RE: How to make real player from outside to contact real [7:53617]

[LeBrun, Tim]

I am assuming that you only have this one service behind the PIX or do you
have multiple servers behind the PIX?  I would like to see a config of
multiple servers behind a PIX - utilizing only 1 external IP address.

Tim

-Original Message-
From: mike greenberg [mailto:[EMAIL PROTECTED]]
Sent: Wednesday, September 18, 2002 9:52 PM
To: [EMAIL PROTECTED]
Subject: Re: How to make real player from outside to contact real
[7:53586]


Ok, the solution is very simple one.  I know this will work because I
running my
RealPlayer Helix Universal Streaming Server version 9.0.1 on my Linux box
behind
a Pix firewall.  The linux box has an RFC 1918 address (192.168.1.100)
sitting on
the DMZ network (192.168.1.254 is IP address of the DMZ interface on the
PIX).
The 192.168.1.100 is NATed to the public with 199.0.56.293 
On the pix firewall: 
static (inside,dmz) 199.0.56.293 192.168.1.100 
access-list 100 permit tcp any host 199.0.56.293 eq 8080 (if http is running
on here)
access-list 100 permit tcp any host 199.0.56.293 eq 7070 
access-list 100 permit udp any host 199.0.56.293 eq 554

access-list 100 permit tcp any host 199.0.56.293 eq 9090 (monitor only)

access-group 100 in interface outside

Now, since the actual streaming server is behind the Pix firewall, you will
have to

modify the streaming server configuration file to make it work.  Add the
following

line to the rmserver.cfg file:



Restart the streaming server.  Now from one of the workstation on the
outside Pix

firewall, fireup RealPlayer and put the following in the URL:

rtsp://199.0.56.293:554/sex.mpg

It will work You can make it work from clicking the link in the web
browser;

however, I don't have to go over it here.

Enjoy

Now, this is something a CCIE doesn't know how to fix.

Mike

 Magdy H. Ibrahim wrote:Hi All,

I have a client wants to create Real server behind Pix firewall and I am
trying to make the outside real player to contact the inside server but I
failed..
Is there any extra commands more than the following commands on the PIX to
allow the ourside clients to communicate with the inside server??
Please advise help me

the PIX configuration.
fixup protocol ftp 21
fixup protocol http 80
fixup protocol h323 1720
fixup protocol rsh 514
fixup protocol smtp 25
fixup protocol sqlnet 1521
fixup protocol sip 5060
no fixup protocol skinny 2000
fixup protocol rtsp 554
fixup protocol rtsp 8554
names
FAQ, list archives, and subscription info:
http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]


-
Do you Yahoo!?
New DSL Internet Access from SBC  Yahoo!




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7i=53617t=53617
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

RE: ipx in 6500 [7:26326]

[LeBrun, Tim]

Place IPX type-20-propagation on each interface in question.  Also make
sure that you are routing IPX - Show IPX Route.



-Original Message-
From: cage [mailto:[EMAIL PROTECTED]]
Sent: Wednesday, November 14, 2001 10:26 PM
To: [EMAIL PROTECTED]
Subject: ipx in 6500 [7:26326]


I want to play DF3 lan/ipx in my company over more than one vlan, i have
built the vlan for ipx, but the DF3 did not work, no server was discovied in
the 6500. i don't know if the DF3 lan/ipx server can provide the sap
service.
what can i do?




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7i=26366t=26326
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

RE: 'It's not the US they want to destroy. It's our arrogance' [7:19822]

[LeBrun, Tim]

One important thing that I would like to add is this - We may be taking our
lumps but we certainly were not knocked off!  WE ARE STILL KING OF THE
HILL!

Tim

-Original Message-
From: Bill Wright [mailto:[EMAIL PROTECTED]]
Sent: Wednesday, September 12, 2001 5:18 PM
To: [EMAIL PROTECTED]
Subject: Re: 'It's not the US they want to destroy. It's our arrogance'
[7:19675]


As I read your posting and write this response, I fear the sheer anger and 
absolute outrage I feel at your comments will unhinge me.

You speak of our American arrogance, yet give no thought or credit for the

untold times that we've fought and DIED for the Little Guy.  When smaller 
countries have had horrible disasters, AMERICANS were there first to help.

Your message oozes with sympathy for the attackers - not the victims.  These

terrorists murdered THOUSANDS of CIVILIANS who may not even know where 
Afghanistan or the Middle East are.  There is no punishment dyer enough for 
these monsters!  How would you feel, if in a few years, one of these 
monsters detonates a suitcase sized nuclear device at a sporting event with 
millions watching? Perhaps in your neighborhood?

No, this isn't the David and Goliath story.  It's the story of radicalism at

it's worst.  These individuals only want to expand their name at the expense

of any infamy.  They have no moral center.  THEY WANT NETWORK FACE TIME!

The boy in your analogy, who came from behind to knock The King of the 
Hill down, was also faceless and a coward just as these attackers.


From: [EMAIL PROTECTED] 
Reply-To: [EMAIL PROTECTED] 
To: [EMAIL PROTECTED]
Subject: 'It's not the US they want to destroy. It's our arrogance' 
[7:19655]
Date: Wed, 12 Sep 2001 15:33:10 -0400

Reeta Sinha
'It's not the US they want to destroy. It's our arrogance'

During winters when I was little, the boys on my block played a game called
King of the Hill. After storms, snowplows clearing the streets would leave
behind huge hills of dense, packed snow hills 15 to 20 feet high. The game
was simple. The one who reached the top of the hill and kept everyone else
off it was the King of the Hill. Boys would scramble up the hill, shoving
and pushing each other, sometimes sending a playmate tumbling to the 
ground.
It was a rough game and usually it was the bully who made it to the top. 
The
biggest, loudest, meanest kid on the block became the King of the Hill. The
others -- smaller and weaker -- tumbled down quickly or were thrown off by
the King, if they got close to the top of the hill.

Standing a safe distance away, I would watch the boys who were knocked off
the hill over and over again. They never looked defeated. With their chins
set, they would get up from the ground, brush the snow off their clothes
and, after grabbing handfuls of snow, climb up the hill again, determined 
to
topple the King. What they lacked in bulk and height, they made up for with
creativity (icy snow shoved inside a shirt pretty much paralyzes any 
bully).
Inevitably, the bully's arrogance was his downfall. Confident that he, the
King, was the biggest, the strongest, the best and so certain that the
others were puny and dumb, the bully usually didn't see the boy sneaking up
behind him. The one who, with one shove, sent the former King sliding
headfirst down the hill.

The smaller boys didn't really care who was the King of the Hill. That 
snowy
kingdom would be gone come spring. It was the bully's attitude, his
assumption that he deserved to be King that made the boys so determined.
Without treaties or negotiation, they would band together and attack the
King, just to see him take a fall.

Bullies, kings, dictators, meanies don't seem to get it, do they? The more
they push, the more they shove, the more they flex their muscles, the more
determined it makes those they ridicule and bully.

The world has seen this human drama played out time and time again
throughout history, sometimes by individuals, sometimes with entire peoples
with uprisings. In fact and fiction, those who are pushed frequently and 
far
enough, always push back.

It happened again on September 11, 2001. When terrorists crashed passenger
planes into the World Trade Center and the Pentagon building in the US,
someone, some group of people, was pushing back. The message seems pretty
clear: the wealthy, powerful king had to be knocked off the hill.

Perhaps this is not the time to criticize a country that has suffered such
great loss of life. But, as I have listened to news reports and watched the
horrific images for the past several hours, the most recent showing a 
second
plane aiming directly for the World Trade Center, crashing through a tower
as onlookers scream, I can't help but wonder. What would drive some people
to take such extreme measures? Why would anyone go to these lengths to hurt
the United States?

I can come up with only one answer. It's not us they hate. It's not the US
they want to destroy. It's our arrogance.

'America under attack.' 

RE: grc.com under a DOS attack [7:7377]

[LeBrun, Tim]

An article about GRC.com was also in the SANS newsletter.

Tim LeBrun
CCNA, CCDA


-Original Message-
From: Logan, Harold [mailto:[EMAIL PROTECTED]]
Sent: Wednesday, June 06, 2001 2:06 PM
To: [EMAIL PROTECTED]
Subject: grc.com under a DOS attack [7:7377]


Hrmm... I don't know how much bandwidth the good people at grc have from
their ISP, but considering the number of people that have been referred
to the site from this list, and considering that the site is unavailable
right now, I'd say it looks like Priscilla just engineered a DOS attack
on the poor people at grc.com. Poor guys. Maybe I'll get to read the
article after the entire networking community gets done reading it.

=)

Date: Tue, 5 Jun 2001 23:55:49 -0400
From: Jennifer Cribbs 
Subject: Re: Interesting DOS article [7:7272]

That was a very interesting article.   I knew things like that went on,
but
have never had a person experience of such.
I liked the detail that was gone into about the solution.  I am
forwarding
the link to friends.

Jennifer Cribbs

6/5/2001 9:52:31 PM, Natasha  wrote:

Somewhat a long read but very enlightening.
The article on Windows XP was just as scary.
Thank you so much Priscilla, I'm going to pass your find on to some
other network folks that could use it.


Priscilla Oppenheimer wrote:

 http://grc.com/dos/grcdos.htm  

 Priscilla

 

 Priscilla Oppenheimer
 http://www.priscilla.com  
--
Natasha Flazynski
CCNA, MCSE
 http://www.ciscobot.com  
My Cisco information site.
 http://www.botbuilders.com  
Artificial Intelligence and Linux development

Have a great day!!
Jennifer

[GroupStudy.com removed an attachment of type application/ms-tnef which had
a name of winmail.dat]




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7i=7393t=7377
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

RE: IP Address [7:5786]

[LeBrun, Tim]

172.16.0.1 is a private IP range and is not routable on the Internet.  So an
ISP would not give you this range.  See RFC's 1918 and RFC 1597.

Tim LeBrun
CCNA, CCDA
[EMAIL PROTECTED]


-Original Message-
From: CCIE TB [mailto:[EMAIL PROTECTED]]
Sent: Thursday, May 24, 2001 4:50 PM
To: [EMAIL PROTECTED]
Subject: IP Address [7:5786]


Hi Group members,

I came across a question in a Transcender exam in which they give a network 
address as 172.16.0.1/21. This address is given by an ISP to your network. 
Is that address a possible network address? It looks to me as a host 
address. What I'm missing here?

Regards to all

Adia
_
Get Your Private, Free E-mail from MSN Hotmail at http://www.hotmail.com.
FAQ, list archives, and subscription info:
http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7i=5789t=5786
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

RE: Subject: Re: CCIE #7354 - for Jeff McCoy [7:3998]

[LeBrun, Tim]

I know the answer to this one guys!  5 years ago I had the unfortunate job
of working in a mixed Cabletron and Cisco environment.  As I was looking
around in one of our routers in NY I saw that the device was running IOS.
So I replied to my mentor, I thought that you said this was a Cabletron
box?  It is he said.  You see Cabletron licensed the IOS software from
Cisco many years ago to run on some of their boxes.  I can see where some
folks might get this confused.  I still have two of these devices sitting in
my storage room.

Tim LeBrun
CCNA, CCDA
[EMAIL PROTECTED]


-Original Message-
From: Paul Werner [mailto:[EMAIL PROTECTED]]
Sent: Friday, May 11, 2001 1:55 PM
To: [EMAIL PROTECTED]
Subject: Re: Subject: Re: CCIE #7354 - for Jeff McCoy [7:3998]


That's odd.  I was not aware of these salient facts you have 
delineated below.  I guess I must have been working with a 
misunderstanding here.  My understanding is that the origins of 
the Cisco Internetworking Operating System (IOS) is most 
closely aligned from the TOPS-20 programming language.  This 
was relayed to me by one of the three team members who wrote 
the original command line help (on or about IOS version 9.11 or 
thereabouts).  He also happened to be the first CCIE outside of 
Cisco and the second CCIE in the world.  I guess he could have 
been mistaken.  Maybe this guy might be able to shed some light:

http://www.clock.org/~fair/education.html

As far as the origins of Cisco as a company are concerned, 
their history is fairly well documented.  The original founders 
were Sandy Lerner and Len Bozack.  They were at Stanford at the 
time and they needed a device that would pass network packets 
across the campus.  This ultimately ended up taking the form of 
a multi-protocol router.  You can read about it here:

http://www.pbs.org/opb/nerds2.0.1/serving_suits/cisco.html

As it turns out, Sandy is still controversial and frequently 
makes the local papers (washington Post et al) on things she is 
doing.  She still lives on the horse farm out in Loudoun 
County, Virginia.

Have a nice day.

v/r,

Paul Werner


 Ha ha you guys are too funny, but failed to contribute 
anything of
 substance. Way to go newbies and wannabies. LOL!
 
 BTW, youngen Eric, I was troubleshooting Cabletrons b4 there 
was Cisco.
 And
 the relationship? Guess where Cisco and IOS came from? 
CABLETRON. You
 learn
 something new everyday don't ya newbie.


Get your own 800 number
Voicemail, fax, email, and a lot more
http://www.ureach.com/reg/tag
FAQ, list archives, and subscription info:
http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7i=4221t=3998
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

RE: 1603 router [7:3165]

[LeBrun, Tim]

Oh contraire - I have several WIC-2Ts working in 3640s.

Tim LeBrun
CCNA, CCDA
Phone: 864-587-3831
Fax:  413-825-0402
Cell: 864-621-8044
[EMAIL PROTECTED]


-Original Message-
From: andyh [mailto:[EMAIL PROTECTED]]
Sent: Friday, May 04, 2001 3:15 PM
To: [EMAIL PROTECTED]
Subject: Re: 1603 router [7:3165]


WIC-2Ts are for 2600s only - don't work in 1700s or 3600s either

Andy

- Original Message -
From: Sujal G. Ajmera 
To: 
Sent: Friday, May 04, 2001 1:01 PM
Subject: 1603 router [7:3165]


 Hi,

 In the Cisco documentation manual, it doesn't mention that WIC-2T can be
 used but it does say that WIC-1T can be used.

 Any thoughts on this?

 TIA

 Sujal
 FAQ, list archives, and subscription info:
http://www.groupstudy.com/list/cisco.html
 Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
FAQ, list archives, and subscription info:
http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7i=3238t=3165
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

RE: Spanning Tree Protocol [7:2564]

[LeBrun, Tim]

I have been silently listening to this thread with interest.  But after he
noted his IOS version I just had to pipe in.  I have the exact same version
12.0(5.2)XU running on a 2924XL.  My Macs are also having issues.  However,
my issue is slightly different since I have portfast enabled on some ports
and I have a hub on another.  The macs all have the same problem of getting
poor response times (very, very, very slow) from SSL sites.  However if I
move it from the Cisco switch and plug it into a Fore Systems Ethernet
switch (PS I do not advocate Fore/Marconi switches) they zoom.  On the flip
side of this I have a few PCs plugged into a separate VLAN on this switch
and they Zoom. 

Tim LeBrun
CCNA, CCDA
[EMAIL PROTECTED]


-Original Message-
From: Jason Roysdon [mailto:[EMAIL PROTECTED]]
Sent: Wednesday, May 02, 2001 3:16 PM
To: [EMAIL PROTECTED]
Subject: Re: Spanning Tree Protocol [7:2564]


I wonder what switch and software version you were running at the time?  I'm
trying this on a Catalyst 3524 XL Inline Power running 12.0(5.2)XU (I
haven't upgraded it, so that's whatever it shipped with).

I did a number of tests (but not enough samples to make it 100% accurate on
the timing, but a general idea +/- 2 seconds).  The digits 00:16:47, are
time since boot, while the dated timestamps are accurate GMT.  For each of
my tests, I would attempt to physically plug in the patch cable at :00
seconds based on the clock on my laptop, and both the laptop and switch are
accurate from ntp (the log is not timestamped at :00 seconds, but just for
your reference).

The first with the port in the out of the box state with it left at
defaults:
00:16:54: ST: FastEthernet0/6 vlan 1 - listening
May  2 11:33:02.985 PDT: %LINK-3-UPDOWN: Interface FastEthernet0/6, changed
state to up
May  2 11:33:03.986 PDT: %LINEPROTO-5-UPDOWN: Line protocol on Interface
FastEthernet0/6,
changed state to up
00:17:09: ST: FastEthernet0/6 vlan 1 - learning
00:17:24: ST: sent Topology Change Notice on Port Group 1  vlan 1
00:17:24: ST: FastEthernet0/6 vlan 1 - forwarding
! 32 seconds

At 32 seconds I had ping replies at my desktop (using a static address, as
DHCP wouldn't be accurate to see how fast it comes up).

Next, I wanted to see if the inline power slowed bringing the power up.  It
doesn't appear to (of course, thinking about it, the only time it applies
power is if it sees a certain loop/load between a pair of wires, the details
I don't recall):

Cat3524(config-if)#power inline never
00:18:54: ST: FastEthernet0/6 vlan 1 - listening
May  2 11:35:02.497 PDT: %LINK-3-UPDOWN: Interface FastEthernet0/6, changed
state to up
May  2 11:35:03.498 PDT: %LINEPROTO-5-UPDOWN: Line protocol on Interface
FastEthernet0/6,
changed state to up
00:19:09: ST: FastEthernet0/6 vlan 1 - learning
00:19:24: ST: sent Topology Change Notice on Port Group 1  vlan 1
00:19:24: ST: FastEthernet0/6 vlan 1 - forwarding
!32 seconds

Again, 32 seconds with spanning tree left to the defaults.  30 seconds as
far as the switch was concerned.

Now lets enable portfast:

Cat3524(config-if)#span portfast
00:20:54: ST: FastEthernet0/6 vlan 1 -jump to forwarding from blocking
May  2 11:37:02.483 PDT: %LINK-3-UPDOWN: Interface FastEthernet0/6, changed
state to up
May  2 11:37:03.485 PDT: %LINEPROTO-5-UPDOWN: Line protocol on Interface
FastEthernet0/6,
changed state to up
! 3 seconds

In 3 seconds my PC was pinging with portfast set.

My final test, I wanted to see if locking to speed and duplex would increase
the time at all:

interface FastEthernet0/6
 duplex full
 speed 100
 power inline never
 spanning-tree portfast

Cat3524#
00:22:54: ST: FastEthernet0/6 vlan 1 -jump to forwarding from blocking
May  2 11:39:03.165 PDT: %LINK-3-UPDOWN: Interface FastEthernet0/6, changed
state to up
May  2 11:39:04.166 PDT: %LINEPROTO-5-UPDOWN: Line protocol on Interface
FastEthernet0/6,
changed state to up
May  2 11:39:06.622 PDT: %RTD-1-LINK_FLAP: FastEthernet0/6 link down/up 5
times per minsh
int

Oops, the switch doesn't like all the flapping of my tests and left it in an
down/up state (good thing to know though!).

Ok, give it a moment without the cable connected and try again:

Cat3524#
00:26:54: ST: FastEthernet0/6 vlan 1 -jump to forwarding from blocking
May  2 11:43:03.200 PDT: %LINK-3-UPDOWN: Interface FastEthernet0/6, changed
state to up
May  2 11:43:04.201 PDT: %LINEPROTO-5-UPDOWN: Line protocol on Interface
FastEthernet0/6,
changed state to up
!4 seconds

I think this time I was a little slow getting the cable in, but basically
the same results, 3-4 seconds and the port is up and pinging from my
connected laptop.  That shouldn't be a problem for any network devices, I
wouldn't think.  The only way I could see it affecting is if during boot the
NIC is not activated until the drivers load, and then within 1-2 seconds the
protocol stack gets access to the NIC before the switch takes the port
up/up, but I don't think this would be any different with or without
spanning-tree 

RE: has anybody tried non-Cisco approved flash/memory [7:2498]

[LeBrun, Tim]

same here...

Tim LeBrun
CCNA, CCDA
[EMAIL PROTECTED]


-Original Message-
From: Edmund Woltynski [mailto:[EMAIL PROTECTED]]
Sent: Monday, April 30, 2001 3:31 AM
To: [EMAIL PROTECTED]
Subject: Re: has anybody tried non-Cisco approved flash/memory [7:2498]


Recently did the same - was apprehensive about using non-recommended
Cisco parts, in lab equipment - used Kingston and has not missed a beat
so far.

Adam Burgess wrote:
 
 I have 8 2500's, two 2600's and a 4500M, all with Kingston Flash and DRAM
 and I have never had a problem with any of them.
 
 Regards
 
 Adam
 -Original Message-
 From: xc [mailto:[EMAIL PROTECTED]]
 Sent: Monday, 30 April 2001 11:34 AM
 To: [EMAIL PROTECTED]
 Subject: has anybody tried non-Cisco approved flash/memory [7:2498]
 
 I need to upgrade some of my lab routers to handle 12.0 and 12.1.  These
 IOS's are resource hogs, so apparently I need to pump up the DRAM and
flash.
 So, has anybody tried out some of those non-Cisco approved DRAM and flash
 units?  Don't worry, none of my routers are going to be used in a
production
 environment.  But I won't do it if these units completely blow some
circuit
 on the router.
 
 XC
 FAQ, list archives, and subscription info:
 http://www.groupstudy.com/list/cisco.html
 Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
 FAQ, list archives, and subscription info:
http://www.groupstudy.com/list/cisco.html
 Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

-- 

--
Regards
  Edmund Woltynski
   
___
The information transmitted by the following e-mail is intended only for
the addressee and may contain confidential and/or privileged material.
Any interception, review, retransmission, dissemination, or other use
of, or taking of any action upon this information by persons or entities
other than the intended recipient is prohibited by law and may subject
them to criminal or civil liability. If you received this communication
in error, please contact us immediately at (618) 83711492, and delete
the communication from any computer or network system.
-
FAQ, list archives, and subscription info:
http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7i=2583t=2498
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

RE: Spanning Tree Protocol [7:2564]

[LeBrun, Tim]

Config t
interface FastEthernet0/1
 spanning-tree portfast

Tim LeBrun
CCNA, CCDA
[EMAIL PROTECTED]


-Original Message-
From: Bob Edmonds [mailto:[EMAIL PROTECTED]]
Sent: Monday, April 30, 2001 3:55 PM
To: [EMAIL PROTECTED]
Subject: Re: Spanning Tree Protocol [7:2564]


How exactly do you configure portfast on a 2924XL-EN?  Just wanna try it
out!

Thanks

Bob Edmonds
CCNA, Network+


John Gotti  wrote in message
[EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
 Hey all...we are having a problem where workstations sporatically will not
 be able to obtain an IP address from our DHCP server. After about 4
minutes,
 you can perform a manual renew from WINIPCFG and you get your IP address.
 This has baffled me for quite some time and I have recently been told it
is
 our Cisco 2924 Switch to blame. The story I was told is below. I welcome
any
 comments for or against this opinion. Thank you for your time.


 It appears the problem is connected to the spanning tree algorithm used
 by the CISCO switches. By default, ports on the switch block as they are
 initialised; during this phase the port is in its spanning tree algorithm
 learning and listening state - it is not forwarding. This is
specifically
 aimed at ports that will be used to connect to other switches/routers in a
 stack. After a default time (4 mins?) they switch to the standard
forwarding
 mode and everything seems normal, the problem is that you have missed all
 the important DHCP broadcast and acknowledgment from client to DHCP server
 during this period.

 You can change this default state by changing the PORT-FAST setting on
 each port. The port is then immediately in the FORWARDING mode as it is
 initialised. By default this setting is DISABLED, I have ENABLED all
 ports except the ports doing the linking to other switches
 _
 Get your FREE download of MSN Explorer at http://explorer.msn.com
 FAQ, list archives, and subscription info:
http://www.groupstudy.com/list/cisco.html
 Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
FAQ, list archives, and subscription info:
http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7i=2611t=2564
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

RE: authentication [7:1697]

[LeBrun, Tim]

Absolutely, I do this today with Lock and Key (watch the wrap)

http://www.cisco.com/univercd/cc/td/doc/product/software/ios113ed/113ed_cr/s
ecur_c/scprt3/sclock.htm

Tim LeBrun
CCNA, CCDA



-Original Message-
From: SH Wesson [mailto:[EMAIL PROTECTED]]
Sent: Tuesday, April 24, 2001 8:58 AM
To: [EMAIL PROTECTED]
Subject: authentication [7:1697]


Can Cisco ACS be used for Internet access authentication?  If it can, is it 
recommended since I'm using Cisco ACS for my router authentication and VPN 
authentication.

Also, what software do you recommend for logging web access on a Cisco PIX. 
I've used WebTrend in the pass but wanted to get someone else's opinion.

Thanks.
_
Get your FREE download of MSN Explorer at http://explorer.msn.com
FAQ, list archives, and subscription info:
http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7i=1711t=1697
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Router/Switch naming standards

[LeBrun, Tim]

Group,
I am curious to know the opinions on what are some of the better
naming standards used to name routers/switches?  I have heard of several
(using local airport codes being the most common, i.e. PDX001(Portland) or
ATL001(Atlanta)).  And then of course incrementing the number each time you
add a router/switch.  Any suggestions?

[EMAIL PROTECTED]
_
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

RE: Cisco Qualified Specialist--the end for CCNP/CCDP?

[LeBrun, Tim]

Note that it says CCNP Specializations (not the CCNP or CCDP) can not be
recertified.  The following URL shows the current specializations:

http://www.cisco.com/warp/public/10/wwtraining/certprog/special1/course.html

Tim LeBrun


-Original Message-
From: Vincent [mailto:[EMAIL PROTECTED]]
Sent: Saturday, March 17, 2001 12:47 PM
To: [EMAIL PROTECTED]
Subject: Re: Cisco Qualified Specialist--the end for CCNP/CCDP?


I am not agree with this.

I believe that NP/DP become more common not important.


"Chris Supino" [EMAIL PROTECTED] ¼¶¼g©ó¶l¥ó
[EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
 They are referring to the NP/DP specializations, not the certs themselves.
 The NP and DP are actually becoming more important, with the restructuring
 of the Cisco reseller agreements somewhat de-emphasizing the role of the
 CCIE.

 -Original Message-
 From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of
 Brad Perlin
 Sent: Saturday, March 17, 2001 4:03 AM
 To: [EMAIL PROTECTED]
 Subject: Cisco Qualified Specialist--the end for CCNP/CCDP?


 It's clear you won't be able to renew your CCNP or CCDP if you already
have
 it, but has anyone heard of a deadline for completing these if you are
 somewhere in the middle of the process?

 Or, am I misunderstanding this new certification intiative?  My read is
that
 CCNP/CCDP designations are going away.  Knowledgeable comments would be
 appreciated.

 http://www.cisco.com/warp/public/10/wwtraining/certprog/pdf/CQS.pdf

 http://www.cisco.com/warp/public/10/wwtraining/certprog/cqs/cqs_faq.pdf

 Excerts from the above links:

 "Each Cisco Qualified Specialist designation is customized to meet current
 market needs. Individuals may earn designations in as many technical areas
 as they choose. Over time, and in response to new technology developments,
 Cisco will create additional designations.

 Note: Candidates for the Cisco Qualified Specialist designation must hold
a
 valid associate-level certification. Current CCNP?or CCDP?specializations
 are valid until their expiration date. Individuals with expired CCNP or
CCDP
 specializations may choose to test for a Cisco Qualified Specialist
 designation, if one is available, in their preferred field."

 "6. What happens to the Cisco CCNP or CCDP specializations I already
earned?
 Previously earned specializations will remain active for a period of two
 years from the date achieved.  There will be no recertification option. At
 that point, you may choose to test for a Cisco Qualified
 Specialist, if one is offered, in your preferred field."

 Brad





 ___
 Send a cool gift with your E-Card
 http://www.bluemountain.com/giftcenter/


 _
 FAQ, list archives, and subscription info:
 http://www.groupstudy.com/list/cisco.html
 Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

 _
 FAQ, list archives, and subscription info:
http://www.groupstudy.com/list/cisco.html
 Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]



_
FAQ, list archives, and subscription info:
http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

_
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

RE: Vendor for Flash/RAM for cisco routers

[LeBrun, Tim]

Just a note:  if you put third party memory in your Cisco routers, you WILL
VOID your maintenance agreements.

Tim LeBrun



-Original Message-
From: Frank Kim [mailto:[EMAIL PROTECTED]]
Sent: Friday, March 16, 2001 3:15 AM
To: [EMAIL PROTECTED]
Subject: Vendor for Flash/RAM for cisco routers


Please contact me offline if you can sell high volume FLASH/RAM for cisco
routers.  Thanks.

-Frank

_
FAQ, list archives, and subscription info:
http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

_
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

RE: Serial Hub ????

[LeBrun, Tim]

I believe that you may be referring to a WANswitch.  Datacom Systems makes
one.  I use it in cooperation with our WAN sniffer to monitor our numerous
Frame lines.  I can choose which frame line I want to monitor from the
WANswitch and I never have to worry about unplugging/replugging the serial
cables for the frame lines.

Tim LeBrun


-Original Message-
From: Circusnuts [mailto:[EMAIL PROTECTED]]
Sent: Wednesday, March 14, 2001 1:45 AM
To: [EMAIL PROTECTED]
Subject: Serial Hub 


Has anyone heard of a Serial hub or RS232 hub ???  I have purchased a =
network probe  it is missing the Tap to gain the sampling from.

Any ideas ???

Thanks
Phil

_
FAQ, list archives, and subscription info:
http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

_
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

RE: Switching

[LeBrun, Tim]

I am studying for the BCMSN and I think that is a good book to recommend but
you will need more.  The objectives on Cisco's website include ATM - there
is no ATM in Cisco's book anywhere.

Tim LeBrun
CCNA, CCDA
[EMAIL PROTECTED]


-Original Message-
From: Manny Colon [mailto:[EMAIL PROTECTED]]
Sent: Tuesday, March 13, 2001 11:13 PM
To: [EMAIL PROTECTED]
Subject: Re: Switching


I used the Cisco Press Building Cisco Multilayer Switched Networks and
passed.

Manny

[EMAIL PROTECTED] wrote:

 Anyone have any suggestions on books to read for switching exam?

 --
 Get the Latest News at CNN Interactive: http://CNN.com

 _
 FAQ, list archives, and subscription info:
http://www.groupstudy.com/list/cisco.html
 Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

_
FAQ, list archives, and subscription info:
http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

_
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]