RE: More about Linux VS. Cisco [7:66811]
I agree also that the best mix to have is definitly Cisco expertise and Linux/Unix expertise ebcuase they realy go hand in hand in an enterprise environment. I know yahoo runs their e-mail on sendmail servers so unix and linux is very widly used. In some cases it's much easier then microsoft too becuase your dealing with 1 to 2 files at the most with several programs. Sendmail is one file, Bind is about 3 files. Apache is one files you have to modify. I'am studying for my CCNP along side learning solaris 8 and redhat. I use minicom in redhat to console to my routers. See yah hyper terminal. Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=66860&t=66811 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: route-maps from one neighbor [7:66371]
what i was going for was to simulate an isp . so i was trying to inject more as's into the path Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=66594&t=66371 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
BGP can't find origin [7:66571]
when you see this message does this mean there is a router loop or that BGP just can't find the origin? Is this command going to affect routing in anyway? Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=66571&t=66571 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
route-maps from one neighbor [7:66371]
I have a question about route maps. For example i'am peering between two different AS. On the left there is AS 200 and on the right AS 1. AS 200 is sending a bunch of EBGP routes to AS 1. Two routes for example 192.168.1.0 and 192.168.2.0 are coming into AS 1 and the edge router wants to prepend AS 400 to 192.168.1.0 and prepend AS 500 to 192.168.2.0. Now I set up the route maps correctly but your only allowed to apply one route-map statement per neighbor in BGP. Then if you set two permit instances in the one route-map it will match the first and prepend 192.168.1.0 with 400 but then it stops and does not prepend the 500 to 192.168.2.0. Why is that and how can this be done? Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=66371&t=66371 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: tftp to flash timeout [7:64226]
whoopppsss Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=64238&t=64226 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: tftp to flash timeout [7:64226]
actually i don't think i have enough ram Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=64231&t=64226 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
tftp to flash timeout [7:64226]
Copyright (c) 1986-1995 by cisco Systems, Inc. Compiled Wed 01-Nov-95 15:04 by vatran Image text-base: 0x600087E0, data-base: 0x60248000 ROM: System Bootstrap, Version 5.2(7b) [mkamson 7b], RELEASE SOFTWARE (fc1) Router uptime is 33 minutes System restarted by power-on Running default software cisco 4500 (R4K) processor (revision B) with 32768K/8192K bytes of memory. Processor board serial number 04058420 R4600 processor, Implementation 33, Revision 1.0 G.703/E1 software, Version 1.0. X.25 software, Version 2.0, NET2, BFE and GOSIP compliant. 2 Ethernet/IEEE 802.3 interfaces. 4 Serial network interfaces. 128K bytes of non-volatile configuration memory. 4096K bytes of processor board System flash (Read/Write) 4096K bytes of processor board Boot flash (Read/Write) Configuration register is 0x2102 Router(boot)# Here is my 4500M. I'am trying to tftp into flash the new 12.2 c2500-ik8s-l.122-6-ipplussec IOS. however it is failing in the transfer becuase the router timesout. This is becuase of the 16mb limit correct? what do i have to upgrade for the router to stop timing out? Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=64226&t=64226 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
ISIS problem in 12.2?? [7:63824]
why can't i use the router isis command in 12.2? it won't let me into the ISIS sub menu. In 12.1 I can get in just fine. whats up? Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=63824&t=63824 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
new access list problem [7:63715]
Hello i networks 192.17.73.0 - 192.17.77.0 is there anyway to deny these networks with one entry in an access list? such as deny 192.17.73.0 0.0.248.255? is this going to deny these networks? it's also going to black hole several other networks though. Or does the list have to be deny 192.17.73.0 0.0.7.255 ? i thought zeros must match and ones we don't care. Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=63715&t=63715 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Access List help!! [7:63644]
it worked!! thanks!Jason Steig wrote: > > so your saying that my statement > ip access-list 1 permit ip 192.17.73.0 0.191.251.0 will permit > all hosts from network 192.17.73.0 and 192.81.73.0?? > > 17 is 00010001 > 81 is 01010001 > > so the bit it doesn't match on is the 64 bit. so i just have > to switch it around if your saying the ones don't count > > so it would be 0.191.251.0 ?? > > becuase if the zeros must match and ones don't count then that > would be it then?? > > or is is 0.192.252.255 becuase the last octet is 255 so it > allows all hosts? Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=63676&t=63644 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Access List help!! [7:63644]
so your saying that my statement ip access-list 1 permit ip 192.17.73.0 0.191.251.0 will permit all hosts from network 192.17.73.0 and 192.81.73.0?? 17 is 00010001 81 is 01010001 so the bit it doesn't match on is the 64 bit. so i just have to switch it around if your saying the ones don't count so it would be 0.191.251.0 ?? becuase if the zeros must match and ones don't count then that would be it then?? or is is 0.192.252.255 becuase the last octet is 255 so it allows all hosts? Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=63674&t=63644 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Access List help!! [7:63644]
Hello all. I'am stumped on an access-list that i need to create. What i did was i set up two routers using rip and put loopbacks on one of them and advertised them in rip. I then attempted to build an access-list allowing just these networks to pass into the other router. The router with the loopbacks is A the destination is B. so I know this will be a standard access list (direction in) on router B's interface to router A. The requirements are allow any packet originating from 192.17.77.0 /24 allow any packet originating from 192.17.73.0 /24 allow any packet originating from 192.81.77.0 /24 allow any packet originating from 192.81.73.0 /24 allow any packet originating from 176.17.77.0 /24 allow any packet originating from 176.17.73.0 /24 allow any packet originating from 176.81.77.0 /24 allow any packet originating from 176.81.73.0 /24 Hers what i think i can do with the 182 address i can do permit ip 192.17.73.0 0.64.4.0 because the 64 will increase the second octet to 81 then the 4 in the third bit will increase the network to 77. Is this how i would impliment this filtering policy in just two statements? The same way with the 176 networks? Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=63644&t=63644 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
access-lists [7:63520]
Hello all. I'am stumped on an access-list that i need to create. What i did was i set up two routers using rip and put loopbacks on one of them and advertised them in rip. I then attempted to build an access-list allowing just these networks to pass into the other router. The router with the loopbacks is A the destination is B. so I know this will be a standard access list (direction in) on router B's interface to router A. The requirements are allow any packet originating from 192.17.77.0 /24 allow any packet originating from 192.17.73.0 /24 allow any packet originating from 192.81.77.0 /24 allow any packet originating from 192.81.73.0 /24 allow any packet originating from 176.17.77.0 /24 allow any packet originating from 176.17.73.0 /24 allow any packet originating from 176.81.77.0 /24 allow any packet originating from 176.81.73.0 /24 Hers what i think i can do with the 182 address i can do permit ip 192.17.73.0 0.64.4.0 because the 64 will increase the second octet to 81 then the 4 in the third bit will increase the network to 77. Is this how i would impliment this filtering policy in just two statements? The same way with the 176 networks? Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=63520&t=63520 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Access-List questions [7:63399]
Hello all. I'am stumped on an access-list that i need to create. What i did was i set up two routers using rip and put loopbacks on one of them and advertised them in rip. I then attempted to build an access-list allowing just these networks to pass into the other router. The router with the loopbacks is A the destination is B. so I know this will be a standard access list (direction in) on router B's interface to router A. The requirements are allow any packet originating from 182.17.77.0 /24 allow any packet originating from 182.17.73.0 /24 allow any packet originating from 182.81.77.0 /24 allow any packet originating from 182.81.73.0 /24 allow any packet originating from 190.17.77.0 /24 allow any packet originating from 190.17.73.0 /24 allow any packet originating from 190.81.77.0 /24 allow any packet originating from 190.81.73.0 /24 Hers what i think i can do with the 182 address i can do permit ip 182.17.73.0 0.64.4.0 because the 64 will increase the second octet to 81 then the 4 in the third bit will increase the network to 77. Is this how i would impliment this filtering policy in just two statements? The same way with the 190 networks? Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=63399&t=63399 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Setting Privilege Levels for Users [7:63073]
I'am working on a Boson's CCIE lab with a friend and we are working on setting up privilege levels for users who need to telnet to the router. User1 needs to have access to just the user level commands nothing more. User2 needs access to all the commands that user 1 has access to as well as about 5 different exec commands. lets say "show ip interface" "show ip ospf neighbors" "show ip route" and "show version" i think most of those are exec commands. User3 needs access to every commands. This is privilege level 15 right? How would you implement these? Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=63073&t=63073 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Telnet to 2501 through a linksys router [7:62654]
ahh i see i did not specify the gefault gatway command on my cisco 2501 for the linksys. all i did was make the external port for my sun box 2323 and for my cisco 23 to activate the port forwarding from my linksys over my NAT internally to my 2511 router. Actually mine is also a 2511. Sorry whoops i actually have a siemens router. It works the same was as the linksys with port forwarding. So all i'am doing is port forarding port 23 and 2323 to seperate internal IP's Router#show run Building configuration... Current configuration : 997 bytes ! version 12.2 service timestamps debug uptime service timestamps log uptime no service password-encryption ! hostname Router ! enable secret 5 $1$Tn.K$eTsahgNCkNWMWaSFRMa/A1 ! username all ip subnet-zero no ip domain-lookup ! ip ssh time-out 120 ip ssh authentication-retries 3 ! ! ! ! interface Loopback0 ip address 192.168.1.1 255.255.255.0 ip ospf network point-to-point ! interface Ethernet0 ip address 192.168.254.119 255.255.255.0 (interface i'am telneting too) ! interface Serial0 ip address 192.168.3.3 255.255.255.0 ! interface Serial1 no ip address shutdown ! ip default-gateway 192.168.254.254 (I just added it) ip classless ip http server ip pim bidir-enable ! logging trap debugging logging 192.168.254.176 snmp-server user internal internal v3 snmp-server group internal v3 noauth notify *tv.. snmp-server community internal RO snmp-server host 192.168.254.176 version 3 noauth internal ! line con 0 exec-timeout 0 0 logging synchronous line 1 16 line aux 0 line vty 0 4 password login ! end Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=62674&t=62654 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: question [7:62655]
cause he is the moderator. he's moderating Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=62657&t=62655 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Telnet to 2501 through a linksys router [7:62654]
Here is my dilema maybe someone can help me. I have a linksys router and then internaly i have my cisco lab. I did port forwarding on the linksys and told it to forward all telnet requests internaly to my router which i want to use as the entry into my lab. The problem is I can't connect and I'am not sure what the problem is. I also have a sun box. When i telnet to that then go from that to my cisco router it gets through!!! why won't my cisco 2501 accept direct connects through my linksys nat? I know i'am doing the port forwarding correctly. Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=62654&t=62654 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
