OT - CDP: Is it treated as a 'vulnerability' in your world? [7:65251]
It recently came to my attention that my company may plan to disable all CDP in our network. The current vibe is that they see it as a security risk. My intent is to research this and provide a paper arguing for the use of CDP. The purpose for my post is to see if my opinions of the benefits of CDP are realistic (sanity check) and to see how others view CDP, weighing it's usefulness vs. any possible risk. I have already begun researching any security releases on CCO in regards to CDP. Initial scan shows a 'vulnerability' notice that Cisco most recently updated on Feb 12, 2003. This information can be found at this link: http://www.cisco.com/en/US/partner/tech/tk648/tk362/technologies_tech_note09 186a0080093ef0.shtml Looking at CDP from a troubleshooting tool perspective, I am all for it. I've personally been saved unknown hours tracing down a problem because CDP allowed me to bounce around the network quickly. Our network is not small. And as most people would agree, documentation is never what we all would like it to be. Therefore, I find that CDP's ability to display the network below Layer 3 is appreciated. Also from a tool perspective, I know CiscoWorks has tools to offer that utilize CDP. And I've seen software from other companies that does as well. Think Layer 2 traceroute capability. Looking at CDP from a multi-vendor platform perspective, I realize that it's often beneficial to turn off CDP on interfaces that connect to non-Cisco devices. No point in bothering a non-Cisco device with traffic that it can't process. But note, this is not turning off CDP globally per router/switch, but rather, disabling on an as-needed basis per interface. I'd like to hear other views and I'd appreciate feedback and opinions about this. Thanks, -chris Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=65251t=65251 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: BGP problem [7:60338]
CCO - TAC error decoder provided this feedback for the below error: 1. %BGP-3-NOTIFICATION: [chars] neighbor [IP_address] [dec]/[dec] ([chars]) [dec] bytes [chars] An error condition has been detected in the BGP session. A notification packet is being sent or received, and the session will be reset. This message appears only if the log-neighbor-changes command is configured for the BGP process. Recommended Action: This message represents an error in the session. Its origin should be investigated. If the error occurs periodically, copy the error message exactly as it appears on the console or in the system log, contact your Cisco technical support representative, and provide the representative with the gathered information. Related document: a.. Cisco - Configuring BGP across a PIX Firewall Notice that it is a Notification message. This means your peer session will be reset every time this occurs. Unfortunately this decode doesn't offer much more than stating that you might need to open a TAC case. Unless, the BGP across Pix Firewall link is actually applicable to your network setup. HTH, -chris - Original Message - From: Amr Essam To: Sent: Sunday, January 05, 2003 7:34 AM Subject: BGP problem [7:60338] Dear all I have been receiving this msg in all my routers during the past month and I have searched on how I can remove it but I didn't have any luck to find anything can tell on how to remove this entry to appear in my log The entry is: %BGP-3-NOTIFICATION: sent to neighbor x.x.x.x 2/7 (unsupported/disjoint capability) 0 bytes I hope I can find some advice on how to remove this entry to appear in my router logs Regards Amr Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=60341t=60338 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
question - how many commands are there [7:60051]
So I'm beginning my IE studies and had a thought. I wonder just how many commands there are. Throw out the 3550s, and just how many commands are possible on the 2600/3600 12.1 series IOS.?. just rambling. -chris Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=60051t=60051 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Question RE: OSPF and MTU [7:59902]
Hi Happy Holiday to all. I have some question that I would like to ask the group regarding OSPF, Fragmentation and MTU working together. I have a home lab where OSPF is running find over frame-relay hub and spoke configuration. The problem occurs when I tried to fragment traffic so that Voice traffic will pass through the frame relay incase of congestion/or large traffic. So I decided to implement a Frame Relay Class with frame-relay fragment 64 (since most Voice traffic is 64). Now when I enter this command, I notice that I lose connection with Spoke router. I can't even ping. So I enter the following command MTU 67 under Serial inter face 0/0. So it works find for pining and tcp connection but I lose OSPF Neighbor connection. In order for OSPF neighbor relationships to form, MTU must match. This was troubling to me a while back when I first started digging into OSPF. OSPF has hello packets with certain parameters that must match. The troubling part is that MTU is not one of those requirements. Rather, the MTU must match issue gets introduced in the OSPF Database Description packet. Interface MTU is part of this packet and therefore it is here that you'll see your problem arise. I suspect that you are probably seeing everything fine at the onset of the neighbor relationship and then when they begin to share their database description packets, it breaks. Set the interface MTUs to match on both sides. This should fix your problem. If not, please re-post and provide debugs from OSPF. -chris For references see: Doyle TCP/IP Vol 1 page 500 for the OSPF Database packet. Also, see Moy OSPF Anatomy of an Internet Routing Protocol, bottom of page 90 where he discusses the 'link-level' difficulties. Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=59909t=59902 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: CCIE Written ..plz help [7:59829]
IMHO, I feel you should be familiar with RFCs. Regardless if the exam asks questions about them or not. In order to understand the intended use and possible vendor interoperability issues of implementation, you should have atleast scanned several of them. What's better, if you find the RFCs a bit hard at first, then read books such as John T. Moy's OSPF Anatomy of an Internet Routing Protocol. Since Moy is given great credit for contributions to OSPF, his book helped me understand what they did and why. It's a nice precursor into reading the RFC. Similarly, I like Halabi's Internet Routing Architectures and John W. Stewart's BGP4 Inter-Domain Routing in the Internet. Both of these help with clarifying BGP. Nothing helps understanding a routing protocol and it's behaviors more than trying to equipment from 2 different vendors to talk the way you intend them to. Although your question was in regards to the IE written exam, think bigger. Trying to see a bigger picture helped me to understand how Cisco did things. -chris - Original Message - From: Howard C. Berkowitz To: Sent: Friday, December 27, 2002 12:23 PM Subject: Re: CCIE Written ..plz help [7:59829] At 11:31 AM + 12/27/02, irfan siddiqui wrote: Hi, does anyone know if we have to memorize RFC's for the CCIE written exam. Do they ask things like RFC's. Also if anyone has attempted the exam recently can they give any advice about wat u need to know and wat stuff to memorize if any.I am scheduled to give the exam next week and i still feel shaky. Thanks in advance . Irfan I've WRITTEN RFCs and don't have them memorized. That being said, UNDERSTANDING key RFCs is important. If you can't easily read a protocol RFC at the general, not developer level, you may not be ready for the written. Yes, I agree that finite state machines won't be explicitly tested on the written, but I think it's very hard to understand protocol behavior without a sense of FSMs, TLVs, etc. Memorizing the numbers of RFCs? Maybe, although it's foolish if Cisco expects that. There even can be subtleties -- people usually say the first RFC describing IPv4 was RFC791, but that was the first practical one -- RFC760 came a little earlier. Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=59842t=59829 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: HSRP and BGP [7:59735]
While several of us have mentioned splitting up the netblocks that you advertise to your ISP would help spread the usage across the T1's there is something to keep in mind. If there is only 1 or so hosts that are most often the destination for traffic inbound to your site, you are still going to get more utilization across the link that advertises the network that contains that particular host/s. I mention this because I've had clients in the past split netblock assignments in an effort to get better utilization of their multiple T1 setups. But we've often found that they have 1 host providing more service than the others, that particular network will see more traffic, hence, that particular link seeing more utilization. There can be a need to be very granular about how you advertise networks and about how you have your network set up. You may have to play with moving hosts around on different netblocks if you are truly looking to get something near even traffic on each T1. You can use your interface stats to routinely check load, or better, use something like MRTG that will poll your interfaces and graph utilization over longer periods of time. Sorry if this is long winded, but you need to keep in mind what your trying to do. How to best use the resources you have and perhaps most importantly, to know how to measure it accurately to see if you've achieved the results you were looking for. -chris - Original Message - From: YASSER ALY To: Sent: Monday, December 23, 2002 11:43 AM Subject: Re: HSRP and BGP [7:59735] In your scenario advertising same block over both links to your provider will not help in load sharing. Redundancy is acheived but not sharing because your ISP will receive two advertisments to the same block and BGP only chooses the best route. You can overcome this in many ways, for example you if you have a /22 block. Devide it into 8 /24 blocks. Start advertising 4 /24s through the 1st router, advertise the remaining /24s through the 2nd router. Like this you acheived load-balance as your ISP will receive 1/2 of the routes via one link and the rest through the other. You are not done yet as this will provide load-sharing but not redundancy. For example if Link1 fails this means that 1/2 of your blocks will not be advertised and will stop receiving traffic for them. To avoid this, advertise through both routers an aggregate route for the whole /22. Like this your ISP will always use the more specific route and in a way balance the traffic over both links. When one of the links/routers fail, your ISP will use the aggregate route advertised from your other router to route all the traffic back to you. Another way, is to ask your provider to accept not just 1 route for the /24 but accept both by setting the maximum accepted routes to 2 instead to 1. 1 is the default and ISPs normally don't accept changing this default value. HTH, Yasser From: Ivan Yip Hi All, Thanks all your response. Now two routers adverise same block /24 to the isp. I found that they are 'load shared' in this sense. Only 1 link is the active for Inbound. For example, if I download files from outside, inbound is using say link1 and link2 is idle and no packet coming in. Some time later, I ftp again and this time is using link2 and link1 is idle. Is it normal? TIA. misconduct and Nondisclosure violations to [EMAIL PROTECTED] Protect your PC - Click here for McAfee.com VirusScan Online Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=59759t=59735 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: HSRP and BGP [7:59735]
Hi, I have 2 routers configured with HSRP and running BGP with single ISP. For outbound traffic, it will go through the Active HSRP router. How about Inbound traffic? Can the Inbound traffic be 'load shared'? (The ISP already make the same preference on our route advertised) Or the Inbound traffic can only route back to active router link? You get back what you advertise out. So if you want some traffic to take one link and other traffic to take the other link, then you need to advertise it that way. Let's say you have a /24 netblock. You can advertise the first half of addresses (/25) out router A and the back half (/25) out router B. Then, take it a step further by also advertising the whole /24 block out both. This way, should one link fail, the other will pick up the traffic initially destined for the failed link. This based off of the longest-match rule. Please note - my example uses a /24 split into 2 /25s. Most providers won't accept (more specifically, won't advertise to their peers) any block smaller than a /24. There are some exceptions (such as having leased your netblock from that provider). Ask your provider what their policy is. Either way, work with your provider to get the advertisements setup correctly. This is the beauty of BGP. It has all the knobs you need for such requirements. HTH, -chris Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=59739t=59735 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Strange problem of route table [7:59533]
all static routes have an AD of 1...whether it is using ur interface or not. all directly connected interface have an AD of 0 Hi all, Can anybody tell me when I add static route to my default network it shows with Administrative distance of 1,whereas we know that static routes to our own interface have AD. of zero. Example C 10.77.152.128/25 is directly connected, FastEthernet1/0 S* 0.0.0.0/0 [1/0] via 10.77.152.129 is directly connected, FastEthernet1/0 Its showing here with administrative distance of 1 the route with default gateway of FastEthernet1/0. Please do clear me where I am wrong Thanx in advance Munit When using static routes: A route pointing to another IP address has an AD of 1 A route pointing to an interface has an AD of 0 -chris Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=59560t=59533 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: BGP update-source question [7:43043]
Wouldn't it be because the IP address you see in your BGP table is indeed the next-hop. If you instead look at a specific route sh ip rou x.x.x.x I would think you would see the BGP neig as you have listed (loopback1's ip address) and then the router has to do a recursive-lookup to find out how to get to that loopback address. -chris -Original Message- From: Steven A. Ridder [mailto:[EMAIL PROTECTED]] Sent: Wednesday, May 01, 2002 6:12 PM To: [EMAIL PROTECTED] Subject: Re: BGP update-source question [7:43043] Did you restart BGP? -- RFC 1149 Compliant. Get in my head: http://sar.dynu.com Daniel Lafraia wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... Hello, How come I see the interface address in the show ip bgp if I've specified an update-source for a neighbor? Thanks! Daniel Here is the config: RouterA interface Loopback0 ip address 105.105.105.1 255.255.255.128 interface Loopback1 ip address 41.41.41.1 255.255.255.255 interface Serial0 ip address 4.4.4.2 255.255.255.252 router bgp 55000 no synchronization network 105.105.105.0 mask 255.255.255.128 neighbor 4.4.4.1 remote-as 55000 neighbor 4.4.4.1 update-source Loopback1 RouterB interface Loopback0 ip address 104.104.104.1 255.255.255.128 interface Serial1 ip address 4.4.4.1 255.255.255.252 clockrate 64000 router bgp 55000 network 104.104.104.0 mask 255.255.255.128 neighbor 4.4.4.2 remote-as 55000 -- Please ignore other updates, these are other stuff I have in my lab :) -- RouterA#show ip bgp BGP table version is 42, local router ID is 105.105.105.1 Status codes: s suppressed, d damped, h history, * valid, best, i - internal Origin codes: i - IGP, e - EGP, ? - incomplete Network Next Hop Metric LocPrf Weight Path * i0.0.0.0 2.2.2.1 100 0 65000 i * i101.101.101.0/25 2.2.2.1 100 0 65000 i * 5.5.5.20 0 65000 i * i102.102.102.0/25 2.2.2.10100 0 65000 i * 5.5.5.2 0 65000 i *i104.104.104.0/25 4.4.4.10100 0 i * 105.105.105.0/25 0.0.0.00 32768 i RouterB#sh ip bgp BGP table version is 5, local router ID is 104.104.104.1 Status codes: s suppressed, d damped, h history, * valid, best, i - internal Origin codes: i - IGP, e - EGP, ? - incomplete Network Next HopMetric LocPrf Weight Path * 0.0.0.0 2.2.2.10 65000 i * i101.101.101.0/25 5.5.5.2 0100 0 65000 i * 2.2.2.10 65000 i * i102.102.102.0/25 5.5.5.2 0100 0 65000 i * 2.2.2.1 0 0 65000 i * 104.104.104.0/25 0.0.0.0 0 32768 i * i105.105.105.0/25 4.4.4.2 0100 0 i Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=43138t=43043 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: BGP Load Balancing Question [7:42469]
I am experiencing a similar problem, using one provider with two T1s. Utilization appears to significantly favor one interface over the other. I realize there will be some variation, but considering its a discrepancy of 75% vs. 3% (these are numbers from our provider) I've talked to the provider; each time I receive a different configuration. Is there a command that would better show the load balancing/utilization rates. I'm trying to become more familiar with BGP through my CCNP studies, but haven't gotten that far yet Thanks in advance for the help! I'm not sure I understand what you are describing. Are you saying that the BGP routes you receive from your provider are mainly coming over one link rather than the other? Or, are you saying that your inbound/outbound loads are uneven? Can you be a little more specific, perhaps, even show some snapshots of the interfaces? And your BGP neigh stats? My first suspicion, (if you are talking about inbound/outbound traffic loads) would be that caching has caused this load disparity. Do you know if CEF was implemented? -chris Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=42530t=42469 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: BGP Load Balancing Question [7:42469]
Inbound/Outbound loads are out of wack what part of the BGP neigh stats do you want to see? I'm referring to simply 'sh ip bgp sum', as this will show the amount of prefixes that you receive on each connection. So if I've read all of the threads correctly, you have 2 T1's at 2 physically separate locations but the same provider. I still have more questions than answers at this point. Are you advertising any routes or the same routes via both connections? (i.e. mail server, ftp server, dns server, etc...) Is there any routing happening on the 'back side', in other words can one router choose to go to the other router rather than out to the net? Looking at your stats from below, you don't have much traffic at all, in either direction. Your loads are low and per packet count (on 5 min moving average) is low. The questions about what routes you are receiving are relevant. Often you have 3 or so options: 1. Receive full-routes (100,000 plus routes) 2. Receive partial routes (i.e. routes for customers that belong to same AS that you get service from) 3. Default route-only. Sorry if it seems I'm dragging you along, but there are several factors to consider when you are attempting to get load-sharing. Especially if you are connected to 2 separate routers on your provider's backbone. -chris Serial0/0 is up, line protocol is up Hardware is QUICC with integrated T1 CSU/DSU Description: To provider1 MTU 1500 bytes, BW 1536 Kbit, DLY 2 usec, rely 255/255, load 5/255 Encapsulation FRAME-RELAY IETF, loopback not set, keepalive set (10 sec) LMI enq sent 77766, LMI stat recvd 77766, LMI upd recvd 0, DTE LMI up LMI enq recvd 0, LMI stat sent 0, LMI upd sent 0 LMI DLCI 0 LMI type is ANSI Annex D frame relay DTE Broadcast queue 0/64, broadcasts sent/dropped 12963/0, interface broadcasts 3 Last input 00:00:04, output 00:00:00, output hang never Last clearing of show interface counters never Queueing strategy: fifo Output queue 0/40, 5642 drops; input queue 0/75, 0 drops 5 minute input rate 181000 bits/sec, 35 packets/sec 5 minute output rate 31000 bits/sec, 8 packets/sec 14791247 packets input, 3209509245 bytes, 0 no buffer Received 0 broadcasts, 0 runts, 1 giants, 0 throttles 15143 input errors, 593 CRC, 8555 frame, 0 overrun, 0 ignored, 5994 abort 6400415 packets output, 2339275311 bytes, 0 underruns 0 output errors, 0 collisions, 8 interface resets 0 output buffer failures, 0 output buffers swapped out 3 carrier transitions DCD=up DSR=up DTR=up RTS=up CTS=up Serial0/1 is up, line protocol is up Hardware is QUICC with integrated T1 CSU/DSU Description: To provider2 MTU 1500 bytes, BW 1536 Kbit, DLY 2 usec, rely 255/255, load 6/255 Encapsulation FRAME-RELAY IETF, loopback not set, keepalive set (10 sec) LMI enq sent 77769, LMI stat recvd 77768, LMI upd recvd 0, DTE LMI up LMI enq recvd 0, LMI stat sent 0, LMI upd sent 0 LMI DLCI 0 LMI type is ANSI Annex D frame relay DTE Broadcast queue 0/64, broadcasts sent/dropped 12964/0, interface broadcasts 3 Last input 00:00:05, output 00:00:00, output hang never Last clearing of show interface counters never Queueing strategy: fifo Output queue 0/40, 9587 drops; input queue 0/75, 0 drops 5 minute input rate 0 bits/sec, 0 packets/sec 5 minute output rate 38000 bits/sec, 13 packets/sec 183425 packets input, 8800740 bytes, 0 no buffer Received 0 broadcasts, 0 runts, 0 giants, 0 throttles 2893 input errors, 628 CRC, 2175 frame, 0 overrun, 0 ignored, 90 abort 6083912 packets output, 2163859526 bytes, 0 underruns 0 output errors, 0 collisions, 7 interface resets 0 output buffer failures, 0 output buffers swapped out 3 carrier transitions DCD=up DSR=up DTR=up RTS=up CTS=up -Original Message- From: Kane, Christopher A. [mailto:[EMAIL PROTECTED]] Sent: Thursday, April 25, 2002 7:56 AM To: [EMAIL PROTECTED] Subject: RE: BGP Load Balancing Question [7:42469] I'm not sure I understand what you are describing. Are you saying that the BGP routes you receive from your provider are mainly coming over one link rather than the other? Or, are you saying that your inbound/outbound loads are uneven? Can you be a little more specific, perhaps, even show some snapshots of the interfaces? And your BGP neigh stats? My first suspicion, (if you are talking about inbound/outbound traffic loads) would be that caching has caused this load disparity. Do you know if CEF was implemented? -chris This message (including any attachments) is confidential and may be privileged. If you have received it by mistake please notify the sender by return e-mail and delete this message from your system. Any unauthorized use or dissemination of this message in whole or in part is strictly prohibited. Please note that e-mails
OT - VPN and use of public address space [7:42362]
For those of us that work for NSPs/ISPs or some other form of provider functionality, what are the thoughts in regards to use of public address space within VPNs? I've seen several networks that are using public address space within their VPNs, hence preventing the use of that space on the net. Several clients have large netblocks routing in their VPNs rather than renumbering to RFC 1918 address space. To me, this seems like a horrible waste of address space. I'd tend to think that it would be the provider's responsibility to strongly encourage the clients to relinquish their public space if all traffic is to remain in the VPN. Using NAT to allow Internet access as required. Also, I thought I had heard (perhaps just a rumor) that ARIN or some other similar authority watches for use of address space. In other words, if someone's been assigned a /16 and no hosts of that /16 are publicly visible, a 'nasty-gram' would arrive questioning the lack of use. Sorry for the off-topic thread but since I've seen several people post questions about building VPNs, I was hoping to see some discussion on the matter. -chris Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=42362t=42362 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: OSPF vs EIGRP [7:41613]
The most frequently mismatched parameters relevant for OSPF configuration seem to be dead intervals mtu sizes. OSPF doesn't care about MTU size. Uh, excuse me? Go read RFC 2178 (OSPF v2), section G.9: When two neighboring routers have a different interface MTU for their common network segment, serious problems can ensue: large packets are prevented from being successfully transferred from one router to the other, impairing OSPF's flooding algorithm and possibly creating black holes for user data traffic. This memo [RFC2178] provides a fix for the interface MTU mismatch problem by advertising the interface MTU in Database Description packets. When a router receives a Database description packet advertising an MTU larger than the router can receive, the router drops the Database Description packet. This prevents an adjacency from forming, telling OSPF flooding and user data traffic to avoid the connection between the two routers. For more information, see Sections 10.6, 10.8, and A.3.3. Wow. The learning continues. I have never actually run into this problem. I have checked the RFC. That's RFC 2328 by the way, it obsoletes RFC 2178. Indeed, its during the Database Describtion Packet exchange that the MTU size is checked. The Database Description Packet format includes an Interface MTU field. But, why wait until the DDP phase of the neighbor/adjacency development? Why wouldn't this thing be a 'must match' situation and be included in the Hello packet? I just config'd it in my lab on a Point-to-Point and the neighbor state makes it to EXSTART and then stops. The router with the smaller MTU size reports the following in it's debug: Nbr x.x.x.x has larger interface MTU Only the router with the smaller MTU is upset by this. The router with the interface that has the larger MTU makes no mention of any problems. Quick search on CCO shows that Cisco has a work around for this: http://www.cisco.com/univercd/cc/td/doc/product/software/ios122/122cgcr/fipr rp_r/1rfospf.htm#xtocid24 Again, learn something new everyday. Since MTU is never mentioned in the Hello packet, I thought it didn't matter. Sorry about posting inaccurate information. I appreciate the feedback pointing out my error. -chris Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=41759t=41613 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
OSPF and MTU, spawned from the OSPF vs. EIGRP thread [7:41766]
In an attempt to find out why MTU is examined (more precisely, why it's examined in the Database Description packets instead of the Hello packets) one of my co-workers found this passage in IETF meeting minutes: Editor's note: These minutes have not been edited. The OSPF Working Group met on Wednesday, December 11th from 1300-2500 at the San Jose IETF. Minutes of the meeting follow: The second problem, reported by Dan Senie of Proteon, concerns MTU mismatches between OSPF neighbors. This can cause flooding between the two neighbors to fail, with large Link State Updates being continually retransmitted. To fix this, we will report interface MTU in Database Description packets. A router will discard received Database Description packet which advertise an MTU that is larger than the router can receive. In this way, adjacencies will not form between routers having MTU mismatches. Tony Li expressed a desire for a more general purpose mechanism. There was also a question whether the same thing will have to be done for OSPF for IPv6 (we think so). Very informative. Thank goodness for meeting minutes. Here's the link if anyone is as hung up on this as I seem to be. :) http://www.ietf.org/ietf/ospf/ospf-minutes-96dec.txt Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=41766t=41766 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: OSPF question [7:41611]
Can you show us the rest of the config of R5-2602? Are you using any filtering? (i.e. distribute-lists/route-maps). I've seen routes (LSAs) in the OSPF database and not in the routing table due to filtering. What about clearing the route table? Curious - Is this the entire routing table? Because you don't have any OSPF routes in this table at all. -chris Hi, Group, I am having trouble with this OSPF configuration. Router R5-2602 in Area 0 learned a route from Area 1 from Router 6.6.6.6 , as shown as Summary Net link. Router 6.6.6.6 is the ABR. But this route does not appear in routing table, only in OSPF database. Anyone know why and how to fix it. Thanks Ruihai R5-2602#sh ip ospf da OSPF Router with ID (5.5.5.5) (Process ID 10) Router Link States (Area 0) Link ID ADV Router Age Seq# Checksum Link count 5.5.5.5 5.5.5.5 92 0x8002 0xB4D4 3 6.6.6.6 6.6.6.6 92 0x8003 0xBEFB 1 Net Link States (Area 0) Link ID ADV Router Age Seq# Checksum 150.100.2.6 6.6.6.6 93 0x8001 0x1F2 Summary Net Link States (Area 0) Link ID ADV Router Age Seq# Checksum 150.100.50.40 6.6.6.6 213 0x8001 0xFAD1 R5-2602# R5-2602#sh ip ospf ne Neighbor ID Pri State Dead Time Address Interface 6.6.6.6 1 FULL/ -00:01:47150.100.2.6 Serial0/0 R5-2602#sh ip route 1.0.0.0/24 is subnetted, 1 subnets C 1.2.3.0 is directly connected, FastEthernet0/1 S209.123.45.0/24 [1/0] via 192.168.1.1 65.0.0.0/24 is subnetted, 1 subnets S 65.215.18.0 [1/0] via 192.168.1.1 5.0.0.0/24 is subnetted, 1 subnets C 5.5.5.0 is directly connected, Loopback0 C192.168.1.0/24 is directly connected, FastEthernet0/1 150.100.0.0/16 is variably subnetted, 2 subnets, 2 masks C 150.100.2.0/23 is directly connected, Serial0/0 C 150.100.10.0/24 is directly connected, FastEthernet0/0 Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=41622t=41611 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: OSPF vs EIGRP [7:41613]
Also, what about OSPF between Cisco and non-Cisco products? Do they always work together like they're supposed to? Doug, I've worked with OSPF in a multi-vendor environment and had no problems. All the required parameters in the Hello packets were met and neigh/adj's were established with no configuration changes needed. You need Area ID, Stub Flag, Auth and Hello/Dead Intervals to match. If you have problems getting neighbors to form, look for mismatches in the Hello packets. I can't answer your other questions from first hand experience. But I've heard other people comment that EIGRP tends to let you be 'sloppier' in your overall network design. OSPF works best when you can take advantage of multiple areas, summarization and use of stub networks. OSPF seems to require a little more thought and planning where as EIGRP seems to provide flexibility in a network that may not have been designed/or grown in the most optimal ways. -chris Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=41629t=41613 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
OSPF and required Hello parameters [7:41647]
This question is more protocol related than perhaps Cisco (vendor) specific. Someone posted a question to the group today pertaining to OSPF and EIGRP. One of the poster's questions were about OSPF and multi-vendor interoperability. I've worked with OSPF on different routers and have not run into any problems. But it got me thinking more about the Hello protocol. It's within the Hello protocol that there are certain criteria that must be met. ACCORDING TO CISCO they are: Hello/Dead Interval, Area ID, Stub Flag and Authentication [method and password]. So, I wanted to see what RFC 2328 had to say about it. I also checked John T. Moy's book, Anatomy of an Internet Routing Protocol. In both of those sources I find that the following must match: Network mask, HelloInterval and RouterDeadInterval and the E-bit of the Options Field. The exception being the Network mask (depending on the Network Type in use). RFC states: HelloInterval RouterDeadInterval Network Mask E-bit of Options Field (Area capable of processing AS-external-LSAs) Cisco implementation: Hello/Dead Interval Area ID Stub Flag Authentication Method/password I realize vendors have the choice of how closely they follow an RFC. I'm just trying to make sure I understand the protocol for what it is and for how Cisco deploys it. Can someone experienced with this protocol check my understanding? -chris Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=41647t=41647 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: CCIE lab test schedule [7:41300]
Does anyone know why there is no available lab test between June and September? Will the lab be closed for three months? Ruihai I was curious about that too. I just scheduled mine and ended up in October. -chris Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=41344t=41300 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Passed IE Written [7:41067]
I passed the IE Written earlier this week. I'd like to thank the group for all of the quality posts. Chuck L. - Are you the moderator for the Groupstudy Lab list, or is it Paul? Just curious. Along those lines, I am trying to come up with a game plan for my studies. I plan to use Solie's outline as a base and was wondering if anyone cared to share what kind of study schedule they've come up with. Just looking for ideas. Thanks, -chris ^ Christopher A. KaneCCNP/CCDP/CCAI Advanced Technical Support WorldCom ^ Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=41067t=41067 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Autonomous-system command [7:36067]
Checked one of my lab boxes, it's running 12.0(16) and had that command as well. Like you I searched cisco command ref online and couldn't find it. I have an old 11.1 command summary manual and found it on page 453. [no] autonomous-system (local-as) To specify the local autonomous system that the router resides in for EGP, use the autonomous-system global configuration command. To me it looks as if this is a throwback to the EGP days (pre-BGP). Rather than do a search for EGP on CCO and get 1100 results that are referring to anything but the old protocol, I have Doyle's VOL II handy. His first chapter in VOL II is about EGP, the protocol. On page 26 he lists the steps for turning it on: 1. Specify the router's AS with the command autonomous-system 2. Start the EGP process and specify the neighbor's AS with the command router egp 3. Specify the EGP neighbors with the neighbor command 4. Specify what networks are to be advertised by EGP HTH, -chris -Original Message- From: John Neiberger [mailto:[EMAIL PROTECTED]] Sent: Thursday, February 21, 2002 10:39 AM To: [EMAIL PROTECTED] Subject: Autonomous-system command [7:36067] In 12.2(3) I just ran across the following global configuration command: autonomous-system [AS] Router(config)#? Configure commands: aaa Authentication, Authorization and Accounting. access-list Add an access list entry alias Create command alias alpsConfigure Airline Protocol Support apollo Apollo global configuration commands appletalk Appletalk global configuration commands arapAppletalk Remote Access Protocol arp Set a static ARP entry async-bootp Modify system bootp parameters autonomous-system Specify local AS number to which we belong I can't find this command in the master indexes and I've done a google search on CCO and wasn't able to find it. Any idea what this command might be used for? John Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=36085t=36067 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
SNMP vulnerability [7:35503]
For those of you on this list that are actively supporting network devices I wanted to make sure you were aware of the following warning: http://www.cert.org/advisories/CA-2002-03.html Note that this is not Cisco specific. Here is the Cisco link that most of us have been referencing (watch wrap): http://www.cisco.com/warp/public/707/cisco-malformed-snmp-msgs-pub.shtml /warp/public/707/cisco-malformed-snmp-msgs-pub.shtml If you watch the NANOG mailing list you'll know that few networkers have actually seen any attempts to exploit this problem. The owner of NANOG posted that someone from CERT started a mailing list specifically addressing SNMP concerns. But there haven't been very many posts. My apologies if this has already been discussed on this list. I've been busy reconfiguring routers. :) -chris ^^ Christopher A. KaneCCNP/CCDP Hilliard NOCWorldCom ^^ Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=35503t=35503 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: OSPF DR problem [7:34379]
Priscilla, Now that you have R1 as the DR, it's his responsibility to announce that network out to everyone else. Is R1 sending out LSAs (Network LSA, type 2) to wherever it is that you are trying to see that network? (Is it R3's routing table that you can't see the Ethernet segment of R1 and R2?) Does the network show up in the OSPF database but not the routing table? Or just the routing table? Chris -Original Message- From: Priscilla Oppenheimer [mailto:[EMAIL PROTECTED]] Sent: Monday, February 04, 2002 4:31 PM To: [EMAIL PROTECTED] Subject: OSPF DR problem [7:34379] Hi Group Study, Playing with IP OSPF priority to influence which router became the Designated Router (DR) caused routing problems for me in a recent bout with a lab exercise. Can anyone help me understand if I did something wrong? I have 2 routers on an Ethernet LAN. Both of them also have WAN connections to remote sites. R1 has a Frame Relay link to the corporate cloud via its S0 port. S0 is configured as ip ospf network point-to-point. R2 has an ISDN link to yet another router, R3. This link is configured as an OSPF point-to-point demand circuit. R1 and R2 are connected via an Ethernet switch. My goal was to make sure R1 became the DR on Ethernet. Both routers have loopbacks, but R2's is higher, so to make sure R2 did not become the DR, I configured it with: ip ospf priority 0 R1 then did indeed become the DR on the Ethernet LAN because it was using the default priority 1. Now, finally to the question.. On the other side of the ISDN and across the Frame Relay cloud, I couldn't see the Ethernet LAN in the routing table. Routers formed adjacencies correctly and could reach most networks, but not that darn Ethernet LAN. R1 and R2 on the Ethernet LAN formed an adjacency and could see the rest of the internetwork. Could I have broken something by playing with the priority?? Thanks for your help. Priscilla Priscilla Oppenheimer http://www.priscilla.com Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=34395t=34379 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: aux port issue [7:33466]
Have you checked the dip switch settings on the modem? We use 2,3,4,5,6,7 UP. I've also used 1,5,6,7 UP. It may depend on the age of the modem, not sure. -Original Message- From: Vincent Miller [mailto:[EMAIL PROTECTED]] Sent: Monday, January 28, 2002 1:15 PM To: [EMAIL PROTECTED] Subject: aux port issue [7:33466] I am trying to guide a customer through an aux port setup. so far, we have the following in the router: line aux 0 password cisco login modem InOut transport input all speed 115200 flowcontrol hardware HOwever,when anyone calls the dial to number, the modem answers, but nothing appears on the screen except a blinking cursor. The terminal session shows a status of connected. I believe the attached modem is a USR 56k v.34 capable. Any suggestions would be greatly appreciated. Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=33480t=33466 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: default-metric 64 vs 2.....why?? [7:33231]
I thought redistribution into any other protocol besides OSPF would have a metric of 0. 0 is not understood by EIGRP, IGRP or RIP and therefore won't work. Redistribution into OSPF always assumes 20 unless you specify otherwise. Charles, could you site your source? I'm concerned that I may not understand redistribution as well as I thought if your numbers are right and mine are wrong. Are you giving the unreachable numbers because the redistribution won't work or do you have something that specifically states those numbers (16 and -1)? Thanks, Chris -Original Message- From: Charles Manafa [mailto:[EMAIL PROTECTED]] Sent: Friday, January 25, 2002 4:15 PM To: [EMAIL PROTECTED] Subject: Re: default-metric 64 vs 2.why?? [7:33231] When metric is not supplied, and there is no default metric, then routes redistributed into RIP will have a metric of 16 (unreachable), routes redistributed into IGRP will have a metric of -1 (unreachable), and routes redistributed into OSPF will have a metric of 20. CM - Original Message - From: Lupi, Guy To: Sent: Friday, January 25, 2002 7:50 PM Subject: RE: default-metric 64 vs 2.why?? [7:33231] It was a little confusing to me also while reading the new practical studies book, he does state that without a default metric or metric specified in the redistribution statement the redistribution won't work, and while this is true with most protocols, I have never had to specify one, default or otherwise with OSPF. I would be interested to see if anyone has an explanation for this, is it something due to link state versus distance vector? I haven't done much ISIS, I would be curious to see if you need to specify a metric for that, since you don't with OSPF. -Original Message- From: Vincent Miller [mailto:[EMAIL PROTECTED]] Sent: Friday, January 25, 2002 2:18 PM To: [EMAIL PROTECTED] Subject: RE: default-metric 64 vs 2.why?? [7:33231] Remember, the metric on ospf is cost, the metric on rip is hops. You always need a seed metric when redistributing, I can't explain why the ospf continues to run, but thats what rip wo't work. Its the same with EigrpIGRP, no metric, no work. Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=33252t=33231 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Static or dynamic VLANs [7:33014]
The role I currently serve offers me little chance to configure/manage LAN switches. I was wondering if everyone can provide feedback as to whether they use static or dynamic VLANs. I'm curious to know which one is more prevalent. For those of you that manage campus type networks, I'm interested in knowing who deploys which. I'd like to hear real world scenarios to add to my reading. Chris Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=33014t=33014 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Make money all day long with your computer [7:32396]
Paul, You said this is a very large list. I'm curious, how many do we have? As far as the spams go, there really haven't been that many. Thanks for the work. Chris -Original Message- From: Paul Borghese [mailto:[EMAIL PROTECTED]] Sent: Friday, January 18, 2002 11:16 AM To: [EMAIL PROTECTED] Subject: Re: Make money all day long with your computer [7:32396] Yea I have some ideas in the works. Frankly it has not been a problem on this list and the current anti-spam measures I have put in place seem to be working. But occasionally we get one or two through. This is a very large list and regular techniques do not always work. On smaller list you can simply block messages from those that are not registered for the mailing list. But this list is not simply a mailing list. What about the people that use the newsfeed? Or Website? So what I plan to do is require first-time posters to authenticate first. Once they authenticate, the message will be delivered normally. Any additional messages will be delivered without authentication. So the spammer will need to use a valid From: address and take the time to authenticate. Which most do not. Paul - Original Message - From: Kazan, Naim To: Sent: Friday, January 18, 2002 10:14 AM Subject: RE: Make money all day long with your computer [7:32396] I would think with all of the Cisco gurus in this, we would find some way to block junk emails. Just venting, now I feel better. -Original Message- From: Buri, Heather L. [mailto:[EMAIL PROTECTED]] Sent: Friday, January 18, 2002 9:35 AM To: [EMAIL PROTECTED] Subject: RE: Make money all day long with your computer [7:32396] How do these dillholes find our list??? Heather -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] Sent: Thursday, January 17, 2002 9:00 PM To: [EMAIL PROTECTED] Subject: Make money all day long with your computer [7:32396] Make It Happen Online Today!! 5 Cash Generating Websites!! Full resell rights! You keep 100% of the Money!! 100% money back guarantee! Check it out at http://196.40.67.198/money18/ If you would like to be removed from this opportunities mailing, simply reply to this message with remove in your subject line. You will be removed automatically by our system. Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=32494t=32396 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Encapsulation Failed [7:31916]
Priscilla, My apologies for the inaccuracy. Indeed, on a Serial link (point-to-point) the neighbor state does advance to FULL. Not stopping at 2-way as I had suggested. I config'd my lab quickly this morning for point-to-point, below are some snapshots: Neighbor ID Pri State Dead Time Address Interface 144.223.8.1 1 FULL/ -00:00:3910.0.0.37 Serial1 rtrB#debug ip ospf adj OSPF adjacency events debugging is on rtrB# 4d22h: OSPF: Rcv hello from 144.223.8.1 area 0 from Serial1 10.0.0.37 4d22h: OSPF: End of hello processing 4d22h: OSPF: Rcv hello from 144.223.8.1 area 0 from Serial1 10.0.0.37 4d22h: OSPF: End of hello processing rtrB#debug ip ospf packet 4d22h: OSPF: rcv. v:2 t:1 l:48 rid:144.223.8.1 aid:0.0.0.0 chk:50AC aut:0 auk: from Serial1 4d22h: OSPF: rcv. v:2 t:1 l:48 rid:144.223.8.1 aid:0.0.0.0 chk:50AC aut:0 auk: from Serial1 4d22h: OSPF: rcv. v:2 t:1 l:48 rid:144.223.8.1 The debug ip ospf packet is interesting. In this case, you get to see the pieces of the hello protocol broken up. v = VERSION t = TYPE (1 identifies this as an Hello packet) rid = ROUTER ID (I have a Loopback 0 and 1, 1's address is 144.223.8.1) aid = AREA ID (Area 0) chk = CHECKSUM aut = AUTHENTICATION (I don't have authentication configured so it's 0, null) auk = AUTHENTICATION KEY. Unfortunately I can't find a debug to tell that my Hellos are multicast rather than unicast. I guess I'll have to wait until Priscilla ponies up the $ for a WAN sniffer. :) Chris -Original Message- From: Priscilla Oppenheimer [mailto:[EMAIL PROTECTED]] Sent: Monday, January 14, 2002 10:44 PM To: [EMAIL PROTECTED] Subject: RE: Encapsulation Failed [7:31916] At 10:04 PM 1/14/02, Kane, Christopher A. wrote: Yes, OSPF sends hellos on Serial interfaces. In point-to-point networks OSPF's hello is multicast. There is no DR/BDR so it's my understanding that it simply becomes a Master/Slave relationship. During the database description exchange state, the routers are in a master/slave relation. For the rest of the time, the adjacent neighbors are just friendly peers, wouldn't you say? Mindful that in OSPF a Neighbor is not the same as an Adjacency. All routers become neighbors (assuming all aspects of the Hello protocol are agreed upon) They only become Adjacent with the respective DR and BDR of the network in the case of a network on a broadcast medium. We're talking about non-broadcast WAN networks.. I'm pretty sure you only see 2-way as a neighbor state on point-to-point links rather than I should try it, but I thought 2-way was an intermediate state, regardless of the type of network. seeing Full as on a broadcast medium. I'd need someone else to chime in on point-to-multipoint as I haven't configured that lately. Chris -Original Message- From: Priscilla Oppenheimer [mailto:[EMAIL PROTECTED]] Sent: Monday, January 14, 2002 8:40 PM To: [EMAIL PROTECTED] Subject: Re: Encapsulation Failed [7:31916] At 07:57 PM 1/14/02, s vermill wrote: Priscilla, May I ask what led you to believe that bridging was involved as opposed to just assuming that the source address was the Cisco router itself? Good question. The IBM 6611 does bridging for one thing. The other hint was that it was attempting to send an OSPF Hello on a serial interface. Does OSPF do that? How does it establish adjacency to a neighbor router on a WAN? On a point-to-point network, I figured it just knew who its neighbor was. On a non-broadcast, multiple-access network, such as Frame Relay, you normally configured the neighbor command. I've only seen the OSPF multicast Hellos on LANs, (but I can't afford a WAN Sniffer anymore! ;-) Gurus? Help? Thanks. Priscilla P.S. Anyone seeing this may be confused because you didn't include the original message. PLEASE, people, reply with the body of the message in the reply. We work in connectionless, stateless mode. How do you expect anyone to easily connect this to the discussion about a router failing to forward a packet on a PPP link to an IBM 6611. Hello? Just as an opportunity to learn something. Regards, Scott Priscilla Oppenheimer http://www.priscilla.com Priscilla Oppenheimer http://www.priscilla.com Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=32008t=31916 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Router Serial# [7:31959]
I do know of an exception when it comes to the 12000 series GSRs. You can use the: show gsr chassis-info It lists the Chassis type, Chassis Serial Number, Hardware revision and even the Backplane Serial Number. I'm not sure what other platforms support this command if any. Chris -Original Message- From: John Neiberger [mailto:[EMAIL PROTECTED]] Sent: Tuesday, January 15, 2002 10:12 AM To: [EMAIL PROTECTED] Subject: Re: Router Serial# [7:31959] By default there is no way to get the actual router serial number from the command line. There are ways to display certain serial numbers associated with that device, but it is not the chassis serial number you're seeing. One solution--which doesn't help you now--is to set the snmp chassis-ID in the router when you initially configure it. From that point on you can see the serial number from the command line or via SNMP. John Washington Rico 1/14/02 10:38:36 PM I would appreciate any information you have. I need to find the serial number of some routers which are located on a remote site. I know that with a show version on Cat6000 the serial number shows up. What about with routers. Show version did not show a serial#. Is there a CLI command? Again apppreciate any info you may have. _ MSN http://photos.msn.co.jp/ Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=32010t=31959 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Encapsulation Failed [7:31916]
Yes, OSPF sends hellos on Serial interfaces. In point-to-point networks OSPF's hello is multicast. There is no DR/BDR so it's my understanding that it simply becomes a Master/Slave relationship. Mindful that in OSPF a Neighbor is not the same as an Adjacency. All routers become neighbors (assuming all aspects of the Hello protocol are agreed upon) They only become Adjacent with the respective DR and BDR of the network in the case of a network on a broadcast medium. I'm pretty sure you only see 2-way as a neighbor state on point-to-point links rather than seeing Full as on a broadcast medium. I'd need someone else to chime in on point-to-multipoint as I haven't configured that lately. Chris -Original Message- From: Priscilla Oppenheimer [mailto:[EMAIL PROTECTED]] Sent: Monday, January 14, 2002 8:40 PM To: [EMAIL PROTECTED] Subject: Re: Encapsulation Failed [7:31916] At 07:57 PM 1/14/02, s vermill wrote: Priscilla, May I ask what led you to believe that bridging was involved as opposed to just assuming that the source address was the Cisco router itself? Good question. The IBM 6611 does bridging for one thing. The other hint was that it was attempting to send an OSPF Hello on a serial interface. Does OSPF do that? How does it establish adjacency to a neighbor router on a WAN? On a point-to-point network, I figured it just knew who its neighbor was. On a non-broadcast, multiple-access network, such as Frame Relay, you normally configured the neighbor command. I've only seen the OSPF multicast Hellos on LANs, (but I can't afford a WAN Sniffer anymore! ;-) Gurus? Help? Thanks. Priscilla P.S. Anyone seeing this may be confused because you didn't include the original message. PLEASE, people, reply with the body of the message in the reply. We work in connectionless, stateless mode. How do you expect anyone to easily connect this to the discussion about a router failing to forward a packet on a PPP link to an IBM 6611. Hello? Just as an opportunity to learn something. Regards, Scott Priscilla Oppenheimer http://www.priscilla.com Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=31944t=31916 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Help Please! BGP question, why do I get Not advertised to [7:31539]
Silly question, is your BGP session up between 9.9.9.9 and the router in AS 100? Can you show me: sh ip bgp sum sh ip bgp n x.x.x.x rou sh ip bgp n x.x.x.x adv sh ip bgp n x.x.x.x Would you mind running these on all 3 routers and showing us the output? I'm interested in finding out what the problem is. If I don't see anything with the results you give us, I'll lab it up real quick. Chris -Original Message- From: Tom Pruneau [mailto:[EMAIL PROTECTED]] Sent: Thursday, January 10, 2002 8:33 AM To: [EMAIL PROTECTED] Subject: Help Please! BGP question, why do I get Not advertised to any [7:31528] BGP question, why do I get Not advertised to any peer Below is from an isolated lab configuration, appologies to the actual owners of any addresses of AS numbers used. I have two routers connected together via a serial line. They are in AS400. They are both connected to AS100 via another serial line. Both have a route map affecting advertisements to AS100. They each have an ethernet with a /24 on it. The /24 is getting into BGP via a network command. The two routers have the loopbacks 6.6.6.6 and 9.9.9.9 network 100.0.0.0 /24 is connected to the ethernet of router 6.6.6.6 network 100.0.1.0 /24 is connected to the ethernet of router 9.9.9.9 When I am on router 6.6.6.6 and I look at the advertisement of network 100.0.1.0 /24 is looks fine When i am on router 9.9.9.9 and I look at the advertisement of network 100.0.0.0 /24 it says Not advertised to any peer Any ideas why the difference Why can't 100.0.0.0 be avertised to any peer? Both routers have been rebooted. The configs look almost identical. router_#sho ip bgp 100.0.1.0 BGP routing table entry for 100.0.1.0/24, version 2 Paths: (1 available, best #1, table Default-IP-Routing-Table) Advertised to non peer-group peers: 10.0.0.17 Local 10.0.0.38 from 10.0.0.38 (9.9.9.9) Origin IGP, metric 0, localpref 100, valid, internal, best router_#show ip bgp 100.0.0.0 BGP routing table entry for 100.0.0.0/24, version 9 Paths: (1 available, best #1, table Default-IP-Routing-Table) Not advertised to any peer Local 10.0.0.37 from 10.0.0.37 (6.6.6.6) Origin IGP, metric 0, localpref 100, valid, internal, best router interface Loopback0 ip address 6.6.6.6 255.255.255.255 ! interface Ethernet0 ip address 100.0.0.1 255.255.255.0 ! interface Serial0 ip address 10.0.0.18 255.255.255.252 ! interface Serial1 ip address 10.0.0.37 255.255.255.252 ! router bgp 400 no synchronization bgp log-neighbor-changes network 100.0.0.0 mask 255.255.255.0 neighbor 10.0.0.17 remote-as 100 neighbor 10.0.0.17 route-map set_meds out neighbor 10.0.0.38 remote-as 400 no auto-summary ! ip classless ip route 9.9.9.9 255.255.255.255 10.0.0.38 no ip http server ! access-list 20 permit 100.0.0.0 access-list 21 permit 100.0.1.0 route-map set_meds permit 10 match ip address 20 set metric 5 ! route-map set_meds permit 20 match ip address 21 set metric 10 Router ! interface Loopback0 ip address 9.9.9.9 255.255.255.255 ! interface Ethernet0 ip address 100.0.1.1 255.255.255.0 ! interface Ethernet1 no ip address ! interface Serial0 ip address 10.0.0.38 255.255.255.252 no fair-queue clockrate 200 ! interface Serial1 ip address 10.0.0.34 255.255.255.252 clockrate 200 ! router bgp 400 no synchronization bgp log-neighbor-changes network 100.0.1.0 mask 255.255.255.0 neighbor 10.0.0.33 remote-as 100 neighbor 10.0.0.33 route-map set_meds out neighbor 10.0.0.37 remote-as 400 no auto-summary ! ip classless ip route 6.6.6.6 255.255.255.255 10.0.0.37 no ip http server ! access-list 20 permit 100.0.0.0 access-list 21 permit 100.0.1.0 route-map set_med permit 10 match ip address 21 set metric 5 ! route-map set_med permit 20 match ip address 20 set metric 10 Tom Pruneau Technical Trainer Network Operations GENUITY 225 Presidential Way Woburn Ma. 01888 --- This email is composed of 82% post consumer recycled data bits --- Once in a while you get shown the light in the strangest of places if you look at it right Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=31539t=31539 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Help Please! BGP question, why do I get Not advertised to [7:31541]
Tom, May have found your problem. I do see one error in your route-map statement. See below: 6.6.6.6 neighbor 10.0.0.17 route-map set_meds out route-map set_meds permit 10 match ip address 20 set metric 5 ! route-map set_meds permit 20 match ip address 21 set metric 10 9.9.9.9 neighbor 10.0.0.33 route-map set_meds out route-map set_med permit 10 match ip address 21 set metric 5 ! route-map set_med permit 20 match ip address 20 set metric 10 Notice for 9.9.9.9 your neighbor statement is calling a route-map named set_meds. But, the route-map you have defined is set_med. Fix it and see if that solves the problem. Chris -Original Message- From: Tom Pruneau [mailto:[EMAIL PROTECTED]] Sent: Thursday, January 10, 2002 8:33 AM To: [EMAIL PROTECTED] Subject: Help Please! BGP question, why do I get Not advertised to any [7:31528] BGP question, why do I get Not advertised to any peer Below is from an isolated lab configuration, appologies to the actual owners of any addresses of AS numbers used. I have two routers connected together via a serial line. They are in AS400. They are both connected to AS100 via another serial line. Both have a route map affecting advertisements to AS100. They each have an ethernet with a /24 on it. The /24 is getting into BGP via a network command. The two routers have the loopbacks 6.6.6.6 and 9.9.9.9 network 100.0.0.0 /24 is connected to the ethernet of router 6.6.6.6 network 100.0.1.0 /24 is connected to the ethernet of router 9.9.9.9 When I am on router 6.6.6.6 and I look at the advertisement of network 100.0.1.0 /24 is looks fine When i am on router 9.9.9.9 and I look at the advertisement of network 100.0.0.0 /24 it says Not advertised to any peer Any ideas why the difference Why can't 100.0.0.0 be avertised to any peer? Both routers have been rebooted. The configs look almost identical. router_#sho ip bgp 100.0.1.0 BGP routing table entry for 100.0.1.0/24, version 2 Paths: (1 available, best #1, table Default-IP-Routing-Table) Advertised to non peer-group peers: 10.0.0.17 Local 10.0.0.38 from 10.0.0.38 (9.9.9.9) Origin IGP, metric 0, localpref 100, valid, internal, best router_#show ip bgp 100.0.0.0 BGP routing table entry for 100.0.0.0/24, version 9 Paths: (1 available, best #1, table Default-IP-Routing-Table) Not advertised to any peer Local 10.0.0.37 from 10.0.0.37 (6.6.6.6) Origin IGP, metric 0, localpref 100, valid, internal, best router interface Loopback0 ip address 6.6.6.6 255.255.255.255 ! interface Ethernet0 ip address 100.0.0.1 255.255.255.0 ! interface Serial0 ip address 10.0.0.18 255.255.255.252 ! interface Serial1 ip address 10.0.0.37 255.255.255.252 ! router bgp 400 no synchronization bgp log-neighbor-changes network 100.0.0.0 mask 255.255.255.0 neighbor 10.0.0.17 remote-as 100 neighbor 10.0.0.17 route-map set_meds out neighbor 10.0.0.38 remote-as 400 no auto-summary ! ip classless ip route 9.9.9.9 255.255.255.255 10.0.0.38 no ip http server ! access-list 20 permit 100.0.0.0 access-list 21 permit 100.0.1.0 route-map set_meds permit 10 match ip address 20 set metric 5 ! route-map set_meds permit 20 match ip address 21 set metric 10 Router ! interface Loopback0 ip address 9.9.9.9 255.255.255.255 ! interface Ethernet0 ip address 100.0.1.1 255.255.255.0 ! interface Ethernet1 no ip address ! interface Serial0 ip address 10.0.0.38 255.255.255.252 no fair-queue clockrate 200 ! interface Serial1 ip address 10.0.0.34 255.255.255.252 clockrate 200 ! router bgp 400 no synchronization bgp log-neighbor-changes network 100.0.1.0 mask 255.255.255.0 neighbor 10.0.0.33 remote-as 100 neighbor 10.0.0.33 route-map set_meds out neighbor 10.0.0.37 remote-as 400 no auto-summary ! ip classless ip route 6.6.6.6 255.255.255.255 10.0.0.37 no ip http server ! access-list 20 permit 100.0.0.0 access-list 21 permit 100.0.1.0 route-map set_med permit 10 match ip address 21 set metric 5 ! route-map set_med permit 20 match ip address 20 set metric 10 Tom Pruneau Technical Trainer Network Operations GENUITY 225 Presidential Way Woburn Ma. 01888 --- This email is composed of 82% post consumer recycled data bits --- Once in a while you get shown the light in the strangest of places if you look at it right Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=31541t=31541 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: NPE300 in 7206VXR [7:31534]
Travis, Curious, did you try clearing the int (cle int) before you tried the reload? Chris -Original Message- From: travis marlow [mailto:[EMAIL PROTECTED]] Sent: Thursday, January 10, 2002 10:36 AM To: [EMAIL PROTECTED] Subject: NPE300 in 7206VXR [7:31534] Hi everybody, longtime reader, first time poster. Was wondering if anybody has had problems with the fastethernet port on the NPE300 for the 7206VXR platform. Lastnight for some reason the box was not able to ping the other router that it was connected to via this port. When doing a sh arp it showed the ip I was trying to ping with a mac of INCOMPLETE. All other interfaces to this router were up and passing traffic, after doing the magic reload, everything was fine. It's weird that this port would just freeze up, it still said up and up on a sh int before the reload. After talking to a buddy, he said that they had had issues with using the fastethernet port on the NPE. I figured I would disseminate this problem to a larger group to see if anybody else had seen this. Thanks. Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=31545t=31534 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Help Please! BGP question, why do I get Not advertised to [7:31571]
Tom, I have config'd my Lab and it works: Your router 9.9.9.9 is my rtrB: rtrB#sh ip bgp 100.0.0.0 BGP routing table entry for 100.0.0.0/24, version 2 Paths: (1 available, best #1) Advertised to non peer-group peers: 10.0.0.33best, i - internal Origin codes: i - IGP, e - EGP, ? - incomplete Network Next HopMetric LocPrf Weight Path *i100.0.0.0/24 10.0.0.370100 0 i * 100.0.1.0/24 0.0.0.0 0 32768 i My rtrC is the AS 100 router. Below, you can see that he's learning 2 prefixes from both routers in AS 400. By looking at the you can see which route he's putting in his routing table. This is based on the MEDS that rtrA (your 6.6.6.6) and rtrB (your 9.9.9.9) are sending him. See below: rtrC#sh ip bgp n 10.0.0.18 rou BGP table version is 16, local router ID is 10.0.0.17 Status codes: s suppressed, d damped, h history, * valid, best, i - internal Origin codes: i - IGP, e - EGP, ? - incomplete Network Next HopMetric LocPrf Weight Path * 100.0.0.0/24 10.0.0.185 0 400 i * 100.0.1.0/24 10.0.0.18 10 0 400 i Total number of prefixes 2 rtrC#sh ip bgp n 10.0.0.34 rou BGP table version is 16, local router ID is 10.0.0.17 Status codes: s suppressed, d damped, h history, * valid, best, i - internal Origin codes: i - IGP, e - EGP, ? - incomplete Network Next HopMetric LocPrf Weight Path * 100.0.0.0/24 10.0.0.34 10 0 400 i * 100.0.1.0/24 10.0.0.345 0 400 i Total number of prefixes 2 My configs are the same as yours with the exception of the route-map name. My route-map name matches the route map that I am calling in my nei statement to 10.0.0.33 on rtrB (9.9.9.9). HTH, Chris -Original Message- From: Tom Pruneau [mailto:[EMAIL PROTECTED]] Sent: Thursday, January 10, 2002 8:33 AM To: [EMAIL PROTECTED] Subject: Help Please! BGP question, why do I get Not advertised to any [7:31528] BGP question, why do I get Not advertised to any peer Below is from an isolated lab configuration, appologies to the actual owners of any addresses of AS numbers used. I have two routers connected together via a serial line. They are in AS400. They are both connected to AS100 via another serial line. Both have a route map affecting advertisements to AS100. They each have an ethernet with a /24 on it. The /24 is getting into BGP via a network command. The two routers have the loopbacks 6.6.6.6 and 9.9.9.9 network 100.0.0.0 /24 is connected to the ethernet of router 6.6.6.6 network 100.0.1.0 /24 is connected to the ethernet of router 9.9.9.9 When I am on router 6.6.6.6 and I look at the advertisement of network 100.0.1.0 /24 is looks fine When i am on router 9.9.9.9 and I look at the advertisement of network 100.0.0.0 /24 it says Not advertised to any peer Any ideas why the difference Why can't 100.0.0.0 be avertised to any peer? Both routers have been rebooted. The configs look almost identical. router_#sho ip bgp 100.0.1.0 BGP routing table entry for 100.0.1.0/24, version 2 Paths: (1 available, best #1, table Default-IP-Routing-Table) Advertised to non peer-group peers: 10.0.0.17 Local 10.0.0.38 from 10.0.0.38 (9.9.9.9) Origin IGP, metric 0, localpref 100, valid, internal, best router_#show ip bgp 100.0.0.0 BGP routing table entry for 100.0.0.0/24, version 9 Paths: (1 available, best #1, table Default-IP-Routing-Table) Not advertised to any peer Local 10.0.0.37 from 10.0.0.37 (6.6.6.6) Origin IGP, metric 0, localpref 100, valid, internal, best router interface Loopback0 ip address 6.6.6.6 255.255.255.255 ! interface Ethernet0 ip address 100.0.0.1 255.255.255.0 ! interface Serial0 ip address 10.0.0.18 255.255.255.252 ! interface Serial1 ip address 10.0.0.37 255.255.255.252 ! router bgp 400 no synchronization bgp log-neighbor-changes network 100.0.0.0 mask 255.255.255.0 neighbor 10.0.0.17 remote-as 100 neighbor 10.0.0.17 route-map set_meds out neighbor 10.0.0.38 remote-as 400 no auto-summary ! ip classless ip route 9.9.9.9 255.255.255.255 10.0.0.38 no ip http server ! access-list 20 permit 100.0.0.0 access-list 21 permit 100.0.1.0 route-map set_meds permit 10 match ip address 20 set metric 5 ! route-map set_meds permit 20 match ip address 21 set metric 10 Router ! interface Loopback0 ip address 9.9.9.9 255.255.255.255 ! interface Ethernet0 ip address 100.0.1.1 255.255.255.0 ! interface Ethernet1 no ip address ! interface Serial0 ip address 10.0.0.38 255.255.255.252 no fair-queue clockrate 200 ! interface Serial1 ip address 10.0.0.34 255.255.255.252 clockrate 200 ! router bgp 400 no synchronization bgp log-neighbor-changes network 100.0.1.0 mask 255.255.255.0 neighbor 10.0.0.33 remote-as 100 neighbor 10.0.0.33 route-map set_meds out neighbor
CCIE counters, r they going up? [7:31318]
Someone on the list (I think it was Chuck) used to try and keep track of how many new IE numbers they saw each week. I was wondering, with the new lab, how many on avg are passing ea. week or month. Just curious. Chris Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=31318t=31318 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Carrier Transitions : Any Comments [7:30829]
Ole, It is not unheard of for a cable between the CSU and the demarc (SJ) to start flaking out. You said that you did that, meaning what? Did you replace the cable and reset the WIC or did you do one and not the other? I've had a simple reseat of the cable into the back of the SJ fix problems for me before. I would have done one first and then tried the other rather than taking a shotgun approach because the shotgun method doesn't allow you to discover exactly what the problem was. What about your service-module? (show service-module XX) Was it reporting any problems? Most specifically did it register any bipolar violations? It's been my experience that bipolar violations indicate a local copper problem which would have pointed more to the cable than to the WIC. You could still have a SJ problem. When looping the SJ, they cannot test through the port to which you are connecting. (Unless you provide a loopback plug for them to test to). Further, sometimes SJs (depending on vendor) have a switch or software option for AMI or B8ZS. If there is a switch and if your service is suppose to be using B8ZS, then the SJ should be set for B8ZS. Some vendors' SJs can get flakey and alternate between AMI and B8ZS, causing you problems. Anytime I dispatch a LEC technician I request that they check that option and set it accordingly, rather than leaving it set to AUTO detect. (there's that auto detect stuff again... :) I'm not a big fan of integrated CSUs. I miss the days of having a standalone CSU and then my router behind it. We would have 2 POTS lines, 1 for the CSU and 1 for the router. We were able to pinpoint our problems and get resolution much faster. Always check what your CSU has to say about a line condition. You apt to get more detail from it rather than from a simple interface command output. Most CSUs record performance information in increments of 15 minute periods (96 blocks) for a 24 hour period. You can then see nearly exactly what was occurring over the past day and when it occurred. HTH, Chris -Original Message- From: Ole Drews Jensen [mailto:[EMAIL PROTECTED]] Sent: Thursday, January 03, 2002 4:08 PM To: [EMAIL PROTECTED] Subject: Carrier Transitions : Any Comments [7:30829] My networking skills are apparently being tested these days, because the frame relay circuit went down to one of my branch offices. I got someone at the local office to telnet into the router, which was down/down, and the LMI was down/down, and there were just under 10 carrier transitions in the last 24 hours. I had them powercycle the router without any luck. I concluded that my provider was most likely the cause of the problem, and that it was at the branch office circuit, since my router here was talking fine with the other two remote offices, and my LMI was up/up. My provider told me that the circuit was bouncing, or in other words, it had been going down and back up several times since yesterday evening. After several hours, they did an out of service test, where they told me that it had tested dirty to the CSU but clean to the SmartJack, so they were going to put it on hold until I had replaced the WAN cable and reseated the WIC-1DSU-T1 card in the 1720 router. I went out to the branch office and did that, and the PVC has after I powered it on been up for about an hour now. My question now is: Is this (A) a normal thing that you suddenly have to reseat the WIC and/or replace the WAN cable, and that it can cause carrier transitions, or is this more likely (B) my provider that has found and corrected the error on their site, but now is trying to make it look like it was my equipment that was faulty, or (C) Thanks for any comments to this, Ole ~~~ Ole Drews Jensen Systems Network Manager CCNP, MCSE, MCP+I RWR Enterprises, Inc. [EMAIL PROTECTED] ~~~ http://www.RouterChief.com ~~~ NEED A JOB ??? http://www.oledrews.com/job ~~~ Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=30847t=30829 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Autosense this ... (add to your knowledgebase) [7:30446]
It's unfortunate that sometimes when things break, they don't perform in expected ways. Rather it truly was an Autosense problem or not, who knows. But it brings up a chance to talk about Autosense. I've had it bite me more than once. I've had problems with Autosense that didn't show up until months after installation. It doesn't matter if its Cisco to Cisco or Cisco to another vendor, I've had to lock down ports at certain speeds and modes to solve problems on several occasions. Just to pass along some experience, you may always be better off hard setting your options. Nice persistence Mr. Jensen, it's cool to stick with something until you can make it work. Chris -Original Message- From: Chuck Larrieu [mailto:[EMAIL PROTECTED]] Sent: Saturday, December 29, 2001 6:14 PM To: [EMAIL PROTECTED] Subject: Re: Autosense this ... (add to your knowledgebase) [7:30446] An interesting read, particularly since I am reviewing Kennedy clark's cisco Lan Switching book prior to reviewing Cat5K and Cat 3920 configuration. I am somewhat surprised at both the phenomenon and the concludion. Spanning tree blocks for particular reasons. when you concluded that your configurations were identical at all offices, does that mean that your port negotiations were set to auto everywhere else? both on the routers and on the local switches? if so, I would expect to see similar problems elsewhere. is it possible that there was a duplicate mac someplace in another part of the bridged network, one that was being picked up by STP and interpreted as a loop? You mention changing macs of interfaces as part of your experimentation. Are you certain that this process was not part of the solution? To be frank, I'm hard pressed to come up with a reason why the FE port on the router would go into blocking. I can see that hapening on the serial port for reasons that have been discussed on this group in the past. I can't come up with a rationale as to why hard setting of speed and duplex would make a difference. I suppose one MIGHT conclude that if the port is in full duplex, the STP process MIGHT see a loop occuring over the two different wire pairs. that's about the only wild rationale I can come up with. And that one is really stretching the point / bug / whatever. In any case, thanks for the good read. Chuck Ole Drews Jensen wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... After a fun evening last night, I have decided not to trust the autosensing on ethernet interfaces anymore. I was at a branch office where the users could not access the corporate network. The router, a 1720 setup as a bridge with the same IP address for the FastEthernet as the Serial subinterface, both configured for bridge-group 1. It was connected to a 2620 at the corporate office via a Fractional Frame Relay connection. I changed the switch out with an old spare hub I had lying around, and connected only one workstation from the local network. After starting the router up, I could ping the local workstation, and I could ping devices on the corporate network, so both my FastEthernet and Serial interfaces were working fine. However, I could not ping anything on the corporate network from my workstation, nor could I from a telnet connection to my corporate router ping the workstation, so traffic was not being passed through between the interfaces. That looked like a typical routing problem, but the only problem was that I was not routing, I was bridging, so ? I did a show bridge 1 group and saw that the FastEthernet was in a blocking state by the spanning tree, so something was wrong here. I cleared the arp table on the router and on all other routers and switches. I tried to assign a different mac address to the FE interface. I tried a different workstation. No matter what I did, it kept being in a blocking state. I went in and did a bridge-group 1 spanning-disabled on the interface, and it changed to forwarding state, but I could still not pass traffic through. This is when I called TAC, but after I guided them through to a telnet connection to my routers, they decided after three hours that something weird was going on with the router, and they did an RMA for a replacement unit. However, I decided to continue my troubleshooting, because I hate to give up. I reconfigured everything, I tried to create a bridge-group 2 instead, I forced it into IP routing, and back off it again, but no matter what, it kept going into blocking mode (I had removed the spanning-disabled command again at that time). That's when it hit me to try and force the speed on the interface. It was in AUTO, and my switch had been auto 10/100, but my hub was only 10. I changed it from auto to 10 and power cycled the router. PLING!!! Now it started up and after the listening and learning, it went in forwarding state, and I could now ping through my router, and I could connect my workstation to the corporate network. What
Parkhurst Ch. 8, first lab, RESOLVED [7:30317]
As a final fwp to this post, I opened a case with Cisco and found that indeed I had run into an IOS Bug. IOS 12.1E, 12.1T and 12.2 are not recommended as they all suffer from this bug. Apparently this was broken somewhere in 12.1. Here is a list of versions that have the fix: 12.2(2.2)T 12.2(1.2) 12.2(1.2)PI 12.2(1.4)S 12.1(08a)E 12.2(3.4)PB 12.1(8.5)E02 12.2(3.4)B 12.1(7.5)EC01 12.1(9.5)EC Thanks again for those that banged on this with me. Chris Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=30317t=30317 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Active CCIE? [7:30341]
Somebody spending too much quality time with BGP lately? -Original Message- From: Chuck Larrieu [mailto:[EMAIL PROTECTED]] Sent: Friday, December 28, 2001 3:02 PM To: [EMAIL PROTECTED] Subject: Re: Active CCIE? [7:30341] when you are trying to study for the recertification test, but you have too much work to do in your real job, are you stuck in active? when you are taking the test, are you open confirm? after you have completed the test, and have clicked the complete button, but have not yet received your grade, is this open sent? Chuck Leigh Anne Chisholm wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... There are three possible states of a CCIE: Active, Suspended, and Inactive. Active indicates you are a CCIE in good standing - you've met all of the certification requirements. When you first pass your lab, you are an active CCIE for a period of two years. In order to remain active, you must pass a recertification exam within the Active period. If the recertification exam is not passed, your status changes to Suspended. To reinstate Active status, only the recertification exam must be passed (and not the lab). When you pass the recertification exam, your certification will be Active for a period of two years COMMENCING THE DATE THE CERTIFICATION WAS SUSPENDED not not two years from the date of having passed the recertification exam. If you do not recertify within the one year Suspended period, your certification is classified as Inactive. If you are Suspended or Inactive, you're still able to refer to yourself as a CCIE but you must indicate your current certification status so as not to mislead anyone into thinking your certification is up-to-date. Cisco's site provides a bit of information on this... (http://www.cisco.com/warp/public/625/ccie/recertifications/recertification. ht ml#8): 8. What happens if I don't recertify? If you do not recertify by the deadline, you will be placed on suspended CCIE status. Suspended status means that you are not eligible for any CCIE benefits. Loss of CCIE active status means that as an individual you lose your privileges with Open Forum and cannot order CCIE merchandise through Cisco MarketPlace. Until you recertify, you can no longer be counted by your employer as being a CCIE which can effect benefits and discounts. If you recertify while you have suspended status, the next recertification period will be less than 24 months. For example, if someone is 6 months late in recertifying, they will be required to recertify within 18 months rather than the normal 2 years. After one year of suspended status, you will then have inactive status. You will be required to take the CCIE Qualification exam and the CCIE Lab exam to restore your CCIE active status. -- Leigh Anne -Original Message- -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Steven A. Ridder Sent: Friday, December 28, 2001 11:24 AM To: [EMAIL PROTECTED] Subject: Active CCIE? [7:30341] What defines an active CCIE? The thing I don't get is you have to recertify every two years, but the cert can expire after one if you are not active. What is active? Do you have to answer e-mail surveys every month or something? Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=30389t=30341 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Parkhurst Ch. 8 first lab not working [7:30115]
SUCCESS!! I wanted to pass along a thanks to those of you that took the time to work on this yesterday. Further, wanted you to know that I have successfully configured it today. I was trying this yesterday on 2 2600s that were running Version 12.2(2)XA. Today, I switched over to 2 2500s that are running 12.0(16) and the lab works just fine. Seems as though I have stumbled across an IOS bug. If I had to guess, it must be in relation to the non-exist-map statement. Maybe I'll open a case with TAC. I went on to complete several other Chapter 8 labs yesterday on those 2600s, so the code isn't all bad when utilized for BGP. Someone mentioned that you can check and see which code is currently being used for the lab. I'll have to search CCO. With any luck I'll finish my BGP studies by this weekend. I subject down, and about a million to go. :) Chris -Original Message- From: Kane, Christopher A. [mailto:[EMAIL PROTECTED]] Sent: Wednesday, December 26, 2001 3:54 PM To: [EMAIL PROTECTED] Subject: Parkhurst Ch. 8 first lab not working [7:30115] All/Chuck Wrapping up my BGP studies and using Parkhurst's BGP book to lab some stuff. The first lab in Chapter 8 (advertise-map) is not working for me. The routes advertise fine until I get to the step of shutting int loopback 0. rtrA retains the secondary route but rtrB is not receiving that route. All of my results follow the examples until this point. I've tried the lab several times and my configs are correct. If anyone has had any luck with this lab or if you could throw it together real quick, I'd appreciate it. It only requires 2 routers and a fairly simple config. My sanity may be at stake. t?t Thanks Chris Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=30186t=30115 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Howard Berkowitz to speak at EveCon 19 [7:30121]
Priscilla, To answer your question about the movie, I have seen it and it is excellent. Chris -Original Message- From: Howard C. Berkowitz [mailto:[EMAIL PROTECTED]] Sent: Thursday, December 27, 2001 12:47 AM To: [EMAIL PROTECTED] Subject: Re: Howard Berkowitz to speak at EveCon 19 [7:30121] Chuck, You'll get my vote on being the Saruman! Howard, is it possible that there might be a few copies of your new book on hand for sale. I got to thinking a signed copy would do nicely for all of us who haven't seen the movie yet...Imagine that, a book signed by the Gandalf of Networking Priscilla thanks for the thought. Sounds like ebay material to me... :- Nigel Well, the new one isn't out yet...I don't have the date yet, other than early 2002. I will have some additional Web presence Real Soon Now, but that's hard to sign. - Original Message - From: Chuck Larrieu To: Sent: Wednesday, December 26, 2001 8:33 PM Subject: Re: Howard Berkowitz to speak at EveCon 19 [7:30121] who's the Balrog of networking? who's the Saruman? Priscilla Oppenheimer wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... So, completely OT, but has anyone seen the first LOTR movie yet? Is it any good? I think Howard could be considered the Gandalf of networking. ;-) Priscilla At 04:53 PM 12/26/01, Bruce Evry wrote: Dear Friends, Howard Berkowitz will be doing a presentation this coming weekend, where he will combine his knowledge of Network Design with his expertise at all things Monty Python. Should be fascinating! EveCon 19 is a Science Fiction and Fact convention, that in addition to several other talks on computer topics (and routing...) has such things as Costume workshops, Chainmail lessons, 24 hour movies on a 180 inch projection tv, and the traditional drummers and belly dancers. Place is the Sheraton Reston Hotel in sunny Reston, Virginia. The convention runs from Friday until Sunday, non-stop. Cost $30. Howard's presentation will be at 3 pm in the Video Room. Bring your own Parrot! Yours Truly - Bruce Evry Priscilla Oppenheimer http://www.priscilla.com Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=30183t=30121 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Parkhurst Ch. 8 first lab not working [7:30115]
All/Chuck Wrapping up my BGP studies and using Parkhurst's BGP book to lab some stuff. The first lab in Chapter 8 (advertise-map) is not working for me. The routes advertise fine until I get to the step of shutting int loopback 0. rtrA retains the secondary route but rtrB is not receiving that route. All of my results follow the examples until this point. I've tried the lab several times and my configs are correct. If anyone has had any luck with this lab or if you could throw it together real quick, I'd appreciate it. It only requires 2 routers and a fairly simple config. My sanity may be at stake. t?t Thanks Chris Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=30115t=30115 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: RRs and Confeds as they relate to IE studies [7:29968]
I've read Doyle Vol II. Now I'm reading Caslow. I've flipped through Halabi's book. He actually has a statement regarding RR vs. Confed. According to Halabi, Cisco recommends RRs to solve the full-mesh IBGP issue. It would seem that RRs are easier to implement if you take into account that only the RRs need to have their configuration altered. The Clients of the RRs take the neighbor statement as nothing more than an IBGP peer. One of the responders recommended Parkhurst's book. Yes I have it. But haven't gotten to it yet. Since it's all config examples I am saving it for a wrap up of my BGP studies. Could we make a list of pros/cons to each? Or what solution each implementation offers? RR = possibly less config, only RR is altered (in the neighbor statement) RR = continues to offer loop prevention with use of Cluster_List and Cluster_ID RR = solves the need to have full-mesh IBGP RR = Question, are RR solutions easy to troubleshoot/maintain? Confeds = offers chance to create a backbone of backbones Confeds = use of Private ASs Confeds = allows implementation of an IGP between confeds for further policy implementation Confeds = adds complexity when considering route announcements and behavior of EBGP as an IBGP Confeds = Question, are Confed solutions easy to troubleshoot/maintain? Any other thoughts? Chris -Original Message- From: Gregg Malcolm [mailto:[EMAIL PROTECTED]] Sent: Sunday, December 23, 2001 2:19 PM To: [EMAIL PROTECTED] Subject: Re: RRs and Confeds as they relate to IE studies [7:29968] Good question. I don't claim to be an expert on BGP and will not comment on the advantages and disadvantages of RR/Confeds in large/small environments. I've only config'ed BGP once in a prod net. Seems to me tho that there is an important distinction between the two as they might pertain to the lab test. Both allow the use of weight and local preference (IBGP). Confeds allow the use of MED since the connections between the confeds is EBGP. You could also config multiple RR's (clusters) to allow the use of the MED between the clusters but to me, confeds are easier. I'm sure that there are other reasons to use one or the other as they relate to the lab, but I haven't run into it yet. Maybe I'm wrong, but this is my take on RR's/confeds. Would love to hear comments to enlighten me. Kane, Christopher A. wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... I'm currently tearing apart BGP as part of my IE studies. It's not too bad since I come from a Network Service Provider background. But, I have run into a conflict in regards to RRs vs. Confeds. I probably don't need to straighten this out for the Written but when it comes to the lab I'd like to know which route to go down. I have no idea how the lab poses it's topology but if given the requirement to configure a simulated large network and then having to choose whether to implement RRs or Confeds I wonder which one Cisco prefers. I'm assuming that as part of the lab, the idea is to create solutions that work and in doing so, solutions that are as simple as possible and as short as possible. I'd like to hear comments about the pros and cons of each option in regards to how Cisco might prefer to see implementation. Meanwhile, I'm going to review all available case studies on CCO. Thanks, Chris Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=30022t=29968 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Multihoming load balancing BGP [7:30011]
If I may suggestPlease pay particularly close attention to how you address the devices that you intend to advertise. I often have customers who purchase 2 T1s and want to acquire equal loads on both. The mistake is when they advertise a www server that takes all of the traffic. Based on source/destination cache, all traffic for that server comes across one link. As Howard suggested, please take the time to draw this out. If you truly want load sharing, redundancy, telco diversity, ISP/NSP diversity and ISP/NSP POP diversity. It really is not as simple as buying multiple WAN circuits. You can get as granular as making a request to get the telco DLRs in an attempt to reduce possible single points of failure. Chris -Original Message- From: Howard C. Berkowitz [mailto:[EMAIL PROTECTED]] Sent: Monday, December 24, 2001 10:30 AM To: [EMAIL PROTECTED] Subject: Re: Multihoming load balancing BGP [7:30011] Any ideas to load balance when multihoming ? Best Regards, Mohamed Saro The first thing is defining exactly what you mean by load balancing and multihoming, the expected return, and the investment you are willing to make. These are complex topics: see http://www.ietf.org/draft-ietf-berkowitz-multireq-02.txt Some things you will need to know, assuming you are talking about Internet connectivity, is how many external destinations will you have? How many routable prefixes will you advertise? Do you need to load share based on address or on traffic type? Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=30026t=30011 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RRs and Confeds as they relate to IE studies [7:29968]
I'm currently tearing apart BGP as part of my IE studies. It's not too bad since I come from a Network Service Provider background. But, I have run into a conflict in regards to RRs vs. Confeds. I probably don't need to straighten this out for the Written but when it comes to the lab I'd like to know which route to go down. I have no idea how the lab poses it's topology but if given the requirement to configure a simulated large network and then having to choose whether to implement RRs or Confeds I wonder which one Cisco prefers. I'm assuming that as part of the lab, the idea is to create solutions that work and in doing so, solutions that are as simple as possible and as short as possible. I'd like to hear comments about the pros and cons of each option in regards to how Cisco might prefer to see implementation. Meanwhile, I'm going to review all available case studies on CCO. Thanks, Chris Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=29968t=29968 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: NTP Question [7:29770]
According to RFC 1305, NTP uses UDP. Chris -Original Message- From: Mcfadden, Chuck [mailto:[EMAIL PROTECTED]] Sent: Thursday, December 20, 2001 10:44 AM To: [EMAIL PROTECTED] Subject: NTP Question [7:29770] A friend of mine was doing a PIX installation on the edge of a W2K environment. He was trying to allow NTP through the PIX but it would not go. He found that, since he was using an inbound ACL, the packet would eventually reach the explicit deny. According to his research, he had to allow port 123 (NTP) in his ACL in able to allow it through the firewall, even though it was established. The question that has since been unanswered: Does NTP use UDP or TCP or both? Any ideas? ccie1ab (chuck) Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=29774t=29770 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: BGP PfxRcd [7:29331]
JP, Do you have an IGP running? Or do you have synch turned off? Chris -Original Message- From: JP [mailto:[EMAIL PROTECTED]] Sent: Sunday, December 16, 2001 5:27 AM To: [EMAIL PROTECTED] Subject: BGP PfxRcd [7:29331] All, I have three BGP routers learning full table from different ISPs, they are fully meshed IBGP peers. If I do a show ip bgp summary on one of the routers: Neighbor V ASMsgRcvd MsgSent TblVer InQ OutQ Up/Down State/PfxRcd 10.200.255.22 4 1 3239033 1044612 604463300 1d02h 50645 10.100.255.22 4 1 730890 957516 604463300 20:18:35 59854 157.x.x.x 4 701 44859226 735704 604463100 5w0d 103907 The other two routers have similar output. All three routers are learning about 103-104K routes from EBGP sessions, I thought all prefixes learned from ebgp should be forwarded to all IBGP peers but seems to me they only forward about 50% of these prefixes to their IBGP peers. What am I missing here? Thanks JP Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=29334t=29331 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Conneitng to a router's AUX port [7:29323]
We use the following config to hookup with a Sportster: line aux 0 modem InOut transport preferred none transport input all stopbits 1 rxspeed 9600 txspeed 9600 flowcontrol hardware Modem dip switch settings: 5,6,8 - UP, the rest down HTH, Chris -Original Message- From: A.Steinbock [mailto:[EMAIL PROTECTED]] Sent: Sunday, December 16, 2001 1:20 AM To: [EMAIL PROTECTED] Subject: Conneitng to a router's AUX port [7:29323] I am connecting to the aux port of my router through a dialup modem. When the aux port is connected to a Hayes modem, everything works fine. When I use a USrobotics Sportster modem the line keeps on ringing with no answer. Does anyone know why this could happen and what command shoudl I send to the modem to make it behave? TIA Akim Get free e-mail and a permanent address at http://www.amexmail.com/?A=1 Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=29326t=29323 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Routing protocols [7:29139]
In regards to certification is where the problem lies. I enjoy learning and trying to apply the theories associated with the OSI model. But, when facing questions during certification exams things can get sticky. If faced with a question about whether ARP is Layer 2 or Layer 3, what does the exam taker do? I took Chuck's post to be a vent on such situations. Perhaps I misunderstood Chuck. But that certainly is my concern. Having accomplished NA, NP, DP and now studying for IE, I've found that not only am I learning new information, I'm also re-visiting material I've already covered but having to do so in much more detail. I'm really enjoying it all. But, when dealing in such a technical and precise field it's difficult to see that such matters aren't easily explained. The irony is that the discussions/arguments often lead me to understand something much better. But when it comes to answering a A,B,C,D type question, it can become annoying. Chris -Original Message- From: Priscilla Oppenheimer [mailto:[EMAIL PROTECTED]] Sent: Friday, December 14, 2001 1:33 PM To: [EMAIL PROTECTED] Subject: RE: Routing protocols [7:29139] At 10:57 PM 12/13/01 -0500, Chuck Larrieu wrote: I once had an interesting, if heated argument with someone off list about this. IIRC, I was told by that person that Cisco, in its current CCNP study materials, is saying just that - that something operates at the OSI layer above which it functions. I.e. if a routing protocol uses an IP protocol number, then it is operating at transport layer. Since BGP uses TCP port 179, it is operating at the session layer, along with RIP, which uses UDP port 520. ( BTW, I have also read in a reputable source that UDP is application layer because it is not reliable, and therefore cannot be transport layer, and there is no place else it really fits ) Chuck, This is obviously nonsense, as I know that you know. I'm not criticizing you, since you are quoting someone else, but this was a quote that should have been routed directly to the null interface! ;-) I recognize that Cisco just LOVES the OSI model in the lower level certifications, but the fact is that in terms of how things work it is crap, and tends to cause more confusion and add no value. I disagree. I think the OSI model adds a lot of value for understanding the functions of a protocol. It helps one understand what types of services a protocol provides and what services it uses from the layer below. Every vendor of content switches is calling them layer 4-7 switches. what kind of crap is that? Switching of messages happens at all layers. That's the point of networking! But the methods for doing it and the data used to do it differs with each layer. Routing protocols are in the management and control side of the network layer. They allow routers to learn how to switch packets based on network-layer addresses. People get themselves in trouble when they characterize the layer that a protocol works at by which protocols run below it and the number of protocols that run below it. Routing protocols are not the only weird ones. NetBIOS is a session-layer protocol, for example, but in a NetBEUI implementation, it runs above LLC. That's doesn't change which OSI layer it fits into best. Consider ISDN. ISDN has three layers. Running above ISDN may be the Point-to-Point Protocol (PPP), which is usually considered a data-link-layer protocol, although it has four layers of its own. Its top layer provides a set of Network Control Protocols (NCPs) that are used to establish and configure upper-layer protocols such as IP and IPX. Trying to force all these layers into seven layers, especially when you need to anchor IP at Layer 3, because you know it's a network-layer protocol, can lead to frustration. It's best to just consider what services ISDN and PPP offers and how they are used in typical networks, and stuff them into the data-link layer. With routing protocols, the important thing is that when you configure and troubleshoot them, you aren't going to spend too much time considering transport or application-layer issues. You aren't going to analyze sequence numbers, ACKs, retransmissions, etc. You are going to focus on network-layer issues such as addressing, forwarding, routing, router configs, VLSM, classful versus classless, IP subnet zero, etc. This is another one of those issues that is simply not worth debating. Routing protocols clearly work at the network layer. I said all this much better the last time this came up. ;-) See the archives. Priscilla I dare anyone to justify switching as a layer 5 or a layer 6 activity. Yet there it is. Also, to judge from what content switches do, the marketers are saying the OSI layer 7 is user application, not a service application, something Howard takes great pain to differentiate in his writings on the subject, again IIRC. TCP/IP is NOT OSI compliant, never has been, never will be. OSI is
RE: boot sequence on router [7:29029]
My understanding is that the router will: 1. Run through POST (Bootstrap loader is in control, code in ROM executes diagnostics) 2. Attempt to load IOS a.) Flash b.) Network c.) Boot (which is a small piece of IOS located in ROM, just enough to get the router up) 3. Perform hardware inventory 4. Load Configuration a.) NVRAM b.) Network c.) Initial Config/Setup Dialog (this is if there is no config in NVRAM) You can probably drill these down even a bit further. For instance, after the POST runs, the router will check the configuration-register boot field value for advice as to where to get the IOS from. What's more, before the IOS is loaded the router will scan the configuration file in NVRAM (if one is there) for any boot system commands. I'll search CCO to see if I can find a good link for you. Chris -Original Message- From: nettable_walker [mailto:[EMAIL PROTECTED]] Sent: Wednesday, December 12, 2001 11:41 PM To: [EMAIL PROTECTED] Subject: boot sequence on router [7:29029] 12/12/2001 10:42pm Wednesday Professionals, I am researching the default behavior of the Cisco router during boot up. I am very familiar with the hands on side of upgrading flash RAM on 2500 2600's but I need a text book answer. I searched Cisco's site for boot process boot sequence and do not really see what the router's default behavior is. Is a router with config reg 0x2102 supposed to boot from flash, then network, then NVRAM ? If a router is set to boot from flash:c2600-d-mz.113-10.T.bin but it cannot find c2600-d-mz.113-10.T.bin on the flash what will it do, and in what order ? Any help would be really appreciated. Thanks, Richard // Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=29053t=29029 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: OSPF inter-area routes calc (doyle and rfc 2328) [7:28302]
All, I received some feedback from a couple of individuals. Thanks. I grabbed John T. Moy's OSPF book and found in Chapter 6 a very good/clear explanation of the use of Distance Vector for inter-area routing. Back to reading, Chris -Original Message- From: Kane, Christopher A. Sent: Wednesday, December 05, 2001 11:00 AM To: '[EMAIL PROTECTED]' Subject: OSPF inter-area routes calc (doyle and rfc 2328) All, Can someone help shed some light on OSPF's inter-area route calculation? I have been reading Doyle's TCP/IP Volume 1. It's a great book. But I've stumbled across something that confuses me and I'm hoping someone can help. This email is kind of long, but that's because I've included snips from Doyle's book as well as RFC 2328. I thought I had a good grasp on OSPF. I understand the 2 level concept of the Areas, router types, network types, DR/BDR, etc.., but then Doyle threw me for a loop. He explains OSPF in Chapter 9. Chapter 10 is about IS-IS. As Doyle begins explaining IS-IS he makes the following statement: Recall from Chapter 9, that OSPF runs its SPF algorithm to compute routes within an area, but that inter-area routes are computed using a distance vector algorithm. I do not understand this statement. I've reviewed Chapter 9 again and can't find where he explains that inter-area routes are computed using a distance-vector algorithm. Below are the snips from the RFC. RFC 2328 Section 3.2 Inter-area routing. Here, John Moy and group explain: When routing a packet between two non-backbone areas the backbone is used. The path the packet will travel can be broken up into three contiguous pieces: an intra-area path from source to an area border router, a backbone path between the source and destination areas, and then another intra-area path to the destination. The algorithm finds the set of such paths that have the smallest cost. Looking at this another way, inter-area routing can be pictured as forcing a star configuration on the Autonomous System, with the backbone as hub and each of the non-backbone areas as spokes. Further, Section 4.1 Inter-area routing explains: For inter-area routing, no other routing information is pertinent. In order to be able to route to destinations outside of the area, the area border routers inject additional routing information into the area. This additional information is a distillation of the rest of the Autonomous System's topology. This distillation is accomplished as follows: Each area border router is by definition connected to the backbone. Each area border router summarizes the topology of its attached non-backbone areas for transmission on the backbone, and hence to all other area border routers. An area border router then has complete topological information concerning the backbone, and the area summaries from each of the other area border routers. From this information, the router calculates paths to all inter-area destinations. The router then advertises these paths into it's attached areas. This enables the area's internal routers to pick the best exit router when forwarding traffic to inter-area destinations. And finally, Section 16.2 Calculating the inter-area routes The inter-area routes are calculated by examining summary-LSAs. If the router has active attachments to multiple areas, only backbone summary-LSAs are examined. Routers attached to a single area examine that area's summary-LSAs. In either case, the summary-LSAs examined below are all part of a single area's link state database (call it Area A).Summary-LSAs are originated by the area border routers. Each summary-LSA in Area A is considered in turn. Remember that the destination described by a summary-LSA is either a network (Type 3 summary-LSAs) or an AS boundary router (Type 4 summary-LSAs). For each summary-LSA: (1) If the cost specified by the LSA is LSInfinity, or if the LSA's LS age is equal to MaxAge, then examine the the next LSA. (2) If the LSA was originated by the calculating router itself, examine the next LSA. (3) If it is a Type 3 summary-LSA, and the collection of destinations described by the summary-LSA equals one of the router's configured area address ranges (see Section 3.5), and the particular area address range is active, then the summary-LSA should be ignored. Active means that there are one or more reachable (by intra-area paths) networks contained in the area range. (4) Else, call the destination described by the LSA N (for Type 3 summary-LSAs, N's address is obtained by masking the LSA's Link State ID with the network/subnet mask contained in the body of the LSA), and the area border originating the LSA BR. Look up the routing table entry for BR having Area A as its associated area. If no such entry exists for router BR (i.e., BR is unreachable in Area A), do nothing with this LSA and consider the next in the list. Else, this LSA describes an inter
RE: RIP routing (2 router lab) newbie [7:28327]
I'm not sure if RIP is the same as OSPF, but if so, you must have OSPF running on the interface via the Primary address in order to have the Secondary address also participate in OSPF. Did you try adding your Primary address (network statement) to RIP also? Chris -Original Message- From: Chuck Larrieu To: [EMAIL PROTECTED] Sent: 12/6/01 5:45 PM Subject: RE: RIP routing (2 router lab) newbie [7:28327] try using loopbacks instead of secondaries. Are your secondary addresses part of the RIP process via network statements? same subnet boundary as the primary address? Chuck -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of anil Sent: Thursday, December 06, 2001 2:03 PM To: [EMAIL PROTECTED] Subject: RIP routing (2 router lab) newbie [7:28327] 2 C1603's connected to a hub. It should be simple but I cannot see why RIP does not update the routing tables (in either direction). I added secondary addresses to both routers e0, and want RIP to send these routes. Any comments/suggestions welcome. Many thanks -Anil - rustya#sh ip route Gateway of last resort is not set C193.9.200.0/24 is directly connected, Ethernet0 C192.9.200.0/24 is directly connected, Ethernet0 rustya# -- hostname rustya ! enable secret 5 $1$Ws8V$mRIwI97bc/Iv7PAEKFBVo1 ! ! interface Ethernet0 ip address 193.9.200.1 255.255.255.0 secondary ip address 192.9.200.1 255.255.255.0 ! interface BRI0 no ip address shutdown ! router rip network 193.9.200.0 ! no ip classless ! line con 0 line vty 0 4 password cisco login ! end rustyb#sh ip route Gateway of last resort is not set C192.9.200.0/24 is directly connected, Ethernet0 C196.9.200.0/24 is directly connected, Ethernet0 rustyb# hostname rustyb ! enable secret 5 $1$JycL$W4sNa8kuL2.tppX2IYQJU/ ! ! interface Ethernet0 ip address 196.9.200.1 255.255.255.0 secondary ip address 192.9.200.2 255.255.255.0 ! interface BRI0 no ip address shutdown ! router rip network 196.9.200.0 ! no ip classless ! line con 0 line vty 0 4 password cisco login ! end Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=28351t=28327 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Lab Attempt #2 - no go :- [7:28142]
Chuck, Thanks for the feedback. I appreciate your knowledge and the informative posts. As someone else posted, it's all about learning. I am prepping for my Written and it's great to have a format to follow. I only hope that the lab's purpose is to prove CCIE level knowledge to be useful and applicable to real-world networking. Good luck on the next one sir. Chris -Original Message- From: Chuck Larrieu [mailto:[EMAIL PROTECTED]] Sent: Tuesday, December 04, 2001 8:35 PM To: [EMAIL PROTECTED] Subject: Lab Attempt #2 - no go :- [7:28142] I wish I could say it took so long to get my results back because my excruciatingly sophisticated solutions to the problems presented required detailed and intimate analysis. Alas, that was not the case. For those ninnies who complain that the one day lab devalues the process, all I can say is WRONG! The lab I saw was far more difficult than I remember from my previous attempt, and my previous attempt was NOT easy. In my first attempt, I did not see anything I couldn't do. This time, although FAR better prepared, I saw LOTS of things I couldn't do. IMHO, the one day format, with the elimination of the monkey tasks, allows Cisco to demand a lot more. The 26 points previously allocated to terminal server setup, cabling, and troubleshooting all go someplace. WOW! The places they went! Previous topics that were glossed over appeared in depth. Cisco continues to up the ante, and not always in ways one might expect. Some things I wouldn't have expected were there in spades. Probably THE major factor continues to be reachability. If you don't understand the implications of the given network topology, and given interactions, you will be screwed. The topology presented was interesting. Amazing what one can do on a six router / two switch pod to wreak havoc and let you know what an idiot you are. Devious doesn't begin to describe it. Bootcamp and IPExpert - it ain't the number of routers, boys! The e-mail feedback is amusing, but not particularly informative. I failed with a score greater than 20, meaning I can go back in 30 days for more humiliation, if I so desire. the breakdown percentages ( not scores ) would be of more interest if I were sitting with the proctor discussing the whys and the expectations. Otherwise it does me no god at all. for example, I solved a particular problem doing something a particular way. It worked just fine in terms of the results. Yet on that section I scored very poorly. What were they looking for? Fat fingers are still the major enemy for me, at least. It's no fun fat fingering on a Cat 5K. Not by any means. It also helps to be certain layer two stuff is done correctly. Well, debriefing will be fun. I have the topology duplicated in my home lab, and I will enjoy analyzing the problems I saw in the real lab. No you can't telnet in to look. DON'T ASK! In terms of seating, it appears to me that there are now more racks in the lab, in San Jose, anyway. Half the seats are taken by those testing. The other half seem to be those used the previous day. the proctors crank through the idle racks, grading the previous day's results. One last thing. I know what CCO says, and I know what IOS I saw on my rack. Rats. The advertised IOS would have gone a long way towards eliminating a particular problem I had. Not complaining, because any CCIE should have been able to solve the particular puzzle no matter what the IOS involved. Just observing that some things are still in the process of change. The proctors are still the good folks I remember from last time. Too bad we are not given the opportunity for more interaction afterwards. I would really have enjoyed discussing my results. Whelp, another time. Chuck Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=28197t=28142 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
OSPF inter-area routes calc (doyle and rfc 2328) [7:28198]
All, Can someone help shed some light on OSPF's inter-area route calculation? I have been reading Doyle's TCP/IP Volume 1. It's a great book. But I've stumbled across something that confuses me and I'm hoping someone can help. This email is kind of long, but that's because I've included snips from Doyle's book as well as RFC 2328. I thought I had a good grasp on OSPF. I understand the 2 level concept of the Areas, router types, network types, DR/BDR, etc.., but then Doyle threw me for a loop. He explains OSPF in Chapter 9. Chapter 10 is about IS-IS. As Doyle begins explaining IS-IS he makes the following statement: Recall from Chapter 9, that OSPF runs its SPF algorithm to compute routes within an area, but that inter-area routes are computed using a distance vector algorithm. I do not understand this statement. I've reviewed Chapter 9 again and can't find where he explains that inter-area routes are computed using a distance-vector algorithm. Below are the snips from the RFC. RFC 2328 Section 3.2 Inter-area routing. Here, John Moy and group explain: When routing a packet between two non-backbone areas the backbone is used. The path the packet will travel can be broken up into three contiguous pieces: an intra-area path from source to an area border router, a backbone path between the source and destination areas, and then another intra-area path to the destination. The algorithm finds the set of such paths that have the smallest cost. Looking at this another way, inter-area routing can be pictured as forcing a star configuration on the Autonomous System, with the backbone as hub and each of the non-backbone areas as spokes. Further, Section 4.1 Inter-area routing explains: For inter-area routing, no other routing information is pertinent. In order to be able to route to destinations outside of the area, the area border routers inject additional routing information into the area. This additional information is a distillation of the rest of the Autonomous System's topology. This distillation is accomplished as follows: Each area border router is by definition connected to the backbone. Each area border router summarizes the topology of its attached non-backbone areas for transmission on the backbone, and hence to all other area border routers. An area border router then has complete topological information concerning the backbone, and the area summaries from each of the other area border routers. From this information, the router calculates paths to all inter-area destinations. The router then advertises these paths into it's attached areas. This enables the area's internal routers to pick the best exit router when forwarding traffic to inter-area destinations. And finally, Section 16.2 Calculating the inter-area routes The inter-area routes are calculated by examining summary-LSAs. If the router has active attachments to multiple areas, only backbone summary-LSAs are examined. Routers attached to a single area examine that area's summary-LSAs. In either case, the summary-LSAs examined below are all part of a single area's link state database (call it Area A).Summary-LSAs are originated by the area border routers. Each summary-LSA in Area A is considered in turn. Remember that the destination described by a summary-LSA is either a network (Type 3 summary-LSAs) or an AS boundary router (Type 4 summary-LSAs). For each summary-LSA: (1) If the cost specified by the LSA is LSInfinity, or if the LSA's LS age is equal to MaxAge, then examine the the next LSA. (2) If the LSA was originated by the calculating router itself, examine the next LSA. (3) If it is a Type 3 summary-LSA, and the collection of destinations described by the summary-LSA equals one of the router's configured area address ranges (see Section 3.5), and the particular area address range is active, then the summary-LSA should be ignored. Active means that there are one or more reachable (by intra-area paths) networks contained in the area range. (4) Else, call the destination described by the LSA N (for Type 3 summary-LSAs, N's address is obtained by masking the LSA's Link State ID with the network/subnet mask contained in the body of the LSA), and the area border originating the LSA BR. Look up the routing table entry for BR having Area A as its associated area. If no such entry exists for router BR (i.e., BR is unreachable in Area A), do nothing with this LSA and consider the next in the list. Else, this LSA describes an inter-area path to destination N, whose cost is the distance to BR plus the cost specified in the LSA. Call the cost of this inter-area path IAC. (5) Next, look up the routing table entry for the destination N. (If N is an AS boundary router, look up the router routing table entry associated with Area A). If no entry exists for N or if the entry's path type is type 1 external or type 2 external, then install the inter-area path to N, with associated area Area A, cost IAC, next hop equal to the list of next hops to
FW: OSPF Unequal load balancing? [7:27311]
I've scanned through John T. Moy's book but haven't found any reference to unequal load balancing. He only mentions equal-cost load balancing. I'll scan the RFC next. But, having thought about this for a minute. Wouldn't unequal load balancing break the idea behind OSPF? Isn't Dijkstra's Shortest Path First algorithm intended to find just that, the shortest path? I would think that asking for unequal load balancing would be in direct conflict behind the algorithm that is utilized for OSPF. Just some thoughts. Chris -Original Message- From: Kane, Christopher A. Sent: Monday, November 26, 2001 11:12 AM To: [EMAIL PROTECTED] Subject: RE: OSPF Unequal load balancing? [7:27311] You can read RFC 2328 or John T Moy's OSPF Anatomy of a Routing Protocol to find that answer. I'll dig through them and see if I can find you an answer if no one else comes up with one sooner. HTH, Chris -Original Message- From: Cisco Breaker [mailto:[EMAIL PROTECTED]] Sent: Monday, November 26, 2001 10:08 AM To: [EMAIL PROTECTED] Subject: Re: OSPF Unequal load balancing? [7:27311] As I said before I implemented equal load balancing on Motorola and Cisco what I want to know is, Is it possible to configure OSPF unequal load balancing ? You are saying that OSPF unequal load balancing can not be done on cisco I know that. The reason why I asked the question is cause I know that cisco can not do but is it the OSPF behaviour not to implement unequal load balancing or is it belong to Cisco's OSPF implementation? My guess is OSPF. Best regards, Ralph Fudamak wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... I don't know how Motorola implements OSPF, but with Cisco's implementation you can not do unequal cost load balancing with OSPF. This is not to say that you can't manually change the metrics on the links to appear to be equal cost. Keep in mind that this load balancing is *equal* then. Your slow link will get as much traffic as your fast one, which could cause a bottleneck. See if there is some command to set a default cost on the link, then set them both the same. Hope this helps Cisco Breaker wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... I implemented OSPF load balancing but never done unequal load balancing. My customer wants Unequal loadbalancing on Motorola routers. As I know Unequal load balancing cant be implemented on Cisco without policy-map? Any suggestions or any info? Best regards, Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=27332t=27311 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: OSPF Unequal load balancing? [7:27311]
You can read RFC 2328 or John T Moy's OSPF Anatomy of a Routing Protocol to find that answer. I'll dig through them and see if I can find you an answer if no one else comes up with one sooner. HTH, Chris -Original Message- From: Cisco Breaker [mailto:[EMAIL PROTECTED]] Sent: Monday, November 26, 2001 10:08 AM To: [EMAIL PROTECTED] Subject: Re: OSPF Unequal load balancing? [7:27311] As I said before I implemented equal load balancing on Motorola and Cisco what I want to know is, Is it possible to configure OSPF unequal load balancing ? You are saying that OSPF unequal load balancing can not be done on cisco I know that. The reason why I asked the question is cause I know that cisco can not do but is it the OSPF behaviour not to implement unequal load balancing or is it belong to Cisco's OSPF implementation? My guess is OSPF. Best regards, Ralph Fudamak wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... I don't know how Motorola implements OSPF, but with Cisco's implementation you can not do unequal cost load balancing with OSPF. This is not to say that you can't manually change the metrics on the links to appear to be equal cost. Keep in mind that this load balancing is *equal* then. Your slow link will get as much traffic as your fast one, which could cause a bottleneck. See if there is some command to set a default cost on the link, then set them both the same. Hope this helps Cisco Breaker wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... I implemented OSPF load balancing but never done unequal load balancing. My customer wants Unequal loadbalancing on Motorola routers. As I know Unequal load balancing cant be implemented on Cisco without policy-map? Any suggestions or any info? Best regards, Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=27337t=27311 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
OSPF and E2's, why default? [7:27390]
Since we were talking a little about OSPF today, I'd like to pose a question. When it comes to Path Types, Cisco uses E2's by default rather than E1's. Can someone tell me why? If E1's include the cost of the path to the ASBR that is distributing that route information into the autonomous system why wouldn't we want to know the entire cost of the path? Not knowing the internal path can lead to you taking a higher cost internal path if that path has a lower external cost. Doyle uses an example in his TCP/IP book (p. 489) that shows exactly such a situation occurring. Why would Cisco default to E2's if that could lead to sub optimal routing? Just curious, Chris Christopher A. Kane CCNP/CCDP Technical Support - Solution Center/Hilliard WorldCom Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=27390t=27390 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Back-to-back flapping [7:26469]
NetEng, Since you have this in a lab setup have you tried running some debugs? What do the stats for your serial interfaces show? Are you dropping physical layer and data link layer or only the data link layer? Do you have logging turned on? Chris -Original Message- From: John Neiberger [mailto:[EMAIL PROTECTED]] Sent: Friday, November 16, 2001 10:01 AM To: [EMAIL PROTECTED] Subject: Re: Back-to-back flapping [7:26469] Have you tried a different cable? How about swapping which end is DCE? In my home lab I had one bad cable that caused problems like this. Very annoying. In addition, I have a 2501 whose Serial1 interface can't be the DCE or it fails. I knew it was broken when I got it but as long as I make sure that interface is always DTE I'm okay. John NetEng 11/16/01 6:43:28 AM I have a 2620 and a 2501 in a back to back configuration. I have set the clockrate @ 64000 and I have connectivity, however the line is flapping about every 45s. It only stays down for about 5s. Any ideas? Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=26481t=26469 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Spanning Tree Protocol [7:26538]
Someone was a Douglas Adams fan? -Original Message- From: Priscilla Oppenheimer [mailto:[EMAIL PROTECTED]] Sent: Friday, November 16, 2001 8:27 PM To: [EMAIL PROTECTED] Subject: Re: Spanning Tree Protocol [7:26538] At 04:55 PM 11/16/01, John Neiberger wrote: You asked that question right when I had EtherPeek running on my PC. So, the answer is: 0180.c200. Source and Destination SAP: 0x42 :-) See? The answer *is* 42! According to Radia Perlman, the IEEE chose this SAP on purpose. ;-) Randy Lopez 11/16/01 2:27:57 PM What Multicast address does STP use? Priscilla Oppenheimer http://www.priscilla.com Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=26569t=26538 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: about BGP [7:26353]
BGP rides on top of TCP and BGP's default TTL is 1. Therefore to run BGP you must be directly connected, unless you implement ebgp multi-hop. Which allows you to reconfigure BGP's TTL value so that you may establish a BGP session with that neighbor that is not directly connected. HTH, Chris Christopher A. Kane CCNP/CCDP Technical Support - Solution Center/Hilliard UUNET/WorldCom -Original Message- From: Ihsan Turkmen [mailto:[EMAIL PROTECTED]] Sent: Thursday, November 15, 2001 6:37 AM To: [EMAIL PROTECTED] Subject: about BGP [7:26353] Hi. I am trying to configure two routers as BGP peers . Routers (both) are on the same LAN but in diffrent subnetworks. I mean, routers can ping eachother , since there is another router between them. But , they can not establish BGP connection as two neighbours. Does that mean they have to be dirctly connected to eachother.? Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=26372t=26353 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: 802.2 Frames [7:25925]
Priscilla, You bring up a good point, where did you get that description of Ethernet It seems that for every topic/subject I research in my IE studies, I have to check 2 or 3 other sources for fear of inaccuracies. I've been trying to focus more on RFCs and then using the other books to help me understand how Cisco does it. Without requesting you to promote anyone's books, what do you typically use as source material? I'd like to pose that question to Howard as well. Specifically since I've seen his name cited by authors (i.e. Jeff Doyle) as contributors to their works. Does there exist other sources other than RFCs that contain a level of accuracy that leaves one feeling confident after reading it? Thanks, Chris -Original Message- From: Priscilla Oppenheimer [mailto:[EMAIL PROTECTED]] Sent: Monday, November 12, 2001 2:00 PM To: [EMAIL PROTECTED] Subject: Re: 802.2 Frames [7:25925] Where did you get that description of Ethernet frame types? It's riddled with mistakes, I'm afraid. At 09:21 AM 11/12/01, [EMAIL PROTECTED] wrote: Ok - four different encapsulation types are commonly found on an ethernet network. All versions have a frame format that includes * preamble * destination MAC address * source MAC address * a field who's purpose differs with encapsulation type * payload * frame check sequence (CRC) The encapsulation types differ as follows * Ethernet II (Cisco keyword arpa) - uses a payload length field. Since the ether MTU is 1518 with 18 octets of overhead, this field is never more than 1500. There's no length field in an Ethernet II frame. It Dest Src Type. That's it. * 802.3 Raw - This type is said to be raw because service access points are not specified, as in 802.2 or SNAP. The field used for length in ethernet II carries instead type information that specifies the layer three protocol. Key values are (in hex) Nope, this one has length, not type. It's Dest Src Length IPX. Novell calls this 802.3, although it's non-standard to use an 802.3 header without the following 802.2 header and Novell raw is the only instance of this. * 802.2 (SAP) - If the 802.3 type field specifies SAP, fields specifying source and destination service access points (DSAP and SSAP) have been inserted between the length field and the payload. The service access points specify the higher level entity that will process the message - thus, they effectively specify the higher level protocol encapsulated in the frame. This is a standard 802.3/802.2 frame. Dest Src Length, 802.2 (LLC). The 802.2 header has the DSAP, SSAP, and Control fields. This frame format is confusing if you are used to Novell terminology because Novell calls it 802.2. But it's also 802.3 and IEEE assumes an 802.3 header has an 802.2 header that follows and would just call this 802.3. * SNAP - If the LLC header (DSAP and SSAP are both AA), a SNAP sub header between the SAP header and payload add a 5 byte field that allows specification of additional layer three protocol types. That is correct. Priscilla CCIE TB wrote: Microsoft devices defaults to 802.2 frame format when using NWLink, I'm having a problem categorizing this type. Ethernet II -- uses Type instead of Length 802.3 uses Length and SSAP/DSAP SNAP uses Length with fixed SSAP/DSAP and adds SNAP header. Based on this what is the format of 802.2 frames -- Jason Boson BCMSN1 BSCN2 BSCI2 practice tests E-Quizware CCIE practice test Priscilla Oppenheimer http://www.priscilla.com Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=25987t=25925 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: GroupStudy Updates [7:24805]
Thanks Paul. I appreciate the list and the work you put into it. Chris -Original Message- From: Paul Borghese [mailto:[EMAIL PROTECTED]] Sent: Wednesday, October 31, 2001 2:25 PM To: [EMAIL PROTECTED] Subject: GroupStudy Updates [7:24805] Hey everyone, I have been working with the mail system on GroupStudy.com. I started around 9:00 PM last night and ended up having to revert back to the old configuration this morning. In the process I disabled the newsfeed and turned off web postings. This was to prevent posting while I was working. Around midnight I thought I had a stable configuration - but I was wrong. Due to a strange bug in the bulk-mailer program, it was truncating the list so most mail subscribers did not receive the messages. After reverting back to the old configuration, I manually submitted all of the e-mails that arrived last night. Some of you may receive duplicates. At most it should be 36 messages. Those reading from the newsfeed and website were not affected. Take care, Paul Borghese Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=24855t=24805 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Off Topic only slightly - BGP on 25xx vs other platforms [7:24395]
Chuck, Is this a code issue? I ask because I am currently responsible for a major ISP that was absorbed by my employer and that ISP was often running BGP and OSPF with their clients. I have not seen any BGP problems on these old 2500s. But they are running code in the early 11.1 ranges. I've just started my IE studies and haven't hammered on the BGP portions yet. I too have several 2500s for lab equipment and am now anxious to practice Caslow and Parkhurst lab scenarios. Chris CCNP/CCDP -Original Message- From: Chuck Larrieu [mailto:[EMAIL PROTECTED]] Sent: Saturday, October 27, 2001 9:10 PM To: [EMAIL PROTECTED] Subject: Off Topic only slightly - BGP on 25xx vs other platforms [7:24380] now that I'm busting into BGP with a passion, and finding myself exceedingly frustrated, I'm just wondering - is BGP as confounding on other platforms as it appears to be on the 25xx series? I mean stuff like adjacencies not forming, routes not being propagated to established peers when there is no filtering occurring, stuff like that? I sure seem to be reloading my routers a LOT while going through the exercises in the Parkhurst book. :-O Chuck Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=24395t=24395 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: WIC-T1 crossover? [7:24095]
Yes. Pins 1,2 4,5 on one RJ45 end. Then on the other take pin 4 to 1 and 5 to 2. Remember one 1600 will need to be set for internal timing and the other for external. -Original Message- From: Gibb, Jake [mailto:[EMAIL PROTECTED]] Sent: Thursday, October 25, 2001 9:33 AM To: [EMAIL PROTECTED] Subject: WIC-T1 crossover? [7:24095] Is it possible to take a WIC-T1 card used in a Cisco 1600 and somehow make a crossover cable to connect to another 1600 with a WIC-T1 simulating a serial link (PPP, Frame-Relay, etc.) -Jake Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=24103t=24095 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Secondary address on router [7:21576]
Would there/could there be a concern about ARP table cache entries and the associated MAC addresses? I've made changes before and found that I had to clear entries (reboot) hosts such as firewalls because of cached entries. Chris -Original Message- From: Daniel Cotts [mailto:[EMAIL PROTECTED]] Sent: Monday, October 01, 2001 1:26 PM To: [EMAIL PROTECTED] Subject: RE: Secondary address on router [7:21576] I'd say Yes. I've never tried this so take it with a grain of salt. First verify that all your PCs are appropriately addressed. configuration changes take effect immediately. So: config t ip subnet-zero int e0 ip address 172.16.10.1 255.255.255.128 cntrl Z Should do the trick. -Original Message- From: sam sneed [mailto:[EMAIL PROTECTED]] Sent: Monday, October 01, 2001 11:12 AM To: [EMAIL PROTECTED] Subject: Secondary address on router [7:21576] Hello group, I have a question that could probably be easily anwered. We are changing our subnet mask to add a new network. Its is on a 4700 router with ip classless setup. We use real IP's but i'll but private ones on the example.. Ex. eth0 is now 172.16.10.0/24. I want to split this network in half so I wish to make eth0 172.16.10.0/25 and eth1 172.16.10.128/25. Eth0 leads to our production network. I want to have this change over with zero downtime. The Ip address on the interface (172.16.10.1) must stay the same. Is there anyway to change the subnet mask only with zero downtime? UNIX allows you to put 2 statements on a singel line split by a ; . Does cisco ios have something simliar? sam sneed Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=21587t=21576 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: boot promt [7:20563]
by boot prompt I'm assuming that you are seeing: router(boot) If this is the case then your router may have encountered a problem when trying to load the IOS. Check your flash and your config-register. Are you currently set to boot from flash and then TFTP? -Original Message- From: george gittins [mailto:[EMAIL PROTECTED]] Sent: Thursday, September 20, 2001 11:47 AM To: [EMAIL PROTECTED] Subject: boot promt [7:20563] i just upgrade my flash on a 2514 router to 16megs. i get the boot promt i did not get it before how do i get normal promt Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=20577t=20563 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: giving boot after hostname [7:11173]
How is the router acting? Can you actually route? Looks like your IOS could be corrupted. That's typically the problem when you see (boot). Don't know if anyone else has seen (boot) at any other time. What messages are displayed when the router starts up? Chris -Original Message- From: Quddus Khan [mailto:[EMAIL PROTECTED]] Sent: Friday, July 06, 2001 10:53 AM To: [EMAIL PROTECTED] Subject: giving boot after hostname [7:11173] my host name is test but its giving me boot in such a way how can i remove it ? my router is cisco 2522 test(boot)# Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=11179t=11173 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Passed Switching today -- 3 Down, 1 to Go! [7:10108]
Nice Job Heather !! Great score -Original Message- From: EA Louie [mailto:[EMAIL PROTECTED]] Sent: Wednesday, June 27, 2001 2:21 PM To: [EMAIL PROTECTED] Subject: Re: Passed Switching today -- 3 Down, 1 to Go! [7:10108] congrats, Heather! -e- - Original Message - From: Buri, Heather H To: Sent: Wednesday, June 27, 2001 9:30 AM Subject: Passed Switching today -- 3 Down, 1 to Go! [7:10108] Well, I went and took my switching exam this morning at 9 AM. Passed with a score of 912! I used the Cisco Press book to study (plus OJT). The exam was pretty straight forward. I only had two questions that I thought were poorly worded. Minimum passing score - 699, 64 questions, one and a half hours to complete. I had few questions on multicasting and hsrp. Lots of questions on when to utilize different switch types (know your hardware and where to use in the network). Know VLAN operation. Know how multilayer switching works. If anyone has any questions that do NOT violate NDA :-) I will be happy to answer them for you. Heather Buri CSC Technology Services - Houston Phone: (713)-961-8592 Fax: (713)-961-8249 Mobile: Alpha Page: Mailing: 1360 Post Oak Blvd Suite 500 Houston, TX 77056 EOM NOTICE - This message contains information intended only for the use of the addressee named above. It may also be confidential and/or privileged. If you are not the intended recipient of this message you are hereby notified that you must not disseminate, copy or take any action in reliance on it. If you have received this message in error please notify [EMAIL PROTECTED] Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=10142t=10108 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Config Register Weirdness, again... [7:9181]
I haven't seen that before. What series of router is it? Could it be a jumper setting? -Original Message- From: John Neiberger [mailto:[EMAIL PROTECTED]] Sent: Wednesday, June 20, 2001 10:47 AM To: [EMAIL PROTECTED] Subject: Config Register Weirdness, again... [7:9181] Okay, what's the deal here? Look at this output: Configuration register is 0x2102 (will be 0x4000 at next reload) RARAP#conf t Enter configuration commands, one per line. End with CNTL/Z. RARAP(config)#config-reg 0x2102 RARAP(config)#end RARAP#sho ver Cisco Internetwork Operating System Software [lotsa trimming] Configuration register is 0x2102 (will be 0x3922 at next reload) Why is the config register going to reload at 0x3922?? I just set the darn thing to 0x2102 and you can see that change occurred. I was trying to get rid of the 'will be 0x4000 at next reload'. I have no idea why that was there to begin with but it should not be there. Is this something that I'll have to fix from the console port? I can't reload the router because it was put into production this morning. Why is it set to 0x3922? I'm guessing that the guy who installed this was playing around with the confreg utility in rommon and we'll have to go back to rommon to fix it. Any ideas? Thanks, John Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=9216t=9181 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
IRDP, why isn't it used more often [7:8425]
I've read several times that IRDP allows hosts to discover gateway routers. But every time I read that it's followed by the statement that it's seldom used. Does anybody know why? It seems like it would come in handy for failover purposes. Chris Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=8425t=8425 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: BGP for 2 T1's to one LAN [7:7511]
My opinion would be that best case calls for you to use your own netblock. Get 2 /24's and since you are running with 2 ISPs (multi-homed) you need your own AS. Using 2 routers on your prem and BGP with the ISPs affords you a lot of flexibility. If you only have 1 /24 then its pretty much up to the how the Internet sees your routes as far as which one will be used to get to your site. With 2 /24's you can really start achieving load-sharing (not necessarily load-balancing) Talk with the ISPs and find out what policies they will allow you to pass to them. You could route some traffic via one provider and the rest through the other provider. If they accept manipulated routes (such as AS PATH PREPEND) you could then allow each ISP to back the other one up, and they don't really need to know or care. Advertise your whole network to both, but adjusting the routes so that half takes one ISP while the other half takes the other ISP. Then, upon failure of one ISP, the other would then be advertising the best/only route for your traffic. This takes a little time to consider and hopefully knowledgeable ISP installation techs. This also takes some consideration on your part in respect to your host numbering and usage. HTH Christopher A. Kane, CCNP/CCDA Router Ops Center/Hilliard NOC UUNET/WCOM -Original Message- From: Daniel Wilson [mailto:[EMAIL PROTECTED]] Sent: Friday, June 08, 2001 7:43 AM To: [EMAIL PROTECTED] Subject: Re: BGP for 2 T1's to one LAN [7:7511] Thanks. Someone else also mentioned the need for 2 routers for full redundancy. What I'm not understanding is why we need to IP blocks to achieve loadbalancing. That we'd need DNS round robin if we're running 2 blocks makes sense, but why the 2 blocks? Also, are both your lists assuming that the ISPs run BGP with us? Thanks for the help. -- Daniel Wilson, BSCS, MCP Application Developer http://www.compusoftsolutions.com/ Sergei G. wrote: Redundancy and loadbalancing are possible. The hardware is insufficient, though. Redundcy and Load balancing requirements. -- 2 ISPs 2 /24 ASN Two routers capable of 256 Mb of DRAM (3600 and higher) web servers with two IPs, from each block DNS round robin Redundancy only -- 2 ISPs 1 /24 ASN Two routers capable of 256 Mb of DRAM (3600 and higher) -- Sergei GDaniel Wilson wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... We are trying to have the web servers in our LAN accessible to the internet via 2 T1's from different providers -- more for redundancy than load sharing, though that matters too. Currently we have 2 T1's, each giving us a different set of IP addresses. That just lets us put some sites on each T1 -- doesn't give us an ounce of redundancy. I've been told that if we get a router with 2 WIC's that can speak BGP (Cisco 2600 or better) that may solve our problem. I'm very new to routing, so can someone answer some basic questions? Is the idea with this solution that we will be running just one set of IP addresses? And that, because of BGP on our router, either ISP will be able to route traffic to that set of IPs on the T1 it provides? Thanks in advance. -- Daniel Wilson, BSCS, MCP Application Developer http://www.compusoftsolutions.com/ Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=7713t=7511 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Wanna Be a CCIE? Try This One [7:6076]
No, OSPF is 110. And BGP has 2 ADs. One for IBGP (200) and one for EBGP (20) Christopher A. Kane, CCNP Senior Network Control Tech Router Ops Center/Hilliard NOC UUNET (614)723-7877 -Original Message- From: Peter I. Slow, CCNP Voice Specialist [mailto:[EMAIL PROTECTED]] Sent: Tuesday, May 29, 2001 1:17 PM To: [EMAIL PROTECTED] Subject: Re: Wanna Be a CCIE? Try This One [7:6076] Absolutely, but he has traffic going from one router to another, it's not ever exiting the system. ...why would you want to break up an AS that small into two seperate private ASes? besides... the OSPF routes are going to take precedence, not that the admin dist. cant be changed, but ospf is 120, and BGP int routes are 200 (right?) - Original Message - From: W. Alan Robertson To: Peter I. Slow, CCNP Voice Specialist ; Sent: Tuesday, May 29, 2001 12:42 PM Subject: Re: Wanna Be a CCIE? Try This One [7:6076] Peter, With all due respect, he doesn't have an IGP problem... He has a routing problem, and would like the ability to influence the flow of traffic under certain circumstances to provide for better network performance. After hearing a better explanation of the real issue, path selection for an International site, the use of BGP might go a long way toward solving the issue. He could very simply address his issues by breaking his OSPF into two seperate routing domains, and utilizing BGP as a means of interconnecting them. He could manipulate the traffic through the use of something as simple as AS-path prepending, or the other mechanisms Chuck mentioned (local preference, weight, or meds). Routing protocols are but tools, a simple means to an end. Like all tools, each has it's strengths and weaknesses. Most important is that you select the right one for a given situation. In the absence of more information, the use of BGP sounds like a pretty good solution to the given problem. Alan - Original Message - From: Peter I. Slow, CCNP Voice Specialist To: Sent: Tuesday, May 29, 2001 11:29 AM Subject: Re: Wanna Be a CCIE? Try This One [7:6076] next time you recomend using bgp to fix an IGP problem, im going to.., well, uh, just dont do it again. FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=6264t=6076 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Is it really worth it? CCIE [7:5725]
I agree that a Cert is not necessarily who you are. I also agree that a Cert doesn't mean you can troubleshoot nor does it mean that you are capable of designing something that is clean and easily supportable. But, I feel the Cert does have a value. It shows that you took the time to learn what someone (presumably the vendor) suggested that you learn in order to better understand the capabilities of their product. It shows that you've made the effort to learn things that you don't normally deal with on a day-to-day basis. If you are willing to constantly learn and grow not only adds to your value as an employee, but also as a person. Further, for those of us who did not finish school, it hopefully keeps the recruiter from shutting the door in our face. I have had a great time in the 4 years that I have been in this field. I've received recognition from not only my peers and immediate management, but also from senior directors. I've gained vast amounts of experience, starting at the NOC level and working up through the higher levels of support and engineering. Experience along with the Cert/s, should allow me to at least talk to the IT group of a potential new employer so that I may demonstrate what I am capable of. I've seen things on this list that concern me. Such as HR personnel preferring to talk to a CCNA rather than a CCNP because they've been told to find the CCNA and are not aware of what a CCNP is. Until I can finish school, my chances of gaining new employment (should I seek it) could be greatly diminished without something else to show, such as the Cert. A degree doesn't guarantee that you are a quality employee, nor does a Cert. But I need all the ammo I can amass should the time come that I have to polish the resume and start knocking on doors. Maybe the CCIE does contain some outdated material and maybe it could use some tweaking, regardless, my major concern lies on the dependence of Cisco to help maintain that certification on the level of respect that it currently holds. Thanks for the thread, this is a great discussion. I enjoy hearing the opinions of other technicians/engineers. Christopher A. Kane, CCNP Senior Network Control Tech Router Ops Center/Hilliard NOC UUNET (614)723-7877 -Original Message- From: Robert Padjen [mailto:[EMAIL PROTECTED]] Sent: Thursday, May 24, 2001 6:01 PM To: [EMAIL PROTECTED] Subject: Re: Is it really worth it? CCIE [7:5725] My $.02. I have always been disenchanted with the certifications offered and I would like to believe that some others in the industry feel the same. This may be the case here. Basically, look at the certification tests. Many are old, poorly written, irrelevant to production environments, simple (low percentage of redundancy or complex scenario questions) and an overall difficulty not related to technological issues but grammar, construct and marketing. As such, passing proves that you can do one thing - pass the test. It doesn't mean that you can troubleshoot, design, deploy or manage anything. Is Erlang-B important in routing and switching? Is knowing the port density on the Z series router valuable when the product was replaced two years ago? It's not sour grapes - I'm certified. But, its on the last page of my resume, and its not who I am. I'm me, and I happen to be certified. Its not I'm certified (along with X others) and I'm one of many. Also, I know a lot of people who will not disclose their certs, including CCIE, unless asked. It's being humble. I don't think that anyone is incapable of passing the X test/exam. Its a matter of time, money, pain and desire. A lot of great people in this industry are great because they are good - not because a test told the world that they were. --- Donald B Johnson jr wrote: I don't agree, people who write technically, their reputation is centered around how accurate their writing is, and where mistakes are made how quickly they fix those errors. I don't see where failing a test, would invalidate anyone's writing or lessen their reputation. The quoted explanation may be true I am not disputing that, it probably is a factor, I just think it is unfounded. - Original Message - From: Kevin Schwantz To: Sent: Thursday, May 24, 2001 8:07 AM Subject: Re: Is it really worth it? CCIE [7:5725] Did you know that many of the top Cisco engineers are not CCIE qualified? I have always wondered why people like Sam Halabi and the likes do not get certified.A Cisco employee told me that these people have everything to lose and nothing to gain if they take the CCIE exam. If they refrain from taking the tests, their reputation stays intact. If they take the test and fail, people will start to question their credibility. Kevin Morabito Joe wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... Hi, I want to ask a question to those already CCIEs. Is it really worth it? Don't get me wrong, I love
RE: Anybody know of a failover switch for serial connections? [7:4754]
I'm curious as to why you would have router redundancy and not circuit redundancy. My experience has been that the majority of downtime is WAN related not router related. Wouldn't it be cheaper to order another T1 to terminate on Router B and run HSRP? Having 2 routers is nice but doesn't seem to account for where the majority of the outages occur. Of course, if you do get a second T1, you'd want to be sure to request that the provider terminate that on different telco outside plant facilities if at all possible. Chris -Original Message- From: Edward Gomez [mailto:[EMAIL PROTECTED]] Sent: Wednesday, May 16, 2001 5:26 PM To: [EMAIL PROTECTED] Subject: RE: Anybody know of a failover switch for serial connections? [7:4746] Actually what I am looking for is a serial a/b switch that will move the serial connection (v.35) from router A to router B when it detects that the router is down. The scenario would be lets say a frame relay T1 circuit goes into lets say a 2620(Rtr A) . If that router goes down i'm pretty much s.o.l. Now I can run HSRP between two 2620 (Rtr A B) and track the interface but my circuit is still physically plugged into Rtr A. I have found two solutions one pricier than the other. One is from ADC it is their IPXpert switch (stele.adc.com/Products/DSXPERT/ipx/) which will do what I want for about 15-20K. The other is from Tiara Networks which is basically a router with dsu running HSRP. The Tiara solution runs about 8K but then is still a spf in my network. I was wondering what people on this list use if anything to accomplish this. I am trying to eliminate SPF in my network as well as the amount of time to recover from a failure. Thanks! Eddie -- Edward J. Gomez, MCSE, CNE, CCNA Information Systems Manager ProxyMed, Inc 2555 Davie Road, Suite 110 Fort Lauderdale, Florida 33317 (954) 473-1001 x315 http://www.proxymed.com -Original Message- From: Rashid Lohiya [mailto:[EMAIL PROTECTED]] Sent: Wednesday, May 16, 2001 5:06 PM To: [EMAIL PROTECTED] Subject: Re: Anybody know of a failover switch for serial connections? [7:4745] Have you thought about HSRP, it may do what you need. RL Louis wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... Pravin Gade wrote: Are U looking for a V.35/V32 fallback switch to achiev router redundancy. Edward Gomez wrote: Hi all, I am currently looking for a failover switch that will automatically switch my serial connections from one router to another in case of a router failure. Does anyone know of such a device. The device needs to be able to handle multiple serial (T1) connections. Thanks in advance! Eddie -- Edward J. Gomez, MCSE, CNE, CCNA Information Systems Manager ProxyMed, Inc 2555 Davie Road, Suite 110 Fort Lauderdale, Florida 33317 (954) 473-1001 x315 http://www.proxymed.com FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=4754t=4754 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Can't copy run to start [7:1880]
Do a sho ver command and check the last statement. You need to check where your IOS is loading from. Most often I use 0x2102. You may find that yours states 0x2142. HTH Later, Chris -Original Message- From: Chan [mailto:[EMAIL PROTECTED]] Sent: Wednesday, April 25, 2001 11:24 AM To: [EMAIL PROTECTED] Subject: RE:Can't copy run to start [7:1880] Hi All After i have copy my running config to start using copy run start then reload my router,but when i do a sh run or sh start the config is gone.Can anyone advise on this. Thank you Regards Chan FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=1894t=1880 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: CCIE depreciation in 2 years [7:1882]
Cool post Jim. Agree with you 100% -Original Message- From: Jim Brown [mailto:[EMAIL PROTECTED]] Sent: Wednesday, April 25, 2001 1:34 PM To: [EMAIL PROTECTED] Subject: RE: CCIE depreciation in 2 years [7:1882] I do it because I love to learn, not for the money. The money is nice, but if that is your only reason then you are in the wrong business. If you just want the money there are plenty of other professions that pay more with the same intelligence factor. CNE, MCSE, CCIE all of these certifications are or were in high demand and it seems like there is always something on the horizon. If the CCIE becomes less valuable there will be something bigger and better but I won't sit around a wait on it. How many times have you heard it is in the journey and not the destination? The materials are better, more people are interested, so you have more individuals passing. Attaining the CCIE is only the beginning and if/when I receive my number it doesn't mean the learning stops. There are probably around 6,000 worldwide active CCIE's. If that number doubles it is still a unique thin crowd. Regarding difficulty you still here the stories of six went in and only one came out. I don't think it is any easier today than it was in past. You just have more people sitting the exam. This is evident with the backlog. I believe approximate the same percentage are passing 14%-17%? I look at what I thought I knew six years ago and I'm astonished where I am today. Everyday that goes by I realize how much I don't know and that's what drives me on. I do it because I love it. If the market is saturated then I will have more people to talk shop with and that ain't such a bad thing. -Original Message- From: Tennesee Stud [mailto:[EMAIL PROTECTED]] Sent: Wednesday, April 25, 2001 9:29 AM To: [EMAIL PROTECTED] Subject: CCIE depreciation in 2 years [7:1882] I was wondering what others thought about the CCIE. It seems to me now that there are so many books and training materials geared towards the CCIE, it is making it easier to obtain the CCIE. With a steady diet of the right books ( which everyone seems to agree on) and hands on time with routers and switches ( which to me is the only obstacle), it does not seem as difficlut as it proclaimed (and I think most people see that).My opinion is the CCIE will be devalued considerably in the next few years (As far as salary is concerned as well as prestige) As others have pointed out, the CCIE population is growing at a faster rate (routing and switching), and even though the demand is high for the CCIE now, I think in 2 years there will be a difference in the way the industry views CCIE's .02 thats all Tennesee Stud _ Get your FREE download of MSN Explorer at http://explorer.msn.com FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=1923t=1882 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Can't get router out of router(boot) mode.... [7:1921]
Your IOS is probably corrupted. This usually happens when your IOS didn't get loaded properly. Chris -Original Message- From: Lance Hubbard [mailto:[EMAIL PROTECTED]] Sent: Wednesday, April 25, 2001 1:56 PM To: [EMAIL PROTECTED] Subject: Can't get router out of router(boot) mode [7:1921] any suggestions..? Lance _ Get your FREE download of MSN Explorer at http://explorer.msn.com FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=1970t=1921 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: HSRP [7:903]
Router B can't be in standby if it's FA is not up. Are you plugged into a switch or hub? What does that end look like? Christopher A. Kane, CCNP -Original Message- From: SH Wesson [mailto:[EMAIL PROTECTED]] Sent: Tuesday, April 17, 2001 10:02 AM To: [EMAIL PROTECTED] Subject: HSRP [7:903] There are two routers: Rtr-A and Rtr-B. HSRP is running between these two groups with RTR-A set with a priority of 100 and RTR-B set with a priority of 150. Currently, RTR-A is the active router. However RTR-B shows that it's in a state of INIT. When I do a "show int fa0/0", it shows that the line is up but the protocol is down. The configuration looks fine and HSRP is tracking the serial interface. Any suggestion as to why RTR-B is not in standby state and how to resolve the problem to get it out of INIT state. If RTR-A goes down now, RTR-B will not pick up and become active as it stands now. Any assistance would be appreciated. Thanks. _ Get your FREE download of MSN Explorer at http://explorer.msn.com FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=948t=903 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Simpl-er way to explain Default Gateways [7:792]
IP route 0.0.0.0 0.0.0.0 = setups up a default route to either an IP address or an active interface. Used when no known route exists via a routing protocol. I often use this when a customer is not getting any routes from me (not running BGP with me) and only needs a route out of their router (access layer) pointed to my gateway. (distribution layer). IP default-gateway = setups up a default gateway to use if/when routing dies. This comes in handy if the IOS happens to get corrupted. The router can still route to a directly connected gateway. Generally used while troubleshooting the IOS problem. I've used it when a router's IOS has gotten corrupted which you'll usually know when you look at the hostname of your router and it shows "router-name(boot)" This way, if need be, I can put a new IOS image on the gateway and then TFTP it do the crippled router. IP default-network = I've seen this before but have never used it myself. CCO states: "The argument network-number is a network number. If the router has a directly connected interface onto that network, the dynamic routing protocols running on that router will generate or source a default route. In the case of RIP and HELLO, this is the mention of the pseudo-network 0.0.0.0. In the case of IGRP, it is the network itself, flagged as an exterior route. A router that is generating the default for a network may also need a default of its own. This may be done by specifying a static route to the network 0.0.0.0 via the appropriate router." I'm not sure when/why you would use "default-network." Anyone know? Christopher A. Kane, CCNP Senior Network Control Tech Router Ops Center/Hilliard NOC UUNET (614)723-7877 -Original Message- From: Circusnuts [mailto:[EMAIL PROTECTED]] Sent: Monday, April 16, 2001 1:25 PM To: [EMAIL PROTECTED] Subject: Simpl-er way to explain Default Gateways [7:792] I have a friend going through the CCNA classes the questions he asks always dig up topics I have either forgotten or do not use consistantly. Is there a simple way to explain when to you use: IP Route 0.0.0.0 0.0.0.0 IP Default-Gateway IP Default-Network Thanks Phil FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=796t=792 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Simpl-er way to explain Default Gateways [7:792]
I searched CCO some more and of the list of links, this one looks the best: http://www.cisco.com/warp/customer/105/default.html Christopher A. Kane, CCNP Senior Network Control Tech Router Ops Center/Hilliard NOC UUNET (614)723-7877 -Original Message- From: Circusnuts [mailto:[EMAIL PROTECTED]] Sent: Monday, April 16, 2001 1:25 PM To: [EMAIL PROTECTED] Subject: Simpl-er way to explain Default Gateways [7:792] I have a friend going through the CCNA classes the questions he asks always dig up topics I have either forgotten or do not use consistantly. Is there a simple way to explain when to you use: IP Route 0.0.0.0 0.0.0.0 IP Default-Gateway IP Default-Network Thanks Phil FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=800t=792 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Routing Performance Perspective [7:495]
Matt, I don't think you would be out of line asking the ISP why so many hops are needed. I would run traceroutes from hosts and the WAN terminating router first and make sure you are routing well inhouse. Identify if/where packets are being dropped. Make note of all the hops and if/where the latency is being introduced. Is any hop in particular constantly giving higher times. Then call your ISP and send them copies of your traceroutes as proof. Are you responsible for your own router? If so, check the BGP tables, are your table versions incrementing often? What sites do you route to most often? Are those sites on the ISP's network or do they hand-off the traffic at a peering point? This greatly introduces latency and can make for difficult discussions regarding peering conditions from one ISP to another. Often people criticize the larger ISPs. But it's nice when the source and destination are on the same ISP network. You can then expect them to carry your traffic in a timely manner. And they can't cop out saying it's the other ISPs fault. Coming from the ISP world, I always appreciate when the customer does their homework rather than automatically blaming the ISP. All IMHO and HTH, Chris -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] Sent: Friday, April 13, 2001 2:20 PM To: [EMAIL PROTECTED] Subject: Routing Performance Perspective [7:495] I am hoping someone could provide me some experienced perspective for the following situation: We utilize a somewhat 'new on the block' co-location facility, and while they otherwise provide fantastic service I have some questions about the routing performance. Over the past few weeks, I have noticed a degradation of service on our colocator-provided connection. (significant latency, and loss of packets) As a result, I have been tracerouting our corporate offices from our co-location facility (only 30 miles away) and it takes anywhere from 13 to 16 hops to reach it's destination. I have been doing this on a semi-scientific basis (whenever I remember) and the results are usually the same, but closer to 16 hops than 13.When I traceroute from our corporate offices to our co-location facility the results are usually 6 to seven hops using the same semi-scientific methodology as stated above. My concerns are that end-user experience are being affected by apparent sub-optimal routing. The question I ask of the Grand-Master BGP geniuses is: do I have a valid complaint regarding sub-optimal routing from our co-locator? Thanks! Matthew FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=521t=495 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: AppleTalk on Support exam [7:269]
I took it 3 weeks ago and did not have any AppleTalk questions -Original Message- From: Don Pezet [mailto:[EMAIL PROTECTED]] Sent: Friday, April 13, 2001 6:00 PM To: [EMAIL PROTECTED] Subject: Re: AppleTalk on Support exam [7:269] Priscilla, I took the CIT test on Wednesday. There were about three AppleTalk questions. Mainly, which debug commands to issue to monitor different AppleTalk zone registrations and what not. I wouldn't sweat it too much. Don ""Priscilla Oppenheimer"" wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... For those of you who have taken the Support exam recently, did you get any AppleTalk questions? The outline for the 640-506 Support exam still includes AppleTalk. http://www.cisco.com/warp/public/10/wwtraining/certprog/testing/current_exam s/640-506.html The outline for the exam is a mess, though, so I'm not sure if I should believe it. The outline for the course does not include AppleTalk. http://www.cisco.com/pcgi-bin/front.x/wwtraining/CELC/index.cgi?action=Cours eDescCOURSE_ID=1492 THANKS Priscilla Priscilla Oppenheimer http://www.priscilla.com FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=532t=269 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
tftp server setting in Red HAt 7.0 [7:98]
Hi folks, did someone set up SUCCESSFULLY a tftpserver in Red Hat 7.0? There is very few info out there concerning the whole process. Need some help. Thanks Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=98t=98 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Good book for learning IPSec and VPN's??
The Doraswamy book seems to be pretty popular. -Original Message- From: Arthur Stewart [mailto:[EMAIL PROTECTED]] Sent: Friday, April 06, 2001 11:42 AM To: [EMAIL PROTECTED] Subject: Re: Good book for learning IPSec and VPN's?? I like the Wenstrom MCNS book a lot. It's something I think most Cisco professionals should try to get around to. There's another Cisco Press book - MPLS and VPN Architectures http://www.ciscopress.com/book.cfm?series=1book=168 and the reference that Cisco cites in it's recommended reading list regarding IPSec and VPNs for CCIE-Security is Doraswamy http://www.amazon.com/exec/obidos/ASIN/0130118982/o/qid=986571143/sr=8-1/ref =aps_sr_b_1_1/103-3101837-7208645 Which books do you like best? "Cisco Kidd" wrote in message ... I am looking for a good book which I could use to learn these technologies and possibly use as a reference later onI noticed Cisco Press has two books that look like they might cover these topics... Managing Cisco Network Security-December 2000Enhanced IP Services for Cisco Networks-October 1999 Any input on these books or any other books covering these topics would help me a lot. Thank you :-) Get your FREE download of MSN Explorer at http://explorer.msn.com _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: IPsec port
Actually, you have it backwards. AH = port 51. ESP = port 50. Christopher A. Kane, CCNP Senior Network Control Tech Router Ops Center/Hilliard NOC UUNET (614)723-7877 -Original Message- From: Rizzo Damian [mailto:[EMAIL PROTECTED]] Sent: Friday, March 30, 2001 12:19 PM To: 'Ruihai An'; [EMAIL PROTECTED] Subject: RE: IPsec port AH-port 50, ESP-port 51 and ISAKMP-port 500 -Original Message- From: Ruihai An [mailto:[EMAIL PROTECTED]] Sent: Friday, March 30, 2001 12:05 PM To: [EMAIL PROTECTED] Subject: IPsec port I configured my PIX as the IPsec VPN terminator to support DES VPN client. I have an inbound access-list on my perimeter router. Does any one know the ports I need to open for IPsec VPN traffic on my perimeter router ? Ruihai _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: The Finale: OSPF and IP Classless (partial retraction)
Since the solution points to adding "ip classless", my question would be: When would someone use/need to have "no ip classless". Does anyone use "no ip classless" as a standard in their configurations? And if so, what is gained? Christopher A. Kane, CCNP Senior Network Control Tech Router Ops Center/Hilliard NOC UUNET (614)723-7877 -Original Message- From: John Neiberger [mailto:[EMAIL PROTECTED]] Sent: Friday, March 30, 2001 1:40 PM To: [EMAIL PROTECTED] Cc: [EMAIL PROTECTED] Subject: RE: The Finale: OSPF and IP Classless (partial retraction) Geez, you're right. I'm starting to miss the forest because I've looked at too many trees! Yes, even in my experiments, I now remember seeing that the router would pick a supernet route for a specific major network. Others pointed this out to me and I had completely forgotten that particular point. The moral of the story is: always use 'ip classless' and then quit worrying about it. From here onward I will no longer refer to 'ip classless'.it is now 'ip clueless'. :-) "Bob Vance" [EMAIL PROTECTED] 3/30/01 11:22:53 AM Actually, John my treatises :) on this subject a year ago showed this. ip classless *only* affects the lookups *outside* the classful aggregate. Any supernet *within* the classful aggregate *will* be used, even with no ip classless set. Thus, a learned route, 10.1.0.0/16 , will be used for address 10.1.1.1 , but not 10.2.2.2 . (*if* I still understand what I wrote below ;). Here is part of my original work on the subject for those who are feeling drowsy, but just can't nod off completely ;) Thanks to the lab of Ding So I was able to pound the last nail in the coffin of how [no] ip classless affects route lookups (the doco makes no mention of route installation, so we would guess that it has no effect. Further investigation will be required to confirm/debunk this). I will do a little write up, here, that can be challenged by anyone with a dash of temerity: (Note that I've tried several times and I just can't seem to find a clear, yet succinct way to describe this. ) == Under old, classful routing it was assumed that all local networks would be subnets of one or a couple of classful networks and that all the subnets of a particular classful network, say "X" (e.g., X=172.16.0.0), would be "connected" to each other. What this means is that, for each and every pair of subnets of classful network "X", there would be an interconnecting path among 1 or more routers, that could be traversed *entirely* on segments whose IP network addresses are subnets of classful network "X". If the above requirement does not obtain, i.e., if the network path *must* include a subnet of a *different* classful network, say "Y", then we call this situation "a discontiguous network". or "X has discontiguous subnets" or "X has disconnected subnets" . Another assumption in this environment is that, if we (a router) know about any particular subnet of "X", then we should know about *all* subnets of "X" that actually exist; either by our having one or more interfaces within a subnet of X, an admin giving us proper static routes, or by information received from a routing protocol. With the above in mind, the router will not entertain a route to a subnet of network "Y" that isn't a route to a network address *within* network "Y" (it can be that actual network aggregate, itself; e.g., a route to 172.16.0.0/16, in the above example) -- that would mean discontiguity. In particular, it will *not* consider the "default" route 0.0.0.0/0 for any address within classful Y, if it has information about at least one subnet of Y. In addition (and this is the one always left out of the textbooks), it will not consider *any* *supernets* routes of Y. The 0.0.0.0/0 is just a particular case of this rule (0.0.0.0/0 is always a supernet of *every* network address -- it contains *0* bits that do not match). If you look at a show ip route you'll notice that the table is broken up into sections at *classful* network boundaries, *even* if ip classless is set. Note that supernet routes, including 0.0.0.0/0, are not listed within any classful section -- they are listed separately, on their own. What the router does, with no ip classless set, is to first check to see if the target address in question falls within one of these "known" sections -- i.e., in one of the "known" classful networks. If so, he will use the *longest* match for the target address that he can find in that section. (Note that this is a point also often left out of the text books. Remember: a router will *always* try to do a longest-prefix match,
RE: Point to Point Link Problem
Do you have both ends setup with "Current clock source is line". If you do, change one end to internal. If both are set to line and telco is not providing you clocking, the T1 won't come up. I'm more concerned with the fact that you have down/down. As stated below, you usually get an up/down with good local cable connection. Is the T1 coming in on a SmartJack (NIU)? If you can find it (should be labeled with the circuit ID), check the LEDs, there should be an equipment light and a network light depending on the vendor. -Original Message- From: EA LOUIE [mailto:[EMAIL PROTECTED]] Sent: Tuesday, March 20, 2001 3:43 PM To: Brian; David Eitel; [EMAIL PROTECTED] Subject: Re: Point to Point Link Problem http://www.cisco.com/univercd/cc/td/doc/cisintwk/itg_v1/tr1915.htm Check your cable one more time, and make sure it's a straight-through cable to the telco demarc (Cat 5 568A or B, or any other 1-1 2-2 ... 8-8 RJ-45 type cable will work okay in a pinch) You should at least be able to get up/down status if the cabling is correct. Also, make sure telco has actually activated the circuit (that they don't have it looped back on their end...although the internal CSU should have detected that) Finally, are you sure you're plugged into the correct CSU interface on the router and at the demarc? ;-) Let us know when you get DCD up :-) -e- "Brian" [EMAIL PROTECTED] wrote: Has the telco tried all zeros loops to both ends, to verify b8zs/esf setup?? Brian - Original Message - From: "David Eitel" [EMAIL PROTECTED] To: [EMAIL PROTECTED] Sent: Tuesday, March 20, 2001 8:02 AM Subject: Point to Point Link Problem I have a point to point T1 that is not working. The routers involved are a 3640 and a 2610. I have configured the routers with the same line code, framing, etc. The WICs are internal. The telco can loopup to the 2610 but not the 3640. I've swapped cables and the internal WIC on the 3640 side. Any recommendations would be greatly appreciated. 3640: 3640#sh int s0/1 Serial0/1 is down, line protocol is down Hardware is DSCC4 with integrated T1 CSU/DSU Internet address is 10.1.2.1/30 MTU 1500 bytes, BW 2048 Kbit, DLY 2 usec, reliability 255/255, txload 1/255, rxload 1/255 Encapsulation PPP, loopback not set Keepalive set (10 sec) LCP Closed Closed: IPCP, CDPCP Last input never, output never, output hang never Last clearing of "show interface" counters 00:07:40 Input queue: 0/75/0 (size/max/drops); Total output drops: 0 Queueing strategy: weighted fair Output queue: 0/1000/64/0 (size/max total/threshold/drops) Conversations 0/0/256 (active/max active/max total) Reserved Conversations 0/0 (allocated/max allocated) 5 minute input rate 0 bits/sec, 0 packets/sec 5 minute output rate 0 bits/sec, 0 packets/sec 0 packets input, 0 bytes, 0 no buffer Received 0 broadcasts, 0 runts, 0 giants, 0 throttles 0 input errors, 0 CRC, 0 frame, 0 overrun, 0 ignored, 0 abort 0 packets output, 0 bytes, 0 underruns 0 output errors, 0 collisions, 1 interface resets 0 output buffer failures, 0 output buffers swapped out 0 carrier transitions DCD=down DSR=up DTR=up RTS=up CTS=down 3640#sh service-module s0/1 Module type is T1/fractional Hardware revision is 0.96, Software revision is 0.2, Image checksum is 0xED22BEC5, Protocol revision is 0.1 Transmitter is sending remote alarm. Receiver has loss of frame, Framing is ESF, Line Code is B8ZS, Current clock source is line, Fraction has 24 timeslots (64 Kbits/sec each), Net bandwidth is 1536 Kbits/sec. Last module self-test (done at startup): Passed Last clearing of alarm counters 00:08:39 loss of signal:0, loss of frame :1, current duration 00:08:29 AIS alarm :0, Remote alarm :0, Module access errors :0, Total Data (last 0 15 minute intervals): 0 Line Code Violations, 0 Path Code Violations 0 Slip Secs, 0 Fr Loss Secs, 0 Line Err Secs, 0 Degraded Mins 0 Errored Secs, 0 Bursty Err Secs, 0 Severely Err Secs, 0 Unavail Secs Data in current interval (493 seconds elapsed): 0 Line Code Violations, 0 Path Code Violations 6 Slip Secs, 456 Fr Loss Secs, 0 Line Err Secs, 0 Degraded Mins 0 Errored Secs, 0 Bursty Err Secs, 0 Severely Err Secs, 493 Unavail Secs Thanks, David Eitel _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
New CCNP
Wanted to pass along a thanks to all of the great posts. I passed my final 2 tests and now have my CCNP. I think I'm going to give the CCDP a try before I head on to the CCIE. _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Route-map
Jacek, You can run BGP, it doesn't matter that your router is only a 2611. What matters is how many routes you receive from your ISP (or from both ISPs as is your case). True, your router might not be too happy getting 97,000+ routes from both ISP's, but who says you need any routes from your ISP.?. Not knowing your true config leaves questions. So let me make some assumptions. Look at this from 4 perspectives. Outbound/Inbound with ISP A and Outbound/Inbound with ISP B. ISP A (Outbound) You could set your default route out to serial 0. This would make ISP A your primary path out. ISP A (Inbound) You don't need any routes from this ISP if it's your default out anyway. Adding another twist, suppose you have a /24. You could advertise a couple /25's to this ISP (if they'll let you), via the BGP that you turn on with them. ISP B (Outbound) You could set another default (weighted) to make ISP B your secondary route out via serial 1. You don't need this ISP to send you routes if they are merely a default route out. ISP B (Inbound) Again, using the example that you have a /24, you could advertise some other /25's to this ISP (if they'll let you). Summary You'll most likely need your own AS. Alot of providers don't like routing to a customer if that customer is multi-homed and doesn't have their own AS. By breaking up the /24 and sending some of it to one provider and some of it to the other provider, you can build in some "resilience" in case one ISP's routing breaks or one of your WAN lines drop. That way, people can always reach atleast some of the networks you have onsite. To further add "resilience", advertise to ISP A the networks your sending to ISP B with heavy weights (AS-Path prepend, Local Pref, etc..keeping in mind that some attributes are Transitive and some are not). That way if ISP B breaks, all of your networks will now be available via ISP A. Do the same for ISP B, advertise your ISP A advertised networks with a larger value so that if ISP A breaks, ISP B can now advertise all of your routes. Hope this helps Chris -Original Message- From: Jacek Malinowski [mailto:[EMAIL PROTECTED]] Sent: Saturday, March 03, 2001 9:27 AM To: [EMAIL PROTECTED] Subject: Route-map I have a big problem with the route-map command. My network looks like : ISP A ISP B | | | | | | --s0--(router 2611)--- s1-- configuration (hypothetical): interface Serial0 ip address 1.1.1.1 255.255.255.0 ! interface Serial1 ip address 100.100.100.100 255.255.255.0 ! interface FastEthernet0 ip address 10.0.0.222 255.255.255.0 secondary ip address 192.168.1.1 255.255.255.0 ip policy route-map POLICY no ip directed-broadcast ! ip classless ip route 0.0.0.0 0.0.0.0 Serial1 no ip http server ! access-list 2 permit 10.0.0.0 0.0.0.255 route-map POLICY permit 10 match ip address 2 set ip next-hop 1.1.1.1 traffic from the network 10.0.0.0 should go through serial 0 and ISP A traffic from the network 192.168.1.0 should go through serial 1 and ISP B. I don't understand how is it possible, that ping from 10.0.0.0 goes through serial 1 and return through serial 0. there is the policy on the ethernet interface. I can't run BGP :( because my router is only 2611 _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Difference between Rendezvous Point ,Designated Router
RTC, I'm studying for my BCMSN right now (test Monday). Coming from an ISP background (high end routers), I'm not used to this "Campus Network" type stuff. I'm reading Karen Webb's Cisco Press book. She mentions DRs in the Multicast section. She states that DRs are elected on Multi-access Segments for both PIM-SM and PIM-DM configurations. She doesn't explain it real deeply (not like you see explanations for the DR/BDR setup of OSPF). But she does say that the routers that are PIM enabled elect the router with the Highest IP address as the DR for the network. In this scenario the DR is responsible for sending out the IGMP query messages. And similar to OSPF, you don't need a DR on point-to-point links. The Rendezvous Point is needed when you configure a router with PIM sparse-mode. Unlike the DR that's used regardless of PIM-SM or PIM-DM. I'm starting to get the feeling that the Rendezvous Point is more important when the hosts that are part of the multicast group are widely spread out through the network. I'd really like to hear from someone experienced with Multicast, my exposure to it is all book-based. This will be the weakest part of my CCNP. Chris -Original Message- From: rtc [mailto:[EMAIL PROTECTED]] Sent: Saturday, March 03, 2001 4:48 PM To: Cisco; CISCO GROUPSTUDY Cc: Cisco; CISCO GROUPSTUDY Subject: Difference between Rendezvous Point ,Designated Router what is the Difference between Rendezvous Point and Designated Router? _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: IPSec, IKE, VPN study resources?
Brian, One of our vendors highly recommended this book: Ipsec: The New Security Standard for the Inter- net, Intranets, and Virtual Private Networks Prentice Hall; ISBN: 0130118982 I picked it up but have not had a chance to read it yet. My list of books to read seems to grow every day. Chris -Original Message- From: Brian Lodwick [mailto:[EMAIL PROTECTED]] Sent: Tuesday, February 27, 2001 11:40 AM To: [EMAIL PROTECTED] Subject: IPSec, IKE, VPN study resources? Group, Can anyone out there help me out. I am trying to find resources for study. I want to get learn as much as possible about IPSec and VPN technology. I would like to see if anyone knows of some good resources to learn more about this kind of stuff -IPSec tunnel and transport modes, Security Associations, ISAKMP\OAKLEY process, The Diffie-Hellman algorithm, and ... What I would really like to find is a book that gets right into the guts of it and goes through it inside and out. I'd also like to learn the history, and where the forefront is trying to push this technology. If anyone knows of any resources they have found helpfull I would really be gratefull for your response. Thanks in advance guys- Brian _ Get your FREE download of MSN Explorer at http://explorer.msn.com _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Private Internet Addressing
As part of this thread, several people have mentioned that one of the problems created is "breaking MTU path discovery." Could someone explain what this means? Thanks -Original Message- From: Howard C. Berkowitz [mailto:[EMAIL PROTECTED]] Sent: Sunday, February 25, 2001 11:21 PM To: [EMAIL PROTECTED] Subject: Re: Private Internet Addressing and the reason an ISP would be considered "clueless" for using RFC1918 on internal point to points is..? Brian Let's see... It confuses troubleshooting because valid routes may appear to be looping, with the same address traversed more than once. The addresses can't be resolved with reverse DNS. It breaks MTU path discovery. It violates the spirit of RFC 2827 and reverse path verification. _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
IP Protocol 89?
In trying to understand OSPF in much more detail, I am reading RFC 2328. Several times Mr. Moy refers to OSPF as " IP Protocol 89". I checked the "RFC/Port Number" page that I reference often (http://www.networksorcery.com/enp/default0301.htm) and found that indeed OSPF is IP Protocol 89. I have not seen this before. Sure, I've worked with TCP/UDP port numbers, but this is the first time I've paid attention to the fact that the protocols themselves have numbers too. This is interesting. Should I look at 89 as a number that can be manipulated as I would 23 (telnet) or 69 (tftp)? Can someone explain where these numbers are used? Are they found in headers? As networkers, are we concerned with these numbers? Does anyone commonly filter based on a protocol's number? Or is getting this granular an exercise in futility for a network engineer? Thanks, Chris _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Trick to pasting in new running-config
If you are using an Access-list you will have to remove it, make your changes and then re-apply. If you are using Prefix-lists you can add your changes by sequence number. Prefix-lists are very cool because you don't have to remove them to make changes. Otherwise, regular changes can be made by going in to "config t" and then paste in your config. Chris -Original Message- From: Jason Swenson [mailto:[EMAIL PROTECTED]] Sent: Friday, February 23, 2001 1:39 PM To: [EMAIL PROTECTED] Subject: Trick to pasting in new running-config Is there a trick to pasting in a new running-config file. I do a sh run then attempt to paste in the new config file from notepad and get the line "^" mark error which means I'm not in the config terminal. What I'm trying to do is update my accesslists without having to redo the whole thing. Can someone tell me where I'm making the mistake or missing something. Jason _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Looking for async modem dialup config for ISP
Modify this to suit your equipment, isp etc. ! version 11.3 service timestamps debug uptime service timestamps log uptime no service password-encryption ! hostname 2520 ! enable secret 5 $1$UUDA$erjWAs69xoDqDLj7APkFO. enable password secret ! ip nat inside source list 100 interface Serial3 overload ip host exmodem 2003 1.1.1.1 chat-script dial ABORT ERROR "" "AT Z" OK "ATDT \T" TIMEOUT 30 CONNECT ! interface Loopback0 ip address 1.1.1.1 255.255.255.255 ! interface Serial0 no ip address shutdown ! interface Serial1 no ip address shutdown ! interface Serial2 no ip address shutdown ! interface Serial3 physical-layer async ip address negotiated ip nat outside encapsulation ppp dialer in-band dialer string 12345678 dialer-group 1 async mode interactive no peer default ip address no cdp enable ppp authentication pap callin if-needed ppp pap sent-username telephone password 7 06510171414F1D18 ! interface Ethernet0 ip address 192.168.5.1 255.255.255.0 ip nat inside no cdp enable ! interface BRI0 no ip address shutdown ! ip classless ip route 0.0.0.0 0.0.0.0 Serial3 ! access-list 100 permit ip 192.168.5.0 0.0.0.255 any dialer-list 1 protocol ip permit ! line con 0 exec-timeout 0 0 line 3 password modem autoselect ppp script dialer dial login modem InOut modem autoconfigure type hayes_optima transport input all stopbits 1 speed 115200 flowcontrol hardware line aux 0 line vty 0 4 password telnet login ! end --- Kane - Original Message - From: "Tina Arena" [EMAIL PROTECTED] To: [EMAIL PROTECTED] Sent: Monday, February 19, 2001 9:35 PM Subject: Re: Looking for async modem dialup config for ISP Hi all, I wonder if Paul Lalonde got an answer for his question below because I'm also looking for something similar. Pls help, anybody ? Paul, I hope you are reading this. Regards I'm looking for an example configuration of async modem dialup from a Cisco router to an ISP. I'd like to get my router connecting to the ISP for test purposes. However, my ISP provides a text-based front end (Xylogics Remote Annex) which requires the username, password, and 'ppp' options to be entered. All of my existing DDR configurations work in a branch-office to central-office arrangement (when the IP address of the destination network router is known). But I can't seem to get dial-on-demand calls placed when the destination network is last resort (0.0.0.0) Any examples would be appreciated. Thanks! Paul _ Get your FREE download of MSN Explorer at http://explorer.msn.com _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Which Router for BGP4 ??
The WAN connection is often the deciding factor for model type. We typically use 2600's for 1 to 2 T1's, 3600's for more than 2 T1's and 7200's for DS3 and above. I know each platform has more options but that's the general baseline we run. As far as running BGP with your ISP, you'll need to consider how many routes you want from the ISP. You can use BGP to advertise your networks to the ISP but that doesn't mean that you have to get your ISP's full BGP route table advertised to you. You can simply use a default route out. If you do want the ISP's full routing table (possibly 96,000+ routes according to Tony's CIDR report), then you'll want atleast 64MB of RAM. You need to take into account the BGP process, the BGP routing table (remember, it has it's own table) and the total IP route table. If you are running something internally (i.e. OSPF) then take that into consideration also when determining how much RAM you'll need. HTH, Chris -Original Message- From: Javier Castillo Alcibar [mailto:[EMAIL PROTECTED]] Sent: Friday, February 09, 2001 3:53 AM To: [EMAIL PROTECTED] Subject: RE: Which Router for BGP4 ?? I think the new 265x with 128 Mbytes is a good choice. -Mensaje original- De: suaveguru [mailto:[EMAIL PROTECTED]] Enviado el: viernes, 09 de febrero de 2001 9:05 Para: John Neiberger; Robert Nelson-Cox; [EMAIL PROTECTED] Asunto: Re: Which Router for BGP4 ?? Is 64mb enough? regards, suaveguru --- John Neiberger [EMAIL PROTECTED] wrote: why not a 3640? I've got BGP running on a 3640 and the router barely knows that it's turned on most of the time. The processor usage is very low and I've had zero problems so far. I do have 128 MB of DRAM, though. That is necessary. From: "John Gesualdi" [EMAIL PROTECTED] Reply-To: "John Gesualdi" [EMAIL PROTECTED] To: "[EMAIL PROTECTED]" [EMAIL PROTECTED] Subject: Which Router for BGP4 ?? Date: Tue, 16 Jan 2001 10:40:18 + I need to run BGP4 with my ISP. Which router would you recommend I purchase? Should I go with a 3620,3640 or a 2650,2651? Thanks. None of the above, unless you want to filter just about everything that's useful. You'll need about 128Meg for the full table IIRC. Why do you *need* to run BGP4? Rob./ -- John A. Gesualdi,CCNP, CCDP [EMAIL PROTECTED] The Providence Journal Company Phone (401)277-8133 Pager (401)785-6938 _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ Get Your Private, Free E-mail from MSN Hotmail at http://www.hotmail.com. _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] ___ Send a cool gift with your E-Card http://www.bluemountain.com/giftcenter/ _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] __ Do You Yahoo!? Get personalized email addresses from Yahoo! Mail - only $35 a year! http://personal.mail.yahoo.com/ _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Ethernet switching
Duh , scrub that it doesn't work , it works really well when your stations are dual homed though ; ) Kane - Original Message - From: "Kane" [EMAIL PROTECTED] To: "Sheahan, Ryan" [EMAIL PROTECTED]; "'Fowler, Joey '" [EMAIL PROTECTED]; [EMAIL PROTECTED] Sent: Thursday, February 01, 2001 9:08 AM Subject: Re: Ethernet switching In this scenario , it would also not matter what ip address you assigned to the stations . ie: you could set one at 10.x.x.x /8 and the other at 192.x.x.x/28 and still get a ping response Kane - Original Message - From: "Sheahan, Ryan" [EMAIL PROTECTED] To: "'Fowler, Joey '" [EMAIL PROTECTED]; [EMAIL PROTECTED] Sent: Thursday, February 01, 2001 5:23 AM Subject: RE: Ethernet switching These are my thoughts, If the switch was right out of the box, the stations could ping each other no matter what subnet mask you were using. The reason being, they are located in the same broadcast domain, vlan1. This is the default vlan for all switched ports at this time. The first station would arp for the other, it would get a response because they are on the same layer 2 broadcast domain and they could speak directly using the switch. Switches by default with no mls, are layer two devices. They have no concept of IP. They make decision based on layer 2 MAC addresses and the ports they are connected to. If these stations were in different vlans, the situation would change. You then have created two broadcast domains and in order for the devices to talk, a router or mls entry would be needed. Someone please correct me if I am wrong. -Original Message- From: Fowler, Joey To: [EMAIL PROTECTED] Sent: 1/31/01 10:52 AM Subject: RE: Ethernet switching Depends on the subnet mask you are using, for instance 142.102.3.1 with a subnet mask of 255.255.0.0 142.102.2.1 also with a subnet of 255.255.0.0 The 2.1 and 3.1 would be on the same subnet, however if you have a different subnet mask I don't think it would work. Joey -Original Message- From: alexs [mailto:[EMAIL PROTECTED]] Sent: Saturday, September 09, 2000 7:42 AM To: [EMAIL PROTECTED] Subject: Ethernet switching Hello everyone, I have a question that probably will sound silly but here it is: Suppose that you take a new 2924 out of the box and you plug in two PC's. You assign address, for example, 142.102.2.1 to the first one and 142.102.3.1 to the second one.There is not any router in this small network.142.102.2.1 tries to ping 142.102.3.1.The question is: will 142.102.2.1 get a reply and why? Thanks alexs _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Cisco Lab Cables
Nigel, "Rooked" is the word , I get similar cables from Hong Kong for that same price per unit + shipping , for 5 units US$26.95 each , if for some reason I wanted 100 the unit cost would be US$19.95. Even at the price I'd bet even money that the HK manufacturers are still laughing... Kane - Original Message - From: "Nigel Taylor" [EMAIL PROTECTED] To: [EMAIL PROTECTED]; [EMAIL PROTECTED] Sent: Wednesday, January 31, 2001 12:09 AM Subject: Re: Cisco Lab Cables John, To share a word I recently learned that explain the prices you've paid for these cables is "rooked". Here's a link apart from my earlier post... http://catalog.symmic.com/viewProduct.cfm?item_id=398076 Nigel. From: John Neiberger [EMAIL PROTECTED] Reply-To: John Neiberger [EMAIL PROTECTED] To: [EMAIL PROTECTED] Subject: Re: Cisco Lab Cables Date: Tue, 30 Jan 2001 15:20:24 -0800 (PST) www.stonewallcable.com is a good place to get them. So far, I haven't found any place that has them cheaper. If anyone knows of a place, please let us know. Where is the best place to purchase cables for back to back configurations etc for cisco equipment? I am working on building a lab and need to start hunting these down. Thanks Tim _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] ___ Send a cool gift with your E-Card http://www.bluemountain.com/giftcenter/ _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ Get your FREE download of MSN Explorer at http://explorer.msn.com _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: using an AS5300 as a PC's modem
There is a cisco utility that will allow you to do this , It is ostensibly for '95,'98 NT4 , but I have successfully used it with Win2k. I don't think Cisco supports it any longer but you can download a copy from : http://www.asiaonline.net.nz/custserv/helpdesk/sysadmin.html Rgrds - Original Message - From: [EMAIL PROTECTED] To: [EMAIL PROTECTED] Sent: Saturday, January 27, 2001 9:34 AM Subject: using an AS5300 as a PC's modem Is there anyway to have a Windows 2000 professional machine use one of the MICA modems on a Cisco AS5300 as a local modem? I can of course, remote telnet to the modem, and connect to a shell account, but I have a user that needs a PPP connection to do outside development testing, and I'm trying to avoid having to give them a modem and phone line of their own. Henry Malmgren Network Engineer TManage Inc. (512) 794-6531 [EMAIL PROTECTED] www.tmanage.com By the way, our legal department wants me to tell you that: Privileged/confidential information may be contained in this message. It is not for use or disclosure outside TManage without a written proprietary agreement. If you are not the addressee indicated in this message, or agent responsible for delivery, you may not copy or deliver this message to anyone. Please notify the sender as soon as possible and immediately destroy this message and its attachments in its entirety. You can't say I didn't warn you _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Compression and OSPF
I notice that people often use the terms "cost" and "metric" interchangeably. Are they one in the same? Chris -Original Message- From: Howard C. Berkowitz [mailto:[EMAIL PROTECTED]] Sent: Wednesday, January 24, 2001 1:24 PM To: [EMAIL PROTECTED] Subject: Re: Compression and OSPF Group, In an environment where you have 2, 56K links to a destination, but one of the links has compression enabled, would OSPF assign a different cost to the link with the compression algorithm enabled on it or would it assign equal cost to both links since they are essentially are both the same bandwidth? By default, it will assign equal costs. Remember, though, that the OSPF specification doesn't define any meaning of cost. Much of the industry has chosen to use bandwidth-based cost, but you are describing exactly the sort of situation where manually assigned costs may be appropriate. Also how do you enable encryption on a link and still benefit from a compression algorithm? Brian You don't. Good encryption should remove all redundancy, so compression can't do anything with it. You may, however, get benefit from compressing before encrypting, especially at an application level. _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: dialer idle-timeout and dialer fast-idle commands
Dialer idle-timeout Sets the time that the line can remain idle before it is disconnected. Default being 120 seconds. This means that if Site A just made a call to the Corporate HQ, sent it's traffic and now has nothing left to send, the line will remain up for 120 seconds in case some more traffic is destined for Corporate HQ. This saves time in having to establish another call to Corporate HQ. Dialer fast-idle Sets the time that a line can remain idle before the current call is disconnected to allow another call that is waiting to use the line. Default is 20 seconds. So, in keeping with my first example. Site A made a call to Corporate HQ, sent all it's traffic and has the line still up with Corporate HQ. Now Site A needs to place a call to Site B, but it's line is tied up, sitting on idle to Corporate HQ. Fast-idle will force the Corporate HQ call to drop so that it can re-use the line to call Site B. Chris -Original Message- From: Barbara Cobbina [mailto:[EMAIL PROTECTED]] Sent: Friday, January 19, 2001 4:31 AM To: [EMAIL PROTECTED] Subject: dialer idle-timeout and dialer fast-idle commands Can anyone tell me the difference between these two dialer commands ? Explanation given in the BCRAN course notes make the two appear to me as serving the same purpose. Cheers BABS __ Do You Yahoo!? Get email at your own domain with Yahoo! Mail. http://personal.mail.yahoo.com/ _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]