy [7:14082] My recommendation would be to require a confirmed email subscription process which only allows posts from specific subscribed email addresses and not from web forms. Furthermore your web archives should strip out any personal email addresses to keep spambots from harvesting addresses. Also make sure that all email posts include the IP address of the post in the headers. That way we can go after the spammers with the ISP's. Make the subscription process be to reply with a string such as "add [EMAIL PROTECTED]" prior to allowing posts from that address. This would put a stop to automated postings by spammers. The extra effort will be enough to stop people being able to buy spamware that lets them post to the list. Most spammers are lazy (unethical) *&%$s. If you make it really easy to spam the list they will do so. If you use standard "best practices" in controlling posts you will put a stop to automated spam. I get approximately 750 - 1000 messages a day from various mailing lists. The only mailing list I get spam on is this one. This is also the only mailing list I am on that does not require posts via email from double-opt-in registration. And I am on a *lot* of mailing lists. - James D. Wilson, CCDA, MCP "non sunt multiplicanda entia praeter necessitatem" William of Ockham (1285-1347/49) -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Paul Borghese Sent: Sunday, July 29, 2001 6:39 AM To: [EMAIL PROTECTED] Subject: DNL Blackhole list for GroupStudy [7:14082] I would like to hear some opinions on using a DNS blackhole list such as maps, or ordb with GroupStudy.com. Good idea, bad idea? Effective? Paul Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=14109&t=14082 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: DNL Blackhole list for GroupStudy [7:14082]
My recommendation would be to require a confirmed email subscription process which only allows posts from specific subscribed email addresses and not from web forms. Furthermore your web archives should strip out any personal email addresses to keep spambots from harvesting addresses. Also make sure that all email posts include the IP address of the post in the headers. That way we can go after the spammers with the ISP's. Make the subscription process be to reply with a string such as "add [EMAIL PROTECTED]" prior to allowing posts from that address. This would put a stop to automated postings by spammers. The extra effort will be enough to stop people being able to buy spamware that lets them post to the list. Most spammers are lazy (unethical) *&%$s. If you make it really easy to spam the list they will do so. If you use standard "best practices" in controlling posts you will put a stop to automated spam. I get approximately 750 - 1000 messages a day from various mailing lists. The only mailing list I get spam on is this one. This is also the only mailing list I am on that does not require posts via email from double-opt-in registration. And I am on a *lot* of mailing lists. - James D. Wilson, CCDA, MCP "non sunt multiplicanda entia praeter necessitatem" William of Ockham (1285-1347/49) -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Paul Borghese Sent: Sunday, July 29, 2001 6:39 AM To: [EMAIL PROTECTED] Subject: DNL Blackhole list for GroupStudy [7:14082] I would like to hear some opinions on using a DNS blackhole list such as maps, or ordb with GroupStudy.com. Good idea, bad idea? Effective? Paul Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=14106&t=14082 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: DNL Blackhole list for GroupStudy [7:14082]
Aloha Paul, The double opt-in or confirmed opt-in is where you send a subscribe message to the list, the list sends a response to the address being subscribed, and the user has to modify and reply to that message before the subscription is processed. Done properly this defeats any automated subscription mechanisms used by spam-ware. Being able to read the mail via the web is great. It is the posting from websites than can be a can of worms to manage, depending on how it is implemented. The main thing is to keep it from being something that can be scripted and abused by spam-ware in combination with auto-enrolling scripts. Spammers are by nature lazy, greedy, and unethical. They believe that whatever is the easiest and cheapest for *them* is what is ok to do. Make it hard for them to spam this site and they will move along to someone elses site which is not as well protected. Making the first post by a new user have to be approved is easy to do with Majordomo. I'm not sure what software you are using, though. An alternative would be a five-day delay of posting permissions. Since spammers tend to have their accounts terminated fairly quickly for abuse, if you require them to do a confirmed subscription and then delay them for a week from posting, the odds are that their account will have been closed down and they won't be able to post. For the 99.9% good people who subscribe, it will basically have them do what is very often recommended by listmanagers: read the list traffic for a few days before you post - get a feel for the audience and typical dialogue and what is appropriate for discussion and what will likely get you flamed. As for the various *BL type lists they have varying levels of success; the MAPS list is no longer an option for those who don't want to pay for it though, as MAPS now requires paid subscriptions. The good ones to use are the ones that block people doing direct MX posting from dialups. These are almost always someone using spamware, and more and more ISP's are actually blocking outbound port 25 from their dialup pools because of it. I'm really glad you are looking at this - of the various lists I'm on, with the exception of the few spam messages sent here yours has the highest SNR and some of the brightest minds in the industry. It does say a lot for our industry that the likes of Priscilla O, Howard B, et al freely give of their time day in and day out. (That includes the many other brilliant CCIE's and CCIE's to be as well.) - James D. Wilson, CCDA, MCP "non sunt multiplicanda entia praeter necessitatem" William of Ockham (1285-1347/49) -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Paul Borghese Sent: Sunday, July 29, 2001 9:48 PM To: [EMAIL PROTECTED] Subject: Re: DNL Blackhole list for GroupStudy [7:14082] Hey James, Those are some good idea, but they have a few problems. First, the majority of the users of this list are on a newsfeed or read through the website. These are very popular options I do not want to eliminate. The CCIELAB list does require registered users before allowing the posting. While this has eliminated spam, it has also caused about 10 legitimate messages/day to be rejected - along with the one or two spam messages. I think the solutions is approve all first-time posters. After you have posted a few messages, you will be allowed to post without approval. Of course, this will require substantial rewriting of the software. I also like the idea of hiding the e-mail address from the webfeed. I hate to do it, but it seems to be necessary. What do you mean by "double opt-in" registration? Take care, Paul Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=14327&t=14082 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
ADSL Configuration with PBI in San Jose [7:29366]
I have enhanced ADSL service with PBI here in San Jose and have purchased a 1751 with the WIC1ADSL. Do I need any information from PBI to configure ADSL support? Has any list member in the Bay Area configured ADSL with PBI? I've seen some sample configurations but do not know if they apply to PBI here... Thanks! -- James D. Wilson, CCDA, MCP Sr. Network/Security Engineer "non sunt multiplicanda entia praeter necessitatem" William of Ockham (1285-1347/49) Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=29366&t=29366 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Tunneling over Inetnet with Cisco [7:30150]
Where I work we have two circuits to the Internet with two different providers. We configure GRE tunnels to each with the endpoints being two routers at the main office with feeds from each of those two providers. We then run EIGRP across the GRE tunnels, which (1) gives us load balancing and (2) provides failover typically between 8-14 seconds when one tunnel drops due to any problems across that pathway. Our users never know when a circuit goes down or when we turn one down for maintenance. Very simple to do and simple to maintain. Slava Kosoy wrote: > > Can anyone give me a configutration examples of two tunneled over the the > Internet routers? > IP over IP tunnel that is my concern. > > Thank you. -- James D. Wilson, CCDA, MCP Sr. Network/Security Engineer "non sunt multiplicanda entia praeter necessitatem" William of Ockham (1285-1347/49) Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=30275&t=30150 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: LAN sub-interface routing [7:30225]
If you are going to a Catalyst you can set up the interface as either an 802.1Q or ISL trunk and put as many VLANs across it as you like. Instead of having to do secondary addresses you simply create subinterfaces. I did this with my 1751 at home trunking to my 2924XL using 802.1Q encapsulation (1751 doesn't support ISL) and it works like a charm. John Mairs wrote: > > Hi, > > I have a 2501 (one ethernet interface) and I wanted to > route over that interface by setting up two > sub-interfaces. I can't assign an address because it > replies with > > "configuring IP routing on a LLAN subinterface is only > allowed if that subinterface is already configured as > part of an IEEE 802.10 or ISL vLAN." > > what will I need to do (specifically if you can) to > route over a single E0 interface? > > thanks > > __ > Do You Yahoo!? > Send your FREE holiday greetings online! > http://greetings.yahoo.com -- James D. Wilson, CCDA, MCP Sr. Network/Security Engineer "non sunt multiplicanda entia praeter necessitatem" William of Ockham (1285-1347/49) Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=30278&t=30225 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: LAN sub-interface routing [7:30225]
Also using VLAN trunking you can place access lists on the various subinterfaces, as well as NAT... John Mairs wrote: > > Hi, > > I have a 2501 (one ethernet interface) and I wanted to > route over that interface by setting up two > sub-interfaces. I can't assign an address because it > replies with > > "configuring IP routing on a LLAN subinterface is only > allowed if that subinterface is already configured as > part of an IEEE 802.10 or ISL vLAN." > > what will I need to do (specifically if you can) to > route over a single E0 interface? > > thanks > > __ > Do You Yahoo!? > Send your FREE holiday greetings online! > http://greetings.yahoo.com -- James D. Wilson, CCDA, MCP Sr. Network/Security Engineer "non sunt multiplicanda entia praeter necessitatem" William of Ockham (1285-1347/49) Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=30279&t=30225 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Will One Of Your New Year's Resolutions Be To [7:30287]
This is such a good mailing list - it is a shame they won't secure it from the spammers. Its easy to do if you give up allowing open posts via non-smtp or non-member smtp sources. In the age of free email accounts anyone can get an email account and participate on mailing lists without using (ab)usenet to post. Use usenet to archive and smtp to post, but only from double-verified opt-in subscribers. Do that and the spam will disappear as spammers are not willing to take the time to individually subscribe to a mailing list before spamming it. Spammers are lazy. Oh well. Allen May wrote: > > ActuallyI think people on this list resolve to SPEND THOUSANDS ON > ROUTERS...not save pennies ;) > > BTW, Paul, I checked out the mail server & it's not relaying (in case that > was in your logs). > > Allen > > - Original Message - > From: Long Distance Savings > To: > Sent: Thursday, December 27, 2001 10:13 PM > Subject: Will One Of Your New Year's Resolutions Be To Save Money? [7:30273] > > > If you answered yes to the above question, > > we can help. > > > > PAY ONLY - 4.9 CENTS PER MINUTE! > > On All Interstate Long Distance Phone Calls. > > > > This flat rate applies anywhere in the Continental US > > Same low rates 24 hours a day, 7 days a week. > > > > No Fees In Bound 800 Numbers Available. > > Rates are the same - 4.9 CPM on interstate calls > > > > Competitive Intrastate Rates > > Low International Rates > > > > NO Sign-Up Fees > > NO Monthly Minimums > > NO Monthly Fees > > NO Long Term Contract > > All calls are billed in 6 second increments. > > > > This is NOT a dial around program, You > > dial 1+ just as with regular phone calls. > > > > On-Line Sign-Up Available. > > View billing details on-line in addition to > > standard paper statement. > > > > Pay monthly bill by check or by credit card. > > > > To view more details, including a link to > > our free secure on-line sign-up page, please > > click on the following link: > > > > http://www.accxx-telecom.net/ > > > > > > Click below to be removed: > > > > mailto:[EMAIL PROTECTED]?Subject=REMOVE -- James D. Wilson, CCDA, MCP Sr. Network/Security Engineer "non sunt multiplicanda entia praeter necessitatem" William of Ockham (1285-1347/49) Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=30287&t=30287 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: ISL Trunking [7:30728]
Go into config mode go into the vlan interface you want to be the default vlan type "manage" voila conf t int vlan 24 manage end wri mem Mark Odette II wrote: > > Let me clarify my statement: > "...Some Catalysts may just simply not allow dropping VLAN 1, as it can be > the > only Administrative Vlan." > > What I meant by this is that based on the Version of IOS/CAT OS, that it > would not accept any other VLAN as the Administrative Vlan. > > I know for a fact that you can specify other Vlans as the Administrative > Vlan on many of the CAT 5x00/6x00 switches. > I just was suggesting that stranger things could happen for the lower-end > switches that have low port density, and other types of limitations. After > all, Cisco hasn't made a considerable effort to make ALL their switches run > Native IOS or CAT OS... it's been a mix/match from all the competitors > they've acquired! :) > > Mark Odette II > ... who obviously doesn't have experience with EVERY catalyst switch on the > market, and admits it readily. > > -Original Message- > From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of > Darren Crawford > Sent: Thursday, January 03, 2002 11:32 AM > To: [EMAIL PROTECTED] > Subject: RE: ISL Trunking [7:30728] > > I must disagree with VLAN 1 being the only administrative VLAN. It is > simply the default VLAN. At a previous client I set up a DMZ switch with a > management VLAN of 999. This was on a Cat5505. > > HTH > > Darren > > At 11:28 PM 1/2/2002 -0500, Mark Odette II wrote: > >Ali- > >If my memory serves correct, you must first specify another VLAN as your > >administrative VLAN before you can drop VLAN 1 from the trunk...otherwise, > >your trunk would be orphaned (become unmanageable) and you wouldn't be able > >to control it anymore- until you cleared the config that is. > > > >Some Catalysts may just simply not allow dropping VLAN 1, as it can be the > >only Administrative Vlan. > > > >If you have a SmartNet contract, you might just call TAC to get a quick and > >straight forward answer to this. The call will probably last you 5 minutes > >+/-. > > > >-Mark Odette II > > > >-Original Message- > >From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of > >Ali, Abbas > >Sent: Wednesday, January 02, 2002 5:59 PM > >To: [EMAIL PROTECTED] > >Subject: ISL Trunking [7:30728] > > > > > >Is it possible to remove default Vlans 1, 1002-1005 from ISL trunking? I > am > >setting up a ISL trunking between Catalyst 2924 and 3640 router. > > > >I am running IOS on Catalyst XL 2924 and only want certain vlan on my link. > >IOS does it, but then it also inserts default vlan 1 and 1002-1005 > >automatically. The IOS accepts the remove command to remove vlans from the > >current list, but will not remove default vlans. > > > >Ali > x$:0`0:$xx$:0`0:$xx$:0`0:$xx$: > > Lucent Technologies > NetworkCare Professional Services > http//www.lucent.com/netcare/ > Darren S. Crawford - CCNP, CCDP, CCIE TBA > > Northwest Region - Sacramento Office > Voicemail (916) 859-5200 x310 > Pager (800) 467-1467 > mailto:[EMAIL PROTECTED] > > x$:0`0:$xx$:0`0:$xx$:0`0:$xx$: > > "You always have time for things you put first" - Tucker Resources -- James D. Wilson, CCDA, MCP Sr. Network/Security Engineer "non sunt multiplicanda entia praeter necessitatem" William of Ockham (1285-1347/49) Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=30882&t=30728 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Incredible Information [7:32934]
Until the list is locked down you will continue to get spammed. -- James D. Wilson, CCDA, MCP Sr. Network/Security Engineer "non sunt multiplicanda entia praeter necessitatem" William of Ockham (1285-1347/49) -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of William Gragido Sent: Wednesday, January 23, 2002 7:11 AM To: [EMAIL PROTECTED] Subject: RE: Incredible Information [7:32934] What the hell? -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of [EMAIL PROTECTED] Sent: Wednesday, January 23, 2002 8:39 AM To: [EMAIL PROTECTED] Subject: Incredible Information [7:32934] How much does a romantic marriage proposal cost? Well, a lot less that you think. Most guys actually ruin the day by spending too much. Find out the secrets the jewelry, candy and flower stores don't want you to know. http://hop.clickbank.net/hop.cgi?helloworld/proposals Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=33047&t=32934 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: NEW Posting procedures - Please read [7:33066]
Hear Hear - good job! -- James D. Wilson, CCDA, MCP Sr. Network/Security Engineer "non sunt multiplicanda entia praeter necessitatem" William of Ockham (1285-1347/49) -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of George Dodds Sent: Friday, January 25, 2002 3:18 AM To: [EMAIL PROTECTED] Subject: Re: NEW Posting procedures - Please read [7:33066] Good idea, keep up the good work Paul. Cheers George --- Paul Borghese wrote: > Due to the recent concern with SPAM I have changed > the posting procedures > for this group. If you post from the Discussion > Board on > www.groupstudy.com, this will not effect you. Those > who post from the > Newsfeed or Mailing list must first be authenticated > before the post will be > allowed. > > When you post a message to the list, you will > receive an authentication > message. You simply need to return that > authentication message back to the > list by hitting reply. When the server receives > your authentication > message, your original posting will be sent. You > only need to do this once. > Future postings will be allowed without > authentication. > > If you are using an invalid e-mail address, you will > no longer be able to > post via the Newsfeed or Mailing List. You may > still post from the > discussion board. > > This should reduce/eliminate the generic SPAM that > has started to appear on > this list. > > Please send me any comments or bug reports. > > Paul Borghese [EMAIL PROTECTED] = George Dodds CCNA, MCP __ Do You Yahoo!? Everything you'll ever need on one web page from News and Sport to Email and Music Charts http://uk.my.yahoo.com Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=33268&t=33066 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE:
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Both of you please stop sending rich text or html messages to the list. - - James D. Wilson, CCDA, MCP "non sunt multiplicanda entia praeter necessitatem" William of Ockham (1285-1347/49) - -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of McCallum, Robert Sent: Tuesday, August 22, 2000 7:47 AM To: 'Mike Sholar'; Group Stuyd Subject: RE: Mike, Firstly please use a subject heading in future when posting your messages. You will get a better response.!! For the answer to your question I'm afraid it depends. How confident are you on the subjects listed in the CCO required for the CCNA. If your confident then go for it, if not in certain areas then post another question with the doubtful areas you have. - -Original Message- From: Mike Sholar [mailto:[EMAIL PROTECTED]] Sent: 22 August 2000 15:02 To: Group Stuyd Subject: Hi. A quick question, I have recently started working on my CCNA, and purchased Todd Lammle's Cisco Certified Network Associate Study Guide and have been reading and using the simulated lab, for several weeks. My question: Should I invest in more hardware/software/books to properly train for the CCNA test, or is what I have appropriate? I appreciate any help given. Mike MCSE, MCP+I -BEGIN PGP SIGNATURE- Version: PGP 6.0.2 Comment: I live for the sound ... of nothing but net iQA/AwUBOaPQPyavYwibXjmcEQKKiwCfV5LdEoNbAJVKCYdxJ3s786/cpn4AnRbu WQZ5POKyBjngSAydEnkAVzNv =rleX -END PGP SIGNATURE- ___ UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html FAQ, list archives, and subscription info: http://www.groupstudy.com Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: You have received a George W. Bush Ecard from Matt Lange
Your spam has been reported to Hotmail. Go spam somewhere else from another Internet account, as this one should be toast very soon. - James D. Wilson, CCDA, MCP "non sunt multiplicanda entia praeter necessitatem" William of Ockham (1285-1347/49) -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of [EMAIL PROTECTED] Sent: Monday, September 11, 2000 3:37 PM To: [EMAIL PROTECTED] Subject: You have received a George W. Bush Ecard from Matt Lange [EMAIL PROTECTED], you have received a eCard from Matt Lange at e-mail address [EMAIL PROTECTED] To pick up your virtual postcard, go to the George W. Bush website at: http://www.georgewbush.com/getpostcard.asp Copy and paste the following postcard number: 320232569 **NOTE: New CCNA/CCDA List has been formed. For more information go to http://www.groupstudy.com/list/Associates.html _ UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html FAQ, list archives, and subscription info: http://www.groupstudy.com Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] **NOTE: New CCNA/CCDA List has been formed. For more information go to http://www.groupstudy.com/list/Associates.html _ UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html FAQ, list archives, and subscription info: http://www.groupstudy.com Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: VirtualCircuit.com site and domain for sale 2k
*@ spammers - and using RTF mail at that. Please TERMINATE their access to this list (and with their Internet provider for that matter.) - James D. Wilson, CCDA, MCP "non sunt multiplicanda entia praeter necessitatem" William of Ockham (1285-1347/49) -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Bessette, Jesse Sent: Monday, September 11, 2000 7:37 AM To: '[EMAIL PROTECTED]' Subject: VirtualCircuit.com site and domain for sale 2k VirtualCircuit.com site and domain for sale 2k was appraised as high as $80,000.the link for the appraisle is listed below.. This is a great name., tell someone...Sorry about the Spam http://www.afternic.com/index.cfm?a=research&sa=listing&listID=974487 Jesse Bessette PC Architecture MCP, TCP/IP Administator 303-689-6931 Http://www.virtualcircuit.com **NOTE: New CCNA/CCDA List has been formed. For more information go to http://www.groupstudy.com/list/Associates.html _ UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html FAQ, list archives, and subscription info: http://www.groupstudy.com Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Free Book: CCN
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 The difference for me was when I did the flash I didn't get the offer but when I did the html version and paged through it I did... - - James D. Wilson, CCDA, MCP "non sunt multiplicanda entia praeter necessitatem" William of Ockham (1285-1347/49) - -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Patterson Derek Contr 76CS/SCBL Sent: Monday, May 22, 2000 10:32 AM To: [EMAIL PROTECTED] Subject: FW: Free Book: CCN > this one works, at the end of the show you can register for a free book > > -Original Message- > From: Makarand Yerawadekar [SMTP:[EMAIL PROTECTED]] > Sent: 22 May, 2000 2:33 AM > Cc: [EMAIL PROTECTED] > Subject: Re: Free Book: CCN > > Guys, > > I just tried it and I could reach the page where one has to register for > Free Book. > > http://www.cisco.com/offer/content/etour/L313-166XC/ > > Well best Luck this time > > > Deepak Sharma wrote: > > > me too..its was really annoying! > > > > "Taylor, Don" wrote: > > > > > I give up. I took the e-tour twice, HTML & Flash, and never was asked > to > > > register, nor was a book mentioned. =( > > > > > > -Original Message- > > > From: Makarand Yerawadekar [mailto:[EMAIL PROTECTED]] > > > Sent: Friday, May 19, 2000 6:45 AM > > > To: JoeFerg > > > Cc: [EMAIL PROTECTED] > > > Subject: Re: Free Book: CCN > > > > > > Go thru the e-tour, after that you will be asked to register to > receive the > > > book > > > > > > Enjoy!! > > > > > > JoeFerg wrote: > > > > > > > sorry, i don't see a book here > > > > > > > > -Joe- > > > > > > > > Makarand Yerawadekar <[EMAIL PROTECTED]> wrote in message > > > > 4348219.958718031989.JavaMail.ymakarand@gomailjtp00">news:4348219.958718031989.JavaMail.ymakarand@gomailjtp00... > > > > > Dear Gang, > > > > > > > > > > Please check the URL -- > > > > > > > > > > > > > > > > > > http://www.cisco.com/offer/content/etour/1269_core_html/1269_portal_hom e.h > tm > > > > l > > > > > > > > > > Please watch the line wrap. > > > > > > > > > > > > > > > > > > > > ___ > > > > > GO Network Mail > > > > > Get Your Free, Private E-mail at http://mail.go.com > > > > > > > > > > > > > > > ___ > > > > > UPDATED Posting Guidelines: > http://www.groupstudy.com/list/guide.html > > > > > FAQ, list archives, and subscription info: > http://www.groupstudy.com > > > > > Report misconduct and Nondisclosure violations to > [EMAIL PROTECTED] > > > > > --- > > > > > > > > ___ > > > > UPDATED Posting Guidelines: > http://www.groupstudy.com/list/guide.html > > > > FAQ, list archives, and subscription info: http://www.groupstudy.com > > > > Report misconduct and Nondisclosure violations to > [EMAIL PROTECTED] > > > > > > ___ > > > UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html > > > FAQ, list archives, and subscription info: http://www.groupstudy.com > > > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] > > > > *** *** > *** > > > The information in this email is confidential and may be legally > privileged. > > > It is intended solely for the addressee. Access to this email by > anyone else > > > is unauthorized. > > > > > > If you are not the intended recipient, any disclosure, copying, > distribution > > > or any action taken or omitted to be taken in reliance on it, is > prohibited > > > and may be unlawful. When addressed to our clients any opinions or > advice > > > contained in this email are subject to the terms and conditions > expressed in > > > the governing KPMG client engagement letter. > > > > *** *** > *** > > > > > > ___ > > > UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html > > > FAQ, list archives, and subscription info: http://www.groupstudy.com > > > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] > > > > -- > > ___ > UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html > FAQ, list archives, and subscription info: http://www.groupstudy.com > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] ___ UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html FAQ, list archives, and subscription info: http://www.groupstudy.com Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] -BEGIN PGP SIGNATURE- Version: PGP 6.0.2 Comment: I live for the sound ... of nothing but net iQA/AwUBOSvg9yavYwibXjmcEQLeKACfXBK8KjUqr15yGYKOLFclxXvFUZkAoK13 8fg6MPbK6U2CZYdY/hyzpNsV =nOkT -END PGP SIGNATURE- ___ UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.h
RE: Bandwith Tool or Software
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 MRTG is an open-source PERL-based tool that can poll and present graphical representations of any numeric SNMP value. - - James D. Wilson, CCDA, MCP "non sunt multiplicanda entia praeter necessitatem" William of Ockham (1285-1347/49) - -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Stull, Cory Sent: Wednesday, May 24, 2000 9:22 AM To: Bond Jeffrey MSgt 93 CSS/SCON Cc: [EMAIL PROTECTED] Subject: RE: Bandwith Tool or Software This one is kind of cheezy but here ya go... Also another good free tool is called MRTG but I don't think that test bandwidth to the internet like this link... -BEGIN PGP SIGNATURE- Version: PGP 6.0.2 Comment: I live for the sound ... of nothing but net iQA/AwUBOS0x0SavYwibXjmcEQL6FwCfWpMMGY5HHVFhxRDnVKvOCdrcMUwAoPN4 qRqQnnSp1e/aoag8xdfHuc6n =gL0T -END PGP SIGNATURE- ___ UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html FAQ, list archives, and subscription info: http://www.groupstudy.com Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Freeware for router management?
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 And implementing MRTG on Intel or *nix is a breeze. You can graph any SNMP OID that is numeric. On NT, if you use Perf2MIB you can graph anything Performance Monitor can get. - - James D. Wilson, CCDA, MCP "non sunt multiplicanda entia praeter necessitatem" William of Ockham (1285-1347/49) - -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Blake Traister Sent: Thursday, May 25, 2000 5:26 PM To: [EMAIL PROTECTED] Subject: Re: Freeware for router management? I agree with Joefor a c note, you get a decent little doo-dad that you can enumerate your important net gear onto. You can even configure notifications, etc. If you want FREE, I suggest getting mrtg. This thing rips, in fact I know 2 major hosting facilities that set up little mrtg sites for their customers. The most valuable information is something thats easy for the dummies in suits to read...and mrtg gives that to s...its free free free... MRTG: Multi Router Traffic Grapher - http://ee-staff.ethz.ch/~oetiker You have to use snmp for it to work...but I monitor 12 routers and 100 switch ports over 2 switches with this thing. Joe Martin wrote: > Whatsup is a great piece of software. Whatsup Gold is what you get when you > order the NT version of Cisco Works for NT. It used to be Castle Rock SNMPD > > Standard whatsup is $99. Free 30 day eval at > http://www.ipswitch.com/products/WhatsUp/whatsup.html > > JOE > CCNP, CCDP, and a few other things... > CCIE Lab - May 27/28 > > "Paulo Roque" <[EMAIL PROTECTED]> wrote in message > [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > > > > > > Hi, > > > > I am looking for freeware (or shareware) for simple router management. > > I need a simple software for windows that give me information about > > interface status (only up or down) using a GUI to be used by "operators > > staff". > > Does anybody know one? > > > > > > -- > > [EMAIL PROTECTED] > > Engenheiro de Redes. > > CREA/MG 66089/D > > ICQ# 6372 3382 > > > > ___ > > UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html > > FAQ, list archives, and subscription info: http://www.groupstudy.com > > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] > > --- > > ___ > UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html > FAQ, list archives, and subscription info: http://www.groupstudy.com > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] > --- ___ UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html FAQ, list archives, and subscription info: http://www.groupstudy.com Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] -BEGIN PGP SIGNATURE- Version: PGP 6.0.2 Comment: I live for the sound ... of nothing but net iQA/AwUBOS6DmSavYwibXjmcEQLWZQCg2a3gEHEvVVoajHp897yoaiVFmukAn2ky B2xcocCYS81SaQtsfOGOsswD =oodd -END PGP SIGNATURE- ___ UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html FAQ, list archives, and subscription info: http://www.groupstudy.com Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: FREE CCN BOOK - YES !!!!!!!!!!!!!!!!!!
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 What is the URL for the tour? - - James D. Wilson, CCDA, MCP "non sunt multiplicanda entia praeter necessitatem" William of Ockham (1285-1347/49) - -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Apoorva S.Malavia Sent: Monday, June 05, 2000 8:11 PM To: [EMAIL PROTECTED] Subject: Re: FREE CCN BOOK - YES !! didn't work. Larry Osei-Kwaku wrote: OK folks this link should take you right to the forms if you don't want to take the tour.. Please watch the word wrap. Highlight both lines and copy and paste in your browser. Larry http://www.cisco.com/pcgi-bin/lm/show_form.pl?95899398230688476562580538 &TEST-166XC __ Do You Yahoo!? Send instant messages & get email alerts with Yahoo! Messenger. http://im.yahoo.com/ ___ UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html FAQ, list archives, and subscription info: http://www.groupstudy.com Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] - --- -BEGIN PGP SIGNATURE- Version: PGP 6.0.2 Comment: I live for the sound ... of nothing but net iQA/AwUBOT+v6SavYwibXjmcEQJ9qACcDN3bStCv1QZr7Vbb4OSeKMKL3DUAoIvR ck63y2T0+3Z4d5S9Jk9xfxU/ =RROr -END PGP SIGNATURE- ___ UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html FAQ, list archives, and subscription info: http://www.groupstudy.com Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Free Cisco IOS Software Folio Available
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 What is the code at the bottom of your email or flier? - - James D. Wilson, CCDA, MCP "non sunt multiplicanda entia praeter necessitatem" William of Ockham (1285-1347/49) - -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Salata, Stephen Sent: Friday, June 09, 2000 5:39 AM To: '[EMAIL PROTECTED]' Subject: Free Cisco IOS Software Folio Available http://www.cisco.com/pcgi-bin/lm/buffer/offer/networkagility/1276_landin g/L3 19-166XV ___ UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html FAQ, list archives, and subscription info: http://www.groupstudy.com Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] -BEGIN PGP SIGNATURE- Version: PGP 6.0.2 Comment: I live for the sound ... of nothing but net iQA/AwUBOUEBlyavYwibXjmcEQK9YACeMOgKDHUoqJRB6FZvcq73o9BbT9wAn1gl OOiU7nN2pPPD6pf9PQ3fRa0D =fxNV -END PGP SIGNATURE- ___ UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html FAQ, list archives, and subscription info: http://www.groupstudy.com Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: free apache security guide
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 That one is a reworked Veri$ign commercial ad with a Thawte (who used to give out free certificates so Veri$ign bought them to kill the competition and the only good source of free certificates with pre-programmed support in the browsers.) Veri$ign still spams these ads periodically since they partnered with NetSol. All it tells you is how to do a SSL certificate, not how to tighten security on Apache e.g. directory permissions, user to run httpd as, etc. (Not to criticize Deepak, just Veri$ign/Thawte.) - - James D. Wilson, CCDA, MCP "non sunt multiplicanda entia praeter necessitatem" William of Ockham (1285-1347/49) - -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Deepak Sharma Sent: Wednesday, June 14, 2000 1:44 PM To: cisco Subject: free apache security guide very useful.. http://www.thawte.com/ucgi/gothawte.cgi?a=e058209850018000 -BEGIN PGP SIGNATURE- Version: PGP 6.0.2 Comment: I live for the sound ... of nothing but net iQA/AwUBOUhFASavYwibXjmcEQKImQCdGFH17TKP3AnJ2NwXrfCljyPZTyAAoLcw sq/Y1Z7fc+AYAI+koVqdBtZ1 =XKHc -END PGP SIGNATURE- ___ UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html FAQ, list archives, and subscription info: http://www.groupstudy.com Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: netbios over internet [7:40784]
All you have to do to do NetBIOS over the internet is either use WINS or reference the share by IP address, assuming you are using either NT or Win2K. For instance, from a command prompt: net use X: \\123.123.123.123\C$ /user:ntdomain\ntusername Thththththats all folks. God knows why you would ever want to do anything as risky as that though :-) -- James D. Wilson, CCDA, MCP Sr. Network/Security Engineer "non sunt multiplicanda entia praeter necessitatem" William of Ockham (1285-1347/49) -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of cage Sent: Sunday, April 07, 2002 8:15 PM To: [EMAIL PROTECTED] Subject: netbios over internet [7:40784] how can I make the netbios over Internet except the dlsw+ ? Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=40881&t=40784 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: netbios over internet [7:40784]
I disagree that most ISP's block the following: tcp or udp 135 (mapping) tcp or udp 137 (NetBIOS Name Service) udp 138 (NetBIOS datagrams - the actual data) tcp 139 (NetBIOS Session) Any more than they block the rest of it. If they did, for one thing, your firewalls wouldn't be blocking this stuff every minute as the script kiddies aim their pre-written tools at massive netblocks. Furthermore they would have to state this in their service agreements. I can tell you for a fact that Sprint, XO, New Edge (who bought @Work), MCI/UUNET, PSI, QWEST, and AT&T (not including the cable modem market - that is another story) do not block this traffic from/to customer networks. Cable providers do have a nasty habit of blocking udp 500 (isakmp) but that is for financial reasons (they want you to pay for "business class" service if you use a VPN.) That doesn't mean that they don't block it (NetBIOS) from their own servers, as most sane people would/should/do - but if they blocked their customers, however foolish, from doing this they would be violating service agreements. -- James D. Wilson, CCDA, MCP Sr. Network/Security Engineer "non sunt multiplicanda entia praeter necessitatem" William of Ockham (1285-1347/49) -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Logan, Harold Sent: Monday, April 08, 2002 10:02 AM To: [EMAIL PROTECTED] Subject: RE: netbios over internet [7:40784] The biggest obstacle is the fact that most ISP's filter NBT traffic. It works just fine over a VPN connection, as the ISP doesn't see the NBT packets; they see VPN traffic. Basically all you have to do is get around an access list blocking ports 137, 138, and 139. -Original Message- From: Kim Edward B [mailto:[EMAIL PROTECTED]] Sent: Mon 4/8/2002 11:45 AM To: [EMAIL PROTECTED] Cc: Subject: RE: netbios over internet [7:40784] I don't think it can. As far as I know, it can do IP/IPX/DecNet/AppleTalk/Vines/CLNS. NetBios over TCP/IP will work with GRE but not straight NetBios or SNA. If GRE works with NetBios or SNA, it will be cool. I think that is why we use DLSW with NetBios and SNA connection. Ed -Original Message- From: Jay [mailto:[EMAIL PROTECTED]] Sent: Monday, April 08, 2002 10:44 AM To: [EMAIL PROTECTED] Subject: Re: netbios over internet [7:40784] Is it possible to send nonroutable traffic through a GRE Tunnel? On Mon, 2002-04-08 at 10:12, Engelhard M. Labiro wrote: > How about NetBIOS over TCP/IP (NBT) and encapsulate > it with IPSec. Another idea is using a GRE tunnel to > pass the NetBIOS to the next hop. > > > > I don't think you can, besides bridging on every internet hop. > > > > On Sun, 2002-04-07 at 23:14, cage wrote: > > > how can I make the netbios over Internet except the dlsw+ ? * DISCLAIMER: The information contained in this e-mail may be confidential and is intended solely for the use of the named addressee. Access, copying or re-use of the e-mail or any information contained therein by any other person is not authorized. If you are not the intended recipient please notify us immediately by returning the e-mail to the originator. Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=40888&t=40784 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: OT: The most powerful Unix command EVER!!! (3rd trail!!!) [7:22177]
I saw this as chmod +x /bin/laden also. The +x means to make it executable. I concur. "Albert Y. Pak" wrote: > > I would do: > chmod a +x /bin/laden > Hehe! > Albert > > -Original Message- > From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of > Andy Hoang > Sent: Wednesday, October 03, 2001 2:19 PM > To: [EMAIL PROTECTED] > Subject: RE: OT: The most powerful Unix command EVER!!! (3rd trail!!!) > [7:21898] > > I thought the most powerful Unix command is "kill -9 /bin/laden" > > -Original Message- > From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of > Leigh Anne Chisholm > Sent: Wednesday, October 03, 2001 10:41 AM > To: [EMAIL PROTECTED] > Subject: RE: OT: The most powerful Unix command EVER!!! (3rd trail!!!) > [7:21882] > > -r is a 'recursive' flag (remove the contents of the directory recursively). > > -f is a 'force flag' (ignore non-existant files, never prompt). > > And for those that don't know, "rm" is used to remove files or directories. > "/bin" is a common directory where binaries are kept... > > -- Leigh Anne > > PS. I like it! > > > -Original Message- > > From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of > > Priscilla Oppenheimer > > Sent: Wednesday, October 03, 2001 11:27 AM > > To: [EMAIL PROTECTED] > > Subject: Re: OT: The most powerful Unix command EVER!!! (3rd trail!!!) > > [7:21880] > > > > > > Hee hee. That's very funny. I'm going to ask a dumb question > > though. I know > > what rm does. What does rm -rf do? > > > > Often e-mails to the group with URLs in them get filtered. I'm not sure > > why. It happens especially with short e-mails when the URL is > > near the top. > > You just have to be patient and persistent. > > > > Priscilla > > > > At 11:14 PM 10/2/01, Albert Y. Pak wrote: > > >Hi guys, > > >I am having problems send this link out earlier... Sorry about > > that. Don't > > >know who I should talk to about this. This happened to me a few > > times just > > >to send out the email to this group. :-/ > > > > > >One last try! > > >http://www.thinkgeek.com/stuff/apparel/57b2.shtml > > > > > >Albert > > > > > > Priscilla Oppenheimer > > http://www.priscilla.com > _ > Do You Yahoo!? > Get your free @yahoo.com address at http://mail.yahoo.com Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=22177&t=22177 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Cisco equipment available at good prices [7:23574]
Michael - please send me the list of prices... Michael Paulson wrote: > > I am a network consultant working with a large financial firm. They > just foreclosed on a Web hosting facility. The facility had quite a bit > of Cisco gear. Most of the gear is between 6 and 12 months old. It is > available at really good prices. I thought some people in this group > may be interested. > > I have Summarized the Gear below. > If anyone is interested just email me and I will send details and > pricing. > > Mike Paulson > Network Engineer > Infrastructure Design Systems LLP > [EMAIL PROTECTED] > > Quantity > 32620 routers, > 1 3640 routers > 3 7206 VXR routers > 12924 switch > 223548 switches > 1 2948G switch > 106509 switches with many cards > 400 Short haul GBICs > a few long haul GBICs > > Content Switch servers. > CSS-11154-AC > CSS-11801-AC > > [GroupStudy.com removed an attachment of type text/x-vcard which had a name > of michael.paulson.vcf] -- James D. Wilson, CCDA, MCP Sr. Network/Security Engineer "non sunt multiplicanda entia praeter necessitatem" William of Ockham (1285-1347/49) Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=23730&t=23574 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
* Routing/Subnetting question [7:51193]
I have a 1750 with a /29 assigned to me, and I need to create a DMZ to put a DNS server on so that I can control access using CBAC. My FastEthernet interface is trunked to a Cat 2924. I'd like to have the /29 on one subinterface which talks to PacBell's router, and take a /30 out of the /29 and put it on another subinterface so that I can hang the DNS server off a port on that VLAN using a public IP address. I'd also like to use static NAT addresses out of the /29 including what would be an all zero or all one address out of the /30. My thought is that this would work since the NAT will take place via the subinterface on the /29 (ip nat outside), and the only time the /30 will come into play is with traffic destined to the DNS server, which is not NAT'ed. This would allow me to have routing and CBAC protection for the host on the /30 net and not lose the ability to use those addresses which would normally be lost from the /30 all zeros and all ones addresses by using them for static NAT entries for hosts on the private IP side of my network. When I go to assign an address out of the /30 to the subinterface facing the DMZ I get a message stating that the addresses overlap the other interface. Will this still work the way I believe it will? Would it make a difference if I use my currently shut down Eth0/0 interface instead of the trunked Fa0/0? Thanks for your time/help! -- James D. Wilson, CCDA, MCP Sr. Network/Security Engineer "non sunt multiplicanda entia praeter necessitatem" William of Ockham (1285-1347/49) [GroupStudy.com removed an attachment of type application/x-pkcs7-signature which had a name of smime.p7s] Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=51193&t=51193 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: * Routing/Subnetting question [7:51193]
Nigel, The router itself calls the 100M interface fastethernet0/0, which is why I referred to it as such, and the trunking was because I am running lab configurations with more than two subnets on the private side and I need to be able to route between them as well as filter between them for security. The ISP is PacBell and for enhanced DSL they only give you a /29, and they take one of the addresses for their side of the connection. The reason I am leaving a host with a public address in the DMZ is because it is a DNS server, and there are issues with BIND and Solaris when the DNS server does not use the same IP address and name as that which is listed as authoritive for the domain (i.e. the domain server knows itself as on 10.50.0.65 in /etc/hosts but has the address 216.103.77.99 as its address within its zone.) If I want to protect that host with CBAC, I need to put the router between it and the ISP. Remember that the traffic is coming from the ISP via a DSL MODEM 10 M ethernet connection and not a WAN connection to the router. The addresses which would be valid in the /29 but not in the /30 would only be referenced as static NAT entries which would be translated on the interface with the /29 which is facing the ISP. Once the traffic for that address enters the Fa0/0 it would be translated to an RFC1918 address and sent out to the host on the 10. net, so the host would not know it is being referenced by the public address. I realize that this is not a standard type configuration for this, but PacBell will only give me a /29, and I'm trying to find a way to meet BIND's requirements for the DNS server and have the server protected by CBAC plus have other public IP addresses for static NAT entries for other servers on my net (I've got a number of different servers on my net and want to have public address to different services i.e. web server, mail server, application servers. Thanks! -- James D. Wilson, CCDA, MCP Sr. Network/Security Engineer "non sunt multiplicanda entia praeter necessitatem" William of Ockham (1285-1347/49) -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Nigel Taylor Sent: Sunday, August 11, 2002 11:51 AM To: [EMAIL PROTECTED] Subject: Re: * Routing/Subnetting question [7:51193] James, See Inline.. - Original Message - From: "James Wilson" To: Sent: Sunday, August 11, 2002 12:34 PM Subject: * Routing/Subnetting question [7:51193] > I have a 1750 with a /29 assigned to me, and I need to create a DMZ to put > a DNS server on so that I can control access using CBAC. My FastEthernet > interface is trunked to a Cat 2924. I'd like to have the /29 on one > subinterface which talks to PacBell's router, and take a /30 out of the > /29 and put it on another subinterface so that I can hang the DNS server > off a port on that VLAN using a public IP address. NT: Why would you vlan traffic from you ISP instead of using the extra interface(eth0/0) You must consider a number of things when using your existing design. Firstly, the interface you're referring to as a FE interface is shown in the cisco catalog as a 10/100 ethernet interface. Secondly, please note that based on your current traffic utilization what kind of performance could be achieved/expected on the physical interface(the subs are technically part of the same physical NIC/transiciever). On the area of addressing you might want to take a look at the following links which could answer some of your questions as they apply to addressing(VLSM in particular). http://www.3com.com/other/pdfs/infra/corpinfo/en_US/501302.pdf (watch the wrap) http://www.ietf.org/rfc/rfc3021.txt?number=3021 >I'd also like to use > static NAT addresses out of the /29 including what would be an all zero or > all one address out of the /30. My thought is that this would work since > the NAT will take place via the subinterface on the /29 (ip nat outside), > and the only time the /30 will come into play is with traffic destined to > the DNS server, which is not NAT'ed. This would allow me to have routing > and CBAC protection for the host on the /30 net and not lose the ability > to use those addresses which would normally be lost from the /30 all zeros > and all ones addresses by using them for static NAT entries for hosts on > the private IP side of my network. When I go to assign an address out of > the /30 to the subinterface facing the DMZ I get a message stating that > the addresses overlap the other interface. Will this still work the way I > believe it will? Would it make a difference if I use my currently shut > down Eth0/0 interface instead of the trunked Fa0/0? IMHO, based on what you're trying to accomplish here's my recomendations... 1. Depending on the type of connection you make to your provider(10MB or 100MB) I would configure the