Re: The CCNA exam has changed effective 3-12-02 [7:37960]

[Wojtek Zlobicki]

 you should always remember the full command. - are you simply referring
 to exam situations, or do you consider that in real life it is necessary
 to remember the full commands?  (No, I don't consider exams to be real
 life ;-) If you're just talking about exams, fair enough, but if you're
talking
 about real world situations, why do you think this?

I think you would be surprised how many people do not know what conf t
really means.  Forcing people to use the full command makes them learn more
about
what it does.  We all should at least know what the full command does, then
and only then should we use the abbreviated versions




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7i=38058t=37960
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: BGP in Production [7:30535]

[Wojtek Zlobicki]

 I mean what version of IOS OF COURSE ... ;-))

Wow, had me scared there for a while :P




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7i=30542t=30535
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: ccbootcamp part 2 [7:29682]

[Wojtek Zlobicki]

 Developing effective methods for knowledge transfer requires creativity,
 skill, time, money, awareness of the audience and their learning styles,
 and other resources. The results may be proprietary and there's nothing
 wrong with charging for them. I can't comment on the pricing. (Setting a
 good price has always seemed like a black art to me, having only taken one
 business/marketing type class in my life.) It does seem like different
 prices for different countries makes sense, as others have said.

A copy of your book graces my bookshelf (I have to admit that I have not
had a chance to read it yet).  I do not mind paying for the book.  There are
a number of people here financing their own CCIE, it would be nice if the
labs were available in parts (I would be interested in labs 1-10 for
example).
The labs are extensive (having seen Lab 1 as an example) but are they
really worth $650.  After having sold 100/1000/2000 lab sets, it becomes
less and less clear to me why the $650 fee is warranted.  For $650 I can
buy about 10 books that help me prep for my CCIE.  Are the works of
Doyle, Halabi, Caslow, Lee et all now worth as much.  I don't believe
that each lab takes more work that a book such as yours or Halabi's,
the $650 fee may have been appropriate during the boom but
I do not believe that such a fee is still reasonable.




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7i=30048t=29682
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: I Hate Modems [7:29545]

[Wojtek Zlobicki]

 Who AMI to argue?

 (Ouch twice)

Anyone else think that its sad that we find this funny :)




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7i=29704t=29545
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: cannot ping loopback IP addresses [7:29345]

[Wojtek Zlobicki]

How are your loopbacks learning about one another?  You will want to
redistribute the information about your loopbacks into a routing
protocol or use static routes.  Ideally, I would but the loopbacks into
separate
networks and then advertise those networks via the routing
protocol of choice. I see the network 100.0.0.0 being advertised
but I am not sure as to what it will default (classful or
classless addressing).  An output of sh ip route
would be nice.


mindiani mindiani  wrote in message
[EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
 I have two routers connected to the same LAN but I cannot ping the
loopback
 IP address of each other. from router1 I am not able to ping the loopback
of
 router2 and vice-versa. Why ?.

 Here is the sample config of the two routers.

 --
 Router1:

 hostname router1
 interface loopback0
 ip address  100.0.1.1 255.255.255.0
 !
 interface Ethernet0
 ip address 192.100.103.9 255.255.255.0
 no ip-directed broadcast
 !
 eigrp 1
 network 192.100.103.0
 network 100.0.0.0
 no auto-summary

 -
 Router2:

 hostname router2
 interface loopback0
 ip address  100.0.1.6 255.255.255.0
 !
 interface Ethernet0
 ip address 192.100.103.10 255.255.255.0
 no ip-directed broadcast
 !
 eigrp 1
 network 192.100.103.0
 network 100.0.0.0
 no auto-summary


 _
 Join the worlds largest e-mail service with MSN Hotmail.
 http://www.hotmail.com




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7i=29358t=29345
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: BGP PfxRcd [7:29331]

[Wojtek Zlobicki]

Using any prefix lists of filters ?
Filtering out networks of a particular size ?
Specifying next-hop self ?

JP  wrote in message
[EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
 All,

 I have three BGP routers learning full table from different ISPs, they are
 fully
 meshed IBGP peers.
 If I do a show ip bgp summary on one of the routers:

 Neighbor  V ASMsgRcvd MsgSent   TblVer  InQ OutQ
Up/Down
 State/PfxRcd
 10.200.255.22 4 1  3239033 1044612  604463300 1d02h
 50645
 10.100.255.22 4   1   730890  957516  604463300
20:18:35
 59854
 157.x.x.x  4 701  44859226  735704  604463100 5w0d
 103907

 The other two routers have similar output.

 All three routers are learning about 103-104K routes from EBGP sessions, I
 thought all prefixes learned from ebgp should be forwarded to all IBGP
peers
 but seems to me they only forward about 50% of these prefixes to their
IBGP
 peers.

 What am I missing here?

 Thanks
 JP




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7i=29359t=29331
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: Bandwidth Management [7:27408]

[Wojtek Zlobicki]

Can you elaborate on what you mean by bandwidth management ?
What is it exactly that you are trying to do, are we talking about
a QoS provisioning tool ?


- Original Message -
From: Ken Diliberto 
Newsgroups: groupstudy.cisco
Sent: Monday, November 26, 2001 8:36 PM
Subject: Bandwidth Management [7:27408]


 Does anyone know of any free bandwidth management software?  Maybe
something
 for a flavor of Unix?

 Thanks

 Ken




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7i=29247t=27408
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: PPTP through PIX [7:28287]

[Wojtek Zlobicki]

Are you using NAT ?  Save yourself a few hours of study and realize that
PPTP and NAT don't mix ?  Since there is no way to identify GRE and forward
it to a given end host (at least none that I know of) you cannot use PPTP to
connect to a PATd box (It may be possibly to PPTP to a statically NATd box).


Emil  wrote in message
[EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
 Hello

 Is this possible to use  Microsoft PPTP connection from PC client to
Windows
 2000 VPN server through Internet and PIX Firewall?

 I set up PIX to allow connection to 1723 port and allow GRE protocol, but
 this is sth wrong.
 Did anybody make it, what else should I allow on PIX?
 Regards

 Emil




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7i=29260t=28287
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: Laptop keeps same gateway even when on different router - [7:27523]

[Wojtek Zlobicki]

Look at the bottom of the route print, do you see anything under persistent
routes ?

  Hello all,  I am having a problem that i am hoping someone who has had
  same experience can shed some light on. I have a laptop that i use at my
  office and at home through frame relay network to my office ( using
dhcp )
  The problem i am having is the laptop keeps the default gateway of the
  office  ( i discovered this using a routeprint at dos prompt) so i can
  connect to any thing at home or office but no other frame relay networks
  that are also connected to our office. I have ruled out router as
problem
  because i can ping all subnets from the router but it is just from the
pc
  . Getting frustrated and hoping some kind soul will put me in right
  direction!
  thanks
  JD




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7i=27523t=27523
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: NSA Cisco Router Security Guides [7:26655]

[Wojtek Zlobicki]

It appears the link was censored :P

http://nsa2.www.conxion.com/cisco/download.htm

 I saw this on another NG.  fyi

 thanks,
 -Brad Ellis
 CCIE#5796 (RS / Security)
 Network Learning Inc
 [EMAIL PROTECTED]




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7i=26662t=26655
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: Best sniffer [7:26030]

[Wojtek Zlobicki]

Ethereal does the trick (www.ethereal.com)

Ali Mesdaq  wrote in message
[EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
 whats the best sniffer? i want one thats intuitive and powerful. something
 that can unwrap packets to the data content and if possbile let you view
 communications between machines by orginizing the packets for you. if its
 free that would be good too




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7i=26319t=26030
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: where exactly is the equipment replicated ? [7:26243]

[Wojtek Zlobicki]

Priscilla Oppenheimer  wrote in message
[EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
 At 12:15 PM 11/14/01, John Green wrote:
 -
 and what would this mean ??
 where exactly is the equipment replicated ? is it one
 at customer
 access point and the other at the carrier provider's
 end? is this what
 is duplication and what is the context for
 Multiple networks ?

 You'll have to tell us the context. Where did you get the wording below
and
 what is it in reference too? It sounds like a bunch of hand waving that
 might make more sense with some context, but might not. Very few companies
 would implement multiple, parallel networks to meet availability goals,
but
 some might.

 The sentence at the end doesn't fit. Did it come from somewhere else? Or
 maybe it fits if you read this as advertising material from a service
 provider. Are they trying to justify why a customer should use them for
 redundancy or something? It's impossible to tell.

 And I have a question for you. What does 42 mean? Thanks.

 Priscilla

 
 Multiple networks, however, are extremely expensive
 to build and
 maintain. Capital expenditure is high because
 equipment is replicated,
 and operation and maintenance costs are high because
 of the
 duplication of personnel and practices for each
 separate network. At
 the same time, competitive pressures in the
 communication industry are
 forcing providers to shift their business models from
 simply providing
 bandwidth to delivering revenue-generating,
 value-added services
 
 __
 Do You Yahoo!?
 Find the one for you at Yahoo! Personals
 http://personals.yahoo.com
 

 Priscilla Oppenheimer
 http://www.priscilla.com




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7i=26335t=26243
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: where exactly is the equipment replicated ? [7:26243]

[Wojtek Zlobicki]

Lets try that again , being a little trigger happy  :)

 And I have a question for you. What does 42 mean? Thanks.

Hitchhikers Guide memories being a little fuzzy , isn't 42 the answer :P




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7i=26336t=26243
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: BGP question [7:25130]

[Wojtek Zlobicki]

Oops,

I misunderstood the question... what is the correct answer ?

 How is this command going to change the AS path list.  The require task
was
 that R4 should see the loopback is from AS 200 not AS 100 (which is the
 originator).

 Faisal


 Wojtek Zlobicki  wrote in message
 [EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
  news  wrote in message
  [EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
   Hello,
  
   greetings...
   While practicing for CCIE lab, I encounter a question that is
something
  like
   this
  
   Topology:
   R1   R3 - R4
  
   R1 is on AS 100
   R3 is on AS 200
   R4 is on AS 500
  
   There is a loopback address on R1 Loopback0 200.200.200.1/24.  I am
  suppose
   to advertise this through BGP.  Now, in normal case, R4 should see
this
   network coming from AS 200 and then AS 500
  
   My task is to configure R3 with one statement so that R4 see this
 loopback
   coming from AS 200 instead of AS 500?
   Any idea how this is done?
 
  neighbor R3_LOOPBACK next-hop-self
 
 
  
   Thanks in advance.  I appreciate your help.
  
   Faisal




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7i=25188t=25130
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: BGP question [7:25130]

[Wojtek Zlobicki]

news  wrote in message
[EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
 Hello,

 greetings...
 While practicing for CCIE lab, I encounter a question that is something
like
 this

 Topology:
 R1   R3 - R4

 R1 is on AS 100
 R3 is on AS 200
 R4 is on AS 500

 There is a loopback address on R1 Loopback0 200.200.200.1/24.  I am
suppose
 to advertise this through BGP.  Now, in normal case, R4 should see this
 network coming from AS 200 and then AS 500

 My task is to configure R3 with one statement so that R4 see this loopback
 coming from AS 200 instead of AS 500?
 Any idea how this is done?

neighbor R3_LOOPBACK next-hop-self



 Thanks in advance.  I appreciate your help.

 Faisal




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7i=25135t=25130
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: Equipment from a cosulting gig I need to sell... [7:24971]

[Wojtek Zlobicki]

Moe,

Can you send me a price for the 2621/PIX525/7206's.  While you're at it,
send me pricing it all.


Moe Tavakoli  wrote in message
[EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
 I have lots of equipment which a company paid me
 with The list includes:

 Cisco 2621s
 Cisco 6506s
 Cisco PIX 525s
 Cisco 7206s
 Buncha SX gig-mods and misc card and stuff for items
 listed above...

 I need to sell these (though I don't want to give them
 away!)

 I any one is interested, let me know which and I can
 give you the specs.

 Moe.

 =
 _
 Moe Tavakoli

 __
 Do You Yahoo!?
 Make a great connection at Yahoo! Personals.
 http://personals.yahoo.com




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7i=25014t=24971
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: is it really bad market for ccie ? NO! NO! NO! [7:24336]

[Wojtek Zlobicki]

 Juniper has some excellent engineers, and a good product, I don't mean to
 detract from that.  But this list should be more focused on giving people
 inspiration and not trying to disappoint them by saying that there is no
 demand for the CCIE  when their patently is.

I'd like to add one more thing.  When did this job start being about just
money.  I guess I can't speak for everyone. I'm young, single, no mortgage,
no mouths to feed.  I am willing to travel (having to spend 6 weeks in
Barbados or somewhere nice and sunny) is something I am willing to tolerate.

People also have to start looking at enhancing their soft skills.  Take a
basket weaving course.  Take a public speaking course.  I've been told by
many that they can't get over how outgoing I am.  A techie with a
personality is something that many employers seek.  People really need to
stop on relying on four letter words to get them a job.  A CCIE no longer
guarantees one a job.  The right person with the right Cert can always find
a job.




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7i=24426t=24336
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: is it really bad market for ccie ? NO! NO! NO! [7:24336]

[Wojtek Zlobicki]

 feel the need to do (what's up with that attitude anyway?  It's almost
like
 some people think I'm somehow insulting their religion, and since when did
 Cisco become a religion?).

Our IOS who art in  router
Hallowed be thy CLI

:)

 * Yes you are correct to say that that there is no such thing as basic
 Juniper or beginning Juniper.  Such a thing is indeed an oxymoron due to
 the nature of Juniper's targeted market.  So let me revise me argument

This is likely to change.  I've heard rumors that Juniper will start to get
into a
midrange market.  I don't believe they can survive in the core alone.

 slightly and say that my argument only applies to intermediate and
 expert-level skills.  For networking newbies, the CCNA, I concede is the
 only reasonable game in town.   But for intermediate level people, I
believe
 that now you can start comparing Juniper and, say the CCNP,  to a
reasonable
 degree.  It is my gut feeling that the ratio is indeed somwhere around
330:1
 for CCNP's to JNCNP's (if such a thing existed).  Now it is true that I
do
 not have any hard numbers to back that up (and nobody has any hard numbers
 that disprove it), but I appeal to the fact that the CCNP is fairly
 well-known, and has already attained  semi-paper-cert status, in the sense

Paper CCXX have been created by employers.  I have a fair bit if experience
under my belt but no cert as of yet (I'm working on my CCNA and CCNP
simultaneusly,  I've taken some Boson's lately and I do better on the CCNP
that the CCNA :( .  If employers wanted experience and personality, the
certs would not be as regarded as they are today.  Anything under a CCIE is
just a piece of paper.  If employers were looking for employees and not
pieces of paper, less certs would be needed.  I want my cert to prove
competnecy, I do not want it to be used as a hiring decision.  I want the
employer to hire ME !.


 that CCNP braindumps are out there and pretty easy to find.  This
therefore
 means there is a great deal of extra competition for the real CCNP's'
(the
 ones who can back up their cert with actual experience).   Whereas it is
 much more difficult to fake your way around the Juniper world, such that
 anybody who has even 1 year of Juniper experience does in fact know a
fairly
 good amount, under the notion that if he was true dummy, he would never be
 allowed the chance to touch any Juniper stuff in the first place.   It is

If we handled certs like drivers licenses, we would have a lot less CCNPs
today.  There should be a practical componenet to the CCNP as well.  And
such tests should be taken at a minimum 6 months after the CCNP written
components.  These certs are not memerizaion drills (at least not for me).
I refuse to cram for a cert (yeah there is a little cramming over little
details before tests).  I want to understand something such that I don;t
need to cram.  I want to have enough hands on experience to make it a breeze
to go and write a test.

 the extra competition, in the Cisco world, of paper-certs and people who
are
 only lab rats and no practical experience, that is what really screws
things
 up for the Cisco people.  Juniper doesn't suffer from this problem (at
 least, not yet).

There are 20 or so JNCIEs in the world.  50-99% are likely to be Juniper
employees.  We really have to get over what the paper says and start taking
a look at the employee more and more.  Employers may love certs because they
are under the impression that it will save them time in the hiring process.
They are trusting that the cert is able to assertain the skills of their
employee.  Certs become useless not because of paper certs but because of
employers that fail to take the effor to see the person behing them.

 * Competition.Anybody who reads my arguments carefully will see that
my
 entire thesis rests on the notion of competition - the fact that there is
 substantially more competition for every Cisco job opening than there is
for
 a Juniper job.  For example, I appeal to the cashier vs. lawyer argument.

I would disagree.  There are a lot less qualified people to maintain Juniper
equipment.  If there are only 3000 people in the world that have touched the
equipment (I think that number may even be quite overstated), and there are
100 jobs out there for them, there is a lot less competition for Juniper
jobs.  Untill Juniper gets more penetration in the market , its certs are
not as worthwhile as are Cisco's.  As I stated above, many of those JNCIEs
will be Juniper employees or employees of their largest
partners/contractors.  These are not individuals on the open market.

 Clearly there is more demand for cashiers than lawyers, because how many
 times do you buy something vs. how many times do you sue somebody?  But
does

Um..  In the USA :)  Lawsuits are just about as common as purchases :)  Here
in Canada, there is a very different stance on lawsuits (but thats another
story).

 it then follow that cashiers are paid better than lawyers?  Of course 

Re: Re: Subject: Re: quick response (help) please [7:24238]

[Wojtek Zlobicki]

The date is Sept 12 , 2001 ,  the first few lines of the page :)

 if the Bates Report is any indication, the trend is actually towards more
 fragmentation of the former class A space. ARIN has been allocating out of
 64, 65, 66, blocks, for example. Those in turn have been doled out to
 various ISP's and other organizations as something longer than /8 -
usually
 /16 or even longer, from what I can tell on quick notice. I believe RIPE
 recently opened up the 80 block. I seem to recall APNIC recently
announcing
 opening of the 210/8 or 218/8 block. Saw it on NANOG a few weeks back, I
 think.

 In other words, for public IP space, I don't think anyone other than the
 registries themselves have title to more than one /8 address block. Which
 would therefore render the argument of supernetting /8's as moot.

 I suppose someone could do something like that in the 10 space, but one
has
 to wonder why?

 BTW, looking over the allocation table at:
 http://www.iana.org/assignments/ipv4-address-space

 interesting. anyone know how up to date this is?

 Chuck

 -Original Message-
 From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of
 Paul Werner
 Sent: Saturday, October 27, 2001 5:31 PM
 To: [EMAIL PROTECTED]
 Subject: Re: Re: Subject: Re: quick response (help) please [7:24238]


 Agreed.  While it is possible to supernet class A
 addresses, it is generally impractical for the
 most part, unless the ISP/AS that is summarizing
 two Class A addresses owns both address spaces
 (and they are contiguous).  I might suspect that
 somebody such as UUNet or AOL or Sprint might do
 it, but checking the ARIN registry and IANA, I
 cannot readily find any of them with contiguous
 netblocks in the Class A address space for ISP
 use.  There are a few, but I would expect those
 that exist to get returned back to IANA for
 reassignment (watch wrap):

 http://www.iana.org/assignments/ipv4-address-space

 Class B and Class C address space is an entirely
 different matter w.r.t supernetting.  You will
 note that just about all of the Class C address
 space is set up and optimized for supernetting
 based upon registry (read geographic)
 allocation.  That makes sense.

 HTH,

 Paul Werner


  On Sat, 27 Oct 2001, Thomas Larus
 ([EMAIL PROTECTED]) wrote:

  Great point.  It's not a supernet of anything.
 Not with the first octet
  being 24.
 
  Thomas Larus
 
 
  - Original Message -
  From: Paul Werner
  To: ; [EMAIL PROTECTED]

  Sent: Saturday, October 27, 2001 4:02 PM
  Subject: Re: Subject: Re: quick response (help)
 please [7:24238]
 
 
   Just as a clarification to what you wrote and
 the terminology
   that you used, how exactly are you defining
 a Supernet,
   particularly on this network?
  
   v/r,
  
   Paul Werner
  
I could be wrong here, but I would imagine
 the reason this
   works is that
you
have a supernet there, with the mask of
 255.255.248.0, so the
   hosts
address
is not all-ones, so is not treated as a
 broadcast address.
   The host
address
includes 3 binary digits from the third
 octet (125), so it
   works out to
be
101 .  I guess that zero saves it
 from being a
   broadacst
address.
   
Is this right, or did the Cable ISP just
 screw up?
   
Thomas Larus
John Green  wrote in message
[EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
 the IP address alloted by the dhcp server
 to my home
 computer (via cable ie cable modem
 connection) is

 IP address   24.15.125.255
 subnet mask  255.255.248.0
 def gw   24.15.125.1

 ok look ar the last quad  it is
 255 !!!
 i can't believe this.

 do you how this is possible ? 0 and 255
 are rserved
 for network and broadcast addresses.

 please email me asap...

 
 Get your own 800 number
 Voicemail, fax, email, and a lot more
 http://www.ureach.com/reg/tag




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7i=24384t=24238
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: Juniper's group [7:24314]

[Wojtek Zlobicki]

On this server :)

groupstudy.juniper :)

Juan Blanco  wrote in message
[EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
 Team
 Where I could find any group-stuyd like this group for JUNIPER'S
 Networks.

 Thanks...

 JB




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7i=24315t=24314
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: IP Sec on CCIE RS LAB?? [7:24122]

[Wojtek Zlobicki]

Referring to even the version of IOS is a strong violation of the NDA.

Here is the answer from the CCIE site

The Communications and Services lab exam simulates a service provider core
network connecting to customer networks. IOS features up to and including
version 12.1 will be tested on the exam. The service provider core routers
use a service provider IOS image for support for MPLS, MPLS VPNS, traffic
engineering, etc.


G30RG3  wrote in message
[EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
 That quote would help if we knew the IOS feature set they used in the lab.
 Do they use the ipsec ios feature set on the lab routers.  Without
breaking
 the NDA do you recall what IOS set they used.  If they dont use the ipsec
 ios then it really cant be configured on a router so it would not be on
the
 lab test.

 Just my 2 cents

 G30RG3
 Louie Belt  wrote in message
 [EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
  Here is a quote directly from Cisco website about the CCIE RS Lab:
 
  The Routing and Switching Lab exam tests any feature that can be
 configured
  on the equipment in the Equipment List
 
  After reading that quote you should have your answer.
 
  Louie A Belt
  CCIE #7054
  [EMAIL PROTECTED]
 
 
 
 
  -Original Message-
  From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]
  Sent: Thursday, October 25, 2001 11:43 AM
  To: [EMAIL PROTECTED]
  Subject: IP Sec on CCIE RS LAB?? [7:24122]
 
 
  I have heard that they have some IP Security on the CCIE Routing and
  Switching Lab.  Does anyone know if this is true or not?  It dosen't
show
 it
  listed on the Cisco web site, but I'd like to know for sure.
 
  Thanks.
  _
  Do You Yahoo!?
  Get your free @yahoo.com address at http://mail.yahoo.com




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7i=24155t=24122
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: Passed CIT today!-sniffer skills [7:24131]

[Wojtek Zlobicki]

 I really do not agree with this at all. Learning to use the sniffer.. any
 sniffer, is at the basic level.. easy. Learning how to filter the rush of
 data and get something meaningful out of it all is half skill and half
black
 magic ;) It takes a certain level of experience AND skill to put together
a
 decode filter by using signatures and boolean functions that is not taught
 in very many places. And when you are dealing with viruses, napsterlike
 clones, badly behaved apps and so on, it's not just knowning the TCP
stack..
 it's knowing how that packet is contructed, why it is contructed that way,
 why is it doing what it does and how is it doing what it does.

But how does this have to do with sniffer.  The sniffer is my eye on the
network.  Understanding how a protocol works is the most important.
Learning fancy filtering can help but knowing the protocol is most
important.

 I also personally know several engineers while good on routers and
spouting
 the OSI layers, TCP layers, etc.. are pretty useless on a sniffer for
 extended troubleshooting.

I really have to disagree.  One of the funniest(saddest) claims I have ever
heard is someone claiming, on a resume knowledge of the OSI stack where
what they should have said I know the names of the layers.  Protocol
understanding comes first, being able to do something with it is just a
matter or training.  I'd rather have a protocol expert and teach them how to
use a sniffer than vice versa.




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7i=24178t=24131
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: AAA for web pages [7:24167]

[Wojtek Zlobicki]

Can you elaborate ?  How and where is this webpage to integrate with a
device that does AAA ?

 What is a good way to setup AAA for a web page? I have a client who wants
 me  to do it for an upcoming gig and I'm clueless...




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7i=24179t=24167
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: over 1700 passing ccie written every month [7:23680]

[Wojtek Zlobicki]

Juniper Cert


 Uh, what exactly is the JCIE?








 Wojtek Zlobicki  wrote in message
 [EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
  Soon we will see
 
  John Doe
  Studying for CCNA,CCNP,CCIE,JCIE,MSCE(ALL),NET+,CNE
 
   Of course CCIE Written isn't a certification, no matter how many
 people
   put it after their name.
  
  
   Hello Hello  wrote in message
   [EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
ccie r catching up with ...mcse now
   
  
 

http://searchnetworking.discussions.techtarget.com/WebX?[EMAIL PROTECTED]
   xa4O3aKi^1@.ee8464a/114!viewtype=threadDateskip=expand=




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7i=23777t=23680
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: over 1700 passing ccie written every month [7:23680]

[Wojtek Zlobicki]

I did :(  And was corrected :)


nrf  wrote in message
[EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
 Uh, there is no such thing as the JCIE.  Don't you mean the JNCIE?






 Wojtek Zlobicki  wrote in message
 [EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
  Juniper Cert
 
 
   Uh, what exactly is the JCIE?
  
  
  
  
  
  
  
  
   Wojtek Zlobicki  wrote in message
   [EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
Soon we will see
   
John Doe
Studying for CCNA,CCNP,CCIE,JCIE,MSCE(ALL),NET+,CNE
   
 Of course CCIE Written isn't a certification, no matter how many
   people
 put it after their name.


 Hello Hello  wrote in message
 [EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
  ccie r catching up with ...mcse now
 

   
  
 

http://searchnetworking.discussions.techtarget.com/WebX?[EMAIL PROTECTED]
 xa4O3aKi^1@.ee8464a/114!viewtype=threadDateskip=expand=




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7i=23820t=23680
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: over 1700 passing ccie written every month [7:23680]

[Wojtek Zlobicki]

I wholeheartedly agree.  I'm just starting out in the industry and having
seen some CCIE practice questions, I wonder why this is such an
accomplishment for some.  The written is not that much harder than the CCNP
tests (someone with a few weeks and good books on their hands can pass the
written).  Lets remember that there are less than 7000 CCIEs worldwide.
1700 people may pass the written , but its unlikely that more than 2-3 %
take or pass the written within one year.

Thomas Larus  wrote in message
[EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
 I wouldn't worry too much about the raw numbers.  A lot of these supposed
 1700 a month are VERY good at memorization, and have not touched routers
and
 switches for more than 10 or 12 hours altogether.  I have trouble
believing
 the number is quite that high, because the lab dates do not seem to be
 getting booked up anywhere near that fast.  People haven't a prayer of
 passing the CCIE Lab until they get many hundreds or perhaps a thousand or
 two thousand hours of work configuring routers and switches.

 It is a long road, and I am still a long way from getting to the CCIE Lab
 milestone myself, but the journey itself is very satisfying.

 Thomas Larus

 Hello Hello  wrote in message
 [EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
  ccie r catching up with ...mcse now
 

http://searchnetworking.discussions.techtarget.com/WebX?[EMAIL PROTECTED]
 xa4O3aKi^1@.ee8464a/114!viewtype=threadDateskip=expand=




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7i=23685t=23680
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: test [7:23675]

[Wojtek Zlobicki]

Are you posting by mail ?  There was a problem with some mail a few days
back due to a system upgrade I believe.


Tim Booth  wrote in message
[EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
  My most recent post (an anwer to ITGuy's acl query) didn't appear. this
is
 a test.

 I've had problems with missing posts as well

 Tim Booth




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7i=23690t=23675
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: over 1700 passing ccie written every month [7:23680]

[Wojtek Zlobicki]

Soon we will see

John Doe
Studying for CCNA,CCNP,CCIE,JCIE,MSCE(ALL),NET+,CNE

 Of course CCIE Written isn't a certification, no matter how many people
 put it after their name.


 Hello Hello  wrote in message
 [EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
  ccie r catching up with ...mcse now
 

http://searchnetworking.discussions.techtarget.com/WebX?[EMAIL PROTECTED]
 xa4O3aKi^1@.ee8464a/114!viewtype=threadDateskip=expand=




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7i=23745t=23680
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: Load Balancing Via BGP [7:23478]

[Wojtek Zlobicki]

 it means a down-link , it receives data but can
 transmit data

 thanks for your reply

Is this to be can or can't ?




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7i=23635t=23478
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: ADSL/BVI problems solved! [7:23631]

[Wojtek Zlobicki]

 After much experimentation and much frustration, I finally solved the
 problem with my BVI interface.  It turns out that removing the default
 route pointing at the BVI1 interface and replacing it with a default route
 pointing at the next-hop IP address fixed the problem.

How does your router know where to route traffic ?  The default route was
pointing
to x.x.x.26 (when the traffic got there, it knew not where to go).  At the
next hop, whatever device was there, used its routing table to forward
traffic further.


 I'm not totally clear on why this made a difference, but it did.  As soon
 as that change was made, I could reach the IP assigned to the BVI
interface
 from hosts out in the world, and general connectivity was enabled.  Wild.

Routing, its a beautiful thing :)

 If someone can explain to me why a next-hop static route vs an interface
 static route made a difference, I'd appreciate it.

.26 did not have a routing table (it was you).  Had .26 been another router
on the network, it would have worked fine.

BTW (what was the next hop , .25 ?)




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7i=23634t=23631
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: Load Balancing Via BGP [7:23478]

[Wojtek Zlobicki]

I was under the impression that BGP did not work on unidirectional links.
Can someone correct me if I'm wrong ?

 hi ,

 I am currently running on 2 fibre links to two
 different providers . The utilisation of these two
 links are getting very high and they are getting
 congested . I am thinking of purchasing a satellite
 Receive-only link from another provider .

 My question is , how am I going to do load-balancing
 using BGP on this Receive-only link ?




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7i=23636t=23478
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: Network and Broadcast address [7:23632]

[Wojtek Zlobicki]

 And if you are allowing IP subnet-zero, then you have subnets=(2^18)-1 or
 262143 subnets.

Does ip subnet zero also not allow an all ones subnet , making the total
262144 (can't remember in which IOS this started becoming possible)




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7i=23647t=23632
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Token Ring Study Resources [7:23444]

[Wojtek Zlobicki]

I've seen a Token Ring white paper / source that a lot of people have listed
as a source in their study material for their CCNP/CCIE .  Can someone
enlighten me as to where I can find this paper?

Wojtek




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7i=23444t=23444
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: Cable Modem, DHCP NAT [7:19106]

[Wojtek Zlobicki]

Tony,

Is it still possible to do port forwarding with this config ?


Tony Medeiros  wrote in message
[EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
 Here you go.  It's called easy IP.  It's just NAT over a negotiated
 interface.
 http://www.cisco.com/warp/customer/793/access_dial/easyip.html

 Tony M
 #6172

 - Original Message -
 From: Bob Lepine
 To:
 Sent: Saturday, September 08, 2001 5:44 AM
 Subject: Cable Modem, DHCP  NAT [7:19106]


  Hi, I have a 2600 router and the latest software so I can get a DHCP
 number
  from my service provider. I'm trying to configure the router so that I
can
  put my static network on the inside. It accepts the DHCP number but I
 can't
  get it to do the translation to the inside seeing that the outside
number
 is
  not a static number. Anyone have experience with this?
  Any help would be appreciated.
 
 
  --
  Bob Lepine
  MCSE,MCDBA,CNA,CCNA,MCT




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7i=19128t=19106
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: easyip 2600 [7:19127]

[Wojtek Zlobicki]

You may want to take a look at your access list

access-list 100 permit ip 192.0.0.0 0.0.0.255 any

change to

access-list 100 permit ip 192.168.0.0  0.0.0.255 any

Bob Lepine  wrote in message
[EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
 Hi, I've just been informed that easyip should work on my 2600 to get me
to
 resolve the inside to outside network with a dhcp number.(I'm using a
cable
 modem and am assigned a dynamic number) I'm trying to go from my inside
 network to the outside. The following is my configuration. I'm still new
at
 this so something is obviously wrong.
 Building configuration...

 Current configuration : 784 bytes
 !
 version 12.1
 no service single-slot-reload-enable
 service timestamps debug uptime
 service timestamps log uptime
 no service password-encryption
 !
 hostname BobRouter
 !
 logging rate-limit console 10 except errors
 !
 ip subnet-zero
 !
 !
 no ip finger
 !
 !
 !
 !
 interface Ethernet0/0
  ip address dhcp
  ip nat outside
  half-duplex
 !
 interface Serial0/0
  no ip address
  shutdown
 !
 interface BRI0/0
  no ip address
  shutdown
 !
 interface Ethernet0/1
  ip address 192.168.0.6 255.255.255.0
  ip nat inside
  half-duplex
 !
 ip nat inside source list 100 interface Ethernet0/0 overload
 ip classless
 ip route 0.0.0.0 0.0.0.0 Ethernet0/0 permanent
 no ip http server
 !
 access-list 100 permit ip 192.0.0.0 0.0.0.255 any
 !
 line con 0
  transport input none
 line aux 0
 line vty 0 4
 !
 no scheduler allocate
 end
 -
 Any help would be appreciated

 --
 Bob Lepine
 MCSE,MCDBA,CNA,CCNA,MCT




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7i=19129t=19127
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: easyip 2600 [7:19127]

[Wojtek Zlobicki]

Bob,

You really have to watch those configs :P

The IP for Interface Eth 0/1 is 192.168.0.6 (a conflict with your laptop). I
assume that you want it to be 192.168.0.1 (or whatever you want the gateway
to be, make sure that you also set this gateway on your laptop_


Bob Lepine  wrote in message
[EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
 Thanks for your help. You're right. I didn't watch that access list. I
have
 a new configuration. I seem to be able to get out my router and ping the
 dhcp server as well as the name servers.  But I have a connection to my
e0/1
 from my laptop which is 192.168.0.6. I can ping from my laptop to e0/1,
but
 I can't ping from my laptop to e0/0. I'm not getting through the router.
Any
 more suggestions?

 Here's my updated config
 03:05:07: %SYS-5-CONFIG_I: Configured from console by consolen
 Building configuration...

 Current configuration : 810 bytes
 !
 version 12.1
 no service single-slot-reload-enable
 service timestamps debug uptime
 service timestamps log uptime
 no service password-encryption
 !
 hostname BobRouter
 !
 logging rate-limit console 10 except errors
 !
 ip subnet-zero
 !
 !
 no ip finger
 !
 !
 !
 !
 interface Ethernet0/0
  ip address dhcp
  ip nat outside
  half-duplex
 !
 interface Serial0/0
  no ip address
  shutdown
 !
 interface BRI0/0
  no ip address
  shutdown
 !
 interface Ethernet0/1
  ip address 192.168.0.6 255.255.255.0
  ip nat inside
  half-duplex
 !
 router rip
  network 24.0.0.0
  network 192.168.0.0
 !
 ip nat inside source list 100 interface Ethernet0/0 overload
 ip classless
 ip route 0.0.0.0 0.0.0.0 Ethernet0/0
 no ip http server
 !
 access-list 100 permit ip any any
 !
 line con 0
  transport input none
 line aux 0
 line vty 0 4
 !
 no scheduler allocate
 end

 BobRouter#

 --
 Wojtek Zlobicki  wrote in message
 [EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
  You may want to take a look at your access list
 
  access-list 100 permit ip 192.0.0.0 0.0.0.255 any
 
  change to
 
  access-list 100 permit ip 192.168.0.0  0.0.0.255 any
 
  Bob Lepine  wrote in message
  [EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
   Hi, I've just been informed that easyip should work on my 2600 to get
me
  to
   resolve the inside to outside network with a dhcp number.(I'm using a
  cable
   modem and am assigned a dynamic number) I'm trying to go from my
inside
   network to the outside. The following is my configuration. I'm still
new
  at
   this so something is obviously wrong.
   Building configuration...
  
   Current configuration : 784 bytes
   !
   version 12.1
   no service single-slot-reload-enable
   service timestamps debug uptime
   service timestamps log uptime
   no service password-encryption
   !
   hostname BobRouter
   !
   logging rate-limit console 10 except errors
   !
   ip subnet-zero
   !
   !
   no ip finger
   !
   !
   !
   !
   interface Ethernet0/0
ip address dhcp
ip nat outside
half-duplex
   !
   interface Serial0/0
no ip address
shutdown
   !
   interface BRI0/0
no ip address
shutdown
   !
   interface Ethernet0/1
ip address 192.168.0.6 255.255.255.0
ip nat inside
half-duplex
   !
   ip nat inside source list 100 interface Ethernet0/0 overload
   ip classless
   ip route 0.0.0.0 0.0.0.0 Ethernet0/0 permanent
   no ip http server
   !
   access-list 100 permit ip 192.0.0.0 0.0.0.255 any
   !
   line con 0
transport input none
   line aux 0
   line vty 0 4
   !
   no scheduler allocate
   end
   -
   Any help would be appreciated
  
   --
   Bob Lepine
   MCSE,MCDBA,CNA,CCNA,MCT




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7i=19142t=19127
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: easyip 2600 [7:19127]

[Wojtek Zlobicki]

Furthermore ... I really would suggest against running rip on the external
interface, you may bugger things up for other users running routers.
Bob Lepine  wrote in message
[EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
 Thanks for your help. You're right. I didn't watch that access list. I
have
 a new configuration. I seem to be able to get out my router and ping the
 dhcp server as well as the name servers.  But I have a connection to my
e0/1
 from my laptop which is 192.168.0.6. I can ping from my laptop to e0/1,
but
 I can't ping from my laptop to e0/0. I'm not getting through the router.
Any
 more suggestions?

 Here's my updated config
 03:05:07: %SYS-5-CONFIG_I: Configured from console by consolen
 Building configuration...

 Current configuration : 810 bytes
 !
 version 12.1
 no service single-slot-reload-enable
 service timestamps debug uptime
 service timestamps log uptime
 no service password-encryption
 !
 hostname BobRouter
 !
 logging rate-limit console 10 except errors
 !
 ip subnet-zero
 !
 !
 no ip finger
 !
 !
 !
 !
 interface Ethernet0/0
  ip address dhcp
  ip nat outside
  half-duplex
 !
 interface Serial0/0
  no ip address
  shutdown
 !
 interface BRI0/0
  no ip address
  shutdown
 !
 interface Ethernet0/1
  ip address 192.168.0.6 255.255.255.0
  ip nat inside
  half-duplex
 !
 router rip
  network 24.0.0.0
  network 192.168.0.0
 !
 ip nat inside source list 100 interface Ethernet0/0 overload
 ip classless
 ip route 0.0.0.0 0.0.0.0 Ethernet0/0
 no ip http server
 !
 access-list 100 permit ip any any
 !
 line con 0
  transport input none
 line aux 0
 line vty 0 4
 !
 no scheduler allocate
 end

 BobRouter#

 --
 Wojtek Zlobicki  wrote in message
 [EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
  You may want to take a look at your access list
 
  access-list 100 permit ip 192.0.0.0 0.0.0.255 any
 
  change to
 
  access-list 100 permit ip 192.168.0.0  0.0.0.255 any
 
  Bob Lepine  wrote in message
  [EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
   Hi, I've just been informed that easyip should work on my 2600 to get
me
  to
   resolve the inside to outside network with a dhcp number.(I'm using a
  cable
   modem and am assigned a dynamic number) I'm trying to go from my
inside
   network to the outside. The following is my configuration. I'm still
new
  at
   this so something is obviously wrong.
   Building configuration...
  
   Current configuration : 784 bytes
   !
   version 12.1
   no service single-slot-reload-enable
   service timestamps debug uptime
   service timestamps log uptime
   no service password-encryption
   !
   hostname BobRouter
   !
   logging rate-limit console 10 except errors
   !
   ip subnet-zero
   !
   !
   no ip finger
   !
   !
   !
   !
   interface Ethernet0/0
ip address dhcp
ip nat outside
half-duplex
   !
   interface Serial0/0
no ip address
shutdown
   !
   interface BRI0/0
no ip address
shutdown
   !
   interface Ethernet0/1
ip address 192.168.0.6 255.255.255.0
ip nat inside
half-duplex
   !
   ip nat inside source list 100 interface Ethernet0/0 overload
   ip classless
   ip route 0.0.0.0 0.0.0.0 Ethernet0/0 permanent
   no ip http server
   !
   access-list 100 permit ip 192.0.0.0 0.0.0.255 any
   !
   line con 0
transport input none
   line aux 0
   line vty 0 4
   !
   no scheduler allocate
   end
   -
   Any help would be appreciated
  
   --
   Bob Lepine
   MCSE,MCDBA,CNA,CCNA,MCT




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7i=19143t=19127
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: PPPoE sessions supported for 3660 [7:17513]

[Wojtek Zlobicki]

I assume that you are asking how many PPPoE sessions can be terminated on
this device ?

Daigorho  wrote in message
[EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
 HI all,

 I would like to know how many PPPoE sessions can be supported by 3660 with
 IOS 12.2(2)T

 Thanks in advance.
 [EMAIL PROTECTED]




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7i=17515t=17513
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Comments on new 806 Broadband Router [7:17463]

[Wojtek Zlobicki]

Anyone have any good/bad experiences with the new 806 broadband router.
This device is fairly inexpensive (approx $500) and looks like a great idea
for the home.It is not modular, but appears to suit the needs of a small
office or a home user.  I'd much rather pick up one of these new than an old
1605 (then again
... )?




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7i=17463t=17463
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Which Cisco router for SOHO/HOME Use ? [7:16583]

[Wojtek Zlobicki]

What router would one want to purchase for mostly home use (I will want to
put together a CCNP/CCIE Lab in the future but for now, I would just like a
Cisco router for my home network   My choices for now are

1605R
1720/1750
2524
26XX ?

Is there any reason why the 1605 would not be enough ? I see a number of
2524's on EBay , are the a nice router for home ?  I would prefer to spend
as little as possible of course but am willing to spend a little more for a
better router.




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7i=16583t=16583
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: HELP!! The Cisco Code Windows XP [7:16604]

[Wojtek Zlobicki]

What does this have to do with Widows XP ?  Pardon my ignorance but I don't
see anything that would affect XP in particular.


td  wrote in message
[EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
 Check it out.
 http://www.cisco.com/warp/public/707/cat5k-8021x-vuln-pub.shtml
 Hope this help
 TD

 Ray Smith  wrote in message
 [EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
  Guys,
 
  After my boss delegated me to research all I can about what is need to
  upgrade if necessary our Cisco routers and switches to work with
 Windows-XP,
  I was only able to assert from information on the web that there is a
bug
 in
  the switch software that is incompatible with XP.
 
  Does anyone here know of any valuable information that can help me with
  compiling an educated assessment of this research?  Is anyone out there
  knowledgeable of this issue either from personal experience or from
  literature?  I would really appreciate some feedback.
 
  The only problems that I have actually heard of thus far is that which
  occurred during the beta test that brought down one of Xerox's network.
I
  understand that there is a patch that is available as a fix, in addition
 to
  the option of upgrading the Switch code.  My question is: -
 
  a). Does the incompatibility only exist with the Switch software or with
 the
  router IOS as
   well?
 
  b). Is the patch the best way of dealing with the problem?
 
  I appreciate any help that I can get.  Thanks
 
 
  _
  Get your FREE download of MSN Explorer at
http://explorer.msn.com/intl.asp




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7i=16611t=16604
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: HELP!! The Cisco Code Windows XP [7:16604]

[Wojtek Zlobicki]

Oops, this should have been a reply to TD's message.


Wojtek Zlobicki  wrote in message
[EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
 What does this have to do with Widows XP ?  Pardon my ignorance but I
don't
 see anything that would affect XP in particular.


 td  wrote in message
 [EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
  Check it out.
  http://www.cisco.com/warp/public/707/cat5k-8021x-vuln-pub.shtml
  Hope this help
  TD
 
  Ray Smith  wrote in message
  [EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
   Guys,
  
   After my boss delegated me to research all I can about what is need to
   upgrade if necessary our Cisco routers and switches to work with
  Windows-XP,
   I was only able to assert from information on the web that there is a
 bug
  in
   the switch software that is incompatible with XP.
  
   Does anyone here know of any valuable information that can help me
with
   compiling an educated assessment of this research?  Is anyone out
there
   knowledgeable of this issue either from personal experience or from
   literature?  I would really appreciate some feedback.
  
   The only problems that I have actually heard of thus far is that which
   occurred during the beta test that brought down one of Xerox's
network.
 I
   understand that there is a patch that is available as a fix, in
addition
  to
   the option of upgrading the Switch code.  My question is: -
  
   a). Does the incompatibility only exist with the Switch software or
with
  the
   router IOS as
well?
  
   b). Is the patch the best way of dealing with the problem?
  
   I appreciate any help that I can get.  Thanks
  
  
   _
   Get your FREE download of MSN Explorer at
 http://explorer.msn.com/intl.asp




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7i=16612t=16604
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: Used Rack [7:15897]

[Wojtek Zlobicki]

Can you provide a more direct link ?

Justin M. Clark  wrote in message
[EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
 try musiciansfriends.com  they have a 8U rack for $19.

 Ray Smith  wrote in message
 [EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
  Anyone with a used 19 Network Rack in good condition to unload at a
  reasonable price, preferable in the New York/NJ area for the purpose of
  saving on shipping  handling?  Thanks
 
  _
  Get your FREE download of MSN Explorer at
http://explorer.msn.com/intl.asp




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7i=16519t=15897
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: MTU on the Internet [7:14380]

[Wojtek Zlobicki]

It was  with the proliferation of Ethernet/Sonet this 576 byte MTU is
disappearing. Anyone aware of what equipment actually still has this MTU.



JoJo Aricat  wrote in message
[EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
 I thought the minimum MTU size was 576..!

 -Joe
 -Original Message-
 From: Nabil Fares [mailto:[EMAIL PROTECTED]]
 Sent: Tuesday, July 31, 2001 10:19 AM
 To: [EMAIL PROTECTED]
 Subject: MTU on the Internet [7:14380]


 Greetings,

 What's the common/standard mtu on the internet backbone?  At one point all
 ISPs used 572 size.  Any internet resources you guys can point me to?

 Thanks,

 Nabil




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7i=14391t=14380
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: Intermittent connectivity loss [7:14416]

[Wojtek Zlobicki]

 For the past 3 days we have had workstations (not all, but about 50%)on
 every floor lose connectivity to the network, whereby all of our NT and
 NetWare servers are unavailable and web browsing is gone.  This has
happened
 a total of 6 times, and there doesn't appear to be a pattern to the time
or
 network utilization.  Most times the users have to reboot, though
sometimes
 they can reconnect without a reboot.

 Can anyone help steer me in the right direction?  Our WAN guys can't help,
 and I have a feeling that it's going to be up to me to figure this one
out.

 Thanks a lot.

 --Don

You will need to do troubleshooting at two levels here(Network and Datalink.
When these users loose connectivity, what is the furthest that they can
reach (traceroute out to the NET, see how far they got, from the
workstation).  You can also do some datalink layer troubleshooting by having
a console logging one of the 5505's for example.  This could be spanning
tree pruning.  Has any new equipment been added, any new ports turned up in
the past 3 days ?

Can the users ping one another, can they ping the switch.  Can you reach the
switch?




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7i=14419t=14416
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Pricing for Flash and DRAM for 2501` [7:14158]

[Wojtek Zlobicki]

I may be picking up some 2501s soon and want to know where I can get my
hands on inexpensive DRAM and FLASH for these devices.  I know I can get the
DRAM from Crucial at a very good price but the Flash seems hard to find.  I
do not care if this memory is Cisco certified or not.




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7i=14158t=14158
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: access list w/ prime numers [7:14117]

[Wojtek Zlobicki]

 Hola All!

 I want to set up an access list that do the following:
 deny all packets from subnet 192.168.1.0 with last octect a prime numer.

I dont think you realize the complexity of what you are asking for.  This is
a very complex rule (I sure would not my router making such decisions, they
would be very time consuming).  If I am wrong and this is a true rule,  I
shall pay homage to the router gods..




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7i=14192t=14117
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: access list w/ prime numers [7:14117]

[Wojtek Zlobicki]

Good Idea !! Now do this for a /16 and see how long it takes for all these
lists to be processed.


W. Alan Robertson  wrote in message
[EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
 At first I thought this was a joke...  It can however, be done, but
 certainly on in a 1-line access-list...

 You'd basically have:

 deny 192.168.1.2
 deny 192.168.1.3
 deny 192.168.1.5
 deny 192.168.1.7
 deny 192.168.1.11
 ...to whatever the greatest prime is below 254...

 For exact syntax, read a book.  :)

 Alan

 - Original Message -
 From: Wojtek Zlobicki
 To:
 Sent: Monday, July 30, 2001 11:54 AM
 Subject: Re: access list w/ prime numers [7:14117]


   Hola All!
  
   I want to set up an access list that do the following:
   deny all packets from subnet 192.168.1.0 with last octect a prime
 numer.
 
  I dont think you realize the complexity of what you are asking for.
 This is
  a very complex rule (I sure would not my router making such
 decisions, they
  would be very time consuming).  If I am wrong and this is a true
 rule,  I
  shall pay homage to the router gods..
 [EMAIL PROTECTED]




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7i=14285t=14117
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: 4 port NIC for server [7:14290]

[Wojtek Zlobicki]

Doing a search for quad nic will yield some desirable results

http://www.cdw.com/shop/products/default.asp?EDC=277966
http://www.us.buy.com/retail/product.asp?sku=10160870loc=14577



Mr. Richard L. Pickard  wrote in message
[EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
 7/30/2001   6:30pm  Monday

 Has anyone ever heard of a 4 port [RJ-45] NIC card that can be used in a
 server for load balancing  so the server can be in multiple VLAN's  ?
 I thought Intel made such a card but do not see one on their site or
CDW.com.
 I want to buy one for my CCIE home lab if any one knows who makes one 
where
 to get it.


 Richard

 //




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7i=14293t=14290
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: Cisco and DSL + OT DSL question [7:14275]

[Wojtek Zlobicki]

 With DSL being very popular and Cisco having changed their CCNA/CCNP exams
 not too long ago - why isn't there anything about DSl on the exams at all?

A good number of the Cisco DSL gear out there does not use IOS

Cisco 67X Series Routers (CLI OS called CBOS)
NI-1 DSLAMS (GUI Only)


Only recentely announced modems/routers as well as NI-2 DSLAMS offer IOS
capabilities.
There is also very little that is DSL specific.  The now defunct CLEC that I
worked for used
Cisco DSL gear.  Other than the modems/router (67X series CPE) and the
DSLAMS, the rest
of the equipment was just standard Cisco gear with ATM interfaces.


 I know that DSL is still not considered as reliable as dedicated lines,
 frame relay, etc., but for SOHO users, it is perfect when available and
when
 the provider is not going belly up within 4 months.

DSL's statbility is based on the copper in the ground as well as the
carrier.  I had customers
up for months without any service problem whatsover.


 However, I do not understand the technique behind DSL yet, so I am not
sure
 what's going on. The DSL router is connected to my phoneline, and it has
an
 ATM led on the front. Does that mean it actually works on an ATM network?

It appears as if your carrier uses PPPoATM.  To answer your question, yes,
you data is likley
hauled back to a router or termination device (VIA the DSLAM) in ATM cells.


 Also, Since I have the router on a public IP address, why is it not
 configured to give me a private address for my LAN (the cable that goes
from
 the router to the NIC in my PC) instead of another public IP address?

The router may be configured in Bridging Mode (RFC1483).  Instead of the
modem/router
having the IP assigned by the ISP, it is assigned to your NIC.  If you have
a 67X series router,
that device is capable of acting as a modem (instead of a bridge if you use
rfc1483 bridging)

 And last, what about the EnterNet and PPPoE, what exactly is that, and
 couldn't I use something else?


PPPoE is in part an authentication scheme, as well as an encapsulation
scheme.
EnterNet 




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7i=14294t=14275
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: argh! -- darn bookstores [7:10539]

[Wojtek Zlobicki]

Doyle's TCP/IP Volume II is available at my local Chapters.  As is Internet
Routing Architectures by Halabi (worst case, you wait two-three days and get
it delivered).  I think part of the reason that these books may not be
available in the store is that it is expected that such titles be bought
online no excuse if you local chapters doesn't have them.

[EMAIL PROTECTED] (John Nemeth)  wrote in
message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
 A site for which I've recently taken over the networking wants to
 multihome in the next two months, and probably connect to a regional
 exchange point that is supposed to be setup within a year.  This means
 that it's time to bone up on BGP.  So, I wander off to the bookstores.
 First place is Half Price Computer Books (always check there first); no
 luck, second is the local Chapter's (major chain here in Canada with
 very large stores); no luck there, and finally I checked the website of
 Bolen's (a very large independent store); no luck there either.  In
 general, both Chapter's and Bolen's tend to be very good and have lots
 of high end technical books.  But, of course, when I want a real high
 end book and want it RIGHT NOW, nobody has it.  Looks like I'm going to
 have to order on-line, or possibly check the Vancouver (big city across
 the pond {Juan de Fuca strait}) book stores next week.  I just had to
 get that off my chest.




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7i=10554t=10539
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: Yikes....New product alert.... [7:10031]

[Wojtek Zlobicki]

Priscilla,

For those without CCO access, I would recommend signing up for the Cisco
Consultant Program, that gives you access to everything except some software
upgrades and IOS images.

http://www.cisco.com/warp/public/765/partner_programs/consultant/


- Original Message -
From: Priscilla Oppenheimer 
Newsgroups: groupstudy.cisco
Sent: Tuesday, June 26, 2001 9:07 PM
Subject: Re: YikesNew product alert [7:10031]


 Can you guys share the news for those of us without CCO logins? ;-)

 Thanks

 Priscilla

 At 07:13 PM 6/26/01, Brian wrote:
 oh man, lookin at this via the nsp setup, and it supports up to 512megs
of
 ramorama :) druel druel..
 
 http://www.cisco.com/warp/customer/cc/pd/rt/7400rt/prodlit/asrgw_an.htm
 
  Bri
 
 - Original Message -
 From: John Neiberger
 To:
 Sent: Tuesday, June 26, 2001 3:53 PM
 Subject: YikesNew product alert [7:10031]
 
 
   This is just scary  I think I'd like to have a couple.  :-)
  
   http://www.cisco.com/warp/customer/cc/pd/rt/7400rt/
  
   If the CIP came on a port adapter, a couple of these could replace our
   7513!
 

 Priscilla Oppenheimer
 http://www.priscilla.com




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7i=10090t=10031
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: network logon problems [7:5271]

[Wojtek Zlobicki]

Set up a ping once you can authenticate and let it run for a few hours (ping
the DC or another client resource).  If you see that you have packet loss
that occurs on all the machines at the same time, you may begin to suspect
STP buggering up.  Do you have any loops that could be causing STP to prune
certain connections ?


Robert Perez  wrote in message
[EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
 HELP!!
 I have an issue where it appears that multiple users cannot login.  I
 receive the error you will be logged on using a cached account and once
 logged on, all network devices are available.  I have ensured that on the
 catalyst 3548XL, all ports have Port fast enabled and I have also enabled
 STP to try and overcome the problem with no success.  I have also moved
the
 users to switches that have no issues and I still have the same problem.
I
 also did a ipconfig /release renew and replaced the nic card and did a
cold
 boot and warm boot on the machines with no success.  All other user are
fine
 and it is only affecting like 3 people.  I even set them to auto, auto and
 the switch to auto,auto and this did not work either.  I then tried 100
full
 and half and that did not work either.  I also do not have port security
 enabled.  It appears to be a network issue with the catalystr switches,
but
 I am unsure as to the root of the problem.Don't know if this would do
 anything, but I did a NBTSTAT -RR from the command line as well.  Any help
 would be greatly appreciated.Thank you.
 FAQ, list archives, and subscription info:
http://www.groupstudy.com/list/cisco.html
 Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7i=5281t=5271
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: Voice over IP Documents and sample configs [7:5221]

[Wojtek Zlobicki]

This is a good link :
Hamid  wrote in message
[EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
 Hi

 Can anybody tell me where I can find some sample configs for VoIP and a
good
 and complete document for it.

 Thanks

 Hamid
 FAQ, list archives, and subscription info:
http://www.groupstudy.com/list/cisco.html
 Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7i=5282t=5221
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: Voice over IP Documents and sample configs [7:5221]

[Wojtek Zlobicki]

Link included  this time :)


http://www.cisco.com/univercd/cc/td/doc/product/software/ios120/12cgcr/voice
_c/index.htm


Cisco has some very good resources on their site. I recommend searching CCO.


Hamid  wrote in message
[EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
 Hi

 Can anybody tell me where I can find some sample configs for VoIP and a
good
 and complete document for it.

 Thanks

 Hamid
 FAQ, list archives, and subscription info:
http://www.groupstudy.com/list/cisco.html
 Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7i=5283t=5221
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: video conference [7:5217]

[Wojtek Zlobicki]

Kevin,

At what speeds to the three locations access the Internet.


kevin A.  wrote in message
[EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
 We have three location. All location have internet
 access. We would like to have video conference setup
 for all location. What are some good product out
 there. Need to be easy to use and very good tech
 support. How does this solution compare to Isdn
 solution. Where can we buy these products. Thank you.

 __
 Do You Yahoo!?
 Yahoo! Auctions - buy the things you want at great prices
 http://auctions.yahoo.com/
 FAQ, list archives, and subscription info:
http://www.groupstudy.com/list/cisco.html
 Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7i=5285t=5217
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: Windows 2000 Server Architechture/ Data Organization [7:5361]

[Wojtek Zlobicki]

Comments inline

Kevin O'Gilvie  wrote in message
[EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
 Hi Everyone,

 I am in the process of reorginizing this my network, Prior to me
everything
 was just put everywhere and I need to come up with a full proof plan. My
 questions are:

 -For a 60 user enviorment how many servers do I need to run Active
Directory
 on, Should AD be on a dedicated box?

What features of AD do you want to implement ?  Beware that AD can take up a
great
deal of your time if not implemented properly.  If you dont need it, I would
recommend against
deploying it (I have worked with it extensively in a LAB and wish I could
repress what I have learned,
some shrink will make a great deal of money from me some day when the
repressed data starts to come out).


 -How should I organize data, (users / corp data/ Fin Data) What
restrictions
 should I put on these shares?

This is hard to say.  Basic rule is block all and allow on a need basis.  No
reason why the administrative
assitant should have access to all data.


 -DNS, Wins, DHCP, Exchange, SQL, IIS5, Inoculate, Backup Exec, Print
 Services,  What should be on dedicated boxes what shouldnt?

DNS, wins, DHCP = dont use up a lot of processor power
IIS 5/Print Services /SQL = how much Traffic do you expect, if a great deal
of data is expected, two server may be required


If you have a need for two servers (run DNS, WINS, DHCP on all, they take
little power)  IIS5 Print Services and the rest can be load balanced.  AD
can help you to distribute the sever load among users.


 TIA,

 Kevin


 _
 Get your FREE download of MSN Explorer at http://explorer.msn.com
 FAQ, list archives, and subscription info:
http://www.groupstudy.com/list/cisco.html
 Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7i=5361t=5361
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: How to Multiplex 3 T1s [7:4625]

[Wojtek Zlobicki]

What is to be gained by using an inverse mux ?  How much extra overhead is
caused by this rather than running in inversed mode?


Jon Wagner  wrote in message
[EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
 Take a look at this config and see if it work for you:
 http://www.cisco.com/warp/public/131/7.html


 -Original Message-
 From: Al Smith [mailto:[EMAIL PROTECTED]]
 Sent: Tuesday, May 15, 2001 8:57 PM
 To: [EMAIL PROTECTED]
 Subject: How to Multiplex 3 T1s [7:4625]


 Colleagues,

 I am currently trying to multiplex / bind 3 parallel T1 clear channel
 circuits.
 The circuits will be terminating on a 7206 router on an 8 port multi
 channel T1 card.

 My question is how do I bind the 3 T1s together to get the total aggregate
 bandwidth of 3 T1s.
 I have only found info on Inverse multiplexing for ATM which is not what I
 am trying to achieve.
 what I have is strictly 3 Point to Point T1 circuits using PPP.

 Albert Smith
 Lucent Technologies
 System Engineer, CCNP MCSE
 FAQ, list archives, and subscription info:
 http://www.groupstudy.com/list/cisco.html
 Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
 FAQ, list archives, and subscription info:
http://www.groupstudy.com/list/cisco.html
 Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7i=5363t=4625
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: Sorta OT: More than T1, less than T3...

[Wojtek Zlobicki]

Is fiber an option ?  Can you get a 10Mb feed from anyone ?  A 10 Meg
Ethernet feed from anyone ?


- Original Message -
From: "Craig Columbus" [EMAIL PROTECTED]
To: [EMAIL PROTECTED]
Sent: Wednesday, January 17, 2001 7:18 PM
Subject: Sorta OT: More than T1, less than T3...


 Ok..given a situation where you need more than T1 Internet connectivity
 (say 10Mb), but can't spring for a T3, how do you resolve the issue?  Do
 you buy multiple T1's and multiplex them?  If so, I assume that this
 requires cooperation with the ISP to de-mux on their site.  What Cisco
 equipment has proven reliable for this?  Is there a third-party solution
 that will take Cisco HSSI output into a bunch of multi-plexed T1s?  Is
 there a solution that I'm overlooking?

 Thanks,
 Craig

 _
 FAQ, list archives, and subscription info:
http://www.groupstudy.com/list/cisco.html
 Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

_
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: Welcome to a new year

[Wojtek Zlobicki]

Not unless Trojan makes firewalls :)


- Original Message -
From: "Howard C. Berkowitz" [EMAIL PROTECTED]
To: [EMAIL PROTECTED]
Sent: Sunday, December 31, 2000 2:38 PM
Subject: RE: Welcome to a new year


 The other side of this one, of course, is the buying and selling of a
 particular tubular product who purpose is "protection", and the most
famous
 of which was named for a civilization whose destruction was celebrated in
 The Iliad.

 Are you referring to firewalls?

 _
 FAQ, list archives, and subscription info:
http://www.groupstudy.com/list/cisco.html
 Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

_
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: Cisco 827 and Cisco DSL switch compatibility

[Wojtek Zlobicki]

Curtis,

As long as Quest is using Cisco's NI-2 DSLAMS it will work.  You will
need to call them and see if the Central office that your work out of has
NI-2 DSLAMS.  The older version of the 6100 does not support the 827.

Wojtek


- Original Message -
From: "Curtis Call" [EMAIL PROTECTED]
To: [EMAIL PROTECTED]
Sent: Tuesday, November 21, 2000 7:03 PM
Subject: Cisco 827 and Cisco DSL switch compatibility


 I am trying to figure out if Qwest supports Cisco's new 827 ADSL router
(it
 uses IOS as opposed to CBOS so of course I want to use it).  I know that
 Qwest is using some sort of Cisco DSL switch in the central office but I
am
 not sure which model (6100?) and getting the info from their technical
 support seems to be impossible.  I assume that the 827 would work with any
 Cisco DSL switch, but I wanted to verify this before I bought it.
 Any ideas would be appreciated.

 _
 FAQ, list archives, and subscription info:
http://www.groupstudy.com/list/cisco.html
 Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

_
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: Hand over the domain with the phrase cisco to cisco.com?

[Wojtek Zlobicki]

But his site does have Cisco content as well as a great deal of the data is
coppied straing from their site.  This is a problem.  Secondly, I really
would not want to mess with Cisco's legal dept.


- Original Message -
From: "whatshakin" [EMAIL PROTECTED]
To: [EMAIL PROTECTED]
Sent: Tuesday, October 17, 2000 3:08 AM
Subject: Re: Hand over the domain with the phrase "cisco" to cisco.com?


 It is not illegal to have the Cisco name in your domain name unless you
use
 it for Cisco Systems content.  After all, there is a Cisco fish, drink,
city
 and kid to name just a few, and none of those are in violation of the
Cisco
 Systems trademark.

 Tell them you'll hand it over for $10K or a free Catalyst 8500 if they
want
 it that badly!  :-)


 - Original Message -
 From: DotCom CiscoSite [EMAIL PROTECTED]
 To: [EMAIL PROTECTED]
 Sent: Monday, October 16, 2000 11:25 PM
 Subject: Hand over the domain with the phrase "cisco" to cisco.com?


  Dear All Cisco GroupStudy Members,
 
  I would like to thank the Cisco GroupStudy Mailing
  List for the contribution on the Cisco Certification,
  and for the information which is very useful, with
  some have been put to my site: ciscosite.com.
 
  I have just received some messages stating that the
  ciscosite.com should be handed over to Cisco because
  of using the phrase "cisco" and because of the
  attached reasons. Does anyone of you have the problem
  like this, that the domain name should be handed over
  to Cisco? I would like to know this further because
  it's the only domain name I have ever registered right
  now, and I have promoted it even in my namecards.
 
  And concerning this, I have replied to Brobeck that I
  would better appeal this case to the GroupStudy first
  before making any further steps. So all of your
  suggestions are very expected.
 
  Thanks in advance for your comments regarding this.
 
  With Sincerity,
  Wisin
  http://www.ciscosite.com
 
  Attached message:
 
  Dear Wisin,
 
  I will respond to your questions in turn.
 
  First, while we appreciate your stated willingness to
  comply with Cisco's
  requests, we note that the changes we have requested
  have not been made to
  your site to date.  Please ensure that these changes
  are completed by
  October 17, 2000.
 
  Second, the fact that a registrar permits registration
  of a domain name has
  no bearing on whether the domain name is in violation
  of another party's
  trademark rights.  Registrars do not make independent
  determinations of the
  propriety of a domain name registration; they simply
  determine whether a
  name has been registered previously.  The fact that
  you actually registered
  ciscosite.com does not give you the right to use
  Cisco's trademark as part
  of your domain name.
 
  Finally, Cisco does not provide compensation for the
  discontinued use of a
  domain name.  Cisco will provide you with compensation
  for the actual cost
  of transferring the domain name to Cisco, and will
  permit you to use the
  domain name for a limited period of time for the sole
  purpose of informing
  users of the address of your new website.  If you
  intend to use the site
  temporarily to direct people to your new site, please
  commence this use
  immediately and ensure that the site is taken down by
  October 17, 2000.
 
  Thank you for your continued cooperation.
 
  Sincerely,
  BROBECK PHLEGER  HARRISON LLP
  http://www.brobeck.com
 
  __
  Do You Yahoo!?
  Yahoo! Messenger - Talk while you surf!  It's FREE.
  http://im.yahoo.com/
 
  _
  FAQ, list archives, and subscription info:
 http://www.groupstudy.com/list/cisco.html
  Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
 

 _
 FAQ, list archives, and subscription info:
http://www.groupstudy.com/list/cisco.html
 Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

_
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: Costco has the new CCNA 2.0 book for $30!!!

[Wojtek Zlobicki]

Which book ?


- Original Message -
From: [EMAIL PROTECTED]
To: [EMAIL PROTECTED]
Cc: [EMAIL PROTECTED]
Sent: Tuesday, October 17, 2000 2:55 AM
Subject: Re: Costco has the new CCNA 2.0 book for $30!!!


 Costco has the new CCNA 2.0 book for $30!!!  I just saw it yesterday...
too
 bad I paid $50 already:-(

 _
 FAQ, list archives, and subscription info:
http://www.groupstudy.com/list/cisco.html
 Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

_
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: High Availability. (Maybe OT)

[Wojtek Zlobicki]

He seems to be talking about some kind of load balancing device like a Cisco
Local Director or something from Foundry.

What puzzles me is the next part

 Even "session" level stuff like cookies and whatnot can be handled by
 these switches, to make sure your session stays on the same server.

I know this works partially with the Local Director.  However, things like
SSL do not work properly with such a scenario.


- Original Message -
From: "Priscilla Oppenheimer" [EMAIL PROTECTED]
To: "Brian" [EMAIL PROTECTED]; [EMAIL PROTECTED]
Sent: Friday, October 13, 2000 1:54 PM
Subject: Re: High Availability. (Maybe OT)


 Who makes Layer 4 switches such as what you're talking about, Brian? Sorry
 if it's a dumb question.

 I'm helping a customer who has a setup similar to what you describe, I
 think. The customer is reluctant (unable?) to give me all the details,
even
 though I'm helping him troubleshoot some problems that are probably
 related. (Layer 8, politics, will get you every time!)

 Thank-you for your help.

 Priscilla


 At 08:30 AM 10/13/00, Brian wrote:
 Using Server Load Balancing on switches.  Then between the switches you
 run a hot standby protocol.  For example:
 
 The ip the clients use for the server would really be a "virtual" ip
 address, which is actually bound to the layer4 switch.  The layer 4
switch
 receives requests for the application (lets say port 80) and then load
 balances accross a server farm using a hash table.  If servers
die..it
 can handle this, because it does health checks to the servers.  If the
 switch dies, then hot standby kicks in and another switch is activated.
 
 Even "session" level stuff like cookies and whatnot can be handled by
 these switches, to make sure your session stays on the same server.
 
 Other applications like databases etc, have similar scenerios.  Normally
 in the above scenerio, you backend all the servers off a single file
 server so that the data is the same on all servers (NFS).  This file
 server would be a high reliable server such as a NetApp
 
  
 
  
   Problem, maintaing the same layer 3 address accross both switches in
   the advent that one link should fail, the server maintains
   reachability.
 
 
 
  
   Giving that in this case I would be talking about a solaris system, I
   have thought about using simple scripts to watch for the interface to
   go down and reconfigure.  I am curious if anyone knows of any
   hardware/software solutions for doing this?  I am guessing that I am
   not the first person to ask for something like this.
 
 Brian
 
 
  
   -- Kevin
  
 
 ---
 Brian Feeny, CCNP, CCDP   [EMAIL PROTECTED]
 Network Administrator
 ShreveNet Inc. (ASN 11881)
 
 _
 FAQ, list archives, and subscription info:
 http://www.groupstudy.com/list/cisco.html
 Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]


 

 Priscilla Oppenheimer
 http://www.priscilla.com

 _
 FAQ, list archives, and subscription info:
http://www.groupstudy.com/list/cisco.html
 Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

_
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: Extranet Network using Cisco 7206 F/W N AT

[Wojtek Zlobicki]

Looks like you have a great deal of work to do.

1st thing, DNS servers are very rarely private. If these are internal
servers, they they can have NAT'd IP or only have certain network segments
to which they will answer queries. If these DNS servers are for public use
(hosting internal/external domains) public access will need to be available.


- Original Message -
From: "Hemant Kumar" [EMAIL PROTECTED]
To: [EMAIL PROTECTED]
Sent: Wednesday, October 11, 2000 12:15 PM
Subject: Extranet Network using Cisco 7206 F/W  N AT


 Hi Everyone,

 I need your expertise to design our extranet network.  Following is the
 scenario:

 1. We have 3 external companies that we want to connect to our internal
 network.
 2. We do not want to give full access to our network.  We want to have
 control on what external customers see on our network.  However we do want
 our DNS to be accessible by the external companies.
 3. For 2 of the company, we are going to provide the routers. The other
one
 is going to provide their router and hence we do not have any control of
it.
 4. We have bought Cisco 7206 router with IOS Firewall feature set to build
 this extranet network
 5. For 2 of the company, the IP address overlaps with our ip address
range.
 6. Companies will be connected using T1, Frame relay and ISDN.

 Possible Solution

 1. Cisco 7206 can provide firewall features so that we can selectively
allow
 services to external companies.
 2. Cisco 7206 NAT feature can be used to translate address (for
overlapping
 addressing)

 Question:
 1. I have very little experience with NAT  IOS firewall.  How will I be
 able to do multiple nats on cisco 7206.  I know I can do it if I had 2
 connections (inside  outside).  But we have 4 connections (one inside ;
and
 3 outside : S0; S1  BRI1).  How will nat handle this?
 2. Have any one of you worked with NAT doing similar kind of things?  I
 would appreciate if I can get some configures and explanation on its
 operation.
 3. Do you guys have a better solution than this?

  I will appreciate your comments and inputs on this subject.

 Thanking you all in advance
 Hemant



 _
 FAQ, list archives, and subscription info:
http://www.groupstudy.com/list/cisco.html
 Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

_
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Catalyst 2916m-xl

[Wojtek Zlobicki]

Anyone familiar with this switch ?  How high can I upgrade the IOS ?  What
would be a good price for it ?

**NOTE: New CCNA/CCDA List has been formed. For more information go to
http://www.groupstudy.com/list/Associates.html
_
UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html
FAQ, list archives, and subscription info: http://www.groupstudy.com
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: CCIE Questions...

[Wojtek Zlobicki]

The CCIE is a great certification.  These people are simply trying to ensure
that it retains its integrity.  I look forward to taking a test that 70% of
people fail the first time.  If and when I pass, it will mean a lot to me.

Wojtek

- Original Message -
From: "John Kaberna" [EMAIL PROTECTED]
To: "Lori S Carter" [EMAIL PROTECTED]; [EMAIL PROTECTED];
"Bradley J. Wilson" [EMAIL PROTECTED]
Sent: Tuesday, September 19, 2000 3:17 PM
Subject: Re: CCIE Questions...


 You people spend way too much time snitching.  I bet a lot of you got beat
 up and teased frequently in high school.  Let Cisco worry about its NDA.
It
 doesn't need a bunch of dorky Boy Scouts (and Girls Scouts of course)
doing
 its job for them.  Geez people some of you need to get a life.

 John

 PS.  You can report me to [EMAIL PROTECTED] when you want to whine
about
 what I have to say.

 - Original Message -
 From: Lori S Carter [EMAIL PROTECTED]
 To: [EMAIL PROTECTED]; Bradley J. Wilson [EMAIL PROTECTED]
 Sent: Tuesday, September 19, 2000 8:41 AM
 Subject: Re: CCIE Questions...


  Go to the site www.brobeck.com. They represent Cisco and other "big
names"
 in stuff like this. Send an email to Michelle Falkoff. She's one of the
 lawyers who represent Cisco.
  Lori
  --
 
  On Mon, 18 Sep 2000 12:22:14
   Bradley J. Wilson wrote:
  I looked up the original poster's website...in his "Technical
  Certifications" section he's got "CCIE *pursuing*" [emphasis mine].
 Heck,
  if I put down every cert I'm "pursuing," my rezzy would be 10 pages
 long...
  
  Anyway, who wants to be the Thought Police on this one?  I'm assuming
  there's someone from Cisco who's responsible for monitoring
Cisco-related
  newsgroups and mail lists for NDA breaks, but then again maybe not -
what
 a
  job from hell that would be.
  
  Thanks for the study break. ;-)
  
  
  - Original Message -
  From: Louie Belt
  To: 'FRS' ; [EMAIL PROTECTED]
  Sent: Monday, September 18, 2000 12:00 PM
  Subject: RE: CCIE Questions...
  
  
  If these questions are in fact from 350-001 then the original poster
 needs
  to be turned in to Cisco so that they can "re-evaluate" his status.
  
  
  LAB
  
  Who is John Galt?
  
  
  -Original Message-
  From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of
  FRS
  Sent: Monday, September 18, 2000 9:32 AM
  To: [EMAIL PROTECTED]
  Subject: Re: CCIE Questions...
  
  
  These questions are from Exam 350-001. The NDA has been broken.
  
  ""Derek Chung"" [EMAIL PROTECTED] wrote in message
  8q2d0a$8kk$[EMAIL PROTECTED]">news:8q2d0a$8kk$[EMAIL PROTECTED]...
   Question 1:
   Router A and Router B are configured to route IP to each other over a
  serial
   line. Host A is connected to Router A and Host B is connected to
Router
 B.
  A
   packet is sent from Host A to host B. A hit on the serial line causes
 an
   error in the packet. Retransmission is sent by:
  
   Question 2:
   During the middle of a TCP conversion across a routed backbone, the
  network
   receives a voltage spike and several of the packets are damaged.
Where
 are
   the packets retransmitted from?
  
   Question 3:
   Computer1 [Segment
  
 

A]---RouterA--RouterB--[SegmentB]--Comp
 u
   ter2
   A packet is sent to Computer 2 from Computer 1. A collision occurs on
   Segment B. Which device will retransmit the frame and what will the
 source
   MAC address be (when the packet actually reaches Segment B)?
  
   Question 4:
   When computer A sends a frame to computer B across many routers, how
 will
   the source and destination layer 3 addresses change? How will the
 source
  and
   destination layer 2 addresses change?
  
  
  
  
  **NOTE: New CCNA/CCDA List has been formed. For more information go to
  http://www.groupstudy.com/list/Associates.html
  _
  UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html
  FAQ, list archives, and subscription info: http://www.groupstudy.com
  Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
  
 
 
  Get your FREE Email and Voicemail at Lycos Communications at
  http://comm.lycos.com
 
  **NOTE: New CCNA/CCDA List has been formed. For more information go to
  http://www.groupstudy.com/list/Associates.html
  _
  UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html
  FAQ, list archives, and subscription info: http://www.groupstudy.com
  Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

 **NOTE: New CCNA/CCDA List has been formed. For more information go to
 http://www.groupstudy.com/list/Associates.html
 _
 UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html
 FAQ, list archives, and subscription info: http://www.groupstudy.com
 Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

**NOTE: New CCNA/CCDA List has been formed. For more information go to