RE: Took the new switching this weekend [7:70225]
When I took the CCNP Remote access exam last month I was surprised to see the '?' work in the simulator questions. It actually went even farther, it grayed out the commands that don't apply to the sim, and bolded the 4 or 5 that were possible answers. Almost made it TOO easy at that point. Mike -Original Message- From: Priscilla Oppenheimer [mailto:[EMAIL PROTECTED] Sent: Thursday, June 05, 2003 6:58 PM To: [EMAIL PROTECTED] Subject: RE: Took the new switching this weekend [7:70225] The help function worked!? Cool! (I assume you mean you could type a question mark and see possibilities?) Way to go Cisco. That's a good change, considering the fact that real network engineers depend on the question mark. :-) Priscilla Weaselboy wrote: I took the new switching beta this weekend (I'll find out if I passed sometime in the future). Since I passed the old version, I figured I'm qualified to make a comparison. The old exam was ridiculously heavy with type-in-the-command type questions - a pure memorization-fest. The new one is much more theory and how technology works. I also noticed a bunch of things covered that I would have thought belonged on the routing exam, but maybe they're trying to spread things around a bit more. I had one fairly easy simulation question. You had to configure like four simple things, which means issuing several commands; but the help function worked, so you could hash things out pretty easily. I always wonder about whether your suppose to save your configuration as part of the exercise; hopefully I don't get marked down for doing that! Here are some acronyms you should know: MST, VRRP, RSTP, SPAN, CoS, HSRP, AVVID and VLAN Tunneling. I would also make sure you understand how ACLs and the VLAN equivalent work (VLAN filtering maybe, I don't remember what it's called). It didn't seem that hard, but I'll find out in a few months. Anybody else take it? The WB Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=70260t=70225 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Router Configuration Backups?? [7:70009]
CiscoWorks2000 will do all that and more, but that might be overkill for you. What you want can be acomplished with a few perl scripts and a few hours of programming. ___ Mike Pistone NASA - Russian Services Group Marshall Space Flight Center Huntsville, AL 35806 Ph: (256) 544-2915 Em: [EMAIL PROTECTED] -Original Message- From: Stevo [mailto:[EMAIL PROTECTED] Sent: Monday, June 02, 2003 11:37 AM To: [EMAIL PROTECTED] Subject: Router Configuration Backups?? [7:70009] Hey Group, I have a number of routers that don't get their configs backed up on a regular basis... does anyone have (or know of) any software products out there that will do the backups for me... or even better still, let me know if a config is changed by someone?? Thanks --Stevo Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=70015t=70009 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: New CCNP Exam, pls clarify [7:66599]
I think I found this link off of Prometric's site when I signed up for my BCMSN exam. They answer the question about CCDP changes and a lot of other stuff here. Mike ___ Mike Pistone NASA - Russian Services Group Marshall Space Flight Center Huntsville, AL 35806 Ph: (256) 544-2915 Em: [EMAIL PROTECTED] -Original Message- From: Priscilla Oppenheimer [mailto:[EMAIL PROTECTED] Sent: Tuesday, April 01, 2003 5:24 PM To: [EMAIL PROTECTED] Subject: RE: New CCNP Exam, pls clarify [7:66599] hinwoto wrote: Hi all, I just went for BCRAN training and I got information from the instructor that there will be new CCNP version exam. It will be launched about June / July this year. According to him, if u wanna take the old CCNP exam , please quickly have all the 4 exams passed before the new one launched, since the old exam wont be valid, I don't think that's how it works. Cisco wouldn't be THAT mean. I would question your instructor on this. Was the training with a certified Cisco Learning Partner? They would be more knowledgeable. Or try to talk to Cisco directly. Does anyone remember how it worked when they replaced Routing with BSCI? If you were already in the process of getting your CCNP, couldn't you use a pass on Routing to finish, even though that exam had been replaced? Priscilla let say we have passed 3 exams, and unfortunately before we take the last one, the new CCNP version has been launched all the 3 exams are invalid .. by then.. I've been trying to search such information on www.cisco.com but I am still unable to get the straight info. Please, show the light, if you guys know for sure. It will be very helpfull for my consideration about taking the exams Thanks and cheers Hin Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=66653t=66599 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: OT - CDP: Is it treated as a 'vulnerability' in yo [7:65347]
The NSA has an un-classified Securing Cisco Networks document that I found last year. I think it is linked off of www.nsa.gov somewhere. It is an excellent document dealing with all aspects of securing your network, including CDP I believe. From what I remember, it was developed for their use, but decided to release it to increase the security of the countries infrastructure. I just looked up the link -- it's at http://www.nsa.gov/snac/index.html Mike ___ Mike Pistone NASA - Russian Services Group Marshall Space Flight Center Huntsville, AL 35806 Ph: (256) 544-2915 Em: [EMAIL PROTECTED] -Original Message- From: Priscilla Oppenheimer [mailto:[EMAIL PROTECTED] Sent: Thursday, March 13, 2003 12:17 AM To: [EMAIL PROTECTED] Subject: RE: OT - CDP: Is it treated as a 'vulnerability' in yo [7:65251] chris kane wrote: It recently came to my attention that my company may plan to disable all CDP in our network. The current vibe is that they see it as a security risk. My intent is to research this and provide a paper arguing for the use of CDP. The purpose for my post is to see if my opinions of the benefits of CDP are realistic (sanity check) and to see how others view CDP, weighing it's usefulness vs. any possible risk. I have already begun researching any security releases on CCO in regards to CDP. Initial scan shows a 'vulnerability' notice that Cisco most recently updated on Feb 12, 2003. This information can be found at this link: http://www.cisco.com/en/US/partner/tech/tk648/tk362/technologies_tech_note09 186a0080093ef0.shtml Looking at CDP from a troubleshooting tool perspective, I am all for it. I've personally been saved unknown hours tracing down a problem because CDP allowed me to bounce around the network quickly. Our network is not small. And as most people would agree, documentation is never what we all would like it to be. Therefore, I find that CDP's ability to display the network below Layer 3 is appreciated. So will a hacker appreciate CDP's ability to display information about the internetwork. I think that's the reasoning behind the security experts saying to turn it off. That is indeed the current vibe. I took a Cisco security class at the Usenix Security Symposium in August 2002. The instructor said to turn it off. Have you looked at the documents at the Center for Internet Security? They have benchmarks for Cisco security. They have 2 levels. Even with the less severe level, they say to turn off CDP. The Center for Internet Security tries to develop consensus on security measures. Their partners include The SANS Institute, the DoD Computer Emergency Response Team, NASA, National Institute of Standards and Technology, etc. Their Web site is here: http://www.cisecurity.org/ On the other hand, I think you could certainly make a good case for not disabling CDP. Being able to troubleshoot efficiently is just as important as security when considering network availability. A network that's broken and due to typical network problems is experiencing a denial of service just as bad as if a hacker had broken in. Good troubleshooting tools mean a more available network, there's no question. I hope others answer too. I know that all the security people say to turn it off and most people who actually work in the trenches say, Hunh? Priscilla Also from a tool perspective, I know CiscoWorks has tools to offer that utilize CDP. And I've seen software from other companies that does as well. Think Layer 2 traceroute capability. Looking at CDP from a multi-vendor platform perspective, I realize that it's often beneficial to turn off CDP on interfaces that connect to non-Cisco devices. No point in bothering a non-Cisco device with traffic that it can't process. But note, this is not turning off CDP globally per router/switch, but rather, disabling on an as-needed basis per interface. I'd like to hear other views and I'd appreciate feedback and opinions about this. Thanks, -chris Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=65347t=65347 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: CiscoWorks on Solaris or Win2K ? [7:62226]
CW2k on WIN2k or NT4 is horrible in my experiences. I had it on a dual P-III (over 1k MHZ each) w/ 1 gig of ram, and it crawled. Nothing else could run on the system and CW barely worked. Plus I know several other people in my department who had the same experience. I put it on a Ultra 3 and had no problems. The windows overhead takes up too much of what CW2k needs to breathe... Mike ___ Mike Pistone NASA - Russian Services Group Marshall Space Flight Center Huntsville, AL 35806 Ph: (256) 544-2915 Em: [EMAIL PROTECTED] -Original Message- From: HulaJoe [mailto:[EMAIL PROTECTED]] Sent: Thursday, January 30, 2003 7:06 PM To: [EMAIL PROTECTED] Subject: CiscoWorks on Solaris or Win2K ? [7:62226] One more thing - Is anyone running the latest version of the LMS suite on an Ultra-II ? I have a choice between an Ultra-II with dual 166Mhz, 512Mb RAM, or a Dell 2400 with Dual P-III 500Mhz and 512 MB RAM. I figured that the native port on Solaris would perform better. Any suggestions ? Thanks - Joe -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of HulaJoe Sent: Wednesday, January 29, 2003 10:35 PM To: [EMAIL PROTECTED] Subject: CiscoWorks Support for Solaris Intel Builds [7:62168] Does anyone know, has anyone performed a successful install of CW2K on an Intel build of Solaris ? Mahalo! Joe Try not to become a man of success, but rather try to become a man of value. - Albert Einstein Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=62249t=62226 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]