Re: Frame relay ppoint vs. multi
If you do a search on Cisco's site, it explains why this is happening... The thing is, if you ping your own interface, the icmp reply that you get from it is actually coming from the neighboring device... ie, mapped by the dlci that is why on a point-to-point interface, there is only one neighbor and it knows to send the reply back. On a multipoint interface, you can have multiple neighboring routers and it won't know which one will reply to the icmp packet sent. Kenneth Ken Vandenbark <[EMAIL PROTECTED]> wrote in message 009a01c08ec0$06a64980$0a0a18ac@kvandenbark">news:009a01c08ec0$06a64980$0a0a18ac@kvandenbark... > What's difference? Why can you not ping my own multipoint interface but > if it is a point to point is does work? See below > =20 > interface Serial1 > no ip address > encapsulation frame-relay > ! > interface Serial1.1 multipoint > ip address 10.1.1.1 255.255.255.252 > frame-relay interface-dlci 110 > ! > router igrp 10 > network 10.0.0.0 > 1 > commserver#ping 10.1.1.1 > =20 > Type escape sequence to abort. > Sending 5, 100-byte ICMP Echos to 10.1.1.1, timeout is 2 seconds: > . > Success rate is 0 percent (0/5) > = > > -- > interface Serial0 > no ip address > encapsulation frame-relay > no fair-queue > ! > interface Serial0.1 point-to-point > ip address 10.1.1.1 255.255.255.252 > frame-relay interface-dlci 110 =20 > ! > interface Serial1 > no ip address > encapsulation frame-relay > shutdown > ! > router igrp 10 > network 10.0.0.0 > ! > =20 > commserver#ping 10.1.1.1 > =20 > Type escape sequence to abort. > Sending 5, 100-byte ICMP Echos to 10.1.1.1, timeout is 2 seconds: > ! > Success rate is 100 percent (5/5), round-trip min/avg/max =3D = > 112/116/128 > ms > > _ > FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] > _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: from NBMA to BMA
I believe this is most useful when you're using ospf to allow neighbors to discover each other dynamically using multicast packets. "Pierre-Alex" <[EMAIL PROTECTED]> wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > I have router A with serial2 configured with multipoint subinterfaces. > Router A is the hub, 10.17.0.2, 107.17.0.3 and 10.17.0.4 are the spokes. > > > interface serial2.2. multipoint > ip address 10.17.0.1 255.255.255.0 > bandwidth 64 > frame-relay map ip 10.17.0.2 120 broadcast > frame-relay map ip 10.17.0.3 130 broadcast > frame-relay map ip 10.17.0.4 140 broadcast > > What has the broadcast statement accomplished? (Changed the behavior of > Router A from NBMA to BMA?) > > > from ICND page 14-30 > > _ > FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] > > _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Frame Relay Split Horizon NBMA
link state protocols sends out status of each link and calculates the best route according to the lists of all links so it doesn't need split horizon because the algorithm ran on the link state database will prevent loops in itself. "Pierre-Alex" <[EMAIL PROTECTED]> wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > On page 14-27 on the Cisco ICND manual, it is written that one will have > reachability issues if one is using: > > *a distance vector routing protocol > *partial meshed network > *NBMA frame relay model > *split horizon enabled on the routing protocol. > > My understanding is that split horizon will prevent routes to be adverstised > on the same interface from which they were learned. This should apply > regardless of whether the routing protocol is using broadcastd (distance > vector), multicasts or unicasts (link state and hybrid routing protocols)! > > Am I missing something? > > _ > FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] > _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Favorite Network Sniffer
I use Network Instruments' Observer Suite 7.0 "Russell Frame" <[EMAIL PROTECTED]> wrote in message 95ct9j$fgl$[EMAIL PROTECTED]">news:95ct9j$fgl$[EMAIL PROTECTED]... > What's your favorite network sniffer/analyzer? > > > _ > FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] > _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Has anyone purchase cables from this company before?
I have from ebay, they used to sell at ebay... very pleasant people to deal with. I've bought 4 cables from them and they're fast with the shipping, too. It is funny though that they also sell lingerie. fartcatcher <[EMAIL PROTECTED]> wrote in message 95fhak$6e9$[EMAIL PROTECTED]">news:95fhak$6e9$[EMAIL PROTECTED]... > http://catalog.symmic.com/viewProduct.cfm?item_id=398076 > > They sell db60 DTE/DCE cables and lingerie(?). I have 2 2509s and a 2503 that > I wold like to setup a lab with and I need the db60 cables. > > Anyone ordered from them before? > > Thanks, > fartcatcher. > > _ > FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] > _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: BCMSN Book Recommendation??
get the BCMSN book from Cisco press and CCIE Development: Cisco Lan Switching. "AndyD" <[EMAIL PROTECTED]> wrote in message 95ld6g$3mp$[EMAIL PROTECTED]">news:95ld6g$3mp$[EMAIL PROTECTED]... > Can someone please recommend a good study guide for the BCMSN test?? > > Thanks! > > > _ > FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] > _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: ip directed broadcast
it would be pretty helpful, though, for Bootp Relaying to an entire subnet using directed broadcast as opposed to a specific BOOTP Address... Gil Shulman <[EMAIL PROTECTED]> wrote in message D528DF24AEBCD311A17700508B92CBBF102086@NEWMAN">news:D528DF24AEBCD311A17700508B92CBBF102086@NEWMAN... > Hi, > >The removal of directed-brooadcasts is one of the security messures that > is being taken place on the router. > The IP directed broadcast is a datagram which is sent to the broadcast > address of a subnet to which the sending machine is not directly attached. > The directed broadcast is routed through the network as a unicast packet > until it arrives at the target subnet, where it is converted into a > link-layer broadcast. > The directed-broadcasts arp being used in the extremely common and popular > "smurf" denial of service attack, and can also be used in related attacks. > > > I hope it helps > > > Gil > > > -Original Message- > From: Howard C. Berkowitz [mailto:[EMAIL PROTECTED]] > Sent: ??? ??? 05 ?? 2001 06:13 > To: [EMAIL PROTECTED] > Subject: Re: ip directed broadcast > > > >hi all > > > >anyone knows why no ip directed broadcast is always > >set for any interfaces? > > > > > >regards, > > > >suaveguru > > > RFC 2644 Changing the Default for Directed Broadcasts in Routers. D. > Senie. August 1999. (Format: TXT=6820 bytes) (Updates RFC1812) (Also > BCP0034) (Status: BEST CURRENT PRACTICE) > > _ > FAQ, list archives, and subscription info: > http://www.groupstudy.com/list/cisco.html > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] > > _ > FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] > _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: 2620 and load balancing
if you're doing loadbalancing / redundancy for incoming traffic then you're going to have to go with BGP. If incoming redundancy is not important, you can use two static routes as Karl has mentioned. Moahzam Durrani <[EMAIL PROTECTED]> wrote in message ED49D16A9BE4D41189C000104B2E399864BC1F@sj-exchange">news:ED49D16A9BE4D41189C000104B2E399864BC1F@sj-exchange... > well most of the traffic is out going for internet use. We get to other > corporate sites by frame relay on a seperate router. However we will be > shortly be introducing OUTLOOK WEB access on one of our DMZ's so users could > access their corporate mail through the internet, Pix will be doing all the > filtering and security. > Thanks.. > Mo Durrani > IS&T > WYSE\EDS > phone:408-473 1246 > [EMAIL PROTECTED] > [EMAIL PROTECTED] > > > -Original Message- > From: John Neiberger [mailto:[EMAIL PROTECTED]] > Sent: Thursday, February 08, 2001 3:00 PM > To: [EMAIL PROTECTED] > Cc: [EMAIL PROTECTED] > Subject: Re: 2620 and load balancing > > > True load balancing in this situation is actually pretty difficult to > achieve, especially if you're trying to balance incoming traffic. > > Is this connection for incoming access to your services, or is it internet > access for internal users? > > Since you're not running BGP, and therefore not advertising your own prefix, > and also since the other ISP connection is not active, I'm going to assume > that this is for outgoing access. > > In this case, the bulk of your traffic is incoming web response traffic. > You could try using equal weight static routes, one for each connection. > That would probably accomplish your objective without the added hassle of > running BGP. > > If you have internal services that you want to advertise to the rest of the > world, then you most likely need to use BGP. But then you need to get at > least a /24 assigned from one of your ISPs and this isn't always an easy > task. Then, you have to apply for your own autonomous system number. Then > you should figure out RPSL and register your system and prefix information > in the Internet Routing Registry. > > And that's just for starters! :-) I would seriously consider just using > static routes, if possible. > > Oh, another option is this: check out the Fatpipe Xtreme at > www.fatpipeinc.com. It's a piece of hardware designed to do exactly what > you're thinking about doing, without having to make any extra router > configuration. I don't know much more than that, but we have one of their > reps coming to meet with us next week. If the product turns out to be > really cool, I'll post a report of the meeting. > > HTH, > John > > > > > If I have two T1'S from different ISP'S and connect them to my 2620, How > do > > I load balance the traffic.Am I thinking of implementing BGP?. At the > moment > > I am just using 1 ISP and keeping the other in standby.I would like to use > > both together and load balance my traffic. We tried it with both TI'S > > wortking to gether but packets were being loss, latency decreasing and all > > sorts of other funky things such as some users could get to some sites and > > others couldnt. Also will it make a differnce if one ISP requires us to > use > > NAT . > > > > Mo Durrani > > IS&T > > WYSE\EDS > > phone:408-473 1246 > > [EMAIL PROTECTED] > > [EMAIL PROTECTED] > > > > > > _ > > FAQ, list archives, and subscription info: > http://www.groupstudy.com/list/cisco.html > > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] > > > Find the best deals on the web at AltaVista Shopping! > http://www.shopping.altavista.com > > _ > FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] > _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: OSPF authentication
Posting your config would be a lot of help "Hubert Pun" <[EMAIL PROTECTED]> wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > I have the two statements on my routers: > ip ospf message-digest-key 1 md5 cisco > area 0 authentication message-digest > It works on routers A and B, but does not work on routers C, D. > > So I wonder that anyone have known that there is some problem with some > of the software that does not support OSPF authentication. > > both routers C and D are Cisco 2500 with version 11.3 > > Thanks > Hubert > > > _ > FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] > _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: loadbalancing with NIC's
The 6509 will see it as 2 separate MAC addresses. Based on my conversation with Ipmetrics engineer (i think it was them) the way it functions is this: Server A has ip 192.168.1.5 The NIC that is capable of loadbalancing maintains two unique MAC addresses. Everytime a client generates an arp request, it gives out MAC Address 1 When Another client generates an arp request, it gives out MAC address 2 It does this by doing a round-robin Based on this, incoming requests are done via static load-balancing, meaning, there is a static mapping of client-MAC to server-MAC. In case of a large network, statistically, this will provide an equal load on both ports. The switch will not use STP to block ports since there are two different MAC address on two different ports. Hope this helps! Kenneth Lorenzo Moahzam Durrani <[EMAIL PROTECTED]> wrote in message ED49D16A9BE4D41189C000104B2E399864C08D@sj-exchange">news:ED49D16A9BE4D41189C000104B2E399864C08D@sj-exchange... > > We are planning to connect a server with a single NIC that supports > faultolerance , redudndancy and load balancing. How does a C6509 treat a > Nic that is connected to two of its ports (same vlans) > Mo Durrani > IS&T > WYSE\EDS > phone:408-473 1246 > [EMAIL PROTECTED] > [EMAIL PROTECTED] > > > _ > FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] > _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Switching exam
I used cisco lan switching. read the dense and sparse mode... and the conversion of multicast ip to its layer 2 address Fears Michael S SSgt 18 CS/SCBT <[EMAIL PROTECTED]> wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > I'm taking the switching exam soon. I've read the BCMSN courseware book and > have lots of hands-on experience. However, I have not done any multicast > configurations in the real world. Is multicasting hit pretty hard on the > exam? Anyone have any good references for the subject? Thanks, Fears > > _ > FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] > _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: alternative to Cisco routers
You obviously can't do layer 3 SWITCHING with a box loaded with Linux. It might do routing but definitely can't be used in an enterprise nor an ISP. anthony kim <[EMAIL PROTECTED]> wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > This is all well and good for the big time players, ISPs, big corps > yadda yadda yadda, and companies with cash to burn like so much old toilet > paper. The Small and Midsized Business market (SMB) almost always can > accomplish what they want with free Unix or Linux for layer 3 and > cheap stackable switches with or without 802.1q support. > > So my obligatory cisco alternative: > www.zebra.org > > On Tue, Feb 13, 2001 at 04:00:36PM -0600, William E. Gragido wrote: > >There ServerIronXL Layer 4-7 switches are pretty cool boxes as well. > >Foundry is also pretty nice in that their command line interface is awfully > >reminiscent of Cisco's. The transition from one to the other should not be > >too difficult. > > > >-Original Message- > >From: Christopher Kolp [mailto:[EMAIL PROTECTED]] > >Sent: Tuesday, February 13, 2001 3:41 PM > >To: 'Brant Stevens'; 'William E. Gragido'; 'Howard C. Berkowitz'; > >[EMAIL PROTECTED] > >Subject: RE: alternative to Cisco routers > > > > > >Foundry prices are killer and the performance is top notch. > > > >We're planning a roll out with 40 OC-12 POS. Guess who our preferred > >provider is? > > > >None other than foundry. > > > >-ck > > > > > > > >-Original Message- > >From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of > >Brant Stevens > >Sent: Tuesday, February 13, 2001 4:28 PM > >To: William E. Gragido; 'Howard C. Berkowitz'; [EMAIL PROTECTED] > >Subject: RE: alternative to Cisco routers > > > > > >Not to mention Foundry... > > > >Brant I. Stevens > >Internetwork Solutions Engineer > >Thrupoint, Inc. > >545 Fifth Avenue, 14th Floor > >New York, NY. 10017 > >646-562-6540 > > > >-Original Message- > >From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of > >William E. Gragido > >Sent: Tuesday, February 13, 2001 2:47 PM > >To: 'Howard C. Berkowitz'; [EMAIL PROTECTED] > >Subject: RE: alternative to Cisco routers > > > > > >Riding on the coat tails of Howard's comments, there are also other players > >out there like Lucent(home of the Nexibit N64000 Terabit Switch Router and > >the Ascend product lines), Avici, Charlette's Web, Nortel etc., that offer > >carrier grade solutions. > > > >-Original Message- > >From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of > >Howard C. Berkowitz > >Sent: Tuesday, February 13, 2001 1:20 PM > >To: [EMAIL PROTECTED] > >Subject: Re: alternative to Cisco routers > > > > > >A few comments, in which I think I am being reasonably objective. > > > >On this list, people periodically speak of the joys of Cisco, because > >it offers end-to-end solutions. That is a very enterprise-oriented > >view. > > > >Much more than in the enterprise space, carriers/ISPs tend to _want_ > >multivendor solutions. There are several reasons. They are > >protected, to some extent, from bugs in the hardware or software of a > >specific implementation. Next, if they have several qualified > >vendors, they can get some protection against delivery backlogs from > >one of them. The larger provider also can play competitive discount > >and service games with the vendors. > > > >In this market, Juniper has the advantage of having built a product > >as carrier-oriented from the ground up. There's a lot of bloat in IOS > >due to the perception or need for legacy, usually > >enterprise-oriented, features. Independent reviewers, such as the > >Tolly group, have indicated that Junipers may have as good or better > >throughput than equivalent Cisco products. > > > >No one vendor owns the entire carrier router space. Cisco's > >advertising that ninety-some percent of the traffic in the internet > >goes over the equipment of one company doesn't necessarily mean the > >core bandwidth, but that the traffic at some point hits an enterprise > >or carrier Cisco device. In any case, I prefer the variant of this > >slogan I saw in someone's .sig (hoping I don't hit a filter) > >"ninety-some percent of the p*rn*graphy in the Internet goes through > >the equipment of one company." Said comment could be equally true of > >Cisco's routers or Nortel's optics. > > > >Juniper and Cisco both make fine products. > > > > > >>John, > >> > >>I went to a BGP study session and the instructor said that major ISP use > >>Juniper router to run BGP. Hope this help. PEACE > >> > >> > >>Raheem > >> > >> > >>>From: John Chambers <[EMAIL PROTECTED]> > >>>Reply-To: John Chambers <[EMAIL PROTECTED]> > >>>To: [EMAIL PROTECTED] > >>>Subject: alternative to Cisco routers > >>>Date: Tue, 13 Feb 2001 08:09:59 -0500 > >>> > >>>Anyone who have experience with Juniper routers would like to comment on > >>>its performance (M20 and 40 > >>>series) in comparison to
Re: alternative to Cisco routers
I don't think Cisco, in any way, will beat a Linux box in pricing. As far as performance go, if you look at it in an objective way, the advantage of a cisco router wouldn't matter that much for a company of under 100 people. I love Cisco but there is a time and a place when it comes to implementing their solution. In fact, Foundry switches that I had tested kicked their butt but we ended up going with a Cisco switch because my boss "knows" the Cisco reputation. Being an engineer, I can only give him facts and figures and its up to the people signing the checks to decide who they want to go for. "dre" <[EMAIL PROTECTED]> wrote in message 96eh3k$qgn$[EMAIL PROTECTED]">news:96eh3k$qgn$[EMAIL PROTECTED]... > > "anthony kim" <[EMAIL PROTECTED]> wrote in message > [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > > > And finally, I disagree with regard to cost. You can't get a 3640 > > with 128MB DRAM for under a thousand. Ok, *maybe* you can snag a used > > one cheap, perhaps cut a deal somewheres, but I did not intend this > > to be a MY OS is better than IOS war. Let's not go there. > > You can get Cisco equipment through VAR's or resellers > on a leased line of credit. This may be cheaper than > purchasing PC hardware (especially PC-related Networking > or Telecommunications hardware) at retail costs. > > This is the standard method that most small-to-medium businesses > and almost all enterprise-sized businesses finance their options. > > I don't have a problem with discussing other possibilities. I have > a problem with Linux zealots recommending products to businesses, > which sounds like the camp that you are from. > > -dre > > > _ > FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] > _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: alternative to Cisco routers
A router is a device that routes layer 3 packets. Doesn't matter if it's fast or slow, reliable or not. John Nemeth <[EMAIL PROTECTED]> wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > On May 31, 8:23pm, anthony kim wrote: > } --- John Nemeth <[EMAIL PROTECTED]> wrote: > } > On Jul 7, 4:07am, "Fowler, Robert J." wrote: > } > } > } > } However it might be a good choice for someone who is building a > } > home lab. It > } > } is much cheaper to piece together some computers and throw zebra > } > on it than > } > } to buy several routers. I've never used Zebra but it sounds like > } > if you had > } > } some existing equipment and wanted to expand on that, couldn't > } > afford to buy > } > } another router but had some old PC's it would be the way to go, > } > since > } > } speed/reliability wouldn't be a real factor in a home lab. Any > } > thoughts? > } > > } > Although, you may learn something about the protocols, you > } > won't > } > learn anything about real routers. You definitely need to get > } > hands on > } > with real routers. Zebra could be used to simulate a secondary > } > router > } > in a multi-router experiment, but it isn't sufficient by itself. > } > } Is a real router a device which routes layer 3 packets? Or a device > } "specifically designed" to route layer 3 packets. Your statement > } implies the latter. Whereas I believe the former. > > The latter. A PC make be able to route packets, but that doesn't > make it a real router. The hardware device is going to be faster > (especially at the high end), more reliable, require much less > maintenance (which makes it cheaper in the long run), and easier to > install and setup (not to mention take up far less space). I'm a huge > fan of UNIX and will tend to run just about everything on UNIX systems, > but even I realise that UNIX host based systems are not the correct > solution for every problem. > > } You *will* learn about real routers because the pc is a real router. > } You may *not learn* anything about IOS or $VENDOR's routers. > > That is the purpose of getting Cisco certs... > > }-- End of excerpt from anthony kim > > _ > FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] > _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: alternative to Cisco routers
You can go into www.pulltheplug.com and the owner has a list of addresses that you can telnet to and one of them is a Unix box running Olive (JunOS) or you can telnet to: olive.labs.pulltheplug.com login as guest and password as guest anthony kim <[EMAIL PROTECTED]> wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > > --- Mark Nguyen <[EMAIL PROTECTED]> wrote: > > > > On a related note, in my home lab I have 25xx's and Olives (PC with > > JunOS, based on a unix kernel). I can easily bring the 25xx's to > > its > > knees while not even breaking a sweat on the Olives. I heard > > rumors > > that Olives are equivalent to 4700's, but I have not confirmed that > > in > > testing. > > > > -- > > Mark Nguyen > > Juniper Networks > > Senior Network Engineer > > Eastern Region IT/POC > > Mark > > Pardon my Juniper ignorance. What is an Olive and how much do they > cost? > > > > __ > Do You Yahoo!? > Get personalized email addresses from Yahoo! Mail - only $35 > a year! http://personal.mail.yahoo.com/ > > _ > FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] > _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Ip default route
If you have ip routing disabled, then ip default-gateway will work. It is mostly used to configure the default-gateway for switches rather than for routers even if the command is available on routers. birs <[EMAIL PROTECTED]> wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > Hello > > It might sound trivial, but can anyone explain the difference between: > > ip default-gateway 10.0.1.1 > > and > > ip route 0.0.0.0 0.0.0.0 10.0.1.1 > > > Thanks > > Birsen Ozturk > > > _ > FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] > _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: alternative to Cisco routers
Switching generally refers to forwarding done by ASICS rather than software so yes, it's the performance "Peter Van Oene" <[EMAIL PROTECTED]> wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > How is current layer 3 switching any different from routing? I believe your concern would lie with forwarding performance? > > *** REPLY SEPARATOR ******* > > On 2/14/2001 at 10:43 PM Kenneth wrote: > > >You obviously can't do layer 3 SWITCHING with a box loaded with Linux. It > >might do routing but definitely can't be used in an enterprise nor an ISP. > > > >anthony kim <[EMAIL PROTECTED]> wrote in message > >[EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > >> This is all well and good for the big time players, ISPs, big corps > >> yadda yadda yadda, and companies with cash to burn like so much old toilet > >> paper. The Small and Midsized Business market (SMB) almost always can > >> accomplish what they want with free Unix or Linux for layer 3 and > >> cheap stackable switches with or without 802.1q support. > >> > >> So my obligatory cisco alternative: > >> www.zebra.org > >> > >> On Tue, Feb 13, 2001 at 04:00:36PM -0600, William E. Gragido wrote: > >> >There ServerIronXL Layer 4-7 switches are pretty cool boxes as well. > >> >Foundry is also pretty nice in that their command line interface is > >awfully > >> >reminiscent of Cisco's. The transition from one to the other should not > >be > >> >too difficult. > >> > > >> >-Original Message- > >> >From: Christopher Kolp [mailto:[EMAIL PROTECTED]] > >> >Sent: Tuesday, February 13, 2001 3:41 PM > >> >To: 'Brant Stevens'; 'William E. Gragido'; 'Howard C. Berkowitz'; > >> >[EMAIL PROTECTED] > >> >Subject: RE: alternative to Cisco routers > >> > > >> > > >> >Foundry prices are killer and the performance is top notch. > >> > > >> >We're planning a roll out with 40 OC-12 POS. Guess who our preferred > >> >provider is? > >> > > >> >None other than foundry. > >> > > >> >-ck > >> > > >> > > >> > > >> >-Original Message- > >> >From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of > >> >Brant Stevens > >> >Sent: Tuesday, February 13, 2001 4:28 PM > >> >To: William E. Gragido; 'Howard C. Berkowitz'; [EMAIL PROTECTED] > >> >Subject: RE: alternative to Cisco routers > >> > > >> > > >> >Not to mention Foundry... > >> > > >> >Brant I. Stevens > >> >Internetwork Solutions Engineer > >> >Thrupoint, Inc. > >> >545 Fifth Avenue, 14th Floor > >> >New York, NY. 10017 > >> >646-562-6540 > >> > > >> >-Original Message- > >> >From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of > >> >William E. Gragido > >> >Sent: Tuesday, February 13, 2001 2:47 PM > >> >To: 'Howard C. Berkowitz'; [EMAIL PROTECTED] > >> >Subject: RE: alternative to Cisco routers > >> > > >> > > >> >Riding on the coat tails of Howard's comments, there are also other > >players > >> >out there like Lucent(home of the Nexibit N64000 Terabit Switch Router > >and > >> >the Ascend product lines), Avici, Charlette's Web, Nortel etc., that > >offer > >> >carrier grade solutions. > >> > > >> >-Original Message- > >> >From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of > >> >Howard C. Berkowitz > >> >Sent: Tuesday, February 13, 2001 1:20 PM > >> >To: [EMAIL PROTECTED] > >> >Subject: Re: alternative to Cisco routers > >> > > >> > > >> >A few comments, in which I think I am being reasonably objective. > >> > > >> >On this list, people periodically speak of the joys of Cisco, because > >> >it offers end-to-end solutions. That is a very enterprise-oriented > >> >view. > >> > > >> >Much more than in the enterprise space, carriers/ISPs tend to _want_ > >> >multivendor solutions. There are several reasons. They are > >> >protected, to some extent, from bugs in the hardware or software of a > >> >specific imple
Re: PIX and NAT with VPN
I'm totally foreign to PIX but I'm just wondering, maybe it's possible to use policy-based routing on PIX? "Rick Holden" <[EMAIL PROTECTED]> wrote in message 002001c097b6$60c466a0$[EMAIL PROTECTED]">news:002001c097b6$60c466a0$[EMAIL PROTECTED]... > I have a PIX firewall that is being used for a VPN as well. The problem is > all the inside addresses are being translated to public addresses even when > the traffic is destine for the VPN tunnel. I tried the following commands > but this seems to block all translations. > (real IPs have been replaced for security) > > access-list nonat permit ip 192.168.2.0 255.255.255.0 192.168.1.0 > 255.255.255.0 > nat (inside) 0 access-list nonat > global (outside) 1 172.16.10.1 net 255.255.255.255 > > I also tried using DENY in the access list > access-list nonat deny ip 192.168.2.0 255.255.255.0 192.168.1.0 > 255.255.255.0 > This didn't work either. > > How can I can the traffic destined for the Internet to be translated and the > traffic destined for the VPN not be translated? > > _ > FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] > _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Looped
If this equipment is attached to an external CSU/DSU, you might have loopback set on that equipment. "Thomas" <[EMAIL PROTECTED]> wrote in message 96qjjv$94a$[EMAIL PROTECTED]">news:96qjjv$94a$[EMAIL PROTECTED]... > Hi All - I am bringing up a frame circuit from a remote site. However, I > couldn't get the line up since it is looped. When I do the "show int s0/0", > I got "Protocol is up, line is down (looped). I checked all the setting and > didn't see any wrong. Can this be a mistake on the ISP side, or something > wrong with my configuration? I am running 12.1 on the Cisco 2600 router. > Any hint woule be appreciated!!! > > > _ > FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] > _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: used 2503 for $700 ?
pretty good. About the same price i paid for at ebay. <[EMAIL PROTECTED]> wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > Hi just one question dose a used 2503 worth $700? Cause I would like to buy > it if its OK. > > Thanks in advance > > Tarry. > > -- > Sent through GMX FreeMail - http://www.gmx.net > > _ > FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] > _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Equal cost switching
Jason is right. This will defeat the purpose of Spanning Tree of creating a single path to a destination. The primary reason this was designed was to prevent broadcast loops. If you want to force it to use 2 paths to one destination, use port-channelling which statically load-balances traffic going out of two ports. Statically meaning it creates a list of source-destination MAC address pairs and these pair will communicate from a specific port configured to be part of the port-channel. This is in contrary to Dynamic load-balancing where each packet will go out of each port of the port-channel. With this in mind, if 4 ports are configured for 100 Mbps full-duplex port-channels, this doesn't mean it provides an 800Mbps link. "AndyD" <[EMAIL PROTECTED]> wrote in message 96p2uk$rt5$[EMAIL PROTECTED]">news:96p2uk$rt5$[EMAIL PROTECTED]... > Spanning tree is supposed to choose the one best switched path. But if you > set up two equal cost paths, will it use both? Is there a way to force it > to use the bandwidth from both paths? > > Thanks! > > > _ > FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] > _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Equal cost switching
I don't think you can put a single port on two VLANS unless you configured trunking if my memory serves me right. with Per VLAN spanning tree a particular switch can belong to multiple instances of spanning tree and in each spanning tree instance, it might be acting as a root bridge, some ports might be in blocking mode or forwarding depending on what VLAN it belongs, too. I believe the design that you had drawn shows the access layer switches are trunking to Switch A and B to provide redundancy in case of failure in switch A or B. Also, each switch in the access layer can run up to 2 instances of spanning tree on each VLAN which are carried through the trunk ports only if Cisco switches are used. Link: http://www.cisco.com/univercd/cc/td/doc/product/lan/cat5000/rel_5_2/config/s pantree.htm#xtocid2879614 Priscilla Oppenheimer <[EMAIL PROTECTED]> wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > > >- Original Message - > >From: AndyD <[EMAIL PROTECTED]> > >Newsgroups: groupstudy.cisco > >To: <[EMAIL PROTECTED]> > >Sent: Sunday, February 18, 2001 8:58 AM > >Subject: Equal cost switching > > > > > Spanning tree is supposed to choose the one best switched path. But if > >you > > > set up two equal cost paths, will it use both? > > No, I don't think so. > > > Is there a way to force it > > > to use the bandwidth from both paths? > > Cisco lets you implement one spanning-tree per VLAN. So with redundant > links and VLANs, you can accomplish what you want. I can't remember exactly > how it works, but I think you put every port in two VLANs. I talked about > this in my book, Top-Down Network Design, and you can see the figure for > the design here: > > http://www.priscilla.com/topdownupdates.html > > Hope this helps a bit. Maybe somebody else remembers more details. (I > didn't get into the details in my book, and now I've forgotten them! &;-) > > Priscilla > > > > > > > Thanks! > > > > > > > > Priscilla Oppenheimer > http://www.priscilla.com > > _ > FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] > _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Cisco 4000 error message..
seems like something's wrong with the IOS image. It happened to me one time when I uploaded an incompatible IOS. Since you never touched it, it might be best to reload a fresh copy of IOS image into the flash. "Stull, Cory" <[EMAIL PROTECTED]> wrote in message 0D7A05A19CE4D211BD050008C7330FE7259050@CCUPDC">news:0D7A05A19CE4D211BD050008C7330FE7259050@CCUPDC... > Has anyone seen this below error message? My Cisco 4000 was working fine > for a long time and then all of a sudden failed... no changes have been made > it...I've been researching it on Cisco but can't find any good info.. > I'm thinking maybe my flash is bad?I already tried loading a new image > (erased flash) and that didn't help. > > thanks for your help.. > Cory > > > Error : compressed image checksum is incorrect 0x30EAA646 > > Expected a checksum of 0x30EA3646 > > > > Exception: Software forced crash at 0x1211e (PC) > > > > System Bootstrap, Version 4.6(4), SOFTWARE > > Copyright (c) 1986-1993 by cisco Systems > > 4000 processor with 16384 Kbytes of memory > > > > Unknown or ambiguous service arg - udp-small-servers > > Unknown or ambiguous service arg - tcp-small-servers > > Bad interface specification > > No interface specified - IP address > > Bad interface specification > > No interface specified - IP address > > Bad interface specification > > No interface specified - IP address > > Bad interface specification > > No interface specified - IP address > > Bad interface specification > > No interface specified - IP address > > Bad interface specification > > No interface specified - IP address > > Illegal IP keyword - classless > > Booting c4000-j-mz.112-24.bin from flash memory > > RRR] > > F3: 8852+3701831+165008 at 0x12000 > > > > Error : compressed image checksum is incorrect 0x30EAA646 > > Expected a checksum of 0x30EA3646 > > > > Exception: Software forced crash at 0x1211e (PC) > > > > System Bootstrap, Version 4.6(4), SOFTWARE > > Copyright (c) 1986-1993 by cisco Systems > > > > Cory R. Stull > > MCSE, CCNP, CCDP, BNCS > > Communications Concepts Unlimited > > 262-814-7214 > > > > > > _ > FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] > _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Creating Multiple Interfaces on an Ethernet Port
The only way you can create subinterfaces on fastethernet ports is when you use encapsulation such as dot1q or isl. Otherwise, the router will tell you that you can't. "Chris Wornell" <[EMAIL PROTECTED]> wrote in message 00a701c09ad6$aee4e850$20c956d8@jabooty">news:00a701c09ad6$aee4e850$20c956d8@jabooty... > Hello, > > I've found out you can't create multiple interfaces on an ethernet port > apparently. I was wondering why this is exactly? I know you can accomplish > the same on serial lines using pvc's but it seems odd you can't do it on > ethernet. I know there are ethernet only networks and the ip secondary > command doesn't seem right compared to creating a new interface. > > Chris Wornell > Technical Support > MM Internet http://mminternet.com > 888-654-4971 > CCNA, CCDA, CSE > > _ > FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] > _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Repost: PIX, VPNs & DHCP
I'm not familiar with PIX but I don't think it can act as a DHCP relay host. What you need is a host that is capable of relaying DHCP requests from one subnet to another. NT Server is capable of doing that if you have NT running on your remote subnet by installing the DHCP relay agent. "Michael Snyder" <[EMAIL PROTECTED]> wrote in message 96sf2u$d7q$[EMAIL PROTECTED]">news:96sf2u$d7q$[EMAIL PROTECTED]... > Why? > > Just setup IOS DHCP servers on your Cisco routers, then setup a TFTP in the > HQ for a database. You could even edit the files by hand at HQ per MAC > address. > > > ""Greg Reaume"" <[EMAIL PROTECTED]> wrote in message > 96sdrc$7qr$[EMAIL PROTECTED]">news:96sdrc$7qr$[EMAIL PROTECTED]... > > Hi All, > > > > I was wondering if it's possible to forward DHCP packets through a PIX-PIX > > VPN tunnel? I have 1 DHCP server and would like to start using it for my > > branch offices seeing as they have more problems with DHCP and no IT staff > > to support it. > > > > I haven't found any documentation on this. Has anyone done this? > > > > Thanks in advance, > > > > Greg > > > > > > > > _ > > FAQ, list archives, and subscription info: > http://www.groupstudy.com/list/cisco.html > > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] > > > > > _ > FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] > _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Creating Multiple Interfaces on an Ethernet Port
Oh yeah. Nobody said it's a layer 3 issue. It's obviously an IOS issue since it doesn't make sense why it can't be configured that way. NT servers can have one NIC with multiple IP addresses. Yonkerbonk <[EMAIL PROTECTED]> wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > You can add IPX addresses to it, so it doesn't seem to > be an issue of layer 3 addresses. I think it just a > matter of Cisco IOS supporting it. > > Michael > > --- Kenneth <[EMAIL PROTECTED]> wrote: > > try adding an ip address to it. > > > > "Tim Lovelace" <[EMAIL PROTECTED]> wrote in > > message > > > news:[EMAIL PROTECTED]... > > > This seems to be incorrect. I tried this on a > > router I had spare and below > > > are hte results. It may be a newer feature, I am > > to lazy to look on CCO. > > > > > > Tim > > > > > > > > > Router2#sh ver > > > Cisco Internetwork Operating System Software > > > IOS (tm) C2600 Software (C2600-I-M), Version > > 12.0(15), RELEASE SOFTWARE > > > (fc1) > > > > > > > > > > > > Router2#config t > > > Enter configuration commands, one per line. End > > with CNTL/Z. > > > Router2(config)#int e0/0 > > > Router2(config-if)#int e0/0.1 > > > Router2(config-subif)# > > > 00:01:29: %LINK-3-UPDOWN: Interface Ethernet0/0, > > changed state to up > > > Router2(config-subif)#^Z > > > Router2#sh run > > > > > > > > > > > > interface Ethernet0/0 > > > ip address 10.10.10.1 255.255.255.128 > > > no ip directed-broadcast > > > ! > > > interface Ethernet0/0.1 > > > no ip directed-broadcast > > > ! > > > > > > -Original Message- > > > From: [EMAIL PROTECTED] > > [mailto:[EMAIL PROTECTED]]On Behalf Of > > > Brian > > > Sent: Monday, February 19, 2001 9:29 PM > > > To: Chris Wornell > > > Cc: [EMAIL PROTECTED] > > > Subject: Re: Creating Multiple Interfaces on an > > Ethernet Port > > > > > > > > > > > > the only way you can create sub interfaces on > > ethernet is to use dot1q or > > > ISL encapsulation on a FastEthernet interface > > (VLANs) > > > > > > brian > > > > > > > > > On Mon, 19 Feb 2001, Chris Wornell wrote: > > > > > > > Hello, > > > > > > > > I've found out you can't create multiple > > interfaces on an ethernet port > > > > apparently. I was wondering why this is > > exactly? I know you can > > > accomplish > > > > the same on serial lines using pvc's but it > > seems odd you can't do it on > > > > ethernet. I know there are ethernet only > > networks and the ip secondary > > > > command doesn't seem right compared to creating > > a new interface. > > > > > > > > Chris Wornell > > > > Technical Support > > > > MM Internet http://mminternet.com > > > > 888-654-4971 > > > > CCNA, CCDA, CSE > > > > > > > > _ > > > > FAQ, list archives, and subscription info: > > > http://www.groupstudy.com/list/cisco.html > > > > Report misconduct and Nondisclosure violations > > to [EMAIL PROTECTED] > > > > > > > > > > --- > > > I'm buying used CISCO gear!! > > > email me for a quote > > > > > > Brian Feeny e:[EMAIL PROTECTED] > > > CCNP+Voice/ATM/Security p:318.222.2638x109 > > > CCDP f:318.221.6612 > > > Network Administrator > > > ShreveNet Inc. (ASN 11881) > > > > > > _ > > > FAQ, list archives, and subscription info: > > > http://www.groupstudy.com/list/cisco.html > > > Report misconduct and Nondisclosure violations to > > [EMAIL PROTECTED] > > > > > > > > > > > > _ > > > FAQ, list archives, and subscription info: > > http://www.groupstudy.com/list/cisco.html > > > Report misconduct and Nondisclosure violations to > > [EMAIL PROTECTED] > > > > > > > > > _ > > FAQ, list archives, and subscription info: > > http://www.groupstudy.com/list/cisco.html > > Report misconduct and Nondisclosure violations to > [EMAIL PROTECTED] > > > __ > Do You Yahoo!? > Yahoo! Auctions - Buy the things you want at great prices! http://auctions.yahoo.com/ > > _ > FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] > _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: HSRP
You can't run HSRP that way. Both routers should have an interface connected to the same subnet... "NetEng" <[EMAIL PROTECTED]> wrote in message 9711m7$jr5$[EMAIL PROTECTED]">news:9711m7$jr5$[EMAIL PROTECTED]... > If I have two routers running HSRP, what is the physical connection of = > the routers to the next device? I have a serial port on each router, but = > only one port on the smart jack or CSU/DSU. > > _ > FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] > _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: protocol analyzers
NI Observer Gary Witherspoon <[EMAIL PROTECTED]> wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > Anybody have a good recomendation of a protocol > analyzer they have used and liked. I have never used > one, and was hoping to see what you guys recommend. > > thanks in advance > > __ > Do You Yahoo!? > Yahoo! Auctions - Buy the things you want at great prices! http://auctions.yahoo.com/ > > _ > FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] > _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Creating Multiple Interfaces on an Ethernet Port
try adding an ip address to it. "Tim Lovelace" <[EMAIL PROTECTED]> wrote in message news:[EMAIL PROTECTED]... > This seems to be incorrect. I tried this on a router I had spare and below > are hte results. It may be a newer feature, I am to lazy to look on CCO. > > Tim > > > Router2#sh ver > Cisco Internetwork Operating System Software > IOS (tm) C2600 Software (C2600-I-M), Version 12.0(15), RELEASE SOFTWARE > (fc1) > > > > Router2#config t > Enter configuration commands, one per line. End with CNTL/Z. > Router2(config)#int e0/0 > Router2(config-if)#int e0/0.1 > Router2(config-subif)# > 00:01:29: %LINK-3-UPDOWN: Interface Ethernet0/0, changed state to up > Router2(config-subif)#^Z > Router2#sh run > > > > interface Ethernet0/0 > ip address 10.10.10.1 255.255.255.128 > no ip directed-broadcast > ! > interface Ethernet0/0.1 > no ip directed-broadcast > ! > > -Original Message- > From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of > Brian > Sent: Monday, February 19, 2001 9:29 PM > To: Chris Wornell > Cc: [EMAIL PROTECTED] > Subject: Re: Creating Multiple Interfaces on an Ethernet Port > > > > the only way you can create sub interfaces on ethernet is to use dot1q or > ISL encapsulation on a FastEthernet interface (VLANs) > > brian > > > On Mon, 19 Feb 2001, Chris Wornell wrote: > > > Hello, > > > > I've found out you can't create multiple interfaces on an ethernet port > > apparently. I was wondering why this is exactly? I know you can > accomplish > > the same on serial lines using pvc's but it seems odd you can't do it on > > ethernet. I know there are ethernet only networks and the ip secondary > > command doesn't seem right compared to creating a new interface. > > > > Chris Wornell > > Technical Support > > MM Internet http://mminternet.com > > 888-654-4971 > > CCNA, CCDA, CSE > > > > _ > > FAQ, list archives, and subscription info: > http://www.groupstudy.com/list/cisco.html > > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] > > > > --- > I'm buying used CISCO gear!! > email me for a quote > > Brian Feeny e:[EMAIL PROTECTED] > CCNP+Voice/ATM/Security p:318.222.2638x109 > CCDP f:318.221.6612 > Network Administrator > ShreveNet Inc. (ASN 11881) > > _ > FAQ, list archives, and subscription info: > http://www.groupstudy.com/list/cisco.html > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] > > > > _ > FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] > _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Napster internet technology
go download openNap and look at the source-code, that should pretty much explain 99% of your questions. Hinton Bandele-NBH281 <[EMAIL PROTECTED]> wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > I am performing research into the technical underpinnings of the Napster program that allows a desktop machine the ability to utilize desktop and internet tools to deliver a truly distributed Internet application. Can anyone assist me by provide technical information on the Napster program? Listed below are specific questions. > > 1. What development application was used to develop Napster? > > 2. How does Napster use TCP to distribute software? (i.e. port numbering information, application layer routing) > > Thanks! > > Bandele Hinton > Motorola Corporation > 630-353-8286 (office) > 877-992-7925 (pager) > [EMAIL PROTECTED] > > > _ > FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] > _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Seeing the Internet through a firewall
you might want to try real firewalls that provide a DMZ port. But if you can't and if this is just a single webserver, you can use PAT (reverse NAT). Search for it on the Cisco site to get more info on how to implement this. "Howard Yuan" <[EMAIL PROTECTED]> wrote in message 97hhuk$o78$[EMAIL PROTECTED]">news:97hhuk$o78$[EMAIL PROTECTED]... > Hi, > > I'm trying to put a firewall into my company's router. They have a > webserver which hosts their webpage and every computer on the Internet has > the ability to see the Internet through the router. What lines would I need > to put into an access-list to keep the webserver seen and reachable, and > allow the other computers on the network to be able to see the Internet? > Which side should I put the access-list on? Inbound or outbound? Thank you > in advanced. > > Howard > > > _ > FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] > _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Frame Relay Charges
I'm not sure who the provider is but 0 CIR sounds like "Sprint-speak". Most service providers won't allow or recommends against 0 CIR but on the other hand, Sprint pushes it. We are currently using 0 CIR and I think the quality has been good and we haven't had a whole lot of dropped packets. In fact, I think they still guarantee 99% delivery up to port speed which is pretty good specially compared to most providers 99.9% delivery up to CIR and no guarantee beyond that. "Nabil Fares" <[EMAIL PROTECTED]> wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > Greetings all, > > Can you guys shed some light on how FR providers base their charges. How > they charge when going above CIR (etc...)? > > also, if I have site with network access between 8-5, is it worth risking a > zero CIR? > > We had a meeting with an account rep for a FR provider, he kept pressing on > 0 CIR. This is a new trend? > > Thanks, > > Nabil > > > _ > FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] > _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: How would you Explain it.
I'm curious, if you're connected to a switch, then you don't have control over your public IP Addresses then such as DNS,... or is this mostly used for office to office links as opposed to a gateway to the internet? I guess the reason i'm wondering is we currently have an entire class C and we host our own DNS, web servers, ftp,... and I'm curious as to how this would affect our routings if we do go with such a service. Priscilla Oppenheimer <[EMAIL PROTECTED]> wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > We upgraded our T1 WAN link that cost $1500 per month to a single-mode > fiber-optic 10-Mbps Ethernet MAN link that costs $700 per month. We just > have a switch at our site, no router even. Seriously. Our local > municipality has a Gigabit Ethernet single-mode fiber-optic ring running > around town, and they lease capacity on it. The city is connected to the > Internet via a Cisco 7200 and a Sprint T3 link. We piggy back onto that. > > And I'm in Southern Oregon, a supposedly rural area. It's happening in > other towns also. Sometimes I forget how lucky we are! > > Priscilla > > At 02:28 PM 3/2/01, Howard C. Berkowitz wrote: > > >I have a customer who wants to upgrade his 128K ISDN point to point > > >connections to at lease a 10mbps connection. He is thinking along the lines > > >of LAN technologies. He idea connection is a 1gb connection. How would go > > >about explaining to this guy that he is out of his mind without damaging his > > >ego. His the IT manager and thinks he's knowledgeable about networks. > > > >I wouldn't say he is totally out of his mind, if he's in a geographic > >area served by one of the bleeding edge Optical Ethernet providers. > >Very rare so far, but there are 100 or 1000 Mbps physical facilities > >over which the user pays for the amount of bandwidth he needs. Most > >of the ones I'm aware of are in Europe. > > > >In the vast majority of locations, he is out of his mind. Assuming > >he needs 10 Mbps, your choices include inverse multiplexed T1 and > >ATM, fractional T3, or 10 Mbps over OC-3 facilities. I had a design > >not too long ago where we were able to bring in some of the voice as > >well, and found that OC-3 was quite cost-effective. It ran into a > >7200. A 3600 is probably the lowest end router to consider. > > > > > > > >btw... > > > > > >I've gone ahead and gotten quotes on a t1 and t3 lines. I know I can use a > > >2600 for the T1 connection but what is there a adapter for taking a clear > > >channel T3 for the 2600 or do I have to look at a 7000 series router. > > > > > >Thanks, > > > > > >Keith Townsend > > >www.townsendconsulting.com > >\ > > > >_ > >FAQ, list archives, and subscription info: > >http://www.groupstudy.com/list/cisco.html > >Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] > > > > > Priscilla Oppenheimer > http://www.priscilla.com > > _ > FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] > _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Frame Relay Charges
That's true. All packets will be DE marked but 99% of the time, these DE marked packets will get through - that's what our SLA with them is. Their reason for this is that their network is "bleeding edge" and that they are willing to create an SLA for 0 CIR as compared to most providers who won't promise you anything. You can pay, like i said, for CIR and their SLA will guarantee 99.99% packet delivery up to CIR. Lauren Child <[EMAIL PROTECTED]> wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > > > Kenneth wrote: > > > > I'm not sure who the provider is but 0 CIR sounds like "Sprint-speak". > > Id imagine it would be fine if you get garuantees as to how much would > get through but a 0CIR means all our frames would be discard eligible, > so you couldnt garuntee anything getting through. It would be a bit > like shared etherenet - fine unless you experience congestion and then > its pot luck who's frames get through. You are at the mercy of the > telco's oversubscription. > > TTFN > Lauren > > _ > FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] > _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Just picked up 2 routers
You have 1024+1024 bytes which totals to 2048 bytes of RAM (2 Mb) "vert" <[EMAIL PROTECTED]> wrote in message 97umes$vp3$[EMAIL PROTECTED]">news:97umes$vp3$[EMAIL PROTECTED]... > I just bought 2 Cisco 2524's and I am trying to check how much ram they came > with. Can anyone inform me on how to view the memory. When I boot the router > I get this config: > cisco 2524 (68030) processor (revision J) with 1024K/1024K bytes of memory. > Processor board ID 06956739, with hardware revision > Bridging software. > X.25 software, Version 3.0.0. > Basic Rate ISDN software, Version 1.0. > 1 Ethernet/IEEE 802.3 interface(s) > 2 Serial network interface(s) > 1 ISDN Basic Rate interface(s) > Integrated NT1 for ISDN Basic Rate interface > 5-in-1 module for Serial Interface 0 > 56k 4-wire CSU/DSU for Serial Interface 1 > 32K bytes of non-volatile configuration memory. > 8192K bytes of processor board System flash (Read ONLY) > > Can I figure out what the total amount of ram is from this info? I just > don't want to be cheated. I am new to the Cisco environment. > > Thanks > > > _ > FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] > _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Did I luck out or what!
Go to Ebay and you'll find people selling network modules and WICS. If you don't want to bother with it, there are a lot of companies that sell used Cisco modules if you look it up the internet. Lastly, if you want it brand new, go to CDW or shopper.cnet.com and search for the modules there. John Neiberger <[EMAIL PROTECTED]> wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > I'm in the beginning stages of throwing together a home lab (otherwise known > as electric heating.) All I had to mess around with before was a 2501 with > one broken serial port. > > Today an acquaintance gave me--for free--two Cisco 4000 routers (one with a > 2-port serial module, the other is empty and running 9.1!!), a 3COM > Netbuilder router, and a AT&T 16-port hub. Heck of a deal, huh? Well, the > Cisco stuff is a good deal. Hubs are cheaper than dirt nowadays, and the > 3com POS is annoying. To say that its user interface was not intuitive > would be kind. It appears that it can do a lot, I just don't know if I have > the patience to decipher the CLI! > > Anyway, I now need to find a couple more cables and some network modules for > the 4000's. Do any of you know where I can get these *really* cheap? Yes, > I'm becoming a tightwad, but only because I married one. > > I need another 2-port serial module, at least one ethernet module, and > perhaps even a fast ethernet module. > > Any thoughts on who to call? > > Thanks, > John > > > > > > ___ > Send a cool gift with your E-Card > http://www.bluemountain.com/giftcenter/ > > > _ > FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] > _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: How would you Explain it.
That's what sucks about Cleveland. We get the new technologies the last... Should have stayed in Chicago! lol. "Jack" <[EMAIL PROTECTED]> wrote in message 97snc1$8o9$[EMAIL PROTECTED]">news:97snc1$8o9$[EMAIL PROTECTED]... > PacBell is also offering a "GigaMan" service in selected citiies > Priscilla Oppenheimer wrote in message > <[EMAIL PROTECTED]>... > >We have public IP addresses, our own DNS servers, Web servers, etc. The > >only sort of strange thing is that the layer-two LAN crosses the MAN, if > >that makes any sense. At our site we just have a two-port switch. A > >single-mode fiber link connects our switch to a router port at the > >provider's site across town. The provider is connected to the Internet. > > > >(When the provider said he was installing a two-port switch, I had to laugh > >and ask, isn't that a bridge??) > > > >Priscilla > > > >At 09:09 AM 3/3/01, Kenneth wrote: > >>I'm curious, if you're connected to a switch, then you don't have control > >>over your public IP Addresses then such as DNS,... or is this mostly used > >>for office to office links as opposed to a gateway to the internet? > >> > >>I guess the reason i'm wondering is we currently have an entire class C > and > >>we host our own DNS, web servers, ftp,... and I'm curious as to how this > >>would affect our routings if we do go with such a service. > >> > >> > >>Priscilla Oppenheimer <[EMAIL PROTECTED]> wrote in message > >>[EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > >> > We upgraded our T1 WAN link that cost $1500 per month to a single-mode > >> > fiber-optic 10-Mbps Ethernet MAN link that costs $700 per month. We > just > >> > have a switch at our site, no router even. Seriously. Our local > >> > municipality has a Gigabit Ethernet single-mode fiber-optic ring > running > >> > around town, and they lease capacity on it. The city is connected to > the > >> > Internet via a Cisco 7200 and a Sprint T3 link. We piggy back onto > that. > >> > > >> > And I'm in Southern Oregon, a supposedly rural area. It's happening in > >> > other towns also. Sometimes I forget how lucky we are! > >> > > >> > Priscilla > >> > > >> > At 02:28 PM 3/2/01, Howard C. Berkowitz wrote: > >> > > >I have a customer who wants to upgrade his 128K ISDN point to point > >> > > >connections to at lease a 10mbps connection. He is thinking along > the > >>lines > >> > > >of LAN technologies. He idea connection is a 1gb connection. How > >>would go > >> > > >about explaining to this guy that he is out of his mind without > >>damaging his > >> > > >ego. His the IT manager and thinks he's knowledgeable about > networks. > >> > > > >> > >I wouldn't say he is totally out of his mind, if he's in a geographic > >> > >area served by one of the bleeding edge Optical Ethernet providers. > >> > >Very rare so far, but there are 100 or 1000 Mbps physical facilities > >> > >over which the user pays for the amount of bandwidth he needs. Most > >> > >of the ones I'm aware of are in Europe. > >> > > > >> > >In the vast majority of locations, he is out of his mind. Assuming > >> > >he needs 10 Mbps, your choices include inverse multiplexed T1 and > >> > >ATM, fractional T3, or 10 Mbps over OC-3 facilities. I had a design > >> > >not too long ago where we were able to bring in some of the voice as > >> > >well, and found that OC-3 was quite cost-effective. It ran into a > >> > >7200. A 3600 is probably the lowest end router to consider. > >> > > > >> > > > > >> > > >btw... > >> > > > > >> > > >I've gone ahead and gotten quotes on a t1 and t3 lines. I know I > can > >>use a > >> > > >2600 for the T1 connection but what is there a adapter for taking a > >>clear > >> > > >channel T3 for the 2600 or do I have to look at a 7000 series > router. > >> > > > > >> > > >Thanks, > >> > > > > >> > > >Keith Townsend > >> > > >www.townsendconsulting.com > >> > >\ > >> > > > >> > >_
Re: help with configuring TACACS+ server and NAS
I'm not sure how TACACS+ is configured but I'm using FUNK's Radius and all I
had to do is do a return Attribute with "priv-lvl = 15"...
Depending on the user, if the user has this attribute set, then he'll
automatically be brought to level 15 without doing "enable"
Hope this helps.
Check this link out:
http://www.cisco.com/warp/public/480/PRIV.html
"Sean Young" <[EMAIL PROTECTED]> wrote in message
[EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
> Hi everyone,
>
> I need help in configuring both the TACACS+ server and the Network
> Access Server (NAS). I am currently running the TACACS+ server on
> Linux RedHat 7 with kernel 2.4.2. I am running the NAS on a cisco 2610
> router with IOS 12.0.15 Enterprise plus with ipsec capability. I am
running
> TACACS server version tac_plus-F4.0.3.alpha-7. Here is the configuration
> of the tacacs configuration file:
>
> key = "helpme"
>
> user = xyz {
> member = admin
> login = des 7bYbKxc
> cmd = show { permit .* }
> cmd = disconnect { permit .* }
> }
> user = abc{
> member = admin
> login = des YZdX64CcM
> cmd = show { permit .* }
> cmd = disconnect { permit .* }
> }
> user = def {
> service = exec {
> default attribute = permit
> }
> member = normal
> login = des 3zz3A/3Nc7RCU
> expires = "Mar 08 2002"
> cmd = where { permit .* }
> }
> group = admin {
> default service = permit
> service = exec {
> priv-lvl = 15
>}
> }
> group = normal{
> }
> user = $enab15$ {
> login = cleartext "Ineedhelp"
> }
>
> Here is the what I configure on the NAS:
>
> aaa new-model
> aaa authentication login usetacacs tacacs+ local enable
> aaa authentication login usenone none
> aaa authorization commands 1 usetacacs1 tacacs+
> enable secret 5 $1gGfwBcXfakuNKYSV0
>
> tacacs-server host 172.16.1.240
> tacacs-server key helpme
>
> line vty 0 4
> authorization commands 1 usetacacs1
> login authentication usetacacs
>
>
> I would like to be able to make both users abc and xyz to be
> able to go into the privilege mode (enable) each with their
> own password. Right now, even though abc and xyz can
> access the NAS, they have to share the enable secret
> password which is something I like to avoid. How can I
> make this happen? What am I doing wrong here? Please
> help... I am desperate...
> Many thanks.
>
> Harry
>
> _
> Get your FREE download of MSN Explorer at http://explorer.msn.com
>
> _
> FAQ, list archives, and subscription info:
http://www.groupstudy.com/list/cisco.html
> Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
>
_
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Frame-Relay question ?
Actually, you need to configure the device to be more like a DTE-DCE configuration... ie, clockrate "Clayton Price" <[EMAIL PROTECTED]> wrote in message 930m98$ngm$[EMAIL PROTECTED]">news:930m98$ngm$[EMAIL PROTECTED]... > Yout turn on frame relay switching on one of the routers. > > Clayton Price > > ""Kenneth Lorenzo"" <[EMAIL PROTECTED]> wrote in message > 930kdk$kap$[EMAIL PROTECTED]">news:930kdk$kap$[EMAIL PROTECTED]... > > this is weird but I've actually seen configurations where there are back > to > > back connections simulating a Frame network (DTE-DCE). I'm sure it doesn't > > work exactly like a frame cloud (since there is no cloud) but the guy was > > able to bring both interfaces up... > > > > "Kelly D Griffin" <[EMAIL PROTECTED]> wrote in message > > 069c01c075bc$b9b5ba50$[EMAIL PROTECTED]">news:069c01c075bc$b9b5ba50$[EMAIL PROTECTED]... > > > Where is the DCE device that acts as your FR switch? > > > > > > Kelly D Griffin, CCNA > > > Network Engineer > > > Kg2 Network Design > > > http://www.kg2.com > > > > > > > > > - Original Message - > > > From: "mindiani mindiani" <[EMAIL PROTECTED]> > > > To: <[EMAIL PROTECTED]> > > > Sent: Wednesday, January 03, 2001 8:06 AM > > > Subject: Frame-Relay question ? > > > > > > > > > > Want to get to setup frame relay on my two routers connectected (2x > > 2501) > > > > back-to-back with a DTE/DCE cables. When both routers boot up I could > > see > > > > the routing table with "sh ip route" and after 30 secondes the > protocol > > on > > > > the serial interfaces go down. Can you help > > > > > > > > Here is the sample config: > > > > > > > > Router1: > > > > > > > > interface Serial0 > > > > clockrate 64000 > > > > bandwidth 64 > > > > ip address 10.0.2.5 255.255.255.252 > > > > no ip directed-broadcast > > > > encapsulation frame-relay > > > > frame-relay lmi-type cisco > > > > frame-relay interface-dlci 100 > > > > > > > > > > > > Router2: > > > > > > > > interface Serial0 > > > > bandwidth 64 > > > > ip address 10.0.2.6 255.255.255.252 > > > > no ip directed-broadcast > > > > encapsulation frame-relay > > > > frame-relay lmi-type cisco > > > > frame-relay interface-dlci 200 > > > > > > > > > > > > > > > > > > > > > > > > > > _ > > > > Get Your Private, Free E-mail from MSN Hotmail at > > http://www.hotmail.com. > > > > > > > > _ > > > > FAQ, list archives, and subscription info: > > > http://www.groupstudy.com/list/cisco.html > > > > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] > > > > > > > > > http://1cis.com > > > Free E-mail Servers with unlimited mailboxes > > > 1st Class Internet Solutions > > > > > > _ > > > FAQ, list archives, and subscription info: > > http://www.groupstudy.com/list/cisco.html > > > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] > > > > > > > > > _ > > FAQ, list archives, and subscription info: > http://www.groupstudy.com/list/cisco.html > > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] > > > > > _ > FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] > _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: blocking broadcast.com ip addresses
We did have an employee that went to some site that streams sound just using their web browser. I'm not sure which site this was but we were running proxy based firewall and I was surprised to see her using it. To cut the story short, we put out a memo that said they're not supposed have these and that their access are being logged. On the technology side, you might want to use some kind of layer 4-7 switch which would be much easier for you in terms of blocking out certain sites as opposed to blocking ip addresses. beth shriver <[EMAIL PROTECTED]> wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > Can someone tell me how to block traffic from/to > broadcast.com ??? We have several people who like to > use their computer as a radio and its bogging us down! > Help, > Beth > > __ > Do You Yahoo!? > Yahoo! Photos - Share your holiday photos online! > http://photos.yahoo.com/ > > _ > FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] > _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: LAN-to-WAN performance of cisco router?
I believe the 2621 was like 25000 pps and the 2651 was 35000 pps I don't know about the 3600 though. Thitipong Limudomsuk <[EMAIL PROTECTED]> wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > > Hi all, > > I need to know that what is the packet > forwarding rate from LAN-to-WAN of cisco router > esp. cisco 2600, and cisco 3600. How many pps it > can do? > If anybody know please tell me and show me the > reference. > > Thank you. > Thitipong > > __ > Do You Yahoo!? > Yahoo! Photos - Share your holiday photos online! > http://photos.yahoo.com/ > > _ > FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] > _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: instructor led training
I spoke to their people in Chicago when I still lived there last year. Anyway, they had this thing that if you pass your CCIE within one year of starting the class which means 4 months after finishing the class, they will refund the entire 15K and they guarantee you a job that pays at least 85K. I went and saw the lab and they didn't even have RSM modules on their CAT Switches... but then again, this was last year when they just began their classes. To cut the story short, I have decided to pursue the CCIE by myself minus the 15K and will probably spend 15K-20K worth of equipment which I can always sell back for at least 60% of the price I got them for at Ebay. Bottom line: If you're in no hurry to get CCIE certified, invest in equipment and online labs instead. "shane waterbly" <[EMAIL PROTECTED]> wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > The Aquarius Institute: > There was a short posting regarding this school > sometime in August. I'm curious if anyone has any > other information regarding their CCIE training. > > The Institute boasts a "CCIE" course. Eight months > long (300 hours), 3 nights a week or the weekends. All > instructors are written CCIE, one has passed the lab. > (a new instructor is coming aboard to teach the CCNA > portion. He is a CCNP)15 grand for the course. > > I have sat in on one of the classes. I was pleased > with the instructors knowledge and teaching style. The > lab was fairly impressive also. > > I am currently a CCNA. I have no high hopes that this > school will actually produce someone of CCIE level > within eight months (though they claim the first class > graduated and ten out of ten students passed the > written. They are awaiting a time slot to take the > lab)I do believe it is good training to continue and > gain the CCNP along with practical knowledge and good > hands on training. Which is something I'm severely > lacking at this point. > > Any thoughts, comments, rumours heard or knowledge > about this establishment someone would like to pass > along is appreciated. > > thank you for your support. > > __ > Do You Yahoo!? > From homework help to love advice, Yahoo! Experts has your answer. > http://experts.yahoo.com/ > > _ > FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] > _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: What is Dynamic Routing? TX? RX?
Tx Rx on a modem? Tx : Transmit Rx: Receive If you're referring to something else, then I could be wrong. ""JimmyL"" <[EMAIL PROTECTED]> wrote in message 8tqadt$gmj$[EMAIL PROTECTED]">news:8tqadt$gmj$[EMAIL PROTECTED]... > > > > _ > FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] > _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Connect 2500's via modem
You cannot connect to modems directly against each other. A modem does Modulation/Demodulation so you need some kind of phone switch in between. There are quite a bit of Line simulators for sale at ebay and they generally cost $150-$200; It's a good price since you can sell it at ebay once you're done with it. I think the most popular ones are the Teltone TLS-3, TLS-4 and TLS-5. This is the same company that makes the Teltone ISDN Simulators... Kenneth Lorenzo ""George Sherman"" <[EMAIL PROTECTED]> wrote in message 8tr40b$jr6$[EMAIL PROTECTED]">news:8tr40b$jr6$[EMAIL PROTECTED]... > I am trying to do a DDR lab and would like to connect a sportster modem to > an async port of a 2510 and another sportster modem connected to the async > port of a 2521. The two routers are connected via the telephone line cable > that came with the modem. Do I need a crossover cable to make this work? > > > _ > FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] > _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Connect 2500's via modem
that wouldn't be DDR then. George wants to practive DDR. "Justin Marcus" <[EMAIL PROTECTED]> wrote in message news:[EMAIL PROTECTED]... > hey :) > if you just trying to simulate a async link > it would be easier to just connect the 2 routers together using a dte and > dce cable, no need for the modems... > > Justin... :) > > > _ > FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] > _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Calling all techies in New York
Damn. I don't think I'm qualified to do such highly technical stuff! ;-) Kenneth "Andi Enyiema" <[EMAIL PROTECTED]> wrote in message 391567808.973174079798.JavaMail.root@web425-wra">news:391567808.973174079798.JavaMail.root@web425-wra... > Hi, > I've been given an assignment by a company to create a network of about 14 > computers. I need the assistance of individuals who know about NT server, > switches(Netgear fs524), cabling. > Computers have a mixture of Win 95 and 98 and I'll need NT workstation to be > installed on all computers. This is a big project for me so I would > appreciate the assistance of individuals who know what they are doing and > wouldn't mind the "live" practice sessions. The venue is in Brooklyn. > If interested, please reply or leave me a voice message at > 718 404 3907 x1204 > > Thanks and I look forward to working with you. > > > > _ > FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] > _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: BOSON Tests on BSCN...!
That is why it's good. A lot of people complain that it's hard and it has a lot of information you don't need to pass the exam... I think this is how all test preparation tools should be designed. ""GNOME"" <[EMAIL PROTECTED]> wrote in message 8tumf3$gvi$[EMAIL PROTECTED]">news:8tumf3$gvi$[EMAIL PROTECTED]... > Boson test is so hard! > > <[EMAIL PROTECTED]> wrote in message > [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > > Has anybody used BOSON Tests for BSCN...? > > > > How good are they...? Can somebody respond..! > > > > TIA > > > > Kiran > > > > __ > > Do You Yahoo!? > > From homework help to love advice, Yahoo! Experts has your answer. > > http://experts.yahoo.com/ > > > > _ > > FAQ, list archives, and subscription info: > http://www.groupstudy.com/list/cisco.html > > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] > > > > > _ > FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] > _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
GIADDR and secondary ip address problem. [7:6568]
Hi, guys. It's been a while since I've posted something here but I'm pretty stumped with this problem somehow. Anyway, here's my problem: Remote office subnet: 192.168.5.0 255.255.255.0 Plan to change subnet into 192.168.19.0 255.255.255.0 Router relaying dhcp requests to 192.168.1.11 (DHCP Server in Central site) Current fa0/0 interface on LAN: 192.168.5.1 255.255.255.0 I recently configured the interface to have 192.168.19.1 as its primary address 192.168.5.1 as its secondary address On the DHCP Server, I've deleted the 192.168.5.0 scope and activated the 192.168.19.0 scope The reason I have 2 ip addresses on the FastEthernet interface of the router is to allow people who haven't rebooted their computer to still be able to access email and services at the central site and print to their local LAN LPR printers... The problem I'm having is that once the computers have rebooted, and I did a debug ip dhcp server events, packets, linkage, I keep seeing the router still setting the GIADDR of the request as 192.168.5.1 ... since it's forwarding this information, the DHCP server on the central site wasn't responding because of the non-existence of the 192.168.5.0 scope Reading Cisco's documentation, I thought the router uses the primary ip address of the interface as its GIADDR? I have read something about ip dhcp smart-relay but I doubt it applies to this problem... BTW, this is the way that it should be done and I know a lot of people hate the "secondary" ip address but I'm really trying to make this change as transparent to the users as possible! Thanks guys! Kenneth Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=6568&t=6568 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: GIADDR and secondary ip address problem. [7:6568]
I wish the solution is this easy but you can't create 2 subinterfaces and create 2 ip addresses on those because they have to be encapsulated. Since I'm not using any form of trunking, there is no way I can use 2 subinterfaces with 2 ip addresses. Thanks for the try though. ""Liang Mark J Civ AFRL/PROI"" wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > Try to create two subinterfaces the fa0/0 (fa0/0.1 and fa0/0.2)and place the > ip helper 192.168.1.11 command on both subinterfaces. > > Hope that work, good luck. > > Mark, > > -Original Message- > From: Kenneth [mailto:[EMAIL PROTECTED]] > Sent: Wednesday, May 30, 2001 9:34 PM > To: [EMAIL PROTECTED] > Subject: GIADDR and secondary ip address problem. [7:6568] > > > Hi, guys. It's been a while since I've posted something here but I'm pretty > stumped with this problem somehow. Anyway, here's my problem: > > Remote office subnet: 192.168.5.0 255.255.255.0 > Plan to change subnet into 192.168.19.0 255.255.255.0 > Router relaying dhcp requests to 192.168.1.11 (DHCP Server in Central site) > Current fa0/0 interface on LAN: 192.168.5.1 255.255.255.0 > > I recently configured the interface to have > 192.168.19.1 as its primary address > 192.168.5.1 as its secondary address > > On the DHCP Server, I've deleted the 192.168.5.0 scope and activated the > 192.168.19.0 scope > > The reason I have 2 ip addresses on the FastEthernet interface of the router > is to allow people who haven't rebooted their computer to still be able to > access email and services at the central site and print to their local LAN > LPR printers... > > The problem I'm having is that once the computers have rebooted, and I did a > debug ip dhcp server events, packets, linkage, I keep seeing the router > still setting the GIADDR of the request as 192.168.5.1 ... since it's > forwarding this information, the DHCP server on the central site wasn't > responding because of the non-existence of the 192.168.5.0 scope > > Reading Cisco's documentation, I thought the router uses the primary ip > address of the interface as its GIADDR? > > I have read something about ip dhcp smart-relay but I doubt it applies to > this problem... > > BTW, this is the way that it should be done and I know a lot of people hate > the "secondary" ip address but I'm really trying to make this change as > transparent to the users as possible! > > Thanks guys! > > Kenneth Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=6668&t=6568 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Repost: GIADDR and Secondary Interface problems - help [7:6695]
Hi, guys. It's been a while since I've posted something here but I'm pretty stumped with this problem somehow. Anyway, here's my problem: Remote office subnet: 192.168.5.0 255.255.255.0 Plan to change subnet into 192.168.19.0 255.255.255.0 Router relaying dhcp requests to 192.168.1.11 (DHCP Server in Central site) Current fa0/0 interface on LAN: 192.168.5.1 255.255.255.0 I recently configured the interface to have 192.168.19.1 as its primary address 192.168.5.1 as its secondary address On the DHCP Server, I've deleted the 192.168.5.0 scope and activated the 192.168.19.0 scope The reason I have 2 ip addresses on the FastEthernet interface of the router is to allow people who haven't rebooted their computer to still be able to access email and services at the central site and print to their local LAN LPR printers... The problem I'm having is that once the computers have rebooted, and I did a debug ip dhcp server events, packets, linkage, I keep seeing the router still setting the GIADDR of the request as 192.168.5.1 ... since it's forwarding this information, the DHCP server on the central site wasn't responding because of the non-existence of the 192.168.5.0 scope Reading Cisco's documentation, I thought the router uses the primary ip address of the interface as its GIADDR? I have read something about ip dhcp smart-relay but I doubt it applies to this problem... BTW, this is the way that it should be done and I know a lot of people hate the "secondary" ip address but I'm really trying to make this change as transparent to the users as possible! Thanks guys! Kenneth Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=6695&t=6695 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Repost: GIADDR and Secondary Interface problems - help [7:6705]
Travis, Thanks for the reply. I am currently using EIGRP and I can ping the clients that were trying to request the new ip address. There is no connection issue at all and everything works great except for the stubborn clients to get the new scope! One thing I thought was, on a windows client, the GIADDR is set to its original GIADDR and that it will only change when you "release" then "renew" the GIADDR in which time, the GIADDR will be temporarily set to 0.0.0.0 then to the new primary interface. I don't know if this is a bug but when a client does a release then renew, then they get the new scope but other than that, it's not consistent. I was also able to replicate this on a lab, too, but not consistently. Very strange. To answer your other question, yes, the new scope is on the same DHCP server. Im thinking about using Smart-Relay but i know it's only effective if the primary is not responding at which time, the secondary address will be set as the GIADDR Any ideas? I'm stumped. Thanks! ""Bolton, Travis"" wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > Kenneth, > > Our company does the same exact thing when readdressing user segments at > sites. The reason we use secondary is for the purpose of having no down > time for the users. The way it should work is the primary Ip address will > be used by the users while the secondary IP address can still be used for > static IP'd devices. This give the site time to readdress all of their > static devices before you remove the secondary address. I don't know why > you are having the problem that you are having. If the new scope is created > and active then things should work. Is the new scope on the same dhcp > server as the last scope? Can you ping the dhcp server from that new user > segment? Are you doing a static route back to your core are you using a > dynamic routing protocol? If you are using a default route then you will > need to point the new segment on your core/distribution router to that new > segment. If you don't have this then users won't get an IP address. Had > that happen to me a couple times. If you can supply me with more info I'll > take a look at it and help out if I can. Hope this helps. > > -Original Message- > From: Kenneth [mailto:[EMAIL PROTECTED]] > Sent: Thursday, May 31, 2001 8:11 PM > To: [EMAIL PROTECTED] > Subject: Repost: GIADDR and Secondary Interface problems - help [7:6695] > > > Hi, guys. It's been a while since I've posted something here but I'm pretty > stumped with this problem somehow. Anyway, here's my problem: > > Remote office subnet: 192.168.5.0 255.255.255.0 > Plan to change subnet into 192.168.19.0 255.255.255.0 > Router relaying dhcp requests to 192.168.1.11 (DHCP Server in Central site) > Current fa0/0 interface on LAN: 192.168.5.1 255.255.255.0 > > I recently configured the interface to have > 192.168.19.1 as its primary address > 192.168.5.1 as its secondary address > > On the DHCP Server, I've deleted the 192.168.5.0 scope and activated the > 192.168.19.0 scope > > The reason I have 2 ip addresses on the FastEthernet interface of the router > is to allow people who haven't rebooted their computer to still be able to > access email and services at the central site and print to their local LAN > LPR printers... > > The problem I'm having is that once the computers have rebooted, and I did a > debug ip dhcp server events, packets, linkage, I keep seeing the router > still setting the GIADDR of the request as 192.168.5.1 ... since it's > forwarding this information, the DHCP server on the central site wasn't > responding because of the non-existence of the 192.168.5.0 scope > > Reading Cisco's documentation, I thought the router uses the primary ip > address of the interface as its GIADDR? > > I have read something about ip dhcp smart-relay but I doubt it applies to > this problem... > > BTW, this is the way that it should be done and I know a lot of people hate > the "secondary" ip address but I'm really trying to make this change as > transparent to the users as possible! > > Thanks guys! > > Kenneth Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=6705&t=6705 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Repost: GIADDR and Secondary Interface problems - help [7:6741]
Thanks Alan. Yeah, we do have a maintenance window for this so rebooting is not really a problem except I'm targeting 104 weeks of uptime!!! :-) Guess that'll have to wait another 104 weeks I'll give the 1st 2 ideas a try first and hopefully that fixes their problem. Thanks for the help, you guys have been great!!! Kenneth ""W. Alan Robertson"" wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > Kenneth, > > It sounds to me like a bug... Have you checked the Cisco bug > database? > > Short of that, here's what I'd do: > > First, remove the ip helper-address from the interface, and then add > it again... See what happpens. It's possible that the ip > helper-address function checks the interfaces primary IP address when > the command is added, but has no mechanism to check it again after > being initialized. > > If that doesn't work, I'd remove it again, shut down the interface, > bring the interface back up, and then add the help address again. > > As a last resort, reloading the router should clear the problem, but I > understand your reluctance to do so... 100% uptime is a noble > pursuit, but there's no avoiding maintenance. I don't suppose you > have a maintenance window, do you? > > Hope this helps... > > Alan > > - Original Message - > From: "Kenneth" > To: > Sent: Thursday, May 31, 2001 9:10 PM > Subject: Repost: GIADDR and Secondary Interface problems - help > [7:6695] > > > > Hi, guys. It's been a while since I've posted something here but I'm > pretty > > stumped with this problem somehow. Anyway, here's my problem: > > > > Remote office subnet: 192.168.5.0 255.255.255.0 > > Plan to change subnet into 192.168.19.0 255.255.255.0 > > Router relaying dhcp requests to 192.168.1.11 (DHCP Server in > Central site) > > Current fa0/0 interface on LAN: 192.168.5.1 255.255.255.0 > > > > I recently configured the interface to have > > 192.168.19.1 as its primary address > > 192.168.5.1 as its secondary address > > > > On the DHCP Server, I've deleted the 192.168.5.0 scope and activated > the > > 192.168.19.0 scope > > > > The reason I have 2 ip addresses on the FastEthernet interface of > the router > > is to allow people who haven't rebooted their computer to still be > able to > > access email and services at the central site and print to their > local LAN > > LPR printers... > > > > The problem I'm having is that once the computers have rebooted, and > I did a > > debug ip dhcp server events, packets, linkage, I keep seeing the > router > > still setting the GIADDR of the request as 192.168.5.1 ... since > it's > > forwarding this information, the DHCP server on the central site > wasn't > > responding because of the non-existence of the 192.168.5.0 scope > > > > Reading Cisco's documentation, I thought the router uses the primary > ip > > address of the interface as its GIADDR? > > > > I have read something about ip dhcp smart-relay but I doubt it > applies to > > this problem... > > > > BTW, this is the way that it should be done and I know a lot of > people hate > > the "secondary" ip address but I'm really trying to make this change > as > > transparent to the users as possible! > > > > Thanks guys! > > > > Kenneth > [EMAIL PROTECTED] Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=6741&t=6741 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Repost: GIADDR and Secondary Interface problems - help [7:6945]
I'll definitely email you / post back when i get back to it. I need to through our change control process request which will be at least a week before I will be able to start working on it again. I hope this "solution" works! ""W. Alan Robertson"" wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > So did it work? I've been waiting all day to hear... :) > > Alan~ > > - Original Message - > From: "Kenneth" > To: > Sent: Friday, June 01, 2001 7:38 AM > Subject: Re: Repost: GIADDR and Secondary Interface problems - help > [7:6741] > > > > Thanks Alan. > > > > Yeah, we do have a maintenance window for this so rebooting is not > really a > > problem except I'm targeting 104 weeks of uptime!!! :-) Guess > that'll have > > to wait another 104 weeks > > > > I'll give the 1st 2 ideas a try first and hopefully that fixes their > > problem. > > > > Thanks for the help, you guys have been great!!! > > > > Kenneth > > > > > > ""W. Alan Robertson"" wrote in message > > [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > > > Kenneth, > > > > > > It sounds to me like a bug... Have you checked the Cisco bug > > > database? > > > > > > Short of that, here's what I'd do: > > > > > > First, remove the ip helper-address from the interface, and then > add > > > it again... See what happpens. It's possible that the ip > > > helper-address function checks the interfaces primary IP address > when > > > the command is added, but has no mechanism to check it again after > > > being initialized. > > > > > > If that doesn't work, I'd remove it again, shut down the > interface, > > > bring the interface back up, and then add the help address again. > > > > > > As a last resort, reloading the router should clear the problem, > but I > > > understand your reluctance to do so... 100% uptime is a noble > > > pursuit, but there's no avoiding maintenance. I don't suppose you > > > have a maintenance window, do you? > > > > > > Hope this helps... > > > > > > Alan > > > > > > - Original Message - > > > From: "Kenneth" > > > To: > > > Sent: Thursday, May 31, 2001 9:10 PM > > > Subject: Repost: GIADDR and Secondary Interface problems - help > > > [7:6695] > > > > > > > > > > Hi, guys. It's been a while since I've posted something here but > I'm > > > pretty > > > > stumped with this problem somehow. Anyway, here's my problem: > > > > > > > > Remote office subnet: 192.168.5.0 255.255.255.0 > > > > Plan to change subnet into 192.168.19.0 255.255.255.0 > > > > Router relaying dhcp requests to 192.168.1.11 (DHCP Server in > > > Central site) > > > > Current fa0/0 interface on LAN: 192.168.5.1 255.255.255.0 > > > > > > > > I recently configured the interface to have > > > > 192.168.19.1 as its primary address > > > > 192.168.5.1 as its secondary address > > > > > > > > On the DHCP Server, I've deleted the 192.168.5.0 scope and > activated > > > the > > > > 192.168.19.0 scope > > > > > > > > The reason I have 2 ip addresses on the FastEthernet interface > of > > > the router > > > > is to allow people who haven't rebooted their computer to still > be > > > able to > > > > access email and services at the central site and print to their > > > local LAN > > > > LPR printers... > > > > > > > > The problem I'm having is that once the computers have rebooted, > and > > > I did a > > > > debug ip dhcp server events, packets, linkage, I keep seeing the > > > router > > > > still setting the GIADDR of the request as 192.168.5.1 ... since > > > it's > > > > forwarding this information, the DHCP server on the central site > > > wasn't > > > > responding because of the non-existence of the 192.168.5.0 scope > > > > > > > > Reading Cisco's documentation, I thought the router uses the > primary > > > ip > > > > address of the interface as its GIADDR? > > > > > > > > I have read something about ip dhcp smart-relay but I doubt it > > > applies to > > > > this problem... > > > > > > > > BTW, this is the way that it should be done and I know a lot of > > > people hate > > > > the "secondary" ip address but I'm really trying to make this > change > > > as > > > > transparent to the users as possible! > > > > > > > > Thanks guys! > > > > > > > > Kenneth > > > [EMAIL PROTECTED] > [EMAIL PROTECTED] Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=6945&t=6945 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: vpdn pptp [7:7211]
If this is not a Cisco 7200, I believe it's only supported on the new IOS - 12.1(5)T upwards... otherwise, you only get L2TP and L2F. Hope this helps. ""Rick Holden"" wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > I am trying to configure a voluntary VPDN tunnel and am having trouble with > the example config I got from Cisco's web page. The example is as follows: > > vpdn-group 1 > ! Default PPTP VPDN group > accept-dialin > protocol pptp > virtual-template 1 > local name cisco_pns > > The problem is with the PROTOCOL command. Every router that I have looked > has only L2F and L2TP as valid options not PPTP. Is this an error or am I > doing something wrong. I have seem this on a bunch of different IOS and on > different platforms. Thanks. > > /Rick Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=7273&t=7211 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Where to get cheap memory for routers? [7:7168]
for flash memory, try CDW and search for Viking or Kingston memories. you'll find plenty mostly at less than hald the price of Cisco flash memory. ""Thomas"" wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > Wow, it seems that the memory here are so cheap (in compare to Cisco). I'll > probably get memory from here. However, it seems they don't have flash > modules for most platforms in stock here. > > > > ""Jon Krabbenschmidt"" wrote in message > [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > > Try here. I buy all my memory from Crucial. > > > > > http://www.crucial.com/store/listparts.asp?model=3660+Series+Routers+%28DRAM > > %29&x=12&y=8 > > > > > > Jon > > > > > > -Original Message- > > From: Thomas [mailto:[EMAIL PROTECTED]] > > Sent: Monday, June 04, 2001 3:16 PM > > To: [EMAIL PROTECTED] > > Subject: Where to get cheap memory for routers? [7:7168] > > > > > > Hi All, > > > > I am looking for upgrading our Cisco 3660 router. However, the cost for > the > > 128MB of Cisco memory susprised me. It costs like ... $5000.00 for a > piece > > of 128MB memory module for Cisco 3660. I wonder if it is OK to plug in a > > third party memory module? Has anyone out there do this? Is it safe to do? > > Which vendors do you recommend with good quality and cheap (or reasonable) > > price? Thanks All! Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=7274&t=7168 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: T1 on 2600 Series router [7:7380]
absolutely. I have a 1720 handling 2 T1 lines without any problems. ""STRAND Scott"" wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > Can the 2600 series router handle a T-1 or do I need to use a 3640. > > Thanks, > Scott Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=7447&t=7380 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: OSPF over NBMA [7:7941]
I don't think Chris' was asking how to configure OSPF for point-to-point but rather why. >From my experience, you can use it for when you don't want to subnet each network and you can save IP Address by going to a multipoint network using unnumbered interface on the nodes that connect to the frame cloud ""Choi, Howard CW"" wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > interface serial 0 > no ip address > encapsulation frame-relay > > interface serial 0.1 point-to-point > ip address x.x.x.x x.x.x.x > ip ospf network point-to-point > Howard Choi > CCNP, CCDP > -- > From: Burnham, Chris > To: [EMAIL PROTECTED] > Subject: OSPF over NBMA [7:7941] > Date: Monday, June 11, 2001 4:30PM > > Whenever reading about OSPF there seems to be a great deal of emphasis on > NBMA in a multipoint enviroment. > Why would you want to implement mulipoint when you could uses point to point > between remote offices connecting back to area0 ?? > > Chris Burnham, > Systems Engineer, > Delphis Consulting Plc. > Tel: +(44) 020 7916 0200 > Mob: +(44) 07799403576 > [EMAIL PROTECTED] > > > This e-mail and any files transmitted with it are intended solely for the > addressee and are confidential. They may also be legally privileged. > Copyright in them is reserved by Delphis Consulting PLC ["Delphis"] and they > must not be disclosed to, or used by, anyone other than the addressee. If > you have received this e-mail and any accompanying files in error, you may > not copy, publish or use them in any way and you should delete them from > your system and notify us immediately.E-mails are not secure. Delphis does > not accept responsibility for changes to e-mails that occur after they have > been sent. Any opinions expressed in this e-mail may be personal to the > author and may not necessarily reflect the opinions of Delphis. Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=7955&t=7941 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: lab switch 2900XL or 5k? [7:7926]
if you go with a 3500, the commands are IOS based. I'd recommend getting at least a Cat4000 so you can play with the CatOS' set commands and possibly other modules (an MSFC?). A 1900 should be good enough to practive with the IOS. Ebay has a bunch - pretty cheap. ""Kervin Pierre"" wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > Hi, > > I know this comes up a lot, but I need advice making this decision. The > archive's have some older post suggesting the 2900 but these are very > had to find these days, I guess because they aren't made anymore? > > Anyway, it was also recommended ( some time ago ), that the XL model IOS > were very different than the 5000s and the XL IOS did not appear much on > the CLSC exam, but might in the future. > > What is the prefered home lab switch today? > Is the XL IOS appearing in the CLSC? > Is the lab still predominately 5000? > Do I need more than one switch for simulations? What about a CCIE lab? > Should I take out a loan and buy a 5000? : ) > > thanks, > -Kervin Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=7957&t=7926 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: What is the cause of router config lost ? [7:7942]
can you check the last saved NVRAM when you do a show run? ""norsyam ariffin"" wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > My config-register is 0x2102, the router is up & running very well before > just a few day ago, the is lost configuration happened. > > > >From: "Yongchul Yang" > >To: "norsyam ariffin" > >Subject: RE: What is the cause of router config lost ? [7:7942] > >Date: Mon, 11 Jun 2001 01:49:16 -0700 > > > >Check you config-register, make sure your config-register is 0x2102. If > >you > >have a router with config-register 0x2101, it will not save your > >configuration into your router's NVRAM and any time your router is > >re-booted, you will lose your configuration. > > > >Yongchul Yang > > > >-Original Message- > >From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of > >norsyam ariffin > >Sent: Monday, June 11, 2001 1:34 AM > >To: [EMAIL PROTECTED] > >Subject: What is the cause of router config lost ? [7:7942] > > > >Hi guys, Few days ago one of my router config was lost. It happened > >several times.What is the cause of router config lost & how to > >troubleshoot for this problem ? Thanks in advance. Syam > > > > > > > >Get Your Private, Free E-mail from MSN Hotmail at http://www.hotmail.com. > _ > Get Your Private, Free E-mail from MSN Hotmail at http://www.hotmail.com. Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=7956&t=7942 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Radware's linkproof and Fatpipe [7:8085]
Has anyone deployed this? I'm going through their site and it doesn't explain how it works without using BGP. We have a data center hosting around 20 web-based application and we have an entire class C address space. I don't see how the "backup" ISP will be able to advertise our network if the primary ISP connection fails without using BGP as these products claim to do any ideas? Thanks, guys! Kenneth Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=8085&t=8085 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Radware's linkproof and Fatpipe [7:8085]
never mind guys, i read the radware whitepaper ang answered my own question. Thnx ""Kenneth"" wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > Has anyone deployed this? I'm going through their site and it doesn't > explain how it works without using BGP. We have a data center hosting around > 20 web-based application and we have an entire class C address space. I > don't see how the "backup" ISP will be able to advertise our network if the > primary ISP connection fails without using BGP as these products claim to > do any ideas? > > Thanks, guys! > > Kenneth Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=8094&t=8085 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Radware's linkproof and Fatpipe [7:8085]
sure it does but SMARTNAT is a proprietary technology that they named without a thorough explanation of how it works. Reading their white paper, it didn't explain the fact that you need to have 2 sets of IP Addresses from the 2 ISPs and that the device will have to act as your NS. ""Jackey Xie"" wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > it use SmartNAT > > -- > ""Kenneth"" wrote in message > [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > > never mind guys, i read the radware whitepaper ang answered my own > question. > > Thnx > > > > ""Kenneth"" wrote in message > > [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > > > Has anyone deployed this? I'm going through their site and it doesn't > > > explain how it works without using BGP. We have a data center hosting > > around > > > 20 web-based application and we have an entire class C address space. I > > > don't see how the "backup" ISP will be able to advertise our network if > > the > > > primary ISP connection fails without using BGP as these products claim > to > > > do any ideas? > > > > > > Thanks, guys! > > > > > > Kenneth Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=8286&t=8085 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Radware's linkproof and Fatpipe [7:8085]
Cool. I just thought it was too good to be true. I read, through a newsgroup search, that in order to do that, it has to act as the ns of the domain and that I need a separate set of public ip addresses for my network. Basically, it kinda works like Adapter teaming responding to ARP, sending MACaddresses,... except on the network layer, right? Either way, I think going with a BGP will be easier and I'm saving the internet another set of Class C addresses. Thanks, John ""John Neiberger"" wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > In that situation--where you need to be advertised from both > providers--these devices won't cut the mustard, at least as far as I can > tell. We have had reps from both companies here to explain to us the > benefits of their products and they still really don't have a good way > to do what you're trying to do. > > In our company we also host our own website and are multihomed. In > this scenario we use BGP. Entirely separate from that network we have > an ISP for outgoing internet access for our employees. We will be > adding a second T-1 and then installing the Radware Linkproof hardware. > In this case, we have no internal addresses that *have* to be advertised > from both ISPs so this will work quite well for us. > > HTH, > John > > >>> "Kenneth" 6/11/01 6:16:56 PM >>> > Has anyone deployed this? I'm going through their site and it doesn't > explain how it works without using BGP. We have a data center hosting > around > 20 web-based application and we have an entire class C address space. > I > don't see how the "backup" ISP will be able to advertise our network if > the > primary ISP connection fails without using BGP as these products claim > to > do any ideas? > > Thanks, guys! > > Kenneth Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=8287&t=8085 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
VPDN PPTP through IOS FW [7:8289]
Has anyone had any luck configuring PPTP terminating on a Cisco router running IOS-FW. I'm having problems with the PPP negotiation part and a Cisco Support engineer told me I had to use MS-chap (ppp authentication ms-chap) in order for it to work. Has anyone used this before without going with Ms-CHAP? Perhaps PAP, or CHAP? On the backend, I'm using a Funk Steel-Belted Radius.. When I try to connect, this is the debug output of the PPP nego, PPP packet, PPP error. Does it seem like it's in the Authentication negotiation stage when the client is not sending out ConfACK? SPR-CLE04OH-01-VPN-DS1# Jun 12 15:50:39: %LINK-3-UPDOWN: Interface Virtual-Access1, changed state to up Jun 12 15:50:39: Vi1 PPP: Treating connection as a dedicated line Jun 12 15:50:39: Vi1 PPP: Phase is ESTABLISHING, Active Open [0 sess, 0 load] Jun 12 15:50:39: Vi1 LCP: O CONFREQ [Closed] id 6 len 14 Jun 12 15:50:39: Vi1 LCP:AuthProto PAP (0x0304C023) Jun 12 15:50:39: Vi1 LCP:MagicNumber 0x062ECC6E (0x0506062ECC6E) Jun 12 15:50:40: %LINEPROTO-5-UPDOWN: Line protocol on Interface Virtual-Access1 , changed state to up Jun 12 15:50:41: Vi1 LCP: TIMEout: State REQsent Jun 12 15:50:41: Vi1 LCP: O CONFREQ [REQsent] id 7 len 14 Jun 12 15:50:41: Vi1 LCP:AuthProto PAP (0x0304C023) Jun 12 15:50:41: Vi1 LCP:MagicNumber 0x062ECC6E (0x0506062ECC6E) Jun 12 15:50:43: Vi1 LCP: TIMEout: State REQsent Jun 12 15:50:43: Vi1 LCP: O CONFREQ [REQsent] id 8 len 14 Jun 12 15:50:43: Vi1 LCP:AuthProto PAP (0x0304C023) Jun 12 15:50:43: Vi1 LCP:MagicNumber 0x062ECC6E (0x0506062ECC6E) Jun 12 15:50:44: Vi1 PPP: Outbound ip packet dropped, line protocol not up Jun 12 15:50:45: Vi1 LCP: TIMEout: State REQsent Jun 12 15:50:45: Vi1 LCP: O CONFREQ [REQsent] id 9 len 14 Jun 12 15:50:45: Vi1 LCP:AuthProto PAP (0x0304C023) Jun 12 15:50:45: Vi1 LCP:MagicNumber 0x062ECC6E (0x0506062ECC6E) Jun 12 15:50:47: Vi1 LCP: TIMEout: State REQsent Jun 12 15:50:47: Vi1 LCP: O CONFREQ [REQsent] id 10 len 14 Jun 12 15:50:47: Vi1 LCP:AuthProto PAP (0x0304C023) Jun 12 15:50:47: Vi1 LCP:MagicNumber 0x062ECC6E (0x0506062ECC6E) Jun 12 15:50:48: Vi1 PPP: Outbound ip packet dropped, line protocol not up Jun 12 15:50:49: Vi1 LCP: TIMEout: State REQsent Jun 12 15:50:49: Vi1 LCP: O CONFREQ [REQsent] id 11 len 14 Jun 12 15:50:49: Vi1 LCP:AuthProto PAP (0x0304C023) Jun 12 15:50:49: Vi1 LCP:MagicNumber 0x062ECC6E (0x0506062ECC6E) Jun 12 15:50:51: %LINK-3-UPDOWN: Interface Virtual-Access1, changed state to dow n Jun 12 15:50:51: Vi1 LCP: State is Closed Jun 12 15:50:51: Vi1 PPP: Phase is DOWN [0 sess, 0 load] Jun 12 15:50:52: %LINEPROTO-5-UPDOWN: Line protocol on Interface Virtual-Access1 , changed state to down thanks guys! Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=8289&t=8289 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
PPP Negotiation question --- HELP!!! PLEASE! [7:8438]
Can anyone shed light on this problem im having. I have 1 laptop with Sniffer pro and a router on the other end running PPTP set for Ms-chap authentication. When I tried to establish a PPTP session from the laptop to the router, all it does is it times out. The router is acting as a PPTP server. When I look at the sniffer's output, I can see the: 1) PPP ConfReq sent to the Router from my laptop 2) PPP ConfReq sent from the router to my laptop 3) PPP ConfAck sent from my laptop to the Router but when I look at the debug PPP negotiation on the router, all I see is that the router keep sending out PPP ConfReq and it's timing out. It's not receiving any of the ConfAck being sent out by my laptop. I don't have any firewall installed on my laptop and I know for a fact that it worked talking to an NT Server-based PPTP. I'm really stumped with this problem. Any help would be greatly appreciated. Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=8438&t=8438 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: PPP Negotiation question --- HELP!!! PLEASE! [7:8438]
Here's my config, Rahul, I hope you can help me out on this. I also have the debugs included below the configs. ! ! Last configuration change at 15:12:59 EDT Wed Jun 13 2001 by klorenzo ! version 12.2 no service single-slot-reload-enable service timestamps debug datetime localtime service timestamps log datetime localtime service password-encryption ! hostname XXX ! logging buffered 12000 debugging logging rate-limit console 10 except errors aaa new-model aaa authentication login default group radius local none aaa authentication login console group radius local none aaa authentication login vty group radius local aaa authentication ppp default group radius local aaa authorization exec default group radius local aaa authorization exec telnet group radius aaa accounting exec shell start-stop group radius aaa accounting network default start-stop group radius enable secret 5 XXX. ! clock timezone EST -5 clock summer-time EDT recurring ip subnet-zero no ip source-route ! ! no ip finger ip domain-name ctnet.com ip name-server 192.168.1.11 ! ip inspect audit-trail ip audit attack action alarm drop ip audit notify log ip audit po max-events 100 ip dhcp-server 192.168.1.11 no ip dhcp-client network-discovery ip ssh time-out 120 ip ssh authentication-retries 3 vpdn enable no vpdn logging local no vpdn logging remote no vpdn logging user ! vpdn-group 1 ! Default PPTP VPDN group accept-dialin protocol pptp virtual-template 1 ! ! call rsvp-sync ! ! ! ! ! ! ! ! interface Loopback0 ip address 172.16.3.1 255.255.255.0 ! interface FastEthernet0/0 ip address 192.168.1.10 255.255.255.0 speed 100 full-duplex ! interface Serial0/0 no ip address shutdown no fair-queue ! interface FastEthernet0/1 ip address A.B.C.D 255.255.255.0 duplex auto speed auto pppoe enable ! interface Virtual-Template1 ip unnumbered Loopback0 ip mroute-cache peer default ip address pool testpool ppp encrypt mppe 128 ppp authentication ms-chap ! router eigrp 1000 passive-interface FastEthernet0/1 network 172.16.0.0 network 192.168.1.0 no auto-summary no eigrp log-neighbor-changes ! ip local pool testpool 172.16.3.2 172.16.3.10 ip kerberos source-interface any ip classless ip route 0.0.0.0 0.0.0.0 A.B.C.D ip route X.Y.0.0 255.255.0.0 X.Y.1.1 no ip http server ! ip radius source-interface FastEthernet0/0 ! snmp-server community network~elites1 RO snmp-server location Cleveland,OH snmp-server contact Kenneth Lorenzo radius-server host 192.168.1.195 auth-port 1645 acct-port 1646 radius-server retransmit 2 radius-server timeout 10 radius-server deadtime 2 radius-server key 7 XXX! dial-peer cor custom ! ! ! ! banner motd ^C ** ** * Access to this router is logged * * Unauthorized Access is not allowed * * and will be persecuted to the* * full extent of the law* ** ** ^C ! line con 0 exec-timeout 5 0 authorization exec telnet accounting exec shell login authentication console transport input none line aux 0 no exec authorization exec telnet accounting exec shell login authentication console line vty 0 4 authorization exec telnet accounting exec shell login authentication vty transport input ssh line vty 5 15 authorization exec telnet accounting exec shell login authentication vty transport input ssh ! ntp clock-period 17179778 ntp server 192.168.1.2 end -- Debugs --- Jun 13 15:23:47: Vi1 LCP: TIMEout: State REQsent Jun 13 15:23:47: Vi1 LCP: O CONFREQ [REQsent] id 38 len 15 Jun 13 15:23:47: Vi1 LCP:AuthProto MS-CHAP (0x0305C22380) Jun 13 15:23:47: Vi1 LCP:MagicNumber 0x067E3C84 (0x0506067E3C84) Jun 13 15:23:47: Vi1 VPDN: O out Jun 13 15:23:49: Vi1 LCP: TIMEout: State REQsent Jun 13 15:23:49: Vi1 LCP: O CONFREQ [REQsent] id 39 len 15 Jun 13 15:23:49: Vi1 LCP:AuthProto MS-CHAP (0x0305C22380) Jun 13 15:23:49: Vi1 LCP:MagicNumber 0x067E3C84 (0x0506067E3C84) Jun 13 15:23:49: Vi1 VPDN: O out Jun 13 15:23:49: Vi1 PPP: Outbound ip packet dropped, line protocol not up Jun 13 15:23:51: Vi1 LCP: TIMEout: State REQsent Jun 13 15:23:51: Vi1 LCP: O CONFREQ [REQsent] id 40 len 15 Jun 13 15:23:51: Vi1 LCP:AuthProto MS-CHAP (0x0305C22380) Jun 13 15:23:51: Vi1 LCP:MagicNumber 0x067E3C84 (0x0506067E3C84) Jun 13 15:23:51: Vi1 VPDN: O out ""Rahul Kachalia"" wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > Kenneth, > > Can you paste those contents & if possible configs of router. > > thanks, > rahul. > - Original Message - > From: "Kenneth" > To: > Sent: Wednesday, June 13, 2001 3:59 PM > Subject: PPP Negotiation question --- HELP!!! PLEASE! [7:8438] > > > > Can anyone shed l
Re: PPP Negotiation question --- HELP!!! PLEASE! [7:8438]
48 ACK Jun 13 22:51:41: IP: s=A.B.C.D (local), d=66.32.46.139 (FastEthernet0/1), len 55, sending, proto=47 Jun 13 22:51:41: IP: s=66.32.46.139 (FastEthernet0/1), d=A.B.C.D (FastEthernet0/1), len 55, rcvd 3, proto=47 Jun 13 22:51:41: IP: s=192.168.1.1 (FastEthernet0/0), d=224.0.0.10, len 60, rcvd 2, proto=88 Jun 13 22:51:41: IP: s=66.32.46.139 (FastEthernet0/1), d=A.B.C.D (FastEthernet0/1), len 60, rcvd 3 Jun 13 22:51:41: TCP src=2604, dst=22, seq=391189, ack=1252417364, win=8048 ACK PSH Jun 13 22:51:41: IP: s=A.B.C.D (local), d=66.32.46.139 (FastEthernet0/1), len 100, sending Jun 13 22:51:41: TCP src=22, dst=2604, seq=1252417364, ack=391209, win=3968 ACK PSH Jun 13 22:51:41: IP: s=66.32.46.139 (FastEthernet0/1), d=A.B.C.D (FastEthernet0/1), len 60, rcvd 3 Jun 13 22:51:41: TCP src=2604, dst=22, seq=391209, ack=1252417424, win=8576 ACK PSH Jun 13 22:51:41: IP: s=A.B.C.D (local), d=66.32.46.139 (FastEthernet0/1), len 100, sending Jun 13 22:51:41: TCP src=22, dst=2604, seq=1252417424, ack=391229, win=3948 ACK PSH Jun 13 22:51:41: IP: s=66.32.46.139 (FastEthernet0/1), d=A.B.C.D (FastEthernet0/1), len 40, rcvd 3 Jun 13 22:51:41: TCP src=2604, dst=22, seq=391229, ack=1252417484, win=8516 ACK Jun 13 22:51:41: IP: s=192.168.1.10 (local), d=224.0.0.10 (FastEthernet0/0), len 60, sending broad/multicast, proto=88 Jun 13 22:51:41: IP: s=172.16.3.1 (local), d=224.0.0.10 (Virtual-Access1), len 60, sending broad/multicast, proto=88 Jun 13 22:51:41: IP: s=172.16.3.1 (local), d=224.0.0.10 (Virtual-Access1), len 60, encapsulation failed, proto=88 Jun 13 22:51:42: IP: s=192.168.1.5 (FastEthernet0/0), d=224.0.0.10, len 60, rcvd 2, proto=88 Jun 13 22:51:42: IP: s=66.32.46.139 (FastEthernet0/1), d=A.B.C.D (FastEthernet0/1), len 53, rcvd 3, proto=47 Jun 13 22:51:42: IP: s=172.16.3.1 (local), d=224.0.0.10 (Loopback0), len 60, sending broad/multicast, proto=88 Jun 13 22:51:42: IP: s=172.16.3.1 (Loopback0), d=224.0.0.10, len 60, rcvd 2, proto=88 Jun 13 22:51:43: IP: s=192.168.1.9 (FastEthernet0/0), d=224.0.0.10, len 60, rcvd 2, proto=88 Jun 13 22:51:43: IP: s=A.B.C.D (local), d=66.32.46.139 (FastEthernet0/1), len 55, sending, proto=47 Jun 13 22:51:43: IP: s=66.32.46.139 (FastEthernet0/1), d=A.B.C.D (FastEthernet0/1), len 55, rcvd 3, proto=47 Jun 13 22:51:44: IP: s=192.168.1.50 (FastEthernet0/0), d=255.255.255.255, len 164, rcvd 2 Jun 13 22:51:44: UDP src=1042, dst=12974 Jun 13 22:51:44: IP: s=192.168.1.15 (FastEthernet0/0), d=192.168.1.255 (FastEthernet0/0), len 213, rcvd 3 Jun 13 22:51:44: UDP src=138, dst=138 Jun 13 22:51:45: IP: s=192.168.1.3 (FastEthernet0/0), d=224.0.0.10, len 60, rcvd 2, proto=88 Jun 13 22:51:45: IP: s=A.B.C.D (local), d=66.32.46.139 (FastEthernet0/1), len 55, sending, proto=47 Jun 13 22:51:45: IP: s=66.32.46.139 (FastEthernet0/1), d=A.B.C.D (FastEthernet0/1), len 55, rcvd 3, proto=47 Jun 13 22:51:46: IP: s=66.32.46.139 (FastEthernet0/1), d=A.B.C.D (FastEthernet0/1), len 53, rcvd 3, proto=47 Jun 13 22:51:46: IP: s=192.168.1.1 (FastEthernet0/0), d=224.0.0.10, len 60, rcvd 2, proto=88 Jun 13 22:51:46: IP: s=192.168.1.5 (FastEthernet0/0), d=224.0.0.10, len 60, rcvd 2, proto=88 Jun 13 22:51:46: IP: s=192.168.1.10 (local), d=224.0.0.10 (FastEthernet0/0), len 60, sending broad/multicast, proto=88 Jun 13 22:51:46: IP: s=172.16.3.1 (local), d=224.0.0.10 (Virtual-Access1), len 60, sending broad/multicast, proto=88 Jun 13 22:51:46: IP: s=172.16.3.1 (local), d=224.0.0.10 (Virtual-Access1), len 60, encapsulation failed, proto=88 Jun 13 22:51:47: IP: s=172.16.3.1 (local), d=224.0.0.10 (Loopback0), len 60, sending broad/multicast, proto=88 Jun 13 22:51:47: IP: s=172.16.3.1 (Loopback0), d=224.0.0.10, len 60, rcvd 2, proto=88 Jun 13 22:51:47: IP: s=A.B.C.D (local), d=66.32.46.139 (FastEthernet0/1), len 55, sending, proto=47 Jun 13 22:51:47: IP: s=66.32.46.139 (FastEthernet0/1), d=A.B.C.D (FastEthernet0/1), len 55, rcvd 3, proto=47 Jun 13 22:51:47: IP: s=192.168.1.9 (FastEthernet0/0), d=224.0.0.10, len 60, rcvd 2, proto=88 Jun 13 22:51:47: IP: s=66.32.46.139 (FastEthernet0/1), d=A.B.C.D (FastEthernet0/1), len 60, rcvd 3 Jun 13 22:51:47: TCP src=2604, dst=22, seq=391229, ack=1252417484, win=8516 ACK PSH Jun 13 22:51:47: IP: s=A.B.C.D (local), d=66.32.46.139 (FastEthernet0/1), len 60, sending Jun 13 22:51:47: TCP src=22, dst=2604, seq=1252417484, ack=391249, win=3928 ACK PSH ""Rahul Kachalia"" wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > Kenneth, > > I cant see single LCP coming in..anyway provide following outputs after > turning debugs on. > > show radius statistics. > debug aaa authen > debug ppp mppe pack > show ppp mppe virtual-access > > if no traces comes up with this debugs..then turn "debug ip pack det" & > place pptp call again I am expecting tcp packet here..if not then there is > definatly L2 problems.. Also looking from configs I can see only FE, may i > know where is t
Re: PPP Negotiation question --- HELP!!! PLEASE! [7:8438]
No, we're not doing any NAT at all on the border router. It's done on a seperate firewall.. Here's something that might make sense but our border router is plugged into a hub. This hub is where this VPN box is plugged into along with a Solaris running Raptor. Basically, Im running a parallel firewall / VPN config. I have tried removing MPPE, configured it for MPPE 128, MPPE 40, passive, stateful, pretty much any combination but it doesn't seem to work. As far as the RADIUS go, It's not even reaching the stage where Radius packets are being passed. It's pretty much just trying to negotiate the authentication type and then it's getting dropped. I will test some VPDN packet * debugs and then I'll try to post it again. FYI, I used NT 4, Win2K, and win 98 as clients to test this out but all of them failed pretty much at the same stage. I'm using IOS 12.2.1... I wonder if there is a bug with this IOS? Guys, I really appreciate this help! ""EA Louie"" wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > Doing NAT anywhere? Like at the Internet Border Router? > > -e- > > - Original Message - > From: "Rahul Kachalia" > To: > Sent: Wednesday, June 13, 2001 10:11 PM > Subject: Re: PPP Negotiation question --- HELP!!! PLEASE! [7:8438] > > > > Kenneth, > > > > Few strange this from following trace.. > > > > 1. PPTP does comes in & establishes connection & which brings vaccess > > interface up too..if thats the case then why outgoing PPP packets are not > > shown in debug. Try turning "debug vpdn packet" "debug vpdn error" & > "debug > > vpdn event" on & see if you get traces after placing pptp call. > > > > 2. As you mentioned connection doesnt comes up, from following traces i > > didnt found it went back down if its true then i need traces till that > level > > to see which process/layer failed to establish connection . > > > > 3. You have configured AAA for login but i didnt saw any UDP packet going > to > > internal network for getting authenticatad. > > > > Just curious if you can try after removing MPPE if that works then try > > configuring it to auto "ppp encrypt mppe auto", but i would prefer just > try > > without encryption first & see if that works. Tommorow i will simulate in > > lab to figure out whats causing it meanwhile you can provide above traces. > > > > Also let me know your email id, since this email id fails to deliver > > message. > > > > thanks, > > rahul. > > > > om: "Kenneth" > > Reply-To: "Kenneth" > > To: [EMAIL PROTECTED] > > Subject: Re: PPP Negotiation question --- HELP!!! PLEASE! [7:8438] > > Date: Wed, 13 Jun 2001 23:17:09 -0400 > > > > Nothing came up with the debugs you listed except for ip packet detail > > > > The router is a 2621 with 2 Fastethernet ports. Fa0/0 is connected to our > > internal network, while Fa0/1 is connected to a border router to the > > internet. PPTP arrives on the Fa0/1 interface. Fa0/1 has a public IP > > address while Fa0/0 has the private address. > > > > Here's the debug from debug ip packet det - I replaced the router's public > > ip with A.B.C.D > > > > > > Jun 13 22:51:35: IP: s=A.B.C.D (local), d=66.32.46.139 (FastEthernet0/1), > > len 116, sending > > Jun 13 22:51:35: TCP src=22, dst=2604, seq=1252417216, ack=391149, > > win=4028 ACK PSH > > Jun 13 22:51:35: IP: s=66.32.46.139 (FastEthernet0/1), d=A.B.C.D > > (FastEthernet0/1), len 40, rcvd 3 > > Jun 13 22:51:35: TCP src=2604, dst=22, seq=391149, ack=1252417292, > > win=8120 ACK > > Jun 13 22:51:36: IP: s=192.168.1.3 (FastEthernet0/0), d=224.0.0.10, len > 60, > > rcvd 2, proto=88 > > Jun 13 22:51:36: IP: s=192.168.1.1 (FastEthernet0/0), d=224.0.0.10, len > 60, > > rcvd 2, proto=88 > > Jun 13 22:51:36: IP: s=66.32.46.139 (FastEthernet0/1), d=A.B.C.D > > (FastEthernet0/1), len 44, rcvd 3 > > Jun 13 22:51:36: TCP src=2626, dst=1723, seq=384185, ack=0, win=8192 > SYN > > Jun 13 22:51:36: IP: s=66.32.46.139 (FastEthernet0/1), d=A.B.C.D > > (FastEthernet0/1), len 40, rcvd 3 > > Jun 13 22:51:36: TCP src=2626, dst=1723, seq=384186, ack=79997953, > > win=8576 ACK > > Jun 13 22:51:36: IP: s=66.32.46.139 (FastEthernet0/1), d=A.B.C.D > > (FastEthernet0/1), len 196, rcvd 3 > > Jun 13 22:51:36: TCP src=2626, dst=1723, seq=384186, ack=79997953, > > win=8576 ACK PSH > > Jun 13 22:51:37: IP: s=66.32.46.139 (FastEthernet0/1), d=A.B.
Re: PPP Negotiation question --- HELP!!! PLEASE! [7:8438]
I got it to work! I decided to "downgrade" to an older IOS 12.1.5T and the ppp negotiation and AAA authentication worked! Now my other problem is I'm getting routing issues. I can't seem to ping the laptop that has established the session from the Router - ? ""Rahul Kachalia"" wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > Kenneth, > > Few strange this from following trace.. > > 1. PPTP does comes in & establishes connection & which brings vaccess > interface up too..if thats the case then why outgoing PPP packets are not > shown in debug. Try turning "debug vpdn packet" "debug vpdn error" & "debug > vpdn event" on & see if you get traces after placing pptp call. > > 2. As you mentioned connection doesnt comes up, from following traces i > didnt found it went back down if its true then i need traces till that level > to see which process/layer failed to establish connection . > > 3. You have configured AAA for login but i didnt saw any UDP packet going to > internal network for getting authenticatad. > > Just curious if you can try after removing MPPE if that works then try > configuring it to auto "ppp encrypt mppe auto", but i would prefer just try > without encryption first & see if that works. Tommorow i will simulate in > lab to figure out whats causing it meanwhile you can provide above traces. > > Also let me know your email id, since this email id fails to deliver > message. > > thanks, > rahul. > > om: "Kenneth" > Reply-To: "Kenneth" > To: [EMAIL PROTECTED] > Subject: Re: PPP Negotiation question --- HELP!!! PLEASE! [7:8438] > Date: Wed, 13 Jun 2001 23:17:09 -0400 > > Nothing came up with the debugs you listed except for ip packet detail > > The router is a 2621 with 2 Fastethernet ports. Fa0/0 is connected to our > internal network, while Fa0/1 is connected to a border router to the > internet. PPTP arrives on the Fa0/1 interface. Fa0/1 has a public IP > address while Fa0/0 has the private address. > > Here's the debug from debug ip packet det - I replaced the router's public > ip with A.B.C.D > > > Jun 13 22:51:35: IP: s=A.B.C.D (local), d=66.32.46.139 (FastEthernet0/1), > len 116, sending > Jun 13 22:51:35: TCP src=22, dst=2604, seq=1252417216, ack=391149, > win=4028 ACK PSH > Jun 13 22:51:35: IP: s=66.32.46.139 (FastEthernet0/1), d=A.B.C.D > (FastEthernet0/1), len 40, rcvd 3 > Jun 13 22:51:35: TCP src=2604, dst=22, seq=391149, ack=1252417292, > win=8120 ACK > Jun 13 22:51:36: IP: s=192.168.1.3 (FastEthernet0/0), d=224.0.0.10, len 60, > rcvd 2, proto=88 > Jun 13 22:51:36: IP: s=192.168.1.1 (FastEthernet0/0), d=224.0.0.10, len 60, > rcvd 2, proto=88 > Jun 13 22:51:36: IP: s=66.32.46.139 (FastEthernet0/1), d=A.B.C.D > (FastEthernet0/1), len 44, rcvd 3 > Jun 13 22:51:36: TCP src=2626, dst=1723, seq=384185, ack=0, win=8192 SYN > Jun 13 22:51:36: IP: s=66.32.46.139 (FastEthernet0/1), d=A.B.C.D > (FastEthernet0/1), len 40, rcvd 3 > Jun 13 22:51:36: TCP src=2626, dst=1723, seq=384186, ack=79997953, > win=8576 ACK > Jun 13 22:51:36: IP: s=66.32.46.139 (FastEthernet0/1), d=A.B.C.D > (FastEthernet0/1), len 196, rcvd 3 > Jun 13 22:51:36: TCP src=2626, dst=1723, seq=384186, ack=79997953, > win=8576 ACK PSH > Jun 13 22:51:37: IP: s=66.32.46.139 (FastEthernet0/1), d=A.B.C.D > (FastEthernet0/1), len 208, rcvd 3 > Jun 13 22:51:37: TCP src=2626, dst=1723, seq=384342, ack=79998109, > win=8420 ACK PSH > Jun 13 22:51:37: %LINK-3-UPDOWN: Interface Virtual-Access1, changed state to > up > Jun 13 22:51:37: IP: s=A.B.C.D (local), d=66.32.46.139 (FastEthernet0/1), > len 55, sending, proto=47 > Jun 13 22:51:37: IP: s=66.32.46.139 (FastEthernet0/1), d=A.B.C.D > (FastEthernet0/1), len 64, rcvd 3 > Jun 13 22:51:37: TCP src=2626, dst=1723, seq=384510, ack=79998141, > win=8388 ACK PSH > Jun 13 22:51:37: IP: s=66.32.46.139 (FastEthernet0/1), d=A.B.C.D > (FastEthernet0/1), len 53, rcvd 3, proto=47 > Jun 13 22:51:37: IP: s=192.168.1.5 (FastEthernet0/0), d=224.0.0.10, len 60, > rcvd 2, proto=88 > Jun 13 22:51:37: IP: s=192.168.1.10 (local), d=224.0.0.10 (FastEthernet0/0), > len 60, sending broad/multicast, proto=88 > Jun 13 22:51:37: IP: s=66.32.46.139 (FastEthernet0/1), d=A.B.C.D > (FastEthernet0/1), len 55, rcvd 3, proto=47 > Jun 13 22:51:38: IP: s=172.16.3.1 (local), d=224.0.0.10 (Loopback0), len 60, > sending broad/multicast, proto=88 > Jun 13 22:51:38: IP: s=172.16.3.1 (Loopback0), d=224.0.0.10, len 60, rcvd 2, > proto=88 > Jun 13 22:51:38: %LINEPROTO-5-UPDOWN: Line protocol on Interface > Virtual-Access1, changed state to up > Jun 13 22:51:38: IP: s=19
Re: Subject: Re: PPP Negotiation question --- HELP!!! PLEASE! [7:8671]
thanks. There is a bug in 12.2.1 IOS that wouldn't let me connect via PAP, CHAP or MS-CHAP. Now that I'm using 12.1.5T7, It's working better although if I use Ms-chap, it lets me in but wouldn't let me ping anything unless I disable PPP ENCRYPT MPPE which is not desireable at all. I'm going to have to use plain CHAP for this. ""michael liu"" wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > First check your router IOS version, only Enterprise version support > ms-chap?What kind of radius server you use? I use Microsoft radius server > with support ms-chap.enable debug aaa authen will give you enough info. > about radius authentication info. Good Luck, ~ml > > > > Get your FREE download of MSN Explorer at http://explorer.msn.com Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=8671&t=8671 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Subject: Re: PPP Negotiation question --- HELP!!! PLEASE! [7:8805]
FYI, it does work with Windows 2000 in every kind of combination ""Kenneth"" wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > I'm actually using Funk's and it does work now. I was using a buggy IOS = > 12.2.1 > > The PPP doesn't work until I went down to 12.1.5T7 > > It's not fully compatible though... certain combinations of mppe encryption > and CHAP/MS-chap doesn't work for NT 4.0 > > > ""Rizzo Damian"" wrote in message > [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > > Cisco's ACS v2.6 using Radius and Funk's Radius Server are the only Two > > known Radius server's that support MPPE (Tacacs is not supported). I'm > > willing to bet your not using either one of those. > > > > -Rizz > > > > > > > > > > -Original Message- > > From: Kenneth [mailto:[EMAIL PROTECTED]] > > Sent: Thursday, June 14, 2001 11:53 PM > > To: [EMAIL PROTECTED] > > Subject: Re: Subject: Re: PPP Negotiation question --- HELP!!! PLEASE! > > [7:8671] > > > > thanks. There is a bug in 12.2.1 IOS that wouldn't let me connect via PAP, > > CHAP or MS-CHAP. Now that I'm using 12.1.5T7, It's working better although > > if I use Ms-chap, it lets me in but wouldn't let me ping anything unless I > > disable PPP ENCRYPT MPPE which is not desireable at all. > > > > I'm going to have to use plain CHAP for this. > > > > > > ""michael liu"" wrote in message > > [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > > > First check your router IOS version, only Enterprise version support > > > ms-chap?What kind of radius server you use? I use Microsoft radius > server > > > with support ms-chap.enable debug aaa authen will give you enough info. > > > about radius authentication info. Good Luck, ~ml > > > > > > > > > > > > Get your FREE download of MSN Explorer at http://explorer.msn.com Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=8805&t=8805 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Subject: Re: PPP Negotiation question --- HELP!!! PLEASE! [7:8804]
I'm actually using Funk's and it does work now. I was using a buggy IOS = 12.2.1 The PPP doesn't work until I went down to 12.1.5T7 It's not fully compatible though... certain combinations of mppe encryption and CHAP/MS-chap doesn't work for NT 4.0 ""Rizzo Damian"" wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > Cisco's ACS v2.6 using Radius and Funk's Radius Server are the only Two > known Radius server's that support MPPE (Tacacs is not supported). I'm > willing to bet your not using either one of those. > > -Rizz > > > > > -Original Message- > From: Kenneth [mailto:[EMAIL PROTECTED]] > Sent: Thursday, June 14, 2001 11:53 PM > To: [EMAIL PROTECTED] > Subject: Re: Subject: Re: PPP Negotiation question --- HELP!!! PLEASE! > [7:8671] > > thanks. There is a bug in 12.2.1 IOS that wouldn't let me connect via PAP, > CHAP or MS-CHAP. Now that I'm using 12.1.5T7, It's working better although > if I use Ms-chap, it lets me in but wouldn't let me ping anything unless I > disable PPP ENCRYPT MPPE which is not desireable at all. > > I'm going to have to use plain CHAP for this. > > > ""michael liu"" wrote in message > [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > > First check your router IOS version, only Enterprise version support > > ms-chap?What kind of radius server you use? I use Microsoft radius server > > with support ms-chap.enable debug aaa authen will give you enough info. > > about radius authentication info. Good Luck, ~ml > > > > > > > > Get your FREE download of MSN Explorer at http://explorer.msn.com Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=8804&t=8804 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: ip default-network 0.0.0.0? [7:10027]
Depending on what routing protocol you're using, the default-network forces the router to advertise itself as the default gateway of the receiving router... In case of EIGRP, if you don't explicitly create an ip route 0.0.0.0 0.0.0.0 x.x.x.x, the remote router will not know how to route packets destined for unknown subnets. If you create the ip default-network y.y.y.y on the headend, the headend router will advertise itself as the default gateway for the route. wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > What will this do? > ip default-network 0.0.0.0 > > Is this preferred over routing protocols? Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=10041&t=10027 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
ATT Frame-relay lmi type [7:10042]
Has anyone of you configured a router to connect to ATT's frame cloud? My router is sending lmi's but ATT said all they see is that I'm sending 3 bytes of lmi for every frame when their frame switch was expecting 15 bytes of lmi. Also, can anyone provide me with the usual ATT frame information such as the encapsulation type, lmi type,... I use lmi-type ansi and encap ietf ATT said they use Strata for their lmi what's Strata? Thanks guys! Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=10042&t=10042 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: How to tell the difference beteween a 1600 and a 1600R [7:10044]
I believe if you have a 1600, it only has one built-in ethernet port while a 1600R has two I could be wrong but I'm pretty sure that's pretty accurate ""Charles Manafa"" wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > mz is compressed and runs in memory > > CM > > > -Original Message- > > From: Neil Schneider [mailto:[EMAIL PROTECTED]] > > Sent: 26 June 2001 13:33 > > To: [EMAIL PROTECTED] > > Subject: Re: How to tell the difference beteween a 1600 and a 1600R > > [7:9956] > > > > > > I am pretty sure the M means it is a compressed IOS. > > > > Neil > > > > > > ""Sam Deckert"" wrote in message > > [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > > > Check the image name from the sh ver - if it contains an > > 'm' it means run > > > from memory I think. > > > > > > Here are the examples someone else used - you can see it from these: > > > > > > IOS for 1600: > > > > > > c1600-y-l.113-11b.bin > > > > > > > > > IOS for 1600R: > > > > > > c1600-y-mz.120-9.bin > > > > > > > > > HTH, > > > > > > Sam. > > > > > > - Original Message - > > > From: "Raul F. Fernandez-WCOMM" > > > To: > > > Sent: Tuesday, June 26, 2001 1:38 AM > > > Subject: How to tell the difference beteween a 1600 and a > > 1600R series. > > > [7:9797] > > > > > > > > > > Dear Folks, > > > > > > > > Hope all is going well for everyone. I have a real quick > > question. From > > > the > > > > "show ver" is there a way to determine the difference > > between a 1600 and > > > > 1600R series routers. Also will a 1600R run regualr 1600 > > code? Thank > > you. > > > > > > > > Sincerely, > > > > > > > > Raul Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=10044&t=10044 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Specifying username/password on Catalyst 5000/5500 [7:10499]
I think he's asking about local username/password accounts. ""FELIX KISSIEDU"" wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > set system name is the command to assign the hostname name. > set password is the command to assign the pasword. to assign the password > to go into enable mode use the set enablepass command. Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=10499&t=10499 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Router as PPTP server - problems [7:10481]
I had this similar problem on my setup just 3 weeks ago, I had to downgrade to a 12.1.5T7 IOS image and it worked fine. But, if you want to require encryption, make sure your RADIUS server support MS-CHAP-MPPE-KEYS. I am using Funk's Steel-Belted radius configured with the MS-CHAP-MPPE-KEYS but still am having problem so I had to resort to using CHAP without MPPE for now (testing stage). Try the dowgrade and see if it works with your router, I'm pretty sure it will. On another note, make sure that in your configuration on the PPTP of Windows 2000, select Point-to-point tunneling protocol as opposed to letting windows do "automatic". Let me know. Hope this helps. ""nrf"" wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > I got a 2514 running 12.2, and I want to set it up to be a PPTP server. I > have reviewed the CCO docs' and I believe I have done everything they told > me to do. But it doesn't work. For example, when I fire up a PPTP client > from W2k, I see that the router is contacted and it gets to the "Verifying > Username and password" stage, but doesn't proceed further. Does anybody > know what it up with that? > > Here is what I configured on the router: > > > username me password 0 me > ip local pool default 120.1.1.1 120.1.1.2 > vpdn enable > > vpdn-group mypptpgroup > ! Default PPTP VPDN group > accept-dialin > protocol pptp > virtual-template 3 > > > interface Virtual-Template3 > ip unnumbered Loopback0 > peer default ip address pool default > ppp encrypt mppe 40 > ppp authentication ms-chap > > I set up Windows2000 for PPTP client (no L2TP), using MsCHAP v1 (not v2 > because I saw the CCO warnings not to use v2), and PPP LCP extensions. I > have tried it with and without software compression. > > When I debug PPP nego and VPDN event and VPDN packet, I just get the > following over and over. The error at the very end is really odd, perhaps > that has something to do with it? > > > > router# > 03:22:34: Vi1 VPDN: Virtual interface created > 03:22:34: Vi1 VPDN: Clone from Vtemplate 3 > 03:22:36: Vi1 VPDN: Bind interface direction=2 > Jun 30 05:13:21: %LINK-3-UPDOWN: Interface Virtual-Access1, changed state to > up > 03:22:36: Vi1 PPP: Treating connection as a dedicated line > 03:22:36: Vi1 PPP: Phase is ESTABLISHING, Active Open [0 sess, 0 load] > 03:22:36: Vi1 LCP: O CONFREQ [Closed] id 181 len 15 > 03:22:36: Vi1 LCP:AuthProto MS-CHAP (0x0305C22380) > 03:22:36: Vi1 LCP:MagicNumber 0x6100C064 (0x05066100C064) > 03:22:36: Vi1 VPDN: O out > router# > Jun 30 05:13:22: %LINEPROTO-5-UPDOWN: Line protocol on Interface > Virtual-Access1 > , changed state to up > router# > 03:22:38: Vi1 LCP: TIMEout: State REQsent > 03:22:38: Vi1 LCP: O CONFREQ [REQsent] id 182 len 15 > 03:22:38: Vi1 LCP:AuthProto MS-CHAP (0x0305C22380) > 03:22:38: Vi1 LCP:MagicNumber 0x6100C064 (0x05066100C064) > 03:22:38: Vi1 VPDN: O out > router# > 03:22:40: Vi1 LCP: TIMEout: State REQsent > 03:22:40: Vi1 LCP: O CONFREQ [REQsent] id 183 len 15 > 03:22:40: Vi1 LCP:AuthProto MS-CHAP (0x0305C22380) > 03:22:40: Vi1 LCP:MagicNumber 0x6100C064 (0x05066100C064) > 03:22:40: Vi1 VPDN: O out > router# > 03:22:42: Vi1 LCP: TIMEout: State REQsent > 03:22:42: Vi1 LCP: O CONFREQ [REQsent] id 184 len 15 > 03:22:42: Vi1 LCP:AuthProto MS-CHAP (0x0305C22380) > 03:22:42: Vi1 LCP:MagicNumber 0x6100C064 (0x05066100C064) > 03:22:42: Vi1 VPDN: O out > router# > 03:22:44: Vi1 LCP: TIMEout: State REQsent > 03:22:44: Vi1 LCP: O CONFREQ [REQsent] id 185 len 15 > 03:22:44: Vi1 LCP:AuthProto MS-CHAP (0x0305C22380) > 03:22:44: Vi1 LCP:MagicNumber 0x6100C064 (0x05066100C064) > 03:22:44: Vi1 VPDN: O out > router# > 03:22:46: Vi1 LCP: TIMEout: State REQsent > 03:22:46: Vi1 LCP: O CONFREQ [REQsent] id 186 len 15 > 03:22:46: Vi1 LCP:AuthProto MS-CHAP (0x0305C22380) > 03:22:46: Vi1 LCP:MagicNumber 0x6100C064 (0x05066100C064) > 03:22:46: Vi1 VPDN: O out > router# > 03:22:48: Vi1 LCP: TIMEout: State REQsent > 03:22:48: Vi1 LCP: O CONFREQ [REQsent] id 187 len 15 > 03:22:48: Vi1 LCP:AuthProto MS-CHAP (0x0305C22380) > 03:22:48: Vi1 LCP:MagicNumber 0x6100C064 (0x05066100C064) > 03:22:48: Vi1 VPDN: O out > router# > 03:22:50: Vi1 LCP: TIMEout: State REQsent > 03:22:50: Vi1 LCP: O CONFREQ [REQsent] id 188 len 15 > 03:22:50: Vi1 LCP:AuthProto MS-CHAP (0x0305C22380) > 03:22:50: Vi1 LCP:MagicNumber 0x6100C064 (0x05066100C064) > 03:22:50: Vi1 VPDN: O out > router# > 03:22:52: Vi1 LCP: TIMEout: State REQsent > 03:22:52: Vi1 LCP: O CONFREQ [REQsent] id 189 len 15 > 03:22:52: Vi1 LCP:AuthProto MS-CHAP (0x0305C22380) > 03:22:52: Vi1 LCP:MagicNumber 0x6100C064 (0x05066100C064) > 03:22:52: Vi1 VPDN: O out > router# > 03:22:54: Vi1 LCP: TIMEout: State REQsent > 03:22:54: Vi1 LCP: O CONFREQ [REQsent] id 190 len 15 > 03:22:54: Vi1 LCP:AuthProto MS-CHAP (0x0305C22380) > 03:22:54: Vi1 LCP:MagicNumber 0x6100C064 (0x05066100C064) > 03:22:54: Vi1 VPDN: O out > router# > Jun 30 0
Funk Steel-belted radius [7:10500]
has anyone ever used the MS-CHAP-MPPE-KEYS attribute in Funk to make PPTP tunneling work on a cisco router? I couldn't get it to work as the AAA log shows: MPPE: RADIUS keying material missing Any inputs would help. I tried playing around with the .dct file but didn't do anything that was helpful. Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=10500&t=10500 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: The cost of ISS? [7:10305]
I think it cost us $1500 for a 30 day usage for about 250 nodes. ""Justin Lofton"" wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > How much is the ISS software? Does anyone know? > > Thanks Everyone! > > Justin Lofton > Account Executive/CCNA > Tredent Data Systems > [EMAIL PROTECTED] > V: (818) 222-3770 > F: (818) 222-3778 > http://www.tredent.com/ Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=10503&t=10305 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
BRI backup configurations [7:10504]
Guys, I am currently configuring 12 remote sites connected via frame-relay to our HQ. Each site has an ISDN connection for backup to our HQ. At our HQ, I have a dedicated router to accept BRI connection for these sites except I only have 4 BRIs. The reason for this is based on my "statistical analysis" (don't know if it's that accurate), I don't anticipate more than 4 offices being down at any particular time. Now, I want these offices to be able to dial into HQ and be smart enough to sort of do a rotary-group dialing (I know it only works for PRI). If BRI port 1 on HQ is busy, it goes to BRI port 2. If that's busy, it goes to 3 and so on. How do you normally do this? On the HQ site, I have configured 12 Dailer interfaces and each of the 4 BRI is a member of the 12 dialer-pools. Im just not sure how you do the remote site... do I just put in multiple dialer-string, one after the other in the sequence I'd like them to be or are there special commands? Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=10504&t=10504 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: TACACS+ and AAA [7:10211]
Cisco's site search for "configuring AAA" ""anthony moore"" wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > Anyone got any good reference or know where to get documentation on > configuring TACACS+, AAA, and Cisco ACS server Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=10506&t=10211 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: failed telnet [7:10517]
What exactly is the question now? wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > After disconnecting a SUN server from a Catalyst 6509, i tried to > telnet it and a proxy Network Appliance respond the telnet. > There are any strange IP configuration (no NAT, no virtual, etc.) > Thanks in advance. Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=10522&t=10517 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: weird PAP/CHAP problem with Windows Ciscosecure [7:10547]
What kind of Database is this being authenticated to? NT SAM, LDAP,...? ""nrf"" wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > I am trying to implement a Radius dial access configuration, using > Ciscosecure 2.6 for Windows. I have noticed the following: > > When I set up my NaS and AAA server for radius, the client can only be > properly authenticated with PAP. If I use chap, then apparently the NAS > refuses to authenticate, and I constantly get a debug messages like "peer > unable to authenticate" messages. This happens even though I have checked > about a thousand times that the password is indeed correct, and that > Ciscosecure has been configured to use the password for chap. As soon as I > configure the dial client for PAP (not the NAS, but the client), everything > immediately authenticates and works perfectly. > > This is really odd because if I switch CS and the NAS to speak Tacacs+, then > the client can authenticate with chap perfectly. It is only when I use > radius and client chap do I get this stupid problem. > > Has anybody ever seen this? Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=10550&t=10547 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: BRI backup configurations [7:10504]
Because it's on a different router (The FR connections) and I'm using the backup interface command on the remote routers to dial into a BRI router ""Nelluri Reddy"" wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > Why don't you have the hq initiate dialing? > > Kenneth wrote: > > > > Guys, I am currently configuring 12 remote sites connected via frame-relay > > to our HQ. Each site has an ISDN connection for backup to our HQ. At our > HQ, > > I have a dedicated router to accept BRI connection for these sites except I > > only have 4 BRIs. > > > > The reason for this is based on my "statistical analysis" (don't know if > > it's that accurate), I don't anticipate more than 4 offices being down at > > any particular time. > > > > Now, I want these offices to be able to dial into HQ and be smart enough to > > sort of do a rotary-group dialing (I know it only works for PRI). If BRI > > port 1 on HQ is busy, it goes to BRI port 2. If that's busy, it goes to 3 > > and so on. > > > > How do you normally do this? On the HQ site, I have configured 12 Dailer > > interfaces and each of the 4 BRI is a member of the 12 dialer-pools. Im > just > > not sure how you do the remote site... do I just put in multiple > > dialer-string, one after the other in the sequence I'd like them to be or > > are there special commands? Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=10559&t=10504 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: BRI backup configurations [7:10504]
Interesting... I didn't know local telco's will allow hunting of ISDN lines! thanks! ""Tom"" wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > Have your local telco define a hunt group that contains the numbers of the 4 > bri's at headquarters. The remote ends then dial the hunt group number and > are hunted to the next available line. > > Tom > > > ""Nelluri Reddy"" wrote in message > [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > > Why don't you have the hq initiate dialing? > > > > Kenneth wrote: > > > > > > Guys, I am currently configuring 12 remote sites connected via > frame-relay > > > to our HQ. Each site has an ISDN connection for backup to our HQ. At our > > HQ, > > > I have a dedicated router to accept BRI connection for these sites > except I > > > only have 4 BRIs. > > > > > > The reason for this is based on my "statistical analysis" (don't know if > > > it's that accurate), I don't anticipate more than 4 offices being down > at > > > any particular time. > > > > > > Now, I want these offices to be able to dial into HQ and be smart enough > to > > > sort of do a rotary-group dialing (I know it only works for PRI). If BRI > > > port 1 on HQ is busy, it goes to BRI port 2. If that's busy, it goes to > 3 > > > and so on. > > > > > > How do you normally do this? On the HQ site, I have configured 12 Dailer > > > interfaces and each of the 4 BRI is a member of the 12 dialer-pools. Im > > just > > > not sure how you do the remote site... do I just put in multiple > > > dialer-string, one after the other in the sequence I'd like them to be > or > > > are there special commands? Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=10591&t=10504 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: MRTG and Cat6509 [7:10575]
Use an SNMP viewer and go to its tree, it should tell you which interface it is. Make sure you load the proper MIBs ""Tay Chee Yong"" wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > Hi all, > > I am currently plotting MRTG on a Catalyst 6509 switch. But I am unable to > decipher the target code in the config file. > > Target[192.168.10.254.XYZ]: 1:[EMAIL PROTECTED] > > I am unable to determine which interface is XYZ referring to, as there is > no proper numbering for XYZ. There are numbers such as 226, but I do not > know which interface does it represent. > > Anyone care to advise? Thanks. > > Regards, > Cheeyong Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=10590&t=10575 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Can I turn off telnet but still allow SSH in? [7:10581]
Absolutely. you can either use an access-class on the vty interface or just use "transport input ssh" on the vty interface: config t line vty 0 4 transport input ssh this should only allow the ssh protocol to go through instead of using the access-class command: http://www.cisco.com/univercd/cc/td/doc/product/software/ios120/12cgcr/np1_r /1rprt2/1rip.htm#xtocid155131 Watch the wrap. ""nrf"" wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > Is there a way to bar telnet access to a router, but still allow SSH? If > so, what are the commands? > > Thanx Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=10592&t=10581 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Made CCNP! [7:37720]
use the BSCN and Routing TCP/IP, it's really good. ""colin newman"" wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > Congrats > > What book(s) did you use for the Routing exam? > > Colinscott wrote: > > > > Thanks to everyone! Now onward to the holy grail > > > > Scott Chapin, CCNA, CCNP Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=37728&t=37720 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Made CCNP! [7:37720]
yes and yes. (off the top of my head). ""colin newman"" wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > Hi > > > Are you referring to the BSCN book by Paquest and Teare? Is the Routing > book Vol 1 by Doyle? > > Thanks > > Colin > > Kenneth wrote: > > > > use the BSCN and Routing TCP/IP, it's really good. > > > > ""colin newman"" wrote in message > > [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > > > Congrats > > > > > > What book(s) did you use for the Routing exam? > > > > > > Colinscott wrote: > > > > > > > > Thanks to everyone! Now onward to the holy grail > > > > > > > > Scott Chapin, CCNA, CCNP Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=37832&t=37720 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: books to use to study for CCNP exam [7:37818]
I personally used BCMSN and Cisco LAN Switching, the latter is a really really really really good book! ""Shivjit Patil"" wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > Hi..I have just finished my BSCN examinations. I used the Cisco BSCN book > for the examination. I found that book real good cause it was very > comprehensive and had a lot of lab execises. > > Now I want to study for the BCMSN examination and I have to purchase a book > for it. I have two options i.e either buy the individual BCMSN book or the > CCNP Preparation Library. > > I prefer books that are complelty exhaustive and give you full knowledge on > the subject. I was wondering if the CCNP Preparation Library is as > exhaustive as the individual CCNP examination books. > > Could anyone please advice me as to what I should go ahead and buy. > > Thank you > Shivjit Patil Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=37833&t=37818 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
ISDN switching in IOS 12++?
Has anyone heard about Cisco's plan to integrate the next Cisco IOS release with capabilities to simulate ISDN switching? I read it somewhere at comp.dcom.sys.cisco... If this is the case, I think I'll hold back from buying an ISDN Simulator and wait for the IOS release ___ UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html FAQ, list archives, and subscription info: http://www.groupstudy.com Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
b
___ UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html FAQ, list archives, and subscription info: http://www.groupstudy.com Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: DTE or DCE?
routers are generally DTE devices so both DTE cannot be conected and expected to communicate with each other as the pinouts are exactly the same on the serial interface. To have them communicate, you should have at least one DTE device act as a DCE device by using the proper cabling and having the DTE device that should act as a DCE provide clocking... ""frank"" <[EMAIL PROTECTED]> wrote in message 8m8dio$70g$[EMAIL PROTECTED]">news:8m8dio$70g$[EMAIL PROTECTED]... > could anybody explain that why s1 of a router connects with a DTE cable and > s2 connects with a DCE cable? Is the router a DTE or DCE? > > Thanks, > > frank > > > ___ > UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html > FAQ, list archives, and subscription info: http://www.groupstudy.com > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] > --- ___ UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html FAQ, list archives, and subscription info: http://www.groupstudy.com Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: CCNA 2.0: Advise needed
Todd Lamle's CCNA 2.0 Cisco ICND Boson Test Software ""Cliff Lo"" <[EMAIL PROTECTED]> wrote in message 8mc58u$4tv$[EMAIL PROTECTED]">news:8mc58u$4tv$[EMAIL PROTECTED]... > Can anyone advise me on what books I should read up, before I attend this > test?? > > > Cliff > > > ___ > UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html > FAQ, list archives, and subscription info: http://www.groupstudy.com > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] > --- ___ UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html FAQ, list archives, and subscription info: http://www.groupstudy.com Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
passed CCNA - thanks!
I passed the CCNA with a 935! Thanks to all postings on this newsgroup. coupled with comp.dcom.sys.cisco newsgroup, I've learned tons of stuff from you guys! Kenneth Lorenzo MCSE, CCNA ___ UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html FAQ, list archives, and subscription info: http://www.groupstudy.com Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Great online bookstore
try www.addall.com which searches all bookstores... including bookpool,... Kenneth "Marshal Schoener" <[EMAIL PROTECTED]> wrote in message D561FA4DFDF0D2119AA900104B1F46AE1AF234@monster">news:D561FA4DFDF0D2119AA900104B1F46AE1AF234@monster... > As far as I can tell, the best online place to get technical books is > www.bookpool.com > > Everything is so much cheaper than Amazon and other online stores :-) > > The MCRAN book is $42 on bookpool, compared to $60 on Amazon!!! > Just some info :-) > > ___ > UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html > FAQ, list archives, and subscription info: http://www.groupstudy.com > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] > --- ___ UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html FAQ, list archives, and subscription info: http://www.groupstudy.com Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: passed CCNA - thanks!
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Unless you have an nntp server provided to you by your ISP (which I don't), you can use www.remarq.com . It's pretty cool since you can get emails if people reply to your postings or get emails on postings which you put in your watchlist. I've been using it for both education and at work. Thanks! Kenneth Lorenzo MCSE, CCNA "Jean Stockton" <[EMAIL PROTECTED]> wrote in message 000701bffefb$5a9da330$[EMAIL PROTECTED]">news:000701bffefb$5a9da330$[EMAIL PROTECTED]... > Kenneth; > > BIG UP!!! > > what is the url to join comp.dcom.sys.cisco newsgroup. > > thanks > > > mjs,ccna > > > -Original Message- > > From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On > > Behalf Of Kenneth > > Sent: Saturday, August 05, 2000 12:09 PM > > To: [EMAIL PROTECTED] > > Subject: passed CCNA - thanks! > > > > > > I passed the CCNA with a 935! Thanks to all postings on this > > newsgroup. coupled with comp.dcom.sys.cisco newsgroup, I've > > learned tons of stuff from > > you guys! > > > > Kenneth Lorenzo > > MCSE, CCNA > > > > > > ___ > > UPDATED Posting Guidelines: > > http://www.groupstudy.com/list/guide.html FAQ, list archives, and > > subscription info: http://www.groupstudy.com Report misconduct > > and Nondisclosure violations to [EMAIL PROTECTED] > > > > ___ > UPDATED Posting Guidelines: > http://www.groupstudy.com/list/guide.html FAQ, list archives, and > subscription info: http://www.groupstudy.com Report misconduct and > Nondisclosure violations to [EMAIL PROTECTED] --- -BEGIN PGP SIGNATURE- Version: PGP 6.5.3 iQA/AwUBOYxHTksuAOj4uCP1EQLNegCbBM8bKkNxjR0KC372qRPHJviNgV4An0Ad jPArz3GUsMLJG2PSboUth37N =TtY+ -END PGP SIGNATURE- ___ UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html FAQ, list archives, and subscription info: http://www.groupstudy.com Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: CCNA v2.0 Todd Lammle Book
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 There are a lot of errors on this book I agree. Here's 2 of them I can think of off the top of my head without looking at the book: 1) The pinouts on the RJ-45 2) The frame relay example on multi-point (i think, or was it point-to-point). I think it's mostly typo but someone who's not familiar with it might take it as it is. Other than occassional typos, I think the book is very good. "Robert Padjen" <[EMAIL PROTECTED]> wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > Marco - > > Would you please provide an example or two to the > group. I have worked with Todd for many years, and > while folks may take issue with writing styles, I find > it difficult to believe that 'Mr. CCNA' would have > many errors. The guy has trained hundreds to pass the > test and understand the material. If there are errors, > then please do all of us a favor and call them out to > augment the learning process. > > Thanks. > > --- Marco Rodrigues <[EMAIL PROTECTED]> wrote: > > Not be to rude or anything, but this book is very > > poorly > > written. Luckily I have some previous experience and > > wasn't relying on > > this as an actual informative source. There are some > > many mistakes, that > > are not even in the errata. > > > > Can anyone out there recommend another source of > > information for > > the 507 exam? I'm reading all the white papers on > > certificationzone.com > > and they are very well written and informative. > > > > Thanks! > > > > -- > > Regards, > > > > --- > > Marco Paulo Rodrigues > > Unix Administrator > > Axxent Corporation > > Email: [EMAIL PROTECTED] > > CompTia: A+, Network+, i-Net+ > > Cisco: CCDA > > --- > > > > "Virtually All Internet Porno flows through the > > systems of one > > company. Cisco Systems. Imporning the Internet > > Generation." > > - Marco Rodrigues '99 > > > > ___ > > UPDATED Posting Guidelines: > > http://www.groupstudy.com/list/guide.html > > FAQ, list archives, and subscription info: > > http://www.groupstudy.com > > Report misconduct and Nondisclosure violations to > [EMAIL PROTECTED] > > > = > Robert Padjen > > __ > Do You Yahoo!? > Kick off your party with Yahoo! Invites. > http://invites.yahoo.com/ > > ___ > UPDATED Posting Guidelines: > http://www.groupstudy.com/list/guide.html FAQ, list archives, and > subscription info: http://www.groupstudy.com Report misconduct and > Nondisclosure violations to [EMAIL PROTECTED] --- -BEGIN PGP SIGNATURE- Version: PGP 6.5.3 iQA/AwUBOY1ZAksuAOj4uCP1EQJU/gCeMPGLf/0mtyYPLj/GDEzQtO9VReYAnjQI qCxsepOROBu+bRjpuvqpX3Zb =GgfF -END PGP SIGNATURE- ___ UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html FAQ, list archives, and subscription info: http://www.groupstudy.com Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: DTE or DCE?
Example: 1 2501 Router 1 2503 Router 1 DTE-DCE Cable To connect both router and have them communicate with each other, connect DTE end of the cable to S0 of 2501 and connect DCE end of cable to 2503's S0. This is just an example. You can always revers it or connect it to any other serial port as you think might fit your needs. Whichever is the router with the "DCE" end connected, go to it's serial (S0) and configure add the line "clock rate 64000" or any other speed you want it to provide to simulate a real connection. I use "clock rate 100". After that, you can give both ends of the connection ip addresses and "no shutdown" and the line will be up (with the default HDLC encapsulation). Normally, a router connects to a DCE device like a CSU/DSU to connect via T1 connection because DCE devices provide clocking to the DTE device. since you're "simulating" a real connection, one of the DTE device has to be configired as a DCE device that provides clocking. hope this helps. Kenneth ""frank"" <[EMAIL PROTECTED]> wrote in message 8m95cl$eg2$[EMAIL PROTECTED]">news:8m95cl$eg2$[EMAIL PROTECTED]... > I just got such descriptin from a book .So you mean if one router has s1 > connected with > DTE cable and s2 connected with a DCE cable,it must be one of the two > routers of a back-to-back connection. > could you explain the DTE / DCE cable and connection way of a back-to-back > connection? > > Thanks. > > > "Kenneth" <[EMAIL PROTECTED]> wrote in message > 8m91l6$3lu$[EMAIL PROTECTED]">news:8m91l6$3lu$[EMAIL PROTECTED]... > > routers are generally DTE devices so both DTE cannot be conected and > > expected to communicate with each other as the pinouts are exactly the > same > > on the serial interface. To have them communicate, you should have at > least > > one DTE device act as a DCE device by using the proper cabling and having > > the DTE device that should act as a DCE provide clocking... > > > > ""frank"" <[EMAIL PROTECTED]> wrote in message > > 8m8dio$70g$[EMAIL PROTECTED]">news:8m8dio$70g$[EMAIL PROTECTED]... > > > could anybody explain that why s1 of a router connects with a DTE cable > > and > > > s2 connects with a DCE cable? Is the router a DTE or DCE? > > > > > > Thanks, > > > > > > frank > > > > > > > > > ___ > > > UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html > > > FAQ, list archives, and subscription info: http://www.groupstudy.com > > > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] > > > --- > > > > > > ___ > > UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html > > FAQ, list archives, and subscription info: http://www.groupstudy.com > > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] > > --- > > > ___ > UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html > FAQ, list archives, and subscription info: http://www.groupstudy.com > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] > --- ___ UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html FAQ, list archives, and subscription info: http://www.groupstudy.com Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
DSL modem to 2500 router
Does anyone know if there's a special cable that goes out of the ethernet port of a standard DSL modem and in to the serial port of a 2500 router (DB60) ? I don't think the signalling is the same but, hey, I might find some surprising answers from CCIE gurus! If that won't work, I guess I'll have to settle for a 633DSL modem from Cisco... pretty expensive stuff for a modem. Kenneth ___ UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html FAQ, list archives, and subscription info: http://www.groupstudy.com Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
