interesting issue with IPX [7:74266]
here's the issue. From my experience, NT servers show up as a type '4' on the SAP table. We're seeing 2000 machines as type '9604'. Anyone out there running IPX, do a 'sh ipx server', you'll see what I mean. Anyone have any ideas? Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=74266t=74266 -- **Please support GroupStudy by purchasing from the GroupStudy Store: http://shop.groupstudy.com FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Re: OT Microsoft worm [7:74045]
On the network side, the day of the notice, we issued a constant scan of PC's on our Snort box. We were scanning machines attempting to make constant connections on port 69, 135, and . We found none. Fortunately, our windows admins came in early, updated our trend server with the virus definitions, and pushed the update to our PC's. I'm very fortunate that we have a proficient IS staff. I've found a good site, www.f-secure.com. They're very good @ keeping up-to-date with the most recent outbreaks. Just my 2 cents. -Nate - Original Message - From: Priscilla Oppenheimer To: Sent: Saturday, August 16, 2003 10:22 AM Subject: OT Microsoft worm [7:74045] Just wondering, is this new LOVSAN msblast worm as big as it seems to be? I've been helping lots of Windows users clean up their machines. They all had the worm. These are mostly home users. I can't believe they would use broadband, always-on access and not have a firewall, but they didn't! What are you all seeing? Is this a big one? I suppose enterprise networks are much better protected (hopefully) than the home networks I've been helping out with. One has to wonder if the huge power outage could be related. I can imagine a Windows computer somewhere in Ohio that played a surprisingly important role in keeping the grid working and had been infected. But I read a lot of science fiction. :-) By the way, the stupid worm is attacking the wrong Microsoft URL! So that aspect of it isn't going to be as bad as once thought. Comments? Priscilla **Please support GroupStudy by purchasing from the GroupStudy Store: http://shop.groupstudy.com FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=74063t=74045 -- **Please support GroupStudy by purchasing from the GroupStudy Store: http://shop.groupstudy.com FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Re: CISCO2950 switch boot issue.. Urgent [7:72613]
- Original Message - From: Nate To: Sent: Friday, July 18, 2003 8:37 PM Subject: CISCO2950 switch boot issue.. Urgent I upgraded the IOS on the 2950. now when it boots, I get a bad mzip file, unknown zip method. Any ideas? Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=72613t=72613 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
CISCO2950 switch boot issue.. Urgent [7:72612]
I upgraded the IOS on the 2950. now when it boots, I get a bad mzip file, unknown zip method. Any ideas? Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=72612t=72612 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Sniffer Recommendation [7:72372]
I actually want to see broadcast traffic. - Original Message - From: Charles D Hammonds To: Sent: Tuesday, July 15, 2003 11:57 PM Subject: RE: Sniffer Recommendation [7:72372] span port is not a sniffer requirement, but one of the switch. switches send unicast/multicast traffic out only the ports that it is destined to. so, if you want to see anything other than straight broadcast traffic, span is required. charles -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] Behalf Of Nathan Sent: Tuesday, July 15, 2003 9:33 PM To: [EMAIL PROTECTED] Subject: Sniffer Recommendation [7:72372] I need a sniffer that doesn't require spanning a port. Any suggestions? Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=72407t=72372 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: serial interface discards [7:70752]
It is entirely possible that the monitoring software (Lucent Vital Net) is showing something other than discards. Unfortunately, that software doesn't tell us what kind of discards. The interface information doesn't reflect what the monitoring sotware is showing so there is no way to confirm. -Nate - Original Message - From: Priscilla Oppenheimer To: Sent: Monday, June 16, 2003 10:59 PM Subject: RE: serial interface discards [7:70752] You started the thread by saying that your monitoring software is saying that there are discards. What monitoring software is it? Are you sure it's referring to the drops that show int is displaying? Maybe it means something else by discard. Priscilla Nathan wrote: Basically, we have two paths: One going to the internet, and one going to the Corporate WAN. We also have redundancy so that if either pipe goes down, the other can be used for whatever service is missing. In order to do redundancy for the pipe going to Corporate WAN, we needed a netscreen and a Tunnel Interface (netscreen for GRE and Tunnel for IPSEC). We are also using EBGP for the Corporate WAN redistributing into EIGRP internally. The access list is used so that EIGRP won't accept default routes from the Internet pipe going to the remote site. I'm not sure if there are any MTU issues with it but as far as high utilization, the traffic is only showing a max / day of 20-30% so I don't think bandwidth is the issue. I would agree that discards are unavoidable in a FA or GE environment, but prior to adding the internet circuit as the default route for the site, there were no discards. I have been to that site but the scenario is different from mine. -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] Sent: Monday, June 16, 2003 4:29 PM To: [EMAIL PROTECTED] Subject: Re: serial interface discards [7:70752] Nate wrote: well, it's a ESF Full T1. What feeds into the T1? If it's a busy Ethernet, especially Fast or Gigabit Ethernet, drops are unavoidable. Even though your stats show that the T1 utilization is only 23/255 (less than 10%), the stats show a moving average for the last 5 minutes, but the drops are since the last time you cleared the counters, 6 hours ago. So at some point, you probably had too much data to send over the 1.5Mbps T1. You need to watch it carefully to see if the drops correspond with high utilization. (I think you said that they do, in fact, which makes sense.) You may simply need more bandwidth. If this is an odd occurence, on the other hand, then perhaps you should check your IDS logs (you do have such a thing? :-) to determine if you were being probed or something. You've probably been to Cisco's site already and found this link: Troubleshooting Input Queue Drops and Output Queue Drops http://www.cisco.com/warp/public/63/queue_drops.html#topic4 It says the same thing about drops being unavoidable in some cases, but it also has some links to congestion avoidance and congestion management featuers (advanced queueing) so that you can control what gets dropped. So, what's with the tunnel? Are there any MTU issues with it? Tunnels add overhead and cause packets to get dropped because they don't fit. I'm not sure that would get displayed with the show int drops though. It's worth looking into MTU issues though since they are an infamous problems with tunnels, or am I misunderstanding what you're using the tunnel for? I've never seen it used with a distribute list. Can you explain what you're accomplishing with that? Thank-you very much. Priscilla Here's the running config for that interface: interface Serial0/0 bandwidth 1544 ip address x.x.x.2 255.255.255.0 no ip directed-broadcast no ip mroute-cache no fair-queue here's the config for eigrp 1 router eigrp 1 redistribute static network x.x.x.0 distribute-list 25 out Tunnel0 no auto-summary here's the tunnel0 config: interface Tunnel0 bandwidth 1544 ip address x.x.x.2 255.255.255.0 no ip directed-broadcast tunnel source x.x.x.66 tunnel destination x.x.x.66 - Original Message - From: MADMAN To: Sent: Monday, June 16, 2003 2:35 PM Subject: Re: serial interface discards [7:70752] I would like to see you config also. Is this a full or fractional T1? I don't see any error indications, you may simply be experiencing short, large bursts of traffic hence the output drops. Dave Nate wrote: guys, for some reason, our monitoring software is showing a bunch of discards on the serial WAN circuit. The trend of discards seems to follow the traffic stream. Here's the config for the interface: (CISCO3725
Re: serial interface discards [7:70752]
Thanks for all the advice. I'm going to definitely use most of what was posted. I appreciate the help. -Nate - Original Message - From: Priscilla Oppenheimer To: Sent: Tuesday, June 17, 2003 11:50 AM Subject: Re: serial interface discards [7:70752] Nate wrote: It is entirely possible that the monitoring software (Lucent Vital Net) is showing something other than discards. Your monitoring software probably uses the word discard for drop and is just doing what you have already done, which is show int. As we have all said, output drops on a serial interface are almost always caused by simply too much traffic. You said that bandwidth usage wasn't the issue, but I agree with the other poster that you may not be getting an accurate picture because of the 5-minute exponential nature of the load stat. See Brad's excellent advice about changing this. You said something about 2 redundant links. Which link is actually getting used? Is load balancing supposed to be occuring? Maybe only one link is getting used and it's overwhelmed. Trace-route might help you with that. Also examining the routing table should help. Your monitoring software may mean something else by discard. I'm still worried about the tunnel. If I understand it correctly, you've added headers to the traffic to support IPSec. That can cause packets to be too big to support the MTU of the interface. These packets must get discarded. Unfortunatlely, the only way I know to determine if packets are getting discarded due to an MTU issue is with debug ip packet detail which is risky on a production network. Well, the other way, is a WAN sniffer or Ethernet sniffers on both ends of the WAN link to see what's getting across and what isn't and to monitor for any ICMP errors. Folks, how else could he determine if there's an MTU issue? Finally, one last comment to echo Brad's comment. If users aren't complaining, don't worry about the drops! Seriously. As HCB would say, what problem are you trying to solve? Good luck with it, regardless. :-) Priscilla Unfortunately, that software doesn't tell us what kind of discards. The interface information doesn't reflect what the monitoring sotware is showing so there is no way to confirm. -Nate - Original Message - From: Priscilla Oppenheimer To: Sent: Monday, June 16, 2003 10:59 PM Subject: RE: serial interface discards [7:70752] You started the thread by saying that your monitoring software is saying that there are discards. What monitoring software is it? Are you sure it's referring to the drops that show int is displaying? Maybe it means something else by discard. Priscilla Nathan wrote: Basically, we have two paths: One going to the internet, and one going to the Corporate WAN. We also have redundancy so that if either pipe goes down, the other can be used for whatever service is missing. In order to do redundancy for the pipe going to Corporate WAN, we needed a netscreen and a Tunnel Interface (netscreen for GRE and Tunnel for IPSEC). We are also using EBGP for the Corporate WAN redistributing into EIGRP internally. The access list is used so that EIGRP won't accept default routes from the Internet pipe going to the remote site. I'm not sure if there are any MTU issues with it but as far as high utilization, the traffic is only showing a max / day of 20-30% so I don't think bandwidth is the issue. I would agree that discards are unavoidable in a FA or GE environment, but prior to adding the internet circuit as the default route for the site, there were no discards. I have been to that site but the scenario is different from mine. -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] Sent: Monday, June 16, 2003 4:29 PM To: [EMAIL PROTECTED] Subject: Re: serial interface discards [7:70752] Nate wrote: well, it's a ESF Full T1. What feeds into the T1? If it's a busy Ethernet, especially Fast or Gigabit Ethernet, drops are unavoidable. Even though your stats show that the T1 utilization is only 23/255 (less than 10%), the stats show a moving average for the last 5 minutes, but the drops are since the last time you cleared the counters, 6 hours ago. So at some point, you probably had too much data to send over the 1.5Mbps T1. You need to watch it carefully to see if the drops correspond with high utilization. (I think you said that they do, in fact, which makes sense.) You may simply need more bandwidth. If this is an odd occurence, on the other hand, then perhaps you should check your IDS logs (you do have such a thing? :-) to determine if you were being probed or something
serial interface discards [7:70752]
guys, for some reason, our monitoring software is showing a bunch of discards on the serial WAN circuit. The trend of discards seems to follow the traffic stream. Here's the config for the interface: (CISCO3725) Serial0/0 is up, line protocol is up Hardware is QUICC Serial Internet address is x.x.x.2/24 MTU 1500 bytes, BW 1544 Kbit, DLY 2 usec, rely 255/255, load 23/255 Encapsulation HDLC, loopback not set, keepalive set (10 sec) Last input 00:00:03, output 00:00:00, output hang never Last clearing of show interface counters 06:29:38 Queueing strategy: fifo Output queue 0/40, 22454 drops; input queue 0/75, 0 drops 5 minute input rate 1000 bits/sec, 0 packets/sec 5 minute output rate 141000 bits/sec, 50 packets/sec 9576 packets input, 722935 bytes, 0 no buffer Received 3124 broadcasts, 0 runts, 0 giants, 0 throttles 0 input errors, 0 CRC, 0 frame, 0 overrun, 0 ignored, 0 abort 1605454 packets output, 336655812 bytes, 0 underruns 0 output errors, 0 collisions, 0 interface resets 0 output buffer failures, 0 output buffers swapped out 0 carrier transitions DCD=up DSR=up DTR=up RTS=up CTS=up Here's the config for the other end: (CISCO3725) Serial1/1 is up, line protocol is up Hardware is DSCC4 Serial Internet address is x.x.x.1/24 MTU 1500 bytes, BW 1544 Kbit, DLY 2000 usec, reliability 255/255, txload 1/255, rxload 19/255 Encapsulation HDLC, loopback not set Keepalive set (10 sec) DTR is pulsed for 1672712 seconds on reset, Restart-Delay is 1672712 secs Last input 00:00:01, output 00:00:02, output hang never Last clearing of show interface counters 02:59:32 Input queue: 0/75/0/0 (size/max/drops/flushes); Total output drops: 0 Queueing strategy: fifo Output queue: 0/40 (size/max) 5 minute input rate 12 bits/sec, 53 packets/sec 5 minute output rate 0 bits/sec, 0 packets/sec 966133 packets input, 216228857 bytes, 0 no buffer Received 1256 broadcasts, 0 runts, 0 giants, 0 throttles 0 input errors, 0 CRC, 0 frame, 0 overrun, 0 ignored, 0 abort 4380 packets output, 331039 bytes, 0 underruns 0 output errors, 0 collisions, 0 interface resets 0 output buffer failures, 0 output buffers swapped out 0 carrier transitions DCD=up DSR=up DTR=up RTS=up CTS=up If anyone could help me figure out why this is happening, I'd appreciate it. Thanks. Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=70752t=70752 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: serial interface discards [7:70752]
well, it's a ESF Full T1. Here's the running config for that interface: interface Serial0/0 bandwidth 1544 ip address x.x.x.2 255.255.255.0 no ip directed-broadcast no ip mroute-cache no fair-queue here's the config for eigrp 1 router eigrp 1 redistribute static network x.x.x.0 distribute-list 25 out Tunnel0 no auto-summary here's the tunnel0 config: interface Tunnel0 bandwidth 1544 ip address x.x.x.2 255.255.255.0 no ip directed-broadcast tunnel source x.x.x.66 tunnel destination x.x.x.66 - Original Message - From: MADMAN To: Sent: Monday, June 16, 2003 2:35 PM Subject: Re: serial interface discards [7:70752] I would like to see you config also. Is this a full or fractional T1? I don't see any error indications, you may simply be experiencing short, large bursts of traffic hence the output drops. Dave Nate wrote: guys, for some reason, our monitoring software is showing a bunch of discards on the serial WAN circuit. The trend of discards seems to follow the traffic stream. Here's the config for the interface: (CISCO3725) Serial0/0 is up, line protocol is up Hardware is QUICC Serial Internet address is x.x.x.2/24 MTU 1500 bytes, BW 1544 Kbit, DLY 2 usec, rely 255/255, load 23/255 Encapsulation HDLC, loopback not set, keepalive set (10 sec) Last input 00:00:03, output 00:00:00, output hang never Last clearing of show interface counters 06:29:38 Queueing strategy: fifo Output queue 0/40, 22454 drops; input queue 0/75, 0 drops 5 minute input rate 1000 bits/sec, 0 packets/sec 5 minute output rate 141000 bits/sec, 50 packets/sec 9576 packets input, 722935 bytes, 0 no buffer Received 3124 broadcasts, 0 runts, 0 giants, 0 throttles 0 input errors, 0 CRC, 0 frame, 0 overrun, 0 ignored, 0 abort 1605454 packets output, 336655812 bytes, 0 underruns 0 output errors, 0 collisions, 0 interface resets 0 output buffer failures, 0 output buffers swapped out 0 carrier transitions DCD=up DSR=up DTR=up RTS=up CTS=up Here's the config for the other end: (CISCO3725) Serial1/1 is up, line protocol is up Hardware is DSCC4 Serial Internet address is x.x.x.1/24 MTU 1500 bytes, BW 1544 Kbit, DLY 2000 usec, reliability 255/255, txload 1/255, rxload 19/255 Encapsulation HDLC, loopback not set Keepalive set (10 sec) DTR is pulsed for 1672712 seconds on reset, Restart-Delay is 1672712 secs Last input 00:00:01, output 00:00:02, output hang never Last clearing of show interface counters 02:59:32 Input queue: 0/75/0/0 (size/max/drops/flushes); Total output drops: 0 Queueing strategy: fifo Output queue: 0/40 (size/max) 5 minute input rate 12 bits/sec, 53 packets/sec 5 minute output rate 0 bits/sec, 0 packets/sec 966133 packets input, 216228857 bytes, 0 no buffer Received 1256 broadcasts, 0 runts, 0 giants, 0 throttles 0 input errors, 0 CRC, 0 frame, 0 overrun, 0 ignored, 0 abort 4380 packets output, 331039 bytes, 0 underruns 0 output errors, 0 collisions, 0 interface resets 0 output buffer failures, 0 output buffers swapped out 0 carrier transitions DCD=up DSR=up DTR=up RTS=up CTS=up If anyone could help me figure out why this is happening, I'd appreciate it. Thanks. -- David Madland CCIE# 2016 Sr. Network Engineer Qwest Communications 612-664-3367 Government can do something for the people only in proportion as it can do something to the people. -- Thomas Jefferson Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=70759t=70752 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Debug display to VTY [7:66762]
conf t logging console - Original Message - From: James Gosnold To: Sent: Thursday, April 03, 2003 9:37 AM Subject: Debug display to VTY [7:66762] Um, probably a silly one for you all. I have a 1721 router at either end of a leased line. I telnet into the router and: Router#debug serial int Serial network interface debugging is on Router#terminal monitor And nothing. Shouldn't I get some debug messages here, keep alives and such between the CSU and my router? It's a live connection and the line works, as far as I knew this was all I needed to enter to view debug output from a telnet session? In fact I don't appear to be getting debug output for anything so I'm missing something silly here but I thought 'terminal monitor' was sufficient? Regards, James. Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=66775t=66762 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: DS3 slow connection problem. [7:65491]
When I do a 'sh tech' on the border router, I get: 2648846 encapsulation failed 127 bad hop count Everything else is 0. Could this be the issue? encapsulation? - Original Message - From: Priscilla Oppenheimer To: Sent: Monday, March 17, 2003 11:06 AM Subject: RE: DS3 slow connection problem. [7:65491] Priscilla Oppenheimer wrote: I logged into the routers and did some ping tests, pinging the routers own serial interface I still get the 1% packet loss. It may surprise you to learn that when you ping from a router's serial interface to the router's own serial interface, the packets actually do go across the serial link. Try turning on ICMP debug on the other end and you will see that the pings get there and get redirected back. By the way, the fact that there's still packet loss when you're pinging yourself, added to the fact that these pings really do go out across the circuit, is more evidence that the fault probably lies in the carrier's network. As others are saying, get the carrier involved. Do some loopbacks with their help. (Do loopbacks still make sense with DS3? I've only worked with DS1). Regardless, I think you've done the requisite testing and swapping on your side. Time to hassle the carrier. Priscilla Here's what Marty Atkins, CCIE (some very low number), had to say about this when it came up before: If the router itself is the source of the packet, and it pings its own serial IP, and the outbound interface and layer 2 encap are resolved and unambiguous, then the router will launch the packet out that p2p interface or PVC. I have done exactly what Priscilla describes, and not only seen the output from debug ip icmp on the neighbor router, but also observed it generating ICMP redirects, since the packet was forwarded out the interface it arrived on! This Cisco aberation is extremely useful for troubleshooting p2p WAN links. When the path has been looped (line protocol up (looped)), the only IP that is pingable is the directly connected one. That the router actually sends the packet makes it possible to test the link with ping. So it shouldn't surprise you that you see the errors even when pinging yourself. Weird, eh? But helpful to hopefully. Priscilla I did this on both routers, I thought this might rule out the actual line because I'm not pinging across the ds3 connection please correct me if i'm wrong. Somebody asked if scrambling was on but I'm not sure what scrambling does or how to check if it's turned on or off so i'll look into that too. Thanks for everybody's help and I'm going to spend all day checking out what you've said and going through the troubleshooting stuff from cisco and i'll let you know how I get on. Anymore advice would be greatly appreciated. Mark Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=65959t=65491 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: DS3 bandwidth issues [7:65790]
thanks guys. I knew I could count on such bright and light-hearted people. - Original Message - From: Priscilla Oppenheimer To: Sent: Wednesday, March 19, 2003 6:19 PM Subject: Re: DS3 bandwidth issues [7:65790] Or he could do the file transfer to a server that is sitting on the edge of a Black Hole! :-) Darrell Newcomb wrote: Increase the speed of light. By increasing the speed of light you will increase the speed of your file transfer. Ask management to fund advanced research into light accelerators, then wait to do your transfers after light has been speed up by a few orders of magnitude. (This works best for non-technical folks) or Use the turbo switch on the back of the router labeled - / oor... Pull fiber directly from A to B Help out the economy and network staff. Buy a backhoe, some explosives, and a fiber splice hit. Start at location A, use gps to plot a direct path to B(as the crow flys), point the tractor in the precise direction and do not deviate. Remove any buildings, reroute roads, destroy gardens, but keep driving in a straight line. Don't bother with regen, just stay the course. (Works good for technical staff who don't yet get it) ..OR.. Nate wrote in message news:[EMAIL PROTECTED] We've run a bandwidth test on our DS3 with nothing connected to it but a workstation (and obviously a router/pix). We went to testmyspeed.com as well as dslreports.com. We both got very good bandwidth tests (upward 6m/s) however in transferring a 200m file to/from a workstation behind the connection, we got over 30 minutes while our existing T1 got 26 minutes. Anyone mind explaining this phenomenon? Just a side note, we have no encryption between GRE tunnels. Thanks in advanced. -Nate .. Tune your tcp stack on the send side. http://www.psc.edu/networking/perf_tune.html http://www-iepm.slac.stanford.edu/monitoring/bulk/fast/ Or maybe you have a real life problem or capacity shortage somewhere. Good Luck, Darrell Always looking for the next big project... As in increasing the speed of light? :-) Priscilla darrell (at) hayaitacos net Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=65814t=65790 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
DS3 bandwidth issues [7:65790]
We've run a bandwidth test on our DS3 with nothing connected to it but a workstation (and obviously a router/pix). We went to testmyspeed.com as well as dslreports.com. We both got very good bandwidth tests (upward 6m/s) however in transferring a 200m file to/from a workstation behind the connection, we got over 30 minutes while our existing T1 got 26 minutes. Anyone mind explaining this phenomenon? Just a side note, we have no encryption between GRE tunnels. Thanks in advanced. -Nate Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=65790t=65790 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
ISDN config [7:65489]
I was doing some ISDN failover testing tonight and found that I was getting a 'incorrect SPID' error. During the testing I read up on troubleshooting ISDN issues from cisco.com and came across a note that in using 5ess switchtypes for the BRI interface, one doesn't need the isdn spid[x] [SPID] [spidID] line. When I removed it, and did the failover test, everything worked fine. I was wondering if there is anything affected if I remove that line (i.e. encryption, authentication, etc.). Any assistance will be greatly appreciated. -Nate Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=65489t=65489 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: IP Telephony [7:64847]
LWR, Thank you for your input. Yes there is a business plan that needs to get made. I do realize that the 'white collars' want this and that's the primary reason why I emailed the group. I currently don't have access to certain parts of the billing as far as long distance, phone charges, and the like but I am in the process of getting all relevant information on VoIP. I want to get everything in a precise little package with exact pricing (this may change cause we are a rather big company and may have the option of discounts, not sure) and present a project plan. I was just wondering if anyone out there had prior experience and found any bumps that they could warn me about. -Nate - Original Message - From: The Long and Winding Road To: Sent: Saturday, March 08, 2003 10:16 PM Subject: Re: IP Telephony [7:64847] Nate wrote in message news:[EMAIL PROTECTED] Guys, I'm thinking of recommending IP Telephony for our company. I have limited knowledge on the subject and I was wondering if any of you are experts (or fraction thereof) that could help me make out a project plan for this. Any comments would be appreciated. Is there a business case to be made? Do you have PBX's for example, whose leases are going to be up? Will you save money? What is your current infrastructure? Will it support VoIP? Are there features your users have now via the PBX that are not available on Call Manager? Will you save money on your voice trunking? How about your WAN - is it sufficient to support voice and QoS requirements? Will your routers support QoS and voice compression/decompression? Are there applications available via IP phones that will provide better productivity and hence more profit for the company? Does your company have the staff on hand to support IP telephony, especially on top of the other work they do? Hey, I think VoIP is as kewl as any other geek out there. But I wore a white shirt and tie for a long time. Masters degree class 101 taught me lesson number one - what is the business case? What is the ROI? What is the discounted net present value of future cash flows? Not that management listens to us geeks anyway... :- Thanks in advance, -Nate Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=64997t=64847 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
IP Telephony [7:64847]
Guys, I'm thinking of recommending IP Telephony for our company. I have limited knowledge on the subject and I was wondering if any of you are experts (or fraction thereof) that could help me make out a project plan for this. Any comments would be appreciated. Thanks in advance, -Nate Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=64847t=64847 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: PATCH PANEL stuff [7:64503]
Sam, A lot of the questions can be answered by knowing how the cables are strung into the racks. For esthetics, I rewire everything, but each admin is different as well as managements needs. I'd say if you had to rewire and repunch down everything for the patch panel as well as rewire all of the CAT 5 you'll have to allow yourself at lease a couple of hours of downtime for rewiring, reorganizing, and testing. What I suggest is to label everything. Labels save lives. After that, I'd suggest creating a step-by-step instructions for yourself (i.e.. [1] Unplug all RJ45 cables. [2] Pull all punched cables from back of Patch Panel. [3] Rewire RJ 45 cable. [4] you get the picture). That way, there is no surprises and nothing you forgot. Just a suggestion. -Nate - Original Message - From: Sam To: Sent: Wednesday, March 05, 2003 10:19 AM Subject: PATCH PANEL stuff [7:64503] Hey Guys, In my wiring closet, I have about 3 racks and about 10 patch panels(The Racks got capacity for at least 30 PP's) I need to move a patch panel out and to the rack next to the one it currently is on. What is the best way to do this? Do i have to follow this kind of procedure: -remove all the cables connected to the back of this patch panel and then label the cables -move the patch panel to the other rack -looking at the labels, again punch-down these cables to their appropriate locations. Would this be the normal way of doing it? Or can I simply unscrew the patch panel from the rack and then somehow move it with the cables still connected to the other rack. This way, the cables won't be sorted as good as they would be normally but it should be ok i think.. My other question is how long does it take on an average to punch down a single cable(4pairs) onto the back of the patch panel? I've never done it, though I think after I buy the tools, I would be able to figure it out. Please give me an approximation. For eg. Making a straight-cable takes about 4-6 minutes Thx Sam Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=64529t=64503 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Supervisor Engines !!! One more question [7:50279]
Squeeze ospf wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... Hi Group I have to upgrade IOS in bootflash: (for MSFC2, 6509) But I can not erase the old version. - Delete bootflash:command can apply but not take effect . Image file still stay in bootflash (of course I didn't try to erase the boot image) - Copy tftp bootflash: command doesn't have erase old image option. I'm now booting the route processor from tftp server, but my customer didn't like this solution. The bootflash is protected from deleting ? rite ? Anyone have experience with this situation. Thank you in advance - Original Message - From: MADMAN To: Sent: Thursday, August 01, 2002 1:10 AM Subject: Re: Supervisor Engines [7:50279] There is a big differance between the supI, supII and supIII, The sup1 is for the 4003, the supII and III are for the 4006. The supI and II run CATOS whereas the supIII runs IOS like a 6500 in native mode. The supIII has layer 3 capabilities, with a supII you require a seperate card for layer 3. supII has a forwarding rate of 18MPPS, supIII 48MPPS. One odd thing, Cisco is so consistent, with the supIII ethernet interfaces are switchports by default, a 6500 running native are routed ports by default!! The supIII will be supporting IPX this fall but only process switching so don't plan on running the supIII ipx in a larger ipx environment. Dave Stuart Pittwood wrote: We're looking into replacing some of our old hubs/switches with a single 4000 series switch. My question is what is the difference between supervisor engines I, II, III? Any help appreciated Thanks Stu -- David Madland Sr. Network Engineer CCIE# 2016 Qwest Communications Int. Inc. [EMAIL PROTECTED] 612-664-3367 Emotion should reflect reason not guide it Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=50298t=50279 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
OT: Routers For Sale [7:12898]
I have the following available for sale. Payment via PayPal.com preferred $900ea 1x Cisco 2523 Router, 1 TokenRing, 2 Serial, 1 BRI S/T, 8 Low Speed Serial interfaces (8F/16 R) (Total of 10 Serial Interfaces, GREAT Frame Switch) $775ea 2x Cisco 2514 Router, 2 Ethernet, 2 Serial interfaces (8F/16R) (Great Firewall router with 2 Ethernet) They all have c2500-jos56i-l.120-17.bin.mz ENTERPRISE/FW PLUS IPSEC 56 loaded on them right now, but I can load any IOS you want before shipping. or Make Offer. Buyer to pay actual SH. Thanks. -Nate [EMAIL PROTECTED] PS. Need to sell these quickly so I can afford to get a Hotel and eat while I am in San Jose on the 29th of July taking my CCIE Lab. Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=12898t=12898 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Get Your Free Digital One Touch Auto Scan Radio... [7:12654]
I thought this newsgroup was moderated... Nate Vanderschaaf (Insert Alphabet Soup Here) wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... Free...Free...Free Thanks to our sponsors, this beautiful lightweight Digital one touch auto scan Radio at left will be yours if you response to the few questions below. Wear this anywhere you go! with this attractive lightweight Digital One Touch Auto Scan Radio. Incorporated with the concept of Space . Being wholly hanged on ear, you avoid the trouble of carrying it. Give you the freedom of whatever you do. Idea for a walk or jogging in the park, exercising at the Gym or anyway you feel like enjoying your favorite FM radio Stations. The iEar radio is designed to hanged comfortably on your ear along with the second earphone, which produce exceptional stereo sound quality music from your favorite radio stations. iEar uses the state of the art auto scanning technology, with the single touch of a button. It will scan and lock on the Radio station with the best possible signal. It comes in this cool translucent Blue color, and it's so easy to use. Makes you want to bring this anywhere you go this Summer. iEar is powered by 2 included lithium batteries. Similar gadgets like this sells for $65 in retail store, but it will be yours FREE. Our sponsors will assure you that your responses will in no way go into your personal profile. They are interested in statistical data only. Wear this anywhere you go! with this attractive lightweight Digital One Touch Auto Scan Radio. Incorporated with the concept of Space . Being wholly hanged on ear, you avoid the trouble of carrying it. Give you the freedom of whatever you do. Idea for a walk or jogging in the park, exercising at the Gym or anyway you feel like enjoying your favorite FM radio Stations. The iEar radio is designed to hanged comfortably on your ear along with the second earphone, which produce exceptional stereo sound quality music from your favorite radio stations. iEar uses the state of the art auto scanning technology, with the single touch of a button. It will scan and lock on the Radio station with the best possible signal. It comes in this cool translucent Blue color, and it's so easy to use. Makes you want to bring this anywhere you go this Summer. iEar is powered by 2 included lithium batteries. Questions Response Do you own or use any kind of PDA(Personal Digital Assistant)? yes no Do you own or use a digital camera or camcorder? yes no Do you own or use a Sony game console such as PS1,PS2 or Gameboy? yes no Do you own or use a MP3 player? yes no Do you own or use a DVD player? yes no Group Profile: Area Code Gender: Male Female Age Group select below 18 and below 19-30 31-45 46-60 60+ Income select below less than 20k 20-30k 30-40k 40-60k 60-80k 80-100k 100k+ This survey is intended for [EMAIL PROTECTED] If you are not the intended recipient, please fill out your email address at right. Thanks. After you answer the questions, don't forget to Links to some of our sponsors: _ _ This email is sent to [EMAIL PROTECTED] If you believe you did not belong to our sponsors customers list, you can remove your email address from our distribution list by clicking the link below. Click here if you prefer not to receive future e-mail from us. Click here to view our permission marketing policy. Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=12654t=12654 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Got A Side Job and am baffled by one client...... [7:9612]
Shot in the dark: I read something in a M$ publication today that a WinModem not on the HCL can cause serious networking problems. I have yet to validate this, but your problem is goofy. I would have guessed NAT overloading as well. There's always the proper way to repair M$ problems... Format and Reinstall! Good Luck. Post a resolution when you get one. Nate George Murphy CCNP wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... =0D Hey Folks... I just wanted to get your opinions on this:=0D =0D I snagged a side job (pays great) and am wondering about a situation. Ok.= =2E. here goes. One PC out of about 15 that work great can see Server res= ources but cannot browse the web or ping outside. They are using an NT 2k= Server, 2900XL switch and CELLPipe router to the web via ADSL. I have t= ried sitching drives, copycatting configs from other clients, reinstallin= g stack and client (no domain just a workgroup) and even a different NIC,= still no web for this node. I have checked th router and switch and ther= are no filters and no access lists yada yada yada... The only clue i= s the last group they had in did not resolve the server backup issues and= left things unresolvd so they let them go this makes me think there = may be some trickery in her since these folks left the router exposed to = the web with no password (which I have fixed) and were able to access unt= il yesterday. I guess my question in retrospect is there some way to bloc= k the bosses PC from TCP/IP via MAC address that I am rusty or unknowledg= able of? What arer your thoughts The client is DHCP and the serve= r is no domain but providing DHCP and workgroup..? [GroupStudy.com removed an attachment of type Image/jpeg] Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=9934t=9612 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Passed the CCIE written by accident-should I retake? [7:9926]
Thanks to everyone for their feedback. After Michael's post, I guess I'm stuck with my 70... oh well. Time to study for the Lab. Also Michael: Can you post a URL to CCSI cert info? I can't find it on Cisco's website. Also, if you care to, can you elaborate on your own personal quest to teach this stuff? Nate Michael Bambic wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... Well this should take a load off your mind, Cisco doesn't allow retakes for better scores and now the Vue testing software puts that rule into effect. We just got an Email from Vue at my place which is a Vue testing center concerning that very thing. Everybody thought I caused it because I took the CCNA again to get a better score to qualify for CCSI. I had never seen a no retake policy from Cisco but there it was from Vue. Luckily it was a Vue spam to every testing center and it wasn't me who caused the problem... :) At least I got a 978 on the retake, got a 914 first time around in 6 minutes... Mike Bambic -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] On Behalf Of Peter Slow Sent: Monday, June 25, 2001 7:51 AM To: [EMAIL PROTECTED] Subject: RE: Passed the CCIE written by accident-should I retake? [7:9789] My honest reccomendation would be to study for it like you were going to take it again, and then not. study till you know you would ace it. (of course if you went and took it then, youd prolly only get a 90, but thats okay.) ...and then don't take it 'cause it costs 300 to take, and you've already passed it. Peter Slow, CCNP Voice Specialist Network Engineer Planetary Networks 535 West 34th. Street New York, New York 10001 Cell: +1(516) 782.1535 Desk: +1(646) 792.2395 Mail: [EMAIL PROTECTED] -Original Message- From: Brian [mailto:[EMAIL PROTECTED]] Sent: Monday, June 25, 2001 2:27 AM To: [EMAIL PROTECTED] Subject: Re: Passed the CCIE written by accident-should I retake? [7:9743] you have 18 months now to take yer first whiff at it, is that not enuff time?? Bri - Original Message - From: Nate Vanderschaaf To: Sent: Sunday, June 24, 2001 9:48 PM Subject: Passed the CCIE written by accident-should I retake? [7:9733] Since I realized I would never feel ready for the CCIE, I figured the best way to prepare for the CCIE written was to take it once, try to get a feel for the subject material, topics and format, then go home, study anything that was a total surprise, and take it again. ($300 for the test, instead of $3000 for a class). Trouble is, I passed the test-- barely. I got a 70%, the absolute minimum passing score. I realize the lab is challenging, and since it's at least 6 months out for me (full schedule in NC and CA), I'm trying to figure out if there's a good reason to retake the written. I did notice that you need to submit your score when logging in to the Lab scheduling system. BTW, I thought the CCIE written was too easy and too difficult at the same time. I really don't see the need to have memorized tons of TokenRing bridging techniques in today's Ethernet world, but concurrently, I would have liked to be more challenged with OSPF and BGP questions, things that are critical to today's Internet world. I wonder how many people on this newsgroup realize that ARIN has allowed backbone carriers to only advertise /20 bits to BGP peers and how this threatens the integrity of the 'net? (Also hats off to uu.net for continuing on with /24! Damn you sprint!) Congratulations to anyone who has worked hard to learn internetworking. Certified or not. Nate Vanderschaaf Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=9926t=9926 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: access-list /TCP UDP ! [7:9638]
Here's the Official ports list: http://www.iana.org/assignments/port-numbers Nate Ron Goff Jr wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... First I'll give you links to port assignments and documents that will help, then I'll give you my understanding of the workings of TCP and UDP (if you don't mind doing a little reading). The first link is to a listing of UDP/TCP ports: http://www.networkice.com/advice/Exploits/Ports/ Additionally, I would advise you to go to the Cisco Web site www.cisco.com, and investigate the details concerning TCP/IP. I'm sure you've already checked there, and I don't mean to offend you by indicating this, however the issue concerning ports and transport protocols is vague and needs to be investigated at length in order for someone to gain a clear understanding. That being said, here is what I personally know (once again, this is not gospel, this is one persons understanding). We first have to agree that TCP/IP does not directly correlate to the OSI Reference Model. If we can agree on that, then we can discuss how an application or service talks to the TCP/IP protocol, and how TCP and UDP relate to port assignments. If you looked at the first link I indicated, you will see that there are no specific listings for TCP or UDP ports, only listings for services that operate over certain ports. There are two kinds of port assignments: those that are well known and used to provide specific services using the TCP/IP suite as an application level service, and those ports that are negotiated for a particular application that exists outside of TCP/IP. An analogy would be: If you choose to Telnet into another computer, you are using an application which is part of the TCP/IP suite. The innerworkings of Telnet are included in the TCP/IP specification. If, however, you are going to connect to a server to play Quake III or something of that nature, you are using TCP/IP only as a transport. Quake III is an application, but is not an application that is contained in the TCP/IP suite. To that end, you are not using TCP/IP on the Application, Presentation, or Session layers of the OSI, but rather the Quake III application uses TCP or UDP as a transport for communication. In the case of Quake III, it provides it's own application, presentation, and session layer information, and then communicates with the TCP/IP protocol, telling it whether it needs connection-oriented or connectionless transmission. And now the discussion turns to which ports are TCP (connection-oriented) ports and which ports are UDP (connectionless) ports. Regarding the issue of which ports are UDP and which are TCP; I've never seen a document which explains this to my satisfaction. This is where my logic (and or the failure there of) comes into play. My understanding is that TCP and UDP do not have port assignments. If you are using an application that is outside of the services of the TCP/IP protocol suite, the application must request either a connection-oriented (TCP), or connectionless (UDP) transport. If this train of thought is correct, then it doesn't matter what port an application requests, it will be able to request either TCP or UDP based on whether the application needs a connection-oriented or connectionless transport. There are (by RFC specification I believe) 1024 well known ports. The first 1024 have been reserved (so to speak)for the TCP/IP protocol. This logic might indicate that these ports (for the purposes of security and convenience) have been designated as either UDP or TCP, however I'm not sure this is the case. I will give you an example, however, to clarify this point. FTP is known as a TCP/IP suite protocol known to be a File Transfer Protocol. It is also known to use the Transport Control Protocol (TCP) as its transport (end to end connection)and actually uses two ports: 20 and 21. If you look at those ports, one controls data flow and the other actually transmits data. This is important in that when we use FTP we are declaring that the information being sent is critical and we need confirmation that it is being received correctly. Conversly, TFTP uses port 69. The Trivial File Transport Protocol uses UDP, a connectionless protocol, which assumes that the data is not critical. In the case of UDP, we're saying that we'd like to send information, but It's not neccessary to acknowledge it. Both these protocols are part of the TCP/IP suite, and both use a different transport method. My question would be in regards to the 1024 well known ports and whether there are assignments specifically designated to the TCP/IP suite, or is rather just a matter that applications developed using these ports use this standard for the sake of continuity? If you wish to extend this discussion, we could consider why anyone would consider using a connectionless protocol at all, considering it's un
Re: Need help in hooking up the console port to a computer on a [7:9932]
Don't feel insulted by this, cuz I did it for about an hour once... Is your Palm HotSync Manager running and tying up the serial port? Also, if you are using SerialB, do you have it set in the BIOS for Infrared (thereby disabling the physical port)? Nate Ajay Pandey wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... I am using a roll-over cable.. Ajay Pandey wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... Hi, I just bought a used Cisco 2520 router and as per instructions, I connect the console port using the RJ-45 cable to a DB9 (I also tried connecting it to a DB25) and connected it into my computer running Win Me. I setup the hyperterminal according to the setting, Baud rate etc., given on the online documentation and it said it is connected. But there was no CLI of the router, also it remained connected even if I powered off the router. Please help me in troubleshooting this as I am new to Cisco hardware. Thanks a lot. Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=9932t=9932 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Passed the CCIE written by accident-should I retake? [7:9733]
Since I realized I would never feel ready for the CCIE, I figured the best way to prepare for the CCIE written was to take it once, try to get a feel for the subject material, topics and format, then go home, study anything that was a total surprise, and take it again. ($300 for the test, instead of $3000 for a class). Trouble is, I passed the test-- barely. I got a 70%, the absolute minimum passing score. I realize the lab is challenging, and since it's at least 6 months out for me (full schedule in NC and CA), I'm trying to figure out if there's a good reason to retake the written. I did notice that you need to submit your score when logging in to the Lab scheduling system. BTW, I thought the CCIE written was too easy and too difficult at the same time. I really don't see the need to have memorized tons of TokenRing bridging techniques in today's Ethernet world, but concurrently, I would have liked to be more challenged with OSPF and BGP questions, things that are critical to today's Internet world. I wonder how many people on this newsgroup realize that ARIN has allowed backbone carriers to only advertise /20 bits to BGP peers and how this threatens the integrity of the 'net? (Also hats off to uu.net for continuing on with /24! Damn you sprint!) Congratulations to anyone who has worked hard to learn internetworking. Certified or not. Nate Vanderschaaf Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=9733t=9733 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: cisco 2600 BOOT ROM? [7:8864]
There are 2 boot rom chips on a 2600, and you can order them from Cisco. I tried replacing them on a 2620 once to fix a problem... Thanks -Nate anthony moore wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... There are two chips on the systmem which are right next to each other and right next to the fan on a 2600 series router. I though that they were the BOOT ROM. I was later told that the boot ROM is only one chip. To make a long story short I have a router that is not working. One of those chips is missing. I replaced them with the chips from another 2600 series router and it worked. Just plopped them in the slots. Any idea what those chips are, if not BOOT ROM? Know where I can get a diagram of a 2600 series router motherboard? Thanks Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=8875t=8864 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Channelised DS3 question [7:7655]
You can get in a C-DS3 PA with one or two DS3s... I have 6 of these, and love them... PA-MC-T3 http://www.cisco.com/univercd/cc/td/doc/pcat/mucht3a2.htm PA-MC-2T3+ http://www.cisco.com/univercd/cc/td/doc/pcat/mucht3a1.htm -The Nate suaveguru wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... hi all, Please advise whether Cisco 72XX or 75XX series routers can support CHANNELIZED DS3 interface? If so, please advise what model of interface is required. I need to aggregate many T1 leased lines together in Hong Kong and it would be convenient to do so using a single DS3 interface at the central site. regards, suaveguru __ Do You Yahoo!? Get personalized email addresses from Yahoo! Mail - only $35 a year! http://personal.mail.yahoo.com/ Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=7671t=7655 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: CEF/dCEF [7:7330]
The load balancing packet-by-packet is just that, but it is NOT bit by bit... But is usually works out great... I turn CEF on in my configs by default, just cause it makes me feel better... -Nate West, Karl wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... To all: I understand the features that CEF/dCEF provide for high end VIP based routers. I know the 3600's and 2100's has CEF options in their IOS, what would running CEF on these platforms benefit me? Karl Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=7476t=7330 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: low-end router that does inter-VLAN routing [7:7256]
That would be a great router... It has lots of interfaces too!!! (BRI, 2 serial)... And lots of memory On the 262x, you need IP PLUS, which is already on this router... -Nate Priscilla Oppenheimer wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... Still on a quest for a low-cost router that will run ISL and 802.1Q. There's a used 2621 that I may be able to get. Would it run ISL and 802.1Q and how would I know? I know the hardware supports it. How about the software? Here's all I know about it: Cisco Internetwork Operating System Software IOS (tm) C2600 Software (C2600-IS-M), Version 12.0(7)T, RELEASE SOFTWARE (fc2) Copyright (c) 1986-1999 by cisco Systems, Inc. Compiled Tue 07-Dec-99 02:21 by phanguye ROM: System Bootstrap, Version 11.3(2)XA4, RELEASE SOFTWARE (fc1) System image file is flash:c2600-is-mz.120-7.T.bin cisco 2621 (MPC860) processor (revision 0x102) with 32768K/8192K bytes of memory. Processor board ID JAB04230ASH (1606890861) M860 processor: part number 0, mask 49 Bridging software. X.25 software, Version 3.0.0. Basic Rate ISDN software, Version 1.1. 2 FastEthernet/IEEE 802.3 interface(s) 2 Serial(sync/async) network interface(s) 1 ISDN Basic Rate interface(s) 32K bytes of non-volatile configuration memory. 16384K bytes of processor board System flash (Read/Write) Thanks and sorry for all the dumb questions! Priscilla Priscilla Oppenheimer http://www.priscilla.com Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=7478t=7256 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Private ASN question [7:7474]
I think you want BGP confederations... They work like EBGP between the different private ASs in the real AS, and normal IBGP with in the private sub as... router bgp bgp confederation identifier bgp confederation peers neighbor x.x.x.x remote-as ---this is IBGP neighbor x.x.x.x remote-as ---This acts like EBGP, (need to use ebgp-multihop if that applies) neighbor x.x.x.x remote-as---Just like you already have... Nothing changes here... If this as is not in the peers list, it will act like the router is configured for the identifier ... Hope this helps Thanks -The Nate tgainer wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... I am thinking about a private asn to segregate a part of my network. Will updates between my private asn and my public ans follow the rules of an eBGP neighbor or a iBGP neigbor? Can I connect the private asn to a router reflector client and have it act as a eBGP neighbor. Thanks in advance, Thomas Gainer Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=7479t=7474 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: RIPv1: why /32 route is distributed [7:7010]
Are you running ppp and getting a peer neighbor-route of the IP on the other end... This can be turned off by no peer neighbor-route on the interface, and having ppp re-negotiate. Thanks -Nate Jerry Seven wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... Hi Group, In this simple environment: 172.10.12.0/25 R1R2 I run RIPv1 between R1 and R2, the network in between is 172.10.12.0/25, on R1 I have loopback0 which is 172.10.0.1/32 and another network 172.10.11.0/28 directly connected, I saw R1 distributes route 172.10.0.1/32 to R2, but not 172.10.11.0/28. I understand that 172.10.11.0/28 should not be distributed, but why /32 route is distributed, on R2 I saw route 172.10.0.1/32, how does R2 correctly know the mask is 32 bits, for I run RIPv1, packet doesn't carry mask. I also tried redistribute other /32 routes from OSPF to R1, R1 also redistribute them to R2, why /32 routes are always redistributed out by RIP. The versions are all 12.0. Thanks, Jerry Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=7016t=7010 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: How to configure 1601 to load balance 2 Internet circuits [7:7018]
Wouldn't it make more sense to do CEF packet-by-packet? (a lot less load on the router than process switching), If you wanted it to do it at all... It would kind of scare me to turn in on in this case because there is a GREAT chance of packets arriving out of order (the ones that go out the fast connection would arrive sooner)... Session-by-session would seem to fit a little better when the links are so varied in bandwidth. http://www.cisco.com/univercd/cc/td/doc/product/software/ios112/ios112p/gsr/ cef.htm#xtocid2626427 in global: ip cef on each interface that traffic can go out: ip load-sharing per-packet to verify, sh ip cef 0.0.0.0 0.0.0.0, this will say either per destination or packet Thanks -Nate Kelly Hair wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... And turn off fast switching if you want per packet load balancing: int s0 no ip route-cache If you do not need process switching then leave the interface it its default switching mode.. I would think you would want to load balance per packet so it appears to be equally slow/fast as compared to this connection rocks and why does this connection suck so bad? Assuming the traffic is IP another modifications you can look at that would be pretty easy to setup: Setting ip policy on the BRI/serial interfaces with the T1 interface transporting packets matching a route-map of say 400 bytes to 1500 bytes and those smaller going across the BRI... It would look something like this: int bri0 ip address a.a.a.a x.x.x.x int s0 ip address b.b.b.b x.x.x.x int eth0 ip addresss c.c.c.c x.x.x.x ip route-cache policy ip policy route-map inet route-map inet permit 10 match length 400 1500 set ip next-hop route-map inet permit 20 ip route 0.0.0.0 0.0.0.0 HTH Kelly - Original Message - From: Mike Nygard To: Sent: Saturday, June 02, 2001 4:59 PM Subject: Re: How to configure 1601 to load balance 2 Internet circuits [7:6911] Hello Justin, The easiest way to resolve this would be to use multiple default routes from global configuration: ip route 0.0.0.0 0.0.0.0 ip route 0.0.0.0 0.0.0.0 The router will load balance between the 2 routes. Thank you, Mike Nygard Justin Lofton wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... I have a customer that has a 128k connection to the Internet and they are bringing in a T1 to the Internet but they want to load balance on both circuits for a week to be sure the new circuit is working properly. What is the simpliest way to configure this scenario? Can I set multiple last resort gateways or what? Please help! Thanks everyone! Justin Lofton Account Executive/CCNA Tredent Data Systems [EMAIL PROTECTED] V: (818) 222-3770 F: (818) 222-3778 http://www.tredent.com/ Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=7018t=7018 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: BGP -Maximum Paths [7:6887]
It seems that if you are only getting partial routes from each of the connections, you are probably using your gateway of last resort for most of your outbound traffic. When you enabled the maximum-paths, you enabled load balancing for the partial routes you are getting, but again, that is probably not what most of your traffic is going to. I would then configure 4 default gateways, one for each T1. You should then load-distribute per-desiccation/per-session. Thanks -Nate moe humm wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... Hey gang, I have a question on maximum-paths in BGP; This is the scenario: 4 T1's running EBGP to our ISP in a multihome peer session; each of the circuits go to a different POP. Each of the peer sessions receive a partial routing table from our provider. What we have found is that load sharing (outbound to our ISP) is virtually non-existant. well, i'm studying for BCSN and came across the maximum path feature, and it seems like the solution. My question is this: we have enabled maximum-path 4 to load share between the four sessions. This, however has had a neglible effect. Does the fact that we still hear routes from the provider from different pops affect this? In other words, since the 4 pops are in a different geographical area, and therefore may send a different bgp table which in turns overrides the maximum path command. I want to try having the provider send a default route instead; the thought being that our router will not have to decide on best paths, and leave that to ISP router, but the powers to be don't want that (for some reason...) Does anyone have any suggestions? thanks all, moe _ Get your FREE download of MSN Explorer at http://explorer.msn.com Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=6907t=6887 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Speed of a serial interface [7:6645]
Show controllers gives a received clockrate. Thanks -Nate STRAND Scott wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... How do you tell the actual speed of a serial interface. I know it is not the BW command and there is no clock rate set. Is there a command? Thanks, Scott Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=6789t=6645 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Can anyone shed the light on Cisco AUX port? [7:6640] - Yes [7:6706]
But your missing the point... The 2600 series routers has two slots... With a max of 32 lines per slot, add one and you get 65 for the aux... Same with a 3640, 4 slots 4x32+1 =129 for aux port... Now wait a minute. I didn't say the 2600 has two NM slots. It has slot 0 which is a fixed lan interface config with two wic slots and slot 1, the NM slot. That is still two slots. from http://www.cisco.com/univercd/cc/td/doc/product/access/acs_mod/cis2600/net_m od2/conntser.htm The interface number of a port is determined using the following relation: interface-number = (32 x slot-number) + unit-number + 1 Thanks -The Nate Sean Young wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... The max. number of Async-line you can have on the NM for either 2600s or 3600s is thirty-two (32). I couldn't find any NM that has 64 async-line for either 2600s or 3600s routers. Therefore, the number 65 for AUX is still a mystery to me. Sean From: Neil Schneider Reply-To: Neil Schneider To: [EMAIL PROTECTED] Subject: Re: Can anyone shed the light on Cisco AUX port? [7:6640] Date: Thu, 31 May 2001 21:16:49 -0400 The 2600 series only has one NM slot, but you can buy NM modules with different numbers of ports on them. -- Neil Schneider MCT MCSE CCSI CCNP Sean Young wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... CM, I don't know where you buy the Cisco 2600s router but from what I can see in front of me, I have a Cisco 2610, Cisco 2611 and another 2621, all of them only have 1 Network Module (NM) slot. If you are referring to Cisco 3620 then I might agree with you that Cisco 3620 has 2 NM slots. Please don't give out wrong information unless you know it is accurate. Anyone else would like to comment on this one. Am I correct in this case? Regards, Sean From: Charles Manafa To: 'Sean Young ' , '[EMAIL PROTECTED] ' Subject: RE: Can anyone shed the light on Cisco AUX port? [7:6640] Date: Thu, 31 May 2001 21:27:29 +0100 Cisco 2600 is a modular router like the 3600, and is capable of supporting two modules. Whether or not these slots are populated, it doesn't change the tty numbering, i.e slot 0: 0-31, slot 1: 32-64 etc. As the AUX port is the last tty + 1, the AUX port is 65 on a 2600. CM -Original Message- From: Sean Young To: [EMAIL PROTECTED] Sent: 31/05/01 19:19 Subject: Can anyone shed the light on Cisco AUX port? [7:6640] I am hoping someone on the group can explain to me the following situation: I've noticed that on the Cisco 2500s platform, the AUX port is listed on line 1 (sine consoleport is on line 0). However, on Cisco 2600s platform, the AUX port is listed on line 65(console port is still at line 0). On the cisco 3640 router, if I put my FE module in slot 0, thenthe AUX port is listed on line 129. If I put my FE module in slot 3, then the AUX port is listed on line 97. I understand why that is the case on Cisco 2500s and 3600s platform, but apparently, the 2600s platform is really out of wack. Why doesn't Cisco make themconsistent on all platforms? I work for an ISP shop and it is hard for me to new network engineering folks about this especially when it involves async-lines, AS5300, Radius andTACACS (you get the point). I guess when Cisco controls about 90% market share of the router market, it really doesn't give a f___ about these things. No wonder why Juniper andAvici are kicking Cisco's ass in the carrier market because it makes the product moreuser-friendly (until it becomes just as big as Cisco then those guys will start acting arrogant). An explaination from anyone in this group is very appreciate. Sean Get your FREE download of MSN Explorer at http://explorer.msn.com misconduct and Nondisclosure violations to [EMAIL PROTECTED] Get your FREE download of MSN Explorer at http://explorer.msn.com misconduct and Nondisclosure violations to [EMAIL PROTECTED] Get your FREE download of MSN Explorer at http://explorer.msn.com Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=6706t=6706 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: How to determine Frame-Relay BW, Utilization, congestion etc
Try MRTG (www.mrtg.org) it's REALLY easy on Win32. max hill [EMAIL PROTECTED] wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... Hi All, I was wondering if someone could tell me a good way to determine what the utilization, performance, BW, congestion etc is for a frame-relay network. I am trying to figure out the current network condition and if I need additional BW for new remotes sites that are about to be added to the network. I have a hub-spoke network with the core router PTP (sub-interfaces) with the remote sites. Also, does anyone have any experience with the best way to set the traffic up as in QOS or traffic shaping? Does this really help out in BW and performance etc? Thanks for the feedback! Max __ Do You Yahoo!? Get email at your own domain with Yahoo! Mail. http://personal.mail.yahoo.com/ _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: THANGAVEL REPLY IMMDLY.
...with the 2600s the cards are not hot-insertable... Did he try putting it in when the power was turned off? -Nate "Thangavel .V.M" [EMAIL PROTECTED] wrote in message 020b01c0ad2d$8f4d1120$[EMAIL PROTECTED]">news:020b01c0ad2d$8f4d1120$[EMAIL PROTECTED]... Hi Group, One of my friend is facing a problem,You can go thru the mail below,Did any of you faced such problem. expecting your suggestion/ solutions... Thangavel see iam having a problem. i am connecting a new wan interface card into the router which has got 2 slots. the router is 2600. the existing wan card is in W1 slot.this card has got 2 ports. iam using only one port on this card for ISP connectivity. when i insert the new card, onto the w0 slot of the router,i can see that interface as s2. i configure it. still iam unable to bring up the line. the serial0 goes down.when this is up. when the CONN led of the interface glows, it is only for one port. the first card show, intreface down,line protocol down. when i remove the second card physically,then the first card comes up as usual and i have the connectivity. when i stop the CSu/DSU power for the first card, the second card's conn LED glows. what could be the problem??? can u help me?? write back asap. _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
