hi all !!! [7:33288]
Dear Group, I passed the CID montser yesterday the very tough exam i had ever seen harder the the Win2k 4 hours accelerated But i managed to pass it. Can anyone guide me what are the exams needed for CCNP security specialization, I recently installed a firewall and also vpn through that firewall I want to attempt this exam. Thanks. [GroupStudy.com removed an attachment of type image/jpeg which had a name of Glacier Bkgrd.jpg] Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=33288t=33288 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
To All My Brothers and Sisters on this List !!! [7:19561]
To All My Brothers and Sisters on this List and in America, I am an Indian and I would like to express my condolences to all my brothers and sisters of groupstudy and the whole American people with whom I have been exchanging brilliant ideas and advises over the past couple of months now. I am not able to express my sorrow over this tragic and inhuman activity which certainly is bad in each and all aspect of religion, race and laws. We all are humans first and we follow one religion which is humanity. If we fail to comply with this religion of humanity we are not qualified for being part of any religion on earth. I express my sincere gratitude towards all of them who have lost their loved ones and pray for the souls of the Lost to be in peace and under God's mercy. India is been under a crisis earlier in this year when there was a tremendous big earthquake in India which shattered many of the lives and had left a big impact on the hearts and minds of all Indians. We are thankful to the whole world for supporting us in bad times. I wonder if the whole world could be like in a virtual community like groupstudy where we forget race,religion and culture and work on one mission which is Peace and Happiness. Peace, Raees [GroupStudy.com removed an attachment of type image/jpeg which had a name of Glacier Bkgrd.jpg] Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=19561t=19561 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Pix config file !!! [7:17296]
Hi all, I just wanted to know how to upload and download the files from the Pix to the tftp. I am talking about the startup-config file. I am using PIX 525 without a FDD, and software 5.2 (5). I can upload files from the firewall using the write network command. I am not able to copy the file back from the tftp to the firewall. Please let me know if there is any specific procedure. I tried copying it through the copy command from the firewall, but I think it is trying to copy the Firewall IOS file, and not the config file. I think this copy operation is like a cut and paste operation because it reads erasing the flash. If I want to copy the IOS from the PIX to the firewall is there any harm, meaning to say will the original IOS, activation keys and PIX license setting will be lost. Any help will be appreciated. Thanks in Advance, Best Regards, Shaikh Raees [GroupStudy.com removed an attachment of type image/jpeg which had a name of Glacier Bkgrd.jpg] Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=17296t=17296 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
PIX with Msproxy !!! [7:16003]
Hi all, Just a question about pix, If anybody has implemented Pix in a Microsoft NT based network. Using MS proxy for authentication authorization and accounting. I am just asking if it is possible to use a proxy server on the DMZ of the firewall, and allow all internal users to use the proxy for browsing, ftp etc. This proxy will be a member server of the internal NT network. This member server should use the NT Domain database for authentication and control. Which ports should be opened from the DMZ to the internal network so that the Microsoft RPC traffic should be able to flow and the users across the Pix firewall get authenticated through the proxy server. Thanks in Advance, Internet---PIX-DMZ( MS proxy Server) | | Internal network with NT Domain Controller browser clients [GroupStudy.com removed an attachment of type image/jpeg which had a name of Glacier Bkgrd.jpg] Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=16003t=16003 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Off Topic: DNS issue !!! [7:12448]
Dear Friends, I am facing a very strange problem with our Mailing System Exchange5.5sp4. The issue is that we are not able to send email message to some of the sites on the internet. Most of the other popular sites , you can say 90% of the sites are reachable by our email clients. But when the clients try to send message to those few site, they get and Non-Delivery-Report saying that the mail could not be delivered. Strange enough that email address is reachable through yahoo, hotmail and other sites. I have checked our router for any access-list blocking but I am sure nothing is of that sort, no access-lists are controlling those addresses. Our ISP from whom we are connected to the internet is also able to reach that sites. But we using the ISP's DNS servers for name resolution cannot connect to those particular hosts. One strange behavior though, when I tried to trace route a website add, for that particular mail host, I is taking more than 15 hops and then declared unreachable by our Static Router, No Dynamic protocol is running between us and our ISP, we are using default route. Any help or insights would be valuable and really be appreciated. I know this has nothing to do with Cisco, but the fact is Applications, and User Usability is driving the Technology. so this mail is not so uncommon for a Cisco SE. Thanks and Regards, S. Raees [GroupStudy.com removed an attachment of type image/jpeg which had a name of Glacier Bkgrd.jpg] Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=12448t=12448 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Claim your Free 4-In-1 Super Pen, it's been paid for by... [7:11757]
QuestionsResponse Do you own or use any kind of PDA(Personal Digital Assistant)? yes Do you own or use a digital camera or camcorder?no Do you own or use a Sony game console such as PS1,PS2 or Gameboy? no Do you own or use a MP3 player? yes Do you own or use a DVD player? no Group Profile: Area CodeGender: Male Age Group select 19-30 Income select below less than 40-60k Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=11757t=11757 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
PIX Recommendations !!! [7:11651]
Dear all, Thanks for all the suggestions and explanations. The main core reason for asking for the recommendations was, that I was not really sure about the critical balance between security and usability. Everybody know about the MS-Proxy and its vulnerabilities and its openness to attacks. We bought the PIX just to secure our network from all those unknown vulnerabilities, I personally thought PIX box would be a nice buy. since it is less prone and has some built-in functionality to prevent such vulnerabilities. The question which I face now is production change without interrupting the business, and change of activities to our end-user, meaning to say the end-users should not feel that something has changed. Moreover the integration of the PIX with the current NT security model, the URL filtering option, and various DNS records modifications made me think to keep the proxy in its place and add the PIX as the first line of defense. Internet---Router---PIX---MSPROXY-LAN A simple question which always comes to my mind concerning security is that, if the internet users have sessions to our MSproxy server and internal network, Isn't our internal network still vulnerable to those attacks which were their prior putting the PIX. We have enabled Winsock apps on the proxy, and lot of apps are been used by our LAN users. Was that PIX, worth a buy. etc etc. Still not sure how the final design will look like. Just putting more time and research onto it. Thanks and Regards, Shaikh Raees [GroupStudy.com removed an attachment of type image/jpeg which had a name of Glacier Bkgrd.jpg] Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=11651t=11651 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
PIX recommendations !!! [7:11336]
Hi all, I just need some of the recommendations to install a PIX box 525 in our network, currently we have MS proxy in our network, Should I replace proxy with the PIX, or use two level of defense, comprising of PIXProxy. We have some application level url filtering software running on that proxy as well. Moreover the MS-proxy is using the NT Domain Security Model and thus using cut-through proxy feature, can that security be available if I go on, with PIX. Without the Ms-proxy is it possible to use the same NT database for cut-through authentication. Some helpful tips please which will help me in the designing process. Thanks in advance and Best Regards, Shaikh Raees, CCNP,CCNA,CCDA,MCSE,MCP,CNE,CCIE Written. [GroupStudy.com removed an attachment of type image/jpeg which had a name of Glacier Bkgrd.jpg] Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=11336t=11336 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: PASSED BCRAN! + BIG gripe [7:7794]
This is ridicously serious, are u joking I guess if he reads the question alone without answering them it will taken him more time than that. Perhaps you are talking about the real jet net. No flames, -Original Message- From: Jayesh Patel [mailto:[EMAIL PROTECTED]] Sent: Tue, July 03, 2001 11:22 AM To: [EMAIL PROTECTED] Subject: Re: PASSED BCRAN! + BIG gripe [7:7794] Hi Just for you info my brother passed his BCRAN 7 min with a score of 930. He passed his CIT in 5 mins at a score of 954 and Switching in 9 min a score of 870. Regards Jayesh Patel CNE,MCNE,MCP,MCP+Internet,MCSE,CCNA,CCDA,CCNP,CCDP,CCIE written,CCNP + Voice Access, CSE in Small Business,CSE in Enterprise Business and CSE for Voice Access Solutions. - Original Message - From: hal9001 To: Sent: Saturday, June 09, 2001 9:49 AM Subject: Re: PASSED BCRAN! + BIG gripe [7:7794] The Syngress Published book CCNP Remote Access Study Guide ISBN:007211908X has an excellent section (Ch2) on ALL of the relevant Cisco Router offerings. The IDG I find that its better, if you can afford it, to not stick with just one source but go to multiple sources not only to get a balanced view but also to find other information omitted by another publisher/author. The future gains always (hopefully) outweigh the present costs. After all, all these books are just an authors/publishers interpretation of the Exam Objectives. Its pot luck what questions you get in the exam so best to cover ALL the bases if you can. Karl - Original Message - From: Michael L. Williams To: Sent: Friday, June 08, 2001 10:23 PM Subject: PASSED BCRAN! + BIG gripe [7:7794] Hello all.. Passed the BCRAN with an 898 today. not a bad exam. A couple of vague questions (or questions that seemed to have more than one correct answer but only one answer was asked for). Even took time to write some comments and finished in 35 minutes. One HUGE gripe: The Cisco Press book had a huge chapter on the Cisco 700. The Exam Cram Remote Access book had a pared down chapter on the 700 just highlighting the stuff you need to know for the exam (which was nice). I had maybe 2 or 3 questions about the 700 series. BOTH books had a single, small paragraph on the 1600 series tho saying it's for branch not SOHO and takes a WIC card. THAT'S IT! I went through all 4 quizzes in both of the Boson BCRAN exam 1 and 2 (over 400 questions) and I kept getting hammered with questions about the Cisco 1600 and what interfaces the different models had (something neither book had any details about). Lucky for me I tried to take note, instead of blowing it off, because I got as many if not more questions about Which model of 1600 has a 56K/ISDN/Serial port than I did about the Cisco 700. I have to say that I'm disappointed that there were so many questions about the 1600 series compared to the 700 series, yet the Cisco Press and Exam Cram book barely mentioned them I can't believe the Cisco Press book dedicated a very lengthy chapter to the 700 with so few questions on the exam while virtually ignoring the 1600! KUDOS TO BOSON for making practice exams that not only are a good simulation of the real exams but also covered material that exam creators didn't even include in their own study book (Cisco!). I owe my 898 to Boson for hammering me with 1600 questions and letting me get the info I needed for the real exam while I was practicing for it. Now on to Support for CCNP then CID for CCDP Woohoo! Thanks to everyone for the group.. seeing people in the group talking and passing exams motivates me to keep going! Mike W. Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=10787t=7794 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Browser Issue with Network Neighbourhood [7:10780]
Can you see your local machine in network neighborhood itself, if not you have problems in configuring your browse master, the wins server or lmhosts. If using NT trying browing the server using the server's ip address through the run command. From the run eg \\150.160.X.X -Original Message- From: Richard Spencer [mailto:[EMAIL PROTECTED]] Sent: Tue, July 03, 2001 11:51 AM To: [EMAIL PROTECTED] Subject: Browser Issue with Network Neighbourhood [7:10780] Hello i am unable to browse the network through a router, eg. i can ping the server and the server is our dhcp which we get our Ip address from. When we go to the Network Neighbourhood icon it is unable to see the server or any other servers for that matter We are using IP and tried with Ipx and netbeui for the hell of it even though its not a routed protocol. can anyone help ??? any advice is better then no advice even if its just a one line comment thanks Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=10789t=10780 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
debug !!! [7:10598]
Dear Friends, Can anybody suggest some parameters about debug, I want to check the ip traffic details between two point to point connections only, which options from the debug command should I used, I just want to know the traffic flow between two ppp points, there might be more serial and Ethernet connections available on the router. Any help appreciated. Thanks Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=10598t=10598 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: debug !!! [7:10598]
It does not give the specific details for one particular port, it is a generalized command. -Original Message- From: FELIX KISSIEDU [mailto:[EMAIL PROTECTED]] Sent: Mon, July 02, 2001 11:19 AM To: [EMAIL PROTECTED] Subject: RE: debug !!! [7:10598] try debug serial interface command Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=10606t=10598 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Console command [7:9805]
Dear All, Pls suggest the command to break into the console, once it is showing lot of debugging output on the console, and we want to log into the router for checking the util etc. Can we interrupt the logging on the console to give preference to keyboard commands view and not to the console message, I tried no console logging, but it stops all the messages, I want to view the console message but want to type some commands as well I need preference when I am typing something on the console. Any help appreciated Thanks in advance, Raees Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=9805t=9805 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Natting !!! [7:9496]
Hi all, A question about natting/patting. Can two duplicate private ip address communicate with each other over the internet. The example below assume there are two sites using the same private address of class b range and they happen to use duplicate ips. Client A Client B 172.16.1.1---PIX---Internet-PIX---Internet--- PIX150.150.1.1 Inthis example clientA is under a private site which is using a public ip address range of 150.150.1.1, which he had configured by himself, the range is not given by an ISP, he is connected to the internet by a firewall and he happens to access a site which has an public registered webserver from the same range 150.150.1.1, Will he able to connect to that webserver, Please explain if yes/no. Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=9496t=9496 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Natting !!! [7:9500]
Hi again, The first email seemed to lose formatting sorry about that clienta(172.16.1.1)--PIX---internet-PIXclientb(172.16.1.1) the second example client1(150.150.1.1)---PIXinternet--PIX-Webserver(150.150.1.1) Thanks Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=9500t=9500 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Natting !!! [7:9496]
Thanks for the reply Micheal what about the second option Clienta(150.150.1.1)PIXINTERNET(Webserver 150.150.1.1) Sorry the example which I quoted earlier carried a pix on the otherside aswell but I mean a host on the internet. thanks -Original Message- From: Michael L. Williams [mailto:[EMAIL PROTECTED]] Sent: Fri, June 22, 2001 2:48 PM To: [EMAIL PROTECTED] Subject: Re: Natting !!! [7:9496] I don't see why not. The address of Client A will get translated to a real Internet IP (by your NAT at Site A), then the packet will go to Site B, where it will be seen as any other internet addressed packet, and get translated by the NAT at Site B. I don't see why there would be any issue. Having said that, I know there are some applications (like ICQ) that won't let things that require a direct connection to happen (like file transfers) if both parties are behind NATs. (unless there is some fancy port forwarding, etc). My 2 cents. Mike W. Raees Ahmed Shaikh wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... Hi all, A question about natting/patting. Can two duplicate private ip address communicate with each other over the internet. The example below assume there are two sites using the same private address of class b range and they happen to use duplicate ips. Client A Client B 172.16.1.1---PIX---Internet-PIX ---Internet--- PIX150.150.1.1 Inthis example clientA is under a private site which is using a public ip address range of 150.150.1.1, which he had configured by himself, the range is not given by an ISP, he is connected to the internet by a firewall and he happens to access a site which has an public registered webserver from the same range 150.150.1.1, Will he able to connect to that webserver, Please explain if yes/no. Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=9501t=9496 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
unsubscribe [7:2877]
Pls stop my subscribtion to the mail for the coming next 4 weeks as I will be out of my office. Thanks. unsubscribe Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=2877t=2877 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
CCIE Writtern Passed !!! [7:2446]
Dear All, Thanks to you all, for the inspiration and support and in-depth technical knowledge provided with your discussion and mails. Thanks again. Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=2446t=2446 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: switch capacity - back plane
Consider, The switch as a pc for a while, where the total ports bandwidth capacity is the size of your pc's hard drive, and the switch back plane is the Ram installed in your pc, Should this two capacities be equal ?, For any data transfer to occur between any devices example Hardisk to Hardisk or CD to Hardisk, the data is first copied to Ram and then written to the disk, thus the bigger the RAM the faster the process of copying will be. Same example can be applied in the case of the Switch ports and the Back plane engine, the more the back plane capacity the faster the data transfer, thus it is no question of over utilization. Hope it helps. -Original Message- From: Gayathri [mailto:[EMAIL PROTECTED]] Sent: Fri, March 09, 2001 11:19 AM To: [EMAIL PROTECTED] Subject: switch capacity - backplane The catalyst 6000 series supports upto 130 Gb ports. And the backplane capacity is 32 gbps. So if i use all the 130 gigabit ports , does it mean that i am overutilizing. I cant relate the sizing of the ports to the switch backplane capacity. Thanks in advance for any clarifications recvd. Gayathri _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Cisco Remote Client VPN Solution !!!
Title: Cisco Remote Client VPN Solution !!! Hi Group, I want to check that whether I can have a VPN software solution for some of our clients, who travel with their laptops to different countries, I mean a VPN tunnel from their access point to our internal LAN, and they should be able to use our resources over the internet, securely without any problems as if they were actually sitting in the office. I would prefer a Cisco solution. Sheikh Rees Ahmed, Microsoft Certified Systems Engineer, CCNA, CCDA Systems Network, IT Division.
Cisco Remote Client VPN Solution !!!
Title: Cisco Remote Client VPN Solution !!! Hi Group, I want to check that whether I can have a VPN software solution for some of our clients, who travel with their laptops to different countries, I mean a VPN tunnel from their access point to our internal LAN, and they should be able to use our resources over the internet, securely without any problems as if they were actually sitting in the office. I would prefer a Cisco solution. Sheikh Rees Ahmed, Microsoft Certified Systems Engineer, CCNA, CCDA Systems Network, IT Division.
Health Checklist !!!
Title: Health Checklist !!! These are some of the ideal counters for cisco routers network checks regarding the health of the network, No shared ethernet segments are saturated 40 % network utilization. No shared Token Ring segments are saturated 70 % utilization. No Wan links are saturated more than 70 % utilization. The response time is generally less than milisecond 1/10 of second. No segments 20% broadcasts/multicasts. No segments have more than one CRC per million bytes of data. On Ethernet segment less than 0.1 percent of packets result in collision. Input queue drops not exceeding 50 in an hour. Out put queue drops not exceeding 100 in an hour. A question comes to my mind is that Are all this counters, applicable to the real world scenarios or test labs ideal setups only. We are here in Saudi Arabia, where usually the dedicated digital lines are having lots of noises and interference, the usual counters on our routers, are having lots of CRC's, lots of input, output errors, lot of collision on the Ethernet ports, response time changes rapidly, the links flap very often, I mean to say we are working in non-ideal working condition, do these counters have a meaning to us, do we have to set our own guidelines measures, based on monitoring results since last year. Do Cisco tests their equipments in severe conditions which are far more worse than conditions in US typically. Or does Cisco has some special recommendations for these environments. Pls. give your inputs based on your experiences on different mysteries Telephone networks. Shaikh Raees Ahmed, Microsoft Certified Systems Engineer, CCNA, CCDA. Systems Network, IT Division.
Off the topic !!!
Title: Off the topic !!! Off.. the..topic help pls. I am kind'a new to UNIX. I am using a linux workstation from caldera, I want to access our microsoft proxy server to let me pass by to the internet. Is there a way to do so, I would be also interested in making this linux box client to a Win NT server if possible. Thanks and Regards, Shaikh Raees Ahmed, Microsoft Certified Systems Engineer, CCNA, CCDA, Systems Network, IT Division.
RE: BGP question - Multihoming
Title: RE: BGP question - Multihoming You can ask both of your providers to use manipulated weight to set the route preference on the ASBR's connecting to your network. MED, Multi Exit Descriminator can be used. Can you explain your scenario more clearly using ip format if possible with two ISP's connectivity. Thanks and Regards -Original Message- From: Daniel Ji [mailto:[EMAIL PROTECTED]] Sent: Friday, September 15, 2000 10:13 PM To: [EMAIL PROTECTED] Subject: Re: BGP question - Multihoming ask your provider1 NOT to aggregate your /23 block, instead advertise it alone, AND put more AS # in your updates to provider2 so as to make the route(AS_path) longer for them to reach you. hope help. Dan. Martin-Guy Richard [EMAIL PROTECTED] wrote in message [EMAIL PROTECTED]" TARGET="_blank">news:[EMAIL PROTECTED]... I have a tricky version for you guys: I am multihomed to two provider. I got a /23 from Provider1. I announce my /23 two Provider1 and Provider2. Since my /23 comes from Provider1, he is supposed to aggregate in in is /16 CIDR. But, I have to announce my /23 to my other provider. Somebody told me that the longest prefix becomes something of a traffic magnet (or something like that). So, all of my traffic would come from Provider2 and not Provider1. How is it so, since BGP use aggregation? I don't understand! MGR **NOTE: New CCNA/CCDA List has been formed. For more information go to http://www.groupstudy.com/list/Associates.html _ UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html FAQ, list archives, and subscription info: http://www.groupstudy.com Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] **NOTE: New CCNA/CCDA List has been formed. For more information go to http://www.groupstudy.com/list/Associates.html _ UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html FAQ, list archives, and subscription info: http://www.groupstudy.com Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: The H1-B Visa Program is a fraud
Full cents to youThomas I really appreciate your broad-mindedness. -Original Message-From: Raymond Thomas [mailto:[EMAIL PROTECTED]]Sent: Tuesday, September 12, 2000 1:12 PMTo: Jobs@Groupstudy. ComSubject: RE: The H1-B Visa Program is a fraud Let's close the book on H1 professionals. Why are so many of the consultants on this board threatened by them? Do you not have any confidence in your own skill-sets to keep your job or beat the other to a new one? Here is a very simple FACT: There are more available jobs in the US than there are qualified "Americans" to fill them. If you were beaten to a job by someone that needed sponsorship, there's an 85% chance that he/she was just better qualified for the position. The 15% was because the company couldn't afford you and made a "wise", yet unethical, "business decision" to use someone that needed sponsorship because they CAN and WILL low ball them. An ethical decision would be to import talent when there is a shortage, but pay them at market value. The people that require sponsorship are more desperate for work in the US because they get paid peanuts in their own country and because of a shortage in opportunities. I feel bad for them because I know what it was like to be poor in this country. Back home, my grandfather owned an oil refinery and a textile factory. My father was a doctor in our country and we were among the top 10 richest people in the whole country. We owned 3-4 mansions in each city. We came to the US as refugees when the Soviets invaded our country and we gave up everything we ever owned and worked hard for, just for the chance of living. The military now use them as army bases or meeting grounds for the generals. The US wouldn't give my father a job as a doctor so he was forced to become a cab driver for 6 years till he studied English and Medicine all over again to pass the "American Exams". We are now considered middle to upper middle class. AT first, there were 7 of us living in a small 2 bedroom apartment. One bedroom was for my mother and father and the other was for my aunt, my 3 siblings and myself. Barely ate at times. Not a great neighborhood. I have worked hard in my short life and learned so much and am willing to give up my position to someone that was more qualified than me, even if he or she required sponsorship. I am all for the H1 professionals in this world, especially in this country and those willing to give up a lot to come for an opportunity here. Only the weak feel threatened. Raymond Thomas Lewis Consultants International, Inc. 295 Northern Blvd Suite 302 Great Neck, NY 11021 (516)498-2300 ext. 103 (516)498-1749 fax (917)444-1334 pager Web: http://lewisconsultants.com
Access Lists !!!
Title: Access Lists !!! Dear Buddies, The following situation is given as an example. Router A LAN A---E0-[X]-S0--LAN B-- If I need to block LAN A access to LAN B, I can apply the access list to Router A's Ethernet E0 as in, and if I apply to the E0 out the packet should come inside checked against the out criteria and dependently dropped. I could apply the access list to Router A's Serial S0 as in, assuming the E0 accepted the packet and is forwarding to S0, so it would be an incoming packet for S0, would it work. I could apply the access list to Router A's Serial S0 as out, assuming the SO accepted the packet and is applying the list before forwarding to the the LAN B. I have not included another router just to simplify the matter. Actually I am really confused Some of the confused questions are as follows How and where should the acceslist placed and applied to the in/out of the interfaces. Is the in/out concept with respect to the link/and or interface. meaning to say if the access list is applied to an interface as in, the packets coming from outside will be tested. What about the packets coming in from the other internal interface of the router it will be treated as in or out, ( Think of a two-way door, opening both sides, which is in and which is out in respect to both sides) Is the access list common for all the interfaces, like, Ethernet, Serial, Token, ISDN, Frame-Relay. Can I apply a same access list to both in and out ports of an interface, What about different access list to the same interface. Does the access list checks the criteria , on the internal interface of the same router, meaning if an Ethernet is passing to serial is the I could only guess that access lists concepts in/out are w.r.t.x where x is the link/int or ??. If anybody could put more lights on this I would really be obliged, Thanks in Advance. Shaikh Raees Ahmed, Microsoft Certified Systems Engineer, CCNA , CCDA, Systems Network, IT Division.
No Subject
Title: Dear Folks, In the BSCN new exam, is the Ipx, Appletalk , Switching, Dial-Up monitoring and DDR included. or it is excluded. Thanks and Regards, Shaikh Raees Ahmed, Microsoft Certified Systems Engineer, CCNA, CCDA, Systems Network, IT Division.
RE: BCSN
Title: RE: BCSN I would go are B theoritically. -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] Sent: Tuesday, September 05, 2000 11:52 PM To: [EMAIL PROTECTED]; [EMAIL PROTECTED] Subject: RE: BCSN My mistake, sorry. -Original Message- From: Donald B Johnson Jr [mailto:[EMAIL PROTECTED]] Sent: Tuesday, September 05, 2000 6:37 PM To: Patrick Bass; [EMAIL PROTECTED] Subject: Re: BCSN Importance: Low Na vlans have nothing to do with the transport layer. Does it? Duck - Original Message - From: [EMAIL PROTECTED] To: [EMAIL PROTECTED]; [EMAIL PROTECTED] Sent: Tuesday, September 05, 2000 1:26 PM Subject: RE: BCSN A -Original Message- From: Donald B Johnson Jr [mailto:[EMAIL PROTECTED]] Sent: Tuesday, September 05, 2000 5:53 PM To: [EMAIL PROTECTED] Subject: BCSN Importance: Low What would be the right answer to this question. I got this off the cisco site and I answered c but they marked it rong. I think this is a mistake. Thanks Duck VLANs have been designed to _. A. address forwarding decisions based on transport layer information and spanning tree scalability B. maximize the amount of traffic switched at Layer 3 and minimize the amount of traffic switched at Layer 2 C. address the scalability issues of a flat network topology and the addition of network management through Layer 3 routing protocols D. address redundant access to the workgroup and migration of servers to server farms for increased security and management of data resources E. address segmenting broadcast domains while still providing network-wide shared services and allowing users to use hyperlinks to hop transparently between servers across enterprise networks ___ UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html FAQ, list archives, and subscription info: http://www.groupstudy.com Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] ___ UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html FAQ, list archives, and subscription info: http://www.groupstudy.com Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
passed CCDA yesterday !!!
Title: passed CCDA yesterday !!! Dear Buddies, Thanks to all of you for you kind support and technical advises, I managed to clear the exam yesterday with a modest score of 854. I mainly referred the official Cisco curriculum material. Thanks once again, I want to go for the CCNP path, I want to start with the equivalent of ACRC, please suggest me the new exam path names and good books for the same, I have my old ACRC sybex 11.3 guide can I use it for the new exam, please mention the topics covered in the exams too, Thanks in advance. Shaikh Raees Ahmed, Microsoft Certified Systems Engineer, CCNA, CCDA. Systems Network, IT Division.
Foundation Courses !!!
Title: Foundation Courses !!! Dear All, Just a question to ask, What is the foundation R S course for CCNP, What does it consists of, how is it a replacement for two-three ccnp exams and the availability in Prometric centres, also would like to know did anybody of you got his ccnp taking this foundation courses instead of the regular path, I heard that only one exam is needed in addition to FRS to achieve CCNP. Pls. throw some light on this undiscussed FRS. Thanks in advance, Bye for now Shaikh Raees Ahmed, Microsoft Certified Systems Engineer, Cisco Certified Network Associate, Systems Network, IT Division.
BGP !!!
Title: BGP !!! I was always hearing about the great BGP as a very scalar protocol with lots of advantages, and suddenly I was a little shocked to learn that it was a variant of the distance-vector-protocol I have read many books praising the qualities of link-state protocols and mentioning the disadvantages of distance vector protocols I am a bit confused as a matter of preference what should I generally speak about distance vector protocol V/s Link state protocols. Lots of lessons and surprises to be learnt more, Thanks and Regards, Pls .If somebody can elaborate and explain that will be great. Shaikh Raees Ahmed, Microsoft Certified Systems Engineer, Cisco Certified Network Associate, Systems Network, IT Division.
No Subject
Title: Dear Buddies, Is it possible to use VPN/PIX together in a corporate network. The scenario. A central office is connected to a private internal network WAN. A single internet connection from Central office to the internet providing internet connectivity to all the internal WAN users using a proxy server. Requirement. A new international site coming up needs access to the private LAN using a VPN. plus a requirement to add a PIX firewall separating the internal WAN and the internet. router Internal wan network--[pix] - - - -[x]internet[remote site] l l l (web servers) If a site is coming up somewhere on the internet and needs a private connectivity to the internal network ,which is the safest end point of the whole tunnel starting from the remote site, considering the most favorite hacker on the internet. If I am not clear pls reply I will re-write the whole scenario again. Shaikh Raees Ahmed, Microsoft Certified Systems Engineer, Cisco Cetified Network Associate, Systems Network, IT Division.
Switches !!!
Title: Switches !!! Installed a few 10/100 3com switches in our network, after a while started getting Ip conflict errors. The swithces were getting ip address from our obedient NT DHCP servers, unfortunately the switches are BOOTP enabled they got ips from some DHCP servers, ( I dont know from where as none of our DHCP servers had a reservation for those ips.). The DHCP started to lease the same address to some wins dhcp enabled clients, which was granted to the switch this resulted in the conflicts. Still trouble-shooting from where the Swiches took the ip addresses. Maybe some of you can put some light on it. Thanks and Regards, Shaikh Raees Ahmed, Microsoft Certified Systems Engineer, Cicso Certified Network Associate Systems Network, IT Division.
Switches !!!
Title: Switches !!! Dear All, Thanks for your discussions on this often ignored topic, but still I could not understand the communication logic. May be have to dig more into switching in the physical layer. If all the ports of the switches have mac addresses than q.1 If somebody telnets to swithes the actual physical communication occurs through which mac address. q.2 If two pcs are connected to the same swithc, and they want to communicate the real communication should go like this ( pc mac- switch port mac - destination switch port mac - destination pc). Totally confused arp arp arp. Please Help. Shaikh Raees Ahmed, Microsoft Certified Systems Engineer, Systems Network, IT Division.
Delay !!!
Title: Delay !!! Can somebody explain me what is delay ?? I mean the round-trip time of the packet, Is it different from media to media or it is not media-specific, secondly can I know out the links VSAT/DDN which is having a more delay over the other. We have a VSAT link 64 kbps to one of our site and a 64kbps DDN to another site the response of the DDN is much better than the VSAT. Normal pinging to the site connected through DDN is 40-50 miliseconds with one hop. Normal pinging to the site connected through VSAT is 500-600 milliseconds with one hop. Path Delay value=Link delay + Repeater Delay + DTE Delay + 5, If PDV512 the communication path is ok. Link Delay=2 X Segment Length X Cable Delay in BT/m Is the same formula applicable for WAN links, VSAT etc or it is just for ethernet networks. Pls. explain. Thanks in advance. Shaikh Raees Ahmed, Cisco Certified Network Associate, Microsoft Certified Systems Engineer, Systems Network, IT Division.
CCDA
Title: CCDA Can anyone refer to me a good book for preparing for CCDA, currently i am referring to the official cisco press study kit, but I feel it wouldn't be sufficient. Thanks in advance. Shaikh Raees Ahmed, Microsoft Certified Systems Engineer, Cisco Certified Network Associate, Systems Network, IT Division.
RE: Swithces !!!
Title: RE: Swithces !!! Thanks for your reply, but This was happening in a single subnet lan without any router/vlan in between. The arp was cleared before pinging the machine from both the pcs. The switch are stacked, all the three pcs are connected to physically different switches but same lan. An important poing I found about switches I would like to share, Normally the switch should advertise its lowest mac value to the network, and if the ip is configured on this switch this lowest mac address should be used. For instance If the switch has 12 ports with corresponding macs, 001 002 003.. ... ... It should use the lowest mac (001) for any ip based communication with another switches/pc/ devices. but if the switch is not using this default technique this process is known as some bug flaw and I dont know yet the technical term for it. Hope I am seeing in the right direction, Thanks anyway. -Original Message- From: Hitesh Pathak (CSD-BBYRO-RTSG) [mailto:[EMAIL PROTECTED]] Sent: Wednesday, August 09, 2000 11:21 AM To: '[EMAIL PROTECTED]' Subject: RE: Swithces !!! Dear, I believe that whenever u ping to any device , it's mac to ip address mapping gets added to ur arp cache table. If there is any router/switch or any other device comes in between it will return the response with that device's mac address rather than actual device. In ur case that might be happenning. Try giving # traceroute or # tracert command verify the route that it takes to reach to that device. Hitesh -Original Message- From: Raees Ahmed Shaikh [SMTP:[EMAIL PROTECTED]] Sent: Wednesday, August 09, 2000 12:07 PM To: '[EMAIL PROTECTED]' Subject: Swithces !!! Dear Buddies, Have a question about switches if anybody can put some light on it, Can a switch advertise more than one mac address, for ip communication. In our network we observed the following. Pinging and checking the arp table resulted in different mac addresses from different segments. The same ip address was ping from two different segment and on checking the arp table we found that the mac address related to the ip is different to both segments. The inference I took out from the same is that whether two different interfaces on one pc/router/or networking component could share the same ip address. Please correct me if I am missing some thing. Thanks in advance. Shaikh Raees Ahmed, Cisco Certified Network Associate, Microsoft Certified Systems Engineer, Systems Network, IT Division. ___ UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html FAQ, list archives, and subscription info: http://www.groupstudy.com Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Swithces !!!
Title: Swithces !!! Dear Buddies, Have a question about switches if anybody can put some light on it, Can a switch advertise more than one mac address, for ip communication. In our network we observed the following. Pinging and checking the arp table resulted in different mac addresses from different segments. The same ip address was ping from two different segment and on checking the arp table we found that the mac address related to the ip is different to both segments. The inference I took out from the same is that whether two different interfaces on one pc/router/or networking component could share the same ip address. Please correct me if I am missing some thing. Thanks in advance. Shaikh Raees Ahmed, Cisco Certified Network Associate, Microsoft Certified Systems Engineer, Systems Network, IT Division.
Switches !!!
Title: Switches !!! If all the ports of the switches have mac addresses than q.1 If somebody telnets to swithes the actual physical communication occurs through which mac address. q.2 If two pcs are connected to the same swithc, and they want to communicate the real communication should go like this ( pc mac- switch port mac - destination switch port mac - destination pc). Totally confused arp arp arp. Please Help. Shaikh Raees Ahmed, Microsoft Certified Systems Engineer, Systems Network, IT Division.
RE: Something that I've been wondering
Title: RE: Something that I've been wondering I guess the thousand point scheme is to maintain backward compatibility with competitors like microsoft, novell etc. and better scalability of the exam in the sense they could remove those 300 marks anytime and add some difficult questions to sum up to the existing one, and scale their exams without really much changing the pattern.. Only a guess, Pls clearup -Original Message- From: Natasha [mailto:[EMAIL PROTECTED]] Sent: Wednesday, August 09, 2000 8:53 AM To: CCIE Group study list Subject: Something that I've been wondering I feel kinda silly asking this but if the CCNA has 72 questions that means that each question is worth 13.9 points. Now from what I remember you have a possible score of between 300 to 1000 in CCNA1 Now that makes every question wortn about 7 points because you get 300 for just showing up. Why do they have to do this 1000 point thing anyway? Just to upset me? lol I just can't figure it out! -- Natasha Flazynski http://www.ciscobot.com My Cisco information site. http://www.botbuilders.com Artificial Intelligence and Linux development naughty joke A high school English teacher reminds her class of tomorrow's final exam. Now class, I won't tolerate any excuses for you not being there tomorrow. I might consider a nuclear attack or a serious personal injury or illness, or a death in your immediate family - but that's it - no other excuses- whatsoever! A smart-ass jock in the back of the room raises his hand and asks, What would you say if tomorrow I said I was suffering from complete and utter sexual exhaustion? The entire class does its best to stifle their laughter and snickering. When silence is restored, the teacher smiles sympathetically at the student, shakes her head, and sweetly says, Well, I guess you'd have to write the exam with the other hand. ___ UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html FAQ, list archives, and subscription info: http://www.groupstudy.com Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Cisco Passwords !!!
Title: Cisco Passwords !!! Is there a way to know all the passwords stored on all the routers in an enterprise network from one single console command on the root router. Thanks in advance. Shaikh Raees, MCSE, CCNA, SE Toyota ALj, SA
Cisco Ras Cisco EasyAcs !!!
Title: Cisco Ras Cisco EasyAcs !!! Dear All, I am fairly a newbie to this list, this is my first message too, Just have a question which is unanswered from so long, We have Cisco easyacs NT, running on our Cisco Router 3640. The 3640 is pointing to the Easyacs server for user names, passwords and other settings, the router is configured to take ip addresses from the DHCP server (NT) for all the remote clients calling in. The DHCP is configured with proper scopes for those clients. The router, the Easyacs server and the DHCP server all belong to the same subnet. The issue, Whenever a client connects to the RAS router and if he has the automatic dhcp settings enabled he is able to get a proper ip address from the DHCP server he functions normally on the network, whereas any client who configures his workstation with static ip address does not get a ip address from the dHCP, the disadvantage caused using static ip's is that if the client configures his address to the address of one of our servers there is a tcp/ip address conflict detected on the server machine. the static dial-in client gets connected and can use normal services even though there is a address conflict. In one of the tests conducted by myself I gave the static ip to the dial-in computer same as my pc on the lan, on which our Easyacs is connected, to my amazement I was able to connect and ping both the workstations the one on the lan and my dialing in client (computer names) from the Dialing in machine. I know that there is a feature in Windows NT RAS where, even if the client is using static ip, the dhcp server is forcing him an ip address from the range allocated. I am not sure and dont know about any option in CISCO providing this option. Please suggest any ideas or recommendations to recover this problem. Thanks and Regards, Shaikh Raees, MCSE, CCNA SE.
