RE: Data Center Design [7:74126]
Larry just about designed my one also, so I recommend him as a vital source of info. Its still going strong here. -Original Message- From: Larry Letterman [mailto:[EMAIL PROTECTED] Sent: Tuesday, 19 August 2003 10:49 AM To: [EMAIL PROTECTED] Subject: RE: Data Center Design [7:74126] Are you interested in doing the ground up, or just the network Side..I have been involved in both... Larry Letterman Cisco Systems -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Juan Blanco Sent: Monday, August 18, 2003 2:22 PM To: [EMAIL PROTECTED] Subject: Data Center Design [7:74126] Team, Where will I be able to find information about designing a Data Center Room. As always I appreciate your help and recommendation. Thanks, Juan **Please support GroupStudy by purchasing from the GroupStudy Store: http://shop.groupstudy.com FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html **Please support GroupStudy by purchasing from the GroupStudy Store: http://shop.groupstudy.com FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html ** This email and any files transmitted with it are confidential and intended solely for the use of the individual or entity to whom they are addressed. If you have received this email in error please notify the system manager. This footnote also confirms that this email message has been swept by MIMEsweeper for the presence of computer viruses. www.solution6.com ** Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=74138t=74126 -- **Please support GroupStudy by purchasing from the GroupStudy Store: http://shop.groupstudy.com FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
traffic flow [7:73495]
Hey All, Got a question about traffic flow into and out of a branch office. I have a branch office with only a handful of users, but with high demands on the WAN. This particular office has a 256k/32k frame connection into me (the HQ) but a crying out for greater bandwidth and pipe access. What my problem is, is understanding how these users are using up all there network bandwidth. I have no access list in place between me and them (however I will be going down this road). Whats I want to do, is have a look at the traffic and determine what type of traffic it is. I bet we have people in that office just watching video of the CEO from the HQ. I have enabled IP NBAR on the serial and Ethernet interfaces and have noticed that 70% of the traffic, is unclassified. How can I view this data to just get then router to tell me the IP source and the port number associated with this traffic? I also would like to put down a quality of service map for known business applications, and grant them priority over any other traffic. Has any one done this and if so can you send snippets of your config or link to doco's Thanks all for your help John Sydney Australia ** This email and any files transmitted with it are confidential and intended solely for the use of the individual or entity to whom they are addressed. If you have received this email in error please notify the system manager. This footnote also confirms that this email message has been swept by MIMEsweeper for the presence of computer viruses. www.solution6.com ** Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=73495t=73495 -- **Please support GroupStudy by purchasing from the GroupStudy Store: http://shop.groupstudy.com FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
mrtg [7:73702]
Hey All, Still going with my traffic analysis. God a small problem with MRTG. Does any one here know how to integrate the output of multiple nodes through the instance of a single mrtg.cfg file? At the moment, I am using multiple mrtg.cfg. fles and have a hard tme navigating between all the different nodes.. John ** This email and any files transmitted with it are confidential and intended solely for the use of the individual or entity to whom they are addressed. If you have received this email in error please notify the system manager. This footnote also confirms that this email message has been swept by MIMEsweeper for the presence of computer viruses. www.solution6.com ** Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=73702t=73702 -- **Please support GroupStudy by purchasing from the GroupStudy Store: http://shop.groupstudy.com FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Command rejected: FastEthernet5/14 not an access port. [7:72674]
Hi all, I am wishing to implement port security on my 4006 + supIII using Version 12.1(13)EW1 I tried to enter the command SYD_CORE1(config)#int fastEthernet 5/14 SYD_CORE1(config-if)#switchport port SYD_CORE1(config-if)#switchport port-security max SYD_CORE1(config-if)#switchport port-security maximum 2 ? SYD_CORE1(config-if)#switchport port-security maximum 2 Command rejected: FastEthernet5/14 not an access port. I then confirmed my config for the port interface FastEthernet5/14 description a computer internal switchport access vlan 11 no snmp trap link-status Can any one tell me why I would get the error? I have tried this on a few ports now and got the same error every time. I looked on the cisco site and around deja, and found nothing about the error. Can any one provide some help John ** This email and any files transmitted with it are confidential and intended solely for the use of the individual or entity to whom they are addressed. If you have received this email in error please notify the system manager. This footnote also confirms that this email message has been swept by MIMEsweeper for the presence of computer viruses. www.solution6.com ** Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=72674t=72674 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
vpn ispec error [7:72297]
any one seen this before Attempting to specify an Aggregate Group reservation [ 961150977 bps ] on Group [ 193.128.x.x] Interface [ 2 ] which is outside the range of a minimum of [ 8000 bps ] to a maximum of [ 1 bps ] (note: the true max is dependant u pon the interface link rate to which the group is applied). could this be an MTU size issue on the other sides connection? I am stuck on this one John ** This email and any files transmitted with it are confidential and intended solely for the use of the individual or entity to whom they are addressed. If you have received this email in error please notify the system manager. This footnote also confirms that this email message has been swept by MIMEsweeper for the presence of computer viruses. www.solution6.com ** Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=72297t=72297 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Checkpoint to Pix conversion tools [7:72088]
Hi, Any one ever came across tools to do this, apart from the ones on offer by SolSoft. Any open source out there yet ? What's every one up to? I am here in Sydney looking at Disaster Recovery situations, and moving to a PIX environment. Not much new happening, got less Cisco based work to do, and more Sys Admin work, mostly Solaris which is quite interesting all the same. One thing that I wish to implement, is traffic shaping. Has any one got an idea if Selective Packet Discard, is turned on by default on various IOS versions 12.2(2). I have had 2 instances this month of a site going down due to a flood of traffic going through its tiny 256k link into the main site. Would also, love to traffic shape those annoying people that I work with down to a crawl on the network (local lan). Has any one done this before. Thanks for your time. What are you people doing, anything new and exciting ? John Sydney Australia ** This email and any files transmitted with it are confidential and intended solely for the use of the individual or entity to whom they are addressed. If you have received this email in error please notify the system manager. This footnote also confirms that this email message has been swept by MIMEsweeper for the presence of computer viruses. www.solution6.com ** Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=72088t=72088 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Cisco Training [7:71809]
Hi, Any one ever been to one of these 5 day training places for various CCNP exams ? Are they any good, or am I just better of reading the book again and working on the labs with my own gear (yes I have quite a few routers here, but never the time) I am on my quest for CCNP then on to CCIE, however between work and being a dad, I just never get the time any more Thanks for your feedback ** This email message (and attachments) may contain information that is confidential to Solution 6. If you are not the intended recipient you cannot use, distribute or copy the message or attachments. In such a case, please notify the sender by return email immediately and erase all copies of the message and attachments. Opinions, conclusions and other information in this message and attachments that do not relate to the official business of Solution 6 are neither given nor endorsed by it. * Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=71909t=71809 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Cisco Training [7:71811]
Hi, Any one ever been to one of these 5 day training places for various CCNP exams ? Are they any good, or am I just better of reading the book again and working on the labs with my own gear (yes I have quite a few routers here, but never the time) I am on my quest for CCNP then on to CCIE, however between work and being a dad, I just never get the time any more Thanks for your feedback ** This email message (and attachments) may contain information that is confidential to Solution 6. If you are not the intended recipient you cannot use, distribute or copy the message or attachments. In such a case, please notify the sender by return email immediately and erase all copies of the message and attachments. Opinions, conclusions and other information in this message and attachments that do not relate to the official business of Solution 6 are neither given nor endorsed by it. * Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=71911t=71811 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Cisco Training [7:71809]
Hi, Any one ever been to one of these 5 day training places for various CCNP exams ? Are they any good, or am I just better of reading the book again and working on the labs with my own gear (yes I have quite a few routers here, but never the time) I am on my quest for CCNP then on to CCIE, however between work and being a dad, I just never get the time any more Thanks for your feedback ** This email message (and attachments) may contain information that is confidential to Solution 6. If you are not the intended recipient you cannot use, distribute or copy the message or attachments. In such a case, please notify the sender by return email immediately and erase all copies of the message and attachments. Opinions, conclusions and other information in this message and attachments that do not relate to the official business of Solution 6 are neither given nor endorsed by it. * Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=71809t=71809 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Cisco Training [7:71811]
Hi, Any one ever been to one of these 5 day training places for various CCNP exams ? Are they any good, or am I just better of reading the book again and working on the labs with my own gear (yes I have quite a few routers here, but never the time) I am on my quest for CCNP then on to CCIE, however between work and being a dad, I just never get the time any more Thanks for your feedback ** This email message (and attachments) may contain information that is confidential to Solution 6. If you are not the intended recipient you cannot use, distribute or copy the message or attachments. In such a case, please notify the sender by return email immediately and erase all copies of the message and attachments. Opinions, conclusions and other information in this message and attachments that do not relate to the official business of Solution 6 are neither given nor endorsed by it. * Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=71811t=71811 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
TEST 0347 [7:70468]
** This email and any files transmitted with it are confidential and intended solely for the use of the individual or entity to whom they are addressed. If you have received this email in error please notify the [EMAIL PROTECTED] www.solution6.com ** Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=70468t=70468 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
OSPF redistribution question with BGP [7:69914]
Hi All (long one) Have my WAN running OSPF using a third party for the virtual Frame cloud (telstra tpips), have just merged with a company that runs BGP over there WAN and also use a third party for the virtual frame/IP cloud (not Telstra Tpips). There is a single site that both companies share, where there is a single 2620 (its a datacentre) with 2 serial interfaces. My company uses serial 0, there company uses serial 1. They have a notes expert in one of there sites on there WAN, which I now need to get working via PC Anywhere to one of my servers on my WAN. Can any one see the challenge yet ? At present, the routing between orgs is not shared, thus OSPF (process 10) on the shared 2620, is not being redistributed into BGP on there WAN, mainly because we have found out that we both use the same IP scheme in places, and redistributing could be very painful. My question is, can I try the following. On my OSPF network, from the shared 2620, could I not create a route distribution list and add that to the OSPF argument , then create the appropriate access list for the subnet that the notes expert is on ? This would then hopefully inject a route from this 2620 into my OSPF network, with this 2620 being the advertising router to the notes expert ? Well, I tried that, and I did not see any changes. Had the notes guy on the phone and neither of us could do a trace route. I noticed that when I did a trace route, the packet would go one hop then come back, then my local router would send it back one hop, then that next hop router would send it back,,very odd. As I know almost nothing about BGP, could I redistribute BGP selectively into OSPF ? Both companies use private 10.x IP schemes. If any one has played with this sort of stuff using a third party for the virtual IP cloud, I would love to learn how you got it working. Thanks all John Sydney Australia ** This email message (and attachments) may contain information that is confidential to Solution 6. If you are not the intended recipient you cannot use, distribute or copy the message or attachments. In such a case, please notify the sender by return email immediately and erase all copies of the message and attachments. Opinions, conclusions and other information in this message and attachments that do not relate to the official business of Solution 6 are neither given nor endorsed by it. * Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=69914t=69914 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: port/duplex configs [7:69582]
I would like to tell you about a problem I had in relation to this. In November last year, I rolled out a new building for my current employer. We are not a huge company, but it was around 600 ports using 100% Cisco gear. The challenge was, that on thursday night, I took delivery of the gear. Friday it had to be in the new building and working, as with all the servers, routers, firewall and etc (did I mention that we did an IP change that same night across the WAN) Any way, the sys admins, gave me 6 machines that were used here in our company to test with. I configured the ports, as 100MB full, no auto as some machines had problems with this. So with all 600 floor ports configured, machines were taken out of the box's and turned on. Only about 200 of the 600 machines got a network link up. I could not understand this. I spent around 40 minutes looking at the switch configs looking for error's. Just saw non active ports. By this time, the Regional manager was yelling and screaming. I told him to hang on, as I will get this sorted out soon (the sys admins were encouraging this guy as we dont get along, they dont know much outside of right clicking objects).. I played with the port settings on a handful of ports, set them back to auto, set others to 10mb. This was proving to work. The problem was, that the ghost image created by the sys admins, was not such a standard at all. In total, there were around 5 images in use out on the floor. All created back in the days when this company was using hubs. On some of the PC's, the network settings of the NIC, was set to 10mb/s, others were set to 100mb/s half dup...It was a nightmare. In the end, I got the network running fine, however I did look stupid for a period of time. WHilst I was getting the network running, the sys admins took the regional manager to breakfast to calm him down. They had a good chat about why this was my fault...Now days, those sys admins, only have 512kb/s access to the rest of the network as opposed to Gig E. Summary, get better sys admins. Sys admins must start to understand that there ghost images and your network need to work together. Hope this helps some of you. It has made me a better technician. John Sydney Australia -Original Message- From: John Neiberger [mailto:[EMAIL PROTECTED] Sent: Thursday, 29 May 2003 2:43 AM To: [EMAIL PROTECTED] Subject: Re: port/duplex configs [7:69582] I don't have enough time at the moment to explain this as well as I should. Do a quick search on autonegotiation in the archives and I have some recent postings that explain it better. here's the short version: The only connection method specific in the FastEthernet standard is AUTO. If you do anything other than AUTO you are out of spec and the behavior is not consistent. When you manually set your speed and duplex settings some devices disable autonegotiation (NWAY) entirely. Others still participate in NWAY but they only offer the configured settings. The problems occur when you connect two devices that use different methods. If you do, you're guaranteed to get a duplex mismatch. The side that completely disables NWAY will stick to your manual settings, 100/Full, for example. The other side, if it still participates in NWAY, will still expect an NWAY-capable device to be attached. Since it doesn't detect NWAY, it falls back to half duplex, and there's your mismatch. Cisco's newer switches--like the 6500s and 2950s--disable NWAY entirely if you manually set the speed and duplex. About 98% of the NICs in our environment use the other method, which almost guarantees failure if we don't use AUTO. If you're going to manually set your settings with newer switches, 100/Full is the absolute worst possible setting. If you want high speed with manual settings the best setting is 100/Half. That way, if connect two devices that behave differently, you'll still be okay when the NWAY-capable NIC falls back to half duplex. Cisco's older switches, like the 2900XL series, still participated in NWAY even if you used manual settings. So, if you have a 2924XL with manual settings that needs to be replaced and you replace it with a 2950-24 with the identical config, I wish you luck for you are about to learn all of this the same way I did. I used to be a radical anti-auto person until I got our 6513, 2948Gs, 2980Gs, and a bunch of 2950s. I've since changed my mind and I'm now a very pro-AUTO person. The real killer here is that most NICs will continue to report their manual settings regardless of their operational settings. If you manually set a PC NIC to 100/Full, many times it will continue to report full duplex even if it has fallen back to using half duplex. Perhaps later today I'll have more time and I can get into some more details. Regards, John Troy Leliard 5/28/03 4:52:30 AM I have seen this too, and like Ian I would normally go with 100/Full manually configured on botht he Cat and the end device (obviously assuming
ws-x5530 [7:69624]
Any one have an idea of how much one would cost these days ? Just cant access my one from the console port, no other way of getting access to it. If I connected a modem to the port, I would need to configure the port, however cant even get that far. Thanks John Sydney, Australia ** This email message (and attachments) may contain information that is confidential to Solution 6. If you are not the intended recipient you cannot use, distribute or copy the message or attachments. In such a case, please notify the sender by return email immediately and erase all copies of the message and attachments. Opinions, conclusions and other information in this message and attachments that do not relate to the official business of Solution 6 are neither given nor endorsed by it. * Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=69624t=69624 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
VLAN Trunk Question and spanning tree [7:66730]
hi All, Please tell me if I am wrong and best practices A trunk link, by default, is a member of all VLANS Would it be best practice, to place your trunk ports in a particualr VLAN, then define what you want pruned/not pruned ? Reason I ask is that I am getting the hostflapping error every now and then, which first made me believe I had a developer plugging in hubs around the place. However, now I think its a question of my design/config. Here is an example of the error on my cat-4006 gig ports which trunk to my floor switchs. Host 00:06:29:F9:75:A2 in vlan 23 is flapping between port Gi2/12 and port Gi2/11 NOTE: 2/12 go's to sw2 and 2/11 go's to sw1, which are connected to one another as you can see below I checked it out, there are no hubs any where that could do this, and I have spanning tree in place to stop the redundant links on my floor switch;s coming back into the core. Here is the config of my trunk ports on the floor switch SW1 interface GigabitEthernet0/1 description link to core switchport mode trunk no ip address ! interface GigabitEthernet0/2 description link to sw2 floor switch switchport mode trunk no ip address SW2 interface GigabitEthernet0/1 description link to core switchport mode trunk no ip address ! interface GigabitEthernet0/2 description link to sw1 floor switch switchport mode trunk no ip address If any one can suggest anything, I would appreciate it (I am interested in the use of the bpdu-port guard, would this help here ?) Thanks John Sydney Australia ** This email message (and attachments) may contain information that is confidential to Solution 6. If you are not the intended recipient you cannot use, distribute or copy the message or attachments. In such a case, please notify the sender by return email immediately and erase all copies of the message and attachments. Opinions, conclusions and other information in this message and attachments that do not relate to the official business of Solution 6 are neither given nor endorsed by it. * Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=66730t=66730 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: 1720 crashing every week [7:66080]
I had the same model and the same problem in 2001. I was doing prettyt much the same setup also, however I had PAT in use. For some reason (which was reoslved with an IOS upgrade), the box would die but luckily I would get a dump at that time of the memory etc. I got onto the TAC and they had a newer mid release IOS that solved my problem, however I did look stupid as my router would die in the middle of the day, right when net usage was at its highest. Possibly the router/IOS could not handle the PAT to well.. Hope this helps you. jb -Original Message- From: neil K. [mailto:[EMAIL PROTECTED] Sent: Tuesday, 25 March 2003 10:22 PM To: [EMAIL PROTECTED] Subject: 1720 crashing every week [7:66080] Hi Folks, I got two 1720's connected with a two bri's. I am running PPP multilink on them, it is basic ISDN setup with PPP Multilink,Also I have set up a very high idle-timer on the dialer interface just to keep them up indefinitely, but the routers crash every week and I have to manually reset them and, then they work fine for a week.Any help will be highly appreciated. Thanks, neil ** This email message (and attachments) may contain information that is confidential to Solution 6. If you are not the intended recipient you cannot use, distribute or copy the message or attachments. In such a case, please notify the sender by return email immediately and erase all copies of the message and attachments. Opinions, conclusions and other information in this message and attachments that do not relate to the official business of Solution 6 are neither given nor endorsed by it. * Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=66456t=66080 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: 1720 crashing every week [7:66080]
I had the same model and the same problem in 2001. I was doing prettyt much the same setup also, however I had PAT in use. For some reason (which was reoslved with an IOS upgrade), the box would die but luckily I would get a dump at that time of the memory etc. I got onto the TAC and they had a newer mid release IOS that solved my problem, however I did look stupid as my router would die in the middle of the day, right when net usage was at its highest. Possibly the router/IOS could not handle the PAT to well.. Hope this helps you. jb -Original Message- From: neil K. [mailto:[EMAIL PROTECTED] Sent: Tuesday, 25 March 2003 10:22 PM To: [EMAIL PROTECTED] Subject: 1720 crashing every week [7:66080] Hi Folks, I got two 1720's connected with a two bri's. I am running PPP multilink on them, it is basic ISDN setup with PPP Multilink,Also I have set up a very high idle-timer on the dialer interface just to keep them up indefinitely, but the routers crash every week and I have to manually reset them and, then they work fine for a week.Any help will be highly appreciated. Thanks, neil ** This email message (and attachments) may contain information that is confidential to Solution 6. If you are not the intended recipient you cannot use, distribute or copy the message or attachments. In such a case, please notify the sender by return email immediately and erase all copies of the message and attachments. Opinions, conclusions and other information in this message and attachments that do not relate to the official business of Solution 6 are neither given nor endorsed by it. * Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=66212t=66080 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Messages doubling up on the mailing list [7:65919]
Lately, I have seen the odd problem on the list, such as my email being redistributed some week or so after I sent it. Also, earlier this week, the list was around 6 hours behind the time of sending. It looks much better now though ** This email message (and attachments) may contain information that is confidential to Solution 6. If you are not the intended recipient you cannot use, distribute or copy the message or attachments. In such a case, please notify the sender by return email immediately and erase all copies of the message and attachments. Opinions, conclusions and other information in this message and attachments that do not relate to the official business of Solution 6 are neither given nor endorsed by it. * Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=65919t=65919 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Network design product selecion question [7:65564]
Hi All, once again, I am back designing a network for my company (scary). The budget I have been given from my manager, would not pay for a family visit to McDonalds. However, this is the requirment (my product selection is below) * Provide up to 200 ports on the floor * 2 level building, with multi-mode fibre between level 1 2 * Level 1, has 70 users, 30 servers * Level 2 has 60 users * 2 subnets will be used in this office I suggested, that we use a single 4003 as the core, purchase a Sup III, 1 x 8 port GBIC module, 1 x 48 port 10/100/1000 module. We then use the GBIC's to extend to the 2 x 2950's on the floor above, and 2 x copper GBIC's to the 2950's on the same floor as the core switch. This solution, worked out to be around $100K AUD (australian $$). This was seen as far to expensive. Is there any other model of Cisco catalyst switch that can perform layer 3 routing, GBIC between floors and etc that could do the job of the 4003/4006 ? Or is there a better way of doing it ? John Sydney Australia ** visit http://www.solution6.com UK Customers - http://www.solution6.co.uk ** Level 14, 383 Kent Street, Sydney NSW 2000. General Phone: 61 2 9278 0666 General Fax: 61 2 9278 0555 ** This email message (and attachments) may contain information that is confidential to Solution 6. If you are not the intended recipient you cannot use, distribute or copy the message or attachments. In such a case, please notify the sender by return email immediately and erase all copies of the message and attachments. Opinions, conclusions and other information in this message and attachments that do not relate to the official business of Solution 6 are neither given nor endorsed by it. * Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=65888t=65564 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Attack on Iraq [7:65805]
All, I all wish you the best of luck, and I hope that you and your families will be safe. I have no doubt that we will have to deal with troublesome situations, of which I hope none of you get caught up in. Best Wishs and hope you are all OK through this. John ** This email message (and attachments) may contain information that is confidential to Solution 6. If you are not the intended recipient you cannot use, distribute or copy the message or attachments. In such a case, please notify the sender by return email immediately and erase all copies of the message and attachments. Opinions, conclusions and other information in this message and attachments that do not relate to the official business of Solution 6 are neither given nor endorsed by it. * Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=65805t=65805 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Network design product selecion question [7:65564]
Hi All, once again, I am back designing a network for my company (scary). The budget I have been given from my manager, would not pay for a family visit to McDonalds. However, this is the requirment (my product selection is below) * Provide up to 200 ports on the floor * 2 level building, with multi-mode fibre between level 1 2 * Level 1, has 70 users, 30 servers * Level 2 has 60 users * 2 subnets will be used in this office I suggested, that we use a single 4003 as the core, purchase a Sup III, 1 x 8 port GBIC module, 1 x 48 port 10/100/1000 module. We then use the GBIC's to extend to the 2 x 2950's on the floor above, and 2 x copper GBIC's to the 2950's on the same floor as the core switch. This solution, worked out to be around $100K AUD (australian $$). This was seen as far to expensive. Is there any other model of Cisco catalyst switch that can perform layer 3 routing, GBIC between floors and etc that could do the job of the 4003/4006 ? Or is there a better way of doing it ? John Sydney Australia ** visit http://www.solution6.com UK Customers - http://www.solution6.co.uk ** Level 14, 383 Kent Street, Sydney NSW 2000. General Phone: 61 2 9278 0666 General Fax: 61 2 9278 0555 ** This email message (and attachments) may contain information that is confidential to Solution 6. If you are not the intended recipient you cannot use, distribute or copy the message or attachments. In such a case, please notify the sender by return email immediately and erase all copies of the message and attachments. Opinions, conclusions and other information in this message and attachments that do not relate to the official business of Solution 6 are neither given nor endorsed by it. * Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=65564t=65564 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Spanning tree question on .1q trunks [7:65386]
Hey All, I am going through my network, which consists of a single 4006 at the core, and some 14 2950's connected via gig fibre. Picture this, I have 4 2950's on each floor (3 floors in my building, yes I know that does not equal 14 switch's) each have a gbic fibre connection to the 4006 core, whilst the other gig port go's to the next switch on that level. So switch 1 connects int gig 0/2 to switch 2 gig 0/2 My issue at the moment, is that when I have a look at the spanning tree states, I see that both gig ports are in a forwarding state. That does not sound correct to me as I expected to see one blocking (the int gig 0/2) and the link to the core in a forwarding state. Here is the output of one of my switch's lvl13-sw1#sh spanning-tree blockedports Name Blocked Interfaces List Number of blocked ports (segments) in the system : 0 --- A showing of my active spanning tree ports shows -- InterfacePort ID DesignatedPort ID Name Prio.Nbr Cost Sts Cost Bridge ID Prio.Nbr - --- - Gi0/1128.49 4 FWD 0 8192 0009.e87f.ea00 128.75 Gi0/2128.50 4 FWD 4 32769 000a.b7e3.2dc0 128.50 * I have noticed that the cost of the port is significantly higher which would indicate to me that data not go over this interface unless the interface gig 0/1 died. Am I right, or do I have an error on my network. Thanks for this guys/girls/etc/squid/ ** visit http://www.solution6.com UK Customers - http://www.solution6.co.uk ** The Solution 6 Head Office and NSW Branch has moved premises. Please make sure you have updated your records with our new details. Level 14, 383 Kent Street, Sydney NSW 2000. General Phone: 61 2 9278 0666 General Fax: 61 2 9278 0555 ** This email message (and attachments) may contain information that is confidential to Solution 6. If you are not the intended recipient you cannot use, distribute or copy the message or attachments. In such a case, please notify the sender by return email immediately and erase all copies of the message and attachments. Opinions, conclusions and other information in this message and attachments that do not relate to the official business of Solution 6 are neither given nor endorsed by it. * Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=65386t=65386 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
3640 ethernet slot card [7:65233]
Hi, Does the 3640 have a card for gig ethernet ? ** visit http://www.solution6.com UK Customers - http://www.solution6.co.uk ** The Solution 6 Head Office and NSW Branch has moved premises. Please make sure you have updated your records with our new details. Level 14, 383 Kent Street, Sydney NSW 2000. General Phone: 61 2 9278 0666 General Fax: 61 2 9278 0555 ** This email message (and attachments) may contain information that is confidential to Solution 6. If you are not the intended recipient you cannot use, distribute or copy the message or attachments. In such a case, please notify the sender by return email immediately and erase all copies of the message and attachments. Opinions, conclusions and other information in this message and attachments that do not relate to the official business of Solution 6 are neither given nor endorsed by it. * Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=65233t=65233 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Problem with Cicso VPN Client 3.6.3.B-k9 connectin [7:65107]
I rolled back the client... -Original Message- From: Brian [mailto:[EMAIL PROTECTED] Sent: Wednesday, 12 March 2003 3:56 AM To: [EMAIL PROTECTED] Subject: RE: Problem with Cicso VPN Client 3.6.3.B-k9 connectin [7:65038] David, I encountered a similar problem.. The VPN client I was using had an intrinsic firewall that was blocking all traffic apart from that belonging to the VPN (even when it wasn't 'live'). To check this, right click on the VPN client icon within your system tray. can you see a 'Stateful Firewall' or 'Firewall' option ??? If so, uncheck this option and try to ping your machine - it should be as expected now. If not then you have a different problem elsewhere Hope this helps, Brian d tran wrote: Hi, I have Cisco VPN client version 3.6.3.B-k-9 (latest version) running windows XP Service Pack 1. The IP address of this window machine is 172.16.1.200. I set up extended authentication on the Pix firewall for remote Cisco VPN users and everything is working great. The outside interface of the firewall is 172.16.1.1 with a netmask of 24 The problem is that whenever the windows is rebooted, no one on the 172.16.1.0/24 network can ping this Windows XP machine. I do have a unix machine on the same network (172.16.1.100). Basically the windows XP machine can not do anything because it has no network connectivity. Even the firewall can not ping the Windows XP machine. The only way for this to work is for me to uninstall Cisco VPN Client and reboot the Windows XP box. After the reboot, windows is working again. Now under Windows XP Task Manager, I do see a process CVPND.exe running that I don't recall with previous versions of Cisco VPN Client. Anyone has run into this problem before? Regards, David - Do you Yahoo!? Yahoo! Web Hosting - establish your business online ** visit http://www.solution6.com UK Customers - http://www.solution6.co.uk ** The Solution 6 Head Office and NSW Branch has moved premises. Please make sure you have updated your records with our new details. Level 14, 383 Kent Street, Sydney NSW 2000. General Phone: 61 2 9278 0666 General Fax: 61 2 9278 0555 ** This email message (and attachments) may contain information that is confidential to Solution 6. If you are not the intended recipient you cannot use, distribute or copy the message or attachments. In such a case, please notify the sender by return email immediately and erase all copies of the message and attachments. Opinions, conclusions and other information in this message and attachments that do not relate to the official business of Solution 6 are neither given nor endorsed by it. * Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=65107t=65107 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Network Design - What Priscilla did NOT cover [7:64959]
I love the book, which is why I photo-copied it twice... Just joking. Good book, but it still costs to much. I wonder if the author would just send me a copy out of the goodness of her heart. I also wonder what Santa Clause did with my sports car that I requested last year... -Original Message- From: Priscilla Oppenheimer [mailto:[EMAIL PROTECTED] Sent: Tuesday, 11 March 2003 10:17 AM To: [EMAIL PROTECTED] Subject: Re: Network Design - What Priscilla did NOT cover [7:64959] OK, I've seen enough of this inaccurate title for a thread. Of course Top-Down Network Design covers Layer 8 and above issues. It's a main focus of the first chapter and one of the reasons the book has done so well. One of my goals was to help newbies, especially, and also the guys (and yes, it's mostly guys who think this way! ;-) who assume network design is a matter of selecting speeds and feeds and cool devices. Chuck confirms that the hardest challenges are dealing with difficult design customers who won't tell you the entire story either because of politics or because they don't the entire story and don't want to look stupd, have ridciulous budgets but won't make any trade-offs, have biases for certain technologies for no technical reason, etc. Those are all discussed in Top-Down Network Design. Of course, reading about it in a book and encountering it for real are two different things. Maybe that's why Chuck forgot that it's in the book. Well, I know he was also just trying to be funny, but the inaccuracy of the thread title bugs me. @:-) Of course, Oscar Wilde did say, There's no such thing as bad press. Priscilla John Neiberger wrote: Chuck, Your story illustrates why I wouldn't make a good consultant. In reading your story I found several points where I would have walked out, but only after shoving Tab A (the scope of work) up that guys Slot A. :-) Figuratively speaking, of course. John Scott Roberts 3/10/03 2:52:54 PM wow, I've never worked on such a large order, but the RFPs I've designed out have never been this much of a joke. it seems that the IT staff of this company had no clue what they wanted or needed and decided to get some free advice! the only similair scenario I can mention is when a small private school was looking to upgrade their network to gigabit (yet never fully utilized the old FE) and were shocked at the cost of the equipment. they dropped the whole upgrade totally at that point. I'm interested in hearing if any others have seen such a poor of a 'scope of work' put out before? scott Symon Thurlow wrote in message news:[EMAIL PROTECTED] Yikes! You must have big plums to persist with a customer like that. It sounds like a disaster waiting to happen! Symon -Original Message- From: The Long and Winding Road [mailto:[EMAIL PROTECTED] Sent: 08 March 2003 19:44 To: [EMAIL PROTECTED] Subject: Network Design - What Priscilla did NOT cover in her book: WAS [7:64842] Symon Thurlow wrote in message news:[EMAIL PROTECTED] Hey Chuck, How did that big design go, the one you mentioned on the list a few months ago? Symon You mean the Never Ending Design? The Nightmare before the CCIE Lab? Here is a brief rundown. I will say in advance that as all of you who work in the real world with real world management, real world customers, and real world situations already know, the real work is at layers 8,9, and 10. Project Summary: large organization, 2000+ employees, 10,000 data ports, 3 dozen locations, with each location being a campus of several buildings or several floors within buildings. The project RFP called for a complete forklift of the existing infrastructure - routers, switches, PBX. It also called for wireless for voice and data. The project goal was to create a network fully capable of providing seamless integrated services for data, voice, and video. Oh yes, there was a three week turnaround deadline for the response, and there was no flexibility in this. Meet the customer date or lose the opportunity. On top of that, as is typical with most RFP's, all questions are to be submitted in writing, and all responses go to all bidders. Clues that something is strange: 1) for any wireless response this complex, detailed site surveys are required. there is not time to do this. answer: well then just do a site survey. besides, we have aerial photographs of all of our locations posted on our web site. you can use those to determine what you need. 2) you're RFP provides numbers of IDF's in each location and total number of ports required. e.g. site X has 7 IDF's and 257 data ports. do you have detail as to how many data ports are in each specific closet? answer: use an average, or come out here and do a site survey and figure it out for yourself. 3) you're RFP calls for L3 switching in each and
Advanced complex pix configs [7:64645]
Any one have any really complex pix configs thy wish to share ??? Why do I want them, well I have a client with checkpoint firewall, that is struggling at the moment. The config/rule sets, have over 70 rules (in checkpoint terms that is completely un-managable) Thus, it looks like this pix config could become very complex and I would love to look at some one else's advanced config so I can use it as a bit of a guide. Thanks all John ** visit http://www.solution6.com UK Customers - http://www.solution6.co.uk ** The Solution 6 Head Office and NSW Branch has moved premises. Please make sure you have updated your records with our new details. Level 14, 383 Kent Street, Sydney NSW 2000. General Phone: 61 2 9278 0666 General Fax: 61 2 9278 0555 ** This email message (and attachments) may contain information that is confidential to Solution 6. If you are not the intended recipient you cannot use, distribute or copy the message or attachments. In such a case, please notify the sender by return email immediately and erase all copies of the message and attachments. Opinions, conclusions and other information in this message and attachments that do not relate to the official business of Solution 6 are neither given nor endorsed by it. * Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=64645t=64645 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Packet Loss on switched network [7:64411]
Another problem Sys admins here have noticed that when trying to ping some of the switch's, some of the packets simply die in transit. Other people have said that the speed of file transfers here is getting poor. We have a simple network here, 3 levels, each having 4x 2950's, connect via Gigabit to the single core 4006 with SupIII. I have tested this and I notice bizzare ping reply times (500ms) when I try to ping from the core to one of the floor switch's. On the level I work on, we dont use fibre back to the core, as we are on the same level and use copper, and I dont see this problem, however I still connect to the Gigabit module on the Cat4006. I have checked all I can think of such as looking for loops on the network, checked my syslog messages, but I can find nothing that would suggest thats a fault in the configs of my switchs. Could any one point me as to where I could look for problems as I am now at a loss why we experience packet loss from the core to any switch connected via fibre to a 2950. It could be just due to the amount of traffic on the network, but I doubt it.. Thanks all John Sydney Australia ** visit http://www.solution6.com UK Customers - http://www.solution6.co.uk ** The Solution 6 Head Office and NSW Branch has moved premises. Please make sure you have updated your records with our new details. Level 14, 383 Kent Street, Sydney NSW 2000. General Phone: 61 2 9278 0666 General Fax: 61 2 9278 0555 ** This email message (and attachments) may contain information that is confidential to Solution 6. If you are not the intended recipient you cannot use, distribute or copy the message or attachments. In such a case, please notify the sender by return email immediately and erase all copies of the message and attachments. Opinions, conclusions and other information in this message and attachments that do not relate to the official business of Solution 6 are neither given nor endorsed by it. * Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=64411t=64411 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Bizzare Routing/VPN Issue [7:64301]
SOLVED You are correct. Just to think I was about to book the 5 star hotel for the other guys. I never looked at it like this. Now you can see exactly what I was doing. Telnet to the router, try to ping from there. It was coming out as the s0 ip address. So I guess I was right in a way, it was a crypto map error. That subnet was not permitted to pass traffic over the tunnel. Thanks Symon, I must buy you a virtual beer some time. John -Original Message- From: Symon Thurlow [mailto:[EMAIL PROTECTED] Sent: Tuesday, 4 March 2003 7:13 PM To: [EMAIL PROTECTED] Subject: RE: Bizzare Routing/VPN Issue [7:64301] Hi John, What address is the NZ guy pinging on your spoke routers? The LAN address that is getting propagated? If you do a debug icmp trace on the VPN box (assuming you can, I've never touched one) what is the ICMP message you receive? That will probably tell you everything. When you ping from your remote spoke routers to NZ, what interface address are you using to ping _from_? Can you try pinging from a server in a spoke site, or set the ping from address to be the LAN interface of your spoke router? Infact, that looks to me to be exactly what it is. You are pinging from a spoke router, and it is using the serial(?) interface address, which due to your non-contiguous network addressing (tsk tsk!) is not included in your VPN configuration, so the VPN concentrator probably sends the ICMP message to NZ but the NZ side is not configured to encrypt traffic for the network the ping came from so it never gets back. Sounds good to me... Symon -Original Message- From: John Brandis [mailto:[EMAIL PROTECTED] Sent: 04 March 2003 01:55 To: [EMAIL PROTECTED] Subject: Bizzare Routing/VPN Issue [7:64301] Hi All, I am sure one of you will see the problem and be able to offer a solution. I have 2 organisations here, one in Australia the other in NZ. In Australia, we have a hub and spoke point to multi-point config from the hubs perspective. I run OSPF and have all sites in area 0 (yes I know i should break this up so that each region forms its own area, but why at this time ??) My problem, which only started this morning at 5am when the tech in NZ and I decided to up the encryption settings on the VPN, I think is related to routing, or related to a crypto map error. In Sydney, I use a cisco 3005 whilst the office initiating the IPSEC connection uses a little Watchguard box. Until this morning it was simple, I could see his local lan behind the remote peer, and he could see my local networks, but not the office's on my WAN (by design). The goal of this morning was to permit NZ to be able to see all networks in Australia. We dont yet run a nice continuos IP scheme here (yet), so each network had to be delcared line by line rather than a nice summary. We implemented this network by network. I enabled my NZ counterpart access to the Australian hub site and one of the spokes. Thats when the problem started. We tried to put the next spoke site network list in the list of availiable networks, then it all fell to bits. The problem now is that the guy in NZ can ping my spoke sites routers, however from these spoke sites I cant ping him. I trace the packet, and watch it hop through my network with the last hop being the 3005 VPN concentrator that connects NZ to us. From there it times out...From my desk in the hub site in Australia, I can ping both the spoke site, and the NZ techs PC. So at this stage I can confirm that the route that works from sydney to NZ, has been redistributed via OSPF to my spoke sites, however it just does not appear to get through the tunnel, however the guy in NZ says he has 100% ping to my spoke sites. Could any one suggest where a possible problem could be ? I can see IPSEC tunnels for the various networks and I can see traffic going across them, however I have no idea why I cant access anything across the VPN from my spoke sites. The NZ guy said all traffic from Australia has a permit statement. I can only see the problem as access-list like problem on his end, as we had this working for the central site here (hub site) and for one of the spoke sites until we added more. Would appreciate any help. Thanks all Johnny b ** visit http://www.solution6.com UK Customers - http://www.solution6.co.uk ** The Solution 6 Head Office and NSW Branch has moved premises. Please make sure you have updated your records with our new details. Level 14, 383 Kent Street, Sydney NSW 2000. General Phone: 61 2 9278 0666 General Fax: 61 2 9278 0555 ** This email message (and attachments) may contain information that is confidential to Solution 6. If you are not the intended recipient you cannot use, distribute or copy the message or attachments. In such a case
Bizzare Routing/VPN Issue [7:64301]
Hi All, I am sure one of you will see the problem and be able to offer a solution. I have 2 organisations here, one in Australia the other in NZ. In Australia, we have a hub and spoke point to multi-point config from the hubs perspective. I run OSPF and have all sites in area 0 (yes I know i should break this up so that each region forms its own area, but why at this time ??) My problem, which only started this morning at 5am when the tech in NZ and I decided to up the encryption settings on the VPN, I think is related to routing, or related to a crypto map error. In Sydney, I use a cisco 3005 whilst the office initiating the IPSEC connection uses a little Watchguard box. Until this morning it was simple, I could see his local lan behind the remote peer, and he could see my local networks, but not the office's on my WAN (by design). The goal of this morning was to permit NZ to be able to see all networks in Australia. We dont yet run a nice continuos IP scheme here (yet), so each network had to be delcared line by line rather than a nice summary. We implemented this network by network. I enabled my NZ counterpart access to the Australian hub site and one of the spokes. Thats when the problem started. We tried to put the next spoke site network list in the list of availiable networks, then it all fell to bits. The problem now is that the guy in NZ can ping my spoke sites routers, however from these spoke sites I cant ping him. I trace the packet, and watch it hop through my network with the last hop being the 3005 VPN concentrator that connects NZ to us. From there it times out...From my desk in the hub site in Australia, I can ping both the spoke site, and the NZ techs PC. So at this stage I can confirm that the route that works from sydney to NZ, has been redistributed via OSPF to my spoke sites, however it just does not appear to get through the tunnel, however the guy in NZ says he has 100% ping to my spoke sites. Could any one suggest where a possible problem could be ? I can see IPSEC tunnels for the various networks and I can see traffic going across them, however I have no idea why I cant access anything across the VPN from my spoke sites. The NZ guy said all traffic from Australia has a permit statement. I can only see the problem as access-list like problem on his end, as we had this working for the central site here (hub site) and for one of the spoke sites until we added more. Would appreciate any help. Thanks all Johnny b ** visit http://www.solution6.com UK Customers - http://www.solution6.co.uk ** The Solution 6 Head Office and NSW Branch has moved premises. Please make sure you have updated your records with our new details. Level 14, 383 Kent Street, Sydney NSW 2000. General Phone: 61 2 9278 0666 General Fax: 61 2 9278 0555 ** This email message (and attachments) may contain information that is confidential to Solution 6. If you are not the intended recipient you cannot use, distribute or copy the message or attachments. In such a case, please notify the sender by return email immediately and erase all copies of the message and attachments. Opinions, conclusions and other information in this message and attachments that do not relate to the official business of Solution 6 are neither given nor endorsed by it. * Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=64301t=64301 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Cat4006 - Prompt [7:63984]
Cat 4006 is IOS based from my experience Cat4006 en Blah blah Cat4006# conf t then try the hostname eaglesfan Should work -Original Message- From: Eagles Fan [mailto:[EMAIL PROTECTED] Sent: Friday, 28 February 2003 7:51 AM To: [EMAIL PROTECTED] Subject: Re: Cat4006 - Prompt [7:63984] I have tried that, unfortunately it doesn't take cat4006 (enable) set prompt Usage: set prompt cat4006 (enable) From: ericbrouwers Reply-To: ericbrouwers To: [EMAIL PROTECTED] Subject: Re: Cat4006 - Prompt [7:63984] Date: Thu, 27 Feb 2003 18:02:39 GMT Hostnames and prompts can be changed by just entering the command with no string; hit enter after command: Switch(enable) set system name or Switch(enable) set prompt Eric - Original Message - From: Eagles Fan To: Sent: Thursday, February 27, 2003 3:32 PM Subject: Cat4006 - Prompt [7:63984] is it possible to clear the prompt after manually setting it? _ Protect your PC - get McAfee.com VirusScan Online http://clinic.mcafee.com/clinic/ibuy/campaign.asp?cid=3963 _ MSN 8 with e-mail virus protection service: 2 months FREE* http://join.msn.com/?page=features/virus ** visit http://www.solution6.com UK Customers - http://www.solution6.co.uk ** The Solution 6 Head Office and NSW Branch has moved premises. Please make sure you have updated your records with our new details. Level 14, 383 Kent Street, Sydney NSW 2000. General Phone: 61 2 9278 0666 General Fax: 61 2 9278 0555 ** This email message (and attachments) may contain information that is confidential to Solution 6. If you are not the intended recipient you cannot use, distribute or copy the message or attachments. In such a case, please notify the sender by return email immediately and erase all copies of the message and attachments. Opinions, conclusions and other information in this message and attachments that do not relate to the official business of Solution 6 are neither given nor endorsed by it. * Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=64022t=63984 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Cat4006 - Prompt [7:63984]
on this you are spot on, I use to have a 5505 that was in the same boat you are in. I love my supIII I just found a pix 515 in my bottom draw. Does any one know, how the pix 515, would compare to a checkpoint firewall on a PIII 800hmz on Win2k 1G RAM with 600 users behind it just handling web surfing, email and the like ? I am guessing the PC based checkpoint model would win that race, but has any one here becnhmarked it ??? Thanks Jb -Original Message- From: MADMAN [mailto:[EMAIL PROTECTED] Sent: Friday, 28 February 2003 11:25 AM To: John Brandis Cc: [EMAIL PROTECTED] Subject: Re: Cat4006 - Prompt [7:63984] Not if you have a supII. You obviously have only worked with supIII's and supIVs Dave John Brandis wrote: Cat 4006 is IOS based from my experience Cat4006 en Blah blah Cat4006# conf t then try the hostname eaglesfan Should work -- David Madland CCIE# 2016 Sr. Network Engineer Qwest Communications 612-664-3367 You don't make the poor richer by making the rich poorer. --Winston Churchill ** visit http://www.solution6.com UK Customers - http://www.solution6.co.uk ** The Solution 6 Head Office and NSW Branch has moved premises. Please make sure you have updated your records with our new details. Level 14, 383 Kent Street, Sydney NSW 2000. General Phone: 61 2 9278 0666 General Fax: 61 2 9278 0555 ** This email message (and attachments) may contain information that is confidential to Solution 6. If you are not the intended recipient you cannot use, distribute or copy the message or attachments. In such a case, please notify the sender by return email immediately and erase all copies of the message and attachments. Opinions, conclusions and other information in this message and attachments that do not relate to the official business of Solution 6 are neither given nor endorsed by it. * Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=64034t=63984 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
adding new switch to VTP domain [7:63654]
Hi All, Tommorrow I will be adding a new 2950 to my switch fabric. I will add another GBIC copper module to my 4006. Does any one know if I can just insert it whilst on ? I remember last time I done this under the old IOS for the 4006 with the supIII, it had a cow and just died. I have the latest IOS on the cat 4006 supIII now and I wonder if it will be an issue ? Also, a gotcha I came across because I do things sometimes to quick (lesson for learners, dont do stupid things) I added a new switch to my VTP domain, and lost info such as VLAns and the like. What I tend to do these days, is the make the switch a client on the VTP domain, before inserting it, change the vtp domain, add it with the cables, then change the vtp domain info back but keeping it a a client. Is this good practice ? Any one know about my first issue ? John ** visit http://www.solution6.com UK Customers - http://www.solution6.co.uk ** The Solution 6 Head Office and NSW Branch has moved premises. Please make sure you have updated your records with our new details. Level 14, 383 Kent Street, Sydney NSW 2000. General Phone: 61 2 9278 0666 General Fax: 61 2 9278 0555 ** This email message (and attachments) may contain information that is confidential to Solution 6. If you are not the intended recipient you cannot use, distribute or copy the message or attachments. In such a case, please notify the sender by return email immediately and erase all copies of the message and attachments. Opinions, conclusions and other information in this message and attachments that do not relate to the official business of Solution 6 are neither given nor endorsed by it. * Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=63654t=63654 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Frame-Relay issue [7:63446]
I would check your settings such as the LMI type, Have you done any other fault finding yet ? Such as sh frame relay pvc ? Once you hit no shutdown, the interface becomes live in a way of speaking. Here is an example of one of my configs. interface Serial0/0 no ip address encapsulation frame-relay IETF ! interface Serial0/0.1AA point-to-point description Johns Config ip address x.x.x.x b.b.b.b no cdp enable frame-relay interface-dlci AA IETF I have replaced some values here with letters for security John ** visit http://www.solution6.com UK Customers - http://www.solution6.co.uk ** The Solution 6 Head Office and NSW Branch has moved premises. Please make sure you have updated your records with our new details. Level 14, 383 Kent Street, Sydney NSW 2000. General Phone: 61 2 9278 0666 General Fax: 61 2 9278 0555 ** This email message (and attachments) may contain information that is confidential to Solution 6. If you are not the intended recipient you cannot use, distribute or copy the message or attachments. In such a case, please notify the sender by return email immediately and erase all copies of the message and attachments. Opinions, conclusions and other information in this message and attachments that do not relate to the official business of Solution 6 are neither given nor endorsed by it. * Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=63449t=63446 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
cisco 2950 and trunk negotiation [7:63466]
Hi, Any one else noticed that on the 2950, and I guessing other catalyst low end switch's, that one cant define the encapsulation of the trunk link. Yes it will auto negotiate, however I feel that control has been pulled away from me. I also dont like on the 4006, that you can only define this same setting (if you have a GBIC Module) for the first 2 GBIC ports. The rest of the ports default to dot1q. Thankfully I use this, but I am betting that there are the odd people out there who may use ISL... Can some one tell me, is possible, how to define what type of trunk I wish to use on the 2950 using IOS 12.1(11) Thanks all John (please correct where I am wrong) ** visit http://www.solution6.com UK Customers - http://www.solution6.co.uk ** The Solution 6 Head Office and NSW Branch has moved premises. Please make sure you have updated your records with our new details. Level 14, 383 Kent Street, Sydney NSW 2000. General Phone: 61 2 9278 0666 General Fax: 61 2 9278 0555 ** This email message (and attachments) may contain information that is confidential to Solution 6. If you are not the intended recipient you cannot use, distribute or copy the message or attachments. In such a case, please notify the sender by return email immediately and erase all copies of the message and attachments. Opinions, conclusions and other information in this message and attachments that do not relate to the official business of Solution 6 are neither given nor endorsed by it. * Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=63466t=63466 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
PIX Config [7:63131]
Hi All, Any one got a pix config that they can email me (of course, delete your IP address's etc) Thanks all John ** visit http://www.solution6.com UK Customers - http://www.solution6.co.uk ** The Solution 6 Head Office and NSW Branch has moved premises. Please make sure you have updated your records with our new details. Level 14, 383 Kent Street, Sydney NSW 2000. General Phone: 61 2 9278 0666 General Fax: 61 2 9278 0555 ** This email message (and attachments) may contain information that is confidential to Solution 6. If you are not the intended recipient you cannot use, distribute or copy the message or attachments. In such a case, please notify the sender by return email immediately and erase all copies of the message and attachments. Opinions, conclusions and other information in this message and attachments that do not relate to the official business of Solution 6 are neither given nor endorsed by it. * Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=63131t=63131 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
SPAN and slammer [7:62917]
Hi All, Have a 4006 in place here using Version 12.1(12c)EW as my core switch. Yesterday had fun with Slammer, and last night also. I wanted to use the SPAN so I could mirror the data from one port to my snort box so I could verify to the sys-admins that it was slammer (they said it would never happen here). However, noticed that this command was not available on this IOS. I had to revert back to a hub scenario between my switch and firewall to see what was going on. My question is, how do you people monitor this without using SPAN, and also, how do you implement security on a per port basis (such as denying hubs on your network) PS: Any one ever used a tap here, and if so, how did it fit into your switched network. Thanks all John ** visit http://www.solution6.com UK Customers - http://www.solution6.co.uk ** The Solution 6 Head Office and NSW Branch has moved premises. Please make sure you have updated your records with our new details. Level 14, 383 Kent Street, Sydney NSW 2000. General Phone: 61 2 9278 0666 General Fax: 61 2 9278 0555 ** This email message (and attachments) may contain information that is confidential to Solution 6. If you are not the intended recipient you cannot use, distribute or copy the message or attachments. In such a case, please notify the sender by return email immediately and erase all copies of the message and attachments. Opinions, conclusions and other information in this message and attachments that do not relate to the official business of Solution 6 are neither given nor endorsed by it. * Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=62917t=62917 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Top Down Book [7:62934]
While we are speaking of books, I went to the bookshop just then and had a look at Pricilla's book. Don't know what you pay in the US for a book, however it was on sale for $140AUD... That's to much for me, however it looked like a good book. ** visit http://www.solution6.com UK Customers - http://www.solution6.co.uk ** The Solution 6 Head Office and NSW Branch has moved premises. Please make sure you have updated your records with our new details. Level 14, 383 Kent Street, Sydney NSW 2000. General Phone: 61 2 9278 0666 General Fax: 61 2 9278 0555 ** This email message (and attachments) may contain information that is confidential to Solution 6. If you are not the intended recipient you cannot use, distribute or copy the message or attachments. In such a case, please notify the sender by return email immediately and erase all copies of the message and attachments. Opinions, conclusions and other information in this message and attachments that do not relate to the official business of Solution 6 are neither given nor endorsed by it. * Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=62934t=62934 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Top Down Book [7:62934]
However, you people in the US get paid double what we earn here, it so tempting to come there and work, however I could not take the kids there at the moment with all that's going on there. Would not feel safe. A good network person here, with Unix skills, Windows Skills and at least 2 years security, hovering around CCNP, would earn about $70kAUD ($1AUD=$0.55USD). That would be good pay. However my friend is a CCIE with solid VOIP experience, and gets paid $100kAUD -Original Message- From: The Long and Winding Road [mailto:[EMAIL PROTECTED]] Sent: Thursday, 13 February 2003 3:02 PM To: [EMAIL PROTECTED] Subject: Re: Top Down Book [7:62934] John Brandis wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... While we are speaking of books, I went to the bookshop just then and had a look at Pricilla's book. Don't know what you pay in the US for a book, however it was on sale for $140AUD... I thought the US dollar was low worldwide. Boy, your economy sure must be down under. :- ( the book lists at 55 USD. ) That's to much for me, however it looked like a good book. ** visit http://www.solution6.com UK Customers - http://www.solution6.co.uk ** The Solution 6 Head Office and NSW Branch has moved premises. Please make sure you have updated your records with our new details. Level 14, 383 Kent Street, Sydney NSW 2000. General Phone: 61 2 9278 0666 General Fax: 61 2 9278 0555 ** This email message (and attachments) may contain information that is confidential to Solution 6. If you are not the intended recipient you cannot use, distribute or copy the message or attachments. In such a case, please notify the sender by return email immediately and erase all copies of the message and attachments. Opinions, conclusions and other information in this message and attachments that do not relate to the official business of Solution 6 are neither given nor endorsed by it. * Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=62938t=62934 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Specifying networks in OSPF - How? [7:62463]
I use OSPF quite a lot, and I have followed John/Chuck/Pricilla/Larry L . and a few others and re-done my configs and moved the actual interfaces into the ospf statements. I had problems the other way (maybe because sometimes I rush through my configs and wonder why they don't work the next day) Jb -Original Message- From: John Neiberger [mailto:[EMAIL PROTECTED]] Sent: Wednesday, 5 February 2003 8:13 AM To: [EMAIL PROTECTED] Subject: Re: Specifying networks in OSPF - How? [7:62463] In OSPF, the network statement specifies which interfaces will participate in OSPF routing. Use whichever syntax you prefer. Your first example would cause all interfaces in the 10.10.10.0/24 range to participate. Your second example activates only the interface with the IP address 10.10.10.1. It really depends on what you're trying to accomplish. As a guideline, though, many including myself would suggest that you always be as specific as possible, using one network statement with a mask of 0.0.0.0 for each interface. This is a little more work but it reduces errors and aids in troubleshooting. Regards, John Cisco Nuts 2/4/03 1:52:53 PM Hello, Is there a rule of thumb on specifying the network commands in an Ospf FR topology? Ex. for netw. 10.10.10.1/24, would one specify under ospf: #router ospf 1 #netw 10.10.10.0 0.0.0.255 area 0 OR #router ospf 1 #netw 10.10.10.1 0.0.0.0 area 0 Which one?? Is the network specified or the host address itself. Does it depend if it's a frame-relay full-mesh (ip ospf network broadcast/non-broadcast) or partial-mesh (ip ospf network point-to-multipoint) ? Thank you. Sincerely, CN _ The new MSN 8: smart spam protection and 2 months FREE* http://join.msn.com/?page=features/junkmail ** visit http://www.solution6.com UK Customers - http://www.solution6.co.uk ** The Solution 6 Head Office and NSW Branch has moved premises. Please make sure you have updated your records with our new details. Level 14, 383 Kent Street, Sydney NSW 2000. General Phone: 61 2 9278 0666 General Fax: 61 2 9278 0555 ** This email message (and attachments) may contain information that is confidential to Solution 6. If you are not the intended recipient you cannot use, distribute or copy the message or attachments. In such a case, please notify the sender by return email immediately and erase all copies of the message and attachments. Opinions, conclusions and other information in this message and attachments that do not relate to the official business of Solution 6 are neither given nor endorsed by it. * Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=62557t=62463 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Pix Enable Password recovery [7:62401]
Just purchased a pix 515, however the muppet how sold it to me cant remember the enable password. Can any one remember the steps to recover ??? Thanks all. ** visit http://www.solution6.com UK Customers - http://www.solution6.co.uk ** The Solution 6 Head Office and NSW Branch has moved premises. Please make sure you have updated your records with our new details. Level 14, 383 Kent Street, Sydney NSW 2000. General Phone: 61 2 9278 0666 General Fax: 61 2 9278 0555 ** This email message (and attachments) may contain information that is confidential to Solution 6. If you are not the intended recipient you cannot use, distribute or copy the message or attachments. In such a case, please notify the sender by return email immediately and erase all copies of the message and attachments. Opinions, conclusions and other information in this message and attachments that do not relate to the official business of Solution 6 are neither given nor endorsed by it. * Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=62401t=62401 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Hostflapping on 4006 catalyst [7:61432]
wp378895Hi All, can some one please explain this error ? %C4K_EBM-4-HOSTFLAPPING: Host 00:10:0B:10:B9:20 in vlan 200 is flapping between port gi2 and port gi1 wp378896Workaround: None. (CSCdy21031) * wp378897When the spanning tree mode is PVST, isolated trunk ports transmit BPDUs with the primary VLAN instead of the secondary VLAN. wp378898Workaround: Use the spanning-tree bpduguard enable interface command to enable BPDU Guard to detect any BPDUs received on private VLAN trunk ports. (CSCdx62226) Thanks John Sydney Australia ** visit http://www.solution6.com UK Customers - http://www.solution6.co.uk ** The Solution 6 Head Office and NSW Branch has moved premises. Please make sure you have updated your records with our new details. Level 14, 383 Kent Street, Sydney NSW 2000. General Phone: 61 2 9278 0666 General Fax: 61 2 9278 0555 ** This email message (and attachments) may contain information that is confidential to Solution 6. If you are not the intended recipient you cannot use, distribute or copy the message or attachments. In such a case, please notify the sender by return email immediately and erase all copies of the message and attachments. Opinions, conclusions and other information in this message and attachments that do not relate to the official business of Solution 6 are neither given nor endorsed by it. * Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=61432t=61432 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: OSPF Question / Problem [7:60485]
I must have come across a bug or something. I have one router using IOS 11.0(22a) and the other router is using IOS 11.3(9) The issue now, is that for some reason, via OSPF, one router will advertise its interfaces that are part of another area, whilst the other router will not. Yes I have made sure the interface is up. Does any one know of a problem of OSPF across older IOS ? Ps: when I try this on another router, such as 2 routers using IOS 11.3(9) this works no problem) John -Original Message- From: John Brandis [mailto:[EMAIL PROTECTED]] Sent: Tuesday, 7 January 2003 4:17 PM To: [EMAIL PROTECTED] Subject: RE: OSPF Question / Problem [7:60485] Resolved, thanks Chuck However, this is how I fixed it. I told the OSPF process on both router a and b, to put the actual interface into the ospf process, and not just listing the networks there. For example, I did on router b Network 192.168.1.6 0.0.0.0 area 0 (which is the ip of my int s0) And on router a Network 192.168.1.5 0.0.0.0 area 0 (which is int of the s0) Why would not just listing them as the networks bound by the 30 bit mask not work Thanks for your time dude John Sydney Australia Ps: sorry for the disclaimer size, its huge -Original Message- From: John Brandis [mailto:[EMAIL PROTECTED]] Sent: Tuesday, 7 January 2003 3:29 PM To: [EMAIL PROTECTED] Subject: OSPF Question / Problem [7:60485] G'Day all 1). Have 2 routers at the moment connected back to back. can see each s0 int on each router after the connection is up. For some reason, I cant seem to start the ospf process across this link. The code I think is ok. router a interface Serial0 ip address 192.168.1.5 255.255.255.252 encapsulation ppp no ip mroute-cache no fair-queue router ospf 10 network 10.64.18.0 0.0.0.255 area 2(this is the ethernet LAN) network 172.17.1.2 0.0.0.0 area 0(this is the loopback int) network 192.168.1.6 0.0.0.0 area 0 (this is the s0 interface) router b interface Serial0 description 56k Link to Sydney via TPIPS ip address 192.168.1.6 255.255.255.252 encapsulation ppp ip ospf priority 255 bandwidth 56 clockrate 56000 ! router ospf 10 network 192.168.1.6 0.0.0.0 area 0(this is the s0 int) network 172.17.1.1 0.0.0.0 area 0 (this is the loopback) network 10.64.0.0 0.0.1.254 area 7(this is the ethernet LANS -know may not work due to fact its got secondary) ! Also, does OSPF make any assumptions about the network type if it is not specified, and if not, what are the default settings for OSPF interface network types ( hope that makes sence) John Sydney Australia ** visit http://www.solution6.com UK Customers - http://www.solution6.co.uk ** The Solution 6 Head Office and Branch in Sydney is moving premises. From Monday 25th November our Head Office and NSW Branch will be located at: Level 14, 383 Kent Street, Sydney NSW 2000. General Phone: 61 2 9278 0666 General Fax: 61 2 9278 0555 ** This email message (and attachments) may contain information that is confidential to Solution 6. If you are not the intended recipient you cannot use, distribute or copy the message or attachments. In such a case, please notify the sender by return email immediately and erase all copies of the message and attachments. Opinions, conclusions and other information in this message and attachments that do not relate to the official business of Solution 6 are neither given nor endorsed by it. * Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=60545t=60485 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
OSPF state [7:60572]
Hi All, can you tell I am having fun with OSPF ?? Any way, I am playing with OSPF on different network types. I wish to see if i have a full adjacency or if I have only acheieved a neigbor state on certain types of networks. Where, can I find what state I am currently in, and what router is the DR/BDR. At moment, I am on point-point link and I am expecting not to see any election of DR/BDR. Thanks all. jb ** visit http://www.solution6.com UK Customers - http://www.solution6.co.uk ** The Solution 6 Head Office and Branch in Sydney is moving premises. From Monday 25th November our Head Office and NSW Branch will be located at: Level 14, 383 Kent Street, Sydney NSW 2000. General Phone: 61 2 9278 0666 General Fax: 61 2 9278 0555 ** This email message (and attachments) may contain information that is confidential to Solution 6. If you are not the intended recipient you cannot use, distribute or copy the message or attachments. In such a case, please notify the sender by return email immediately and erase all copies of the message and attachments. Opinions, conclusions and other information in this message and attachments that do not relate to the official business of Solution 6 are neither given nor endorsed by it. * Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=60572t=60572 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
OSPF Question / Problem [7:60485]
G'Day all 1). Have 2 routers at the moment connected back to back. can see each s0 int on each router after the connection is up. For some reason, I cant seem to start the ospf process across this link. The code I think is ok. router a interface Serial0 ip address 192.168.1.5 255.255.255.252 encapsulation ppp no ip mroute-cache no fair-queue router ospf 10 network 10.64.18.0 0.0.0.255 area 2(this is the ethernet LAN) network 172.17.1.2 0.0.0.0 area 0(this is the loopback int) network 192.168.1.6 0.0.0.0 area 0 (this is the s0 interface) router b interface Serial0 description 56k Link to Sydney via TPIPS ip address 192.168.1.6 255.255.255.252 encapsulation ppp ip ospf priority 255 bandwidth 56 clockrate 56000 ! router ospf 10 network 192.168.1.6 0.0.0.0 area 0(this is the s0 int) network 172.17.1.1 0.0.0.0 area 0 (this is the loopback) network 10.64.0.0 0.0.1.254 area 7(this is the ethernet LANS -know may not work due to fact its got secondary) ! Also, does OSPF make any assumptions about the network type if it is not specified, and if not, what are the default settings for OSPF interface network types ( hope that makes sence) John Sydney Australia ** visit http://www.solution6.com UK Customers - http://www.solution6.co.uk ** The Solution 6 Head Office and Branch in Sydney is moving premises. From Monday 25th November our Head Office and NSW Branch will be located at: Level 14, 383 Kent Street, Sydney NSW 2000. General Phone: 61 2 9278 0666 General Fax: 61 2 9278 0555 ** This email message (and attachments) may contain information that is confidential to Solution 6. If you are not the intended recipient you cannot use, distribute or copy the message or attachments. In such a case, please notify the sender by return email immediately and erase all copies of the message and attachments. Opinions, conclusions and other information in this message and attachments that do not relate to the official business of Solution 6 are neither given nor endorsed by it. * Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=60485t=60485 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: OSPF Question / Problem [7:60485]
Resolved, thanks Chuck However, this is how I fixed it. I told the OSPF process on both router a and b, to put the actual interface into the ospf process, and not just listing the networks there. For example, I did on router b Network 192.168.1.6 0.0.0.0 area 0 (which is the ip of my int s0) And on router a Network 192.168.1.5 0.0.0.0 area 0 (which is int of the s0) Why would not just listing them as the networks bound by the 30 bit mask not work Thanks for your time dude John Sydney Australia Ps: sorry for the disclaimer size, its huge -Original Message- From: John Brandis [mailto:[EMAIL PROTECTED]] Sent: Tuesday, 7 January 2003 3:29 PM To: [EMAIL PROTECTED] Subject: OSPF Question / Problem [7:60485] G'Day all 1). Have 2 routers at the moment connected back to back. can see each s0 int on each router after the connection is up. For some reason, I cant seem to start the ospf process across this link. The code I think is ok. router a interface Serial0 ip address 192.168.1.5 255.255.255.252 encapsulation ppp no ip mroute-cache no fair-queue router ospf 10 network 10.64.18.0 0.0.0.255 area 2(this is the ethernet LAN) network 172.17.1.2 0.0.0.0 area 0(this is the loopback int) network 192.168.1.6 0.0.0.0 area 0 (this is the s0 interface) router b interface Serial0 description 56k Link to Sydney via TPIPS ip address 192.168.1.6 255.255.255.252 encapsulation ppp ip ospf priority 255 bandwidth 56 clockrate 56000 ! router ospf 10 network 192.168.1.6 0.0.0.0 area 0(this is the s0 int) network 172.17.1.1 0.0.0.0 area 0 (this is the loopback) network 10.64.0.0 0.0.1.254 area 7(this is the ethernet LANS -know may not work due to fact its got secondary) ! Also, does OSPF make any assumptions about the network type if it is not specified, and if not, what are the default settings for OSPF interface network types ( hope that makes sence) John Sydney Australia ** visit http://www.solution6.com UK Customers - http://www.solution6.co.uk ** The Solution 6 Head Office and Branch in Sydney is moving premises. From Monday 25th November our Head Office and NSW Branch will be located at: Level 14, 383 Kent Street, Sydney NSW 2000. General Phone: 61 2 9278 0666 General Fax: 61 2 9278 0555 ** This email message (and attachments) may contain information that is confidential to Solution 6. If you are not the intended recipient you cannot use, distribute or copy the message or attachments. In such a case, please notify the sender by return email immediately and erase all copies of the message and attachments. Opinions, conclusions and other information in this message and attachments that do not relate to the official business of Solution 6 are neither given nor endorsed by it. * Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=60488t=60485 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
640 - 901 [7:60405]
Hi All, I am doing this exam in 12 days. Could any one please pass on any info, cheat sheats, sample questions in relation to this test. With tests costing so much, cant afford to fail, literally. Have fun all, I am off home for the day. John Sydney Australia ** visit http://www.solution6.com UK Customers - http://www.solution6.co.uk ** The Solution 6 Head Office and Branch in Sydney is moving premises. From Monday 25th November our Head Office and NSW Branch will be located at: Level 14, 383 Kent Street, Sydney NSW 2000. General Phone: 61 2 9278 0666 General Fax: 61 2 9278 0555 ** This email message (and attachments) may contain information that is confidential to Solution 6. If you are not the intended recipient you cannot use, distribute or copy the message or attachments. In such a case, please notify the sender by return email immediately and erase all copies of the message and attachments. Opinions, conclusions and other information in this message and attachments that do not relate to the official business of Solution 6 are neither given nor endorsed by it. * Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=60405t=60405 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
ccnp routing prep [7:60017]
happy new year from Sydney Australia. does any one have any samples questions for ccnp routing exam (current), got my exam friday after a year of saying i will do it next month. John Brandis Network Security Engineer [EMAIL PROTECTED] Phone: +61 2 9278 0629 Helpdesk: +61 2 9278 0486 ** visit http://www.solution6.com UK Customers - http://www.solution6.co.uk ** The Solution 6 Head Office and Branch in Sydney is moving premises. From Monday 25th November our Head Office and NSW Branch will be located at: Level 14, 383 Kent Street, Sydney NSW 2000. General Phone: 61 2 9278 0666 General Fax: 61 2 9278 0555 ** This email message (and attachments) may contain information that is confidential to Solution 6. If you are not the intended recipient you cannot use, distribute or copy the message or attachments. In such a case, please notify the sender by return email immediately and erase all copies of the message and attachments. Opinions, conclusions and other information in this message and attachments that do not relate to the official business of Solution 6 are neither given nor endorsed by it. * Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=60017t=60017 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: ISL 802.1q in one switch [7:59512]
I noticed that on my 4006, I could only have isl enabled on the first 2 gige ports. It took me 2 calls to tac to wor this out, by default all were dot1q.. Hope this helps.. -Original Message- From: Mark Johnson [mailto:[EMAIL PROTECTED]] Sent: Monday, 23 December 2002 10:21 AM To: [EMAIL PROTECTED] Subject: Re: ISL 802.1q in one switch [7:59512] Yes, it is possible... It is dependant upon the type of switch you are using... If it is a 3550, 2950, 4000, etc... You would do switchport mode trunk switchport trunk encapsulation (dot1q or isl) This is off the top of my head, so verify the exact syntax... Not all switches support both so you will need to check your hardware and software... Mark ---Original Message--- From: [EMAIL PROTECTED] Sent: 12/19/02 04:09 AM To: [EMAIL PROTECTED] Subject: ISL 802.1q in one switch [7:59512] Hi folks, Does anybody have experience with using ISL en 802.1q within the same switch. I have ISL trunk between my access and distribution layer. Now I want to connect a firewall on my access switch with 802.1q trunking protocol. Is it possible? if the answer is YES, should I change anything in my configuration? My firewall talks 802.1q with the access switch and the vlan's should go from access to distribution switch which talk ISL. thanks, Mehrdad ** visit http://www.solution6.com UK Customers - http://www.solution6.co.uk ** The Solution 6 Head Office and Branch in Sydney is moving premises. From Monday 25th November our Head Office and NSW Branch will be located at: Level 14, 383 Kent Street, Sydney NSW 2000. General Phone: 61 2 9278 0666 General Fax: 61 2 9278 0555 ** This email message (and attachments) may contain information that is confidential to Solution 6. If you are not the intended recipient you cannot use, distribute or copy the message or attachments. In such a case, please notify the sender by return email immediately and erase all copies of the message and attachments. Opinions, conclusions and other information in this message and attachments that do not relate to the official business of Solution 6 are neither given nor endorsed by it. * Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=59731t=59512 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Pix and multiple IPSEC tunnels [7:58849]
Hi All, Not sure if this is correct, however is the pix 515 able to have more than 1 IPSEC tunnel out at any omne time ? Reason for this is that I thought I saw a note that this box was not able to do this, and that the 3005 performed this functionality. Thanks all John Sydney, Australia ** visit http://www.solution6.com UK Customers - http://www.solution6.co.uk ** The Solution 6 Head Office and Branch in Sydney is moving premises. From Monday 25th November our Head Office and NSW Branch will be located at: Level 14, 383 Kent Street, Sydney NSW 2000. General Phone: 61 2 9278 0666 General Fax: 61 2 9278 0555 ** This email message (and attachments) may contain information that is confidential to Solution 6. If you are not the intended recipient you cannot use, distribute or copy the message or attachments. In such a case, please notify the sender by return email immediately and erase all copies of the message and attachments. Opinions, conclusions and other information in this message and attachments that do not relate to the official business of Solution 6 are neither given nor endorsed by it. * Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=58849t=58849 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
range command on IOS based switch [7:58768]
HI All, Is there any way out there, so i dont have to go into every interface on a 4006, and specify what vlan a specific port belongs to ? The word switchport access is poping up in dreams, at the shops and is starting to get scary...Does any one have an alternate command b4 I go crazy ? Thanks all John Sydney, Australia John Brandis Network Security Engineer [EMAIL PROTECTED] Phone: +61 2 9278 0629 Helpdesk: +61 2 9278 0486 ** visit http://www.solution6.com UK Customers - http://www.solution6.co.uk ** The Solution 6 Head Office and Branch in Sydney is moving premises. From Monday 25th November our Head Office and NSW Branch will be located at: Level 14, 383 Kent Street, Sydney NSW 2000. General Phone: 61 2 9278 0666 General Fax: 61 2 9278 0555 ** This email message (and attachments) may contain information that is confidential to Solution 6. If you are not the intended recipient you cannot use, distribute or copy the message or attachments. In such a case, please notify the sender by return email immediately and erase all copies of the message and attachments. Opinions, conclusions and other information in this message and attachments that do not relate to the official business of Solution 6 are neither given nor endorsed by it. * Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=58768t=58768 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
spanning tree issue's [7:58073]
Hi All, What commands are available on the 2950's to see instances of STP, or to diagnose spanning tree problems ? thanks ** visit http://www.solution6.com UK Customers - http://www.solution6.co.uk ** The Solution 6 Head Office and Branch in Sydney is moving premises. From Monday 25th November our Head Office and NSW Branch will be located at: Level 14, 383 Kent Street, Sydney NSW 2000. General Phone: 61 2 9278 0666 General Fax: 61 2 9278 0555 ** This email message (and attachments) may contain information that is confidential to Solution 6. If you are not the intended recipient you cannot use, distribute or copy the message or attachments. In such a case, please notify the sender by return email immediately and erase all copies of the message and attachments. Opinions, conclusions and other information in this message and attachments that do not relate to the official business of Solution 6 are neither given nor endorsed by it. * Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=58073t=58073 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
cisco 3005 and router ID error [7:57598]
Hi All have a strange probelm with a new 3005 and hope that some one may be able to help, possibly a hardware problem though. I shutdown the sydney office in the early hours of saturday morning to get a new UPS installed for the server room. I restarted the vpn 3005, and what do you know, of all devices, this one failed to return to normal operating parameters. (even wwindows/exchange servers came back up no problem) However my bigger problem, and also my mistake, is that I also implemented a new 4006 however the loopback ip was the same as the 3005. I noticed this problem a few hours after. I tried to change the router id of the 3005, however at this stage I could not even get the box to boot properly, could not access it via any means. Today, I got it up to the point where I have it back on the network (still using the IP in conflict) and accessed it via html. I tried to change the router ID, however it kept stating that the operation was illegal (not a browser problem :) I am now left with the option to see if the box is cactus, to change the loopback of the new core of the network, the loopback of the 4006, or come up with a solution to get the 3005 to flush all its routes, and let me change its router id.. Has any one come across this error, and if so how did they resolve it besides kicking it. for all those that actually read this far into the email, had an interesting time moving all static routes from the old HQ, to the new HQ and redistributing via OSPF. I made a very simple mistake, that cost me $1200AUD in a call to a ccie. What I was stuck on, was why the new core, the 4006 was not redistributing its static routes through-out the OSPF cloud. Answer, and it took the CCIE 5 minutes to solve it, was my use of the redistrubite static, where I really wanted to redistribute default information command. Oh well, thats a good lesson to learn. Hope you are all well and thanks for your time. Please disregard my huge disclaimer that is to follow. John Sydney Australia ** visit http://www.solution6.com UK Customers - http://www.solution6.co.uk ** The Solution 6 Head Office and Branch in Sydney is moving premises. From Monday 25th November our Head Office and NSW Branch will be located at: Level 14, 383 Kent Street, Sydney NSW 2000. General Phone: 61 2 9278 0666 General Fax: 61 2 9278 0555 ** This email message (and attachments) may contain information that is confidential to Solution 6. If you are not the intended recipient you cannot use, distribute or copy the message or attachments. In such a case, please notify the sender by return email immediately and erase all copies of the message and attachments. Opinions, conclusions and other information in this message and attachments that do not relate to the official business of Solution 6 are neither given nor endorsed by it. * Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=57598t=57598 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Cisco 3005 VPN concentrator issues. [7:57495]
I had the similar type of problem, remote users (broadband) would lose connectivity and get the remote peer not respondin, your ipsec session has been termintated error. The problem that I had, was with the broadband ISP, in this case Telstra. Telstra use a bpa hart beat packet, just so Telstra knows that the dsl customer is still there. Should telstra not get this packet, they drop the dsl connection, thus terminating your vpn session. Also, you may want to check your session time-out variable. I resolved my error by splitting the networks, as previously I had tunnel everything. john -Original Message- From: Umar Ahmed [mailto:[EMAIL PROTECTED]] Sent: Friday, 15 November 2002 8:00 PM To: [EMAIL PROTECTED] Subject: Cisco 3005 VPN concentrator issues. [7:57495] Hi all, Ive got a customer who has a 3005 concentrator connected to our network. He has setup a vpn connection which he accesses from home over the public internet. The problem he and the other 200 users are having is that they are loosing connectivity to the box intermittently throughtout the day. When he has loss of service, I can ping the vpn box directly connected to my network, whats even more strange, is that I can ping other customer hosts on the same subnet . Any ideas ?? Regards, Umar. ** visit http://www.solution6.com UK Customers - http://www.solution6.co.uk ** The Solution 6 Head Office and Branch in Sydney is moving premises. From Monday 25th November our Head Office and NSW Branch will be located at: Level 14, 383 Kent Street, Sydney NSW 2000. General Phone: 61 2 9278 0666 General Fax: 61 2 9278 0555 ** This email message (and attachments) may contain information that is confidential to Solution 6. If you are not the intended recipient you cannot use, distribute or copy the message or attachments. In such a case, please notify the sender by return email immediately and erase all copies of the message and attachments. Opinions, conclusions and other information in this message and attachments that do not relate to the official business of Solution 6 are neither given nor endorsed by it. * Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=57634t=57495 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
test [7:56765]
** visit http://www.solution6.com UK Customers - http://www.solution6.co.uk * The Solution 6 Group is on the move. As of Monday 25 November, our Sydney HQ will be located at Level 14, 383 Kent Street, Sydney NSW 2002 General Phone:(02) 9278 0666 General Fax: (02) 9278 0555 * This email message (and attachments) may contain information that is confidential to Solution 6. If you are not the intended recipient you cannot use, distribute or copy the message or attachments. In such a case, please notify the sender by return email immediately and erase all copies of the message and attachments. Opinions, conclusions and other information in this message and attachments that do not relate to the official business of Solution 6 are neither given nor endorsed by it. * -BEGIN PGP SIGNED MESSAGE- Hash: SHA1 -BEGIN PGP SIGNATURE- Version: PGPfreeware 7.0.3 for non-commercial use iQA/AwUBPcTVYAYJZoSdx3uGEQIZjACfZnyPTCNqInLJyg6I6QNqJ9HFOW8Ani9C 8o6g5DtIuTn6dI0dYTs4qA4W =T1l1 -END PGP SIGNATURE- Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=56765t=56765 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
CCNP Switching [7:56559]
Hi all, in relation to the commecnts on the test, I have not seen a set based switch for almost a year now, however I look at some of my SYNGRESS CCNP Switching book, which makes a funny comment on how ALL core switchs are set based. I would like to see the tests coming up in the future, as I feel (and this is up for debate) that a certain degree of emphasys must be placed upon IOS based commands at the core, as thats what I expect to see on these platforms in the future. What you think ? ** visit http://www.solution6.com UK Customers - http://www.solution6.co.uk * The Solution 6 Group is on the move. As of Monday 25 November, our Sydney HQ will be located at Level 14, 383 Kent Street, Sydney NSW 2002 General Phone:(02) 9278 0666 General Fax: (02) 9278 0555 * This email message (and attachments) may contain information that is confidential to Solution 6. If you are not the intended recipient you cannot use, distribute or copy the message or attachments. In such a case, please notify the sender by return email immediately and erase all copies of the message and attachments. Opinions, conclusions and other information in this message and attachments that do not relate to the official business of Solution 6 are neither given nor endorsed by it. * Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=56559t=56559 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
VPN 3005 making outgoing IPSEC connections [7:56501]
Any one know how to get the 3005 to initiate a connection, as opposed to let it be the central site just accepting the session ? jb ** visit http://www.solution6.com UK Customers - http://www.solution6.co.uk * The Solution 6 Group is on the move. As of Monday 25 November, our Sydney HQ will be located at Level 14, 383 Kent Street, Sydney NSW 2002 General Phone:(02) 9278 0666 General Fax: (02) 9278 0555 * This email message (and attachments) may contain information that is confidential to Solution 6. If you are not the intended recipient you cannot use, distribute or copy the message or attachments. In such a case, please notify the sender by return email immediately and erase all copies of the message and attachments. Opinions, conclusions and other information in this message and attachments that do not relate to the official business of Solution 6 are neither given nor endorsed by it. * Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=56501t=56501 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Dreadful writing on CCNP support exam. [7:56237]
Trying to work out what answer/statement is least wrong, is what I do all day whilst listening to my tech support staff. Its amazing but you get what you pay for. Jb -Original Message- From: Jenny McLeod [mailto:nobody;groupstudy.com] Sent: Monday, October 28, 2002 3:42 PM To: [EMAIL PROTECTED] Subject: RE: Dreadful writing on CCNP support exam. [7:56237] I haven't taken any Cisco exams lately so can't comment on the wording, but to be honest trying to figure out which answer is less wrong sounds like a lot of my day to day work... JMcL Roberts, Larry wrote: Are you sure you haven't taken any of the Cisco Exams ? You almost nailed it exactly. I passed all the exams with room to spare so Im not bitter, but I found myself trying to figure out which answer was less wrong than the others :) Thanks Larry -Original Message- From: Howard C. Berkowitz [mailto:hcb;gettcomm.com] Sent: Sunday, October 27, 2002 12:37 PM To: [EMAIL PROTECTED] Subject: RE: Dreadful writing on CCNP support exam. [7:56237] At 1:31 PM + 10/27/02, Joshua Barnes wrote: I thought the routing exam was the worst offender for ambiguity. CIT a close second. The ultimate ambiguity would be if you couldn't decide which of the two was worse. ** visit http://www.solution6.com UK Customers - http://www.solution6.co.uk * This email message (and attachments) may contain information that is confidential to Solution 6. If you are not the intended recipient you cannot use, distribute or copy the message or attachments. In such a case, please notify the sender by return email immediately and erase all copies of the message and attachments. Opinions, conclusions and other information in this message and attachments that do not relate to the official business of Solution 6 are neither given nor endorsed by it. * Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=56399t=56237 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: run VoIP on a frame network at BIR instead of [7:55833]
Hi Jenny, Is your carrier Telstra ? Do you use Telstra TPIPS for your cloud/next hop router ? John Sydney, Australia -Original Message- From: Jenny McLeod [mailto:nobody;groupstudy.com] Sent: Wednesday, October 23, 2002 9:17 AM To: [EMAIL PROTECTED] Subject: Re: run VoIP on a frame network at BIR instead of [7:55833] Depends on the frame switch, I think. I asked our telco about this as well (quite a while ago), and they said that on entry to the cloud, they automatically reset any DE bits set. So either way, your scheme isn't likely to work, but how much of a negative effect it has will depend on whether your telco drops entering DE packets or just resets the DE bits. JMcL Steven A. Ridder wrote: This was Cisco's old theory. In theory, it would work, but in reality, if the frame switch saw a packet come into it's ingress interface with the packet already marked DE, it will drop it because it was unexpected. I asked the telco's your question last year and that's the answer they gave me. Cisco seems to have abandoned that theory a while ago, which is probably why you haven't seen it written anywhere. dj wrote in message news:200210171534.PAA26762;groupstudy.com... Running a VoIP application over a frame-relay network with 256k CIR and 512k BIR. From the LLQ docs I reviewed, to guarantee good voice quality, traffic shaping all frame traffic to CIR is recommended along with LLQ of voice packets. Would like to take advantage of BIR bandwidth and still guarantee voice packets are not dropped by the frame relay switch network when congestion occurs. Here are my thoughts: What if the router were to pre-mark all data packets as Discard Eligible (DE) on the outbound serial interface connected to the frame network. Voice packets would NOT be marked DE. Then run up to BIR rates with LLQ prioritization for voice. Would the carrier frame network switches drop only the pre-marked DE data packets (by the router) when congestion occurred and NOT drop any voice packets? I haven't found any Cisco links that addressed QOS in this fashion. Any links on this topic would be greatly appreciated. The objective is to squeeze more bandwidth (BIR vs CIR) out of your frame relay network without dropping any voice packets. Why would this not work and what are the caveats? regards, dj ** visit http://www.solution6.com UK Customers - http://www.solution6.co.uk * This email message (and attachments) may contain information that is confidential to Solution 6. If you are not the intended recipient you cannot use, distribute or copy the message or attachments. In such a case, please notify the sender by return email immediately and erase all copies of the message and attachments. Opinions, conclusions and other information in this message and attachments that do not relate to the official business of Solution 6 are neither given nor endorsed by it. * Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=56112t=55833 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: 4006 IP Phone DHCP problem [7:56049]
Damn phones, Don't they make you feel stupid sometimes. Great work Larry. jb -Original Message- From: Roberts, Larry [mailto:Larry.Roberts;expanets.com] Sent: Wednesday, October 23, 2002 10:57 AM To: John Brandis Subject: RE: 4006 IP Phone DHCP problem [7:56049] The Fix was to run a newer version of code on the phones. We swapped to p00303020213 and that fixed it, or so it appears. We will know more after testing tomorrow. Larry -Original Message- From: John Brandis [mailto:john.brandis;solution6.com] Sent: Monday, October 21, 2002 10:26 PM To: 'Roberts, Larry' Subject: RE: 4006 IP Phone DHCP problem [7:56049] My problem which is hopefully something to look into, was that there was a config on the phones themselves that played havoc with what I was telling the switch to do. Hopefully this will solve your problems as it does not , according to your config and what TAC suggests, and issue with the config of the 4006. -Original Message- From: Roberts, Larry [mailto:Larry.Roberts;expanets.com] Sent: Tuesday, October 22, 2002 1:21 PM To: John Brandis Subject: RE: 4006 IP Phone DHCP problem [7:56049] Running Cisco 7960's and some Avaya phones as well, although I don't know their model number. I don't remember what I did to help, but glad I could do it! If I come up with an answer I will let you know.. Larry -Original Message- From: John Brandis [mailto:john.brandis;solution6.com] Sent: Monday, October 21, 2002 9:39 PM To: 'Roberts, Larry' Subject: RE: 4006 IP Phone DHCP problem [7:56049] I am very interested as I just purchased a 4006 to do the exact same setup. Whats the phone type you are using, hopefully not a NEC ? John Sydney, Australia Ps: thanks for helping with my VoIP issues last month. -Original Message- From: Roberts, Larry [mailto:Larry.Roberts;expanets.com] Sent: Tuesday, October 22, 2002 12:19 PM To: [EMAIL PROTECTED] Subject: 4006 IP Phone DHCP problem [7:56049] Hey folks, Im hoping that one of you can help me with a problem. I have a 4006 with a SUPIII running 2 VLAN's. The Data VLAN is VLAN 1 and the Voice VLAN is VLAN 200. I have a DHCP server on VLAN 1 with the proper scopes defined. My problem is that the phone is getting a VLAN 1 ip address, not a VLAN 200. Standard IP phone config: interface FastEthernet x/x description IP Phone switchport trunk encapsulation dot1q switchport mode trunk switchport voice vlan 200 no snmp trap link-status spanning-tree portfast Now if I hardcode the switchport to VLAN 200 with a switchport access vlan 200 and switchport mode access, it works fine. I did a debug on the SUPIII and I see the bootp request come in on VLAN 200, and I can see the SUP III set the GIADDR to the VLAN 200 address. I had the onsite tech take a look at the phone, and it see's itself as on VLAN 200, so I don't understand why the request is being met with a VLAN 1 ip. I know that the scopes are correct because hard coding the interface makes it work. I know that the VLAN interface configuration is correct because it works when the port is hard coded to the correct interface. I suspected that CEF was preventing the router from setting the GIADDR of the packet, but debug shows it doing it so now I am lost. I tried the standard no ip route-cache / mroute-cache but that hasn't helped. I don't know if it's a software bug or what, but I am at a loss. Anybody done this before ? I have several 3500's running this configuration and they work fine, so I am beginning to wonder if it isn't in the SUP III that is causing the issue. Perhaps it says its rewriting the GIADDR, but its not. IOS used: System image file is bootflash:cat4000-is-mz.121-12c.EW.bin Any help/thoughts/verbal abuse is appreciated. I have a TAC case open to see what I'm doing wrong, but they aren't seeing anything config wise being the problem so I thought I would try the experts over here. Thanks Larry ** visit http://www.solution6.com UK Customers - http://www.solution6.co.uk * This email message (and attachments) may contain information that is confidential to Solution 6. If you are not the intended recipient you cannot use, distribute or copy the message or attachments. In such a case, please notify the sender by return email immediately and erase all copies of the message and attachments. Opinions, conclusions and other information in this message and attachments that do not relate to the official business of Solution 6 are neither given nor endorsed by it. * Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=56116t=56049 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations
lab exercises [7:55849]
Hi All, Would you believe it, I have some spare time. In saying that, my recent delivery of my 4006 and 14 x 2950's, will be in my little comms room avaliable for me to play with for around 2 weeks. Would any one, have any labs in relation to switching, or even routing at CCNP - lower end CCIE levels that they would be willing to let me have a look at so I can get back on the study track. Thanks for your time. john Sydney, Australia ** visit http://www.solution6.com UK Customers - http://www.solution6.co.uk * This email message (and attachments) may contain information that is confidential to Solution 6. If you are not the intended recipient you cannot use, distribute or copy the message or attachments. In such a case, please notify the sender by return email immediately and erase all copies of the message and attachments. Opinions, conclusions and other information in this message and attachments that do not relate to the official business of Solution 6 are neither given nor endorsed by it. * Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=55849t=55849 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
multi site and bridging [7:55760]
Hi All, Got this problem. Have a site at the moment, site a running the 172.17.x.x networks. Management has just informed me that we have just acquired an empty building down the road, site b. The idea is that we move all servers and core infrastructure to site b over a series of weekends. After the move, we will sell site a. In order to do this, I will need to move all servers , using the same IP scheme to building b, thus I will need to have something that resembles a LAN, between 2 buildings, connected via a frame relay link (telstra tpips) Is there any way possible, to have something like a bridged network between the 2 buildings that will permit me to use the same IP scheme, utilize the VLAN's in use in site A, when I move to site b. Thanks all for your help When chuck wakes up, I will give you the whole story on this as he would love to hear my fights with non technical managers. ** visit http://www.solution6.com UK Customers - http://www.solution6.co.uk * This email message (and attachments) may contain information that is confidential to Solution 6. If you are not the intended recipient you cannot use, distribute or copy the message or attachments. In such a case, please notify the sender by return email immediately and erase all copies of the message and attachments. Opinions, conclusions and other information in this message and attachments that do not relate to the official business of Solution 6 are neither given nor endorsed by it. * Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=55760t=55760 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
switchport trunk problem [7:55664]
Whats new ? Got a problem here that may need to go to TAC, hoiwever I thought I would see if you had any idea's first. Took delivery of my 4006 last week. Put on the latest rom and IOS relases for the particular model of the supIII I need to create a trunk link on ports gigabit ethernet 2/1 - 2/10 I use the following command on int 2/1 2/2 Interface gigabitethernet 2/1 Switchport trunk encapsulation dot1q Switchport mode trunk Now, this is where I get the error. I try it on another port on module 2. Interface gigabitethernet 2/3 Switchport trunk encapsulation dot1q %unrecognised command% Got any ideas for me on that one ? John ** visit http://www.solution6.com UK Customers - http://www.solution6.co.uk * This email message (and attachments) may contain information that is confidential to Solution 6. If you are not the intended recipient you cannot use, distribute or copy the message or attachments. In such a case, please notify the sender by return email immediately and erase all copies of the message and attachments. Opinions, conclusions and other information in this message and attachments that do not relate to the official business of Solution 6 are neither given nor endorsed by it. * Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=55664t=55664 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
adding new IOS to cat 4000 [7:55536]
** visit http://www.solution6.com UK Customers - http://www.solution6.co.uk * This email message (and attachments) may contain information that is confidential to Solution 6. If you are not the intended recipient you cannot use, distribute or copy the message or attachments. In such a case, please notify the sender by return email immediately and erase all copies of the message and attachments. Opinions, conclusions and other information in this message and attachments that do not relate to the official business of Solution 6 are neither given nor endorsed by it. * -BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Hi, I am stupid, so please laugh at your convienence. However, when I want to TFTP my new IOS config for my 4006, to what part of the flash to I copy to ? (i am guessing bootflash) If I try to enter the boot system bootflash filename the router has no idea what I am talking about. I have it already in flash via copy tftp flash filename Any idea's ? Thanks all not with it today. jb -BEGIN PGP SIGNATURE- Version: PGPfreeware 7.0.3 for non-commercial use iQA/AwUBPapqcAYJZoSdx3uGEQIkNgCfShCA4oD/bGom+z1l8Khr0Gv8D9cAn2xa 0qsHrT2/mNEVPW4R6ABxFJYS =YM5t -END PGP SIGNATURE- Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=55536t=55536 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
switchport trunk enapsulation dot1q [7:55518]
HI mates, Putting my fibre GBIC commands in, line by line for something to do. Got a hitch already. I have so far, got int giga 2/1 2/2 as trunks using the command in the subject line. I try to do that further, however the command is not avaliabe from any other ports in the fibre blade. Can only 2 ports on the fibre gbic blade be trunks at anny one time ? Surely not. Do I need to specify different native parameters, so a trunk link is part of a different vlan ? What am I missing here ? interface GigabitEthernet2/1 switchport trunk encapsulation dot1q switchport mode trunk description Trunk to Switch l15_sw1 no snmp trap link-status ! interface GigabitEthernet2/2 switchport trunk encapsulation dot1q switchport mode trunk description Trunk Link to l15_sw2 no snmp trap link-status ! interface GigabitEthernet2/3 description Trunk Link to l15_sw3 no snmp trap link-status ! jb ** visit http://www.solution6.com UK Customers - http://www.solution6.co.uk * This email message (and attachments) may contain information that is confidential to Solution 6. If you are not the intended recipient you cannot use, distribute or copy the message or attachments. In such a case, please notify the sender by return email immediately and erase all copies of the message and attachments. Opinions, conclusions and other information in this message and attachments that do not relate to the official business of Solution 6 are neither given nor endorsed by it. * Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=55518t=55518 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
interface vlan 1 amdin up, line prot down [7:55327]
Hi, Took delivery of my new 4006 just today, with a sup III, 48 port 10/100, 20 port GBIC blade. and 2 other 10/100 blades. My issue at the moment is that when int vlan 2 ip address 192.168.2.1 255.255.255.0 no shut int vlan 3 ip address 192.168.3.1 255.255.255.0 no shut and so on I see the vlan interfaces as still down. I thought I was doing something wrog, so I went back and tried it via vlan database vlan 2 name servers vlan 3 name people Still I dont see the VLAN INterfaces as up. I know I am missing something very simple here, can some one point it out ? Thanks John Sydney, Australia ** visit http://www.solution6.com UK Customers - http://www.solution6.co.uk * This email message (and attachments) may contain information that is confidential to Solution 6. If you are not the intended recipient you cannot use, distribute or copy the message or attachments. In such a case, please notify the sender by return email immediately and erase all copies of the message and attachments. Opinions, conclusions and other information in this message and attachments that do not relate to the official business of Solution 6 are neither given nor endorsed by it. * Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=55327t=55327 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Security inside TPIPS cloud [7:55074]
Hi All, I use Telstra to provide my frame relay cloud, next hop service. Like the question earlier, is there any mechanism in place, so I can see if Telstra is doing the job its paid to do in relation to: * Security * Traffic shaping within the cloud Thanks all for your help. John Sydney, Australia ** visit http://www.solution6.com UK Customers - http://www.solution6.co.uk * This email message (and attachments) may contain information that is confidential to Solution 6. If you are not the intended recipient you cannot use, distribute or copy the message or attachments. In such a case, please notify the sender by return email immediately and erase all copies of the message and attachments. Opinions, conclusions and other information in this message and attachments that do not relate to the official business of Solution 6 are neither given nor endorsed by it. * Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=55074t=55074 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Need to make an access port very slow on a 2950 [7:54764]
Thanks mate, I will put that config on my managers port this afternoon and have a go at it. -Original Message- From: Vance Krier [mailto:[EMAIL PROTECTED]] Sent: Thursday, October 03, 2002 5:07 PM To: [EMAIL PROTECTED] Subject: Re: Need to make an access port very slow on a 2950 [7:54764] Hey John, One thing that comes to mind is rate-limiting. Do you have L3? Maybe you could create a new vlan (to make all traffic go through the L3 device) with a new subnet and drop that port/pc into that vlan. Then setup an access-list and rate limit commands to throttle that traffic to 9600. Something like this: access-list rate-limit 110 interface rate-limit input access-group rate-limit 110 9600 0 0 conform-action transmit exceed-action drop rate-limit output access-group rate-limit 110 9600 0 0 conform-action transmit exceed-action drop Good luck, Vance John Brandis wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... Hi All, Without going into it to much, I really would like to set some type of policy where by a user's PC on port 5 of my 2950 switch, has access to the rest of the LAN at 9.6kb/s..Can this be done on the switch, or do I need to do this on my 4006 ? John Sydney Australia ** visit http://www.solution6.com UK Customers - http://www.solution6.co.uk * This email message (and attachments) may contain information that is confidential to Solution 6. If you are not the intended recipient you cannot use, distribute or copy the message or attachments. In such a case, please notify the sender by return email immediately and erase all copies of the message and attachments. Opinions, conclusions and other information in this message and attachments that do not relate to the official business of Solution 6 are neither given nor endorsed by it. * Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=54835t=54764 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Need to make an access port very slow on a 2950 [7:54764]
Hi All, Without going into it to much, I really would like to set some type of policy where by a user's PC on port 5 of my 2950 switch, has access to the rest of the LAN at 9.6kb/s..Can this be done on the switch, or do I need to do this on my 4006 ? John Sydney Australia ** visit http://www.solution6.com UK Customers - http://www.solution6.co.uk * This email message (and attachments) may contain information that is confidential to Solution 6. If you are not the intended recipient you cannot use, distribute or copy the message or attachments. In such a case, please notify the sender by return email immediately and erase all copies of the message and attachments. Opinions, conclusions and other information in this message and attachments that do not relate to the official business of Solution 6 are neither given nor endorsed by it. * Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=54764t=54764 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: access list [7:54592]
Have one here with me now that I refer to every now and then. Got it in 2000, so may be a new version of this book now. Cisco Access Lists, Field Guide McGraw Hill Held/Hundley Isbn: 0-07-212335-4 John Sydney, Australia -Original Message- From: Karl West [mailto:[EMAIL PROTECTED]] Sent: Tuesday, October 01, 2002 11:06 AM To: [EMAIL PROTECTED] Subject: access list [7:54592] Does anyone know of a good book (not too big) that cover access list in detail? Thanks Karl ** visit http://www.solution6.com UK Customers - http://www.solution6.co.uk * This email message (and attachments) may contain information that is confidential to Solution 6. If you are not the intended recipient you cannot use, distribute or copy the message or attachments. In such a case, please notify the sender by return email immediately and erase all copies of the message and attachments. Opinions, conclusions and other information in this message and attachments that do not relate to the official business of Solution 6 are neither given nor endorsed by it. * Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=54597t=54592 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: ccnp routing [7:54579]
Wow, I am the opposite. I use OSPF as much as possible here, mainly due to the fact I had used it whilst in my early stages of networking. I really like OSPF and love how it it scales nicely in my networks. I honestly thought that a large portion of the routing test would be focused on OSPF. Guess I am wrong (again). Good luck and conratulations on your score. Hope the NZ Warriors have similar luck on Sunday night. John -Original Message- From: Simon Dartford [mailto:[EMAIL PROTECTED]] Sent: Tuesday, October 01, 2002 12:24 PM To: [EMAIL PROTECTED] Subject: RE: ccnp routing [7:54579] I sat this yesterday! It is a bit differnet, and in my opinion, better. Better because there is actual router simulation involved. I had to configure OSPF on one! I was caught out on IS-IS as I only started to study that at 6am the morning on the exam. My diligence was rewarded with %20 on IS-IS content. I fared better overall and go an excellent overall score (considering my performance on IS-IS). It focussed mainly on IS-IS (approx 10 questions), OSPF and BGP. Very little on EIGRP. I have only really ever configured EIGRP and BGP and I still did ok. Never seen OSPF before or since! I studied for one week beforehand. I used the old Ciscopress 503 exam guide. This was ok and went into more depth than the exam did. I borrowed the course notes for the IS-IS content, but did not retain anything much in the hour between 6am and 7am! IMHO, you will be fine with having done the course and a bit of revision. Some have said in cramsession it was way hard - only hard if you have not prepared well! I relied on my practical experience and just browsed the book. In the final 10 minutes, I was sure I had failed, as all the IS-IS questions were at the end. I was running through my head when I should resit, only to be surprised (really surprised...) that I had passed! Hope this info is helpful Simon Dartford Design Engineer Advanced Solutions Telecom New Zealand Internet: [EMAIL PROTECTED] Phone: +64 4 382-5453 Fax: +64 4 385-1223 Mobile: 025 243 7989 Important: This electronic message and attachments (if any) are confidential and may be legally privileged. If you are not the intended recipient do not copy, disclose or use the contents in any way. Please let us know by return email immediately and then destroy this message. -Original Message- From: Jesus Velazquez [mailto:[EMAIL PROTECTED]] Sent: Tuesday, 1 October 2002 10:35 To: [EMAIL PROTECTED] Subject: ccnp routing [7:54579] i'm sitting in on the routing 901 bsci (new exam) next week...any good advice or look outs for the exam?? i took the global knowledge course 2 weeks ago and have the older version of the boson routing for exam 603. should this be suffice. i heard the cisco press routing book is not a very good book for this course. thanks - This communication, including any attachments, is confidential. If you are not the intended recipient, you should not read it - please contact me immediately, destroy it, and do not copy or use any part of this communication or disclose anything about it. Thank you. - - [GroupStudy.com removed an attachment of type text/x-vcard which had a name of Simon Dartford (E-mail).vcf] ** visit http://www.solution6.com UK Customers - http://www.solution6.co.uk * This email message (and attachments) may contain information that is confidential to Solution 6. If you are not the intended recipient you cannot use, distribute or copy the message or attachments. In such a case, please notify the sender by return email immediately and erase all copies of the message and attachments. Opinions, conclusions and other information in this message and attachments that do not relate to the official business of Solution 6 are neither given nor endorsed by it. * Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=54605t=54579 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
help with voip on 3524xl [7:54467]
Hi all, Have 2 networks in branch office, one for voice other for data. Have it setup on a 3524 that phones are vlan 2 and pc on vlan1. Here is my config of ports. This config works to the point where the phones work no problem.I can get 1 laptop user with a modern laptop also working from behind the nec ip phone. Ports 23 24 go to nec pabx cards and are part of vlan2 Pc network 10.64.18.0 voice 10.64.19.0 interface FastEthernet0/1 description - FastEthernet port on Router spanning-tree portfast ! interface FastEthernet0/2 spanning-tree portfast ! interface FastEthernet0/3 description IP Phone PC Port switchport trunk encapsulation dot1q switchport mode trunk spanning-tree portfast ! interface FastEthernet0/4 description IP Phone PC Port switchport trunk encapsulation dot1q switchport mode trunk spanning-tree portfast interface FastEthernet0/23 description NEC PABX Port 1 switchport access vlan 2 switchport trunk encapsulation dot1q switchport priority extend trust spanning-tree portfast ! interface FastEthernet0/24 description NEC PABX Port 2 switchport access vlan 2 switchport trunk encapsulation dot1q switchport priority extend trust spanning-tree portfast john, Sydney australia ** visit http://www.solution6.com UK Customers - http://www.solution6.co.uk * This email message (and attachments) may contain information that is confidential to Solution 6. If you are not the intended recipient you cannot use, distribute or copy the message or attachments. In such a case, please notify the sender by return email immediately and erase all copies of the message and attachments. Opinions, conclusions and other information in this message and attachments that do not relate to the official business of Solution 6 are neither given nor endorsed by it. * Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=54467t=54467 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
2950 Switch and NEC IP Phone Problems (in my config) [7:54199]
This is the case. Phones work no probs with no PC directly connected. Connect a PC to the phone, and thats where the problems begin. Whilst not on the phone, can ping each PC, copy files. Make a call between handsets, and the data transmission stops completely. You seen this b4 ? Any hints ? I only have the one subnet for this branch office. Here is my config for the port: Interface Fast Ethernet 0/1NEC Test Configuration Port # 1 Power inline auto Speed 100 Duplex full Spanning-tree portfast Switchport trunk encaps dot1q Switchport trunk native vlan 1 Switchport mode trunk Switchport voice vlan none John Sydney Australia ** visit http://www.solution6.com UK Customers - http://www.solution6.co.uk * This email message (and attachments) may contain information that is confidential to Solution 6. If you are not the intended recipient you cannot use, distribute or copy the message or attachments. In such a case, please notify the sender by return email immediately and erase all copies of the message and attachments. Opinions, conclusions and other information in this message and attachments that do not relate to the official business of Solution 6 are neither given nor endorsed by it. * Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=54199t=54199 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Help with Qos on 3524xl [7:54299]
Hi All, Any one have any sample configs of QoS on a switch, prefer on a 3524xl setup for VOIP, however as I am desperate, I dont really care. Background: my company purchased NEC Ip phones for a very small branch office without considering the facts that the in house engineering team has no experience with VOIP and that the current infrastructure, is not ready for this. However, they did not listen. So its in the branch office with 16 IP phones on a single subnet with the PC's. The router in place is a cisco 2620 running IOS 12.2 (IP Only) with 24MB ram... Any help is appreciated. Dont you love upper management ;) ** visit http://www.solution6.com UK Customers - http://www.solution6.co.uk * This email message (and attachments) may contain information that is confidential to Solution 6. If you are not the intended recipient you cannot use, distribute or copy the message or attachments. In such a case, please notify the sender by return email immediately and erase all copies of the message and attachments. Opinions, conclusions and other information in this message and attachments that do not relate to the official business of Solution 6 are neither given nor endorsed by it. * Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=54299t=54299 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: LAN Design [7:54023]
I may be able to provide the network design that the members of groupstudy helped with (they just about designed it) Will be glad to pass it on if you wish. John -Original Message- From: Jimmy [mailto:[EMAIL PROTECTED]] Sent: Thursday, 26 September 2002 11:22 AM To: [EMAIL PROTECTED] Subject: Re: LAN Design [7:54023] First of all, thank for the wonderful response. So from what you all have said. If the user is for normal purpose like running some application on servers and access the Internet. Will a 100Mbps be sufficient for 300 users. As for the users, they will be splitted into several group of around 15-20 each.Or a 10Mbps switch will be more than sufficient for it. Can i calculate the BW for each user in this manner: 100M / 300 (no of user) Assuming full usage. Let say i have around 3 storey of about 300 users each, The backbone switch should be 10x the BW of each floor rite? Cheers, Jimmy ** visit http://www.solution6.com UK Customers - http://www.solution6.co.uk * This email message (and attachments) may contain information that is confidential to Solution 6. If you are not the intended recipient you cannot use, distribute or copy the message or attachments. In such a case, please notify the sender by return email immediately and erase all copies of the message and attachments. Opinions, conclusions and other information in this message and attachments that do not relate to the official business of Solution 6 are neither given nor endorsed by it. * Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=54160t=54023 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
3524xl Voice Config on single Subnet [7:53788]
Hi All, Building the config for a 3524xl with inline power for a branch site that is getting NEC IP Phones this week. The scene is that, we have a single subnet in the branch consisting of 16 PC's, and we have just taken delivery of the 16 IP Phones. I have limited VOIP experience, however I have come up with this config: I have a single VLAN for both voice and data (maybe a poor way of distinguishing between phone and PC). I have: Interface fastethernet 0/1 Power inline auto Speed 100 Duplex full Spanning tree portfast Native vlan 1 Voice vlan dot1p Is this a basic working config for VOIP on a single switch, using a single subnet ? Thanks all for your time Ps: Any one got time to design a server room ? A long story, one that Chuck would enjoy about pen pushers designing comms rooms. ** visit http://www.solution6.com UK Customers - http://www.solution6.co.uk * This email message (and attachments) may contain information that is confidential to Solution 6. If you are not the intended recipient you cannot use, distribute or copy the message or attachments. In such a case, please notify the sender by return email immediately and erase all copies of the message and attachments. Opinions, conclusions and other information in this message and attachments that do not relate to the official business of Solution 6 are neither given nor endorsed by it. * Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=53788t=53788 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: interface vlan 1 -- no shut [7:53682]
Thanks, Yes i was in sub interface mode now I think about it. Thanks for the heads up. jb -Original Message- From: Tom Lisa To: [EMAIL PROTECTED] Sent: 9/20/2002 3:51 PM Subject: Re: interface vlan 1 -- no shut [7:53682] If the 3524 is like the 2950 then you just assign the interfaces to the VLAN's directly. For example: Sw(config)# int fa0/5 Sw(config-if)# switchport access vlan 10 Sw(config-if)#int fa0/6 Sw(config-if)# switchport access vlan 10 and so on. You don't create the vlans separately. BTW, when you created the vlan separately, did you find yourself in sub-int mode? You were actually creating another mgt vlan and only one can function at a time. HTH, Prof. Tom Lisa, CCAI Community College of Southern Nevada Cisco ATC/Regional Networking Academy John Brandis wrote: HI All, Got a strange problem on a 3524xl switch. Problem: Need to create 2 VLANS . I issue the statements interface vlan 1 ip address 10.64.18.250 255.255.255.0 no shut interface vlan 2 ip address 10.64.19.25 255.255.255.0 no shut However, when I run sh ip interfaces , I see that only interface vlan 1 is up. I go into int vlan 1 and issue a shutdown, then I notice that VLAN 2 interface comes up... Can any one help with this please, or is this just how it works ? John Brandis Network Security Engineer [EMAIL PROTECTED] Phone: +61 2 9278 0629 Helpdesk: +61 2 9278 0486 Level 20, THH 456 Kent St, Sydney ** visit http://www.solution6.com UK Customers - http://www.solution6.co.uk * This email message (and attachments) may contain information that is confidential to Solution 6. If you are not the intended recipient you cannot use, distribute or copy the message or attachments. In such a case, please notify the sender by return email immediately and erase all copies of the message and attachments. Opinions, conclusions and other information in this message and attachments that do not relate to the official business of Solution 6 are neither given nor endorsed by it. * [EMAIL PROTECTED] Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=53702t=53682 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
interface vlan 1 -- no shut [7:53682]
HI All, Got a strange problem on a 3524xl switch. Problem: Need to create 2 VLANS . I issue the statements interface vlan 1 ip address 10.64.18.250 255.255.255.0 no shut interface vlan 2 ip address 10.64.19.25 255.255.255.0 no shut However, when I run sh ip interfaces , I see that only interface vlan 1 is up. I go into int vlan 1 and issue a shutdown, then I notice that VLAN 2 interface comes up... Can any one help with this please, or is this just how it works ? John Brandis Network Security Engineer [EMAIL PROTECTED] Phone: +61 2 9278 0629 Helpdesk: +61 2 9278 0486 Level 20, THH 456 Kent St, Sydney ** visit http://www.solution6.com UK Customers - http://www.solution6.co.uk * This email message (and attachments) may contain information that is confidential to Solution 6. If you are not the intended recipient you cannot use, distribute or copy the message or attachments. In such a case, please notify the sender by return email immediately and erase all copies of the message and attachments. Opinions, conclusions and other information in this message and attachments that do not relate to the official business of Solution 6 are neither given nor endorsed by it. * Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=53682t=53682 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Cisco 3005 VPN Routing [7:53243]
Hi All, Have a 3005 setup to connect my branch sites. Have noticed today whilst connecting a new site, that the routing table on the 3005, was showing a strange table. The 3005 (will call tok.ra from now), is saying that the route to my remote site is via the (a 10.10.x.x network), is not via the next hop router on the remote site, but via my internet router. I adjusted this thinking that there is no way in the world, that this traffic is going via the internet path, and changed it to relect the next hop router on the other side of the tunnel. As soon as I changed this, traffic between the sites stopped. I tried every possible next hop router with my colleague in the remote site, and nothing would work. As a last resort, I changed the next hop router, as my internet router...Things started to work again. This is not right to me. To me this states that the packets destined for the remote branch, are going via the internet router and not using the VPN link, however without the VPN in place, its not possible to route to the 10.10.x.x network (unless I have it locally which I dont)... Any one have any thoughts..Is it a bug in the VPN concentrator software, again ??? Am I stupid and not seeing it (dont answer to quick on that, my windows sys admins have their own opinion there, however they cant understand why there connection to the network is so slow after calling me names, I love QoS)... John Sydney, Australia ** visit http://www.solution6.com UK Customers - http://www.solution6.co.uk * This email message (and attachments) may contain information that is confidential to Solution 6. If you are not the intended recipient you cannot use, distribute or copy the message or attachments. In such a case, please notify the sender by return email immediately and erase all copies of the message and attachments. Opinions, conclusions and other information in this message and attachments that do not relate to the official business of Solution 6 are neither given nor endorsed by it. * Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=53243t=53243 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
network design results [7:52909]
First, I wish to thank all of you who contributed to the question of network design. In particular, I would like to thank Larry Letterman who spent a fair bit of time, and explained in detail, why he made changes and what benefits these changes made. The end result: Each switch in the network, has a GBIC connection to the core. Originally, only 2 switch's per floor would have a fibre link to the core, and all other switch's on that level would daisy chain from that. It was put forward to me, that in the event of a failue back to the core, I could have a potential problem with STP between switch's. The root switch, would see multiple STP networks. This could leed to a problem. Besides that, just simple configuration will get through the implementation phase. Have trunk links carrying for all VLANS on the switchs. Assign VLAN membership per port and away we go. If any one is interested in seeing the final design, please feel free to ask for the doco. Its really such a simple design. I had around 20 people willing to help. I wish to thank you, the un-sung hero's. John Sydney, Australia ** visit http://www.solution6.com UK Customers - http://www.solution6.co.uk * This email message (and attachments) may contain information that is confidential to Solution 6. If you are not the intended recipient you cannot use, distribute or copy the message or attachments. In such a case, please notify the sender by return email immediately and erase all copies of the message and attachments. Opinions, conclusions and other information in this message and attachments that do not relate to the official business of Solution 6 are neither given nor endorsed by it. * Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=52909t=52909 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Review of network design, any takers ? [7:52776]
Hi, Any one keen to look over a network that I am building ? Would really appreciate it if one or many of my peers had 5 minutes to make comments on my network design (requires visio) John Sydney, Australia ** visit http://www.solution6.com UK Customers - http://www.solution6.co.uk * This email message (and attachments) may contain information that is confidential to Solution 6. If you are not the intended recipient you cannot use, distribute or copy the message or attachments. In such a case, please notify the sender by return email immediately and erase all copies of the message and attachments. Opinions, conclusions and other information in this message and attachments that do not relate to the official business of Solution 6 are neither given nor endorsed by it. * Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=52776t=52776 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
network design question [7:52762]
Hi All, Like my previous emails, had a network designed for some 460 ports. Hoever, like yesterday, I have been told now to cater for some 650 ports, and to plan for VOIP in a few months time. My topology looked like [Core Switch - Cisco Catalyst 4006] / \ / \ / \ / \ / \ / \ [Cat2950][Cat2950] [Cat2950][cat2950] and would extend out another level That kind of worked for 460 ports: Would this design work: [---Core Switch - Cisco Catalyst 4006-] Floor Closet-Level 3 (core room) /\ / \ / \/ \ / \ / \ [Cat2950]--[Cat2950]---[Cat2950] [Cat2950]---[Cat2950]---[Cat2950]---[Cat2950] Floor Closet-Level 1 Floor Closet-Level 2 All links back to the core, are fibre connecting to a GBIC on the core 4006. The link between each cat 2950, is also fibre connecting to a GBIC port. Would this design work as my core-distribution model, or would it be better just to have the just 2 switchs at my dist layer ? Thanks for your time. John Sydney Australia ** visit http://www.solution6.com UK Customers - http://www.solution6.co.uk * This email message (and attachments) may contain information that is confidential to Solution 6. If you are not the intended recipient you cannot use, distribute or copy the message or attachments. In such a case, please notify the sender by return email immediately and erase all copies of the message and attachments. Opinions, conclusions and other information in this message and attachments that do not relate to the official business of Solution 6 are neither given nor endorsed by it. * Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=52762t=52762 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
VOIP and subnets [7:52688]
Hi All, planning for my new corporate network, i have decided that the company needs 8 different networks to work efficiently, all vlans are class c's, such as 10.64.0.0 -10.64.7.254 I have planned this well, and have a plan to fit into my OSPF design. Today, just found out, that my company has just purchased 500 nec ip phones and the appropriate PBX. As I have no experience with voip, could some one please tell me, if its a best design principle, to have the IP phones in subnets of there own, such as VLAN 7 6, are just phones, nothing else ? Thanks all John ** visit http://www.solution6.com UK Customers - http://www.solution6.co.uk * This email message (and attachments) may contain information that is confidential to Solution 6. If you are not the intended recipient you cannot use, distribute or copy the message or attachments. In such a case, please notify the sender by return email immediately and erase all copies of the message and attachments. Opinions, conclusions and other information in this message and attachments that do not relate to the official business of Solution 6 are neither given nor endorsed by it. * Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=52688t=52688 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
VOIP Trunking [7:52587]
Hi All, I am building a new LAN, and I wish to use 802.10 as the encaps type for my VTP domain. I am also, getting some NEC IP Telephones. Does any know, if I can use the 802.10 to trunk to the phone ? Or do you need to use .1q ? Thanks all, John Sydney, ** visit http://www.solution6.com UK Customers - http://www.solution6.co.uk * This email message (and attachments) may contain information that is confidential to Solution 6. If you are not the intended recipient you cannot use, distribute or copy the message or attachments. In such a case, please notify the sender by return email immediately and erase all copies of the message and attachments. Opinions, conclusions and other information in this message and attachments that do not relate to the official business of Solution 6 are neither given nor endorsed by it. * Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=52587t=52587 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
CCIE lab [7:52250]
Hi All, Can some one plase describe for me if you have time, how the ccie lab is conducted, how you felt during the lab ? Just keen to know john Sydney, Australia ** visit http://www.solution6.com UK Customers - http://www.solution6.co.uk * This email message (and attachments) may contain information that is confidential to Solution 6. If you are not the intended recipient you cannot use, distribute or copy the message or attachments. In such a case, please notify the sender by return email immediately and erase all copies of the message and attachments. Opinions, conclusions and other information in this message and attachments that do not relate to the official business of Solution 6 are neither given nor endorsed by it. * Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=52250t=52250 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Security Policy [7:52061]
Hi All, does any one have a copy of a security policy (like a corporate security outline for the company) that they are willing to share, so I can create one using that as a template/guide ? Thanks all John Sydney, Australia ** visit http://www.solution6.com UK Customers - http://www.solution6.co.uk * This email message (and attachments) may contain information that is confidential to Solution 6. If you are not the intended recipient you cannot use, distribute or copy the message or attachments. In such a case, please notify the sender by return email immediately and erase all copies of the message and attachments. Opinions, conclusions and other information in this message and attachments that do not relate to the official business of Solution 6 are neither given nor endorsed by it. * Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=52061t=52061 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
VLAN Encapsulation for Fibre [7:51680]
Hi All, What type of frame tagging Protocol is best for Gigabit Ethernet Fiber Interfaces. I understand that ISL is fine for standard fast ethernet , however .10 is perhaps better for this situation. Thanks for advice on VOIP. Got it all sorted out, thanks to the nice people at NEC and your comments. John Sydney Australia ** visit http://www.solution6.com visit http://www.eccountancy.com - everything for accountants. UK Customers - http://www.solution6.co.uk * This email message (and attachments) may contain information that is confidential to Solution 6. If you are not the intended recipient you cannot use, distribute or copy the message or attachments. In such a case, please notify the sender by return email immediately and erase all copies of the message and attachments. Opinions, conclusions and other information in this message and attachments that do not relate to the official business of Solution 6 are neither given nor endorsed by it. * Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=51680t=51680 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Aync Modem Problem [7:51701]
Hi All, Such a busy day.. configuring a 2509 with 2 modems connecting to async ports 1 and 2. The goal here, is to simply dial out. Have a simple config, Line Config of: modem autodiscovery modem inout line 1-2 Group-Async 1 group range 1 -2 ip unnumbered loopback1 encaps ppp async mode interactive -- chat script mydialup ABORT ERROR ABORT BUSY ATZ OK ATDT \T connect 30 timeout Whilst on the console, I try to start up a dial out conenction via my start chat mydialup tty 1 55 , however I get the following error % Chat script can not be run on line running other process Any one know whats happening ? This line is not in use any where elseMy sh line tty 1 has the following: NAS_2509#sh line tty 1 Tty Typ Tx/RxA Modem Roty AccO AccI Uses Noise Overruns Int * 1 TTY 19200/19200 - inout --- 0 1 0/0 - Line 1, Location: , Type: Length: 24 lines, Width: 80 columns Baud rate (TX/RX) is 19200/19200, no parity, 2 stopbits, 8 databits Status: Ready, Active, No Exit Banner Capabilities: Modem Callout, Modem RI is CD, Line usable as async interface, Modem Discovery Modem state: Ready Modem hardware state: noCTS noDSR* DTR RTS Special Chars: Escape Hold Stop Start Disconnect Activation ^^xnone - - none Timeouts: Idle EXECIdle Session Modem Answer Session Dispatch 00:10:00nevernone not set Idle Session Disconnect Warning never Login-sequence User Response 00:00:30 Autoselect Initial Wait not set Modem type is unknown. Session limit is not set. Thanks all for any assistance you can provide. John ** visit http://www.solution6.com visit http://www.eccountancy.com - everything for accountants. UK Customers - http://www.solution6.co.uk * This email message (and attachments) may contain information that is confidential to Solution 6. If you are not the intended recipient you cannot use, distribute or copy the message or attachments. In such a case, please notify the sender by return email immediately and erase all copies of the message and attachments. Opinions, conclusions and other information in this message and attachments that do not relate to the official business of Solution 6 are neither given nor endorsed by it. * Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=51701t=51701 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Cabling techniques between 4006 2550 [7:51411]
Hi All, Am building a new network and have some questions to answer, before I get cabling quotes. I have placed an order for a Cat 4006 at my core, and some 20 2550 switch's at my distribution layer. Running a pretty simple network. MY question is: 1). To run between the 3 floors in my building, what type of fibre would be best used 2). What type of termination points of the fibre,, are required, so i can cnonnect to the 4006 and 2550 respectively. Thanks all for your answers last night about the VPN. I got it going after some pre-shared key spelling mistakes, and a bug in the VPN concentrator software was found. John Sydney, Australia ** visit http://www.solution6.com visit http://www.eccountancy.com - everything for accountants. UK Customers - http://www.solution6.co.uk * This email message (and attachments) may contain information that is confidential to Solution 6. If you are not the intended recipient you cannot use, distribute or copy the message or attachments. In such a case, please notify the sender by return email immediately and erase all copies of the message and attachments. Opinions, conclusions and other information in this message and attachments that do not relate to the official business of Solution 6 are neither given nor endorsed by it. * Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=51411t=51411 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
VPN and wildcard masking [7:51342]
Hi All. On a spare time job I do with a charity, I have a remote client, that is going to connect to our site via an IPSEC vpn tunnel. The problem is, that, if you can imagine the remote site as a hub site, and my site as site-b, that site-b is using internal networks that range from 172.16.0.0 - 172.32.0.0 which can easily be summarised as 172.16.0.0 0.15.255.255 ..The problem is that the hub site, has connections to other parts of the world, that use the same addressing scheme as my site, site-b. The question is, how do I get, if at all possible, the hub site, to filter traffic to the appropriate subnet. A real example of this is The hub site needs access to the following subnets in site-b * 172.17.3.0 * 172.17.1.0 * 172.17.9.0 Yet, they need access to subnets described below, that are on another completely seperate VPN * 172.17.20.0 * 172.17.21.0 How if possible can this be done ? Would the hub site, (the hub site is establinsh the connection) need to create a tunnel for each subnet they wish to route ? The equiptment in use is a Cisco 3005 VPN Accelerator and a watchguard firewall at the hub site. Thanks all for your input John Sydney Australia ** visit http://www.solution6.com visit http://www.eccountancy.com - everything for accountants. UK Customers - http://www.solution6.co.uk * This email message (and attachments) may contain information that is confidential to Solution 6. If you are not the intended recipient you cannot use, distribute or copy the message or attachments. In such a case, please notify the sender by return email immediately and erase all copies of the message and attachments. Opinions, conclusions and other information in this message and attachments that do not relate to the official business of Solution 6 are neither given nor endorsed by it. * Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=51342t=51342 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
access server config (2509) [7:51029]
Hi All, got a 2509 the other day. Trying to use it as a dial out unit, along with tactical softwares port director (creates a virtual modem on your desktop, whilst really using the NAS as the dial out device). As I dont have the appropriate cable yet, can some one tell me if my config here would do the job of making and accepting calls. I know I dont have any chat scripts, maybe this is why it will or will not work ? Love for comments. John Sydney Australia nas#sh run Building configuration... Current configuration: ! version 12.0 service timestamps debug uptime service timestamps log uptime no service password-encryption ! hostname nas ! enable secret 5 $1$rK5b$HX0RD1cZf/VdHVIuOEJYW1 enable password cisco ! username user password 0 password ip subnet-zero no ip domain-lookup ip name-server 192.168.5.2 ip name-server 192.168.5.3 ! ! process-max-time 200 ! interface Loopback1 ip address 192.168.1.1 255.255.255.0 no ip directed-broadcast ! interface Ethernet0 ip address 192.168.2.1 255.255.255.0 no ip directed-broadcast ! interface Serial0 no ip address no ip directed-broadcast shutdown ! interface Group-Async1 ip unnumbered Ethernet0 ip access-group 101 in no ip directed-broadcast encapsulation ppp shutdown async mode dedicated peer default ip address pool dialin ppp authentication pap chap callin group-range 1 8 ! ip local pool dialin 192.168.2.50 192.168.2.60 ip classless ! access-list 101 permit ip any any ! line con 0 transport input none line 1 8 modem InOut modem autoconfigure discovery transport input all speed 2400 line aux 0 line vty 0 4 password cisco login ! end ** visit http://www.solution6.com visit http://www.eccountancy.com - everything for accountants. UK Customers - http://www.solution6.co.uk * This email message (and attachments) may contain information that is confidential to Solution 6. If you are not the intended recipient you cannot use, distribute or copy the message or attachments. In such a case, please notify the sender by return email immediately and erase all copies of the message and attachments. Opinions, conclusions and other information in this message and attachments that do not relate to the official business of Solution 6 are neither given nor endorsed by it. * Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=51029t=51029 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Route Summary syntax [7:50507]
Hi All, are the 2 following statements the same ? Route Summary for my global empire Sydney 10.64.0.0/21 Melb10.64.0.8/23 Bris10.64.0.10/23 Is whats below the same ? 10.64.0.0/21 10.64.8.0/23 10.64.10.0/23 Thanks for your time everyone. JB ** visit http://www.solution6.com visit http://www.eccountancy.com - everything for accountants. UK Customers - http://www.solution6.co.uk * This email message (and attachments) may contain information that is confidential to Solution 6. If you are not the intended recipient you cannot use, distribute or copy the message or attachments. In such a case, please notify the sender by return email immediately and erase all copies of the message and attachments. Opinions, conclusions and other information in this message and attachments that do not relate to the official business of Solution 6 are neither given nor endorsed by it. * Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=50507t=50507 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
OSPF Route SUmmary [7:50208]
Please forgive my stupid questions of late. I have a simple test lab network consisting of some 3 x 2503 routers. Each router represents a city in Australia and a private networks on the ethernet interface. Sydney: 10.64.0.0 - 10.64.7.254 /24 Melbourne: 10.64.8.0 - 10.64.9.254 /24 Brisbane: 10.64.10.0 - 10.64.11.254 /24 I now want/need to implement a route summary for my entire network such as 10.64.0.0 /21 SYDNEY 10.64.0.8/23 MELBOURNE 10.64.0.10/23 BRISBANE My question is, where/which router would I insert this route summary ? In terms of where the routers are, Sydney router is the device that has a connection to the upstream routers of my fantasy global empire consisting of offices in US/UK/Africa and just lately, some where in the Polar Ice Caps. Appreciate any assistance you can offer. John ** visit http://www.solution6.com visit http://www.eccountancy.com - everything for accountants. UK Customers - http://www.solution6.co.uk * This email message (and attachments) may contain information that is confidential to Solution 6. If you are not the intended recipient you cannot use, distribute or copy the message or attachments. In such a case, please notify the sender by return email immediately and erase all copies of the message and attachments. Opinions, conclusions and other information in this message and attachments that do not relate to the official business of Solution 6 are neither given nor endorsed by it. * Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=50208t=50208 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Radius [7:50090]
hi All Please forgive the question, however, does Win2k Server have its own Radius Server so we can authenticate with it ? Thanks all and sorry for the question. John Brandis Desk: 02-9278-0629 Mobile: 0414-495-320 [EMAIL PROTECTED] www.solution6.com ** visit http://www.solution6.com visit http://www.eccountancy.com - everything for accountants. UK Customers - http://www.solution6.co.uk * This email message (and attachments) may contain information that is confidential to Solution 6. If you are not the intended recipient you cannot use, distribute or copy the message or attachments. In such a case, please notify the sender by return email immediately and erase all copies of the message and attachments. Opinions, conclusions and other information in this message and attachments that do not relate to the official business of Solution 6 are neither given nor endorsed by it. * Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=50090t=50090 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
VLAN Trunking [7:49976]
G'day all. Got a question regarding VLAN trunking in a switched environment. Say for example, I have a Catalyst 5509 in my network at the core, and then I have lower end catalyst switch's with a gigabit port on each. In this example, lets say I have 14 VLANS to connect, however I only have 8 gigabit ports on my Catalyst 5509. In this case, the customer NEEDS gigabit access back to the core from the distribution layer. My question is, would it be better to: a). Just buy another module of 8 gigabit ports and connect every VLAN's distribution layer back to the Catalyst gigabit ports b). Something else ? Thanks for all your help and time. I appreciate it. John Brandis Sydney, Australia ** visit http://www.solution6.com visit http://www.eccountancy.com - everything for accountants. UK Customers - http://www.solution6.co.uk * This email message (and attachments) may contain information that is confidential to Solution 6. If you are not the intended recipient you cannot use, distribute or copy the message or attachments. In such a case, please notify the sender by return email immediately and erase all copies of the message and attachments. Opinions, conclusions and other information in this message and attachments that do not relate to the official business of Solution 6 are neither given nor endorsed by it. * Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=49976t=49976 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
OSPF Routing [7:49982]
Hi All, Got 2 routers back 2 back working. RouterA: int s0 192.168.10.1/24 int e0 192.168.7.1/24 int loopback 0 192.168.70.1/24 routerb: int s1 192.168.10.2/24 int e0 192.168.3.1/24 int loopback 0 192.168.30.1/24 I try to use ospf routing in summary on each router by router ospf 20 network 192.168.0.0 0.0.255.255 area 0 However, I outside of directly connected subnets using that. To have full conectivity to the network, I have to have on for example router a router ospf 20 network 192.168.10.0 0.0.0.255 area 0 network 192.168.7.0 0.0.0.255 area 0 then my routes will work. Should I not be able to simply use a summary of 192.168.0.0 0.0.255.255 area 0 on both routers thus enabling me to all the routes ? Or is it part of OSPF that all the networks that I wish to distribute must be defined on each router ? Thanks all John Brandis ** visit http://www.solution6.com visit http://www.eccountancy.com - everything for accountants. UK Customers - http://www.solution6.co.uk * This email message (and attachments) may contain information that is confidential to Solution 6. If you are not the intended recipient you cannot use, distribute or copy the message or attachments. In such a case, please notify the sender by return email immediately and erase all copies of the message and attachments. Opinions, conclusions and other information in this message and attachments that do not relate to the official business of Solution 6 are neither given nor endorsed by it. * Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=49982t=49982 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: OSPF Routing [7:49982]
No i did not, I completely forgot that. Would that be the cause of this routing issue ? -Original Message- From: Robert D. Cluett [mailto:[EMAIL PROTECTED]] Sent: Monday, 29 July 2002 3:04 PM To: [EMAIL PROTECTED] Subject: Re: OSPF Routing [7:49982] Question, Do you have the ip classless command on both routers? John Brandis wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... Hi All, Got 2 routers back 2 back working. RouterA: int s0 192.168.10.1/24 int e0 192.168.7.1/24 int loopback 0 192.168.70.1/24 routerb: int s1 192.168.10.2/24 int e0 192.168.3.1/24 int loopback 0 192.168.30.1/24 I try to use ospf routing in summary on each router by router ospf 20 network 192.168.0.0 0.0.255.255 area 0 However, I outside of directly connected subnets using that. To have full conectivity to the network, I have to have on for example router a router ospf 20 network 192.168.10.0 0.0.0.255 area 0 network 192.168.7.0 0.0.0.255 area 0 then my routes will work. Should I not be able to simply use a summary of 192.168.0.0 0.0.255.255 area 0 on both routers thus enabling me to all the routes ? Or is it part of OSPF that all the networks that I wish to distribute must be defined on each router ? Thanks all John Brandis ** visit http://www.solution6.com visit http://www.eccountancy.com - everything for accountants. UK Customers - http://www.solution6.co.uk * This email message (and attachments) may contain information that is confidential to Solution 6. If you are not the intended recipient you cannot use, distribute or copy the message or attachments. In such a case, please notify the sender by return email immediately and erase all copies of the message and attachments. Opinions, conclusions and other information in this message and attachments that do not relate to the official business of Solution 6 are neither given nor endorsed by it. * Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=49986t=49982 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
DCE or DTE [7:49625]
Been away from routers for a while whats the command to figure out which serial in in a back to abck config is DCE/DTE ? Reason is I have 2 back to back 2503's. My serial cable is going to S0 in each router. IN the configs, I have Bris Router# int s0 ip address 192.168.1.1 255.255.255.0 encapsulation ppp bandwidth 64 clock rate 64000 no shut Melb Router# int s0 ip address 192.168.1.2 255.255.255.0 encapsulation ppp bandwidth 64 no shut What am I missing as I have the int face is up, line proto down. I really should be able to figure this one out, however its late afternoon in Australia and I want to sleep after a big night of watching Buffy repeats. John Brandis Desk: 02-9278-0629 Mobile: 0414-495-320 [EMAIL PROTECTED] www.solution6.com ** visit http://www.solution6.com visit http://www.eccountancy.com - everything for accountants. UK Customers - http://www.solution6.co.uk * This email message (and attachments) may contain information that is confidential to Solution 6. If you are not the intended recipient you cannot use, distribute or copy the message or attachments. In such a case, please notify the sender by return email immediately and erase all copies of the message and attachments. Opinions, conclusions and other information in this message and attachments that do not relate to the official business of Solution 6 are neither given nor endorsed by it. * Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=49625t=49625 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
IOS Upgrade ROMMON [7:49728]
Hi All Thanks for the reply on my DCE/DTE question. Resolved now. Have a new IOS image that I wish to apply to my 2503. However I dont have a spare AUI for it, thus no ethernet activity at the moment. I know you can upload new IOS via ROMMON, because I did it once before. Last time I did it, because my TFTP failed and I went straight to ROMMON. How does one, delete the current IOS and be able to get back into ROMMON ? Is it as simple as a ctrl-break upon boot ? Thanks all John ** visit http://www.solution6.com visit http://www.eccountancy.com - everything for accountants. UK Customers - http://www.solution6.co.uk * This email message (and attachments) may contain information that is confidential to Solution 6. If you are not the intended recipient you cannot use, distribute or copy the message or attachments. In such a case, please notify the sender by return email immediately and erase all copies of the message and attachments. Opinions, conclusions and other information in this message and attachments that do not relate to the official business of Solution 6 are neither given nor endorsed by it. * Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=49728t=49728 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
IOS 11.1 for 2503 [7:49611]
Hi All, Just got a router for free (cool) however its running IOS 9.14(6) . This is a very old IOS. The router has a touch on 4MB flash. 1). Can I download IOS 11.1 for free ? 2). Would it fit ? From what I understand, the 2503 cant boot from TFTP, however would still need the IOS any way. Any comments are appreciated. John Brandis ** visit http://www.solution6.com visit http://www.eccountancy.com - everything for accountants. UK Customers - http://www.solution6.co.uk * This email message (and attachments) may contain information that is confidential to Solution 6. If you are not the intended recipient you cannot use, distribute or copy the message or attachments. In such a case, please notify the sender by return email immediately and erase all copies of the message and attachments. Opinions, conclusions and other information in this message and attachments that do not relate to the official business of Solution 6 are neither given nor endorsed by it. * Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=49611t=49611 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: How to keep multiple switch ports on the same VLAN from [7:49424]
you thought about access lists on your router that will be doing the routing ? Some one else may be able to offer a better solution than this, I hope so at least. I would also like to know if there is a better way. John -Original Message- From: Don Claybrook [mailto:[EMAIL PROTECTED]] Sent: Tuesday, 23 July 2002 8:17 AM To: [EMAIL PROTECTED] Subject: How to keep multiple switch ports on the same VLAN from [7:49410] I have a customer who needs to have several ports on a 2924XL-EN in the same VLAN. The customer does not want these ports to be able to communicate with one another, but would like all of them to be able to go to/through another port. E.g., ports 1 to 5 would be on VLAN 50, they'd all be able to access port 6, on VLAN 60, but not each other. I did find something on CCO about Private VLANs, but I see that the 2924 is not on the list of hardware that supports PVLAN's. Does anyone know of a way to accomplish this segregation within the same VLAN, short of PVLAN's? Any help is much appreciated. Thanks, Don Claybrook ** visit http://www.solution6.com visit http://www.eccountancy.com - everything for accountants. UK Customers - http://www.solution6.co.uk * This email message (and attachments) may contain information that is confidential to Solution 6. If you are not the intended recipient you cannot use, distribute or copy the message or attachments. In such a case, please notify the sender by return email immediately and erase all copies of the message and attachments. Opinions, conclusions and other information in this message and attachments that do not relate to the official business of Solution 6 are neither given nor endorsed by it. * Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=49424t=49424 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
