Re: IOS BUG??? [7:74804]
Can you post your configurations for this? What area is R5 in? Why are you skipping over R5 as the end of the virtual-link? -- Bill Lijewski CCIE #8642 Jens Petter Eikeland wrote in message news:[EMAIL PROTECTED] Hi group , I have been working on a backup solution with isdn and the primary is a frame link I am running on an 2500 with 12.1(18) and a 2500 with 12.(18) Thi is my net. R6-R1==R5--R4R2- R6r4 is frame-relay net == is isdn link Area 0 is R6 to R1, Area 1 is from r6down to r4 Area 2 is from R4 and to R2 My primary virtual link is from R6 to R4 My backup primary is from R1 to R4 What happens her is that the backup virtual link wont come up over the isdn link. I have tested this both with and without demand circuit, dialer watch and without any of them. My config is correct and my authentication is correct. I have also tested this without authentication. The strange thing is that this has happen to me on two different rack. I have had several people go Over this, but they cant find any thing wrong Is there anywon hwo knows if there is an bug in this software with regards to this.?? JP **Please support GroupStudy by purchasing from the GroupStudy Store: http://shop.groupstudy.com FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=74814t=74804 -- **Please support GroupStudy by purchasing from the GroupStudy Store: http://shop.groupstudy.com FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Re: Console port now working on 4000 [7:74489]
Does it display anything when you powercycle the router? Does it display the bootup information and then freeze? If it displays the bootup information and then freezes you may have accidentally put 'no exec' under the console port. You would need to break into the router, just like you would if you were resetting the password. -- Bill Lijewski CCIE #8642 Rohit-Sundriyal(CCNA) wrote in message news:[EMAIL PROTECTED] Hi All My Cisco 4000 consol port is not work any idea what whent wrong or how to make it work. Thanks in advance **Please support GroupStudy by purchasing from the GroupStudy Store: http://shop.groupstudy.com FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=74531t=74489 -- **Please support GroupStudy by purchasing from the GroupStudy Store: http://shop.groupstudy.com FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Re: eigrp help [7:73272]
Can you post your configs so we can see exactly what you are doing? Thanks, -- Bill Lijewski CCIE #8642 PPC-DAT Ep-Ng-Ist wrote in message news:[EMAIL PROTECTED] Hi all, I need some help on eigro redistribution.I redist eigrp from two AS into each other.I can see all the routes in one AS and not the other. What do I need to do? Rgds, AK Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=73287t=73272 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: ISDN connect/disconnect issue [7:71845]
Usually when it goes up and down that fast its an authentication problem. Try the 'debug ppp authentication' command on your router and post the output. You should see 2 challenges, 2 responses, and 2 successes. If you don't see those then you have an issue with your usernames and/or passwords. -- Bill Lijewski CCIE #8642 wrote in message news:[EMAIL PROTECTED] Hey folks: I'm struggling with an ISDN issue in which the call comes up, but then is immediately dropped without the interesting traffic being sent. I'm an ISDN neophyte, so I'm more than willing to admit a config error on my part, but from what I can see, my first thought is that it's a provider issue. Anyone ever experienced this before? Thanks, BJ Debug dialer shows: Jul 3 15:02:14.261: BR0/0 DDR: Dialing cause ip (s=w.x.y.z+1, d=w.x.y.z) Jul 3 15:02:14.261: BR0/0 DDR: Attempting to dial (number).. Jul 3 15:02:17: %LINK-3-UPDOWN: Interface BRI0/0:1, changed state to up Jul 3 15:02:18: %ISDN-6-CONNECT: Interface BRI0/0:1 is now connected to (number) Jul 3 15:02:18: %LINK-3-UPDOWN: Interface BRI0/0:1, changed state to down Jul 3 15:02:18.045: BR0/0:1 DDR: disconnecting call Debug isdn q921 shows: Jul 3 15:05:35: %ISDN-6-CONNECT: Interface BRI0/0:1 is now connected to (number) Jul 3 15:05:35: %ISDN-6-DISCONNECT: Interface BRI0/0:1 disconnected from (number) , call lasted 1 seconds Debug isdn q931 shows: Jul 3 15:08:03.270: ISDN BR0/0: TX - SETUP pd = 8 callref = 0x0C Jul 3 15:08:03.270: Bearer Capability i = 0x8890218F Jul 3 15:08:03.274: Channel ID i = 0x83 Jul 3 15:08:03.274: Keypad Facility i = 'number' Jul 3 15:08:03.470: ISDN BR0/0: RX CONNECT_ACK pd = 8 callref = 0x0C Jul 3 15:08:07.354: ISDN BR0/0: RX RELEASE pd = 8 callref = 0x0C Jul 3 15:08:07.402: ISDN BR0/0: RX Feature Indicate i = 0x8100 Jul 3 15:08:07.450: ISDN BR0/0: RX Relevant Config: interface Dialer16 description ISDN dial backup to John Doe bandwidth 56 ip address w.x.y.z+1 / 30 no ip directed-broadcast ip nat outside encapsulation ppp dialer remote-name JohnDoe dialer string (number) class top1r2 dialer pool 6 dialer-group 1 pulse-time 0 ppp authentication chap interface BRI1/5 description ISDN dial backup Group #6 bandwidth 56 no ip address no ip directed-broadcast encapsulation ppp dialer pool-member 6 isdn switch-type basic-ni isdn spid1 (x) isdn spid2 (y) no fair-queue ppp authentication chap map-class dialer top1r2 dialer idle-timeout 1800 dialer isdn speed 56 (interesting traffic defined as all TCP) mail2web - Check your email from the web at http://mail2web.com/ . Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=71859t=71845 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Upgrading IOS with new flash on my 2500's [7:65472]
All, I recently bought some new flash for my 2500's and would like to know if there is an easier way to upload the newest IOS, other than with the console cable. Thanks, Bill Clements MCSE, CCNP Network Engineer INS Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=65472t=65472 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: OT: Cisco Advertising [7:64561]
Try this Link New ad campaign. Very detailed http://www.cisco.com/offer/powernow/sm_med/bdm/mobility/index.html?sid=11831 4_49 MADMAN wrote in message news:[EMAIL PROTECTED] Priscilla Oppenheimer wrote: They are probably trying go generate more spending!? But, alas, there's no evidence that advertising actually works. :-) Priscilla I think there are some folks on Madison Ave. the would vehemently disagree with you;) Dave -- David Madland CCIE# 2016 Sr. Network Engineer Qwest Communications 612-664-3367 You don't make the poor richer by making the rich poorer. --Winston Churchill Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=64651t=64561 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Cisco Call Manager backup question [7:62617]
Tim, http://www.cisco.com/univercd/cc/td/doc/product/voice/c_callmg/3_2/install/b ackup/b_r321.htm has the information you are looking for... Pat -Original Message- From: Lipscombe, Tim [mailto:[EMAIL PROTECTED]] Sent: Thursday, February 06, 2003 10:05 PM To: [EMAIL PROTECTED] Subject: Cisco Call Manager backup question [7:62617] Does any one know where I can find information about the Cisco Call Manager 3.2 backup utility? I am trying to find out what my backup tapes have on them. Thanks Tim Lipscombe Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=62621t=62617 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: OT-Netscreen 5xp VPN very slow [7:62461]
Well, having worked with the Netscreen Firewall products, I find it interesting that you feel its your bottle neck. Take a look at the architecture you've outlined: PC---NetScreen---Cable Modem VPN Gateway (what type of gateyway is this?)Internet. The short answer here is that anytime you add security devices to a traffic flow especially when cipher-decipher takes place, you'll take a performance hit. That's the price we pay (though things are improving dramatically!) for privacy. NetScreens traditionally are quite fast devices and though the 5X is a smaller appliance its still quite good. Will Gragido CISSP CCNP CIPTSS CCDA MCP 9450 W. Bryn Mawr Ave. Suite 325 Rosemont, Il 60018 www.ins.com [EMAIL PROTECTED] -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] Sent: Wednesday, February 05, 2003 1:24 AM To: [EMAIL PROTECTED] Subject: RE: OT-Netscreen 5xp VPN very slow [7:62461] Hi, Did you check the NS-5XP log? Also, if you place your PC behind the NS and access internet, what's the path of your traffic? Simply PC- FW- cable modem- Internet OR PC- FW( VPN gateway ) - cable modem - VPN gateway - Internet? BUT you mentioned 3DES, if NS is just using as a Firewall, encryption (3DES and VPN) should not cause your problem. rgds, ivan Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=62500t=62461 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: OT-Netscreen 5xp VPN very slow [7:62461]
My mistake, I thought that you were implying that there was a performance issue with that architecture. Will Gragido CISSP CCNP CIPTSS CCDA MCP 9450 W. Bryn Mawr Ave. Suite 325 Rosemont, Il 60018 www.ins.com [EMAIL PROTECTED] -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] Sent: Wednesday, February 05, 2003 10:49 PM To: [EMAIL PROTECTED] Subject: RE: OT-Netscreen 5xp VPN very slow [7:62461] William, I just pointed out the one of the possible architecture. VPN gateway I mentioned may be other vendors that can work with netscreen like checkpoint... Any problems on my thought? Ivan Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=62561t=62461 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: About Unity Engineer Exam [7:62389]
It's a difficult exam in that you need to know all the hardware specs for the various servers etc. Other than that, its not too bad. Will Gragido CISSP CCNP CIPTSS CCDA MCP 9450 W. Bryn Mawr Ave. Suite 325 Rosemont, Il 60018 www.ins.com [EMAIL PROTECTED] -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] On Behalf Of Jefferson Orsi Siratuti Sent: Tuesday, February 04, 2003 12:13 PM To: [EMAIL PROTECTED] Subject: About Unity Engineer Exam [7:62389] Hello, anyone has take the Unity Engineer Exam? This exam is hard? Boson tests are the best simulates for this exam? Thanks. Jefferson CCNA / CCNP / BISCI Technician / MCSE (2/7) Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=62454t=62389 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Richard A. Deal Books [7:62027]
Ask him yourself, he contributes to this group ;-) Rich's books are quite good. He clearly expresses his points and doesn't get lost in non-relevant idioms. Will Gragido CISSP CCNP CIPTSS CCDA MCP 9450 W. Bryn Mawr Ave. Suite 325 Rosemont, Il 60018 www.ins.com [EMAIL PROTECTED] -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] On Behalf Of Joseph R. Taylor Sent: Tuesday, January 28, 2003 9:43 AM To: [EMAIL PROTECTED] Subject: Richard A. Deal Books [7:62027] Hi Everyone, I'm interested in knowing how good Richard A. Deal's books are. Especially in reference to MCNS. Thank you in advance. Joseph R. Taylor MCSE, CCNP Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=62034t=62027 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: NT4.0 password crack tool [7:61807]
One wordL0phtCrack Will Gragido CISSP CCNP CIPTSS CCDA MCP 9450 W. Bryn Mawr Ave. Suite 325 Rosemont, Il 60018 www.ins.com [EMAIL PROTECTED] -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] On Behalf Of Evans, TJ (BearingPoint) Sent: Monday, January 27, 2003 3:58 PM To: [EMAIL PROTECTED] Subject: RE: NT4.0 password crack tool [7:61807] Why not use LinNT? ... boot off of a linux floppy, reset admin password and boot up with new password. Since you are (presumably) not trying to be sneaky _and_ you have direct access to the machine changing the PW should not be a problem, yes? Oh - and it is free, and works with WinNT4 - WinXP. Thanks! TJ -Original Message- From: Arnold, Jamie [mailto:[EMAIL PROTECTED]] Sent: Saturday, January 25, 2003 2:54 PM To: [EMAIL PROTECTED] Subject: RE: NT4.0 password crack tool [7:61807] Why do a command line? Just rename user manager to logon.scr and reboot (you'll need NTFSDOS Pro) and in 15 minutes you get user manager with root perms. Imagination is more important than knowledge Albert Einstein -Original Message- From: Juntao [mailto:[EMAIL PROTECTED]] Sent: Friday, January 24, 2003 4:50 PM To: [EMAIL PROTECTED] Subject: Re: NT4.0 password crack tool [7:61807] u'r talking about nt4 login passwords, the SAM database? lophtcrack works, it takes a long time though systernals has tools to login to the box, and change things. u can also change cmd.exe to the default screen savec name, the command line will pope up after a while, after reboot. and change the password with the net user command if the server or the box is part of the global admin group, i'm sure u know u can change the password or reset it, even just with, user manager for domains. and there is of course a lot of other things that can be done, depending on ur situation. hope the above helps regards Kazan, Naim a icrit dans le message de news: [EMAIL PROTECTED] I am trying to recover my password that someone set on my sniffer box running on NT4.0. Any help will be greatly appreciated. Naim Kazan FISC-SDS WORK: 201-915-7347 HOME: 973-492-1466 CELL: 917-559-0591 EMAIL: [EMAIL PROTECTED] PAGER: 800-759-8352 Pin 1145361 ** The information in this email is confidential and may be legally privileged. Access to this email by anyone other than the intended addressee is unauthorized. If you are not the intended recipient of this message, any review, disclosure, copying, distribution, retention, or any action taken or omitted to be taken in reliance on it is prohibited and may be unlawful. If you are not the intended recipient, please reply to or forward a copy of this message to the sender and delete the message, any attachments, and any copies thereof from your system. ** Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=61993t=61807 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: NAT and VoIP [7:62053]
You may indeed experience issues with NAT and VoIP. You will have to revisit your NAT pool and review the address schema for your IP telephony end points and most likely adjust your pools accordingly. This will also, depending on the size of the deployment and enterprise, probably cause you to have to review your DHCP scope(s) as well. Will Gragido CISSP CCNP CIPTSS CCDA MCP 9450 W. Bryn Mawr Ave. Suite 325 Rosemont, Il 60018 www.ins.com [EMAIL PROTECTED] -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] On Behalf Of neil K. Sent: Tuesday, January 28, 2003 2:14 PM To: [EMAIL PROTECTED] Subject: NAT and VoIP [7:62053] Anyone heard about having problems with NAT and running VoIP. I want run VoIP across a DSL link with NAT. Thanks in advance. neil K. Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=62059t=62053 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: T1 and Frame Relay Sniffers [7:61531]
I have some experience with the Fireberd 6000s with various interfaces - and I use the Agilent Advisor software version on a near daily basis - I really like it's h.323 capabilities. I did not know that TCC was now Acterna - one of my co-workers has been crowing about his old Domino Wan boxes that he got through ebay. Thanks for the info - I have an email into Acterna for a quote. Bill -Original Message- From: s vermill [mailto:[EMAIL PROTECTED]] Sent: Tue 1/21/2003 6:59 PM To: [EMAIL PROTECTED] Cc: Subject: RE: T1 and Frame Relay Sniffers [7:61531] Clarification below... s vermill wrote: William Pearch wrote: Does anyone have a recomendation for a sniffer solution to look at T1's, V.35, Frame Relay? Any experience with the Logix product? Bill in Anchorage Sorry, no Logix experience that I can remember. There really are two distinct types of WAN test equipment. For intrusively troubleshooting circuits any one of many Bit Error Rate test sets are usually employed. What used to be TTC (now Acterna) is responsible for the famous Fireberd series and also the T-Berd series. These are great products (I prefer the Fireberd in most cases for digital stuff but the T-Berd 310 has several optical options for SONET, PoS, etc). These also can monitor non-intrusively in many cases. As for v.35, there probably isn't much you could do for in-service monitoring. ThatCb,bs true in the case of the Fireberd and the T-Berd, which are primarily used for intrusive testing (in my experience). They donCb,bt drill down (up?) any further than the L2 frame and don't look at all into the payload. In the case of the below-mentioned Agilent Advisor, which is primarily used for in-service monitoring (in my experience), you can look much further up the protocol stack. I use it for HDLC decodes, for example, where HDLC might be carrying any number of upper-layer data (and sometimes man-readable ASCII text), which can be furhter decoded. It doesnCb,bt much matter whether or not itCb,bs v.35, TIA/EIA-232 or 422, whatever (as long as you have the appropriate interface module). In the T-Carrier and Frame Relay world, the test set can lock to the frame, verify the FCS, etc. I've also used the Agilent Advisor (formerly the HP Internet Advisor) quite a bit, which is a Windows-based test set for both LANs and WANs. It seems primarily geared towards sniffing or in-service stuff but can serve as an intrusive test set as well. None of these that I've mentioned are cheap, to say the least. Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=61541t=61531 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
T1 and Frame Relay Sniffers [7:61531]
Does anyone have a recomendation for a sniffer solution to look at T1's, V.35, Frame Relay? Any experience with the Logix product? Bill in Anchorage Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=61531t=61531 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Loading IOS / OT Now [7:61413]
The BayRS does have some very cool features. My favorite was the modularity of the software - if you didn't want a feature you built your software package without it. The only way you wound up with a bloated OS was if you either needed all the bling blings or if it was loaded by someone that didn't know what they wanted. With Cisco IOS, if I want Frame Relay SVC's on a 3640 I have to get a bloated 'Enterprise' IOS load that has more knobs then I'll ever use! The biggest problem(s) with the Bay/Wellfleet routers? There was that baby poop brown color... Lack of marketing skills... Not enough blinkie lights... a terrible web page... fairly shallow product lineup... and they weren't percieved as a leader in the market, but a follower. When Bay bought the Accellar I thought they were on to something and then Nortel happened. That's not a bad or a good thing - just change. Never underestimate the importance of blinking lights. Bill -Original Message- From: Erick B. [mailto:[EMAIL PROTECTED]] Sent: Tue 1/21/2003 8:51 PM To: [EMAIL PROTECTED] Cc: Subject: RE: Loading IOS / OT Now [7:61413] I use bnfs95 still but it was always an unsupported tool. Not aware of anything for 3com NetBuilders though. Old NB's had a floppy drive. Another cool BayRS tool is the PCAP tool to do captures right on the router. I like BayRS. Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=61542t=61413 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Traceroute troubles [7:61247]
Solved my own problem - see CSCdu43762 on the CCO. Shows up with the 7200 and an NSE-1 and (evidently though they are not listed) the 1760, 2621, 2621XM, 2611 and 1720. Solution is to turn off PXF (rate limiting of ICMP unreachables) using: no ip icmp rate unreach Lesson learned? Read everything... :) Bill -Original Message- From: William Pearch Sent: Thu 1/16/2003 8:12 PM To: William Pearch; [EMAIL PROTECTED] Cc: Subject: Traceroute troubles Why does traceroute seem to have problems with the second check of a final hop? RouterA-RouterB When trace from routerA loopback to routerB loopback, first one comes back fine, second is a * and third is fine. Seems wierd - 500 pings all go swell. Then to top it off... RouterA trace to RouterA loopback0, first one comes back fine, second is a * and third is fine. 500 pings all go swell. I've tried over ethernet, fast ethernet, serial (HDSL and frame relay). Same behavior on my 2600's and 1700's. All running 12.2.13T. I wasn't able to find anything on the CCO this evening. Thoughts? Bill Pearch, Anchorage Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=61247t=61247 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Confusion on CISSP requirements [7:60997]
Not necessarily Scott. You've got to be able to prove (in others words have documentable proof), that you've worked for a cumulative total of 4 years in the security field. Now, the caveat is that your work can be spread amongst the ten domains or relegated to one as long as your total time meets the minimum criteria. Then you are eligible to test. Once you test and pass, you must then be sponsored by a CISSP in good standing. Shoot me a note with any questions, Will Gragido CISSP CCNP CIPTSS CCNA CCDA MCP blah blah blah NSC www.ins.com -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Scott Sent: Monday, January 13, 2003 6:44 PM To: [EMAIL PROTECTED] Subject: OT: Confusion on CISSP requirements [7:60997] I'm a CCIE with over 4 years of experience in networking and a college degree. Each position I have had required a small percentage of security related work. Does that satisfy the requirements or are they asking for 100% security work? Any help greatly appreciated. Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=61035t=60997 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: VoIP from behind PIX [7:60796]
What sorts of performance issues are you noticing on the telephony side of the house? You said it was acceptable so on a MOS scale, whats the voice quality like? Thanks. Will -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of [EMAIL PROTECTED] Sent: Friday, January 10, 2003 6:18 AM To: [EMAIL PROTECTED] Subject: RE: VoIP from behind PIX [7:60796] We have several DSL sites that are composed of a PIX 501 and one or two IP phones. Voice quality is acceptable but not great. Scott --- On Fri 01/10, Simer Mayo wrote:From: Simer Mayo [mailto: [EMAIL PROTECTED]]To: [EMAIL PROTECTED]: Fri, 10 Jan 2003 07:35:17 GMTSubject: VoIP from behind PIX [7:60796]1. Will PIX 515 handle VoIP traffic?2. Will PIX 501 handle VoIP traffic?3. Can we VPN between 2 (site-to-site) and pass VoIP traffice thru theVPN Thanks SimerMessage Posted at:http://www.groupstudy.com/form/read.php?f=7i=60796t=60796-- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.htmlReport misconduct and Nondisclosure violations to [EMAIL PROTECTED] ___ Join Excite! - http://www.excite.com The most personalized portal on the Web! Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=60828t=60796 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
OSPF area command with advertise option [7:60550]
Hi group I just happened to find there is an advertise option could be added in area area-id range ip-address mask command. The command could be like this area area-id range ip-address mask advertise. My question is, will there be any functional difference between with and without this option. As per DOC CD, option advertise means: Sets the address range status to advertise and generates a Type 3 summary link-state advertisement (LSA). But by default, when we generate a summary address in ABR without any options, the summary address will be advertised automatically, am I right? Thanks William Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=60550t=60550 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: O/T more campus design issues [7:60136]
Hi Priscilla Maybe you can try this: ip forward-protocol udp 137 ip forward-protocol udp 138 ip forward-protocol spanning-tree Best regards, William Priscilla Oppenheimer wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... bergenpeak wrote: Thanks. I always like hearing from you, bergenpeak. DHCP is working and the DHCP server is on the other net so we think inter-VLAN routing and the helper address are behaving and that STP forwarding delay isn't biting us. We tried having the helper address point to a broadcast just in case that would help Windows. It didn't break DHCP but it didn't help Windows either. ;-) Most things are working, just not Windows. Luckly the customer is a Windows type, unlike me, so we'll get it working hopefully. THANKS! Priscilla If you only have hosts connected to the switch (not L2 devices), enable port-fast on the host ports. This eliminates the spanning tree states on the port and thus the port begins forwarding packets with a few seconds of the link coming online. This might be the problem if static IPs are assigned to the hosts. If DHCP is being used and DHCP is working, I'd expect it is not a problem with the port and spanning tree. One other possible gotcha is regarding routing and the VLAN interface. If no devices are active on the VLAN, the router might consider the VLAN subnet down and withdraw the route from its advertisements. Priscilla Oppenheimer wrote: You all remember my very simple campus network re-design that I've been helping out with? It sure has been keeping me humble. ;-) So we upgraded the single subnet to two subnets and two VLANs. Everything is working OK except for Windows networking. The PCs on the new subnet can't find a domain controller for authentication. So, you can feel free to yell at me for not gathering more information on the symptoms, but the client hasn't told me much. ;-) But does this ring a bell with anyone? Are there standard recommendations on how to handle this in a subnetted VLANed internetwork. I'm not too well informed on Windows networking. My co-author wrote that chapter in my troubleshooting book. Thank-you so much! Priscilla Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=60199t=60136 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
17X0 HSRP bug [7:60197]
Those of you that have 1700 series routers in your labs, take a look at bug CSCdz64230. It had me chasing my tail a while this evening. The net net is you get a flapping link, and nearly constant hsrp state changes and spanning tree action. TTFN, Bill Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=60197t=60197 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: 7200 Router Questions... [7:59645]
In order to hit performance marks that are excellent with IPSec you will need not only a spiffy NPE but the PA-VAM or PA-ISA. Be aware that the PA-VAM may not work with the latest and greatest IPSec image. I picked up a 7206VXR VPN bundle from Cisco last month and the only IOS supported was 12.1(9)E. This may have changed with 12.2(13)T - do your homework and test it. With the VAM and the NPE-400 Cisco claims ~150Mbps throughput. Be sure to top it off with memory - if you are running lots of tunnels you will need the space. I haven't tested the performance myself and do not know how the split bus of the 7200's will affect performance of one PA or another depending on where it's plugged in. Not all my questions have been answered... The VPN bundle lists for $23,500 - apply your discount. That gives you fastethernet interfaces(2), the PA-VAM, and the NPE-400. You'll have to pay for more If you can use a newer IOS version (come ON Cisco...) you can run the easy VPN server on the box and make life so much easier. The 12.1 code does a good job of working with x.509 certs, but there is a lot of command change between 12.1(9) and 12.2(13)T, so watch your configurations carefully and be prepared to rewrite things between versions. The PA-ISA does run with a piece of 12.2 code (I have a client using it) and does just fine. In the case of both accellerators there is no AES support that I am aware of. If you are looking for AES, the software crypto engine is supposed to support it in 12.2(13)T on some(all?) platforms and I've heard that there's a new crypto hardware piece in the works to support it also. Just a thought: Depending on your application, you may consider buying two smaller VPN enabled routers (3600 or 2600) and using multiple tunnels frome each site to the hub for layer 3 based load balancing and fault tolerance. They are routers, make 'em route! (Or heck, just buy 2 7206 bundles... :) You may get performance every bit as good, with availability numbers that make you look like an uber-star to the boss. TTFN, Bill Pearch, Anchorage -Original Message- From: Edward Sohn [mailto:[EMAIL PROTECTED]] Sent: Saturday, December 21, 2002 10:11 AM To: [EMAIL PROTECTED] Subject: RE: 7200 Router Questions... [7:59645] thanks for the info. have you or anyone else any idea what configuration it takes for a 7200 router to be comparable in performance to a PIX 515 when it comes to a site-to-site VPN? for example, would a 7204VXR by itself be enough (over more than enough, for that matter) to meet the packet throughput performance of a PIX 515 on a 3DES ipsec tunnel set up site-to-site? i can't seem to find pps performance specs for the 7200 series... thanks, ed -Original Message- From: MADMAN [mailto:[EMAIL PROTECTED]] Sent: Friday, December 20, 2002 1:46 PM To: Edward Sohn Cc: [EMAIL PROTECTED] Subject: Re: 7200 Router Questions... [7:59645] Edward Sohn wrote: Can anyone help me answer a few questions regarding this series router? 1. The spec sheet says it performs multiprotocol routing over ipsec. My question is: how? Is there some inherent technology that performs this feature, or is it the IOS's ability to create a GRE over an IPSEC tunnel? 2. What are the main differences between the NPE's and NSE's? I can't decide which processor I need. The primary differance is the NSE is it is only supported in the 7200VXR and incorporates the PXF processor for accelerated packet switching. 3. What's the difference between the VXR models and the normal models? To get VXR performance you must use at least a NPE300 and you get a MIX backplane, good for voice stuff. Also the VXR gives you increased backplane bandwidth capabilities. With the new NPE-1G you no longer have any bandwidth point limitations! Dave That's it, for starters...any help would be greatly appreciated. Ed -- David Madland CCIE# 2016 Sr. Network Engineer Qwest Communications 612-664-3367 You don't make the poor richer by making the rich poorer. --Winston Churchill Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=59780t=59645 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Hello (long response) [7:58824]
LMAO. -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Peter van Oene Sent: Tuesday, December 10, 2002 2:45 PM To: [EMAIL PROTECTED] Subject: Re: Hello (long response) [7:58824] I brought these issues to my boss attention last wednesday and on thursay he ordered me to 'clean' house. The first thing I did was to send pink slips to all 4 CCIEs in the group and told them that they are fired because they don't know anything other than RS. They were making $130k/year and sucking almost all of So essentially, you started on 11/25 and after 8 days of work you were making 500k/year headcount reductions? Is wine coming out of the tap there yet or did you wake up? I don't disagree with your points and have never been one to judge an individuals quality on the basis of a vendor exam, but I think there are more credible ways to make this point. Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=58976t=58824 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: is there anyone migrating isdn backup to dsl b [7:58568]
You'll hit your three letter acroronym service level agreement real soon now (TLA SLA RSN.) -Original Message- From: Priscilla Oppenheimer Sent: 12/4/02 12:56:52 PM To: [EMAIL PROTECTED] Subject: Re: is there anyone migrating isdn backup to dsl b [7:58568] It sounds like DSL has a low mean time between failure (MTBF) but a high mean time to repair (MTTR), which can be just as bad, especially if it's your only backup. Of course, your mileage may vary (YMMV), depending on the service provider. Also, a service level agreement (SLA) would help, as Chuck mentions. Does that message set a record for the number of acronyms used? :-) Priscilla The Long and Winding Road wrote: Mirza, Timur wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... we are looking to migrate isdn backup at our retail stores to dsl...is there anyone that has performed this already? CL: having done a number of data networks that were DSL based ( but none migrating ISDN to DSL ) I can offer this consideration: if a DSL link goes down for whatever reason, it may take more than a couple of days for your telco to get it back up and working. You will want to have some solid service level agreements in place. DSL on the whole is extremely reliable. The problem tends to be during those rare instances when it is down for whatever reason, some telcos seem to have DSL repair low on their priority list. CL: other than that caviat, why not? Timur Mirza Principal Network Engineer Network Planning Engineering, West Region 15505-B Sand Canyon Avenue Irvine, California 92618 Verizon Wireless 949.286.6623 (o) 949.697.7964 (c) Message Posted at: http://www?.groupstudy.com/form/read.php?f=7i=58574t=58568 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] [GroupStudy.com removed an attachment of type application/ms-tnef which had a name of winmail.dat] Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=58766t=58568 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Which 3550 to purchase [7:58560]
All, I am looking to purchase a 3550, or two if I can afford it, for my home lab. I am looking on EBAY and see the SMI models with the EMI image. Is there more to the EMI switch than just software? Thanks in Advance Bill Clements Bill Clements, MCSE, CCNP Network Engineer International Network Services (972) 550-4441 Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=58560t=58560 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: rate-limit question [7:58423]
Well its actually a config at work that our ISP put on the router. It is: rate-limit 16000 8000 8000 conform-action set-prec-transmit 2 This is on our 256k link and we are having complaints that the line has performance issues. What I get out of this line is that anything in the 1st 24k or bandwidth is going to have the precedence set to 2, but what I really need to know is if the rest of the traffic above the 24k is getting dropped? There are a lot of TCP retransmissions on the line which leads me to believe that the packets are getting dropped... I really need to know what happens without that exceed-action command. And as a side question, why would the ISP put this line in? Thanks again, Bill Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=58489t=58423 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: AW: Port Security on 3550 based on given MAC-Addre [7:58339]
Hello, The default for the maximum number of mac-addresses is one, and the default violation is shutdown. Bill Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=58490t=58339 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Help needed on ISDN PPP Multilink [7:58474]
Can you past the config from the other side also? That would help. Bill Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=58492t=58474 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
rate-limit question [7:58423]
For rate-limit, is there a default exceed-action ? I have been looking in the documents and all of the configs I seem to find all have the exceed-action drop, what I am wondering is what happens if I leave the exceed-action command off of the statement? Do the packets that don't conform still go through unchanged, or do they get dropped? Thanks for the help. Bill Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=58423t=58423 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: ONS 15454 Questions [7:55896]
Couple of notes from another 15454 user at the bottom of the email... Dre wrote: Can it participate in an MPLS network? It probably will be able to someday. Give it about 10-20 years or so. Does it support IP GRE, 802.1p, .q, DiffServ ? It will pass IEEE 802.1Q tagged frames. It cannot terminate or participate in negotiation of an IEEE 802.1Q or Cisco ISL trunk. So, no, not really. That stuff can pass through it, but it won't terminate or negotiate them. Make sense? Not a SONET transport engineer, and I don't play one on TV: The best way that I've found to describe the ONS platform is to call it a fairly smart but dumb L2 device. It's not a switch really. It can't really do trunking 'n such, but it does allow you to pass the tags through. It's not a router, so it isn't going to do GRE, DiffServe, routing, or act as an MPLS PE or P device. It's just a big freekin go fast box for moving voice and data. That's it. No L3, basic L2. If you want it to participate in an MPLS network, it will most likely be just the 'last mile' between your PE and the CPE. At 10Gig that's a fast mile. If you want something SONET and slightly smarter, look at the Coriolis boxes. Not a lot smarter, mind you... This stuff is generally designed to be big and dumb, reliable as all, and faster 'n snot. If you have access to PEC as a Cisco Partner, there is an excellent web based training session on the ONS15454 that will walk you through some of the basics, and point you in the direction of the rest. Bill [GroupStudy.com removed an attachment of type application/x-pkcs7-signature which had a name of smime.p7s] Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=56059t=55896 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: DQoS exam - review [7:55603]
No,I am speaking of Deploying Quality of Service 9E0601 Cisco QoS. Its a mandatory exam for the CIPTS specialization. -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Kim Graham Sent: Wednesday, October 16, 2002 6:10 AM To: [EMAIL PROTECTED] Subject: RE: DQoS exam - review [7:55603] Is this the QoS/Mcast exam you are speaking of? I am looking at writing it sometime mid December as preparation for the CCIE and as part of the CCIP track. Kim / Zukee Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=55718t=55603 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: DQoS exam - review [7:55603]
CIPT is a tough exam. I took and failed it and am scheduled to hit again in the next week. I thought that DQoS was much easier than CIPT. -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] Sent: Tuesday, October 15, 2002 11:49 PM To: [EMAIL PROTECTED] Subject: RE: DQoS exam - review [7:55603] CIPT 5 times with your lab getting so close!?! Sounds like alot of energy put into that single test. Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=55665t=55603 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: FS IBM SX GBIC's work fine with Cisco 3500 series switches [7:54933]
I can vouch for the IBM GBICs working in the 3550 switches as well. TTFN, Bill -Original Message- From: Tim Medley [mailto:[EMAIL PROTECTED]] Sent: Saturday, October 05, 2002 7:26 AM To: [EMAIL PROTECTED] Subject: OT: FS IBM SX GBIC's work fine with Cisco 3500 series switches [7:54929] I have a bunch of IBM SX GBIC's for sale i anyone is interested for use in your labs. I have tested these in several 3500 XL series switches as well as in a 6500 and they work fine. Selling them for $25 each plus shipping. Simple inexpensive way to use Gig E in your home lab. I do not believe that these are on the approved Cisco third party GBIC list, so I wouldn't use them on a production network. Tim Tim Medley, CCNP+Voice, CCDP, CWNA Sr. Network Architect VoIP Group iReadyWorld [GroupStudy.com removed an attachment of type application/x-pkcs7-signature which had a name of smime.p7s] Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=54933t=54933 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: PIX Confusion [7:54875]
Try this: static (inside,outside) tcp interface ftp 192.168.1.2(or IP of your internal host) 5051 netmask 255.255.255. 255 0 0 -Original Message- From: NetEng [mailto:[EMAIL PROTECTED]] Sent: Friday, October 04, 2002 11:10 AM To: [EMAIL PROTECTED] Subject: PIX Confusion [7:54875] I have a PIX 501 and get a single IP from my ISP. I would like to set up an FTP conduit, but on port 5051. I can't find any docs on how to do this. When I play around it it states that I have to change my NAT rules too. I still want all inside users access outside. Any info or links are appreciated. NetEng Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=54894t=54875 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: VWIC 2MFT-T1 [7:54796]
I have been using VWIC-1MFT's and VWIC-2MFT's to connect in a data mode to WIC-1DSUs using a cross over T1 cable. When you do this, it is imperative to add the 'speed 64' portion of the channel-group if that is the base speed of the DS0. I am finding that in general, if I want something to work I shouldn't trust default settings :) TTFN, Bill Pearch, Anchorage -Original Message- From: Larry Perdue [mailto:[EMAIL PROTECTED]] Sent: Thursday, October 03, 2002 7:14 AM To: [EMAIL PROTECTED] Subject: RE: VWIC 2MFT-T1 [7:54796] You need to use the channel-group command to create the serial interface, it doesn't do this automatically. Here is an example from one that I have done: controller T1 2/1 framing esf clock source internal linecode b8zs cablelength short 133 channel-group 0 timeslots 1-24 speed 64 In this case, the channel-group command creates a serial 2/1:0 interface that can then be given an IP address and used accordingly. -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] Sent: Thursday, October 03, 2002 9:42 AM To: [EMAIL PROTECTED] Subject:VWIC 2MFT-T1 [7:54796] Has any one configured a Data T1 on the following card (VWIC 2MFT-T1)? This is very different from what I've seen in the past... I've been looking on CCO for data configuration, but haven't found anything. They say it's possible. Cheers, mkj ~~~ Michael Jablonski ABN AMRO Asset Management Holdings, Inc. 161 North Clark St. 9th Flr Chicago, IL 60601-2468 PH: 312.884.2996 FAX: 312.278.5550 ~~~ Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=54811t=54796 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: BCRAN Passed. [7:54732]
Congrats, I passed DQoS today! -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Jimmy Sent: Thursday, October 03, 2002 8:52 PM To: [EMAIL PROTECTED] Subject: Re: BCRAN Passed. [7:54732] How is the simulation question? Easy? How many simulation question altogether? Amir Tahir wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... HI, I used Cisco certification guid, Sybex exam notes and amother book named Remote access for cisco networks by bill burton. exam was ok but i had problems in simulation Question. I could not perform the command copy run start i was keep geeting wrror. then i tried wr command to cave running configuration but could not save it. so i let that Question go without that. rest was ok not that bad I spent almost 6-10 hrs a day to review stuff finish cisco book almost 4 times, coz i m not working in cisco networks yet so thanks for your mail if U have any Q please feel free to ask. regards Amir Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=54843t=54732 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Period to take ccnp tests [7:54848]
There are only two other exams for the CIPTS bro, CVOICE and CIPT. no no time limit -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Leonardo Rocha Sent: Thursday, October 03, 2002 11:47 PM To: [EMAIL PROTECTED] Subject: Period to take ccnp tests [7:54848] Guys, if one take a ccnp exam today, is there a time limit to take the other 3 exams or else the exam gets invalid? Can someone help me? tks a lot, leo Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=54849t=54848 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: OT: FXO FXS terminology - comments? [7:54331]
In Ciscoland FXS provides line voltage, ring etc., where as FXO is leading you out to the PSTN or to a PBX -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Jennifer Mellone Sent: Friday, September 27, 2002 12:27 PM To: [EMAIL PROTECTED] Subject: RE: OT: FXO FXS terminology - comments? [7:54331] That sounds great and makes more sense now! I always like reading your posts :-) I always confuse which device plugs into which port. I remember it like this: Plug phone or Station into FXS (where Station=S) Plug PBX/CO into FXO (where Office=0) - Jennifer Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=54339t=54331 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Deploying Quality of Service Exam 9E0-601 [7:54111]
The best materials are the Cisco Courseware, and Cisco IOS Quality of Service Solutions Configuration Guide Release 2.2, I'd also recommend taking a look at the DQoS Boson's, they are pretty close to the materials from what I've seen. I'm taking this exam on Saturday, so I'll let you know how good I think they truly are then :-) -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of John Huston Sent: Wednesday, September 25, 2002 4:28 PM To: [EMAIL PROTECTED] Subject: Deploying Quality of Service Exam 9E0-601 [7:54111] I would appreciate it if someone would recommend the best self study or otherwise material for the subject. Thank you in advance for your help. Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=54166t=54111 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: reserving bandwidth [7:52954]
William R. wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... Hi Silvio. You can apply a class-map, policy-map and then service-policy on your serial interface. This doc can give you and idea how to manage your bandwidth. http://www.cisco.com/warp/public/105/priorityvsbw.html http://www.cisco.com/warp/public/105/qos_subint.html and specially http://www.cisco.com/warp/public/125/cbwfq_17920.html William R. Silvio Macias wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... Hi everybody!!! I have a simple question, what techniques can I use in order to configure bandwidth reservation in serial interfaces? I want to match an extended access list, representing the interesting traffic. What I want to do is to reserve a minimun bandwidth for this customer, even if the serial interface is experiencing severe congestion problems ... thanks to everybody in advanced ... SM [EMAIL PROTECTED] [EMAIL PROTECTED] Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=53087t=52954 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: reserving bandwidth [7:52954]
Hi Silvio. You can apply a class-map, policy-map and then service-policy on your serial interface. This doc can give you and idea how to manage your bandwidth. Silvio Macias wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... Hi everybody!!! I have a simple question, what techniques can I use in order to configure bandwidth reservation in serial interfaces? I want to match an extended access list, representing the interesting traffic. What I want to do is to reserve a minimun bandwidth for this customer, even if the serial interface is experiencing severe congestion problems ... thanks to everybody in advanced ... SM [EMAIL PROTECTED] Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=53086t=52954 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Which PIX to buy [7:52572]
Although I can't help with the leasing issue... If you really need speed and you are using the 6500's take a look at the new firewall blade. List is $43K a pop, but wow, talk about throughput (5 Gigs is the spec sheet.) Runs PIX OS, supports everything, yada, yada, yada, ymmv, vwpbl... Ok, so it's overkill for the proffered OC3 issue, but very, very cool and may fit in to what you want to do. I'll take two... TTFN, Bill -Original Message- From: John Chang [mailto:[EMAIL PROTECTED]] Sent: Monday, September 02, 2002 3:50 PM To: [EMAIL PROTECTED] Subject: Which PIX to buy [7:52572] I'm wondering which PIX I need. I need something that will work with OC12 155Mbps when saturated. Right now we have a T3 line and will eventually get an OC3. I would need redundant PIXs. Can anyone recommend a company that leases them? Thank you. Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=52588t=52572 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Xyplex Terminal Server to Cisco Console port .... HOW? [7:52551]
I am trying to connect a Xyplex 1620 terminal server to the Console port on a number of Cisco routers.I have it running (sort of) but I lose a few characters under heavy load. This is odd, since 9600 baud is hardly heavy compared to the Xyplex's capacity of 115K per port... Hardware handshaking would help. BUT ... the Xyplex doesn't use DTR/DSR pins, and the Cisco Console ports don't have RTS / CTS connected. So hardware handshaking is out. Is there some configuration options that will keep this setup from losing data? Has anyone used a Xyplex with Cisco console ports successfully? Bill Mohat [EMAIL PROTECTED] Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=52551t=52551 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: IDS Appliance [7:52308]
Are the Cisco sensors signature based or anomaly based? At what data rate (realized), do they max out and in effect, stop reading signatures? Just curious since I've not worked with their offerings. -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Steven A. Ridder Sent: Thursday, August 29, 2002 6:38 PM To: [EMAIL PROTECTED] Subject: Re: IDS Appliance [7:52308] so far so good. I installed one for a client, and it worked awesome. I even dropped it 10 feet, and it still worked! Brian Wilkins wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... I was wondering if anyone else has been experiencing problems with Cisco's IDS sensor appliance (formerly Netranger). Almost every time I load a service pack or new signature file I end up rebuilding the device from scratch using the install CD's. I've filed multiple cases with TAC, with little help recieved. I've even spoken to the product manager for the devices and still can't seem to stabilize these things. Anyone else using Cisco IDS appliances? If so, how's your luck with them? Thanks, Brian Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=52334t=52308 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: No longer 4 digits [7:52146]
Its been a long time coming folks. In the grand scheme of things, I'd say that the 5 digit is right about on time considering that other elite industry certs that have been around for approximately the same amount of time are either or already there or way past that. I don't think that it will hurt the value of the cert because once again at the end of the day, its the engineer/consultant/analyst et al, that makes the cert not the other way around. Will Gragido CISSP CCNP MCP Waiting in written la la land for the lab -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Paul Borghese Sent: Tuesday, August 27, 2002 4:12 PM To: [EMAIL PROTECTED] Subject: Re: No longer 4 digits [7:52146] This is it! The thing that will turn the industry around. Let's start asking people if their network is C1k compatable. Explain how most networks were designed for four digit CCIE's and they will need to hire us for a complete overhall of the network. Yea sure it will cost a lot, but look at the consequences of not upgrading your network to C1k compatability! Paul - Original Message - From: MADMAN To: Sent: Tuesday, August 27, 2002 2:56 PM Subject: Re: No longer 4 digits [7:52146] CCIE 1040 sits next to me and I asked him if Imran (sp?) was his proctor and it was. Imran designed the orgianal program and it's our guess he was the proctor for the 1st CCIE. Imran was pretty tough, I remember talking to him at networkers in Denver when the CCIE recert first came out and about 100 of us took the test and only 2 passed. He chuckled stating his intention was to make it difficult so as to require studying. Dave Chuck's Long Road wrote: this topic of fascination for many often leads to a bit of confusion as well http://www.cisco.com/warp/public/625/ccie/ccie_program/ccie_present.html shows the number of CCIE's world wide as of 7/31/02 The first CCIE number issued was 1025. Over the years, some have retired, some have neglected to recertify ( including Jeff Doyle, last time I looked ) So according to Cisco's numbers, on July 31 2002 there were 8031 active CCIE's. As a sidebar, Terry Slattery, CCIE 1026, tells how he was tested by CCIE 1025 ( sorry, I can't remember the name ) The theory was / remains that only CCIE's should test candidates. No one seems to know who tested #1025, nor the criteria used. Chuck -- www.chuckslongroad.info still a work in progress, but on line for your enjoyment z Jim Brown wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... First number assigned to a candidate was 1025. When we hit 11025 their will be 10,000 candidates not including people who didn't recertify. -Original Message- From: Reza Sharifi [mailto:[EMAIL PROTECTED]] Sent: Tuesday, August 27, 2002 11:20 AM To: [EMAIL PROTECTED] Subject: RE: No longer 4 digits [7:52146] Is that because there are more than 1 CCIE,s?. Reza -- David Madland CCIE# 2016 Sr. Network Engineer Qwest Communications 612-664-3367 You don't make the poor richer by making the rich poorer. --Winston Churchill Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=52167t=52146 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: What I mean to Cisco [7:51492]
My post was meant to be light hearted, not a plea for help. I think it's obvious that the bot that responded to my email query is messed up. Once again- humor alert! :) I'm familiar with SMARTnet and the warranty process but thanks for asking- there might be some on the list that aren't. I'm still batting back and forth if I will Snet access devices that are under $1000 - right now I'm thinking that is a waste of money/time/effort. TTFN, Bill -Original Message- From: Turpin, Mark [mailto:[EMAIL PROTECTED]] Sent: Friday, August 16, 2002 5:48 AM To: [EMAIL PROTECTED] Subject: RE: What I mean to Cisco [7:51492] Bill, Do you have a SMARTnet contract for that 1710? Are you within the warranty period for support? If you're not familiar with SMARTnet take a moment to check it out: http://www.ciscomug.org/resources/files/cmugpresentation-20020206-smartn et.p pt After flipping through that presentation, are you still within the valid warranty period? If so, contact the TAC over the phone and tell them about the feelings you are having regarding their service. [EMAIL PROTECTED] != Cisco Customer Advocacy Representatives. If after going through those slides you realize you are outside your warranty, you should understand what's happening to you. It costs money to run a business. The pricing of their support is typically something I would not argue with. -Mark -Original Message- From: William Pearch [mailto:[EMAIL PROTECTED]] Sent: Thursday, August 15, 2002 11:40 PM To: [EMAIL PROTECTED] Subject: OT:What I mean to Cisco [7:51492] I've got a poorly behaving 1710 router (reboots when you log out/TACACS issue) that I'm trying to get straight with the TAC and I received this; Dear $Customer$, Thank you for contacting Cisco's Technical Assistance Center(TAC). We have recieved your request I love it when I'm a double dollar sign to a company :) Bill Anchorage, AK [GroupStudy.com removed an attachment of type application/x-pkcs7-signature which had a name of smime.p7s] The information transmitted is intended only for the person or entity to which it is addressed and may contain confidential and/or privileged material. Any review, retransmission, dissemination or other use of, or taking of any action in reliance upon, this information by persons or entities other than the intended recipient is prohibited. If you received this in error, please contact the sender and delete the material from all computers. [GroupStudy.com removed an attachment of type application/x-pkcs7-signature which had a name of smime.p7s] Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=51510t=51492 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
OT:What I mean to Cisco [7:51492]
I've got a poorly behaving 1710 router (reboots when you log out/TACACS issue) that I'm trying to get straight with the TAC and I received this; Dear $Customer$, Thank you for contacting Cisco's Technical Assistance Center(TAC). We have recieved your request I love it when I'm a double dollar sign to a company :) Bill Anchorage, AK [GroupStudy.com removed an attachment of type application/x-pkcs7-signature which had a name of smime.p7s] Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=51492t=51492 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: GBIC's - Cisco and otherwise [7:51148]
When I was learning a bit about SAN's and Fibre Channel, one of my instructors mentioned that there were only 3 manufacturers of GBICs (couple years ago, may have changed by now). I have put GBICs (no long haul stuff) obtained from Nortel, IBM, Compaq, Brocade, Cisco, and unknown into a 3500, a 2950, a Nortel 420, Dell and a couple others just to see if they would work. They did. Fibre Channel GBICs, GigE GBICs, all seemed to work just fine. I'll try it in a 3550 later this month, and it will probably seem to work just fine also. SEEMED to work just fine. I wouldn't do that on a production network, but on a 'oh s$!%' or a giggles and grin basis, yea - no worries. YMMV, VWPBL, OSTCAAT... TTFN, Bill Pearch, Anchorage -Original Message- From: Chuck's Long Road [mailto:[EMAIL PROTECTED]] Sent: Saturday, August 10, 2002 9:27 AM To: [EMAIL PROTECTED] Subject: OT: GBIC's - Cisco and otherwise [7:51148] I took a bit of a risk, and purchased some GBIC;s off That Auction Site. Of the four, three are Cisco branded, and the fourth is labeled Agilent ( used to be HP ) I had done a bit of investigation prior to purchase. I see that the Auction Site has listings for Agilent, IBM, and Extreme GBIC's, as well as Cisco. However, I was unable to find any direct and clearly stated indication that all GBIC's are interchangeable. IBM and Agilent GBIC's cost few pretty pennies less than Cisco BTW, although I suspect now that the same source OEM's for all these manufacturers. So I paid my money, took my chance, and have an Agilent GBIC on one switch connected to a Cisco GBIC on another. No connectivity problems. Came right up. Is passing traffic even as I write. Thinking logically, why should GBIC's be any different that NIC's or patch cables, transceivers of various sorts and brands, or CSU/DSU's? They are all build to industry specifications and industry standards. They all do the same thing. Just thought I'd pass that along to those trying to stretch their practice lab or network upgrade dollars. [GroupStudy.com removed an attachment of type application/x-pkcs7-signature which had a name of smime.p7s] Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=51285t=51148 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: polycom Video Unit [7:49882]
The Polycom Viewstations and Via-Video units use unicast UDP (RTP) traffic for data streams and unicast TCP(RTCP) traffic for signaling and control. Part of the initialization process is an agreement on what codec's are going to be used. This negotiation process is different depending on if there is a gatekeeper involved in the conversation. The important thing to remember about a 323 MCU is that it is essentially a h.323 terminal. Any I-frames or K-frames that happen between a terminal and the MCU are between the terminal and the MCU - not between participants in the conference. There is an initialization process between each endpoint and the MCU that would handle things like data rate and terminal capabilities. I would refer you to a handful of whitepapers available on polycom's web site, especially the ones from PictureTel. http://www.polycom.com/resource_center/0,1408,997,00.html The old pictureTel whitepapers are much better written and easier to use than anything else I've found on h.323 so far. There is another excellent resource on the web/mail-list; the h323 forum. I don't recall the web site right now, do a google search I'm sure you will hit. TTFN, Bill 'VTC over IPSec' Pearch, Anchorage AK -Original Message- From: Michael L. Williams [mailto:[EMAIL PROTECTED]] Sent: Saturday, July 27, 2002 11:39 AM To: [EMAIL PROTECTED] Subject: Re: polycom Video Unit [7:49882] John Neiberger wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... I suppose it depends on the unit but ours mainly use unicast to the Cisco MCU. As far as I know they use standard H.323. The downside if you're using an MCU is that the PolyComm units have a lot of different codecs available that might not be known by the MCU. For example, the Cisco MCU can only do G.711 audio, but if you let two video units speak directly to each other they use G.726 ( I think. Maybe it's G.722?) and it sounds much better. That brings up an interesting question tho unless the MCU is converting between codecs for end stations that might want to use different codecs, must the MCU understand the codec or would it simply act as a relay startion for that data. (i.e. if two end-stations are using a codec that they understand but the MCU doesn't, would it be a problem since the MCU would merely forward the unknown (to it) audio data to the other end station). The Cisco MCU supports many more codecs than G.711 including the popular G.729 codec (which gives roughly G.711 quality with an 8:1 compression). The G.722 (you were right.. it's G.722, not G.726) that covers from 50-6900Hz instead of 50-3900Hz as most narrowband codecs do. So if you're trying to play more high fidelity sound, you may want to use that. I haven't seen many units that support this codec though (but I have by no means seen tons of units, just a few). However, if the audio you're trasmitting is human speech, the G.722 isn't going to gain you much in terms of sound quality since it would be preserving an additional frequency range that's not used alot by human speech. Does anyone have any input or experience with how and/or when the MCU codec support comes into play? I would think that if the endpoints are at the same datarate and using the same audio/video codecs, the MCU would just be a bounce point and the actual codecs in the MCU wouldn't be utilized Just a theory tho.. Mike W. [GroupStudy.com removed an attachment of type application/x-pkcs7-signature which had a name of smime.p7s] Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=49917t=49882 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Opinions on 4000 -vs- 6500 [7:48467]
Be wary of Gig to the desktop in Windows boxes. In most cases, PC class (non-64/66 PCI) simply can't handle it. On top of that, as Howard mentioned, the server has to be a screamer or it won't be able to keep up with the GigE either. You can get better performance with a *nix box, but if it's Intel based, it will still (sweeping generality here) suffer throughput issues. A few notes from some GigE Windows work I've done in the past. Try to move big files rather than lots of little ones. Go for Jumbo Frames. TCP Window size is tuneable in W2K. Tune it. More Memory. On a Compaq DL380 I saw best performance/$ at about the 2GB RAM mark. 3GB of RAM was better, but only a skosh. Lots of cache, and LOTS of hard drives. It is better to have 20 18Gig drives than 10 36 Gig drives for SPEED. Spindles mean things. It may be a good time to think fibre channel. 64/66 minimum for your RAID controllers. PCI-X is even better. Don't bother with the built in RAID controllers in most servers - they are fairly lame. Pay attention to your cables. Bad fiber installs or so so copper will kill your performance. Sit back and enjoy the blinkie lights. TTFN, Bill Pearch, Anchorage AK -Original Message- From: Howard C. Berkowitz [mailto:[EMAIL PROTECTED]] Sent: Wednesday, July 10, 2002 11:32 AM To: [EMAIL PROTECTED] Subject: RE: Opinions on 4000 -vs- 6500 [7:48467] At 12:02 PM + 7/10/02, [EMAIL PROTECTED] wrote: Gig to the desktop would be overkill. You have to make a decision on were to place your bottleneck, and adjust interface speed accordingly. We have a very similar setup with Cat 6000, Cat 4000, and Cat 3000's. We determined that 100MP to the desktop would suffice any current requirement. From the application standpoint, this is a sort-of it depends. Let me throw out some off-the-top-of-my-head examples. A digitized mammogram series is about 250 MBytes, or 2 Gbits. It contains several views, so the physician doesn't need it all at once. If the workstation has a fast local disk, you should be able to retrieve the set in about 20 seconds on FE. The image server may very well be the bottleneck. Once you have the set, flipping from image to image is a workstation limitation. But if you were going to do high-resolution imagery with motion (movie special effects, real-time cardiac MRI, etc.), you have to deliver frames fast enough to have smooth motion. Now, the physician is not apt to decide he or she is going to study the imagery with no warning, so scheduling an upload isn't all that unreasonable. If you did want RIGHT NOW full motion imagery, you very well might want GB or even faster to the workstation. That's going to mean a pretty powerful workstation! -Original Message- From: Kim Graham [mailto:[EMAIL PROTECTED]] Sent: Wednesday, July 10, 2002 7:28 AM To: [EMAIL PROTECTED] Subject: Re: Opinions on 4000 -vs- 6500 [7:48467] We currently have 4006's SupII in our closets and they have no trouble handling the traffic (240 ports). If you want to go IOS you can move up to the SupIII engine on this unit. They interface with our 6513's via gig uplinks and to date we have not had any issues with the 4006's or the gig uplinks. Personally I like them, but others may have varying opinions. Kim From: Michael Williams Date: 2002/07/10 Wed AM 12:41:15 EDT To: [EMAIL PROTECTED] Subject: Opinions on 4000 -vs- 6500 [7:48467] We are going to setup some closets in hospitals for radiology to transfer large images across. They want gig to the desktop If we have 20-30 computers/printers connected with Cat5E gig to a 4000 will that be too much? I'm thinking it won't overwhelm the backplane unless all devices are cranking gig at once (which I've yet to hear of a PC or printer that can actually handle Gig .) What would be the best recommendation for Sups? Sup1, 2 or 3? We don't need L3 at that level as each 4000 would uplink (via Gig) to a 6500 for L3. We could do 6506 in the closet for the Cat5 gig modules are expensive and only have 16 ports per blade where the 4000 modules have 48 ports of 10/100/1000 for the Cat5 and are cheaper Thanks for any input Mike W. [GroupStudy.com removed an attachment of type application/x-pkcs7-signature which had a name of smime.p7s] Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=48714t=48467 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Cisco Video Conferencing [7:48646]
If you are referring to the Cisco branded MCUs and h.323 Gatekeepers, yes - I use them. You can save a bit of cash in some cases by turning to the vendor of the hardware (Radvision) but the support for these products from Cisco has been first rate. The written documentation is a little slight on CCO, but generally useable. There are better and cheaper h.323 Gatekeepers than the Cisco IOS MCM - free323 comes to mind - and there is a h.323 proxy in beta that is also freeware. Scheduling software and billing software for the VTC 'stuff' is spendy. I believe one of our business units is looking seriously at Todd software for billing and scheduling so I should have a better grasp on how that is done in a month or two. To the individual products; The Cisco 3510 is fairly lame - so of course I have two of them in my network... :) A fixed config box that can handle up to about 4Mb of VTC traffic. It is stackable for aggregate horsepower, but there are cheaper ways to get the 'umph' you need than buying a bunch of 1U MCUs. The Cisco 3540 is a killer box that is scaleable and priced accordingly. It supports T.120 and can bridge (gateway, actually) to h.320 networks as well. If I were going to spend my money again, I'd get this box (or the RadVision original). One of the interesting thing about these boxes is that there really isn't a command line, exactly. You use the console port once - to set an IP address. After that, it's a Windows application to configure the rest. Warning about the 3510 - After just about any configuration change it reboots. The thing get's rebooted more than a Windows 95 box... If you have an interest in VTC, but don't want to bite off the 20-40K to get started with MultiPoint VTC, I can recommend Glowpoint/WireOne for a decent service provider in the lower 48. They even provide the VTC terminal equipment. Do the numbers based on your expected use - you may be supprised. One item about VTC/h.323 regardless of whose equipment you use: Get your QOS butt in order and give yourself about 20% overhead on the VTC. TTFN, Bill 'VTC over IPSEC' Pearch, Anchorage -Original Message- From: Johnson, Richard (NY Int) [mailto:[EMAIL PROTECTED]] Sent: Thursday, July 11, 2002 6:48 PM To: [EMAIL PROTECTED] Subject: Cisco Video Conferencing [7:48646] Hi All, Is anyone out there currently using it? If so what are your opinions of it? Thanks Rich [GroupStudy.com removed an attachment of type application/x-pkcs7-signature which had a name of smime.p7s] Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=48655t=48646 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
DLSW FST Encapsulation Compatability? [7:47209]
Can FST encapsulation handle both Token Ring hosts and Ethernet hosts? In the CCIE Practical Studies book there is a chart that sayd it only works with Token Ring hosts, yet a couple of pages before that it states that it will work with all types of Media? Thanks for the help Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=47209t=47209 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
OT: Cisco 3510 Configuration [7:46668]
I'm having some difficulty with one of my 3510 MCUs. It will allow a confrence to start with a service prefix but will not allow you to provide a confrence ID. I know this is a long shot, but anyone know much about the Cisco MCUs? Otherwise, it's off to the TAC on Monday... TTFN, Bill h.323 is my life Pearch, Anchorage AK Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=46668t=46668 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Cryptography and frame-relay [7:46621]
For the medical traffic that we are throwing over frame, hospitals are choosing to IPSec encrypt more and more. Is it necessary? I think it will be due to HIPPA, but that may or may not play out long run. Will it protect your data? Only from people that have the ability to intercept C-band satalite or tap fiber and don't want to walk into the doctors office and just photocopy your records... :) Remember, End to End security doesn't stop at the routers. If your physical security measures are lax, and your security processes are non-existant, you are wasting your time in securing the transport between locations. Pick off the low hanging fruit first. TTFN, Bill -Original Message- From: Paulo Roque [mailto:[EMAIL PROTECTED]] Sent: Friday, June 14, 2002 11:23 AM To: [EMAIL PROTECTED] Subject: Cryptography and frame-relay [7:46621] Hi All, Is necessary to encrypt the comunication that goes over frame-relay links or the frame-relay virtual circuits (PVC/SVC) mechanisms are secure enough to protect my data? Thanks -- Eng. Paulo Roque Network Engineer Cisco Certified Network Associate [EMAIL PROTECTED] [GroupStudy.com removed an attachment of type application/x-pkcs7-signature which had a name of smime.p7s] Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=46669t=46621 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Bitswapping Tool [7:44385]
If Bill told you that, then Bill is only *partially* correct. Might there be scenarios without token-ring present? Maybe. Might there be scenarios with token-ring still present? Certainly. It is on the blueprint and as such, is fair game. TR has not been officially removed from the lab requirements by Cisco. pt -Original Message- From: Steven Ridder [mailto:[EMAIL PROTECTED]] Sent: Monday, May 20, 2002 10:17 AM To: [EMAIL PROTECTED] Subject: Re: Bitswapping Tool [7:44385] Bill Parqhurst told me. From: Jay To: Steven A. Ridder CC: [EMAIL PROTECTED] Subject: Re: Bitswapping Tool [7:44385] Date: 20 May 2002 09:00:39 -0400 MIME-Version: 1.0 Received: from khan.execulink.net ([209.239.12.72]) by hotmail.com with Microsoft SMTPSVC(5.0.2195.4905); Mon, 20 May 2002 06:07:16 -0700 Received: (from jg@localhost)by khan.execulink.net (8.11.6/8.11.6) id g4KD0eM08597;Mon, 20 May 2002 09:00:40 -0400 X-Authentication-Warning: khan.execulink.net: jg set sender to [EMAIL PROTECTED] using -f In-Reply-To: References: X-Mailer: Ximian Evolution 1.0.3 Message-Id: Return-Path: [EMAIL PROTECTED] X-OriginalArrivalTime: 20 May 2002 13:07:17.0110 (UTC) FILETIME=[4452B960:01C1] So no token ring probably means no Source-Route Bridging? How do you know there is no Token Ring anymore, I find that surprising. Is there something that supplies what is *not* on the test? I thought anything was fair game except for that list on the web site that includes LANE, LAT, AT, DECNet, etc... Didn't see anything about Token Ring though. On Sat, 2002-05-18 at 07:18, Steven A. Ridder wrote: Plus, there is no more token ring on lab. Darren S Crawford wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... You won't have time. Besides nothing like would be allowed. D. At 01:49 PM 5/17/2002 -0400, Jason Greenberg wrote: Does anyone know if the CCIE lab gives you access to a bitswapping tool for converting mac addresses to canonical format? -- Jason Greenberg, CCNP Network Administrator Execulink, Inc. [EMAIL PROTECTED] x$:0`0:$xx$:0`0:$xx$:0`0:$xx$:0`0:$xx$: Lucent Technologies - Enhanced Services Sales NetworkCare Professional Services http//www.lucent.com/netcare/ Darren S. Crawford - CCNP, CCDP, CISSP Distinguished Member of the Consulting Staff Northwest Region - Sacramento Office Voicemail (916) 859-5200 x310 Pager (800) 467-1467 mailto:[EMAIL PROTECTED] x$:0`0:$xx$:0`0:$xx$:0`0:$xx$:0`0:$xx$: Every Job is a Self-Portrait of the person Who Did It Autograph Your Work With EXCELLENCE! _ Get your FREE download of MSN Explorer at http://explorer.msn.com/intl.asp. Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=44562t=44385 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
PIX VPN 'Understanding' [7:44158]
So I finnally have time to just try things. And what do I do? Try something that doesn't seem to work. I mirrored the configs from the CCO for a PIX to PIX to PIX IPSec fully meshed VPN. All seemed well, until I tried a h323 conversation between PC's behind different PIX's. This did not work. I don't understand why. Perhaps it is that I don't understand the PIX well enough to troubleshooot. ISAKMP SA's were created. Just the h.323 doesn't work. Idea's? The Cisco page in question is http://www.cisco.com/warp/public/110/pixmeshed.html Hardware used was Pix 501's with PIX OS 6.1. Polycom VTC gear and software on the Windows 2K PC's. Thanks for any enlightenment any of you may have on this one. Bill in Anchorage [GroupStudy.com removed an attachment of type application/x-pkcs7-signature which had a name of smime.p7s] Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=44158t=44158 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: CCIE in 3-6 Months from cisco Interesting [7:43306]
Its getting kind of hot in here.. -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Jason Forrester Sent: Monday, May 06, 2002 4:50 PM To: [EMAIL PROTECTED] Subject: Re: CCIE in 3-6 Months from cisco Interesting [7:43306] Becareful with the kid comment. I passed my CCIE at 20, dang near 19. Jason CCIE 8748 Michael L. Williams wrote: nrf wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... Bullshi*. There are a significant number of guys lately who've passed the lab who I wouldn't hesitate to call paper (heck, even they have honestly referred to themselves as paper, usually after getting a few drinks into them). Significant? Help me understand the extent to which you use that word? If you're a proctor for CCIE labs and saw people day in and day out, then I would take your word for it. I have yet to take the lab, but I'm trying to understand how someone could make it through the lab and still be considered paper. Is the lab that big of a joke? Consider it's very high fail rate, I can't see it being so easy that people can't pass without understanding what they're doing? At least to the same level that anyone else who ever passed the lab did Personally I use paper to mean someone with a cert that doesn't have any hands-on to match it like paper MSCE.. I worked with this kid who was 19, has his MSCE, CNE, and Master CNE, but had zero hands on definitely paper... but we're talking the CCIE lab here. it's simply not possible (IMHO) to pass the lab without at least a minimum of hands-on (whether in a job or on practice equipment) to give one the skills to pass. But I do agree with the premise that the main reason for the devaluing of the cert is the bad economy, and the lab-rats are a lesser consideration (still important, but lesser). But on the other hand, I think it is the case that the CCIE will probably never attain the status that it once did, simply because the we will probably never see another huge network buildout orgy like the dotcom boom again in our lifetime. So while I believe the networking industry will get better, people who thinks it's going to get back to, say, 1999, are just deluding themselves. Agreed I don't thik we'll see things back like there were a couple of years ago. But I'm trying to draw a fine distinction between the devaluing of a cert (due to shoddy cert process) -vs- the salary that one pulls in with the cert. The CCIEs now (in general) don't make and probably in the future won't make what CCIEs of two years ago did. Is this a devaluation of the cert. Certainly not. That's the market that's the economy I don't believe that has much to do with whether employers and network professionals value the certification (i.e. consider someone with CCIE to be a true expert in networking). Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=43521t=43306 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: CCIE in 3-6 Months from cisco Interesting [7:43306]
The begining of wisdom is the realization that you know nothingsomeone important said that once and I believe that its meaning is as pertinent today as it was when it was originally stated. To suggest that a CCIE possess god like qualities is a disservice to the CCIE and God if one stops to think about it. CCIEs are people and are capable of major goof ups just as much as the lowliest desktop technician. We live in an imperfect world, I think that its time that we all re-evaluate our conceptual understanding of the CCIE certification and realize that its merely another step in the never ending progression of learning. :-) My 2 Cents, Will Gragido CCNP CCNA CCDA MCP and SoB ;-) -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of TALBOT, WILLIAM P (SWBT) Sent: Monday, May 06, 2002 5:36 PM To: [EMAIL PROTECTED] Subject: RE: CCIE in 3-6 Months from cisco Interesting [7:43306] I agree, there is a perception of CCIE's as arrogant know-it-alls. Some of this is surely warranted, and some surely stems from envy. Which is why I can laugh at this joke you may have already heard: Q:What's the difference between a CCIE and God? A:God doesn't think he is a CCIE... Pat (Set to incur the wrath of the aforementioned God at the RS Lab in RTP on May 18) -Original Message- From: nrf [mailto:[EMAIL PROTECTED]] Sent: Sunday, May 05, 2002 7:29 PM To: [EMAIL PROTECTED] Subject: Re: CCIE in 3-6 Months from cisco Interesting [7:43306] I also agree with you on many points. But anyway, inline I see your point about people not skipping the tech interview because of CCIE. And I also agree that it's a good thing. After all, when 'lab rats' (as you call them) are applying for jobs, it just makes sense that one would give a tough interview to weed them out. However, one must ask themselves What is the purpose of the cert? Just like a college degree in, say Computer Science. The BS in CS doesn't guarantee an employer that the person has experience, say, with PERL. However, the degree indicates that this person can learn and understand the logic of programming, etc. I don't think the purpose of the CCIE (or any Cisco cert) is to guarentee knowledge of absolutely everything in networking. That's not possible. However, I believe that it does indicate an advanced level of understanding of network principles as well as knowledge of specific technologies (EIGRP, HSRP, DLSw+, etc). So, as in your example of the person that didn't learn BGP because it wasn't required for the cert, I have to say So what. That wasn't the point of the CCIE. The CCNP cert doesn't cover IS-IS, for example, but I would hope anyone with CCNP could sit down, read about IS-IS, know how to look up IS-IS related commands on Cisco's site, and then implement what needs to be implemented. That's, IMHO, the purpose of obtaining the cert. This is absolutely true, nobody can know everything, and the CCIE was never designed to do that. On the other hand, there is a major difference between somebody who admits he doesn't know the answer, but can probably look it up, and somebody who boldly states something that is flatly wrong. For example, with that guy I interviewed who claimed that CEF can only be run on a GSR, clearly this was a case where he was trying to snow me. Now I admit, I was trying to trick him (I deliberately pretended that I knew nothing about networks because I wanted to see what kinds of things he would say if he didn't think I was a networking guy myself), and boy, was he tricked. It's certainly not a big joke, it's just that yes you really can pass the lab without experience. Granted, you need dedication and you need money to buy a home lab. Exactly - you need practice equipment. So you don't need a real job that provides hands-on equipment. You just need a lab, a lot of time, and a lot of money for exam attempts (or a willingness to go into debt). But a networking job? Not really, not to pass the lab. I understand your differentiation between real-world hands-on and practice lab (lab rat) hands-on. I truly do. But, again, it's like the college degree thing. If a company wants someone who has experience, they'll interview and ask questions that only seasoned professionals could answer. But, if they want someone with a certain level of knowledge, demonstrated ability to learn new things, and the ability to find resources and answer questions, then that could be a seasoned professional or someone that's certified (or someone with both). On the flip side of your argument, I've met people that are trying to get into networking from the telco side, and could explain in great detail how a T1 works, but couldn't explain HSRP (a very simple thing to understand and setup) to save their life. Doesn't mean their stupid, just not exposed to it. And the cert provides exposure to these things, whether real world or lab rat
RE: Pix load balance? [7:42974]
The best way to load balance is to use an application layer (layer 4-7) switch. I am not too familiar with Cisco's offering of this technology (sadly), but have worked extensively with Foundry's ServerIrons and they are excellent devices! -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Brian Zeitz Sent: Tuesday, May 07, 2002 8:50 AM To: [EMAIL PROTECTED] Subject: RE: Pix load balance? [7:42974] Load balancing is supposed to be done on content switches according to what I am reading. I cannot be done on the firewall withing the site, nor can it be done with different ISPs. Brian Zeitz MCSE, CCNP -Original Message- From: Gaz [mailto:[EMAIL PROTECTED]] Sent: Tuesday, May 07, 2002 6:58 AM To: [EMAIL PROTECTED] Subject: Re: Pix load balance? [7:42974] What's the reason? I'm not disputing the fact, just wondering what the limitation is. I take it that the limitation is only that it cannot do stateful failover with two active PIXes? Cheers, Gaz wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... Yeah, I asked the same questions last month. They can not. If you really need firewall and Load balancing, FW-1 is the way to go. Theo CSS1, CCNP, CCSE Patrick Sent by: [EMAIL PROTECTED] 05/06/2002 06:28 AM Please respond to Patrick To: [EMAIL PROTECTED] cc: Subject:Re: Pix load balance? [7:42974] No. GEORGE wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... Can you load balance to pix firewalls? Has anyone done this? Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=43525t=42974 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: CCIE in 3-6 Months from cisco Interesting [7:43306]
I agree, there is a perception of CCIE's as arrogant know-it-alls. Some of this is surely warranted, and some surely stems from envy. Which is why I can laugh at this joke you may have already heard: Q:What's the difference between a CCIE and God? A:God doesn't think he is a CCIE... Pat (Set to incur the wrath of the aforementioned God at the RS Lab in RTP on May 18) -Original Message- From: nrf [mailto:[EMAIL PROTECTED]] Sent: Sunday, May 05, 2002 7:29 PM To: [EMAIL PROTECTED] Subject: Re: CCIE in 3-6 Months from cisco Interesting [7:43306] I also agree with you on many points. But anyway, inline I see your point about people not skipping the tech interview because of CCIE. And I also agree that it's a good thing. After all, when 'lab rats' (as you call them) are applying for jobs, it just makes sense that one would give a tough interview to weed them out. However, one must ask themselves What is the purpose of the cert? Just like a college degree in, say Computer Science. The BS in CS doesn't guarantee an employer that the person has experience, say, with PERL. However, the degree indicates that this person can learn and understand the logic of programming, etc. I don't think the purpose of the CCIE (or any Cisco cert) is to guarentee knowledge of absolutely everything in networking. That's not possible. However, I believe that it does indicate an advanced level of understanding of network principles as well as knowledge of specific technologies (EIGRP, HSRP, DLSw+, etc). So, as in your example of the person that didn't learn BGP because it wasn't required for the cert, I have to say So what. That wasn't the point of the CCIE. The CCNP cert doesn't cover IS-IS, for example, but I would hope anyone with CCNP could sit down, read about IS-IS, know how to look up IS-IS related commands on Cisco's site, and then implement what needs to be implemented. That's, IMHO, the purpose of obtaining the cert. This is absolutely true, nobody can know everything, and the CCIE was never designed to do that. On the other hand, there is a major difference between somebody who admits he doesn't know the answer, but can probably look it up, and somebody who boldly states something that is flatly wrong. For example, with that guy I interviewed who claimed that CEF can only be run on a GSR, clearly this was a case where he was trying to snow me. Now I admit, I was trying to trick him (I deliberately pretended that I knew nothing about networks because I wanted to see what kinds of things he would say if he didn't think I was a networking guy myself), and boy, was he tricked. It's certainly not a big joke, it's just that yes you really can pass the lab without experience. Granted, you need dedication and you need money to buy a home lab. Exactly - you need practice equipment. So you don't need a real job that provides hands-on equipment. You just need a lab, a lot of time, and a lot of money for exam attempts (or a willingness to go into debt). But a networking job? Not really, not to pass the lab. I understand your differentiation between real-world hands-on and practice lab (lab rat) hands-on. I truly do. But, again, it's like the college degree thing. If a company wants someone who has experience, they'll interview and ask questions that only seasoned professionals could answer. But, if they want someone with a certain level of knowledge, demonstrated ability to learn new things, and the ability to find resources and answer questions, then that could be a seasoned professional or someone that's certified (or someone with both). On the flip side of your argument, I've met people that are trying to get into networking from the telco side, and could explain in great detail how a T1 works, but couldn't explain HSRP (a very simple thing to understand and setup) to save their life. Doesn't mean their stupid, just not exposed to it. And the cert provides exposure to these things, whether real world or lab rat experience I mean, really, does it matter if you setup HSRP in a lab or in the real-world? I think not... HSRP is HSRP I guess, when it comes down to it, I feel if you (the hiring person) wants someone that can explain CEF, which models have software CEF, which have hardware CEF, which 6500 blades are fabric enabled and which aren't just by their model number, then you're not looking for anything but sheer experience. So why blame the cert for not providing that background to a person, when that's not the point of the cert to begin with? Two friends of mine, for example, are basically lab-rats (Ok, they did have previous experience, but very little). They accomplished it by basically borrowing my lab and all my books. They can't find decent work, because they can't pass the newly tightened tech interviews. So they are back doing sys-admin work, which is what they had been doing before
SCEP - x.509 Certificates and IOS [7:43277]
Ok, so with all the 'gurus' out here, there must be someone that has done this before. I've gone through all the documentation I can find on Microsoft's web site and Cisco's web site looking for information on setting up a CA on Windows 2000 and having a Cisco router use SCEP to register for a certificate. I've loaded the SCEP plug in, upgraded the version to the most recent on the Windows box, but I'm still haveing troubles with registration. Using IOS 12.1(9)e on a 7206VXR and/or 12.2(4)YB on a 1760. After setting the hostname, domain name and creating the RSA keys on the router I do the following (config)#crypto ca identity YourCA (ca-identity)#enrollment url http://IP.ADD.RES.S:80/certsrv/mscep/mscep.dll (ca-identity)#enrollment mode ra (ca-identity)#query url ldap://IP.ADD.RES.S Then authenticate... all is well (config)#crypto ca authenticate YourCA I get the fingerprint, accept the cert. Then enrolling: (config)#crypto ca enroll YourCA Starts the enrollment, provide the challenge password for revocation purposesaccept the defaults for the certificate name, ect Fingerprint comes up like it should... then BAM! %CRYPTO-6-CERTREJECT message The microsoft cert server is set up as a stand alone root CA, and the web enrollment for certificates is working just fine(user type certs). Ideas? Thoughts? Thanks! Bill Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=43277t=43277 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Urgent help Please! [7:43084]
Members, This is a problem. I feel that is not only inappropriate for someone to solicit the aide of this board and its subscribers in order to crack passwords, its unethical and potentially illegal. No offense Ravi, but this is unacceptable given to current state of legislation regarding Information Security. Paul, its your call and as such, I will leave it to your discretion, however there are clear problems with this. Regards, Will Gragido -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of [EMAIL PROTECTED] Sent: Wednesday, May 01, 2002 11:19 PM To: [EMAIL PROTECTED] Subject: Urgent help Please! [7:43084] Hi ! All, Can any one please break this password? enable secret 5 $1$rMrT$blzJIo4ZyCBfJkvu2CP/Z1 Thanks in advance. === WARNING This message may contain information that is confidential and may be subject to the provisions of section 61A of the Police Act 1958, which creates an offence to have unlawful possession of Police documents. If you are not the intended recipient of this message or have received this message in error, you must not peruse, use, pass or copy this message or any of its contents. Also note, the views expressed in this message may not necessarily reflect those of the New Zealand Police. Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=43118t=43084 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
2 interesting questions on DLSW + [7:43041]
I have two questions about DLSW + that I could use some explainations for. I would greatly appreciate any feedback you may have. 1) When you are doing DLSW Lite across the Frame Relay why is it necessary to map the LLC2 across the frame when you are not using passthrough? I can undertand it when you do specify the passthrough command, but without it I'm kind of confused? (is it because there is no other mode of transport across the frame since its encapsulating it in the frame packets) 2) Here is one that you will probably never get, but there are a couple of us trying to figure this one out and can't find any documentation on it. Okay, say you have the following lists set up for DLSW: dlsw ring-list 1 rings 1 2 dlsw port-list 1 s0 dlsw bgroup-list 1 bgroups 1 3 and then you do a command: dlsw remote-peer 1 tcp 1.1.1.1 Which list does it actually apply to the remote peer? Does it apply all of them? The 1st one? Anyone know for sure? Thanks and sorry for the rather long post. Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=43041t=43041 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
2 interesting questions on DLSW + [7:43041]
I have two questions about DLSW + that I could use some explainations for. I would greatly appreciate any feedback you may have. 1) When you are doing DLSW Lite across the Frame Relay why is it necessary to map the LLC2 across the frame when you are not using passthrough? I can undertand it when you do specify the passthrough command, but without it I'm kind of confused? (is it because there is no other mode of transport across the frame since its encapsulating it in the frame packets) 2) Here is one that you will probably never get, but there are a couple of us trying to figure this one out and can't find any documentation on it. Okay, say you have the following lists set up for DLSW: dlsw ring-list 1 rings 1 2 dlsw port-list 1 s0 dlsw bgroup-list 1 bgroups 1 3 and then you do a command: dlsw remote-peer 1 tcp 1.1.1.1 Which list does it actually apply to the remote peer? Does it apply all of them? The 1st one? Anyone know for sure? Thanks and sorry for the rather long post. Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=43048t=43041 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
2 questions I'm confused about [7:42739]
Hello all, I have 2 quick topics I could use some clarification on: 1) There is a new command for 12.2 called PPP MULTILINK LOAD-THRESHOLD What is the difference between this command and DIALER LOAD-THRESHOLD, and when would I use one over the other? 2) In OSPF you can advertise the newtworks in 2 ways: network 180.4.4.0 0.0.0.255 area 0 or network 180.4.4.4 0.0.0.0 area 0 What is the advantage of advertising just the specific interface, is there really a difference between the two? Thanks in advance. Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=42739t=42739 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Secret Clearance [7:42499]
LOL. Actually the policies are quite similar, Gaz however its all discretionary. People will talk regardless. If someone is inclined to talk then they are inclined to ramble on about clearances et al. For what its with, its not as though when a clearance is issued they hand you a plac and throw confetti in the air, its usually quietly done..or is it? ;-) -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Gaz Sent: Thursday, April 25, 2002 4:37 PM To: [EMAIL PROTECTED] Subject: Re: Secret Clearance [7:42499] The policies seem more lax in the US than in UK. I'm of the understanding that it is frowned upon to advertise the fact that you have any specific level of security clearance, particularly TS to avoid being targetted for any reason. I'm just guessing obviously, but seems like common sense. Can you tell me any more about yourself ;-) Gaz Paul Jin wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... Was this for Secret or TS? thanks, Paul EMW_Tech wrote: I shouldn't respond to a OT thread, but FYI, I had my persoanl interview by a DSS agent back in Decemberstill waiting. Oh, the process began in May 2000. Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=42641t=42499 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: mpls exam [7:42225]
Foundry's MPLS is a completely solid, end-to-end solution Theodore. Its extrmely robust and well thought out. I believe that I have a whitepaper from Foundry on their solution from one of the seminars I attended, I will be happy to forward it if you would like. -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of [EMAIL PROTECTED] Sent: Monday, April 22, 2002 7:24 PM To: [EMAIL PROTECTED] Subject: Re: mpls exam [7:42225] I passed it. Just read the 2 Cicso books, know ATM well, and use every other source you have. I hear that Foundry's MPLS is better though Dave Dunbar Sent by: [EMAIL PROTECTED] 04/22/2002 11:35 PM Please respond to Dave Dunbar To: [EMAIL PROTECTED] cc: Subject:mpls exam [7:42225] Does anyone out there have any advice on what to study for the exam. Has anyone found a site where there are any practice exams. Any help would be appreciated. Thanks. Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=42322t=42225 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Security advice - opening ports other than 80 and 443 in[7: [7:42356]
Do you load balance traffic to your fire wall(s)? If so, what methodology and more importantly, whose technology are you using. For example, if you were utilizing Foundry Networks ServerIronXLs and are employing a sandwich architecture, you could not only switch based on the protocol and in effect load balance all port 80 and 443 traffic to different devices respectively, you could also provide nimda/code red (sic Trojan) mitigation. I believe that Cisco's CSS switches will allow you the same functionality but am not quite up to speed on that gear. Security Policies gain legitimacy through actions. Your Security Policy and Procedures should act as a point of reference to for your Rulesets, however it will be up to you as the administrator, working with your ITSEC team and business units to define and streamline your identify the types of traffic you will need to allow entry and exit from your network in order to maintain normal business conditions. Remember the more complex a solution is, the greater the risk due to learning curve, configuration etc. you are concerned about Worms and viruses infiltrating hosts within or past a zone/dmz you may wish to explore not only Network Based Intrusion Detection, but Host Based as well. -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Patrick Ramsey Sent: Tuesday, April 23, 2002 12:59 PM To: [EMAIL PROTECTED] Subject: Re: Security advice - opening ports other than 80 and 443 in[7: [7:42347] a good security policy would have had this matetr taken care of as soon as it sprouted! :) (not directed to you Sam, just replying to thread) :) that aside, 1) opening up every port on the firewall is not danegrous unless you have something accesible via the firewall listening on a specific port. 2) it only takes one server to be hacked to bring a network to a stop 3) 1 should never happen because it is highly insecure.. :) sam sneed 04/23/02 12:41PM They can do more than just bring the server down. They can gain control of the server and have it attack other servers on your network or outside network. ex. the IIS code red worm only needed port 80 to be open on Winblows servers to spread across the internet. Brown, M wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... Certain application requires port other than 80 or 443 opened in the firewall for inbound and outbound traffic. The firewall was configured to allow traffic to that specific server ip address. The software vendor argues that the worst scenario could be that hackers could bring the server down. No other significant would be possible. Is that true ? How risky is that to my network ? I would like to secure that connection using CA from the company and IPSec. The software vendor argues that is not necessary. Confidentiality Disclaimer This email and any files transmitted with it may contain confidential and /or proprietary information in the possession of WellStar Health System, Inc. (WellStar) and is intended only for the individual or entity to whom addressed. This email may contain information that is held to be privileged, confidential and exempt from disclosure under applicable law. If the reader of this message is not the intended recipient, you are hereby notified that any unauthorized access, dissemination, distribution or copying of any information from this email is strictly prohibited, and may subject you to criminal and/or civil liability. If you have received this email in error, please notify the sender by reply email and then delete this email and its attachments from your computer. Thank you. Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=42356t=42356 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: MBA or CCIE [7:41809]
Thats not necessarily true. Bill Gates is an excellent example of someone with limited education, who went on to be a force to be reckoned with in the business world. -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of nrf Sent: Thursday, April 18, 2002 3:10 PM To: [EMAIL PROTECTED] Subject: Re: MBA or CCIE [7:41809] I understand. But on the other hand, if you have ambitions to be the CxO, a CCIE isn't going to cut it. Like you said, it's a case of what you want out of life. However, what I will definitely say is this. If you work for a company that is willing to finance your degree at night school, you're a fool not to take it. If you're not the one paying for it, you should get as many degrees as you can, because you never know what's going to happen in the future. Wes Stevens wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... A lot of it is what you want out of life. I will be 50 in 5 years and am perfectly happy playing with cisco's. I make more money then my boss with the mba does and have more job security. What happens if you get laid off at 45 or 50 with a middle to upper management job? If you are not way up there in the corner office area you are going to have a hard time finding a job. I work for a company in the fortune top 5 that is very stable. Yet this economy is hitting us also. They are going to cut my office way back from 500 people to 200 by the end of the year. They will offer me a job in Houston as they can always find a spot for a cisco network engineer. My boss and a lot of other are really scrambling. There are no jobs in the local market and less chances of them finding a place in another part of the company as they are cutting back everywhere. Just some food for thought. From: nrf Reply-To: nrf To: [EMAIL PROTECTED] Subject: Re: MBA or CCIE [7:41809] Date: Thu, 18 Apr 2002 14:37:51 -0400 Drew wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... Sean Knox wrote: I was actually heading towards my CCIE, but after getting my CCNP, I am content with that for now and and getting more experience (fortunately I am not some new wide-eyed kid in the field and have been doing this awhile). Congrats on your decision to pursue your MBA and I wish you luck. I made a similar decision myself within the last few weeks. I had planned on pursuing my CCIE-Security, but realize that I don't work enough with Cisco products on a daily basis, and certainly not with routing in a complex way, to feel that I would deserve the cert, even if I attained it. I'm going back to school for my MS in CS, starting classes in June. I think in the long run, an advanced degree is more of a benefit than an advanced vendor cert. But thats just me. Exactly. Especially later in your life. Fiddling with Cisco boxes might be cool now, but do you still want to be doing that when you're 50? Probably not, you probably want to be sitting in a director's chair ordering other young guys to set up the systems. It's hard to win promotion to that chair without an advanced education. _ Get your FREE download of MSN Explorer at http://explorer.msn.com/intl.asp. Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=42008t=41809 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Passing CIT score [7:41472]
Was wondering if anyone has taken the CIT exam recently and what was the passing score. I am about to take my CIT exam in 2 weeks which will complete my CCNP track WHOOT!. Thanks in advance William Cornett CCNA Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=41472t=41472 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
ISDN CHAP / PAP Authentication ? [7:41108]
I am confused about the debug output of a simple ISDN configuration. I have two routers R1 and R2 connecting with ISDN. R1 is using only PAP authentication, and R2 is using CHAP PAP. Now the debug is what is throwing me : 03:23:12: BR0 DDR: Dialing cause ip (s=180.1.113.1, d=180.1.113.3) 03:23:12: BR0 DDR: Attempting to dial 8358662 03:23:12: %LINK-3-UPDOWN: Interface BRI0:1, changed state to up 03:23:13: BR0:1 PPP: Treating connection as a callout 03:23:13: BR0:1 CHAP: I CHALLENGE id 66 len 23 from r2 03:23:13: BR0:1 CHAP: O RESPONSE id 66 len 23 from r1 03:23:13: BR0:1 CHAP: I SUCCESS id 66 len 4 03:23:13: BR0:1 PAP: I AUTH-REQ id 17 len 13 from r2 03:23:13: BR0:1 PAP: Authenticating peer r3 03:23:13: BR0:1 PAP: O AUTH-ACK id 17 len 5 03:23:13: BR0:1 DDR: dialer protocol up. It shows that CHAP is successful? Then is shows PAP as successful also? Shouldn't it just skip over CHAP and go straight to PAP? I have also tried to change the CHAP hostname on R2 to something different, then CHAP authentication fails and the PAP never kicks in? Can someone explain this to me or point me to a good document on the subject? Thanks in advance. Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=41108t=41108 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
FR SVCs [7:40893]
Has anyone worked with FR SVC's on 7200s and 1700's? Any known issues? Love it? Hate it? Wish it came is yellow? A coworker has opened a case with the TAC regarding configuring multiple FR SVCs on a single physical interface. I was wondering if anyone else has run into the same or similar issues. Thanks, Bill in AK [GroupStudy.com removed an attachment of type application/x-pkcs7-signature which had a name of smime.p7s] Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=40893t=40893 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Sample Configuration for Basic-5ess ISDN Switch environment [7:40906]
Hi Does anyone have sample config the the above environment? Thanks in advance. Best regards, William Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=40906t=40906 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: TCP/IP and DOD [7:39657]
No, we upgraded it ourselves Rico, I was there throughout the ninetieswe went from Banyan environments to IP (Unix/NT). -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Rico Ortiz Sent: Friday, April 05, 2002 6:42 PM To: [EMAIL PROTECTED] Subject: RE: TCP/IP and DOD [7:39657] When I was in the Marines (about 10 yrs ago) the used Banyard Vines for there networks. I believe EDS has been hired to upgrade there current network to an IP setup.. Rico -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Priscilla Oppenheimer Sent: Thursday, March 28, 2002 2:12 PM To: [EMAIL PROTECTED] Subject: RE: TCP/IP and DOD [7:39657] And I've heard that the US side in Desert Storm used Banyan for their networking systems, not TCP/IP!? Priscilla At 12:05 PM 3/28/02, Howard C. Berkowitz wrote: Thats what the DoD taught in their DataCommunications Schools. Sorry Dom. Absolutely, positively wrong, though. That's an urban legend that has been disavowed by every early developer I can think of, including the DARPA people. It developed out of pure DARPA sponsored research in networking. I'm hard-pressed to think of any nuclear command control communications system, before the mid-80's or so, that used TCP/IP, and at one time I knew pretty much every system that was deployed. Among the ones I can talk about, they were circuit-switched or radio. Some of the circuit-switched networks were computer controlled, including AUTODIN I and a variety of intelligent networks. Without detailed research, I'd tend to say the first military TCP/IP applications were in tactical, not strategic, nets. Actually, the first demonstration that packet switched networks were resilient to massive attack came from the Iraqi air defense system in Desert Storm. -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Chuck Sent: Thursday, March 28, 2002 9:00 AM To: [EMAIL PROTECTED] Subject: Re: TCP/IP and DOD [7:39657] the real reason being.? wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... Sorry, the be resilient to Global Thermal Nuclear attacks is a myth. Dom Stocqueler William Gragido To: [EMAIL PROTECTED] Subject: RE: TCP/IP and DOD [7:39657] Sent by: nobody@groups tudy.com 27/03/2002 20:17 Please respond to William Gragido The DoD adopted TCP/IP as its native protocol for communications in 1983. DARPA lead the charge for a communications system that would be resilient to Global Thermal Nuclear attacks (therein allowing for continued, uninterrupted comm), and would allow for common connectivity of multi-vendor solutions. This of course did yield 'ARPA NET' which, by a decision of the DCA (Defense Communications Agency), in 1983 was split in two yielding a smaller version of 'ARPA NET' and 'MILNET'. The evolution of the modern internet can followed done the line from 'ARPA NET' and as we all know by virtue of adding new networks to the mix, 'ARPA NET' was de-regulated in 1991 ushering the age of the modern internet. Hope that helps, Will Gragido -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Michael Williams Sent: Wednesday, March 27, 2002 1:37 PM To: [EMAIL PROTECTED] Subject: RE: TCP/IP and DOD [7:39657] It's kinda fuzzy. I myself just got through doing a tech review of a book covering this topic as well as have written my own materials for training, etc covering this topic. IMHO, DoD is credited with creating the internet even though at the time it wasn't called the internet and didn't use the same protocols we do now. Although the DoD started the whole mess, from what I've read DoD commisioned ARPANET to research this. I'm sure that peoples are various universities and colleges were in on the actual deveopment evidenced by the fact that in 1971 there were 15 nodes (with a total of 23 hosts), namely UCLA, SRI, UCSB, U of Utah, BBN, MIT, RAND, SDC, Harvard, Lincoln Lab, Stanford, UIU(C), CWRU, CMU, and NASA/Ames. Note most of those listed are colleges/universities. I've read some about BBN, however it seems to me their main role was to supply the first computers (Honeywell 516 mini computers with 12K of memory) that acted as Information Message Processors (IMPs) (routers?). However, I would humbly suggest that Howard B. or Priscilla O. throw their 2 cents in here. Also, since your doing a technical edit, be careful of the words you choose as well. For example you use the word written over and over above, but I don't think the conversation is really about which pro
RE: RE: My interview story [7:40553]
When I moved back to Alaska from Omaha, I interviewed at a place that sent all of their candidates to a 'speciallist' who did personality tests. I responded well to the interview, but not the job offer. :) TTFN, Bill Pearch, GCI Telehealth Systems Manager Anchorge AK -Original Message- From: John Neiberger [mailto:[EMAIL PROTECTED]] Sent: Friday, April 05, 2002 4:04 AM To: [EMAIL PROTECTED] Subject: Re: RE: My interview story [7:40553] That may be true, but it just sounds like something straight off the pages of Dilbert. :-) I know personally I wouldn't respond to such an interview well. If someone wants to test my creativity and troubleshooting, then they should mock up a lab and throw it at me. Perhaps that's because I'm not used to the idea of being psychologically tested during an interview. What's next, ink blot tests? Values clarification drills? Written personality tests? I can see it now: We're sorry, you're an INTJ but we really want an ESTJ for this position. Okay, I've got to stop answering email this early. :-) John [GroupStudy.com removed an attachment of type application/x-pkcs7-signature which had a name of smime.p7s] Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=40615t=40553 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Intusion Detection and IT Security [7:40337]
thats a great book, there are also some good docs on www.infosyssec.com -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Paul Borghese Sent: Wednesday, April 03, 2002 3:21 PM To: [EMAIL PROTECTED] Subject: Re: Intusion Detection and IT Security [7:40337] Check out Network Intrusion Detection an Analyst Handbook by Stephen Northcutt. Paul Borghese - Original Message - From: To: Sent: Wednesday, April 03, 2002 11:53 AM Subject: Intusion Detection and IT Security [7:40337] Does anyone have a suggestion on good books for learning about Intrusion Detection and IT Security for a beginner? The books don't necesarily have to be Cisco based, but more on the basics of Intrusion Detection and IT Security concepts and tools used. Thanks in advance _ Chat with friends online, try MSN Messenger: http://messenger.msn.com Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=40396t=40337 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: CID Exam Cert Book [7:39669]
Here is my list for the CID: DCN Padjen book Top Down -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Priscilla Oppenheimer Sent: Tuesday, April 02, 2002 1:13 AM To: [EMAIL PROTECTED] Subject: RE: CID Exam Cert Book [7:39669] At 10:03 PM 4/1/02, Robert Padjen wrote: Top Down is a great book for DCN, but it's not really for the CID. I'll go out on a limb and suggest mine ( ;) ). Sybex CID Study Guide. I'm sure you'll get flamed for advertising your own book, but I'm going to give you a hard time also for lack of accuracy. ;-) Top-Down Network Design is not a certification book, but it is based on the work I did on both the Designing Cisco Networks (DCN) and the Cisco Internetwork Design (CID) training classes when I worked for Cisco. I have heard that Cisco has made CID match my Top-Down Network Design book even more closely than before. I know for a fact that the description of the CID course is taken from my Top-Down Network Design book. I did a double-take when I read the following text from the description of the CID class here: http://www.cisco.com/pcgi-bin/front.x/wwtraining/CELC/index.cgi?action=Cours eDescCOURSE_ID=321 Good internetwork design recognizes a customer's requirements embody many business and technical goals, including requirements for availability, scalability, affordability, security, and manageability. Difficult internetwork design choices and tradeoffs must be made when designing the internetwork before any physical devices or media are selected. CID covers typical internetwork design business and technical goals and constraints. CID details the top-down design process and the importance of using systematic methods for internetwork design. Using systematic methods helps you, the internetwork designer, to keep pace with changing technologies and customer requirements. I said to myself, Hey I wrote that. Oh yeah, I should have had a lawyer look at my book contract. Cisco can use anything I wrote in the book. Bummer. or maybe not?? ;-] Priscilla To save a buck, if you feel comfortable with the material, you may want to forgo the big book and use the Exam Notes (used books are out there too). The new test might focus on multicast more than the books reflect, and they may have less StrataCom and ATM, but its close enough. 640-025 (the exam the book was written to) is still the current version. Good luck. --- Andy Barkl wrote: The book is not that great. It has many errors and omissions. I recommend the Cisco Press Top-Down Network Design book for the new CID exam. -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] On Behalf Of STRAND Scott Sent: Wednesday, March 27, 2002 12:32 PM To: [EMAIL PROTECTED] Subject: CID Exam Cert Book [7:39669] Has anyone who has taken the CID exam used the Cisco CID Exam Certification Guide. (Michael Crane, Reggie Terell). I was wanting to get some opinions on this book, especially the practice test on the CD. I intend to use BOSON as well. Thanks, Scott CCNP, CCDA [GroupStudy.com removed an attachment of type application/x-pkcs7-signature which had a name of smime.p7s] [EMAIL PROTECTED] = Robert Padjen __ Do You Yahoo!? Yahoo! Tax Center - online filing with TurboTax http://http://taxes.yahoo.com/ Priscilla Oppenheimer http://www.priscilla.com Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=40199t=39669 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: CID Exam Cert Book [7:39669]
I have that book, it is great! Robert does an excellent job outlining the intricacies of the CID. I am taking soon, (probably in May after the CISSP). Thanks for the great book Robert! Regards, Will -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Robert Padjen Sent: Monday, April 01, 2002 9:03 PM To: [EMAIL PROTECTED] Subject: RE: CID Exam Cert Book [7:39669] Top Down is a great book for DCN, but it's not really for the CID. I'll go out on a limb and suggest mine ( ;) ). Sybex CID Study Guide. To save a buck, if you feel comfortable with the material, you may want to forgo the big book and use the Exam Notes (used books are out there too). The new test might focus on multicast more than the books reflect, and they may have less StrataCom and ATM, but its close enough. 640-025 (the exam the book was written to) is still the current version. Good luck. --- Andy Barkl wrote: The book is not that great. It has many errors and omissions. I recommend the Cisco Press Top-Down Network Design book for the new CID exam. -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] On Behalf Of STRAND Scott Sent: Wednesday, March 27, 2002 12:32 PM To: [EMAIL PROTECTED] Subject: CID Exam Cert Book [7:39669] Has anyone who has taken the CID exam used the Cisco CID Exam Certification Guide. (Michael Crane, Reggie Terell). I was wanting to get some opinions on this book, especially the practice test on the CD. I intend to use BOSON as well. Thanks, Scott CCNP, CCDA [GroupStudy.com removed an attachment of type application/x-pkcs7-signature which had a name of smime.p7s] [EMAIL PROTECTED] = Robert Padjen __ Do You Yahoo!? Yahoo! Tax Center - online filing with TurboTax http://http://taxes.yahoo.com/ Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=40198t=39669 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
AS-Path Filtering in Confederations? [7:40249]
Can you filter out certain confederations (in the main AS) using AS-Path access-lists? I don't think that it's possible since they are technically in one big main AS. I have also tried it to no avail, but the thing that makes me think it may be able to be done is if I do a show bgp regexp ^$ it shows just my routes local to my confederation, not anyone elses. I've looked on CCO without any luck. Can someone tell me if this is possible or not? Thanks. Example: (65001) - (65002) - (65003) I want to filter so that confederation 65003 does not see any routes that originated in confederation 65001 using AS-Path Access-Lists. Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=40249t=40249 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
FW: Cisco Devices in MS Active Directory [7:40095]
Chris, Let me add to what David has said well. While Active Directory is Microsoft Directory service and is based on industry standard X.500 and LDAP and Kerboros. It is SNMP that is the only link between your Microsoft and Cisco devices. Therefore, management at best is monitoring the whole network. I think you will find that programs, such as Ciscoworks, are written because of the nature of business. Every manufacture wants his product to be unique. As far as SMS goes, it is capable of detection and monitor any snmp device. The key would be the response to the monitoring. SMS could only notify you at certain alert levels. This may be fine for your purposes. As final thought, consider your purposes and needs for management. I think that a combination of products is currently your best for full management! Bill Harrison MCSE, CCNP Instructor -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of David Armstrong Sent: Monday, April 01, 2002 4:10 PM To: [EMAIL PROTECTED] Subject: Re: Cisco Devices in MS Active Directory [7:40095] Chris, We've been looking into several network management packages. The answers all seem to be the same. Network management software can find devices via a number of methods but all need the hardware vendor's specific management software to adequately work with each company's devices. In the case of Cisco that would of course be Cisco Works. I don't know yet whether MS's SMS software interfaces with CiscoWorks or not but it would certainly be able to manage it via Active Directory. There are several other companies that have similar software that would integrate with Active Directory as well. Hope that helps some, David Armstrong Mann, Chris wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... Can Cisco routers and switches be managed at all from with Microsoft Active Directory, or some Active Directory snap-in? I tried looking on CCO and Microsoft.com but did not see too much on how the two of them interact, if at all. Thanks, Chris Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=40113t=40095 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
MFR - Multilink Frame Relay [7:40138]
Here's my setup: RouterA with 2 Serials into an F/R cloud connecting to RouterB with 1 Serial into the F/R cloud. Do both sides need MFR configured in order to talk or RouterB simply have F/R encapsulation on his serial interface? If there are pvc's on each F/R connection at RouterA, what should I use for the interface-dlci? What do I configure in terms of DLCI's at RouterB? Is it necessary to configure a MFR subinterface? The 1 example I found doesn't give a great deal of detail. Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=40138t=40138 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
FW: Anybody use Port Security on Switc [7:39457]
To handle mac address security, most cataylst series switches have a max mac count command that only allow X number of mac address per port. Set the command to one. The switch will only forward the one address. All others will be drop or forwarded to other ports. William Harrison -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Russ Malko Sent: Thursday, March 28, 2002 8:08 AM To: [EMAIL PROTECTED] Subject: RE: Anybody use Port Security on Switc [7:39457] How do you protect yourself, security wise, when the user disconnects their PC and re-connects a hub, which has the same MAC address programmed in to mask any device connected to it. Wouldn't it show the same MAC address for any device on that port? Is there a way to scan or monitor for this activity? Curious, Luke Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=39755t=39457 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: TCP/IP and DOD [7:39657]
Yes, thats true, we ran Banyon Vines, the USMC that is in addition to various Unix variants. -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Priscilla Oppenheimer Sent: Thursday, March 28, 2002 1:12 PM To: [EMAIL PROTECTED] Subject: RE: TCP/IP and DOD [7:39657] And I've heard that the US side in Desert Storm used Banyan for their networking systems, not TCP/IP!? Priscilla At 12:05 PM 3/28/02, Howard C. Berkowitz wrote: Thats what the DoD taught in their DataCommunications Schools. Sorry Dom. Absolutely, positively wrong, though. That's an urban legend that has been disavowed by every early developer I can think of, including the DARPA people. It developed out of pure DARPA sponsored research in networking. I'm hard-pressed to think of any nuclear command control communications system, before the mid-80's or so, that used TCP/IP, and at one time I knew pretty much every system that was deployed. Among the ones I can talk about, they were circuit-switched or radio. Some of the circuit-switched networks were computer controlled, including AUTODIN I and a variety of intelligent networks. Without detailed research, I'd tend to say the first military TCP/IP applications were in tactical, not strategic, nets. Actually, the first demonstration that packet switched networks were resilient to massive attack came from the Iraqi air defense system in Desert Storm. -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Chuck Sent: Thursday, March 28, 2002 9:00 AM To: [EMAIL PROTECTED] Subject: Re: TCP/IP and DOD [7:39657] the real reason being.? wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... Sorry, the be resilient to Global Thermal Nuclear attacks is a myth. Dom Stocqueler William Gragido To: [EMAIL PROTECTED] Subject: RE: TCP/IP and DOD [7:39657] Sent by: nobody@groups tudy.com 27/03/2002 20:17 Please respond to William Gragido The DoD adopted TCP/IP as its native protocol for communications in 1983. DARPA lead the charge for a communications system that would be resilient to Global Thermal Nuclear attacks (therein allowing for continued, uninterrupted comm), and would allow for common connectivity of multi-vendor solutions. This of course did yield 'ARPA NET' which, by a decision of the DCA (Defense Communications Agency), in 1983 was split in two yielding a smaller version of 'ARPA NET' and 'MILNET'. The evolution of the modern internet can followed done the line from 'ARPA NET' and as we all know by virtue of adding new networks to the mix, 'ARPA NET' was de-regulated in 1991 ushering the age of the modern internet. Hope that helps, Will Gragido -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Michael Williams Sent: Wednesday, March 27, 2002 1:37 PM To: [EMAIL PROTECTED] Subject: RE: TCP/IP and DOD [7:39657] It's kinda fuzzy. I myself just got through doing a tech review of a book covering this topic as well as have written my own materials for training, etc covering this topic. IMHO, DoD is credited with creating the internet even though at the time it wasn't called the internet and didn't use the same protocols we do now. Although the DoD started the whole mess, from what I've read DoD commisioned ARPANET to research this. I'm sure that peoples are various universities and colleges were in on the actual deveopment evidenced by the fact that in 1971 there were 15 nodes (with a total of 23 hosts), namely UCLA, SRI, UCSB, U of Utah, BBN, MIT, RAND, SDC, Harvard, Lincoln Lab, Stanford, UIU(C), CWRU, CMU, and NASA/Ames. Note most of those listed are colleges/universities. I've read some about BBN, however it seems to me their main role was to supply the first computers (Honeywell 516 mini computers with 12K of memory) that acted as Information Message Processors (IMPs) (routers?). However, I would humbly suggest that Howard B. or Priscilla O. throw their 2 cents in here. Also, since your doing a technical edit, be careful of the words you choose as well. For example you use the word written over and over above, but I don't think the conversation is really about which programmers actually wrote the code it's more about who either spearheaded or caused the evolution of the *standards* we call TCP/IP in which case I don't think crediting the DoD is incorrect. My 2 cents =) Mike W. Priscilla Oppenheimer http://www.priscilla.com Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=3983
RE: TCP/IP and DOD [7:39657]
The DoD adopted TCP/IP as its native protocol for communications in 1983. DARPA lead the charge for a communications system that would be resilient to Global Thermal Nuclear attacks (therein allowing for continued, uninterrupted comm), and would allow for common connectivity of multi-vendor solutions. This of course did yield 'ARPA NET' which, by a decision of the DCA (Defense Communications Agency), in 1983 was split in two yielding a smaller version of 'ARPA NET' and 'MILNET'. The evolution of the modern internet can followed done the line from 'ARPA NET' and as we all know by virtue of adding new networks to the mix, 'ARPA NET' was de-regulated in 1991 ushering the age of the modern internet. Hope that helps, Will Gragido -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Michael Williams Sent: Wednesday, March 27, 2002 1:37 PM To: [EMAIL PROTECTED] Subject: RE: TCP/IP and DOD [7:39657] It's kinda fuzzy. I myself just got through doing a tech review of a book covering this topic as well as have written my own materials for training, etc covering this topic. IMHO, DoD is credited with creating the internet even though at the time it wasn't called the internet and didn't use the same protocols we do now. Although the DoD started the whole mess, from what I've read DoD commisioned ARPANET to research this. I'm sure that peoples are various universities and colleges were in on the actual deveopment evidenced by the fact that in 1971 there were 15 nodes (with a total of 23 hosts), namely UCLA, SRI, UCSB, U of Utah, BBN, MIT, RAND, SDC, Harvard, Lincoln Lab, Stanford, UIU(C), CWRU, CMU, and NASA/Ames. Note most of those listed are colleges/universities. I've read some about BBN, however it seems to me their main role was to supply the first computers (Honeywell 516 mini computers with 12K of memory) that acted as Information Message Processors (IMPs) (routers?). However, I would humbly suggest that Howard B. or Priscilla O. throw their 2 cents in here. Also, since your doing a technical edit, be careful of the words you choose as well. For example you use the word written over and over above, but I don't think the conversation is really about which programmers actually wrote the code it's more about who either spearheaded or caused the evolution of the *standards* we call TCP/IP in which case I don't think crediting the DoD is incorrect. My 2 cents =) Mike W. Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=39677t=39657 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
1760s [7:39338]
Has anyone used the 1760 routers? Thoughts, comments, suggestions? TTFN, Bill in Anchorage [GroupStudy.com removed an attachment of type application/x-pkcs7-signature which had a name of smime.p7s] Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=39338t=39338 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Classful Prefix-list [7:39113]
Can someone tell me how to create a Prefix-list to only alow classful routes for BGP. I know you can do the following with an extended access-list: access-list 100 permit ip 0.0.0.0 127.0.0.0 host 255.0.0.0 access-list 100 permit ip 128.0.0.0 63.255.0.0 host 255.255.0.0 access-list 100 permit ip 192.0.0.0 31.255.255.0 host 255.255.255.0 Is there way to do it? Any good reading material on Prefix-lists? Thanks in advance. Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=39113t=39113 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Who is Priscilla Oppenheimer ? [7:38662]
LOL. Hey Priscilla, who are you anyways ;-) What was the name of that book you authored? -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of dk Sent: Monday, March 18, 2002 9:51 AM To: [EMAIL PROTECTED] Subject: Who is Priscilla Oppenheimer ? [7:38662] Who is this mystery woman .. who seems to know everything ! Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=38677t=38662 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: you American need to think [7:38323]
That is an excellent point! As if that diet coke will really help! Pleaase! -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of QOSMAN Sent: Friday, March 15, 2002 7:21 PM To: [EMAIL PROTECTED] Subject: Re: you American need to think [7:38323] Correctonly in America we order a double-cheese burger, large fries and a Diet Coke :) Mike Sweeney wrote: I think you folks are missing a valuable point and lesson here. The real point has nothing to do with if *Jim* is correct, a flame baiter, a pond scum commie or my best friend.. it does have everything to do with something that America is pretty unique about having for US living here. THe ablility to say virtually ANYTHING you want without fear of the jackboot crowd coming to visit you and inform you of the error of your ways. Unintentionly *Jim* has reminded us.. or should remind us that America for all it's faults is still the one place that people to this day DIE to try to get to. Why? because Americans come close to being free in the true sense of the word. You can buy what you want, pick and choose what you want, sponge off your neighbors, have 8 SUVs, and SAY pretty much what you want. Oh, there may be repercussions of saying things.. but most times the police are not going to shoot you down in the street(Kent State excepted) or have you *disappear*(watch of the unmarked black helicopters) So *Jim*.. bad mouth us all you want and personally I will enjoy the fact that I live in a place where I can read your rants, reply to them or delete them without fear. Long live the Bill of Rights and the US Constitution. May we remember why they exist and people die for those beliefs. MikeS www.packetattack.com PS-- for those that seem to care.. I am neither Right or Left.. I happen to Libertarian which puts me outside of the box :) Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=38680t=38323 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Who is Priscilla Oppenheimer ? [7:38662]
Top Down Network DesignNo worries Larry, we still love you man! -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Larry Letterman Sent: Monday, March 18, 2002 10:34 AM To: [EMAIL PROTECTED] Subject: RE: Who is Priscilla Oppenheimer ? [7:38662] check out her book cisco press book, top down networking..Sorry if the title is not exactly correct, its not in front of me... Larry Letterman Cisco Systems [EMAIL PROTECTED] -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of dk Sent: Monday, March 18, 2002 7:51 AM To: [EMAIL PROTECTED] Subject: Who is Priscilla Oppenheimer ? [7:38662] Who is this mystery woman .. who seems to know everything ! Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=38689t=38662 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: you American need to think [7:38323]
What in hell's bells does this have to do with studying Internetworking technologies? -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Scott H. Sent: Thursday, March 14, 2002 9:52 PM To: [EMAIL PROTECTED] Subject: Re: you American need to think [7:38323] Crawl back into that hole you came out of. Nobody wants to listen to your B.S. Jim Bond wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... Sorry for wasting your bandwidth, but I have to say this. Being rich is good; being smart is good. But if you treat others like sxxt, others will treat you like sxxt too. Think about this: if you are a CCNA and your CCIE co-worker say your stupid or dumb, will you respect him? There are so many knowledgeable and friendly people on this list, but there are some rude and arrogant people too. I agree that Bin Laden is a murderer, an evil, but you American need to think why he only attacks US, not Germany or Russia or Japan or others. Show some respect to others, it won't make you poor. Also remember that there are always someone richer and smarter than you. Over. Dismiss. Jim __ Do You Yahoo!? Yahoo! Sports - live college hoops coverage http://sports.yahoo.com/ Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=38413t=38323 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Recommending Books for CCIE [7:38295]
I would recommend having them all in your arsenal. They are great refernce tools and it has just been brought to my attention that Brad Ellis and Co., have a new one out that I will be checking out soon as well. -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of norco Sent: Thursday, March 14, 2002 4:55 PM To: [EMAIL PROTECTED] Subject: Re: Recommending Books for CCIE [7:38295] For the written i probably wouldn;t go with either of Doyles books - save those for the lab!! :) The best book is the Caslow book, followed by either the Exam Cram or the Sybex book (neither of these books are particularly brilliant in their own write - pardon the pun!but are tailored to the exam and are good as a revision). norco wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... Would anyone recommend book(s) to study fo CCIE writen exam? Thanks. Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=38414t=38295 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Way OT (Sorry) RE: you American need to think [7:38323]
It's *Americans* - plural, as in lots of Americans, more than one, but still one. Many united, FOCUSED Americans. And by the way, we *are* thinking. We are thinking about which parties are going to be next in line to be recipients of the large amounts of ordinance that will be dropped by our Air Force as an example of what happens to people who attack or support people who attack innocent civilians in office buildings; or anywhere else for that matter. -Original Message- From: Jim Bond [mailto:[EMAIL PROTECTED]] Sent: Thursday, March 14, 2002 6:26 PM To: [EMAIL PROTECTED] Subject: OT: you American need to think [7:38323] Sorry for wasting your bandwidth, but I have to say this. Being rich is good; being smart is good. But if you treat others like sxxt, others will treat you like sxxt too. Think about this: if you are a CCNA and your CCIE co-worker say your stupid or dumb, will you respect him? There are so many knowledgeable and friendly people on this list, but there are some rude and arrogant people too. I agree that Bin Laden is a murderer, an evil, but you American need to think why he only attacks US, not Germany or Russia or Japan or others. Show some respect to others, it won't make you poor. Also remember that there are always someone richer and smarter than you. Over. Dismiss. Jim __ Do You Yahoo!? Yahoo! Sports - live college hoops coverage http://sports.yahoo.com/ Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=38519t=38323 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: what does SC0: stand for? [7:38517]
Quoting from CCO: The interface sc0 is an internal management interface that is connected to the switching fabric and participates in all of the functions of a normal switch port, such as Spanning-Tree Protocol (STP), Cisco Discovery Protocol (CDP), and VLAN membership. taken from http://www.cisco.com/warp/public/473/8.html Hope this helps, Pat -Original Message- From: Eric Waguespack [mailto:[EMAIL PROTECTED]] Sent: Friday, March 15, 2002 10:07 PM To: [EMAIL PROTECTED] Subject: what does SC0: stand for? [7:38517] any idea? __ Do You Yahoo!? Yahoo! Sports - live college hoops coverage http://sports.yahoo.com/ Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=38520t=38517 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: what does SC0: stand for? [7:38517]
Probably switch console or system console Good question though, I am curious to see what it really means. Pat -Original Message- From: Eric Waguespack [mailto:[EMAIL PROTECTED]] Sent: Friday, March 15, 2002 10:46 PM To: [EMAIL PROTECTED] Subject: RE: what does SC0: stand for? [7:38517] thanks, but i know what it is and how to use it, what i am curious about is what it stands for, SC0 .. for example tty stands for teletype. --- TALBOT, WILLIAM P (SWBT) wrote: Quoting from CCO: The interface sc0 is an internal management interface that is connected to the switching fabric and participates in all of the functions of a normal switch port, such as Spanning-Tree Protocol (STP), Cisco Discovery Protocol (CDP), and VLAN membership. taken from http://www.cisco.com/warp/public/473/8.html Hope this helps, Pat -Original Message- From: Eric Waguespack [mailto:[EMAIL PROTECTED]] Sent: Friday, March 15, 2002 10:07 PM To: [EMAIL PROTECTED] Subject: what does SC0: stand for? [7:38517] any idea? __ Do You Yahoo!? Yahoo! Sports - live college hoops coverage http://sports.yahoo.com/ [EMAIL PROTECTED] __ Do You Yahoo!? Yahoo! Sports - live college hoops coverage http://sports.yahoo.com/ Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=38527t=38517 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: another CCNP [7:38269]
Welcome to the club! -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Michael J. Doherty Sent: Thursday, March 14, 2002 1:26 PM To: [EMAIL PROTECTED] Subject: Re: another CCNP [7:38269] Congratulations!! - Original Message - From: King, Ty To: Sent: Thursday, March 14, 2002 1:57 PM Subject: another CCNP [7:38269] Just passed my last test today. Ty King _ Do You Yahoo!? Get your free @yahoo.com address at http://mail.yahoo.com Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=38283t=38269 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Recommending Books for CCIE [7:38295]
I have heard good things about the Exam Cram. If you don't have them already, i would pick up the Caslow and Doyle books as well. -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of [EMAIL PROTECTED] Sent: Thursday, March 14, 2002 3:26 PM To: [EMAIL PROTECTED] Subject: Recommending Books for CCIE [7:38295] Would anyone recommend book(s) to study fo CCIE writen exam? Thanks. Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=38303t=38295 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: The CCNA exam has changed effective 3-12-02 [7:37960]
A fellow that I work with just took the CCNA today, it is currently still testing at the 507 level. -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of VanHaaren, Nicole Sent: Tuesday, March 12, 2002 1:17 PM To: [EMAIL PROTECTED] Subject: RE: The CCNA exam has changed effective 3-12-02 [7:37960] A friend of mine just scheduled hers today, but is still taking the 640-507 test. Nicole VanHaaren, CCNP, CCSE Systems Consultant Broadwing Technology Solutions -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] Sent: Tuesday, March 12, 2002 1:52 PM To: [EMAIL PROTECTED] Subject:RE: The CCNA exam has changed effective 3-12-02 [7:37960] I think this is a great idea. However, I'm halfway thru my CCNP certification. Is it going to be necessary or advisable to recert in the 600 track? Please advise. Jeff +++The information transmitted is intended only for the person or entity to which it is addressed and may contain confidential and/or privileged material. Any review, retransmission, dissemination or other use of, or taking of any action in reliance upon, this information by persons or entities other than the intended recipient is prohibited. If you received this in error, please contact the sender and destroy any copies of this document.+++ The information transmitted is intended only for the person or entity to which it is addressed and may contain confidential and/or privileged material. Any review, retransmission, dissemination or other use of, or taking of any action in reliance upon, this information by persons or entities other than the intended recipient is prohibited. If you received this in error, please contact the sender and destroy any copies of this document. Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=37993t=37960 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Appletalk in CIT beta ? [7:37650]
You will want to know and understand the fundamentals of Appletalk. -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Constantin Tivig Sent: Friday, March 08, 2002 6:45 AM To: [EMAIL PROTECTED] Subject: Appletalk in CIT beta ? [7:37650] Well, it's time for me to take the CIT beta. Question: how much AppleTalk is in there ? Are there many q on this topic? Unfortunately I have 0 experience w/ AppleTalk, so I am very concerned. All the best, Costin Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=37660t=37650 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: CCIE program will be dropping token ring! [7:37422]
AWESOME -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Steven A. Ridder Sent: Wednesday, March 06, 2002 10:44 AM To: [EMAIL PROTECTED] Subject: CCIE program will be dropping token ring! [7:37422] I'm in a meeting with the CCIE program manager and they will be removing Token-ring soon! -- RFC 1149 Compliant. Scott H. wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... Not that bad. A bunch of dates open in March and April in San Jose--if you can't do that, you are screwed until August. The one thing that I have noticed is that when people get within their 28 day window, they drop their date. This opens up dates for the more serious contenders. Best of luck! Scott AMR wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... What's the wait time like nowadays? -A Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=37436t=37422 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]