RE: 10/100/1000 Switch? [7:66851]
Larry, There are a couple of new 10/100/1000 blades coming out for the 6500. The module for value version runs directly off of the 32gig backplane. There is also a higher speed version that requires the 256gig backplane. 48-port 10/100/1000 Ethernet module for value--oriented wiring closets-This module utilizes the Catalyst 6500 32 Gbps backplane. A single Cisco Catalyst 6500 chassis can cost-effectively support 48 to 576 10/100/1000 ports using any generation of Cisco Catalyst 6500 supervisor engine. It also features TDR and will offer a field-upgradeable IEEE 802.3af standards based in-line power daughter card All of the pricing and additional information can be found here: http://newsroom.cisco.com/dlls/prod_033103.html Tim CCIE 9015, CSS1 -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Larry Letterman Sent: Saturday, April 05, 2003 4:24 PM To: [EMAIL PROTECTED] Subject: RE: 10/100/1000 Switch? [7:66851] The new 48 port 10/100/1000 module will require a new SUP720 or sup-3 as some are calling it.. It may also require a SFM module. The sup 3 will require a new fan tray and I believe power supplies... The info is a little sketchy at this time, but that is what we have heard..thats a lot of upgrading for 48 gig ports..and most servers cant really fill a 100FD pipe anyway... Larry Letterman Network Engineer Cisco Systems -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] Behalf Of Jeffrey Reed Sent: Saturday, April 05, 2003 8:27 AM To: [EMAIL PROTECTED] Subject: RE: 10/100/1000 Switch? [7:66851] Larry, what's the costly upgrade all about? I saw two 48-port 10/100/1000 blades introduced. One is for performance and the other for value. Do both need the upgrade to the chassis? Thanks!! Jeffrey Reed Classic Networking, Inc. -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] Behalf Of Larry Letterman Sent: Friday, April 04, 2003 7:11 PM To: [EMAIL PROTECTED] Subject: RE: 10/100/1000 Switch? [7:66851] we have had the 16 port 10/100/1000 blade for a while in the cat 6000 line. As DRE says, the 48 port version will be out soon..however it will require a costly upgrade to the chassis... Larry Letterman Network Engineer Cisco Systems -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] Behalf Of dre Sent: Friday, April 04, 2003 3:04 PM To: [EMAIL PROTECTED] Subject: Re: 10/100/1000 Switch? [7:66851] Greg Rend wrote in message ... Does anyone know if/when Cisco is going to announce a standalone (2950, 3550), triple speed switch? If there is already one out there from Cisco (standalone) please excuse my ignorance. I haven't been about to track one down. I know Cisco has a 3550-12T Switch but ony 12 10/100/1000 ports. Word on the street is that Cisco is going to announce a higher density, anyone have any news? Well considering Cisco just came out with the Sup720 and have 10/100/1000 modules for the 6500 platform finally on the official roadmap (announcement in May) -- I don't forsee them having it on smaller switches in bulk until much later. 10/100/1000 has been available on the Catalyst 4000 series for quite some time now, however, so that would likely be the platform of choice for 10/100/1000 applications. Or maybe another vendor. -dre Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=66962t=66851 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
OT: 6509 w/2 SUP2/MSFC2 and FlexWAN [7:56774]
Hello, I am working on a high availability solution for a single 6509. The customer currently has a 6509 with dual SUP 2's and dual MSFC2/PFC2's. This box also has a FlexWAN module and I am having some difficulty locating any useful information on Cisco's new site about setting this up with some high availability or redundancy. When I configure the MSFC's like normal with HSRP on all of the VLAN interfaces only the MSFC in the active SUP can see the FlexWAN module and serial ports. They do not even show up on the second MSFC. Is there a Ciscoized way to set this up? Thanks for any help! Tim Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=56774t=56774 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: 2610 VPN with 3DES [7:52124]
I would probably look at 12.1.16. It is GD and should be stable. IP Plus IPSec 3DES only requires 8 and 40 so you should be fine. If you are feeling brave you could load up 12.2.10b.. :) Tim CCIE 9015, CSS1 -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Firesox Sent: Tuesday, August 27, 2002 8:12 AM To: [EMAIL PROTECTED] Subject: 2610 VPN with 3DES [7:52124] Folks, I am in need of a quick help. I have 2610 doing 3DES for site-to-site VPN. It creates a tunnel successfully, but it crashes and gives me an error messgage below. *** System received a SIGTRAP exception *** signal= 0x5, code= 0xd00, context= 0x81640a98 PC = 0x80db4414, Vector = 0xd00, SP = 0x81cfb1f0 *** Unexpected Console FIFO timeout interrupt *** PC = 0xfff03fc4, Vector = 0x500, SP = 0x81641ca4 The IOS is C2600 Software (C2600-IK2S-M), Version 12.0(7)XK1, EARLY DEPLOYMENT RELEASE I have 16MB flash and 48mb Dram. I am suspecting this is a bug within the IOS. If so, can someone tell me what the most bug-free IOS(3DES) is? Thanks Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=52129t=52124 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Help, Switching Solution with 4006 [7:51799]
Rik is correct. The SupIII only supports IP routing protocols. To get layer3 IPX in the 4000 you will need to install the 4232 L3 blade and the enhanced IOS image for it. This would not be very clean. Do they really need the IPX? Maybe you can pitch a conversion from IPX to IP while installing the switch. I also notice that you have the 5483 TX GBIC's specked out. Are your cable runs within the distance limitations? When you are talking about running between floors you better have them tested to be sure. Tim CCIE 9015, CSS1 -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Larkin, Richard Sent: Wednesday, August 21, 2002 4:43 AM To: [EMAIL PROTECTED] Subject: RE: Help, Switching Solution with 4006 [7:51799] I was told by Cisco that Sup III didn't support IPX routing! Rik -Original Message- From: Wayne Jang [mailto:[EMAIL PROTECTED]] Sent: Wednesday, 21 August 2002 8:29 AM To: [EMAIL PROTECTED] Subject: Help, Switching Solution with 4006 [7:51799] Hi, I am proposing the following LAN solution to a customer. Does it make sense? -WS-C4006-S3(sup III engine) Do I need special licenses for this? The customer will be using IP and IPX. I saw some licensing software for the Sup III that was around $1700 for both IP and IPX. I don't know that that is all about. -One 48 port RJ45 blade for servers and workstations on same floor -One 6 port GBIC blade (WS-X4306-GB) that will be used to connect to five WS-2950s on different floors -I will use the WS-5483 GBICs to connect the 2950s to the six port WS-X4306-GB Can anyone think of things I haven't considered? Thanks Wayne Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=51827t=51799 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: static routing [7:51599]
Paul, EIGRP is fully supported on the 4006 in both the Layer3 4232 blade and the new SupIII. I would definitely stay away from IGRP and would highly recommend EIGRP. Tim CCIE 9015, CSS1 -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Paul Sent: Sunday, August 18, 2002 4:54 PM To: [EMAIL PROTECTED] Subject: static routing [7:51599] Hi guys, I have recently inherited a 30+ strong network that only uses static routing!!! Some of the equipment includes 2900s 3500s 3600s 4000s amongst others. I would very much like to move towards dynamic routing!!! What would you guys suggest? I also believe that the next IOS for the 4006s does not support EIGRP ! (If i am correct!) I am not sure if I should use RIP IGRP etc. Have any of you guys experienced this before and what would you suggest? Kind regards Paul Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=51606t=51599 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: BSCI exam [7:49432]
Nothing like real-world scenarios on test that are nothing like the real-world.. :) Tim CCIE 9015 -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of [EMAIL PROTECTED] Sent: Tuesday, July 23, 2002 9:15 AM To: [EMAIL PROTECTED] Subject: BSCI exam [7:49432] Hi, Today I passed the BSCI exam towards my CCIP certifictaion.I scored 930 and the passing score was 700 and the number of questions are 57.The exam contains all the routing protocol (more stress on IS-IS). The pattern of the exam is different from other exams,The exam has some design questions that needs to be implemented through the router simulators,very much like the real router's hyperterminal (Cisco CIM) but the functionality of help and tab commands are disabled here.One needs to remember the complete configuration command. Kind Regards /Thangavel 186K Reading,Brkshire Direct No -0118 9064259 Mobile No -07796292416 Post code: RG16LH www.186k.co.uk -- The greatest glory in living lies not in never falling, but in rising every time we fall . -- Nelson Mandela ** This e-mail is from 186k Ltd and is intended only for the addressee named above. As this e-mail may contain confidential or priveleged information, if you are not the named addressee or the person responsible for delivering the message to the named addressee, please advise the sender by return e-mail. The contents should not be disclosed to any other person nor copies taken. 186k Ltd is a Lattice Group company, registered in England Wales No. 3751494 Registered Office 130 Jermyn Street London SW1Y 4UR ** Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=49436t=49432 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: PIX Destination Nat [7:48754]
Gil, PIX version 6.2 supports Bi-Directional NAT. You no longer need to use the alias command. Have a look... Bi-Directional Network Address Translation (NAT) PIX Firewall software version 6.2 allows Network Address Translation (NAT) of external source IP addresses for packets traveling from the outside interface to an the inside interface. All functionality available with traditional NAT such as fixups, Stateful Failover, dynamic NAT, static NAT, and PAT are available bidirectionally in this release. Tim CCIE 9015 -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Gil Shulman Sent: Sunday, July 14, 2002 5:02 AM To: [EMAIL PROTECTED] Subject: PIX Destination Nat [7:48754] Hi all, I am trying to perform a Nat on the destination IP address. I have a PIX holding the 6.2 OS Version. I know Destination Natting can be achieved by using the alias command but I have to configure an alias which will translate two different D. IP addresses to a single one. Help on the I can do it (if at all) will be appreciated. Cheers, Gil ** The contents of this email and any attachments are confidential. It is intended for the named recipient(s) only. If you have received this email in error please notify the system manager or the sender immediately and do not disclose the contents to any one or make copies. ** eSafe scanned this email for viruses, vandals and malicious content ** ** Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=48758t=48754 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Cisco Video Conferencing [7:48646]
All of the IP/TV stuff is designed for just this feature. Does he want to just give speeches or is he looking for interactive video response? Even with the IP/TV stuff you can click a button to submit online questions to the presenter. Tim CCIE 9015 -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Kim Graham Sent: Friday, July 12, 2002 6:23 AM To: [EMAIL PROTECTED] Subject: Re: Cisco Video Conferencing [7:48646] We are using it. The person who is developing it for our team is jumping through alot of hoops. Some of the hoops are company defined ones others are Ciscos. So far we have been able to do long distance VC (Toronto to Florida) and a few other places without too much trouble. It seems to be in the later stages of development, thus you need to do your share of research. He is currently working on Site to Multicast (boss to employee desktops) scenario as opposed to Site to Site. This one is a challenge. If you are currently using it and have any pointers he would probably appreciate it. Kim From: Johnson, Richard (NY Int) Date: 2002/07/11 Thu PM 10:47:50 EDT To: [EMAIL PROTECTED] Subject: Cisco Video Conferencing [7:48646] Hi All, Is anyone out there currently using it? If so what are your opinions of it? Thanks Rich Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=48665t=48646 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Placement of IDS [7:48420]
If you are going to look at it that way you should run host based IDS on the servers you are protecting from your inside clients and run your IDS sensor between your edge router and firewall to see what is happening outside. Tim CCIE 9015 -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of sam sneed Sent: Thursday, July 11, 2002 11:41 AM To: [EMAIL PROTECTED] Subject: Re: Placement of IDS [7:48420] I wouldn't want to put it in both places. If I did I'd have to deal with false positives twice. With all the other responsibilities I have it would take up too much of my time. I do trust my firewall so I think I'll keep it inside. Brad Nixon wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... The easy answer to your question is It depends. Do you trust your firewall? Do you trust your internal users? The best solution would be to have an IDS on each side of your firewall. That way you could detect both external and internal threats. -- Brad A. Nixon CCNP, CCDA, MCP, CCSA Nothing is fool proof to a sufficiently talented fool. Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=48601t=48420 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: bandwidth in serial interface [7:48481]
The bandwidth command is for proper function of routing protocols. The routing protocol will take the value of the bandwidth statement and use it in its metric. Tim CCIE 9015 -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] Sent: Wednesday, July 10, 2002 5:11 AM To: [EMAIL PROTECTED] Subject: bandwidth in serial interface [7:48481] hi i have this doubt.What is the significance of Bandwidth command in the serial interface.coz' whatever the bandwidth configured on the serial interface will not be the actual bandwidth which the serial interface is carrying. pls can any one clarify my doubt? regards deepak Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=48485t=48481 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Class C summarization question [7:48367]
Bob, I would have to agree. With CIDR, in most cases you will get 16 usable subnets and 2 unusable addresses (the network and the broadcast). ex. 192.168.96.0 255.255.240.0 192.168.96.1 -- 192.168.111.254 all usable 192.168.96.0 network 192.168.111.255 broadcast I could see the question possibly not wanting the zero subnet if you used the following: 192.168.0.0 -- 192.168.15.255 where the 192.168.0.X network might be classified as unusable. This would give you 15 usable subnets... Tim CCIE 9015 -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Bob Timmons Sent: Tuesday, July 09, 2002 7:28 AM To: [EMAIL PROTECTED] Subject: Re: Class C summarization question [7:48367] Firstly, 2 to the power of 4 is 16 (2x2x2x2). Secondly, regarding Carl's post, would the answer be 14? I'm not sure the subnet-zero comes into play with CIDR. I was under the impression it was only relevant to subnetting as opposed to summarizing. Does anyone know for sure? I say 8. 2 to the power of 4 Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=48403t=48367 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Not only is TR going... [7:46391]
Theo, By no means is the 3550 replacing the 6500 in a real world scenario. The 3550 is an IDF non-chassis switch. The most density you can get is 48 10/100 ports. However, the IOS structure and layer 3 capabilities allow you to mimic a lot of the new functionality that you have in the 6500. This will allow the CCIE lab to contain new technologies such as Private VLANS, QoS, STP enhancements, Voice VLANS, etc... This also gives way to the future of the 6500 running native IOS. So, if you are an expert on the 3550, chance are that you will know your way around a 6500 pretty well. Tim CCIE 9015 p.s. Think of the cost of outfitting the 9 CCIE labs with new 6506's. With RTP having something like 14 racks, I will use 10 as an average since I have no idea what the other labs have. A simple config on a 6506 with a Sup2-MSFC2, a WS-X6348-RJ45V, the necessary software and memory comes to $71,000 list price * 90 units = $6,390,000.00! They could throw in a WS-C3550-24-EMI for a list price of $4,990.00 and come out with a total of $449,100 with a similar feature set. -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of [EMAIL PROTECTED] Sent: Thursday, June 13, 2002 3:26 AM To: [EMAIL PROTECTED] Subject: RE: Not on;y is TR going... [7:46391] My bewilderment comes from my previous belief that Cisco, your company, was promoting the 6000 and 6500 series switches as the replacement to the 5xxx series. I have recommeded since last August to use the 65xx because of this. Of course I thought this switch would be on the test! It is a good machine and I like it. Of course I like Foundry's ServerIrons too but for a Cisco Switch, I really do like the 65xx. IDS is only part of the problem. The 65xx uses modules. I thought for sure Cisco would want engineers to know about how to configure the modules not only because it increases the value of the engineer but more importantly, it is useful in marketing and sales. Don't you want to promote the modules on the 65xxx They are really expensive and Cisco must make some good money off of them. The 3550 is what? Perhaps we can all buy one, I just saw 4 on e-bay, each for under $3000, but doesn't Cisco want to test us off of what many enterprises are using? I was at a Cisco Gold Partner company last year and they only recommended the 5xxx and then the 65xx. Of course many customers bought the 29xx but on the test there was the 5xxx-a modular switch. It just doesn't make sense. It looks too easy. But hey! It's your company! Of course it will be beneficial to me as a test-taker to have the 3550. I am just at a loss as to why Cisco is not putting the replacement switch on the test. Your commments Theo Larry Letterman 06/13/2002 02:33 PM To: , cc: Subject:RE: Not on;y is TR going... [7:46391] and why are you so distraught about no IDS..? other than the fact we all know your big on security. Its a basic l2/l3 switch for the lan switching part of the R/S lab, not the security lab... Larry Letterman Cisco Systems [EMAIL PROTECTED] -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of [EMAIL PROTECTED] Sent: Wednesday, June 12, 2002 9:11 PM To: [EMAIL PROTECTED] Subject: RE: Not on;y is TR going... [7:46391] I don't know about this thing. What is the real throughput I wonder. It says 24Gbbs switching fabric but I can't find a place where is says X Gbbs throughput Has anyone really ever tested one of these puppies? I would like to know if it can really take a beating without losing packets. And this thing can't do IDS! Why O why did they choose this thing? How about the Content Swiching Module? Does it have anything like this? I am looking at the page now and can't see anything promising. Man was someone sniffing acid when they suggested the switch and it wasn't IDS??? I would like to know if anyone has any experience with this with like 10 1-gig copper connections, all intensive traffic flows between various servers. I know the 6509 can take the pain without too much trouble. Can the 3550 really perform Theo Mark Odette II Sent by: [EMAIL PROTECTED] 06/13/2002 12:14 PM Please respond to Mark Odette II To: [EMAIL PROTECTED] cc: Subject:RE: Not on;y is TR going... [7:46391] The 3550 running the Enhanced image of IOS is a layer 3 switch with 24 or 48 ports- No need for a Route Module add-on. You can put an IP on every single port too from what I understand. It more or less can do the same thing as a 6500 - minus any Tel-Co blades that might be able to be put in the 6500. Of course, I don't have any experience with the 6500 series switch, so I don't know what all you can put in it. :( Mark -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] On Behalf Of [EMAIL PROTECTED] Sent: Wednesday, June 12, 2002 9:24 PM To: [EMAIL PROTECTED] Subject: Re:
RE: CCIE home lab [7:46395]
Have a look at the link from Cisco. They will be removing Token Ring and the 3920 Switch and replacing the 5500's with 3550's which can do layer 3 and other new advanced features. Tim CCIE 9015 http://www.cisco.com/warp/public/625/ccie/ccie_program/whatsnew.html#18 -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of [EMAIL PROTECTED] Sent: Thursday, June 13, 2002 8:25 AM To: [EMAIL PROTECTED] Subject: Re: CCIE home lab [7:46395] Hi, Could you explain a bit more what happen after October ? Thanks Philip - Original Message - Wrom: IYZUNNYCGPKYLEJGDGVCJVTLBXFGGMEPYOQKED To: Sent: Thursday, June 13, 2002 1:09 AM Subject: RE: CCIE home lab [7:46395] you apparently dont need the token or cat switch anymore if you are taking the lab after october... Larry Letterman Cisco Systems [EMAIL PROTECTED] -Original Message- Wrom: OTWFAOBUZXUWLSZLKBRNVWWCUFPEGAUTFJMVRESKPNKMBIPBARHDMNNSKVFVWRKJ Hunt Lee Sent: Wednesday, June 12, 2002 7:02 PM To: [EMAIL PROTECTED] Subject: CCIE home lab [7:46395] Hi, I know that this may have come up many times. But since I'm about to start preparing for the CCIE lab, it would be great if anyone could give me some suggestions on this. I'm planning to continue to build up my lab. Currently, I have the following: 2 x 1603R 3 x 2501 2 x 2503 2 x 2511 1 x Cat 5000 I'm thinking whether I should get the below:- 2 x Token routers - maybe 2 x 2502?? MAU?? What else do I need for Token?? I really don't know what else I need... 1 x Frame switch - 1 x ISDN Simulator (do u know which one is good?) And I probably need to upgrade RAM / Flash on my routers... since most of them only had 4MB Flash on the moment... Any ideas would be greatly appreciated. Thanks -- Hunt Lee WebCentral Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=46452t=46395 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
OT: Cisco SCA11000 Secure Content Accelerator [7:45989]
I have a question on the SCA11000 that I was hoping someone could help with. I installed one of these and in working with the config I enabled the web management interface. Everything appears to be functional however I can only web into it for management from the same network as the server port. Is this how it is suppose to function? Is there any way to enable remote web management? Thanks for any suggestions! Tim CCIE 9015 Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=45989t=45989 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Checksum failure [7:45856]
I have seen this caused by a bad TFTP server of all things, as well as by a bad download. Try to re-download and then try 3CDeamon, the best thing EVER put out by 3Com! :) ftp://ftp.3com.com/pub/utilbin/win32/3cdv2r10.zip Hope that helps! Tim CCIE 9015 -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of kevhed Sent: Wednesday, June 05, 2002 3:10 PM To: [EMAIL PROTECTED] Subject: Checksum failure [7:45856] Looking for some help. I'm trying to download (tftp) a new ios image on my 2503 and after repeated attempts, I continually get a checksum error after each download. I've changed the config-register to 0x2101 so that the flash will switch to Read/Write prior to downloading. I've tried 3 separate ios images from cisco and here's what I get after each download: t(boot)#copy tftp flash System flash directory: File Length Name/status 1 8133708 c2500-js-l.112-26d.bin [invalid checksum] [8133772 bytes used, 254836 available, 8388608 total] Address or name of remote host [255.255.255.255]? 10.1.1.1 Source file name? c2500-js-l.112-21.bin Destination file name [c2500-js-l.112-21.bin]? Accessing file 'c2500-js-l.112-21.bin' on 10.1.1.1... Loading c2500-js-l.112-21.bin from 10.1.1.1 (via Ethernet0): ! [OK] Erase flash device before writing? [confirm] Flash contains files. Are you sure you want to erase? [confirm] Copy 'c2500-js-l.112-21.bin' from server as 'c2500-js-l.112-21.bin' into Flash WITH erase? [yes/no]yes Erasing device... ...erased Loading c2500-js-l.112-21.bin from 10.1.1.1 (via Ethernet0): !! !! [OK - 8126256/8388608 bytes] COPY: Text checksum verification failure TFTP from 10.1.1.1 failed/aborted Verifying checksum... invalid (expected 0x2B4D, computed 0x294F) Flash copy took 0:04:21 [hh:mm:ss] t(boot)# Thx in advance. Any help is appreciated. -- Kevin Keay (N+,CNE,CCSE,CCDP,CCNP, CISSP) Sr. Network Specialist Ondeo-Nalco One Ondeo-Nalco Center Naperville, IL 60563 (630) 305-2557 Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=45864t=45856 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Bandwidth Throttling [7:45354]
Here ya go... http://www.cisco.com/warp/public/105/cbpcar.html Tim CCIE 9015 -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Wayne Jang Sent: Wednesday, May 29, 2002 9:52 AM To: [EMAIL PROTECTED] Subject: Bandwidth Throttling [7:45354] Hello, We have some servers at a colocation site. We have a 10MB pipe but we are paying for 3MB. The ISP charges us more $$ if we use more than 3 MB. Can I configure my router to not allow me to use more than 3MB? Thanks, Wayne -- Wayne Jang Advanced Computer Technologies, Inc. 108 Main Street Norwalk, CT 06851 Wk 203-847-9433 Cell 203-943-6603 Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=45356t=45354 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: PIX 515E Question [7:45206]
Actually, now they are included in the 515E-UR for free! You still need to purchase it in the 515E-R models, I believe. This card increases throughput for DES and 3DES to over 63Mbps. It works basically like a math-coprocessor and offloads all of the IPSec encryption traffic so that the main processor does not have to work so hard. Here is the QA for the E models http://www.cisco.com/warp/public/cc/pd/fw/sqfw500/prodlit/p615e_qa.htm And here is the data sheet for the VPN Accelerator card that you are finding http://www.cisco.com/warp/public/cc/pd/fw/sqfw500/prodlit/vac_ds.htm Hope that helps, Tim CCIE 9015 -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of [EMAIL PROTECTED] Sent: Tuesday, May 28, 2002 3:25 AM To: [EMAIL PROTECTED] Subject: RE: PIX 515E Question [7:45206] The card is a SafeNet Crypt PCI card. It looks exactly like the VPN accelerator card I used last year for the 515. What's up? Now we have to buy these things? Theo [EMAIL PROTECTED] Theodore.Stout Sent by: [EMAIL PROTECTED] 05/28/2002 04:02 PM Please respond to [EMAIL PROTECTED] To: [EMAIL PROTECTED] cc: Subject:RE: PIX 515E Question [7:45206] Our is the 515E-DMZ so there is one card in there for the FE port. In there other port, there is nothing there. I will look again. Kris Keen Sent by: [EMAIL PROTECTED] 05/28/2002 03:38 PM Please respond to Kris Keen To: [EMAIL PROTECTED] cc: Subject:RE: PIX 515E Question [7:45206] I know this! sorta, cant remember it thought its a card for 3des or similar for PIX to PIX authentication and security? it has no ports right? Nod , seen it. Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=45218t=45206 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: VG200 [7:44425]
The 2 WIC slots are non-functional in a VG200. If you want to add voice modules you can only add 2 using the NM-2V. Tim CCIE 9015 -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] Sent: Saturday, May 18, 2002 2:19 AM To: [EMAIL PROTECTED] Subject: VG200 [7:44425] Hello All Anybody know what is the maximum VICs can be installed in VG200 ? I guess only two VICs can be installed in slot 1 which contains the voice network module, but still there is another two WIC , can I swap VIC directly into one of them ? Ismail Al-shelh Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=44438t=44425 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Securing a Aironet 350 [7:44152]
Have a look at the following paper. http://www.cisco.com/warp/public/cc/so/cuso/epso/sqfr/safwl_wp.htm Tim CCIE 9015 -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Johnson, Richard (NY Int) Sent: Tuesday, May 14, 2002 3:12 AM To: [EMAIL PROTECTED] Subject: Securing a Aironet 350 [7:44152] Hi there, What is the best way to secure a Aironet 350 from hackers? It is only local in my office. Thanks, Rich Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=44181t=44152 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: GBICs [7:44006]
Mamoon, Yes, this GBIC is fully supported in the Catalyst 6500, 4000, 3550 Series, 2950 Series, 3500 Series XL, and 2900 Series XL switches. The Catalyst 6500 and 4000 will support the new GBIC when the following software releases become available in 2HFY02: CatOS 7.2 - both Catalyst 6500 and 4000 CatIOS 12.1(13)E - Catalyst 6500 only Tim CCIE 9015 -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Mamoon Dawood Sent: Monday, May 13, 2002 4:00 AM To: [EMAIL PROTECTED] Subject: GBICs [7:44006] Dear All, Does the new catalyst switches Cisco WS-C2950G-48-EI and WS-C2950G-24-EI support WS-G5483 Gbics (The 1000BaseT GBIC), Regards, Mamoon Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=44010t=44006 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: CSPM for IDS4210 [7:42788]
Kent, There is no such thing as CSPM 3.0i. There is only an f version. To run IDS you will probably want to run 2.3.3i or wait till IDM (IDS Device Manager) comes out. Tim CCIE 9015 -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Kent Hundley Sent: Tuesday, April 30, 2002 12:53 PM To: [EMAIL PROTECTED] Subject: RE: CSPM for IDS4210 [7:42788] There are different versions of CSPM 3.0. CSPM 3.0f supports PIX and routers, CSPM 3.0i supports IDS. You can read about it here: http://www.cisco.com/univercd/cc/td/doc/product/ismg/policy/ver30/reln30.htm #xtocid2 Regards, Kent -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of [EMAIL PROTECTED] Sent: Tuesday, April 30, 2002 8:26 AM To: [EMAIL PROTECTED] Subject: Re: CSPM for IDS4210 [7:42788] Hello, On a special request we got CSPM 3.0 FROM Cisco and for your information CSPM 3.0 does not support IDS.it only supports PIX. Kind Regards /Thangavel 186K Reading,Brkshire Direct No -0118 9064259 Mobile No -07796292416 Post code: RG16LH www.186k.co.uk -- The greatest glory in living lies not in never falling, but in rising every time we fall . -- Nelson Mandela CiscoEnthuas tic To: [EMAIL PROTECTED] Fax to: Sent by: Subject: Re: CSPM for IDS4210 [7:42788] nobody@groups tudy.com 30/04/2002 15:01 Please respond to CiscoEnthuas tic Unfortunately CSPM 3.0 Eval is not available from CCO even if you have a CCO account which has the pemittance to download You can only get this software from VMS 2.0 set Timo Graser wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... I just got a IDS 4210 and want to manage it now, where can I download a CSPM 3.0 Eval? ** This e-mail is from 186k Ltd and is intended only for the addressee named above. As this e-mail may contain confidential or priveleged information, if you are not the named addressee or the person responsible for delivering the message to the named addressee, please advise the sender by return e-mail. The contents should not be disclosed to any other person nor copies taken. 186k Ltd is a Lattice Group company, registered in England Wales No. 3751494 Registered Office 130 Jermyn Street London SW1Y 4UR ** Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=42908t=42788 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: VPN Solution [7:42514]
Here ya go... Tim CCIE 9015 http://www.cisco.com/warp/public/707/ios_usr_rad.html http://www.cisco.com/warp/public/707/ipsec_radius_config.html http://www.cisco.com/warp/public/471/ios-unity.html -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of fahim Sent: Thursday, April 25, 2002 4:55 AM To: [EMAIL PROTECTED] Subject: VPN Solution [7:42514] Hi Group Can anybody help me get links (samples) in cisco site, or has anybody implemented this solution can throw some light, for configuring a ios router with ipsec 56 feature pack (cisco1720) and vpn client 3.x with windows 2000 IAS Radius authentication, I searched and got only for Configuring PIX with vpn client 3.x and windows 2000 IAS Radius authentication. thanks in advance. Fahim CCNA, CCDA, CSS1 Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=42517t=42514 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: PIX VPN [7:42068]
The PIX comes with a 56bit DES license. If you want 3DES you will need to buy it. Tim -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Mamoon Dawood Sent: Saturday, April 20, 2002 2:32 AM To: [EMAIL PROTECTED] Subject: PIX VPN [7:42068] Dear All, Our customer who bought a Cisco PIX and router for his HQ want to connect the HQ office with another one in different location, they will implement VPN connectivity from the HQ PIX to the other side PIX, is there any add on software need to be purchased or it will be ok with the default PIX configuration, Regards, Mamoon. Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=42075t=42068 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: PAT, PIX 515 and VPN ..... [7:41662]
Paul, You are talking about 2 entirely different things. The VAC allows you to create additional VPN connections. This VPN connection would be a client or another site terminating into the PIX. This traffic between sites or between the user and the PIX would be encrypted. The VAC handles the encryption processing much like a math co-processor. On the other hand you are talking about the PAT and NAT capabilities of the PIX. I believe that the 515 is rated at somewhere around 125,000 simultaneous sessions through it. The net 515E even has a more powerful processor. I would say that for 100 to 150 users you should have no problems running PAT on a PIX 515 or 515E. Tim CCIE 9015 -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Paul Sent: Tuesday, April 16, 2002 5:47 PM To: [EMAIL PROTECTED] Subject: PAT, PIX 515 and VPN . [7:41662] Cisco say that one gloabal IP address can be used for up to 64,000 local addresses I want to use the same method for 100 - 130 predominantly web-browsing end-users through a PIX 515. Has anyone had any experience of this .. and does anyone forsee any problems !!! this is the first time I have done this and I don't want to make any basic mistakes :) Also The PIX 515 can have a VAC installed to allow up to 2000 similtaneous VPN connections at any one time . but .. how many sessions can the PIX 515 manage on its own, without a VAC ?? Any help or suggestions will be greatly received ... Kind regards .. Paul Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=41678t=41662 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: 4006 Power Supplies [7:41257]
The 4006 comes standard with 2, you cannot get just 1. Don't try and run that 4006 full with blades on just 1 power supply... Also, if you are going to run the 4006 with inline power, you will need the additional AUX Power shelf with 3 more power supplies.. nothing like plugging in 6 power supplies. :) Tim CCIE 9015 -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of x Sent: Friday, April 12, 2002 8:01 AM To: [EMAIL PROTECTED] Subject: Re: 4006 Power Supplies [7:41257] Jeff, We just bought a Cisco 4006 switch. Our reseller and our Cisco rep both told us we need two power supplies to run it and one for redundancy. They both went on to say the power supply is the first thing to go. They sold me on it so I got all three power supplies. I got the switch a few weeks ago and I threw in the two 10/100 blades and the extra power supply. I unplugged one power supply and it still seemed fine. I decide to unplug another and leave only one running just to see if it would die. It ran for 30 minutes until I decided to plug it back in, keep in mind I didn't have anything attached at the time. I am guessing if you really wanted to you could get away with one, but when your spending that much(think it was around $14k to $15k) an extra $600 or so to protect your investment is no big deal. I also like the fact that if two powersupplies die it will still probably run and I can take my time replacing them. A good night's sleep is worth $600 to me. --- Jeffrey Reed wrote: Im trying to understand power redundancy in the Cisco 4006 switch. Reading through the online information, Cisco seems to imply you must have at least two power supplies up and running at all times. The 3rd power supply provides redundancy. Other vendors allow you to run at least a partially populated chassis on one power supply. If I have a 4006 with SUPII and one 48-port blade, do I really need three power supplies? Anyone have experience with 4006s and power supplies? Thanks!! Jeffrey Reed Classic Networking, Inc. Cell 717-805-5536 Office 717-737-8586 FAX 717-737-0290 [EMAIL PROTECTED] __ Do You Yahoo!? Yahoo! Tax Center - online filing with TurboTax http://taxes.yahoo.com/ Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=41289t=41257 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: PIX VS CheckPoint [7:40136]
With PDM 2.0 and PIX OS 6.2 you will be able to do this. It was suppose to be out last month.. I guess they are still working the bugs out of it... Tim CCIE 9015 -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Mark Odette II Sent: Monday, April 08, 2002 2:48 AM To: [EMAIL PROTECTED] Subject: RE: PIX VS CheckPoint [7:40136] Timo- Which version of the PDM are you referring to that has the VPN config capability?? I have 1.1.2 now, and I have not found that functionality... Am I just overlooking something!?!?! TIA for your response. -Mark Odette II -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Timo Graser Sent: Sunday, April 07, 2002 7:05 AM To: [EMAIL PROTECTED] Subject: Re: PIX VS CheckPoint [7:40136] The Pix has also a browser interface. The only disadvantage in the past was, that you could not configure a vpn. With the new pdm you will be able to do this too. So the only things in the future to do at cli will be to run setup and then log in over your browser. Jeffrey Reed wrote: IPSO comes with a nice web browser interface that I can teach a customer in a matter of minutes. You only need to access command line when you have support on the line. Also, Nokia certifies each CheckPoint release with their IPSO operating system to make sure they are more than compatible. This is a good solution if you're running CheckPoint. As X said, never run your firewall on NT!! Jeffrey Reed Classic Networking, Inc. -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of nrf Sent: Tuesday, April 02, 2002 9:21 PM To: [EMAIL PROTECTED] Subject: Re: PIX VS CheckPoint [7:40136] I knew somebody was going to come back with that. All-right fine, it is indeed true that Ipso is a hacked version of Unix. But then again, so is Cisco IOS and Juniper JunOS, and you could say that it helps to have knowledge of Unix to run either of those (especially JunOS).The point I was trying to make is that by using a Nokia Ipso box, you don't subject yourself to the full-blown intricacies of Unix like you do when installing Checkpoint software on, say, a Sun box. I was trying to say that you could get by with less Unix skills than you could otherwise, I was not saying that you could get by with an absolute 100% complete whole-nine-yards lack of Unix knowledge. Now, whether you consider that to be a good or bad thing is in the eyes of the beholder. colin newman wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... Hi Nokia?s IPSO OS is Unix. It?s a ?hardened? and customize version of FreeBSD. I?ve worked on Nokia/CheckPoint boxes and it does help to have knowledge of Unix. I have not had the chance to work with PIX yet so I can?t comment on the merits of a CheckPoint/Nokia vs. PIX. The only negative thing I have to say about CheckPoint is their idiotic licensing scheme, it a pain and can be very confusing. Colin nrf wrote: On the other hand, there's a distinct third option, which is to run Checkpoint on a dedicated hardware appliance, for example the Nokia Ipso line of gear. This removes one of the Checkpoint disadvantages (don't need to know Unix or NT), but introduces another disadvantage (less flexible - you should have included in your advantages that regular Checkpoint is more flexible than Pix because you can integrate it with Unix and enjoy all the features of Unix, but of course with a Nokia, you don't have that). In fact, the Pix and the Nokia Checkpoint are so close that it's almost a wash. I believe the Pix is faster, but the Nokia Checkpoint is still more flexible (but not as flexible as Checkpoint software). Nurudeen Aderinto wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... Dear x, I love your presentation. You spoke well. Nurudeen x wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... I have setup and managed both PIX and Checkpoint in a variety of environments. I think they are both solid options in different situations. Here is how I market these products. PIX - more cost effective - fast - you can have fail over - Can be more complicated to setup the CLI, but PIX has a nice feature of allowing all traffic out and none in by default. Who would I market this for? I would target this as an ideal candidate for small companies with rulesets that don't change much. They also need a Cisco savy person to manage it, usually a consultant. I am guessing you would fill this role. I have only made minor changes in the firewall I have managed for almost two years. Checkpoint - nice GUI for ruleset management - more expensive - required to know Unix or NT ( for the love of God don't use NT. Its security is very poor out of the box and requires a great deal of configuration to become mildly secure ) Who would I market this toward? I would target larger companies with Checkpoint. It is easier to manage the ruleset, but more setup time and more
RE: 6513 switch [7:40446]
You need to order the SFM2 separately (WS-X6500-SFM2). You can order 2 for redundancy. This will light up the 256Gig Crossbar backplane. It will be totally worthless unless you get the proper linecards also. If you have other questions just let me know. Tim CCIE 9015 -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] Sent: Thursday, April 04, 2002 2:16 AM To: [EMAIL PROTECTED] Subject: 6513 switch [7:40446] I have ordered two Supervisor Engine 2, dual 1000BASE-X GBIC uplinks, fabric-enables, CEF, enhanced Qos features, PFC2, and MSFC2 for my 6513 switch. The question is: Do I have to order separate Switch Fabric Module ? or no need because the SuperVisor Engine already enabling switch fabric ? Ismail Al-shelh Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=40452t=40446 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: How do I approach the company about my CCIE [7:40261]
I still cannot believe that a CAM told you that. I know for a fact that CCIE is still coveted inside of Cisco (I just left there as an SE to start my own company 1 month ago). The Silver and Gold partnerships still require CCIE's also, which is how a CAM is paid (by partner performance)... I think that guy was blowing you smoke... Tim CCIE 9015 -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Steven A. Ridder Sent: Wednesday, April 03, 2002 7:06 AM To: [EMAIL PROTECTED] Subject: Re: How do I approach the company about my CCIE [7:40261] I'm not trying to discourage anyone, and each company is different. The CAM told me and I'm still going to do it. -- RFC 1149 Compliant. Get in my head: http://sar.dynu.com Kris Keen wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... I too! Seeing something like that just makes me want to not even both with the CCIE track... I think cisco care very much about their 9000 odd CCIe's Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=40317t=40261 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: root switch [7:39975]
If you turn off Spanning Tree, the switch will never become root. Tim 9015 -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] Sent: Monday, April 01, 2002 1:12 AM To: [EMAIL PROTECTED] Subject: RE: root switch [7:39975] as you know, my switch doesn't become a root swtich,so i set a higher priority in my switch,which method can be sure my swithc never come to root? thanks. Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=40021t=39975 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: root switch [7:39975]
Using this command only sets the bridge priority to 8192, meaning that anything lower than 8192 would take over as root. To give a switch the best chance to become and stay root, I would probably use this command as well as then setting the priority to 0. The only way that a different switch would take over after applying both of these commands would be a preferred MAC address. You can edit this also if you really wanna mess with things. Tim CCIE 9015 -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of [EMAIL PROTECTED] Sent: Monday, April 01, 2002 7:49 AM To: [EMAIL PROTECTED] Subject: RE: root switch [7:39975] Hi, Just a reminder,Higher priority means lower value.. If still not becoming a root bridge,use this command set spantree root Kind Regards /Thangavel -- CCIE (qual),CCS,CCDP,CCNP,MCSE 186K Reading,Brkshire Direct No -0118 9064259 Mobile No -07796292416 Post code: RG16LH www.186k.co.uk -- The greatest glory in living lies not in never falling, but in rising every time we fall . -- Nelson Mandela Tim O'Brien cc: Sent by: Fax to: nobody@groupsSubject: RE: root switch [7:39975] tudy.com 01/04/2002 12:57 Please respond to Tim O'Brien If you turn off Spanning Tree, the switch will never become root. Tim 9015 -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] Sent: Monday, April 01, 2002 1:12 AM To: [EMAIL PROTECTED] Subject: RE: root switch [7:39975] as you know, my switch doesn't become a root swtich,so i set a higher priority in my switch,which method can be sure my swithc never come to root? thanks. ** This e-mail is from 186k Ltd and is intended only for the addressee named above. As this e-mail may contain confidential or priveleged information, if you are not the named addressee or the person responsible for delivering the message to the named addressee, please advise the sender by return e-mail. The contents should not be disclosed to any other person nor copies taken. 186k Ltd is a Lattice Group company, registered in England Wales No. 3751494 Registered Office 130 Jermyn Street London SW1Y 4UR ** Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=40029t=39975 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: MPLS White Paper Announcement [7:40035]
Yea.. I am sure it is great.. if you are fluent in Russian Tim CCIE 9015 -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of David Wolsefer Sent: Monday, April 01, 2002 10:21 AM To: [EMAIL PROTECTED] Subject: MPLS White Paper Announcement [7:40035] Galina Pildush is publishing an MPLS white paper today on www.certificationzone.com. You better hurry though because it will only be available free for today only. This should be an excellent source for those studying for the CS exam. As a CCIE and JNCIE, Galina knows MPLS well. Regards, David Wolsefer Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=40037t=40035 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Gawd I hate my life ;- [7:31817]
Chuck, You actually have 2 commands now that match what you are trying to type. so there is now a sho ip protocol-discovery and there is also a sho ip protocols. The bad news is that you will have to use an alias now or you will have to type the whole word protocols to make this command work. Tim From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] Sent: Sunday, January 13, 2002 10:39 PM To: [EMAIL PROTECTED] Subject: OT: Gawd I hate my life ;- [7:31817] OK, so I've been doing rack testing for some people who are going to be going public Real Soon Now. Got some things mocked up. Some of which relate to topics discussed on this forum yesterday and today. I need to check something and issue the command show ip prot enter. r2#sh ip prot % Ambiguous command: sh ip prot r2# well, now... r2#show ip prot? protocol-discovery protocols r2#show ip prot so what is show ip protocol-discovery? r2#sh ip protocol-discovery ? interface Show for a specific interface protocol Show stats about a pariticula protocol stats Show Stats top-n Show Top-N protocols by bytes | Output modifiers OK. so a command I've been using since 11.2 is no longer valid. except that it is on other routers. but look - still good on other routers: r3#sh ip prot? protocols r3#sh ip prot OK, check CCO, no record of any such command as show ip protocol-discovery in any command reference I check. A search of CCO for the phrase reveals nothing. now what? the IOS version in question is: r2#sh ver Cisco Internetwork Operating System Software IOS (tm) 3600 Software (C3620-JS56I-M), Version 12.1(5)T10, RELEASE SOFTWARE (f c2) sigh. have not run into this before, not in two trips through the lab, not on any number of routers and IOS versions, both at home and in customer installations. Anyone got any clue what show IP protocol-discovery does? sheesh.. another good shortcut down the tubes. Chuck Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=31842t=31817 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: OT - Firewall performance Comparisons - is it quitting time [7:30658]
A couple of points, and I will then get off of my soapbox... Checkpoint NG is STILL an application running on UNIX or NT, not a self contained appliance. Personally I love Microsoft (let the flames begin!), however, with the critical updates that I see getting installed on my 2000 and XP workstations I am POSITIVE that I would not want to trust my company security to it. Another point.. Have you ever installed and configured a Checkpoint firewall? You can have the PIX up and running with failover even before you get the OS half installed on the new server that you need to buy for it, thus raising the cost for an already more expensive solution in man-hours and equipment. The PIX is also very interoperable with other devices in the network. You can create PIX to PIX or PIX to IOS or PIX to 3000VPN site-to-site with other offices or home offices with built in 56bit DES or available 3DES . You can tunnel in VPN clients (free Cisco VPN client available). You can tunnel in Microsoft PPTP or L2TP sessions. And one last point, Have you ever had to get support from Checkpoint??? enough said about that one... If you would like to discuss further contact me offline... Tim - Original Message - From: [EMAIL PROTECTED] To: Sent: Wednesday, January 02, 2002 4:05 AM Subject: Re: OT - Firewall performance Comparisons - is it quitting time [7:30652] For quite a while CheckPoint is out performing every single Firewall in the market a specially in the CheckPoint Next Generation Firewall version and with the release of there SecureXL API. It is important to remember that performance is not everything that need to be compared while testing a Firewall. I love the Cisco PIX but the CheckPoint NG is amazing. Gil Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=30658t=30658 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: VPN [7:24231]
Have you looked at the Cisco 3000 series VPN concentrators? They are awesome! Very easy to setup and configure. Have an excellent client that currently supports Win95/98/ME/NT/2000/Linux and there is Mac support in beta now. It also has a hardware client (the 3002) if you need remote offices or home users with several machines. It will sit behind a Cable Modem or DSL and grab an IP and hand out DHCP (up to 254 addresses) inside. The 3000 series is also fully capable of creating site-to-site VPN connections with PIX and IOS routers as well as other 3000 series concentrators. They have 4 different models (I think) and the low end is very inexpensive. The top end scales to 10K concurrent connections and also fully supports VRRP for redundancy. If you want any more information just let me know! We have been using one for about 6 or 8 months and it has been perfect. The 3000 series also fully supports NAT, as it opens the packet up and looks at the actual IP address. Works great. Tim - Original Message - From: Brian Wilkins To: Sent: Sunday, October 28, 2001 11:51 AM Subject: RE: VPN [7:24231] I've used a few variations of VPN products and here are some thoughts that might help. 1. Use something that supports industry-standard specs such as IPSEC, ISAKMP, etc. In the past I have primarily used Shiva (now Intel) which is REALLY easy to deploy and manage, but is also very proprietary. Now we are switching VPN solutions, and will be forced to redistribute client software (bummer). I believe Intel's new solution is headed more in the direction of industry standard specs, but may not quite be there yet. 2. Consider how your internal Internet connectivity is configured. If you are using NAT for your internal users to get to the Internet, and are going to try to run VPN through a NAT'd address, you have a problem. Industry standard VPN (IPSEC) uses TCP, and does not play well with NAT (because of the port # switching, etc). There is currently a big discussion underway about how to get around this problem, which they claim will be resolved soon. If your VPN solution uses UDP, such as Shiva does (or did until Intel dropped the product recently), you can get away with NAT because you are using UDP. There was a good article in last month's edition of Information Security Magazine that explained it much better than I could hope to. Anyway, hope that helps. Since my company is also looking into replacing our VPN solution, I'd be glad to work together with you and compare notes as we go along through the process. So drop me an email if you are interested. Best Of Luck, Brian Wilkins CNE / MCSE / CCNP khramov wrote: Does anyone have any recomendations on VPN producs? Links to articles and personal experience woudl be great. As far as know Cisco VPN concentrators, Check Point, and Nokia rules the market. What is your opinion on that. Thanks, Alex [GroupStudy.com removed an attachment of type text/x-vcard which had a name of khramov.vcf] Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=24422t=24231 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Mulilayer Switch (MLS) on CAT 4006 [7:24142]
Layer 3 card for the Cat4003 and Cat4006 is the WS-X4232-L3. List is $14,995. Description below. Catalyst 4000 E/FE/GE L3 Module, 2-GE(GBIC),32-10/100 Tim - Original Message - From: Thomas To: Sent: Thursday, October 25, 2001 2:45 PM Subject: Mulilayer Switch (MLS) on CAT 4006 [7:24142] Hi All, I wonder if CAT 4006 switch support MLS? It doesn't seem to have a layer 3 card. I wonder if I can enable MLS using an external router, or pointing it to the MSFCs of a CAT 6500 that have MLS enabled? Thanks! Thomas N. Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=24153t=24142 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Cisco VPN Solutions [7:20468]
The VPN client FULLY supports Windows 2000 as well as Windows ME, 98, NT, and 95. The unified client is tons better than the old client that Cisco had out. The new Unified client fully supports end user termination into the VPN Concentrators (3000 currently, 5000 series soon) and the PIX 6.0 and up code. The termination to IOS is slated for later this year, I hear. Tim - Original Message - From: Andras Bellak To: Sent: Thursday, September 20, 2001 10:15 AM Subject: RE: Cisco VPN Solutions [7:20468] One thing to be aware of - the VPN client doesn't (at least didn't last time I looked) support Windows 2000. It also has (once again, possibly should be had) big issues with some ISPs, especially aol and netzero. I have to agree with the other folks, the concentrator (we have 3 vpn-3030 systems deployed around the world) is rock solid - I've only ever had one hang. The cisco VPN hardware solution is a great fit for home offices connecting to the concetrator, and the 806 router also works very well. I've used the client to pix, and while it works fine, it's a real p.i.t.a. Andras -Original Message- From: Neil Borne [mailto:[EMAIL PROTECTED]] Sent: Thursday, September 20, 2001 6:33 AM To: [EMAIL PROTECTED] Subject: RE: Cisco VPN Solutions [7:20468] The better, but more costly choice is the concentrator, you have a lot less issues to worry about than w/ IOS.Either pay now or pay for it later P. Neil Borne, CCDA,CCNP and C-voice Systems Integrator III From: Hyde, Lori Reply-To: Hyde, Lori To: [EMAIL PROTECTED] Subject: RE: Cisco VPN Solutions [7:20468] Date: Thu, 20 Sep 2001 08:42:52 -0400 I've used both the IOS and the concentrator solutions. I have found the concentrator solution to be more expensive, but absolutely rock solid. The IOS solution is less expensive, but there are many bugs even with the latest versions. Lots of headaches here. My recommendation: if you have the bucks, go with the concentrator. By far the better choice from a maintenance and reliablity aspect. Lori -Original Message- From: Bob Johnson [mailto:[EMAIL PROTECTED]] Sent: Wednesday, September 19, 2001 6:46 PM To: [EMAIL PROTECTED] Subject: Cisco VPN Solutions [7:20468] Hi, I'm looking for comments about various Cisco VPN options allowing access from a home workstation.. As far as I know my options are: 1) Cisco PIX accessed by VPN Client 1.1 2) Cisco 3000 (or 5000) Concentrator accessed by VPN client 3.1 3) Cisco IPsec IOS access by VPN Client 1.1 It would seem that option 3 is the most cost effective (assuming you already have the hardware, you just need to purchase the correct IOS).. Anyone with hints/info/caveats? Appreciate any feedback from people actually using the IOS and the VPN client... Thanks _ Get your FREE download of MSN Explorer at http://explorer.msn.com/intl.asp Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=20552t=20468 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Security Specialization enq ?? [7:14447]
The PIX 506 is 2 10Meg interfaces only (not fast ethernet). The unrestricted and restricted has no bearing on the number of simultaneous connections anymore other than the fact that the UR supports more memory which will get you more connections. There is no hard limit set on R or UR, only guidelines. The UR license give you additional interfaces, failover, additional memory, etc... Tim - Original Message - From: Matthew Crane To: Sent: Wednesday, August 01, 2001 7:56 AM Subject: RE: Security Specialization enq ?? [7:14447] Hi Here is a quick product run down for you PIX 506 - Fixed configuration of 2 Fast Ethernet interface, 32MB RAM 8MB Flash and no space for VPN acceleration. This unit is ideal for 99% of what you will be asked in the MCNS, PIX Fundamentals PIX Advanced exams. All the remaining PIX units coma es follows: a. 515, 525 535 come with 16Mb flash, support VPN accelrator cards and support failover. NOTE Failover only works if you buy the Unrestricted license unit. b. 515 525 come with 2 FE interfaces c. Memory 515 = 32 or 64MB 525 = 128 or 256MB 535 = 512 or 1024MB d. Processor - subject to change 506 515 = 200MHz 525 = 350MHz 535 = 1.0GHz Unrestricted Restricted relates to the number of simulatneous sessions supported by each PIX. The values for restruicted vary accoridng to the box and memory installed. You need to check on cco to see what the current values are. For failover you must use the UR license. Pricing - If you buy a failover bundle i.e. a pair of PIX firewalls then you should find the 2nd unit is about 1/3 the price opf the 1st unit if you buy them together. Having done MCNS, CPFF, CPFA, CSIDS, CSVPN CISSP, I would suggest/recommend you concentrate on the following areas for MCNS PIX. BTW as I do training on this stuff I take the exams about once every 8 weeks just so I know what Cisco/promteric are up to. a. The how why of developing a corporate security policy b. IKE, ISAKMP PKI especially the hashing functions and when they are applied and the process of developing a VPN. c. PIX commands to know inside out and back to front apart from getting the Boson tests, although these are easier than the real thing. WARNING the PIX tests especially are very badly written and ambiguous, but here are some pointers clear xlate nat0 crypto aaa new-model user configuration mode commands and how to switch between the two Difference between commands for firewall IOS firewall feature set Understand failover process and timeings, cable length Get to know which models support how many interfaces. Make sure you know PIX software pre version 6 as the exam has not taken V6 into account yet. BTW I would suggest you do MCNS, the 2 PIX and CSVPN as that really only involves 1 lot of revision. CSIDS on the other hand well i hope you know your Solaris. Good luck and if you want any more help then please feel free to contact me offline on [EMAIL PROTECTED] NKP wrote: Hi , I wanted to know what is the difference between the two following PIX Firewall 500 series 1) PIX 515 Failover PIX 515 Failover (Chassis, software, two 10/100 and 2) PIX 515 Restricted Bund PIX 515R Bundle (Chassis, restricted SW, 2 FE port I want to prepare for the Security Specialization track , could anyone guide me what is the hardware/s ware I should go for and how I should pursue my training . I am planning to attend the course for MCNS as well by September . -- Navin Parwal Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=14473t=14447 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: MPLS 641-910 [7:14521]
I would say that these 2 books would probably be a very good place to start... http://www.ciscopress.com/book.cfm?book=168 http://www.ciscopress.com/book.cfm?book=111 Tim - Original Message - From: Muhammad Zahid To: Sent: Wednesday, August 01, 2001 1:09 PM Subject: MPLS 641-910 [7:14521] Dear all, Any one preparing for it ...and want to share knowledge with me. please guide me where can i get the MPLS 641-910 material. Kindest Regards Muhammad Zahid Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=14532t=14521 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Help , help I need Connect 1750 router to isp!!!!!!! [7:1145]
Maybe this could work? There are many sample configs on the Cisco site... You outta check it out sometime http://www.cisco.com/warp/public/105/37.html Tim - Original Message - From: "Josi Miguel Pirez P." To: Sent: Wednesday, April 18, 2001 5:23 PM Subject: Help , help I need Connect 1750 router to isp!!! [7:1142] Hello , boys I need connect router 1750 to the internet by AUX port , please send me example configuration Thank Josi Miguel Pirez P. Network Engineer, CCNA, MCP. FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=1145t=1145 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: 2 8mb flash partitions
On a 2500, you will have to boot from TFTP or some other method. After you boot via TFTP you should be able to go in and erase the second flash and then do a "partition flash 1 16". Then you should be able to TFTP the new code on just as if you were doing it on the single 8meg flash. Tim - Original Message - From: "Circusnuts" [EMAIL PROTECTED] To: [EMAIL PROTECTED]; "Fred Danson" [EMAIL PROTECTED] Sent: Sunday, April 08, 2001 10:24 PM Subject: Re: 2 8mb flash partitions I believe the actual command is #no partition FLASH - Original Message - From: "Fred Danson" [EMAIL PROTECTED] To: [EMAIL PROTECTED] Sent: Monday, April 09, 2001 3:51 AM Subject: 2 8mb flash partitions Hey Group, I noticed that one of my 2500 routers which has a total of 16mb of flash on 2 SIMMs has the flash split up into 2 partitions. If I wanted to put an IOS on the router which was larger than 8mb, would it work? Is it possible to span a file over multiple flash SIMMs? Thanks in advance, Fred _ Get your FREE download of MSN Explorer at http://explorer.msn.com _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: 2 8mb flash partitions
Notice the "read only" on the flash... On the router with 2 partitions you will probably see one as read/write and one as read only. The 2500 runs from flash, hence you have to boot from TFTP to keep the flash clear. After you boot from TFTP you will be able to repartition and manipulate the flash however you want. So boot from TFTP, erase the second flash partition, do a partition flash 1 16. Reboot and you should have 1 16 meg flash partition. Tim - Original Message - From: "Circusnuts" [EMAIL PROTECTED] To: [EMAIL PROTECTED]; "Rose, Jim - Contractor" [EMAIL PROTECTED] Sent: Monday, April 09, 2001 5:27 AM Subject: Re: 2 8mb flash partitions You must not have tried this then... I have a hundred or so 4000, 4500, 4700, 2500 routers running in the IRS network (from DC to Ogden Utah) running either (2) 4 Megs or (2) 8 Megs.- all reading as one partition. I assure you, it works I can hear the fans running in my 2511 with (2) 8 Megs sticks, loaded with 12.1(3)T. termservsh ver Cisco Internetwork Operating System Software IOS (tm) 2500 Software (C2500-I-L), Version 12.1(3)T, RELEASE SOFTWARE (fc1) Copyright (c) 1986-2000 by cisco Systems, Inc. Compiled Wed 19-Jul-00 06:05 by ccai Image text-base: 0x03042200, data-base: 0x1000 ROM: System Bootstrap, Version 11.0(10c), SOFTWARE BOOTFLASH: 3000 Bootstrap Software (IGS-BOOT-R), Version 11.0(10c), RELEASE SOFT WARE (fc1) termserv uptime is 3 days, 11 hours, 7 minutes System returned to ROM by reload System restarted at 01:11:41 UTC Fri Apr 6 2001 System image file is "flash:c2500-i-l.121-3.T.bin" cisco 2511 (68030) processor (revision M) with 14336K/2048K bytes of memory. Processor board ID 09297003, with hardware revision Bridging software. X.25 software, Version 3.0.0. 1 Ethernet/IEEE 802.3 interface(s) 2 Serial network interface(s) 16 terminal line(s) 32K bytes of non-volatile configuration memory. 16384K bytes of processor board System flash (Read ONLY) Configuration register is 0x2102 What command sequence did you try ??? Phil - Original Message - From: "Rose, Jim - Contractor" [EMAIL PROTECTED] To: "'Circusnuts'" [EMAIL PROTECTED] Sent: Monday, April 09, 2001 9:52 AM Subject: RE: 2 8mb flash partitions It will not work, the flash must be on one stick. If you have two sticks you can put one IOS on each, but you can not bridge over multiple sticks. I tried. Jim -Original Message- From: Circusnuts [mailto:[EMAIL PROTECTED]] Sent: Sunday, April 08, 2001 10:25 PM To: [EMAIL PROTECTED]; Fred Danson Subject: Re: 2 8mb flash partitions I believe the actual command is #no partition FLASH - Original Message - From: "Fred Danson" [EMAIL PROTECTED] To: [EMAIL PROTECTED] Sent: Monday, April 09, 2001 3:51 AM Subject: 2 8mb flash partitions Hey Group, I noticed that one of my 2500 routers which has a total of 16mb of flash on 2 SIMMs has the flash split up into 2 partitions. If I wanted to put an IOS on the router which was larger than 8mb, would it work? Is it possible to span a file over multiple flash SIMMs? Thanks in advance, Fred _ Get your FREE download of MSN Explorer at http://explorer.msn.com _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Can you have more than one SPAN port on Catalyst 6505?
You sure can see here for details... http://www.cisco.com/univercd/cc/td/doc/product/lan/cat6000/sft_6_1/configgd /span.htm http://www.cisco.com/univercd/cc/td/doc/product/lan/cat6000/sft_6_1/configgd /span.htm#15238 You can also use VACLS to push your traffic through the IDS... http://www.cisco.com/univercd/cc/td/doc/product/lan/cat6000/sft_6_1/configgd /acc_list.htm#xtocid929046 http://www.cisco.com/univercd/cc/td/doc/product/lan/cat6000/sft_6_1/configgd /acc_list.htm#xtocid92906 Tim "Ruihai An" [EMAIL PROTECTED] wrote in message 9a0fri$8hf$[EMAIL PROTECTED]">news:9a0fri$8hf$[EMAIL PROTECTED]... We need at least two SPAN ports on each 6505 switch to connect our IDS and Sniffer. When we config the second SPAN, it always overwrite the prevously configured SPAN port. It seems you can not configure more than more than two SPAN on one switch. I am not sure if that is true. Thanks Ruihai _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Question
It was released last week.. It is available on CCO as of Monday this week... If you have any problems getting to it, let me know... Tim ""Parris, Brian"" [EMAIL PROTECTED] wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... Has Cisco come out with a version of Cisco Secure VPN Client software yet, that is compatible with Windows 2000. I can't buy laptops with NT anymore and this is putting me in a real bind. Thanks, Brian _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: 2523
The config reg setting of 0x3920 is the Console port set to 115200,8,N,1. You can either set your Hyperterm to the previously mentioned settings or telnet in and force the speed of the "line con 0" to 9600 Tim - Original Message - From: "Circusnuts" [EMAIL PROTECTED] To: "Stull, Cory" [EMAIL PROTECTED]; [EMAIL PROTECTED] Sent: Wednesday, March 14, 2001 5:35 PM Subject: Re: 2523 I have no idea why or what you have done (0x3920 :-) The only superior BREAK command I know is to lower Hyper Term to 1200 (reset the Hyper Term window) power the router off/on. Hold the space bar for 5 seconds while powering the router on, you should see some garble in the top left of the screen (may have to do this a couple of times for it to take). This sends the manual BREAK signal that commands sometimes do not. Lastly- change everything back. Other than the above, call the TAC or pull the FLASH so it will only boot to ROM (then change your config values back to 0x2102 or o/r 0x42). Let us know how you make out !!! Phil - Original Message - From: "Stull, Cory" [EMAIL PROTECTED] To: [EMAIL PROTECTED] Sent: Wednesday, March 14, 2001 11:03 PM Subject: 2523 We've got a 2523 in the office that we changed the config-reg settings to 0x3920 and it now won't let us into it at all... We've tried to ctrl-break out during boot and its not helping... Any other suggestions? Thanks _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re:
Have a look at RFC 1700 http://www.ietf.org/rfc/rfc1700.txt Tim - Original Message - From: "Heidi white" [EMAIL PROTECTED] To: [EMAIL PROTECTED] Sent: Wednesday, March 07, 2001 10:53 AM Anyone know of a site that would list all ports? Or a specific link on the cisco site? I've looked through pages upon pages with no luck. Heidi __ Do You Yahoo!? Get email at your own domain with Yahoo! Mail. http://personal.mail.yahoo.com/ _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: About PIX 520 update
You will need to update your smartnet contract, contact your reseller or the local Cisco office... Tim - Original Message - From: "wangjun" [EMAIL PROTECTED] To: [EMAIL PROTECTED] Sent: Thursday, March 01, 2001 3:48 AM Subject: About PIX 520 update hi,all! can someone help to update our PIX 520 from IOS 4.3(2) to IOS 4.4(5).Because my cco account can't download IOS 4.4(5) for PIX 520 so I only need someone help me ! Ö Àñ£¡ wangjun [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: TCP Load Balancing with a PIX
Jim, Load Balancing is not currently a feature of the PIX. This is what the Local Director or the Content Switches are for. Tim "Jim Barksdale" [EMAIL PROTECTED] wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... I know using a Router and NAT you can map a single external address to a virtual host with an internal address, which then load balances across several real hosts. (TCP Load Balancing) Can the same thing be done on a PIX? I currently have 1 web server on the DMZ and want to add a second web server (mirror of the first). I then want to load balance across the two of them. I don't have the budget to buy a 'Local Director'. Thanks for your help Jim _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Cisco PIX : Static and Conduit command
Actually, Nabil, that is not true at all. The conduit command is not going anywhere anytime soon. The push is towards an interface based acl list, which is easier done with the access lists rather than the conduit commands. ""Nabil Fares"" [EMAIL PROTECTED] wrote in message news:[EMAIL PROTECTED]... That's true, conduits are going away. The only reason you see them is for backward compatibility issues. Definitely use static commands with access-lists. Its a two-step process, but its a nice feature. HTH Nabil -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of [EMAIL PROTECTED] Sent: Thursday, February 15, 2001 2:51 AM To: [EMAIL PROTECTED] Subject: Cisco PIX : Static and Conduit command Does anybody know about the advantage of having static conduit command compare with access-list/access-group command in PIX?. I heard that the static conduit will no longer available in the future realease. Is it True??. Thanks. _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Port Redirection
The fixup will requite the people outside to use that port also. He is looking for (PAM) Port Address Mapping. It will be available in the 6.0 version hopefully to be shipping in March/April. Tim - Original Message - From: "Nabil Fares" [EMAIL PROTECTED] To: "Scott M. Trieste" [EMAIL PROTECTED]; [EMAIL PROTECTED] Sent: Friday, February 23, 2001 9:45 AM Subject: RE: Port Redirection Hi Scott, You can add fixup protocol to point port whatever: fixup protocol http 4003 The trick about fixup is that it examines the http protocol for any other embedded protocols (I hope this made some sense!). This is just another way to deploy http server on different port then 80. I'm really not sure whether this works for your scenario or not. HTH, Nabil -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Scott M. Trieste Sent: Thursday, February 22, 2001 5:55 PM To: [EMAIL PROTECTED] Subject: Port Redirection Colleagues, I am trying to achieve port redirection on a PIX-520. We have an application that only accepts connections on a user-definable port but some of our customers don't allow any inbound traffic other than 80/443. Is there any way to redirect inbound (port 80) traffic to a user-definable port(ie 4003). If possible, I'd like to make this happen on a PIX-520. My feeling is that a feature of NAT will allow me to do this. Any insight is appreciated. Thanks in advance. -Scott M. Trieste _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: 4 Ethernet Int
Looks like you could do a Cisco 3620 with (2) NM-2FE2W and IOS 12.1.1T and 8x5xNBD Smartnet for $9,900 list. This will give you 4 Fast Ethernet interfaces and 4 Wic slots for WAN cards. If you are running this configuration and routing 4 Fast Ethernet segments I would recommend maxing the memory in the little guy.. If you are looking at routing other protocols you will probably have to upgrade the memory... Let me know if you have any questions. Tim - Original Message - From: "Avila, James" [EMAIL PROTECTED] To: [EMAIL PROTECTED] Sent: Wednesday, February 21, 2001 3:59 PM Subject: 4 Ethernet Int New to the cisco world. Does anyone know what the smallest Cisco router I can place 4 routable fast ethernet interfaces might be? TIA _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Firewall Traffic - What Is The Bandwidth Limit Of A PIX?
It depends on what kind of bandwidth you are talking about (encrypted or not) but here are the current throughputs for the different PIX firewalls. Aggregate Full Duplex Clear Text (Mbps): 515R - 120 515UR - 170 520 - ~370 525 - ~370 535 - 1,000 (Yep.. 1Gbps!) If you need anythin else, let me know... Tim - Original Message - From: "Christopher Kolp" [EMAIL PROTECTED] To: [EMAIL PROTECTED] Sent: Tuesday, February 20, 2001 12:37 PM Subject: Firewall Traffic - What Is The Bandwidth Limit Of A PIX? This question is a bit off target from the list but maybe someone can shed some light on this My company is looking to purchase firewalls for our OC-12 circuits. I know in the past, bandwidth was a serious issue with firewalls ie. not being able to pass traffic fast enough. Has anyone had any experience with this? We brought a Nokia in for testing and found it choked at 40Mbs. I realize that every manufacturer would like to sell the world and claim unreal numbers, so I'm asking for any advice! Thanks!! Ck _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Boot Problems on a 7200
Roger, You need to take a look and see what you purchased with the router. Legally, if you purchased IPonly software you shoul;d download the newest version of IPonly. If you purchased desktop (for IP, IPX, etc..) then you should download desktop. If you do a sho flash are there any other images in the flash or can you not even get that far? You will also need to check and make sure that you have the correct release for the hardware that you have installed in the router. Certain blades only work with certain code. You will find a hardware/software compatability matrix on the download page. If you have any other questions let me know. Tim - Original Message - From: "Roger Sohn" [EMAIL PROTECTED] To: "'Tim O'Brien '" [EMAIL PROTECTED]; "'Steve Smith '" [EMAIL PROTECTED]; "Roger Sohn" [EMAIL PROTECTED]; [EMAIL PROTECTED] Sent: Tuesday, February 20, 2001 12:46 PM Subject: RE: Boot Problems on a 7200 When I go to CCO to download an IOS image, how do I know which type is the "full version" that I need to download? Is it the Enterprise or IP image? I tried to download and use the "Boot Image" off of CCO, but when I boot off of it...The router gives me a "CPU ID Error" when it tries to load that image on start. How do I determine if it's an RX boot image or a regular full version boot image? You are right though because that only image that I'm booting off of now is merely 3 megs. Thanks for your help and sorry if I'm asking too many questions. I can't seem to find a help page or FAQ on this stuff. -Roger -Original Message- From: Tim O'Brien To: Steve Smith; Roger Sohn; [EMAIL PROTECTED] Sent: 2/20/2001 8:05 AM Subject: Re: Boot Problems on a 7200 Your problem is the version/type of code that you are running. You will need to download the full version of IOS from CCO. The version that you have is an rxboot image. ROM uses this code to boot. I believe that if you can go in and look at the flash you will see that the image is only about 1.5 meg where a full IOS image would be at least 5 megs or larger. You will probably have to use the TFTPDNLD command in ROM to upgrade to the new IOS code. http://www.cisco.com/univercd/cc/td/doc/product/software/ios112/112cg_cr /1cb ook/1csysim.htm#xtocid2402288 Hope that helps.. Tim - Original Message - From: "Steve Smith" [EMAIL PROTECTED] To: "Roger Sohn" [EMAIL PROTECTED]; [EMAIL PROTECTED] Sent: Tuesday, February 20, 2001 9:37 AM Subject: RE: Boot Problems on a 7200 Is the following statement in your config? boot system flash slot0:c7200-boot-mz.120-10.S.bin .I have seen that problem when the statement is not in there. regards, Steve -Original Message- From: Roger Sohn [mailto:[EMAIL PROTECTED]] Sent: Tuesday, February 20, 2001 2:42 AM To: [EMAIL PROTECTED] Subject: Boot Problems on a 7200 I've tried searching massively through CCO and can't seem to find the solution to this problem. I have a Cisco 7206VXR and everytime I try to boot it up, everything is dandy...but it always comes to the prompt of "Router(boot)". This is the output when I run a "show version". It says that the system is returned to ROM by reload. Is this tied in with the problem? I currently have it set to boot off the flash disk with the image of c7200-boot-mz.120-10.S. Am I missing something? -Roger --- Cisco Internetwork Operating System Software IOS (tm) 7200 Software (C7200-BOOT-M), Version 12.0(10)S, EARLY DEPLOYMENT RELEA SE SOFTWARE (fc1) Copyright (c) 1986-2000 by cisco Systems, Inc. Compiled Fri 24-Mar-00 15:54 by htseng Image text-base: 0x60008900, data-base: 0x60684000 ROM: System Bootstrap, Version 12.0(19990210:195103) [12.0XE 105], DEVELOPMENT S OFTWARE California uptime is 4 minutes System returned to ROM by reload System image file is "disk0:c7200-boot-mz.120-10.S" cisco 7206VXR (NPE300) processor with 57344K/40960K bytes of memory. R7000 CPU at 262Mhz, Implementation 39, Rev 2.1, 256KB L2, 2048KB L3 Cache 6 slot VXR midplane, Version 2.0 Last reset from power-on Bridging software. X.25 software, Version 3.0.0. 3 FastEthernet/IEEE 802.3 interface(s) 8 Serial network interface(s) Router(boot)# _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Does a PIX Route (was Re: Firewalls and VPNs)
It is all a matter of security. Are you sure that you want your firewall just blindly passing routing information into your network? Someone on the outside could spoof as a neighbor router, inject some bad routes or routing information to your checkpoint box, and the next thing you know is that your whole network is no longer functioning... Tim - Original Message - From: "Yonkerbonk" [EMAIL PROTECTED] To: "anthony kim" [EMAIL PROTECTED]; "Jason" [EMAIL PROTECTED]; [EMAIL PROTECTED] Sent: Sunday, February 18, 2001 1:40 AM Subject: Re: Does a PIX Route (was Re: Firewalls and VPNs) Is there any good reason why the PIX doesn't route? Why it doesn't run OSPF? A Checkpoint firewall running on a Solaris box would be able to run OSPF or something, right? Why not a PIX? Michael --- anthony kim [EMAIL PROTECTED] wrote: Does your pix have a default route? Does your pix forward packets between subnets? Logically, then, the pix routes. Call it what you will, when forwarding between disparate networks, you route. I suppose cisco misunderstands the term "route" too. http://www.cisco.com/univercd/cc/td/doc/product/iaabu/pix/pix_v42/pix42cfg/p ix42apa.htm#xtocid88422 Here's from Cisco: route Command The following are the extensions to the route command: The routing table has been improved to let you specify the IP address of a PIX Firewall interface in the route command. If the route command statement uses the IP address from one of the PIX Firewall unit's interfaces as the gateway IP address, PIX Firewall will ARP for the destination IP address in the packet instead of ARPing for the gateway IP address. PIX Firewall also does not accept duplicate routes with different metrics for the same gateway. In version 5.1(1), the CONNECT route entry is supported. (This identifier appears when you use the show route command.) The CONNECT identifier is assigned to an interface's local network and the interface IP address, which is in the IP local subnet. PIX Firewall will use ARP for the destination address. The CONNECT identifier cannot be removed, but changes when you change the IP address on the interface. You can now enter duplicate route command statements with different gateways and metrics. You can now enter static route command statements with virtual subnets; for example: route outside 10.2.2.8 255.255.255.248 192.168.1.3 route outside 10.2.2.8 255.255.255.255 192.168.1.1 --- Jason [EMAIL PROTECTED] wrote: As someone said yesterday: The PIX will not route, period. It will NAT (including NAT 0), but it will not route packets between different networks. If you need routing off any interface on a PIX, you need a router there. -- Jason Roysdon, CCNP+Security/CCDP, MCSE, CNA, Network+, A+ List email: [EMAIL PROTECTED] Homepage: http://jason.artoo.net/ Cisco resources: http://r2cisco.artoo.net/ "anthony kim" [EMAIL PROTECTED] wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... A device can best be described by its chief function. You can use a PIX as a router, just allow everything through. In fact you can use a router as a firewall, be selective with access lists. Terminology is flexible as long as you're pragmatic about function. On Fri, Feb 16, 2001 at 10:52:06AM -0800, Dan West wrote: PIX - sounds like a router to me - packet forwarding based on layer 3 addressing. It has extra security features and all of a sudden it's a firewall...marketing fluff? or accurate description??? who will uncover this mystery ; --- mtieast [EMAIL PROTECTED] wrote: I think this comes from the fact that cisco instructors in class say that the Pix is not a router. I have heard this as well when I had the class. I know the Pix is not a router, but does it route? Well, if making decisions about where to send traffic based on layer 3 info is routing then I would argue it does route. It does not forward traffic based on layer 2 info so .. It routes traffic to the appropriate interface. Can someone else shed some light as to why this is said. If it doesn't route the traffic it recieves what does it do? -Original Message- From: haroldnjoe [EMAIL PROTECTED] Newsgroups: groupstudy.cisco To: [EMAIL PROTECTED] [EMAIL PROTECTED] Date: Friday, February 16, 2001 12:41 PM Subject: Firewalls and VPNs I've read here a couple of times that PIX's don't route. Period. In light of this I'm left a little confused as to a proposed network map I was given recently. The core layer router is a 3640 linking all of our branch offices together. From the 3640, there is an ethernet connection to a PIX 515R. From the PIX, there is another ethernet connection to a 1750
Re: Firewalls and VPNs
Actually, Jason, a PIX will route. The only problem is that it is not designed to do it (there are no WAN interfaces available for it.) And as such is not very scalable. How do you plan on moving traffic if you have 6 to 10 interfaces with 6 to 10 different networks in a PIX? You use STATIC routes. Tim - Original Message - From: "Jason" [EMAIL PROTECTED] Newsgroups: groupstudy.cisco To: [EMAIL PROTECTED] Sent: Friday, February 16, 2001 11:27 PM Subject: Re: Firewalls and VPNs As someone said yesterday: The PIX will not route, period. It will NAT (including NAT 0), but it will not route packets between different networks. If you need routing off any interface on a PIX, you need a router there. -- Jason Roysdon, CCNP+Security/CCDP, MCSE, CNA, Network+, A+ List email: [EMAIL PROTECTED] Homepage: http://jason.artoo.net/ Cisco resources: http://r2cisco.artoo.net/ "anthony kim" [EMAIL PROTECTED] wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... A device can best be described by its chief function. You can use a PIX as a router, just allow everything through. In fact you can use a router as a firewall, be selective with access lists. Terminology is flexible as long as you're pragmatic about function. On Fri, Feb 16, 2001 at 10:52:06AM -0800, Dan West wrote: PIX - sounds like a router to me - packet forwarding based on layer 3 addressing. It has extra security features and all of a sudden it's a firewall...marketing fluff? or accurate description??? who will uncover this mystery ; --- mtieast [EMAIL PROTECTED] wrote: I think this comes from the fact that cisco instructors in class say that the Pix is not a router. I have heard this as well when I had the class. I know the Pix is not a router, but does it route? Well, if making decisions about where to send traffic based on layer 3 info is routing then I would argue it does route. It does not forward traffic based on layer 2 info so .. It routes traffic to the appropriate interface. Can someone else shed some light as to why this is said. If it doesn't route the traffic it recieves what does it do? -Original Message- From: haroldnjoe [EMAIL PROTECTED] Newsgroups: groupstudy.cisco To: [EMAIL PROTECTED] [EMAIL PROTECTED] Date: Friday, February 16, 2001 12:41 PM Subject: Firewalls and VPNs I've read here a couple of times that PIX's don't route. Period. In light of this I'm left a little confused as to a proposed network map I was given recently. The core layer router is a 3640 linking all of our branch offices together. From the 3640, there is an ethernet connection to a PIX 515R. From the PIX, there is another ethernet connection to a 1750 router. The 1750 connects via T1 to our ISP. There is yet another ethernet connection from the PIX to the isolation lan, on which resides an internet mail/web server and a VPN 3000 concentrator. If PIX's don't route, what subnet is the isolation lan going to sit on? As I understand it, the PIX will be providing NAT functionality for the 3640 and everything behind it. So I would assume that the T1 and ethernet interfaces on the 1750, the outside interfaces on the PIX, and everything in the isolation lan including the VPN concentrator will have to have public IP addresses which will be given to us by our ISP. The way the map is layed out, it looks to me like the isolation lan would have to be on its own subnet. What am I missing? If the PIX doesn't route, do it's ethernet interfaces reside on the same subnet as the isolation lan? If so, then the ethernet interface on the 1750 must also be on that subnet, right? This is the proposed network map that Cisco's presale engineers gave me. I'm sure it's a solid design, but I'm still trying to work out the details so that I understand what I'm implementing (always a good thing, I think). Thanks for your time, [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] = from The Big Lebowski... The Dude: You sure he won't mind? Bunny: Dieter doesn't care about anything. He's a nihilist. The Dude: Ohhh, that must be exhausting... __ Do You Yahoo!? Get personalized email addresses from Yahoo! Mail - only $35 a year! http://personal.mail.yahoo.com/ _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL
Re: Pix Firewall Issue
Kevin, The newest Cisco VPN3000 client (I believe that it is 2.6b and should be on CCO within a week or 2) that supports Win2000 will terminate to a PIX running 5.2 (I believe) or newer. I would suggest loading your 515 with the newest code (5.3.1). You should be getting another email from me with the link to the code. Grab the VPN software when available. Tim O'Gilvie"" [EMAIL PROTECTED] wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... Does anyone know of a vpn client for Windows 2000, I have Cisco Secure but it doesnt run on 2000, I need to implement a vpn solution for my company that will integrate with the PIX 515 that I just purchased.. Regards, Kevin From: "Kenny Sallee" [EMAIL PROTECTED] Reply-To: "Kenny Sallee" [EMAIL PROTECTED] To: [EMAIL PROTECTED] Subject: Re: Pix Firewall Issue Date: Wed, 7 Feb 2001 15:55:14 -0800 Actually it's not a good idea to do a 'conduit permit icmp any any'. If you want ping traffic to originate inside then do this: conduit permit icmp 208.184.23.0 255.255.255.0 any echoreply Think about the way ping works - your workstation sends an icmp echo - the end station sends an icmp echo-reply - which from the PIX standpoint is a new inbound packet ( cuz it's stateless ). Therefore - let the echo-reply in only. Not all ICMP messages. Kenny "Daniel Cotts" [EMAIL PROTECTED] wrote in message 303479FA060CD211B893F805A88AA10F4C@EXCHANGE1">news:303479FA060CD211B893F805A88AA10F4C@EXCHANGE1... You're not telling us from where you are pinging. From the PIX? From a host behind the Firewall? From a host outside the Firewall? Anyway this command is good to have in later versions if you want pings to traverse the PIX. conduit permit icmp any any You may also want to modify that command or eliminate it, if you want to enforce a stronger policy. http://www.cisco.com/univercd/cc/td/doc/product/iaabu/pix/pix_v50/config/co n fig.htm#xtocid1091627 -Original Message- From: exchange [mailto:[EMAIL PROTECTED]] Sent: Wednesday, February 07, 2001 1:09 PM To: '[EMAIL PROTECTED]' Subject: Pix Firewall Issue Hi Gang, I have a Pix Firewall 520 and wondered if this was a feature or a configuration issue on my firwall. We have an entire class C address say 208.184.23.x to use for our network. We use the 192.168.1.x network for our internal network. I am having problems pinging a machine's Internet ip address say 208.184.23.11 which I noticed is statically mapped to it's internal address say 192.168.1.10 on the pix. For example, If I ping another box 208.184.23.12 and not statically mapped to a internal ip address on the pix, I get a response. Any help or hints would be greatly appreciated. Thanks! _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ Get your FREE download of MSN Explorer at http://explorer.msn.com _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: CCIE vs CCNP
Chan, I will have to disagree with you there. I took and passed my CCIE written today. It is a lot closer in form and content to the CID test than the old ACRC test that I had taken to get my CCNP. The difficulty comes in the wide variety of topics that are covered. There was nothing on that test that was very deep, however, you need to know everything from Apollo to Token Ring RIF's to OSPF, to TACACS+, to.. well.. you get the picture. Anyways, I looked through the Lammle CCIE book after I took the test and saw a lot of good information in there. The Lucent Netcare CCIE Prep Kit was CRAP... I also bought the exam cram but did not have a chance to read it before I tested. Tim "Changchun Xie" [EMAIL PROTECTED] wrote in message 96hnf4$k5$[EMAIL PROTECTED]">news:96hnf4$k5$[EMAIL PROTECTED]... The CCIE written test is much more difficult than the CCNP. It covers a lot of topics that CCNP not. I passed CCIE written first. The score is not high. After than, I did all 4 CCNP exams within one week and they are quite easy. I did my CCNP just for changing job. Anyway, CCNP is a certificate and then CCIE qualification exam not. You'd better go CCNP first and get good job opportunities to work on CCIE. Chan. ""James"" [EMAIL PROTECTED] wrote in message 96fa9g$kfr$[EMAIL PROTECTED]">news:96fa9g$kfr$[EMAIL PROTECTED]... Is it reasonable to take the CCIE written instead of CCNP? I've been working with Cisco equipment and software for over 10 years and decided to go ahead with certification. The CCNP looks like a good choice, but it appears the CCIE written only requires a few more months of study. Of course, the lab is a different story. Has anyone tried this? _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Cisco secure policy manager
Win2000 will be supported in ver 2.3 which should be out shortly. It is in beta now... Tim ""John Hardman"" [EMAIL PROTECTED] wrote in message 96i2jb$4j4$[EMAIL PROTECTED]">news:96i2jb$4j4$[EMAIL PROTECTED]... Hi It won't install, comes back with something like "Requires NT 4 or Higher" what a laugh! -- John Hardman CCNP MCSE+I ""ML"" [EMAIL PROTECTED] wrote in message 96hqpe$dmc$[EMAIL PROTECTED]">news:96hqpe$dmc$[EMAIL PROTECTED]... Any particular reason why? I am not sure what you mean, wont install, wont run as in function? I know Cisco says they dont support it on 2000 but that is different than wont work. Thanks, ML Manny Colon [EMAIL PROTECTED] wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... Will not work with 2000 Regards, Manny Colon Computer Services Information Builders Inc. ML wrote: Anyone try running CSPM on a Windows 2000 box. Let me know how it worked. THanks, ML _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] -- _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Passed CCIE Written
It is still available. http://www.cisco.com/warp/public/767/tre/aset/aset.shtml Tim - Original Message - From: "perryb" [EMAIL PROTECTED] To: [EMAIL PROTECTED] Sent: Wednesday, February 07, 2001 4:16 PM Subject: Re: Passed CCIE Written Congrats on the written! I bombed two weeks ago by one point, stupid mistakes, and will be heading back for a retake next week. Cisco used to have a program for the SEs of resellers named "Advanced SE Training." They brought you under their wing, mentored, and provided access to the actual lab where the testing will take place - for three days of practice and critique. I don't know if the program is still available (by the way, it is free), but you should be able to find the particulars by doing a search of "AET" on CCO. Good luck on your practical. --perry - Original Message - From: "Hal White" [EMAIL PROTECTED] To: [EMAIL PROTECTED] Sent: Wednesday, February 07, 2001 8:56 AM Subject: Passed CCIE Written I passed the CCIE Written yesterday morning. I had taken the CCIE written about a month ago but the test crashed and I had to fight with Cisco and Prometric for a month before I could take it again for free. I read Caslow's book, Routing TCP/IP Vol. 1 by Jeff Doyle, the token ring white papers and the exam cram book. The token ring white papers were very helpful in understanding bridging because I do not work with it at all. I already had my CCNP and CCDP so this also helped and I would not recommend taking the CCIE written without having finished at least your CCNP certification. I also took the certification zone test before I took the exam last month, and it was not that helpful. I am planning to take schedule the lab for this summer. I am going to purchase the Solutions Labs and the ccbootcamp labs today and use them to study. I work for a Cisco reseller so I have plenty of equipment sitting around to use for study labs. My company has said they will pay for training so I am looking at Global Knowledge and IT Academy prep courses. If anyone has any recommendations on training please let me know. Hal White _ Get your FREE download of MSN Explorer at http://explorer.msn.com _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: How to you remote log on to router ?
Sure, You can use SSH to talk to a router. I believe that it is new in 12.1 http://www.cisco.com/univercd/cc/td/doc/product/software/ios121/121newft/121 t/121t3/sshv1c.htm Tim "RS" [EMAIL PROTECTED] wrote in message 954qtd$jqe$[EMAIL PROTECTED]">news:954qtd$jqe$[EMAIL PROTECTED]... Hi there ! Is there anything else than telnet to remote log on to a router ? Is it possible to use something like ssh ? Or are there any other secure protocolls for router available ? Any replies are truely appreciated !!! Ray. _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Was anything taken out of the CCIE written exam?
There was nothing removed from the CCIE Written, only from the lab. Check the link below for the current blueprint. http://www.cisco.com/warp/public/625/ccie/rsblueprint.html Tim - Original Message - From: "jean william" [EMAIL PROTECTED] Newsgroups: groupstudy.cisco To: [EMAIL PROTECTED] Sent: Tuesday, January 16, 2001 7:00 PM Subject: Was anything taken out of the CCIE written exam? Can anyone let me know what was taken out of the ccie written exam... For example ATM LANE, X.25, etc... Please advise. Trying to narrow down studies... _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Any body know about Cisco Content Switch
Here are some links for the CSS switches. For the application that it appears that you are trying to run you will need the switches in front and behind the PIX boxes. The PIX 535 is out now and will do a Gig of throughput. What are you trying to accomplish? You can run PIXes in a active/passive config if it is high availability that you are looking for. Give me a little more on the design that you are doing. http://www.cisco.com/warp/public/cc/pd/si/11000/prodlit/ or load balance on the 6500 http://www.cisco.com/warp/public/cc/pd/si/casi/ca6000/tech/ios6k_wp.htm http://www.cisco.com/warp/public/cc/pd/si/casi/ca6000/tech/aslb_wp.htm - Original Message - From: "Yonkerbonk" [EMAIL PROTECTED] To: "Wayne Lawson" [EMAIL PROTECTED]; "Tommy Mitchell" [EMAIL PROTECTED]; "cisco@groupstudy. com (E-mail)" [EMAIL PROTECTED] Sent: Thursday, January 11, 2001 5:46 PM Subject: RE: Any body know about Cisco Content Switch Hi Wayne, Could you point me to some information on the CSSes and how to configure for load balancing? I was looking at Local Director and Alteon boxes to do that for two PIXs. Do I need them on both he outside and inside? Thanks. --- Wayne Lawson [EMAIL PROTECTED] wrote: Tommy, Actually you CAN have the CSS in an "active / active" mode with true firewall load balancing. Wayne Lawson, CCIE # 5244 Systems Engineer - Cisco Systems, Inc. 2000 Town Center, Suite 450 Southfield, Michigan 48075 Voice: (248) 455 - 1663 Cell: (248) 709 - 5797 Pager: (800) 365 - 4578 -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Tommy Mitchell Sent: Wednesday, January 10, 2001 8:15 AM To: cisco@groupstudy. com (E-mail) Subject: Re: Any body know about Cisco Content Switch Yes, they can unless you're trying to load-balance firewalls. Try to load-balance firewalls and you have to go active-standby. Tommy - Original Message - From: "Muhammad Faheem" [EMAIL PROTECTED] To: "cisco@groupstudy. com (E-mail)" [EMAIL PROTECTED] Sent: Wednesday, January 10, 2001 7:26 AM Subject: Any body know about Cisco Content Switch Hi All Just wanted to know that Cisco Content Switch (CSS-11000 CSS-11800) can work as Active - Active or not. Thanks for Input Muhammad Faheem Systems Engineer Afcomp Hello : (9714)-3933878 / 3027338 Fax : (9714)-3933832 Web : www.afcomp.com _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] __ Do You Yahoo!? Yahoo! Photos - Share your holiday photos online! http://photos.yahoo.com/ _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
CCIE Security Written
It has been over 2 months now and I have not seen any results for the CCIE Security written beta (351-018). Has anyone else seen anything? Tim _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Cisco's TFTP Program
Yea.. it is a piece of crap... use the 3Com 3CDaemon. It is excellent! http://support.3com.com/software/utilities_for_windows_32_bit.htm grab the file 3CDv2r10.zip Hope that helps! Tim - Original Message - From: "Jennifer Mellone" [EMAIL PROTECTED] To: [EMAIL PROTECTED] Sent: Friday, December 29, 2000 7:45 PM Subject: Cisco's TFTP Program Hi Gang, Is it me, or has anyone else had this problem using the Cisco TFTP program--- I TFTPed software from my laptop to a switch just fine today. But then I tried to TFTP IOS code from my laptop to a router today. I got an error message (from the TFTP program itself), and the program immediately closed down. I even rebooted the laptop and this did not help. - Jennifer Mellone _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
MCNS 2.0
Well, I took the MCNS 2.0 test today so I could qualify for the one test instead of 4 after January. Got an 883 with only a 708 required. I have to say that the Boson MCNS test #1 was outstanding! Study that and use the links provided in the answers to gain more knowledge. I also read the Cisco Press "Enhanced IP Services for Cisco Networks" book. It was a great book. Excellent job on the Boson Bernard, I hope your CCIE written tests are as good! Thanks! Tim _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: ISP DIAL
I would start here... http://www.cisco.com/warp/public/625/ccie/certifications/isp_dial.html However, the ISP Dial is about to be retired... so you had better hurry if you are interested. Tim - Original Message - From: "N.Anand" [EMAIL PROTECTED] To: [EMAIL PROTECTED] Sent: Monday, December 11, 2000 6:33 AM Subject: ISP DIAL Hai guys, I am planning to give ISP DIAL qualifying Exam.Can any One give info. regarding this. Pls.mention books as well as sites which may help me a lot. Can any one give me detailed topic list for ISP DIAL. N.Anand _ Chat with your friends as soon as they come online. Get Rediff Bol at http://bol.rediff.com Participate in crazy auctions at http://auctions.rediff.com/auctions/ _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Cisco vs. HP Switches
Sorry it has taken me this long to reply, I have been extremely busy... Anyways, here are some reasons (from an obviously Cisco bias view)... Hope this helps... First, HP is a server company. Their primary focus is not networking equipment. Do you really want to trust your network infrastructure to them? The new 2524's also took a step backwards from the 4000M switches by only supporting basic 802.1p QoS. The also cannot do per-port TCP/UDP re-classification. The Cisco 3500 series can do re-classification on a per port basis. Another good point is stacking. Our solution scales to hundreds of ports at a very low cost while their solution is extremely expensive (around $900 per switch to stack). They really do not even position these switches for stacking. I know that this may not be a priority now, but you have to factor in some type of growth in the future. Poor VLAN support is another point. They only support 30, where we support 250 and support both ISL and 802.1Q. Another big future thinking point is their lack of application support. HP is NOT able to put together a network solution or even participate in one that has the promise and capability to scale to future converged networking. To the extent that most customers have a vision to scale to VoIP and video, HP in the LAN won't support it. Cisco is all about selling that integrated solution proposition based upon QoS, Inline Power, Call Mgr, resiliency features, IP Phone mgmt integration, etc... Hope these points help in your decision, if you need any additional information please let me know. Tim Original Message- From: Denis A. Baldwin [mailto:[EMAIL PROTECTED]] Sent: Thursday, December 07, 2000 4:41 PM To: 'Tim O'Brien' Subject: RE: Cisco vs. HP Switches The Cisco 3524 Catalyst and the HP Procurve 2524. Denis -Original Message- From: Tim O'Brien [mailto:[EMAIL PROTECTED]] Sent: Thursday, December 07, 2000 4:10 PM To: Denis Baldwin Subject: RE: Cisco vs. HP Switches What model of switches are you looking at? Tim - Original Message - From: "Denis A. Baldwin" [EMAIL PROTECTED] To: [EMAIL PROTECTED] Sent: Thursday, December 07, 2000 1:30 PM Subject: Cisco vs. HP Switches We are looking at four new 24 port switches for our network. We have Cisco and HP as our final contenders. Both the HP Procurve and the Cisco Catalyst carry similar specs, but the HP is about 20% of the cost of the Cisco. Can someone give me a REAL reason why the Cisco Catalyst would be a better choice. Our network is all 10/100 for now and we won't need Gigabit for at least a couple of years. We need these switches to be in 24 port configurations as the company is going to split in two in a couple of months and move half of the operations to another building, so we need to be able to split the network as needed. I know this is a Cisco group, which is why I am asking it here, because I want a BIASED opinion of why Cisco would be better in this situation. Thank you all for your suggestions. Denis Denis A. Baldwin Network Administrator - CAE, Inc. A+, MCP, i-Net+, Network+ [EMAIL PROTECTED] 810-231-9373, ext. 229 _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Netmeeting through PIX
This looks helpful... http://www.microsoft.com/TechNet/netmting/reskit/netmtg2/chpt4.asp Tim - Original Message - From: "Jim Bond" [EMAIL PROTECTED] To: [EMAIL PROTECTED] Cc: [EMAIL PROTECTED] Sent: Saturday, December 09, 2000 1:39 PM Subject: Netmeeting through PIX Hello, I'm setting up a MS Netmeeting server behind a PIX, persons outside of PIX will call in. Which ports I should open on the PIX? Thanks in advance. Jim __ Do You Yahoo!? Yahoo! Shopping - Thousands of Stores. Millions of Products. http://shopping.yahoo.com/ _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Trade CATM 2.0 for CVOICE 2.0
Why do you consider trading theft? The manual is the personal property of the person that took the class. If they wish to trade it to someone else that took another class who has personal property that they would like to trade, they may do so. If you have a book that you finish and give to your mom or a co-worker, do you consider that theft? Tim - Original Message - From: "Marc_Andre Giroux" [EMAIL PROTECTED] To: "Brian" [EMAIL PROTECTED] Cc: [EMAIL PROTECTED] Sent: Tuesday, November 21, 2000 3:31 PM Subject: Re: Trade CATM 2.0 for CVOICE 2.0 I would recommend you go out and take the course Theft is never a good alternative... Marc Giroux System Engineer II Cisco Systems Canada Co. _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Bookpool LLC
I have never had any problems with them and have probably purchased a dozen or so books. How in the world can they misrepresent what they are selling? You see the book, you buy the book. - Original Message - From: "Jerry Langfield" [EMAIL PROTECTED] Newsgroups: groupstudy.cisco To: [EMAIL PROTECTED] Sent: Tuesday, November 21, 2000 5:17 PM Subject: Re: Bookpool LLC I'd say caveat emptor Buyer be really aware what you are getting. I found Bookpool to be terrible for customer service and pricing. The misrepresent what they are selling. Use anyone but them. JL ""John Huston"" [EMAIL PROTECTED] wrote in message 8vcivf$c05$[EMAIL PROTECTED]">news:8vcivf$c05$[EMAIL PROTECTED]... What's everyone's opinion about the subject? Recently I have noticed that their prices are not as competitive, their customer service is almost non-existent and they do not fully disclose or misrepresent things. _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: IPX Routing Help !!!!
A simple search using "IPX routing" on the Cisco hompage revealed the following links http://www.cisco.com/univercd/cc/td/doc/product/software/ios11/cbook/cipx.ht m http://www.cisco.com/univercd/cc/td/doc/product/software/ios120/12cgcr/np2_c /2cipx.htm http://www.cisco.com/univercd/cc/td/doc/product/software/ios120/12cgcr/np2_c /2cipx.htm#7834 http://www.cisco.com/univercd/cc/td/doc/product/software/ios120/12cgcr/np2_c /2cipx.htm#3403 http://www.cisco.com/univercd/cc/td/doc/product/software/ssr83/rpc_r/55462.h tm These should help.. Tim ""Loris Collina"" [EMAIL PROTECTED] wrote in message 8utsm7$lu3$[EMAIL PROTECTED]">news:8utsm7$lu3$[EMAIL PROTECTED]... Hallo to everyone, my name is Loris and I'm writing from Italy. Some days ago my firm buy a Cisco 800 with feature Pack IP/IPX/FIREWALL PLUS IPSEC56. Well, I have to configure it to connect our network to a remote network trough dial-in, but untill now I configured only 2 Cisco with only TCP/IP for connections to ISP. I don't know nothing about Novell routing and how to configure it. Can you help me with some examples or links??? Thanks in advice Loris _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: upcoming caslow book
It is in stock and "ships same day" at http://www.fatbrain.com Tim - Original Message - From: "Leigh Anne Chisholm" [EMAIL PROTECTED] To: "Craig Jensen" [EMAIL PROTECTED]; [EMAIL PROTECTED] Sent: Friday, October 27, 2000 12:37 AM Subject: RE: upcoming caslow book That's a good question. Apparently Caslow's "Cisco Certification: Bridges, Routers and Switches for CCIE's" is now out of print... My initial impression is that his new book won't cover all the same material as his first. For those of you who've been wanting to buy Cisco Certification: Bridges, Routers and Switches for CCIE's, I recommend you go buy it now. I had a hard time finding it in my local bookstore and couldn't order it from several online bookstores. -- Leigh Anne -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Craig Jensen Sent: October 26, 2000 6:41 PM To: [EMAIL PROTECTED] Subject: upcoming caslow book On amazon.com a title Cisco Routing Illustrated: A Workbook for CCIEs and CCNPs is listed. Does anybody know details about this book? Craig _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: CCIE Cincinnati Study Group
I would be interested, contact me offline. Tim ""Mike"" [EMAIL PROTECTED] wrote in message 8tc5uu$dbf$[EMAIL PROTECTED]">news:8tc5uu$dbf$[EMAIL PROTECTED]... Hi all, I am wondering if there are list members that are interested in starting a CCIE Study Group in Cincinnati. We will get together maybe once a week and go through Lab Scenarios. I am thinking that we could have 2 Study Groups. A CCIE Written Study Group and CCIE Lab Study Group for members that have passed the Qualification exam, with members helping each other get to the next level, ie. members who have passed the Lab spend some time with the CCIE Written Group in coaching them, and maybe a CCIE in Cincinnati kind enough to coach the CCIE Lab Study Group. The idea I am getting to is that it has to be a consistent regular meeting class. All comments and input appreciated, and if there is a CCIE in Cincinnati that is willing to help us, coach us and proctor us as we prepare for the Lab, please let us know. _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Possible phony CCIE
Just because a guy can config a router it does not make him a god. Lets face it guys, there is nobody out there that knows everything about everything, and if there is someone that thinks they do, I guarantee there is someone else out there that knows more than they do. Obviously if this guy is lying about his CCIE he should be exposed, and after reported it is up to Cisco to deal with as they see fit. .02 Tim - Original Message - From: "Sam LI" [EMAIL PROTECTED] To: "Mark Cohen" [EMAIL PROTECTED]; [EMAIL PROTECTED] Sent: Monday, October 23, 2000 6:41 AM Subject: Re: Possible phony CCIE Well, even some real one behave like this, i come across a few in the the past - Original Message - From: Mark Cohen [EMAIL PROTECTED] To: [EMAIL PROTECTED] Sent: Monday, October 23, 2000 3:55 PM Subject: Possible phony CCIE Greetings- I recently worked on a project with a fellow who claimed to be a CCIE. He even gave me his card with the CCIE logo on it. At least I think it is the CCIE logo. It is a router symbol surrounded with laurels and has the words Cisco Certified Internetwork Engineer circling it as well. After asking this person a few questions, I became suspicious of his credentials due to his apparent lack of knowledge of the fundamentals. (I never asked for his CCIE number because I attempted verification only after I left the account). I faxed a copy of the business card he gave me (homemade BTW) to someone in the CCIE program at Cisco. She told me the card is bogus and that she would send the card to the Cisco lawyers. That was three months ago and this person is STILL working on site there. What do you people think I should do now? Send e-mail to the persons that are contracting him there? He is charging a very high bill rate. The people he is working don't have enough knowledge to confirm his credentials. Should I let this go? Isn't part of my cert agreement with Cisco to protect the logo? I feel that Cisco isn't doing anything to protect us here. Mark Cohen CCNA, MCSE, MCP+I _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
OT, Netranger and OpenView
I recently talked to Cisco TAC and they verified that you need at least a "run-time" version of HP OpenView to run the NetRanger Sensor Management Console, and it is not included on the Management CD. My question is, can you get the OpenView runtime version free somewhere or is this something additional that I will need to purchase? I have looked at HP's site but have not really found anything worthwhile. Thanks! Tim _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Ethernet Trivia
So if this were the case, and they both started at the same time and used the same size frame/packet I would think that the 100Mbps interface would get the packet onto the wire faster hence it would arrive sooner than the 10Mbps interface which would probably still be putting the data on the wire. Correct? Tim - Original Message - From: "Kevin L. Kultgen" [EMAIL PROTECTED] Newsgroups: groupstudy.cisco To: [EMAIL PROTECTED] Sent: Wednesday, October 04, 2000 12:35 PM Subject: Re: Ethernet Trivia They would bith reach the destination at the same time (speed of electricity through copper). The difference is in the rate at which the bits are placed on the wire, the Fast Ethernet would be placing 20 bits of information (actually encoded as 24 bits) on the wire for every 2 bits that the 10bT would place on the wire. At least his is my understanding of 100bT vs 10bT.. Anybody else have different(better?) interpretations? -- Kevin L. Kultgen ""Frank"" [EMAIL PROTECTED] wrote in message 8rfksm$l2s$[EMAIL PROTECTED]">news:8rfksm$l2s$[EMAIL PROTECTED]... Let's say we have a 10Mbps and 100Mbps interface. Both transmit the same sized frame over the same type of media and over the same distance and neither experience a collision. Which will get to the destination first? **NOTE: New CCNA/CCDA List has been formed. For more information go to http://www.groupstudy.com/list/Associates.html _ UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html FAQ, list archives, and subscription info: http://www.groupstudy.com Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] **NOTE: New CCNA/CCDA List has been formed. For more information go to http://www.groupstudy.com/list/Associates.html _ UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html FAQ, list archives, and subscription info: http://www.groupstudy.com Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] **NOTE: New CCNA/CCDA List has been formed. For more information go to http://www.groupstudy.com/list/Associates.html _ UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html FAQ, list archives, and subscription info: http://www.groupstudy.com Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: CCIE Advanced Network Design and Case Studies
Actually, you are wrong, a quick 10 second search on the Cisco home page reveals the following, the entire first edition... Look here... http://www.cisco.com/cpress/cc/td/cpress/ccie/ndcs798/index.htm or here http://www.cisco.com/cpress/cc/td/cpress/ccie/ I believe that this is only the first edition, they have the second out now.. Tim - Original Message - From: "michael" [EMAIL PROTECTED] Newsgroups: groupstudy.cisco To: [EMAIL PROTECTED] Sent: Monday, October 02, 2000 8:39 AM Subject: Re: CCIE Advanced Network Design and Case Studies You are wrong,the book isn't "fully" on www.cisco.com. On 2 Oct 2000 05:04:42 -0400, [EMAIL PROTECTED] ("Muralidhar A.") wrote: I guess this book fully is avaliable on www.cisco.com free of cost but yes u have to print it in case u need a hardcopy of the same... i have done that. :-) cheers "FRS" [EMAIL PROTECTED] wrote in message news:8r3lsc$193$[EMAIL PROTECTED]... One of the "must-haves" for your collection as you start your journey towards CCIE status, also make sure you get Interconnections by Dr. Radia Perlman, Douglas Comer's book, Bruce Caslow's book and at Lab Prep time get the Satterlee book. ""Bruce"" [EMAIL PROTECTED] wrote in message 8r3j6r$t74$[EMAIL PROTECTED]">news:8r3j6r$t74$[EMAIL PROTECTED]... I am buying the book "CCIE Fundamentals: Network Design and Case Studies, Second Edition (Certification) to help me prepare for the CCIE Design. Would someone who has read this book give me their opinion of it? Bruce [EMAIL PROTECTED] **NOTE: New CCNA/CCDA List has been formed. For more information go to http://www.groupstudy.com/list/Associates.html _ UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html FAQ, list archives, and subscription info: http://www.groupstudy.com Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] **NOTE: New CCNA/CCDA List has been formed. For more information go to http://www.groupstudy.com/list/Associates.html _ UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html FAQ, list archives, and subscription info: http://www.groupstudy.com Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] **NOTE: New CCNA/CCDA List has been formed. For more information go to http://www.groupstudy.com/list/Associates.html _ UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html FAQ, list archives, and subscription info: http://www.groupstudy.com Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] **NOTE: New CCNA/CCDA List has been formed. For more information go to http://www.groupstudy.com/list/Associates.html _ UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html FAQ, list archives, and subscription info: http://www.groupstudy.com Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] **NOTE: New CCNA/CCDA List has been formed. For more information go to http://www.groupstudy.com/list/Associates.html _ UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html FAQ, list archives, and subscription info: http://www.groupstudy.com Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Exam for CCDP Cert
Well, I just got back from taking and passing the CID test. Scored a 70% (65% needed). They give you 2 hours for 100 questions and you can mark your questions and go back. I read the Cisco Press book only, and felt pretty iffy going into the test. There were several questions with a "select the best" approach, man I hate those... Anyways, the test definitely needs a revamp. I guess it is on to CCIE Written.. Tim - Original Message - From: "hal9001" [EMAIL PROTECTED] To: "Cisco Kid" [EMAIL PROTECTED]; [EMAIL PROTECTED] Sent: Tuesday, September 26, 2000 2:57 PM Subject: Fw: Exam for CCDP Cert Just the one i.e. CID #640-025, try the Sybex Book by Robert Padjen ISBN 0782126391 which got a few good comments on the group, but apparently the Exam is a pig! You only get to be a CCDP 1.0 though which probably means you recertify in two not three years. Karl - Original Message - From: "Cisco Kid" [EMAIL PROTECTED] Newsgroups: groupstudy.cisco To: [EMAIL PROTECTED] Sent: Tuesday, September 26, 2000 11:02 AM Subject: Exam for CCDP Cert Hi ! Can anyone tell me if there are 2 exams to take for CCDP after CCNP or just the one. Thanx. **NOTE: New CCNA/CCDA List has been formed. For more information go to http://www.groupstudy.com/list/Associates.html _ UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html FAQ, list archives, and subscription info: http://www.groupstudy.com Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] **NOTE: New CCNA/CCDA List has been formed. For more information go to http://www.groupstudy.com/list/Associates.html _ UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html FAQ, list archives, and subscription info: http://www.groupstudy.com Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] **NOTE: New CCNA/CCDA List has been formed. For more information go to http://www.groupstudy.com/list/Associates.html _ UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html FAQ, list archives, and subscription info: http://www.groupstudy.com Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: SERVICE SELECTION GATEWAY
These links should be everything you need. Hope this helps. Tim http://www.cisco.com/univercd/cc/td/doc/product/access/acs_serv/6510ssg/ http://www.cisco.com/univercd/cc/td/doc/product/access/acs_serv/6510ssg/6510 h11/vega_hw.htm http://www.cisco.com/univercd/cc/td/doc/product/access/acs_serv/6510ssg/6510 sw11/index.htm Watch the word-wrap. - Original Message - From: "Tapas Das" [EMAIL PROTECTED] To: [EMAIL PROTECTED] Sent: Thursday, September 07, 2000 10:30 AM Subject: SERVICE SELECTION GATEWAY Dear All, can somebody tell me where can I some study material on "SERVICE SELECTION GATEWAY" I need it badly. Thanks In Advanc Tapas _ Get Your Private, Free E-mail from MSN Hotmail at http://www.hotmail.com. Share information about yourself, create your own public profile at http://profiles.msn.com. ___ UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html FAQ, list archives, and subscription info: http://www.groupstudy.com Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] ___ UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html FAQ, list archives, and subscription info: http://www.groupstudy.com Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Subnet Question
Actually, I found this little tidbit on Fatkid.com. I have never tried it but it appears from their response that you can use them as subnet masks as well as in access lists... Not many people are aware that TCP/IP address masks neither need to be contiguous or have ones starting from the left. The following are examples of typical TCP/IP masks that you might see everyday: ... - 255.255.255.0 ... - 255.255.0.0 ... - 255.240.0.0 Here are a few valid masks that you probably have not seen before: 10101010.10101010.10101010.10101010 - 170.170.170.170 ... - 0.255.0.255 If you get a chance set "ip classless" on a Cisco router and try some of these goofy masks. Tim - Original Message - From: "Bradley J. Wilson" [EMAIL PROTECTED] To: [EMAIL PROTECTED] Sent: Sunday, September 03, 2000 7:36 AM Subject: Re: Subnet Question The answer to the question as stated would be false, but - you *can* use discontiguous masks in access lists, which can be a pretty handy feature sometimes. Sincerely, Bradley J. Wilson CCNA, CCDA, MCSE, CCSE, CNX-A, MCT, CTT - Original Message - From: Aaron Moreau-Cook To: [EMAIL PROTECTED] Sent: Saturday, September 02, 2000 8:47 PM Subject: Subnet Question Question taken from the CCNA Exam Cram book by Walters, Rees, and Coe. A subnet mask can have a value of 0.255.255.0 A) True B) False The Cisco answer would dictate that it is false, and in all functionality it is true. Hypothetically though it could be true, I rememeber this discusion a while ago, but I'm looking to see if I am smoking the proverbial crack. Thanks all! Aaron Moreau-Cook Finally taking his CCNA test this coming Friday ___ UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html FAQ, list archives, and subscription info: http://www.groupstudy.com Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] ___ UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html FAQ, list archives, and subscription info: http://www.groupstudy.com Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: subinterfaces
RE: subinterfacesThe book that I am looking at states that the 1600 will run 12.0(3)T with 4 meg flash and 8 meg DRAM, but you will need to upgrade to 10 meg DRAM for the IP Plus software of the same version (12.0(3)T). It looks like you can run any version of the software if you have software if you have 6 meg Flash and 16 meg DRAM. Tim - Original Message - From: Dave Hennen To: Nova Rich Cc: [EMAIL PROTECTED] Sent: Friday, September 01, 2000 1:41 PM Subject: RE: subinterfaces you can do nat with the ip only version of 12.x I assume that means you can do it with any version. very handy and a good reason to upgrade all by itself. if you don't have a service contract, 12.x ip only for a 1600 router should be around $20 but make sure you have adequate ram and flash because it's probably bigger daveh -Original Message- From: Nova Rich [mailto:[EMAIL PROTECTED]] Sent: Friday, September 01, 2000 1:05 PM To: '[EMAIL PROTECTED]' Subject: RE: subinterfaces Thanx guys for the help. The "secondary" command at the end was the problem. But now I realize that the Cisco 1610 with IOS 11.2 doesn't support NAT. Does anyone know if you can do NAT on a 1600 and if, so which ver. IOS? NovaRich ___ UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html FAQ, list archives, and subscription info: http://www.groupstudy.com Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Advanced PIX Beta Exam - Free
Here is the link for everything that is on the test. Seriously, I took it about 3 weeks ago and it is straight out of the manual, even the pictures! It runs the whole gambit of what hardware is this and which way the interfaces are numbered to configuration and even into all of the Crypto stuff... http://www.cisco.com/univercd/cc/td/doc/product/iaabu/pix/pix_v52/index.htm Tim - Original Message - From: "Mohit Gupta" [EMAIL PROTECTED] To: [EMAIL PROTECTED] Sent: Thursday, August 31, 2000 11:50 AM Subject: Advanced PIX Beta Exam - Free Hello guys, Can anyone help me with whitepapers, websites on Advanced PIX Beta Exam (exam code 9E1-571). You can register for this exam. Last date for this exam is 13th Sept. Enjoy but hurry and do not forget to email me the important sites on PIX. Thanks... __ Do You Yahoo!? Yahoo! Mail - Free email you can access from anywhere! http://mail.yahoo.com/ ___ UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html FAQ, list archives, and subscription info: http://www.groupstudy.com Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] ___ UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html FAQ, list archives, and subscription info: http://www.groupstudy.com Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Advanced PIX Beta Exam - Free
Please disregard my previous post. I took the first PIX beta and not this one. In my haste to reply I did not check the test number you were talking about. Sorry... Tim - Original Message - From: "Tim O'Brien" [EMAIL PROTECTED] To: "Mohit Gupta" Sent: Thursday, August 31, 2000 12:30 PM Subject: Re: Advanced PIX Beta Exam - Free Here is the link for everything that is on the test. Seriously, I took it about 3 weeks ago and it is straight out of the manual, even the pictures! It runs the whole gambit of what hardware is this and which way the interfaces are numbered to configuration and even into all of the Crypto stuff... http://www.cisco.com/univercd/cc/td/doc/product/iaabu/pix/pix_v52/index.htm Tim - Original Message - From: "Mohit Gupta" [EMAIL PROTECTED] To: [EMAIL PROTECTED] Sent: Thursday, August 31, 2000 11:50 AM Subject: Advanced PIX Beta Exam - Free Hello guys, Can anyone help me with whitepapers, websites on Advanced PIX Beta Exam (exam code 9E1-571). You can register for this exam. Last date for this exam is 13th Sept. Enjoy but hurry and do not forget to email me the important sites on PIX. Thanks... __ Do You Yahoo!? Yahoo! Mail - Free email you can access from anywhere! http://mail.yahoo.com/ ___ UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html FAQ, list archives, and subscription info: http://www.groupstudy.com Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] ___ UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html FAQ, list archives, and subscription info: http://www.groupstudy.com Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: WICs
That depends on the router, on the 7206VXR's that I run the modules are hot pluggable and ready upon insertion. Tim - Original Message - From: "McCallum, Robert" [EMAIL PROTECTED] To: "'Montgomery, Robert WARCOM Contractor'" [EMAIL PROTECTED]; [EMAIL PROTECTED] Sent: Friday, August 11, 2000 4:01 AM Subject: RE: WICs It is a very simple job. BUT although it is hot swappable (in the sense you can plug it in while the router is still running) it will not burst into life until the router is rebooted. -Original Message- From: Montgomery, Robert WARCOM Contractor [mailto:[EMAIL PROTECTED]] Sent: 10 August 2000 16:31 To: [EMAIL PROTECTED] Subject: WICs Is installing a WIC and/or memory in routers typically a simple job or a tedious, drawn-out process? I guess I'm looking for the horror stories... Rob Montgomery CCNA MCP IA Systems Analyst Sytex, Inc./ Naval Special Warfare Command ___ UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html FAQ, list archives, and subscription info: http://www.groupstudy.com Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] ___ UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html FAQ, list archives, and subscription info: http://www.groupstudy.com Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] ___ UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html FAQ, list archives, and subscription info: http://www.groupstudy.com Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: DCE to DTE Cable
You can buy the back-to-back Cisco cables for as little as $29.00 on eBay. Why would you want to pay over $150 for 2 Cisco cables? Look at the links below. Tim http://cgi.ebay.com/aw-cgi/eBayISAPI.dll?ViewItemitem=399505053 http://cgi.ebay.com/aw-cgi/eBayISAPI.dll?ViewItemitem=399662506 http://cgi.ebay.com/aw-cgi/eBayISAPI.dll?ViewItemitem=403855183 http://cgi.ebay.com/aw-cgi/eBayISAPI.dll?ViewItemitem=400426739 http://cgi.ebay.com/aw-cgi/eBayISAPI.dll?ViewItemitem=400427594 http://cgi.ebay.com/aw-cgi/eBayISAPI.dll?ViewItemitem=403936767 And there are about 10 more up there! - Original Message - From: "Butcher, Matthew" [EMAIL PROTECTED] To: "'Swart Douwe'" [EMAIL PROTECTED]; [EMAIL PROTECTED] Sent: Wednesday, August 09, 2000 6:40 AM Subject: RE: DCE to DTE Cable This is what I am using for wan sim on 25xxs 72-0792-01 v.35 dce rev.do visw 9640 72-0791-01 V.35 dte rev.do 3197m -Original Message- From: Swart Douwe [mailto:[EMAIL PROTECTED]] Sent: Tuesday, August 08, 2000 3:40 PM To: '[EMAIL PROTECTED]' Subject: DCE to DTE Cable I have been looking around on the Cisco web site to purchase a DTE to DCE serial cable so that I can connect 2 2500's via the serial ports. The cable must be db60 male to db60 male. Does anyone know the part number??? (I have tried the cisco site, and cant find this cable). I know that there are third party companies that make the cable, but I am after a Cisco one if I can get it. THanks for your help Douwe Visit our Website : http://www.traveland.com.au Disclaimer - This message and any attachments are confidential and may contain privileged information intended only for the use of the addressee named above. If you are not the intended recipient of this message you are hereby notified that any use, dissemination, distribution or reproduction of this message is prohibited. If you have received this message in error please notify Traveland Pty Ltd immediately by return email. Any views expressed in this message are those of the individual sender and may not necessarily reflect the views of Traveland Pty Ltd. ___ UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html FAQ, list archives, and subscription info: http://www.groupstudy.com Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] ___ UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html FAQ, list archives, and subscription info: http://www.groupstudy.com Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] ___ UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html FAQ, list archives, and subscription info: http://www.groupstudy.com Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Another New CCIE Book
You know, I watch these messages day in and day out and it really amazes me that people cannot even do a simple web search on any of the large online booksellers to find a book! (let alone look at the reviews there). I am sorry.. I must be in one of those moods this morning... Here ya go... http://www.ecampus.com/servlets/com.ecampus.site.presentation.servlets.bookD etail.SingleBookServlet?ISBN=078972359X http://www.amazon.com/exec/obidos/ASIN/078972359X http://www1.fatbrain.com/asp/bookinfo/bookinfo.asp?theisbn=078972359X http://shop.barnesandnoble.com/bookSearch/isbnInquiry.asp?isbn=078972359X Tim - Original Message - From: "Hubert Pun" [EMAIL PROTECTED] To: "Kevin Wigle" [EMAIL PROTECTED] Cc: "Cisco" [EMAIL PROTECTED] Sent: Thursday, August 03, 2000 3:14 PM Subject: Re: Another New CCIE Book How do you find this book? Worth buying? Kevin Wigle wrote: Th CCIE Exam Cram won't be around for a few weeks I'm told but I found this book on the shelf. PREP KIT CCIE 350-001 Routing and Switching Published by BaerWolf and QUE ISBN: 078972359 It looks like no matter what our thoughts are on things like "CCIE for Dummies" etc, the media is waking up to us. Fortunately, the Lab will always be our protection. Kevin Wigle CCDP/CCNP. ___ UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html FAQ, list archives, and subscription info: http://www.groupstudy.com Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] ___ UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html FAQ, list archives, and subscription info: http://www.groupstudy.com Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] ___ UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html FAQ, list archives, and subscription info: http://www.groupstudy.com Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: cir, bc, be
I thought that when you purchased bandwidth, the CIR that you purchased was the minimum guaranteed amount of bandwidth that the provider had to make available to you? If you bought a T1 with a 128K CIR you would always have at least 128K available to you no matter how much traffic was on their Frame network and you would be able to burst to ~1.5Mbps, provided that their network was not saturated, correct? Tim - Original Message - From: "Taylor, Don" [EMAIL PROTECTED] To: "'Vic Feferberg'" [EMAIL PROTECTED]; [EMAIL PROTECTED] Sent: Friday, July 14, 2000 2:37 PM Subject: RE: cir, bc, be CIR is the average speed you'll transmit overall. In addition to this, you can burst (Bc) up to, in your example, another 128K (256K total) for a predefined period of time (usually about 1 second). Be designates all those packets above the Bc; these are marked DE and will be discarded if congestion occurs. - Don -Original Message- From: Vic Feferberg [mailto:[EMAIL PROTECTED]] Sent: Friday, July 14, 2000 2:24 AM To: [EMAIL PROTECTED] Subject: cir, bc, be I'm having trouble getting my head around how bc and be relate to cir. For example, if all 3 are set to 128k, is bc included in cir, or is it additional to cir. etc, etc. TIA ___ UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html FAQ, list archives, and subscription info: http://www.groupstudy.com Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] * The information in this email is confidential and may be legally privileged. It is intended solely for the addressee. Access to this email by anyone else is unauthorized. If you are not the intended recipient, any disclosure, copying, distribution or any action taken or omitted to be taken in reliance on it, is prohibited and may be unlawful. When addressed to our clients any opinions or advice contained in this email are subject to the terms and conditions expressed in the governing KPMG client engagement letter. * ___ UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html FAQ, list archives, and subscription info: http://www.groupstudy.com Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] ___ UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html FAQ, list archives, and subscription info: http://www.groupstudy.com Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: CCNA WAN-SW exam
I was flipping through this book in Borders the other day. It has some really neat looking stuff in it.. the only problem is that I have so much that I want to read and study I will never get done! : ) Currently I am debating (at least for today) skipping the CCDA/DP and moving right on to the CCIE written.. Tim - Original Message - From: [EMAIL PROTECTED] To: [EMAIL PROTECTED] Sent: Tuesday, July 11, 2000 6:20 PM Subject: CCNA WAN-SW exam Has anyone sat this exam? I have the new Cisco Quick start book and it seems to have alot of signaling and framing info. Is this book good for the exam? Anyone have any reading suggestions on this exam? Thanks in advance. David Cooper CCNP/CCDP ___ UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html FAQ, list archives, and subscription info: http://www.groupstudy.com Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] ___ UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html FAQ, list archives, and subscription info: http://www.groupstudy.com Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: dilemma.
In preparing for the CCNP you are preparing for the CCIE. All of the things that you will learn in the CCNP will be invaluable towards your pursuit of the CCIE. Think about it.. ACRC (now BCSN) is all about router config with high end routing protocols.. I wonder where you will see that again??? Maybe lab day 1.. ALL DAY... CMTD (now BCRAN) is all about the dialer, which you WILL have to configure on the lab guaranteed... CLSC (now BCMSN) will cover the concepts listed that you will need to configure in the lab on the switches that they have listed on the lab equipment page (Cat 5000, Cat 3900 TR.. etc..). CIT (now Support 2.0) is exactly what you will need on day 2 of the lab (assuming that you make it that far..) Your troubleshooting skills are imperative for passing the lab. These CCNP classes/tests focus your studies on what is needed for the next level. Do you think Cisco would create the CCNP without having the CCIE in mind? Just my thoughts... Tim - Original Message - From: "Muralidhar A." [EMAIL PROTECTED] To: "cisco freinds" [EMAIL PROTECTED] Sent: Tuesday, July 11, 2000 3:47 AM Subject: dilemma. Hi.. I am CCNA, sun certified admin, MCSE CNE and some other cert's too but now I am in a dilemma. As some of the seniors here and friends have suggested that instead of going in for CCNP I start preparing for CCIE directly... I would like to ask the Guru's of Cisco in this group to suggest what is the better for ones career and knowledge... Thanks in advance, Murali The Pessimist complains about the wind; The Optimist expects it to change...and The Realist adjusts the sail. - William Arthur Ward ___ UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html FAQ, list archives, and subscription info: http://www.groupstudy.com Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] ___ UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html FAQ, list archives, and subscription info: http://www.groupstudy.com Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: CCIE Routingswitc book
Here are a couple... (for the written...) CCIE Prep Kit 350-001 : Routing and Switching http://www1.fatbrain.com/asp/bookinfo/bookinfo.asp?theisbn=078972359X The Cisco Ccie Study Guide, Second Edition http://www1.fatbrain.com/asp/bookinfo/bookinfo.asp?theisbn=0071356762 on the way... CCIE Routing and Switching Exam Cram http://www1.fatbrain.com/asp/bookinfo/bookinfo.asp?theisbn=1576104338 Tim - Original Message - From: "[EMAIL PROTECTED]" [EMAIL PROTECTED] To: [EMAIL PROTECTED] Sent: Tuesday, July 11, 2000 12:16 AM Subject: CCIE Routingswitc book Hi All, Could anybody tell me, some good books for CCIE Routing/Switching preparation, and any notes for me for better preparation? Any comments are very appreciated. TIA, raf ___ UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html FAQ, list archives, and subscription info: http://www.groupstudy.com Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] ___ UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html FAQ, list archives, and subscription info: http://www.groupstudy.com Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
CCNP! Just in the nick of time!
Finished my CCNP today after passing CIT 4.0. Some friends of mine and others on this list had me really worried about this test. I read the CIT book by Cisco Press cover to cover and scored an 815. I was really surprised at how straight forward I thought it was. There were maybe 2 or 3 questions that I thought were bad and I only had about 5 or 6 fill-ins. All in all I thought ACRC was a lot harder, but I did take ACRC first and I was pretty green back then... anyways, I guess it is on the road to CCDP now, some more tuning is needed before I even consider the IE... Thanks for all of the great info on this list! Tim ___ UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html FAQ, list archives, and subscription info: http://www.groupstudy.com Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: 5500 and 6500
They are running about 6-8 weeks for delivery from what I have seen (on the 65xx series) Tim - Original Message - From: [EMAIL PROTECTED] To: [EMAIL PROTECTED] Sent: Saturday, July 01, 2000 9:40 AM Subject: 5500 and 6500 Anyone hear that delivery of the 5500 and 6500 are late. They cannot get the chips they need. ___ UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html FAQ, list archives, and subscription info: http://www.groupstudy.com Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] ___ UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html FAQ, list archives, and subscription info: http://www.groupstudy.com Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: firewall features
I am not sure what version of IOS you are running or what platform but I found these on the 12.0 IOS. Hope they help http://www.cisco.com/univercd/cc/td/doc/product/software/ios120/12cgcr/secur _c/scprt3/scfirewl.htm http://www.cisco.com/univercd/cc/td/doc/product/software/ios120/12cgcr/secur _c/scprt3/index.htm http://www.cisco.com/univercd/cc/td/doc/product/software/ios120/12cgcr/secur _c/index.htm http://www.cisco.com/univercd/cc/td/doc/product/software/ios120/12cgcr/secur _r/index.htm Watch the word wrap Tim - Original Message - From: "Justin Marcus" [EMAIL PROTECTED] To: [EMAIL PROTECTED] Sent: Tuesday, June 06, 2000 8:13 PM Subject: firewall features hello ppls :) if i have an ios with that special firewall thing in it.. how do i actualy use it.. i was using that cisco search function on there website to find info but like it always does for me it gave back unrelated topics :(.. like is there special commands built into the access-list commands ? or is it a special command all together. ? anyways could someone fill me in please :) thanks heaps :) Justin... ___ UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html FAQ, list archives, and subscription info: http://www.groupstudy.com Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] ___ UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html FAQ, list archives, and subscription info: http://www.groupstudy.com Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: limiting operation on a interface
I wonder if something like this would work for you... http://www.cisco.com/univercd/cc/td/doc/product/software/ios120/120newft/120 t/120t1/timerang.htm Watch the word wrap... Tim - Original Message - From: "Olden Pieterse" [EMAIL PROTECTED] To: [EMAIL PROTECTED] Sent: Wednesday, May 31, 2000 9:32 AM Subject: limiting operation on a interface Hi there gang Anyone know how to limit a interface (BRI0) on a 1600 to only operate between certain hours ? Thx a lot in advance Olden Pieterse Technical Consultant Mobile : +27 82 410 8621 Office : +27 21 419 5505 MCP , CCNA ___ UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html FAQ, list archives, and subscription info: http://www.groupstudy.com Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] ___ UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html FAQ, list archives, and subscription info: http://www.groupstudy.com Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]