from:"Tim O'Brien"

RE: 10/100/1000 Switch? [7:66851]

2003-04-06 Thread Tim O'Brien

Larry,

There are a couple of new 10/100/1000 blades coming out for the 6500. The
module for value version runs directly off of the 32gig backplane. There
is also a higher speed version that requires the 256gig backplane.

48-port 10/100/1000 Ethernet module for value--oriented wiring closets-This
module utilizes the Catalyst 6500 32 Gbps backplane. A single Cisco Catalyst
6500 chassis can cost-effectively support 48 to 576 10/100/1000 ports using
any generation of Cisco Catalyst 6500 supervisor engine. It also features
TDR and will offer a field-upgradeable IEEE 802.3af standards based in-line
power daughter card

All of the pricing and additional information can be found here:
http://newsroom.cisco.com/dlls/prod_033103.html

Tim
CCIE 9015, CSS1

-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of
Larry Letterman
Sent: Saturday, April 05, 2003 4:24 PM
To: [EMAIL PROTECTED]
Subject: RE: 10/100/1000 Switch? [7:66851]


The new 48 port 10/100/1000 module will require a new SUP720 or sup-3 as
some are calling it.. It may also require a SFM module. The sup 3 will
require a new fan tray and I believe power supplies...

The info is a little sketchy at this time, but that is what we have
heard..thats a lot of upgrading for 48 gig ports..and most servers cant
really fill a 100FD pipe anyway...


Larry Letterman
Network Engineer
Cisco Systems





 -Original Message-
 From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] Behalf Of 
 Jeffrey Reed
 Sent: Saturday, April 05, 2003 8:27 AM
 To: [EMAIL PROTECTED]
 Subject: RE: 10/100/1000 Switch? [7:66851]


 Larry, what's the costly upgrade all about? I saw two 48-port 
 10/100/1000 blades introduced. One is for performance and the other 
 for value. Do both need the upgrade to the chassis?

 Thanks!!


 Jeffrey Reed
 Classic Networking, Inc.

 -Original Message-
 From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] Behalf Of 
 Larry Letterman
 Sent: Friday, April 04, 2003 7:11 PM
 To: [EMAIL PROTECTED]
 Subject: RE: 10/100/1000 Switch? [7:66851]

 we have had the 16 port 10/100/1000 blade for a while in the cat 6000 
 line. As DRE says, the 48 port version will be out soon..however it 
 will require a costly upgrade to the chassis...


 Larry Letterman
 Network Engineer
 Cisco Systems





  -Original Message-
  From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] Behalf 
  Of dre
  Sent: Friday, April 04, 2003 3:04 PM
  To: [EMAIL PROTECTED]
  Subject: Re: 10/100/1000 Switch? [7:66851]
 
 
  Greg Rend  wrote in message ...
   Does anyone know if/when Cisco is going to announce a standalone 
   (2950, 3550), triple speed switch? If there is already one out 
   there from Cisco (standalone) please excuse my ignorance. I 
   haven't been about to track one down. I know Cisco has a 3550-12T 
   Switch but ony 12 10/100/1000 ports. Word on the street is that 
   Cisco is going to announce a higher density, anyone have any news?
 
  Well considering Cisco just came out with the Sup720 and have 
  10/100/1000 modules for the 6500 platform finally on the official 
  roadmap (announcement in May) -- I don't forsee them having it on 
  smaller switches in bulk until much later.  10/100/1000 has been 
  available on the Catalyst 4000 series for quite some time now, 
  however, so that would likely be the platform of choice for 
  10/100/1000 applications.  Or maybe another vendor.
 
  -dre




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7i=66962t=66851
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

OT: 6509 w/2 SUP2/MSFC2 and FlexWAN [7:56774]

2002-11-03 Thread Tim O'Brien

Hello,

I am working on a high availability solution for a single 6509. The
customer currently has a 6509 with dual SUP 2's and dual MSFC2/PFC2's.
This box also has a FlexWAN module and I am having some difficulty
locating any useful information on Cisco's new site about setting this
up with some high availability or redundancy. When I configure the
MSFC's like normal with HSRP on all of the VLAN interfaces only the MSFC
in the active SUP can see the FlexWAN module and serial ports. They do
not even show up on the second MSFC. Is there a Ciscoized way to set
this up?

Thanks for any help!

Tim




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7i=56774t=56774
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

RE: 2610 VPN with 3DES [7:52124]

2002-08-27 Thread Tim O'Brien


I would probably look at 12.1.16. It is GD and should be stable. IP Plus
IPSec 3DES only requires 8 and 40 so you should be fine. If you are feeling
brave you could load up 12.2.10b.. :)

Tim
CCIE 9015, CSS1

-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of
Firesox
Sent: Tuesday, August 27, 2002 8:12 AM
To: [EMAIL PROTECTED]
Subject: 2610 VPN with 3DES [7:52124]


Folks, I am in need of a quick help.
I have 2610 doing 3DES for site-to-site VPN.  It creates a tunnel
successfully, but it crashes and gives me an error messgage below.
*** System received a SIGTRAP exception ***
signal= 0x5, code= 0xd00, context= 0x81640a98
PC = 0x80db4414, Vector = 0xd00, SP = 0x81cfb1f0
*** Unexpected Console FIFO timeout interrupt ***
PC = 0xfff03fc4, Vector = 0x500, SP = 0x81641ca4

The IOS is C2600 Software (C2600-IK2S-M), Version 12.0(7)XK1, EARLY
DEPLOYMENT RELEASE
I have 16MB flash and 48mb Dram.
I am suspecting this is a bug within the IOS.
If so, can someone tell me what the most bug-free IOS(3DES) is?
Thanks




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7i=52129t=52124
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

RE: Help, Switching Solution with 4006 [7:51799]

2002-08-21 Thread Tim O'Brien


Rik is correct. The SupIII only supports IP routing protocols. To get layer3
IPX in the 4000 you will need to install the 4232 L3 blade and the enhanced
IOS image for it. This would not be very clean. Do they really need the IPX?
Maybe you can pitch a conversion from IPX to IP while installing the switch.
I also notice that you have the 5483 TX GBIC's specked out. Are your cable
runs within the distance limitations? When you are talking about running
between floors you better have them tested to be sure.

Tim
CCIE 9015, CSS1


-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of
Larkin, Richard
Sent: Wednesday, August 21, 2002 4:43 AM
To: [EMAIL PROTECTED]
Subject: RE: Help, Switching Solution with 4006 [7:51799]


I was told by Cisco that Sup III didn't support IPX routing!

Rik

-Original Message-
From: Wayne Jang [mailto:[EMAIL PROTECTED]]
Sent: Wednesday, 21 August 2002 8:29 AM
To: [EMAIL PROTECTED]
Subject: Help, Switching Solution with 4006 [7:51799]


Hi,

I am proposing the following LAN solution to a customer.  Does it make
sense?

-WS-C4006-S3(sup III engine)
Do I need special licenses for this?  The customer will be using IP and IPX.
I saw some licensing software for the Sup III that was around $1700 for both
IP and IPX.  I don't know that that is all about.

-One 48 port RJ45 blade for servers and workstations on same floor

-One 6 port GBIC blade (WS-X4306-GB) that will be used to connect to five
WS-2950s on different floors

-I will use the WS-5483 GBICs to connect the 2950s to the six port
WS-X4306-GB

Can anyone think of things I haven't considered?

Thanks
Wayne




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7i=51827t=51799
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

RE: static routing [7:51599]

2002-08-18 Thread Tim O'Brien


Paul,

EIGRP is fully supported on the 4006 in both the Layer3 4232 blade and the
new SupIII. I would definitely stay away from IGRP and would highly
recommend EIGRP.

Tim
CCIE 9015, CSS1


-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of
Paul
Sent: Sunday, August 18, 2002 4:54 PM
To: [EMAIL PROTECTED]
Subject: static routing [7:51599]


Hi guys,

I have recently inherited a 30+ strong network that only uses static
routing!!! Some of the equipment includes 2900s 3500s 3600s 4000s amongst
others. I would very much like to move towards dynamic routing!!! What would
you guys suggest? I also believe that the next IOS for the 4006s does not
support EIGRP ! (If i am correct!)

I am not sure if I should use RIP IGRP etc. Have any of  you guys
experienced
this before and what would you suggest?

Kind regards

Paul




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7i=51606t=51599
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

RE: BSCI exam [7:49432]

2002-07-23 Thread Tim O'Brien


Nothing like real-world scenarios on test that are nothing like the
real-world.. :)

Tim
CCIE 9015

-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of
[EMAIL PROTECTED]
Sent: Tuesday, July 23, 2002 9:15 AM
To: [EMAIL PROTECTED]
Subject: BSCI exam [7:49432]


Hi,

Today I passed the BSCI exam towards my CCIP certifictaion.I scored 930 and
the passing score was 700 and the number of questions are 57.The exam
contains all the routing protocol (more stress on IS-IS).

The pattern of the exam is different from other exams,The exam has some
design questions that needs to be implemented through the router
simulators,very much like the real router's hyperterminal (Cisco CIM) but
the functionality of help and tab commands are disabled here.One needs to
remember the complete configuration command.

Kind Regards /Thangavel

186K
Reading,Brkshire
Direct No   -0118 9064259
Mobile No  -07796292416
Post code: RG16LH
www.186k.co.uk

--
The greatest glory in living lies not in never falling,
 but in rising every time we fall .
 -- Nelson Mandela





**
This e-mail is from 186k Ltd and is intended only for the
addressee named above. As this e-mail may contain confidential
or priveleged information, if you are not the named addressee or
the person responsible for delivering the message to the named
addressee, please advise the sender by return e-mail. The
contents should not be disclosed to any other person nor copies
taken.
186k Ltd is a Lattice Group company, registered in England
 Wales No. 3751494 Registered Office 130 Jermyn Street
London SW1Y 4UR
**




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7i=49436t=49432
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

RE: PIX Destination Nat [7:48754]

2002-07-14 Thread Tim O'Brien


Gil,

PIX version 6.2 supports Bi-Directional NAT. You no longer need to use the
alias command.

Have a look...

Bi-Directional Network Address Translation (NAT)

PIX Firewall software version 6.2 allows Network Address Translation (NAT)
of external source IP addresses for packets traveling from the outside
interface to an the inside interface. All functionality available with
traditional NAT such as fixups, Stateful Failover, dynamic NAT, static NAT,
and PAT are available bidirectionally in this release.

Tim
CCIE 9015



-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of
Gil Shulman
Sent: Sunday, July 14, 2002 5:02 AM
To: [EMAIL PROTECTED]
Subject: PIX  Destination Nat [7:48754]


Hi all,

I am trying to perform a Nat on the destination IP address.
I have a PIX holding the 6.2 OS Version.
I know Destination Natting can be achieved by using the alias command but I
have to configure an alias which will translate two different D. IP
addresses to a single one.

Help on the I can do it (if at all) will be appreciated.

Cheers,
Gil

**
The contents of this email and any attachments are confidential.
It is intended for the named recipient(s) only.
If you have received this email in error please notify the system manager
or  the
sender immediately and do not disclose the contents to any one or make
copies.

** eSafe scanned this email for viruses, vandals and malicious content **

**




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7i=48758t=48754
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

RE: Cisco Video Conferencing [7:48646]

2002-07-12 Thread Tim O'Brien


All of the IP/TV stuff is designed for just this feature. Does he want to
just give speeches or is he looking for interactive video response? Even
with the IP/TV stuff you can click a button to submit online questions to
the presenter.

Tim
CCIE 9015

-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of
Kim Graham
Sent: Friday, July 12, 2002 6:23 AM
To: [EMAIL PROTECTED]
Subject: Re: Cisco Video Conferencing [7:48646]


We are using it.   The person who is developing it for our team is jumping
through alot of hoops.   Some of the hoops are company defined ones others
are Ciscos.   So far we have been able to do long distance VC (Toronto to
Florida) and a few other places without too much trouble.  It seems to be in
the later stages of development, thus you need to do your share of
research.  He is currently working on Site to Multicast (boss to employee
desktops) scenario as opposed to Site to Site.  This one is a challenge.

If you are currently using it and have any pointers he would probably
appreciate it.

Kim


 From: Johnson, Richard (NY Int)
 Date: 2002/07/11 Thu PM 10:47:50 EDT
 To: [EMAIL PROTECTED]
 Subject: Cisco Video Conferencing [7:48646]

 Hi All,

 Is anyone out there currently using it? If so what are your opinions of
it?


 Thanks

 Rich




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7i=48665t=48646
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

RE: Placement of IDS [7:48420]

2002-07-11 Thread Tim O'Brien


If you are going to look at it that way you should run host based IDS on the
servers you are protecting from your inside clients and run your IDS sensor
between your edge router and firewall to see what is happening outside.

Tim
CCIE 9015

-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of
sam sneed
Sent: Thursday, July 11, 2002 11:41 AM
To: [EMAIL PROTECTED]
Subject: Re: Placement of IDS [7:48420]


I wouldn't want to put it in both places. If I did I'd have to deal with
false positives twice. With all the other  responsibilities I have it would
take up too much of my time. I do trust my firewall so I think I'll keep it
inside.


Brad Nixon  wrote in message
[EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
 The easy answer to your question is It depends. Do you trust your
 firewall? Do you trust your internal users? The best solution would be to
 have an IDS on each side of your firewall. That way you could detect both
 external and internal threats.

 --
 Brad A. Nixon
 CCNP, CCDA, MCP, CCSA
 Nothing is fool proof to a sufficiently talented fool.




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7i=48601t=48420
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

RE: bandwidth in serial interface [7:48481]

2002-07-10 Thread Tim O'Brien


The bandwidth command is for proper function of routing protocols. The
routing protocol will take the value of the bandwidth statement and use it
in its metric.

Tim
CCIE 9015


-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]
Sent: Wednesday, July 10, 2002 5:11 AM
To: [EMAIL PROTECTED]
Subject: bandwidth in serial interface [7:48481]


hi
i have this doubt.What is the significance of Bandwidth command in the
serial interface.coz' whatever the bandwidth configured on the serial
interface will not be the actual bandwidth which the serial interface is
carrying. pls can any one clarify my doubt?

regards
deepak




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7i=48485t=48481
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

RE: Class C summarization question [7:48367]

2002-07-09 Thread Tim O'Brien


Bob,

I would have to agree. With CIDR, in most cases you will get 16 usable
subnets and 2 unusable addresses (the network and the broadcast).

ex. 192.168.96.0 255.255.240.0

192.168.96.1 -- 192.168.111.254 all usable
192.168.96.0 network
192.168.111.255 broadcast

I could see the question possibly not wanting the zero subnet if you used
the following:

192.168.0.0 -- 192.168.15.255
where the 192.168.0.X network might be classified as unusable.

This would give you 15 usable subnets...

Tim
CCIE 9015


-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of
Bob Timmons
Sent: Tuesday, July 09, 2002 7:28 AM
To: [EMAIL PROTECTED]
Subject: Re: Class C summarization question [7:48367]


Firstly, 2 to the power of 4 is 16 (2x2x2x2).

Secondly, regarding Carl's post, would the answer be 14?  I'm not sure the
subnet-zero comes into play with CIDR.  I was under the impression it was
only relevant to subnetting as opposed to summarizing.  Does anyone know for
sure?

 I say 8. 2 to the power of 4




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7i=48403t=48367
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

RE: Not only is TR going... [7:46391]

2002-06-13 Thread Tim O'Brien


Theo,

By no means is the 3550 replacing the 6500 in a real world scenario. The
3550 is an IDF non-chassis switch. The most density you can get is 48
10/100 ports. However, the IOS structure and layer 3 capabilities allow you
to mimic a lot of the new functionality that you have in the 6500. This will
allow the CCIE lab to contain new technologies such as Private VLANS, QoS,
STP enhancements, Voice VLANS, etc... This also gives way to the future of
the 6500 running native IOS. So, if you are an expert on the 3550, chance
are that you will know your way around a 6500 pretty well.

Tim
CCIE 9015

p.s. Think of the cost of outfitting the 9 CCIE labs with new 6506's. With
RTP having something like 14 racks, I will use 10 as an average since I have
no idea what the other labs have. A simple config on a 6506 with a
Sup2-MSFC2, a WS-X6348-RJ45V, the necessary software and memory comes to
$71,000 list price * 90 units = $6,390,000.00! They could throw in a
WS-C3550-24-EMI for a list price of $4,990.00 and come out with a total of
$449,100 with a similar feature set.


-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of
[EMAIL PROTECTED]
Sent: Thursday, June 13, 2002 3:26 AM
To: [EMAIL PROTECTED]
Subject: RE: Not on;y is TR going... [7:46391]


My bewilderment comes from my previous belief that Cisco, your company,
was promoting the 6000 and 6500 series switches as the replacement to the
5xxx series.  I have recommeded since last August to use the 65xx because
of this.  Of course I thought this switch would be on the test!  It is a
good machine and I like it.  Of course I like Foundry's ServerIrons too
but for a Cisco Switch, I really do like the 65xx.

IDS is only part of the problem.  The 65xx uses modules.  I thought for
sure Cisco would want engineers to know about how to configure the modules
not only because it increases the value of the engineer but more
importantly, it is useful in marketing and sales.  Don't you want to
promote the modules on the 65xxx  They are really expensive and Cisco
must make some good money off of them.

The 3550 is what?  Perhaps we can all buy one, I just saw 4 on e-bay, each
for under $3000, but doesn't Cisco want to test us off of what many
enterprises are using?  I was at a Cisco Gold Partner company last year
and they only recommended the 5xxx and then the 65xx.  Of course many
customers bought the 29xx but on the test there was the 5xxx-a modular
switch.  It just doesn't make sense.  It looks too easy.

But hey!  It's your company!  Of course it will be beneficial to me as a
test-taker to have the 3550.  I am just at a loss as to why Cisco is not
putting the replacement switch on the test.  Your commments

Theo






Larry Letterman
06/13/2002 02:33 PM


To: ,
cc:
Subject:RE: Not on;y is TR going... [7:46391]


and why are you so distraught about no IDS..?
other than the fact we all know your big on security.

Its a basic l2/l3 switch for the lan switching part of
the R/S lab, not the security lab...


Larry Letterman
Cisco Systems
[EMAIL PROTECTED]


-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of
[EMAIL PROTECTED]
Sent: Wednesday, June 12, 2002 9:11 PM
To: [EMAIL PROTECTED]
Subject: RE: Not on;y is TR going... [7:46391]


I don't know about this thing.
What is the real throughput I wonder.
It says 24Gbbs switching fabric but I can't find a place where is says  X
Gbbs throughput
Has anyone really ever tested one of these puppies?  I would like to know
if it can really take a beating without losing packets.
And this thing can't do IDS!  Why O why did they choose this thing?  How
about the Content Swiching Module?  Does it have anything like this?  I am
looking at the page now and can't see anything promising.  Man was someone
sniffing acid when they suggested the switch and it wasn't IDS???

I would like to know if anyone has any experience with this with like 10
1-gig copper connections, all intensive traffic flows between various
servers.  I know the 6509 can take the pain without too much trouble.  Can
the 3550 really perform

Theo






Mark Odette II
Sent by: [EMAIL PROTECTED]
06/13/2002 12:14 PM
Please respond to Mark Odette II


To: [EMAIL PROTECTED]
cc:
Subject:RE: Not on;y is TR going... [7:46391]


The 3550 running the Enhanced image of IOS is a layer 3 switch with 24
or 48 ports- No need for a Route Module add-on.  You can put an IP on
every single port too from what I understand.

  It more or less can do the same thing as a 6500 - minus any Tel-Co
blades that might be able to be put in the 6500.  Of course, I don't
have any experience with the 6500 series switch, so I don't know what
all you can put in it. :(

Mark

-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] On Behalf Of
[EMAIL PROTECTED]
Sent: Wednesday, June 12, 2002 9:24 PM
To: [EMAIL PROTECTED]
Subject: Re:

RE: CCIE home lab [7:46395]

2002-06-13 Thread Tim O'Brien


Have a look at the link from Cisco. They will be removing Token Ring and the
3920 Switch and replacing the 5500's with 3550's which can do layer 3 and
other new advanced features.

Tim
CCIE 9015

http://www.cisco.com/warp/public/625/ccie/ccie_program/whatsnew.html#18



-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of
[EMAIL PROTECTED]
Sent: Thursday, June 13, 2002 8:25 AM
To: [EMAIL PROTECTED]
Subject: Re: CCIE home lab [7:46395]


Hi,

Could you explain a bit more what happen after October ?


Thanks

Philip

- Original Message -
Wrom: IYZUNNYCGPKYLEJGDGVCJVTLBXFGGMEPYOQKED
To:
Sent: Thursday, June 13, 2002 1:09 AM
Subject: RE: CCIE home lab [7:46395]


 you apparently dont need the token or cat switch
 anymore if you are taking the lab after october...


 Larry Letterman
 Cisco Systems
 [EMAIL PROTECTED]


 -Original Message-
 Wrom: OTWFAOBUZXUWLSZLKBRNVWWCUFPEGAUTFJMVRESKPNKMBIPBARHDMNNSKVFVWRKJ
 Hunt Lee
 Sent: Wednesday, June 12, 2002 7:02 PM
 To: [EMAIL PROTECTED]
 Subject: CCIE home lab [7:46395]


 Hi,

 I know that this may have come up many times.  But since I'm about to
start
 preparing for the CCIE lab, it would be great if anyone could give me some
 suggestions on this. I'm planning to continue to build up my lab.

 Currently, I have the following:

 2 x 1603R

 3 x 2501

 2 x 2503

 2 x 2511

 1 x Cat 5000

 I'm thinking whether I should get the below:-

 2 x Token routers - maybe 2 x 2502?? MAU?? What else do I need for Token??
I
 really don't know what else I need...

 1 x Frame switch - 

 1 x ISDN Simulator (do u know which one is good?)

 And I probably need to upgrade RAM / Flash on my routers... since most of
 them only had 4MB Flash on the moment...

 Any ideas would be greatly appreciated.

 Thanks

 --

 Hunt Lee

 WebCentral




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7i=46452t=46395
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

OT: Cisco SCA11000 Secure Content Accelerator [7:45989]

2002-06-07 Thread Tim O'Brien


I have a question on the SCA11000 that I was hoping someone could help with.
I installed one of these and in working with the config I enabled the web
management interface. Everything appears to be functional however I can only
web into it for management from the same network as the server port. Is
this how it is suppose to function? Is there any way to enable remote web
management?

Thanks for any suggestions!

Tim
CCIE 9015




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7i=45989t=45989
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

RE: Checksum failure [7:45856]

2002-06-05 Thread Tim O'Brien


I have seen this caused by a bad TFTP server of all things, as well as by a
bad download. Try to re-download and then try 3CDeamon, the best thing EVER
put out by 3Com! :)

ftp://ftp.3com.com/pub/utilbin/win32/3cdv2r10.zip

Hope that helps!

Tim
CCIE 9015


-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of
kevhed
Sent: Wednesday, June 05, 2002 3:10 PM
To: [EMAIL PROTECTED]
Subject: Checksum failure [7:45856]


Looking for some help.  I'm trying to download (tftp) a new ios image on my
2503 and after repeated attempts, I continually get a checksum error after
each download. I've changed the config-register to 0x2101 so that the flash
will switch to Read/Write prior to downloading.   I've tried 3 separate ios
images from cisco and here's what I get after each download:

t(boot)#copy tftp flash

System flash directory:
File  Length   Name/status
  1   8133708  c2500-js-l.112-26d.bin  [invalid checksum]
[8133772 bytes used, 254836 available, 8388608 total]
Address or name of remote host [255.255.255.255]? 10.1.1.1
Source file name? c2500-js-l.112-21.bin
Destination file name [c2500-js-l.112-21.bin]?
Accessing file 'c2500-js-l.112-21.bin' on 10.1.1.1...
Loading c2500-js-l.112-21.bin from 10.1.1.1 (via Ethernet0): ! [OK]

Erase flash device before writing? [confirm]
Flash contains files. Are you sure you want to erase? [confirm]

Copy 'c2500-js-l.112-21.bin' from server
  as 'c2500-js-l.112-21.bin' into Flash WITH erase? [yes/no]yes
Erasing device...  ...erased
Loading c2500-js-l.112-21.bin from 10.1.1.1 (via Ethernet0): !!






































!!
[OK - 8126256/8388608 bytes]

COPY: Text checksum verification failure

TFTP from 10.1.1.1 failed/aborted

Verifying checksum...  invalid (expected 0x2B4D, computed 0x294F)
Flash copy took 0:04:21 [hh:mm:ss]
t(boot)#

Thx in advance.  Any help is appreciated.

--
Kevin Keay (N+,CNE,CCSE,CCDP,CCNP, CISSP)
Sr. Network Specialist
Ondeo-Nalco
One Ondeo-Nalco Center
Naperville, IL 60563
(630) 305-2557




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7i=45864t=45856
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

RE: Bandwidth Throttling [7:45354]

2002-05-29 Thread Tim O'Brien


Here ya go...

http://www.cisco.com/warp/public/105/cbpcar.html

Tim
CCIE 9015


-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of
Wayne Jang
Sent: Wednesday, May 29, 2002 9:52 AM
To: [EMAIL PROTECTED]
Subject: Bandwidth Throttling [7:45354]


Hello,

We have some servers at a colocation site.  We have a 10MB pipe but we are
paying for 3MB.  The ISP charges us more $$ if we use more than 3 MB.  Can I
configure my router to not allow me to use more than 3MB?

Thanks,
Wayne


--
Wayne Jang
Advanced Computer Technologies, Inc.
108 Main Street
Norwalk, CT 06851
Wk 203-847-9433
Cell 203-943-6603




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7i=45356t=45354
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

RE: PIX 515E Question [7:45206]

2002-05-28 Thread Tim O'Brien


Actually, now they are included in the 515E-UR for free! You still need to
purchase it in the 515E-R models, I believe. This card increases throughput
for DES and 3DES to over 63Mbps. It works basically like a math-coprocessor
and offloads all of the IPSec encryption traffic so that the main processor
does not have to work so hard.

Here is the QA for the E models
http://www.cisco.com/warp/public/cc/pd/fw/sqfw500/prodlit/p615e_qa.htm

And here is the data sheet for the VPN Accelerator card that you are finding
http://www.cisco.com/warp/public/cc/pd/fw/sqfw500/prodlit/vac_ds.htm


Hope that helps,

Tim
CCIE 9015


-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of
[EMAIL PROTECTED]
Sent: Tuesday, May 28, 2002 3:25 AM
To: [EMAIL PROTECTED]
Subject: RE: PIX 515E Question [7:45206]


The card is a SafeNet Crypt PCI card.

It looks exactly like the VPN accelerator card I used last year for the
515.

What's up?  Now we have to buy these things?

Theo






[EMAIL PROTECTED] Theodore.Stout
Sent by: [EMAIL PROTECTED]
05/28/2002 04:02 PM
Please respond to [EMAIL PROTECTED]


To: [EMAIL PROTECTED]
cc:
Subject:RE: PIX 515E Question [7:45206]


Our is the 515E-DMZ so there is one card in there for the FE port.
In there other port, there is nothing there.

I will look again.






Kris Keen
Sent by: [EMAIL PROTECTED]
05/28/2002 03:38 PM
Please respond to Kris Keen


To: [EMAIL PROTECTED]
cc:
Subject:RE: PIX 515E Question [7:45206]


I know this! sorta, cant remember it thought its a card for 3des or
similar
for PIX to PIX authentication and security? it has no ports right?
Nod , seen it.




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7i=45218t=45206
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

RE: VG200 [7:44425]

2002-05-18 Thread Tim O'Brien


The 2 WIC slots are non-functional in a VG200. If you want to add voice
modules you can only add 2 using the NM-2V.

Tim
CCIE 9015


-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]
Sent: Saturday, May 18, 2002 2:19 AM
To: [EMAIL PROTECTED]
Subject: VG200 [7:44425]


Hello All

Anybody know what is the maximum VICs can be installed in VG200 ?

I guess only two VICs can be installed in slot 1 which contains the voice
network module, but still there is another two  WIC ,  can I swap VIC
directly into one of them ?

Ismail Al-shelh




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7i=44438t=44425
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

RE: Securing a Aironet 350 [7:44152]

2002-05-14 Thread Tim O'Brien


Have a look at the following paper.

http://www.cisco.com/warp/public/cc/so/cuso/epso/sqfr/safwl_wp.htm

Tim
CCIE 9015

-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of
Johnson, Richard (NY Int)
Sent: Tuesday, May 14, 2002 3:12 AM
To: [EMAIL PROTECTED]
Subject: Securing a Aironet 350 [7:44152]


Hi there,

What is the best way to secure a Aironet 350 from hackers? It is
only local in my office.


Thanks,

Rich




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7i=44181t=44152
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

RE: GBICs [7:44006]

2002-05-13 Thread Tim O'Brien


Mamoon,

Yes, this GBIC is fully supported in the Catalyst 6500, 4000, 3550 Series,
2950 Series, 3500 Series XL, and 2900 Series XL switches. The Catalyst 6500
and 4000 will support the new GBIC when the following software releases
become available in 2HFY02:
CatOS 7.2 - both Catalyst 6500 and 4000
CatIOS 12.1(13)E - Catalyst 6500 only

Tim
CCIE 9015

-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of
Mamoon Dawood
Sent: Monday, May 13, 2002 4:00 AM
To: [EMAIL PROTECTED]
Subject: GBICs [7:44006]


Dear All,

Does the new catalyst switches Cisco WS-C2950G-48-EI and WS-C2950G-24-EI
support
WS-G5483 Gbics (The 1000BaseT GBIC),

Regards,
Mamoon




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7i=44010t=44006
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

RE: CSPM for IDS4210 [7:42788]

2002-04-30 Thread Tim O'Brien


Kent,

There is no such thing as CSPM 3.0i. There is only an f version. To run
IDS you will probably want to run 2.3.3i or wait till IDM (IDS Device
Manager) comes out.

Tim
CCIE 9015


-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of
Kent Hundley
Sent: Tuesday, April 30, 2002 12:53 PM
To: [EMAIL PROTECTED]
Subject: RE: CSPM for IDS4210 [7:42788]


There are different versions of CSPM 3.0.  CSPM 3.0f supports PIX and
routers, CSPM 3.0i supports IDS.  You can read about it here:

http://www.cisco.com/univercd/cc/td/doc/product/ismg/policy/ver30/reln30.htm
#xtocid2

Regards,
Kent

-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of
[EMAIL PROTECTED]
Sent: Tuesday, April 30, 2002 8:26 AM
To: [EMAIL PROTECTED]
Subject: Re: CSPM for IDS4210 [7:42788]


Hello,

On a special request we got CSPM 3.0 FROM Cisco and for your information
CSPM 3.0 does not support IDS.it only supports PIX.


Kind Regards /Thangavel

186K
Reading,Brkshire
Direct No   -0118 9064259
Mobile No  -07796292416
Post code: RG16LH
www.186k.co.uk

--
The greatest glory in living lies not in never falling,
 but in rising every time we fall .
 -- Nelson Mandela






CiscoEnthuas
tic To:
[EMAIL PROTECTED]
   Fax
to:
Sent by: Subject: Re: CSPM for IDS4210
[7:42788]

nobody@groups

tudy.com



30/04/2002

15:01

Please
respond
to

CiscoEnthuas

tic






Unfortunately CSPM 3.0 Eval is not available from CCO even if you have a
CCO
account which has the pemittance to download
You can only get this software from VMS 2.0 set
Timo Graser  wrote in message
[EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
 I just got a IDS 4210 and want to manage it now, where can I download
 a CSPM 3.0 Eval?
**
This e-mail is from 186k Ltd and is intended only for the
addressee named above. As this e-mail may contain confidential
or priveleged information, if you are not the named addressee or
the person responsible for delivering the message to the named
addressee, please advise the sender by return e-mail. The
contents should not be disclosed to any other person nor copies
taken.
186k Ltd is a Lattice Group company, registered in England
 Wales No. 3751494 Registered Office 130 Jermyn Street
London SW1Y 4UR
**




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7i=42908t=42788
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

RE: VPN Solution [7:42514]

2002-04-25 Thread Tim O'Brien


Here ya go...

Tim
CCIE 9015

http://www.cisco.com/warp/public/707/ios_usr_rad.html

http://www.cisco.com/warp/public/707/ipsec_radius_config.html

http://www.cisco.com/warp/public/471/ios-unity.html



-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of
fahim
Sent: Thursday, April 25, 2002 4:55 AM
To: [EMAIL PROTECTED]
Subject: VPN Solution [7:42514]


Hi Group
Can anybody help me get links (samples) in cisco site, or has anybody
implemented this solution can throw some light,  for configuring a ios
router with ipsec 56 feature pack (cisco1720) and vpn client 3.x with
windows 2000 IAS Radius authentication, I searched and got only for
Configuring PIX with vpn client 3.x and windows 2000 IAS Radius
authentication.
thanks in advance.
Fahim
CCNA, CCDA, CSS1




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7i=42517t=42514
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

RE: PIX VPN [7:42068]

2002-04-20 Thread Tim O'Brien


The PIX comes with a 56bit DES license. If you want 3DES you will need to
buy it.

Tim


-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of
Mamoon Dawood
Sent: Saturday, April 20, 2002 2:32 AM
To: [EMAIL PROTECTED]
Subject: PIX VPN [7:42068]


Dear All,

Our customer who bought a Cisco PIX and router for his HQ want to connect
the HQ
office with another one in different location, they will implement VPN
connectivity from the HQ PIX to the other side PIX, is there any add on
software
need to be purchased or it will be ok with the default PIX configuration,

Regards,
Mamoon.




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7i=42075t=42068
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

RE: PAT, PIX 515 and VPN ..... [7:41662]

2002-04-16 Thread Tim O'Brien


Paul,

You are talking about 2 entirely different things. The VAC allows you to
create additional VPN connections. This VPN connection would be a client
or another site terminating into the PIX. This traffic between sites or
between the user and the PIX would be encrypted. The VAC handles the
encryption processing much like a math co-processor.

On the other hand you are talking about the PAT and NAT capabilities of the
PIX. I believe that the 515 is rated at somewhere around 125,000
simultaneous sessions through it. The net 515E even has a more powerful
processor. I would say that for 100 to 150 users you should have no problems
running PAT on a PIX 515 or 515E.

Tim
CCIE 9015

-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of
Paul
Sent: Tuesday, April 16, 2002 5:47 PM
To: [EMAIL PROTECTED]
Subject: PAT, PIX 515 and VPN . [7:41662]


Cisco say that one gloabal IP address can be used for up to 64,000 local
addresses 

I want to use the same method for 100 - 130 predominantly web-browsing
end-users  through a PIX 515.

Has anyone had any experience of this .. and does anyone forsee any problems
!!! this is the first time I have done this and I don't want to make any
basic
mistakes   :)

Also  The PIX 515 can have a VAC installed to allow up to 2000
similtaneous VPN connections at any one time . but .. how many sessions
can the PIX 515 manage on its own, without a VAC ??

Any help or suggestions will be greatly received ...

Kind regards ..

Paul 




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7i=41678t=41662
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

RE: 4006 Power Supplies [7:41257]

2002-04-12 Thread Tim O'Brien


The 4006 comes standard with 2, you cannot get just 1. Don't try and run
that 4006 full with blades on just 1 power supply... Also, if you are going
to run the 4006 with inline power, you will need the additional AUX Power
shelf with 3 more power supplies.. nothing like plugging in 6 power
supplies. :)

Tim
CCIE 9015


-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of x
Sent: Friday, April 12, 2002 8:01 AM
To: [EMAIL PROTECTED]
Subject: Re: 4006 Power Supplies [7:41257]


Jeff,
We just bought a Cisco 4006 switch.  Our reseller and
our Cisco rep both told us we need two power supplies
to run it and one for redundancy.  They both went on
to say the power supply is the first thing to go.
They sold me on it so I got all three power supplies.

I got the switch a few weeks ago and I threw in the
two 10/100 blades and the extra power supply.  I
unplugged one power supply and it still seemed fine.
I decide to unplug another and leave only one running
just to see if it would die.  It ran for 30 minutes
until I decided to plug it back in, keep in mind I
didn't have anything attached at the time.

I am guessing if you really wanted to you could get
away with one, but when your spending that much(think
it was around $14k to $15k) an extra $600 or so to
protect your investment is no big deal.  I also like
the fact that if two powersupplies die it will still
probably run and I can take my time replacing them.  A
good night's sleep is worth $600 to me.


--- Jeffrey Reed  wrote:
 Im trying to understand power redundancy in the
 Cisco 4006 switch. Reading
 through the online information, Cisco seems to imply
 you must have at least
 two power supplies up and running at all times. The
 3rd power supply
 provides redundancy. Other vendors allow you to run
 at least a partially
 populated chassis on one power supply. If I have a
 4006 with SUPII and one
 48-port blade, do I really need three power
 supplies? Anyone have experience
 with 4006s and power supplies?

 Thanks!!

 Jeffrey Reed
 Classic Networking, Inc.
 Cell 717-805-5536
 Office 717-737-8586
 FAX 717-737-0290
[EMAIL PROTECTED]


__
Do You Yahoo!?
Yahoo! Tax Center - online filing with TurboTax
http://taxes.yahoo.com/




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7i=41289t=41257
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

RE: PIX VS CheckPoint [7:40136]

2002-04-08 Thread Tim O'Brien


With PDM 2.0 and PIX OS 6.2 you will be able to do this. It was suppose to
be out last month.. I guess they are still working the bugs out of it...

Tim
CCIE 9015


-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of
Mark Odette II
Sent: Monday, April 08, 2002 2:48 AM
To: [EMAIL PROTECTED]
Subject: RE: PIX VS CheckPoint [7:40136]


Timo- Which version of the PDM are you referring to that has the VPN config
capability??

I have 1.1.2 now, and I have not found that functionality... Am I just
overlooking something!?!?!

TIA for your response.

-Mark Odette II

-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of
Timo Graser
Sent: Sunday, April 07, 2002 7:05 AM
To: [EMAIL PROTECTED]
Subject: Re: PIX VS CheckPoint [7:40136]


The Pix has also a browser interface. The only disadvantage in the past
was, that you could not configure a vpn. With the new pdm you will be
able to do this too.

So the only things in the future to do at cli will be to run setup and
then log in over your browser.

Jeffrey Reed wrote:

IPSO comes with a nice web browser interface that I can teach a customer in
a matter of minutes. You only need to access command line when you have
support on the line. Also, Nokia certifies each CheckPoint release with
their IPSO operating system to make sure they are more than compatible.
This
is a good solution if you're running CheckPoint. As X said, never run your
firewall on NT!!

Jeffrey Reed
Classic Networking, Inc.

-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of nrf
Sent: Tuesday, April 02, 2002 9:21 PM
To: [EMAIL PROTECTED]
Subject: Re: PIX VS CheckPoint [7:40136]

I knew somebody was going to come back with that.  All-right fine, it is
indeed true that Ipso is a hacked version of Unix.  But then again, so is
Cisco IOS and Juniper JunOS, and you could say that it helps to have
knowledge of Unix to run either of those (especially JunOS).The point I
was trying to make is that by using a Nokia Ipso box, you don't subject
yourself to the full-blown intricacies of Unix like you do when installing
Checkpoint software on, say, a Sun box. I was trying to say that  you could
get by with less Unix skills than you could otherwise, I was not saying
that
you could get by with an absolute 100% complete whole-nine-yards lack of
Unix knowledge.  Now, whether you consider that to be a good or bad thing
is
in the eyes of the beholder.



colin newman  wrote in message
[EMAIL PROTECTED]">news:[EMAIL PROTECTED]...

Hi

Nokia?s IPSO OS is Unix.  It?s a ?hardened? and customize version of
FreeBSD.  I?ve worked on Nokia/CheckPoint boxes and it does help to have
knowledge of Unix.  I have not had the chance to work with PIX yet so I
can?t comment on the merits of a CheckPoint/Nokia vs. PIX.  The only
negative thing I have to say about CheckPoint is their idiotic licensing
scheme, it a pain and can be very confusing.


Colin
nrf wrote:

On the other hand, there's a distinct third option, which is to
run
Checkpoint on a dedicated hardware appliance, for example the
Nokia Ipso
line of gear.  This removes one of the Checkpoint disadvantages
(don't need
to know Unix or NT), but introduces another disadvantage (less
flexible -
you should have included in your advantages that regular
Checkpoint is more
flexible than Pix because you can integrate it with Unix and
enjoy all the
features of Unix, but of course with a Nokia, you don't have
that).  In
fact, the Pix and the Nokia Checkpoint are so close that it's
almost a wash.
I believe the Pix is faster, but the Nokia Checkpoint is still
more flexible
(but not as flexible as Checkpoint software).



Nurudeen Aderinto  wrote in
message
[EMAIL PROTECTED]">news:[EMAIL PROTECTED]...

Dear x,

I love your presentation. You spoke well.

Nurudeen
x  wrote in message
[EMAIL PROTECTED]">news:[EMAIL PROTECTED]...

I have setup and managed both PIX and Checkpoint in a
variety of environments.  I think they are both solid
options in different situations.  Here is how I market
these products.

PIX
- more cost effective
- fast
- you can have fail over
- Can be more complicated to setup the CLI, but PIX
has a nice feature of allowing all traffic out and
none in by default.

Who would I market this for?
I would target this as an ideal candidate for small
companies with rulesets that don't change much.  They
also need a Cisco savy person to manage it, usually a
consultant.  I am guessing you would fill this role.
I have only made minor changes in the firewall I have
managed for almost two years.

Checkpoint
- nice GUI for ruleset management
- more expensive
- required to know Unix or NT ( for the love of God
don't use NT.  Its security is very poor out of the
box and requires a great deal of configuration to
become mildly secure )

Who would I market this toward?
I would target larger companies with Checkpoint.  It
is easier to manage the ruleset, but more setup time
and more

RE: 6513 switch [7:40446]

2002-04-04 Thread Tim O'Brien


You need to order the SFM2 separately (WS-X6500-SFM2). You can order 2 for
redundancy. This will light up the 256Gig Crossbar backplane. It will be
totally worthless unless you get the proper linecards also. If you have
other questions just let me know.

Tim
CCIE 9015


-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]
Sent: Thursday, April 04, 2002 2:16 AM
To: [EMAIL PROTECTED]
Subject: 6513 switch [7:40446]


I have ordered two Supervisor Engine 2, dual 1000BASE-X GBIC uplinks,
fabric-enables, CEF, enhanced Qos features, PFC2, and MSFC2 for my 6513
switch.

The question is:

Do I have to order separate Switch Fabric Module ?  or no need because the
SuperVisor Engine already enabling  switch fabric ?

Ismail Al-shelh




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7i=40452t=40446
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

RE: How do I approach the company about my CCIE [7:40261]

2002-04-03 Thread Tim O'Brien


I still cannot believe that a CAM told you that. I know for a fact that CCIE
is still coveted inside of Cisco (I just left there as an SE to start my own
company 1 month ago). The Silver and Gold partnerships still require CCIE's
also, which is how a CAM is paid (by partner performance)... I think that
guy was blowing you smoke...

Tim
CCIE 9015


-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of
Steven A. Ridder
Sent: Wednesday, April 03, 2002 7:06 AM
To: [EMAIL PROTECTED]
Subject: Re: How do I approach the company about my CCIE [7:40261]


I'm not trying to discourage anyone, and each company is different.  The CAM
told me and I'm still going to do it.

--

RFC 1149 Compliant.
Get in my head:
http://sar.dynu.com


Kris Keen  wrote in message
[EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
 I too! Seeing something like that just makes me want to not even both with
 the CCIE track...
 I think cisco care very much about their 9000 odd CCIe's




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7i=40317t=40261
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

RE: root switch [7:39975]

2002-04-01 Thread Tim O'Brien

If you turn off Spanning Tree, the switch will never become root.

Tim
9015

-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]
Sent: Monday, April 01, 2002 1:12 AM
To: [EMAIL PROTECTED]
Subject: RE: root switch [7:39975]

as you know, my switch doesn't become a root swtich,so i set a higher
priority in my switch,which method can be sure my swithc never come to root?
thanks.

Message Posted at:
http://www.groupstudy.com/form/read.php?f=7i=40021t=39975
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

RE: root switch [7:39975]

2002-04-01 Thread Tim O'Brien


Using this command only sets the bridge priority to 8192, meaning that
anything lower than 8192 would take over as root. To give a switch the best
chance to become and stay root, I would probably use this command as well
as then setting the priority to 0. The only way that a different switch
would take over after applying both of these commands would be a preferred
MAC address. You can edit this also if you really wanna mess with things.

Tim
CCIE 9015


-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of
[EMAIL PROTECTED]
Sent: Monday, April 01, 2002 7:49 AM
To: [EMAIL PROTECTED]
Subject: RE: root switch [7:39975]


Hi,

Just a reminder,Higher priority means lower value..

If still not becoming a root bridge,use this command set spantree root



Kind Regards /Thangavel
--
CCIE (qual),CCS,CCDP,CCNP,MCSE

186K
Reading,Brkshire
Direct No   -0118 9064259
Mobile No  -07796292416
Post code: RG16LH
www.186k.co.uk

--
The greatest glory in living lies not in never falling,
 but in rising every time we fall .
 -- Nelson Mandela





Tim
O'Brien

cc:
Sent by: Fax
to:
nobody@groupsSubject: RE: root switch
[7:39975]

tudy.com



01/04/2002

12:57

Please
respond
to
Tim
O'Brien






If you turn off Spanning Tree, the switch will never become root.

Tim
9015

-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]
Sent: Monday, April 01, 2002 1:12 AM
To: [EMAIL PROTECTED]
Subject: RE: root switch [7:39975]


as you know, my switch doesn't become a root swtich,so i set a higher
priority in my switch,which method can be sure my swithc never come to
root?
thanks.
**
This e-mail is from 186k Ltd and is intended only for the
addressee named above. As this e-mail may contain confidential
or priveleged information, if you are not the named addressee or
the person responsible for delivering the message to the named
addressee, please advise the sender by return e-mail. The
contents should not be disclosed to any other person nor copies
taken.
186k Ltd is a Lattice Group company, registered in England
 Wales No. 3751494 Registered Office 130 Jermyn Street
London SW1Y 4UR
**




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7i=40029t=39975
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

RE: MPLS White Paper Announcement [7:40035]

2002-04-01 Thread Tim O'Brien


Yea.. I am sure it is great.. if you are fluent in Russian

Tim
CCIE 9015

-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of
David Wolsefer
Sent: Monday, April 01, 2002 10:21 AM
To: [EMAIL PROTECTED]
Subject: MPLS White Paper Announcement [7:40035]


Galina Pildush is publishing an MPLS white paper today on
www.certificationzone.com. You better hurry though because it will only be
available free for today only. This should be an excellent source for those
studying for the CS exam. As a CCIE and JNCIE, Galina knows MPLS well.

Regards,

David Wolsefer




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7i=40037t=40035
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: Gawd I hate my life ;- [7:31817]

2002-01-14 Thread Tim O'Brien


Chuck,

You actually have 2 commands now that match what you are trying to type.

so there is now a sho ip protocol-discovery
and there is also a sho ip protocols.

The bad news is that you will have to use an alias now or you will have to
type the whole word protocols to make this command work.

Tim


 From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]
 Sent: Sunday, January 13, 2002 10:39 PM
 To: [EMAIL PROTECTED]
 Subject: OT: Gawd I hate my life ;- [7:31817]


 OK, so I've been doing rack testing for some people who are going to be
 going public Real Soon Now.

 Got some things mocked up. Some of which relate to topics discussed on
this
 forum yesterday and today. I need to check something and issue the command
 show ip prot enter.

 r2#sh ip prot
 % Ambiguous command:  sh ip prot
 r2#

 well, now...

 r2#show ip prot?
 protocol-discovery  protocols

 r2#show ip prot

 so what is show ip protocol-discovery?

 r2#sh ip protocol-discovery ?
   interface  Show for a specific interface
   protocol   Show stats about a pariticula protocol
   stats  Show Stats
   top-n  Show Top-N protocols by bytes
   |  Output modifiers


 OK. so a command I've been using since 11.2 is no longer valid. except
that
 it is on other routers.

 but look - still good on other routers:

 r3#sh ip prot?
 protocols

 r3#sh ip prot


 OK, check CCO, no record of any such command as show ip protocol-discovery
 in any command reference I check. A search of CCO for the phrase reveals
 nothing.

 now what?

 the IOS version in question is:

 r2#sh ver
 Cisco Internetwork Operating System Software
 IOS (tm) 3600 Software (C3620-JS56I-M), Version 12.1(5)T10,  RELEASE
 SOFTWARE (f
 c2)

 sigh. have not run into this before, not in two trips through the lab, not
 on any number of routers and IOS versions, both at home and in customer
 installations.

 Anyone got any clue what show IP protocol-discovery does?

 sheesh.. another good shortcut down the tubes.

 Chuck




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7i=31842t=31817
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: OT - Firewall performance Comparisons - is it quitting time [7:30658]

2002-01-02 Thread Tim O'Brien


A couple of points, and I will then get off of my soapbox...

Checkpoint NG is STILL an application running on UNIX or NT, not a self
contained appliance. Personally I love Microsoft (let the flames begin!),
however, with the critical updates that I see getting installed on my 2000
and XP workstations I am POSITIVE that I would not want to trust my company
security to it. Another point.. Have you ever installed and configured a
Checkpoint firewall? You can have the PIX up and running with failover even
before you get the OS half installed on the new server that you need to buy
for it, thus raising the cost for an already more expensive solution in
man-hours and equipment. The PIX is also very interoperable with other
devices in the network. You can create PIX to PIX or PIX to IOS or PIX to
3000VPN site-to-site with other offices or home offices with built in 56bit
DES or available 3DES . You can tunnel in VPN clients (free Cisco VPN client
available). You can tunnel in Microsoft PPTP or L2TP sessions. And one last
point, Have you ever had to get support from Checkpoint??? enough said about
that one...

If you would like to discuss further contact me offline...

Tim

- Original Message -
From: [EMAIL PROTECTED]

To: 
Sent: Wednesday, January 02, 2002 4:05 AM
Subject: Re: OT - Firewall performance Comparisons - is it quitting time
[7:30652]


 For quite a while CheckPoint is out performing every single Firewall in
the
 market a specially in the CheckPoint Next Generation Firewall version
 and with the release of there SecureXL API.
 It is important to remember that performance is not everything that need
to
 be compared while testing a Firewall.
 I love the Cisco PIX but the CheckPoint NG is amazing.

 Gil




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7i=30658t=30658
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: VPN [7:24231]

2001-10-28 Thread Tim O'Brien


Have you looked at the Cisco 3000 series VPN concentrators? They are
awesome! Very easy to setup and configure. Have an excellent client that
currently supports Win95/98/ME/NT/2000/Linux and there is Mac support in
beta now. It also has a hardware client (the 3002) if you need remote
offices or home users with several machines. It will sit behind a Cable
Modem or DSL and grab an IP and hand out DHCP (up to 254 addresses) inside.
The 3000 series is also fully capable of creating site-to-site VPN
connections with PIX and IOS routers as well as other 3000 series
concentrators. They have 4 different models (I think) and the low end is
very inexpensive. The top end scales to 10K concurrent connections and also
fully supports VRRP for redundancy. If you want any more information just
let me know! We have been using one for about 6 or 8 months and it has been
perfect. The 3000 series also fully supports NAT, as it opens the packet up
and looks at the actual IP address. Works great.

Tim

- Original Message -
From: Brian Wilkins 
To: 
Sent: Sunday, October 28, 2001 11:51 AM
Subject: RE: VPN [7:24231]


I've used a few variations of VPN products and here are some thoughts that
might help.

1.  Use something that supports industry-standard specs such as IPSEC,
ISAKMP, etc.  In the past I have primarily used Shiva (now Intel) which is
REALLY easy to deploy and manage, but is also very proprietary.  Now we are
switching VPN solutions, and will be forced to redistribute client software
(bummer).  I believe Intel's new solution is headed more in the direction of
industry standard specs, but may not quite be there yet.

2.  Consider how your internal Internet connectivity is configured.  If you
are using NAT for your internal users to get to the Internet, and are going
to try to run VPN through a NAT'd address, you have a problem.  Industry
standard VPN (IPSEC) uses TCP, and does not play well with NAT (because of
the port # switching, etc).  There is currently a big discussion underway
about how to get around this problem, which they claim will be resolved
soon.  If your VPN solution uses UDP, such as Shiva does (or did until Intel
dropped the product recently), you can get away with NAT because you are
using UDP.  There was a good article in last month's edition of Information
Security Magazine that explained it much better than I could hope to.

Anyway, hope that helps.  Since my company is also looking into replacing
our VPN solution, I'd be glad to work together with you and compare notes as
we go along through the process.  So drop me an email if you are interested.

Best Of Luck,

Brian Wilkins
CNE / MCSE / CCNP




khramov wrote:

 Does anyone have any recomendations on VPN producs?  Links to
 articles
 and personal experience woudl be great.
 As far as know Cisco VPN concentrators, Check Point, and Nokia
 rules the
 market.   What is your opinion on that.

 Thanks,
 Alex

 [GroupStudy.com removed an attachment of type text/x-vcard
 which had a name of khramov.vcf]




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7i=24422t=24231
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: Mulilayer Switch (MLS) on CAT 4006 [7:24142]

2001-10-25 Thread Tim O'Brien


Layer 3 card for the Cat4003 and Cat4006 is the WS-X4232-L3. List is
$14,995. Description below.

Catalyst 4000 E/FE/GE L3 Module, 2-GE(GBIC),32-10/100


Tim



- Original Message -
From: Thomas 
To: 
Sent: Thursday, October 25, 2001 2:45 PM
Subject: Mulilayer Switch (MLS) on CAT 4006 [7:24142]


Hi All,

I wonder if CAT 4006 switch support MLS?  It doesn't seem to have a layer 3
card.  I wonder if I can enable MLS using an external router, or pointing it
to the MSFCs of a CAT 6500 that have MLS enabled?  Thanks!

Thomas N.




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7i=24153t=24142
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: Cisco VPN Solutions [7:20468]

2001-09-20 Thread Tim O'Brien


The VPN client FULLY supports Windows 2000 as well as Windows ME, 98, NT,
and 95. The unified client is tons better than the old client that Cisco had
out. The new Unified client fully supports end user termination into the VPN
Concentrators (3000 currently, 5000 series soon) and the PIX 6.0 and up
code. The termination to IOS is slated for later this year, I hear.

Tim

- Original Message -
From: Andras Bellak 
To: 
Sent: Thursday, September 20, 2001 10:15 AM
Subject: RE: Cisco VPN Solutions [7:20468]


One thing to be aware of - the VPN client doesn't (at least didn't last
time I looked) support Windows 2000. It also has (once again, possibly
should be had) big issues with some ISPs, especially aol and netzero.

I have to agree with the other folks, the concentrator (we have 3
vpn-3030 systems deployed around the world) is rock solid - I've only
ever had one hang. The cisco VPN hardware solution is a great fit for
home offices connecting to the concetrator, and the 806 router also
works very well.

I've used the client to pix, and while it works fine, it's a real
p.i.t.a.

Andras

-Original Message-
From: Neil Borne [mailto:[EMAIL PROTECTED]]
Sent: Thursday, September 20, 2001 6:33 AM
To: [EMAIL PROTECTED]
Subject: RE: Cisco VPN Solutions [7:20468]


The better, but more costly choice is the concentrator, you have a lot
less
issues to worry about than w/ IOS.Either pay now or pay for it later

P. Neil Borne, CCDA,CCNP and C-voice
Systems Integrator III




From: Hyde, Lori
Reply-To: Hyde, Lori
To: [EMAIL PROTECTED]
Subject: RE: Cisco VPN Solutions [7:20468]
Date: Thu, 20 Sep 2001 08:42:52 -0400

I've used both the IOS and the concentrator solutions. I have found the
concentrator solution to be more expensive, but absolutely rock solid.
The
IOS solution is less expensive, but there are many bugs even with the
latest
versions. Lots of headaches here. My recommendation: if you have the
bucks,
go with the concentrator. By far the better choice from a maintenance
and
reliablity aspect.
Lori

-Original Message-
From: Bob Johnson [mailto:[EMAIL PROTECTED]]
Sent: Wednesday, September 19, 2001 6:46 PM
To: [EMAIL PROTECTED]
Subject: Cisco VPN Solutions [7:20468]


Hi,

I'm looking for comments about various Cisco VPN options allowing
access
from a home workstation..
As far as I know my options are:

1) Cisco PIX accessed by VPN Client 1.1
2) Cisco 3000 (or 5000) Concentrator accessed by VPN client 3.1
3) Cisco IPsec IOS access by VPN Client 1.1

It would seem that option 3 is the most cost effective (assuming you
already
have the hardware, you just need to purchase the correct IOS)..
Anyone with hints/info/caveats?
Appreciate any feedback from people actually using the IOS and the VPN
client...

Thanks
_
Get your FREE download of MSN Explorer at
http://explorer.msn.com/intl.asp




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7i=20552t=20468
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: Security Specialization enq ?? [7:14447]

2001-08-01 Thread Tim O'Brien


The PIX 506 is 2 10Meg interfaces only (not fast ethernet).

The unrestricted and restricted has no bearing on the number of simultaneous
connections anymore other than the fact that the UR supports more memory
which will get you more connections. There is no hard limit set on R or UR,
only guidelines. The UR license give you additional interfaces, failover,
additional memory, etc...

Tim

- Original Message -
From: Matthew Crane 
To: 
Sent: Wednesday, August 01, 2001 7:56 AM
Subject: RE: Security Specialization enq ?? [7:14447]


Hi

Here is a quick product run down for you

PIX 506 - Fixed configuration of 2 Fast Ethernet interface, 32MB RAM  8MB
Flash and no space for VPN acceleration. This unit is ideal for 99% of what
you will be asked in the MCNS, PIX Fundamentals  PIX Advanced exams.

All the remaining PIX units coma es follows:
a. 515, 525  535 come with 16Mb flash, support VPN accelrator cards and
support failover. NOTE Failover only works if you buy the Unrestricted
license unit.

b. 515  525 come with 2 FE interfaces

c. Memory
515 = 32 or 64MB
525 = 128 or 256MB
535 = 512 or 1024MB

d. Processor - subject to change
506  515 = 200MHz
525 = 350MHz
535 = 1.0GHz

Unrestricted  Restricted relates to the number of simulatneous sessions
supported by each PIX. The values for restruicted vary accoridng to the box
and memory installed. You need to check on cco to see what the current
values are.

For failover you must use the UR license.

Pricing - If you buy a failover bundle i.e. a pair of PIX firewalls then you
should find the 2nd unit is about 1/3 the price opf the 1st unit if you buy
them together.

Having done MCNS, CPFF, CPFA, CSIDS, CSVPN  CISSP, I would
suggest/recommend you concentrate on the following areas for MCNS  PIX. BTW
as I do training on this stuff I take the exams about once every 8 weeks
just so I know what Cisco/promteric are up to.

a. The how  why of developing a corporate security policy
b. IKE, ISAKMP  PKI especially the hashing functions and when they are
applied and the process of developing a VPN.
c. PIX commands to know inside out and back to front apart from getting the
Boson tests, although these are easier than the real thing. WARNING the PIX
tests especially are very badly written and ambiguous, but here are some
pointers
clear xlate
nat0
crypto
aaa new-model
user  configuration mode commands and how to switch between the two
Difference between commands for firewall  IOS firewall feature set
Understand failover process and timeings, cable length
Get to know which models support how many interfaces.
Make sure you know PIX software pre version 6 as the exam has not taken V6
into account yet.

BTW I would suggest you do MCNS, the 2 PIX and CSVPN as that really only
involves 1 lot of revision. CSIDS on the other hand well i hope you know
your Solaris.

Good luck and if you want any more help then please feel free to contact me
offline on [EMAIL PROTECTED]



NKP wrote:

 Hi ,
 I wanted to know what is the difference between the two
 following
 PIX Firewall 500 series
 1)  PIX 515 Failover PIX 515 Failover (Chassis, software, two
 10/100

   and
  2) PIX 515 Restricted Bund PIX 515R Bundle (Chassis,
 restricted SW, 2 FE
 port

 I  want to prepare for the Security Specialization track ,
 could anyone
 guide me what is the hardware/s ware  I should go for  and how
 I should
 pursue my training .
 I am planning to attend the course for MCNS as well  by
 September .

 --
 Navin Parwal




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7i=14473t=14447
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: MPLS 641-910 [7:14521]

2001-08-01 Thread Tim O'Brien


I would say that these 2 books would probably be a very good place to
start...

http://www.ciscopress.com/book.cfm?book=168
http://www.ciscopress.com/book.cfm?book=111

Tim


- Original Message -
From: Muhammad Zahid 
To: 
Sent: Wednesday, August 01, 2001 1:09 PM
Subject: MPLS 641-910 [7:14521]


Dear all,

Any one preparing for it ...and want to share knowledge with me.
please guide me where can i get the MPLS 641-910 material.

Kindest Regards
Muhammad Zahid




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7i=14532t=14521
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: Help , help I need Connect 1750 router to isp!!!!!!! [7:1145]

2001-04-18 Thread Tim O'Brien


Maybe this could work? There are many sample configs on the Cisco site...
You outta check it out sometime

http://www.cisco.com/warp/public/105/37.html

Tim

- Original Message -
From: "Josi Miguel Pirez P." 
To: 
Sent: Wednesday, April 18, 2001 5:23 PM
Subject: Help , help I need Connect 1750 router to isp!!! [7:1142]


Hello , boys

I need connect router 1750 to the internet by AUX port , please send me
example configuration

Thank


Josi Miguel Pirez P.

Network Engineer, CCNA, MCP.
FAQ, list archives, and subscription info:
http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7i=1145t=1145
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: 2 8mb flash partitions

2001-04-09 Thread Tim O'Brien


On a 2500, you will have to boot from TFTP or some other method. After you
boot via TFTP you should be able to go in and erase the second flash and
then do a "partition flash 1 16". Then you should be able to TFTP the new
code on just as if you were doing it on the single 8meg flash.

Tim

- Original Message -
From: "Circusnuts" [EMAIL PROTECTED]
To: [EMAIL PROTECTED]; "Fred Danson" [EMAIL PROTECTED]
Sent: Sunday, April 08, 2001 10:24 PM
Subject: Re: 2 8mb flash partitions


I believe the actual command is #no partition FLASH

- Original Message -
From: "Fred Danson" [EMAIL PROTECTED]
To: [EMAIL PROTECTED]
Sent: Monday, April 09, 2001 3:51 AM
Subject: 2 8mb flash partitions


 Hey Group,

 I noticed that one of my 2500 routers which has a total of 16mb of flash
on
 2 SIMMs has the flash split up into 2 partitions. If I wanted to put an
IOS
 on the router which was larger than 8mb, would it work? Is it possible to
 span a file over multiple flash SIMMs?

 Thanks in advance,
 Fred
 _
 Get your FREE download of MSN Explorer at http://explorer.msn.com
_
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: 2 8mb flash partitions

2001-04-09 Thread Tim O'Brien


Notice the "read only" on the flash... On the router with 2 partitions you
will probably see one as read/write and one as read only. The 2500 runs from
flash, hence you have to boot from TFTP to keep the flash clear. After you
boot from TFTP you will be able to repartition and manipulate the flash
however you want. So boot from TFTP, erase the second flash partition, do a
partition flash 1 16. Reboot and you should have 1 16 meg flash partition.

Tim


- Original Message -
From: "Circusnuts" [EMAIL PROTECTED]
To: [EMAIL PROTECTED]; "Rose, Jim - Contractor"
[EMAIL PROTECTED]
Sent: Monday, April 09, 2001 5:27 AM
Subject: Re: 2 8mb flash partitions


You must not have tried this then...  I have a hundred or so 4000, 4500,
4700,  2500 routers running in the IRS network (from DC to Ogden Utah)
running either (2) 4 Megs or (2) 8 Megs.- all reading as one partition.  I
assure you, it works  I can hear the fans running in my 2511 with (2) 8
Megs sticks, loaded with 12.1(3)T.

termservsh ver
Cisco Internetwork Operating System Software
IOS (tm) 2500 Software (C2500-I-L), Version 12.1(3)T,  RELEASE SOFTWARE
(fc1)
Copyright (c) 1986-2000 by cisco Systems, Inc.
Compiled Wed 19-Jul-00 06:05 by ccai
Image text-base: 0x03042200, data-base: 0x1000

ROM: System Bootstrap, Version 11.0(10c), SOFTWARE
BOOTFLASH: 3000 Bootstrap Software (IGS-BOOT-R), Version 11.0(10c), RELEASE
SOFT
WARE (fc1)

termserv uptime is 3 days, 11 hours, 7 minutes
System returned to ROM by reload
System restarted at 01:11:41 UTC Fri Apr 6 2001
System image file is "flash:c2500-i-l.121-3.T.bin"

cisco 2511 (68030) processor (revision M) with 14336K/2048K bytes of memory.
Processor board ID 09297003, with hardware revision 
Bridging software.
X.25 software, Version 3.0.0.
1 Ethernet/IEEE 802.3 interface(s)
2 Serial network interface(s)
16 terminal line(s)
32K bytes of non-volatile configuration memory.
16384K bytes of processor board System flash (Read ONLY)

Configuration register is 0x2102

What command sequence did you try ???
Phil

- Original Message -
From: "Rose, Jim - Contractor" [EMAIL PROTECTED]
To: "'Circusnuts'" [EMAIL PROTECTED]
Sent: Monday, April 09, 2001 9:52 AM
Subject: RE: 2 8mb flash partitions


 It will not work, the flash must be on one stick.  If you have two sticks
 you can put one IOS on each, but you can not bridge over multiple sticks.

 I tried.

 Jim

 -Original Message-
 From: Circusnuts [mailto:[EMAIL PROTECTED]]
 Sent: Sunday, April 08, 2001 10:25 PM
 To: [EMAIL PROTECTED]; Fred Danson
 Subject: Re: 2 8mb flash partitions


 I believe the actual command is #no partition FLASH

 - Original Message -
 From: "Fred Danson" [EMAIL PROTECTED]
 To: [EMAIL PROTECTED]
 Sent: Monday, April 09, 2001 3:51 AM
 Subject: 2 8mb flash partitions


  Hey Group,
 
  I noticed that one of my 2500 routers which has a total of 16mb of flash
 on
  2 SIMMs has the flash split up into 2 partitions. If I wanted to put an
 IOS
  on the router which was larger than 8mb, would it work? Is it possible
to
  span a file over multiple flash SIMMs?
 
  Thanks in advance,
  Fred
  _
  Get your FREE download of MSN Explorer at http://explorer.msn.com
_
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: Can you have more than one SPAN port on Catalyst 6505?

2001-03-29 Thread Tim O'Brien


You sure can see here for details...
http://www.cisco.com/univercd/cc/td/doc/product/lan/cat6000/sft_6_1/configgd
/span.htm
http://www.cisco.com/univercd/cc/td/doc/product/lan/cat6000/sft_6_1/configgd
/span.htm#15238

You can also use VACLS to push your traffic through the IDS...
http://www.cisco.com/univercd/cc/td/doc/product/lan/cat6000/sft_6_1/configgd
/acc_list.htm#xtocid929046
http://www.cisco.com/univercd/cc/td/doc/product/lan/cat6000/sft_6_1/configgd
/acc_list.htm#xtocid92906

Tim


"Ruihai An" [EMAIL PROTECTED] wrote in message
9a0fri$8hf$[EMAIL PROTECTED]">news:9a0fri$8hf$[EMAIL PROTECTED]...
We need at least two SPAN ports on each 6505 switch to connect our IDS and
Sniffer.   When we config the second SPAN, it always overwrite the prevously
configured SPAN port.  It seems you can not configure more than more than
two SPAN on one switch.  I am not sure if that is true.

Thanks

Ruihai


_
FAQ, list archives, and subscription info:
http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]


_
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: Question

2001-03-16 Thread Tim O'Brien


It was released last week.. It is available on CCO as of Monday this week...
If you have any problems getting to it, let me know...

Tim


""Parris, Brian"" [EMAIL PROTECTED] wrote in message
[EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
Has Cisco come out with a version of Cisco Secure VPN Client software yet,
that is compatible with Windows 2000.  I can't buy laptops with NT anymore
and this is putting me in a real bind.

Thanks,
Brian

_
FAQ, list archives, and subscription info:
http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]



_
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: 2523

2001-03-14 Thread Tim O'Brien


The config reg setting of 0x3920 is the Console port set to 115200,8,N,1.
You can either set your Hyperterm to the previously mentioned settings or
telnet in and force the speed of the "line con 0" to 9600


Tim

- Original Message -
From: "Circusnuts" [EMAIL PROTECTED]
To: "Stull, Cory" [EMAIL PROTECTED]; [EMAIL PROTECTED]
Sent: Wednesday, March 14, 2001 5:35 PM
Subject: Re: 2523


I have no idea why or what you have done (0x3920 :-)  The only superior
BREAK command I know is to lower Hyper Term to 1200 (reset the Hyper Term
window)  power the router off/on.  Hold the space bar for 5 seconds while
powering the router on, you should see some garble in the top left of the
screen (may have to do this a couple of times for it to take).  This sends
the manual BREAK signal that commands sometimes do not.  Lastly- change
everything back.  Other than the above, call the TAC or pull the FLASH so it
will only boot to ROM (then change your config values back to 0x2102 or o/r
0x42).

Let us know how you make out !!!
Phil

- Original Message -
From: "Stull, Cory" [EMAIL PROTECTED]
To: [EMAIL PROTECTED]
Sent: Wednesday, March 14, 2001 11:03 PM
Subject: 2523


 We've got a 2523 in the office that we changed the config-reg settings to
 0x3920 and it now won't let us into it at all...  We've tried to
ctrl-break
 out during boot and its not helping...

 Any other suggestions?

 Thanks

 _
 FAQ, list archives, and subscription info:
http://www.groupstudy.com/list/cisco.html
 Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

_
FAQ, list archives, and subscription info:
http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

_
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re:

2001-03-07 Thread Tim O'Brien


Have a look at RFC 1700

http://www.ietf.org/rfc/rfc1700.txt

Tim



- Original Message -
From: "Heidi white" [EMAIL PROTECTED]
To: [EMAIL PROTECTED]
Sent: Wednesday, March 07, 2001 10:53 AM


Anyone know of a site that would list all ports?  Or a
specific link on the cisco site?  I've looked through
pages upon pages with no luck.
Heidi

__
Do You Yahoo!?
Get email at your own domain with Yahoo! Mail.
http://personal.mail.yahoo.com/

_
FAQ, list archives, and subscription info:
http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

_
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: About PIX 520 update

2001-03-01 Thread Tim O'Brien

You will need to update your smartnet contract, contact your reseller or the
local Cisco office...

Tim

- Original Message -
From: "wangjun" [EMAIL PROTECTED]
To: [EMAIL PROTECTED]
Sent: Thursday, March 01, 2001 3:48 AM
Subject: About PIX 520 update

hi,all!
  can someone help to update our PIX 520 from IOS 4.3(2)  to IOS
4.4(5).Because my cco account can't download IOS 4.4(5)
for PIX 520 so I only need someone help me !

ÖÂ
Àñ£¡

wangjun
[EMAIL PROTECTED]

_
FAQ, list archives, and subscription info:
http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

_
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: TCP Load Balancing with a PIX

2001-03-01 Thread Tim O'Brien


Jim,

Load Balancing is not currently a feature of the PIX. This is what the Local
Director or the Content Switches are for.

Tim



"Jim Barksdale" [EMAIL PROTECTED] wrote in message
[EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
I know using a Router and NAT you can map a single external address to a
virtual host with an internal address,  which then load balances across
several real hosts.
(TCP Load Balancing)
Can the same thing be done on a PIX?

I currently have 1 web server on the DMZ and want to add a second web
server (mirror of the first).  I then want to load balance across the
two of them.
I don't have the budget to buy a 'Local Director'.

Thanks for your help

Jim

_
FAQ, list archives, and subscription info:
http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]



_
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: Cisco PIX : Static and Conduit command

2001-02-23 Thread Tim O'Brien


Actually, Nabil, that is not true at all. The conduit command is not going
anywhere anytime soon. The push is towards an interface based acl list,
which is easier done with the access lists rather than the conduit commands.

""Nabil Fares"" [EMAIL PROTECTED] wrote in message
news:[EMAIL PROTECTED]...
That's true, conduits are going away.  The only reason you see them is for
backward compatibility issues.  Definitely use static commands with
access-lists.  Its a two-step process, but its a nice feature.


HTH

Nabil

-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of
[EMAIL PROTECTED]
Sent: Thursday, February 15, 2001 2:51 AM
To: [EMAIL PROTECTED]
Subject: Cisco PIX : Static and Conduit command


Does anybody know about the advantage of having static conduit command
compare with
access-list/access-group command in PIX?.

I heard that the static conduit will no longer available in the future
realease. Is it True??.

Thanks.

_
FAQ, list archives, and subscription info:
http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

_
FAQ, list archives, and subscription info:
http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

_
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: Port Redirection

2001-02-23 Thread Tim O'Brien

The fixup will requite the people outside to use that port also. He is
looking for (PAM) Port Address Mapping. It will be available in the 6.0
version hopefully to be shipping in March/April.

Tim

- Original Message -
From: "Nabil Fares" [EMAIL PROTECTED]
To: "Scott M. Trieste" [EMAIL PROTECTED]; [EMAIL PROTECTED]
Sent: Friday, February 23, 2001 9:45 AM
Subject: RE: Port Redirection

Hi Scott,

You can add fixup protocol to point port whatever:

fixup protocol http 4003

The trick about fixup is that it examines the http protocol for any other
embedded protocols (I hope this made some sense!).  This is just another way
to deploy http server on different port then 80.  I'm really not sure
whether this works for your scenario or not.

HTH,

Nabil

-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of
Scott M. Trieste
Sent: Thursday, February 22, 2001 5:55 PM
To: [EMAIL PROTECTED]
Subject: Port Redirection

Colleagues,

I am trying to achieve port redirection on a PIX-520.  We have an
application that only accepts connections on a user-definable port but some
of our customers don't allow any inbound traffic other than 80/443.

Is there any way to redirect inbound (port 80) traffic to a user-definable
port(ie 4003).  If possible, I'd like to make this happen on a PIX-520.  My
feeling is that a feature of NAT will allow me to do this.

Any insight is appreciated.

Thanks in advance.

-Scott M. Trieste

_
FAQ, list archives, and subscription info:
http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

_
FAQ, list archives, and subscription info:
http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

_
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: 4 Ethernet Int

2001-02-21 Thread Tim O'Brien


Looks like you could do a Cisco 3620 with (2) NM-2FE2W and IOS 12.1.1T and
8x5xNBD Smartnet for $9,900 list. This will give you 4 Fast Ethernet
interfaces and 4 Wic slots for WAN cards. If you are running this
configuration and routing 4 Fast Ethernet segments I would recommend maxing
the memory in the little guy.. If you are looking at routing other protocols
you will probably have to upgrade the memory... Let me know if you have any
questions.

Tim

- Original Message -
From: "Avila, James" [EMAIL PROTECTED]
To: [EMAIL PROTECTED]
Sent: Wednesday, February 21, 2001 3:59 PM
Subject: 4 Ethernet Int


New to the cisco world.

Does anyone know what the smallest Cisco router I can place 4 routable fast
ethernet interfaces might be?

TIA


_
FAQ, list archives, and subscription info:
http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

_
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: Firewall Traffic - What Is The Bandwidth Limit Of A PIX?

2001-02-20 Thread Tim O'Brien


It depends on what kind of bandwidth you are talking about (encrypted or
not) but here are the current throughputs for the different PIX firewalls.

Aggregate Full Duplex Clear Text (Mbps):
515R - 120
515UR - 170
520 - ~370
525 - ~370
535 - 1,000 (Yep.. 1Gbps!)

If you need anythin else, let me know...

Tim

- Original Message -
From: "Christopher Kolp" [EMAIL PROTECTED]
To: [EMAIL PROTECTED]
Sent: Tuesday, February 20, 2001 12:37 PM
Subject: Firewall Traffic - What Is The Bandwidth Limit Of A PIX?


This question is a bit off target from the list but maybe someone can shed
some light on this

My company is looking to purchase firewalls for our OC-12 circuits. I know
in the past, bandwidth
was a serious issue with firewalls ie. not being able to pass traffic fast
enough. Has anyone had
any experience with this? We brought a Nokia in for testing and found it
choked at 40Mbs.

I realize that every manufacturer would like to sell the world and claim
unreal numbers, so I'm
asking for any advice!

Thanks!!

Ck

_
FAQ, list archives, and subscription info:
http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

_
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: Boot Problems on a 7200

2001-02-20 Thread Tim O'Brien


Roger,

You need to take a look and see what you purchased with the router. Legally,
if you purchased IPonly software you shoul;d download the newest version of
IPonly. If you purchased desktop (for IP, IPX, etc..) then you should
download desktop. If you do a sho flash are there any other images in the
flash or can you not even get that far? You will also need to check and make
sure that you have the correct release for the hardware that you have
installed in the router. Certain blades only work with certain code. You
will find a hardware/software compatability matrix on the download page. If
you have any other questions let me know.

Tim

- Original Message -
From: "Roger Sohn" [EMAIL PROTECTED]
To: "'Tim O'Brien '" [EMAIL PROTECTED]; "'Steve Smith '"
[EMAIL PROTECTED]; "Roger Sohn" [EMAIL PROTECTED];
[EMAIL PROTECTED]
Sent: Tuesday, February 20, 2001 12:46 PM
Subject: RE: Boot Problems on a 7200


When I go to CCO to download an IOS image, how do I know which type is the
"full version" that I need to download?

Is it the Enterprise or IP image?  I tried to download and use the "Boot
Image" off of CCO, but when I boot off of it...The router gives me a "CPU ID
Error" when it tries to load that image on start.  How do I determine if
it's an RX boot image or a regular full version boot image?

You are right though because that only image that I'm booting off of now is
merely 3 megs.

Thanks for your help and sorry if I'm asking too many questions.

I can't seem to find a help page or FAQ on this stuff.

-Roger

-Original Message-
From: Tim O'Brien
To: Steve Smith; Roger Sohn; [EMAIL PROTECTED]
Sent: 2/20/2001 8:05 AM
Subject: Re: Boot Problems on a 7200

Your problem is the version/type of code that you are running. You will
need
to download the full version of IOS from CCO. The version that you have
is
an rxboot image. ROM uses this code to boot. I believe that if you can
go in
and look at the flash you will see that the image is only about 1.5 meg
where a full IOS image would be at least 5 megs or larger. You will
probably
have to use the TFTPDNLD command in ROM to upgrade to the new IOS code.

http://www.cisco.com/univercd/cc/td/doc/product/software/ios112/112cg_cr
/1cb
ook/1csysim.htm#xtocid2402288

Hope that helps..

Tim



- Original Message -
From: "Steve Smith" [EMAIL PROTECTED]
To: "Roger Sohn" [EMAIL PROTECTED]; [EMAIL PROTECTED]
Sent: Tuesday, February 20, 2001 9:37 AM
Subject: RE: Boot Problems on a 7200


Is the following statement in your config? boot system flash
slot0:c7200-boot-mz.120-10.S.bin .I have seen that problem when the
statement is not in there.

regards,
Steve

-Original Message-
From: Roger Sohn [mailto:[EMAIL PROTECTED]]
Sent: Tuesday, February 20, 2001 2:42 AM
To: [EMAIL PROTECTED]
Subject: Boot Problems on a 7200


I've tried searching massively through CCO and can't seem to find the
solution to this problem.

I have a Cisco 7206VXR and everytime I try to boot it up, everything is
dandy...but it always comes to the prompt of "Router(boot)".  This is
the
output when I run a "show version".  It says that the system is returned
to
ROM by reload.  Is this tied in with the problem?  I currently have it
set
to boot off the flash disk with the image of c7200-boot-mz.120-10.S.  Am
I
missing something?

-Roger

---

Cisco Internetwork Operating System Software
IOS (tm) 7200 Software (C7200-BOOT-M), Version 12.0(10)S, EARLY
DEPLOYMENT
RELEA
SE SOFTWARE (fc1)
Copyright (c) 1986-2000 by cisco Systems, Inc.
Compiled Fri 24-Mar-00 15:54 by htseng
Image text-base: 0x60008900, data-base: 0x60684000

ROM: System Bootstrap, Version 12.0(19990210:195103) [12.0XE 105],
DEVELOPMENT S
OFTWARE

California uptime is 4 minutes
System returned to ROM by reload
System image file is "disk0:c7200-boot-mz.120-10.S"

cisco 7206VXR (NPE300) processor with 57344K/40960K bytes of memory.
R7000 CPU at 262Mhz, Implementation 39, Rev 2.1, 256KB L2, 2048KB L3
Cache
6 slot VXR midplane, Version 2.0

Last reset from power-on
Bridging software.
X.25 software, Version 3.0.0.
3 FastEthernet/IEEE 802.3 interface(s)
8 Serial network interface(s)

Router(boot)#

_
FAQ, list archives, and subscription info:
http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

_
FAQ, list archives, and subscription info:
http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

_
FAQ, list archives, and subscription info:
http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

_
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: Does a PIX Route (was Re: Firewalls and VPNs)

2001-02-18 Thread Tim O'Brien


It is all a matter of security. Are you sure that you want your firewall
just blindly passing routing information into your network? Someone on the
outside could spoof as a neighbor router, inject some bad routes or routing
information to your checkpoint box, and the next thing you know is that your
whole network is no longer functioning...

Tim

- Original Message -
From: "Yonkerbonk" [EMAIL PROTECTED]
To: "anthony kim" [EMAIL PROTECTED]; "Jason"
[EMAIL PROTECTED]; [EMAIL PROTECTED]
Sent: Sunday, February 18, 2001 1:40 AM
Subject: Re: Does a PIX Route (was Re: Firewalls and VPNs)


Is there any good reason why the PIX doesn't route?
Why it doesn't run OSPF? A Checkpoint firewall running
on a Solaris box would be able to run OSPF or
something, right? Why not a PIX?

Michael

--- anthony kim [EMAIL PROTECTED] wrote:
 Does your pix have a default route?
 Does your pix forward packets between subnets?
 Logically, then, the pix routes. Call it what you
 will, when forwarding
 between disparate networks, you route. I suppose
 cisco misunderstands the
 term "route" too.


http://www.cisco.com/univercd/cc/td/doc/product/iaabu/pix/pix_v42/pix42cfg/p
ix42apa.htm#xtocid88422

 Here's from Cisco:

 route Command

 The following are the extensions to the route
 command:

  The routing table has been improved to let you
 specify the IP address
 of a PIX Firewall interface in the route command. If
 the route
  command statement uses the IP address from one
 of the PIX Firewall
 unit's interfaces as the gateway IP address, PIX
 Firewall will
  ARP for the destination IP address in the
 packet instead of ARPing
 for the gateway IP address.

  PIX Firewall also does not accept duplicate
 routes with different
 metrics for the same gateway.

  In version 5.1(1), the CONNECT route entry is
 supported. (This
 identifier appears when you use the show route
 command.) The
  CONNECT identifier is assigned to an
 interface's local network and
 the interface IP address, which is in the IP local
 subnet. PIX
  Firewall will use ARP for the destination
 address. The CONNECT
 identifier cannot be removed, but changes when you
 change the
  IP address on the interface.

  You can now enter duplicate route command
 statements with different
 gateways and metrics.

  You can now enter static route command
 statements with virtual
 subnets; for example:

 route outside 10.2.2.8 255.255.255.248 192.168.1.3
 route outside 10.2.2.8 255.255.255.255 192.168.1.1

 --- Jason [EMAIL PROTECTED] wrote:
  As someone said yesterday: The PIX will not route,
 period.  It will NAT
  (including NAT 0), but it will not route packets
 between different
  networks.
  If you need routing off any interface on a PIX,
 you need a router there.
 
  --
  Jason Roysdon, CCNP+Security/CCDP, MCSE, CNA,
 Network+, A+
  List email: [EMAIL PROTECTED]
  Homepage: http://jason.artoo.net/
  Cisco resources: http://r2cisco.artoo.net/
 
 
  "anthony kim" [EMAIL PROTECTED] wrote in
 message
  [EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
   A device can best be described by its chief
 function. You can use a
   PIX as a router, just allow everything through.
 In fact you can use a
   router as a firewall, be selective with access
 lists. Terminology is
   flexible as long as you're pragmatic about
 function.
  
  
   On Fri, Feb 16, 2001 at 10:52:06AM -0800, Dan
 West wrote:
   PIX - sounds like a router to me - packet
 forwarding
   based on layer 3 addressing. It has extra
 security
   features and all of a sudden it's a
   firewall...marketing fluff? or accurate
 description???
   who will uncover this mystery  ;
   
   --- mtieast [EMAIL PROTECTED] wrote:
I think this comes from the fact that cisco
instructors in class say that
the Pix is not a router. I have heard this as
 well
when I had the class.
   
I know the Pix is not a router, but does it
 route?
Well, if making decisions
about where to send traffic based on layer 3
 info is
routing then I would
argue it does route. It does not forward
 traffic
based on layer 2 info so
..
   
It routes traffic to the appropriate
 interface. Can
someone else shed some
light as to why this is said. If it doesn't
 route
the traffic it recieves
what does it do?
   
   
   
-Original Message-
From: haroldnjoe [EMAIL PROTECTED]
Newsgroups: groupstudy.cisco
To: [EMAIL PROTECTED]
 [EMAIL PROTECTED]
Date: Friday, February 16, 2001 12:41 PM
Subject: Firewalls and VPNs
   
   
I've read here a couple of times that PIX's
 don't
route. Period. In light
of
this I'm left a little confused as to a
 proposed
network map I was given
recently.

The core layer router is a 3640 linking all
 of our
branch offices together.
From the 3640, there is an ethernet
 connection to a
PIX 515R.  From the
PIX,
there is another ethernet connection to a
 1750

Re: Firewalls and VPNs

2001-02-17 Thread Tim O'Brien


Actually, Jason, a PIX will route. The only problem is that it is not
designed to do it (there are no WAN interfaces available for it.) And as
such is not very scalable. How do you plan on moving traffic if you have 6
to 10 interfaces with 6 to 10  different networks in a PIX? You use STATIC
routes.

Tim


- Original Message -
From: "Jason" [EMAIL PROTECTED]
Newsgroups: groupstudy.cisco
To: [EMAIL PROTECTED]
Sent: Friday, February 16, 2001 11:27 PM
Subject: Re: Firewalls and VPNs


As someone said yesterday: The PIX will not route, period.  It will NAT
(including NAT 0), but it will not route packets between different networks.
If you need routing off any interface on a PIX, you need a router there.

--
Jason Roysdon, CCNP+Security/CCDP, MCSE, CNA, Network+, A+
List email: [EMAIL PROTECTED]
Homepage: http://jason.artoo.net/
Cisco resources: http://r2cisco.artoo.net/


"anthony kim" [EMAIL PROTECTED] wrote in message
[EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
 A device can best be described by its chief function. You can use a
 PIX as a router, just allow everything through. In fact you can use a
 router as a firewall, be selective with access lists. Terminology is
 flexible as long as you're pragmatic about function.


 On Fri, Feb 16, 2001 at 10:52:06AM -0800, Dan West wrote:
 PIX - sounds like a router to me - packet forwarding
 based on layer 3 addressing. It has extra security
 features and all of a sudden it's a
 firewall...marketing fluff? or accurate description???
 who will uncover this mystery  ;
 
 --- mtieast [EMAIL PROTECTED] wrote:
  I think this comes from the fact that cisco
  instructors in class say that
  the Pix is not a router. I have heard this as well
  when I had the class.
 
  I know the Pix is not a router, but does it route?
  Well, if making decisions
  about where to send traffic based on layer 3 info is
  routing then I would
  argue it does route. It does not forward traffic
  based on layer 2 info so
  ..
 
  It routes traffic to the appropriate interface. Can
  someone else shed some
  light as to why this is said. If it doesn't route
  the traffic it recieves
  what does it do?
 
 
 
  -Original Message-
  From: haroldnjoe [EMAIL PROTECTED]
  Newsgroups: groupstudy.cisco
  To: [EMAIL PROTECTED] [EMAIL PROTECTED]
  Date: Friday, February 16, 2001 12:41 PM
  Subject: Firewalls and VPNs
 
 
  I've read here a couple of times that PIX's don't
  route. Period. In light
  of
  this I'm left a little confused as to a proposed
  network map I was given
  recently.
  
  The core layer router is a 3640 linking all of our
  branch offices together.
  From the 3640, there is an ethernet connection to a
  PIX 515R.  From the
  PIX,
  there is another ethernet connection to a 1750
  router. The 1750 connects
  via
  T1 to our ISP.  There is yet another ethernet
  connection from the PIX to
  the
  isolation lan, on which resides an internet
  mail/web server and a VPN 3000
  concentrator.
  
  If PIX's don't route, what subnet is the isolation
  lan going to sit on?  As
  I understand it, the PIX will be providing NAT
  functionality for the 3640
  and everything behind it.  So I would assume that
  the T1 and ethernet
  interfaces on the 1750, the outside interfaces on
  the PIX, and everything
  in
  the isolation lan including the VPN concentrator
  will have to have public
  IP
  addresses which will be given to us by our ISP.
  The way the map is layed
  out, it looks to me like the isolation lan would
  have to be on its own
  subnet.
  
  What am I missing?  If the PIX doesn't route, do
  it's ethernet interfaces
  reside on the same subnet as the isolation lan?  If
  so, then the ethernet
  interface on the 1750 must also be on that subnet,
  right?
  
  This is the proposed network map that Cisco's
  presale engineers gave me.
  I'm sure it's a solid design, but I'm still trying
  to work out the details
  so that I understand what I'm implementing (always
  a good thing, I think).
  
  Thanks for your time,
  
  [EMAIL PROTECTED]
  
  
  _
  FAQ, list archives, and subscription info:
  http://www.groupstudy.com/list/cisco.html
  Report misconduct and Nondisclosure violations to
  [EMAIL PROTECTED]
  
 
  _
  FAQ, list archives, and subscription info:
  http://www.groupstudy.com/list/cisco.html
  Report misconduct and Nondisclosure violations to
 [EMAIL PROTECTED]
 
 
 =
 from The Big Lebowski...
 
 The Dude: You sure he won't mind?
 Bunny: Dieter doesn't care about anything. He's a nihilist.
 The Dude: Ohhh, that must be exhausting...
 
 __
 Do You Yahoo!?
 Get personalized email addresses from Yahoo! Mail - only $35
 a year!  http://personal.mail.yahoo.com/
 
 _
 FAQ, list archives, and subscription info:
http://www.groupstudy.com/list/cisco.html
 Report misconduct and Nondisclosure violations to [EMAIL

Re: Pix Firewall Issue

2001-02-15 Thread Tim O'Brien


Kevin,

The newest Cisco VPN3000 client (I believe that it is 2.6b and should be on
CCO within a week or 2) that supports Win2000 will terminate to a PIX
running 5.2 (I believe) or newer. I would suggest loading your 515 with the
newest code (5.3.1). You should be getting another email from me with the
link to the code. Grab the VPN software when available.

Tim


 O'Gilvie"" [EMAIL PROTECTED] wrote in message
[EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
 Does anyone know of a vpn client for Windows 2000, I have Cisco Secure but
 it doesnt run on 2000, I need to implement a vpn solution for my company
 that will integrate with the PIX 515 that I just purchased..

 Regards,

 Kevin


 From: "Kenny Sallee" [EMAIL PROTECTED]
 Reply-To: "Kenny Sallee" [EMAIL PROTECTED]
 To: [EMAIL PROTECTED]
 Subject: Re: Pix Firewall Issue
 Date: Wed, 7 Feb 2001 15:55:14 -0800
 
 Actually it's not a good idea to do a 'conduit permit icmp any any'.  If
 you
 want ping traffic to originate inside then do this:
 
 conduit permit icmp 208.184.23.0 255.255.255.0 any echoreply
 
 Think about the way ping works - your workstation sends an icmp echo -
the
 end station sends an icmp echo-reply - which from the PIX standpoint is a
 new inbound packet ( cuz it's stateless ).  Therefore - let the
echo-reply
 in only.  Not all ICMP messages.
 
 Kenny
 
 "Daniel Cotts" [EMAIL PROTECTED] wrote in message
 303479FA060CD211B893F805A88AA10F4C@EXCHANGE1">news:303479FA060CD211B893F805A88AA10F4C@EXCHANGE1...
   You're not telling us from where you are pinging. From the PIX? From a
 host
   behind the Firewall? From a host outside the Firewall?
   Anyway this command is good to have in later versions if you want
pings
 to
   traverse the PIX.
   conduit permit icmp any any
   You may also want to modify that command or eliminate it, if you want
to
   enforce a stronger policy.
  

http://www.cisco.com/univercd/cc/td/doc/product/iaabu/pix/pix_v50/config/co
n
   fig.htm#xtocid1091627
  
-Original Message-
From: exchange [mailto:[EMAIL PROTECTED]]
Sent: Wednesday, February 07, 2001 1:09 PM
To: '[EMAIL PROTECTED]'
Subject: Pix Firewall Issue
   
   
Hi Gang,
   
I have a Pix Firewall 520 and wondered if this was a feature or a
configuration issue on my firwall.  We have an entire class C
address say
208.184.23.x to use for our network. We use the 192.168.1.x
network for our
internal network.  I am having problems pinging a machine's
Internet ip
address say 208.184.23.11 which I noticed is statically mapped to
it's
internal address say 192.168.1.10 on the pix.
   
For example, If I ping another box 208.184.23.12 and not
statically mapped
to a internal ip address on the pix, I get a response.
   
Any help or hints would be greatly appreciated.
   
Thanks!
   
_
FAQ, list archives, and subscription info:
http://www.groupstudy.com/list/cisco.html
Report misconduct
and Nondisclosure violations to [EMAIL PROTECTED]
   
  
   _
   FAQ, list archives, and subscription info:
 http://www.groupstudy.com/list/cisco.html
   Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
  
 
 
 _
 FAQ, list archives, and subscription info:
 http://www.groupstudy.com/list/cisco.html
 Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

 _
 Get your FREE download of MSN Explorer at http://explorer.msn.com

 _
 FAQ, list archives, and subscription info:
http://www.groupstudy.com/list/cisco.html
 Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]



_
FAQ, list archives, and subscription info:
http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]


_
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: CCIE vs CCNP

2001-02-15 Thread Tim O'Brien


Chan,

I will have to disagree with you there. I took and passed my CCIE written
today. It is a lot closer in form and content to the CID test than the old
ACRC test that I had taken to get my CCNP. The difficulty comes in the wide
variety of topics that are covered. There was nothing on that test that was
very deep, however, you need to know everything from Apollo to Token Ring
RIF's to OSPF, to TACACS+, to.. well.. you get the picture. Anyways, I
looked through the Lammle CCIE book after I took the test and saw a lot of
good information in there. The Lucent Netcare CCIE Prep Kit was CRAP... I
also bought the exam cram but did not have a chance to read it before I
tested.

Tim

"Changchun Xie" [EMAIL PROTECTED] wrote in message
96hnf4$k5$[EMAIL PROTECTED]">news:96hnf4$k5$[EMAIL PROTECTED]...
The CCIE written test is much more difficult than the CCNP. It covers a lot
of topics that CCNP not.

I passed CCIE written first. The score is not high. After than, I did all 4
CCNP exams within one week and they are quite easy. I did my CCNP just for
changing job. Anyway, CCNP is a certificate and then CCIE qualification exam
not.

You'd better go CCNP first and get good job  opportunities to work on CCIE.

Chan.

""James"" [EMAIL PROTECTED] wrote in message
96fa9g$kfr$[EMAIL PROTECTED]">news:96fa9g$kfr$[EMAIL PROTECTED]...
 Is it reasonable to take the CCIE written instead of CCNP? I've been
working
 with Cisco equipment and software for over 10 years and decided to go
ahead
 with certification. The CCNP looks like a good choice, but it appears the
 CCIE written only requires a few more months of study. Of course, the lab
is
 a different story. Has anyone tried this?




 _
 FAQ, list archives, and subscription info:
http://www.groupstudy.com/list/cisco.html
 Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]



_
FAQ, list archives, and subscription info:
http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]


_
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: Cisco secure policy manager

2001-02-15 Thread Tim O'Brien


Win2000 will be supported in ver 2.3 which should be out shortly. It is in
beta now...

Tim



""John Hardman"" [EMAIL PROTECTED] wrote in message
96i2jb$4j4$[EMAIL PROTECTED]">news:96i2jb$4j4$[EMAIL PROTECTED]...
Hi

It won't install, comes back with something like "Requires NT 4 or Higher"
what a laugh!

--
John Hardman CCNP MCSE+I


""ML"" [EMAIL PROTECTED] wrote in message
96hqpe$dmc$[EMAIL PROTECTED]">news:96hqpe$dmc$[EMAIL PROTECTED]...
 Any particular reason why?  I am not sure what you mean, wont install,
wont
 run as in function? I know Cisco says they dont support it on 2000 but
that
 is different than wont work.

 Thanks,
 ML


 Manny Colon [EMAIL PROTECTED] wrote in message
 [EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
  Will not work with 2000
 
  Regards,
 
  Manny Colon
  Computer Services
  Information Builders Inc.
 
 
  ML wrote:
 
   Anyone try running CSPM on a Windows 2000 box.  Let me know how it
 worked.
  
   THanks,
   ML
  
   _
   FAQ, list archives, and subscription info:
 http://www.groupstudy.com/list/cisco.html
   Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
 
  --
 
 
 
  _
  FAQ, list archives, and subscription info:
 http://www.groupstudy.com/list/cisco.html
  Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
 


 _
 FAQ, list archives, and subscription info:
http://www.groupstudy.com/list/cisco.html
 Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]



_
FAQ, list archives, and subscription info:
http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]



_
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: Passed CCIE Written

2001-02-07 Thread Tim O'Brien

It is still available.

http://www.cisco.com/warp/public/767/tre/aset/aset.shtml

Tim

- Original Message -
From: "perryb" [EMAIL PROTECTED]
To: [EMAIL PROTECTED]
Sent: Wednesday, February 07, 2001 4:16 PM
Subject: Re: Passed CCIE Written

Congrats on the written!  I bombed two weeks ago by one point, stupid
mistakes, and will be heading back for a retake next week.

Cisco used to have a program for the SEs of resellers named "Advanced SE
Training."  They brought you under their wing, mentored, and provided access
to the actual lab where the testing will take place - for three days of
practice and critique.  I don't know if the program is still available (by
the way, it is free), but you should be able to find the particulars by
doing a search of "AET" on CCO.

Good luck on your practical.

--perry
- Original Message -
From: "Hal White" [EMAIL PROTECTED]
To: [EMAIL PROTECTED]
Sent: Wednesday, February 07, 2001 8:56 AM
Subject: Passed CCIE Written

 I passed the CCIE Written yesterday morning.  I had taken the CCIE written
 about a month ago but the test crashed and I had to fight with Cisco and
 Prometric for a month before I could take it again for free.  I read
 Caslow's book, Routing TCP/IP Vol. 1 by Jeff Doyle, the token ring white
 papers and the exam cram book.  The token ring white papers were very
 helpful in understanding bridging because I do not work with it at all.  I
 already had my CCNP and CCDP so this also helped and I would not recommend
 taking the CCIE written without having finished at least your CCNP
 certification.  I also took the certification zone test before I took the
 exam last month, and it was not that helpful.

 I am planning to take schedule the lab for this summer.  I am going to
 purchase the Solutions Labs and the ccbootcamp labs today and use them to
 study.  I work for a Cisco reseller so I have plenty of equipment sitting
 around to use for study labs.  My company has said they will pay for
 training so I am looking at Global Knowledge and IT Academy prep courses.
 If anyone has any recommendations on training please let me know.

 Hal White

 _
 Get your FREE download of MSN Explorer at http://explorer.msn.com

 _
 FAQ, list archives, and subscription info:
http://www.groupstudy.com/list/cisco.html
 Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

_
FAQ, list archives, and subscription info:
http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

_
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: How to you remote log on to router ?

2001-01-29 Thread Tim O'Brien


Sure,

You can use SSH to talk to a router. I believe that it is new in 12.1
http://www.cisco.com/univercd/cc/td/doc/product/software/ios121/121newft/121
t/121t3/sshv1c.htm

Tim


"RS" [EMAIL PROTECTED] wrote in message 954qtd$jqe$[EMAIL PROTECTED]">news:954qtd$jqe$[EMAIL PROTECTED]...
Hi there !
Is there anything else than telnet to remote log on to a router ?

Is it possible to use something like ssh ?
Or are there any other secure protocolls for router available ?

Any replies are truely appreciated !!!
Ray.


_
FAQ, list archives, and subscription info:
http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]


_
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: Was anything taken out of the CCIE written exam?

2001-01-16 Thread Tim O'Brien


There was nothing removed from the CCIE Written, only from the lab. Check
the link below for the current blueprint.

http://www.cisco.com/warp/public/625/ccie/rsblueprint.html

Tim

- Original Message -
From: "jean william" [EMAIL PROTECTED]
Newsgroups: groupstudy.cisco
To: [EMAIL PROTECTED]
Sent: Tuesday, January 16, 2001 7:00 PM
Subject: Was anything taken out of the CCIE written exam?


Can anyone let me know what was taken out of the ccie written exam... For
example ATM LANE, X.25, etc...

Please advise.  Trying to narrow down studies...


_
FAQ, list archives, and subscription info:
http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

_
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: Any body know about Cisco Content Switch

2001-01-11 Thread Tim O'Brien


Here are some links for the CSS switches. For the application that it
appears that you are trying to run you will need the switches in front and
behind the PIX boxes. The PIX 535 is out now and will do a Gig of
throughput. What are you trying to accomplish? You can run PIXes in a
active/passive config if it is high availability that you are looking for.
Give me a little more on the design that you are doing.

http://www.cisco.com/warp/public/cc/pd/si/11000/prodlit/


or load balance on the 6500
http://www.cisco.com/warp/public/cc/pd/si/casi/ca6000/tech/ios6k_wp.htm
http://www.cisco.com/warp/public/cc/pd/si/casi/ca6000/tech/aslb_wp.htm

- Original Message -
From: "Yonkerbonk" [EMAIL PROTECTED]
To: "Wayne Lawson" [EMAIL PROTECTED]; "Tommy Mitchell"
[EMAIL PROTECTED]; "cisco@groupstudy. com (E-mail)"
[EMAIL PROTECTED]
Sent: Thursday, January 11, 2001 5:46 PM
Subject: RE: Any body know about Cisco Content Switch


Hi Wayne,

Could you point me to some information on the CSSes
and how to configure for load balancing? I was looking
at Local Director and Alteon boxes to do that for two
PIXs. Do I need them on both he outside and inside?
Thanks.


--- Wayne Lawson [EMAIL PROTECTED] wrote:
 Tommy,

   Actually you CAN have the CSS in an "active /
 active" mode
 with true firewall load balancing.

 Wayne Lawson, CCIE # 5244
 Systems Engineer - Cisco Systems, Inc.
 2000 Town Center, Suite 450
 Southfield, Michigan 48075

 Voice:  (248) 455 - 1663
 Cell:  (248) 709 - 5797
 Pager: (800) 365 - 4578


 -Original Message-
 From: [EMAIL PROTECTED]
 [mailto:[EMAIL PROTECTED]]On Behalf Of
 Tommy Mitchell
 Sent: Wednesday, January 10, 2001 8:15 AM
 To: cisco@groupstudy. com (E-mail)
 Subject: Re: Any body know about Cisco Content
 Switch


 Yes, they can unless you're trying to load-balance
 firewalls.  Try to
 load-balance firewalls and you have to go
 active-standby.

 Tommy

 - Original Message -
 From: "Muhammad Faheem" [EMAIL PROTECTED]
 To: "cisco@groupstudy. com (E-mail)"
 [EMAIL PROTECTED]
 Sent: Wednesday, January 10, 2001 7:26 AM
 Subject: Any body know about Cisco Content Switch


  Hi All
 
  Just wanted to know that Cisco Content Switch
 (CSS-11000  CSS-11800) can
  work as Active - Active or not.
 
  Thanks for Input
 
  Muhammad Faheem
  Systems Engineer
  Afcomp
  Hello : (9714)-3933878 / 3027338
  Fax   : (9714)-3933832
  Web  : www.afcomp.com
 
  _
  FAQ, list archives, and subscription info:
 http://www.groupstudy.com/list/cisco.html
  Report misconduct and Nondisclosure violations to
 [EMAIL PROTECTED]
 

 _
 FAQ, list archives, and subscription info:
 http://www.groupstudy.com/list/cisco.html
 Report misconduct and Nondisclosure violations to
 [EMAIL PROTECTED]

 _
 FAQ, list archives, and subscription info:
 http://www.groupstudy.com/list/cisco.html
 Report misconduct and Nondisclosure violations to
[EMAIL PROTECTED]


__
Do You Yahoo!?
Yahoo! Photos - Share your holiday photos online!
http://photos.yahoo.com/

_
FAQ, list archives, and subscription info:
http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

_
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

CCIE Security Written

2001-01-09 Thread Tim O'Brien


It has been over 2 months now and I have not seen any results for the CCIE
Security written beta (351-018). Has anyone else seen anything?

Tim



_
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: Cisco's TFTP Program

2000-12-29 Thread Tim O'Brien


Yea.. it is a piece of crap... use the 3Com 3CDaemon. It is excellent!

http://support.3com.com/software/utilities_for_windows_32_bit.htm
grab the file 3CDv2r10.zip

Hope that helps!

Tim

- Original Message -
From: "Jennifer Mellone" [EMAIL PROTECTED]
To: [EMAIL PROTECTED]
Sent: Friday, December 29, 2000 7:45 PM
Subject: Cisco's TFTP Program


Hi Gang,

Is it me, or has anyone else had this problem using the Cisco TFTP
program---

I TFTPed software from my laptop to a switch just fine today.

But then I tried to TFTP IOS code from my laptop to a router today.  I got
an error message (from the TFTP program itself), and the program immediately
closed down.  I even rebooted the laptop and this did not help.

- Jennifer Mellone

_
FAQ, list archives, and subscription info:
http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

_
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

MCNS 2.0

2000-12-22 Thread Tim O'Brien


Well, I took the MCNS 2.0 test today so I could qualify for the one test
instead of 4 after January. Got an 883 with only a 708 required. I have to
say that the Boson MCNS test #1 was outstanding! Study that and use the
links provided in the answers to gain more knowledge. I also read the Cisco
Press "Enhanced IP Services for Cisco Networks" book. It was a great book.
Excellent job on the Boson Bernard, I hope your CCIE written tests are as
good!

Thanks!

Tim



_
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: ISP DIAL

2000-12-11 Thread Tim O'Brien


I would start here...
http://www.cisco.com/warp/public/625/ccie/certifications/isp_dial.html

However, the ISP Dial is about to be retired... so you had better hurry if
you are interested.

Tim


- Original Message -
From: "N.Anand" [EMAIL PROTECTED]
To: [EMAIL PROTECTED]
Sent: Monday, December 11, 2000 6:33 AM
Subject: ISP DIAL


Hai guys,
I am planning to give ISP DIAL qualifying Exam.Can any One give info.
regarding this.   Pls.mention books as well as sites which may help me a
lot.

Can any one give me detailed topic list for ISP DIAL.

N.Anand

_
Chat with your friends as soon as they come online. Get Rediff Bol at
http://bol.rediff.com

Participate in crazy auctions at http://auctions.rediff.com/auctions/



_
FAQ, list archives, and subscription info:
http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

_
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

RE: Cisco vs. HP Switches

2000-12-11 Thread Tim O'Brien


Sorry it has taken me this long to reply, I have been extremely busy...
Anyways, here are some reasons (from an obviously Cisco bias view)...

Hope this helps...

First, HP is a server company. Their primary focus is not networking
equipment. Do you really want to trust your network infrastructure to them?

The new 2524's also took a step backwards from the 4000M switches by only
supporting basic 802.1p QoS. The also cannot do per-port TCP/UDP
re-classification. The Cisco 3500 series can do re-classification on a per
port basis.

Another good point is stacking. Our solution scales to hundreds of ports at
a very low cost while their solution is extremely expensive (around $900 per
switch to stack). They really do not even position these
switches for stacking. I know that this may not be a priority now, but you
have to factor in some type of growth in the future.

Poor VLAN support is another point. They only support 30, where we support
250 and support both ISL and 802.1Q.

Another big future thinking point is their lack of application support. HP
is NOT able to put together a network solution or even participate in one
that has the promise and capability to scale to future converged networking.
To the extent that most customers have a vision to scale to VoIP and video,
HP in the LAN won't support it.  Cisco is all about selling that integrated
solution proposition based upon QoS, Inline Power, Call Mgr, resiliency
features, IP Phone mgmt integration, etc...

Hope these points help in your decision, if you need any additional
information please let me know.

Tim



Original Message-
From: Denis A. Baldwin [mailto:[EMAIL PROTECTED]]
Sent: Thursday, December 07, 2000 4:41 PM
To: 'Tim O'Brien'
Subject: RE: Cisco vs. HP Switches


The Cisco 3524 Catalyst and the HP Procurve 2524.

Denis

-Original Message-
From: Tim O'Brien [mailto:[EMAIL PROTECTED]]
Sent: Thursday, December 07, 2000 4:10 PM
To: Denis Baldwin
Subject: RE: Cisco vs. HP Switches


What model of switches are you looking at?

Tim


- Original Message -
From: "Denis A. Baldwin" [EMAIL PROTECTED]
To: [EMAIL PROTECTED]
Sent: Thursday, December 07, 2000 1:30 PM
Subject: Cisco vs. HP Switches


We are looking at four new 24 port switches for our network.  We have Cisco
and HP as our final contenders.  Both the HP Procurve and the  Cisco
Catalyst carry similar specs, but the HP is about 20% of the cost of the
Cisco.  Can someone give me a REAL reason why the Cisco Catalyst would be a
better choice. Our network is all 10/100 for now and we won't need Gigabit
for at least a couple of years.  We need these switches to be in 24 port
configurations as the company is going to split in two in a couple of months
and move half of the operations to another building, so we need to be able
to split the network as needed.  I know this is a Cisco group, which is why
I am asking it here, because I want a BIASED opinion of why Cisco would be
better in this situation.  Thank you all for your suggestions.

Denis


Denis A. Baldwin
Network Administrator - CAE, Inc.
A+, MCP, i-Net+, Network+
[EMAIL PROTECTED]
810-231-9373, ext. 229


_
FAQ, list archives, and subscription info:
http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]


_
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: Netmeeting through PIX

2000-12-09 Thread Tim O'Brien


This looks helpful...

http://www.microsoft.com/TechNet/netmting/reskit/netmtg2/chpt4.asp

Tim


- Original Message -
From: "Jim Bond" [EMAIL PROTECTED]
To: [EMAIL PROTECTED]
Cc: [EMAIL PROTECTED]
Sent: Saturday, December 09, 2000 1:39 PM
Subject: Netmeeting through PIX


Hello,

I'm setting up a MS Netmeeting server behind a PIX,
persons outside of PIX will call in. Which ports I
should open on the PIX?

Thanks in advance.


Jim

__
Do You Yahoo!?
Yahoo! Shopping - Thousands of Stores. Millions of Products.
http://shopping.yahoo.com/

_
FAQ, list archives, and subscription info:
http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

_
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: Trade CATM 2.0 for CVOICE 2.0

2000-11-21 Thread Tim O'Brien


Why do you consider trading theft? The manual is the personal property of
the person that took the class. If they wish to trade it to someone else
that took another class who has personal property that they would like to
trade, they may do so. If you have a book that you finish and give to your
mom or a co-worker, do you consider that theft?

Tim

- Original Message -
From: "Marc_Andre Giroux" [EMAIL PROTECTED]
To: "Brian" [EMAIL PROTECTED]
Cc: [EMAIL PROTECTED]
Sent: Tuesday, November 21, 2000 3:31 PM
Subject: Re: Trade CATM 2.0 for CVOICE 2.0


I would recommend you go out and take the course Theft is never a good
alternative...
Marc Giroux
System Engineer II
Cisco Systems Canada Co.

_
FAQ, list archives, and subscription info:
http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

_
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: Bookpool LLC

2000-11-21 Thread Tim O'Brien

I have never had any problems with them and have probably purchased a dozen
or so books. How in the world can they misrepresent what they are selling?
You see the book, you buy the book.

- Original Message -
From: "Jerry Langfield" [EMAIL PROTECTED]
Newsgroups: groupstudy.cisco
To: [EMAIL PROTECTED]
Sent: Tuesday, November 21, 2000 5:17 PM
Subject: Re: Bookpool LLC

I'd say caveat emptor Buyer be really aware what you are getting.  I found
Bookpool to be terrible for customer service and pricing.  The misrepresent
what they are selling.  Use anyone but them.

JL

""John Huston"" [EMAIL PROTECTED] wrote in message
8vcivf$c05$[EMAIL PROTECTED]">news:8vcivf$c05$[EMAIL PROTECTED]...
 What's everyone's opinion about the subject?  Recently I have noticed that
 their prices are not as competitive, their customer service is almost
 non-existent and they do not fully disclose or misrepresent things.

 _
 FAQ, list archives, and subscription info:
http://www.groupstudy.com/list/cisco.html
 Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

_
FAQ, list archives, and subscription info:
http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

_
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: IPX Routing Help !!!!

2000-11-15 Thread Tim O'Brien


A simple search using "IPX routing" on the Cisco hompage revealed the
following links

http://www.cisco.com/univercd/cc/td/doc/product/software/ios11/cbook/cipx.ht
m
http://www.cisco.com/univercd/cc/td/doc/product/software/ios120/12cgcr/np2_c
/2cipx.htm
http://www.cisco.com/univercd/cc/td/doc/product/software/ios120/12cgcr/np2_c
/2cipx.htm#7834
http://www.cisco.com/univercd/cc/td/doc/product/software/ios120/12cgcr/np2_c
/2cipx.htm#3403

http://www.cisco.com/univercd/cc/td/doc/product/software/ssr83/rpc_r/55462.h
tm

These should help..

Tim


""Loris Collina"" [EMAIL PROTECTED] wrote in message
8utsm7$lu3$[EMAIL PROTECTED]">news:8utsm7$lu3$[EMAIL PROTECTED]...
Hallo to everyone, my name is Loris and I'm writing from Italy.
Some days ago my firm buy a Cisco 800 with feature Pack IP/IPX/FIREWALL PLUS
IPSEC56. Well, I have to configure it to connect our network to a remote
network trough dial-in, but untill now I configured only 2 Cisco with only
TCP/IP for connections to ISP. I don't know nothing about Novell routing and
how to configure  it.
Can you help me with some examples or links???

Thanks in advice
Loris


_
FAQ, list archives, and subscription info:
http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]



_
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: upcoming caslow book

2000-10-27 Thread Tim O'Brien

It is in stock and "ships same day" at  http://www.fatbrain.com

Tim

- Original Message -
From: "Leigh Anne Chisholm" [EMAIL PROTECTED]
To: "Craig Jensen" [EMAIL PROTECTED]; [EMAIL PROTECTED]
Sent: Friday, October 27, 2000 12:37 AM
Subject: RE: upcoming caslow book

That's a good question.  Apparently Caslow's "Cisco Certification: Bridges,
Routers and Switches for CCIE's" is now out of print...  My initial
impression is that his new book won't cover all the same material as his
first.

For those of you who've been wanting to buy Cisco Certification: Bridges,
Routers and Switches for CCIE's, I recommend you go buy it now.  I had a
hard time finding it in my local bookstore and couldn't order it from
several online bookstores.

  -- Leigh Anne

-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of
Craig Jensen
Sent: October 26, 2000 6:41 PM
To: [EMAIL PROTECTED]
Subject: upcoming caslow book

On amazon.com a title Cisco Routing Illustrated: A Workbook for CCIEs and
CCNPs is listed.  Does anybody know details about this book?
Craig

_
FAQ, list archives, and subscription info:
http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

_
FAQ, list archives, and subscription info:
http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

_
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: CCIE Cincinnati Study Group

2000-10-27 Thread Tim O'Brien


I would be interested, contact me offline.

Tim


""Mike"" [EMAIL PROTECTED] wrote in message
8tc5uu$dbf$[EMAIL PROTECTED]">news:8tc5uu$dbf$[EMAIL PROTECTED]...
Hi all,

I am wondering if there are list members that are interested in starting a
CCIE Study Group in Cincinnati. We will get together maybe once a week and
go through Lab Scenarios. I am thinking that we could have 2 Study Groups. A
CCIE Written Study Group and CCIE Lab Study Group for members that have
passed the Qualification exam, with members helping each other get to the
next level, ie. members who have passed the Lab spend some time with the
CCIE Written Group in coaching them, and maybe a CCIE in Cincinnati kind
enough to coach the CCIE Lab Study Group.
The idea I am getting to is that it has to be a consistent regular meeting
class.

All comments and input appreciated, and if there is a CCIE in Cincinnati
that is willing to help us, coach us and proctor us as we prepare for the
Lab, please let us know.



_
FAQ, list archives, and subscription info:
http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]



_
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: Possible phony CCIE

2000-10-23 Thread Tim O'Brien


Just because a guy can config a router it does not make him a god. Lets face
it guys, there is nobody out there that knows everything about everything,
and if there is someone that thinks they do, I guarantee there is someone
else out there that knows more than they do. Obviously if this guy is lying
about his CCIE he should be exposed, and after reported it is up to Cisco to
deal with as they see fit.

.02

Tim

- Original Message -
From: "Sam LI" [EMAIL PROTECTED]
To: "Mark Cohen" [EMAIL PROTECTED]; [EMAIL PROTECTED]
Sent: Monday, October 23, 2000 6:41 AM
Subject: Re: Possible phony CCIE


Well, even some real one behave like this, i come across a few in the the
past

- Original Message -
From: Mark Cohen [EMAIL PROTECTED]
To: [EMAIL PROTECTED]
Sent: Monday, October 23, 2000 3:55 PM
Subject: Possible phony CCIE


 Greetings-


 I recently worked on a project with a fellow who claimed to be a CCIE. He
 even gave me his card with the CCIE logo on it. At least I think it is the
 CCIE logo. It is a router symbol surrounded with laurels and has the words
 Cisco Certified Internetwork Engineer circling it as well. After asking
this
 person a few questions, I became suspicious of his credentials due to his
 apparent lack of knowledge of the fundamentals. (I never asked for his
CCIE
 number because I attempted verification only after I left the account). I
 faxed a copy of the business card he gave me (homemade BTW) to someone in
 the CCIE program at Cisco.  She told me the card is bogus and that she
would
 send the card to the Cisco lawyers. That was three months ago and this
 person is STILL working on site there. What do you people think I should
do
 now? Send e-mail to the persons that are contracting him there? He is
 charging a very high bill rate. The people he is working don't have enough
 knowledge to confirm his credentials. Should I let this go? Isn't part of
my
 cert agreement with Cisco to protect the logo? I feel that Cisco isn't
doing
 anything to protect us here.

 Mark Cohen
 CCNA, MCSE, MCP+I

 _
 FAQ, list archives, and subscription info:
http://www.groupstudy.com/list/cisco.html
 Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]


_
FAQ, list archives, and subscription info:
http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

_
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

OT, Netranger and OpenView

2000-10-12 Thread Tim O'Brien


I recently talked to Cisco TAC and they verified that you need at least a
"run-time" version of HP OpenView to run the NetRanger Sensor Management
Console, and it is not included on the Management CD. My question is, can
you get the OpenView runtime version free somewhere or is this something
additional that I will need to purchase? I have looked at HP's site but have
not really found anything worthwhile. Thanks!

Tim


_
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: Ethernet Trivia

2000-10-06 Thread Tim O'Brien


So if this were the case, and they both started at the same time and used
the same size frame/packet I would think that the 100Mbps interface would
get the packet onto the wire faster hence it would arrive sooner than the
10Mbps interface which would probably still be putting the data on the wire.
Correct?

Tim

- Original Message -
From: "Kevin L. Kultgen" [EMAIL PROTECTED]
Newsgroups: groupstudy.cisco
To: [EMAIL PROTECTED]
Sent: Wednesday, October 04, 2000 12:35 PM
Subject: Re: Ethernet Trivia


They would bith reach the destination at the same time (speed of electricity
through copper).  The difference is in the rate at which the bits are placed
on the wire, the Fast Ethernet would be placing 20 bits of information
(actually encoded as 24 bits) on the wire for every 2 bits that the 10bT
would place on the wire.  At least his is my understanding of 100bT vs
10bT..

Anybody else have different(better?) interpretations?

--
Kevin L. Kultgen


""Frank"" [EMAIL PROTECTED] wrote in message
8rfksm$l2s$[EMAIL PROTECTED]">news:8rfksm$l2s$[EMAIL PROTECTED]...
 Let's say we have a 10Mbps and 100Mbps interface.  Both transmit the same
 sized
 frame over the same type of media and over the same distance and neither
 experience
 a collision.  Which will get to the destination first?


 **NOTE: New CCNA/CCDA List has been formed. For more information go to
 http://www.groupstudy.com/list/Associates.html
 _
 UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html
 FAQ, list archives, and subscription info: http://www.groupstudy.com
 Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]



**NOTE: New CCNA/CCDA List has been formed. For more information go to
http://www.groupstudy.com/list/Associates.html
_
UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html
FAQ, list archives, and subscription info: http://www.groupstudy.com
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

**NOTE: New CCNA/CCDA List has been formed. For more information go to
http://www.groupstudy.com/list/Associates.html
_
UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html
FAQ, list archives, and subscription info: http://www.groupstudy.com
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: CCIE Advanced Network Design and Case Studies

2000-10-02 Thread Tim O'Brien


Actually, you are wrong, a quick 10 second search on the Cisco home page
reveals the following, the entire first edition...

Look here...

http://www.cisco.com/cpress/cc/td/cpress/ccie/ndcs798/index.htm
or here
http://www.cisco.com/cpress/cc/td/cpress/ccie/

I believe that this is only the first edition, they have the second out
now..

Tim

- Original Message -
From: "michael" [EMAIL PROTECTED]
Newsgroups: groupstudy.cisco
To: [EMAIL PROTECTED]
Sent: Monday, October 02, 2000 8:39 AM
Subject: Re: CCIE Advanced Network Design and Case Studies


You are wrong,the book isn't "fully" on www.cisco.com.

On 2 Oct 2000 05:04:42 -0400, [EMAIL PROTECTED] ("Muralidhar
A.") wrote:

I guess this book fully is avaliable on www.cisco.com free of cost but yes
u
have to print it in case u need a hardcopy of the same...  i have done
that.
:-)
cheers

"FRS" [EMAIL PROTECTED] wrote in message news:8r3lsc$193$[EMAIL PROTECTED]...
 One of the "must-haves" for your collection as you start your journey
 towards CCIE status, also make sure you get Interconnections by Dr. Radia
 Perlman, Douglas Comer's book, Bruce Caslow's book and at Lab Prep time
get
 the Satterlee book.

 ""Bruce"" [EMAIL PROTECTED] wrote in message
 8r3j6r$t74$[EMAIL PROTECTED]">news:8r3j6r$t74$[EMAIL PROTECTED]...
  I am buying the book "CCIE Fundamentals: Network Design and Case
Studies,
  Second Edition (Certification) to help me prepare for the CCIE Design.
 Would
  someone who has read this book give me their opinion of it?
 
  Bruce
  [EMAIL PROTECTED]
 
 
 
  **NOTE: New CCNA/CCDA List has been formed. For more information go to
  http://www.groupstudy.com/list/Associates.html
  _
  UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html
  FAQ, list archives, and subscription info: http://www.groupstudy.com
  Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

 


 **NOTE: New CCNA/CCDA List has been formed. For more information go to
 http://www.groupstudy.com/list/Associates.html
 _
 UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html
 FAQ, list archives, and subscription info: http://www.groupstudy.com
 Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

**NOTE: New CCNA/CCDA List has been formed. For more information go to
http://www.groupstudy.com/list/Associates.html
_
UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html
FAQ, list archives, and subscription info: http://www.groupstudy.com
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]


**NOTE: New CCNA/CCDA List has been formed. For more information go to
http://www.groupstudy.com/list/Associates.html
_
UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html
FAQ, list archives, and subscription info: http://www.groupstudy.com
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

**NOTE: New CCNA/CCDA List has been formed. For more information go to
http://www.groupstudy.com/list/Associates.html
_
UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html
FAQ, list archives, and subscription info: http://www.groupstudy.com
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: Exam for CCDP Cert

2000-09-27 Thread Tim O'Brien


Well,

I just got back from taking and passing the CID test. Scored a 70% (65%
needed). They give you 2 hours for 100 questions and you can mark your
questions and go back. I read the Cisco Press book only, and felt pretty
iffy going into the test. There were several questions with a "select the
best" approach, man I hate those... Anyways, the test definitely needs a
revamp. I guess it is on to CCIE Written..

Tim

- Original Message -
From: "hal9001" [EMAIL PROTECTED]
To: "Cisco Kid" [EMAIL PROTECTED]; [EMAIL PROTECTED]
Sent: Tuesday, September 26, 2000 2:57 PM
Subject: Fw: Exam for CCDP Cert


Just the one i.e. CID #640-025, try the Sybex Book by Robert Padjen ISBN
0782126391 which got a few good comments on the group, but apparently the
Exam is a pig!
You only get to be a CCDP 1.0 though which probably means you recertify in
two not three years.

Karl
- Original Message -
From: "Cisco Kid" [EMAIL PROTECTED]
Newsgroups: groupstudy.cisco
To: [EMAIL PROTECTED]
Sent: Tuesday, September 26, 2000 11:02 AM
Subject: Exam for CCDP Cert


 Hi !

 Can anyone tell me if there are 2 exams to take for CCDP after CCNP or
just
 the one.

 Thanx.


 **NOTE: New CCNA/CCDA List has been formed. For more information go to
 http://www.groupstudy.com/list/Associates.html
 _
 UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html
 FAQ, list archives, and subscription info: http://www.groupstudy.com
 Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]


**NOTE: New CCNA/CCDA List has been formed. For more information go to
http://www.groupstudy.com/list/Associates.html
_
UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html
FAQ, list archives, and subscription info: http://www.groupstudy.com
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

**NOTE: New CCNA/CCDA List has been formed. For more information go to
http://www.groupstudy.com/list/Associates.html
_
UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html
FAQ, list archives, and subscription info: http://www.groupstudy.com
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: SERVICE SELECTION GATEWAY

2000-09-07 Thread Tim O'Brien


These links should be everything you need. Hope this helps.

Tim

http://www.cisco.com/univercd/cc/td/doc/product/access/acs_serv/6510ssg/
http://www.cisco.com/univercd/cc/td/doc/product/access/acs_serv/6510ssg/6510
h11/vega_hw.htm
http://www.cisco.com/univercd/cc/td/doc/product/access/acs_serv/6510ssg/6510
sw11/index.htm

Watch the word-wrap.

- Original Message -
From: "Tapas Das" [EMAIL PROTECTED]
To: [EMAIL PROTECTED]
Sent: Thursday, September 07, 2000 10:30 AM
Subject: SERVICE SELECTION GATEWAY



Dear All,
can somebody tell me where can I some study material on "SERVICE SELECTION
GATEWAY" I need it badly.

Thanks In Advanc
Tapas
_
Get Your Private, Free E-mail from MSN Hotmail at http://www.hotmail.com.

Share information about yourself, create your own public profile at
http://profiles.msn.com.

___
UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html
FAQ, list archives, and subscription info: http://www.groupstudy.com
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

___
UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html
FAQ, list archives, and subscription info: http://www.groupstudy.com
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: Subnet Question

2000-09-03 Thread Tim O'Brien


Actually, I found this little tidbit on Fatkid.com. I have never tried it
but it appears from their response that you can use them as subnet masks as
well as in access lists...

Not many people are aware that TCP/IP address masks neither need to be
contiguous or have ones starting from the left.  The following are examples
of typical TCP/IP masks that you might see everyday:

... - 255.255.255.0
... - 255.255.0.0
... - 255.240.0.0

Here are a few valid masks that you probably have not seen before:

10101010.10101010.10101010.10101010 - 170.170.170.170
... - 0.255.0.255

If you get a chance set "ip classless" on a Cisco router and try some of
these goofy masks.

Tim


- Original Message -
From: "Bradley J. Wilson" [EMAIL PROTECTED]
To: [EMAIL PROTECTED]
Sent: Sunday, September 03, 2000 7:36 AM
Subject: Re: Subnet Question


The answer to the question as stated would be false, but - you *can* use
discontiguous masks in access lists, which can be a pretty handy feature
sometimes.

Sincerely,

Bradley J. Wilson
CCNA, CCDA, MCSE, CCSE, CNX-A, MCT, CTT


- Original Message -
From: Aaron Moreau-Cook
To: [EMAIL PROTECTED]
Sent: Saturday, September 02, 2000 8:47 PM
Subject: Subnet Question


Question taken from the CCNA Exam Cram book by Walters, Rees, and Coe.

A subnet mask can have a value of 0.255.255.0

A) True
B) False

The Cisco answer would dictate that it is false, and in all functionality it
is true. Hypothetically though it could be true, I rememeber this discusion
a while ago, but I'm looking to see if I am smoking the proverbial crack.

Thanks all!

Aaron Moreau-Cook
Finally taking his CCNA test this coming Friday


___
UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html
FAQ, list archives, and subscription info: http://www.groupstudy.com
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

___
UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html
FAQ, list archives, and subscription info: http://www.groupstudy.com
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: subinterfaces

2000-09-02 Thread Tim O'Brien


RE: subinterfacesThe book that I am looking at states that the 1600 will run
12.0(3)T with 4 meg flash and 8 meg DRAM, but you will need to upgrade to 10
meg DRAM for the IP Plus software of the same version (12.0(3)T). It looks
like you can run any version of the software if you have software if you
have 6 meg Flash and 16 meg DRAM.

Tim

- Original Message -
From: Dave Hennen
To: Nova Rich
Cc: [EMAIL PROTECTED]
Sent: Friday, September 01, 2000 1:41 PM
Subject: RE: subinterfaces


you can do nat with the ip only version of 12.x  I assume that means you can
do it with any version.  very handy and a good reason to upgrade all by
itself.  if you don't have a service contract, 12.x ip only for a 1600
router should be around $20 but make sure you have adequate ram and flash
because it's probably bigger

daveh
-Original Message-
From: Nova Rich [mailto:[EMAIL PROTECTED]]
Sent: Friday, September 01, 2000 1:05 PM
To: '[EMAIL PROTECTED]'
Subject: RE: subinterfaces


Thanx guys for the help. The "secondary" command at the end was the problem.
But now I realize that the Cisco 1610 with IOS 11.2 doesn't support NAT.
Does anyone know if you can do NAT on a 1600 and if, so which ver. IOS?
NovaRich

___
UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html
FAQ, list archives, and subscription info: http://www.groupstudy.com
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: Advanced PIX Beta Exam - Free

2000-08-31 Thread Tim O'Brien


Here is the link for everything that is on the test. Seriously, I took it
about 3 weeks ago and it is straight out of the manual, even the pictures!
It runs the whole gambit of what hardware is this and which way the
interfaces are numbered to configuration and even into all of the Crypto
stuff...

http://www.cisco.com/univercd/cc/td/doc/product/iaabu/pix/pix_v52/index.htm

Tim


- Original Message -
From: "Mohit Gupta" [EMAIL PROTECTED]
To: [EMAIL PROTECTED]
Sent: Thursday, August 31, 2000 11:50 AM
Subject: Advanced PIX Beta Exam - Free


Hello guys,

Can anyone help me with whitepapers, websites on
Advanced PIX Beta Exam (exam code 9E1-571).

You can register for this exam. Last date for this
exam is 13th Sept.

Enjoy but hurry and do not forget to email me the
important sites on PIX.
Thanks...

__
Do You Yahoo!?
Yahoo! Mail - Free email you can access from anywhere!
http://mail.yahoo.com/

___
UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html
FAQ, list archives, and subscription info: http://www.groupstudy.com
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

___
UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html
FAQ, list archives, and subscription info: http://www.groupstudy.com
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: Advanced PIX Beta Exam - Free

2000-08-31 Thread Tim O'Brien

Please disregard my previous post. I took the first PIX beta and not this
one. In my haste to reply I did not check the test number you were talking
about. Sorry...

Tim

- Original Message -
From: "Tim O'Brien" [EMAIL PROTECTED]
To: "Mohit Gupta" 
Sent: Thursday, August 31, 2000 12:30 PM
Subject: Re: Advanced PIX Beta Exam - Free

Here is the link for everything that is on the test. Seriously, I took it
about 3 weeks ago and it is straight out of the manual, even the pictures!
It runs the whole gambit of what hardware is this and which way the
interfaces are numbered to configuration and even into all of the Crypto
stuff...

http://www.cisco.com/univercd/cc/td/doc/product/iaabu/pix/pix_v52/index.htm

Tim

- Original Message -
From: "Mohit Gupta" [EMAIL PROTECTED]
To: [EMAIL PROTECTED]
Sent: Thursday, August 31, 2000 11:50 AM
Subject: Advanced PIX Beta Exam - Free

Hello guys,

Can anyone help me with whitepapers, websites on
Advanced PIX Beta Exam (exam code 9E1-571).

You can register for this exam. Last date for this
exam is 13th Sept.

Enjoy but hurry and do not forget to email me the
important sites on PIX.
Thanks...

__
Do You Yahoo!?
Yahoo! Mail - Free email you can access from anywhere!
http://mail.yahoo.com/

___
UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html
FAQ, list archives, and subscription info: http://www.groupstudy.com
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

___
UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html
FAQ, list archives, and subscription info: http://www.groupstudy.com
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: WICs

2000-08-11 Thread Tim O'Brien


That depends on the router, on the 7206VXR's that I run the modules are hot
pluggable and ready upon insertion.

Tim

- Original Message -
From: "McCallum, Robert" [EMAIL PROTECTED]
To: "'Montgomery, Robert WARCOM Contractor'" [EMAIL PROTECTED];
[EMAIL PROTECTED]
Sent: Friday, August 11, 2000 4:01 AM
Subject: RE: WICs


It is a very simple job.  BUT although it is hot swappable (in the sense you
can plug it in while the router is still running) it will not burst into
life until the router is rebooted.

-Original Message-
From: Montgomery, Robert WARCOM Contractor
[mailto:[EMAIL PROTECTED]]
Sent: 10 August 2000 16:31
To: [EMAIL PROTECTED]
Subject: WICs


Is installing a WIC and/or memory in routers typically a simple job or a
tedious, drawn-out process?  I guess I'm looking for the horror stories...

Rob Montgomery CCNA MCP
IA Systems Analyst
Sytex, Inc./ Naval Special Warfare Command

___
UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html
FAQ, list archives, and subscription info: http://www.groupstudy.com
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

___
UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html
FAQ, list archives, and subscription info: http://www.groupstudy.com
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

___
UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html
FAQ, list archives, and subscription info: http://www.groupstudy.com
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: DCE to DTE Cable

2000-08-09 Thread Tim O'Brien


You can buy the back-to-back Cisco cables for as little as $29.00 on eBay.
Why would you want to pay over $150 for 2 Cisco cables? Look at the links
below.

Tim
http://cgi.ebay.com/aw-cgi/eBayISAPI.dll?ViewItemitem=399505053
http://cgi.ebay.com/aw-cgi/eBayISAPI.dll?ViewItemitem=399662506
http://cgi.ebay.com/aw-cgi/eBayISAPI.dll?ViewItemitem=403855183
http://cgi.ebay.com/aw-cgi/eBayISAPI.dll?ViewItemitem=400426739
http://cgi.ebay.com/aw-cgi/eBayISAPI.dll?ViewItemitem=400427594
http://cgi.ebay.com/aw-cgi/eBayISAPI.dll?ViewItemitem=403936767

And there are about 10 more up there!



- Original Message -
From: "Butcher, Matthew" [EMAIL PROTECTED]
To: "'Swart Douwe'" [EMAIL PROTECTED]; [EMAIL PROTECTED]
Sent: Wednesday, August 09, 2000 6:40 AM
Subject: RE: DCE to DTE Cable


This is what I am using for wan sim on 25xxs
72-0792-01
v.35 dce
rev.do visw 9640
72-0791-01
V.35 dte
rev.do 3197m

-Original Message-
From: Swart Douwe [mailto:[EMAIL PROTECTED]]
Sent: Tuesday, August 08, 2000 3:40 PM
To: '[EMAIL PROTECTED]'
Subject: DCE to DTE Cable


I have been looking around on the Cisco web site to purchase a DTE to DCE
serial cable so that I can connect 2 2500's via the serial ports.

The cable must be db60 male to db60 male.

Does anyone know the part number???  (I have tried the cisco site, and cant
find this cable).  I know that there are third party companies that make the
cable, but I am after a Cisco one if I can get it.

THanks for your help


Douwe

Visit our Website : http://www.traveland.com.au

Disclaimer - This message and any attachments are confidential and may
contain privileged information intended only for the use of the addressee
named above. If you are not the intended recipient of this message you are
hereby notified that any use, dissemination, distribution or reproduction of
this message is prohibited. If you have received this message in error
please notify Traveland Pty Ltd immediately by return email. Any views
expressed in this message are those of the individual sender and may not
necessarily reflect the views of Traveland Pty Ltd.

___
UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html
FAQ, list archives, and subscription info: http://www.groupstudy.com
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

___
UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html
FAQ, list archives, and subscription info: http://www.groupstudy.com
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

___
UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html
FAQ, list archives, and subscription info: http://www.groupstudy.com
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: Another New CCIE Book

2000-08-04 Thread Tim O'Brien


You know, I watch these messages day in and day out and it really amazes me
that people cannot even do a simple web search on any of the large online
booksellers to find a book! (let alone look at the reviews there). I am
sorry.. I must be in one of those moods this morning...

Here ya go...
http://www.ecampus.com/servlets/com.ecampus.site.presentation.servlets.bookD
etail.SingleBookServlet?ISBN=078972359X
http://www.amazon.com/exec/obidos/ASIN/078972359X
http://www1.fatbrain.com/asp/bookinfo/bookinfo.asp?theisbn=078972359X
http://shop.barnesandnoble.com/bookSearch/isbnInquiry.asp?isbn=078972359X

Tim

- Original Message -
From: "Hubert Pun" [EMAIL PROTECTED]
To: "Kevin Wigle" [EMAIL PROTECTED]
Cc: "Cisco" [EMAIL PROTECTED]
Sent: Thursday, August 03, 2000 3:14 PM
Subject: Re: Another New CCIE Book


How do you find this book?  Worth buying?

Kevin Wigle wrote:

 Th CCIE Exam Cram won't be around for a few weeks I'm told but I found
this
 book on the shelf.

 PREP KIT
 CCIE 350-001
 Routing and Switching

 Published by BaerWolf and QUE
 ISBN: 078972359

 It looks like no matter what our thoughts are on things like "CCIE for
 Dummies" etc, the media is waking up to us.

 Fortunately, the Lab will always be our protection.

 Kevin Wigle
 CCDP/CCNP.

 ___
 UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html
 FAQ, list archives, and subscription info: http://www.groupstudy.com
 Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]


___
UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html
FAQ, list archives, and subscription info: http://www.groupstudy.com
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

___
UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html
FAQ, list archives, and subscription info: http://www.groupstudy.com
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: cir, bc, be

2000-07-14 Thread Tim O'Brien


I thought that when you purchased bandwidth, the CIR that you purchased was
the minimum guaranteed amount of bandwidth that the provider had to make
available to you? If you bought a T1 with a 128K CIR you would always have
at least 128K available to you no matter how much traffic was on their Frame
network and you would be able to burst to ~1.5Mbps, provided that their
network was not saturated, correct?

Tim



- Original Message -
From: "Taylor, Don" [EMAIL PROTECTED]
To: "'Vic Feferberg'" [EMAIL PROTECTED]; [EMAIL PROTECTED]
Sent: Friday, July 14, 2000 2:37 PM
Subject: RE: cir, bc, be


CIR is the average speed you'll transmit overall. In addition to this, you
can burst (Bc) up to, in your example, another 128K (256K total) for a
predefined period of time (usually about 1 second). Be designates all those
packets above the Bc; these are marked DE and will be discarded if
congestion occurs.

- Don

-Original Message-
From: Vic Feferberg [mailto:[EMAIL PROTECTED]]
Sent: Friday, July 14, 2000 2:24 AM
To: [EMAIL PROTECTED]
Subject: cir, bc, be


I'm having trouble getting my head around how bc and be relate to cir. For
example, if all 3 are set to 128k, is bc included in cir, or is it
additional to cir.  etc, etc.

TIA


___
UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html
FAQ, list archives, and subscription info: http://www.groupstudy.com
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

*
The information in this email is confidential and may be legally privileged.
It is intended solely for the addressee. Access to this email by anyone else
is unauthorized.

If you are not the intended recipient, any disclosure, copying, distribution
or any action taken or omitted to be taken in reliance on it, is prohibited
and may be unlawful. When addressed to our clients any opinions or advice
contained in this email are subject to the terms and conditions expressed in
the governing KPMG client engagement letter.

*

___
UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html
FAQ, list archives, and subscription info: http://www.groupstudy.com
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

___
UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html
FAQ, list archives, and subscription info: http://www.groupstudy.com
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: CCNA WAN-SW exam

2000-07-12 Thread Tim O'Brien


I was flipping through this book in Borders the other day. It has some
really neat looking stuff in it.. the only problem is that I have so much
that I want to read and study I will never get done! : ) Currently I am
debating (at least for today) skipping the CCDA/DP and moving right on to
the CCIE written..

Tim


- Original Message -
From: [EMAIL PROTECTED]
To: [EMAIL PROTECTED]
Sent: Tuesday, July 11, 2000 6:20 PM
Subject: CCNA WAN-SW exam


Has anyone sat this exam? I have the new Cisco Quick start book and it seems
to have alot of signaling and framing info. Is this book good for the exam?
Anyone have any reading  suggestions on this exam? Thanks in advance.

David Cooper
CCNP/CCDP

___
UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html
FAQ, list archives, and subscription info: http://www.groupstudy.com
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

___
UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html
FAQ, list archives, and subscription info: http://www.groupstudy.com
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: dilemma.

2000-07-11 Thread Tim O'Brien


In preparing for the CCNP you are preparing for the CCIE. All of the things
that you will learn in the CCNP will be invaluable towards your pursuit of
the CCIE. Think about it.. ACRC (now BCSN) is all about router config with
high end routing protocols.. I wonder where you will see that again??? Maybe
lab day 1.. ALL DAY... CMTD (now BCRAN) is all about the dialer, which you
WILL have to configure on the lab guaranteed... CLSC (now BCMSN) will cover
the concepts listed that you will need to configure in the lab on the
switches that they have listed on the lab equipment page (Cat 5000, Cat 3900
TR.. etc..). CIT (now Support 2.0) is exactly what you will need on day 2 of
the lab (assuming that you make it that far..) Your troubleshooting skills
are imperative for passing the lab. These CCNP classes/tests focus your
studies on what is needed for the next level. Do you think Cisco would
create the CCNP without having the CCIE in mind? Just my thoughts...

Tim


- Original Message -
From: "Muralidhar A." [EMAIL PROTECTED]
To: "cisco freinds" [EMAIL PROTECTED]
Sent: Tuesday, July 11, 2000 3:47 AM
Subject: dilemma.


Hi..
I am CCNA, sun certified admin, MCSE CNE and some other cert's too but now I
am in a dilemma. As some of the seniors here and friends have suggested that
instead of going in for CCNP I start preparing for CCIE directly...
I would like to ask the Guru's of Cisco in this group to suggest what is the
better for ones career and knowledge...
Thanks in advance,
Murali

The Pessimist complains about the wind;
The Optimist expects it to change...and
The Realist adjusts the sail.

 - William Arthur Ward

___
UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html
FAQ, list archives, and subscription info: http://www.groupstudy.com
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

___
UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html
FAQ, list archives, and subscription info: http://www.groupstudy.com
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: CCIE Routingswitc book

2000-07-11 Thread Tim O'Brien


Here are a couple... (for the written...)

CCIE Prep Kit 350-001 : Routing and Switching
http://www1.fatbrain.com/asp/bookinfo/bookinfo.asp?theisbn=078972359X

The Cisco Ccie Study Guide, Second Edition
http://www1.fatbrain.com/asp/bookinfo/bookinfo.asp?theisbn=0071356762

on the way...
CCIE Routing and Switching Exam Cram
http://www1.fatbrain.com/asp/bookinfo/bookinfo.asp?theisbn=1576104338

Tim


- Original Message - 
From: "[EMAIL PROTECTED]" [EMAIL PROTECTED]
To: [EMAIL PROTECTED]
Sent: Tuesday, July 11, 2000 12:16 AM
Subject: CCIE Routingswitc book


Hi All,
Could anybody tell me, some good books for CCIE Routing/Switching
preparation, and any notes for me for better preparation? Any comments are
very appreciated.

TIA,
raf

___
UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html
FAQ, list archives, and subscription info: http://www.groupstudy.com
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

___
UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html
FAQ, list archives, and subscription info: http://www.groupstudy.com
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

CCNP! Just in the nick of time!

2000-07-07 Thread Tim O'Brien


Finished my CCNP today after passing CIT 4.0. Some friends of mine and
others on this list had me really worried about this test. I read the CIT
book by Cisco Press cover to cover and scored an 815. I was really surprised
at how straight forward I thought it was. There were maybe 2 or 3 questions
that I thought were bad and I only had about 5 or 6 fill-ins. All in all I
thought ACRC was a lot harder, but I did take ACRC first and I was pretty
green back then... anyways, I guess it is on the road to CCDP now, some more
tuning is needed before I even consider the IE... Thanks for all of the
great info on this list!

Tim


___
UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html
FAQ, list archives, and subscription info: http://www.groupstudy.com
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: 5500 and 6500

2000-07-01 Thread Tim O'Brien


They are running about 6-8 weeks for delivery from what I have seen (on the
65xx series)

Tim

- Original Message -
From: [EMAIL PROTECTED]
To: [EMAIL PROTECTED]
Sent: Saturday, July 01, 2000 9:40 AM
Subject: 5500 and 6500


Anyone hear that delivery of the 5500 and 6500 are late.  They cannot get
the
chips they need.

___
UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html
FAQ, list archives, and subscription info: http://www.groupstudy.com
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

___
UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html
FAQ, list archives, and subscription info: http://www.groupstudy.com
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: firewall features

2000-06-05 Thread Tim O'Brien


I am not sure what version of IOS you are running or what platform but I
found these on the 12.0 IOS. Hope they help

http://www.cisco.com/univercd/cc/td/doc/product/software/ios120/12cgcr/secur
_c/scprt3/scfirewl.htm

http://www.cisco.com/univercd/cc/td/doc/product/software/ios120/12cgcr/secur
_c/scprt3/index.htm

http://www.cisco.com/univercd/cc/td/doc/product/software/ios120/12cgcr/secur
_c/index.htm

http://www.cisco.com/univercd/cc/td/doc/product/software/ios120/12cgcr/secur
_r/index.htm

Watch the word wrap

Tim


- Original Message -
From: "Justin Marcus" [EMAIL PROTECTED]
To: [EMAIL PROTECTED]
Sent: Tuesday, June 06, 2000 8:13 PM
Subject: firewall features


hello ppls :)

if i have an ios with that special firewall thing in it..
how do i actualy use it.. i was using that cisco search function on there
website to find info but like it always does for me it gave back unrelated
topics :(..

like is there special commands built into the access-list commands ?
or is it a special command all together. ?
anyways could someone fill me in please :)

thanks heaps :)

Justin...

___
UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html
FAQ, list archives, and subscription info: http://www.groupstudy.com
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

___
UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html
FAQ, list archives, and subscription info: http://www.groupstudy.com
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: limiting operation on a interface

2000-05-31 Thread Tim O'Brien


I wonder if something like this would work for you...

http://www.cisco.com/univercd/cc/td/doc/product/software/ios120/120newft/120
t/120t1/timerang.htm

Watch the word wrap...

Tim


- Original Message -
From: "Olden Pieterse" [EMAIL PROTECTED]
To: [EMAIL PROTECTED]
Sent: Wednesday, May 31, 2000 9:32 AM
Subject: limiting operation on a interface


 Hi there gang

 Anyone know how to limit a interface (BRI0) on a 1600 to only operate
 between certain hours ?
 Thx a lot in advance

   Olden Pieterse
 Technical Consultant
 Mobile : +27 82 410 8621
 Office   : +27 21 419 5505
 MCP , CCNA

 ___
 UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html
 FAQ, list archives, and subscription info: http://www.groupstudy.com
 Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

___
UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html
FAQ, list archives, and subscription info: http://www.groupstudy.com
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

93 matches

Mail list logo