RE: Reverse Telnet [7:74469]
I had a similar issue with my 2511. In chapter 2 of Caslow's book, Caslow recommends using the modem host command under the line configuration. The command worked for me - I can now reverse telnet to all the devices. Hope that helps! Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=74507t=74469 -- **Please support GroupStudy by purchasing from the GroupStudy Store: http://shop.groupstudy.com FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
RE: CCIE Written Reading List ? [7:74317]
Sounds like your on the right track with reading material. I would pick up a copy of Caslow's book - some of the material is a little dated, but the frame relay section is one of the best I've read anywhere. In addition, if you can find a good buy on TCP/IP vol II buy it. There is some good BGP multicasting examples and a decent introduction to IPv6. CCIE practical studies will be a good book for the lab, but if you see a good buy on it - don't pass it up. I think most importantly you will want to familiarize yourself with all of the URL's at the bottom of the blueprint. Many of the obscure technologies on the blueprint can only be found in those URL's. I think that if I had spent more time reading those the first time, I would have saved myself $300. Here are a couple great web resources for this exam: www.writtenexam.com - Excellent site by Dennis Laganiere www.ccprep.com - Check out the Token Ring document under Resources Good luck! Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=74350t=74317 -- **Please support GroupStudy by purchasing from the GroupStudy Store: http://shop.groupstudy.com FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Re: IOS AUTH-PROXY problem [7:71956]
It could just be that in version of 12.2.15(T) it is finally fully implemented. 12.1.5T(9) is just an earlier version. I ran into this last night while working on blocking Nimda and Code Red. The feature required to do the blocking was released in 12.1E (not exactly sure which version, I can't find my notes). I couldn't find the feature anywhere in the documentation for 12.1, but as soon as I looked in 12.2, it was there. Hope that helps. Cheers, Joe - Original Message - From: d tran To: ; Sent: Sunday, July 06, 2003 10:18 AM Subject: IOS AUTH-PROXY problem All, Below is the configuration I have with AUTH-PROXY. I don't understand why the configuration works with IOS version 12.2.15(T) but doesn't work with IOS version 12.1.5T(9). With version 12.1.5T(9), I am not getting a authentication failed. Instead I am getting bad request. Any ideas? C2610#sh run Building configuration... Current configuration : 4248 bytes ! version 12.1 no service single-slot-reload-enable service timestamps debug uptime service timestamps log uptime no service password-encryption ! hostname C2610 ! logging buffered 8192 notifications logging rate-limit 1 no logging console aaa new-model aaa authentication login default group tacacs+ local aaa authentication login NONE none aaa authentication login TACACS group tacacs+ local enable aaa authentication login LOCAL local enable aaa authorization auth-proxy default group tacacs+ enable secret 5 $1$Bj2H$ad4Dn5rkgKvwPZzJDKAgZ1 ! memory-size iomem 10 ip subnet-zero no ip source-route ! ! no ip finger ip tcp intercept list 100 ip tcp intercept connection-timeout 3600 ip tcp intercept watch-timeout 5 ip tcp intercept max-incomplete low 300 ip tcp intercept max-incomplete high 1000 ip tcp intercept one-minute low 100 ip tcp intercept one-minute high 500 ip domain-name micronetsolution.com ip host tac 2065 10.10.10.10 ip name-server 172.17.1.2 ip name-server 129.174.1.8 ip dhcp excluded-address 10.100.0.71 ip dhcp excluded-address 10.100.0.72 ip dhcp excluded-address 10.100.0.254 ip dhcp ping packets 5 ! ip dhcp pool DHCP network 10.100.0.0 255.255.255.0 netbios-name-server 172.17.1.2 129.174.1.8 dns-server 172.17.1.2 129.174.1.8 default-router 10.100.0.254 domain-name micronetsolution.com lease 3 ! ip inspect audit-trail ip inspect dns-timeout 15 ip inspect name CBAC tcp timeout 3600 ip inspect name CBAC udp timeout 3600 ip auth-proxy auth-proxy-banner ip auth-proxy auth-proxy-audit ip auth-proxy auth-cache-time 1 ip auth-proxy name AUTH-PROXY http ip audit info action alarm drop reset ip audit attack action alarm drop reset ip audit notify log ip audit po max-events 100 ip audit name ATTACK attack action alarm drop reset ip audit name INFO info action alarm ! ! call rsvp-sync cns event-service server ! ! ! ! ! ! ! ! interface Loopback0 ip address 10.10.10.10 255.255.255.255 ! interface Ethernet0/0 ip address 172.18.1.1 255.255.0.0 ip nat outside half-duplex ! interface FastEthernet1/0 ip address 10.100.0.254 255.255.255.0 ip nat inside ip auth-proxy AUTH-PROXY speed 100 full-duplex ! ip kerberos source-interface any ip nat pool natpool 172.18.1.1 172.18.1.1 netmask 255.255.0.0 ip nat inside source list 130 interface Ethernet0/0 overload ip nat inside source static 10.100.0.71 172.18.0.71 ip classless ip route 0.0.0.0 0.0.0.0 172.18.1.254 ip http server ip http authentication aaa ! ! ip access-list extended NAMEDACL permit tcp any any permit udp any any permit ip any any ip access-list extended in2out permit udp 10.100.0.0 0.0.0.255 any eq domain reflect traffic permit tcp 10.100.0.0 0.0.0.255 any eq www reflect traffic permit tcp 10.100.0.0 0.0.0.255 any eq telnet reflect traffic deny ip any any ip access-list extended out2in permit icmp any any evaluate traffic deny ip any any logging trap notifications logging facility local5 logging source-interface Ethernet0/0 logging 172.17.1.2 access-list 100 permit tcp any host 10.100.0.71 eq www access-list 100 permit tcp any host 10.100.0.71 eq 443 access-list 100 permit tcp any host 10.100.0.71 eq 22 access-list 100 permit tcp any host 10.100.0.71 eq telnet access-list 100 permit tcp any host 10.100.0.71 eq ftp access-list 100 permit tcp any host 10.100.0.71 eq ftp-data access-list 110 permit tcp 10.100.0.0 0.0.0.255 host 10.100.0.254 eq telnet access-list 110 dynamic lock-and-key permit ip 10.100.0.0 0.0.0.255 any access-list 110 deny ip any any access-list 120 permit udp 10.100.0.0 0.0.0.255 any eq domain access-list 120 permit tcp 10.100.0.0 0.0.0.255 host 10.100.0.254 eq www access-list 120 deny ip any any access-list 130 permit ip 10.100.0.0 0.0.0.255 any access-list 140 permit ip host 172.18.1.2 host 172.18.1.1 access-list 140 permit icmp any 10.100.0.0 0.0.0.255 access-list 140 permit icmp any host 172.18.0.71 access-list 140
Re: GRE with IPsec [7:71964]
I don't have a source. But, it's really very simple all you do is apply the crypto map to the tunnel interface AND the physical interface between the two devices. Then add an ACL: access-l 100 permit gre host host You do that on each device of course. And then the rest of it is just a standard VPN config. Cheers, Joseph - Original Message - From: Michael Jia To: ; Sent: Sunday, July 06, 2003 2:56 PM Subject: GRE with IPsec Hi, Anyone has good reference doc about GRE with Ipsec . I am a little confused about 2 flavors of crypto ACL used: A) permit ip B) permit gre any any It seems option A is encry first then GRE encap, while option B is encap first then encrypt. Is there a good ref about these setups? Thanks Michael Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=71964t=71964 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: GRE with IPsec [7:71966]
Hmm, not sure what you mean but. Really all you do is create your regular VPN. Then you create your GRE tunnel. then the ACL here is an abbreviated example. R1# Int Lo0 ip address 1.1.1.1 255.255.255.0 Int Tu0 ip address 10.1.1.1 255.255.255.0 tun source loop0 tun dest 2.2.2.2 crypto map VPN Int s0 ip address 101.101.101.101 255.255.255.0 crypto map VPN access-l 100 permit gre host 1.1.1.1 host 2.2.2.2 That's it, then just take the same actions the other side. It really is just the regular VPN, then extra crypto map on the GRE tunnel and acl. Better? - Original Message - From: Michael Jia To: 'Joe Deleonardo' ; ; Sent: Sunday, July 06, 2003 5:23 PM Subject: RE: GRE with IPsec Hi, Joe There is a sligt difference between A and B. Could you share some insights as well? Thanks Michael -Original Message- From: Joe Deleonardo [mailto:[EMAIL PROTECTED] Sent: Sunday, July 06, 2003 5:17 PM To: Michael Jia; [EMAIL PROTECTED]; [EMAIL PROTECTED] Subject: Re: GRE with IPsec I don't have a source. But, it's really very simple all you do is apply the crypto map to the tunnel interface AND the physical interface between the two devices. Then add an ACL: access-l 100 permit gre host host destination You do that on each device of course. And then the rest of it is just a standard VPN config. Cheers, Joseph - Original Message - From: Michael Jia To: ; Sent: Sunday, July 06, 2003 2:56 PM Subject: GRE with IPsec Hi, Anyone has good reference doc about GRE with Ipsec . I am a little confused about 2 flavors of crypto ACL used: A) permit ip B) permit gre any any It seems option A is encry first then GRE encap, while option B is encap first then encrypt. Is there a good ref about these setups? Thanks Michael Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=71966t=71966 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: GRE with IPsec [7:71967]
From your original email. by permitting ip you're allowing everything over the IPSec tunnel. If you just permit gre you're just allowing the gre tunnel over the ipsec tunnel. You might want to do this to transport something that ipsec can't handle by itself, like AppleTalk or IPX. You're thinking of it as a flavor. That's the wrong mind set for this concept. Just think of it as a regular ipsec tunnel and all your acl does, is just what any other acl does... controls granularity. - Original Message - From: Michael Jia To: ; Sent: Sunday, July 06, 2003 2:56 PM Subject: GRE with IPsec Hi, Anyone has good reference doc about GRE with Ipsec . I am a little confused about 2 flavors of crypto ACL used: A) permit ip B) permit gre any any It seems option A is encry first then GRE encap, while option B is encap first then encrypt. Is there a good ref about these setups? Thanks Michael Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=71967t=71967 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Help on Catalyst 3550 [7:66072]
It depends on what are you wanting to do with the (2) Ethernets coming from the IBM router? Trunk to the Cat? Route (2) networks? Bridge? I was just saying that Spanning Tree is on by default on a catalyst and if by chance the IBM router happened to be bridging then that is why one of the ports is being shut down. -Original Message- From: Juli Hato [mailto:[EMAIL PROTECTED] Sent: Wednesday, March 26, 2003 3:08 AM To: [EMAIL PROTECTED]; [EMAIL PROTECTED] Subject: RE: Help on Catalyst 3550 [7:66072] Hi Earhart, May turn off the STP on the Catalyst? What mostly will happen then. Thank YOu Best Regards, HATO From: Joe Earhart (jearhart) Reply-To: Joe Earhart (jearhart) To: [EMAIL PROTECTED] Subject: RE: Help on Catalyst 3550 [7:66072] Date: Tue, 25 Mar 2003 12:19:25 GMT Juli, Make sure you don't have bridging turned up on the IBM, spanning tree may be shutting down one of the ports. -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] Behalf Of Juli Hato Sent: Monday, March 24, 2003 10:57 AM To: [EMAIL PROTECTED] Subject: Help on Catalyst 3550 [7:66072] Hi all, I have a router IBM that has 2 ethernet ports. The IBM router connect to Cisco Catalyst 3550 that is not configured. When the router IBM connect to the switch one of the ethernet port from the IBM router got block by the Cisco Switch. All you have to know is that I need to ethernet ports from the IBM router active. How to counteract with this. Thank you in advance. Best Regards, HATO _ Add photos to your e-mail with MSN 8. Get 2 months FREE*. http://join.msn.com/?page=features/featuredemail _ The new MSN 8: smart spam protection and 2 months FREE* http://join.msn.com/?page=features/junkmail Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=66243t=66072 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Help on Catalyst 3550 [7:66072]
Juli, Make sure you don't have bridging turned up on the IBM, spanning tree may be shutting down one of the ports. -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] Behalf Of Juli Hato Sent: Monday, March 24, 2003 10:57 AM To: [EMAIL PROTECTED] Subject: Help on Catalyst 3550 [7:66072] Hi all, I have a router IBM that has 2 ethernet ports. The IBM router connect to Cisco Catalyst 3550 that is not configured. When the router IBM connect to the switch one of the ethernet port from the IBM router got block by the Cisco Switch. All you have to know is that I need to ethernet ports from the IBM router active. How to counteract with this. Thank you in advance. Best Regards, HATO _ Add photos to your e-mail with MSN 8. Get 2 months FREE*. http://join.msn.com/?page=features/featuredemail Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=66142t=66072 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Help on Catalyst 3550 [7:66072]
Juli, Make sure you don't have bridging turned up on the IBM, spanning tree may be shutting down one of the ports. -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] Behalf Of Juli Hato Sent: Monday, March 24, 2003 10:57 AM To: [EMAIL PROTECTED] Subject: Help on Catalyst 3550 [7:66072] Hi all, I have a router IBM that has 2 ethernet ports. The IBM router connect to Cisco Catalyst 3550 that is not configured. When the router IBM connect to the switch one of the ethernet port from the IBM router got block by the Cisco Switch. All you have to know is that I need to ethernet ports from the IBM router active. How to counteract with this. Thank you in advance. Best Regards, HATO _ Add photos to your e-mail with MSN 8. Get 2 months FREE*. http://join.msn.com/?page=features/featuredemail Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=66079t=66072 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Debug atm ilmi [7:64855]
- Original Message - From: John Tafasi To: Cisco Group Study ; ccielab Sent: Saturday, March 08, 2003 5:13 PM Subject: Debug atm ilmi Hi group, I am receiving ilmi errored responses from the Lightstream 100 switch that I am using. Does any body know what could be wrong ? Here is the output from r6. r9#debug atm ilmi Setting ILMI debug for all interfaces. r9# 01:55:18: ILMI(ATM0):Trying keepalive objects one at a time 01:55:18: ILMI(ATM0):SystemId being queried for keepalive 01:55:18: ILMI(ATM0):PortMyIfId being queried for keepalive 01:55:18: ILMI(ATM0):peerSysUpTime being queried for keepalive 01:55:18: ILMI(ATM0):Sending out Request 108 01:55:18: ILMI(ATM0):Sending out Request 109 01:55:18: ILMI(ATM0):Sending out Request 110 01:55:18: ILMI(ATM0):Response received for request 108 01:55:18: ILMI(ATM0): Errored response Function Type = ilmiKeepAliveSysIdQuery 01:55:18: ILMI(ATM0): Errored response to ilmiKeepAliveSysIdQuery 01:55:18: ILMI(ATM0):Response received for request 109 01:55:18: ILMI(ATM0): Errored response Function Type = ilmiKeepAlivePortIfQuery 01:55:18: ILMI(ATM0): Errored response to ilmiKeepAlivePortIfQuery 01:55:18: ILMI(ATM0):Response received for request 110 01:55:18: ILMI(ATM0):Verifying response to SysUpTime query 01:55:23: ILMI(ATM0):Trying keepalive objects one at a time 01:55:23: ILMI(ATM0):SystemId being queried for keepalive 01:55:23: ILMI(ATM0):PortMyIfId being queried for keepalive 01:55:23: ILMI(ATM0):peerSysUpTime being queried for keepalive 01:55:23: ILMI(ATM0):Sending out Request 111 01:55:23: ILMI(ATM0):Sending out Request 112 01:55:23: ILMI(ATM0):Sending out Request 113 01:55:23: ILMI(ATM0):Response received for request 111 01:55:23: ILMI(ATM0): Errored response Function Type = ilmiKeepAliveSysIdQuery 01:55:23: ILMI(ATM0): Errored response to ilmiKeepAliveSysIdQuery 01:55:23: ILMI(ATM0):Response received for request 112 01:55:23: ILMI(ATM0): Errored response Function Type = ilmiKeepAlivePortIfQuery 01:55:23: ILMI(ATM0): Errored response to ilmiKeepAlivePortIfQuery 01:55:23: ILMI(ATM0):Response received for request 113 01:55:23: ILMI(ATM0):Verifying response to SysUpTime query 01:55:28: ILMI(ATM0):Trying keepalive objects one at a time 01:55:28: ILMI(ATM0):SystemId being queried for keepalive 01:55:28: ILMI(ATM0):PortMyIfId being queried for keepalive 01:55:28: ILMI(ATM0):peerSysUpTime being queried for keepalive 01:55:28: ILMI(ATM0):Sending out Request 114 01:55:28: ILMI(ATM0):Sending out Request 115 01:55:28: ILMI(ATM0):Sending out Request 116 01:55:28: ILMI(ATM0):Response received for request 114 01:55:28: ILMI(ATM0): Errored response Function Type = ilmiKeepAliveSysIdQuery 01:55:28: ILMI(ATM0): Errored response to ilmiKeepAliveSysIdQuery 01:55:28: ILMI(ATM0):Response received for request 115 01:55:28: ILMI(ATM0): Errored response Function Type = ilmiKeepAlivePortIfQuery 01:55:28: ILMI(ATM0): Errored response to ilmiKeepAlivePortIfQuery 01:55:28: ILMI(ATM0):Response received for request 116 01:55:28: ILMI(ATM0):Verifying response to SysUpTime query 01:55:33: ILMI(ATM0):Trying keepalive objects one at a time 01:55:33: ILMI(ATM0):SystemId being queried for keepalive 01:55:33: ILMI(ATM0):PortMyIfId being queried for keepalive 01:55:33: ILMI(ATM0):peerSysUpTime being queried for keepalive 01:55:33: ILMI(ATM0):Sending out Request 117 01:55:33: ILMI(ATM0):Sending out Request 118 01:55:33: ILMI(ATM0):Sending out Request 119 01:55:33: ILMI(ATM0):Response received for request 117 01:55:33: ILMI(ATM0): Errored response Function Type = ilmiKeepAliveSysIdQuery 01:55:33: ILMI(ATM0): Errored response to ilmiKeepAliveSysIdQuery 01:55:33: ILMI(ATM0):Response received for request 118 01:55:33: ILMI(ATM0): Errored response Function Type = ilmiKeepAlivePortIfQuery 01:55:33: ILMI(ATM0): Errored response to ilmiKeepAlivePortIfQuery 01:55:33: ILMI(ATM0):Response received for request 119 01:55:33: ILMI(ATM0):Verifying response to SysUpTime query 01:55:38: ILMI(ATM0):Trying keepalive objects one at a time 01:55:38: ILMI(ATM0):SystemId being queried for keepalive 01:55:38: ILMI(ATM0):PortMyIfId being queried for keepalive 01:55:38: ILMI(ATM0):peerSysUpTime being queried for keepalive 01:55:38: ILMI(ATM0):Sending out Request 120 01:55:38: ILMI(ATM0):Sending out Request 121 01:55:38: ILMI(ATM0):Sending out Request 122 01:55:38: ILMI(ATM0):Response received for request 120 01:55:38: ILMI(ATM0): Errored response Function Type = ilmiKeepAliveSysIdQuery 01:55:38: ILMI(ATM0): Errored response to ilmiKeepAliveSysIdQuery 01:55:38: ILMI(ATM0):Response received for request 121 01:55:38: ILMI(ATM0): Errored response Function Type = ilmiKeepAlivePortIfQuery 01:55:38: ILMI(ATM0): Errored response to ilmiKeepAlivePortIfQuery 01:55:38: ILMI(ATM0):Response received for request 122 01:55:38: ILMI(ATM0):Verifying response to SysUpTime query 01:55:43: ILMI(ATM0):Trying keepalive objects one at a
RE: CCIE Written Training [7:64107]
Ben, I am not aware of any formalized training programs in the Denver area for the written exam. However, I am organizing a study group with another gentleman here in the Denver area specifically to tackle the CCIE written. You are more than welcome to contact me offline if you are interested in joining us. Joe Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=64115t=64107 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Cisco ExecNet [7:55569]
Technology isn't necessarily heading in that direction - Cisco is driving it there. Bottom line is this: Cisco is traditionally a router and switch manufacturer, and no one buys routers and switches these days, at least not enough to provide continued growth for Cisco. Company infrastructures are already built, have been for years, and are running for the most part nowhere near capacity. These technology applications, besides generating hardware sales directly, will also increase bandwidth consumption, thereby causing indirect hardware sales when customers upgrade their routers and switches to support the new bandwidth-hungry apps like VoIP. If Cisco can drive the customers' purchases in that direction, they win. My two cents. Joe -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] On Behalf Of Albert Lu Sent: Thursday, October 10, 2002 8:16 AM To: [EMAIL PROTECTED] Cc: [EMAIL PROTECTED] Subject: OT: Cisco ExecNet Hello Group, Has anyone checked out the Cisco ExecNet, which is basically thoughts about where technology is heading in the future from the VPs at Cisco. http://newsroom.cisco.com/dlls/tln/execnet/ From what they are saying (specifically Mike Volpi), the direction for technology is heading towards: CDN, Security, Wireless, IP Telephony, VPN. Reegineering business processes to best utilise these technologies in order to improve productivity and reduce cost for enterprises. Does anyone have any comments about this, and where money will be spent in the future for technologies? Regards, Albert Lu CCIE #8705 Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=55569t=55569 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Please confirm (conf#99c2dc97cc6fe1343691b05392e865ac) [7:55570]
-Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] Sent: Thursday, October 10, 2002 11:43 PM To: [EMAIL PROTECTED] Subject: Please confirm (conf#99c2dc97cc6fe1343691b05392e865ac) Hi, You have tried to post to GroupStudy.com's Professional mailing list. Because the server does not recognize you as a confirmed poster, you will be required to authenticate that you are using a valid e-mail address and are not a spammer. By confirming this e-mail you certify that you are not sending Unsolicited Bulk Email (UBE). PLEASE DO NOT SEND YOUR ORIGINAL MESSAGE AGAIN! BY CONFIRMING THIS EMAIL YOUR ORIGINAL MESSAGE (WHICH IS NOW QUEUED IN THE SERVER) WILL BE POSTED. By confirming this e-mail you also certify the following: 1. The message does NOT break Cisco's Non-Disclosure requirements. 2. The message is NOT designed to advertise a commercial product. 3. You understand all postings become property of GroupStudy.com 4. You have searched the archives prior to posting. 5. The message is NOT inflammatory. 6. The message is NOT a test message. To confirm, simply reply to this message. No editing is necessary. Once confirmed, you will be able to post without additional confirmations. Welcome to GroupStudy.com! --ORIGINAL MESSAGE- From [EMAIL PROTECTED] Fri Oct 11 03:42:39 2002 Received: from smtp.comcast.net (smtp.comcast.net [24.153.64.2]) by groupstudy.com (8.9.3/8.9.3) with ESMTP id DAA32229; Fri, 11 Oct 2002 03:42:39 GMT Received: from mickey (pcp01503282pcs.coatsv01.pa.comcast.net [68.82.170.6]) by mtaout03.icomcast.net (iPlanet Messaging Server 5.1 HotFix 1.4 (built Aug 5 2002)) with ESMTP id ; Thu, 10 Oct 2002 23:42:08 -0400 (EDT) Date: Thu, 10 Oct 2002 23:42:04 -0400 From: Joe Subject: RE: Cisco ExecNet In-reply-to: To: 'Albert Lu' , [EMAIL PROTECTED] Cc: [EMAIL PROTECTED] Message-id: MIME-version: 1.0 X-MIMEOLE: Produced By Microsoft MimeOLE V6.00.2800.1106 X-Mailer: Microsoft Outlook, Build 10.0.3416 Content-type: text/plain; charset=us-ascii Content-transfer-encoding: 7BIT Importance: Normal X-Priority: 3 (Normal) X-MSMail-priority: Normal Technology isn't necessarily heading in that direction - Cisco is driving it there. Bottom line is this: Cisco is traditionally a router and switch manufacturer, and no one buys routers and switches these days, at least not enough to provide continued growth for Cisco. Company infrastructures are already built, have been for years, and are running for the most part nowhere near capacity. These technology applications, besides generating hardware sales directly, will also increase bandwidth consumption, thereby causing indirect hardware sales when customers upgrade their routers and switches to support the new bandwidth-hungry apps like VoIP. If Cisco can drive the customers' purchases in that direction, they win. My two cents. Joe -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] On Behalf Of Albert Lu Sent: Thursday, October 10, 2002 8:16 AM To: [EMAIL PROTECTED] Cc: [EMAIL PROTECTED] Subject: OT: Cisco ExecNet Hello Group, Has anyone checked out the Cisco ExecNet, which is basically thoughts about where technology is heading in the future from the VPs at Cisco. http://newsroom.cisco.com/dlls/tln/execnet/ From what they are saying (specifically Mike Volpi), the direction for technology is heading towards: CDN, Security, Wireless, IP Telephony, VPN. Reegineering business processes to best utilise these technologies in order to improve productivity and reduce cost for enterprises. Does anyone have any comments about this, and where money will be spent in the future for technologies? Regards, Albert Lu CCIE #8705 Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=55570t=55570 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Cisco ExecNet [7:55571]
Maybe I should say IP Telephony, not VoIP. How many uncompressed, toll-quality calls can you push out simultaneously over a T1??? Have you done the math? 24? Maybe 23 on a good day. Sure, if you use compression you can squeeze in quite a bit more, but you can't deny that IPT is bandwidth-hungry, with streaming MOH, voicemail audio streams, the calls themselves. Believe me, VoIP is absolutely a bandwidth-hungry app. No one who understands the technology would deny that. Joe -Original Message- From: Nathan Chessin [mailto:[EMAIL PROTECTED]] Sent: Friday, October 11, 2002 1:56 AM To: 'Joe'; 'Albert Lu'; [EMAIL PROTECTED] Cc: [EMAIL PROTECTED] Subject: RE: Cisco ExecNet 1) Since when is VoIP a bandwidth-hungry app Nate -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Joe Sent: Thursday, October 10, 2002 8:42 PM To: 'Albert Lu'; [EMAIL PROTECTED] Cc: [EMAIL PROTECTED] Subject: RE: Cisco ExecNet Technology isn't necessarily heading in that direction - Cisco is driving it there. Bottom line is this: Cisco is traditionally a router and switch manufacturer, and no one buys routers and switches these days, at least not enough to provide continued growth for Cisco. Company infrastructures are already built, have been for years, and are running for the most part nowhere near capacity. These technology applications, besides generating hardware sales directly, will also increase bandwidth consumption, thereby causing indirect hardware sales when customers upgrade their routers and switches to support the new bandwidth-hungry apps like VoIP. If Cisco can drive the customers' purchases in that direction, they win. My two cents. Joe -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] On Behalf Of Albert Lu Sent: Thursday, October 10, 2002 8:16 AM To: [EMAIL PROTECTED] Cc: [EMAIL PROTECTED] Subject: OT: Cisco ExecNet Hello Group, Has anyone checked out the Cisco ExecNet, which is basically thoughts about where technology is heading in the future from the VPs at Cisco. http://newsroom.cisco.com/dlls/tln/execnet/ From what they are saying (specifically Mike Volpi), the direction for technology is heading towards: CDN, Security, Wireless, IP Telephony, VPN. Reegineering business processes to best utilise these technologies in order to improve productivity and reduce cost for enterprises. Does anyone have any comments about this, and where money will be spent in the future for technologies? Regards, Albert Lu CCIE #8705 Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=55571t=55571 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
CSS Content Switch questions [7:55452]
Is anyone familiar with CSS11506 content switches? I have some general concept questions and am on an extremely short timeline (management strikes again). We can take this offline and not bore everyone else. I will have two firewalls attached to the Internet with an IP address on each (DNS round robin access) for every web server in the DMZ. In a shared DMZ I have two content switches, one per Pix firewall and connected to each other. It has been decided that we need three subnets. Can the CSS do routing between the subnets (as opposed to going back to the firewall and having a cable to each subnet)? I have not found the answer on CCO yet but I am still looking. Any help would be appreciated. Joe Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=55452t=55452 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
NAT [7:54838]
Hi All, I am trying to set up NAT on a cisco 2600 router. Everything seems to be working except that I can not access resources on the inside using there public IP address from the inside. From the internet the router translates the public addresses to private addresses, but from the inside I have to use the private address to access any resource. How can I get the router to translate requests that originate from the inside? Any help would be greatly appreciated. Thanks. Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=54838t=54838 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
channel partner benefits? [7:51334]
I was just wonderingOur company is close to becoming a Premier Partner. I know there are benefits like you get listed on their partner site and you get discounts from Tech Data and Ingram, but discounts to what level? 5, 10, 20 points? Also, I heard a rumor (not from anyone on this list) that if you get Wireless Specialization status, that only wireless products will get discounts from distributors. Is this true? I ask this list only because the sales dept at my company is lacking in these areas and I would like to get them up to speed. I called our local Cisco rep, but he won't be coming out for a couple of weeks and I would like to have some information before meeting with him. Thanks. -Joe Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=51334t=51334 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
IDS [7:51147]
I am on the trail of the last test for CSS1 Cert - The IDS test. From what I gather on their website; Cisco is phasing out CSIDS and replacing it with IDSPM. There are no books titled IDSPM. So I have 2 questions: A) is the CSIDS book a valid study guide for IDSPM? B) If they are phasing it out how long do I have to take the CSIDS? Thanks in advance JDR Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=51147t=51147 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Dell switches [7:50934]
I have to concur with my colleague Mr. Brunner#8217;s 8/8 post and add this: If Cisco would lower their Cost they wouldn#8217;t be shooting themselves in the foot. Yeah, Yeah I know Cisco quality and support#8230; Ok they are still the king of the hill and FOR THE MOST PART you get what you pay for; however, ponder this #8211; we recently deployed 2 VPN 3002 hardware clients and they had MADE IN MEXICO stamped on them#8230; WTF??? Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=51149t=50934 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Lightstream PVC config problem... [7:49352]
Edward, I had the same exact issue from the same exact book, I am working with a LS1010 ASP in a 5500 switch (pretty much the same as your setup). The previous post was correct in saying that you only have to enter the PVC on one of the interfaces, do a show atm vc (I think that's right) and you will see a list of all VPI/VCI pairs, the ports they are on and the VPI/VCI pair they connect to and the associated port. Even though you have only one PVC statement you will see that the ports are cross-connected properly (there will be two entires in the table). Also, when you look at the table it should show that the VC status is UP, if not there is another issue going on. Hope this helps! Joe Edward Sohn wrote in message news:[EMAIL PROTECTED]... Heya, I'm kinda new at the ATM bit, and I'm having trouble configuring an L1010... I'm simply trying to perform the configuration as documented in Lab18 in the CCIE Practical Studies book. I have two active ATM interfaces, 12/0/0 and 12/0/2. As I go to enter in the first PVC command on 12/0/0, atm pvc 0 112 interface ATM12/0/2 0 121, I don't seem to have any problems. It's on the corresponding PVC command that I get an error. When I enter in the atm pvc 0 121 interface ATM 12/0/0 0 112 command on the 12/0/2 interface, i get an error stating, %connection creation fails: vpi/vci has been used by other connections. I tried this many times, without luck. I was simply configuring the interfaces with the exact same commands as the book says. I looked on CCO, but couldn't find anything regarding this... Anyone run into this before? Thanks in advance, Eddie [GroupStudy.com removed an attachment of type image/jpeg which had a name of Notebook.jpg] Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=49400t=49352 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: SSL Acceleration [7:47596]
John, My company is doing something similar. Our problem started with making sure a clients web requestes stayed on the same server even while moving from HTTP to HTTPS requests. We did not want to use redirects, so our Local Director 416 could not cut it. I have installed a Cisco SCA-11000 SSL accelerator in front of a Cisco CSS-11000 switch. Here are my thoughts so far. - the SCA-11000 passes any non-ssl traffic to the CSS-11000 to be load balanced. The CSS-11000 does sticky load balancing on all HTTP packets making sure the user maintains the same server. - getting the key and cert into the SCA-11000, coming from a Win2K server was a little interesting and I had to end up consulting some Cisco TAC documents to find the exact steps to do this (only with a MS solution though). - when a customer transitions from a non-secure page to a secure page (and maintain the same server), the URL will look something like this https:whatever.asp. The SCA will decrypt the inbound stream and hand it off to the CSS to be load balanced. With the CSS's layer 5 ability to balance by info in the url, I can use the server name in the URL to make sure the secure connection makes it back to the same server (and maintains the session the client started). This requires that our web servers have a directory that is labeled with their server name and that the code used for the sure site is in that directory on all the servers (unique for each server, of course). This was the least code rewrite intensive solution we could find. It's been a real learning experience too!! :)) If anyone else has been doing some similar things I would love to hear about it! Joe John Neiberger wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... We're evaluating SSL acceleration for our web servers and the product currently up to bat is the Array 500TX. With this device we can offload the SSL processing from the origin servers. However, while testing the evaluation unit we're discovering that there's a lot more to this than simply loading the certs and keys onto the box and turning it on. For example, it may be that we have to rewrite portions of the code on our site to make it compatible with this solution. There are also changes required on the web servers themselves to make them play nicely with the Array box. I'm wondering if any of you have implemented SSL accleration (with anyone's product) and what gotchas you might have run into. I'm almost to the point of dropping the idea of SSL acceleration and simply suggesting that we add more servers! :-) That's by far the simplest solution and doesn't require any changes to our existing code or configurations. We simply plug the server into our existing load balancing switch and, with a small tweak of that config, we're off and running. Any thoughts? John Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=47608t=47596 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Help with RSP4+ and normal boot sequence in a 7 [7:47408]
Hello (my first post!), I have had a similar problem with my lab ls1010 ASP. It would always load the image from the bootflash instead of the PCMCIA card camping in slot0:. With the config register set to 0x2102 I tried the following: -removing the flash simm from the ASP forced a boot to slot0: (there is no image in the bootflash in this case) -putting a boot system flash slot0: (pretty sure that is the syntax) also worked, but the system takes a while to boot. It looks like it loads the bootflash, then it interprets the config file and says to itself he wants a different image and goes about loading it. Hope this can help! Joe Tutokey David j wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... Hi boys! I'm having problems with a 7500 I have upgraded a few weeks ago, when I type sh ver in others 7500 that I have, I can see these lines: ---xx--- Cisco Internetwork Operating System Software IOS (tm) RSP Software (RSP-IK8SV-M), Version 12.2(7a), RELEASE SOFTWARE (fc2) Copyright (c) 1986-2002 by cisco Systems, Inc. Compiled Thu 21-Feb-02 04:23 by pwade Image text-base: 0x600109C8, data-base: 0x6179A000 ROM: System Bootstrap, Version 12.0(10r)S1, RELEASE SOFTWARE (fc1) BOOTLDR: RSP Software (RSP-BOOT-M), Version 12.2(7a), RELEASE SOFTWARE (fc2) ---xx--- However when I do the same on the problematic router I can see the following: Cisco Internetwork Operating System Software IOS (tm) RSP Software (RSP-JK8SV-M), Version 12.2(7c), RELEASE SOFTWARE (fc1) Copyright (c) 1986-2002 by cisco Systems, Inc. Compiled Sat 11-May-02 11:02 by pwade Image text-base: 0x600109C8, data-base: 0x61B28000 ROM: System Bootstrap, Version 12.0(10r)S1, RELEASE SOFTWARE (fc1) So as you can see, I can't see any reference to the BOOTLDR. I've talked with the boys at TAC and they haven't got any solution (I've rebooted the router 4 or 5 times, upgraded and downgraded the software) Anybody knows what is the correct process for booting a 7500 with a RSP4+? Cisco says that RSP4+ boots the main image directly without loading the bootflash, but I have 7 routers loading the bootflash before loading the main image. Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=47424t=47408 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Passed CCIE Written! [7:45881]
Good Job! Congratulations! Joe Tutokey Juli Hato wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... Congratulation Scott Chapin HATO From: Amir Azhar Jamaluddin Reply-To: Amir Azhar Jamaluddin To: [EMAIL PROTECTED] Subject: RE: Passed CCIE Written! [7:45881] Date: Wed, 5 Jun 2002 22:58:25 -0400 Congratulation on your success. May you do well in the lab too. Bravo -nict- -Original Message- From: scott chapin [mailto:[EMAIL PROTECTED]] Sent: Thursday, June 06, 2002 8:21 AM To: [EMAIL PROTECTED] Subject: Passed CCIE Written! [7:45881] Hello All - I passed the routing and switching exam today. I wanted to pass on a big thanks to the group. You all have been very helpful. I used: Cisco Certified Internetworking Expert by Sybex Boson practice exams Token Ring paper by Lou Rossi www.cisco.com, www.cisco.com, and www.cisco.com :) Now on to the lab! Scott Chapin CCNP _ Join the worlds largest e-mail service with MSN Hotmail. http://www.hotmail.com Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=46227t=45881 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
MCNS [7:44968]
I am set to take the MCNS soon; can anyone offer any words of wisdom? Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=44968t=44968 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Layer2 Layer3 or Hardware problem? [7:42391]
Hi all. I have a real world problem and would like some thoughts, here it goes. Client has a central site with 7 remote locations. Central site has a 6513 with MSFC2, all sites have T1 in. Eigrp is used between sites and is fine. At the central site lies an AS/400 that all remote sites connect into (users use IBM client access). All is IP no SNA anywhere. What happens is at one and only one location users get bounced out of there session about 4 or 5 times a day. They have full connectivity to the central site, just no AS/400. So I was at the remote site where the problem exists, could ping the as400 fine. So I waited for a blackout, it came. When the users were bounced I tried to ping the as400 and was unsuccessful. I tried to ping the central router and was good, I tried to ping the vlan ip address that the as400 was in, that was good. I even tried to ping other computers in the same subnet as the as400 and that was good. Tried to ping the as400 again and that was NO good. These outages only last a couple of minutes and then it comes back up. There is NO route flapping. All eigrp neighbors stay put and all routes stay put. What is really strange is that this happens only from one remote location, all other locations are fine. The as400 has only one NIC (ehternet) and all other sites connect to the same IP address. So where is the problem? I checked the port the as400 was plugged into and found some errors, I found out that the port was set to 100/full and the as400 nic was set to 100/half, so I adjusted the port on the switch to 100/half. But if this was the problem, wouldn't all sites have trouble? Could the switch possibly be aging out its cam table to the remote site that is having problems? I don't remember if they blacked out again after changing the duplex (I had been staring at debugs for about 8 hours). I called TAC and bumped up the outbound queue size to the site that is having problems, but haven't had a chance to call them back. Any suggestions? Thanks. -Joe [EMAIL PROTECTED] Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=42391t=42391 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Puzzles - WAS RE: My interview story [7:40553]
solution for part A: Lock the box, send it to your friend. Send the key as a separate delivery. In essence there are two deliveries made. - Original Message - From: Craig Columbus To: Sent: Saturday, April 06, 2002 12:58 AM Subject: Re: Puzzles - WAS RE: My interview story [7:40553] Part A: I heard this one where the friend also has a key that will open his lock, but not yours. Also, the condition is that no destructive techniques are allowed, so breaking or cutting wasn't a possible solution. Part B: He never states that the rope is attached to the top of the pole, just that it's attached to the pole. So, the answer is that the poles are somewhere between 0 and 32 feet apart. Craig At 11:33 PM 4/5/2002 -0500, you wrote: I'll bite. a) Boxes and diamond. Gordian Knot technique. Lock the diamond in your box and send it to your friend. He breaks the lock or cuts open the box. b) Poles and rope. The poles are touching. -Original Message- From: Dusty Harper [mailto:[EMAIL PROTECTED]] Sent: Friday, April 05, 2002 4:55 PM To: [EMAIL PROTECTED] Subject: RE: My interview story [7:40553] The goal is to determine how you think. Most real world solutions to problems can be applied to technological hurdles, or problems. As an example: Prep: You have an empty box, a lock, a key for your lock, and a diamond. Your friend has an empty box, and a lock for his box. Goal: You want to get the diamond to your friend via courier. However the courier will steal anything that is not locked. How do you do this? Another example: If you have 2 20' poles, a 32' rope strung between them, and the lowest point of the rope is 4' off of the ground, how far apart are the poles? It gauges how one thinks and handles situations. Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=40678t=40553 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Creating Serial cross over cable [7:38280]
Hi, I am trying to figure out my options for creating 60pin serial cross over cables. If I had 2 cables that are 60pin to 25pin, can I just buy a 25pin null-modem cable, connect them and create a serial crossover? Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=38280t=38280 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Creating Serial cross over cable [7:38280]
No, I don't think that is possible. I looked into the same thing a few months back and someone in one of these groups posted a link on Cisco.com that showed all the pin outs for these cables ( I can't find the link, sorry) if I remember right there are certain pins crossed together in the DCE side and different ones crossed together in the DTE side... looked like it was going to be a real pain in the neck. someone else then told me about http://www.anthonypanda.com , he has these 60pin (DCE/DTE) crossover cables for $14.00 each. I think the website says they are $18.00 each but he is also selling them on ebay for $14.00 and should honor that price if you buy direct... at least he did for me. I bought 6 of them. I set up a paypal account and fired off a few emails to him to work out the details and I had the cables in a week... ... they work great and his responses to my emails were fast and complete.. I had NEVER bought ANYTHING online like this and was VERY nervous about doing so but I gotta say that this went very smooth . Unless someone knows a better price, that is the best price I was able to find ANYWHERE. there is a shipping cost involved (I think he is in Hong Kong) and I am not sure what it was but my total bill was $110.00 for all 6 cables. I would recommend using him if you are thinking about buying them. Disclaimer: I do not work for him nor am I involved with him in any way other then as a one time customer. I only offer this info because these are useful cables and he has a good price for them. If I would have used ebay I would have given him a good feedback comment and since I didn't, I can at least do this :^) -Joe- Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=38344t=38280 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Static NAT entries timeout value?? [7:37910]
For deleting sub interfaces, you need to reload, but for nat translations use: clear ip nat trans * -Joe - Original Message - From: s vermill To: Sent: Monday, March 11, 2002 7:41 PM Subject: RE: Static NAT entries timeout value?? [7:37910] If you can reload the router I would do that. Very strange but not uncommon. Someone here recently had a problem where a router was load balancing accross deleted subinterfaces. Cisco Nuts wrote: Hello, Is there a timelimit on how long a router keeps the static nat entries in its buffer EVEN though you take out the entries from the router? I can still ping the ip's from other routers even though I took out the entries on the nat router. I would think that this would only be possible if the router keeps the entries in its buffer but am not sure?? Thank you. Regards. Output: NAT Router: RTB#sh ip nat trans RTB# RTB#sh ip nat statis Total active translations: 0 (0 static, 0 dynamic; 0 extended) Outside interfaces: Ethernet0, Serial0 Inside interfaces: Serial1 Hits: 0 Misses: 0 Expired translations: 0 Dynamic mappings: RTB# Notice the 0 static !! Now from a client router: RTC#ping 172.16.11.10 Type escape sequence to abort. Sending 5, 100-byte ICMP Echos to 172.16.11.10, timeout is 2 seconds: ! Success rate is 100 percent (5/5), round-trip min/avg/max = 4/5/8 ms RTC#ping 172.16.6.15 Type escape sequence to abort. Sending 5, 100-byte ICMP Echos to 172.16.6.15, timeout is 2 seconds: ! Success rate is 100 percent (5/5), round-trip min/avg/max = 4/5/8 ms RTC# These are the static entries that I had just taken OFF the NAT router: ip nat inside source static 10.10.50.4 172.16.11.70 ip nat inside source static 10.10.60.4 172.16.11.10 ip nat inside source static 10.10.70.4 172.16.6.15 Any ideas?? _ Join the worlds largest e-mail service with MSN Hotmail. http://www.hotmail.com Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=37917t=37910 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: CCNP v3.0 [7:37500]
I took the beta BCRAN last Thursday and plan to take the beta Support on Monday the 18th. I do not think I would have any problem with the regular BCRAN test because I am having no trouble with Transcender and Boson tests. The 3 hour beta is a royal pain. I will probably take the regular test rather than wait three months to see the results. If I do not feel 100% ready for the Support test by Next Friday I may take the regular test instead. Joe -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] On Behalf Of Tarek Sabry Sent: Thursday, March 07, 2002 7:38 PM To: [EMAIL PROTECTED] Subject: RE: CCNP v3.0 [7:37500] OK I just took it. Yes 3 hours. But the number of questions is horrendous! It definitely took me by surprise. I thought as I have been studying for my CCIE lab for the past year or so (on and off) then this will be a walk in the park. Was NOT! First of all I did not know that you cannot go back to questions. Definitely I would have had a different strategy. I wasn't simply prepared for that so I ended up spending too long on some questions, which I regretted later because I had a lot of very difficult questions in the beginning and a lot of easy ones in the end that I wish I could spend like 20 seconds on each instead of 3! I had 10 minutes to answer 45 questions in the end!!! I never took CCNP v2 but rumor has it that its routing exam isn't that hard. Well, maybe I'm not that competent, but today I had real tricky questions in this Beta. Well, but again the way the questions were asked was also really bad in some instances. For the first time in an exam I just had to leave some comments for some of the questions. I don't know if I'll pass or not. I think I still did OK. The lesson I learned from taking this test without preparing for it is that CCNP and CCIE are just very different ball games, and not just 2 levels of competence. You can get get away with some uncertainties as to how things really work, but in the CCNP (or at least this new version) this is much less the case. Tarek -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Byron Sent: Thursday, March 07, 2002 5:49 PM To: [EMAIL PROTECTED] Subject: Re: CCNP v3.0 [7:37500] any confirmation on the time? i plan to take it next week. byron - Original Message - From: EMW_Tech To: Sent: Thursday, March 07, 2002 1:51 PM Subject: Re: CCNP v3.0 [7:37500] I'm taking the Routing Beta tomorrow. Is it really 3 hours instead of 1 hour And was it three hours? _ Do You Yahoo!? Get your free @yahoo.com address at http://mail.yahoo.com Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=37767t=37500 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: strange problem [7:37359]
6) the crossing guard got a virus and is out sick today, now the packets don't know where to go 5) someone accidentally unplugged the internet 4) bill g$tes tried to upgrade the internet and it blue screened on him o.k. I am out of ideas... - Original Message - From: Chuck To: Sent: Tuesday, March 05, 2002 11:03 PM Subject: Re: strange problem [7:37359] David Letterman's top 10 reasons this customer can't browse the internet: 10) aliens are abducting the packets 9) someone experimenting in Tessla physics has created a time warp nearby. the packets will reach the internet tomorrow, or they may have been thrown back in time and have arrived before the internet was created 8) Art Bell is talking about this phenomenon at this very moment on his radio show 7) the server is temperamental and would rather talk to other people than your customer 6) through 2) make up your own. I have to stop because I have finally realized I will never have a successful career in comedy 1) there is an access list on the edge router that is wreaking havoc my best guess, never having seen configs or traceroutes, etc Chuck kaushalender wrote in message news:[EMAIL PROTECTED]; Hi group I am facing strange problem one of customer whom we have given 128Kbps linkand connected on ppp ecapsulation. They r not able to browse the website.When i did traceroute and ping it was working fine and customer is able to reach the internet .But when i typed www.yahoo.com in the browser the browser was respoding website found waiting for reply and it keeps on waiting .Can somebody can help me in identifing that why http request is dieng or geting killed Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=37366t=37359 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Whew! CCIE 8776! [7:35648]
Chuck, I was just going over the steps laid out in caslow's book, do you think the step 1, step 2, step 3 approach is better than the layered approach - layer 2, layer 3, access-list, etc. Thanks. - Original Message - From: Joe Morabito To: Chuck Church ; ; Sent: Wednesday, February 13, 2002 7:46 AM Subject: Re: Whew! CCIE 8776! Congrats! What did you do the last couple of months? Practice speed? Or maybe practice the many little things in IOS? Thanks! I too long for a good night sleep - Original Message - From: Chuck Church To: ; Sent: Wednesday, February 13, 2002 12:43 AM Subject: Whew! CCIE 8776! All, I think the title says it all. Took the lab today at RTP. 4th time was the charm. I don't know where to begin. Might as well start with the thank you's. Thanks to Bruce, Val, and Fred at NetMasterClass. Thanks also to those on the list that I've either studied with or have helped me out in the past with problems. Thanks also to Paul for putting this great list together. As far as how I prepared, I might as well give the whole story. Started working on Cisco about 2 1/2 years ago after going though the Novell and MS Certs. After getting NA, DA, NP, and DP, I passed the CCIE written in October 2000. Without really knowing how to study or what to prepare for, I got my butt handed to me in January at RTP. Didn't know much more than your average CCNP would. Tried again in April, but BGP killed me, and again I didn't make it to day 2. After that, I found a study partner (Thanks Boris) and we worked pretty hard last summer. Did all the bootcamp labs, thought I knew everything I needed to. November 4 of 2001, figured I'd breeze through the lab. I don't know if it's true, but I heard the first couple of months with the new 1 day format had a very low pass rate. I know I could have used a couple more hours to finish. If anyone took the lab in Oct or Nov of last year and failed, don't be discouraged. I think they've scaled it back a little nowadays. Fast forwarding to today. After spending a week with Val, Bruce, and Fred at the NMC-1 course, and doing nothing but working on my speed, I felt pretty prepared. Everything in the Doyle Volume 1 and Bruce/Val's book made sense. Though running a little low on sleep, I felt good this morning. Roughly 4.5 hours into the test, we got lunch. At that point I was done with the IGP's and almost done with the EGP's. In other words about 2/3 of the way done, by my estimate. At 1:30 I was done, but needed to go back and work on 3 things I couldn't figure out. A little discussing with the proctor, and 2 of them were fixed. But then I think I read too much. I had solved a problem one way, but realized the wording of the question might change what they were looking for. Checking with the proctor, I got the impression that he really didn't like my solution. So there I am, 1.5 hours to go, and I'm making a somewhat major change :( Looked OK, but with 1/2 an hour to go, I noticed a 'neighborship' bouncing up and down :o 10 minutes to go, got it all working, but didn't get a chance to completely double check all my other work as time expired. I know I left 1 thing unconfigured (a 2 pointer), but started wondering if I'd made other mistakes. They said to expect the results tomorrow afternoon. A plane flight back to New York, and there's the email waiting. 8776! If anyone's wondering what I used to study, here's the short list: Groupstudy! Paul's done a great job. There are certain people on this list that should be flagged as must-reads. I won't mention any last names, but there are a couple guys named 'Brian' (both long-time CCIEs) that are a huge asset to this list. Thanks guys. Doyle - Volumes 1 and 2 - Everything you ever wanted to know about IP, but were afraid to ask. Bridges, Routers, and Switches for CCIEs - Bruce Caslow and Val Pavlichenko - Used edition 2, but I understand 3 is coming out soon. This book covers most everything. I expect the new edition will cover more multicast and QOS, and drop Appletalk and DECnet. But still the most useful book I've found. Halabi - Used 1st edition, but everything I was asked to do with BGP is in that book. Bootcamp labs - Worked though these with a partner, because his company was cool enough to buy them for him, and my company wasn't! Great preparation and simulation for the test. Various docs from CCO - Might as well go to the source! Most importantly - NMC-1 http://www.netmasterclass.net/nmc/ Bruce and Val explain the most difficult subjects very well. A couple of things are a little lacking in the book, but they cover those very well in the class. Be prepared to work your a** off that week though. 8:30AM to 11PM is the norm that week. But I highly recommend it, especially if you've
Re: Whew! CCIE 8776! [7:35281]
Congrats! What did you do the last couple of months? Practice speed? Or maybe practice the many little things in IOS? Thanks! I too long for a good night sleep - Original Message - From: Chuck Church To: ; Sent: Wednesday, February 13, 2002 12:43 AM Subject: Whew! CCIE 8776! All, I think the title says it all. Took the lab today at RTP. 4th time was the charm. I don't know where to begin. Might as well start with the thank you's. Thanks to Bruce, Val, and Fred at NetMasterClass. Thanks also to those on the list that I've either studied with or have helped me out in the past with problems. Thanks also to Paul for putting this great list together. As far as how I prepared, I might as well give the whole story. Started working on Cisco about 2 1/2 years ago after going though the Novell and MS Certs. After getting NA, DA, NP, and DP, I passed the CCIE written in October 2000. Without really knowing how to study or what to prepare for, I got my butt handed to me in January at RTP. Didn't know much more than your average CCNP would. Tried again in April, but BGP killed me, and again I didn't make it to day 2. After that, I found a study partner (Thanks Boris) and we worked pretty hard last summer. Did all the bootcamp labs, thought I knew everything I needed to. November 4 of 2001, figured I'd breeze through the lab. I don't know if it's true, but I heard the first couple of months with the new 1 day format had a very low pass rate. I know I could have used a couple more hours to finish. If anyone took the lab in Oct or Nov of last year and failed, don't be discouraged. I think they've scaled it back a little nowadays. Fast forwarding to today. After spending a week with Val, Bruce, and Fred at the NMC-1 course, and doing nothing but working on my speed, I felt pretty prepared. Everything in the Doyle Volume 1 and Bruce/Val's book made sense. Though running a little low on sleep, I felt good this morning. Roughly 4.5 hours into the test, we got lunch. At that point I was done with the IGP's and almost done with the EGP's. In other words about 2/3 of the way done, by my estimate. At 1:30 I was done, but needed to go back and work on 3 things I couldn't figure out. A little discussing with the proctor, and 2 of them were fixed. But then I think I read too much. I had solved a problem one way, but realized the wording of the question might change what they were looking for. Checking with the proctor, I got the impression that he really didn't like my solution. So there I am, 1.5 hours to go, and I'm making a somewhat major change :( Looked OK, but with 1/2 an hour to go, I noticed a 'neighborship' bouncing up and down :o 10 minutes to go, got it all working, but didn't get a chance to completely double check all my other work as time expired. I know I left 1 thing unconfigured (a 2 pointer), but started wondering if I'd made other mistakes. They said to expect the results tomorrow afternoon. A plane flight back to New York, and there's the email waiting. 8776! If anyone's wondering what I used to study, here's the short list: Groupstudy! Paul's done a great job. There are certain people on this list that should be flagged as must-reads. I won't mention any last names, but there are a couple guys named 'Brian' (both long-time CCIEs) that are a huge asset to this list. Thanks guys. Doyle - Volumes 1 and 2 - Everything you ever wanted to know about IP, but were afraid to ask. Bridges, Routers, and Switches for CCIEs - Bruce Caslow and Val Pavlichenko - Used edition 2, but I understand 3 is coming out soon. This book covers most everything. I expect the new edition will cover more multicast and QOS, and drop Appletalk and DECnet. But still the most useful book I've found. Halabi - Used 1st edition, but everything I was asked to do with BGP is in that book. Bootcamp labs - Worked though these with a partner, because his company was cool enough to buy them for him, and my company wasn't! Great preparation and simulation for the test. Various docs from CCO - Might as well go to the source! Most importantly - NMC-1 http://www.netmasterclass.net/nmc/ Bruce and Val explain the most difficult subjects very well. A couple of things are a little lacking in the book, but they cover those very well in the class. Be prepared to work your a** off that week though. 8:30AM to 11PM is the norm that week. But I highly recommend it, especially if you've come close to passing before. Well, sorry to ramble on so much. I'm off to bed for a L O N G sleep. Thanks again, Chuck Church CCIE 8776 CCNP, CCDP, MCNE, MCSE Sr. Network Engineer Magnacom Technologies 140 N. Rt. 303 Valley Cottage, NY 10989 845-267-4000 x218 _ Comercial lab list: http://www.groupstudy.com/list/commercial.html Please discuss commercial lab
RE: VIP2 microcode [7:34511]
Daniel I just found out that the VIP2 is a VIP2-40 so I don't think that memory is the issue. -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] On Behalf Of Daniel Cotts Sent: Wednesday, February 06, 2002 9:48 AM To: [EMAIL PROTECTED] Subject: RE: VIP2 microcode [7:34511] Long reply coming back: The following is a cut from a show diag. Note the Controller Memory Size line. In this case it most likely is a VIP2-10. Do a search on CCO for Mandatory Memory Upgrade - here is one of the finds: http://www.cisco.com/warp/public/770/fn4489_05141999.html TGN_7507sh diagbus Slot 0: Physical slot 0, ~physical slot 0xF, logical slot 0, CBus 0 Microcode Status 0x4 Master Enable, LED, WCS Loaded Board is analyzed Pending I/O Status: None EEPROM format version 1 VIP2 controller, HW rev 2.04, board revision D0 Serial number: 04378695 Part number: 73-1684-03 Test history: 0x00RMA number: 00-00-00 Flags: cisco 7000 board; 7500 compatible EEPROM contents (hex): 0x20: 01 15 02 04 00 42 D0 47 49 06 94 03 00 00 00 00 0x30: 68 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 Slot database information: Flags: 0x4 Insertion time: 0xFF4 (7w3d ago) Controller Memory Size: 8 MBytes DRAM, 512 KBytes SRAM PA Bay 0 Information: Ethernet PA, 8 ports EEPROM format version 1 HW rev 1.14, Board revision A0 Serial number: 15355261 Part number: 73-1391-08 PA Bay 1 Information: Ethernet PA, 8 ports EEPROM format version 1 HW rev 1.12, Board revision A0 Serial number: 06632776 Part number: 73-1391-07 --Boot log begin-- Cisco Internetwork Operating System Software IOS (tm) VIP Software (SVIP-DW-M), Version 11.3(11a), RELEASE SOFTWARE (fc1) Copyright (c) 1986-1999 by cisco Systems, Inc. Compiled Mon 20-Sep-99 07:31 by jjgreen Image text-base: 0x60010910, data-base: 0x6016E000 --Boot log end-- -Original Message- From: Joseph Carr [mailto:[EMAIL PROTECTED]] Sent: Wednesday, February 06, 2002 12:56 AM To: [EMAIL PROTECTED] Subject: Re: VIP2 microcode [7:34511] ***END CUT FROM CONSOLE*** We also did a sh diag and saw that the board is disabled wedged and the memory amount is unknown (like before), and this time, it doesn't say the sw version (under sh cont cbus) and the microcode status is 0x5. Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=34666t=34511 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: VIP2 Issue [7:34330]
Georg, Unfortunately I already had the c5rsm-jsv-mz.121-10.bin image loaded. I'm going to try the c5rsm-jsv-mz.122-3.bin image and see if I still have the problem. Joe Any system that has a VIP installed must have a v image (currently av or jv). For example: rsp-ajv-mz.111-472* rsp-jv-mz.111-472* Can you check what your IOS version is exactly ? Regards, Georg Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=34426t=34330 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
aux port redial [7:34066]
I have a 2511 with a modem attached to the AUX port and I use a chat script to get the modem to dial. I have no trouble getting connected but I have to send traffic over the interface to get it to come up. So if the interface gets disconnected how can I get it come back up with issuing a ping or manually sending traffic over the line. Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=34066t=34066 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Fw: aux port redial [7:34073]
- Original Message - From: Joe carr To: [EMAIL PROTECTED] Sent: Friday, February 01, 2002 9:26 AM Subject: aux port redial I have a 2511 with a modem attached to the AUX port and I use a chat script to get the modem to dial. I have no trouble getting connected but I have to send traffic over the interface to get it to come up. So if the interface gets disconnected how can I get it come back up with issuing a ping or manually sending traffic over the line. Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=34073t=34073 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Fw: aux port redial [7:34082]
- Original Message - From: Joe carr To: [EMAIL PROTECTED] Sent: Friday, February 01, 2002 10:37 AM Subject: Fw: aux port redial - Original Message - From: Joe carr To: [EMAIL PROTECTED] Sent: Friday, February 01, 2002 9:26 AM Subject: aux port redial I have a 2511 with a modem attached to the AUX port and I use a chat script to get the modem to dial. I have no trouble getting connected but I have to send traffic over the interface to get it to come up. So if the interface gets disconnected how can I get it come back up with issuing a ping or manually sending traffic over the line. Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=34082t=34082 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
CCIE benefits [7:33871]
Does anyone know if a CCIE gets free TAC support? OR what other benefits does a CCIE receive Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=33871t=33871 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Fw: CCIE benefits [7:33872]
- Original Message - From: Joe Carr To: [EMAIL PROTECTED] Sent: Thursday, January 31, 2002 10:26 AM Subject: CCIE benefits Does anyone know if a CCIE gets free TAC support? OR what other benefits does a CCIE receive Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=33872t=33872 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
CCIE benefits [7:33874]
Does anyone know if a CCIE gets free TAC support? OR what other benefits does a CCIE receive? Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=33874t=33874 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
VIP2 ATM issue [7:33898]
I have a cat5000 with sup III and RSM w/VIP2 card. in the VIP card I have a songle port OC3 multimode fiber card installed. When I session into the RSM I cannot access the atm interface and it does not show up in a show int or a show run. I can see the VIP2 on the sup III as an expansion module. Can you help me? Thanks, Joe Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=33898t=33898 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
CCIE starting pay [7:33899]
what would be the average starting pay for CCIE with no work experience. Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=33899t=33899 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
CCIE starting pay [7:33912]
haha very funny Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=33912t=33912 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Telnet to PIX from outside interface [7:30413]
PIX cannot be telnet from outside. Use SSH instead. ietobe wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... Hi,Guy Can anybody tell me how to allow telnet from outside network on PIX? Tks Gabriel Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=30426t=30413 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Off Topic - Good 3920 simulator [7:28802]
where to download it?thanks Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=28812t=28802 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Is Pix failover can be Load balancer ? [7:26673]
Check out Alteon load balancer, they have a white paper how to do firewall load balancing. And they are very complicated expensive. And why not just buy a high end model with gigabit throughput then no need for load balancing? Sivarajan Thiruvadi wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... Hi Pals I wish to know wheather 2 cisco pix firewalls can be configured for redundancy as well as Load balancing. In general failover means in case of active PIX fails the stand by one will come into line. But my customer wants FWLB (Fire wall load balancing). If any one has idea on this please help me. Thanks and regards Siva Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=26687t=26673 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: DLSW issue [7:25179]
Just wondering how to do point number 5 without using the keyword promiscuous? Do I use dlsw prom-peer-defaults? news wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... Hey guys I need help on understanding DLSW. I can not use the keyword promiscuous any where in my config. R3 and R2 is connected to Ring 100. R5 is connected to R3 and R2 via serial link. Task: 1. establish DLSW peer from R5 and R3 and R2 2. R5 should choose R2 as a better path to reach Ring 100 3. If R2 is unavailable then R3 should be backup for R5 4. R3 and R2 should establish peer only when there is a DLSW data to sent 5. Configure R3 such a way so that if any router is added to the network will establish a peer with R3 to reach Ring 100 Any tips or suggestion on how to configure these? Faisal Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=25181t=25179 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Token Ring defined [7:24643]
Both are wrong. Physically, it is a star all connected to a token ring MAU. Logically, it a ring with token passing. Dave Luancing wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... I have conflicting reports. I see in one of my books that token ring is a physical ring - logical star. The next book claims a physical ring - logical bus. Which is correct? -D.L. __ Do You Yahoo!? Make a great connection at Yahoo! Personals. http://personals.yahoo.com Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=24644t=24643 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: What do you cats do for motivation? [7:24549]
I am sick of networking after doing it for a few years and I quit my job and take a long break for 2 years and do something that is totally irrelevant to computer. During that period, I go flying and learn my private pilot license, travel, then come back and everything change and learn all the way to my CCIE. Take a break if don't feel good. Ouellette, Tim wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... Man O Man. I'm finding it super-tough to stay motivated with all of this super-duper-heavy-geeky CCIE studying that I have to do. How do you guys keep your mind focused and your eyes straight ahead? I find it really easy to answer my phone on a friday night and talk to my buddies, next thing you know i'm at the local pub forgetting my name. I've got soo many books to ready, and soo man labs that I want to do. The light at the end of the tunnel isn't even close to being visable and it's tough. Can anyone help? btw, anyone used any audio tapes/cd's to listen to cisco type stuff during the commute to work? I was thinking about doing something like that but I think hearing my own voice speak would be enough to drive me insane. Any thoughtS? Tim Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=24602t=24549 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Feedback on SNMPc 5.1 NMS [7:23976]
SNMPc is not cheap either. Although it is a good product if you can't afford the HP openview. In my experience, those customer with that amount of routers will probably perfer something even cheaper like Whatsupgold althought there functions are limited. Nuurul Basar Mohd Baki wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... Hai, I need some feedback on a product from www.castelrock.com called SNMPc 5.1 We are testing the product here in Malaysia to be sell to other small medium co that can't pay for HP or Sun NMS. From our brief testing with the evaluation product, it is a good NMS for small scale network node. Any good or bad feedback on the product is most welcome. Currently the customer that we are about too perpouse the product is running on NT Enviroment with 8 cisco router, 6 of em are 1700S and the rest are 2600s. Thanks Nuurul Basar Mohd Baki Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=23980t=23976 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
pix firewall training docs [7:23794]
just wanted to see if anyone is interested in selling their Cisco Pix Firewall Advanced training guides email me... thanks Joe Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=23794t=23794 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: BSCI [7:23323]
Yes, there are the famous book Routing TCP/IP Volume 1 should do the jobs and you will pass with flying color if you understand all of it. fahim wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... Hi Group Can anyone suggest me book for BSCI (Building Scalable Cisco Internetworks) exam 640-900, It seems there is no Cisco press book, if you happen to give this exam, pls let me know which books you used. Thanks Fahim CCNA, CCDA Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=23326t=23323 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
vlans [7:17919]
If you have a switch that has 2 vlans (vlan1 and vlan2) using the same physical connection to the rest of the network, what happens to vlan1 if vlan2 is suffering from a broadcast storm, since both vlans traverse the same physical wire? Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=17919t=17919 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: CCIE Equipment Discounts [7:17980]
Cisco SE's get 60%. That's a good discount. I know of one company that gets 44%. Joe Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=18023t=17980 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
using the upgrade command on a GSR [7:17767]
I recently upgraded the software on one of our GSR's. All of my interfaces are going nuts. I did a show version and noticed that it was saying upgrade rom-monitor upgrade switch fabric. I tried the upgrade rom-monitor command and the router seems to be hosed. No resonse at the console. I logged into the back up GSP card and it was in rom-mon mode. So I'm a little confused as to what's going on. Anyone ever seen this before? Please let me know if you have any suggestions. Thank you. Joe Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=17767t=17767 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: I HAVE QUESTION How can i know who conn to my rout [7:17575]
Try a router show sessions show sessions is the command Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=17577t=17575 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE:QoS on CAT6k [7:17576]
You can use CAR on a router to rate-limit by aggregate. It will rate-limit by IP, sub-net, or just blanket converage. If you want to rate-limit with a CAT6k, then you must have a MSFC card. You can use CAR on the MSFC. But that is creating (one token bucket) or one rate for all the traffice within the designation. If your CAT6k has a PFC also, then you can implement microflow switching, another form of rate-limiting for QoS. Microflow switching can scale to a maximum of 32,000 flows on the PFC. After that, it will start taxing your processor. I do not know the age-out time for the flows, using microflow switching, if anyone know, please let me know. You can set microflow switching to use the ingress or egress. You create a QoS ACL, then you map the QoS ACL to either a port or a VLAN. QoS rate-limiting can also be done the same way as microflow switching, except as an aggregate; you simply choose aggregate instead of microflow. Microflow switching will rate-limit by flow. You could create a rate-limit for the flows within a VLAN, and then an aggregate rate-limit for all of the traffic. There are several ways of doing rate-limiting this way. Hope his helps. Joe Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=17576t=17576 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: CAR, is it a decent solution? [7:16737]
The way I understand it and when I used it in our lab environment CAR works good. You can rate-limit per IP, IP block, or all traffic as an aggregate. DCAR is where the processing is distributed to the VIP. So I don't see how a 2600 could use that. Of course on an interface that use a VIP card, if you go into the interface itself, you can tell it to use only cef and not dcef by typing ip cef only. Car can rate-limit using access-list which the rate-limit can references. You can also create a access-list rate-limit. CAR uses the token bucket scheme. There is one bucket for each list, unless you use the continue option, then your flow may match several limits. You can set the TOS bit or IP precendence with CAR as well. You can make it so that the flow compared to one rate-limit then continues on to as many other rate-limits as you would like. The key I think to CAR is to remember that the rate-limit looks at the flows, but acts as an aggregate. Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=16737t=16737 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Need help with Microflow Switching! [7:16549]
I need help setting up Microflow switching. I have a 6506 with a sup1a-ge, it has the MSFC and PFC in it. I can't get it to use Microflow switching. I'm trying to set our customers to a certain bandwidth limit, but it won't engage at all. If anyone can be of help, please let me knoow. If you have some questions for me, please ask! Thank you. Joe Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=16549t=16549 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Cisco Cache Engine [7:16291]
We use ce-590's a in several places. We're using WCCP v2, so our routers must run at least 12.0(11). The 2.1 code is has had a lot of problems. We've upgraded all of ours to 2.51. We're waiting for the release of the Ruby code (4.1). There will be a lot more features available in it, as well as a lot of bugs fixes. At this time we only cache http, but we average around 40% hits. This equates to about saving 10% of our back haul. The cache servers ahave worked great for us. A service such as Cidera can give you a 22mb. satellite feed, where your cache server can easily get hot content with out traversing the internet, further saving you bandwidth and delay, for a very small fee of course. Joe Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=16305t=16291 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Microflow Switching Question [7:16216]
I'm trying to learn more about microflow switching. I understand that microflow switching can rate-limit by aggregate or by flow. I would like to rate-limit ip flows going through our network that use our switch. I was looking at CAR, but CAR only uses one token bucket. I need a solution that will create a (dynamic) token bucket for every flow, instead of the flows using one token bucket for ALL bits. I've been trying to get Microflow switching to work, but have been unsuccessful. If anyone has any suggestions, please let me know. Thank you. Joe Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=16216t=16216 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Pix and WIN2K IPSec tunnel [7:16108]
Wondering if anyone can help... Here is the scenario: (untrusted - DMZ) WIN2K - PIX -- (trusted - internal WIN2K) I plan on setting up a Win2K IPSec tunnel between the two servers. Is there anything special that needs to be configured on the Pix if it will only be passing the traffic? Also, both of these servers are on the inside of a 1700 that goes out to the Internet, but that should not make a difference. Thanks. Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=16108t=16108 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
access lists [7:13928]
How can you apply an access list to a serial interface to block all internet traffic without disabling the inside people from getting out? I have a 1720 with the serial deny ip any any and the ethernet uses an inside addressing scheme with nat to get to the outside. But when I apply the deny ip any any and access-group xxx in to the serial interface, people can no longer get outside. Any ideas? Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=13928t=13928 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Urgent... [7:13351]
Change the following line at BOBKBOM dialer map ip 10.4.0.50 name BOBKHYD broadcast 0403391011 to dialer map ip 10.4.10.50 name BOBKHYD broadcast 0403391011 sakella locuz wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... Hi everybody, I am in a big problem..request ur assistance immediately... This is the configuration now working on 2 routers connected over a leased line also has a ISDN backup. While the leased line is working we tried the backup by switching of the leased line modem. The ISDN connection came up but there was nothing traversing over the connection. We checked the status, connection is absolutely OK, also we found that the leased circuit configuration when removed totally and connected over ISDN data flows smoothly. Kindly reply with exact problem...enclosed is the running config.. -- show running-config -- Building configuration... Current configuration: ! version 12.0 service timestamps debug uptime service timestamps log uptime no service password-encryption ! hostname BOBKHYD ! enable secret 5 ! username bobk password 0 username BOBKBOM password 0 ip subnet-zero ! isdn switch-type basic-net3 ! ! ! interface Ethernet0/0 ip address 10.4.10.50 255.255.255.0 no ip directed-broadcast no keepalive ! interface Serial0/0 ip address 192.168.1.1 255.255.255.252 no ip directed-broadcast no ip mroute-cache backup delay 0 600 backup interface Dialer1 backup load 60 40 no fair-queue ! interface BRI0/0 description connected to BOBKBOM no ip address no ip directed-broadcast encapsulation ppp dialer rotary-group 1 isdn switch-type basic-net3 no cdp enable ! interface Serial0/1 no ip address no ip directed-broadcast shutdown ! interface Dialer1 description connected to BOBKBOM bandwidth 64 ip unnumbered Ethernet0/0 no ip directed-broadcast encapsulation ppp no ip split-horizon dialer in-band dialer idle-timeout 600 dialer map ip 10.4.0.30 name BOBKBOM broadcast 0222805890 dialer hold-queue 10 dialer-group 1 no cdp enable ppp authentication chap ! ip classless ip route 10.4.0.0 255.255.255.0 Serial0/0 ip route 10.4.0.0 255.255.255.0 Dialer1 100 ip http server ! dialer-list 1 protocol ip permit ! line con 0 exec-timeout 0 0 transport input none line aux 0 line vty 0 4 password login ! end -- show running-config -- Building configuration... Current configuration: ! version 12.1 service timestamps debug uptime service timestamps log uptime no service password-encryption ! hostname BOBKBOM ! enable secret 5 ! username bobk password 0 username BOBKHYD password 0 ! ! ! ! memory-size iomem 25 ip subnet-zero ! isdn switch-type basic-net3 ! ! ! ! ! ! ! ! ! interface Serial0 description connected to bobkhyd bandwidth 64000 ip address 192.168.1.2 255.255.255.252 no fair-queue ! interface BRI0 description connected to BOBKHYD no ip address encapsulation ppp dialer rotary-group 1 isdn switch-type basic-net3 no cdp enable ! interface FastEthernet0 description connected to fastethernetLAN ip address 10.4.0.30 255.255.255.0 no keepalive speed auto ! interface Dialer1 description connected to BOBKHYD ip unnumbered FastEthernet0 encapsulation ppp no ip split-horizon dialer in-band dialer idle-timeout 600 dialer map ip 10.4.0.50 name BOBKHYD broadcast 0403391011 dialer hold-queue 10 dialer-group 1 no cdp enable ppp authentication chap ! ip classless ip route 10.4.10.0 255.255.255.0 Serial0 ip route 10.4.10.0 255.255.255.0 Dialer1 100 ip http server ! dialer-list 1 protocol ip permit ! voice-port 2/0 ! voice-port 2/1 ! ! line con 0 transport input none line aux 0 line vty 0 4 password login ! no scheduler allocate end -Surya- Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=13360t=13351 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: QUERY ON DLSW [7:13188]
At router B, Put the token ring into ring-list and the ethernet to port-list dlsw ring-list 1 rings 10 dlsw port-list 2 ethernet 0 Peer with router A using port-list 2 and Router C using ring-list 1 dlsw remote 2 tcp dlsw remote 1 tcp Cheers Grad Alfons Kanon wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... Thanks, I'm using dlsw. The tricky part that I am not too expert is on router B since it has both TR and Eth, so how can I guarranty that Router A to B only ethernet to ethernet, and Router B to C only TR...not between them (TR to Eth), Grad From: Nigel Taylor To: [EMAIL PROTECTED], [EMAIL PROTECTED] Subject: Re: QUERY ON DLSW [7:13188] Date: Sat, 21 Jul 2001 12:41:51 I guess the first question would be what technologies do you have implemented? Bridging, DLSW... I guess on the most basic level you could apply ACLs to limit what media talks to what. HTH Nigel From: Grad Alfons Kanon Reply-To: Grad Alfons Kanon To: [EMAIL PROTECTED] Subject: QUERY ON DLSW [7:13188] Date: Sat, 21 Jul 2001 07:32:43 -0400 Hello need Help, I have three routers: Router A with ethernet Router B with Token RIng and Ethernet Router C with TOken RIng. How can i configure my routers to guarranty that only TR talk to TR and Etehernet to Ethernet , not between them, Tx Grad _ Get your FREE download of MSN Explorer at http://explorer.msn.com/intl.asp _ Get your FREE download of MSN Explorer at http://explorer.msn.com/intl.asp Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=13193t=13188 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Networkers presentation links [7:13121]
Does anyone have the URL's of the 2001 Networkers' CCIE Power Sessions? Thank You! - Sean Padhu (LFG) , Cisco Mail List oe.com , CCIE_Lab Groupstudy List Sent by: cc: nobody@groupsSubject: RE: Networkers presentation links tudy.com 07/19/2001 01:17 PM Please respond to Padhu (LFG) Thanks Chuck, Great resource here. http://www.cisco.com/networkers/nw01/pres/preso/RoutingandSwitchingTechnolog ies/RST-204.pdf Was just going thro this ...Look at te one on privilege levels. I am pasting whats out there. show running-config looks like it needs more than the defined privilege levels to get this to work. I have tried enabling router level, Ip under interface etc...only to still see part of the config.. I wonder if you have to enable a long list of things to see the entire running-config... Might as well give 'em a print out of the config for the level 5 users. -) any ideas ? Cheers,Padhu -- -- - username gltest privilege 5 password 0 gltest privilege configure level 5 interface privilege interface level 5 shutdown privilege exec level 5 show ip route privilege exec level 5 configure terminal privilege exec level 5 show running-config Now i do disable 5 R5#show running-config Building configuration... Current configuration: ! ! ! interface Loopback0 ! interface Ethernet0 ! interface Serial0 ! interface Serial0.1 point-to-point ! interface Serial0.2 multipoint ! interface Serial1 ! interface BRI0 shutdown ! ! end R5# -Original Message- From: Chuck Larrieu [mailto:[EMAIL PROTECTED]] Sent: Thursday, July 19, 2001 2:39 PM To: Cisco Mail List; CCIE_Lab Groupstudy List Subject: Networkers presentation links I know these have been posted before, but in case you missed it: http://www.cisco.com/networkers/nw01/pres/index.html lots of big PDF files. you may want to download or view over higher speed connections. enjoy Chuck **Please read:http://www.groupstudy.com/list/posting.html **Please read:http://www.groupstudy.com/list/posting.html Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=13137t=13121 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Cisco links for IS-IS study required, please [7:11305]
I too can't find any detail explanation of ISIS on the web. The most detail coverage I find is in Jeff Doyle book TCP/IP Routing Volume 1. Or you may try http://www.nanog.org/ they have a few presentation about ISIS. Peter Topp wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... Hope you people can help, I'm due to sit the BSCI beta in 2 weeks time. I don't seem to be able to find any meaty links on cisco's site using their search engine. Hope someone can provide a couple of URLs to help. Thanks in advance, Pete Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=11306t=11305 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Fw: No Arrow Keys Hyper Term ??? [7:11221]
Yup, I had the same problem, you must install service pack 2 for win 2k. I found the bug on Microsofts web site. Joe Morabito mailto:[EMAIL PROTECTED] - Original Message - From: Circusnuts To: Sent: Friday, July 06, 2001 9:44 PM Subject: No Arrow Keys Hyper Term ??? [7:11221] Anyone else had this issue ??? I upgraded my PC from 98 to 2000 the arrow keys no longer work in Hyper Term only ??? Thanks Phil Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=11227t=11221 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Any used router to be sold in Hong Kong ? [7:10966]
There are few for auction at www.go2hk.com now. Charles Peter wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... _ Get Your Private, Free E-mail from MSN Hotmail at http://www.hotmail.com. Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=10980t=10966 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
supervisor engine [7:9902]
Does anyone know if you can use the ports of a supervisor engine (which ever model) for trunking? Or do you always need to use a port from the chasis...Assuming you have no rsm. Thanks. Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=9902t=9902 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Cisco Certs [7:8807]
I thought Cisco is more of a software (IOS)company than a hardware company? -Bubba Omer Ehsan Dar wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... Dear paul, Hi, being an electrical engineer myself I have to say that I agree with all the points you made except one. That is the one comparing SAP to CCIE. If you look into it deeply SAP was a software Cisco is basically a hardware company. So if some has been a CCIE for a couple of years and had worked with the myrid of equipment available chances are that he wont disappear so easily. he will get work maybe not for 120K to 150K but maybe 100K he will be needed because Computer Networks are going to stay. so even if Cisco is replaced with another company the laws of networking are not going to change they are the same. As in Electrical engineering Ohm's law is still the same that is for those who dont know Voltage = Current x Reisitance (V=IR) (sic! couldnt resist it). Another analogy is for software programmers, if you made a program in the original Fortran or Algol you can still run it in the latest version of C++ or Visual Basic. That is my opinion of course. Omer Ehsan Dar Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=8950t=8807 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: need a hand with a IPSEC tunnel [7:8703]
Seem like you crypo isakmp policy doesn't match and it try the default and still don't work. Make sure your crypto isakmp policy match. By typing and check R3#show crypto isakmp policy Default protection suite encryption algorithm: DES - Data Encryption Standard (56 bit keys). hash algorithm: Secure Hash Standard authentication method: Rivest-Shamir-Adleman Signature Diffie-Hellman group: #1 (768 bit) lifetime: 86400 seconds, no volume limit Winchester, Derek wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... Any of you that have used ipsec with the Cisco box, could you shed some light on this matter. For some reason I cant get pass phase one. All of the perameters seem to match up. Here is the log. 2d18h: ISAKMP: encryption DES-CBC 2d18h: ISAKMP: hash MD5 2d18h: ISAKMP: default group 1 2d18h: ISAKMP: auth pre-share 2d18h: ISAKMP: life type in seconds 2d18h: ISAKMP: life duration (basic) of 720 2d18h: ISAKMP (0:1): atts are not acceptable. Next payload is 0 2d18h: ISAKMP (0:1): Checking ISAKMP transform 1 against priority 65535 policy 2d18h: ISAKMP: encryption DES-CBC 2d18h: ISAKMP: hash MD5 2d18h: ISAKMP: default group 1 2d18h: ISAKMP: auth pre-share 2d18h: ISAKMP: life type in seconds 2d18h: ISAKMP: life duration (basic) of 720 2d18h: ISAKMP (0:1): atts are not acceptable. Next payload is 0 2d18h: ISAKMP (0:1): no offers accepted! 2d18h: ISAKMP (0:1): SA not acceptable! 2d18h: ISAKMP (0:1): incrementing error counter on sa: PROPOSAL_NOT_CHOSEN 2d18h: %CRYPTO-6-IKMP_MODE_FAILURE: Processing of Main mode failed with peer at 1 92.128.101.16 2d18h: ISAKMP (1): sending packet to 192.128.101.16 (R) MM_NO_STATE 2d18h: ISAKMP (0): received packet from 192.128.101.16 (N) NEW SA Derek S. Winchester IPSS Network Engineer IP Services Business Unit Lucent Technologies Phone: 978-298-2143 Cell: 978-973-4561 Fax: 978-298-2006 [EMAIL PROTECTED] Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=8739t=8703 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
lab questions [7:8506]
I have seen the equipment list etc. for the ccie r/s lab. I have a couple of questions: How will ISDN be simulated? If a simulator (ie Teltone) is used, will we be required to know how to configure it? How will frame relay be simulated? Is that provided by the lab or will we have to configure a router as a frame relay switch? Please answer within NDA. Thanks. Joe Morabito mailto:[EMAIL PROTECTED] Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=8506t=8506 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
lab no more 12 months.. [7:8509]
Did anyone catch that the lab must now be taken no longer than 18 months. I was looking at the web site and was surprised to see this change. Has anyone else seen any other changes? I heard a rumor about 2900 series switches in the lab. Joe Morabito mailto:[EMAIL PROTECTED] Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=8509t=8509 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: lab no more 12 months.. [7:8509]
Here is the url: http://www.cisco.com/warp/public/625/ccie/ccie_program/policies.html Here is the quote from the site: Written Exam Expiry Candidates must attempt the CCIE Lab exam within 18 months of passing the CCIE Qualification exam. As long as a candidate attempts the CCIE Lab at least once every 12 months after the first lab attempt, the candidate may take up to three years to pass the Lab Exam. However, if a candidate has not passed the CCIE Lab exam within three years of passing the written exam, he or she must retake the CCIE Qualification exam before the candidate will be allowed to schedule the Lab exam again. -Original Message- From: Robert Nelson-Cox [mailto:[EMAIL PROTECTED]] Sent: Thursday, June 14, 2001 10:24 AM To: Morabito Joe Subject: Re: lab no more 12 months.. [7:8509] From: Morabito Joe Reply-To: Morabito Joe To: [EMAIL PROTECTED] Subject: lab no more 12 months.. [7:8509] Date: Thu, 14 Jun 2001 08:45:35 -0400 Did anyone catch that the lab must now be taken no longer than 18 months. I was looking at the web site and was surprised to see this change. Nope, can't find it. The one change I can find is that if you score less than 20 points on your first day, you have to wait six months before trying again, but you only have to wait 30 days if you score over this. Has anyone else seen any other changes? I heard a rumor about 2900 series switches in the lab. Can't see the point, their is little difference between these and the 5000s. The G's are a little different being classical IOS based. Rob./ Joe Morabito _ Get Your Private, Free E-mail from MSN Hotmail at http://www.hotmail.com. Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=8525t=8509 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
IPexpert.net [7:6698]
Has anyone purchased their workbook? Is it any good? Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=6698t=6698 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Back to back Serial for Cisco 2621 [7:6497]
Does any one know a cable supplier for a dce/dte cable to connect two cisco 2621 routers with dual serial modules (wic-2t, with smart jack). I looked through the archives and found alot od 2500 cables but nothing for the new connector. Thanks Joe Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=6497t=6497 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Back to back Serial for Cisco 2621 [7:6497]
Thanks to all. I didn't see the smartjack cables when I went out earlier. I'm on the right track now. Joe Joe Cremer wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... Does any one know a cable supplier for a dce/dte cable to connect two cisco 2621 routers with dual serial modules (wic-2t, with smart jack). I looked through the archives and found alot od 2500 cables but nothing for the new connector. Thanks Joe FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=6517t=6497 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Is it really worth it? CCIE [7:5725]
of redundancy or complex scenario questions) and an overall difficulty not related to technological issues but grammar, construct and marketing. As such, passing proves that you can do one thing - pass the test. It doesn't mean that you can troubleshoot, design, deploy or manage anything. Is Erlang-B important in routing and switching? Is knowing the port density on the Z series router valuable when the product was replaced two years ago? It's not sour grapes - I'm certified. But, its on the last page of my resume, and its not who I am. I'm me, and I happen to be certified. Its not I'm certified (along with X others) and I'm one of many. Also, I know a lot of people who will not disclose their certs, including CCIE, unless asked. It's being humble. I don't think that anyone is incapable of passing the X test/exam. Its a matter of time, money, pain and desire. A lot of great people in this industry are great because they are good - not because a test told the world that they were. --- Donald B Johnson jr wrote: I don't agree, people who write technically, their reputation is centered around how accurate their writing is, and where mistakes are made how quickly they fix those errors. I don't see where failing a test, would invalidate anyone's writing or lessen their reputation. The quoted explanation may be true I am not disputing that, it probably is a factor, I just think it is unfounded. - Original Message - From: Kevin Schwantz To: Sent: Thursday, May 24, 2001 8:07 AM Subject: Re: Is it really worth it? CCIE [7:5725] Did you know that many of the top Cisco engineers are not CCIE qualified? I have always wondered why people like Sam Halabi and the likes do not get certified.A Cisco employee told me that these people have everything to lose and nothing to gain if they take the CCIE exam. If they refrain from taking the tests, their reputation stays intact. If they take the test and fail, people will start to question their credibility. Kevin Morabito Joe wrote in message ... Hi, === message truncated === = Robert Padjen __ Do You Yahoo!? Yahoo! Auctions - buy the things you want at great prices FAQ, list archives, and subscription info: Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=5895t=5725 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Is it really worth it? CCIE [7:5725]
Hi, I want to ask a question to those already CCIEs. Is it really worth it? Don't get me wrong, I love the work and the learning. I actually plan to take the lab by july of next year, but how has your life changed since obtaining your ccie? Was it what you expected? Better or worse? Please share your life experience after reaching the big goal. Personally I can't wait to achieve CCIE status. Thanks. Joe Morabito Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=5725t=5725 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
lab-troubleshooting [7:5033]
Without disclosing much as per NDA, is the troubleshooting portion similar to the setup. The lab setup requires you to perform certain configs in certain times. Is troubleshooting similar, or do you just walk in and they say o.k. now find out what is wrong and fix it... Thanks. Joe Morabito Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=5033t=5033 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
any atm left? [7:4551]
With cisco taking atm lane out of the lab, will we be required to connect to any atm devices? I am wondering because I am almost done with my lab and would like to know if I need an atm equipment. Thanks Joe Morabito mailto:[EMAIL PROTECTED] Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=4551t=4551 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
ccbootcamp [7:4570]
Are the labs from ccbootcamp really that good? Their testimonial have many people saying they passed on their first attempt. Thanks. Joe Morabito mailto:[EMAIL PROTECTED] Tel.(860) 408-3463 Fax.(860) 408-6263 Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=4570t=4570 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
ccie study in hartford [7:4393]
Anyone interested in studying with a partner in the Hartford, CT area? I have a halfway sized lab and am looking to expand. Thanks. Joe Morabito mailto:[EMAIL PROTECTED] Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=4393t=4393 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: CCIE Lab Practice [7:4395]
CCIE lab practice kit. Lupi, Guy wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... Does anyone know of a book that has some realistic CCIE lab scenarios? I have a lab with most of the equipment necessary but I don't want to waste my time with lab scenarios that I won't see in the real lab exam. Any help is appreciated. FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=4407t=4395 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: On-line registration for the CCIE RS lab [7:4149]
I try to login it too and the id is case sensitive. i.e it doesn't accept SPxxx but accept spxx?! ElephantChild wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... On Fri, 11 May 2001, Brian Dennis wrote: Dang I feel kind of left out ;) You shouldn't. I tried to register online and it won't accept my testing ID. -- Someone approached me and asked me to teach a javascript course. I was about to decline, saying that my complete ignorance of the subject made me unsuitable, then I thought again, that maybe it doesn't, as driving people away from it is a desirable outcome. --Me FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=4189t=4149 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: NEED CCIE in WEST VIRGINA AREA [7:2986]
Claudette, Please never again send a job posting to a technical news server. There is a news server set up at groupstudy specifically for job postings. The mail sever you sent your job post to is for technical knowledge sharing and not for head hunting. Thank you for your cooperation with this matter. -Joe Harris CCIE# 6200, Security, Voice AIM Management 11 Greenway Plaza, Suite 100 Houston, TX. Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=2986t=2986 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: CID Beta Exam Score Report [7:896]
Yep finally got mine, 840 - shocker, because i spent a good half hour at the end of the exam in the comments asking for clarity, and voicing my opinion on the seeming ambiguity of this "Cisco Secure VPN" exam. In retrospect it was a good exam - the type to keep you guessing (for 4 months) whether you passed - in that if i didn't actually know what i was talking about, had a variety of on-the-job experience, was creative about knowing what could and might work(around) in a given situation, and willing to have my expectations and exam-time personal security turned upside down i would truly have no hope of passing. gotta love them beta exams... Get your Free E-mail at http://sitamoht.zzn.com Get your own FREE Web and POP E-mail Service in 14 languages at http://www.zzn.com. Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=1217t=896 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
$$$ for labtime [7:179]
I am looking to take the CCNA exam soon, but would like some solid lab time. What is a benchmark for say five four hour sessions with a set/rack of routers? Thanks, Joe Dewberry Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=179t=179 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: [Critical] GBIC over MMF...
Gary, Check out http://www.canoga.com/fast_lan.htm model 9120. HTH's Joe At 07:04 PM 3/22/01, ±è±ÔÇü wrote: Hi~ Everyone... I have some questions for GBIC. I'm gonna install the Cat 4003 connected to remote distribution switch over MMF. But distance is the problem. Distance between Cat 4003 and Cat 2948G-L3 is about over 600m using MMF. I know that distance limitation of MMF is 500m and so I need the solution to overcome this. Do you know about "extender" or "repeater" which I can apply? Thanks,. Gary KIM in Korea... _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: What's the benefits of using cluster between CAT3500 switches?
http://www.cisco.com/warp/public/779/smbiz/multimedia/download.html Check out this link. JJ _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Phone line simulator
I am looking for a phone line simulator to do some dial-up practice using modems. I would appreciate any recommendation of model, price and setup. And I wonder a low cost PABX can do the job? I ask this because the ISDN simulator is too expensive for me and if I use the modem dial-up for practice, will I lose anything that I can't do? Thanks in advance _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: 0s and 1s??
http://www.optimized.com/COMPENDI/ -Original Message- From: Howard C. Berkowitz [SMTP:[EMAIL PROTECTED]] Sent: Thursday, March 08, 2001 1:04 PM To: [EMAIL PROTECTED] Subject:Re: 0s and 1s?? In ethernet, are the bits, 0s and 1s, 0 volts and +5 volts? I saw that on my CCNA test but did not see it in the books I used. Is that true? Without SIGNIFICANT clarification, as to which specifications the question refers, it's insanely false. To begin with, a bit being sent to the medium doesn't exactly correspond to medium signals. The actual medium (at least the electrical ones with which I am familiar) use Manchester encoding. Second, if we include optical ethernet, what do voltages have to do with it? If the question refers to AUI, RJ45/10BaseT, etc., it needs to be clear that's what it means. It feels like yet another test writer taking the easy way out, testing for a factoid that he or she doesn't really understand. Since I am getting crotchety about this, I conclude I need lunch. _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Study Group in Central Valley, CA
Hello Group, Check this url: http://www.cisco-users.org/index.htm I'd like to try to get something like this together in the Central Valley area of Cal, primarily the Tracy/Manteca area. Anyone interesed? _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Free Cisco Router
I can have it picked up tomorrow night! I'm in Monroe, but will have someone over there to do a turn up Thursday afternoon, evening, and I could have them pick this up from you. Thanks- Joe Freeman, CCNA/CCDA Brian wrote: thats right a free router. Its a Cisco IGS (Dual Ethernet Router). It has a dead fan in it. But you can get the Fans new from electronic houses like Newark and Digikey, etc. It still works, even with a dead fanjust gets a little hot. Not sure of the mem config, I think the ios is 9.x or 10.x something like that. Anyways, all you have to do is pay shipping. Its 14x13x4 and weighs 10-12lbs I would say. No catches, a free router. If you aren't willing to pay shipping, please don't respond. When you goto ups.com and plug in the above dimensions and weight, and zip codes (I am in 71101 shreveport, LA), I will charge you that exact amount plus $5 (to cover my time to prep this and the cost of the box, penuts etc). Brian --- I'm buying / selling used CISCO gear!! email me for a quote Brian Feeny,CCDP,CCNP+VAS Scarlett Parria [EMAIL PROTECTED] [EMAIL PROTECTED] 318-222-2638 x 109318-222-2638 x 101 Netjam, LLC http://www.netjam.net 1401 Oden St. Suite 18 Shreveport, LA 71104 Fax 318-221-6612 _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: T-1 Cross-over
A T-1 has four wires on an rj-45 connector. 1-2/4-5 . I use the orange and blue pair. wo-1/ow-2 wb-4/bw-5 on one end. wb-1/bw-2 and wo-4/ow5 on the other end. ""Roan, Wayne"" [EMAIL PROTECTED] wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... Group, I have a 4000 and a 2501. I am building a test lab and was going to use a couple of CSU/DSUs connected together via a T-1 cross-over cable. Has anyone ever done this and is this the best way to construct a lab? Thanks, Wayne _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: IP Protocol 89?
Heydoes anybody have a net xray .cap file they could post to the group? All of the networks I have seen have NO OSPF! I'd like a chance to run it thru a sniffer and see the traffic patterns, decodes etc ""Kane, Christopher A."" [EMAIL PROTECTED] wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... In trying to understand OSPF in much more detail, I am reading RFC 2328. Several times Mr. Moy refers to OSPF as " IP Protocol 89". I checked the "RFC/Port Number" page that I reference often (http://www.networksorcery.com/enp/default0301.htm) and found that indeed OSPF is IP Protocol 89. I have not seen this before. Sure, I've worked with TCP/UDP port numbers, but this is the first time I've paid attention to the fact that the protocols themselves have numbers too. This is interesting. Should I look at 89 as a number that can be manipulated as I would 23 (telnet) or 69 (tftp)? Can someone explain where these numbers are used? Are they found in headers? As networkers, are we concerned with these numbers? Does anyone commonly filter based on a protocol's number? Or is getting this granular an exercise in futility for a network engineer? Thanks, Chris _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Micronet Solution Cisco Virtual lab
I have been using this lab for the past 2 days and it has been terrific. These guys are preparing for their CCIE lab too so they can customize the lab to fit your need. Joe __ Do You Yahoo!? Yahoo! Auctions - Buy the things you want at great prices! http://auctions.yahoo.com/ _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Denial of Service question [1:2057]
You can use ip inspect statements if you are running the firewall IOS.=20 ip inspect max-incomplete high 100 ip inspect max-incomplete low 50 ip inspect tcp synwait-time 5 There are lots more commands you can use to help cut down DOS effects.=20 Joe Johonness I have a question on Denial of Service attacks. i was told that you could prevent a denial of service attacks by just a few lines of code on your router. =20 Does anybody know what those lines of code are if they exist??? Geoffery Raney _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]