Re: CCNA/CCNP home Lab setup [7:60727]
I would get three 2500 and a switch. Unless you are going to upgrade to a CCIE lab, I would say that 2600s might be a little $$$ Kenan Ahmed Siddiqi wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... Hi there, I suggest get 3 2600 series routers. Even though 2500 would also do, 2600 has some value added services which the 2500 don't offer. Just a thought! :) There are other things needed which I am sure others will help you out with. Good luck with your lab set-up. Cheers, Kenan Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=60778t=60727 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: frame relay congestion - seek and destroy! (how?) [7:55495]
I may be mistaken, but I think everything is normal. 384K is really measured in kbits/sec. your reading of 50k is measured in kbytes/sec. 8bits to the byte, so 50 is really like 400. Someone else please confirm my thinking. Jerry Deer wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... Hello all, I have a 384k circuit that I used DU meter to test dl speed and got about a 50kbs download. I have got to do something about this QUICK so hoping someone can point me in the right direction. I need to actually verify it is a problem with the circuit and then of course remedy it if it is. ANY reply would be appreciated. ( in the meantime I will be searching cisco site) Thank you!! JD Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=55502t=55495 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Need help with Simple BGP Solution [7:53936]
have a customer that wants to implement BGP at his office. They want to have complete redundancy, not load balancing. They have some users coming in from the outside for VPN and email servers. They will be using T-1s to two separate ISPs and will use a separate router for each ISP connection. My questions are as follows: Can I use just one firewall? (I could run HSRP on the two routers, firewall would just forward to the phantom default gateway) They currently own a Sonicwall Pro 100. I would prefer they use a PIX, is there any reason why they can't use the Sonic? Do ISPs charge subcribers extra for advertising routes through the other ISP (BGP)? I also want to have default routes to the ISP. I don't believe this customer needs the added routing accuracy, if it means they will need routers with 128 MB or ram. Thanks Wayne Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=53936t=53936 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: PIX [7:53955]
yes, make sure you have a crossover cable Robert Edmonds wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... I'm not 100% sure, but I think if you want to connect to the ethernet port you will need a crossover cable. Why not connect to the console port to do the initial config anyway? Naomi James wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... I have a PIX 525 and I am doing the initial configuration. I am trying to telnet to it to load the 6.2 version. I have my laptop directly connect to the inside interface via a CAT 5 cable. The inside interface and my laptop are on the same network. I also have the telnet command in the configuration. I am not able to telnet to the PIX. Can anyone help? Naomi James Computer Services and Information Technology Savannah State University 912-356-2509 [GroupStudy.com removed an attachment of type image/gif which had a name of Mabelt.gif] [GroupStudy.com removed an attachment of type image/gif which had a name of Mabelb.gif] Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=54019t=53955 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
4908G switching solution [7:51891]
I will be considering this for a small company switching solution. Does anyone see any problems with it.? -4908G-L3 for backbone (I can route between vlans; works with IP and IPX) -2950G-48 for one for main floor -2950G-24 for each of the other five floors -WS-5484 GBICs for each end of fiber (12 total) Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=51891t=51891 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Help, Switching Solution with 4006 [7:51799]
Thanks for all the great feedback. How about this for an alternative solution. Any reason why this may not work? -4908G-L3 for backbone (I can route between vlans; works with IP and IPX) -2950G-48 for one for main floor -2950G-24 for each of the other five floors -WS-5484 GBICs for each end of fiber (12 total) Wayne Diego Rissone wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... 4232 L3 service blade functions only with the supii , no? regards - Diego CCIP, CCDP, CNNP Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=51858t=51799 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Help, Switching Solution with 4006 [7:51799]
Hi, I am proposing the following LAN solution to a customer. Does it make sense? -WS-C4006-S3(sup III engine) Do I need special licenses for this? The customer will be using IP and IPX. I saw some licensing software for the Sup III that was around $1700 for both IP and IPX. I don't know that that is all about. -One 48 port RJ45 blade for servers and workstations on same floor -One 6 port GBIC blade (WS-X4306-GB) that will be used to connect to five WS-2950s on different floors -I will use the WS-5483 GBICs to connect the 2950s to the six port WS-X4306-GB Can anyone think of things I haven't considered? Thanks Wayne Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=51799t=51799 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: PIX 6.2 [7:46454]
it is Clayton Dukes wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... Howdy, Dows anyone know if the PIX 6.2 software is available yet? Clayton Dukes Cisco Info Center SE CCNA, CCDA, CCDP, CCNP, NCC Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=46470t=46454 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Pix don't route [7:46356]
Hi, The Pix don't route, but can I do this? I have a 2 server 20 user small office. I have a Pix 506 sitting in front of a 2621 with a T1 and a DSL link to the Internet. I'm not looking to load balance or even do redundancy. I just want traffic from the servers to use the T1 and I want traffic from the users to use DSL. I could use access-lists on the 2621 to direct the traffic based on source address, but how will the 2621 know where the traffic came from? Won't all traffic have a source address of the Pix outside interface? What if I Nat the servers(on PIx) so that they will appear to have a different source IP than the users who will be behind the global outside address? I'll need more public addresses, but that would be fine. I can't get any help from Cisco Pre-Sales because they aren't sure. I can't get an engineer that knows more than me (not much). My fall back plan is to only use the 2621 and have a firewall IOS. But I would rather use the Pix, especially because we have already quoted the above solution and are working to save face. Thanks -- Wayne Jang Advanced Computer Technologies, Inc. 108 Main Street Norwalk, CT 06851 Wk 203-847-9433 Cell 203-943-6603 Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=46356t=46356 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Pix don't route [7:46356]
I guess I have to plan on using BGP. But can I get away without using BGP? I did plan on bringing both DSL and T1 into the 2621, I ment to say that the pix is behind(on the inside). Thanks Alex Lei wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... Wayne, Why not use the router to terminate the links, and put the PIX behind the router? The PIX will inspect the traffic, and the router can send traffic to different links depending on where it originated from. Usually a 515 may be a better solution because it has a DMZ interface where the server can sit on, but I guess there is a cost concern. Alex Wayne Jang wrote: Hi, The Pix don't route, but can I do this? I have a 2 server 20 user small office. I have a Pix 506 sitting in front of a 2621 with a T1 and a DSL link to the Internet. I'm not looking to load balance or even do redundancy. I just want traffic from the servers to use the T1 and I want traffic from the users to use DSL. I could use access-lists on the 2621 to direct the traffic based on source address, but how will the 2621 know where the traffic came from? Won't all traffic have a source address of the Pix outside interface? What if I Nat the servers(on PIx) so that they will appear to have a different source IP than the users who will be behind the global outside address? I'll need more public addresses, but that would be fine. I can't get any help from Cisco Pre-Sales because they aren't sure. I can't get an engineer that knows more than me (not much). My fall back plan is to only use the 2621 and have a firewall IOS. But I would rather use the Pix, especially because we have already quoted the above solution and are working to save face. Thanks -- Wayne Jang Advanced Computer Technologies, Inc. 108 Main Street Norwalk, CT 06851 Wk 203-847-9433 Cell 203-943-6603 Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=46360t=46356 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Pix don't route [7:46356]
Will my router know the origin address of traffic even if my pix sits
between. Meaning, will the Pix preserve the origin address. Maybe I can do
one to one nat on pix and than do nat for public address on router? If one
ISP goes down. I can reconfigure my router and Pix to use just one link. I
will also have to tell my ftp users that the ftp servers has a new IP
address, assuming the T1 went down. But actually I would need more than
just two public address to make FTP server available from outside.
Or should I just do a IOS Firewall and bag the 506?? It's not a heavy
traffic environment.
I also need to have my users and servers on the same subnet, some
workstations and all servers will have gigabyte nics for fast transfer
between imaging workstations and FTP server.
Craig Columbus wrote in message
[EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
I deal with this type of thing all the time since almost all of my clients
are small businesses. The usual reason the small customer wants two
connections because they've gone with the least cost ISP in the past and
have been burned by extended outages (anyone remember Bluestar?).
You only need BGP if each of your providers is advertising the same net
block. If the servers are only using the T1, the clients are only using
the DSL connection, and there is no load balance or failover, then there's
no point in BGP. Each ISP is going to route the public IP addresses they
assigned to you to the 2621. Policy routing would then dictate traffic
flow. For example, you could assign all traffic with origin 172.16.1.0/24
an ip next hop of ISP A, and all traffic with origin 172.16.2.0/24 an ip
next hop of ISP B.
At 03:11 PM 6/12/2002 -0400, you wrote:
No on the traffic utilization graphing. The customer just wants to have
two
completely unrelated circuits to the Internet.
I wouldn't need BGP if I was making one of ther servers(FTP) available to
the outside world?
-Original Message-
From: Craig Columbus [mailto:[EMAIL PROTECTED]]
Sent: Wednesday, June 12, 2002 3:11 PM
To: Wayne Jang
Cc: [EMAIL PROTECTED]
Subject: Re: Pix don't route [7:46356]
You can't do it with the equipment you originally mentioned. You could,
however, put in two PIX 506, one on each ethernet interface of the 2621,
and use policy routing on the 2621 to handle the traffic to the two
providers. Not the most elegant solution, but it would work. I see no
reason to bring BGP into this.
Do you really need two circuits? Have you graphed traffic to establish
utilization metrics to verify whether a single T1 will suffice?
At 02:30 PM 6/12/2002 -0400, you wrote:
I guess I have to plan on using BGP. But can I get away without using
BGP?
I did plan on bringing both DSL and T1 into the 2621, I ment to say
that
the
pix is behind(on the inside).
Thanks
Alex Lei wrote in message
[EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
Wayne,
Why not use the router to terminate the links, and put the PIX
behind
the
router? The PIX will inspect the traffic, and the router can send
traffic
to
different links depending on where it originated from. Usually a 515
may
be
a better solution because it has a DMZ interface where the server
can
sit
on, but I guess there is a cost concern.
Alex
Wayne Jang wrote:
Hi,
The Pix don't route, but can I do this?
I have a 2 server 20 user small office.
I have a Pix 506 sitting in front of a 2621 with a T1 and a DSL
link to the
Internet. I'm not looking to load balance or even do
redundancy. I just
want traffic from the servers to use the T1 and I want traffic
from the
users to use DSL. I could use access-lists on the 2621 to
direct the
traffic based on source address, but how will the 2621 know
where the
traffic came from? Won't all traffic have a source address of
the Pix
outside interface? What if I Nat the servers(on PIx) so that
they will
appear to have a different source IP than the users who will be
behind the
global outside address? I'll need more public addresses, but
that would be
fine.
I can't get any help from Cisco Pre-Sales because they aren't
sure. I can't
get an engineer that knows more than me (not much).
My fall back plan is to only use the 2621 and have a firewall
IOS. But I
would rather use the Pix, especially because we have already
quoted the
above solution and are working to save face.
Thanks
--
Wayne Jang
Advanced Computer Technologies, Inc.
108 Main Street
Norwalk, CT 06851
Wk 203-847-9433
Cell 203-943-6603
Message Posted at:
http://www.groupstudy.com/form/read.php?f=7i=46369t=46356
--
FAQ, list archives, and subscription info: http://ww
Re: Pix don't route [7:46356]
I failed to make clear that the customer understands that he won't have automatic failover. I also understand that the advertised route will be no good through the DSL provider. However, he will still be able to transfer files if the T1 goes down. Maybe from a workstation or maybe we do some config changes and tell users to ftp to another ip address (by then the T1 ISP will be back up,dah) the ftp and ftp1 DNS entries is a good idea. I am learning something though. This doesn't seem worth all the trouble. Unfortunately the customer is set on it and we've confirmed that it is possible. Dangerous client, he knows just enough to make our life hard, but not enough to understand how unorthodox this is. If anything, this is a good drill for me, and all these posts are not only enlightening, but interesting. Beats the book I'm reading. John Kaberna wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... What happens when the T1 provider goes down? Those IP's will no longer be reachable and the servers will be down. Without BGP I don't see how you are going to get the DSL circuit to take over the IP's that the T1 provider advertises. Assuming you have BGP, I would thing that policy routing and using different global addresses would get the job done. Sounds to me like the only barrier is getting BGP. Kent Hundley wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... Wayne, I would suggest disabling NAT on the PIX and performing your NAT on the router. This eliminates the problem of not knowing what packets originate from the servers. Then, setup Policy-Based Routing (PBR) on the router. You didn't post your config, so I assume you have 2 legal addresses, one from each ISP and you don't have your own address space. If you want to setup inbound services you'll have to setup static NAT on the router for the services you want to allow. For outbound the PBR it's pretty simple: int s 0 interface to T1 int e 0 interface to DSL int ip policy route-map test access-list 100 any route-map test permit 10 match ip address 100 set int s 0 route-map test permit 20 For outbound traffic packets from the servers will be sent out the T1 as long as it is up, all other traffic will be forwarded normally. You'll want to set your routing so that the DSL line is the preferred path for all traffic. If the T1 goes down, the traffic from the servers will be sent out the DSL. Additional problems that I see are if your servers are to be accessible from the Internet, you will need to have static translations setup for your services on both the T1 and the DSL. You can do this, but the issue becomes name resolution and which address is returned to users on the Internet. It's probably safer to just setup the translations for the T1 and leave it at that. (you could play some games if you ran your own DNS, but things get complicated pretty quickly) You don't need the FFS on the router as long as everything is behind the PIX (although it shouldn't hurt) and you don't need the link between the router and the PIX to be have a public address space as long as you do the NAT on the router. Of course, you also will want to harden the Internet facing router if you have not already done so. One more thing, it's not really accurate to say the PIX doesn't route. People say this all the time and what they really mean is that the PIX doesn't support routing protocols and some fancy routing techniques like PBR. However, the PIX does perform layer 3 forwarding based on its routing table, this means, by definition, it is routing. It just doesn't have the same features and functions for layer 3 forwarding that cisco routers have. (this is kind of a nit, but saying the PIX doesn't route tends to confuse people) HTH, Kent -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Wayne Jang Sent: Wednesday, June 12, 2002 10:10 AM To: [EMAIL PROTECTED] Subject: Pix don't route [7:46356] Hi, The Pix don't route, but can I do this? I have a 2 server 20 user small office. I have a Pix 506 sitting in front of a 2621 with a T1 and a DSL link to the Internet. I'm not looking to load balance or even do redundancy. I just want traffic from the servers to use the T1 and I want traffic from the users to use DSL. I could use access-lists on the 2621 to direct the traffic based on source address, but how will the 2621 know where the traffic came from? Won't all traffic have a source address of the Pix outside interface? What if I Nat the servers(on PIx) so that they will appear to have a different source IP than the users who will be behind the global outside address? I'll need more public addresses, but that would be fine. I can't get any help from Cisco Pre-Sales because they aren't
Re: Pix don't route [7:46356]
The RADware appliance looks cool, but this guy is done spending money. Greene, Patrick wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... Wayne, You have to put the PIX behind the router, as the PIX does not have T1 interfaces...just LAN interface. UNFORTUNATELY.AND I REALLY HATE TO SAY THISBUT...this sounds like a good application for RADware's LinkProof. You would plug your router and DSL into this device and it will select the best route for traffic...granted you will get assymnetrical traffic patterns with this...but it will do what you are looking for...then put the PIX behind the LinkProof box. FYI...I am not slamming RADware but I try to make Cisco solutions fit first when applicable and I compete a lot against other RADware products. Sincerely, Patrick J Greene -Original Message- From: Wayne Jang [mailto:[EMAIL PROTECTED]] Sent: Wednesday, June 12, 2002 1:10 PM To: [EMAIL PROTECTED] Subject: Pix don't route [7:46356] Hi, The Pix don't route, but can I do this? I have a 2 server 20 user small office. I have a Pix 506 sitting in front of a 2621 with a T1 and a DSL link to the Internet. I'm not looking to load balance or even do redundancy. I just want traffic from the servers to use the T1 and I want traffic from the users to use DSL. I could use access-lists on the 2621 to direct the traffic based on source address, but how will the 2621 know where the traffic came from? Won't all traffic have a source address of the Pix outside interface? What if I Nat the servers(on PIx) so that they will appear to have a different source IP than the users who will be behind the global outside address? I'll need more public addresses, but that would be fine. I can't get any help from Cisco Pre-Sales because they aren't sure. I can't get an engineer that knows more than me (not much). My fall back plan is to only use the 2621 and have a firewall IOS. But I would rather use the Pix, especially because we have already quoted the above solution and are working to save face. Thanks -- Wayne Jang Advanced Computer Technologies, Inc. 108 Main Street Norwalk, CT 06851 Wk 203-847-9433 Cell 203-943-6603 Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=46386t=46356 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: vpns [7:46259]
Do you have a CCO login, there are some good sample configs if you dig into the stuff there. Let me know if you can't find them. GEORGE wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... Im looking for a configuration example between a pix and a 2000 professional? Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=46263t=46259 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: pix and vpn [7:45934]
yes, you can. 56 bit is free or buy a 168-bit 3Des license for around $200. But you don't need an accelerator card. GEORGE wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... I don't have a vpn accelerator card installed on my pix can I configure vpn ? Im trying to configure internet users ability to connect to my internal network Probably use this config http://www.cisco.com/warp/customer/110/pptpcrypto3.html any suggestions..? 0: ethernet0: address is 0090.2710.27df, irq 11 1: ethernet1: address is 0090.270d.c12c, irq 10 2: ethernet2: address is 0090.2710.46a2, irq 15 Licensed Features: Failover: Enabled VPN-DES:Enabled VPN-3DES: Disabled Maximum Interfaces: 6 Cut-through Proxy: Enabled Guards: Enabled URL-filtering: Enabled Inside Hosts: Unlimited Throughput: Unlimited IKE peers: Unlimited Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=46265t=45934 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Design question concerning Pix, DSL, and Frame T1 [7:45857]
I agree, it seems that I would need to use some sort of poliy based routing. The questions is, can I do this with one router and one PIx 506? Clayton Price wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... I don't think simply using static routes is sufficient. You would need to use policy based routing and route maps to be able to route based on source addresses. Clayton Wayne Jang wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... Hi, I think this will work: I have a customer that would like to use two connections to the Internet (one sdsl and one frame) I want the two servers to use the DSL for Internet and the 20 users could use the Frame T1 (no BGP, not load balanced). I want to use a Cisco 1720 with a serial wic for Frame and a module for the DSL. I will than use a Pix 506e behind the router. Can I configure the Pix to recognize traffic from the servers and tag it somehow so the router will send it out the DSL side of the 1720? The traffic from users would need to do the same but exit out the T1. Is this considered routing on the Pix side, or can I use access lists in some way to make this work? A friend of mine said this could be done, but I'm a little unsure. Thanks, Wayne Wayne Jang Advanced Computer Technologies, Inc. 108 Main Street Norwalk, CT 06851 Wk 203-847-9433 Cell 203-943-6603 Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=46211t=45857 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Design question concerning Pix, DSL, and Frame T1 [7:45857]
Hi, I think this will work: I have a customer that would like to use two connections to the Internet (one sdsl and one frame) I want the two servers to use the DSL for Internet and the 20 users could use the Frame T1 (no BGP, not load balanced). I want to use a Cisco 1720 with a serial wic for Frame and a module for the DSL. I will than use a Pix 506e behind the router. Can I configure the Pix to recognize traffic from the servers and tag it somehow so the router will send it out the DSL side of the 1720? The traffic from users would need to do the same but exit out the T1. Is this considered routing on the Pix side, or can I use access lists in some way to make this work? A friend of mine said this could be done, but I'm a little unsure. Thanks, Wayne Wayne Jang Advanced Computer Technologies, Inc. 108 Main Street Norwalk, CT 06851 Wk 203-847-9433 Cell 203-943-6603 Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=45857t=45857 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
ISDN Simulator Question [7:45634]
If I have a NP 4B module on my 4500M, can I use it alone with an ISDN simulator? Or should I really have another ISDN capable router to practice ISDN configs. I was thinking I could use the 4 Bri ports to my advantage. I'm afraid it doesn't make sense to pass traffic to interfaces on the same router, but maybe for the sake of ISDN it doesn't matter that much. -- Wayne Jang Advanced Computer Technologies, Inc. 108 Main Street Norwalk, CT 06851 Wk 203-847-9433 Cell 203-943-6603 Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=45634t=45634 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Bandwidth Throttling [7:45354]
Hello, We have some servers at a colocation site. We have a 10MB pipe but we are paying for 3MB. The ISP charges us more $$ if we use more than 3 MB. Can I configure my router to not allow me to use more than 3MB? Thanks, Wayne -- Wayne Jang Advanced Computer Technologies, Inc. 108 Main Street Norwalk, CT 06851 Wk 203-847-9433 Cell 203-943-6603 Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=45354t=45354 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Help with Pix 506 to 506 VPN [7:44931]
Hey, I have a pix to pix vpn that was working fine. I changed the outside ip address on one of the Pix's for a ISP reasons. I then made all the necessary changes on the remote Pix(set peer, and isakmp key.) I also performed a clear xlate on both firewalls. tonight i can vpn to both firewalls, but earlier I couldn't ping addresses on the remote end with a workstation behind one of the firewalls. However, I could ping remote ip address from within the firewall. So the tunnel is up, but why can't the workstations hit those remote addresses? Do I need to clear some crypto or isakmp sa? Any help would be greatly appreciated. -- Wayne Jang Advanced Computer Technologies, Inc. 108 Main Street Norwalk, CT 06851 Wk 203-847-9433 Cell 203-943-6603 Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=44931t=44931 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Code upgrade switch catalyst 1200 [7:43348]
what port are you plugged into on the switch? can you print in an email the show interface command? Alexandre Carvalho wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... Hello Guys, I have a weird problem with upgrading my switch and I was wondering if somebody could help me out. My laptop is in the same subnet as the switch , but I cannot ping each other. I am running tftp server in my laptop so if I cannot ping I cannot upgrade it. I check the port where my laptop is connected and it says OK. Any ideas?? Laptop: 10.2.2.1 /16 Switch : 10.2.2.2 /16 Command used in the switch : set interface sc0 10.2.2.2 255.255.0.0 Thanks, Alex Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=43482t=43348 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Code upgrade switch catalyst 1200 [7:43348]
Just curious, I have a 1201 and I just practiced making a copy of my nmp and dmp with TFTP server. Did you give your switch a IP address using the admin port? Than make sure you are plugged into a port with ethernet and make sure your laptop is on the same subnet. What software version are you upgrading to? I have 4.26. Michael L. Williams wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... Which model switch is it? If it's running IOS then you simply need an IP on interface VLAN1. By defaults all ports are in VLAN1, but if you've changed it around, you need to make a port in VLAN1 and connect to it. If it's using the CatOS, then make sure you're plugging into a port (again) on VLAN1 since that's the default mgmt VLAN (i.e. can communicate with sc0) Mike W. Alexandre Carvalho wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... Hello Guys, I have a weird problem with upgrading my switch and I was wondering if somebody could help me out. My laptop is in the same subnet as the switch , but I cannot ping each other. I am running tftp server in my laptop so if I cannot ping I cannot upgrade it. I check the port where my laptop is connected and it says OK. Any ideas?? Laptop: 10.2.2.1 /16 Switch : 10.2.2.2 /16 Command used in the switch : set interface sc0 10.2.2.2 255.255.0.0 Thanks, Alex Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=43398t=43348 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Need Power Supply for ADC Kentrox [7:43446]
Hi, I just bought a ADC Kentrox DataSMART T1 DSU/CSU model #78563. Unfortunately it didn't come with AC power. I'm having trouble locating a power supply on ebay etc. Any ideas? Thanks, Wayne Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=43446t=43446 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: How can I measure traffic through a 2600 router (over [7:43304]
I installed ActiveState ActivePerl 5.6 Using W2K Pro John Huston wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... What version of PERL did you install? Wayne Jang wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... Got it, I installed Perl and MRTG and it works great. Ladrach, Daniel E. wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... MRTG, it is free! Daniel Ladrach CCNA, CCNP WorldCom -Original Message----- From: Wayne Jang [mailto:[EMAIL PROTECTED]] Sent: Friday, May 03, 2002 10:39 AM To: [EMAIL PROTECTED] Subject: How can I measure traffic through a 2600 router (over time/1 [7:43224] I have a client that wants to know how much traffic is passing through his router. They are ordering new service and want to know how much bandwidth to order. What utility should I use? Thanks Wayne Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=43304t=43304 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Real Life Wireless Question [7:43293]
I recently installed the Aironet 350, however, I'm not expert. It is a little confusing, the bridge can actually act as an access point in addition to only being a bridge. The software for the products allows you to set how the product will work. Does this help? What are you trying to do? Maybe I can help better if I know what it is you want to accomplish. Wayne Marko Milivojevic wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... I have one question that most probably doesn't fit into any studies here, but there are a lot of knowlegable people here that might help. What is the difference between Aironet bridges and aironet access points? Bridges are, obviously, more expensive and that's not my point. Can you use two AP's (AIR-AP352E2R-E-K9 for example) on two remote locations and bridge two LAN's over them? Post answers directly to me, if inapropriate for the list. Thanks in advance. Marko. Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=43317t=43293 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Free Sniffer download [7:43297]
Just curious, will the Pix 506 (6.2)work if you have a DHCP assigned IP from your DSL provider? Greg Owens wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... I am searching for a Sniffer Download Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=43316t=43297 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
How can I measure traffic through a 2600 router (over time/1 [7:43224]
I have a client that wants to know how much traffic is passing through his router. They are ordering new service and want to know how much bandwidth to order. What utility should I use? Thanks Wayne Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=43224t=43224 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: How can I measure traffic through a 2600 router (over [7:43251]
Thanks. I installed Perl and MRTG and it's cool. Marko Milivojevic wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... I have a client that wants to know how much traffic is passing through his router. They are ordering new service and want to know how much bandwidth to order. What utility should I use? MRTG is fairly standard tool for this purpose. It is widely use, quite simple to setup and free. Marko. Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=43251t=43251 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: How can I measure traffic through a 2600 router (over [7:43252]
Got it, I installed Perl and MRTG and it works great. Ladrach, Daniel E. wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... MRTG, it is free! Daniel Ladrach CCNA, CCNP WorldCom -Original Message- From: Wayne Jang [mailto:[EMAIL PROTECTED]] Sent: Friday, May 03, 2002 10:39 AM To: [EMAIL PROTECTED] Subject: How can I measure traffic through a 2600 router (over time/1 [7:43224] I have a client that wants to know how much traffic is passing through his router. They are ordering new service and want to know how much bandwidth to order. What utility should I use? Thanks Wayne Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=43252t=43252 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Building a Cisco Lab [7:43072]
I would be interested in purchasing the 4500M from you. How can we proceed. Wayne Brian wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... I would say 2520 can be pricey. You get 2 high speed ports, 2 low speed and 1 bri and 1 ethernet. for example, I sell 4500M's 32MB DRAM/16 Flash, 4 DTE/DCE cables, 1 ethernet, 4 serial, for $600.00. Thats cheaper than you'll probably see a 2520 for, plus you get all the cables.. Sure the 2520 has 1 BRI, i can throw in 4 BRI interface module (NP-4B) for $50 extra. The 4500M is like a dragster next to the 2520, its a whole different world than the 4000/4000M. It has a RISC processor. 4500M's are modular and can take FastEthernet and ATM interfaces. Just trying to be helpfull :) I have a small book I am publishing on the net, it will be on lab equipment selection and it goes into detail on frame relay switch selection. should be done in about 30 days. Brian On Wed, 1 May 2002, Wayne Jang wrote: I'm thinking about buying a 2520 as a frame router. I already have two 2501s, one 2502, one 1201 swtich, and a 1912 switch. Is getting the 2520 a good way to spend my very limited funds? Wayne I'm buying / selling used CISCO gear!! email me for a quote Brian Feeny, CCIE #8036 Netjam, LLC [EMAIL PROTECTED] http://www.netjam.net VISA/MC/AMEX/COD phone: 318-212-0245 30 day warranty fax: 318-212-0246 Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=43102t=43072 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Building a Cisco Lab [7:43072]
I see, the token ring version is in less demand and you won't be using the ethernet/token ring anyway. But what about those AGS+ routers. I saw one on ebay for $100. It had 8 serial ports. What's the drawback to using that for a frame switch? Wayne Jang wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... I'm thinking about buying a 2520 as a frame router. I already have two 2501s, one 2502, one 1201 swtich, and a 1912 switch. Is getting the 2520 a good way to spend my very limited funds? Wayne Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=43075t=43072 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Building a Cisco Lab [7:43072]
Thanks Brad. I'll consider your input. CiscoB wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... Wayne, Ive had nothing but problems with 4000 series modular routers. So many problems, in fact, that I've stopped selling them. Too many hardware failures. Stick with the 2500 series thanks, -Brad Ellis CCIE#5796 (RS / Security) [EMAIL PROTECTED] Cisco home labs: www.optsys.net Wayne Jang wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... I see, the token ring version is in less demand and you won't be using the ethernet/token ring anyway. But what about those AGS+ routers. I saw one on ebay for $100. It had 8 serial ports. What's the drawback to using that for a frame switch? Wayne Jang wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... I'm thinking about buying a 2520 as a frame router. I already have two 2501s, one 2502, one 1201 swtich, and a 1912 switch. Is getting the 2520 a good way to spend my very limited funds? Wayne Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=43172t=43072 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Building a Cisco Lab [7:43072]
I'm thinking about buying a 2520 as a frame router. I already have two 2501s, one 2502, one 1201 swtich, and a 1912 switch. Is getting the 2520 a good way to spend my very limited funds? Wayne Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=43072t=43072 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
test [7:43077]
test Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=43077t=43077 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Building a Cisco Lab [7:43072]
Thanks CiscoB. Wayne Jang wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... I'm thinking about buying a 2520 as a frame router. I already have two 2501s, one 2502, one 1201 swtich, and a 1912 switch. Is getting the 2520 a good way to spend my very limited funds? Wayne Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=43078t=43072 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: GroupStudy - Experts and Gurus.. [7:43062]
I'm new to this list. However, I recognize that there will be many who can contribute based on years of experience. I hope that those veterans will reply to my questions especially when the subject may be something that they have covered extensively in their travels. Nigel Taylor wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... All, I typically try not to get involved in threads like this one, since it really serves no purpose. I've been a member of this list for some four plus years and this type of thread always seem to creep into the list. John's earlier post I think was truely funny and if anyone who read it didn't notice the humor, you missed out. In the time I've been on the list there have been a number of very knowledgable people of which Howard is most certainly one of the most notable. What I don't understand is why everyone on the list can't simply participate as part of the group for the collective good and not be concerned with Howard's abilty to prove himself. In perspective, I think one should see the benefit in Howard's limited experience not having personally taken the lab. This I would believe benefits everyone on the list. From another perspective, I think the desire to pressure Howard into taking the lab, is a feeble attempt to justify one's own belief. The fact that there is possibly something out there in this field that they might possibly have some experience in that Howard dosen't. Folks like Howard, Priscilla, and a number of others contribute so much more to this list if not for the fact that they can provide factual infomation based on their research, writing, experience, and working realtionship with some of the more prominent persons in this field. Lastly, as I mentioned before this thread will most likely not go away and if it does, I'm sure someone will see the need to reiterate what was said before. When this urge arises please think of the value a thread like this will bring to the group and then see if it's worth the 1-click of the send button..please clear this with Amazon first. Nigel _ Send and receive Hotmail on your mobile device: http://mobile.msn.com Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=43079t=43062 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: To The Experts and Gurus [7:42996]
Ok. After reading all the responses in this thread and then re-reading John's inital post. I must confess it was truly funny. It's more than sarcastic and it put a big grin on my face. Wayne John Neiberger wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... I've been noticing a growing trend on the list for several months now and I'm hoping to start some discussion and perhaps alleviate this particular issue. As everyone knows we have a fair number of true, guru-level experts that participate in the list and provide a wealth of excellent networking knowledge. However, very often this isn't Cisco-specific and as such is not of much value and it really seems to irritate other members of the list who understand that the only topics worth studying are Cisco-related. To make matters even worse, many of these so-called experts aren't even Cisco certified!! I was under the impression that to be a true expert one must have attained the CCIE certification, or at least CCNP with multiple specializations. How can we trust your advice if you we don't see those initials in your email sigs?? Participation on the list by these sorts of experts, regardless of there vast experience and knowledge, causes excessive distress to certain list members. In order to show more tolerance toward the easily annoyed, perhaps we should consider only allowing CCIEs to answer posts. I'm sure others would agree that this would solve this problem. We must find a way to prune the non-certified from our ranks. Regards, John advice unless you've passed some sort of parenting certification. Thanks.) Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=43081t=42996 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
