Re: IP phone [7:44803]
The Cisco IP Phones are slave devices, incapable of independent thought (so to speak). While you can provide configuration parameters through the telephone interface, you are limited to setting IP address, TFTP address and default CallManager information. Without a CallManager to communicate with, the phones are not capable of any logical decisions (they receive all information through TFTP files and RTP streams with the CallManager for communication decisions). Mike - Original Message - From: Osama Kamal To: Sent: Thursday, May 23, 2002 6:55 AM Subject: IP phone [7:44803] Is it possible to configure Cisco IP phone from the phone set itself, and use it without Call Manager software? I need to use IP phone from home to place calls over internet without additional software or PC's, any idea? Regards Osama Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=44810t=44803 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Might be of InCisco GBIC Sourcing Support Policy [7:41595]
Looks like standard warranty wording to me. The Telco equipment manufacturers that I work with, in addition to the Cisco work that I do, say pretty much the same thing will happen to warranties if you use after-market, 3-party remanufactured devices. - Original Message - From: Ismail Al-Shelh To: Sent: Tuesday, April 16, 2002 08:56 Subject: RE: Might be of InCisco GBIC Sourcing Support Policy [7:41591] Me not. -Original Message- From: Jason [mailto:[EMAIL PROTECTED]] Sent: Tuesday, April 16, 2002 12:07 PM To: [EMAIL PROTECTED] Subject: Re: Might be of InCisco GBIC Sourcing Support Policy [7:41576] What's wrong with the message below... sounds fair to me.. Ismail Al-Shelh wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... Its so Obvious that Cisco is trying to be like Microsoft by monopolizing the market. Ismail Al-shelh -Original Message- From: Matthew Crane [mailto:[EMAIL PROTECTED]] Sent: Monday, April 15, 2002 1:55 PM To: [EMAIL PROTECTED] Subject: Might be of InCisco GBIC Sourcing Support Policy [7:41476] April 10, 2002 Cisco GBIC Sourcing Support Policy We are continuing to receive questions concerning the consequences of Cisco end users acquiring GBICs (Gigabit Interface Converter) modules from non-Cisco sourced third parties or directly from GBIC suppliers for deployment in Cisco routers and switches. Apparently there is still some confusion on what Cisco's position and policy is in respect of these third party GBIC's, which is why I would like to summarize those for you and highlight the main points. I would also like to take this opportunity to outline what Cisco would expect from you as a Channel Partner when it comes to you supplying non-Cisco GBIC's together with Cisco equipment to end users. Cisco's policy: Products from non-Cisco sources do not qualify for Cisco support and may not be compatible with hardware, power, or software requirements. Cisco sourced GBIC's can be easily identified by the Cisco logo and trademarks on the label. If a GBIC does not have the Cisco label and trademarks on it, then it has not been sourced from Cisco and is subject to the conditions outlined below. GBIC's acquired through non-Cisco sources will be subject to the following conditions: 1) Cisco TAC is not under an obligation to support any non-Cisco GBIC modules; 2) Cisco SMARTnet will not cover non-Cisco GBIC modules; 3) Cisco does not guarantee the performance or results you may obtain by using a non-Cisco GBIC; 4) In the event that an end user experiences a support issue that Cisco determines is caused by use of a third party GBIC, Cisco will not provide warranty support or support under SMARTNet or another Cisco support program for that issue. On the other hand, where a product fault or defect occurs in the network and Cisco concludes that the fault or defect is not attributable to the use of a GBIC installed by our customers or partners, Cisco will continue to provide support for the affected product under warranty or a Cisco support program. The nature of the defect or error is the key to determining what Cisco's support obligations are. Cisco sources GBIC's from third party suppliers, who agree to follow Cisco quality standards. Sometimes, Cisco disqualifies a supplier because of quality issues with that supplier's product, or for other reasons (i.e. EMI or power requirements). Disqualified suppliers may continue to sell their GBIC's and please note that they or parties that have purchased from them may claim that their GBIC's are Cisco approved. Such statements are at best unreliable and our customers should understand that only by sourcing GBIC's directly from Cisco or a Cisco Authorized Channel, can our customers be confident they are getting Cisco approved modules that will qualify for Cisco support (Cisco sourced GBICs can be identified by the Cisco logo and trademarks on the label). We are taking appropriate legal action against suppliers using such false and misleading statements. What does Cisco expect from its Authorized Channels? Obviously we believe strongly that our GBIC's are superior in terms of quality and performance to any non-Cisco GBIC. Nevertheless, you may in certain instances prefer to resell third party GBIC's. As stated above, this may occasionally give rise to support and warranty issues, and may cause confusion with the end users. In order to prevent such issues and to protect Cisco's brand and reputation we would like to ask you to observe the following guidelines when reselling non-Cisco GBIC's together with or already installed in any Cisco products you are reselling: Inform the end user of the fact that he is receiving a non-Cisco GBIC; Inform the end user that such a non-Cisco GBIC will not qualify for Cisco support;
Re: Can I reset lost passwords on Cat 2900xl's ? [7:38668]
Simple search on the public side of the Cisco site, using the terms password recovery catalyst 2900 returned this link: http://www.cisco.com/warp/public/474/pswdrec_2900xl.html - Original Message - From: Brown, M To: Sent: Monday, March 18, 2002 11:27 AM Subject: Can I reset lost passwords on Cat 2900xl's ? [7:38668] If I forget my password on switches, how can I recover them ? (Is there any registry change workaround the same way there is on routers ?) _ Do You Yahoo!? Get your free @yahoo.com address at http://mail.yahoo.com Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=38682t=38668 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: another CCNP [7:38269]
Congratulations!! - Original Message - From: King, Ty To: Sent: Thursday, March 14, 2002 1:57 PM Subject: another CCNP [7:38269] Just passed my last test today. Ty King _ Do You Yahoo!? Get your free @yahoo.com address at http://mail.yahoo.com Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=38276t=38269 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: CCIE#8903 [7:37490]
Actually, if I remember the agreements correctly - you can list the lower level certs (CCxA, CCxP) with the CCIE. It is when you are a CCxP that you should not list the corresponding CCxA. Mike - Original Message - From: Steven A. Ridder To: Sent: Thursday, March 07, 2002 8:10 AM Subject: Re: CCIE#8903 [7:37490] Rich, I don't think you're a CCNP any more. I think the CCIE supercedes that. Am I correct? -- RFC 1149 Compliant. Richard Newman wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... Great job. Richard Newman, CCIE#8878, CCNP, CCDP George Zhang wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... All, The title says it all. I took my first attempt at the CCIE lab test yesterday (March 5) in Halifax and received the Congratulations on Passing the CCIE Lab! this morning. I was the only person taking the lab test in Halifax yesterday. I was told that there was another person scheduled yesterday but did not show up. My test started about 8:15 AM in the morning. We broke for lunch at about 12:20PM. By then, I only finished all the IGP stuff and felt some pressure on time. But I have already reviewed rest of the test and knew that I could go through the rest quickly. After the 15 min lunch break, I worked through rest of the test very quickly. By about 3:00 PM, I finished every thing except one small requirement that I had no clue how to do it. I decided to skip that item. Then, I started reviewing and checking my config. Along the way of reviewing/checking, I spotted and fixed a few issues. Just about the time I finished reviewing every thing, the proctor walked in and told me that it' time. I looked at the watch. It was 4:30 PM. My proctor was Steve. Steve is a great proctor. He answered quite a few of my questions and cleared my mis-understanding and confusion about the requirements of the test. I would like to take this opportunity to thank all people who helped me to achieve my goal. First, I would like to thank my wife for her support and understanding. Without her support, there is no way I could achieve my goal. Next, I will give my thanks to Bruce, Val, and Fred of NetMasterClass. As I said earlier, the NMC1 class is the most important part of my final preparation. Thanks to Katie Wong of Cisco who scheduled me to access the ASET racks. Thats my primary resource for hands-on practices for the past couple of months. Thanks to Eric Fairfield for lending me a few routers when I was in Wisconsin. Also thanks to those that I've either studied with or have helped me one way or another. Thanks also to Paul for putting this great list together. As far as my story, I started my quest of the Cisco certifications a little over two and half years ago. I got my CCNA and CCNP in the first year. Three months later, I passed the CCIE written test. I wanted to take the lab a year ago. However, due to work and personal reasons, I did not get time to do it until now. Last year, I was too busy to do much study. At work, as a consultant, I was billing at least 40 hours/week for the whole year. At home, my second child was born in February, my wife finished school in July, and we moved to New Jersey from Wisconsin in September. In October of last year, I foresaw a window of opportunity for me to take the lab test early this year. Then, I lobbed my manager to let me go to the ECP1 class. By the time my manager approved my training request, I found that Mentor Technologies went belly up. However, I learned that Bruce and Val founded a new company called NetMasterClass, LLC (www.netmasterclass.net) and offering the NMC1 and NMC2 classes. I registered and took the NMC1 class by the end January. By the end of last year, the project I worked on finished. So since the beginning of this year I got a lot of time to study. For the past couple of months, I have studied 8-10 hours every day. As far as how I prepared, I have read most of the books (Doyle I II, Caslow, Halabi, Tam-Nam-Kee, Solie, Satterlee, etc.) recommended by people on this list. Among this long list of books, the only one I dont like is Solies book because there are too many errors in the book. There are a few topics I was more confused after reading the book. I dont have a home lab. So my primary resource for hands-on practice is remote labs such as Mentor Technologies vlabs (not available any more), Cisco ASET lab. Because I dont have a home lab, my preparation included more reading than hands-on practice. That actually worked out very well for me. Above all, the most important part of my preparation is the NMC1 class taught by Bruce, Val and Fred. IF I HAD NOT TAKEN THE NMC1 CLASS, IT PROBABLY WOULD
Re: 1750 Router [7:37396]
Have you console-connected to it and monitored it for a while to see if anything unusual is happening? - Original Message - From: Ismail Al-Shelh To: Sent: Wednesday, March 06, 2002 9:44 AM Subject: 1750 Router [7:37396] Hello all I have 1750 router , I just take it out from the box , when I turn it on it works fine for a 15 mutinies after that it stop responding to me when I turn it off and turn it on again all the LEDS remain on which is Front panel PWRSLOT0 SLOT1 SLOT2 PORT0 PORT0 PORT0 ON ON ONON OK PORT1 PORT1 PORT1 ON ONON ON Rear status ONON ONON ON ON ON SLOT 1 OK SLOT 0 OK FDX 100 LINK PVDM OK SLOT 2 OK Its staying like that as much as the router button is on , I do not know what's going on with me nowadays I feel I have no luck with any thing. Note : I did not yet connect the router to any thing I was in the beginning to fix the modules , please help Ismail Al-shelh [GroupStudy.com removed an attachment of type application/ms-tnef] _ Do You Yahoo!? Get your free @yahoo.com address at http://mail.yahoo.com Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=37427t=37396 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: CID exam has changed [7:37074]
I also took it last week, after 2/25/02, and noticed no changes from the objective list prior to the date that you have stated. While there are some changes on the objectives listed on the website, now, ATM ATM LANE are still mentioned as objective categorys. _ Do You Yahoo!? Get your free @yahoo.com address at http://mail.yahoo.com Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=37140t=37074 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Whats it all about [7:36489]
definitive link of answers straight from the horse's mouth. - Original Message - From: Casey, Paul (6822) To: Sent: Tuesday, February 26, 2002 9:11 AM Subject: Whats it all about [7:36489] Can someone tell me the what you get when you become a CCIE Do you get a support contract from CCIE, do you get free training courses,...etc... I have heard different things regarding what you get. Cheers... _ Do You Yahoo!? Get your free @yahoo.com address at http://mail.yahoo.com Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=36494t=36489 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: CCIE Question [7:36243]
It seems to be common these days to use that abbreviation to mean that the individual has taken, and passed, the Written exam, but not yet challenged/passed the Lab. As for me, personally, when I get to that point, I do not plan on advertising it in this manner. If it comes up in an interview question, I would answer it. But, I refuse to put any certification on my resume until I can honestly claim the entire title. - Original Message - From: Brian Zeitz To: Sent: Friday, February 22, 2002 1:54 PM Subject: CCIE Question [7:36243] I saw a resume with CCIE (Q) after their name, what is the Q mean? _ Do You Yahoo!? Get your free @yahoo.com address at http://mail.yahoo.com Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=36253t=36243 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: CCIE Question [7:36243]
Never said that I agreed with the practice. I am perfectly well aware of Cisco's stance on the subject. My message, also, did not state that I thought that it is not a big deal. Personally, if I were in a position responsible for hiring, all candidates who posted that information in their resume would automatically find themselves removed from consideration. I am proud of my own accomplishments and all of the initials that I can place behind my name are placed with the full knowledge that I have the score sheets and experience to back them up. Sincerely, Michael J. Doherty MCSE-NT4, MCSE-W2K, CCNA Certified, CCDA Certified, NREMT-P and many others that do not have initials. - Original Message - From: nrf To: Sent: Friday, February 22, 2002 2:46 PM Subject: Re: CCIE Question [7:36243] Cisco has made it clear that passing the written -CCIE exam does not get you a certificate in itself. Only by passing both the written and the lab do you obtain a cert. I don't know how it came to be acceptable that people can claim a certificate that doesn't exist. While you might say that it's not really a big deal - after all, the written is an exam, so it 'sort-of' is like a cert, so what's the harm in pretending that it's another cert? Well, the real problem is that if people are allowed to make up a CCIE-Q cert that doesn't exist, then what's to stop them from making up other qualifications that don't exist? It's the classic slippery slope. For example, if the CCIE-Q becomes an accepted pseudo-cert, then later somebody will inevitably say they have a CCIE-A, because they (A)ttempted the written (but didn't pass). Or a CCIE-F for somebody who's never even seen a router in his life, but has heard about the CCIE program and is thinking about doing it in the (F)uture. Or heck, how about a Bachelor's Degree-(F) for somebody who's never stepped into a classroom in his life, but might do it in the future. I don't know about you, but I hold a Ph.D-(F), an MBA-(F), a Law-degree-(F), and a Medical-degree-(F), all from Harvard. Michael J. Doherty wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... It seems to be common these days to use that abbreviation to mean that the individual has taken, and passed, the Written exam, but not yet challenged/passed the Lab. As for me, personally, when I get to that point, I do not plan on advertising it in this manner. If it comes up in an interview question, I would answer it. But, I refuse to put any certification on my resume until I can honestly claim the entire title. - Original Message - From: Brian Zeitz To: Sent: Friday, February 22, 2002 1:54 PM Subject: CCIE Question [7:36243] I saw a resume with CCIE (Q) after their name, what is the Q mean? _ Do You Yahoo!? Get your free @yahoo.com address at http://mail.yahoo.com _ Do You Yahoo!? Get your free @yahoo.com address at http://mail.yahoo.com Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=36262t=36243 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Cramsession CCIE Written [7:34806]
CramSession.com is currently undergoing a server move. The entire site is hosted on temporary servers during this process, which should be completed sometime soon. There are intermittent issues with some of the site connectivity, but I had not heard of this particular problem. I have sent it to the attention of the appropriate individuals. Sincerely, Mike - Original Message - From: Dennis Laganiere To: Sent: Thursday, February 07, 2002 8:28 PM Subject: RE: Cramsession CCIE Written [7:34806] I wasn't able to resolve cramsession, but if you go to brainbuzz.com and follow the links, it seems to work. By the way, I wrote that cramsession, so if you can't get it any other way, let me know and I'll send you a copy from home later tonight... --- Dennis -Original Message- From: Christi McClellan To: [EMAIL PROTECTED] Sent: 2/7/2002 4:50 PM Subject: Cramsession CCIE Written [7:34806] anybody having a problem getting the study notes off of cramsession.com for the CCIE written? _ Do You Yahoo!? Get your free @yahoo.com address at http://mail.yahoo.com Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=34844t=34806 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Pbx Fundamentals--2 [7:33686]
Gee, these look exactly like questions that I had on my Telephony Fundamentals test; thus, answering the questions here would be a violation of Cisco's NDA. Sorry. But, if you do some searching on Cisco's pages, and the Internet in general, you can find the answers, and the rational behind them. - Original Message - From: salimss To: Sent: Wednesday, January 30, 2002 9:00 AM Subject: Pbx Fundamentals--2 [7:33686] Could U Please reply to the following questions: 1) ___ signaling is the most common signaling scheme used in the public switched network. a. Loop start b. Ground start c. E M d. QSIG 2)Which of the following is not a benefit of a digital Feature Telephone used with a PBX? a. Speakerphone support for hands-free operation b. One button feature activation simplifies user training and promotes feature usage c. Support for Multiple PBX vendors d. Multiple line appearances only require one line card circuit termination e. Display capability improves information to the set user 3)To the PBX system, a Voice Mail system typically appears as: a. A control link and a CTI link b. A control link and multiple lines c. A control link and an RS-232 link d. A trunk 4)What is the function of the transmission component of the PSTN? a. Provide a path between end points within the network b. Make decisions on where to route traffic between end points within the network c. Identify the destination and set up and tear down the path between end points d. A and B 5)Q.Sig as opposed to DPNSS does not require a D-channel. a. True b. False 6)Which of the following is not a key component of a PBX? a. The control complex b. The user interface c. The terminal interface d. The switching network 7)___ is/are an example(s) of Call Center data that can be collected from a PBX. a. Trunk a call entered on b. Length of time a call waited c. How long a caller talked to each agent d. All of the above _ Do You Yahoo!? Get your free @yahoo.com address at http://mail.yahoo.com Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=33694t=33686 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Pbx Fundamentals [7:33680]
You planning on copying in the entire test for people to answer for you? - Original Message - From: salimss To: Sent: Wednesday, January 30, 2002 8:53 AM Subject: Fw: Pbx Fundamentals [7:33680] - Original Message - From: salimss To: [EMAIL PROTECTED] Sent: Wednesday, January 30, 2002 6:10 PM Subject: Pbx Fundamentals Could u pls answer the following questions. 1) The SIP protocol is based upon which other protocol model? a. H.323 b. MGCP c. HTTP/WWW d. HTML 2) Which of the following are common trunk circuit usage types? a. One way in only b. One way out only c. Two way in or out d. All of the above e. None of the above 3) The term non-blocking when applied to a PBX indicates: a. LCR is unable to restrict calls b. The number of trunks is equal or in excess of the number of stations c. Subscribers have access to all features such as call transfers, conference, call pickup d. The switch does not support Class of Service e. There are enough time-slots to support every station engaging in a call simultaneously 4) In the Europe, ___ line code is required for ISDN PRI. a. AMI b. HDB3 c. B8ZS d. HDLC 5) SS-7 is mandatory to provide national and international ISDN. a. True b. False 6) PBX proprietary private networking cannot be supported across the data network? a. True b. False 7) Circuit switched networks are very flexible and can easily adapt to handle new applications. a. True b. False 8) The component of a PBX that manages the use of timeslots/speech paths is the . a. Control complex b. Switching complex c. Terminal interface d. None of the above 9) ___ is/are an example(s) of Call Center data that can be collected from a PBX. a. Trunk a call entered on b. Length of time a call waited c. How long a caller talked to each agent d. All of the above 10) Cell based switching is more efficient than frame based switching. a. True b. False 11) Q.Sig as opposed to DPNSS does not require a D-channel. a. True b. False 12) EM signaling is used for which of the following? a. Trunk groups from electromechanical offices b. Centrex tie lines c. Trunks for Centrex for private networks d. A multitude of private line applications e. B and C f. All of the above 13) In the ISDN LAP-D format, the _ bits identify which network entity should process the frame. a. Terminal Endpoint Identifier (TEI) b. Command/Response (C/R) c. Extended Address (EA) d. Service Access Point Identifier (SAPI) 14) The ability for a PBX system to account for usage costs is known as __. a. Call Detail Recording b. Station Message Detail Recording c. Call Accounting d. CDR e. All of the above _ Do You Yahoo!? Get your free @yahoo.com address at http://mail.yahoo.com Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=33696t=33680 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: NEW Posting procedures - Please read [7:33066]
Sounds like a great idea to me. Hope it works!! Mike - Original Message - From: Paul Borghese To: Sent: Thursday, January 24, 2002 08:32 Subject: NEW Posting procedures - Please read [7:33066] Due to the recent concern with SPAM I have changed the posting procedures for this group. If you post from the Discussion Board on www.groupstudy.com, this will not effect you. Those who post from the Newsfeed or Mailing list must first be authenticated before the post will be allowed. When you post a message to the list, you will receive an authentication message. You simply need to return that authentication message back to the list by hitting reply. When the server receives your authentication message, your original posting will be sent. You only need to do this once. Future postings will be allowed without authentication. If you are using an invalid e-mail address, you will no longer be able to post via the Newsfeed or Mailing List. You may still post from the discussion board. This should reduce/eliminate the generic SPAM that has started to appear on this list. Please send me any comments or bug reports. Paul Borghese _ Do You Yahoo!? Get your free @yahoo.com address at http://mail.yahoo.com Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=33075t=33066 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: VPN and Cisco [7:32721]
You need to add the following to your PIX configuration: access-list permit esp host host access-list permit udp host host eq isakmp static (,) netmask 255.255.255.255 0 0 access-group in interface Hope that helps. Mike - Original Message - From: Tom Richs To: Sent: Monday, January 21, 2002 13:44 Subject: VPN and Cisco [7:32721] I have a client behind he firewall that is trying to VPN using Cisco's VPN client (5000 series) to VPN to a site on the Internet. Would I have to open up anything on the firewall to allow it out. Currently everything is allowing out but the connection can't be established. Thanks. Tom _ MSN Photos is the easiest way to share and print your photos: http://photos.msn.com/support/worldwide.aspx _ Do You Yahoo!? Get your free @yahoo.com address at http://mail.yahoo.com Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=32729t=32721 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: VPN and Cisco [7:32721]
Well, that was an interesting filter job. PIX Config needs the following access-list OUTSIDEACL permit esp host VPNHOST host VPNCLIENT-PUBLIC access-list OUTSIDEACL permit udp host VPNHOST host VPNCLIENT-PUBLIC isakmp static (INSIDE,OUTSIDE) VPNCLIENT-PUBLIC VPNCLIENT-PRIVATE netmask 255.255.255.255 0 0 access-group OUTSIDEACL in interface OUTSIDE where: OUTSIDEACL = number/name of your ACL created to apply to the external interface VPNHOST = Internet-visible address of the VPN authenticating device VPNCLIENT-PUBLIC = Internet-visible address of your internal client attempting to connect to the VPNHOST VPNCLIENT-PRIVATE = Internal NAT address of the internal client attempting to connect to the VPNHOST INSIDE = name of the internal PIX interface OUTSIDE = name of the external PIX interface Let's see if that makes sense now. Mike - Original Message - From: Michael J. Doherty To: Sent: Monday, January 21, 2002 14:25 Subject: Re: VPN and Cisco [7:32721] You need to add the following to your PIX configuration: access-list permit esp host host access-list permit udp host host eq isakmp static (,) netmask 255.255.255.255 0 0 access-group in interface Hope that helps. Mike - Original Message - From: Tom Richs To: Sent: Monday, January 21, 2002 13:44 Subject: VPN and Cisco [7:32721] I have a client behind he firewall that is trying to VPN using Cisco's VPN client (5000 series) to VPN to a site on the Internet. Would I have to open up anything on the firewall to allow it out. Currently everything is allowing out but the connection can't be established. Thanks. Tom _ MSN Photos is the easiest way to share and print your photos: http://photos.msn.com/support/worldwide.aspx _ Do You Yahoo!? Get your free @yahoo.com address at http://mail.yahoo.com _ Do You Yahoo!? Get your free @yahoo.com address at http://mail.yahoo.com Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=32736t=32721 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: how to disable NAT in PIX firewall (both insid [7:29408]
Since the PIX is a native NAT device, built around it, subsistent on it, you cannot turn it off and allow the PIX to function in its correct manner. The example that you mention (VPNs) is a special scenario. Once VPN clients are authenticated by the PIX, they are treated as if they exist on the inside of the PIX, therefore we have to disable NAT to allow the VPN tunnel to work properly. If NAT is setup according to the Best Practices, your inside hosts will be able to see ALL external hosts while shielding them from being seen by the outside hosts (the fact that they are using the NAT translation is what accomplishes this). The fact that you are using Publ;ished IP addresses for your hosts is a moot point (it is also not a recommendation in Best Practices). Therefore, you still need to correctly setup the NAT statements, in the manner illustrated by Cisco's website, in order to make the PIX function appropriately. - Original Message - From: David Tran To: Sent: Monday, December 17, 2001 16:13 Subject: how to disable NAT in PIX firewall (both inside an [7:29303] Hi Everyone, I am having problem setting up a network in this scenario with my PIX515-UR firewall running version 6.1(1) with pdm version 1.1(2). I have a network with REGISTERED IP addresses. The inside interface of the PIX is on the 129.174.1.0/24 network with IP address of 129.174.1.254. The outside interface of the PIX is on the 66.61.46.0/24 network with IP address of 66.61.46.120. The inside interface has a security level of 100 and the outside interface has security level of 0. On the inside internal network, I have 10 workstations range from 129.174.1.1-10. These workstations have the default gateway point to the inside interface of the PIX. I understand that for machines from the inside network to access the Internet, the command nat and global must be used. However, since I all of my machines have valid (aka registered IP addresses), I want to disabe NAT completely. For, example, I want machine 129.174.1.1 to be able to browse and ping any machines on the Internet. At the same time, I don't want users from the Internet to be able to access any of the workstations on the inside interface. I have been searching for documentation on Cisco website but it seems likemost of the example have to do with NAT enable. There are a few examples that will disable NAT but it is relatedto VPN which is something I don't want. Furthermore, most of the examples fill with errors and pretty worthless (for PIX anyway). If anyone has done this before, let me know. I also include a copy of the config. Thanks. David PIX Version 6.1(1) nameif ethernet0 outside security0 nameif ethernet1 inside security100 nameif ethernet2 dmz security50 enable password sdfkjfdjjdfjksdf encrypted passwd sdfjksdfkjsdfjksjf encrypted hostname ciscopix fixup protocol ftp 21 fixup protocol http 80 fixup protocol h323 1720 fixup protocol rsh 514 fixup protocol rtsp 554 fixup protocol smtp 25 fixup protocol sqlnet 1521 fixup protocol sip 5060 fixup protocol skinny 2000 names access-list no-nat-list permit ip any any access-list no-nat-list permit icmp any any pager lines 24 interface ethernet0 auto interface ethernet1 auto interface ethernet2 auto mtu outside 1500 mtu inside 1500 mtu dmz 1500 ip address outside 66.61.46.120 255.255.255.0 ip address inside 129.174.1.254 255.255.255.0 ip address dmz 127.0.0.1 255.255.255.255 ip audit info action alarm ip audit attack action alarm no failover failover timeout 0:00:00 failover poll 15 failover ip address outside 0.0.0.0 failover ip address inside 0.0.0.0 failover ip address dmz 0.0.0.0 pdm history enable arp timeout 14400 nat (inside) 0 129.174.1.0 255.255.255.0 static (inside, outside) 129.174.1.0 129.174.1.0 conduit permit ip any any conduit permit icmp any any route outside 0.0.0.0 0.0.0.0 66.61.46.254 1 timeout xlate 3:00:00 timeout conn 1:00:00 half-closed 0:10:00 udp 0:02:00 rpc 0:10:00 h323 0:05:00 sip 0:30:00 sip_media 0:02:00 timeout uauth 0:05:00 absolute aaa-server TACACS+ protocol tacacs+ aaa-server RADIUS protocol radius no snmp-server location no snmp-server contact snmp-server community public no snmp-server enable traps floodguard enable no sysopt route dnat telnet timeout 5 ssh timeout 5 terminal width 80 _ Do You Yahoo!? Get your free @yahoo.com address at http://mail.yahoo.com Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=29408t=29408 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Looking for a CCNP [7:28907]
Hmm, wish I were a CCNP. Still got a ways to go on that one. Mike - Original Message - From: Buri, Heather L. To: Sent: Wednesday, December 12, 2001 13:16 Subject: RE: Looking for a CCNP [7:28907] Hmmm. Wish I lived in Springfield. Heather -Original Message- From: Jeff Rollins [SMTP:[EMAIL PROTECTED]] Sent: Wednesday, December 12, 2001 11:25 AM To: [EMAIL PROTECTED] Subject: Looking for a CCNP [7:28907] Hello, My name is Jeff Rollins I am the Technical Resource Manager for ViSTECH Systems I am looking for a strong Cisco Network Engineer with a CCNP certification. Needs strong Cisco, TCP/IP, and WAN experience. Must have documentation experience of there work. Some products you will be working using are: Traffic Director, Sniffer, and Concord. Salary range is 75k max. The location is Springfield, Va. Jeff Rollins Technical Resourc Mgr. 866-322-8005 x225 703-273-8004 x225 _ Do You Yahoo!? Get your free @yahoo.com address at http://mail.yahoo.com Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=28923t=28907 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Looking for a CCNP [7:28907]
LMAO Wish I did not have a customer in Springfield, otherwise I could avoid that area entirely and just stick to the northern half of 495 and the Toll Road. Mike - Original Message - From: Evans, TJ To: Sent: Wednesday, December 12, 2001 15:53 Subject: RE: Looking for a CCNP [7:28907] Don't forget about the latency involved in all packets traveling through Springfield, or the frequent collisions that occur on these specific routes. ... I usually wish I *didn't* live in Springfield. Thanks! TJ -Original Message- From: Howard C. Berkowitz [mailto:[EMAIL PROTECTED]] Sent: Wednesday, December 12, 2001 2:52 PM To: [EMAIL PROTECTED] Subject: RE: Looking for a CCNP [7:28907] Be careful of what you wish for. I'm still laughing at the thought of just what sort of Traffic Director the (inappropriate) ad is looking for. Springfield contains the most complex freeway intersection in the Washington DC metro area, which is under MASSIVE reconstruction. Indeed, I even use the roads around Springfield in explaining weird routing. While traveling south from DC, up to the famed Beltway, you are on 395 South. You are presented with a routing table giving you exits to 95/495 North, 95 South, and 495 South. The only problem is that 95 South is exactly the same road you are on, but just changes name. Federal highway regulations require there be an exit sign for every new numbered Interstate, so exit 4B is right in the middle of the road. There _is_ no turnoff. It's like your subnet changes number somewhere in the middle. BGP blackhole routes are simple compared to the Springfield interchanges. Hmmm. Wish I lived in Springfield. Heather -Original Message- From: Jeff Rollins [SMTP:[EMAIL PROTECTED]] Sent: Wednesday, December 12, 2001 11:25 AM To: [EMAIL PROTECTED] Subject: Looking for a CCNP [7:28907] Hello, My name is Jeff Rollins I am the Technical Resource Manager for ViSTECH Systems I am looking for a strong Cisco Network Engineer with a CCNP certification. Needs strong Cisco, TCP/IP, and WAN experience. Must have documentation experience of there work. Some products you will be working using are: Traffic Director, Sniffer, and Concord. Salary range is 75k max. The location is Springfield, Va. Jeff Rollins Technical Resourc Mgr. 866-322-8005 x225 703-273-8004 x225 * The information in this email is confidential and may be legally privileged. It is intended solely for the addressee. Access to this email by anyone else is unauthorized. If you are not the intended recipient, any disclosure, copying, distribution or any action taken or omitted to be taken in reliance on it, is prohibited and may be unlawful. When addressed to our clients any opinions or advice contained in this email are subject to the terms and conditions expressed in the governing KPMG client engagement letter. * _ Do You Yahoo!? Get your free @yahoo.com address at http://mail.yahoo.com Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=28969t=28907 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: C2620 with NM-1FE1R2W? [7:28716]
The 26xx is only capable of supporting 2 FE ports, and then only if they are mainboard-based. Therefore, the NM-1FExxx and NM-2FExxx boards will not work in them. - Original Message - From: Johan Hjalmarsson To: Sent: Monday, December 10, 2001 13:58 Subject: C2620 with NM-1FE1R2W? [7:28716] Does a NM-1FE1R2W= work in a Cisco 2620 router? I thought all NM's worked in both the C26xx and C36xx series, but I can't get this configuration to work. When I look in the HW/SW compability matrix only SW for the C36xx is shown for this module. Any suggestions? _ Do You Yahoo!? Get your free @yahoo.com address at http://mail.yahoo.com Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=28730t=28716 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: IOS ver 12.1(7) or higher [7:28241]
In order to download and install a new IOS, you will need a valid SMARTnet Contract #. You can then go to the contract support pages for Cisco TAC ( http://www.cisco.com/tac ) to download the appropriate software. Mike - Original Message - From: Anthony Toh To: Sent: Wednesday, December 05, 2001 21:54 Subject: IOS ver 12.1(7) or higher [7:28241] Appreciate if anyone could show me where can I find download the Cisco IOS 12.1(7) or higher release version. I need it urgently for the use of configuring Dialer Watch feature. I am using Cisco 2620 router. Thks. _ Do You Yahoo!? Get your free @yahoo.com address at http://mail.yahoo.com Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=28313t=28241 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: looking for CCIE study group in [7:28319]
You didn't mention the area. Mike - Original Message - From: Andrew Awalt To: Sent: Thursday, December 06, 2001 16:12 Subject: looking for CCIE study group in [7:28319] Since MentorTech went under I am looking for a new training site in the same area. Thanks, Andrew _ Do You Yahoo!? Get your free @yahoo.com address at http://mail.yahoo.com Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=28322t=28319 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: PIX [7:28083]
The PIX has limited routing capabilities (in order to allow packets through the firewall). It cannot route packets out the same interface that it arrived on. If it does not have a route to a host on another interface, it will drop the packet. (my understanding, anyway, feel free to correct an inaccuracies). Mike - Original Message - From: BASSOLE Rock To: Sent: Tuesday, December 04, 2001 12:03 Subject: PIX [7:28083] Hi group, I'am using a PIX with 2 interfaces (inside and outside). -Security level for the inside interface is 100. -Security level for the outside interface is 0. Is it possible to use the PIX to route a specific host installed on the outside interface towards another subnet (still on the outside interface)? Will the packet be droped because the host is on the outside interface? Regards, Rock BASSOLE Til: +33 (0) 1 45 96 22 03 _ Do You Yahoo!? Get your free @yahoo.com address at http://mail.yahoo.com Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=28085t=28083 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: OT:Advise on Auction fraud [7:28004]
I agree with the response that Daniel Cotts sent, and wanted to add some more to it. Most auction sites provide an Escrow service, now, as a means of cutting down on fraudulent actions. You may want to consider using those services if you purchase through an auction site again. Mike - Original Message - From: To: Sent: Monday, December 03, 2001 14:24 Subject: OT:Advise on Auction fraud [7:28004] Sorry for off topic I recentley bcame the victim of the Auction fraud the guy took my $1000 for 2621 router and now not replying for my emails and also I came to know that thi s guy is a fraud and done similiar thing to at least 4 other people ,Now what are the options I have to get my money back from him Thanks for all your advise Kaamvi _ Do You Yahoo!? Get your free @yahoo.com address at http://mail.yahoo.com Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=28093t=28004 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: 4006 [7:27472]
and a Layer 3 license - Original Message - From: Bill Carter To: Sent: Tuesday, November 27, 2001 12:14 Subject: RE: 4006 [7:27472] Yes, with a Layer 3 blade. -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of William Sent: Tuesday, November 27, 2001 10:23 AM To: [EMAIL PROTECTED] Subject: 4006 [7:27472] dear all, can the 4006 run on layer 3? _ Do You Yahoo!? Get your free @yahoo.com address at http://mail.yahoo.com Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=27506t=27472 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: New CCNP [7:27252]
Congratulations!! Mike - Original Message - From: To: Sent: Saturday, November 24, 2001 20:55 Subject: New CCNP [7:27252] I Have recently passed the final exam for my CCNP. Thanks for all the help and good luck to all those that are working towards their own. I will be heading down the track to CCie in security. Thanks again! Used lots of self study and hands on to get it done, along with various practice tests from boson, trancsender and others. Willie Scott CCNP,MCSE _ Do You Yahoo!? Get your free @yahoo.com address at http://mail.yahoo.com Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=27253t=27252 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Passed CCNA!!!! [7:26759]
Congratulations!! Mike - Original Message - From: adrian To: Sent: Monday, November 19, 2001 15:28 Subject: Passed CCNA [7:26759] Hi all Today I passed CCNA test. Thank you guys for all your advices, specially thanks to Bogdan Ungureanu who helped me a lot. The next step will be MCSE. Thanks again, Adrian _ Do You Yahoo!? Get your free @yahoo.com address at http://mail.yahoo.com Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=26760t=26759 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: PPTP Through a PIX Firewall [7:26519]
If I remember correctly, in order to pass PPTP through the PIX, you still have to provide the settings in the Access List applied to the interfaces. Here are the two that I had to activate for PPTP to pass through one of my customer's PIXs (applied to the outside interface) (sterilized, of course): access-list zzz permit tcp host x.x.x.x host y.y.y.y eq 1723 access-list zzz permit gre host x.x.x.x host y.y.y.y Don't know if that helps, and please correct me if I am wrong in my answers. Mike - Original Message - From: Rizzo, Damian To: Sent: Friday, November 16, 2001 14:13 Subject: PPTP Through a PIX Firewall [7:26519] Hello all; We have a challenge. It appears that we can not VPN through our PIX firewall using PPTP to a remote location. Note, we are NOT using PPTP on the PIX itself; we just want it to pass the traffic through it. Anyone see this issue before and/or have any ideas to a possible solution? Thanks all in advance, -Rizzo This electronic mail transmission contains confidential information intended only for the person(s) named. Any use, distribution, copying, or disclosure by any other person is strictly prohibited. If you received this transmission in error, please notify the sender by replying to e-mail and destroy message. Opinions, conclusions, and other information in this message that do not relate to the official business of MARAKON ASSOCIATES shall be understood to be neither given nor endorsed by the company. When addressed to MARAKON clients, any information contained in this e-mail is subject to the terms and conditions in the governing client contract. _ Do You Yahoo!? Get your free @yahoo.com address at http://mail.yahoo.com Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=26529t=26519 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: List Circuitbreakers fired [7:25791]
Great post, Paul. I, for one, like this site. Just got referred to it by several people who said I should subscribe to these lists in order to provide an additional study method for CCNP/DP and CCIE. Thanks for the effort. Sincerely, Michael J. Doherty - Original Message - From: Paul Borghese To: Sent: Sunday, November 11, 2001 23:47 Subject: Re: List Circuitbreakers fired [7:25791] I do not get paid to manage groupstudy as it is a hobby of mine consuming countless hours of time I should be spending with my family. Every vacation we take gets somehow interrupted by some issue with groupstudy.Plus at times the we could have really used the money spent on GroupStudy for other things. Frankly my wife has been amazing supportive of the entire thing. I was talking to a friend of mine about the pains associated with managing this site. He could not believe all the crap that I need to deal with on a daily basis. So the next day I decided to keep a log of all of the things that I needed to take care of for that particular day. I was going to publish it but was later advised against it (see item 1). In a nutshell, on this one particular day I spent most of the day (in between doing my real job): 1. Dealing with a person who was threatening to sue me over a posting another list member sent (under the belief that I am responsible). This person was also suing the poster and the poster's company in an attempt to get the guy fired. I know this because he insisted on courtesy copying everyone involved on all correspondence. $100's of dollars in legal fees later I learned that the entire thing was frivolous and the courts were quite clear with numerous decisions that I am not liable. The case was later dropped. But it is still not pleasant to think that your financial future may be jepodized over a hobby. 2. Trying to help a person get off the list. I needed him to send me a header of one of the e-mails but everytime I asked for the header he would respond with obscenities and demand to be removed. But I needed the headers to figure out how he was receiving the messages. He ended up bouncing all of his messages (out of some sort of warped revenge) to my personal e-mail account. But at least then I was able to view the header and get him off the list. What I don't understand is if he was capable of bouncing e-mails to a third account, why all the obscenity? He should have understood the reasoning and just sent me the headers. 3. Tracked someone down at Cisco's request who broke the CCIE NDA. 4. Did an interview for a magazine for an article on GroupStudy.com. 5. Tracked down a hacker who had broken into a companies machine and was now attacking groupstudy.com. After blocking that machine from GroupStudy, I wrote to the contacts listed in the whois database. By some strange coincidence the security offer of the company called me (who I had never spoken to before) to discuss a matter concerning a posting on one of the lists that needs to be removed. He had no idea there was this problem with the hacker but was able to get me in contact with the technical people in the company so I could explain. If this was a job, believe me I would quit! We do sell a limited amount of banner ads, but that money goes towards the upkeep of the servers and lessens the burden of this site on me financially. For a while I was spending close to $1000/month on bandwidth before InFlow rescued us by giving the site free bandwidth. Now we seem to be at a break even point and may even have enough money for that new shinny server I have my eye on :-). So to make a long story short, Money OUT Money IN while I believe most jobs use the formula Money IN Money OUT. But like a real job AGGRAVATIONAPPRECIATION. Paul Borghese P.S. Please let's improve the list by using our real names instead of cowarding behind a yahoo account and using anonymizer.com. If you are not willing to say something with your name attached to it - it should not be said. - Original Message - From: Hoe Moe To: Sent: Sunday, November 11, 2001 8:43 PM Subject: Re: List Circuitbreakers fired [7:25791] How does doing your job make you a hero? I could see a firefighter or a solider but someone who manages a mailing list. Not a hero in my book. Besides he's probably making a pretty penny off this list. JG wrote: I would like to thank mainly Paul Borghese, and lots of unsung 'heroes' like Jonathan Hays in this case, for their relentless effort to keep this list professional, up-to-par, and above all allowing us this communication channel... THANX GUYS -- Rgrds' JG ---== Success, is where preparation, meets opportunity ==--- Paul Borghese wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... Hi everyone, This list has some custom
Re: Slightly OT: vpnclient 3.1.1 and Nimda [7:25877]
Thanks for the messages. I was just getting ready to provide 3.1.1 to a client to activate their remote access scenario. At least now, I have the beginnings of information to discuss with them about the delay. Sincerely, Michael J. Doherty - Original Message - From: Brad Ellis To: Sent: Monday, November 12, 2001 01:08 Subject: Re: Slightly OT: vpnclient 3.1.1 and Nimda [7:25877] Hmm...that's weird. I do have 3.1.1, and I scanned it for Nimda, and nothing. However, I do see that Cisco removed it from their website. What's up with that? Have you emailed TAC yet? Let me know if you have, and if so, what they have responded with. If not, I'll send them an e-mail tomorrow. On Friday, I just setup a client of ours with 3.1.1. thanks, -Brad Ellis CCIE#5796 (RS / Security) Network Learning Inc [EMAIL PROTECTED] used Cisco gear: www.optsys.net CCIE Labs, racks, and classes: www.ccbootcamp.com Sasa Milic wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... Hi All, have anyone downloaded and installed cisco vpn client 3.1.1 ? I've downloaded it 2 weeks ago, and I've just found Nimda virus in file ikernel.exe ! Cisco has removed version 3.1.1 from Software centar (but they forgot to remove readme file for it), but I still have original installation file and I've confirmed that it is indeed infected. Strange, Norton AV did not find virus two weeks ago - it did find it now, with latest virus definition file (BTW, I'm updating def file every day). Regards, Sasa _ Do You Yahoo!? Get your free @yahoo.com address at http://mail.yahoo.com Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=25899t=25877 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]