2924XL VLAN issue [7:70148]
I'm trying to configure 3 VLANS on a Catalyst 2924 XL. Scenario: Ports: 1- VLAN 1 (Management) 2-12 VLAN 2 (VLAN 2 IP: 192.168.42.254 /24) 13-24 VLAN 3 (VLAN 3 IP: 192.168.142.254 /24) --Users from VLAN 2 (192.168.42.0) be able to access servers in VLAN 3 (192.168.142.0) ISSUE: The VLAN 2 and 3 always appear to be administrative shutdown. PLEASE ADVICE Following is the config: version 12.0 service timestamps debug uptime service timestamps log uptime ! hostname 2924XL ! ip subnet-zero ! ! interface FastEthernet0/1 ! interface FastEthernet0/2-12 switchport access vlan 2 ! interface FastEthernet0/13-24 switchport access vlan 3 ! interface VLAN1 no ip address no ip directed-broadcast no ip route-cache management ! interface VLAN2 ip address 192.168.142.1 255.255.255.0 no ip directed-broadcast no ip route-cache shutdown ! interface VLAN3 ip address 192.168.42.1 255.255.255.0 no ip directed-broadcast no ip route-cache shutdown ! sh ver: Cisco Internetwork Operating System Software IOS (tm) C2900xl Software (C2900xl-C3H2S-M), Version 12.0(5)WC5, RELEASE SOFTWARE (fc1) Copyright (c) 1986-2002 by cisco Systems, Inc. Compiled Tue 28-May-02 11:11 by devgoyal Image text-base: 0x3000, data-base: 0x0034A3C8 ROM: Bootstrap program is C2900xl boot loader CitPub2924XL uptime is 1 hour, 38 minutes System returned to ROM by power-on System image file is "flash:c2900xl-c3h2s-mz.120-5.WC5.bin" cisco WS-C2924-XL (PowerPC403GA) processor (revision 0x11) with 8192K/1024K bytes of memory. Processor board ID FAA0329M0Q7, with hardware revision 0x01 Last reset from power-on Processor is running Enterprise Edition Software Cluster command switch capable Cluster member switch capable 24 FastEthernet/IEEE 802.3 interface(s) 32K bytes of flash-simulated non-volatile configuration memory. Model revision number: A0 Model number: WS-C2924-XL-EN Configuration register is 0xF Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=70148&t=70148 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: 2924XL VLAN issue [7:70148]
Yep. It still shows as admin down. -Original Message- From: Brandon Vickers [mailto:[EMAIL PROTECTED] Sent: Wednesday, June 04, 2003 4:38 PM To: Simer Mayo Cc: [EMAIL PROTECTED] Subject: Re: 2924XL VLAN issue [7:70148] Ok, This maybe a bit to simple and obvious but have you issued a "No shutdown" command on both interfaces? Simer Mayo wrote: >I'm trying to configure 3 VLANS on a Catalyst 2924 XL. >Scenario: >Ports: 1- VLAN 1 (Management) > 2-12 VLAN 2 (VLAN 2 IP: 192.168.42.254 /24) > 13-24 VLAN 3 (VLAN 3 IP: 192.168.142.254 /24) >--Users from VLAN 2 (192.168.42.0) be able to access servers in VLAN 3 >(192.168.142.0) > >ISSUE: The VLAN 2 and 3 always appear to be administrative shutdown. > > >PLEASE ADVICE > >Following is the config: > >version 12.0 >service timestamps debug uptime >service timestamps log uptime >! >hostname 2924XL >! >ip subnet-zero >! >! >interface FastEthernet0/1 >! >interface FastEthernet0/2-12 > switchport access vlan 2 >! >interface FastEthernet0/13-24 > switchport access vlan 3 >! >interface VLAN1 > no ip address > no ip directed-broadcast > no ip route-cache > management >! >interface VLAN2 > ip address 192.168.142.1 255.255.255.0 > no ip directed-broadcast > no ip route-cache > shutdown >! >interface VLAN3 > ip address 192.168.42.1 255.255.255.0 > no ip directed-broadcast > no ip route-cache > shutdown >! > >sh ver: >Cisco Internetwork Operating System Software >IOS (tm) C2900xl Software (C2900xl-C3H2S-M), Version 12.0(5)WC5, RELEASE >SOFTWARE (fc1) Copyright (c) 1986-2002 by cisco Systems, Inc. Compiled >Tue 28-May-02 11:11 by devgoyal Image text-base: 0x3000, data-base: >0x0034A3C8 > >ROM: Bootstrap program is C2900xl boot loader > >CitPub2924XL uptime is 1 hour, 38 minutes >System returned to ROM by power-on >System image file is "flash:c2900xl-c3h2s-mz.120-5.WC5.bin" > >cisco WS-C2924-XL (PowerPC403GA) processor (revision 0x11) with >8192K/1024K bytes of memory. Processor board ID FAA0329M0Q7, with >hardware revision 0x01 Last reset from power-on > >Processor is running Enterprise Edition Software >Cluster command switch capable >Cluster member switch capable >24 FastEthernet/IEEE 802.3 interface(s) >32K bytes of flash-simulated non-volatile configuration memory. Model >revision number: A0 Model number: WS-C2924-XL-EN Configuration register >is 0xF -- Have a nice day! Brandon Vickers Mississippi Moon Internet Services http://mississippimoon.riverroads.com Take a trip down the River Roads!! http://www.riverroads.com Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=70159&t=70148 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
VoIP from behind PIX [7:60796]
1. Will PIX 515 handle VoIP traffic? 2. Will PIX 501 handle VoIP traffic? 3. Can we VPN between 2 (site-to-site) and pass VoIP traffice thru the VPN Thanks Simer Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=60796&t=60796 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Split tunelling on PIX 520 [7:47898]
How do (or can) you enable split tunnelling on PIX 520? Thanks SM Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=47898&t=47898 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Split tunelling on PIX 520 [7:47898]
Can you give me some more info about it? I know split tunneling is a security issue but have to do it for a client. Appreciate your help. THanks - Original Message - From: "itsme" To: Sent: Monday, July 01, 2002 6:31 PM Subject: Re: Split tunelling on PIX 520 [7:47898] > "split-tunnel" is the command, set per group. > > -TV > > ""Simer Mayo"" wrote in message > [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > > How do (or can) you enable split tunnelling on PIX 520? > > > > Thanks > > > > SM Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=47909&t=47898 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
VPN client autodial [7:48331]
Is there any way to disable the autodial for the VPN client? I've a client who is remotely connecting to the network via dial-up using Cisco VPN client. The problem is anytimes he connects to his ISP the VPN client dialsup to connect to the network. THanks SM Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=48331&t=48331 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: PIX-535 Hanging [7:48323]
What OS version are you running? There is a bug in some serial numbers which requires an eeprom command. I've the link at home computer and will mail it to you when i get there. That will take care of it. SM - Original Message - From: "Dale Wishop" To: Sent: Monday, July 08, 2002 11:40 AM Subject: RE: PIX-535 Hanging [7:48323] > We had a PIX 506 with this problem. Field notice is at: > > http://www.cisco.com/warp/customer/770/fn15490.shtml > > But, the field notice only applies to 506 and 515's. > > We ended up sending ours in for replacement. > > Dale.. > > -Original Message- > From: Kevin Love [mailto:[EMAIL PROTECTED]] > Sent: Monday, July 08, 2002 12:19 PM > To: [EMAIL PROTECTED] > Subject: PIX-535 Hanging [7:48323] > > > Anybody have experience with troubleshooting PIX-535 problems? I have one > that, when I boot it up, says: > > Cisco Secure PIX Firewall BIOS (4.1) #0: Tue Dec 5 17:35:26 PST 2000 > Platform PIX-535 hanging... > > And then it just stays there. Does anybody have any idea what this means > or, more specifically, how to fix it? I have searched CCO unsuccessfully. > > Thanks, > Kevin Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=48356&t=48323 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Passive FTP [7:48357]
The users are on the inside interface behind the PIX firewall and are trying to make an pftp connection to the outside world. They are being authenticated from the outside server but then the section hangs trying to do a list command. The fixup protocol port 21 is enable on PIX and there is no explicit outbound restriction from the inside interface. The outside server is using port range 4-40020 for passive FTP. I tried enabling this range on the fixup protocol too but it didn't work. Please advice Thanks much SM Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=48357&t=48357 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
DSL on Cisco 802 router [7:48526]
Does Cisco 802 router supports DSL (ATM) connections? Does anyone have a config of the working router for reference Thanks SM Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=48526&t=48526 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Number of VPN session on PIX? [7:48738]
Look at the CCO. Search for PIx models and most probably they will have it in there. Hope that helps SM - Original Message - From: "Joe Lee" To: "Simer Mayo" Sent: Saturday, July 13, 2002 3:26 AM Subject: Re: Number of VPN session on PIX? > Hi, > > is there something like a table for reference? > > > - Original Message - > From: "Simer Mayo" > To: "Joe Lee" > Sent: Saturday, July 13, 2002 4:04 PM > Subject: Re: Number of VPN session on PIX? > > > > Depends upon the license and the model of PIX firewall you have. > > > > PIX 501 and 506 can have max 5 VPN connections whereas the higher models > can > > have either the restricted or unrestricted license pack depending upon > your > > requirements > > > > SM > > > > - Original Message - > > From: "Joe Lee" > > To: > > Sent: Saturday, July 13, 2002 12:02 AM > > Subject: Number of VPN session on PIX? > > > > > > > Hi all, > > > > > > Is there a limit on the number of VPN session on a PIX? > > > If yes, where can I get this information? > > > > > > Thx > > > __ > > > To unsubscribe from the SECURITY list, send a message to > > > [EMAIL PROTECTED] with the body containing: > > > unsubscribe SECURITY Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=48738&t=48738 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
CSPFA [7:50596]
Any recommendation for CSPFA exam? How do you rate Boson test exams? Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=50596&t=50596 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
CSPFA exam [7:51278]
What is the passing score for the CSPFA exam? Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=51278&t=51278 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
MCNS exam [7:51337]
I passed the CSPFA exam. I'm preparing for the MCNS beta exam(scheduled next week). Haven't studied a lot for the MCNS exam but do have good hands-on experience in the related products. Any suggestions for reference book/site/documents for the MCNS beta exam? Thanks in advance Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=51337&t=51337 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: PIX Failover [7:51491]
In a stateful config, this is done by the standby PIX. It sends hello packets and runs the interface tests to the active pix and when it doesn't recieves any response it takes the role of the active pix. TCP and UDP connections will be maintained but not the IPSec and ICMP. - Original Message - From: "Leo Song" To: Sent: Thursday, August 15, 2002 9:21 PM Subject: PIX Failover [7:51491] > Hi, > > In a Stataful configuration, and two PIX are interconnected via a > dedicated Failover Fastethernet, in case of the Active unit's Internal > interface fails, is there any method to shift traffic to the Standby > unit's Internal interface to maintain connectivity, thanks. > > Leo > Best Regards. Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=51493&t=51491 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
MCNS beta exam [7:51762]
What is the passing percentage/ score for the MCNS and CSPFA beta exams? Thanks Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=51762&t=51762 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: MCNS beta exam [7:51773]
I gave the MCNS exam today. I agree with the quality of questions. There were few questions that didn't had the correct answers to them, i.e. all the options were wrong. I'm sure that these questions be corrected in the real exams later. - Original Message - From: "Roberts, Larry" To: "'Larry Roberts'" ; "Simer Mayo" ; ; Sent: Tuesday, August 20, 2002 12:38 PM Subject: RE: MCNS beta exam > In response to my alter ego:) > > I have now taken all 3 betas. There where no Comment button on any of them, > which I suspect is by design. > If so, my comments may have been directed at their ability to write English. > All the tests were poorly written IMHO. > The MCNS has questions on hardware that was not supposed to be on the test, > and they would have questions asking you to do things, but not specifying > which platform that they would like you to do them on. > > I find myself not having a clue whether I passed or failed the exams. If you > would have asked me prior, I would have thought that I could sleep through > them and pass, so I dunno. > > All the feedback that I have received on the test seems to indicate that I > wasn't the only one that had that opinion. > > What is your opinions...? > > > Thanks > > Larry > > > -Original Message- > From: Larry Roberts [mailto:[EMAIL PROTECTED]] > Sent: Tuesday, August 20, 2002 1:58 PM > To: Simer Mayo; [EMAIL PROTECTED]; [EMAIL PROTECTED] > Subject: Re: MCNS beta exam > > > It hasn't been decided yet. It will be decided after the beta closes and all > of the results have been compiled. You should receive your score about 12 > weeks after the beta closes. I have another comment about the recent > security exams. Did anyone have a comments button? I talked to one guy that > said he did. Everyone else including myself didn't. The only difference that > we came too was that his testing center had a 17" monitor and mine had 15". > I think that this would be a very big hindsight if most of us were unable to > make comments due to screen size limitations. Then again maybe he was > mistaken. :-) Anyone have any feedback on this? > > Thanks, > Larry Roberts > CCIE #7886 (R&S / Security) > > - Original Message - > From: "Simer Mayo" > To: ; > Sent: Tuesday, August 20, 2002 11:31 AM > Subject: MCNS beta exam > > > > What is the passing percentage/ score for the MCNS and CSPFA beta > > exams? > > > > Thanks > > __ > > To unsubscribe from the SECURITY list, send a message to > > [EMAIL PROTECTED] with the body containing: unsubscribe > > SECURITY > __ > To unsubscribe from the SECURITY list, send a message to > [EMAIL PROTECTED] with the body containing: unsubscribe SECURITY Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=51773&t=51773 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
CISSP exam [7:51864]
Your recommendations for preparing for the CISSP exam. Books and documents etc. Please advice Thanks much Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=51864&t=51864 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: CISSP exam [7:51864]
Thanks guys. - Original Message - From: "Brian Backer" To: "'Simer Mayo'" Sent: Wednesday, August 21, 2002 4:43 PM Subject: RE: CISSP exam [7:51864] > You can get an outline from www.isc2.org defining exactly what you need > to know... also, there is a Yahoo group you can join to more > appropriately post questions like this... see www.cccure.org for a > link > > Brian Backer > > -Original Message- > From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] On Behalf Of > Simer Mayo > Sent: Wednesday, August 21, 2002 7:08 PM > To: [EMAIL PROTECTED] > Subject: CISSP exam [7:51864] > > Your recommendations for preparing for the CISSP exam. Books and > documents > etc. > > Please advice > > Thanks much Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=51868&t=51864 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
PIX timeout uauth [7:73995]
I have a site to site tunnel between 2 sites with PIX 515e. The tunnel between the sites goes in a sleep mode every morning and I have to ping site 2 PC IP address from a PC behind the PIX in site 1 to get the tunnel back online. timeout xlate 3:00:00 timeout conn 1:00:00 half-closed 0:10:00 udp 0:02:00 rpc 0:10:00 h323 0:05:00 sip 0:30:00 sip_media 0:02:00 timeout uauth 0:05:00 absolute uauth 00:25:00 inactivity Please advice. Thanks Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=73995&t=73995 -- **Please support GroupStudy by purchasing from the GroupStudy Store: http://shop.groupstudy.com FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
