Multiple default routes [7:44539]
Hi I have a remote site that connect to 2 different redundant hubs using GRE tunnels runing EIGRP. I need to do the following: - Provide internet access using a default route in the remote site. - Provide failover between the tunnels. The first issue is that I might not be able to detect the physical circuit failure at the remote end of the tunnels. But I think in 12.2(T) Cisco added a keepalive mechanism. Anybody used it before? I think it addresses my situation nicely. The second issue is how to have the default route fail over to the second tunnel once it kicks in? Can I use 2 default routes? Different admin distances maybe??? Thanks for any thoughts Tarek Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=44539t=44539 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Dynamic Routing on Firewalls - ZebOS [7:43373]
Howard I did look at GateD from NextHop before, but they are prohibitively expensive. That's why I was leaning more towards IPInfusion. Now the problem with the latter is that I don't know how dependable or field-proven they are. I totally agree with you about butting BGP on a firewall. There are many reason why one should not use a combination firewall/router. However, I am not doing any tunnels in this case. I am in a situation where I need to terminate eBGP sessions for MPLS VPN endpoints in numerous locations around the world. I'm not sure I understand your statement about having an external router gives [you] better hardware protection against DoS attacks, and also avoids conduit problems for encrypted protocols not supported on the firewall. Yes I thought it would only run on BSD. In fact I did use GateD in a manufactruing environment over FreeBSD. However, to my surprise, ZebOS runs on Sun Solaris too. I am running a demo license right now on Solaris with CheckPoint as a firewall. Things seem good, except for the fact that I have a problem with performance testing. Any ideas for testing firewalls? Any good tools? I also agree with you that maybe we shouldn't expect using the object code right out of the box and that having a CLI that looks like IOS is no guarantee for 100% compatibility. But again for the past week I was surprised about the high degree of compatibility and resemblence to Cisco to the extent that I started forgetting that I'm configuring a Unix box!! Thank you very much for your insightful thoughts. Tarek -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Howard C. Berkowitz Sent: Monday, May 06, 2002 5:27 AM To: [EMAIL PROTECTED] Subject: Re: Dynamic Routing on Firewalls - ZebOS [7:43373] At 1:22 AM -0400 5/6/02, Tarek Sabry wrote: Hi everyone I was wondering if anyone here ever had experience/expoure to a situation where you needed to run something like BGP on a firewall (PIX or CheckPoint). Are there any alternatives in addition to Zebra? I know there's some shareware and freeware but I'm interested in commercial, field-proven and supported products. If not then can anyone evaluate ZebOS for me or tell me if they know any organizations using it? The real nice thing about it is that it has a Cisco IOS interface, which is AWESOME! But my boss still needs some vendor verification before we include Zebra in any MPLS/VPN designs. Thanks a lot Tarek First, to answer your question directly, the same people that developed Zebra also have a commercial, supported version called IPinfusion (www.ipinfusion.com). The other alternative is commercial GateD from NextHop Technologies (www.nexthop.com). Native GateD command language is more Juniper- than Cisco-like, but there are ways to get much more Cisco like. Check with NextHop for details; I honestly don't remember which of the details are under NDA. There's a good deal more operational experience with GateD than IPinfusion. That being said, butting BGP on a firewall, IMNSHO, is a BAD idea. One of the basic ideas of firewalls is to put the minimal functionality on them that is necessary for the security function. Best practice is to front-end the firewall with routers, even splitting them into BGP and router-based security functions. Performance optimizations are different for routing and firewall platforms. Also, having an external router gives you better hardware protection against DoS attacks, and also avoids conduit problems for encrypted protocols not supported on the firewall. It's perfectly plausible, depending on your requirements, to have an external BGP router function that feeds a stateful firewall, an SSH or IPsec proxy, and another router function that passes encrypted tunnels. Three or four distinct functions, depending on whether you separate the router functions into different boxes. Some firewalls also may include an SSH or IPsec proxy. Neither IPinfusion nor GateD actually do the forwarding; they are routing protocol and RIB implementations. They rely on the underlying operating system and hardware for forwarding, generally expecting some flavor of UNIX (most commonly NetBSD, FreeBSD, and lately Linux). Having actually worked with these packages, I don't think you'd have a hope of integrating them unless you had access to the source code of the firewall. These routing software packages are really meant for manufacturers, not end users. I've worked with both in that context. Incidentally, don't take the assertion that a non-IOS routing package that claims to have CLI is fully compatible. Think about it. If it's not just a front end to IOS but an independent package, how can it have features that depend on Cisco software and hardware implementation? Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=43400t=43373 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Dynamic Routing on Firewalls - ZebOS [7:43373]
Hi everyone I was wondering if anyone here ever had experience/expoure to a situation where you needed to run something like BGP on a firewall (PIX or CheckPoint). Are there any alternatives in addition to Zebra? I know there's some shareware and freeware but I'm interested in commercial, field-proven and supported products. If not then can anyone evaluate ZebOS for me or tell me if they know any organizations using it? The real nice thing about it is that it has a Cisco IOS interface, which is AWESOME! But my boss still needs some vendor verification before we include Zebra in any MPLS/VPN designs. Thanks a lot Tarek Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=43373t=43373 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
CCNA recommendation [7:42930]
Folks A friend of mine asked me to advice him on CCNA guidance. He is an engineer manager but wants to shift gears into networking. What's a good starting point? I couldn't help him because as far as I remember I didn't have to prepare much for it. I was already been in the field for sometime when I took it. Thanks for your help Tarek Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=42930t=42930 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: MBA or CCIE [7:41809]
Hi Just curious, are there still employers who sponsor MBA's at this time? You don't even have to tell me the names but just a yes or no :) Thanks Tarek Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=42081t=41809 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: MBA or CCIE [7:41809]
But it's good to know that employer-sponsorship still happens. I had my MBA classes sponsored at my previous 2 employers. I'm sure my current one will do it too, but it just doesn't feel right to ask for it in such economy. Our stock is OK but the environment is not very encouraging. Anyway back to my CCIE quest for now! Tarek -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of adam lee Sent: Saturday, April 20, 2002 3:53 PM To: [EMAIL PROTECTED] Subject: RE: MBA or CCIE [7:41809] Just don't get too many B-'s because the employer will pay but the school won't let you play.:) -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Chuck Sent: Saturday, April 20, 2002 10:22 AM To: [EMAIL PROTECTED] Subject: Re: MBA or CCIE [7:41809] lots of companies have tuition reimbursement programs. you pay up front, take the class, pass with the required grade ( in my case, my employer required a B- ( B minus ) and receive reimbursement for the cost of the class. books were not included. My employer at the time was a major brokerage firm. My current employer ( a telco ) offers a similar program. It can take one a long time, doing it this way - night classes. We used to call it the ten year plan :- HTH Tarek Sabry wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... Hi Just curious, are there still employers who sponsor MBA's at this time? You don't even have to tell me the names but just a yes or no :) Thanks Tarek Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=42097t=41809 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: OSPF network command question [7:40939]
Hi From what I heard and from my won experience, it is safer to use the exact interface, unless you end up writing 3 or 4 statements that could be grouped under one less specific iverse-mask. Tarek -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Lomker, Michael Sent: Tuesday, April 09, 2002 1:28 PM To: [EMAIL PROTECTED] Subject: RE: OSPF network command question [7:40939] If you had additional interfaces on the listed subnet then they would also be included in OSPF. The second method will only include the specified interface. -Original Message- For example: interface fa0/0 ip address 172.168.1.1 255.255.255.0 To advertise this network, you can use two different commands and both works router ospf 10 network 172.168.1.0 0.0.0.255 area 0 Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=40953t=40939 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: My interview story [7:40553]
Mark I work in SNS. I joined a few months back. My interview experience was totally different than what you're describing. In fact their interviews were the most technical I had seen in my life. What I was not happy about is that they took forever to get back to us. Also from what I've seen so far and heard from people here, the environment is very highly technical all over the company. They don't believe in non-tech management, all the way up to the CEO, something that is even criticized by some. I haven't yet seen anyone who has any free time on their hands either. I wish I had some myself :) But again I'm in one part of a 80,000+ employee company, so I don't really know how things are elsewhere in the company. I agree with Howard, interviews are supposed to test other areas of a person's skills in addition to the technical background. However, techies (and I'm one) always dread those interviews. Good luck Tarek -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Howard C. Berkowitz Sent: Thursday, April 04, 2002 10:48 PM To: [EMAIL PROTECTED] Subject: Re: My interview story [7:40553] Why would you want to work for a place with such stupid interviews in the first place? If they select their employees based on how they play Stranded in the Desert or whatever the heck that was, then it's probably best you don't work there. I'm sure the management there is awful. Stuff like that is a sure sign their managers have too much time on their hands, and there's almost nothing worse than a clueless manager with too much time. Someone needs to send those managers a Dilbert calendar! I'm sorry to hear it didn't go well, but you should forget about them and move on to a better company. John I have a friend that used to work in Schlumberger as a technical patent paralegal, and she loved the place. Don't know how typical her experience or yours is, but I can check with her to see if this is anything she's heard. I'm not totally opposed, incidentally, to tests like that IF THERE IS ALSO SOLID TECHNICAL INTERVIEWING, and the job needs good communications skills (the introduction) and possibly the ability to handle multiple items under stress (the desert). I do believe when you play with peoples' heads like this, it's only fair that the interviewers explain what they were trying to learn. When I'm interviewing people, I suppose I ask some questions that are intended to help me learn the way the candidate thinks. For example, once we've talked a bit and I have a pretty good knowledge of their background, I pose a problem to them that I'm fairly sure they can't answer. I tell them that I don't expect them to give me a correct answer, but to explain to me how they would approach getting information and coming up with a solution. That tells me a couple of things -- are they willing to say I don't know, and But this is how I'll find out. I also tend to ask ok, tell me what you do that's weird. In this business, there has to be something. Again, it tests flexibility and communication. On Thu, 4 Apr 2002, Mark Zhang ([EMAIL PROTECTED]) wrote: hi,everybody,I have a interview appointment at 9:00 AM. The position is Network Engineer in SNS(schlumberger network solutions sector).But I falled,at least i think so. At first,every candidater have a chance to intraduce oneself for 1 minute in English.Then every 5 person get a group to play a game named Desert Survive.Game as this:Just image you and some people lose in a deep desert by an airplane problem,so plz list the most important thing to the lest from 15 tools you could use,first time by your own choose,the second by your group. Maybe I do not show good in the self-introduce,then I paly the game,I choose more close to the expert answer the my group,but the schlumberger do not think I as the right person they are looking for. what a pity!I experienced in Motorola and a network company,have design a large scare voip network include about 40 nods,familiar with Cisco,But why?Just because a lose in the game? B.RMark Zhang - Do You Yahoo!? Yahoo! Tax Center - online filing with TurboTax [EMAIL PROTECTED] Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=40563t=40553 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: How to test VOIP on remote side??? [7:39980]
IT Guy csim start Tarek -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of IT Guy Sent: Sunday, March 31, 2002 1:31 AM To: [EMAIL PROTECTED] Subject: How to test VOIP on remote side??? [7:39980] Guys, I saw on the list the command how to test VOIP on the remote site but I forgeted.Any one can help to remind? Thkx _ Chat with friends online, try MSN Messenger: http://messenger.msn.com Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=39982t=39980 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: BGP Next-Hop [7:39704]
Are you using an IGP as well? If not then maybe you should. Also bear in minf that iBGP has an AD of 200, so it will lose to IGPs, while eBGP has only 20. It would help to see your configs though ... Tarek -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Hunt Lee Sent: Wednesday, March 27, 2002 5:26 PM To: [EMAIL PROTECTED] Subject: BGP Next-Hop [7:39704] Team, I found an example of BGP next-hop Attribute from Internet Routing Arch (by Halabi) - Any explanation will be appreciate. Router A, B C are all in the same AS, while Router D is in a separate AS. Not the best diagram :) Basically:-Router A Router B are running IBGP Router B Router D are running EBGP Router B is attached to a stub network (192.212.1.0 /24) Router D is attached to a stub network (128.213.1.0 /24) Router B is learning route 128.213.1.0 /24 from Router D Router B is also injecting route 192.212.1.0 /24 into BGP IBGP EBGP 2.2.2.2 1.1.1.1 A B --D -|128.213.1.0 /24 Serial 0 \ / | \ / | \ / | \/ | \ / 3.3.3.3.\/ 192.212.1.0 /24 C I understand that in BGP table of Router A, it would have 2 entries:- Destination 192.212.1.0 /24Next-hop: 2.2.2.2 (Next-hop is 2.2.2.2 since for IBGP sessions, the Next-hop will be the IP of the IBGP neighbor who advertised the route, which is Router B) Destination 128.213.1.0 /24Next-hop: 1.1.1.1 (Next hop is 1.1.1.1 since for routes coming into an AS via EBGP, the next hop learned from EBGP is carried unchanged into IBGP - in this case, it's Router D). What I am confused it's the Routing Table of Router A, Destination 192.212.1.0 /24Next-hop 2.2.2.2(Best Route inserted from BGP table) - cool Destination 128.213.1.0 /24Next-hop: 1.1.1.1 (Best Route inserted from BGP table) - cool Destination 3.3.3.0 /24Next-hop: Directly Connected via Serial 0 - cool Destination 2.2.2.0 /24 Next-hop: 3.3.3.3(why?? isn't this directly connected via IBGP, shouldn't it be directly connected?) Destination 1.1.1.0 /24Next-hop: 3.3.3.3(why?? shouldn't this have 2 routes, one via 3.3.3.3, and the other via 2.2.2.2?) Also, I thought that in such a scenario, one would want to make sure that every BGP Next-Hop can be reached via either IGP or static routes - However, Halabi says it's only needed for IBGP Next-hop, is it correct? Thanks, Hunt Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=39706t=39704 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: T1 Vs ISDN PR [7:37983]
No but ISDN PRI and T1 PRI ARE used interchangeably. You need to distinguish between 2 things here: T1 PRI and T1 CAS (Channel-Associated Signalling). So T1 is used to describe the rate of the line here. A better way is to use the term DS1 because T1 actually refers to the signalling scheme. Normally when people refer to just T1, they mean T1 CAS. Tarek -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Brian Zeitz Sent: Tuesday, March 12, 2002 1:22 PM To: [EMAIL PROTECTED] Subject: RE: T1 Vs ISDN PR [7:37983] OK, I am just confused, is a T1, and a T1 PRI are the terms used interchangeably? What about ISDN PRI? Hope you don't mind newbie questions :) -Original Message- From: Sujal G. Ajmera [mailto:[EMAIL PROTECTED]] Sent: Tuesday, March 12, 2002 2:26 PM To: Brian Zeitz; [EMAIL PROTECTED] Subject: RE: T1 Vs ISDN PR [7:37983] PRI gives you 23 channels of 64K each.. Which is equivalent to a T1 - 1.5Mb For a VPDN, users could dial into a PRI HTH Suj -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] On Behalf Of Brian Zeitz Sent: Wednesday, March 13, 2002 12:31 AM To: [EMAIL PROTECTED] Subject: T1 Vs ISDN PR [7:37983] Is there any drawbacks to getting a T1 PRI vs. a regular T1 (I think that's called channelized). I am not sure of the drawbacks of using PRI, with VPN, and things like that work fine over PRI? Is PRI just like a regular T1? The reason I am asking is I tried to get a T1 and I was told I could only get PRI ISDN. Any help or links for this would be appreciated. Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=37994t=37983 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: T1 Vs ISDN PR [7:37983]
Nope! T1 CAS can be used for either data or voice. The same for ISDN (PRI) T1. Tarek -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] Sent: Tuesday, March 12, 2002 1:43 PM To: [EMAIL PROTECTED] Subject: RE: T1 Vs ISDN PR [7:37983] T-1 is the layer 1 standard. ISDN PRI uses T-1 for layer 1 connectivity. Therefore, whenever you say ISDN PRI, you are referring to T-1. However, not all T-1's are ISDN PRI. The other T-1 is referred to as CAS, channel associated signaling and, as far as I know, is only used for voice. It allows 24 channels of sampled voice. ISDN PRI (aka common channel signaling) is a digital standard and supports 23 64k B channels (that can carry voice or data) and 1 64k D channel that carries control information. Voice over ISDN PRI has the advantage of a dedicated control channel for troubleshooting and additional call information from the telephone provider. However, it has 1 less channel. So if you are ordering a data T-1, your only choice is ISDN PRI. Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=38005t=37983 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Jr. CCIE Ad on Dice [7:38034]
This is really funny :) I don't think it's a sign that the industry doesn't acknowledge CCIEs as all-round experts anymore (hopefully not anyway!) I think the word junior is just to justify the relatively low salary range they're offering (in California). Tarek -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Ken Diliberto Sent: Tuesday, March 12, 2002 7:42 PM To: [EMAIL PROTECTED] Subject: Jr. CCIE Ad on Dice [7:38034] This is good for a laugh. They are looking for a junior CCIE. http://www.dice.com/DandL/c/cxapga.35951.html Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=38042t=38034 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: CCNP v3.0 [7:37500]
OK I just took it. Yes 3 hours. But the number of questions is horrendous! It definitely took me by surprise. I thought as I have been studying for my CCIE lab for the past year or so (on and off) then this will be a walk in the park. Was NOT! First of all I did not know that you cannot go back to questions. Definitely I would have had a different strategy. I wasn't simply prepared for that so I ended up spending too long on some questions, which I regretted later because I had a lot of very difficult questions in the beginning and a lot of easy ones in the end that I wish I could spend like 20 seconds on each instead of 3! I had 10 minutes to answer 45 questions in the end!!! I never took CCNP v2 but rumor has it that its routing exam isn't that hard. Well, maybe I'm not that competent, but today I had real tricky questions in this Beta. Well, but again the way the questions were asked was also really bad in some instances. For the first time in an exam I just had to leave some comments for some of the questions. I don't know if I'll pass or not. I think I still did OK. The lesson I learned from taking this test without preparing for it is that CCNP and CCIE are just very different ball games, and not just 2 levels of competence. You can get get away with some uncertainties as to how things really work, but in the CCNP (or at least this new version) this is much less the case. Tarek -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Byron Sent: Thursday, March 07, 2002 5:49 PM To: [EMAIL PROTECTED] Subject: Re: CCNP v3.0 [7:37500] any confirmation on the time? i plan to take it next week. byron - Original Message - From: EMW_Tech To: Sent: Thursday, March 07, 2002 1:51 PM Subject: Re: CCNP v3.0 [7:37500] I'm taking the Routing Beta tomorrow. Is it really 3 hours instead of 1 hour And was it three hours? _ Do You Yahoo!? Get your free @yahoo.com address at http://mail.yahoo.com Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=37621t=37500 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: CCNP v3.0 [7:37500]
Beta. Torture! -Original Message- From: Sean Knox [mailto:[EMAIL PROTECTED]] Sent: Thursday, March 07, 2002 9:23 PM To: 'Tarek Sabry'; [EMAIL PROTECTED] Subject: RE: CCNP v3.0 [7:37500] How can the routing exam for the CCNP be 3 hours long? Do you mean the CCNPv3 Foundation Beta? - Sean -Original Message- From: Tarek Sabry [mailto:[EMAIL PROTECTED]] Sent: Thursday, March 07, 2002 6:38 PM To: [EMAIL PROTECTED] Subject: RE: CCNP v3.0 [7:37500] OK I just took it. Yes 3 hours. But the number of questions is horrendous! It definitely took me by surprise. I thought as I have been studying for my CCIE lab for the past year or so (on and off) then this will be a walk in the park. Was NOT! First of all I did not know that you cannot go back to questions. Definitely I would have had a different strategy. I wasn't simply prepared for that so I ended up spending too long on some questions, which I regretted later because I had a lot of very difficult questions in the beginning and a lot of easy ones in the end that I wish I could spend like 20 seconds on each instead of 3! I had 10 minutes to answer 45 questions in the end!!! I never took CCNP v2 but rumor has it that its routing exam isn't that hard. Well, maybe I'm not that competent, but today I had real tricky questions in this Beta. Well, but again the way the questions were asked was also really bad in some instances. For the first time in an exam I just had to leave some comments for some of the questions. I don't know if I'll pass or not. I think I still did OK. The lesson I learned from taking this test without preparing for it is that CCNP and CCIE are just very different ball games, and not just 2 levels of competence. You can get get away with some uncertainties as to how things really work, but in the CCNP (or at least this new version) this is much less the case. Tarek -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Byron Sent: Thursday, March 07, 2002 5:49 PM To: [EMAIL PROTECTED] Subject: Re: CCNP v3.0 [7:37500] any confirmation on the time? i plan to take it next week. byron - Original Message - From: EMW_Tech To: Sent: Thursday, March 07, 2002 1:51 PM Subject: Re: CCNP v3.0 [7:37500] I'm taking the Routing Beta tomorrow. Is it really 3 hours instead of 1 hour And was it three hours? _ Do You Yahoo!? Get your free @yahoo.com address at http://mail.yahoo.com Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=37626t=37500 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
CCNP v3.0 [7:37500]
I'm taking the Routing Beta tomorrow. Is it really 3 hours instead of 1 hour or do I have wrong information??? I may have to call them in the AM but would appreciate it if someone can tell me if they know. Thanks Tarek Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=37500t=37500 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: CCIE Written - ATM Questions [7:37176]
I think we should not be talking about the contents of the exams or how much of this or that. Doesn't do anyone any good. No offense please. Tarek -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Woods, Randall, SOLCM Sent: Monday, March 04, 2002 2:15 PM To: [EMAIL PROTECTED] Subject: RE: CCIE Written - ATM Questions [7:37176] I think I had about 2 maybe 3 questions last Thursday. Woody CCNP -Original Message- From: Audy Bautista [mailto:[EMAIL PROTECTED]] Sent: Monday, March 04, 2002 2:38 PM To: [EMAIL PROTECTED] Subject: CCIE Written - ATM Questions [7:37176] Hi all. I'm taking my CCIE written this afternoon and I'm wondering if there's a lot of ATM questions on the exam? I'm doing some heavy cramming so I just want to know if I should concentrate on ATM. Any other tips would be appreciated. Thanks. Audy Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=37201t=37176 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Bandwidth limit at the E I [7:37105]
Mohannad According to my knowledge, you can use CAR on most routers if you have a recent IOS. Are you doing this on a router, GSR or a switch? Tarek -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Mohannad Khuffash Sent: Sunday, March 03, 2002 1:13 PM To: [EMAIL PROTECTED] Subject: Bandwidth limit at the E I [7:37105] Hello, Is there any spesific command i can use to limit the bandwidth available at the ethernet interfaces ? Please advise ? Regards, -- Mohannad N. Khuffash Network Administrator Palestine Telecommunication Company Tel: 00972-02-2982330 Fax:00972-02-2980235 Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=37109t=37105 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: VoIP problem [7:36396]
Is this a AS5300? If so then check that you have the latest VCWare on your VFCs. This has been a bug for a long time and it might have been addressed in one of the VCWare releases. Tarek -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Chuck Sent: Sunday, March 03, 2002 7:12 PM To: [EMAIL PROTECTED] Subject: Re: VoIP problem [7:36396] a look at TAC error message decoder yields this result: 1. %VTSP-3-DSP_TIMEOUT: DSP timeout on event [dec]: DSP ID=[hex]: [chars] A timeout on the digital signal processor (DSP) response has occurred. Recommended Action: The DSP has been reset automatically. If the problem persists, contact your Cisco technical support representative. Related documents: No specific documents apply to this error message. you need a CCO login to access this, I believe. http://www.cisco.com/cgi-bin/Support/Errordecoder/home.pl Seems to me that 12.2.4 rings a bell in terms of being just plain bad code. Maybe an IOS upgrade ( or downgrade ) ? Patrick Donlon wrote in message news:[EMAIL PROTECTED]; Hi all I've a problem with a voice router I'm getting DSP timeout errors on the far end (egress) router and I was wondering if anyone has any ideas. See the text below for the error, it appears after the call is disconnected with normal call clearing, we use E1s. A reboot will make the problem go away for a short while and we using 12.2(4)T on a 3640. The call routing is fine and I can make csim calls from the far end router to my local router and to my phone no problem, in the other direction I get DSP timeouts. Cheers Pat 10w5d: %VTSP-3-DSP_TIMEOUT: DSP timeout on event 0x6: DSP ID=0x1: DSP Disc (call mode=0) 10w5d: %VTSP-3-DSP_TIMEOUT: DSP timeout on event 0x6: DSP ID=0x1: DSP error stats (call mode=1658181684), chnl info(1, 0, 0) Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=37122t=36396 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: A problem on AS5300 [7:36986]
/max active/max total) Reserved Conversations 0/0 (allocated/max allocated) Available Bandwidth 7500 kilobits/sec 30 second input rate 92000 bits/sec, 154 packets/sec 30 second output rate 171000 bits/sec, 285 packets/sec 11759783 packets input, 881145657 bytes, 0 no buffer Received 23448 broadcasts, 0 runts, 0 giants, 0 throttles 0 input errors, 0 CRC, 0 frame, 0 overrun, 0 ignored 0 input packets with dribble condition detected 20309929 packets output, 1517034824 bytes, 0 underruns(44144/49852/0) 0 output errors, 93996 collisions, 6 interface resets 0 babbles, 0 late collision, 253907 deferred 0 lost carrier, 0 no carrier 0 output buffer failures, 0 output buffers swapped out Furthermore, the following is the result of SHOW CALL ACTIVE VOICE BRIEF command when there were only 5 active calls on my gateway. CAS5300sh call act voi br : hs. + pid: dur hh:mm:ss tx:/ rx:/ IP : rtt:ms pl:/ms lost:// delay://ms MODEMPASS buf:/ loss / last s dur:/s FR [int dlci cid] vad: dtmf: seq: sig: (payload size) ATM [int vpi/vci cid] vad: dtmf: seq: sig: (payload size) Tele : tx://ms noise: acom: i/o:/ dBm Proxy :, endpt: / bw: / codec: / tx: /,/,/ rx: /,/,/ Total call-legs: 10 11D6 : 9334914hs.1 +251 pid:4 Answer 2020 active dur 00:47:08 tx:141404/2828140 rx:104973/2099376 IP 217.130.209.29:17558 rtt:738ms pl:2090770/17920ms lost:1013/666/3 delay:70/3 9/146ms g729r8 11D6 : 9334915hs.1 +249 pid:1 Originate 2298212010291 active dur 00:47:08 tx:104973/2099376 rx:141404/2828140 Tele 0:0 (1866): tx:2828130/2828130/0ms g729r8 noise:0 acom:0 i/0:-35/-71 dBm 11D6 : 9396118hs.1 +250 pid:4 Answer 2020 active dur 00:36:56 tx:110834/2216740 rx:34284/685680 IP 217.130.209.29:18418 rtt:693ms pl:682020/6170ms lost:379/250/3 delay:64/35/1 56ms g729r8 11D6 : 9396118hs.2 +250 pid:1 Originate 2298218770571 active dur 00:36:56 tx:34284/685680 rx:110834/2216740 Tele 0:0 (1882): tx:2216670/2216670/0ms g729r8 noise:0 acom:1 i/0:-25/-70 dBm 11D6 : 9432627hs.1 +350 pid:4 Answer 2020 active dur 00:30:50 tx:92540/1850860 rx:47020/940400 IP 217.130.209.29:19220 rtt:694ms pl:937530/29760ms lost:2653/300/2 delay:51/40 /155ms g729r8 11D6 : 9432628hs.1 +349 pid:2 Originate 22984442353371 active dur 00:30:56 tx:47020/940400 rx:92832/1856700 Tele 0:0 (1894): tx:1856630/1856630/0ms g729r8 noise:0 acom:1 i/0:-79/-72 dBm 11D6 : 9587859hs.1 +351 pid:4 Answer 2020 active dur 00:05:04 tx:15215/304300 rx:10298/205960 IP 217.130.209.29:18764 rtt:692ms pl:200350/4790ms lost:508/96/2 delay:72/39/12 5ms g729r8 11D6 : 9587860hs.1 +350 pid:2 Originate 22987117268431 active dur 00:05:04 tx:10298/205960 rx:15215/304300 Tele 0:0 (1930): tx:304310/304310/0ms g729r8 noise:0 acom:0 i/0:-39/-32 dBm 11D6 : 9595159hs.1 +351 pid:4 Answer 2020 active dur 00:03:51 tx:11566/231380 rx:8278/165560 IP 217.130.209.29:16912 rtt:691ms pl:164120/1510ms lost:166/83/2 delay:88/30/88 ms g729r8 11D6 : 9595160hs.1 +350 pid:2 Originate 22987116269727 active dur 00:03:51 tx:8278/165560 rx:11567/231400 Tele 0:0 (1934): tx:231320/231320/0ms g729r8 noise:0 acom:0 i/0:-67/-71 dBm For further investigation I have attached a copy of current configuration of my cisco. I would like to thank you again for your interest on solving this problem of mine. Please write to me If there is anything more which helps you to find the source of problem. Waiting for your reply. Regards, Bahram Sadjdi Biria. - Original Message - From: Tarek Sabry To: 'Bahram Sadjadi Biria' ; Sent: Friday, March 01, 2002 8:52 PM Subject: RE: A problem on AS5300 [7:36986] You may need to look at your codecs and VAD settings for your dial peers. Can you send us me the config too? Tarek -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Bahram Sadjadi Biria Sent: Friday, March 01, 2002 10:53 AM To: [EMAIL PROTECTED] Subject: A problem on AS5300 [7:36986] Dear Cisco professionals, I have a big problem on my AS5300 which is terminating VoIP calls. It uses around 2 times send bandwidth in comparison with its receive bandwidth. In the show int eth 0 command I could see that the number of packets/sec on its output part is also about 2 times of input part. Is there anyone who faced with such a problem and know how can I recover this problem
RE: Frame Relay lab scenario.... needing help. [7:36929]
Well I'm assuming he already made the configuration for the 2600 to act as a switch and therefore ommitted it. Mark, if you still have a problem can you send us the full configs of the 2600 and one of your 1700? -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Douglas McConnell Sent: Friday, March 01, 2002 9:49 AM To: [EMAIL PROTECTED] Subject: Re: Frame Relay lab scenario needing help. [7:36929] Don't you need a frame-relay route statement? --- Mark Odette II wrote: Chuck, et. al., I'm working on a scenario that I'm sure many others have already crossed paths with before too, but I'm at a state of confusion. That scenario is this: 2 Routers acting as end-points of a frame-relay network, with a 3rd router acting as the frame switch. 1700R1 --- 2600FR/Sw --- 1700R2 The objective: Create FR P-to-P connection with the two 1700s via the 2600. (This is a no brainer for me.) Create FR connection from 1700's to 2600 {on a different DLCI} that gives access to the Internet off of the 2600's Ethernet Interface. (This is the part that I am stuck on.) The simulation is that of two sites that connect to each other via private frame cloud (small PVCs), but also connect to local FR POPs for Internet access. I've read through examples off of CCO, but didn't have any light bulbs suddenly and graciously appear above my head. I believe the way to do such a thing is to configure the following: On 1700R1: int s0.200 point-to-point {ip address 192.168.10.??? --- not sure about this} frame-relay interface-dlci 48 ip routing router rip ver 2 network 192.168.10.0 On 1700R2: int s0.210 point-to-point {ip address 192.168.10.??? --- not sure about this} frame-relay interface-dlci 49 ip routing router rip ver 2 network 192.168.10.0 On 2600: int s0/0 frame-relay map ip 192.168.10.248 48 int s0/1 frame-relay map ip 192.168.10.249 49 int fa0/0 ip address 192.168.10.250 255.255.255.0 ip routing router rip ver 2 network 192.168.10.0 My problem is, even on the FR Switch, after creating the frame map on the interface, and then verifying the ip routing table, I still can't ping (from the console of the frame switch) the interface noted with the frame map... i.e., pinging 192.168.10.248 from the console of same router yields : . 0 Success, 5 Failure :( So can someone give me some guide/tips as to what I'm doing wrong?!?! Thanks, Mark Odette II Nearly all men can stand adversity, but if you want to test a man's character, give him power.-Abraham Lincoln [EMAIL PROTECTED] = Douglas McConnell - Senior Network Engineer Cisco Certified Network Professional __ Do You Yahoo!? Yahoo! Greetings - Send FREE e-cards for every occasion! http://greetings.yahoo.com Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=36980t=36929 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: A problem on AS5300 [7:36986]
You may need to look at your codecs and VAD settings for your dial peers. Can you send us me the config too? Tarek -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Bahram Sadjadi Biria Sent: Friday, March 01, 2002 10:53 AM To: [EMAIL PROTECTED] Subject: A problem on AS5300 [7:36986] Dear Cisco professionals, I have a big problem on my AS5300 which is terminating VoIP calls. It uses around 2 times send bandwidth in comparison with its receive bandwidth. In the show int eth 0 command I could see that the number of packets/sec on its output part is also about 2 times of input part. Is there anyone who faced with such a problem and know how can I recover this problem of mine? I would like to thank you for your kind attention and cooperation in this regard. I look forward to hearing from you kind friends. Sincerely, Bahram Sadjadi Biria. Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=36992t=36986 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Frame Relay lab scenario.... needing help. [7:36929]
OK so you are saying that you did manage to satisfy your first requirement which is to create a functioning PVC between the 1700s (using the 2600 as a FR switch). Right? If this is the case, then you seem to need to *resue* this 2600 as a *router* now in order to create another PVC between your 1700 and the 2600. In this case you will need to have a DTE-DCE connection beteween the 2 routers because you DO NOT have an intermediate switch between them. You need to use the same DLCI number on both routers and to assign an IP address to the serial interface on the 2600. I don't think you will need the map statements because you are creating a pt-to-pt here. I hope this helps. Tarek -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Mark Odette II Sent: Friday, March 01, 2002 12:52 AM To: [EMAIL PROTECTED] Subject: Frame Relay lab scenario needing help. [7:36929] Chuck, et. al., I'm working on a scenario that I'm sure many others have already crossed paths with before too, but I'm at a state of confusion. That scenario is this: 2 Routers acting as end-points of a frame-relay network, with a 3rd router acting as the frame switch. 1700R1 --- 2600FR/Sw --- 1700R2 The objective: Create FR P-to-P connection with the two 1700s via the 2600. (This is a no brainer for me.) Create FR connection from 1700's to 2600 {on a different DLCI} that gives access to the Internet off of the 2600's Ethernet Interface. (This is the part that I am stuck on.) The simulation is that of two sites that connect to each other via private frame cloud (small PVCs), but also connect to local FR POPs for Internet access. I've read through examples off of CCO, but didn't have any light bulbs suddenly and graciously appear above my head. I believe the way to do such a thing is to configure the following: On 1700R1: int s0.200 point-to-point {ip address 192.168.10.??? --- not sure about this} frame-relay interface-dlci 48 ip routing router rip ver 2 network 192.168.10.0 On 1700R2: int s0.210 point-to-point {ip address 192.168.10.??? --- not sure about this} frame-relay interface-dlci 49 ip routing router rip ver 2 network 192.168.10.0 On 2600: int s0/0 frame-relay map ip 192.168.10.248 48 int s0/1 frame-relay map ip 192.168.10.249 49 int fa0/0 ip address 192.168.10.250 255.255.255.0 ip routing router rip ver 2 network 192.168.10.0 My problem is, even on the FR Switch, after creating the frame map on the interface, and then verifying the ip routing table, I still can't ping (from the console of the frame switch) the interface noted with the frame map... i.e., pinging 192.168.10.248 from the console of same router yields : . 0 Success, 5 Failure :( So can someone give me some guide/tips as to what I'm doing wrong?!?! Thanks, Mark Odette II Nearly all men can stand adversity, but if you want to test a man's character, give him power.-Abraham Lincoln Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=36934t=36929 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
EIGRP on GRE? [7:35988]
Hi Does the following make sense: ---(tunnel1)--MPLS- -(tunnel1) where on R1: - ... ... interface tunnel1 ip address 192.168.30.49 255.255.255.248 tunnel source x.x.x.x tunnel destination x.x.x.x ... ... router eigrp 1 network 192.168.30.48 redistribute static ... ... In other words, can I: - run EIGRP on a GRE tunnel? - transport my static local routes across this MPLS cloud this way? - use a VLSM network in EIGRP like I did? Thanks a lot Tarek Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=35988t=35988 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]