debug for mtu size [7:57338]
Can any one show me how can I debug mtu size issues. Is there debug command I can use to monitor mtu mismatches. Thanks Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=57338t=57338 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Off Topic - empty CCIE Lab seats! [7:55878]
I think people are afraid to be the first guinea pigs in this new experiment. The Long and Winding Road wrote in message news:200210181454.OAA26971;groupstudy.com... this is the second consecutive morning where I have seen the entire week of November 11 with lots of empty Lab seats. Plus a few on Nov 19th. The next open dates after that are in May 2003 Interesting. Get 'em while they're hot! -- Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=55946t=55878 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
CCIE LAN Switching K.Clark update ? [7:55467]
Does any one here know if there will be an update to this excellent book, hopefully more in depth coverage of CAT IOS and 3550s. Thanks Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=55467t=55467 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: How to restrict hubs in a LAN [7:54937]
. I have to recognize,
though, that hubs sometimes are very convenient
and I'm the first on using
them.
when you say that politically, it's a mess
what does that
mean? high
powered sales people throwing their weight
around? management
does not
respect your input or concerns? something bad is
happening, and
it's rolling
downhill?
In some environments it's politically
unacceptable, I know some hospitals
in
which you have to fill in a lot papers before
being allowed to use a PC,
so
in that environments this could perfectly be part
of the policy.
I'm not questioning the wisdom or the necessity
for doing what
others have
suggested. I'm just wondering why it is
necessary for the
network manager /
network staff to unilaterally cut off user
access.
John Zaggat wrote in message
[EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
Thanks guys that's pretty good information,
but do you think
in your
opinion
is that good approach to deal with this
problem. Do you see
any caveats
and
are there any other ways this can be dealt
with.
Kevin Wigle wrote in message
[EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
take a look into Port Security.
http://www.cisco.com/en/US/products/hw/switches/ps708/products_configuration
_guide_chapter09186a008007f2dd.html
In the event of a security violation, you
can configure the
port to go
into
shutdown mode or restrictive mode. The
shutdown mode option
allows you
to
specify whether the port is permanently
disabled or
disabled for only a
specified time. The default is for the port
to shut down
permanently.
The
restrictive mode allows you to configure the
port to remain
enabled
during
a
security violation and drop only packets
that are coming in
from
insecure
hosts.
Kevin Wigle
- Original Message -
From: John Zaggat
To:
Sent: Saturday, October 05, 2002 5:01 PM
Subject: How to restrict hubs in a LAN
[7:54937]
I am just trying to think of how to
restrict Hubs from
being used in
the
LAN. Politically it's a mess and despite a
lot of
discussions certain
people
are able to add hubs at will where ever
they want. So I
was trying to
think
of a way to stop that within the switch.
Now normally
these ports that
the
hubs are connected to show several mac
addresses when I
do show cam
which
gives me an idea is there any way to
restrict host ports
to only
accept
one
mac-address. I don't want to hardcode the
mac-address
because that
would
be
too much a administrative burden. But if I
could restrict
the port to
accept
just one mac-address then that will make
these hubs
useless. Well
anyways
let me know if I am way off here but are
there any other
tricks in
use
by
any of you guys. I'll appreciate any
pointers.
JZ
[EMAIL PROTECTED]
__
Do you Yahoo!?
Faith Hill - Exclusive Performances, Videos More
http://faith.yahoo.com
Message Posted at:
http://www.groupstudy.com/form/read.php?f=7i=54983t=54937
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
How to restrict hubs in a LAN [7:54937]
I am just trying to think of how to restrict Hubs from being used in the LAN. Politically it's a mess and despite a lot of discussions certain people are able to add hubs at will where ever they want. So I was trying to think of a way to stop that within the switch. Now normally these ports that the hubs are connected to show several mac addresses when I do show cam which gives me an idea is there any way to restrict host ports to only accept one mac-address. I don't want to hardcode the mac-address because that would be too much a administrative burden. But if I could restrict the port to accept just one mac-address then that will make these hubs useless. Well anyways let me know if I am way off here but are there any other tricks in use by any of you guys. I'll appreciate any pointers. JZ Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=54937t=54937 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: How to restrict hubs in a LAN [7:54937]
Thanks guys that's pretty good information, but do you think in your opinion is that good approach to deal with this problem. Do you see any caveats and are there any other ways this can be dealt with. Kevin Wigle wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... take a look into Port Security. http://www.cisco.com/en/US/products/hw/switches/ps708/products_configuration _guide_chapter09186a008007f2dd.html In the event of a security violation, you can configure the port to go into shutdown mode or restrictive mode. The shutdown mode option allows you to specify whether the port is permanently disabled or disabled for only a specified time. The default is for the port to shut down permanently. The restrictive mode allows you to configure the port to remain enabled during a security violation and drop only packets that are coming in from insecure hosts. Kevin Wigle - Original Message - From: John Zaggat To: Sent: Saturday, October 05, 2002 5:01 PM Subject: How to restrict hubs in a LAN [7:54937] I am just trying to think of how to restrict Hubs from being used in the LAN. Politically it's a mess and despite a lot of discussions certain people are able to add hubs at will where ever they want. So I was trying to think of a way to stop that within the switch. Now normally these ports that the hubs are connected to show several mac addresses when I do show cam which gives me an idea is there any way to restrict host ports to only accept one mac-address. I don't want to hardcode the mac-address because that would be too much a administrative burden. But if I could restrict the port to accept just one mac-address then that will make these hubs useless. Well anyways let me know if I am way off here but are there any other tricks in use by any of you guys. I'll appreciate any pointers. JZ Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=54949t=54937 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
NAT dilemma [7:42762]
Hi guys/gals, I am using a 1605R with 2 ethernet interfaces as gateway to my cable service provider. My dilemma is that when I put a default route to outside NAT stops working. I verified this by using a sniffer. Without default route everything seems to work fine but it's just bugging the hell out of me that why is it so. Can some one enlighten me ? Here is my config: Router#sh run Building configuration... Current configuration : 939 bytes ! version 12.2 service timestamps debug uptime service timestamps log uptime no service password-encryption service udp-small-servers service tcp-small-servers ! hostname Router ! ! ip subnet-zero ip name-server 66.75.160.42 ip name-server 66.75.160.41 ip dhcp excluded-address 192.168.1.1 192.168.1.10 ! ip dhcp pool INSIDE network 192.168.1.0 255.255.255.0 default-router 192.168.1.1 dns-server 66.75.160.42 ! ip ssh time-out 120 ip ssh authentication-retries 3 ! ! ! ! interface Ethernet0 ip address dhcp ip nat outside no cdp enable ! interface Ethernet1 ip address 192.168.1.1 255.255.255.0 ip nat inside no cdp enable ! ip nat inside source list 1 interface Ethernet0 overload ip classless ip route 0.0.0.0 0.0.0.0 Ethernet0 no ip http server no ip pim bidir-enable ! access-list 1 permit 192.168.1.0 0.0.0.255 no cdp advertise-v2 no cdp run ! line con 0 line vty 0 3 login line vty 4 password cisco login ! end = JZ [EMAIL PROTECTED] __ Do You Yahoo!? Yahoo! Health - your guide to health and wellness http://health.yahoo.com Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=42762t=42762 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Is IBM 3272 and CAT 3920 same switch ? [7:24362]
Hi, can some one tell me if IBM 3272-216 and Cisco Cat 3920 the same token ring switch. Both have very similar menus, just wondering if I can upload cisco OS on to the IBM switch. Thanks for your help Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=24362t=24362 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Making a router load a different config
Jason, Thanks for your help, I have the text file (original config) that I am going to modify and copy to the startup-config, do I need to do anything else to this file. The reason why I asked this is because when I copy the router configs to my workstation they don't have an extension. Thanks --- Jason Roysdon [EMAIL PROTECTED] wrote: Sure, copy tftp startup-config (which doesn't affect your running conifg). Then next time it comes up, it uses the new startup config. -- Jason Roysdon, CCNA, MCSE, CNA, Network+, A+ List email: [EMAIL PROTECTED] Homepage: http://jason.artoo.net/ Cisco resources: http://r2cisco.artoo.net/ ""John Zaggat"" [EMAIL PROTECTED] wrote in message 901nr6$73i$[EMAIL PROTECTED]">news:901nr6$73i$[EMAIL PROTECTED]... Hi, We are physically moving a router from one location to another, I will be connecting remotely to this router, is it possible to set a router to load the new config (saved in the flash) at next power up. Thanks Shawn _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] = JZ [EMAIL PROTECTED] __ Do You Yahoo!? Yahoo! Shopping - Thousands of Stores. Millions of Products. http://shopping.yahoo.com/ _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Making a router load a different config
Hi, We are physically moving a router from one location to another, I will be connecting remotely to this router, is it possible to set a router to load the new config (saved in the flash) at next power up. Thanks Shawn _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Clarification:Local Serial interface on a router doesnot reply to ping
Hi, I was going through the groupstudy archives the other day and I found an interesting string on why the local interfaces on a router cannot be pinged in a frame-relay environment. The argument was that since there is no mapping between the ip address and DLCI on the directly attached serial interface of the router you won't get a reply if you ping it. I found out that I could ping the local interfaces of routers on our frame-relay network. Am I missing something here. Can some clear this up for me. Thanks JZ _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Calling Tacacs+ experts: How to Customize Logon Prompt
Hi, We are using PIX with Cisco secure for NT4. Does anyone know how to customize Logon prompt that users get when they access Internet. I posted this last week but did not get any response. Is it possible or not. Can someone atleast confirm that. Thanks _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Customize tacacs logon prompt ?
Hi, We are using PIX with Cisci secure for NT4, is it possible to customize the logon prompt. Anyhelp will be greatly appreciated. Thanks _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
PIX TACAS issue
Hi all, We are using a PIX 520 ver 5.1(2) with tacacs+ to authenticate all users outbound with NT database. Several of the users are experiencing repeated logon prompts when they try to go to links within a website. Has any one else seen this problem and know a solution. I have already searched the CCO website and not found much on it. Any help will be greatly appreciated. Thank you, _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Help with BGP ge and le options
Could someone clearly explain what these options do and an example of how are they used. Thanks = JZ [EMAIL PROTECTED] __ Do You Yahoo!? Yahoo! Messenger - Talk while you surf! It's FREE. http://im.yahoo.com/ _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
VPN, BGP Redundant Network
Hi all, We are trying to add redundancy to our network. There are all sorts of ideas on the table. One of the ideas is to have each of the remote sites (all 7 sites within US) connect to a local ISP and use VPN when needed to backup the frame-relay links that are inplace now. We use VPN extensively for our clients to connect to us now. I am new to BGP, and hence the question: does BGP play a role in this scenario and more importantly is this solution possible in your opinion. Thanks in advance for your help in advance JZ **NOTE: New CCNA/CCDA List has been formed. For more information go to http://www.groupstudy.com/list/Associates.html _ UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html FAQ, list archives, and subscription info: http://www.groupstudy.com Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
PPP or HDLC pros and cons
Hi guys, In a point to point T1 link what would be advantages or disadvantages of using HDLC vs PPP. Thank you = JZ [EMAIL PROTECTED] __ Do You Yahoo!? Yahoo! Photos -- now, 100 FREE prints! http://photos.yahoo.com ___ UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html FAQ, list archives, and subscription info: http://www.groupstudy.com Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Diff between point to point T1 and T1 with framerelay
Thank you for your help, I have one more question : The bandwidth for a p-to-p connnection, should that be 1544 Mbs as compared to 1536 Mbs since there is no frame-relay overhead ? --- "Feliz, Edgar" [EMAIL PROTECTED] wrote: John, If you order a T1 from A provider that is 1536 Mbs you get that bandwidth all to yourself you DO NOT have to SHARE it with anyone. It is as if you, and the other side of the connection had a long cable between the two sites, and only those two site could used that cable. All of the data you transmit under normal circumstance (no errors) will get through. This comes at a price. Frame-Relay on the other hand is shared bandwidth. Yes! the provider will under normal conditions guarantee the bandwidth that you request (CIR = Committed Information Rate), say 256k, 512k etc. You will even be able to burst for a certain period of time if there is bandwidth available to your port speed. But if the network becomes congested some of your packets will not get to their destination because they could have met a condition (DE + Discard eligible) set in the core network, or by the subscriber, that required them to be dropped under certain circumstances, like high network congestion,(This varies as some carriers will not drop packets, but there may be longer delays). When I say that it is shared bandwidth I say this because in fact you are sharing the bandwidth in the Core Network of your provider with hundreds of other subscribers to the service. Hope this helps, EF -Original Message----- From: John Zaggat [mailto:[EMAIL PROTECTED]] Sent: Tuesday, June 13, 2000 1:15 PM To: CiscoGroupstudy Subject: Diff between point to point T1 and T1 with framerelay Can some clearly explain the difference, I have checked the Archives and not found a good explanation. Also if you have some sample configs, that would be a great help to me. Thank you. = JZ [EMAIL PROTECTED] __ Do You Yahoo!? Yahoo! Photos -- now, 100 FREE prints! http://photos.yahoo.com ___ UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html FAQ, list archives, and subscription info: http://www.groupstudy.com Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] = JZ [EMAIL PROTECTED] __ Do You Yahoo!? Yahoo! Photos -- now, 100 FREE prints! http://photos.yahoo.com ___ UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html FAQ, list archives, and subscription info: http://www.groupstudy.com Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Diff between point to point T1 and T1 with framerelay
John, Thanks a lot for your help, I am setting up a point to point T1 link, most of the traffic will be file and email access. With so many options available for encapsulation how do you choose what's the best. I have a cisco 7206 on one side and 1604 on the other. Do you have any suggestions for me --- John Neiberger [EMAIL PROTECTED] wrote: The discrepancy you're seeing has nothing to do with frame relay overhead, but more with the number of signalling bits present in the T1. To provide clocking, a T1 circuit using ESF (extended super frames) and B8ZS (binary eight-zero substitution) coding will insert bits into the stream, I believe one on every frame, as a timing reference. Because that one bit per frame is used for clocking and not data, it reduces your actual throughput to 1536 Mbps. I don't believe that frame relay has any more overhead than a point to point circuit running HDLC, for instance. Both circuits encapsulate your data into another type of datalink format before sending it over the wire. Point to point HDLC, however, doesn't have FECN, BECN, LMI, etc., so I guess in a way it's true that there is more protocol-specific traffic on a frame relay circuit than there would be on a ptp. I hope that helps! Feel free to ask me any more questions. It helps me to remember this stuff if I have to explain it to someone else. Later, John Neiberger, CCNA/CCDA Thank you for your help, I have one more question : The bandwidth for a p-to-p connnection, should that be 1544 Mbs as compared to 1536 Mbs since there is no frame-relay overhead ? --- "Feliz, Edgar" [EMAIL PROTECTED] wrote: John, If you order a T1 from A provider that is 1536 Mbs you get that bandwidth all to yourself you DO NOT have to SHARE it with anyone. It is as if you, and the other side of the connection had a long cable between the two sites, and only those two site could used that cable. All of the data you transmit under normal circumstance (no errors) will get through. This comes at a price. Frame-Relay on the other hand is shared bandwidth. Yes! the provider will under normal conditions guarantee the bandwidth that you request (CIR = Committed Information Rate), say 256k, 512k etc. You will even be able to burst for a certain period of time if there is bandwidth available to your port speed. But if the network becomes congested some of your packets will not get to their destination because they could have met a condition (DE + Discard eligible) set in the core network, or by the subscriber, that required them to be dropped under certain circumstances, like high network congestion,(This varies as some carriers will not drop packets, but there may be longer delays). When I say that it is shared bandwidth I say this because in fact you are sharing the bandwidth in the Core Network of your provider with hundreds of other subscribers to the service. Hope this helps, EF -Original Message- From: John Zaggat [mailto:[EMAIL PROTECTED]] Sent: Tuesday, June 13, 2000 1:15 PM To: CiscoGroupstudy Subject: Diff between point to point T1 and T1 with framerelay Can some clearly explain the difference, I have checked the Archives and not found a good explanation. Also if you have some sample configs, that would be a great help to me. Thank you. = JZ [EMAIL PROTECTED] __ Do You Yahoo!? Yahoo! Photos -- now, 100 FREE prints! http://photos.yahoo.com ___ UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html FAQ, list archives, and subscription info: http://www.groupstudy.com Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] = JZ [EMAIL PROTECTED] __ Do You Yahoo!? Yahoo! Photos -- now, 100 FREE prints! http://photos.yahoo.com ___ UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html FAQ, list archives, and subscription info: http://www.groupstudy.com Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] ___ Get 100% FREE Internet Access powered by Excite Visit http://freelane.excite.com/freeisp = JZ [EMAIL PROTECTED] __ Do You Yahoo!? Yahoo! Photos -- now, 100 FREE prints! http://photos.yahoo.com ___ UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html FAQ, list archives, and subscription
Diff between point to point T1 T1 with frame relay
Guys, I am confused on this, couldn't find a satisfactory answer in the archives. Can some clearly explain the diff between, p-to-p T1 and T1 with frame-relay. Can some post sample configs for both. Sorry about the newbie question. Thank you = JZ [EMAIL PROTECTED] __ Do You Yahoo!? Yahoo! Photos -- now, 100 FREE prints! http://photos.yahoo.com ___ UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html FAQ, list archives, and subscription info: http://www.groupstudy.com Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Difference Between T1 Frame relay
Can some one clearly explain the difference between T1 and Frame relay, Does T1 run over Frame relay circuits ? Aren't they both Layer 1 in the OSI model. I have searched the archives and found some good info but I am still a little fuzzy about the concepts. Thanks Guys. = JZ [EMAIL PROTECTED] __ Do You Yahoo!? Send instant messages get email alerts with Yahoo! Messenger. http://im.yahoo.com/ ___ UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html FAQ, list archives, and subscription info: http://www.groupstudy.com Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
