Re: Linux [7:74168]
On Tue, 19 Aug 2003, Johan Bornman wrote: > Which website(s) is the best to get the know how with Linux - beginner level Try Justlinux. Rick > > > > "This e-mail may contain confidential information and may be legally > privileged and is intended only for the person to whom it is addressed. If > you are not the intended recipient, you are notified that you may not use, > distribute or copy this document in any manner whatsoever. Kindly also > notify the sender immediately by telephone, and delete the e-mail. When > addressed to clients of the company from where this e-mail originates ("the > sending company ") any opinion or advice contained in this e-mail is subject > to the terms and conditions expressed in any applicable terms of business or > client engagement letter . The sending company does not accept liability for > any damage, loss or expense arising from this e-mail and/or from the > accessing of any files attached to this e-mail." > > "At present, the integrity of e-mail across the Internet cannot be > guaranteed and messages sent via this medium are potentially at risk. The > recipient should scan any attached files for viruses. All liability arising > as a result of the use of this medium to transmit information by or to > e-Innovation is excluded to the extent permitted by law." > **Please support GroupStudy by purchasing from the GroupStudy Store: > http://shop.groupstudy.com > FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=74188&t=74168 -- **Please support GroupStudy by purchasing from the GroupStudy Store: http://shop.groupstudy.com FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Re: Sniffer Software [7:63796]
Ethereal works fine under XP. Rick On Wed, 26 Feb 2003, PacketEXPERTS wrote: > Thank for getting back to me, okay this is what I am > seeing: > > NetXray and Sniffer Pro work fine in 98, but when I > try to load them onto a coupter running XP, it stops > the install dead in its tracks and tell me to get an > XP verision of the software. > > = = = Original message = = = > > Works fine for me. What is the issue you are having? > - Original Message - > From: "PacketEXPERTS" > To: > Sent: Wednesday, February 26, 2003 7:39 AM > Subject: Sniffer Software [7:63796] > > > > Have anyone gotten NetXray 3.0 or Sniffer Pro 4.5 to > > work with XP. > > > > Thanks > > > > > ___ > > Sent by ePrompter, the premier email notification > > software. > > Free download at http://www.ePrompter.com. > > > > __ > > Do you Yahoo!? > > Yahoo! Tax Center - forms, calculators, tips, more > > http://taxes.yahoo.com/ > [EMAIL PROTECTED] > > > > ___ > Sent by ePrompter, the premier email notification > software. > Free download at http://www.ePrompter.com. > > __ > Do you Yahoo!? > Yahoo! Tax Center - forms, calculators, tips, more > http://taxes.yahoo.com/ Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=63909&t=63796 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Isdn error with PPP - Why always?? [7:63255]
I ran into a similar problem. I converted to PPP from HDLC, as well as to dialer profiles from legacy ddr. The problem was I forgot to put "ppp authentication chap" on the bri interface. It was there on the dialer Interface, but not in both places. Adding it to the bri interface fixed it. I remember the debug and errors did not make it look like a ppp authentication error. Rick. -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] On Behalf Of Cisco Nuts Sent: Tuesday, February 18, 2003 8:13 AM To: [EMAIL PROTECTED] Subject: Isdn error with PPP - Why always?? [7:63255] Hello, Just set up basic Isdn b/w 2 routers using the default hdlc encap and was working perfectly fine till I changed the encap to ppp, ppp auth chap, ppp multilink and ppp chap hostname R7. Then it just stopped working :-< This has been very frustrating!! It started spitting out this msg. on the screen:R8-G# 4d19h: %ISDN-4-INVALID_CALLEDNUMBER: Interface BR0, Ignoring call, LDN and Called Party Number mismatch I looked to see if the called number had changed even though I had not touched it. It is still valid and so are the spids. R8-G#ri b0 Building configuration...Current configuration : 353 bytes ! interface BRI0 ip address 9.9.9.1 255.255.255.0 ip ospf demand-circuit dialer idle-timeout 90 dialer map ip 9.9.9.1 broadcast 5553000 dialer load-threshold 1 outbound dialer-group 1 isdn switch-type basic-ni isdn spid1 055511 5551000 isdn spid2 055521 5552000 R8-G#sh is st TEI Global ISDN Switchtype = basic-niter Age Seq# C Layer 1 Status: ACTIVE Layer 2 Status: TEI = 123, Ces = 1, SAPI = 0, State = MULTIPLE_FRAME_ESTABLISHED TEI = 124, Ces = 2, SAPI = 0, State = MULTIPLE_FRAME_ESTABLISHED TEI 123, ces = 1, state = 5(init) spid1 configured, spid1 sent, spid1 valid Endpoint ID Info: epsf = 0, usid = 1, tid = 1 TEI 124, ces = 2, state = 5(init) spid2 configured, spid2 sent, spid2 valid Endpoint ID Info: epsf = 0, usid = 3, tid = 1 Layer 3 Status: 0 Active Layer 3 Call(s) CCB:callid=801C, sapi=0, ces=1, B-chan=1, calltype=DATA Active dsl 0 CCBs = 1 The Free Channel Mask: 0x8002 Total Allocated ISDN CCBs = 1 I am beginning to guess that the problem is a HARDWARE one with the ISDN switch being the culprit. I guess as usual I need to give it rest for a couple of hours and start it again for this to work with just HDLC encap. To think that I was told that the Merge switch was the Rolls Royce of ISDN switches when I paid a "million" $$ for it last year :-(But if any one has any suggestions/advice, I would gratefully appreciate it.Thank you.Sincerely,CN STOP MORE SPAM with the new MSN 8 and get 2 months FREE* Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=63272&t=63255 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Frame Relay congestion control [7:59478]
The bits are set by the equipment in the FR cloud. | | R1--|--Ra-RbRc-|-R2 | | FR boundry FR boundry In a simplified drawing like this if the link from router Rb to Rc was becoming congested Rb would notify Ra of the congestion and Ra would notify R1 that there is FORWARD CONGESTION and to slow down data the transmission rate. On Wed, 18 Dec 2002, Deepak Achar wrote: > Hi all > I have very basic doubt regarding the frame-relay congestion control. > > I have two routers which are connected thro' FR network.This is as follows > > > R1---FR cloud---FR cloud--R2 > > Now suppose the congestion is occuring in the path R1 to R2 and there is no > congestion in the path from R2 to R1. >According to theory, FR network will set the FECN bit to a 1 in those > frames that r going form R1 to R2. The FR network will set the BECN bit to a > 1 in those frames that r going from R2 to R1. > My thinking is if the network is already congested, would the frames be > discarded before they reach the other end. If this is true, how will the > other end router would come to know that the congestion is happening in the > path. > If the its not true, then how will those frames, with FECN and BECN bit > set to 1, reach the FR routers at the end, even though there is congestion > in the path. > I am confused regarding this. Please can anyone helpme out in this regard. > > Regards > Deepak Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=59497&t=59478 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: slightly OT: Pingflood [7:54334]
Which linux are you using and have you tried the ping -f command. Under RH 7.3 the -f option doesnt show as available under help for ping but the option is still available. The -f option is still documented in the info files. -- --Rick Man invented language to satisfy his deep need to complain. -- Lily Tomlin On Fri, 27 Sep 2002, sam sneed wrote: :Date: Fri, 27 Sep 2002 16:43:53 GMT :From: sam sneed :To: [EMAIL PROTECTED] :Subject: slightly OT: Pingflood [7:54334] : :Does anyone know where I can get a copy of this or something similiar for :Linux. I found a windoze version but I need linux or UNIX. :My ping versions of linux and SunOS do not have the -f option. The only :version of pingflood I found on google is crap, the source code reads: : :void main(){ : int count=1; : for(;count>10;count++){ : system (ping -s 2000 targetsite); : sleep(3); : } :} : :all this does is ping alot, I want the version of thje program that sends :pings out faster than usual. I need to create lots of traffic to check :response times across a router. And I want to do it without purchasing :software (aka solarwinds WAN Killer) : :thanks : : : : : Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=54345&t=54334 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: recommended router. [7:50950]
george wrote: :Which router would anyone recommend for setting up a frame-relay switch : :4500 or the 2520 series? I use a 4500 just because I have a couple of them in my lab. Works great. :I found a 4500 4 serial ports, and 4 isdn ports for 399 is that good? Pretty good price. Of course you can always pay more or less depending on how lucky you are on the day you buy. -- --Rick Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=51127&t=50950 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: 2503 Cables? [7:50924]
David, I dont have any problems with speed over 512Kbps. Its all based on what I set the clock rate to on the DCE end. I use both the cables from kg2.com and V.35 cables in my lab. The only differences i can tell are the cost and the fact that the single back to back cable is easier to use in the lab. -- --Rick Support bacteria -- it's the only culture some people have! David j wrote: :I have that equipment, but you can't simulate speeds of 2Mbps with that :cable (at least I couldn't, only up to 512 Kbps, I think this is a :limitation of RS-232), I think that with V35 Female DCE and V35 Male DTE you :can simulate speeds over 512 Kbps... : :rick wrote: :> :> Try kg2.com. :> You want the DB60 DCE/DTE cables. $14.00 each. :> Or you can get the same thing from Cisco for about $60.00 each. :> :> Rick :> :> :> On Thu, 8 Aug 2002, Robert D. Cluett wrote: :> :> :Date: Thu, 8 Aug 2002 13:39:59 GMT :> :From: Robert D. Cluett :> :To: [EMAIL PROTECTED] :> :Subject: 2503 Cables? [7:50924] :> : :> :Group, :> : :> :I just ordered (3) 2503 routers and (1) 2502 for my home lab. :> No cables :> :included. Would anyone know what cables I would need to :> interconnect these :> :directly to each other? Part number or connector styles? :> : :> :Rob Cluett :> : :> : :> : :> : :> : :> :> : : : : : Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=51000&t=50924 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: OT...TraceRoute DNS Naming Question [7:50005]
:From: Richard Tufaro :Subject: Re: OT...TraceRoute DNS Naming Question [7:50005] : :understandable...is there anywhere out there a listing of prefix's for :different ISP's? You can dig the information out here www.flumps.org/ip/. -- --Rick The problem with this country is that there is no death penalty for incompetence. Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=50034&t=50005 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: clearing 2501 config [7:50012]
:I stumbled upon an old 2501 at work. I recovered password. Whats the best :way to clear the config and start fresh? wr erase reload -- --Rick Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=50030&t=50012 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
lock and key [7:48644]
Working through the "All-In-One Cisco CCIE Lab Study Guide" Second Edition by Hutnik & Satterlee, LAB #61 on dynamic access lists - lock and key I have run in to a segment that I cannot get to work per the lab and an hoping to get some input. The lab consists of two routers connected as below. e0(ra)s0--s0(rb)e0 152.1.1.1 195.1.1.4 195.1.1.10 150.1.1.1 >From my understanding of the lock-and-key, when the user passes authentication then the user is allowed to telnet through the interface on which the authentication takes place. In the lab the user, from router B telnets to router A, int s0 to perform the authentication process. This part works correctly as the temporary modification to the access list is made as shown below. The second part of the lab is to telnet from router B to int e0, 152.1.1.1 on router A. This step always concludes with the error message List#100-tempaccess already contains this IP address pair [Connection to 152.1.1.1 closed by foreign host] I have modifed the lab by connecting a third router, rc, to e0 of router A and modifying the access list to allow for the ip of the new e0 (152.1.1.2). By performing the authentication then telneting from router B through router A to the new router everything seems to work correctly. Any one know why the lock-and-key featuer works when telneting through routerA to router c, but does not work then telneting to e0 of router A? The configs and output from the lab steps are listed below for those interested. Thanks Rick Access list before performing the authentication --- labA#sh access-lists Extended IP access list 100 Dynamic tempaccess permit tcp host 150.1.1.1 host 152.1.1.1 eq telnet log permit tcp any host 195.1.1.4 eq telnet log (25 matches) deny ip any any log (58 matches) BEGIN TEST SEGMENT OF LAB labB#telnet 195.1.1.4 Trying 195.1.1.4 ... Open User Access Verification Username: pcb Password: [Connection to 195.1.1.4 closed by foreign host] <--This is correct to here. Access list after performing the authentication -- labA#sh access-lists Extended IP access list 100 Dynamic tempaccess permit tcp host 150.1.1.1 host 152.1.1.1 eq telnet log permit tcp host 195.1.1.10 host 152.1.1.1 eq telnet log timeout 5 (time left 295) permit tcp any host 195.1.1.4 eq telnet log (48 matches) deny ip any any log (62 matches) SECOND SEGMENT OF LAB labB# labB#telnet 152.1.1.1 Trying 152.1.1.1 ... Open User Access Verification Username: pcb Password: List#100-tempaccess already contains this IP address pair [Connection to 152.1.1.1 closed by foreign host] labB# CONFIGS ROUTER A CONFIG labA#sh conf Using 1078 out of 32762 bytes ! version 12.0 service timestamps debug uptime service timestamps log uptime no service password-encryption ! hostname labA ! enable password cisco ! username pcb password 0 pcb username pcb autocommand access-enable timeout 5 ip subnet-zero ip telnet source-interface Ethernet0 no ip domain-lookup ! interface Ethernet0 ip address 152.1.1.1 255.255.255.0 no ip directed-broadcast no keepalive ! interface Serial0 ip address 195.1.1.4 255.255.255.0 ip access-group 100 in no ip directed-broadcast no ip mroute-cache no fair-queue ! no ip classless ip route 150.1.1.0 255.255.255.0 Serial0 ! access-list 100 dynamic tempaccess permit tcp host 150.1.1.1 host 152.1.1.1 eq telnet log access-list 100 permit tcp any host 195.1.1.4 eq telnet log access-list 100 deny ip any any log ! line con 0 exec-timeout 0 0 transport input none line aux 0 line vty 0 4 login local ! end ROUTER B CONFIG labB#sh conf Using 750 out of 32762 bytes ! version 12.0 service timestamps debug uptime service timestamps log uptime no service password-encryption ! hostname labB ! enable password cisco ! ip subnet-zero no ip domain-lookup ! interface Ethernet0 ip address 150.1.1.1 255.255.255.0 no ip directed-broadcast no keepalive ! interface Serial0 ip address 195.1.1.10 255.255.255.0 no ip directed-broadcast no ip mroute-cache clockrate 50 ! no ip classless ip route 152.1.1.0 255.255.255.0 Serial0 ! line con 0 exec-timeout 0 0 transport input none line aux 0 line vty 0 4 login ! end Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=48644&t=48644 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: What is meant in the Cat5k by interface sc0 [7:48375]
If memory serves me correctly it stands for Serial Console 0 ""John Brandis"" wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > ** > > visit http://www.solution6.com > visit http://www.eccountancy.com - everything for accountants. > > UK Customers - http://www.solution6.co.uk > > * > This email message (and attachments) may contain information that is > confidential to Solution 6. If you are not the intended recipient you cannot > use, distribute or copy the message or attachments. In such a case, please > notify the sender by return email immediately and erase all copies of the > message and attachments. Opinions, conclusions and other information in > this message and attachments that do not relate to the official business of > Solution 6 are neither given nor endorsed by it. > * Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=48572&t=48375 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Question - Cisco beta exams results on VUE? [7:47985]
I am wondering how you know you passed all 4 if only have results to 2 of them? ""Eduard Moisak"" wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > Hi All! > > I've got a question concerning Cisco CCNP beta-exams. > I was passing 4 betas at VUE testing center at Feb, 18 (Rouring, Switching, > Troubleshooting and Remote access). At present, there are results only of > two of them at the VUE site (and at CISCO accordingly). And status of other > two is still TAKEN. If anybody of your encountered such a problem? > > Thanks in advance, > Eduard. Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=48068&t=47985 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: TACACS - Radius password authentication [7:47897]
You mind sharing your public key so I can encrypt the super secret search engine. :) ""Roberts, Larry"" wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > Normally you would have a TACACS/RADIUS server ( Cisco's ACS comes to mind ) > and a TACACS/RADUS client ( Router/WAP also come to mind) > In order for those two devices to communicate you must specify a password > that is "shared" between them. This is used to assure that the > Devices in question are who they say they are. > For example on a router you would specify the TACACS server IP and the > TACACS password. If either of these are incorrect then the router in this > case would not be able to authenticate off of the device. > On a WAP you would specify the radius server name/IP the port is using ( > 1645 or 1812 ) and the password. > > I would imagine, but Im to lazy to look up :) that this password is used to > encrypt the data between the client and server for both protocols. > TACACS+ is Cisco proprietary ( notice the + ) while standard TACACS and > radius are open standards. > > Here is a rather old document that talks about how the radius password is > used. I can't vouch for its technical accuracy, but > It was a good read no the less. > http://skoda.sockpuppet.org/tqbf/radius-security.html > > I also used my top secret search engine and found plenty of other great > references as well. Here is a link to it: > > www.google.com > > :) > > Thanks > > Larry > > > -Original Message- > From: Morgan Hansen [mailto:[EMAIL PROTECTED]] > Sent: Monday, July 01, 2002 6:09 PM > To: [EMAIL PROTECTED] > Subject: TACACS - Radius password authentication [7:47897] > > > Hi all:-) > > Hmm.. Im wondering... > > What in gods name are TACACS and Radius passwords? I understand I can use > them as password authentication, but?? Im sitting here up to my ears with > Wave books and the latest Odom 640-607 book and cant find anything on the > subject?? > > Anyone? > > Best, > Morgan Hansen > mailto:[EMAIL PROTECTED] Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=47913&t=47897 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Off Topic - Cisco vis a vis World Com [7:47505]
Cisco is not a Telco, so the wire service is not a valid source for info. I could name at least 12 ILEC's that are making profits and have been for many years and this is only just a stagnant time for them. They will be moving forward in another year with huge network expansions. The profitable and low debt companies are not too worried right now. they will just ride the wave and use this time to cut some cost that is long over due. just think of all the very large customers that will be fleeing WCOM. Most will head to the nearest ILEC. At first thought is all the government contracts they have. Every governmet contract, state or federal, usually has provisions for them to null the contract if the company files Bankruptcy or is found to have commited illegal acts. ""Eric Rogers"" wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > This is HUGE for Telco in general...With the restatement this company will > have actually LOST money for over the past year... > > Just think about all the IOU's that this company has to all it's > vendor's, we're talking 30 Billion dollars in debt. It look's like > bankruptcy is coming soon for this company. What's Cisco's exposure to this? > I believe it's fair to say it's large, be it directly or indirectly. This > will be the largest bankruptcy in US history, hence world. WorldCom has > assets in excess of 105 Billion dollars. Compare this to Enron with 60 > Billion dollars. They will be cutting an already planned 16,000 employee's > this week. Who's next: Qwest? Just follow [EMAIL PROTECTED] > > I read a couple of week's ago from one of the wire services that 24 of > the 29 major Telco's will go under. The so called safe one's where > Bellsouth, Cisco, SBC and some others. I've also picked up off of both > Reuters.com and Bloomberg.com that the Telco market is not expected to turn > around until maybe late 2003 and will be the last thing to pick up in a > revived economy. Look at all the companies failing in the US and Europe, the > drastic slide in the value of the US Dollar against the Euro and the Yen and > the fact that 2 million layoff's in the US last year, with 500,000 of those > from tech related jobs alone, it should become apparent to even the simplest > minds that things will become worse with these scandals coming out. Should > the US housing bubble burst kiss this economy good bye for the next five > years. > > "- There is already too much surplus equipment out there that it will take > years to absorb. And as far as jobs and hiring out in the world, well who's > going to quit there job because they didn't get a raise lately?-" > > JMHO :-0 > > -Eric > > - Original Message - > From: "Chuck" > To: > Sent: Wednesday, June 26, 2002 12:31 PM > Subject: Off Topic - Cisco vis a vis World Com [7:47505] > > > > So far today I have seen no word from Cisco on its exposure to World Com. > > > > the other so called players in the networking industry - Redback, Nortel, > > and Lucent, have all said they have very little on the line with WorldCom. > > Of course, these are companies with one foot in the grave already. > > > > WorldCom is one of Cisco's MAJOR customers. Cisco stock is back close to > > it's low of the last year. Maybe Cisco believes nothing needs be said? > Maybe > > Cisco figures they can still sell their stuff through other channels? > > > > As an employee of another of Cisco's major customers, maybe this bodes > well > > for me? with WorldCom out of the way, and no longer selling at cost to > steal > > my customers, maybe my own business will pick up? > > > > Sheesh, this is scary. > > > > Anybody out there know how what used to be UUNet is doing? Viable? Any > > repercussions through the ISP world? Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=47526&t=47505 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: IOS firewall feature set for Cisco 2514 [7:47523]
Where did you find info that Cisco does not support 25xx series anymore? I have 156 support contracts on 2509, 2511, and 2520's. I also just finished a network wide upgrade of IOS on these same boxes. I am concerned that Cisco just announced this and this leaves me with a serious problem. ""S M"" wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > I'm looking for Cisco 2514 IOS w/ firewall feature set. Cisco doesn't > supports 25xx series anymore. > > Does anyone point me in the right direction to get the software. > > Thanks > > SM Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=47528&t=47523 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: T1 Cat5 Crossover Pinout (WIC-1DSU-T1) [7:47332]
2-5 1-4 will also work :) ""Kevin Love"" wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > 1-5 > 2-4 > > Worked - thanks guys! > > Kevin Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=47527&t=47332 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
BGP NLRI [7:47337]
I am having some trouble understanding NLRI as opposed to straight network routing updates. Anyone got a pointer to information that might clear up NLRI some? Thanks -- --Rick Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=47337&t=47337 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Cable Modem DHCP problem [7:47175]
I usally just change my mac-address and it will get a new ip and then you can change it back after that. Rick ""McHugh Randy"" wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > Does anyone know how to release a DHCP lease on a 2514 eth interface? I > would like to release the lease recieved from the cable modem (comcast) . I > have tried powercycling the modem, router, reload, shuting the interface ect > and nothing works. I get the same lease all the time and cant get out to the > internet. > thanks > Randy Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=47201&t=47175 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Qos with IOS on 4006 SUPIII [7:46871]
Dear Brother: About the IOS switch, I ever use these command to suppress boradcast storm, just for you reference. Enter command into interface port storm-control broadcast action filter port storm-control broadcast trap port storm-control broadcast threshold rising 100 falling 25 wish it can help you . Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=46872&t=46871 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Anyone taken 640-606 yet? [7:46629]
It looks to be the same as 506 to me: http://www.cisco.com/warp/public/10/wwtraining/certprog/testing/current_exam s/640-606.html ""Penn Daniel"" wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > Hi, > > I was just about ready to take 640-506 (Support) when they changed the > test. Has anyone taken it yet? If so can you comment on any new topic...I > cannot find a list of new topics on cco or anywhere else for that mattter. > > Dan Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=46635&t=46629 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: PIX 501 Upgrade [7:46519]
I have not been able to find a way to upgrade mine from DES that it came with to a 3DES that I purchased. According to the docs the only way to upgrade the license is to reinstall the OS and it recommends upgrading at the same time. How do I enter the key? Cisco PIX Firewall Version 6.1(2) Cisco PIX Device Manager Version 1.1(2) Compiled on Fri 16-Nov-01 14:28 by morlee pixfirewall up 10 days 22 hours Hardware: PIX-501, 16 MB RAM, CPU Am5x86 133 MHz Flash E28F640J3 @ 0x300, 8MB BIOS Flash E28F640J3 @ 0xfffd8000, 128KB 0: ethernet0: address is 0009.7c48.c239, irq 9 1: ethernet1: address is 0009.7c48.c23a, irq 10 Licensed Features: Failover: Disabled VPN-DES:Enabled VPN-3DES: Disabled Maximum Interfaces: 2 Cut-through Proxy: Enabled Guards: Enabled Websense: Enabled Thanks, Rick ""Brad Ellis"" wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > Rick, > > You do NOT need to upgrade your PIX to run 6.2 OS, here's my pix 501 I'm > using with 6.2(1) and 3DES: > > brad-vegas# sh ver > > Cisco PIX Firewall Version 6.2(1) > Cisco PIX Device Manager Version 1.1(2) > > Compiled on Wed 17-Apr-02 21:18 by morlee > > brad-vegas up 2 days 0 hours > > Hardware: PIX-501, 16 MB RAM, CPU Am5x86 133 MHz > Flash E28F640J3 @ 0x300, 8MB > BIOS Flash E28F640J3 @ 0xfffd8000, 128KB > > 0: ethernet0: address is 0008.a3f7.c052, irq 9 > 1: ethernet1: address is 0008.a3f7.c053, irq 10 > Licensed Features: > Failover: Disabled > VPN-DES:Enabled > VPN-3DES: Enabled > Maximum Interfaces: 2 > Cut-through Proxy: Enabled > Guards: Enabled > URL-filtering: Enabled > Inside Hosts: 10 > Throughput: Limited > IKE peers: 5 > > > thanks, > -Brad Ellis > CCIE#5796 (R&S / Security) > Network Learning Inc > [EMAIL PROTECTED] > www.optsys.net (Cisco hardware) > > ""Rick"" wrote in message > [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > > Has anyone upgraded a PIX 501. All of the current 6.x > > files all say they require 32meg DRAM and this 501 only has > > 16meg. The problem I have is I need to upgrade to a 3DES > > license and it requires that I load a new image and I don't > > want to take a chance with not being able to get the current > > releases to work. The funny thing is this came with 6.12 on it. > > Rick Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=46537&t=46519 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
PIX 501 Upgrade [7:46519]
Has anyone upgraded a PIX 501. All of the current 6.x files all say they require 32meg DRAM and this 501 only has 16meg. The problem I have is I need to upgrade to a 3DES license and it requires that I load a new image and I don't want to take a chance with not being able to get the current releases to work. The funny thing is this came with 6.12 on it. Rick Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=46519&t=46519 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Poll: What do you use to backup your configs? [7:46229]
On Mon, 10 Jun 2002, Roberts, Larry wrote: :Well we have a couple of things. :3) We also keep track of any changes made in a change control form. This :should match the latest version of the config in ciscoworks. Larry, is the form you use from a vendor/suppliere or is it something you developed in house? If its something you developed would you be allowed to share it? I am looking to upgrade our in house record keeping and am searching for ideas on what to include and how to lay it out. Thanks -- --Rick Meader's Law: Whatever happens to you, it will previously have happened to everyone you know, only more so. Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=46243&t=46229 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: any good linux BGP simulator [7:46088]
I always see people asking for Linux/Unix sims for BGP or just to simulate a router in General. I for the life of me can't figure out why a Linux router could be better than a 2501 and it would cost me more to build a Linux box. I see the same with wanting to build a PIX with a PC and you can get a 501 and possibly even a 506 cheaper than build it out of a PC? Rick ""Ocsic"" wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > please mail me : [EMAIL PROTECTED] Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=46092&t=46088 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: It's Official - CCNP 6xx series [7:45867]
If you notice the requirements you must meet as listed in the tracking system it shows 4xx, 5xx, and 6xx. ""Tshepo Kowane"" wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > What about some us with 2 down and 2 go and not yet registered for the > remaining exams . Do we have to start all over again or register for the > 2 new exams to complete the CCNP. > > >>> "Marko Milivojevic" 06/06/02 01:06AM >>> > Official indeed: > > http://www.cisco.com/warp/public/10/wwtraining/whats_new/ > > > Effective June 5, 2002 refreshed versions of exams for CCNP, CCDP, and > CCIP > certifications with all-new questions are available. Routing, > Switching, > Remote Access, Support, and BSCI exams have all been updated to better > reflect a candidate's knowledge and skills of the current exam > objectives. > Flash simulation questions have been added to the BSCI 640-901, > Routing > 640-603, and Remote Access 640-605 exams in order to assess real-world > networking expertise and understanding. > > > Marko. > > > -Original Message- > > From: Steve Ringley [mailto:[EMAIL PROTECTED]] > > Sent: mipvikudagur, 5. jznm 2002. 22:30 > > To: [EMAIL PROTECTED] > > Subject: Re: It's Official - CCNP 6xx series [7:45867] > > > > > > I logged into Prometric, and the new exams were not available > > to register > > for. Might try registering online to get the old exams. Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=45909&t=45867 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: CCNP Welcome Aboard kit? [7:45454]
about 2 - 3 weeks, but I hope your CCNA didn't expire? You said three years and that is the time frame to get recertified in or obtain the CCNP. ""Steve Ringley"" wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > How long does it normally take for Cisco to send the paper cert out after > passing the last exam? I passed the Support exam yesterday, which completed > my CCNP. I seem to recall a sevearl week wait three years ago for my CCNA > paper cert. > > ""Kris Keen"" wrote in message > [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > > Which is very very cheap. Looks like a card you get from a cornflakes > > packets, shows you how much Cisco value us. Far out, I was really > > disappointed to find my CCNP card exactly like the CCNA. > > > > what a joke, my CNE card kicks the CCNP card Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=45851&t=45454 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: why my gigabit switch port speed only hit 10M? [7:44333]
Make sure your PC's are capable of transferring data faster than this. There is not many hard drives that can do 100mb/s. My laptop I am on now tops out at about 8.5mb but my PC goes up to about 17mb. ""Sim, CT (Chee Tong)"" wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > Hi.. I had installed a gigabit switch (Cisco 3550). But I feel the speed > of slow. I connected my two PC in GigabitEthernet0/1 and 0/2. I transfer a > huge file between the two PCs ( the transfer last for 4 mins). But the > maximum speed is only 10Mbit ? Why?? What is wrong?? I thought it should > be go up to 1000M or 1Gbits??? > > ! > interface GigabitEthernet0/1 > no ip address > snmp trap link-status > ! > interface GigabitEthernet0/2 > no ip address > snmp trap link-status > ! > interface GigabitEthernet0/3 > no ip address > snmp trap link-status > ! > interface GigabitEthernet0/4 > no ip address > snmp trap link-status > ! > interface GigabitEthernet0/5 > no ip address > snmp trap link-status > ! > > cat35-L8-1#sh int gi0/1 > GigabitEthernet0/1 is up, line protocol is up > Hardware is Gigabit Ethernet, address is 0005.313e.7581 (bia > 0005.313e.7581) > MTU 1500 bytes, BW 100 Kbit, DLY 10 usec, > reliability 255/255, txload 1/255, rxload 1/255 > Encapsulation ARPA, loopback not set > Keepalive set (10 sec) > Full-duplex, 1000Mb/s > input flow-control is off, output flow-control is on > ARP type: ARPA, ARP Timeout 04:00:00 > Last input never, output 00:00:00, output hang never > Last clearing of "show interface" counters never > Input queue: 0/75/0/0 (size/max/drops/flushes); Total output drops: 0 > Queueing strategy: fifo > Output queue :0/40 (size/max) > 5 minute input rate 0 bits/sec, 0 packets/sec > 5 minute output rate 12000 bits/sec, 14 packets/sec > 905784 packets input, 1303109052 bytes, 0 no buffer > Received 66 broadcasts, 0 runts, 0 giants, 0 throttles > 0 input errors, 0 CRC, 0 frame, 0 overrun, 0 ignored > 0 input packets with dribble condition detected > 1042863 packets output, 190194068 bytes, 0 underruns > 0 output errors, 0 collisions, 2 interface resets > 0 babbles, 0 late collision, 0 deferred > 0 lost carrier, 0 no carrier > 0 output buffer failures, 0 output buffers swapped out > GigabitEthernet0/2 is up, line protocol is up > Hardware is Gigabit Ethernet, address is 0005.313e.7582 (bia > 0005.313e.7582) > MTU 1500 bytes, BW 100 Kbit, DLY 10 usec, > reliability 255/255, txload 1/255, rxload 1/255 > Encapsulation ARPA, loopback not set > Keepalive set (10 sec) > Full-duplex, 1000Mb/s > input flow-control is off, output flow-control is on > ARP type: ARPA, ARP Timeout 04:00:00 > Last input never, output 00:00:00, output hang never > Last clearing of "show interface" counters never > Input queue: 0/75/0/0 (size/max/drops/flushes); Total output drops: 0 > Queueing strategy: fifo > Output queue :0/40 (size/max) > 5 minute input rate 0 bits/sec, 0 packets/sec > 5 minute output rate 12000 bits/sec, 13 packets/sec > 1486 packets input, 179522 bytes, 0 no buffer > Received 1421 broadcasts, 0 runts, 0 giants, 0 throttles > 0 input errors, 0 CRC, 0 frame, 0 overrun, 0 ignored > 0 input packets with dribble condition detected > 1948976 packets output, 1493416902 bytes, 0 underruns > 0 output errors, 0 collisions, 2 interface resets > 0 babbles, 0 late collision, 0 deferred > 0 lost carrier, 0 no carrier > 0 output buffer failures, 0 output buffers swapped out > > > > > > == > De informatie opgenomen in dit bericht kan vertrouwelijk zijn en > is uitsluitend bestemd voor de geadresseerde. Indien u dit bericht > onterecht ontvangt wordt u verzocht de inhoud niet te gebruiken en > de afzender direct te informeren door het bericht te retourneren. > == > The information contained in this message may be confidential > and is intended to be exclusively for the addressee. Should you > receive this message unintentionally, please do not use the contents > herein and notify the sender immediately by return e-mail. > > > == Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=44343&t=44333 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Is IGRP actually supported by other vendors? [7:43994]
Although, I don't entirely disagree with you I have not had any luck finding any documents on EIGRP that stated it was not a "Hybrid Protocol" or did not list enough Link-State qualities to include it as a partial Link-State Protocol. That is outside of one document by you. Rick - Original Message - From: "Howard C. Berkowitz" To: "Rick" ; Sent: Monday, May 13, 2002 8:35 PM Subject: Re: Is IGRP actually supported by other vendors? [7:43994] > At 6:42 PM -0400 5/13/02, Rick wrote: > >Priscilla, > >I hate to differ with you on this Hybrid or not but the source says > >it is considered a Hybrid routing Protocol. check the link for yourself > >http://www.cisco.com/univercd/cc/td/doc/cisintwk/ito_doc/en_igrp.htm > > > >I myself am not a fan Lammle, but on this one he is right and you are wrong > >and YES I said you are wrong! EIGRP is as much Link-State as it is Distance > >Vector. > >Rick > > Abraham Lincoln once asked a fellow, "If you call a horse's tail a > leg, how many legs does a horse have?" > > And the fellow answered "ummm...five." > > Lincoln shook his head. "No. Calling a tail a leg does not make it one." > > Just looking at the URL above, it's pointing to the introduction to > internetworking, which is rarely updated and is not infrequently > misleading or wrong. I suggest you look at current Cisco white > papers on routing protocols, Garcia-Luna-Alceves' academic paper, any > number of Networkers presentations, routing discussions in the IETF, > etc. > > No one seriously uses the term hybrid, and there never was a > technical definition of it. As opposed to Camelot being "one shining > moment," the use of "hybrid protocol" originated from a bubbling > cauldron of spin doctoring from marketing, parroting by training, and > perhaps a dark blessing by Sir Mordred. > -- > "What Problem are you trying to solve?" > ***send Cisco questions to the list, so all can benefit -- not > directly to me*** > > Howard C. Berkowitz [EMAIL PROTECTED] > Chief Technology Officer, GettLab/Gett Communications http://www.gettlabs.com > Technical Director, CertificationZone.com http://www.certificationzone.com > "retired" Certified Cisco Systems Instructor (CID) #93005 Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=44161&t=43994 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Is IGRP actually supported by other vendors? [7:43994]
Priscilla, I hate to differ with you on this Hybrid or not but the source says it is considered a Hybrid routing Protocol. check the link for yourself http://www.cisco.com/univercd/cc/td/doc/cisintwk/ito_doc/en_igrp.htm I myself am not a fan Lammle, but on this one he is right and you are wrong and YES I said you are wrong! EIGRP is as much Link-State as it is Distance Vector. Rick ""Priscilla Oppenheimer"" wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > At 04:13 PM 5/13/02, Mike Mandulak wrote: > >Lammle refers to EIGRP as being a Hybrid of distance-vector and link state. > > That's wrong. EIGRP is not link-state in any way. EIGRP calculates a flat > routing table that lists networks, distance, and next hop (distance > vectors). If the list contains multiple entries for a destination (because > there are multiple ways to reach the destination), the entries are sorted > by metric and the one with the lowest metric is selected. This is very > different than how a link-state protocol functions. > > A link-state routing protocol creates a mathematical graph that depicts the > network. A link-state protocol implements a sophisticated process, called > the Dijkstra algorithm, to determine the shortest path to all points in the > graph when the nodes and links in the graph are known. Link-state has a > specific meaning to computer scientists. You'll find a lot of good stuff > about it if you search with Google. A lot of it is not related to routing > protocols. > > EIGRP does have some features that make it different from other > distance-vector protocols. Although EIGRP still sends vectors with distance > information, the updates are non-periodic, partial, and bounded. > Non-periodic means that updates are sent only when a metric changes rather > than at regular intervals. Partial means that updates include only routes > that have changed, not every entry in the routing table. Bounded means that > updates are sent only to affected routers. These behaviors mean that EIGRP > uses very little bandwidth. > > EIGRP also determines a feasible successor, which other distance-vector > protocols don't do. Its complex metric is also a feature not found in many > other distance-vector algorithms, (except IGRP of course). > > Please do not send messages to me directly, especially not to quote Lammle > CCNA fluff. > > Priscilla > > >He only gives a brief mention of EIGRP and says to refer to the CCNP study > >guide for more info. > > > >- Original Message - > >From: "Priscilla Oppenheimer" > >To: > >Sent: Monday, May 13, 2002 3:19 PM > >Subject: Re: Is IGRP actually supported by other vendors? [7:43994] > > > > > > > At 02:44 PM 5/13/02, Mike Mandulak wrote: > > > >Lamme's CCNA study guide states that the courde and exam only covers > > > >distance-vector routing protocols (RIP and IGRP). > > > > > > If it only covers distance-vector, then it could cover EIGRP also. EIGRP > >is > > > also distance-vector. I don't think the test does cover it, but it's not > > > because the test only covers distance-vector. It's probably because of > all > > > the extra features in EIGRP, such as the diffusing update algorithm > >(DUAL), > > > with the feasible successors and all that other BS. Come to think of it, > > > maybe I'm glad I don't have to cover it! ;-) > > > > > > > > > >- Original Message - > > > >From: "Priscilla Oppenheimer" > > > >To: > > > >Sent: Monday, May 13, 2002 1:27 PM > > > >Subject: Re: Is IGRP actually supported by other vendors? [7:43994] > > > > > > > > > > > > > Well, it occurs to me that IGRP would be easy to implement even > >without > > > > > Cisco's permission. ;-) It's a simple protocol, for one thing. Also, > >the > > > > > Rutgers paper that describes IGRP has been out for years. Cisco never > > > > > objected to it. > > > > > > > > > > EIGRP would not be easy to implement without Cisco's blessings, > >developer > > > > > support, licensed code, etc. We have probably all tried to figure out > > > some > > > > > detail of EIGRP or other and run into a brick wall. (For example, > what > > > >does > > > > > an router EIGRP really do with the MTU that is passed around in > >Updates? > > > >;-) > > > > > > > > > > On a related tangent, will they remove IGRP from CCNA? I&
2500 Boot-ROM's [7:43234]
After finishing my latest upgrades I have 3 sets of 2500 Boot-Rom's left over. They are the latest 11.0(10c)XB2 I have saw a couple post on here asking for some. If your interested drop me a line off the list. Thanks Rick Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=43234&t=43234 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Default Gateway and Ip Default Network [7:42099]
GOL is the last resort tried by the router to send packets bound for unknown destinations. default network command, specifies the network (e.g. the ISP's network) to which the un-known destination packets will be forwarded to. This is particularly useful when you move frequently, but have a well known network that can successfully route packets to the desired destinations for which routes may not exist in your routing table as you relocate. For e.g. when at location A, your default gateway to the ISP may be 172.16.1.1, now if you relocate to B even though the ISP is the same, your default gateway address is now 192.168.1.1. However you know that there is a common network at the ISP that is reachable from either locations e.g. 10.1.1.0. Thus in this situation, to prevent re-configuration on your router you would configfure the default network referring to 10.1.1.0 Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=42136&t=42099 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Static NAT with HSRP - longish [7:41036]
Hi all, We have 6509 with Dual Sup1A and dual MSFC/PFC. Sup1A is running CatOS ver 5.5(6a) and MSFC is running IOS ver 12.0(3)XE2. These dual engines have been configured for "high availability" and "config redundancy". Multiple vlan interfaces have been configured on the MSFC. HSRP configuration is such that: vlan 10, 20 and 30 have MSFC15 as the primary MSFC and vlan 11, 12 and 13 have MSFC16 as the primary MSFC vlan 10 has subnet 192.168.10.0, vlan 20 has 192.168.20.0 vlan 11 has subnet 10.0.11.0 subnet and vlan 12 has 10.0.12.0 subnet A printer has been assigned the IP 192.168.10.56 (and thus belongs to vlan10). Users in vlan11 need to access this printer. Users are not aware that 192.168.10.0 subnet exists hence for simplicity we decided to configure a static nat on MSFC15 (the designated MSFC) for the printer ! ip nat inside source static 192.168.10.56 10.0.11.56 ! int vlan 10 ip address 192.168.10.7/24 alt ip address 192.168.10.8/24 standby 10 priority 10 alt standby 10 priority 9 standby 10 ip 192.168.10.1/24 alt standby 10 ip 192.168.10.1/24 ip nat inside ! int vlan 11 ip address 10.0.11.7/24 alt ip address 10.0.11.8/24 standby 11 priority 11 alt standby 11 priority 10 standby 11 ip 10.0.11.1/24 alt standby 11 ip 10.0.11.1/24 ip nat outside ! int vlan 20 ip address 192.168.20.7/24 alt ip address 192.168.20.8/24 standby 20 priority 10 alt standby 20 priority 9 standby 20 ip 192.168.20.1/24 alt standby 20 ip 192.168.20.1/24 ip nat outside ! With this config, users in vlan 11 are able to access 192.168.10.56 however the ping response time is only 50%. ( i.e. even numbered pings to 10.0.11.56 are successful, note here vlan11 has MSFC16 as primary i/f) vlan 20 has also been configured as the "outside" interface for NAT. vlan20 interface has MSFC15 as the primary i/f. Even vlan20 users get 50% ping response if they ping to 10.0.11.56. Any help will be grately appreciated. Thanks & Regards ... Rohit Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=41036&t=41036 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Contest [7:40072]
On Mon, 1 Apr 2002, Brian Zeitz wrote: :Ill give you a free website that you can find tons of Free white papers, :Recourses and everything you need for your exams if you can tell me who :AKA William S. Bonnie is. Billy The Kid -- --Rick Meader's Law: Whatever happens to you, it will previously have happened to everyone you know, only more so. Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=40080&t=40072 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: what is the command [7:38977]
show controllers serial x :which is the command that will show the type of cable attached to the :interface? :so i can know if its dce or dte -- --Rick Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=39003&t=38977 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
IPexpert.NEt CCIE workbook [7:38878]
Hi All, Does anyone has bought the CCIE lab workbook for 1 day test? Is it worth $315? Does it help you on planning and strategy? Thanks in advance, Rick Mai Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=38878&t=38878 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Cabling standards [7:38540]
Vik, you need a db-60 to db-60 DCE/DTE cable to connect the two routers back to back. A DCE/DTE cable is wired so that one end is recognized as DTE equipment and the other end is wired to be recognized as DTE equipment. You can check which end is connected to an interface by using the command show controllers serial x. Normally the interfaces would be connected to a phone company DSx line which provides clocking. Since you will not have the clocking provided by the line you will need to set one router to provide this feature. The clocking will be established on the router that has the DCE cable end attached to it. There are lots of places that sell them for under $30.00. I have had good service from http://kg2.com/. disclaimer "not associated with them in any way, yada yada yada" just a satisfied customer. Im sure that others can provide equally good sources for the cables. Rick On Sat, 16 Mar 2002, Vik D wrote: :Hi can anyone provide a brief but simple explanation of the cabling :standards involved. The reason I am asking is that I have 2 cisco routers a :2524 and a 2501 with DB-60 interfaces. At this time I need to connect them :together to simulate a point-to-point connection. I was wondering what cable :would I need to do this. i was confused about terms like V.35, Rs-232 and :terms being used with them like cross-over and back-to-back. I was thinking :in terms of regular cables and am not quite sure if I am right. Appreciate :any help. Thanks. Regards, : :Vik Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=38561&t=38540 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Cisco Power Supply [7:37773]
Zahid, there used to be a site in Australia that had instructions for using a PC power supply as a replacement. Perhaps you can find it with a little searching. Good Luck Rick On Sun, 10 Mar 2002, Zahid Hassan wrote: :Date: Sun, 10 Mar 2002 15:46:59 -0500 :From: Zahid Hassan :To: [EMAIL PROTECTED] :Subject: Cisco Power Supply [7:37773] : :Hi All, : :I would appreciate if somebody would provide any information where :I would be able to buy cheap power supply replacement for my Cisco 4000-M ? :I have been searching in Ebay but haven't had any luck up to now. : :Many thanks. : :Zahid : : : : : -- --Rick Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=37814&t=37773 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
ISDN problems in IOS 12.1(5)T10 [7:37782]
Hi all, Have faced some weird problems when working with 4 port BRI module in 3662 router. The 3662 router has 12.1(5)T10 IP Plus IOS. Some of the problems faced are as under : The "dialer idle-timeout" on dialer interfaces does not work. The connections (ppp multilink bundle) are disconnected after a interval of 150 seconds (the dialer idle-timeout configured value) even though the IDLE time has always been 0 seconds. The "dialer pool-member 1 min-link 1" command simply blocks the B channel of that BRI interface even though there is traffic from a dialer belonging to Pool 1. ( i.e. when "dialer load-threshold 1 either " command has been configured on dialer, yet even after the load on BRI2/0:1 goes beyond 254/255 yet the second B channel never comes up. ) In the trace it shows that the BRI is trying to bring up the second interface but is unable to do so since Both channels are already busy. The most important flaw was : we have configured BRI2/0 and BRI2/1 both as members of Pool1 such that BRI2/0 has priority 100 and BRI2/1 has priority 50. Yet whenever there is interesting traffic for dialer1 (belonging to Pool1) it always tries to bring up BRI2/1 and BRI2/0 is never touched. This behavior is not noticed when BRI2/1 and BRI2/2 are configured members of the same pool (e.g. pool2) with BRI2/1 given the higher priority. ( i.e. dialer2, belonging to pool2, always brings up BRI2/1 first and then BRI2/2) relevant Configuration is as below : ! interface Serial1/0 bandwidth 2048 backup delay 260 360 backup interface Dialer1 ip address 14.29.0.18 255.255.255.252 no ip mroute-cache no cdp enable ! interface BRI2/0 no ip address encapsulation ppp no ip mroute-cache dialer pool-member 2 priority 50 dialer pool-member 1 priority 100 min-link 1 isdn switch-type basic-net3 no cdp enable ppp authentication chap ppp multilink ! interface BRI2/1 no ip address encapsulation ppp no ip mroute-cache dialer pool-member 1 priority 50 dialer pool-member 2 priority 100 isdn switch-type basic-net3 isdn T310 6 no cdp enable ppp authentication chap ppp multilink ! ! interface Dialer1 ip unnumbered FastEthernet0/0 encapsulation ppp dialer pool 1 dialer remote-name flex3662vp dialer idle-timeout 150 dialer fast-idle 90 dialer string 0228241482 dialer load-threshold 30 either dialer-group 1 pulse-time 0 ppp authentication chap ppp multilink ! interface Dialer2 ip unnumbered FastEthernet0/0 encapsulation ppp dialer pool 2 dialer remote-name flex3662rt dialer idle-timeout 150 dialer string 0805597611 dialer string 0805597622 dialer load-threshold 192 either dialer-group 2 no cdp enable ppp authentication chap ppp multilink ! Any help will be grately appreciated... Thanks and Regards Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=37782&t=37782 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Config PVC on LS1010 [7:36909]
Does anyone have experience in cfg on LS1010? I have hard time getting my PVC under an interface. I'm running ver 11.3 Thanks in advance, Rick Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=36909&t=36909 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Least cost router to run BGP (partial or Full) [7:32397]
I think u are looking for the NM-4T module that will fit into your WIC-1T. However this module is only supported on 36xx series routers. If the 26xx routers have two slots, you could use 2 numbers of WIC2T to get a max of 8Mbps, with a dual Ethernet ports in 2651. HTH... Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=32698&t=32397 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Protocol based vlan [7:31870]
Hi, Can someone help with configuring protocol based vlans on a 6000/6500 switch. Currently we have configured these subnet based vlans using: Created 2 vlan interfaces (vlan1 and vlan2) on the MSFC and assigned different subnets to each vlan interface. Then individually assigned ports 2/1-48 to vlan1 and 3/1-48 to vlan2. However this is a static configuration. The need is that once the vlan interfaces are configured there should not be a need to manually assign ports to respective vlans on the switch (CatOS) Is there a way to configure dynamic ports. Will "set port membership 3/1 dynamic" do the trick. Are there are any restrictions, like trunk ports cannot be set as dynamic ports, or vlan trunks should be running 802.10 and not ISL?? Any help will be greatly appreciated Thanks ... Rick Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=31870&t=31870 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
how to prepare for CCIE lab [7:27407]
What's the best way to prepare for the CCIE handson lab? Go buy a book and do lab excercise?? Any suggestion? Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=27407&t=27407 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: CCNA-CCNP-CCIE- [7:26854]
What kind of help can you provide? Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=26869&t=26854 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
exec timeout in dual MSFC config [7:26102]
We have a 6500 with dual SUP-1A's with each having MSFC. The MSFC's are configured in redundant mode. Thus the configuration can be changed on only one of the MSFC's. There is a unique problem being faced with such a config. The vty 0 4 configuration is as follows: line vty 0 4 session-timeout 5 exec-timeout 4 0 password 7 094F471A1A0A login length 30 This configuration holds true for all the 5 vty's on MSFC15 (the designated MSFC). However on MSFC 16 the timeout value is active only on the vty 1 thru 4. On the vty 0 , even the "length 30" config is not active. I verify that the config for vty 0 is not the same as the other vty's by using the "sh line vty 0" command. Any help will be grately appreciated. Thanks and Regards ... Rick Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=26102&t=26102 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: What is the T1 module for? [7:24697]
You are all just a little off here. It has a RJ48 connection not RJ45 ""MADMAN"" wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > No, the module is just what it says, a CSU/DSU which terminate your T1 > via an RJ45. looks like a 10BaseT connector but the similiarities end > there! > > http://www.cisco.com/warp/public/471/61.html > > Dave > > > > Charles Lin wrote: > > > > Hello! > > > > I like to ask what is a FT1/T1 DSU/CSU module for? If I install one on a > > 2525. Would that make me able to connect to ethernet lan using that module? > > Since the module port is rj45 right? Thank You! > > > > _ > > Get your FREE download of MSN Explorer at http://explorer.msn.com/intl.asp > -- > David Madland > Sr. Network Engineer > CCIE# 2016 > Qwest Communications Int. Inc. > [EMAIL PROTECTED] > 612-664-3367 > > "Emotion should reflect reason not guide it" Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=24718&t=24697 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
as3500 testing [7:24524]
my company is ordering Cisco as3500's, does anyone have any Idea how I would go about testing this equipment _ Get your FREE download of MSN Explorer at http://explorer.msn.com/intl.asp Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=24524&t=24524 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
as3500 testing [7:24521]
my company is ordering Cisco as3500's, does anyone have any Idea how I would go about testing this equipment _ Get your FREE download of MSN Explorer at http://explorer.msn.com/intl.asp Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=24521&t=24521 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
new laptop and no db9 [7:24186]
well I got a new laptop in at work today and they order it without a 9 pin serial port. I did however find a USB to serial cable but it does not seem to be working very good. Anyone else tackled this problem? what choices do I have except keeping the old laptop. Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=24186&t=24186 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
LANE between CAT 3k and CAT 5k [7:23722]
I was able to dig up 2 switches with ATM modules in them and wanted to practice setting up an ATM network between them; however, I can't find any documentation on directly connecting the two switches. I can only fine docu on connecting two switches together with a lightstream between them. Is it possible to configure LANE between the two. If it is possible could someone please provide some example configs for the CAT 5k; the CAT3k only has a legacy menu interface that isn't real hard to figure out. Thanks. Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=23722&t=23722 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RTP dates? [7:20942]
[demime could not interpret encoding binary - treating as plain text] San Jose and Halifax have made some dates available recently as a result of the 2 day to 1 day conversion. Does anyone have any idea when/if RTP might follow suit? This email was sent through the free email service at http://www.anonymous.to/ To report abuse, please visit our website and click 'Contact Us.' Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=20942&t=20942 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Cute IPX addresses needed [7:20758]
[demime could not interpret encoding binary - treating as plain text] OR --- Stan, Kyle, Eric (for the heavy/"big boned" equipment), Chef (all NICs run in promiscuous mode), and Kenny (always a suspect if an interface appears dead). Of course, the firewall is named Officer_Barbrady. -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Chuck Larrieu Sent: Saturday, September 22, 2001 11:04 PM To: [EMAIL PROTECTED] Subject: RE: Cute IPX addresses needed [7:20758] reminds me a bit of the long running discussions about the naming of servers. the tradeoff is having fun names versus functional names, and having no pneumonic that is self documenting as opposed to perhaps providing hackers with neon lights leading to critical business functions worth hacking. so - do you name your servers ( or routers, for that matter ) things like "accounting" and "payroll" and "intellectual_property" or do you name them Frodo, Cirdan, Aragorn, and Saruman? Chuck one IOS to forward them all one IOS to find them one IOS to summarize them all and in the routing tables bind them -JRR Chambers- December 19th, so they say. www.lordoftherings.net -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of David C Prall Sent: Saturday, September 22, 2001 7:35 PM To: [EMAIL PROTECTED] Subject: Re: Cute IPX addresses needed [7:20758] BA5EBA11 is the one that Novell almost always uses as a bad example of how to name your networks. David C Prall [EMAIL PROTECTED] http://dcp.dcptech.com - Original Message - From: "Ken Diliberto" To: Sent: Saturday, September 22, 2001 9:58 PM Subject: Re: Cute IPX addresses needed [7:20758] > How about DEADBEEF and BEEFFEED? > > >>> "Dennis Laganiere" 09/22/01 01:00AM >>> > I'm writing about IPX and need some cute hex-word IPX network names, like > DEADBED, or FEEDDEE... > > I'm stumped, anybody got any they like to use? > > --- Dennis This email was sent through the free email service at http://www.anonymous.to/ To report abuse, please visit our website and click 'Contact Us.' Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=20818&t=20758 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
MSCEP without anonymous access [7:20235]
Hi all, I am sure many of you must have deployed MSCEP for automatic certificate enrollment for PIX/VPN installations. We have a 3015 VPN and are using Win2K-CA for certificate enrollment. MSCEP (cesetup.exe) is installed on the Certificate server and when using Cisco VPN client (3.0.3 or 3.1) are able to successfully submit certificate enrollment requests using http://servername/certsrv/mscep/mscep.dll However the mscep website is setup to allow for Anonymous access. If Anonymous access is disabled then Cisco VPN clients are not able to submit their certificate requests. Request for your help. Or is there a alternative secure method of accessing the http://server/certsrv/mscep/mscep.dll website. Thanks and regards Rick Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=20235&t=20235 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Simulator for ISDN [7:20082]
[demime could not interpret encoding binary - treating as plain text] Is there anything that I will be unable to do [that is relevant to preparing for the CCIE lab] with an ISDN simulator (versus having actual ISDN service with my local phone company). Thanks This email was sent through the free email service at http://www.anonymous.to/ To report abuse, please visit our website and click 'Contact Us.' Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=20082&t=20082 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Back to Back ISDN Solution [7:19860]
Thanks for all who responded. Combining everyones posts I was able to put together a config that now works. For the record: You can indeed use a single ISDN line to connect two routers together to practice your ISDN configs. This config was tested using two C2503 routers, a single motorola NT1 w/2 ST ports and a single U port. The line was a standard ISDN line from SWBell. r3 interface BRI0 ip address 133.2.9.2 255.255.255.252 no ip directed-broadcast encapsulation ppp no keepalive dialer string 7133169437 dialer-group 1 isdn switch-type basic-ni isdn spid1 71331694360101 r5 interface BRI0 ip address 133.2.9.1 255.255.255.252 no ip directed-broadcast encapsulation ppp no keepalive dialer string 7133169436 dialer-group 1 isdn switch-type basic-ni isdn spid1 71331694370101 dialer-list 1 protocol ip permit This is sooo much cheaper than a simulator and sofar I have been able to do everthing i have been wanting to practice. I dont suppose you could do multilink but who cares! Thank you everybody this is a great group. Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=19860&t=19860 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: External power adaptor for IP Phone 79XX [7:19841]
I'm using a 7960 but there's no power adaptor hook up to it. I guess the LAN connection provides the power. Rick Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=19848&t=19841 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: US Stock [7:19534]
There are things that are a lot more important than cisco. Too bad it takes times like these for most of us to realize it. The fact that anyone would post anything negative with the state our country is in makes me wonder if they should even be allowed to live here! This is America so people can post what they want, but don't expect people to be happy about it. And this is definitely a time when people will be "snippy", god forbid anyone be snippy after the most horrendous tragedy that has ever occurred in this country. Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=19609&t=19534 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Do I need Token Ring routers for CCNP studies? [7:19538]
NOPE Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=19599&t=19538 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: US Stock [7:19534]
OUCH, that is a nasty sentiment. You need to get a better attitude. Cisco is not a religion, sounds like you need to find some. Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=19600&t=19534 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: OSPF over Frame Relay NBMA [7:19577]
If you are doing OSPF and using physical int., then you need map statements with broadcast at the end. If sub int's you don't need map statements but you must have network statements of course and a neighbor statement. You don't need any OSPF config on your frame switch. e-mail me if you want to send configs or anything. [EMAIL PROTECTED] Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=19598&t=19577 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
great prices on lab rental [7:19593]
Check out www.bfq.com. October is open right now. 6 hours for only 49.95. They have dual RSM's and a token ring switch as well. Set up like Mentor Technologies ECP1 class. Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=19593&t=19593 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Back to back ISDN [7:19414]
Yes thats correct. I must be missing something cause I have set this up and the second router sh isdn stat shows layer 3 spid invalid... >>> "Daniel Cotts" 09/11/01 01:24PM >>> Yes. The original post indicated that he had an ISDN BRI line from SW Bell. > -Original Message- > From: Jim Brown [mailto:[EMAIL PROTECTED]] > Sent: Tuesday, September 11, 2001 12:37 PM > To: [EMAIL PROTECTED] > Subject: RE: Back to back ISDN [7:19414] > > > Can't they share a ISDN line? Doesn't the protocol allow for > multiple ST > devices assigned different endpoints on the same circuit? > Most NT1s have > multiple ST connections. > > I'm only speaking from a theoretical standpoint and could be > completely way > off base, but couldn't two routers share and single ISDN circuit. > > A very fair B channel for each? > > -Original Message- > From: Leigh Anne Chisholm [mailto:[EMAIL PROTECTED]] > Sent: Tuesday, September 11, 2001 11:15 AM > To: [EMAIL PROTECTED] > Subject: RE: Back to back ISDN [7:19414] > > > Two telephones have two telephony links... and they can be > linked together > using a bus... but without POTS service, they can't call each > other, can > they. All the bus does is enable multiple ISDN devices to be able to > connect to the ISDN service (which is provided either by a telco or a > simulator). > > And yes, I visited the URL you posted. The ISDN BRI service > and ISDN cloud > are key components of that excerpt. > > > -- Leigh Anne > > > -Original Message- > > From: Daniel Cotts [mailto:[EMAIL PROTECTED]] > > Sent: Tuesday, September 11, 2001 10:40 AM > > To: '[EMAIL PROTECTED]'; [EMAIL PROTECTED] > > Subject: RE: Back to back ISDN [7:19414] > > > > > > Yes, but an ISDN BRI line has two B channels. A POTS line > has one channel. > > Did you visit the URL in my previous post? > > > > > -Original Message- > > > From: Leigh Anne Chisholm [mailto:[EMAIL PROTECTED]] > > > Sent: Tuesday, September 11, 2001 11:36 AM > > > To: Daniel Cotts; [EMAIL PROTECTED] > > > Subject: RE: Back to back ISDN [7:19414] > > > > > > > > > Let me give you an analogy as to what you've described. I > > > take a little > > > gizmo that splits my telephone outlet into two outlets (I use > > > one of these > > > for my answering machine and telephone). I can plug two > > > telephones into the > > > gizmo, but can they call each other? Without telephone > > > service, no. But I > > > have my own bus where I can connect multiple telephony devices... > > > > > > > -Original Message- > > > > From: [EMAIL PROTECTED] > > > [mailto:[EMAIL PROTECTED]]On Behalf Of > > > > Daniel Cotts > > > > Sent: Tuesday, September 11, 2001 10:34 AM > > > > To: [EMAIL PROTECTED] > > > > Subject: RE: Back to back ISDN [7:19414] > > > > > > > > > > > > See the following: > > > > http://www.isdnzone.com/info/bri.htm > > > > > > > > As I mentioned in a previous off line post, if you have an NT-1 > > > > device with > > > > multiple connection points (s bus?) then you can connect several > > > > devices to > > > > it. Configure each with its own B channel SPID. I have not > > > done this but > > > > everything that I read indicates that it can be done. Try it. > > > > > > > > > -Original Message- > > > > > From: Rick Harville [mailto:[EMAIL PROTECTED]] > > > > > Sent: Tuesday, September 11, 2001 10:15 AM > > > > > To: [EMAIL PROTECTED] > > > > > Subject: Back to back ISDN [7:19414] > > > > > > > > > > > > > > > I have received several responses sofar expressing a great > > > > > interest in the > > > > > solution. Back to back ISDN over a single ISDN line seems > > > to be a very > > > > > acceptable approach to simulating DDR. Unfortunately, nobody > > > > > seems to be > > > > > able to confirm that it can be done. A seach of archives > > > > > reveals discussions > > > > > but no real verification that this is possible. The p If > > > > > anyone has actually > > > > > done this please respond as there seems to be a great > > > > > interest in doing this. > > > > > > > > > > Once again, the question is, can you connect two BRI (st) > > > > > interfaces through > > > > > a NT1 device using only a single ISDN line? > > > > > > > > > > I have 2 Cisco 2503's with st Bri. Im using Motorola NT1 > > > device with a > > > > > single U interface and 2 ST ports. I have at my disposal a > > > > > single ISDN line > > > > > from SW Bell. I would like to split the spids at the nt1 > > > > > device and practice > > > > > my DDR with only one spid on each router. > Report misconduct > and Nondisclosure violations to [EMAIL PROTECTED] Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=19459&t=19414 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Back to back ISDN [7:19414]
I have received several responses sofar expressing a great interest in the solution. Back to back ISDN over a single ISDN line seems to be a very acceptable approach to simulating DDR. Unfortunately, nobody seems to be able to confirm that it can be done. A seach of archives reveals discussions but no real verification that this is possible. The p If anyone has actually done this please respond as there seems to be a great interest in doing this. Once again, the question is, can you connect two BRI (st) interfaces through a NT1 device using only a single ISDN line? I have 2 Cisco 2503's with st Bri. Im using Motorola NT1 device with a single U interface and 2 ST ports. I have at my disposal a single ISDN line from SW Bell. I would like to split the spids at the nt1 device and practice my DDR with only one spid on each router. Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=19414&t=19414 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Back to Back ISDN [7:19312]
This is a fine group and I lurk here often, please help if you can... Does anyone know if its possible to setup two C2503's back to back over a single ISDN line, assigning one spid to one router and the other spid to the second router? I have 2 Cisco 2503's with st Bri. Im using Motorola NT1 device with a single U interface and 2 ST ports. I have at my disposal a single ISDN line from SW Bell. I would like to split the spids at the nt1 device and practice my DDR with only one spid on each router. If this is possible, please forward any info you might have on exactly how to do this? Thanks in advance. Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=19312&t=19312 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Deleting file from flash [7:18899]
You must preform a squeeze to remove the files marked deleted. use the squeeze EXEC command: squeeze filesystem: filesystem: Flash file system followed by a colon. -Original Message- From: ext Ednilson Rosa [mailto:[EMAIL PROTECTED]] Sent: Thursday, September 06, 2001 10:29 PM To: [EMAIL PROTECTED] Subject: Re: Deleting file from flash [7:18899] Just complementing: I already reloaded the router and it's still the same! Any clues?? ER - Original Message - From: "Ednilson Rosa" To: Sent: Thursday, September 06, 2001 11:45 PM Subject: Deleting file from flash [7:18899] Hi List, I erased a file from the flash memory of a 3640 but I still can see it's name on the flash marked as "deleted": System flash directory: File Length Name/status 1 5421492 c3640-io3-mz.121-4.bin 2 3469688 c3640-sy-mz.120-5.T1.bin [deleted] 3 5398220 c3640-is-mz_120-7.bin [14289592 bytes used, 2487624 available, 16777216 total] 16384K bytes of processor board System flash (Read/Write) How can I completely remove it from flash?? Thanks, ER - Original Message - From: "Brad Ellis" To: Sent: Thursday, September 06, 2001 9:01 PM Subject: Re: LAB Equipement for CCIE [7:18877] Francisco, hi! Please try searching the threads at www.groupstudy.com. I think I have answered this question on here about 3-4 times in the past year. If you'd like to purchase a complete CCIE lab, you can email me offline. thanks, -Brad Ellis CCIE#5796 [EMAIL PROTECTED] ""Francisco deAmorim"" wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > I know, yet I need a person who has for example, owned some of this > equipment and tell me the bare minimums. > > > > > > ""Baker, Jason"" wrote in message > [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > > try looking at the CCIE certification area on www.cisco.com > > > > it will tell you what you need to know knowledge and equipment wise. > > > > Jason > > > > > > > -Original Message- > > > From: Francisco deAmorim [SMTP:[EMAIL PROTECTED]] > > > Sent: Friday, 7 September 2001 9:11 am > > > To: [EMAIL PROTECTED] > > > Subject: LAB Equipement for CCIE [7:18877] > > > > > > I would like to have some CCIEs or well informed people give me an idea > of > > > what they consider a minimum equipment I should get for a home lab to > > > practice for my CCIE. I mean to buy but I need some serious thoughts. > > > > > > > > > I appreciate all the help in advance Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=18906&t=18899 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Another CCNP is born [7:18392]
Congrad to you!!!Phantom wrote: > > Well after 4 months of hard work and late nights I am finally a > CCNP. > > I just passed the CIT exam with a score of 965. The exam was > not very > difficult. If you studied hard for the other exams this one > will be a > breeze. Only new stuff that wasn't in the other 3 exams is some > apple and > IPX stuff. the rest was in the other exams. > > If you study the Cisco press "Cisco CCNP Support Exam > Certification Guide" > you will be 100 OK. I didn't get anything in the exam that > wasn't covered in > this book. The book is very accurate and to the point. Probably > the best > CCNP study guide out there. > > The order I did the exams in is as follows > > Switching 945 > Routing 954 > BCRAN 954 > CIT 965 > > After switching and routing the other 2 are rather easy. Just > study the > Cisco press guides and use the cram sessions from brainbuzz. > The boson exams > are pretty good, especially for switching and CIT. also the > edge tests that > come with the Sybex books are a big help. Sybex study guide has > a lot of > information and will also be sufficient to pass the exams. But > you don't > need both Cisco and sybex, only one will do and if I had to > choose I would > choose the Cisco press books > > Now on to CCIE Written. > > I will apreciate any CCIE help you may have > > > [demime removed a uuencoded section named smile.gif which was > 11 lines] > > Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=18437&t=18392 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: VPN certificate [7:16759]
What version of VPN Concentrator S/W and VPN client software are u using. Are u connecting from behind a NAT device, or is your VPN situated behind the firewall. I am facing a similar problem when connecting using certificates. With similar errors : on client : Remote peer not responding. On VPN concentrator : "Duplicate phase1 packet detected" Regards ... Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=18225&t=16759 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
IPSec-over-NAT [7:18224]
Hi all, We are using Cisco VPN 3015 concentrator with 3.0.3.3des software and a 3.0.3B Cisco VPN client. We have a NAT device (1600 router with NAT) between the VPN client and the VPN concentrator. If I use preshared keys and with IPSec-over-NAT enabled, I am able to connect to the VPN concentrator and access servers. However while using Digital certificates the same doesn't hold true. At times when the link between VPN client and VPN cocentrator is less congested (ping response times less than 62ms) , I am able to connect to the VPN concentrator without errors (when using IPSec-over-NAT and digital certificates) However if the link is little congested(ping response times in the range 63ms to 110ms) I cannot establish the connection. It err's out saying "Duplicate Phase1 packet detected". Can anyone help on this. We are facing this in our live environment hence the urgency. Also If I connect my connection never gets timed-out.(by default the timeout value for a internal user is 28800ms or 8 hours) Thanks and regards... Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=18224&t=18224 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Can you pass CCNP w/o having Cisco gears? [7:18107]
Can you pass CCNP w/o having Cisco gears? I'm doing practice test from Boson and doing the Sybex study guide? Is that sufficient? Do I need to be in front of a router? Thanks in advance, Rick D Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=18107&t=18107 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Passed BSCN [7:17522]
Does the test has any fill-ins like the Boson practice question? Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=17714&t=17522 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Advance Routing Test [7:17711]
I've been working with the Boson study questions. In the actual exam, do they ask you for the exact command to display or configure something or is it multiple choice? Thanks in advance, Rick D. Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=17711&t=17711 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: ip default-network [7:16507]
How is this different from configuring two different default routes for the same network e.g. ip route 10.0.0.0 255.0.0.0 202.33.22.11 ip route 10.0.0.0 255.0.0.0 203.44.33.22 ip route 10.0.0.0 255.0.0.0 204.55.44.33 Regards ... Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=16566&t=16507 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
VPN 3000 using certificates [7:16172]
When using Digital certificates for authentication I am facing problems if the vpn3000 internal user database is used for extended authentication. If an internal user is created and if that user does not belong to the VPNC_base_group then the extended authentication fails. i.e. if a new group is created for remote dialup users ( e.g. ipsecgroup) and the internal user (e.g. ipsecuser) is configured to belong to the "ipsecgroup" group. Then the internal user authentication fails (if using digital certificates). If using preshared keys, and if the user is made part of the ipsecgroup then the user does get authenticated. In the "IPSec Parameters" we have a field named "IKE Peer identity validation" for remote dialup users where we can force the concentrator to validate the user based on the attributes in his public certificate. This makes me believe that even if a user is made part of a particular group ( e.g. ipsecgroup) and if that user is using Digital certificates for session authentication the whole thing should still work. Any ideas? . Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=16172&t=16172 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
multicast on 8540 BVI interfaces [7:16136]
We have 8540 CSR sitting at the core of our network. Three 5500 switches connect to it via gig uplinks. We have three different IP subnets and all the three 5500's have users from all these three subnets. Due to this we had to configure BVI on the 8540 and make the interfaces connecting to each of these switches part of the bridge group 1 (corresponding to the BVI interface 1). We have enabled ip routing on the bvi interfaces. The need is to enable multicast traffic to be forwarded on these BVI interfaces so that multicast traffic orignating from one of the 5500 switches can be heard by the other two 5500 switches. I believe PIM cannot be configured on the BVI interfaces, thus can anyone help in configuring DVMRP on the BVI interfaces so that multicast traffic can be forwarded. If there is an alternative to DVMRP please suggest the same. Thanks in anticipation Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=16136&t=16136 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Cisco Call Manager [7:15402]
I am looking to pass the CIPT exam and would like to get a copy of Call Manager. Does anyone know where I can get a copy or maybe a shareware voice or an eval? Thanks. /Rick Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=15402&t=15402 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: T1 [7:14054]
simply the ability to break the T1 down to ds0 level. So you get 24 DS0's in a T1 same thing with DS3's, 28 T1's in a DS3. Rick ""Santosh Koshy"" wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > Channelized or Non-Channelized: This means that the payload data can either > be used in individual groupings of the whole or as just one large group > containing the entire bandwidth. This is important in todays market as by > having the versatility to be either the customer can customer fit a solution > for him/her. Channelized T1 is especially helpful for sharing the cost of T1 > with several different media(be it video, voice, data..) > > ""Michael Damkot"" wrote in message > [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > > What was it, please post for our education as well... > > > > -- > > Michael Damkot > > Technical Trainer > > Network Support Engineer II > > > > > > > > ""Santosh Koshy"" wrote in message > > [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > > > I found the answer > > > > > > Thanks, > > > > > > ""Santosh Koshy"" wrote in message > > > [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > > > > I keep hearing this all the time, but still have not found a > definitive > > > > answer... > > > > can anyone explain the difference between chanellized / unchanellized > > T1. > > > > > > > > Thanks, > > > > -- > > > > Santosh Koshy > > > > WAN Administrator Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=14226&t=14054 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
1750 with VIC [7:14102]
I am having problems telling whether my VIC cards are working in my 1750 router. After the router powers up I see two amber LEDs that never go out. I don't know if they are suppose to stay on or not. I issue the "show voice port" command and I don't see any cards. I also try the global configuration command "voice-port" and I get an error. I also tried "show voice ?" and the only valid command I have is "show voice port". I believe that I show have many show voice commands available. When I do a "show version" I don't see any voice modules listed. I moved the voice card to every slot in the router, but no change. Can someone please tell me how I can verify the cards are working correctly. /Rick Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=14102&t=14102 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
OT: Protocol Analysis help needed...! [7:13740]
To anyone that has some protocol analysis experience can you please contact me "offline" to discuss some issues that I have. Thanks for your time...and sorry for the waste of bandwidth. Rick Watson Network Engineer Advanced Systems Development, Inc. OUSD(Comptroller) 703.697.5710 office [EMAIL PROTECTED] Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=13740&t=13740 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Alert: HTTP bug makes nearly all Cisco routers vulnerable [7:12505]
As I understand it, excuse me if I am wrong, but this bug is focused on the ability of newer routers to be managed via http, not so much to deny port 80 traffic. There is a means, by using a particular string, to gain admin level privileges on the affected router. It has been said that using TACACS will resolve this problem, as well as the 'no ip http server' command. Also this bug affects IOS version 11.1 and above...so for all those using old IOS (I am guilty also)...smile you're delay in upgrading has been worthwhile..!! -Original Message- From: Chuck Larrieu [mailto:[EMAIL PROTECTED]] Sent: Monday, July 16, 2001 12:00 PM To: [EMAIL PROTECTED] Subject: RE: Alert: HTTP bug makes nearly all Cisco routers vulnerable [7:12493] I remain curious about this. filtering http access sources from untrusted interfaces and destined for router interfaces does not work? I'll have to try this in the lab access-list 101 deny tcp untrusted_network router_interface eq 80 access-list 101 permit ip any any Chuck -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Liang Mark J Civ AFRL/PROI Sent: Monday, July 16, 2001 8:39 AM To: [EMAIL PROTECTED] Subject: RE: Alert: HTTP bug makes nearly all Cisco routers vulnerable [7:12489] You could always disable HTTP service on you routers. mark -Original Message- From: Sean Young [mailto:[EMAIL PROTECTED]] Sent: Monday, July 16, 2001 8:29 AM To: [EMAIL PROTECTED] Subject: Re: Alert: HTTP bug makes nearly all Cisco routers vulnerable [7:12487] This Cisco bug will BITE only if you use local account. If you use TACACS for Authentication, Authorization and Accounting (AAA), then you do NOT to have to worry about this bug. I've been trying to test it in the lab without success because I use TACACS. If anyone think I am wrong, please contact me and straight me out. Sean >From: "cisco skin" >Reply-To: "cisco skin" >To: [EMAIL PROTECTED] >Subject: Re: Alert: HTTP bug makes nearly all Cisco routers vulnerable [7:12478] >Date: Mon, 16 Jul 2001 10:37:54 -0400 > >Check your MSFC's!!! > > >""Oke Oyebanji"" wrote in message >[EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > > Hi Everybody, > > > > This was a released from TechRepublic on Cisco routers vulnerablity early > > this morning, please do check it out and take necessary precaution. For > > details check: > > > > http://www.techrepublic.com/article.jhtml?id=r00220010716mco02.htm > > > > Have a nice day. > > > > Kind regards, > > Banji. > > > > > > _ > > Get Your Private, Free E-mail from MSN Hotmail at http://www.hotmail.com. > > > > [GroupStudy.com removed an attachment of type application/msword which had >a > > name of Cisco Routers Bugs.doc] misconduct and Nondisclosure violations to [EMAIL PROTECTED] Get your FREE download of MSN Explorer at http://explorer.msn.com Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=12505&t=12505 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
IP Phones [7:8898]
I am looking to pass the Cisco IP Telephony and the CVOICE exams. I would like to get a hold of some cheap IP Phone for IP Telephony. Does anyone know where I can get them. I am not interested in quality, just something to test and study with. Thanks. /Rick Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=8898&t=8898 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
PIX 506 [7:8799]
I have been using the PIX 506 and have had hardware problems. The unit seems to loose power. The fan stays spinning, but all the LEDs go out and it doesn't function. When it is turned off and back it works for anywhere for 10 to 5 hours, then needs to be power cycled again. I have had this problem with 3 PIX 506's. Cisco has been good about returning them. I just wanted to know if anyone else has experienced these problems. /Rick Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=8799&t=8799 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: CCIE lab prep. Is there a syllabus? [7:8385]
ooopsunable to post the link...hmm...why..? -Original Message- From: Watson, Rick, CTR, OUSDC [mailto:[EMAIL PROTECTED]] Sent: Friday, June 15, 2001 1:29 PM To: [EMAIL PROTECTED] Subject: RE: CCIE lab prep. Is there a syllabus? [7:8385] Rick Watson Network Engineer Advanced Systems Development, Inc. OUSD(Comptroller) 703.697.5710 office [EMAIL PROTECTED] -Original Message- From: Dennis Laganiere [mailto:[EMAIL PROTECTED]] Sent: Friday, June 15, 2001 12:40 PM To: [EMAIL PROTECTED] Subject: RE: CCIE lab prep. Is there a syllabus? [7:8385] I buy every book that comes out on the CCIE, and I don't know this one... Anybody know the ISBN, or where to get it from? I would appreciate it... Thanks... Dennis -Original Message- From: Rashid Lohiya [mailto:[EMAIL PROTECTED]] Sent: Thursday, June 14, 2001 9:18 AM To: [EMAIL PROTECTED] Subject: Re: CCIE lab prep. Is there a syllabus? [7:8385] Where does one get this "i.p. experts ccie workbook" from? Any ideas? Rashid ""John Davenport"" wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > check out i.p. experts ccie workbook. i just got a copy of it > and it lays out each section for you covering every topic that can possibly > be on the lab. there is also an advanced section with 5 simulated labs - > (one of them is very close to a lab my friend had!) he actually said that > the advanced labs in the workbook are probably harder than the real ccie > lab. (my opinion is that it's better material than ccbootcamp with cheaper > racktime!) > > JD > CCNA, CNE, (CCIE Written) > Telesys, Inc. - Springfield, IL > > > > ""Chris Rock"" wrote in message > [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > > I just passed the CCIE R&S written, and prepared for this exam using the > > road map posted on the Cisco web site. > > > > Is there a similar document for the lab? > > > > I asked one of the CCIE's here at work, and he told me to study > > "Everything". Needless to say, this was not helpful. > > > > Is there something that will place some specific boundaries on what you > need > > to study? > > > > I have seen info that EXCLUDES certain topics (X.25, Decnet, Vines...), > but > > nothing that INCLUDES anything. > > > > thanks > > > > Chris [GroupStudy.com removed an attachment of type application/x-pkcs7-signature which had a name of smime.p7s] [GroupStudy.com removed an attachment of type application/x-pkcs7-signature which had a name of smime.p7s] Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=8736&t=8385 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: CCIE lab prep. Is there a syllabus? [7:8385]
Rick Watson Network Engineer Advanced Systems Development, Inc. OUSD(Comptroller) 703.697.5710 office [EMAIL PROTECTED] -Original Message- From: Dennis Laganiere [mailto:[EMAIL PROTECTED]] Sent: Friday, June 15, 2001 12:40 PM To: [EMAIL PROTECTED] Subject: RE: CCIE lab prep. Is there a syllabus? [7:8385] I buy every book that comes out on the CCIE, and I don't know this one... Anybody know the ISBN, or where to get it from? I would appreciate it... Thanks... Dennis -Original Message- From: Rashid Lohiya [mailto:[EMAIL PROTECTED]] Sent: Thursday, June 14, 2001 9:18 AM To: [EMAIL PROTECTED] Subject: Re: CCIE lab prep. Is there a syllabus? [7:8385] Where does one get this "i.p. experts ccie workbook" from? Any ideas? Rashid ""John Davenport"" wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > check out i.p. experts ccie workbook. i just got a copy of it > and it lays out each section for you covering every topic that can possibly > be on the lab. there is also an advanced section with 5 simulated labs - > (one of them is very close to a lab my friend had!) he actually said that > the advanced labs in the workbook are probably harder than the real ccie > lab. (my opinion is that it's better material than ccbootcamp with cheaper > racktime!) > > JD > CCNA, CNE, (CCIE Written) > Telesys, Inc. - Springfield, IL > > > > ""Chris Rock"" wrote in message > [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > > I just passed the CCIE R&S written, and prepared for this exam using the > > road map posted on the Cisco web site. > > > > Is there a similar document for the lab? > > > > I asked one of the CCIE's here at work, and he told me to study > > "Everything". Needless to say, this was not helpful. > > > > Is there something that will place some specific boundaries on what you > need > > to study? > > > > I have seen info that EXCLUDES certain topics (X.25, Decnet, Vines...), > but > > nothing that INCLUDES anything. > > > > thanks > > > > Chris [GroupStudy.com removed an attachment of type application/x-pkcs7-signature which had a name of smime.p7s] Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=8732&t=8385 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: RADIUS solution [7:8640]
I have used one called radtac. It works good for me, but I only use it for very simple configs and don't really hit it vary hard, so I can't say much more about it. You can get a full trial version off their web sight that is good for 30 day. (www.radtac.com) /Rick - Original Message - From: "Imran Moin" To: Sent: Thursday, June 14, 2001 7:48 PM Subject: RADIUS solution [7:8640] > Hi all, > > I have to implement a RADIUS solution for my network. > Before researching, i wanted to ask you all if you > have used any product. > > How good is Cisco's Ciscosecure 2.1 > > Thanx in advance. > > Imran. > > __ > Do You Yahoo!? > Spot the hottest trends in music, movies, and more. > http://buzz.yahoo.com/ Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=8641&t=8640 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
'show controllers' command [7:8528]
...reading the Cisco Press Support Book. They talked about the 'show controllers' command. My question is when and why would you use this command? I read that the output can be overwhelming, and that some of the information is irrelevant! Go figure!. But again, when would you need the information form this command? Thanks for the insight. Rick Watson Network Engineer Advanced Systems Development, Inc. OUSD(Comptroller) 703.697.5710 office [EMAIL PROTECTED] Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=8528&t=8528 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
what is spare [7:8443]
I have seen many items on Cisco's web page listed a spare with an = sign in the part number. Can some tell me what this means? Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=8443&t=8443 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: PBR [7:7388]
I would be careful in implementing policy 'in your network' if you have a choice. If you are designing your network, use traffic shaping (can only be used outbound on your interfaces, so plan appropriately). If you police traffic with 'exceed action drop' then you will masacre TCP traffic. Traffic shaping regulates traffic whereas policing kills traffic. Many firewalls, like Checkpoint VPN-1 for example, use shaping to manage traffic rather than policing. Policing in most cases is too strict, something to use if you are an ISP with strict rules or policy. If you have the option to configure QoS throughout your network, than use shaping. If you are working on only a single router or interface (or need to regulate traffic you don't control inbound on an interface) then policing may be your only choice. Just a thought. /Rick Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=7696&t=7388 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Help with configuring Cisco AUX port for call-back [7:7652]
Where is your interface async1? This doesn't look like a complete config. One thing that's suspect is you have both a chat script for 'script modem-off-hook' and 'modem autoconfigure', use one or the other. I wouldn't autoconfigure the modem until you get this working with the off-hook chat script. Kevin Jones' config looks fine (it works, doesn't it?!). Have you looked at the following URL?: http://www.cisco.com/warp/customer/793/access_dial/async_ppp.html /Rick Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=7681&t=7652 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: IP Forwarding to Cisco [7:7555]
Albert, My bad, I just realized you weren't configuring a serial interface, you were doing a dial-up (async? isdn?), anyway here is my correction: (this works with IOS 11.3 or higher) Hope this helps... interface dialer1 ip address negotiated For example: ! ip subnet-zero chat-script dialout ABORT ERROR ABORT BUSY "" "AT" OK "ATDT \T" TIMEOUT 45 CONNECT \c ! ip nat inside source list 1 interface dialer1 overload ! interface ethernet0 ip address 192.168.255.1 255.255.255.0 ip nat inside ! interface async1 no ip address encap ppp async mode dedicated dialer in-band dialer pool-member 1 ppp authentication chap callin ! interface dialer1 ip address negotiated ip nat outside encap ppp dialer remote-name ISP dialer idle-timeout 1200 dialer string nnn dialer pool 1 dialer-group 1 no fair-queue no cdp enable ppp authentication chap callin ppp chap hostname xxx ppp chap password 0 ! ip classless ip route 0.0.0.0 0.0.0.0 dialer1 no ip http server access-list 1 permit 192.168.255.0 0.0.0.255 dialer-list 1 protocol ip permit ! line aux 0 script dialer dialout modem inout modem autoconfigure discovery transport input telnet stopbits 1 speed 115200 (or 38400 on c2500) flowcontrol hardware ! line vty 0 4 access-class 1 in transport input telnet transport output none password Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=7694&t=7555 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: IP Forwarding to Cisco [7:7555]
Use 12.1(5)T8 (or higher) and use EasyIP Phase 3 (DHCP client), forget the PC. interface dialer0 ip address dhcp ... etc. See my other post at http://www.groupstudy.com/form/read.php?f=7&i=7419&t=7216 Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=7680&t=7555 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: 2522 Ints Up\Down [7:7548]
Can you post a 'sh int s0' and a 'sh int s2' so that the group can see? Also a 'sh contr s0' and a 'sh contr s2' would be nice. Have you checked out 'physical-layer async' on those ports? /Rick Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=7683&t=7548 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Bridging one subnet and routing another over the s [7:7481]
I believe you will need to correct the ip addressing on at least one side because as soon as you put an IP address on the router interfaces and enable ip routing, IP packets will not be bridged. I wourld recommend fixing the side which would be less work. On the side you haven't fixed, put a secondary ip address on the ethernet interface for the old subnet that was bridged. That way, both your new and old subnets (at least on one side) will work together. After you cleanup the second side's ip addressing, remove the secondary. Hope this helps. /Rick Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=7695&t=7481 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: AS2511-RJ [7:7648]
Any router but a 2500 will give you the serial number via the following commmands: c2600 : 'sh c2600', 'sh diag' c3600 : 'sh c3600', 'sh diag' c7200 : 'sh c7200', 'sh diag' rsp7500: 'sh diag 31' In addition, 'sh diag' will give you the serial numbers of all the modules installed in a modular router (c2600, c3600, c7200, rsp7500). Some examples: c2600-lab>sh diag Slot 0: C2620 1FE Mainboard port adapter, 3 ports Port adapter is analyzed Port adapter insertion time unknown EEPROM contents at hardware discovery: Hardware revision 1.0 Board revision A0 Serial number 482661505 Part number73-2843-03 Test history 0x0 RMA number 00-00-00 EEPROM format version 1 EEPROM contents (hex): 0x20: 01 94 01 00 1C C4 D4 81 49 0B 1B 03 00 00 00 00 0x30: 50 0A 21 06 00 00 00 00 00 00 00 00 00 00 00 00 WIC Slot 0: FT1 WAN daughter card Hardware revision 1.3 Board revision A0 Serial number 12855433 Part number800-03279-03 Test history 0x0 RMA number 00-00-00 Connector typeWan Module EEPROM format version 2 EEPROM contents (hex): 0x20: 02 11 01 03 00 C4 28 89 50 0C CF 03 00 00 00 00 0x30: 50 00 00 00 99 02 24 01 FF FF FF FF FF FF FF FF WIC Slot 1: BRI U - 2091 WAN daughter card Hardware revision 4.0 Board revision B0 Serial number 13890185 Part number800-01834-02 Test history 0x0 RMA number 00-00-00 Connector typeWan Module EEPROM format version 1 EEPROM contents (hex): 0x20: 01 09 04 00 00 D3 F2 89 50 07 2A 02 00 00 00 00 0x30: 58 00 00 00 99 04 21 01 FF FF FF FF FF FF FF FF c3600-lab>sh c3600 C3600 Network IO Interrupt Throttling: throttle count=0, timer count=0 active=0, configured=0 netint usec=4000, netint mask usec=1000 IO Mask is 13 c3600 Mainboard EEPROM: Serial number 68306757 MAC=0060.8337.ccd0, MAC Block Size=65535 EEPROM format version 0 EEPROM contents (hex): 0x00: 00 01 00 60 83 37 CC D0 0A FF 73 18 50 04 FF FF 0x10: 04 12 47 45 A0 FF 96 11 14 FF FF FF FF FF 00 02 0x20: FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF 0x30: FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF 0x40: FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF 0x50: FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF 0x60: FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF 0x70: FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF FIREWALL-RTR>sh diag Slot 0: Combo 2E, 2W Port adapter, 4 ports Port adapter is analyzed Port adapter insertion time unknown EEPROM contents at hardware discovery: Hardware revision 1.0 Board revision A0 Serial number 4119484 Part number800-01171-03 Test history 0x0 RMA number 00-00-00 EEPROM format version 1 EEPROM contents (hex): 0x20: 01 1E 01 00 00 3E DB BC 50 04 93 03 00 00 00 00 0x30: 50 00 00 00 96 12 03 17 FF FF FF FF FF FF FF FF WIC Slot 1: BRI U - 3420 WAN daughter card Hardware revision 0.1 Board revision K0 Serial number 3946195 Part number73-1777-01 Test history 0x0 RMA number 00-00-00 Connector typePCI EEPROM format version 1 EEPROM contents (hex): 0x20: 01 08 00 01 00 3C 36 D3 49 06 F1 01 00 00 00 00 0x30: A0 00 00 00 00 00 00 A0 00 00 00 00 00 00 00 00 c7200-lab>sh c7200 Network IO Interrupt Throttling: throttle count=0, timer count=0 active=0, configured=0 netint usec=4000, netint mask usec=200 C7200 Midplane EEPROM: Hardware revision 2.0 Board revision A0 Serial number 15456710 Part number73-3223-05 Test history 0x0 RMA number 00-00-00 MAC=0030.711c.8000, MAC Size=1024 EEPROM format version 1, Model=0x6 EEPROM contents (hex): 0x20: 01 06 02 00 00 EB D9 C6 49 0C 97 05 00 30 71 1C 0x30: 80 00 04 00 00 00 00 00 99 10 22 50 00 00 FF 00 C7206VXR CPU EEPROM: Hardware revision 2.2 Board revision A0 Serial number 15187587 Part number73-3409-03 Test history 0x0 RMA number 00-00-00 EEPROM format version 1 EEPROM contents (hex): 0x20: 01 AE 02 02 00 E7 BE 83 49 0D 51 03 00 00 00 00 0x30: 50 00 00 00 99 10 10 00 00 00 FF FF FF FF FF 00 c7200-lab>sh diag Slot 0: Fast-ethernet on C7200 I/O card with MII or RJ45 Port adapter, 1 port Port adapter is analyzed Port adapter insertion time 9w1d ago EEPROM contents a
Re: DHCP on 2501 [7:7216]
I think I am doing the same thing in my home lab, this info may help you. EasyIP Phase 3 (DHCP Client) is definately not available until 12.1(5)T (which is deferred to 12.1(5)T8). Make sure you don't use the deferred release 12.1(5)T. I would highly recommend NOT using telnet to remotely administer your router, that is a huge hole, not to mention everything you type is in the clear (including enable passwords). Use SSH. That is available in the DES(56) or 3DES(168) images, unfortunately not the 2500. Use a linux box behind your firewall router (using NAT port translation) to ssh to from remote locations. In any case you will need 16MB of flash and probably 8MB or DRAM in a 2501 to even run the above images. I'm pretty sure that ROM should not be an issue in a 2501, as long as it is at least at the level that supports 16MB of flash and more than 2MB of DRAM (VERY early ROMs did not support either, I doubt you have something that old). This info is from a c3620, but most of this should apply... FIREWALL-RTR#sh ver Cisco Internetwork Operating System Software IOS (tm) 3600 Software (C3620-IO3-M), Version 12.1(5)T8, RELEASE SOFTWARE (fc1) TAC Support: http://www.cisco.com/cgi-bin/ibld/view.pl?i=support Copyright (c) 1986-2001 by cisco Systems, Inc. Compiled Mon 07-May-01 19:45 by ccai Image text-base: 0x60008950, data-base: 0x60A76000 ROM: System Bootstrap, Version 11.1(7)AX [kuong (7)AX], EARLY DEPLOYMENT RELEASE SOFTWARE (fc2) ROM: 3600 Software (C3620-IO3-M), Version 12.1(5)T8, RELEASE SOFTWARE (fc1) FIREWALL-RTR uptime is 5 days, 15 hours, 12 minutes System returned to ROM by reload at 21:50:43 PDT Thu May 31 2001 System restarted at 21:52:28 PDT Thu May 31 2001 System image file is "flash:c3620-io3-mz.121-5.T8.bin" cisco 3620 (R4700) processor (revision 0x81) with 28672K/4096K bytes of memory. Processor board ID 04124745 R4700 CPU at 80Mhz, Implementation 33, Rev 1.0 Bridging software. X.25 software, Version 3.0.0. Basic Rate ISDN software, Version 1.1. 2 Ethernet/IEEE 802.3 interface(s) 1 ISDN Basic Rate interface(s) DRAM configuration is 32 bits wide with parity enabled. 29K bytes of non-volatile configuration memory. 16384K bytes of processor board System flash (Read/Write) Configuration register is 0x2102 FIREWALL-RTR#dir flash: Directory of flash:/ 1 -rw- 6026252c3620-io3-mz.121-5.T8.bin 2 -rw- 1545728 May 31 2001 03:17:25 qdm.tar 16777216 bytes total (9205108 bytes free) FIREWALL-RTR#sh run Building configuration... Current configuration : 4387 bytes ! ! Last configuration change at 12:06:39 PDT Tue Jun 5 2001 ! NVRAM config last updated at 12:08:26 PDT Tue Jun 5 2001 ! version 12.1 no service single-slot-reload-enable service nagle no service pad service timestamps debug uptime service timestamps log datetime localtime service password-encryption no service dhcp ! hostname FIREWALL-RTR ! logging buffered 16384 debugging logging rate-limit console 10 except errors no logging console enable secret ! clock timezone PST -8 clock summer-time PDT recurring ip subnet-zero no ip source-route ip cef ! ! no ip finger ! ip inspect name firewall ftp ip inspect name firewall udp ip inspect name firewall tcp ip audit notify log ip audit po max-events 100 ip audit smtp spam 25 ip audit name AUDIT.1 info action alarm ip audit name AUDIT.1 attack action alarm drop reset ! class-map match-all telnet match access-group 2002 class-map match-all ftp match access-group 2001 class-map match-all web match access-group 2000 ! ! policy-map test1 class ftp police 56000 56000 56000 conform-action transmit exceed-action drop class telnet police 56000 56000 56000 conform-action transmit exceed-action drop class class-default police 56000 1000 1000 conform-action transmit exceed-action drop ! ! ! interface BRI0/0 no ip address shutdown ! interface Ethernet0/0 description Internal Net ip address 192.168.255.1 255.255.255.0 ip access-group 101 in no ip redirects no ip proxy-arp ip nat inside ip inspect firewall in full-duplex ! interface Ethernet0/1 description Internet bandwidth 512000 ip address dhcp ip access-group 100 in no ip redirects no ip unreachables no ip proxy-arp ip nat outside ip audit AUDIT.1 in half-duplex service-policy input test1 fair-queue no cdp enable ! ip nat inside source list 1 interface Ethernet0/1 overload ip classless ip http server ip http access-class 1 ! no logging trap access-list 1 permit 192.168.255.0 0.0.0.255 access-list 100 deny icmp any any redirect access-list 100 deny ip 10.0.0.0 0.255.255.255 any access-list 100 deny ip 172.16.0.0 0.15.255.255 any access-list 100 deny ip 192.168.0.0 0.0.255.255 any access-list 100 deny ip 127.0.0.0 0.255.255.255 any access-list 100 deny ip 224.0.0.0 31.255.255.255 any access-list 100 permit udp host 0.0.0.0 eq bootps host 255.255.255.255 eq bootpc access-list 100 deny ip host 0.0.0.0 any access-list 100 deny ip host 255.255.255.255 any acc
vpdn pptp [7:7211]
I am trying to configure a voluntary VPDN tunnel and am having trouble with the example config I got from Cisco's web page. The example is as follows: vpdn-group 1 ! Default PPTP VPDN group accept-dialin protocol pptp virtual-template 1 local name cisco_pns The problem is with the PROTOCOL command. Every router that I have looked has only L2F and L2TP as valid options not PPTP. Is this an error or am I doing something wrong. I have seem this on a bunch of different IOS and on different platforms. Thanks. /Rick Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=7211&t=7211 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Transparent Bridging ? [7:7126]
OK, more than you ever wanted to know... The setup of the PCs is really no different than if they are on the same hub, switch vlan, or directly connected via a twist cable. The configuration of the PCs has to be done in one of two ways: 1. Set the PCs to the same ip subnet and mask (the default gateway doesn't matter, it won't be used). 2. Set the PCs to entirely different ip subnets (or the same, as long as the ip address is not identical or a broadcast address) and set the default gateway the same as the ip address. First Option: - Set the PCs to the same ip subnet and mask (the default gateway doesn't matter, it won't be used). For example: PC#1: IP: 10.100.1.20 MASK: 255.255.255.0 GW: 0.0.0.0 (or blank, depending on OS) PC#2: IP: 10.100.1.21 MASK: 255.255.255.0 GW: 0.0.0.0 The reason the default gateway doesn't matter is because both PC's are on the same IP subnet. The default gateway is only used if you try to communicate (ping) an ip subnet that is not local to the PC. On PC#1, ping your loopback (ping localhost on Windows), then ping your interface (ping 10.100.1.20) see above, then ping the other PC (ping 10.100.1.21). The reason for pinging your loopback and your own interface is to verify that your IP stack is functioning and configured properly before you blame the 'network'. Since the two PCs don't actually use the IP addresses to communicate, you can see what is actually going on by typing 'arp -a' in Windows to see the local ARP cache. You should see the IP address of PC#2 (10.100.1.21) and the MAC address. When you typed 'ping 10.100.1.21' on PC#1 (above), PC#1 actually: a. Sent an ARP request on the wire (you will see this on your sniffer) looking for the MAC address that answers to IP address 10.100.1.21. b. Provided only one machine on this segment (hub, switch vlan, etc.) is configured with this IP address, PC#2 will be the only PC to answer that ARP request. c. PC#1 will populate its local ARP cache with the IP address to MAC address mapping d. All communication with PC#2 will be with the MAC Address of PC#2 (not the IP Address). The reason for the IP address is to make it easier for humans to manage device addressing, the computers use only layer 1 (the cabling, hub) and layer 2 (mac address, bridge) to send information to each other. This is why you cannot ping an IP address on a different subnet (192.168.255.1 for example). The PC will try to use a default gateway to get there, which isn't configured and doesn't exist. To illustrate this point a little better, let me explain the second option for configuring the PCs: Second Option: -- Set the PCs to entirely different ip subnets (or the same, as long as the ip address is not identical or a broadcast address) and set the default gateway the same as the ip address. For example: PC#1: IP: 192.168.255.26 MASK: 255.255.255.0 GW: 192.168.255.26 PC#2: IP: 10.1.50.201 MASK: 255.0.0.0 GW: 10.1.50.201 Notice that the IP address and default gateway are identical on each individual PC. Now, why would you ever do this? To illustrate a point. If you would ping PC#2 (10.1.50.201) from PC#1 (192.168.255.26), it will work!!! (Assuming you started by verifying that you could ping localhost and your own interface). Why does this work? Because, by setting the ip address and default gateway the same, you tell the PC to ARP for everything. Even though the two PCs are configured on different IP subnets, the PCs don't care because they really use their MAC addresses to communicate. So, PC#1 sends and arp request for 10.1.50.201 on the wire and PC#2 responds, PC#1 adds the MAC address to its ARP cache and will send all further IP packets destined for 10.1.50.201 to the MAC address of PC#2. Does this clear anything up? Here are sample configs for your two routers: R1 -- ! the following line is NOT necessary if you don't put ip addresses ! on the individual interfaces, like this config ! no ip routing ! interface ethernet0 no ip address bridge-group 1 no shut ! interface serial0 desc DCE no ip address clockrate 56000 bridge-group 1 no shut ! bridge 1 protocol ieee ! end R2 -- ! the following line is NOT necessary if you don't put ip addresses ! on the individual interfaces, like this config ! no ip routing ! interface ethernet0 no ip address bridge-group 1 no shut ! interface serial0 desc DTE no ip address bridge-group 1 no shut ! bridge 1 protocol ieee ! end Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=7181&t=7126 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Refurbished Cisco gear... [7:6803]
I need some local (DC/VA/MD) vendors of refurbished Cisco equipment. My current company is allowing me to build a "dream lab" to also help in conducting some monthly mentor meetings. Thanks for the info Rick Watson Network Engineer Advanced Systems Development, Inc. OUSD(Comptroller) 703.697.5710 office 800.309.7782 pager ([EMAIL PROTECTED]) [EMAIL PROTECTED] Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=6803&t=6803 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
PIX 506 [7:6540]
I was told today that the PIX 506 can only support 4 VPN tunnels. It this true and does it include remote access users. I just sold a customer a 506 and he wants to connect 10 salesman to it that have laptop computers. Thanks. Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=6540&t=6540 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
VPN Diffie-Hellmen [7:6539]
I am a little confused why Diffie-Hellmen's key exchange is needed for IKE. When I setup ISAKMP, regardless of the authentication I am using I need to supple a key weather pre-share, public/private, or RSA sig. If this is the case why can't the two VPN peer just use this key for setting up the VPN tunnel or vice versa why can't Diffie-Hellmen's key exchange be used instead of the ISAKMP keys. I hope my question is clear. It just seems Diffie-Hellmen is used to create secret keys and I have to create secret key myself to setup IKE. Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=6539&t=6539 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Weird trace results [7:5259]
All, When performing a trace on an IP address (for "testing purposes we'll use 10.1.2.3) this is the result I get: router#trace 10.1.2.3 Type escape sequence to abort. Tracing the route to 10.1.2.3 1 192.1.2.2 4 msec 192.1.2.10 4 msec 192.1.2.2 4 msec 2 10.1.2.3 0 msec 4 msec 4 msec 3 * * * 4 * * * 5 * * * 6 * * * This to me shows that I am still trying to find a path to the IP address...but if the IP Address is returned at the 2nd hop, why is the trace still continuing? I thought that it would stop when the trace has the "path". Also note that when a "ping" is performed it returns the infamous "." This has really got me perplexed, and any help would be greatly appreciated. Maybe I am just not understanding something about the trace command/ICMP. Rick Watson Network Engineer Advanced Systems Development, Inc. OUSD(Comptroller) 703.697.5710 office 800.309.7782 pager ([EMAIL PROTECTED]) [EMAIL PROTECTED] Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=5259&t=5259 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Juniper Job Market (was: Passed CCIE Written but NOT doing [7:3991]
As one that usually plays the "voyeur" on this list, I like to pop in at times and interject my $.02 (2 cents). To my point...All of the jobs that I have been fortunate to come across were never listed in any job search databases, or classifieds for that matter. Even with the slow down in the economy, especially in the IT arena, there will always be a need for good support personnel. Whether it is Cisco, Juniper or any other product line, the support engineers will be needed. The hardest hit is with new product development and sales. You may see a slight slow down in upgrades or all out purchases of new equipment, but there will always be a need to "make what we have work". My next comments are not meant to offend but if you have to look in the job search engines or classifieds for a job, you may want to assess yourself. If you have networked yourself, even if the circle of associates is limited, your technical reputation should be what drives the recruiters/HR reps/hiring managers to call you. All of your peers do not always work with you (at least they shouldn't), and they are the ones that know of openings, and if they feel you could do the job, don't you think they would mention it to you? Especially if you made it know to your peers that you are looking for a "change in environment". These peers/associates can be the best form of a job search, because if you are as good as you may think you are...the job will find you. Alas, my point has been made...back into voyeur mode..but before I go, I must give respect to the many professionals on this list. I have learned so much from all of you. And truly look forward to the day that our paths cross. Rick Watson -Original Message- From: Adam Burgess [mailto:[EMAIL PROTECTED]] Sent: Thursday, May 10, 2001 3:27 AM To: [EMAIL PROTECTED] Subject: Re: Juniper Job Market (was: Passed CCIE Written but NOT doing [7:3962] ~ 460,000 worldwide jobs on monster.com... Non-US 'Cisco' = 919 Non-US 'Juniper' = 22 (Only in UK & Europe) Guess it will be a while for the rest of the world to realise that their Cisco certs are no good. Regards Adam Burgess Brisbane, Australia - Original Message - From: "Bradley J. Wilson" To: Sent: Wednesday, May 09, 2001 7:44 AM Subject: Juniper Job Market (was: Passed CCIE Written but NOT doing lab) [7:3690] > Carroll Kong wrote: > > >...but also makes you wonder if the market space is really that > >big for heavy duty core work. > > > I just did an impromptu and informal search on geekfinder.com - I put in the > word "Cisco" and pulled up 905 jobs nationwide, both contract and perm. > Then I did the same search for "Juniper" and pulled up only 46 jobs. You be > the judge. ;-) > > BJ > FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=3991&t=3991 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]