PPP authentication [7:74551]
Hiyah everyone, I have two routers, Router2 and Router3, one a 2500 and the other a 2600. Configuring CHAP on the link, I just need (supposedly) to include these lines on the global config Router2(config)# username Router3 password abc Router3(config)# username Router2 password abc And apply "ppp auth chap" to the interfaces. However, when doing this, the link becomes more of a flapping link, and, running "debug ppp auth", there is no authentication success. However, if I were to do this: Router2(config)# username Router3 password abc Router2(config)# username Router2 password abc Router3(config)# username Router2 password abc Router3(config)# username Router3 password abc and apply CHAP on the respective interfaces, the link just comes up! >From the various sources that I checked, the former implementation would've worked, but in my case, the latter works, not the former. I'm wondering whether this is due to IOS version issues or not. I'm not in the office now, so I can't check the versions atm. Any comments on this matter would be appreciated. Thanks. Kenneth Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=74551&t=74551 -- **Please support GroupStudy by purchasing from the GroupStudy Store: http://shop.groupstudy.com FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
PPP Question [7:74568]
Hiyah guys, I have a question on PPP CHAP. From the various sources, we just need to declare the remote router's username and have the same password, apply CHAP on the PPP serial interfaces and the link will be up. In my case, it doesn't work. It became a flapping link. I am using a 2500 and 2600 router to run PPP. Instead, I have to configure this: Router1 Username Router2 password abc Username Router1 password abc Router2 Username Router1 password abc Username Router2 password abc Applying CHAP now will have the link up. Any comments on this matter would be appreciated. Thanks. Kenneth Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=74568&t=74568 -- **Please support GroupStudy by purchasing from the GroupStudy Store: http://shop.groupstudy.com FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Passed my CCNP [7:74076]
Hiyah everyone, Been quite busy of late, preparing for the exams, so I haven't checked this site for ages, and my e-mail was full... Neway, as the subject heading, I just wanted to say that I'm now a CCNP. Took 3 papers in bout 2 weeks, before the changes took effect. I found Support to be the most challenging. Well, time to end the festivities and begin preparing for the fearful CCIE.. though I'm not sure whether I should head off into Security or R&S. Kenneth CCNP, CCDA Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=74076&t=74076 -- **Please support GroupStudy by purchasing from the GroupStudy Store: http://shop.groupstudy.com FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
RE: Going For BCRAN Beta Exam [7:66945]
Good question. Well, if you searched Cisco under the keyword "Beta Exam", you'll end up in this page: http://www.cisco.com/en/US/learning/le3/le11/learning_beta_certifcation_exam09186a00800a382d.html The BCRAN beta will expire on the 4th. However, if you were to search using the keyword "643-821", another page appears, which is: http://www.cisco.com/en/US/learning/le3/learning_recent_article09186a0080157630.html For this one, it expires on the 15th. I am puzzled myself, but, since I registered on Friday, which is the 4th, and have obtained the 'Candidate Receipt', I guess I'm guaranteed a seat for the exam :) But, just to be safe, I guess I'll give my testing centre a call. Thanks again Andy, for pointing this out. Regards, Kenneth Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=66963&t=66945 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Going For BCRAN Beta Exam [7:66945]
Hiyah everyone, I'll be sitting for the BCRAN Beta exam on the 15th. From the Cisco website, I found that there are some new topics introduced, such as VPN and DSL. Does anyone know where I can obtain information on those topics? Also, it seems that Cisco has removed X.25 from the exam. Regards, Kenneth Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=66945&t=66945 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Passed support Exam [7:66885]
I'm also working on my CCNP, and at the same, keeping note of whatever I've learnt to ease my burden on the progress for CCIE. Good luck in your CCDP/CCIE. Kenneth Sudarshan N Chari wrote: > > Hi All, > > Just coming back from the exam room. Passed Support exam, my > last one > that was remaining to achieve CCNP. > > Now thinking of doing CCDP/CCIE. Not decided quite about which > one > next. May be after some time to relax. > > Regards > Sudarshan > > __ > Do you Yahoo!? > Yahoo! Tax Center - File online, calculators, forms, and more > http://tax.yahoo.com > > Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=66944&t=66885 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Setup Win2K prof. as NETBEUI client [7:61291]
How to configure a PC (win2K prof.) for testing DLSW in lab? Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=61291&t=61291 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
C2503 Flash upgrade [7:57570]
Folks, I have a router with one 8M flash (Right now, it is running a flash with 7M in the single flash. And i plan to add an additional 8M flash into the spare slot. After rebooting the router, i saw 16M Flash in place. But I can't put in a larger flash: c2500-js-l.121-9.bin (14M) by "copy tftp flash" -- It show the exisit space is not enough for the new image. I have tried to erase flash but flash is of "read only" Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=57570&t=57570 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Anniversary [7:45937]
Exactly one year as a "made man". Time to start studying for the recert. So, I'm back! Ken #7544 Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=45937&t=45937 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Token Ring cable [7:45018]
Hi, Just start to prepare home lab, I got token ring interface (C2521) and MAU Hub. Where can I get the cable? What should I use? Any comment! Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=45018&t=45018 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Need help on crtl-shift-6 [7:43844]
Marko, I perform line con 0 escape-character 27 The crt-shift-6 x not working anymore. The Esc key not working as well. Do you have some doc. about this? Thanks! Kenneth Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=44011&t=43844 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Need help on crtl-shift-6 [7:43844]
I found it difficult to use crtl-shift-6 to get back the terminal server. Sometimes okay but sometimes not! Can anyone help me? Can I change this with a simplier key? Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=43844&t=43844 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Network Management [7:38197]
Is there any commands/ tools that I can config on a router so that it can perform ping test on another router regularly by its own. RTR commands?! SAA ?! And how?! Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=38197&t=38197 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: books to use to study for CCNP exam [7:37818]
I personally used BCMSN and Cisco LAN Switching, the latter is a really really really really good book! ""Shivjit Patil"" wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > Hi..I have just finished my BSCN examinations. I used the Cisco BSCN book > for the examination. I found that book real good cause it was very > comprehensive and had a lot of lab execises. > > Now I want to study for the BCMSN examination and I have to purchase a book > for it. I have two options i.e either buy the individual BCMSN book or the > CCNP Preparation Library. > > I prefer books that are complelty exhaustive and give you full knowledge on > the subject. I was wondering if the CCNP Preparation Library is as > exhaustive as the individual CCNP examination books. > > Could anyone please advice me as to what I should go ahead and buy. > > Thank you > Shivjit Patil Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=37833&t=37818 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Made CCNP! [7:37720]
yes and yes. (off the top of my head). ""colin newman"" wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > Hi > > > Are you referring to the BSCN book by Paquest and Teare? Is the Routing > book Vol 1 by Doyle? > > Thanks > > Colin > > Kenneth wrote: > > > > use the BSCN and Routing TCP/IP, it's really good. > > > > ""colin newman"" wrote in message > > [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > > > Congrats > > > > > > What book(s) did you use for the Routing exam? > > > > > > Colinscott wrote: > > > > > > > > Thanks to everyone! Now onward to the holy grail > > > > > > > > Scott Chapin, CCNA, CCNP Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=37832&t=37720 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Made CCNP! [7:37720]
use the BSCN and Routing TCP/IP, it's really good. ""colin newman"" wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > Congrats > > What book(s) did you use for the Routing exam? > > Colinscott wrote: > > > > Thanks to everyone! Now onward to the holy grail > > > > Scott Chapin, CCNA, CCNP Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=37728&t=37720 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
BPX 8620 for sale [7:34016]
I got the following Cisco equipment for sales: They are all in good condition. 1) US$22K (80% off) Marked price is US$72,355 Cisco BPX 8620 Cisco BPX Switch FAN Cisco Catalyst Switch Module 1: SUPERVISOR (WS-X6K-SUPIA-2GE) Cisco Catalyst Switch Module 9: 8-port Gigabyte Ethernet Cisco Catalyst Switch Module4: SWITCHING (WS-X6348) Cisco Catalyst Switch Powersupply Cisco Catalyst Switch For serious purchase. Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=34016&t=34016 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: MPLS exam content [7:30217]
I am also interested to know if anyone has taken the beta exam. a few months ago. I have post similar question but no candidate has attended the beta exam. Any suggestion on which testbook should be used for the exam.? There are two Cisco Press books on MPLS: 1) MPLS and VPN Architecture and 2) Advanced MPLS and VPN implementation ~~~ Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=30294&t=30217 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
CCIE Lab Workbook: ccprep.com [7:28165]
Did anyone try the ccprep.com CCIE Lab preparation workbook ? Please help to comment on the workbook. I am planning to buy it. Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=28165&t=28165 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
ccprep.com [7:27782]
Hi all, Is anyone who has tried the lab. exercise offered by ccprep.com? Is it good for ccie lab. preparation? If so, I will buy it. Thx. Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=27782&t=27782 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re:Microsoft IAS and AS5300 and Cisco Routers [7:27683]
We have managed to make IAS work with Cisco Devices. The login and password are being validated from the Active Directory Sample configs PIX aaa-server RADIUS protocol RADIUS aaa-server RADOIS (inside) host 192.168.13.34 radiuskey timeout 10 aaa authentication include http inside 0.0.0.0 0.0.0.0 0.0.0.0 0.0.0.0 RADIUS AS5300 aaa new-model aaa authentication login default group radius local aaa authentication ppp default group radius local aaa accounting update newinfo aaa accounting network default start-stop group radius radius-server host 192.168.13.34 auth-port 1645 acct-port 1646 key radiuskey radius-server retransmit 3 radius-server timeout 10 radius-server key radiuskey >From the IAS don't tick 'Client must always send the signature attribute in the request' Client Vendor must be Cisco In the remote access policies Click Edit Profile In the encryption tab make sure that 'no encryption' only is allowed and in the advanced tab there should be framed-protocol Radius Standard PPP service-type Radius Standard Framed Also checkout the ports from the properties of IAS (Right click on Internet Authentication Service) and select the radius tab our are 1645,1812 (authentication) and 1646,1813 (accounting) these should match the auth-port and acct-port in the radius-server command Regards Kenneth > >Eric Hauptman wrote: >> >> Does anyone have any pointers on getting a Cisco router talking >> to IAS >> running >> on a Windows 2000 server. I think I have everything configured >> correctly and it is still not working. Thanks >> >> Eric Hauptman Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=27683&t=27683 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: ISDN Simulator for CCIE [7:27098]
Mike, I saw this in ebay. Are you talking about this kind of simulator? Any choice suggested? How do i know the C2500 routers are of S/T ports? Please advice 2 Port BRI ISDN Simulator Simulator Specification ISDN Simulator with 2 BRI S/T ports. ETSI Software (Cisco ISDN switch-type basic-net3) Excellent Windows management tool with protocol decode Universal Power Supply User Manual and Carry Case 1Year Return to Base Warranty This product is NEW Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=27101&t=27098 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
ISDN Simulator for CCIE [7:27098]
Just start the CCIE Lab. preparation, I am going to have the lab. text in June 2002. I have several C2500 routers at home. But no way to test the ISDN configuration. Can anyone suggest me what simulator i should use that can help me to test the ISDN configuration for the CCIE lab. I don't think i will apply a ISDN link at home. Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=27098&t=27098 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
CIM: CCIE Lab [7:26796]
Do you think it is worth to buy this simulator for the CCIE lab. preparation? Any comments and advices are welcome. Cisco Interactive Mentor: CCIE Expert Labs: Multiprotocol Challenge Author: Cisco Systems, Inc. SRP: $99.95 ISBN: 158720035X Pages: 0 Pub Date: Oct 2001 Media: 1 CD-ROM Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=26796&t=26796 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Passed CCIE Written, life is good [7:26584]
Would like to make some comments: I am CCNP. I tried to review all the CCNP books, token ring paper, cross reference to TCP/IP Jeff's book and Carlow's book. But i got 65 point (failed) in the first try. I did Boston Test #1,2 and 3. I re-took the exam in two weeks time. I got 88! Mostly because of the test. Without it, i m sure i can't pass the test. The questions are a bit "in-different". It seems any one choice can be the answer. P.S : I hv no relation with Boston. Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=26670&t=26584 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Frame-relay [7:24332]
Based on the frame-relay (Chapter 4 2nd Edition)in Caslow's book: S1 - HQ -S2 172.16.1.1 172.16.1.2 172.16.1.3 With home lab testing as the above setting, I can ping from HQ to S1 and S2. I cannot ping from S1 and S2 even though I have put in the frame-relay map ip x.x.x.x local DLCI in both S1 and S2. I still got the same debug message "encapsulation fail". Any advice?! Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=24332&t=24332 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: How to upgrade the IOS of C2521?! [7:23498]
Good to have support from all of you. The problem is fixed. It is the config-register that was set to 0x2142 instead of 0x2102. I have never set this to 0x2142. Somehow the config-register was set to wrong value. Maybe the config-register was changed to that value when the upgrade failed the first time. Anyway really fun...I can start my home lab. Thanks a ton. Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=23659&t=23498 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: How to upgrade the IOS of C2521?! [7:23498]
Hi all, Some findings. The problem is on the C2521. I can successfully upgrade another C2521 with the same method. I tried to wr erase and reload before I perform the upgrade on these routers. So the issue is: What is the problem with this C2521? Any suggestion? Router>sh ver Cisco Internetwork Operating System Software IOS (tm) 2500 Software (C2500-JS-L), Version 11.2(19), RELEASE SOFTWARE (fc1) Copyright (c) 1986-1999 by cisco Systems, Inc. Compiled Wed 07-Jul-99 16:49 by jaturner Image text-base: 0x030402C4, data-base: 0x1000 ROM: System Bootstrap, Version 5.2(8a), RELEASE SOFTWARE BOOTFLASH: 3000 Bootstrap Software (IGS-RXBOOT), Version 10.2(8a), RELEASE SOFTW ARE (fc1) Router uptime is 4 minutes System restarted by power-on System image file is "flash:c2500-js-l_112-19.bin", booted via flash cisco 2521 (68030) processor (revision K) with 14336K/2048K bytes of memory. Processor board ID 03856704, with hardware revision 0002 Bridging software. SuperLAT software copyright 1990 by Meridian Technology Corp). X.25 software, Version 2.0, NET2, BFE and GOSIP compliant. TN3270 Emulation software. Basic Rate ISDN software, Version 1.0. 1 Token Ring/IEEE 802.5 interface(s) 2 Serial network interface(s) 2 Low-speed serial(sync/async) network interface(s) 1 ISDN Basic Rate interface(s) 32K bytes of non-volatile configuration memory. 8192K bytes of processor board System flash (Read ONLY) Configuration register is 0x2142 Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=23642&t=23498 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: How to upgrade the IOS of C2521?! [7:23498]
Louie, Thank you in advance. I understand your procedure. That's sound logical to me. Really appreciate! But the upgrade has some problem with the following error message: Proceed? [confirm] System flash directory: File Length Name/status 1 8124000 c2500-js-l_112-19.bin [8124064 bytes used, 264544 available, 8388608 total] Address or name of remote host [10.1.4.2]? Source file name? c2500-i-l.121-11.bin Destination file name [c2500-i-l.121-11.bin]? Accessing file 'c2500-i-l.121-11.bin' on 10.1.4.2... Loading c2500-i-l.121-11.bin from 10.1.4.2 (via Serial0): ! [OK] Erase flash device before writing? [confirm] Flash contains files. Are you sure you want to erase? [confirm] Copy 'c2500-i-l.121-11.bin' from server as 'c2500-i-l.121-11.bin' into Flash WITH erase? [yes/no]yes %SYS-5-RELOAD: Reload requested %FLH: c2500-i-l.121-11.bin from 10.1.4.2 to flash ... System flash directory: File Length Name/status 1 8124000 c2500-js-l_112-19.bin [8124064 bytes used, 264544 available, 8388608 total] Accessing file 'c2500-i-l.121-11.bin' on 10.1.4.2... [failed] %FLH: retry #1 %FLH: c2500-i-l.121-11.bin from 10.1.4.2 to flash ... (retry) System flash directory: File Length Name/status 1 8124000 c2500-js-l_112-19.bin [8124064 bytes used, 264544 available, 8388608 total] Accessing file 'c2500-i-l.121-11.bin' on 10.1.4.2... [failed] %FLH: Idling for 30 secs before retry #2 %FLH: c2500-i-l.121-11.bin from 10.1.4.2 to flash ... (retry) System flash directory: File Length Name/status 1 8124000 c2500-js-l_112-19.bin [8124064 bytes used, 264544 available, 8388608 total] Accessing file 'c2500-i-l.121-11.bin' on 10.1.4.2... [failed] %FLH: Flash download failed I verified that the required IOS SW is actually in C2503's flash. But how come it is not accessible. I can ping the serial interface of the C2503. C2503>sh flash System flash directory: File Length Name/status 1 7972500 /c2500-i-l.121-11.bin [7972564 bytes used, 416044 available, 8388608 total] 8192K bytes of processor board System flash (Read ONLY) EA Louie wrote: > > > Hi all, > > As a beginner, i am setting up home lab. Can anyone give me > the detail > > procedure of how to upgrade the IOS of C2521. > > I'm assuming you have the console connection to the routers. > I'm also > assuming you have either learned to clear the passwords, or > that you have > enable (priveleged EXEC) access to the routers because you know > the > passwords. So from priveleged EXEC mode (the prompt that looks > like > Router#, not Router>) > > 1. use the s0 or s1 serial interface of the 2521 to connect to > the 2503. > (those are the high-speed serial interfaces) > > 2. set the clock rate to 400 (the clock rate will be set > on the router > with the DCE cable connected) - example > configure terminal > interface serial0 > clock rate 400 > no shutdown > ^z (control-z. typing end also takes you out of configuration > mode) > > 3. set an IP address on both serial interfaces to be in the > same subnet, > and enable the ethernet interface - example > on the 2521 - > config t > interface serial 0 > ip address 192.168.1.1 255.255.255.0 > end > > on the 2503 - > config t > interface serial 0 > ip address 192.168.1.2 255.255.255.0 > no shut > int e0 > ip addr 192.168.2.1 255.255.255.0 > no shut > ^z > > 4. create a default route on the 2521 to the serial interface > of the 2503 - > example > ip route 0.0.0.0 0.0.0.0 192.168.1.2 > > 5. ping the 2503 ethernet interface from the 2521 to verify > connectivity - > example, if the ethernet were set to 192.168.2.1 > ping 192.168.2.1 > > 6. save the configuration on the 2521 > wr mem (or copy run start) > > 7. depending on where the IOS image resides, you want to > start up the tftp > server on your PC, or set up your 2503 as a tftp server (if you > want to use > the image that resides on the 2503) - example > on the 2503 - > show flash > (a filename will be displayed - perhaps something like > c2500-d-l.120-9.bin) > conf t > tftp-server c2500-d-l.120-9.bin > ^z > > 8. on the 2521, > copy tftp flash > > at the prompt for the ip address, either use the ip address of > the PC > running the tftp software (it should be a 192.168.2.x address) > or the serial > interface of the 2503 if you're copying that image > > at the prompt for the source filename, use the filename that > you used > above - in this example, c2500-d-l.120-9.bin > > at the prompt for the destination filename, press enter > > for all the other prompts, press enter or y > > then watch the flash get erased on t
How to upgrade the IOS of C2521?! [7:23498]
Hi all, As a beginner, i am setting up home lab. Can anyone give me the detail procedure of how to upgrade the IOS of C2521. I got no problem with my C2503 because it has a Ethernet port for me to connect the PC to it. Kenneth Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=23498&t=23498 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: MPLS Beta Exam + Multicast/QOS Beta Exam [7:21116]
Any comments?! Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=21274&t=21116 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
MPLS Beta Exam + Multicast/QOS Beta Exam [7:21116]
Did any who has attended the beta exam for MPLS or QOS Beta Exam.? I would like to know which material can be used to prepare for the exam? Which books should I read? Is the books enough for the exam? Appreciate any recommendation. Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=21116&t=21116 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
pix outbound vs acl [7:18101]
Is there nay benefit to using ACL over outbound? Both accomplish the same end result for me . |Ken Bourne,CCNA|Network Specialist| |702-657-3432(direct)|702-524 1193(mobile)||[EMAIL PROTECTED]| Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=18101&t=18101 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: CQS and CCIP [7:16129]
Not sure what is CQS program. But I have started the beta exam of CCIP. Only US$50 per exam. I think CCIP's BCSI is quite similar to CCNP's BCSN. I will also take the MPLS and MCAST+QOS next month. Kenneth, CCNP/CCNA (CCIE one day) Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=16138&t=16129 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: CCIE Written [7:15832]
Just read Cisco web: Effective immediately, the following topics have been removed from the lab exam content: LAT DECnet Apollo Banyan VINES ISO CLNS XNS ATM LANE X.25 Do anyone see any questions above in the written CCIE exam? Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=15971&t=15832 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: FW: CAN SOME ONE NO EXPERIMENT CAN PASS CCNP [7:15778]
The answer is YES and DEFINITELY. Remember to read the 4 cisco press books for CCNP. If you understand and remember these 4 books, you can be certified even without experiment/experience. Because you are not ask to build a complete network. You just need to demonstrate that you really understand the networking concept and protocols. Good Luck..and start now. Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=15838&t=15778 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: CCIE Written [7:15832]
I heard that the CCIE written like CID. Is it true? Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=15837&t=15832 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
CCIE Written [7:15832]
Hi all, I have CCNP, ATM and VoIP certified and now preparing for CCIE. I only have two weeks to go besides I need to work. Can anyone suggest the most important material to review before going for the written exam. Behind me is: 1) Carlow's 2nd edition 2) Free Token Ring paper from CCprep.com 3) CCNP, ATM and VoIP Cisco press books 4) Routing TCP/IP Vol. I Is one Carlow's book + Token Ring paper enough for the exam.? Is Carlow's book on non-IP material enough to handle all non-IP question in written? Please help if you have achieved the written test. Thx. Kenneth Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=15832&t=15832 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Problems with Catalyst 3500s [7:15378]
We have several of them and have never had a problem. |Ken Bourne,CCNA|Network Specialist| |702-657-3432(direct)|702-524 1193(mobile)||[EMAIL PROTECTED]| -Original Message- From: Patrick Ramsey [mailto:[EMAIL PROTECTED]] Sent: Wednesday, August 08, 2001 4:11 PM To: Subject: Re: Problems with Catalyst 3500s [7:15378] we use 3548's and 3508's and we have no problems. -Patrick >>> "Yamin Faisal" 08/08/01 06:26PM >>> Has anyone encountered problems with catalyst 3500s, like trunking issues, VLAN problems and other wierd (x-files). My client has ordered a lot of 3500s and would like examples of problems with the product so that another product may be selected. I would appreciate if you could share your experience with the product, good or bad. thanks __ Do You Yahoo!? Make international calls for as low as $.04/minute with Yahoo! Messenger http://phonecard.yahoo.com/ Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=15393&t=15378 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: CCIE LAB PREP STRATEGIES [7:15046]
Hi, I will go for the CCIE written next week. I think I will go for the lab in Dec, 2001. Nice to hear many of u just pass the lab. Is it include ATM, VoIP, LANE, Token ring, DLW+, RSRB and SRB, etc...what is their weight. It's good if all of you give me some advice. Actually I tried to prepare the written and practical test together. Behind me is most of the CCIE CISCO press and Carlow. I have taken CCNP, ATM and VoIP specialization exam. The equipment with me is 2 x C2522 and 3 x C2503. There is Token Ring and ISDN available. I am planning to apply a BRI connection at home for all the ISDN testing. It is not so expensive about US$70/month in HongKong. Not sure how much in US. I can't available the Catalyst set-based switch. Is virtual lab help?! Good to share ideas with you guys. Thanks. Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=15070&t=15046 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Book for CCNP Support [7:14751]
I used the Cisco Internetwork Trouble-shooting. It's enough to cover the CIT 2.0 test. I passed the test with 88% score. As the material is covered in the testbook. Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=14763&t=14751 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
What do I need to complete a Token ring lab? [7:13092]
I'm trying to get my home lab ready to take the CCIE R/S written and lab. However, I need to know what equipment to get to complete token ring section. I know I need a cisco 2502. Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=13092&t=13092 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Cant Console Cisco 2600 [7:13063]
I was playing with config maker, and i tried to upload the config on the router, config maker hang on the status "rebooting cisco", so i terminate configmaker on task manager.. and now i cannot console the router.. i also cannot ping. any suggestions? Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=13063&t=13063 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Can I turn off telnet but still allow SSH in? [7:10581]
Absolutely. you can either use an access-class on the vty interface or just use "transport input ssh" on the vty interface: config t line vty 0 4 transport input ssh this should only allow the ssh protocol to go through instead of using the access-class command: http://www.cisco.com/univercd/cc/td/doc/product/software/ios120/12cgcr/np1_r /1rprt2/1rip.htm#xtocid155131 Watch the wrap. ""nrf"" wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > Is there a way to bar telnet access to a router, but still allow SSH? If > so, what are the commands? > > Thanx Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=10592&t=10581 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: MRTG and Cat6509 [7:10575]
Use an SNMP viewer and go to its tree, it should tell you which interface it is. Make sure you load the proper MIBs ""Tay Chee Yong"" wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > Hi all, > > I am currently plotting MRTG on a Catalyst 6509 switch. But I am unable to > decipher the target code in the config file. > > Target[192.168.10.254.XYZ]: 1:[EMAIL PROTECTED] > > I am unable to determine which interface is XYZ referring to, as there is > no proper numbering for XYZ. There are numbers such as 226, but I do not > know which interface does it represent. > > Anyone care to advise? Thanks. > > Regards, > Cheeyong Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=10590&t=10575 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: BRI backup configurations [7:10504]
Interesting... I didn't know local telco's will allow hunting of ISDN lines! thanks! ""Tom"" wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > Have your local telco define a hunt group that contains the numbers of the 4 > bri's at headquarters. The remote ends then dial the hunt group number and > are hunted to the next available line. > > Tom > > > ""Nelluri Reddy"" wrote in message > [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > > Why don't you have the hq initiate dialing? > > > > Kenneth wrote: > > > > > > Guys, I am currently configuring 12 remote sites connected via > frame-relay > > > to our HQ. Each site has an ISDN connection for backup to our HQ. At our > > HQ, > > > I have a dedicated router to accept BRI connection for these sites > except I > > > only have 4 BRIs. > > > > > > The reason for this is based on my "statistical analysis" (don't know if > > > it's that accurate), I don't anticipate more than 4 offices being down > at > > > any particular time. > > > > > > Now, I want these offices to be able to dial into HQ and be smart enough > to > > > sort of do a rotary-group dialing (I know it only works for PRI). If BRI > > > port 1 on HQ is busy, it goes to BRI port 2. If that's busy, it goes to > 3 > > > and so on. > > > > > > How do you normally do this? On the HQ site, I have configured 12 Dailer > > > interfaces and each of the 4 BRI is a member of the 12 dialer-pools. Im > > just > > > not sure how you do the remote site... do I just put in multiple > > > dialer-string, one after the other in the sequence I'd like them to be > or > > > are there special commands? Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=10591&t=10504 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: BRI backup configurations [7:10504]
Because it's on a different router (The FR connections) and I'm using the backup interface command on the remote routers to dial into a BRI router ""Nelluri Reddy"" wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > Why don't you have the hq initiate dialing? > > Kenneth wrote: > > > > Guys, I am currently configuring 12 remote sites connected via frame-relay > > to our HQ. Each site has an ISDN connection for backup to our HQ. At our > HQ, > > I have a dedicated router to accept BRI connection for these sites except I > > only have 4 BRIs. > > > > The reason for this is based on my "statistical analysis" (don't know if > > it's that accurate), I don't anticipate more than 4 offices being down at > > any particular time. > > > > Now, I want these offices to be able to dial into HQ and be smart enough to > > sort of do a rotary-group dialing (I know it only works for PRI). If BRI > > port 1 on HQ is busy, it goes to BRI port 2. If that's busy, it goes to 3 > > and so on. > > > > How do you normally do this? On the HQ site, I have configured 12 Dailer > > interfaces and each of the 4 BRI is a member of the 12 dialer-pools. Im > just > > not sure how you do the remote site... do I just put in multiple > > dialer-string, one after the other in the sequence I'd like them to be or > > are there special commands? Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=10559&t=10504 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: weird PAP/CHAP problem with Windows Ciscosecure [7:10547]
What kind of Database is this being authenticated to? NT SAM, LDAP,...? ""nrf"" wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > I am trying to implement a Radius dial access configuration, using > Ciscosecure 2.6 for Windows. I have noticed the following: > > When I set up my NaS and AAA server for radius, the client can only be > properly authenticated with PAP. If I use chap, then apparently the NAS > refuses to authenticate, and I constantly get a debug messages like "peer > unable to authenticate" messages. This happens even though I have checked > about a thousand times that the password is indeed correct, and that > Ciscosecure has been configured to use the password for chap. As soon as I > configure the dial client for PAP (not the NAS, but the client), everything > immediately authenticates and works perfectly. > > This is really odd because if I switch CS and the NAS to speak Tacacs+, then > the client can authenticate with chap perfectly. It is only when I use > radius and client chap do I get this stupid problem. > > Has anybody ever seen this? Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=10550&t=10547 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: failed telnet [7:10517]
What exactly is the question now? wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > After disconnecting a SUN server from a Catalyst 6509, i tried to > telnet it and a proxy Network Appliance respond the telnet. > There are any strange IP configuration (no NAT, no virtual, etc.) > Thanks in advance. Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=10522&t=10517 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: TACACS+ and AAA [7:10211]
Cisco's site search for "configuring AAA" ""anthony moore"" wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > Anyone got any good reference or know where to get documentation on > configuring TACACS+, AAA, and Cisco ACS server Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=10506&t=10211 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
BRI backup configurations [7:10504]
Guys, I am currently configuring 12 remote sites connected via frame-relay to our HQ. Each site has an ISDN connection for backup to our HQ. At our HQ, I have a dedicated router to accept BRI connection for these sites except I only have 4 BRIs. The reason for this is based on my "statistical analysis" (don't know if it's that accurate), I don't anticipate more than 4 offices being down at any particular time. Now, I want these offices to be able to dial into HQ and be smart enough to sort of do a rotary-group dialing (I know it only works for PRI). If BRI port 1 on HQ is busy, it goes to BRI port 2. If that's busy, it goes to 3 and so on. How do you normally do this? On the HQ site, I have configured 12 Dailer interfaces and each of the 4 BRI is a member of the 12 dialer-pools. Im just not sure how you do the remote site... do I just put in multiple dialer-string, one after the other in the sequence I'd like them to be or are there special commands? Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=10504&t=10504 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: The cost of ISS? [7:10305]
I think it cost us $1500 for a 30 day usage for about 250 nodes. ""Justin Lofton"" wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > How much is the ISS software? Does anyone know? > > Thanks Everyone! > > Justin Lofton > Account Executive/CCNA > Tredent Data Systems > [EMAIL PROTECTED] > V: (818) 222-3770 > F: (818) 222-3778 > http://www.tredent.com/ Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=10503&t=10305 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Funk Steel-belted radius [7:10500]
has anyone ever used the MS-CHAP-MPPE-KEYS attribute in Funk to make PPTP tunneling work on a cisco router? I couldn't get it to work as the AAA log shows: MPPE: RADIUS keying material missing Any inputs would help. I tried playing around with the .dct file but didn't do anything that was helpful. Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=10500&t=10500 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Router as PPTP server - problems [7:10481]
I had this similar problem on my setup just 3 weeks ago, I had to downgrade to a 12.1.5T7 IOS image and it worked fine. But, if you want to require encryption, make sure your RADIUS server support MS-CHAP-MPPE-KEYS. I am using Funk's Steel-Belted radius configured with the MS-CHAP-MPPE-KEYS but still am having problem so I had to resort to using CHAP without MPPE for now (testing stage). Try the dowgrade and see if it works with your router, I'm pretty sure it will. On another note, make sure that in your configuration on the PPTP of Windows 2000, select Point-to-point tunneling protocol as opposed to letting windows do "automatic". Let me know. Hope this helps. ""nrf"" wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > I got a 2514 running 12.2, and I want to set it up to be a PPTP server. I > have reviewed the CCO docs' and I believe I have done everything they told > me to do. But it doesn't work. For example, when I fire up a PPTP client > from W2k, I see that the router is contacted and it gets to the "Verifying > Username and password" stage, but doesn't proceed further. Does anybody > know what it up with that? > > Here is what I configured on the router: > > > username me password 0 me > ip local pool default 120.1.1.1 120.1.1.2 > vpdn enable > > vpdn-group mypptpgroup > ! Default PPTP VPDN group > accept-dialin > protocol pptp > virtual-template 3 > > > interface Virtual-Template3 > ip unnumbered Loopback0 > peer default ip address pool default > ppp encrypt mppe 40 > ppp authentication ms-chap > > I set up Windows2000 for PPTP client (no L2TP), using MsCHAP v1 (not v2 > because I saw the CCO warnings not to use v2), and PPP LCP extensions. I > have tried it with and without software compression. > > When I debug PPP nego and VPDN event and VPDN packet, I just get the > following over and over. The error at the very end is really odd, perhaps > that has something to do with it? > > > > router# > 03:22:34: Vi1 VPDN: Virtual interface created > 03:22:34: Vi1 VPDN: Clone from Vtemplate 3 > 03:22:36: Vi1 VPDN: Bind interface direction=2 > Jun 30 05:13:21: %LINK-3-UPDOWN: Interface Virtual-Access1, changed state to > up > 03:22:36: Vi1 PPP: Treating connection as a dedicated line > 03:22:36: Vi1 PPP: Phase is ESTABLISHING, Active Open [0 sess, 0 load] > 03:22:36: Vi1 LCP: O CONFREQ [Closed] id 181 len 15 > 03:22:36: Vi1 LCP:AuthProto MS-CHAP (0x0305C22380) > 03:22:36: Vi1 LCP:MagicNumber 0x6100C064 (0x05066100C064) > 03:22:36: Vi1 VPDN: O out > router# > Jun 30 05:13:22: %LINEPROTO-5-UPDOWN: Line protocol on Interface > Virtual-Access1 > , changed state to up > router# > 03:22:38: Vi1 LCP: TIMEout: State REQsent > 03:22:38: Vi1 LCP: O CONFREQ [REQsent] id 182 len 15 > 03:22:38: Vi1 LCP:AuthProto MS-CHAP (0x0305C22380) > 03:22:38: Vi1 LCP:MagicNumber 0x6100C064 (0x05066100C064) > 03:22:38: Vi1 VPDN: O out > router# > 03:22:40: Vi1 LCP: TIMEout: State REQsent > 03:22:40: Vi1 LCP: O CONFREQ [REQsent] id 183 len 15 > 03:22:40: Vi1 LCP:AuthProto MS-CHAP (0x0305C22380) > 03:22:40: Vi1 LCP:MagicNumber 0x6100C064 (0x05066100C064) > 03:22:40: Vi1 VPDN: O out > router# > 03:22:42: Vi1 LCP: TIMEout: State REQsent > 03:22:42: Vi1 LCP: O CONFREQ [REQsent] id 184 len 15 > 03:22:42: Vi1 LCP:AuthProto MS-CHAP (0x0305C22380) > 03:22:42: Vi1 LCP:MagicNumber 0x6100C064 (0x05066100C064) > 03:22:42: Vi1 VPDN: O out > router# > 03:22:44: Vi1 LCP: TIMEout: State REQsent > 03:22:44: Vi1 LCP: O CONFREQ [REQsent] id 185 len 15 > 03:22:44: Vi1 LCP:AuthProto MS-CHAP (0x0305C22380) > 03:22:44: Vi1 LCP:MagicNumber 0x6100C064 (0x05066100C064) > 03:22:44: Vi1 VPDN: O out > router# > 03:22:46: Vi1 LCP: TIMEout: State REQsent > 03:22:46: Vi1 LCP: O CONFREQ [REQsent] id 186 len 15 > 03:22:46: Vi1 LCP:AuthProto MS-CHAP (0x0305C22380) > 03:22:46: Vi1 LCP:MagicNumber 0x6100C064 (0x05066100C064) > 03:22:46: Vi1 VPDN: O out > router# > 03:22:48: Vi1 LCP: TIMEout: State REQsent > 03:22:48: Vi1 LCP: O CONFREQ [REQsent] id 187 len 15 > 03:22:48: Vi1 LCP:AuthProto MS-CHAP (0x0305C22380) > 03:22:48: Vi1 LCP:MagicNumber 0x6100C064 (0x05066100C064) > 03:22:48: Vi1 VPDN: O out > router# > 03:22:50: Vi1 LCP: TIMEout: State REQsent > 03:22:50: Vi1 LCP: O CONFREQ [REQsent] id 188 len 15 > 03:22:50: Vi1 LCP:AuthProto MS-CHAP (0x0305C22380) > 03:22:50: Vi1 LCP:MagicNumber 0x6100C064 (0x05066100C064) > 03:22:50: Vi1 VPDN: O out > router# > 03:22:52: Vi1 LCP: TIMEout: State REQsent > 03:22:52: Vi1 LCP: O CONFREQ [REQsent] id 189 len 15 > 03:22:52: Vi1 LCP:AuthProto MS-CHAP (0x0305C22380) > 03:22:52: Vi1 LCP:MagicNumber 0x6100C064 (0x05066100C064) > 03:22:52: Vi1 VPDN: O out > router# > 03:22:54: Vi1 LCP: TIMEout: State REQsent > 03:22:54: Vi1 LCP: O CONFREQ [REQsent] id 190 len 15 > 03:22:54: Vi1 LCP:AuthProto MS-CHAP (0x0305C22380) > 03:22:54: Vi1 LCP:MagicNumber 0x6100C064 (0x05066100C064) > 03:22:54: Vi1 VPDN: O out > router# > Jun 30 0
Re: Specifying username/password on Catalyst 5000/5500 [7:10499]
I think he's asking about local username/password accounts. ""FELIX KISSIEDU"" wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > set system name is the command to assign the hostname name. > set password is the command to assign the pasword. to assign the password > to go into enable mode use the set enablepass command. Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=10499&t=10499 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Pix and iip options [7:10409]
Hello , my Pix 515 is logging large amounts of denies from a host because of ip option 0x14. I checked cco for the system message 106012 it tells me why it is denying it but not what causes it . Can someone please give me or point me to somewhere to find more info about ip option 0x14 and about ip options in general ? thanks in advance. > |Ken Bourne,CCNA|Network Specialist| > |702-657-3432(direct)|702-524-1193(mobile)||[EMAIL PROTECTED]| Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=10409&t=10409 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: How to tell the difference beteween a 1600 and a 1600R [7:10044]
I believe if you have a 1600, it only has one built-in ethernet port while a 1600R has two I could be wrong but I'm pretty sure that's pretty accurate ""Charles Manafa"" wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > mz is compressed and runs in memory > > CM > > > -Original Message- > > From: Neil Schneider [mailto:[EMAIL PROTECTED]] > > Sent: 26 June 2001 13:33 > > To: [EMAIL PROTECTED] > > Subject: Re: How to tell the difference beteween a 1600 and a 1600R > > [7:9956] > > > > > > I am pretty sure the M means it is a compressed IOS. > > > > Neil > > > > > > ""Sam Deckert"" wrote in message > > [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > > > Check the image name from the sh ver - if it contains an > > 'm' it means run > > > from memory I think. > > > > > > Here are the examples someone else used - you can see it from these: > > > > > > IOS for 1600: > > > > > > c1600-y-l.113-11b.bin > > > > > > > > > IOS for 1600R: > > > > > > c1600-y-mz.120-9.bin > > > > > > > > > HTH, > > > > > > Sam. > > > > > > - Original Message - > > > From: "Raul F. Fernandez-WCOMM" > > > To: > > > Sent: Tuesday, June 26, 2001 1:38 AM > > > Subject: How to tell the difference beteween a 1600 and a > > 1600R series. > > > [7:9797] > > > > > > > > > > Dear Folks, > > > > > > > > Hope all is going well for everyone. I have a real quick > > question. From > > > the > > > > "show ver" is there a way to determine the difference > > between a 1600 and > > > > 1600R series routers. Also will a 1600R run regualr 1600 > > code? Thank > > you. > > > > > > > > Sincerely, > > > > > > > > Raul Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=10044&t=10044 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
ATT Frame-relay lmi type [7:10042]
Has anyone of you configured a router to connect to ATT's frame cloud? My router is sending lmi's but ATT said all they see is that I'm sending 3 bytes of lmi for every frame when their frame switch was expecting 15 bytes of lmi. Also, can anyone provide me with the usual ATT frame information such as the encapsulation type, lmi type,... I use lmi-type ansi and encap ietf ATT said they use Strata for their lmi what's Strata? Thanks guys! Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=10042&t=10042 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: ip default-network 0.0.0.0? [7:10027]
Depending on what routing protocol you're using, the default-network forces the router to advertise itself as the default gateway of the receiving router... In case of EIGRP, if you don't explicitly create an ip route 0.0.0.0 0.0.0.0 x.x.x.x, the remote router will not know how to route packets destined for unknown subnets. If you create the ip default-network y.y.y.y on the headend, the headend router will advertise itself as the default gateway for the route. wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > What will this do? > ip default-network 0.0.0.0 > > Is this preferred over routing protocols? Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=10041&t=10027 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Subject: Re: PPP Negotiation question --- HELP!!! PLEASE! [7:8804]
I'm actually using Funk's and it does work now. I was using a buggy IOS = 12.2.1 The PPP doesn't work until I went down to 12.1.5T7 It's not fully compatible though... certain combinations of mppe encryption and CHAP/MS-chap doesn't work for NT 4.0 ""Rizzo Damian"" wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > Cisco's ACS v2.6 using Radius and Funk's Radius Server are the only Two > known Radius server's that support MPPE (Tacacs is not supported). I'm > willing to bet your not using either one of those. > > -Rizz > > > > > -Original Message- > From: Kenneth [mailto:[EMAIL PROTECTED]] > Sent: Thursday, June 14, 2001 11:53 PM > To: [EMAIL PROTECTED] > Subject: Re: Subject: Re: PPP Negotiation question --- HELP!!! PLEASE! > [7:8671] > > thanks. There is a bug in 12.2.1 IOS that wouldn't let me connect via PAP, > CHAP or MS-CHAP. Now that I'm using 12.1.5T7, It's working better although > if I use Ms-chap, it lets me in but wouldn't let me ping anything unless I > disable PPP ENCRYPT MPPE which is not desireable at all. > > I'm going to have to use plain CHAP for this. > > > ""michael liu"" wrote in message > [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > > First check your router IOS version, only Enterprise version support > > ms-chap?What kind of radius server you use? I use Microsoft radius server > > with support ms-chap.enable debug aaa authen will give you enough info. > > about radius authentication info. Good Luck, ~ml > > > > > > > > Get your FREE download of MSN Explorer at http://explorer.msn.com Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=8804&t=8804 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Subject: Re: PPP Negotiation question --- HELP!!! PLEASE! [7:8805]
FYI, it does work with Windows 2000 in every kind of combination ""Kenneth"" wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > I'm actually using Funk's and it does work now. I was using a buggy IOS = > 12.2.1 > > The PPP doesn't work until I went down to 12.1.5T7 > > It's not fully compatible though... certain combinations of mppe encryption > and CHAP/MS-chap doesn't work for NT 4.0 > > > ""Rizzo Damian"" wrote in message > [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > > Cisco's ACS v2.6 using Radius and Funk's Radius Server are the only Two > > known Radius server's that support MPPE (Tacacs is not supported). I'm > > willing to bet your not using either one of those. > > > > -Rizz > > > > > > > > > > -Original Message- > > From: Kenneth [mailto:[EMAIL PROTECTED]] > > Sent: Thursday, June 14, 2001 11:53 PM > > To: [EMAIL PROTECTED] > > Subject: Re: Subject: Re: PPP Negotiation question --- HELP!!! PLEASE! > > [7:8671] > > > > thanks. There is a bug in 12.2.1 IOS that wouldn't let me connect via PAP, > > CHAP or MS-CHAP. Now that I'm using 12.1.5T7, It's working better although > > if I use Ms-chap, it lets me in but wouldn't let me ping anything unless I > > disable PPP ENCRYPT MPPE which is not desireable at all. > > > > I'm going to have to use plain CHAP for this. > > > > > > ""michael liu"" wrote in message > > [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > > > First check your router IOS version, only Enterprise version support > > > ms-chap?What kind of radius server you use? I use Microsoft radius > server > > > with support ms-chap.enable debug aaa authen will give you enough info. > > > about radius authentication info. Good Luck, ~ml > > > > > > > > > > > > Get your FREE download of MSN Explorer at http://explorer.msn.com Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=8805&t=8805 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Subject: Re: PPP Negotiation question --- HELP!!! PLEASE! [7:8671]
thanks. There is a bug in 12.2.1 IOS that wouldn't let me connect via PAP, CHAP or MS-CHAP. Now that I'm using 12.1.5T7, It's working better although if I use Ms-chap, it lets me in but wouldn't let me ping anything unless I disable PPP ENCRYPT MPPE which is not desireable at all. I'm going to have to use plain CHAP for this. ""michael liu"" wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > First check your router IOS version, only Enterprise version support > ms-chap?What kind of radius server you use? I use Microsoft radius server > with support ms-chap.enable debug aaa authen will give you enough info. > about radius authentication info. Good Luck, ~ml > > > > Get your FREE download of MSN Explorer at http://explorer.msn.com Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=8671&t=8671 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: PPP Negotiation question --- HELP!!! PLEASE! [7:8438]
I got it to work! I decided to "downgrade" to an older IOS 12.1.5T and the ppp negotiation and AAA authentication worked! Now my other problem is I'm getting routing issues. I can't seem to ping the laptop that has established the session from the Router - ? ""Rahul Kachalia"" wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > Kenneth, > > Few strange this from following trace.. > > 1. PPTP does comes in & establishes connection & which brings vaccess > interface up too..if thats the case then why outgoing PPP packets are not > shown in debug. Try turning "debug vpdn packet" "debug vpdn error" & "debug > vpdn event" on & see if you get traces after placing pptp call. > > 2. As you mentioned connection doesnt comes up, from following traces i > didnt found it went back down if its true then i need traces till that level > to see which process/layer failed to establish connection . > > 3. You have configured AAA for login but i didnt saw any UDP packet going to > internal network for getting authenticatad. > > Just curious if you can try after removing MPPE if that works then try > configuring it to auto "ppp encrypt mppe auto", but i would prefer just try > without encryption first & see if that works. Tommorow i will simulate in > lab to figure out whats causing it meanwhile you can provide above traces. > > Also let me know your email id, since this email id fails to deliver > message. > > thanks, > rahul. > > om: "Kenneth" > Reply-To: "Kenneth" > To: [EMAIL PROTECTED] > Subject: Re: PPP Negotiation question --- HELP!!! PLEASE! [7:8438] > Date: Wed, 13 Jun 2001 23:17:09 -0400 > > Nothing came up with the debugs you listed except for ip packet detail > > The router is a 2621 with 2 Fastethernet ports. Fa0/0 is connected to our > internal network, while Fa0/1 is connected to a border router to the > internet. PPTP arrives on the Fa0/1 interface. Fa0/1 has a public IP > address while Fa0/0 has the private address. > > Here's the debug from debug ip packet det - I replaced the router's public > ip with A.B.C.D > > > Jun 13 22:51:35: IP: s=A.B.C.D (local), d=66.32.46.139 (FastEthernet0/1), > len 116, sending > Jun 13 22:51:35: TCP src=22, dst=2604, seq=1252417216, ack=391149, > win=4028 ACK PSH > Jun 13 22:51:35: IP: s=66.32.46.139 (FastEthernet0/1), d=A.B.C.D > (FastEthernet0/1), len 40, rcvd 3 > Jun 13 22:51:35: TCP src=2604, dst=22, seq=391149, ack=1252417292, > win=8120 ACK > Jun 13 22:51:36: IP: s=192.168.1.3 (FastEthernet0/0), d=224.0.0.10, len 60, > rcvd 2, proto=88 > Jun 13 22:51:36: IP: s=192.168.1.1 (FastEthernet0/0), d=224.0.0.10, len 60, > rcvd 2, proto=88 > Jun 13 22:51:36: IP: s=66.32.46.139 (FastEthernet0/1), d=A.B.C.D > (FastEthernet0/1), len 44, rcvd 3 > Jun 13 22:51:36: TCP src=2626, dst=1723, seq=384185, ack=0, win=8192 SYN > Jun 13 22:51:36: IP: s=66.32.46.139 (FastEthernet0/1), d=A.B.C.D > (FastEthernet0/1), len 40, rcvd 3 > Jun 13 22:51:36: TCP src=2626, dst=1723, seq=384186, ack=79997953, > win=8576 ACK > Jun 13 22:51:36: IP: s=66.32.46.139 (FastEthernet0/1), d=A.B.C.D > (FastEthernet0/1), len 196, rcvd 3 > Jun 13 22:51:36: TCP src=2626, dst=1723, seq=384186, ack=79997953, > win=8576 ACK PSH > Jun 13 22:51:37: IP: s=66.32.46.139 (FastEthernet0/1), d=A.B.C.D > (FastEthernet0/1), len 208, rcvd 3 > Jun 13 22:51:37: TCP src=2626, dst=1723, seq=384342, ack=79998109, > win=8420 ACK PSH > Jun 13 22:51:37: %LINK-3-UPDOWN: Interface Virtual-Access1, changed state to > up > Jun 13 22:51:37: IP: s=A.B.C.D (local), d=66.32.46.139 (FastEthernet0/1), > len 55, sending, proto=47 > Jun 13 22:51:37: IP: s=66.32.46.139 (FastEthernet0/1), d=A.B.C.D > (FastEthernet0/1), len 64, rcvd 3 > Jun 13 22:51:37: TCP src=2626, dst=1723, seq=384510, ack=79998141, > win=8388 ACK PSH > Jun 13 22:51:37: IP: s=66.32.46.139 (FastEthernet0/1), d=A.B.C.D > (FastEthernet0/1), len 53, rcvd 3, proto=47 > Jun 13 22:51:37: IP: s=192.168.1.5 (FastEthernet0/0), d=224.0.0.10, len 60, > rcvd 2, proto=88 > Jun 13 22:51:37: IP: s=192.168.1.10 (local), d=224.0.0.10 (FastEthernet0/0), > len 60, sending broad/multicast, proto=88 > Jun 13 22:51:37: IP: s=66.32.46.139 (FastEthernet0/1), d=A.B.C.D > (FastEthernet0/1), len 55, rcvd 3, proto=47 > Jun 13 22:51:38: IP: s=172.16.3.1 (local), d=224.0.0.10 (Loopback0), len 60, > sending broad/multicast, proto=88 > Jun 13 22:51:38: IP: s=172.16.3.1 (Loopback0), d=224.0.0.10, len 60, rcvd 2, > proto=88 > Jun 13 22:51:38: %LINEPROTO-5-UPDOWN: Line protocol on Interface > Virtual-Access1, changed state to up > Jun 13 22:51:38: IP: s=19
Re: PPP Negotiation question --- HELP!!! PLEASE! [7:8438]
No, we're not doing any NAT at all on the border router. It's done on a seperate firewall.. Here's something that might make sense but our border router is plugged into a hub. This hub is where this VPN box is plugged into along with a Solaris running Raptor. Basically, Im running a parallel firewall / VPN config. I have tried removing MPPE, configured it for MPPE 128, MPPE 40, passive, stateful, pretty much any combination but it doesn't seem to work. As far as the RADIUS go, It's not even reaching the stage where Radius packets are being passed. It's pretty much just trying to negotiate the authentication type and then it's getting dropped. I will test some VPDN packet * debugs and then I'll try to post it again. FYI, I used NT 4, Win2K, and win 98 as clients to test this out but all of them failed pretty much at the same stage. I'm using IOS 12.2.1... I wonder if there is a bug with this IOS? Guys, I really appreciate this help! ""EA Louie"" wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > Doing NAT anywhere? Like at the Internet Border Router? > > -e- > > - Original Message - > From: "Rahul Kachalia" > To: > Sent: Wednesday, June 13, 2001 10:11 PM > Subject: Re: PPP Negotiation question --- HELP!!! PLEASE! [7:8438] > > > > Kenneth, > > > > Few strange this from following trace.. > > > > 1. PPTP does comes in & establishes connection & which brings vaccess > > interface up too..if thats the case then why outgoing PPP packets are not > > shown in debug. Try turning "debug vpdn packet" "debug vpdn error" & > "debug > > vpdn event" on & see if you get traces after placing pptp call. > > > > 2. As you mentioned connection doesnt comes up, from following traces i > > didnt found it went back down if its true then i need traces till that > level > > to see which process/layer failed to establish connection . > > > > 3. You have configured AAA for login but i didnt saw any UDP packet going > to > > internal network for getting authenticatad. > > > > Just curious if you can try after removing MPPE if that works then try > > configuring it to auto "ppp encrypt mppe auto", but i would prefer just > try > > without encryption first & see if that works. Tommorow i will simulate in > > lab to figure out whats causing it meanwhile you can provide above traces. > > > > Also let me know your email id, since this email id fails to deliver > > message. > > > > thanks, > > rahul. > > > > om: "Kenneth" > > Reply-To: "Kenneth" > > To: [EMAIL PROTECTED] > > Subject: Re: PPP Negotiation question --- HELP!!! PLEASE! [7:8438] > > Date: Wed, 13 Jun 2001 23:17:09 -0400 > > > > Nothing came up with the debugs you listed except for ip packet detail > > > > The router is a 2621 with 2 Fastethernet ports. Fa0/0 is connected to our > > internal network, while Fa0/1 is connected to a border router to the > > internet. PPTP arrives on the Fa0/1 interface. Fa0/1 has a public IP > > address while Fa0/0 has the private address. > > > > Here's the debug from debug ip packet det - I replaced the router's public > > ip with A.B.C.D > > > > > > Jun 13 22:51:35: IP: s=A.B.C.D (local), d=66.32.46.139 (FastEthernet0/1), > > len 116, sending > > Jun 13 22:51:35: TCP src=22, dst=2604, seq=1252417216, ack=391149, > > win=4028 ACK PSH > > Jun 13 22:51:35: IP: s=66.32.46.139 (FastEthernet0/1), d=A.B.C.D > > (FastEthernet0/1), len 40, rcvd 3 > > Jun 13 22:51:35: TCP src=2604, dst=22, seq=391149, ack=1252417292, > > win=8120 ACK > > Jun 13 22:51:36: IP: s=192.168.1.3 (FastEthernet0/0), d=224.0.0.10, len > 60, > > rcvd 2, proto=88 > > Jun 13 22:51:36: IP: s=192.168.1.1 (FastEthernet0/0), d=224.0.0.10, len > 60, > > rcvd 2, proto=88 > > Jun 13 22:51:36: IP: s=66.32.46.139 (FastEthernet0/1), d=A.B.C.D > > (FastEthernet0/1), len 44, rcvd 3 > > Jun 13 22:51:36: TCP src=2626, dst=1723, seq=384185, ack=0, win=8192 > SYN > > Jun 13 22:51:36: IP: s=66.32.46.139 (FastEthernet0/1), d=A.B.C.D > > (FastEthernet0/1), len 40, rcvd 3 > > Jun 13 22:51:36: TCP src=2626, dst=1723, seq=384186, ack=79997953, > > win=8576 ACK > > Jun 13 22:51:36: IP: s=66.32.46.139 (FastEthernet0/1), d=A.B.C.D > > (FastEthernet0/1), len 196, rcvd 3 > > Jun 13 22:51:36: TCP src=2626, dst=1723, seq=384186, ack=79997953, > > win=8576 ACK PSH > > Jun 13 22:51:37: IP: s=66.32.46.139 (FastEthernet0/1), d=A.B.
Re: PPP Negotiation question --- HELP!!! PLEASE! [7:8438]
48 ACK Jun 13 22:51:41: IP: s=A.B.C.D (local), d=66.32.46.139 (FastEthernet0/1), len 55, sending, proto=47 Jun 13 22:51:41: IP: s=66.32.46.139 (FastEthernet0/1), d=A.B.C.D (FastEthernet0/1), len 55, rcvd 3, proto=47 Jun 13 22:51:41: IP: s=192.168.1.1 (FastEthernet0/0), d=224.0.0.10, len 60, rcvd 2, proto=88 Jun 13 22:51:41: IP: s=66.32.46.139 (FastEthernet0/1), d=A.B.C.D (FastEthernet0/1), len 60, rcvd 3 Jun 13 22:51:41: TCP src=2604, dst=22, seq=391189, ack=1252417364, win=8048 ACK PSH Jun 13 22:51:41: IP: s=A.B.C.D (local), d=66.32.46.139 (FastEthernet0/1), len 100, sending Jun 13 22:51:41: TCP src=22, dst=2604, seq=1252417364, ack=391209, win=3968 ACK PSH Jun 13 22:51:41: IP: s=66.32.46.139 (FastEthernet0/1), d=A.B.C.D (FastEthernet0/1), len 60, rcvd 3 Jun 13 22:51:41: TCP src=2604, dst=22, seq=391209, ack=1252417424, win=8576 ACK PSH Jun 13 22:51:41: IP: s=A.B.C.D (local), d=66.32.46.139 (FastEthernet0/1), len 100, sending Jun 13 22:51:41: TCP src=22, dst=2604, seq=1252417424, ack=391229, win=3948 ACK PSH Jun 13 22:51:41: IP: s=66.32.46.139 (FastEthernet0/1), d=A.B.C.D (FastEthernet0/1), len 40, rcvd 3 Jun 13 22:51:41: TCP src=2604, dst=22, seq=391229, ack=1252417484, win=8516 ACK Jun 13 22:51:41: IP: s=192.168.1.10 (local), d=224.0.0.10 (FastEthernet0/0), len 60, sending broad/multicast, proto=88 Jun 13 22:51:41: IP: s=172.16.3.1 (local), d=224.0.0.10 (Virtual-Access1), len 60, sending broad/multicast, proto=88 Jun 13 22:51:41: IP: s=172.16.3.1 (local), d=224.0.0.10 (Virtual-Access1), len 60, encapsulation failed, proto=88 Jun 13 22:51:42: IP: s=192.168.1.5 (FastEthernet0/0), d=224.0.0.10, len 60, rcvd 2, proto=88 Jun 13 22:51:42: IP: s=66.32.46.139 (FastEthernet0/1), d=A.B.C.D (FastEthernet0/1), len 53, rcvd 3, proto=47 Jun 13 22:51:42: IP: s=172.16.3.1 (local), d=224.0.0.10 (Loopback0), len 60, sending broad/multicast, proto=88 Jun 13 22:51:42: IP: s=172.16.3.1 (Loopback0), d=224.0.0.10, len 60, rcvd 2, proto=88 Jun 13 22:51:43: IP: s=192.168.1.9 (FastEthernet0/0), d=224.0.0.10, len 60, rcvd 2, proto=88 Jun 13 22:51:43: IP: s=A.B.C.D (local), d=66.32.46.139 (FastEthernet0/1), len 55, sending, proto=47 Jun 13 22:51:43: IP: s=66.32.46.139 (FastEthernet0/1), d=A.B.C.D (FastEthernet0/1), len 55, rcvd 3, proto=47 Jun 13 22:51:44: IP: s=192.168.1.50 (FastEthernet0/0), d=255.255.255.255, len 164, rcvd 2 Jun 13 22:51:44: UDP src=1042, dst=12974 Jun 13 22:51:44: IP: s=192.168.1.15 (FastEthernet0/0), d=192.168.1.255 (FastEthernet0/0), len 213, rcvd 3 Jun 13 22:51:44: UDP src=138, dst=138 Jun 13 22:51:45: IP: s=192.168.1.3 (FastEthernet0/0), d=224.0.0.10, len 60, rcvd 2, proto=88 Jun 13 22:51:45: IP: s=A.B.C.D (local), d=66.32.46.139 (FastEthernet0/1), len 55, sending, proto=47 Jun 13 22:51:45: IP: s=66.32.46.139 (FastEthernet0/1), d=A.B.C.D (FastEthernet0/1), len 55, rcvd 3, proto=47 Jun 13 22:51:46: IP: s=66.32.46.139 (FastEthernet0/1), d=A.B.C.D (FastEthernet0/1), len 53, rcvd 3, proto=47 Jun 13 22:51:46: IP: s=192.168.1.1 (FastEthernet0/0), d=224.0.0.10, len 60, rcvd 2, proto=88 Jun 13 22:51:46: IP: s=192.168.1.5 (FastEthernet0/0), d=224.0.0.10, len 60, rcvd 2, proto=88 Jun 13 22:51:46: IP: s=192.168.1.10 (local), d=224.0.0.10 (FastEthernet0/0), len 60, sending broad/multicast, proto=88 Jun 13 22:51:46: IP: s=172.16.3.1 (local), d=224.0.0.10 (Virtual-Access1), len 60, sending broad/multicast, proto=88 Jun 13 22:51:46: IP: s=172.16.3.1 (local), d=224.0.0.10 (Virtual-Access1), len 60, encapsulation failed, proto=88 Jun 13 22:51:47: IP: s=172.16.3.1 (local), d=224.0.0.10 (Loopback0), len 60, sending broad/multicast, proto=88 Jun 13 22:51:47: IP: s=172.16.3.1 (Loopback0), d=224.0.0.10, len 60, rcvd 2, proto=88 Jun 13 22:51:47: IP: s=A.B.C.D (local), d=66.32.46.139 (FastEthernet0/1), len 55, sending, proto=47 Jun 13 22:51:47: IP: s=66.32.46.139 (FastEthernet0/1), d=A.B.C.D (FastEthernet0/1), len 55, rcvd 3, proto=47 Jun 13 22:51:47: IP: s=192.168.1.9 (FastEthernet0/0), d=224.0.0.10, len 60, rcvd 2, proto=88 Jun 13 22:51:47: IP: s=66.32.46.139 (FastEthernet0/1), d=A.B.C.D (FastEthernet0/1), len 60, rcvd 3 Jun 13 22:51:47: TCP src=2604, dst=22, seq=391229, ack=1252417484, win=8516 ACK PSH Jun 13 22:51:47: IP: s=A.B.C.D (local), d=66.32.46.139 (FastEthernet0/1), len 60, sending Jun 13 22:51:47: TCP src=22, dst=2604, seq=1252417484, ack=391249, win=3928 ACK PSH ""Rahul Kachalia"" wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > Kenneth, > > I cant see single LCP coming in..anyway provide following outputs after > turning debugs on. > > show radius statistics. > debug aaa authen > debug ppp mppe pack > show ppp mppe virtual-access > > if no traces comes up with this debugs..then turn "debug ip pack det" & > place pptp call again I am expecting tcp packet here..if not then there is > definatly L2 problems.. Also looking from configs I can see only FE, may i > know where is t
Re: PPP Negotiation question --- HELP!!! PLEASE! [7:8438]
Here's my config, Rahul, I hope you can help me out on this. I also have the debugs included below the configs. ! ! Last configuration change at 15:12:59 EDT Wed Jun 13 2001 by klorenzo ! version 12.2 no service single-slot-reload-enable service timestamps debug datetime localtime service timestamps log datetime localtime service password-encryption ! hostname XXX ! logging buffered 12000 debugging logging rate-limit console 10 except errors aaa new-model aaa authentication login default group radius local none aaa authentication login console group radius local none aaa authentication login vty group radius local aaa authentication ppp default group radius local aaa authorization exec default group radius local aaa authorization exec telnet group radius aaa accounting exec shell start-stop group radius aaa accounting network default start-stop group radius enable secret 5 XXX. ! clock timezone EST -5 clock summer-time EDT recurring ip subnet-zero no ip source-route ! ! no ip finger ip domain-name ctnet.com ip name-server 192.168.1.11 ! ip inspect audit-trail ip audit attack action alarm drop ip audit notify log ip audit po max-events 100 ip dhcp-server 192.168.1.11 no ip dhcp-client network-discovery ip ssh time-out 120 ip ssh authentication-retries 3 vpdn enable no vpdn logging local no vpdn logging remote no vpdn logging user ! vpdn-group 1 ! Default PPTP VPDN group accept-dialin protocol pptp virtual-template 1 ! ! call rsvp-sync ! ! ! ! ! ! ! ! interface Loopback0 ip address 172.16.3.1 255.255.255.0 ! interface FastEthernet0/0 ip address 192.168.1.10 255.255.255.0 speed 100 full-duplex ! interface Serial0/0 no ip address shutdown no fair-queue ! interface FastEthernet0/1 ip address A.B.C.D 255.255.255.0 duplex auto speed auto pppoe enable ! interface Virtual-Template1 ip unnumbered Loopback0 ip mroute-cache peer default ip address pool testpool ppp encrypt mppe 128 ppp authentication ms-chap ! router eigrp 1000 passive-interface FastEthernet0/1 network 172.16.0.0 network 192.168.1.0 no auto-summary no eigrp log-neighbor-changes ! ip local pool testpool 172.16.3.2 172.16.3.10 ip kerberos source-interface any ip classless ip route 0.0.0.0 0.0.0.0 A.B.C.D ip route X.Y.0.0 255.255.0.0 X.Y.1.1 no ip http server ! ip radius source-interface FastEthernet0/0 ! snmp-server community network~elites1 RO snmp-server location Cleveland,OH snmp-server contact Kenneth Lorenzo radius-server host 192.168.1.195 auth-port 1645 acct-port 1646 radius-server retransmit 2 radius-server timeout 10 radius-server deadtime 2 radius-server key 7 XXX! dial-peer cor custom ! ! ! ! banner motd ^C ** ** * Access to this router is logged * * Unauthorized Access is not allowed * * and will be persecuted to the* * full extent of the law* ** ** ^C ! line con 0 exec-timeout 5 0 authorization exec telnet accounting exec shell login authentication console transport input none line aux 0 no exec authorization exec telnet accounting exec shell login authentication console line vty 0 4 authorization exec telnet accounting exec shell login authentication vty transport input ssh line vty 5 15 authorization exec telnet accounting exec shell login authentication vty transport input ssh ! ntp clock-period 17179778 ntp server 192.168.1.2 end -- Debugs --- Jun 13 15:23:47: Vi1 LCP: TIMEout: State REQsent Jun 13 15:23:47: Vi1 LCP: O CONFREQ [REQsent] id 38 len 15 Jun 13 15:23:47: Vi1 LCP:AuthProto MS-CHAP (0x0305C22380) Jun 13 15:23:47: Vi1 LCP:MagicNumber 0x067E3C84 (0x0506067E3C84) Jun 13 15:23:47: Vi1 VPDN: O out Jun 13 15:23:49: Vi1 LCP: TIMEout: State REQsent Jun 13 15:23:49: Vi1 LCP: O CONFREQ [REQsent] id 39 len 15 Jun 13 15:23:49: Vi1 LCP:AuthProto MS-CHAP (0x0305C22380) Jun 13 15:23:49: Vi1 LCP:MagicNumber 0x067E3C84 (0x0506067E3C84) Jun 13 15:23:49: Vi1 VPDN: O out Jun 13 15:23:49: Vi1 PPP: Outbound ip packet dropped, line protocol not up Jun 13 15:23:51: Vi1 LCP: TIMEout: State REQsent Jun 13 15:23:51: Vi1 LCP: O CONFREQ [REQsent] id 40 len 15 Jun 13 15:23:51: Vi1 LCP:AuthProto MS-CHAP (0x0305C22380) Jun 13 15:23:51: Vi1 LCP:MagicNumber 0x067E3C84 (0x0506067E3C84) Jun 13 15:23:51: Vi1 VPDN: O out ""Rahul Kachalia"" wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > Kenneth, > > Can you paste those contents & if possible configs of router. > > thanks, > rahul. > - Original Message - > From: "Kenneth" > To: > Sent: Wednesday, June 13, 2001 3:59 PM > Subject: PPP Negotiation question --- HELP!!! PLEASE! [7:8438] > > > > Can anyone shed l
PPP Negotiation question --- HELP!!! PLEASE! [7:8438]
Can anyone shed light on this problem im having. I have 1 laptop with Sniffer pro and a router on the other end running PPTP set for Ms-chap authentication. When I tried to establish a PPTP session from the laptop to the router, all it does is it times out. The router is acting as a PPTP server. When I look at the sniffer's output, I can see the: 1) PPP ConfReq sent to the Router from my laptop 2) PPP ConfReq sent from the router to my laptop 3) PPP ConfAck sent from my laptop to the Router but when I look at the debug PPP negotiation on the router, all I see is that the router keep sending out PPP ConfReq and it's timing out. It's not receiving any of the ConfAck being sent out by my laptop. I don't have any firewall installed on my laptop and I know for a fact that it worked talking to an NT Server-based PPTP. I'm really stumped with this problem. Any help would be greatly appreciated. Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=8438&t=8438 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
VPDN PPTP through IOS FW [7:8289]
Has anyone had any luck configuring PPTP terminating on a Cisco router running IOS-FW. I'm having problems with the PPP negotiation part and a Cisco Support engineer told me I had to use MS-chap (ppp authentication ms-chap) in order for it to work. Has anyone used this before without going with Ms-CHAP? Perhaps PAP, or CHAP? On the backend, I'm using a Funk Steel-Belted Radius.. When I try to connect, this is the debug output of the PPP nego, PPP packet, PPP error. Does it seem like it's in the Authentication negotiation stage when the client is not sending out ConfACK? SPR-CLE04OH-01-VPN-DS1# Jun 12 15:50:39: %LINK-3-UPDOWN: Interface Virtual-Access1, changed state to up Jun 12 15:50:39: Vi1 PPP: Treating connection as a dedicated line Jun 12 15:50:39: Vi1 PPP: Phase is ESTABLISHING, Active Open [0 sess, 0 load] Jun 12 15:50:39: Vi1 LCP: O CONFREQ [Closed] id 6 len 14 Jun 12 15:50:39: Vi1 LCP:AuthProto PAP (0x0304C023) Jun 12 15:50:39: Vi1 LCP:MagicNumber 0x062ECC6E (0x0506062ECC6E) Jun 12 15:50:40: %LINEPROTO-5-UPDOWN: Line protocol on Interface Virtual-Access1 , changed state to up Jun 12 15:50:41: Vi1 LCP: TIMEout: State REQsent Jun 12 15:50:41: Vi1 LCP: O CONFREQ [REQsent] id 7 len 14 Jun 12 15:50:41: Vi1 LCP:AuthProto PAP (0x0304C023) Jun 12 15:50:41: Vi1 LCP:MagicNumber 0x062ECC6E (0x0506062ECC6E) Jun 12 15:50:43: Vi1 LCP: TIMEout: State REQsent Jun 12 15:50:43: Vi1 LCP: O CONFREQ [REQsent] id 8 len 14 Jun 12 15:50:43: Vi1 LCP:AuthProto PAP (0x0304C023) Jun 12 15:50:43: Vi1 LCP:MagicNumber 0x062ECC6E (0x0506062ECC6E) Jun 12 15:50:44: Vi1 PPP: Outbound ip packet dropped, line protocol not up Jun 12 15:50:45: Vi1 LCP: TIMEout: State REQsent Jun 12 15:50:45: Vi1 LCP: O CONFREQ [REQsent] id 9 len 14 Jun 12 15:50:45: Vi1 LCP:AuthProto PAP (0x0304C023) Jun 12 15:50:45: Vi1 LCP:MagicNumber 0x062ECC6E (0x0506062ECC6E) Jun 12 15:50:47: Vi1 LCP: TIMEout: State REQsent Jun 12 15:50:47: Vi1 LCP: O CONFREQ [REQsent] id 10 len 14 Jun 12 15:50:47: Vi1 LCP:AuthProto PAP (0x0304C023) Jun 12 15:50:47: Vi1 LCP:MagicNumber 0x062ECC6E (0x0506062ECC6E) Jun 12 15:50:48: Vi1 PPP: Outbound ip packet dropped, line protocol not up Jun 12 15:50:49: Vi1 LCP: TIMEout: State REQsent Jun 12 15:50:49: Vi1 LCP: O CONFREQ [REQsent] id 11 len 14 Jun 12 15:50:49: Vi1 LCP:AuthProto PAP (0x0304C023) Jun 12 15:50:49: Vi1 LCP:MagicNumber 0x062ECC6E (0x0506062ECC6E) Jun 12 15:50:51: %LINK-3-UPDOWN: Interface Virtual-Access1, changed state to dow n Jun 12 15:50:51: Vi1 LCP: State is Closed Jun 12 15:50:51: Vi1 PPP: Phase is DOWN [0 sess, 0 load] Jun 12 15:50:52: %LINEPROTO-5-UPDOWN: Line protocol on Interface Virtual-Access1 , changed state to down thanks guys! Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=8289&t=8289 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Radware's linkproof and Fatpipe [7:8085]
Cool. I just thought it was too good to be true. I read, through a newsgroup search, that in order to do that, it has to act as the ns of the domain and that I need a separate set of public ip addresses for my network. Basically, it kinda works like Adapter teaming responding to ARP, sending MACaddresses,... except on the network layer, right? Either way, I think going with a BGP will be easier and I'm saving the internet another set of Class C addresses. Thanks, John ""John Neiberger"" wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > In that situation--where you need to be advertised from both > providers--these devices won't cut the mustard, at least as far as I can > tell. We have had reps from both companies here to explain to us the > benefits of their products and they still really don't have a good way > to do what you're trying to do. > > In our company we also host our own website and are multihomed. In > this scenario we use BGP. Entirely separate from that network we have > an ISP for outgoing internet access for our employees. We will be > adding a second T-1 and then installing the Radware Linkproof hardware. > In this case, we have no internal addresses that *have* to be advertised > from both ISPs so this will work quite well for us. > > HTH, > John > > >>> "Kenneth" 6/11/01 6:16:56 PM >>> > Has anyone deployed this? I'm going through their site and it doesn't > explain how it works without using BGP. We have a data center hosting > around > 20 web-based application and we have an entire class C address space. > I > don't see how the "backup" ISP will be able to advertise our network if > the > primary ISP connection fails without using BGP as these products claim > to > do any ideas? > > Thanks, guys! > > Kenneth Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=8287&t=8085 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Radware's linkproof and Fatpipe [7:8085]
sure it does but SMARTNAT is a proprietary technology that they named without a thorough explanation of how it works. Reading their white paper, it didn't explain the fact that you need to have 2 sets of IP Addresses from the 2 ISPs and that the device will have to act as your NS. ""Jackey Xie"" wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > it use SmartNAT > > -- > ""Kenneth"" wrote in message > [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > > never mind guys, i read the radware whitepaper ang answered my own > question. > > Thnx > > > > ""Kenneth"" wrote in message > > [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > > > Has anyone deployed this? I'm going through their site and it doesn't > > > explain how it works without using BGP. We have a data center hosting > > around > > > 20 web-based application and we have an entire class C address space. I > > > don't see how the "backup" ISP will be able to advertise our network if > > the > > > primary ISP connection fails without using BGP as these products claim > to > > > do any ideas? > > > > > > Thanks, guys! > > > > > > Kenneth Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=8286&t=8085 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Radware's linkproof and Fatpipe [7:8085]
never mind guys, i read the radware whitepaper ang answered my own question. Thnx ""Kenneth"" wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > Has anyone deployed this? I'm going through their site and it doesn't > explain how it works without using BGP. We have a data center hosting around > 20 web-based application and we have an entire class C address space. I > don't see how the "backup" ISP will be able to advertise our network if the > primary ISP connection fails without using BGP as these products claim to > do any ideas? > > Thanks, guys! > > Kenneth Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=8094&t=8085 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Radware's linkproof and Fatpipe [7:8085]
Has anyone deployed this? I'm going through their site and it doesn't explain how it works without using BGP. We have a data center hosting around 20 web-based application and we have an entire class C address space. I don't see how the "backup" ISP will be able to advertise our network if the primary ISP connection fails without using BGP as these products claim to do any ideas? Thanks, guys! Kenneth Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=8085&t=8085 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: What is the cause of router config lost ? [7:7942]
can you check the last saved NVRAM when you do a show run? ""norsyam ariffin"" wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > My config-register is 0x2102, the router is up & running very well before > just a few day ago, the is lost configuration happened. > > > >From: "Yongchul Yang" > >To: "norsyam ariffin" > >Subject: RE: What is the cause of router config lost ? [7:7942] > >Date: Mon, 11 Jun 2001 01:49:16 -0700 > > > >Check you config-register, make sure your config-register is 0x2102. If > >you > >have a router with config-register 0x2101, it will not save your > >configuration into your router's NVRAM and any time your router is > >re-booted, you will lose your configuration. > > > >Yongchul Yang > > > >-Original Message- > >From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of > >norsyam ariffin > >Sent: Monday, June 11, 2001 1:34 AM > >To: [EMAIL PROTECTED] > >Subject: What is the cause of router config lost ? [7:7942] > > > >Hi guys, Few days ago one of my router config was lost. It happened > >several times.What is the cause of router config lost & how to > >troubleshoot for this problem ? Thanks in advance. Syam > > > > > > > >Get Your Private, Free E-mail from MSN Hotmail at http://www.hotmail.com. > _ > Get Your Private, Free E-mail from MSN Hotmail at http://www.hotmail.com. Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=7956&t=7942 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: lab switch 2900XL or 5k? [7:7926]
if you go with a 3500, the commands are IOS based. I'd recommend getting at least a Cat4000 so you can play with the CatOS' set commands and possibly other modules (an MSFC?). A 1900 should be good enough to practive with the IOS. Ebay has a bunch - pretty cheap. ""Kervin Pierre"" wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > Hi, > > I know this comes up a lot, but I need advice making this decision. The > archive's have some older post suggesting the 2900 but these are very > had to find these days, I guess because they aren't made anymore? > > Anyway, it was also recommended ( some time ago ), that the XL model IOS > were very different than the 5000s and the XL IOS did not appear much on > the CLSC exam, but might in the future. > > What is the prefered home lab switch today? > Is the XL IOS appearing in the CLSC? > Is the lab still predominately 5000? > Do I need more than one switch for simulations? What about a CCIE lab? > Should I take out a loan and buy a 5000? : ) > > thanks, > -Kervin Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=7957&t=7926 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: OSPF over NBMA [7:7941]
I don't think Chris' was asking how to configure OSPF for point-to-point but rather why. >From my experience, you can use it for when you don't want to subnet each network and you can save IP Address by going to a multipoint network using unnumbered interface on the nodes that connect to the frame cloud ""Choi, Howard CW"" wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > interface serial 0 > no ip address > encapsulation frame-relay > > interface serial 0.1 point-to-point > ip address x.x.x.x x.x.x.x > ip ospf network point-to-point > Howard Choi > CCNP, CCDP > -- > From: Burnham, Chris > To: [EMAIL PROTECTED] > Subject: OSPF over NBMA [7:7941] > Date: Monday, June 11, 2001 4:30PM > > Whenever reading about OSPF there seems to be a great deal of emphasis on > NBMA in a multipoint enviroment. > Why would you want to implement mulipoint when you could uses point to point > between remote offices connecting back to area0 ?? > > Chris Burnham, > Systems Engineer, > Delphis Consulting Plc. > Tel: +(44) 020 7916 0200 > Mob: +(44) 07799403576 > [EMAIL PROTECTED] > > > This e-mail and any files transmitted with it are intended solely for the > addressee and are confidential. They may also be legally privileged. > Copyright in them is reserved by Delphis Consulting PLC ["Delphis"] and they > must not be disclosed to, or used by, anyone other than the addressee. If > you have received this e-mail and any accompanying files in error, you may > not copy, publish or use them in any way and you should delete them from > your system and notify us immediately.E-mails are not secure. Delphis does > not accept responsibility for changes to e-mails that occur after they have > been sent. Any opinions expressed in this e-mail may be personal to the > author and may not necessarily reflect the opinions of Delphis. Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=7955&t=7941 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: T1 on 2600 Series router [7:7380]
absolutely. I have a 1720 handling 2 T1 lines without any problems. ""STRAND Scott"" wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > Can the 2600 series router handle a T-1 or do I need to use a 3640. > > Thanks, > Scott Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=7447&t=7380 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Where to get cheap memory for routers? [7:7168]
for flash memory, try CDW and search for Viking or Kingston memories. you'll find plenty mostly at less than hald the price of Cisco flash memory. ""Thomas"" wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > Wow, it seems that the memory here are so cheap (in compare to Cisco). I'll > probably get memory from here. However, it seems they don't have flash > modules for most platforms in stock here. > > > > ""Jon Krabbenschmidt"" wrote in message > [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > > Try here. I buy all my memory from Crucial. > > > > > http://www.crucial.com/store/listparts.asp?model=3660+Series+Routers+%28DRAM > > %29&x=12&y=8 > > > > > > Jon > > > > > > -Original Message- > > From: Thomas [mailto:[EMAIL PROTECTED]] > > Sent: Monday, June 04, 2001 3:16 PM > > To: [EMAIL PROTECTED] > > Subject: Where to get cheap memory for routers? [7:7168] > > > > > > Hi All, > > > > I am looking for upgrading our Cisco 3660 router. However, the cost for > the > > 128MB of Cisco memory susprised me. It costs like ... $5000.00 for a > piece > > of 128MB memory module for Cisco 3660. I wonder if it is OK to plug in a > > third party memory module? Has anyone out there do this? Is it safe to do? > > Which vendors do you recommend with good quality and cheap (or reasonable) > > price? Thanks All! Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=7274&t=7168 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: vpdn pptp [7:7211]
If this is not a Cisco 7200, I believe it's only supported on the new IOS - 12.1(5)T upwards... otherwise, you only get L2TP and L2F. Hope this helps. ""Rick Holden"" wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > I am trying to configure a voluntary VPDN tunnel and am having trouble with > the example config I got from Cisco's web page. The example is as follows: > > vpdn-group 1 > ! Default PPTP VPDN group > accept-dialin > protocol pptp > virtual-template 1 > local name cisco_pns > > The problem is with the PROTOCOL command. Every router that I have looked > has only L2F and L2TP as valid options not PPTP. Is this an error or am I > doing something wrong. I have seem this on a bunch of different IOS and on > different platforms. Thanks. > > /Rick Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=7273&t=7211 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Repost: GIADDR and Secondary Interface problems - help [7:6945]
I'll definitely email you / post back when i get back to it. I need to through our change control process request which will be at least a week before I will be able to start working on it again. I hope this "solution" works! ""W. Alan Robertson"" wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > So did it work? I've been waiting all day to hear... :) > > Alan~ > > - Original Message - > From: "Kenneth" > To: > Sent: Friday, June 01, 2001 7:38 AM > Subject: Re: Repost: GIADDR and Secondary Interface problems - help > [7:6741] > > > > Thanks Alan. > > > > Yeah, we do have a maintenance window for this so rebooting is not > really a > > problem except I'm targeting 104 weeks of uptime!!! :-) Guess > that'll have > > to wait another 104 weeks > > > > I'll give the 1st 2 ideas a try first and hopefully that fixes their > > problem. > > > > Thanks for the help, you guys have been great!!! > > > > Kenneth > > > > > > ""W. Alan Robertson"" wrote in message > > [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > > > Kenneth, > > > > > > It sounds to me like a bug... Have you checked the Cisco bug > > > database? > > > > > > Short of that, here's what I'd do: > > > > > > First, remove the ip helper-address from the interface, and then > add > > > it again... See what happpens. It's possible that the ip > > > helper-address function checks the interfaces primary IP address > when > > > the command is added, but has no mechanism to check it again after > > > being initialized. > > > > > > If that doesn't work, I'd remove it again, shut down the > interface, > > > bring the interface back up, and then add the help address again. > > > > > > As a last resort, reloading the router should clear the problem, > but I > > > understand your reluctance to do so... 100% uptime is a noble > > > pursuit, but there's no avoiding maintenance. I don't suppose you > > > have a maintenance window, do you? > > > > > > Hope this helps... > > > > > > Alan > > > > > > - Original Message - > > > From: "Kenneth" > > > To: > > > Sent: Thursday, May 31, 2001 9:10 PM > > > Subject: Repost: GIADDR and Secondary Interface problems - help > > > [7:6695] > > > > > > > > > > Hi, guys. It's been a while since I've posted something here but > I'm > > > pretty > > > > stumped with this problem somehow. Anyway, here's my problem: > > > > > > > > Remote office subnet: 192.168.5.0 255.255.255.0 > > > > Plan to change subnet into 192.168.19.0 255.255.255.0 > > > > Router relaying dhcp requests to 192.168.1.11 (DHCP Server in > > > Central site) > > > > Current fa0/0 interface on LAN: 192.168.5.1 255.255.255.0 > > > > > > > > I recently configured the interface to have > > > > 192.168.19.1 as its primary address > > > > 192.168.5.1 as its secondary address > > > > > > > > On the DHCP Server, I've deleted the 192.168.5.0 scope and > activated > > > the > > > > 192.168.19.0 scope > > > > > > > > The reason I have 2 ip addresses on the FastEthernet interface > of > > > the router > > > > is to allow people who haven't rebooted their computer to still > be > > > able to > > > > access email and services at the central site and print to their > > > local LAN > > > > LPR printers... > > > > > > > > The problem I'm having is that once the computers have rebooted, > and > > > I did a > > > > debug ip dhcp server events, packets, linkage, I keep seeing the > > > router > > > > still setting the GIADDR of the request as 192.168.5.1 ... since > > > it's > > > > forwarding this information, the DHCP server on the central site > > > wasn't > > > > responding because of the non-existence of the 192.168.5.0 scope > > > > > > > > Reading Cisco's documentation, I thought the router uses the > primary > > > ip > > > > address of the interface as its GIADDR? > > > > > > > > I have read something about ip dhcp smart-relay but I doubt it > > > applies to > > > > this problem... > > > > > > > > BTW, this is the way that it should be done and I know a lot of > > > people hate > > > > the "secondary" ip address but I'm really trying to make this > change > > > as > > > > transparent to the users as possible! > > > > > > > > Thanks guys! > > > > > > > > Kenneth > > > [EMAIL PROTECTED] > [EMAIL PROTECTED] Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=6945&t=6945 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Repost: GIADDR and Secondary Interface problems - help [7:6741]
Thanks Alan. Yeah, we do have a maintenance window for this so rebooting is not really a problem except I'm targeting 104 weeks of uptime!!! :-) Guess that'll have to wait another 104 weeks I'll give the 1st 2 ideas a try first and hopefully that fixes their problem. Thanks for the help, you guys have been great!!! Kenneth ""W. Alan Robertson"" wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > Kenneth, > > It sounds to me like a bug... Have you checked the Cisco bug > database? > > Short of that, here's what I'd do: > > First, remove the ip helper-address from the interface, and then add > it again... See what happpens. It's possible that the ip > helper-address function checks the interfaces primary IP address when > the command is added, but has no mechanism to check it again after > being initialized. > > If that doesn't work, I'd remove it again, shut down the interface, > bring the interface back up, and then add the help address again. > > As a last resort, reloading the router should clear the problem, but I > understand your reluctance to do so... 100% uptime is a noble > pursuit, but there's no avoiding maintenance. I don't suppose you > have a maintenance window, do you? > > Hope this helps... > > Alan > > - Original Message - > From: "Kenneth" > To: > Sent: Thursday, May 31, 2001 9:10 PM > Subject: Repost: GIADDR and Secondary Interface problems - help > [7:6695] > > > > Hi, guys. It's been a while since I've posted something here but I'm > pretty > > stumped with this problem somehow. Anyway, here's my problem: > > > > Remote office subnet: 192.168.5.0 255.255.255.0 > > Plan to change subnet into 192.168.19.0 255.255.255.0 > > Router relaying dhcp requests to 192.168.1.11 (DHCP Server in > Central site) > > Current fa0/0 interface on LAN: 192.168.5.1 255.255.255.0 > > > > I recently configured the interface to have > > 192.168.19.1 as its primary address > > 192.168.5.1 as its secondary address > > > > On the DHCP Server, I've deleted the 192.168.5.0 scope and activated > the > > 192.168.19.0 scope > > > > The reason I have 2 ip addresses on the FastEthernet interface of > the router > > is to allow people who haven't rebooted their computer to still be > able to > > access email and services at the central site and print to their > local LAN > > LPR printers... > > > > The problem I'm having is that once the computers have rebooted, and > I did a > > debug ip dhcp server events, packets, linkage, I keep seeing the > router > > still setting the GIADDR of the request as 192.168.5.1 ... since > it's > > forwarding this information, the DHCP server on the central site > wasn't > > responding because of the non-existence of the 192.168.5.0 scope > > > > Reading Cisco's documentation, I thought the router uses the primary > ip > > address of the interface as its GIADDR? > > > > I have read something about ip dhcp smart-relay but I doubt it > applies to > > this problem... > > > > BTW, this is the way that it should be done and I know a lot of > people hate > > the "secondary" ip address but I'm really trying to make this change > as > > transparent to the users as possible! > > > > Thanks guys! > > > > Kenneth > [EMAIL PROTECTED] Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=6741&t=6741 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Repost: GIADDR and Secondary Interface problems - help [7:6705]
Travis, Thanks for the reply. I am currently using EIGRP and I can ping the clients that were trying to request the new ip address. There is no connection issue at all and everything works great except for the stubborn clients to get the new scope! One thing I thought was, on a windows client, the GIADDR is set to its original GIADDR and that it will only change when you "release" then "renew" the GIADDR in which time, the GIADDR will be temporarily set to 0.0.0.0 then to the new primary interface. I don't know if this is a bug but when a client does a release then renew, then they get the new scope but other than that, it's not consistent. I was also able to replicate this on a lab, too, but not consistently. Very strange. To answer your other question, yes, the new scope is on the same DHCP server. Im thinking about using Smart-Relay but i know it's only effective if the primary is not responding at which time, the secondary address will be set as the GIADDR Any ideas? I'm stumped. Thanks! ""Bolton, Travis"" wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > Kenneth, > > Our company does the same exact thing when readdressing user segments at > sites. The reason we use secondary is for the purpose of having no down > time for the users. The way it should work is the primary Ip address will > be used by the users while the secondary IP address can still be used for > static IP'd devices. This give the site time to readdress all of their > static devices before you remove the secondary address. I don't know why > you are having the problem that you are having. If the new scope is created > and active then things should work. Is the new scope on the same dhcp > server as the last scope? Can you ping the dhcp server from that new user > segment? Are you doing a static route back to your core are you using a > dynamic routing protocol? If you are using a default route then you will > need to point the new segment on your core/distribution router to that new > segment. If you don't have this then users won't get an IP address. Had > that happen to me a couple times. If you can supply me with more info I'll > take a look at it and help out if I can. Hope this helps. > > -Original Message- > From: Kenneth [mailto:[EMAIL PROTECTED]] > Sent: Thursday, May 31, 2001 8:11 PM > To: [EMAIL PROTECTED] > Subject: Repost: GIADDR and Secondary Interface problems - help [7:6695] > > > Hi, guys. It's been a while since I've posted something here but I'm pretty > stumped with this problem somehow. Anyway, here's my problem: > > Remote office subnet: 192.168.5.0 255.255.255.0 > Plan to change subnet into 192.168.19.0 255.255.255.0 > Router relaying dhcp requests to 192.168.1.11 (DHCP Server in Central site) > Current fa0/0 interface on LAN: 192.168.5.1 255.255.255.0 > > I recently configured the interface to have > 192.168.19.1 as its primary address > 192.168.5.1 as its secondary address > > On the DHCP Server, I've deleted the 192.168.5.0 scope and activated the > 192.168.19.0 scope > > The reason I have 2 ip addresses on the FastEthernet interface of the router > is to allow people who haven't rebooted their computer to still be able to > access email and services at the central site and print to their local LAN > LPR printers... > > The problem I'm having is that once the computers have rebooted, and I did a > debug ip dhcp server events, packets, linkage, I keep seeing the router > still setting the GIADDR of the request as 192.168.5.1 ... since it's > forwarding this information, the DHCP server on the central site wasn't > responding because of the non-existence of the 192.168.5.0 scope > > Reading Cisco's documentation, I thought the router uses the primary ip > address of the interface as its GIADDR? > > I have read something about ip dhcp smart-relay but I doubt it applies to > this problem... > > BTW, this is the way that it should be done and I know a lot of people hate > the "secondary" ip address but I'm really trying to make this change as > transparent to the users as possible! > > Thanks guys! > > Kenneth Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=6705&t=6705 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Repost: GIADDR and Secondary Interface problems - help [7:6695]
Hi, guys. It's been a while since I've posted something here but I'm pretty stumped with this problem somehow. Anyway, here's my problem: Remote office subnet: 192.168.5.0 255.255.255.0 Plan to change subnet into 192.168.19.0 255.255.255.0 Router relaying dhcp requests to 192.168.1.11 (DHCP Server in Central site) Current fa0/0 interface on LAN: 192.168.5.1 255.255.255.0 I recently configured the interface to have 192.168.19.1 as its primary address 192.168.5.1 as its secondary address On the DHCP Server, I've deleted the 192.168.5.0 scope and activated the 192.168.19.0 scope The reason I have 2 ip addresses on the FastEthernet interface of the router is to allow people who haven't rebooted their computer to still be able to access email and services at the central site and print to their local LAN LPR printers... The problem I'm having is that once the computers have rebooted, and I did a debug ip dhcp server events, packets, linkage, I keep seeing the router still setting the GIADDR of the request as 192.168.5.1 ... since it's forwarding this information, the DHCP server on the central site wasn't responding because of the non-existence of the 192.168.5.0 scope Reading Cisco's documentation, I thought the router uses the primary ip address of the interface as its GIADDR? I have read something about ip dhcp smart-relay but I doubt it applies to this problem... BTW, this is the way that it should be done and I know a lot of people hate the "secondary" ip address but I'm really trying to make this change as transparent to the users as possible! Thanks guys! Kenneth Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=6695&t=6695 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: GIADDR and secondary ip address problem. [7:6568]
I wish the solution is this easy but you can't create 2 subinterfaces and create 2 ip addresses on those because they have to be encapsulated. Since I'm not using any form of trunking, there is no way I can use 2 subinterfaces with 2 ip addresses. Thanks for the try though. ""Liang Mark J Civ AFRL/PROI"" wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > Try to create two subinterfaces the fa0/0 (fa0/0.1 and fa0/0.2)and place the > ip helper 192.168.1.11 command on both subinterfaces. > > Hope that work, good luck. > > Mark, > > -Original Message- > From: Kenneth [mailto:[EMAIL PROTECTED]] > Sent: Wednesday, May 30, 2001 9:34 PM > To: [EMAIL PROTECTED] > Subject: GIADDR and secondary ip address problem. [7:6568] > > > Hi, guys. It's been a while since I've posted something here but I'm pretty > stumped with this problem somehow. Anyway, here's my problem: > > Remote office subnet: 192.168.5.0 255.255.255.0 > Plan to change subnet into 192.168.19.0 255.255.255.0 > Router relaying dhcp requests to 192.168.1.11 (DHCP Server in Central site) > Current fa0/0 interface on LAN: 192.168.5.1 255.255.255.0 > > I recently configured the interface to have > 192.168.19.1 as its primary address > 192.168.5.1 as its secondary address > > On the DHCP Server, I've deleted the 192.168.5.0 scope and activated the > 192.168.19.0 scope > > The reason I have 2 ip addresses on the FastEthernet interface of the router > is to allow people who haven't rebooted their computer to still be able to > access email and services at the central site and print to their local LAN > LPR printers... > > The problem I'm having is that once the computers have rebooted, and I did a > debug ip dhcp server events, packets, linkage, I keep seeing the router > still setting the GIADDR of the request as 192.168.5.1 ... since it's > forwarding this information, the DHCP server on the central site wasn't > responding because of the non-existence of the 192.168.5.0 scope > > Reading Cisco's documentation, I thought the router uses the primary ip > address of the interface as its GIADDR? > > I have read something about ip dhcp smart-relay but I doubt it applies to > this problem... > > BTW, this is the way that it should be done and I know a lot of people hate > the "secondary" ip address but I'm really trying to make this change as > transparent to the users as possible! > > Thanks guys! > > Kenneth Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=6668&t=6568 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
GIADDR and secondary ip address problem. [7:6568]
Hi, guys. It's been a while since I've posted something here but I'm pretty stumped with this problem somehow. Anyway, here's my problem: Remote office subnet: 192.168.5.0 255.255.255.0 Plan to change subnet into 192.168.19.0 255.255.255.0 Router relaying dhcp requests to 192.168.1.11 (DHCP Server in Central site) Current fa0/0 interface on LAN: 192.168.5.1 255.255.255.0 I recently configured the interface to have 192.168.19.1 as its primary address 192.168.5.1 as its secondary address On the DHCP Server, I've deleted the 192.168.5.0 scope and activated the 192.168.19.0 scope The reason I have 2 ip addresses on the FastEthernet interface of the router is to allow people who haven't rebooted their computer to still be able to access email and services at the central site and print to their local LAN LPR printers... The problem I'm having is that once the computers have rebooted, and I did a debug ip dhcp server events, packets, linkage, I keep seeing the router still setting the GIADDR of the request as 192.168.5.1 ... since it's forwarding this information, the DHCP server on the central site wasn't responding because of the non-existence of the 192.168.5.0 scope Reading Cisco's documentation, I thought the router uses the primary ip address of the interface as its GIADDR? I have read something about ip dhcp smart-relay but I doubt it applies to this problem... BTW, this is the way that it should be done and I know a lot of people hate the "secondary" ip address but I'm really trying to make this change as transparent to the users as possible! Thanks guys! Kenneth Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=6568&t=6568 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: help with configuring TACACS+ server and NAS
I'm not sure how TACACS+ is configured but I'm using FUNK's Radius and all I
had to do is do a return Attribute with "priv-lvl = 15"...
Depending on the user, if the user has this attribute set, then he'll
automatically be brought to level 15 without doing "enable"
Hope this helps.
Check this link out:
http://www.cisco.com/warp/public/480/PRIV.html
"Sean Young" <[EMAIL PROTECTED]> wrote in message
[EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
> Hi everyone,
>
> I need help in configuring both the TACACS+ server and the Network
> Access Server (NAS). I am currently running the TACACS+ server on
> Linux RedHat 7 with kernel 2.4.2. I am running the NAS on a cisco 2610
> router with IOS 12.0.15 Enterprise plus with ipsec capability. I am
running
> TACACS server version tac_plus-F4.0.3.alpha-7. Here is the configuration
> of the tacacs configuration file:
>
> key = "helpme"
>
> user = xyz {
> member = admin
> login = des 7bYbKxc
> cmd = show { permit .* }
> cmd = disconnect { permit .* }
> }
> user = abc{
> member = admin
> login = des YZdX64CcM
> cmd = show { permit .* }
> cmd = disconnect { permit .* }
> }
> user = def {
> service = exec {
> default attribute = permit
> }
> member = normal
> login = des 3zz3A/3Nc7RCU
> expires = "Mar 08 2002"
> cmd = where { permit .* }
> }
> group = admin {
> default service = permit
> service = exec {
> priv-lvl = 15
>}
> }
> group = normal{
> }
> user = $enab15$ {
> login = cleartext "Ineedhelp"
> }
>
> Here is the what I configure on the NAS:
>
> aaa new-model
> aaa authentication login usetacacs tacacs+ local enable
> aaa authentication login usenone none
> aaa authorization commands 1 usetacacs1 tacacs+
> enable secret 5 $1gGfwBcXfakuNKYSV0
>
> tacacs-server host 172.16.1.240
> tacacs-server key helpme
>
> line vty 0 4
> authorization commands 1 usetacacs1
> login authentication usetacacs
>
>
> I would like to be able to make both users abc and xyz to be
> able to go into the privilege mode (enable) each with their
> own password. Right now, even though abc and xyz can
> access the NAS, they have to share the enable secret
> password which is something I like to avoid. How can I
> make this happen? What am I doing wrong here? Please
> help... I am desperate...
> Many thanks.
>
> Harry
>
> _
> Get your FREE download of MSN Explorer at http://explorer.msn.com
>
> _
> FAQ, list archives, and subscription info:
http://www.groupstudy.com/list/cisco.html
> Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
>
_
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: How would you Explain it.
That's what sucks about Cleveland. We get the new technologies the last... Should have stayed in Chicago! lol. "Jack" <[EMAIL PROTECTED]> wrote in message 97snc1$8o9$[EMAIL PROTECTED]">news:97snc1$8o9$[EMAIL PROTECTED]... > PacBell is also offering a "GigaMan" service in selected citiies > Priscilla Oppenheimer wrote in message > <[EMAIL PROTECTED]>... > >We have public IP addresses, our own DNS servers, Web servers, etc. The > >only sort of strange thing is that the layer-two LAN crosses the MAN, if > >that makes any sense. At our site we just have a two-port switch. A > >single-mode fiber link connects our switch to a router port at the > >provider's site across town. The provider is connected to the Internet. > > > >(When the provider said he was installing a two-port switch, I had to laugh > >and ask, isn't that a bridge??) > > > >Priscilla > > > >At 09:09 AM 3/3/01, Kenneth wrote: > >>I'm curious, if you're connected to a switch, then you don't have control > >>over your public IP Addresses then such as DNS,... or is this mostly used > >>for office to office links as opposed to a gateway to the internet? > >> > >>I guess the reason i'm wondering is we currently have an entire class C > and > >>we host our own DNS, web servers, ftp,... and I'm curious as to how this > >>would affect our routings if we do go with such a service. > >> > >> > >>Priscilla Oppenheimer <[EMAIL PROTECTED]> wrote in message > >>[EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > >> > We upgraded our T1 WAN link that cost $1500 per month to a single-mode > >> > fiber-optic 10-Mbps Ethernet MAN link that costs $700 per month. We > just > >> > have a switch at our site, no router even. Seriously. Our local > >> > municipality has a Gigabit Ethernet single-mode fiber-optic ring > running > >> > around town, and they lease capacity on it. The city is connected to > the > >> > Internet via a Cisco 7200 and a Sprint T3 link. We piggy back onto > that. > >> > > >> > And I'm in Southern Oregon, a supposedly rural area. It's happening in > >> > other towns also. Sometimes I forget how lucky we are! > >> > > >> > Priscilla > >> > > >> > At 02:28 PM 3/2/01, Howard C. Berkowitz wrote: > >> > > >I have a customer who wants to upgrade his 128K ISDN point to point > >> > > >connections to at lease a 10mbps connection. He is thinking along > the > >>lines > >> > > >of LAN technologies. He idea connection is a 1gb connection. How > >>would go > >> > > >about explaining to this guy that he is out of his mind without > >>damaging his > >> > > >ego. His the IT manager and thinks he's knowledgeable about > networks. > >> > > > >> > >I wouldn't say he is totally out of his mind, if he's in a geographic > >> > >area served by one of the bleeding edge Optical Ethernet providers. > >> > >Very rare so far, but there are 100 or 1000 Mbps physical facilities > >> > >over which the user pays for the amount of bandwidth he needs. Most > >> > >of the ones I'm aware of are in Europe. > >> > > > >> > >In the vast majority of locations, he is out of his mind. Assuming > >> > >he needs 10 Mbps, your choices include inverse multiplexed T1 and > >> > >ATM, fractional T3, or 10 Mbps over OC-3 facilities. I had a design > >> > >not too long ago where we were able to bring in some of the voice as > >> > >well, and found that OC-3 was quite cost-effective. It ran into a > >> > >7200. A 3600 is probably the lowest end router to consider. > >> > > > >> > > > > >> > > >btw... > >> > > > > >> > > >I've gone ahead and gotten quotes on a t1 and t3 lines. I know I > can > >>use a > >> > > >2600 for the T1 connection but what is there a adapter for taking a > >>clear > >> > > >channel T3 for the 2600 or do I have to look at a 7000 series > router. > >> > > > > >> > > >Thanks, > >> > > > > >> > > >Keith Townsend > >> > > >www.townsendconsulting.com > >> > >\ > >> > > > >> > >_
Re: Did I luck out or what!
Go to Ebay and you'll find people selling network modules and WICS. If you don't want to bother with it, there are a lot of companies that sell used Cisco modules if you look it up the internet. Lastly, if you want it brand new, go to CDW or shopper.cnet.com and search for the modules there. John Neiberger <[EMAIL PROTECTED]> wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > I'm in the beginning stages of throwing together a home lab (otherwise known > as electric heating.) All I had to mess around with before was a 2501 with > one broken serial port. > > Today an acquaintance gave me--for free--two Cisco 4000 routers (one with a > 2-port serial module, the other is empty and running 9.1!!), a 3COM > Netbuilder router, and a AT&T 16-port hub. Heck of a deal, huh? Well, the > Cisco stuff is a good deal. Hubs are cheaper than dirt nowadays, and the > 3com POS is annoying. To say that its user interface was not intuitive > would be kind. It appears that it can do a lot, I just don't know if I have > the patience to decipher the CLI! > > Anyway, I now need to find a couple more cables and some network modules for > the 4000's. Do any of you know where I can get these *really* cheap? Yes, > I'm becoming a tightwad, but only because I married one. > > I need another 2-port serial module, at least one ethernet module, and > perhaps even a fast ethernet module. > > Any thoughts on who to call? > > Thanks, > John > > > > > > ___ > Send a cool gift with your E-Card > http://www.bluemountain.com/giftcenter/ > > > _ > FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] > _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Just picked up 2 routers
You have 1024+1024 bytes which totals to 2048 bytes of RAM (2 Mb) "vert" <[EMAIL PROTECTED]> wrote in message 97umes$vp3$[EMAIL PROTECTED]">news:97umes$vp3$[EMAIL PROTECTED]... > I just bought 2 Cisco 2524's and I am trying to check how much ram they came > with. Can anyone inform me on how to view the memory. When I boot the router > I get this config: > cisco 2524 (68030) processor (revision J) with 1024K/1024K bytes of memory. > Processor board ID 06956739, with hardware revision > Bridging software. > X.25 software, Version 3.0.0. > Basic Rate ISDN software, Version 1.0. > 1 Ethernet/IEEE 802.3 interface(s) > 2 Serial network interface(s) > 1 ISDN Basic Rate interface(s) > Integrated NT1 for ISDN Basic Rate interface > 5-in-1 module for Serial Interface 0 > 56k 4-wire CSU/DSU for Serial Interface 1 > 32K bytes of non-volatile configuration memory. > 8192K bytes of processor board System flash (Read ONLY) > > Can I figure out what the total amount of ram is from this info? I just > don't want to be cheated. I am new to the Cisco environment. > > Thanks > > > _ > FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] > _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Frame Relay Charges
That's true. All packets will be DE marked but 99% of the time, these DE marked packets will get through - that's what our SLA with them is. Their reason for this is that their network is "bleeding edge" and that they are willing to create an SLA for 0 CIR as compared to most providers who won't promise you anything. You can pay, like i said, for CIR and their SLA will guarantee 99.99% packet delivery up to CIR. Lauren Child <[EMAIL PROTECTED]> wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > > > Kenneth wrote: > > > > I'm not sure who the provider is but 0 CIR sounds like "Sprint-speak". > > Id imagine it would be fine if you get garuantees as to how much would > get through but a 0CIR means all our frames would be discard eligible, > so you couldnt garuntee anything getting through. It would be a bit > like shared etherenet - fine unless you experience congestion and then > its pot luck who's frames get through. You are at the mercy of the > telco's oversubscription. > > TTFN > Lauren > > _ > FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] > _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: How would you Explain it.
I'm curious, if you're connected to a switch, then you don't have control over your public IP Addresses then such as DNS,... or is this mostly used for office to office links as opposed to a gateway to the internet? I guess the reason i'm wondering is we currently have an entire class C and we host our own DNS, web servers, ftp,... and I'm curious as to how this would affect our routings if we do go with such a service. Priscilla Oppenheimer <[EMAIL PROTECTED]> wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > We upgraded our T1 WAN link that cost $1500 per month to a single-mode > fiber-optic 10-Mbps Ethernet MAN link that costs $700 per month. We just > have a switch at our site, no router even. Seriously. Our local > municipality has a Gigabit Ethernet single-mode fiber-optic ring running > around town, and they lease capacity on it. The city is connected to the > Internet via a Cisco 7200 and a Sprint T3 link. We piggy back onto that. > > And I'm in Southern Oregon, a supposedly rural area. It's happening in > other towns also. Sometimes I forget how lucky we are! > > Priscilla > > At 02:28 PM 3/2/01, Howard C. Berkowitz wrote: > > >I have a customer who wants to upgrade his 128K ISDN point to point > > >connections to at lease a 10mbps connection. He is thinking along the lines > > >of LAN technologies. He idea connection is a 1gb connection. How would go > > >about explaining to this guy that he is out of his mind without damaging his > > >ego. His the IT manager and thinks he's knowledgeable about networks. > > > >I wouldn't say he is totally out of his mind, if he's in a geographic > >area served by one of the bleeding edge Optical Ethernet providers. > >Very rare so far, but there are 100 or 1000 Mbps physical facilities > >over which the user pays for the amount of bandwidth he needs. Most > >of the ones I'm aware of are in Europe. > > > >In the vast majority of locations, he is out of his mind. Assuming > >he needs 10 Mbps, your choices include inverse multiplexed T1 and > >ATM, fractional T3, or 10 Mbps over OC-3 facilities. I had a design > >not too long ago where we were able to bring in some of the voice as > >well, and found that OC-3 was quite cost-effective. It ran into a > >7200. A 3600 is probably the lowest end router to consider. > > > > > > > >btw... > > > > > >I've gone ahead and gotten quotes on a t1 and t3 lines. I know I can use a > > >2600 for the T1 connection but what is there a adapter for taking a clear > > >channel T3 for the 2600 or do I have to look at a 7000 series router. > > > > > >Thanks, > > > > > >Keith Townsend > > >www.townsendconsulting.com > >\ > > > >_ > >FAQ, list archives, and subscription info: > >http://www.groupstudy.com/list/cisco.html > >Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] > > > > > Priscilla Oppenheimer > http://www.priscilla.com > > _ > FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] > _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Frame Relay Charges
I'm not sure who the provider is but 0 CIR sounds like "Sprint-speak". Most service providers won't allow or recommends against 0 CIR but on the other hand, Sprint pushes it. We are currently using 0 CIR and I think the quality has been good and we haven't had a whole lot of dropped packets. In fact, I think they still guarantee 99% delivery up to port speed which is pretty good specially compared to most providers 99.9% delivery up to CIR and no guarantee beyond that. "Nabil Fares" <[EMAIL PROTECTED]> wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > Greetings all, > > Can you guys shed some light on how FR providers base their charges. How > they charge when going above CIR (etc...)? > > also, if I have site with network access between 8-5, is it worth risking a > zero CIR? > > We had a meeting with an account rep for a FR provider, he kept pressing on > 0 CIR. This is a new trend? > > Thanks, > > Nabil > > > _ > FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] > _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Seeing the Internet through a firewall
you might want to try real firewalls that provide a DMZ port. But if you can't and if this is just a single webserver, you can use PAT (reverse NAT). Search for it on the Cisco site to get more info on how to implement this. "Howard Yuan" <[EMAIL PROTECTED]> wrote in message 97hhuk$o78$[EMAIL PROTECTED]">news:97hhuk$o78$[EMAIL PROTECTED]... > Hi, > > I'm trying to put a firewall into my company's router. They have a > webserver which hosts their webpage and every computer on the Internet has > the ability to see the Internet through the router. What lines would I need > to put into an access-list to keep the webserver seen and reachable, and > allow the other computers on the network to be able to see the Internet? > Which side should I put the access-list on? Inbound or outbound? Thank you > in advanced. > > Howard > > > _ > FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] > _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Napster internet technology
go download openNap and look at the source-code, that should pretty much explain 99% of your questions. Hinton Bandele-NBH281 <[EMAIL PROTECTED]> wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > I am performing research into the technical underpinnings of the Napster program that allows a desktop machine the ability to utilize desktop and internet tools to deliver a truly distributed Internet application. Can anyone assist me by provide technical information on the Napster program? Listed below are specific questions. > > 1. What development application was used to develop Napster? > > 2. How does Napster use TCP to distribute software? (i.e. port numbering information, application layer routing) > > Thanks! > > Bandele Hinton > Motorola Corporation > 630-353-8286 (office) > 877-992-7925 (pager) > [EMAIL PROTECTED] > > > _ > FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] > _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Creating Multiple Interfaces on an Ethernet Port
try adding an ip address to it. "Tim Lovelace" <[EMAIL PROTECTED]> wrote in message news:[EMAIL PROTECTED]... > This seems to be incorrect. I tried this on a router I had spare and below > are hte results. It may be a newer feature, I am to lazy to look on CCO. > > Tim > > > Router2#sh ver > Cisco Internetwork Operating System Software > IOS (tm) C2600 Software (C2600-I-M), Version 12.0(15), RELEASE SOFTWARE > (fc1) > > > > Router2#config t > Enter configuration commands, one per line. End with CNTL/Z. > Router2(config)#int e0/0 > Router2(config-if)#int e0/0.1 > Router2(config-subif)# > 00:01:29: %LINK-3-UPDOWN: Interface Ethernet0/0, changed state to up > Router2(config-subif)#^Z > Router2#sh run > > > > interface Ethernet0/0 > ip address 10.10.10.1 255.255.255.128 > no ip directed-broadcast > ! > interface Ethernet0/0.1 > no ip directed-broadcast > ! > > -Original Message- > From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of > Brian > Sent: Monday, February 19, 2001 9:29 PM > To: Chris Wornell > Cc: [EMAIL PROTECTED] > Subject: Re: Creating Multiple Interfaces on an Ethernet Port > > > > the only way you can create sub interfaces on ethernet is to use dot1q or > ISL encapsulation on a FastEthernet interface (VLANs) > > brian > > > On Mon, 19 Feb 2001, Chris Wornell wrote: > > > Hello, > > > > I've found out you can't create multiple interfaces on an ethernet port > > apparently. I was wondering why this is exactly? I know you can > accomplish > > the same on serial lines using pvc's but it seems odd you can't do it on > > ethernet. I know there are ethernet only networks and the ip secondary > > command doesn't seem right compared to creating a new interface. > > > > Chris Wornell > > Technical Support > > MM Internet http://mminternet.com > > 888-654-4971 > > CCNA, CCDA, CSE > > > > _ > > FAQ, list archives, and subscription info: > http://www.groupstudy.com/list/cisco.html > > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] > > > > --- > I'm buying used CISCO gear!! > email me for a quote > > Brian Feeny e:[EMAIL PROTECTED] > CCNP+Voice/ATM/Security p:318.222.2638x109 > CCDP f:318.221.6612 > Network Administrator > ShreveNet Inc. (ASN 11881) > > _ > FAQ, list archives, and subscription info: > http://www.groupstudy.com/list/cisco.html > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] > > > > _ > FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] > _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: protocol analyzers
NI Observer Gary Witherspoon <[EMAIL PROTECTED]> wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > Anybody have a good recomendation of a protocol > analyzer they have used and liked. I have never used > one, and was hoping to see what you guys recommend. > > thanks in advance > > __ > Do You Yahoo!? > Yahoo! Auctions - Buy the things you want at great prices! http://auctions.yahoo.com/ > > _ > FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] > _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: HSRP
You can't run HSRP that way. Both routers should have an interface connected to the same subnet... "NetEng" <[EMAIL PROTECTED]> wrote in message 9711m7$jr5$[EMAIL PROTECTED]">news:9711m7$jr5$[EMAIL PROTECTED]... > If I have two routers running HSRP, what is the physical connection of = > the routers to the next device? I have a serial port on each router, but = > only one port on the smart jack or CSU/DSU. > > _ > FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] > _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Creating Multiple Interfaces on an Ethernet Port
Oh yeah. Nobody said it's a layer 3 issue. It's obviously an IOS issue since it doesn't make sense why it can't be configured that way. NT servers can have one NIC with multiple IP addresses. Yonkerbonk <[EMAIL PROTECTED]> wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > You can add IPX addresses to it, so it doesn't seem to > be an issue of layer 3 addresses. I think it just a > matter of Cisco IOS supporting it. > > Michael > > --- Kenneth <[EMAIL PROTECTED]> wrote: > > try adding an ip address to it. > > > > "Tim Lovelace" <[EMAIL PROTECTED]> wrote in > > message > > > news:[EMAIL PROTECTED]... > > > This seems to be incorrect. I tried this on a > > router I had spare and below > > > are hte results. It may be a newer feature, I am > > to lazy to look on CCO. > > > > > > Tim > > > > > > > > > Router2#sh ver > > > Cisco Internetwork Operating System Software > > > IOS (tm) C2600 Software (C2600-I-M), Version > > 12.0(15), RELEASE SOFTWARE > > > (fc1) > > > > > > > > > > > > Router2#config t > > > Enter configuration commands, one per line. End > > with CNTL/Z. > > > Router2(config)#int e0/0 > > > Router2(config-if)#int e0/0.1 > > > Router2(config-subif)# > > > 00:01:29: %LINK-3-UPDOWN: Interface Ethernet0/0, > > changed state to up > > > Router2(config-subif)#^Z > > > Router2#sh run > > > > > > > > > > > > interface Ethernet0/0 > > > ip address 10.10.10.1 255.255.255.128 > > > no ip directed-broadcast > > > ! > > > interface Ethernet0/0.1 > > > no ip directed-broadcast > > > ! > > > > > > -Original Message- > > > From: [EMAIL PROTECTED] > > [mailto:[EMAIL PROTECTED]]On Behalf Of > > > Brian > > > Sent: Monday, February 19, 2001 9:29 PM > > > To: Chris Wornell > > > Cc: [EMAIL PROTECTED] > > > Subject: Re: Creating Multiple Interfaces on an > > Ethernet Port > > > > > > > > > > > > the only way you can create sub interfaces on > > ethernet is to use dot1q or > > > ISL encapsulation on a FastEthernet interface > > (VLANs) > > > > > > brian > > > > > > > > > On Mon, 19 Feb 2001, Chris Wornell wrote: > > > > > > > Hello, > > > > > > > > I've found out you can't create multiple > > interfaces on an ethernet port > > > > apparently. I was wondering why this is > > exactly? I know you can > > > accomplish > > > > the same on serial lines using pvc's but it > > seems odd you can't do it on > > > > ethernet. I know there are ethernet only > > networks and the ip secondary > > > > command doesn't seem right compared to creating > > a new interface. > > > > > > > > Chris Wornell > > > > Technical Support > > > > MM Internet http://mminternet.com > > > > 888-654-4971 > > > > CCNA, CCDA, CSE > > > > > > > > _ > > > > FAQ, list archives, and subscription info: > > > http://www.groupstudy.com/list/cisco.html > > > > Report misconduct and Nondisclosure violations > > to [EMAIL PROTECTED] > > > > > > > > > > --- > > > I'm buying used CISCO gear!! > > > email me for a quote > > > > > > Brian Feeny e:[EMAIL PROTECTED] > > > CCNP+Voice/ATM/Security p:318.222.2638x109 > > > CCDP f:318.221.6612 > > > Network Administrator > > > ShreveNet Inc. (ASN 11881) > > > > > > _ > > > FAQ, list archives, and subscription info: > > > http://www.groupstudy.com/list/cisco.html > > > Report misconduct and Nondisclosure violations to > > [EMAIL PROTECTED] > > > > > > > > > > > > _ > > > FAQ, list archives, and subscription info: > > http://www.groupstudy.com/list/cisco.html > > > Report misconduct and Nondisclosure violations to > > [EMAIL PROTECTED] > > > > > > > > > _ > > FAQ, list archives, and subscription info: > > http://www.groupstudy.com/list/cisco.html > > Report misconduct and Nondisclosure violations to > [EMAIL PROTECTED] > > > __ > Do You Yahoo!? > Yahoo! Auctions - Buy the things you want at great prices! http://auctions.yahoo.com/ > > _ > FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] > _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Repost: PIX, VPNs & DHCP
I'm not familiar with PIX but I don't think it can act as a DHCP relay host. What you need is a host that is capable of relaying DHCP requests from one subnet to another. NT Server is capable of doing that if you have NT running on your remote subnet by installing the DHCP relay agent. "Michael Snyder" <[EMAIL PROTECTED]> wrote in message 96sf2u$d7q$[EMAIL PROTECTED]">news:96sf2u$d7q$[EMAIL PROTECTED]... > Why? > > Just setup IOS DHCP servers on your Cisco routers, then setup a TFTP in the > HQ for a database. You could even edit the files by hand at HQ per MAC > address. > > > ""Greg Reaume"" <[EMAIL PROTECTED]> wrote in message > 96sdrc$7qr$[EMAIL PROTECTED]">news:96sdrc$7qr$[EMAIL PROTECTED]... > > Hi All, > > > > I was wondering if it's possible to forward DHCP packets through a PIX-PIX > > VPN tunnel? I have 1 DHCP server and would like to start using it for my > > branch offices seeing as they have more problems with DHCP and no IT staff > > to support it. > > > > I haven't found any documentation on this. Has anyone done this? > > > > Thanks in advance, > > > > Greg > > > > > > > > _ > > FAQ, list archives, and subscription info: > http://www.groupstudy.com/list/cisco.html > > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] > > > > > _ > FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] > _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Creating Multiple Interfaces on an Ethernet Port
The only way you can create subinterfaces on fastethernet ports is when you use encapsulation such as dot1q or isl. Otherwise, the router will tell you that you can't. "Chris Wornell" <[EMAIL PROTECTED]> wrote in message 00a701c09ad6$aee4e850$20c956d8@jabooty">news:00a701c09ad6$aee4e850$20c956d8@jabooty... > Hello, > > I've found out you can't create multiple interfaces on an ethernet port > apparently. I was wondering why this is exactly? I know you can accomplish > the same on serial lines using pvc's but it seems odd you can't do it on > ethernet. I know there are ethernet only networks and the ip secondary > command doesn't seem right compared to creating a new interface. > > Chris Wornell > Technical Support > MM Internet http://mminternet.com > 888-654-4971 > CCNA, CCDA, CSE > > _ > FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] > _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Cisco 4000 error message..
seems like something's wrong with the IOS image. It happened to me one time when I uploaded an incompatible IOS. Since you never touched it, it might be best to reload a fresh copy of IOS image into the flash. "Stull, Cory" <[EMAIL PROTECTED]> wrote in message 0D7A05A19CE4D211BD050008C7330FE7259050@CCUPDC">news:0D7A05A19CE4D211BD050008C7330FE7259050@CCUPDC... > Has anyone seen this below error message? My Cisco 4000 was working fine > for a long time and then all of a sudden failed... no changes have been made > it...I've been researching it on Cisco but can't find any good info.. > I'm thinking maybe my flash is bad?I already tried loading a new image > (erased flash) and that didn't help. > > thanks for your help.. > Cory > > > Error : compressed image checksum is incorrect 0x30EAA646 > > Expected a checksum of 0x30EA3646 > > > > Exception: Software forced crash at 0x1211e (PC) > > > > System Bootstrap, Version 4.6(4), SOFTWARE > > Copyright (c) 1986-1993 by cisco Systems > > 4000 processor with 16384 Kbytes of memory > > > > Unknown or ambiguous service arg - udp-small-servers > > Unknown or ambiguous service arg - tcp-small-servers > > Bad interface specification > > No interface specified - IP address > > Bad interface specification > > No interface specified - IP address > > Bad interface specification > > No interface specified - IP address > > Bad interface specification > > No interface specified - IP address > > Bad interface specification > > No interface specified - IP address > > Bad interface specification > > No interface specified - IP address > > Illegal IP keyword - classless > > Booting c4000-j-mz.112-24.bin from flash memory > > RRR] > > F3: 8852+3701831+165008 at 0x12000 > > > > Error : compressed image checksum is incorrect 0x30EAA646 > > Expected a checksum of 0x30EA3646 > > > > Exception: Software forced crash at 0x1211e (PC) > > > > System Bootstrap, Version 4.6(4), SOFTWARE > > Copyright (c) 1986-1993 by cisco Systems > > > > Cory R. Stull > > MCSE, CCNP, CCDP, BNCS > > Communications Concepts Unlimited > > 262-814-7214 > > > > > > _ > FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] > _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
