Re: IP services, from case study ... [7:73435]
b) service hide-telnet-addresses something like that ? There must be at least one other way to hide telnet address..but cant recall rgds, Hannes Kumari - Original Message - From: Devrim Yener KUCUK To: Sent: Sunday, August 03, 2003 1:35 PM Subject: Re: IP services, from case study ... [7:73435] a) look at menu command options. b) could not get the question c) map your local IP to local DLCI d) is this back to back, then put the clock rate command where the DCE cable is connected Regards De - Original Message - From: Shab Hanon To: Sent: Sunday, August 03, 2003 12:04 PM Subject: IP services, from case study ... [7:73435] Hi, This is from a case study Can any one help on these ? a) Setup Rxx such that when a user telnets to it they will receive a menu system that consists of the following options. Ability to display the IP routing table Ability to clear the IP routing table Ability to print off a Cisco TAC troubleshooting screen Exit to command line interface b) When issuing a telnet session from Rxx ensure that the destination IP address is not shown in the display. c) R1, R2 R6 are not allowed subinterfaces on the frame-relay network that commonly connects them. R1, R2, R5 and R6 should be able to ping their own interfaces. how it can be possible to ping it their own interfaces on a serial ??? d) Make sure the frame-relay connection between R1 and R2 has a speed of 128k Cheers, Shab **Please support GroupStudy by purchasing from the GroupStudy Store: http://shop.groupstudy.com FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html **Please support GroupStudy by purchasing from the GroupStudy Store: http://shop.groupstudy.com FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=73441t=73435 -- **Please support GroupStudy by purchasing from the GroupStudy Store: http://shop.groupstudy.com FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Re: CCO Owners request [7:64290]
www.aletoledo.com/modemcap.pdf Joupin wrote in message news:[EMAIL PROTECTED] Hi Ill be appreciated if someone who has a CCO get this page for me regarding Modemcap and Modem inistazization strings http://www.cisco.com/warp/customer/76/4.html Regards joupin www.joupin.com Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=64292t=64290 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: CCO Owners request [7:64290]
ooops sorry ftp://aletoledo.com/modemcap.pdf groupstudy wrote in message news:[EMAIL PROTECTED] www.aletoledo.com/modemcap.pdf Joupin wrote in message news:[EMAIL PROTECTED] Hi Ill be appreciated if someone who has a CCO get this page for me regarding Modemcap and Modem inistazization strings http://www.cisco.com/warp/customer/76/4.html Regards joupin www.joupin.com Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=64293t=64290 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Dropped Packet on 6506 switch [7:63053]
- Original Message - From: MADMAN To: The Long and Winding Road Cc: Sent: Tuesday, 18 February, 2003 6:50 AM Subject: Re: Dropped Packet on 6506 switch [7:63053] The Long and Winding Road wrote: hey, Dave, request for clarification whenever I run my config tools ( either CCO or NetFormX, which validates against Cisco's config server anyway ), the requirement is CAT OS plus IOS. I can go CAT OS only, but I cannot get a validation using IOS only. I Don't use the config tool, sounds like it is probably just as well:) So is that an error in the validation engine? or is something else going on that I don't understand. Send me the URL you use for this tool, I'll take a look at it. in case anyone is still wondering, I've been doing some more work involving configuring 65xx switches using the config tools. I think I get it now. a 65xx switch can run native IOS on a regular old sup with MSFC OR it can run Cat OS ( on a regular old supervisor ) OR it can run hybrid mode, using Cat OS on the sup and an L3 IOS on the MSFC card does that match with what you know, Dave? on a 3550, I can configure all ports as routed ports, or I can configure all ports as switched ports, or any combination. 6500 running native you can do the same. The 4xxx boxes with sup 3 or better can go IOS only. 6500 in native mode looks like the 4000 with a supIII except the 4000 with a supIII, all ports are L2 by default and on a 6500 runing native they are L3, go figure. With the introduction of the 4500 switch the 6500 is the only platform running catOS that is being produced. The 65xx seems to be the problem child, as anyone who has stumbled through either tool mentioned above can attest to. Check out this URL: http://www.cisco.com/en/US/customer/products/hw/switches/ps700/products_tech _note09186a00801350b8.shtml Dave any clarifications you can offer? MADMAN wrote in message news:[EMAIL PROTECTED] The Long and Winding Road wrote: 65xx without the MSFC card run Cat OS mode. Add the MSCF card, and you have hybrid mode. unless somethng has changed recently, you cannot run a 65xx in native IOS mode only - it has to be an L2 box alone, or a hybrid box, running IOS and Cat OS. Actually you can run a 6500 in native only. In native mode all ports are layer 3 ports. In fact in order to run most of the OSM cards you must run native mode, the inverse is true for most voice modules. Dave Native6506#sh ver Cisco Internetwork Operating System Software IOS (tm) c6sup2_rp Software (c6sup2_rp-JS-M), Version 12.1(13)E, EARLY DEPLOYMEN T RELEASE SOFTWARE (fc1) TAC Support: http://www.cisco.com/tac Copyright (c) 1986-2002 by cisco Systems, Inc. Compiled Wed 04-Sep-02 18:45 by eaarmas Image text-base: 0x40008C00, data-base: 0x41A68000 ROM: System Bootstrap, Version 12.1(4r)E, RELEASE SOFTWARE (fc1) BOOTLDR: c6sup2_rp Software (c6sup2_rp-JS-M), Version 12.1(13)E, EARLY DEPLOYMEN T RELEASE SOFTWARE (fc1) Native6506 uptime is 6 weeks, 3 days, 23 hours, 24 minutes Time since Native6506 switched to active is 6 weeks, 3 days, 23 hours, 23 minute s System returned to ROM by power-on (SP by power-on) System image file is slot0:c6sup12-js-mz.121-13.E.bin cisco Catalyst 6000 (R7000) processor with 112640K/18432K bytes of memory. Processor board ID SAD05020HUX R7000 CPU at 300Mhz, Implementation 39, Rev 2.1, 256KB L2, 1024KB L3 Cache Last reset from power-on Bridging software. X.25 software, Version 3.0.0. SuperLAT software (copyright 1990 by Meridian Technology Corp). TN3270 Emulation software. 8 Virtual Ethernet/IEEE 802.3 interface(s) 120 FastEthernet/IEEE 802.3 interface(s) 4 Gigabit Ethernet/IEEE 802.3 interface(s) 381K bytes of non-volatile configuration memory. 16384K bytes of Flash internal SIMM (Sector size 512K). Standby is up Standby has 112640K/18432K bytes of memory. Configuration register is 0x2102 Native6506# Native6506#sh conf Using 8122 out of 391160 bytes ! version 12.1 service timestamps debug uptime service timestamps log uptime no service password-encryption ! hostname Native6506 ! boot system flash slot0:c6sup12-js-mz.121-13.E.bin boot bootldr bootflash:c6msfc2-boot-mz.121-4.E1 enable password cisco ! ip subnet-zero ! ! no ip domain-lookup ! mls flow ip destination mls flow ipx destination ! redundancy mode rpr-plus main-cpu auto-sync running-config auto-sync standard ! ! ! interface GigabitEthernet1/1 no ip address switchport switchport trunk encapsulation dot1q switchport trunk native vlan 64 ! interface GigabitEthernet1/2 no ip address shutdown Priscilla Sam Sneed wrote: I'm not sure what you mean by hybrid mode. I have the sh ver, sh mod, sh ver for MSFC and below. I have nothing plugged into at leat 3 ports which still report dropped packets.
Re: Tonight's Homily - OSPF authenitcation - I didn't know [7:62961]
- Original Message - From: Vicuna, Mark To: The Long and Winding Road ; Sent: Thursday, 13 February, 2003 1:13 AM Subject: RE: Tonight's Homily - OSPF authenitcation - I didn't know [7:60282] Hi Chuck, Just curious to know what ios release you were using with this? I could not replicate the same results. CL: all the routers in question have 12.1.5T10 cheers, Mark. -Original Message- From: The Long and Winding Road [mailto:[EMAIL PROTECTED]] Sent: Friday, January 03, 2003 9:52 PM To: [EMAIL PROTECTED] Subject: Re: Tonight's Homily - OSPF authenitcation - I didn't know [7:60282] Eric Rogers wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... For those who don't have the book in question - Pg 17 of the Parkhurst OSPF book: ...In Cisco IOS Software Release 12.X, the authentication used on an interface can be different from the authentication enabled for an area. When using Cisco IOS Software release 12.X, the authentication method used on different interfaces in the same area does not need to be the same. Authentication can be turned off on selected interfaces using the command ip ospf authentication null (see section 19-1). The key and password do not need to be the same on every interface, but both ends of a common link need to use the same key and password. Authentication is enabled by area (Cisco IOS Software Release 11.X and earlier) so it is possible to employ authentication in other areas... Eric, I've been re-reading this passage, and thinking about it, and I am not so sure that the intent was to completely divorce area authentication ( under the ospf process ) from interface authentication. Consider that you can configure area authentication ( under the ospf process ) on one side, along with the approrpiate interface configuration, and all that the other side needs is interface configuration. And it works! Somehow that does not seem like an intended consequence. Is that your understanding of the intent? The passage quoted above appears to me to be saying that the intent is to allow the interface specific configuration to be different than the general area configuration. Maybe a concession to mixed vendor environments? I just found it fascinating that one now has a number of options, and that one can now introduce authentication without necessarily enforcing it on all interfaces. Anyone know any of the IOS progammer managers? I'm really curious about the thought behind this. CL - Thanks for the heads up the other day about the OSPF Parkhurst book...Pulled it from my bookshelf and wiped off the dust just yesterday and I'm currently on page105 going through it with my highlighter. I like the way he's formatted it by pounding on the same example building on the commands as he goes. After the third or forth example it all just all clicks together with the little nuances he's placed in there. When I first got this book I just thought of it as a command reference nothing more but it's really a good book that I would have never delved into without your comment the other day. I'll be finishing OSPF this weekend and moving into my other currently unread Parkhurst book BGP. Eric R - Original Message - From: The Long and Winding Road To: Sent: Friday, January 03, 2003 7:46 PM Subject: Tonight's Homily - OSPF authenitcation - I didn't know that! [7:60275] As many of you know, I've been reading Parkhurst's OSPF book for a number of reasons. So I'm fooling around in the chapter on interface commands, when something hits me over the head. authentication can be done on an interface by interface basis! one of those things that I just never noticed before. Maybe because all the practice labs always instruct you to use area authentication. Maybe cause I'm just a Homer Simpson kind of guy. So check this out. Topology will look strange, because I'm doing this over a vlan tunnel. router-vlan tunnel-router each router has 4 subinterfaces, making four point-to-point links FrameSwitch#o nei Neighbor ID Pri State Dead Time Address Interface 222.222.222.141 FULL/DR 00:00:33122.1.4.1 Ethernet0/1.4 222.222.222.141 FULL/DR 00:00:36122.1.3.1 Ethernet0/1.3 222.222.222.141 FULL/DR 00:00:36122.1.2.1 Ethernet0/1.2 222.222.222.141 FULL/DR 00:00:33122.1.1.1 Ethernet0/1.1 FrameSwitch# FrameSwitch#ir os O197.32.44.0/24 [110/11] via 122.1.4.1, 00:01:21, Ethernet0/1.4 [110/11] via 122.1.1.1, 00:01:21, Ethernet0/1.1 [110/11] via 122.1.2.1, 00:01:21, Ethernet0/1.2 [110/11] via 122.1.3.1, 00:01:21, Ethernet0/1.3 O195.100.3.0/24 [110/11] via 122.1.4.1, 00:01:21, Ethernet0/1.4 [110/11] via 122.1.1.1, 00:01:21, Ethernet0/1.1 [110/11] via 122.1.2.1,
Secondary Address Solution for OSPF/IGRP? [7:50274]
I have worked through all of the other approaches to the old classless--classful problem including tunnels, loopback on the same net, and the second ospf process summarization routine. However, I cannot find a working solution to the other suggested approach utilizing secondary addresses. Does anyone have one they might share? I tried the archives first of course, but received a Glimpse Not Found error. Thanks in advance for any help. _ MSN Photos is the easiest way to share and print your photos: http://photos.msn.com/support/worldwide.aspx Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=50274t=50274 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: CCIE written passed! [7:2615]
Which of the Boson tests do you recommend? Steve scott mann wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... Feels Good! I just passed the CCIE written. It was not actually all that hard if you have all of your CCNP stuff still in your head. Just studied for a couple of weeks after taking 3 months off from CCNP. I would suggest that all candidates buy the new Caslow book and buy the Boson tests. Use the Bosons not only for the memorization of questions, but also for the explanations/references given for each answer. I spent about 4 hours per day studying for these two weeks using just these two guides. Thanks to those who helped me by answering my questions...They directly helped if you know what I mean... On to the LAB...should take about 3-4 months to study intermixed with my actual job. Scott _ Get your FREE download of MSN Explorer at http://explorer.msn.com FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] Message Posted at: http://www.groupstudy.com/form/read.php?f=7i=2638t=2615 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Router problem
Show us your configs. - Original Message - From: Shane Stockman [EMAIL PROTECTED] To: [EMAIL PROTECTED] Sent: Tuesday, March 27, 2001 7:09 AM Subject: Router problem I have a 1720 with a serial wic at a remote site. I see the interface on my side as up/up but I cannot telnet nor ping the remote site successfully. I have had the guy on the remote side check the config line by line and clear ip routes , and it does not show all the routes even though the 1720 is using eigrp and has ip classless.He can see his side as up/up as well. I think it is a hardware or IOS problem. Any suggestions Thanks _ Get Your Private, Free E-mail from MSN Hotmail at http://www.hotmail.com. _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Cisco Book, High Availability Networking with Cisco
If you frequent the comp.dcom.sys.cisco newsgroup you will be very familiar with Dr Jones. He regularly takes time to post solutions to various topics that interest him. I have always found his comments very pertinent and usually insightful. I am glad to see he has taken the time to share some of his wealth of knowledge with others in the form of a book. I anticipate it will be a good read. - Original Message - From: [EMAIL PROTECTED] To: [EMAIL PROTECTED] Sent: Sunday, March 25, 2001 6:42 AM Subject: Cisco Book, High Availability Networking with Cisco I just bought the High Availability Networking with Cisco router and I must say it's OUTSTANDING. The author goes into many great topic's, that other books don't. I would encourage everyone to at least look at it. You can get online or your local book store Autor Vincent C. Jones ISBN # 0201704552 Brian _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Password recovery
From Rommon, change your config reg to 0x2142. Reload the router. Once you have logged in do a 'COPY START RUN' to merge your old config with the one running in RAM. Edit your passwords to how you want them and change the config reg back to 0x2102. Before you reload the router for the final time, do a 'copy start tftp' and replace the original startup config with the one now on your router. You will now be able to reload the router fine. Say YES to the prompts that ask you if you want to save. - Original Message - From: Rizzo Damian [EMAIL PROTECTED] To: [EMAIL PROTECTED] Sent: Tuesday, March 20, 2001 12:36 PM Subject: Password recovery We have a problem with our 3660 router. We forgot the enable password and need to start from scratch and recreate the passwords. The problem is, the router has no Flash memory, so the router only boots into Rommon mode...I don't believe these routers have bootflash, because you can't use the "boot tftp" command without a BOOTLDR not set error. So even after we manualy install the IOS via X-modem and it is run in NVRAM, it loads the startup config in memory and that just brings us back to where we were beforeA router in which we have no enable password for. What are our options at this point? Thank you. - Rizzo _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: A Simple Rip configuration Error
Lets see your subnet masks... - Original Message - From: Navin Parwal [EMAIL PROTECTED] Newsgroups: groupstudy.cisco To: [EMAIL PROTECTED] Sent: Tuesday, March 20, 2001 12:03 AM Subject: A Simple Rip configuration Error Hello Everyone , I am facing a problem while configuring RIP on my network , my network is as follows : I have two Cisco 2600 series routers which are connected back to back . 1) On the fisrst Router Cisco2610 my configuration is as follows : Ethernet0/0 11.100.10.1 Serial0/0 200.100.10.1 2) On the second Router Cisco2620 my configuration is as follows : Ethernet0/0 192.168.1.1 Serial0/0 200.100.10.2 I am able to ping from one end of the ethernet of one router to another when I configure the routing table statically , but when I am giving the following commands for dynamic routing on both of the router : 1) on 2610 config) router rip network 200.100.10.0 2) on 2620 config) router rip network 200.100.10.0 I am not able to view the RIP (R) entries when I give the command show ip route , it shows me only all the directory connected interfaces and gives me a message that gateway not set. When I give the command show ip Protocols , it shows me that RIP is running . I have even changes the network address to the other interfaces addresses , that the ethernet interface address of the other side of the other router , but still does not display R on the show ip route command What could be the error I am making , please let me know . I am new on routers and switches . thanks, Navin Parwal _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Windows NT station to join the domain through a PIX firewall
NT uses ports 135/136/137 for its RPC's. - Original Message - From: Udo Konstantin [EMAIL PROTECTED] To: 'Ehab Mohamad Abdullah' [EMAIL PROTECTED]; [EMAIL PROTECTED] Sent: Monday, March 19, 2001 6:47 AM Subject: AW: Windows NT station to join the domain through a PIX firewall First: If you want behind a FW you must authorized. Second: That is only a udp broadcast for dhcp udo -Ursprungliche Nachricht- Von: Ehab Mohamad Abdullah [mailto:[EMAIL PROTECTED]] Gesendet: Montag, 19. Marz 2001 15:38 An: [EMAIL PROTECTED] Betreff: Windows NT station to join the domain through a PIX firewall Any body has an idea on the following? How can windows NT workstation login to the domain while the NT server is behind a Firewall (PIX) ? Is it a port or another kind of traffic? Ehab _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Different between routers using access-list and routers with FW feature set
If you use a router with the FFS and use CBAC, you can build yourself a pretty decent firewall. The router though has far less throughput than a PIX and will only be good for under 100 users. The PIX can handle thousands of users. The way to think about them is in the design philosophy. The PIX starts life completely locked down and 100% secure. You need to open holes in it to allow traffic to flow. On the other hand, a router begins life just the opposite by being completely open and you need to lock it down to secure it, which is no simple feat for the inexperienced. I will warn you though both are not cheap. A new PIX will set you back $1.00 -14000.00. The FFS on top of a decent 3620 will cost you $5000 but you can buy a used PIX 520 for that kind of cash. Another thing, think about scaleability. If you go for the FFS now and spend 5K, how long will it be before you outgrow it and have to spring for the PIX anyway. Buy the PIX, set it up then forget about things for a while... - Original Message - From: Dove [EMAIL PROTECTED] Newsgroups: groupstudy.cisco To: [EMAIL PROTECTED] Sent: Monday, March 19, 2001 7:46 PM Subject: Different between routers using access-list and routers with FW feature set Hi, Can anyone tell me in security point of view, what is the different between router using access-list and routers with FW feature set? For example, if my network need to connect to an external company, is Cisco routers using access-list can provide enough security? What is the benefit if I use a router with FW feature set? What about if I use PIX? Thanks. dovelet _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: A design problem of switched network
Good point! - Original Message - From: Priscilla Oppenheimer [EMAIL PROTECTED] To: Groupstudy [EMAIL PROTECTED]; [EMAIL PROTECTED] Sent: Sunday, March 18, 2001 4:51 PM Subject: Re: A design problem of switched network At 09:17 AM 3/18/01, Groupstudy wrote: How on earth can you make recommendations without knowing more about the network you are working on? We have no idea of the quantitly of users, the traffic patterns, whether the company is hosting its own DMZ, how fast their links are, what routing protocol(s) they run, their addressing scheme...need I go on? Sounds like you just read the DCN book and are spouting textbook The DCN book would say to gather all that information you mentioned first. It sounds like you are spouting the textbook, and that's a good thing. ;-) generalities. - Original Message - From: Santosh Koshy [EMAIL PROTECTED] Newsgroups: groupstudy.cisco To: [EMAIL PROTECTED] Sent: Sunday, March 18, 2001 5:20 AM Subject: Re: A design problem of switched network I am going to make a few assumptions here based on your request 400340034003 65096509 PIX WWW 1) Dont run any kind of routing at the core layer leave that job for the distribution layer 2) Now since there is no L3 routing taking place at the core, it means that there are going to be 2 subnets from the distribution switches to the core switches. All the links to the first 6509 will be on one VLAN and all the wires going to the 2nd switch will belong to the second VLAN. 3) Get a Pix with 3 interfaces. Use 1 as an external interface (to www), and use the other two as internal interfaces (one going to each of the 2 VLAN's the 4003's) are connected to. With the above setup your traffic will be load balanced and both subnets will be in use... Hope that helps, Santosh Koshy ""frank"" [EMAIL PROTECTED] wrote in message 992dnf$jd9$[EMAIL PROTECTED]">news:992dnf$jd9$[EMAIL PROTECTED]... Now I want to design a lan for a company, i want to use 2 6509s as core switches for redundancy ,several 4003 as distribution switches .Each 4003 connect to 6509 seperately ,2 6509 connect to a pix which links to internet. What puzzled me is how to deal with these 2 6509s.Do they need to be connected with GEC technology and apply HSRP on them ?If they don't have links ,which link should a 4003 choose to visit internet? Thanks, Frank _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] Priscilla Oppenheimer http://www.priscilla.com _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Thanks to all in the group!!! Passed my lab!!
Well done Lou. - Original Message - From: Louie Belt [EMAIL PROTECTED] To: [EMAIL PROTECTED] Sent: Sunday, March 18, 2001 9:28 PM Subject: Thanks to all in the group!!! Passed my lab!! I just wanted to say thanks to all of the participants of this group. The knowledge, insight and even occasionally the opinions gleaned from this group have been an invaluable tool in the quest for my CCIE. As of today that quest has come to a successful conclusion. Thanks to all!! Louie A. Belt CCIE #7054 _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: ISL VLANS between routers
Go take another look at your setup... - Original Message - From: Gareth Hinton [EMAIL PROTECTED] Newsgroups: groupstudy.cisco To: [EMAIL PROTECTED] Sent: Sunday, March 18, 2001 2:04 AM Subject: Re: ISL VLANS between routers You sure it can't be done at 10Mb? Pretty sure I've done it at 10Mb. ""Groupstudy"" [EMAIL PROTECTED] wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... Trunking requires at least 100mb speed. - Original Message - From: Mike Davis [EMAIL PROTECTED] To: [EMAIL PROTECTED] Sent: Saturday, March 17, 2001 4:07 PM Subject: Re: ISL VLANS between routers All, From the experience I have had in the campus networks, I have done both ISL/802.1Q over single fiber between buildings. I have always used a MLS with gigabit technology for this design. The use of vlans, from my understanding, is based on broadcast and the use of being able to centralize manage IDF wire closets without having to go to each one physically, and also not having to worry about where people are physically. By using a MLS, you can assign port users to vlans and do management by software. You dont have to worry about acct being in 3 different vlans and can control/support the areas and users better. Well, thats my spill, and I have only done this on Cisco equipment. Also, based on Cisco equipment, from what I understand you can not do this over a T1 or fram relay? Please let me know if this is wrong. Thanks! --- Peter Van Oene [EMAIL PROTECTED] wrote: Juniper supports a feature called CCC (circuit cross connect) which essentially enables layer two technologies to span across WAN backbones via MPLS. This works with many layer two encapsulations including ppp, frame, ethernet/802.1q etc. This technique can provide the type of functionality you require, however likely at a price point that won't mate with the revenue stream it would support. Pete *** REPLY SEPARATOR *** On 3/13/2001 at 11:29 AM Jack wrote: Anyone know of a way to route Vlans over a WAN other than using Cisco ISL? I have customer with two sites, a 7204 on each site connected with a DS3 but Cisco says that his VLAN info can only be passed over Ethernet interfaces. He has a 6509 behind each router and the VLAN's are defined in those switches. Anyone had any experience with GIGAMAN from PacBell or Yipes.com ? _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] __ Do You Yahoo!? Get email at your own domain with Yahoo! Mail. http://personal.mail.yahoo.com/ _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: A design problem of switched network
How on earth can you make recommendations without knowing more about the network you are working on? We have no idea of the quantitly of users, the traffic patterns, whether the company is hosting its own DMZ, how fast their links are, what routing protocol(s) they run, their addressing scheme...need I go on? Sounds like you just read the DCN book and are spouting textbook generalities. - Original Message - From: Santosh Koshy [EMAIL PROTECTED] Newsgroups: groupstudy.cisco To: [EMAIL PROTECTED] Sent: Sunday, March 18, 2001 5:20 AM Subject: Re: A design problem of switched network I am going to make a few assumptions here based on your request 400340034003 65096509 PIX WWW 1) Dont run any kind of routing at the core layer leave that job for the distribution layer 2) Now since there is no L3 routing taking place at the core, it means that there are going to be 2 subnets from the distribution switches to the core switches. All the links to the first 6509 will be on one VLAN and all the wires going to the 2nd switch will belong to the second VLAN. 3) Get a Pix with 3 interfaces. Use 1 as an external interface (to www), and use the other two as internal interfaces (one going to each of the 2 VLAN's the 4003's) are connected to. With the above setup your traffic will be load balanced and both subnets will be in use... Hope that helps, Santosh Koshy ""frank"" [EMAIL PROTECTED] wrote in message 992dnf$jd9$[EMAIL PROTECTED]">news:992dnf$jd9$[EMAIL PROTECTED]... Now I want to design a lan for a company, i want to use 2 6509s as core switches for redundancy ,several 4003 as distribution switches .Each 4003 connect to 6509 seperately ,2 6509 connect to a pix which links to internet. What puzzled me is how to deal with these 2 6509s.Do they need to be connected with GEC technology and apply HSRP on them ?If they don't have links ,which link should a 4003 choose to visit internet? Thanks, Frank _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: show process results.
Although your suggestions are certainly potential problem candidates, don't you think you ought to find out what kind of link he has to the Internet, how many users are hitting it, and in what fashion, any firewalls or proxy servers involved and by what comparison he thinks it is slow before you go telling him to reboot boxes? A look at his configs wouldn't hurt either! P.S Debugs are only fatal when not filtered through an access list. - Original Message - From: Circusnuts [EMAIL PROTECTED] To: Moahzam Durrani [EMAIL PROTECTED]; [EMAIL PROTECTED] Sent: Sunday, March 18, 2001 2:52 AM Subject: Re: show process results. Wow- your utilization doesn't look high @ all. From your intro I expected 70 or 80%. If you are truly there during down-time, you could begin to use the otherwise fatal Debug commands. What is the bandwidth you are trouble shooting ??? This could me a proxy setting or DNS issue if you Pings to the ISP are good. Pull each one out of the equation. You could schedule reload of the router. Restarting boxes in far from the technical approach, but it gives the code time to recompile buffers time to free up trapped memory ( line cards to fail :-) Let us know how you make out Phil - Original Message - From: "Moahzam Durrani" [EMAIL PROTECTED] To: [EMAIL PROTECTED] Sent: Saturday, March 17, 2001 11:52 PM Subject: show process results. I am noticing that our connection to the internet is really slow. However when I do tracroutes and extended pings I dont see unusuall results. Doing a sh process I see High CPU utiliztion.Shouldnt be as Its Sat and hardly any one is at work. I checked my fire wall and did not see any unusaul stuff, just http traffic . I was wondering if any would could suggest what I S should be loking at in my result below. I am trying to also get in touch with our ISP to see if they are having some probs, . # sh process CPU utilization for five seconds: 5%/4%; one minute: 6%; five minutes: 6% PID QTy PC Runtime (ms)Invoked uSecsStacks TTY Process 1 Csp 802CC11C 2681123059 0 2640/3000 0 Load Meter 2 Mwe 80446AC40 2 023572/24000 0 PPP auth 3 Lst 802B5B00 2342020 5710464101 5740/6000 0 Check heaps 4 Cwe 802ACF040 1 0 5604/6000 0 Chunk Manager 5 Cwe 802BB450 132 961375 5636/6000 0 Pool Manager 6 Mst 802389D00 2 0 5596/6000 0 Timers 7 Mwe 8001B8FC0 2 0 5612/6000 0 Serial Backgroun 8 Msi 80301938 5920 187128 31 5600/6000 0 Environmental mo 9 Lwe 80316478 6488 102440 63 5304/6000 0 ARP Input 10 Mwe 8048B2680 3 0 5596/6000 0 DDR Timers 11 Mwe 804A36500 2 011608/12000 0 Dialer event 12 Lwe 806194CC8 24000 5644/6000 0 Entity MIB API 13 Mwe 8001FCE40 1 0 5640/6000 0 SERIAL A'detect 14 Cwe 802C0BF00 1 0 5632/6000 0 Critical Bkgnd 15 Mwe 8028AFC0 183116 786435 23210604/12000 0 Net Background 16 Lwe 8022DC200 35 011248/12000 0 Logger 17 Msp 8024C238 83445613789 1 5540/6000 0 TTY Background 18 Msp 8028A600 26285613795 0 5828/6000 0 Per-Second Jobs 19 Mwe 800A78600 2 0 5552/6000 0 Hawkeye Backgrou 20 Hwe 8028A838 1916161611492 118 5628/6000 0 Net Input 21 Csp 80291CC4 3361123060 0 5624/6000 0 Compute load avg PID QTy PC Runtime (ms)Invoked uSecsStacks TTY Process 22 Msp 8028A650 1503576 93564 16070 5736/6000 0 Per-minute Jobs 23 Msp 80159144 3844 22282300 0 4632/6000 0 Framer backgroun 24 Mwe 8033EA18 26083883461262 75311024/12000 0 IP Input 25 Mwe 803E105C 210948 658709 320 5452/6000 0 CDP Protocol 26 Lwe 806D02B00 1 0 5324/6000 0 X.25 Encaps Mana 27 Mwe 8012F2340 2 0 5600/6000 0 Emulator 28 Hwe 804541EC0 1 0 5736/6000 0 Asy FS Helper 29 Mwe 8042F8B04 31333 4940/6000 0 PPP IP Add Route 30 Mwe 8039F5D4 360416 936213849 8368/9000 0 IP Background 31 Mwe 801E6B0444960 93586 480 5604/6000 0 Adj Manager 32 Mst 80327A444 2198 111392/12000 0 TCP Timer 33 Lwe 8032C82C 252175144011268/12000 0 TCP Protocols 34 Lwe 80377ACC0 1 0 5644/6000 0 Probe Input 35 Mwe 80378D280 1 0 5644/6000 0
Re: Paper CCXX ...LONG
Very well said Craig. - Original Message - From: Craig Columbus [EMAIL PROTECTED] To: Mike Davis [EMAIL PROTECTED] Cc: [EMAIL PROTECTED] Sent: Sunday, March 18, 2001 6:22 AM Subject: Re: Paper CCXX ...LONG Ok...before I even begin addressing this point, let me state that I think that there's value in obtaining certification and that I certainly admire everyone who's taken the time and money to better himself, or herself, through the certification process. However, as someone who hires network people, I have a problem with paper certs and in this post, I'll explain why. If you're going to flame me, at least read through the entire post first. With that much said: I think most of you are missing the point. Let me rephrase this in the form of a question: What is the point of becoming certified? I think we can all agree that the point of becoming certified is so that an independent third party "certifies" our competency, or level of understanding, in a field of study. We desire this third-party acknowledgement so that peers and employers will understand, at a glance, that we have at least the minimum level of understanding to pass examinations of a certain difficulty. So, given this set of parameters, what happens when those obtaining certification do not have the minimum skills, as defined by the certification process? We must conclude that the certification process is not reliable, not valid, or both not reliable and not valid. Is it the fault of those obtaining, or seeking to obtain, certification? No. It's the fault of the third-party certifier. When this situation occurs, the certification process should be revised so that it's both reliable and valid, reducing the number of certified individuals who are incompetent as defined by the minimum standards of the level of certification in question. It's at this point that we're faced with a reality check: vendors don't particularly care that some of the certified individuals don't meet at least minimum standards. Why? They have a pool of individuals who have staked time and money on the certification process and won't readily abandon the desire to keep working. To keep working, they have to make sure that their employer keeps the product on which they're certified in stock. With little effort, besides offering someone the satisfaction of obtaining the letters of certification, the vendor has gained a massive "indentured" sales force. When hiring someone for an open position, I used to look at experience, certifications, formal education, and references, in that order. I did this because experience showed what the candidate had done, certifications showed at least a certain amount of direct competency in a study area, formal education showed at least a certain broad level of knowledge, and references verified the experience. Today I look at experience, formal education, references, and finally, certifications. Why the change? Because anymore, the certifications don't really tell me what a candidate knows; they're not a valid or reliable indicator of competency. Who's to blame for the devaluation of certain certifications? Certainly not the paper certs themselves. While some argument could be made that those only in it for the money are at fault, I acknowledge that we're all looking for a better life and the paper certs see an opportunity and are taking it in an effort to better their lives. Personally, I blame the vendors and the training centers. Vendors need a certain "critical mass" of certified individuals to meet marketing objectives and have thus lowered the barrier to entry. Training centers only care about making a buck off the current hot certification. You've all heard the ads..."Get CCNA certified in 2 weeks and join the ranks of those making $70k a year!". The training centers know the realities, but aren't about to advertise them since few people would enroll in a course if they realized that two weeks of training and a CCNA will get you only a foot in the door at a very low salary. So, why bother with the certification at all? A few reasons: 1) Given that all else is equal on two resumes, most employers generally bring in the certified person for an interview before the non-certified. 2) The market still looks for certifications, irrespective of knowledge, for some positions. You've all seen the ads...CCNP required, CCNA preferred. Some companies don't understand the process and don't want to understand the process. All that matters is that the VP wants someone with a certification on the network team. 3) The partner program is going to put more emphasis on having x number of certified individuals, at all levels of certification. Bottom line? Paper certs aren't going away. I think they'll decline a bit as the economy slows and dumps more experienced people into the job market, but overall I think they're going to continue to
Re: email service set up
This is obviously a very small network if they do not already have established email service. Install an Exchange server locally and make sure you have a modem on it. With MS Exchange you can set it up to use a dial up connection in the event that it needs to forward queued email. Your ISP has probably given you a dialup profile as well as your DSL, so their SMTP relay services will be configured to accept your email from whatever server is comes in on. Setup your Exchange to use the DSL as its primary mail forwarding link. I don't recall if there is a way to tell the server to automatically use the modem if the primary link is down, you may have to manually switch it but it will be very simple to do so. Rather than setting up an Email server you may be better off using a SMTP relay service and simply forwarding your email to your ISP for them to route. You could do this easily with a PC which has both the DSL router and a modem on it, and still get your redundency should the DSL go down. The downside to this is that email needs to be stored locally on your users hard drives. Having your own email server gives you that nice archive, and lets you monitor what email comes and goes if need be. The downside to that is needing to back it up and maintain it etc. If you do decide to go with a local mail server, don't skimp on the hardware. Buy yourself a decent server which has Raid5 capability and keep a hot spare drive around. Make sure it has a decent backup system on it too. For right now I would just download a free SMTP relay agent from Winfiles.com or Download.com etc, throw it on a PC, set all your mail clients (built in email client in WWW browser) to use it, and give yourself time to think about what you ultimately want. HTH - Original Message - From: Jim Bond [EMAIL PROTECTED] To: [EMAIL PROTECTED] Sent: Saturday, March 17, 2001 11:23 PM Subject: OT: email service set up Hello, Sorry for this OT question. I'm setting up a network for a small company, they've got a DSL Internet connection. What's the best way to handel email service? If I set up an exchange server locally, what happens if there is something wrong with DSL connection? Thanks in advance. Jim __ Do You Yahoo!? Get email at your own domain with Yahoo! Mail. http://personal.mail.yahoo.com/ _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: using cisco cd without network , why cant i?
Sounds like it was installed on a network drive. Get a hold of the first disk in the two disk documentation set and reinstall it to your local hard drive. It does not matter if you are connected to the Internet or not. There are a few links on the disk that do point to CCO though, just avoid them. 99.9% of the docs will be available directly from the CD. - Original Message - From: beth shriver [EMAIL PROTECTED] To: [EMAIL PROTECTED] Sent: Saturday, March 17, 2001 9:54 AM Subject: using cisco cd without network , why cant i? I know this is a silly question and im too embarrassed to ask the guys at the office... buy every time i try to user my doc cd it gives me a blank page unless im connected to a network how do i look at this if im on a plane or something. I know this is simple and pray no one from my office ever sees this! :) can anyone discreetly help? hahaha Thanks Bethy __ Do You Yahoo!? Get email at your own domain with Yahoo! Mail. http://personal.mail.yahoo.com/ _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: VLSM, OSPF, and redistribution into IGRP
Need to see the remainder of your configs. I don't think you are using the correct area range summary but without knowing your addressing scheme, I cannot say for sure. - Original Message - From: John Neiberger [EMAIL PROTECTED] To: [EMAIL PROTECTED] Sent: Saturday, March 17, 2001 2:59 PM Subject: VLSM, OSPF, and redistribution into IGRP I'm working through a scenario in the new Sybex CCIE study guide and I can't get it to work, even using their suggested workaround. Here's the scenario: RouterA --OSPF-- RouterB --IGRP-- RouterC RouterA has two different /27 links, one of which is connected to RouterB. The connecting link is 10.1.2.0/27 and its other link is 10.1.1.32/27. The link between RouterB and RouterC is a /24, 10.1.3.0. The purpose of the scenario is to demonstrate that the /27 networks will not be redistributed in IGRP because the masks are different on each side of RouterB. To remedy this problem, the book suggests summarizing the /27 networks as /24 which would allow them to be redistributed into a classful protocol. Following the instructions, on RouterB I added: router ospf 1 area 0 range 10.1.1.0 255.255.255.0 Supposedly, this would work but it does not. Closer to their example, I even tried "area 0 range 10.1.1.32 255.255.255.0". Am I doing it incorrectly or is their suggestion wrong? I worked around this problem by creating a summarized static route on RouterB and then redistributing static, but I wanted to make it work like in their example. So, redistribution gurus, what's the story? I quickly looked through Doyle's book and I haven't seen this specific example yet. Any ideas? Many thanks, John ___ Send a cool gift with your E-Card http://www.bluemountain.com/giftcenter/ _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: ISL VLANS between routers
Trunking requires at least 100mb speed. - Original Message - From: Mike Davis [EMAIL PROTECTED] To: [EMAIL PROTECTED] Sent: Saturday, March 17, 2001 4:07 PM Subject: Re: ISL VLANS between routers All, From the experience I have had in the campus networks, I have done both ISL/802.1Q over single fiber between buildings. I have always used a MLS with gigabit technology for this design. The use of vlans, from my understanding, is based on broadcast and the use of being able to centralize manage IDF wire closets without having to go to each one physically, and also not having to worry about where people are physically. By using a MLS, you can assign port users to vlans and do management by software. You dont have to worry about acct being in 3 different vlans and can control/support the areas and users better. Well, thats my spill, and I have only done this on Cisco equipment. Also, based on Cisco equipment, from what I understand you can not do this over a T1 or fram relay? Please let me know if this is wrong. Thanks! --- Peter Van Oene [EMAIL PROTECTED] wrote: Juniper supports a feature called CCC (circuit cross connect) which essentially enables layer two technologies to span across WAN backbones via MPLS. This works with many layer two encapsulations including ppp, frame, ethernet/802.1q etc. This technique can provide the type of functionality you require, however likely at a price point that won't mate with the revenue stream it would support. Pete *** REPLY SEPARATOR *** On 3/13/2001 at 11:29 AM Jack wrote: Anyone know of a way to route Vlans over a WAN other than using Cisco ISL? I have customer with two sites, a 7204 on each site connected with a DS3 but Cisco says that his VLAN info can only be passed over Ethernet interfaces. He has a 6509 behind each router and the VLAN's are defined in those switches. Anyone had any experience with GIGAMAN from PacBell or Yipes.com ? _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] __ Do You Yahoo!? Get email at your own domain with Yahoo! Mail. http://personal.mail.yahoo.com/ _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: VLSM, OSPF, and redistribution into IGRP
OK, your only using one area for the whole OSPF network. This means that both routerA and routerC are not ABR (border different areas). The area range command only works on ABR's. This now leaves you with a couple of choices. RouterB is the ASBR (redistributes from OSPF into a different protocol on the same router) and can use the 'summary address' command under the OSPF process to summarize the area into a /24.Rather than trying to get your OSPF routes into IGRP, use the default-netowork command on the IGRP router to give it a default route out of the IGRP domain without knowing where it is sending routes. You will need to enable 'IP classless' on the IGRP router and you will need a network injected into IGRP that is not one of the networks it has routes for. You could do this by adding a static route to null0 which you probably won't want to do, or you could add a network to routerB (try a loopback with a /24 so it gets redistributed) and once it can be seen in the IGRP router route-table, the default-network command will add a candidate default route to your route-table. When using the IGRP default-network command, only use a classfull address. If you use a subnetted address a static route will be injected into your config that only a reboot will remove!! HTH - Original Message - From: John Neiberger [EMAIL PROTECTED] To: Groupstudy [EMAIL PROTECTED] Cc: [EMAIL PROTECTED] Sent: Saturday, March 17, 2001 8:38 PM Subject: Re: VLSM, OSPF, and redistribution into IGRP Ok, here are the relevant portions of the configs. Router A: ip subnet-zero ! interface Ethernet0 ip address 10.1.1.33 255.255.255.224 no keepalive ! interface Serial0 ip address 10.1.2.2 255.255.255.224 no fair-queue ! router ospf 1 network 10.1.2.0 0.0.0.31 area 0 network 10.1.1.32 0.0.0.31 area 0 ! ip classless Router B: ip subnet-zero ! interface Serial0 ip address 10.1.2.1 255.255.255.224 clockrate 50 ! interface Serial1 ip address 10.1.3.1 255.255.255.0 ! router ospf 1 network 10.1.2.0 0.0.0.31 area 0 area 0 range 10.1.1.0 255.255.255.0 area 0 range 10.1.2.0 255.255.255.0 ! router igrp 1 redistribute ospf 1 metric 1 1000 255 1 1500 passive-interface Serial0 network 10.0.0.0 default-metric 1 1000 255 1 1500 ! ip classless Here is the routing table for Router B: RouterB#sho ip route Codes: C - connected, S - static, I - IGRP, R - RIP, M - mobile, B - BGP D - EIGRP, EX - EIGRP external, O - OSPF, IA - OSPF inter area E1 - OSPF external type 1, E2 - OSPF external type 2, E - EGP i - IS-IS, L1 - IS-IS level-1, L2 - IS-IS level-2, * - candidate default Gateway of last resort is not set 10.0.0.0 is variably subnetted, 3 subnets, 2 masks C 10.1.3.0 255.255.255.0 is directly connected, Serial1 C 10.1.2.0 255.255.255.224 is directly connected, Serial0 O 10.1.1.32 255.255.255.224 [110/74] via 10.1.2.2, 00:09:01, Serial0 And finally, Router C: ip subnet-zero ! interface Serial1 ip address 10.1.3.2 255.255.255.0 clockrate 50 ! router igrp 1 network 10.0.0.0 ! ip classless As I understand it, Router B would summarize 10.1.1.32/27 as 10.1.1.0/24 so that it can be redistributed into IGRP. As you can see, 10.1.1.32/27 is in the routing table, yet from debugging I can see that the summarized route is not being added to the IGRP update, and therefore RouterC is never seeing the route. I found a different way to make this work, but I wanted to figure it out using the method in the book. So far, no luck. Another oddity that I noticed that I need to check into: on RouterA, I had to add a network statement for the 10.1.1.32/27 network or it wouldn't be advertised. Why is this? I thought that the OSPF network statement specified which interfaces were to participate in the OSPF process, not the actual networks to be advertised (like in BGP.) It seems to me that the 10.1.1.32/27 network would be part of the Router LSA, with or without a specific network statement. Thanks, John Need to see the remainder of your configs. I don't think you are using the correct area range summary but without knowing your addressing scheme, I cannot say for sure. - Original Message - From: John Neiberger [EMAIL PROTECTED] To: [EMAIL PROTECTED] Sent: Saturday, March 17, 2001 2:59 PM Subject: VLSM, OSPF, and redistribution into IGRP I'm working through a scenario in the new Sybex CCIE study guide and I can't get it to work, even using their suggested workaround. Here's the scenario: RouterA --OSPF-- RouterB --IGRP-- RouterC RouterA has two different /27 links, one of which is connected to RouterB. The connecting link is 10.1.2.0/27 and its other link is 10.1.1.32/27. The link between RouterB and RouterC is a /24, 10.1.3.0. The purpose of the scenario is to demonstrate that the /27 networks
Re: classless behaviour
Unfortunately, Doyle gives about the best description I have thus read. If I recall, Bruce Caslow hits this a little in his book too. I have just posted an answer to a thread that gives one use of IP classless. Once you begin your quest of CCIE, you will encounter this in such a way it is unavoidable. Until then, forget about it unless you are running an old DV routing protocol at work. - Original Message - From: Bill [EMAIL PROTECTED] To: Cisco Group Study [EMAIL PROTECTED] Sent: Saturday, March 17, 2001 9:22 PM Subject: classless behaviour Hi, To configure classless behaviour, we use "ip subnet-zero" and "ip classless". I never understand them, even after reading Doyle's bible. * When do we need them ? * If we don't use them, what will happen ? * Is there good example to show their effect ? Thank you in advance. Bill _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: TCPmag.com Salary Survey
What a joke. According to their chart an 18 year old kid right out of high school who lives in Detriot could spend 81 hours of studying and then land themselves a job paying $73K per year. - Original Message - From: Thangavel .V.M [EMAIL PROTECTED] To: [EMAIL PROTECTED] Sent: Friday, March 16, 2001 3:42 AM Subject: TCPmag.com Salary Survey Hi, See how much CCIE, CCNP and CCNA's are paid http://tcpmag.com/salarysurvey/2001/default.asp?id=3DSALARY01cid=3D89 Regards / Thangavel _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: CCIE token ring..
DLSW is big on the lab and you will need to know all the various bridging functionality. Fortunately used Token-Ring equipment is cheap on eBay. You should get a hold of 2 MAU's and a half dozen cables. If you really want to test them though get a couple of Token-Ring NIC's and put them in two PC's and run Netbeui over them. Make sure you have a 2513 or two (preferably) in your lab. - Original Message - From: Jit Cherng [EMAIL PROTECTED] To: 'Cisco [EMAIL PROTECTED] Sent: Friday, March 16, 2001 6:29 AM Subject: CCIE token ring.. currently i am setting up a Cisco lab at home for CCIE preparation.. I like to know whether is token ring is tested hard in the Lab exam?? it is in the CCIE blueprint but nowadays i seldom see companies using token ring networks.. like to make sure so that i don't buy the wrong equipments. _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: EIGRP Updates
EIGRP does not make regular table updates, and it only sends partial routes when there is a topology change. It does send hellos every 5 seconds (changeable default parameter) though to allow for rapid reconvergence. It acts a lot like BGP when it comes to table updates. - Original Message - From: Germain, PJ [EMAIL PROTECTED] To: [EMAIL PROTECTED] Sent: Wednesday, March 14, 2001 8:54 PM Subject: EIGRP Updates Hello all, I'm trying to tweak out a bit more bandwidth across our WAN. We have a 3660 core router here in the main office and about 30 2509s and a few 2612s at all the remotes. We are running EIGRP on all routers. We have this debate going on about how often the tables are being updated. I seem to recall that they update about every 3 minutes regardless of changes in topology. What is the default?? Thank you, in advance, for any input!! _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: IBGP multihop?
Look at the name of the command, it sums up where you can use it 'EBGP multihop'...you can only use this command to reference neighbors in a different AS than the router originating the command. - Original Message - From: Richard Chang [EMAIL PROTECTED] Newsgroups: groupstudy.cisco To: [EMAIL PROTECTED] Sent: Wednesday, March 14, 2001 10:27 PM Subject: Re: IBGP multihop? 1. I did have "update-source" command... 2. loopback interfaces are pinging on both routers... I also wish that it is true that there is no limitation for ibgp multihop... However, based on my following test, the only conclusion I came up with is that either I missed something that's really obvious or Cisco does not support ibgp multihop. R2: interface Loopback0 ip address 2.2.2.2 255.255.255.0 no ip directed-broadcast router bgp 65001 no synchronization bgp confederation identifier 100 neighbor 3.3.3.3 remote-as 65001 neighbor 3.3.3.3 update-source Loopback0 R2#ping 3.3.3.3 Type escape sequence to abort. Sending 5, 100-byte ICMP Echos to 3.3.3.3, timeout is 2 seconds: ! R2#show ip bgp summ BGP router identifier 2.2.2.2, local AS number 65001 BGP table version is 1, main routing table version 1 NeighborVAS MsgRcvd MsgSent TblVer InQ OutQ Up/Down State/PfxRcd 3.3.3.3 4 65001 0 0000 neverActive R3: interface Loopback0 ip address 3.3.3.3 255.255.255.0 no ip directed-broadcast router bgp 65001 no synchronization bgp confederation identifier 100 neighbor 2.2.2.2 remote-as 65001 neighbor 2.2.2.2 update-source Loopback0 R3#ping 2.2.2.2 Type escape sequence to abort. Sending 5, 100-byte ICMP Echos to 2.2.2.2, timeout is 2 seconds: ! "Raul Camacho" [EMAIL PROTECTED] wrote in message 98pha2$fop$[EMAIL PROTECTED]">news:98pha2$fop$[EMAIL PROTECTED]... There is no requirement for IBGP neigbors to be directly connected. Make sure that you have the routes for all of the intermediate links and the loopbacks in your routing table first. ""Richard Chang"" [EMAIL PROTECTED] wrote in message 98p8ls$chl$[EMAIL PROTECTED]">news:98p8ls$chl$[EMAIL PROTECTED]... For EBGP, you can use the ebgp-multihop command when the neighbors are not directly-connected. I was just wondering whether there is a similar work-around that anyone know of for IBGP. Basically, I am using loopback interfaces on these two routers and they have to go through another hop before hitting each other. I configured IBGP on these two routers with those loopback addresses and found out that the BGP session can't be formed... Thanks Richard _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: IOS DHCP vs NT DHCP
I beg to differ a little here. If you have ever monitored the DHCP servers utilization, you will have noted it barely creeps over a percent or two...ever. You certainly don't need it running on a high performance computer. It is also very simple to setup and in the event your DHCP server took a dump, you could have another one up and running in about 10 minutes provided you wisely documented your original server parameters. The beauty of DHCP is also in the fact that is leases IP addresses. When a DHCP server crashes it does not affect many clients until their leases expire. In the case of NT, the default lease period is three days I believe. This means you can essentially live without it for quite a few hours, more than enough time to configure and install a new one. Case in point, I once got a call from a IT manager who had his DHCP server take a dive right in front of him. He was managing a 2000 node network and using NT for is DHCP services. He was frantic that his users would start calling him any time to complain about their not being able to get on the network. I told him to calm down and I would be there in about an hour. When I got there I was able to retrieve the old DHCP server config files off the crashed server and rebuild a new DHCP server on a nearby NT workstation (pentium 133 with 32 mb RAM!) and have it up and running in about 45 minutes including the newly installed NT Server OS. There were a couple of users who called in bacause their leases were obviously renewable at that time. I had desktop support reboot their PC's and they were happy. 99% of the users didn't even blink. They went about their business as usual and their PC's happily re-leased their IP addresses from the new DHCP server after their daily shutdowns! Total downtime about 2 hours. I agree with Pricilla to a certain extent in that I would not condone adding DHCP services to a router that performs any kind of routing. I do think it would be a good idea to dedicate an old 2500 for it though. Just make sure you have a spare one around though in case it takes a dive. - Original Message - From: Priscilla Oppenheimer [EMAIL PROTECTED] To: Eric Waguespack [EMAIL PROTECTED]; [EMAIL PROTECTED] Cc: ElephantChild [EMAIL PROTECTED] Sent: Thursday, March 15, 2001 3:03 PM Subject: Re: IOS DHCP vs NT DHCP At 01:52 PM 3/15/01, Eric Waguespack wrote: does anyone have any links to documentation comparing the two? or opinions / personal experience to draw from? i really dig the idea of yanking an nt dhcp server out and replacing it with a 2600/3500 ios router running dhcp That seems risky to me. A 2600 router has a 68000 CPU of some sort (I think). The same CPU on old Macintoshes. It doesn't have a whole lot of memory. And most importantly it's optimized to do one job: routing. Routing is mission-critical. I wouldn't want to take away resources from that essential job. An NT server could be installed on a machine with 512 MB of memory, a 1 GHz P4 processor, a speedy and large hard drive, etc. Since DHCP is mission critical to most networks, I would want it running on a high-performance system that isn't also doing routing. Priscilla me ccnp/voice mcse ccdp cnx bla bla __ Do You Yahoo!? Yahoo! Auctions - Buy the things you want at great prices. http://auctions.yahoo.com/ _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] Priscilla Oppenheimer http://www.priscilla.com _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: ISDN Simulator
OK lets see, using your prices here is a price comparison of renting two ISDN lines or buying a ISDN simulator for the typical 4 month study period required to get your CCIE certification. Two line ISDN rental: $300 setup fee's and $100.00 per month rental fee's Purchase 1 Teltone ISDN Demonstrator: (has two ISDN line capability) $1700.00 OK you are now in for $700.00 in rental fees or $1700.00 ownership costs. Here is where the buying pays off, most CCIE candidates fail their first attempt and a retest is now a seven month waiting period which equates to $700 more in rental fees bringing your total to $1400.00. Still cheaper than owning an ISDN sim though huh? Not quite... You can now turn around and sell your ISDN simulator for close to what you paid for it say $1500.00 bringing you total cost of ISDN practice to $200.00. I would love to see you trying to resell your used rental fees to another CCIE candidate :-) ...You eat $1400.00. - Original Message - From: Circusnuts [EMAIL PROTECTED] To: Groupstudy [EMAIL PROTECTED]; [EMAIL PROTECTED] Sent: Thursday, March 15, 2001 1:27 PM Subject: Re: ISDN Simulator Bell Atlantic- $149 for the installation, $49 a month for 20 hours, waiting on the slow connection- priceless :o) Phil - Original Message - From: "Groupstudy" [EMAIL PROTECTED] To: [EMAIL PROTECTED] Sent: Thursday, March 15, 2001 9:31 PM Subject: Re: ISDN Simulator Unfortunately those terms are not synonymous. - Original Message - From: nicolas bishop [EMAIL PROTECTED] To: [EMAIL PROTECTED] Sent: Thursday, March 15, 2001 2:01 PM Subject: ISDN Simulator If someone could recommend a good-cheap ISDN simulator it would be greatly appreciated. cheers. _ Get Your Private, Free E-mail from MSN Hotmail at http://www.hotmail.com. _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: PIX Performance
Bottlenecks almost always end up being the smallest pipe on a network. In your case you have a possible 4 T1's which even when all are fully utilized will only pass around 6mb of traffic per second. Even your darn 10 baseT ethernet pipes could handle that. The PIX can handle up to 170mb per second and won't even blink at 4 fully loaded T1's. I suggest you give the client the numbers and let them do the math. After they have done their own math, and if they are still not convinced your right, may I suggest you ask them why they need your help, they obviously know more about the matter at hand than you do :-) - Original Message - From: [EMAIL PROTECTED] To: [EMAIL PROTECTED] Sent: Thursday, March 15, 2001 6:33 PM Subject: PIX Performance Hello everyone. Here is the situation. A client of mine plans on setting up some DMZs off either a PIX 515 or 525. Servers will consist of smtp relay, ftp, 2 to 4 web servers, 2 OWA servers, and 5 to 10 web app servers. Inside (the internal LAN), there are about 10 servers, some database, which dmz servers will need to access. They currently have 2 T1s for external access to these DMZ based servers (no internally initiated web traffic), and do not plan to upgrade to more that 4 T1s anytime soon. To the point, the client claims that the PIX will be unable to handle all the traffic from the front end and the access to the back end and that it will become a performance bottleneck with an extremely complicated, long rule set. My experience and opinion tell me that the PIX will do just fine and could probably handle a hell of a lot more. It is doing static NAT also but not any VPN stuff. If anything, with about 6000 remote clients accessing certain servers throughout the day, the potential bottleneck with be the 2 T1s or the 2610 router in front of the PIX, not the PIX itself - but he won't believe me! I have plenty of performance test results and have implemented multiple PIXs and some Check Point Firewalls. Am I missing something? How do I convince him? Since this may not be perceived as a certification issue, you should probably answer me directly and not clog up the list. Thank-you in advance... David Raker CCDP, CCNP, MCSE, MCP + Internet _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Configuring Dial on a Serial Interface
[ The following text is in the "iso-8859-1" character set. ] [ Your display is set for the "US-ASCII" character set. ] [ Some characters may be displayed incorrectly. ] Nigel is absolutely right. You need to use ports that are Synchronous/Asynchronous. You cannot turn a physically synchronous port into a asynchronous port by merely adding a command like you can to a combo port. Thus you need to get your hands on a 2520/2521/2522/2523 router to do what you want. I seem to recall reading that the 4 port interface modules for the 4000 series are combo ports, but I could be mistaken. - Original Message - From: Circusnuts [EMAIL PROTECTED] To: [EMAIL PROTECTED] Sent: Monday, March 12, 2001 2:57 PM Subject: Configuring Dial on a Serial Interface I have (2) 2500 with RS-232's running from the Serial ports to = USRobotics/3Com modems, which in tern are connected to a Teltone Telco = simulator. I thought the hard part was over, when I finished the = cabling the thing out. I cannot get the very basic "first things first" = command to take- Physical-layer async. =20 Any ideas ???=20 _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Max Vty's
I wanted to configure some additional vty's a while back and couldn't find the answer. I posted a question to the CCIE lab mailing list and someone told me this. I haven't checked it first hand on an Enterprise-running router yet though! - Original Message - From: Kevin Wigle [EMAIL PROTECTED] To: Groupstudy [EMAIL PROTECTED]; [EMAIL PROTECTED] Sent: Sunday, March 11, 2001 8:36 PM Subject: Re: Max Vty's I like getting answers to my posts :-) but I was wondering - did you find that in a CCO document or is it through your experience? I'm really trying to get good - very good at sifting CCO and the doc CD in preparation of the eventual CCIE lab someday. thanks Kevin Wigle - Original Message - From: "Groupstudy" [EMAIL PROTECTED] To: [EMAIL PROTECTED] Sent: Sunday, 11 March, 2001 15:40 Subject: Re: Max Vty's You need Enterprise IOS to get more than 5 vty's. - Original Message - From: Kevin Wigle [EMAIL PROTECTED] To: Cisco [EMAIL PROTECTED] Sent: Sunday, March 11, 2001 12:20 PM Subject: Max Vty's Group, Glad to see the list back up and running! This topic was discussed a while ago and I found 2 posts in the archives but they didn't say much. When I look at CCO docs, it says that 200 vtys are allowed on a 2600, but I can only get the original 5 to work. Somebody mentioned that perhaps enterprise IOS is required. I can't seem to find where it states that ver x allows more vtys than version y. Does anyone got a better reference on this? Kevin Wigle _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Have a problem
Go to CCO and get the password recovery procedures for your model. Make sure your configuration-register is set to 0x2102. - Original Message - From: The.Rock [EMAIL PROTECTED] Newsgroups: groupstudy.cisco To: [EMAIL PROTECTED] Sent: Sunday, March 11, 2001 9:08 AM Subject: Re: Have a problem I was trying to do the password recovery where you change the config register. I figure i typed something in wrong. You think that replacing the boot chips would work? I had planned on doing this anyway. Especially if this fixes the problem "John Neiberger" [EMAIL PROTECTED] wrote in message 28995509.984329759512.JavaMail.imail@slippery">news:28995509.984329759512.JavaMail.imail@slippery... It looks like you might have changed the console port baud rate. At least I think that's possible with the config register. I just woke up and I'm a little sluggish. g Anyway, try changing the connection speed in your terminal software to other settings to see if something else works. Good luck! John I was trying to reset a password on router and i guess I fat fingered the entry and mistyped the entry for the configuration register. Now all i get is a bunch of " CCC's" on boot up. Does anyone know how I can fix this? _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] ___ Send a cool gift with your E-Card http://www.bluemountain.com/giftcenter/ _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Max Vty's
You need Enterprise IOS to get more than 5 vty's. - Original Message - From: Kevin Wigle [EMAIL PROTECTED] To: Cisco [EMAIL PROTECTED] Sent: Sunday, March 11, 2001 12:20 PM Subject: Max Vty's Group, Glad to see the list back up and running! This topic was discussed a while ago and I found 2 posts in the archives but they didn't say much. When I look at CCO docs, it says that 200 vtys are allowed on a 2600, but I can only get the original 5 to work. Somebody mentioned that perhaps enterprise IOS is required. I can't seem to find where it states that ver x allows more vtys than version y. Does anyone got a better reference on this? Kevin Wigle _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Load Balancing Across Multiple PIX
You would be far better off manipulating the routes (routing protocol) in your network with the routers on the inside of the PIX, and then just letting the the traffic flow through the PIX as usual. You will find this solution much easier to implement and far more forgiving on your pocketbook! Of course if your using RIP this is not an option. - Original Message - From: Rossetti, Stan [EMAIL PROTECTED] To: [EMAIL PROTECTED] Sent: Wednesday, March 07, 2001 8:01 AM Subject: Load Balancing Across Multiple PIX Hello Everyone, Does anybody know if it is possible to load balance across multiple PIX firewalls? I have looked at numerous Cisco web pages, but never any mention of load balancing. I have talked to a sales engineer and he has said that to get 1GB of throughput from a PIX firewall, you need to install 3 PIX firewalls and do load balancing across them. The max throughput from one PIX is 370MBps. Of course, I can't get the sales engineer to return my call now. Doe anyone know if this is true? Do you have to have 3 PIX to do load balancing? I would like to just do load balancing across 2 PIX firewalls. Is this possible? Thanks in advance. Thanks Stan Rossetti NASA - PriSMS Advanced Technology Group Voice: (256) 544-5031 Email: [EMAIL PROTECTED] Beeper: 544-1183 pin 0112 CCDA, CCNA, CCSE _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Simulated dial-tone
Go to Ebay and search on Teltone TLS . They make a few telco simulators which would be perfect for you. You can get a TLS5 for about $300-$400 ($800.00 new). They have four analog ports. - Original Message - From: ANDERSON, JEFFREY [EMAIL PROTECTED] To: [EMAIL PROTECTED] Sent: Wednesday, March 07, 2001 2:20 PM Subject: Simulated dial-tone Anyone know of an inexpensive way to create dial-tone in a home lab. I would like to be able to setup 3 or 4 analog ports (but if only two can be done that would works too) that can dial each without having to leave the lab - no outside phone lines. We are able to achieve this at work through our Lucent switches, but I doubt I am going to pay a million dollars for a phone switch (LOL). This would be great for simulating dialup scenarios. Any help would be greatly appreciated. Thanks again, Jeffrey M. Anderson MCSE / MCSE+I / CCNA SAFECO System Support Unit (509) 893-8568 [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: RE:ports/ Master Browser elections
I am pretty sure Windows uses RPC's to make their browsing functionality work. This gives the service the ability to work over all their supported protocols, ie Netbeui, NWlink and TCP/IP. - Original Message - From: Raymond Bourg [EMAIL PROTECTED] To: [EMAIL PROTECTED] Sent: Wednesday, March 07, 2001 5:00 PM Subject: RE:ports/ Master Browser elections All: Does anyone know what port the master browser election, on Windows NT 4.0 server uses? Thank you Raymond -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Heidi white Sent: Wednesday, March 07, 2001 7:54 AM To: [EMAIL PROTECTED] Subject: Anyone know of a site that would list all ports? Or a specific link on the cisco site? I've looked through pages upon pages with no luck. Heidi __ Do You Yahoo!? Get email at your own domain with Yahoo! Mail. http://personal.mail.yahoo.com/ _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Load Balancing Across Multiple PIX
That is a rediculously overpriced solution to the problem at hand! - Original Message - From: Wayne Therese Lawson [EMAIL PROTECTED] Newsgroups: groupstudy.cisco To: [EMAIL PROTECTED] Sent: Thursday, March 08, 2001 11:51 AM Subject: Re: Load Balancing Across Multiple PIX If you're looking for optimal load balancing across firewalls look at the CSS product line (Cisco of course). You're going to want to take advantage of the multiple "sticky session" options and the performance advantage over the LD. - Wayne, CCIE # 5244, CCNA, CCDA, Nortel NCSE, MCSE, CNE, CNX Ethernet ""Howard C. Berkowitz"" [EMAIL PROTECTED] wrote in message news:p05001933b6cc23d60d2f@[63.216.127.100]... You may need a combination of devices to get optimal load balancing, and the solution may very well depend on the protocols involved. One of the problems in our industry is to try to get a single box, with a single processor, to do everything well. It may be appropriate to treat the PIXen (informal plural I just invented, after the plural of DEC VAX being VAXen) as a cluster (boy, am I sounding VAX-ish). The actual load balancing would be done on Local Directors (or similar TCP session level load distributors) between the PIXen and the routers, potentially both on the inside and outside. If your management demands that everything be done on the PIX, you might quote Samuel Johnson to them: "the important thing about a dog walking on his hind legs is not how well he does it, but that he does it at all." They won't load balance natively. The problem with getting a load balancer before the PIX is that you either have it on the inside balancing outbound traffic or outside balancing inbound traffic. The PIX needs a static route for traffic going the other direction and you can't have multiple default routes on a PIX. The interface without the load balancer would have to have some kind of rigged BGP or something like that to distribute coming to the pixes or you'll have routing issues. Remember that the finest granularity of which BGP is aware is a subnet, ignoring global prefix length issues. As soon as you start to deal with things on a server level, you are talking about things that operate at Layer 4 or 7, and that standard routing doesn't understand (ignoring the ill-defined term content routing, which simply injects layer 7 information into the routing system). I could be wrong...just my first thougth on the situationwithout COFFEE. I don't think there's any easy way to do this... - Original Message - From: "Rossetti, Stan" [EMAIL PROTECTED] To: [EMAIL PROTECTED] Sent: Wednesday, March 07, 2001 10:01 AM Subject: Load Balancing Across Multiple PIX Hello Everyone, Does anybody know if it is possible to load balance across multiple PIX firewalls? I have looked at numerous Cisco web pages, but never any mention of load balancing. I have talked to a sales engineer and he has said that to get 1GB of throughput from a PIX firewall, you need to install 3 PIX firewalls and do load balancing across them. The max throughput from one PIX is 370MBps. Of course, I can't get the sales engineer to return my call now. Doe anyone know if this is true? Do you have to have 3 PIX to do load balancing? I would like to just do load balancing across 2 PIX firewalls. Is this possible? Thanks in advance. Thanks Stan Rossetti NASA - PriSMS Advanced Technology Group Voice: (256) 544-5031 Email: [EMAIL PROTECTED] Beeper: 544-1183 pin 0112 CCDA, CCNA, CCSE _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: IS-IS on Lab Exam
Alas CLNS and IS-IS are not one and the same. Thus you may well find IS-IS on your lab! - Original Message - From: Trentj [EMAIL PROTECTED] Newsgroups: groupstudy.cisco To: [EMAIL PROTECTED] Sent: Monday, March 05, 2001 7:48 PM Subject: IS-IS on Lab Exam All, Since ISO CLNS has been removed from the lab exam does this include Integrated IS-IS in an IP environment? _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: EBGP multihop question
There would not be an IGP running between F and D or F and E. F only has a neighbor statement to D to allow it to establish a peering relationship with it. The neighbor 192.168.12.1 ebgp-multihop statement in F's BGP routing process allows this to work. There would not be a 192.168.12.0 network in F's routing table unless D has the statement 'network 192.168.12.0' in its own BGP routing process allowing it to advertise that network to other As'. - Original Message - From: Bradley J. Wilson [EMAIL PROTECTED] To: cisco [EMAIL PROTECTED]; Chris Williams [EMAIL PROTECTED]; Neil Schneider [EMAIL PROTECTED]; [EMAIL PROTECTED]; Jim Coyne [EMAIL PROTECTED]; Victor Alba [EMAIL PROTECTED]; Jeff Assarian [EMAIL PROTECTED]; Phil Heller [EMAIL PROTECTED] Sent: Sunday, February 25, 2001 10:40 AM Subject: EBGP multihop question Take a look at Halabi (First Edition) p. 300, and riddle me this regarding Figure 10-1: How does network 192.68.12.0 get into RTF's routing table? The EBGP session needs to be established before RTF can accept any routes from RTD. But how can the session be established before RTF knows how to route packets to RTD? The only thing I can think of would be a static route. There really is no feasible way to run an IGP between RTF and that network. However, Halabi doesn't include a static route in his configuration. (And if someone wants to post which page this is in the Second Edition, please do. I'm thinking about buying it, but I'm too cheap at this point. ;-) BJ _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: EBGP multihop question
I see what your saying now. All three routers (F,D,E) are running OSPF on the 192.168.0.0 network! This is a poor scenario because that would never happen in the real world. - Original Message - From: Bradley J. Wilson [EMAIL PROTECTED] To: cisco [EMAIL PROTECTED] Sent: Sunday, February 25, 2001 12:05 PM Subject: Re: EBGP multihop question I agree with everything you say. But it doesn't answer my question. ;-) Think in terms of basic routing: how does RTF ping RTD? There's no entry in its routing table for 192.68.12.0. As you say, there wouldn't be an IGP running between RTF and RTD. No way to ping between them, therefore no BGP relationship will be established, even though there's a neighbor statement in both routers' configurations. Therefore, a static route would have to be in RTF and RTD's config, right? - Original Message - From: Groupstudy To: [EMAIL PROTECTED] Sent: Sunday, February 25, 2001 2:55 PM Subject: Re: EBGP multihop question There would not be an IGP running between F and D or F and E. F only has a neighbor statement to D to allow it to establish a peering relationship with it. The neighbor 192.168.12.1 ebgp-multihop statement in F's BGP routing process allows this to work. There would not be a 192.168.12.0 network in F's routing table unless D has the statement 'network 192.168.12.0' in its own BGP routing process allowing it to advertise that network to other As'. - Original Message - From: Bradley J. Wilson [EMAIL PROTECTED] To: cisco [EMAIL PROTECTED]; Chris Williams [EMAIL PROTECTED]; Neil Schneider [EMAIL PROTECTED]; [EMAIL PROTECTED]; Jim Coyne [EMAIL PROTECTED]; Victor Alba [EMAIL PROTECTED]; Jeff Assarian [EMAIL PROTECTED]; Phil Heller [EMAIL PROTECTED] Sent: Sunday, February 25, 2001 10:40 AM Subject: EBGP multihop question Take a look at Halabi (First Edition) p. 300, and riddle me this regarding Figure 10-1: How does network 192.68.12.0 get into RTF's routing table? The EBGP session needs to be established before RTF can accept any routes from RTD. But how can the session be established before RTF knows how to route packets to RTD? The only thing I can think of would be a static route. There really is no feasible way to run an IGP between RTF and that network. However, Halabi doesn't include a static route in his configuration. (And if someone wants to post which page this is in the Second Edition, please do. I'm thinking about buying it, but I'm too cheap at this point. ;-) BJ _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: 4 Ethernet Int
I don't believe Cisco makes a 4 port FE module for either the 2600 or 3600 series routers. The 3640 could support 4 * 1 port FE modules. - Original Message - From: Jason Baker [EMAIL PROTECTED] To: 'Michael Snyder' [EMAIL PROTECTED]; [EMAIL PROTECTED] Sent: Wednesday, February 21, 2001 10:54 PM Subject: RE: 4 Ethernet Int nope FE modules are not supported by the 2600 range... go ahead try it. It is to do with the architecture of the router. Regards, Jason Baker Network Engineer MCSE, CCNA -Original Message- From: Michael Snyder [mailto:[EMAIL PROTECTED]] Sent: Thursday, February 22, 2001 11:45 AM To: [EMAIL PROTECTED] Subject: Re: 4 Ethernet Int How about a 2621 with two FE WIC's? ""Avila, James"" [EMAIL PROTECTED] wrote in message 32CC5B62AF0BD2119E4C00A0C9663E224378C7@MAIL">news:32CC5B62AF0BD2119E4C00A0C9663E224378C7@MAIL... New to the cisco world. Does anyone know what the smallest Cisco router I can place 4 routable fast ethernet interfaces might be? TIA _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Routing loops with ibgp and ospf running Backbones
Use distribute lists on each router to restrict the networks they advertise. Jeff Doyles book and CCO have some good examples to help you understand. - Original Message - From: A Mateen [EMAIL PROTECTED] To: [EMAIL PROTECTED] Cc: [EMAIL PROTECTED] Sent: Thursday, February 22, 2001 12:01 AM Subject: Routing loops with ibgp and ospf running Backbones Hi ! I have the following network setup running ospf, ibgp within the Domain and ebgp beween AS. GW: Gateway router BB: Backbone Router Note: BB and GW router is connected directly (cross-connect) and the Area0 is extended from BB to GW router. Pre-requisite: LAN on Area 11 shud able to access both the routers for redundancy. Implementation : Implemented HSRP between BB and GW and extended the Area 0 using cross ethernet back to back cable between BB and GW. Route-reflectors are confgured on IBGP routers and EBGP on GW routers. Both the GW routers are connected to the same ISP. Preoblem : sometimes I am getting routing loop between BB and GW routers when trying from Area 11 LAN( default Gateway for all the machines is GW). Action taken: Checked the ip route and gound that the defualt gateway on GW is pointing to Internet interface and for BB it is pointing to GW. The looping occured between the back to back connected interface. Can any body suggests the way to troubleshoot the problem _ Chat with your friends as soon as they come online. Get Rediff Bol at http://bol.rediff.com _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Good book on Catalyst Switches
Cisco Press: 'Cisco LAN switching' by Kennedy Clark is heads above everything else. It is a little dated now though so it doesn't cover the newest technologies. - Original Message - From: Jon Krabbenschmidt [EMAIL PROTECTED] To: [EMAIL PROTECTED] Sent: Thursday, February 22, 2001 7:43 AM Subject: Good book on Catalyst Switches Hi All! I am looking for your recommendations on a(some) good book(s) on Catalyst switches. I have several 4000 and 5000 switches and want to get to know them better, in addition to preparing for exams. All input greatly appreciated. Jon _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Equal cost switching
Spanning Tree's job is to eliminate multiple paths to a single destination. If it finds more than one path it will put one of them into blocking mode to ensure a loop free path. Remember, Spanning Tree runs at layer two and has no concept bandwidth. If you need to setup equal cost paths to a certain destination, you will need to do it at layers above layer two. Pick up a copy of Radia Perlmans 'Interconnections' second edition. Radia is the primary authority on the Spanning Tree algorithm, she will enlighten you. This is also good solid study for deeper networking knowledge. - Original Message - From: AndyD [EMAIL PROTECTED] Newsgroups: groupstudy.cisco To: [EMAIL PROTECTED] Sent: Sunday, February 18, 2001 8:58 AM Subject: Equal cost switching Spanning tree is supposed to choose the one best switched path. But if you set up two equal cost paths, will it use both? Is there a way to force it to use the bandwidth from both paths? Thanks! _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Equal cost switching
Give me an example of a network where layer two has no broadcasts please... - Original Message - From: Jack Yu [EMAIL PROTECTED] Newsgroups: groupstudy.cisco To: [EMAIL PROTECTED] Sent: Sunday, February 18, 2001 1:58 PM Subject: Re: Equal cost switching Actually, the main reason to eliminate multiple paths is because of broadcast at layer 2. Lay 2 devices have to this forward broadcast, and multiple paths to a single destination will cause broadcast storm. Layer 3 devices do not have this problem only because they do not forward broadcast, they either read it or drop it. So if there is a network with no layer 2 broadcast, you do not need spanning tree at all. Of course, you can also disable it when you are sure there is no duplicated path exists. Regards, Jack ""Groupstudy"" [EMAIL PROTECTED] wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... Spanning Tree's job is to eliminate multiple paths to a single destination. If it finds more than one path it will put one of them into blocking mode to ensure a loop free path. Remember, Spanning Tree runs at layer two and has no concept bandwidth. If you need to setup equal cost paths to a certain destination, you will need to do it at layers above layer two. Pick up a copy of Radia Perlmans 'Interconnections' second edition. Radia is the primary authority on the Spanning Tree algorithm, she will enlighten you. This is also good solid study for deeper networking knowledge. - Original Message - From: AndyD [EMAIL PROTECTED] Newsgroups: groupstudy.cisco To: [EMAIL PROTECTED] Sent: Sunday, February 18, 2001 8:58 AM Subject: Equal cost switching Spanning tree is supposed to choose the one best switched path. But if you set up two equal cost paths, will it use both? Is there a way to force it to use the bandwidth from both paths? Thanks! _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: PIX and NAT with VPN
The PIX does not route. Period. - Original Message - From: Kenneth [EMAIL PROTECTED] Newsgroups: groupstudy.cisco To: [EMAIL PROTECTED] Sent: Thursday, February 15, 2001 6:35 PM Subject: Re: PIX and NAT with VPN I'm totally foreign to PIX but I'm just wondering, maybe it's possible to use policy-based routing on PIX? "Rick Holden" [EMAIL PROTECTED] wrote in message 002001c097b6$60c466a0$[EMAIL PROTECTED]">news:002001c097b6$60c466a0$[EMAIL PROTECTED]... I have a PIX firewall that is being used for a VPN as well. The problem is all the inside addresses are being translated to public addresses even when the traffic is destine for the VPN tunnel. I tried the following commands but this seems to block all translations. (real IPs have been replaced for security) access-list nonat permit ip 192.168.2.0 255.255.255.0 192.168.1.0 255.255.255.0 nat (inside) 0 access-list nonat global (outside) 1 172.16.10.1 net 255.255.255.255 I also tried using DENY in the access list access-list nonat deny ip 192.168.2.0 255.255.255.0 192.168.1.0 255.255.255.0 This didn't work either. How can I can the traffic destined for the Internet to be translated and the traffic destined for the VPN not be translated? _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Lad scheduling question
Hi So what you are saying is that when I schedule the lab I am not just given the next available, but have the option to schedule any free date? Sorry I just want to be prefectly clear as to the options. John Hardman CCNP MCSE+I "Nathan" [EMAIL PROTECTED] wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... You can schedule the date up to one year after the written exam. www.cisco.com John Hardman wrote: Hi All With a little more study I will pass the written this month, and I am starting to wonder more about the process of scheduling the lab. I plan to use the SJ lab... So here is the question. Can I schedule the lab for a specific date? Yes I know there is a back log till August or later, but I more interested in a longer date, I am thinking 10 or 11 months after the written. I have quite a few big projects coming up at work, and it will be hard to keep my "study" mind set and energy, so the extended time will benefit me. TIA -- John Hardman CCNP MCSE+I _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Subnet questions
It did not say you had to summarize into one route. Answer C means you would need two routes, but it is better than advertising networks which do not originate from your domain... - Original Message - From: Priscilla Oppenheimer [EMAIL PROTECTED] To: [EMAIL PROTECTED] Sent: Sunday, February 04, 2001 3:26 PM Subject: Re: Subnet questions Ok, I looked into the resources that you've referred to, and put a little more thought into this question. Make sure the resources cover supernetting and not just subnetting. The goal of supernetting is to group routes together so that a router reduces the number of routes it tells other routers about. That's very different from subnetting where the goal is to subdivide the network number assigned to you by your ISP or ARIN. So, we're given the networks, 192.168.9.0 (192.168. 1001. ) 192.168.10.0 (192.168. 1010. ) 192.168.11.0 (192.168. 1011. ) and 192.168.12.0 (192.168. 1100. ). The question was, "When using classless supernetting, which route best summarizes the following networks?" So we're looking for one route that will let us tell other routers about our four networks. The possible answers were: A)192.168.0.9 / 20 obviously wrong because of the .9 at the end B)192.168.0.0 / 16 this could work, but it's less specific than answer D C)192.168.9.0 / 22 this doesn't work because it leaves out 192.168.12.0, plus it would be stupid to use .9 when the one bit isn't even referred to with a /22. The one bit is in the node ID (suffix) part of the addresses. D)192.168.8.0 / 21 this works Keeping in mind that the question asks for the "best" summarization... since 192.168.8.0/21 would include additional networks not mentioned in the problem (i.e. 192.168.13.0, 192.168.14.0, etc.), I can see how this might not be the best answer. With a /21, the one bit and two bit don't matter so 13 and 14 don't matter. Those bits are in the node part when we use /21. 192.168.9.0/22, on the other hand, is the "best" summarization for the first three networks. The last network has no other networks to be summarized with, therefore can be left out of the summarization. The goal is to group all four networks. Leaving out one would cause you not to meet that goal. I think D is the right answer. Priscilla Is this the right reasoning for the correct answer being C? Regards, Han-Song Kim Network Engineer, CCNP/ MCSE/ MCDBA Planetary Networks (W)408.745.3065 (C)408.910.7907 [EMAIL PROTECTED] Priscilla Oppenheimer http://www.priscilla.com _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: commands, please help
Follies are for Friday's please... You gotta be kidding right? - Original Message - From: yohanus [EMAIL PROTECTED] Newsgroups: groupstudy.cisco To: [EMAIL PROTECTED] Sent: Sunday, February 04, 2001 10:55 PM Subject: commands, please help ---Sorry for asking this question, if it's been asked before--- Anyone know of a good site that publicizes Cisco commands? If so, please help. Thanks to all replies. _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Merging two companies
http://www.cisco.com/warp/public/556/3.html - Original Message - From: Rodney Jackson [EMAIL PROTECTED] Newsgroups: groupstudy.cisco To: [EMAIL PROTECTED] Sent: Monday, February 05, 2001 6:35 PM Subject: Merging two companies Guys, We are merging with another company and plan to connect the two networks via DS3 but in the short term VPN. The problem is we both use the same private IP ranges. Is there anyone out there that has gone through this before and would you provide tips or information where I can get a white paper. _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Subnet questions
You are exactly right. Well done. - Original Message - From: Han-Song Kim [EMAIL PROTECTED] To: 'Groupstudy' [EMAIL PROTECTED] Sent: Sunday, February 04, 2001 1:38 AM Subject: RE: Subnet questions Ok, I looked into the resources that you've referred to, and put a little more thought into this question. I think I can see why the answer could be C on this problem, which makes this question a little tricky. If you could bare with me, let me just go through my logic and you can just tell me if I'm on the right track or not. So, we're given the networks, 192.168.9.0 (192.168. 1001. ) 192.168.10.0 (192.168. 1010. ) 192.168.11.0 (192.168. 1011. ) and 192.168.12.0 (192.168. 1100. ). Keeping in mind that the question asks for the "best" summarization... since 192.168.8.0/21 would include additional networks not mentioned in the problem (i.e. 192.168.13.0, 192.168.14.0, etc.), I can see how this might not be the best answer. 192.168.9.0/22, on the other hand, is the "best" summarization for the first three networks. The last network has no other networks to be summarized with, therefore can be left out of the summarization. Is this the right reasoning for the correct answer being C? Regards, Han-Song Kim Network Engineer, CCNP/ MCSE/ MCDBA Planetary Networks (W)408.745.3065 (C)408.910.7907 [EMAIL PROTECTED] -Original Message----- From: Groupstudy [mailto:[EMAIL PROTECTED]] Sent: Saturday, February 03, 2001 11:51 PM To: [EMAIL PROTECTED] Subject: Re: Subnet questions I don't want to explain, it will take me too long. There have been a number of threads regarding subnet addressing lately and they had some good examples to examine. Search the archives. Be patient, learning to subnet and summarize off the top of your head requires some time and practice. The best way to learn is to just sit down and play with binary. Take a look at the following URL's for complete discussions on this topic. I think you will get what you need from them: http://www.cisco.com/univercd/cc/td/doc/cisintwk/idg4/nd20a.htm http://www.3com.com/nsc/501302.html - Original Message - From: Han-Song Kim [EMAIL PROTECTED] To: 'Groupstudy' [EMAIL PROTECTED] Sent: Saturday, February 03, 2001 8:10 PM Subject: RE: Subnet questions Sorry about the previous response. I thought you're responding back to my earlier e-mail. Still, why is the answer to Q3 C, not D? -Original Message- From: Groupstudy [mailto:[EMAIL PROTECTED]] Sent: Saturday, February 03, 2001 7:31 PM To: [EMAIL PROTECTED] Subject: Re: Subnet questions B is the correct answer. - Original Message - From: Andy [EMAIL PROTECTED] To: Hunt Lee [EMAIL PROTECTED] Cc: [EMAIL PROTECTED] Sent: Saturday, February 03, 2001 9:40 AM Subject: Re: Subnet questions On Sun, 4 Feb 2001, Hunt Lee wrote: I have three subnet / route summarization questions but I don't understand the answer, any help would be greatly appreciated. Q1) Choose the appropriate classless network address and broadcast address for the IP address 10.6.38.50 with a subnet mask of 255.255.240.0 A) 10.6.38.49 and 10.6.38.62 B) 10.6.32.0 and 10.6.47.255 C) 10.6.38.0 and 10.6.38.255 D) 10.0.0.0 and 10.255.255.255 Answer is B. No its not. The answer is 10.6.38.48 and 10.6.38.63. It probably meant to say classful. Q2) Given a classless route summarization of 72.8.0.0 /13. Which IP address fall into this scope? A) 72.15.36.8 B) 72.13.1.1 C) 72.8.20.10 D) 72.7.200.100 E) 72.16.7.4 F) 72.40.1.8 Answer is A, B C - why isn't E the ansewr as well? The range of 72.8.0.0/13 is 72.8.0.0 - 72.15.255.255. Its 8 Class B's. Q3) When using classless supernetting, which route best summarizes the following networks? 192.168.9.0 192.168.10.0 192.168.11.0 192.168.12.0 A) 192.168.0.9 / 20 B) 192.168.0.0 / 16 C) 192.168.9.0 / 22 D) 192.168.8.0 / 21 I thought D is the answer, but the answer is C. A /22 is 4 Class C's, a /21 is 8. I recommand finding or making (to actually learn it) a subnet table and just keeping referencing it until you don't need to anymore. andy _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report miscondu
Re: Subnet questions
My pleasure. Now that you have a handle on the subnetting business, take a look at this thread and see if you can tell this guy what is wrong with his setup, and why he cannot ping the 10.1.1.1 address. Thread: Frame relay ppoint vs. multi: What's difference? Why can you not ping my own multipoint interface but if it is a point to point is does work? See below interface Serial1 no ip address encapsulation frame-relay ! interface Serial1.1 multipoint ip address 10.1.1.1 255.255.255.252 frame-relay interface-dlci 110 ! router igrp 10 network 10.0.0.0 1 commserver#ping 10.1.1.1 Type escape sequence to abort. Sending 5, 100-byte ICMP Echos to 10.1.1.1, timeout is 2 seconds: . Success rate is 0 percent (0/5) = -- interface Serial0 no ip address encapsulation frame-relay no fair-queue ! interface Serial0.1 point-to-point ip address 10.1.1.1 255.255.255.252 frame-relay interface-dlci 110 =20 ! interface Serial1 no ip address encapsulation frame-relay shutdown ! router igrp 10 network 10.0.0.0 ! =20 commserver#ping 10.1.1.1 =20 Type escape sequence to abort. Sending 5, 100-byte ICMP Echos to 10.1.1.1, timeout is 2 seconds: ! Success rate is 100 percent (5/5), round-trip min/avg/max =3D = 112/116/128 ms - Original Message - From: Han-Song Kim [EMAIL PROTECTED] To: 'Groupstudy' [EMAIL PROTECTED] Sent: Sunday, February 04, 2001 2:25 AM Subject: RE: Subnet questions Thank you bunch for helping me realize my mistakes!! :) regards, Han-Song -Original Message- From: Groupstudy [mailto:[EMAIL PROTECTED]] Sent: Sunday, February 04, 2001 1:48 AM To: [EMAIL PROTECTED] Subject: Re: Subnet questions You are exactly right. Well done. - Original Message - From: Han-Song Kim [EMAIL PROTECTED] To: 'Groupstudy' [EMAIL PROTECTED] Sent: Sunday, February 04, 2001 1:38 AM Subject: RE: Subnet questions Ok, I looked into the resources that you've referred to, and put a little more thought into this question. I think I can see why the answer could be C on this problem, which makes this question a little tricky. If you could bare with me, let me just go through my logic and you can just tell me if I'm on the right track or not. So, we're given the networks, 192.168.9.0 (192.168. 1001. ) 192.168.10.0 (192.168. 1010. ) 192.168.11.0 (192.168. 1011. ) and 192.168.12.0 (192.168. 1100. ). Keeping in mind that the question asks for the "best" summarization... since 192.168.8.0/21 would include additional networks not mentioned in the problem (i.e. 192.168.13.0, 192.168.14.0, etc.), I can see how this might not be the best answer. 192.168.9.0/22, on the other hand, is the "best" summarization for the first three networks. The last network has no other networks to be summarized with, therefore can be left out of the summarization. Is this the right reasoning for the correct answer being C? Regards, Han-Song Kim Network Engineer, CCNP/ MCSE/ MCDBA Planetary Networks (W)408.745.3065 (C)408.910.7907 [EMAIL PROTECTED] -Original Message- From: Groupstudy [mailto:[EMAIL PROTECTED]] Sent: Saturday, February 03, 2001 11:51 PM To: [EMAIL PROTECTED] Subject: Re: Subnet questions I don't want to explain, it will take me too long. There have been a number of threads regarding subnet addressing lately and they had some good examples to examine. Search the archives. Be patient, learning to subnet and summarize off the top of your head requires some time and practice. The best way to learn is to just sit down and play with binary. Take a look at the following URL's for complete discussions on this topic. I think you will get what you need from them: http://www.cisco.com/univercd/cc/td/doc/cisintwk/idg4/nd20a.htm http://www.3com.com/nsc/501302.html - Original Message - From: Han-Song Kim [EMAIL PROTECTED] To: 'Groupstudy' [EMAIL PROTECTED] Sent: Saturday, February 03, 2001 8:10 PM Subject: RE: Subnet questions Sorry about the previous response. I thought you're responding back to my earlier e-mail. Still, why is the answer to Q3 C, not D? -Original Message- From: Groupstudy [mailto:[EMAIL PROTECTED]] Sent: Saturday, February 03, 2001 7:31 PM To: [EMAIL PROTECTED] Subject: Re: Subnet questions B is the correct answer. - Original Message - From: Andy [EMAIL PROTECTED] To: Hunt Lee [EMAIL PROTECTED] Cc: [EMAIL PROTECTED] Sent: Saturday, February 03, 2001 9:40 AM Subject: Re: Subnet questions On Sun, 4 Feb 2001, Hunt Lee wrote: I have three subnet / route summarization questions but I don't understand the answer, any help would be greatly appre
Re: Help me Urgent all CCIES please !!!!!!!!!!!!!!!
Dude, the answers to all your questions are not hard to find. Break out your UniverCD and get searching. If you start now you will have all your answers in a couple of hours. - Original Message - From: Ravi N Varma [EMAIL PROTECTED] To: [EMAIL PROTECTED] Sent: Saturday, February 03, 2001 9:52 AM Subject: Help me Urgent all CCIES please !!! Hi there , I am having trouble getting answers for these questions could you please help me planing to take exam day after please help me out 1.ip datagram contain which of the following a,arp packet b,bits icmp messages udp,tcp data 2. difference between tacas tacas+ 3.in dlsw environment when all route explorer sent between dlsw peers how it will be sent a directed broadcast b explorer frame etc 4 in x.25 environment if frame error occurs which one will reset connection There is diagram two routers separated by serial link both ends one host at each end A, Router or Host 5 same as above but protocol is HDLC in this situation what will happen 6 what is result of sending a loop up signal to csu/dsu? 7 what lane resolution protocol do all nw protocols address to nsap ip address to nsap etc 8 nlsp is-is link sate or distance vector 9 when bridge receive a frame how it will be forwarded to all ports or except disabled ports it will forward to all ports 10 when tacas does not contain user account what it wiil do 11 frames are unable to transmit from router though serial link what happen output error connection reset etc 12 characteristics of 4B/5B encoding in fddi 13 what is meant by tcp slow start 14 tacas+ has what advantages over tacas? waitning for your reply Regards, sun _ Chat with your friends as soon as they come online. Get Rediff Bol at http://bol.rediff.com _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Subnet questions
B is the correct answer. - Original Message - From: Andy [EMAIL PROTECTED] To: Hunt Lee [EMAIL PROTECTED] Cc: [EMAIL PROTECTED] Sent: Saturday, February 03, 2001 9:40 AM Subject: Re: Subnet questions On Sun, 4 Feb 2001, Hunt Lee wrote: I have three subnet / route summarization questions but I don't understand the answer, any help would be greatly appreciated. Q1) Choose the appropriate classless network address and broadcast address for the IP address 10.6.38.50 with a subnet mask of 255.255.240.0 A) 10.6.38.49 and 10.6.38.62 B) 10.6.32.0 and 10.6.47.255 C) 10.6.38.0 and 10.6.38.255 D) 10.0.0.0 and 10.255.255.255 Answer is B. No its not. The answer is 10.6.38.48 and 10.6.38.63. It probably meant to say classful. Q2) Given a classless route summarization of 72.8.0.0 /13. Which IP address fall into this scope? A) 72.15.36.8 B) 72.13.1.1 C) 72.8.20.10 D) 72.7.200.100 E) 72.16.7.4 F) 72.40.1.8 Answer is A, B C - why isn't E the ansewr as well? The range of 72.8.0.0/13 is 72.8.0.0 - 72.15.255.255. Its 8 Class B's. Q3) When using classless supernetting, which route best summarizes the following networks? 192.168.9.0 192.168.10.0 192.168.11.0 192.168.12.0 A) 192.168.0.9 / 20 B) 192.168.0.0 / 16 C) 192.168.9.0 / 22 D) 192.168.8.0 / 21 I thought D is the answer, but the answer is C. A /22 is 4 Class C's, a /21 is 8. I recommand finding or making (to actually learn it) a subnet table and just keeping referencing it until you don't need to anymore. andy _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Subnet questions
I don't want to explain, it will take me too long. There have been a number of threads regarding subnet addressing lately and they had some good examples to examine. Search the archives. Be patient, learning to subnet and summarize off the top of your head requires some time and practice. The best way to learn is to just sit down and play with binary. Take a look at the following URL's for complete discussions on this topic. I think you will get what you need from them: http://www.cisco.com/univercd/cc/td/doc/cisintwk/idg4/nd20a.htm http://www.3com.com/nsc/501302.html - Original Message - From: Han-Song Kim [EMAIL PROTECTED] To: 'Groupstudy' [EMAIL PROTECTED] Sent: Saturday, February 03, 2001 8:10 PM Subject: RE: Subnet questions Sorry about the previous response. I thought you're responding back to my earlier e-mail. Still, why is the answer to Q3 C, not D? -Original Message- From: Groupstudy [mailto:[EMAIL PROTECTED]] Sent: Saturday, February 03, 2001 7:31 PM To: [EMAIL PROTECTED] Subject: Re: Subnet questions B is the correct answer. - Original Message - From: Andy [EMAIL PROTECTED] To: Hunt Lee [EMAIL PROTECTED] Cc: [EMAIL PROTECTED] Sent: Saturday, February 03, 2001 9:40 AM Subject: Re: Subnet questions On Sun, 4 Feb 2001, Hunt Lee wrote: I have three subnet / route summarization questions but I don't understand the answer, any help would be greatly appreciated. Q1) Choose the appropriate classless network address and broadcast address for the IP address 10.6.38.50 with a subnet mask of 255.255.240.0 A) 10.6.38.49 and 10.6.38.62 B) 10.6.32.0 and 10.6.47.255 C) 10.6.38.0 and 10.6.38.255 D) 10.0.0.0 and 10.255.255.255 Answer is B. No its not. The answer is 10.6.38.48 and 10.6.38.63. It probably meant to say classful. Q2) Given a classless route summarization of 72.8.0.0 /13. Which IP address fall into this scope? A) 72.15.36.8 B) 72.13.1.1 C) 72.8.20.10 D) 72.7.200.100 E) 72.16.7.4 F) 72.40.1.8 Answer is A, B C - why isn't E the ansewr as well? The range of 72.8.0.0/13 is 72.8.0.0 - 72.15.255.255. Its 8 Class B's. Q3) When using classless supernetting, which route best summarizes the following networks? 192.168.9.0 192.168.10.0 192.168.11.0 192.168.12.0 A) 192.168.0.9 / 20 B) 192.168.0.0 / 16 C) 192.168.9.0 / 22 D) 192.168.8.0 / 21 I thought D is the answer, but the answer is C. A /22 is 4 Class C's, a /21 is 8. I recommand finding or making (to actually learn it) a subnet table and just keeping referencing it until you don't need to anymore. andy _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: VLAN routing on 2600
The 2620 and 2621 have fast ethernet ports and support trunking with IP Plus IOS. - Original Message - From: Kevin Wigle [EMAIL PROTECTED] To: Daniel Cotts [EMAIL PROTECTED]; 'kz' [EMAIL PROTECTED]; [EMAIL PROTECTED] Sent: Saturday, February 03, 2001 8:13 PM Subject: Re: VLAN routing on 2600 except 2600's don't do the fe thing.. - Original Message - From: "Daniel Cotts" [EMAIL PROTECTED] To: "'kz'" [EMAIL PROTECTED]; [EMAIL PROTECTED] Sent: Friday, 02 February, 2001 10:26 Subject: RE: VLAN routing on 2600 Those with 100Mbs ports. -Original Message- From: kz [mailto:[EMAIL PROTECTED]] Sent: Friday, February 02, 2001 4:33 AM To: [EMAIL PROTECTED] Subject: VLAN routing on 2600 Hi Is it possible to perform VLAN routing on 2600 routers? thanx kz _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: DLSW+ question
IRB is used to perform a limited form of Ethernet to Token Ring routing/bridging. It was somewhat useful prior to Ciscos implementation of Source-Route Translational bridging which has a much richer feature set and capability. DLSW performs Ethernet to Token-Ring translation automatically and although possible, it is very unlikely you would need to have both IRB and DLSW configured on the same router. Anyway, to answer the original post, your configs look OK but we really need more info to troubleshoot. My immediate thoughts is whether DLSW can operate over PPP encapsulation. I would try HDLC and see if that helps. If you have an access list on either serial port, make sure it opens up the correct tcp ports to allow DLSW to traverse the wire. The easiest way is just to temporarily remove the access list and see how you fare. I believe the correct ports are 2065, 1981, 1982 and 1983. Make sure loopback interfaces are also in the same routing domain as your peer statements, looks like they are but... - Original Message - From: Richard Gallagher [EMAIL PROTECTED] To: [EMAIL PROTECTED]; [EMAIL PROTECTED] Cc: [EMAIL PROTECTED] Sent: Tuesday, January 30, 2001 11:55 AM Subject: Re: DLSW+ question You are currently on the ethernet interface, try adding the following command on both routers: bridge irb brigde 1 route ip Rich On Jan 30, 6:48pm, [EMAIL PROTECTED] chatted about: Subject:DLSW+ question I am trying to setup two routers with DLSW+ , when I do with routing ,I can'= t=20 ping each other loopback interfaces for some reason.=20 Hostname DCE_Router dlsw local-peer peer-id 10.1.1.1 dlsw remote-peer 0 tcp 10.1.1.2 dlsw bridge-group 1 Loopback0 =A0 ip address 10.1.1.1 255.255.255.0 interface Ethernet0 ip address 150.1.1.1 255.255.255.0 bridge-group 1 interface Serial0 ip address 10.1.2.1 255.255.255.0 encapsulation ppp clockrate 64000 bridge 1 protocol ieee router eigrp 100 network 10.0.0.0 redistribute connected ___ Hostname DTE_Router dlsw local-peer peer-id 10.1.1.2 dlsw remote-peer 0 tcp 10.1.1.1 dlsw bridge-group 1 Loopback0 =A0 ip address 10.1.1.2 255.255.255.0 interface Ethernet0 ip address 160.1.1.2 255.255.255.0 bridge-group 1 interface Serial0 ip address 10.1.2.2 255.255.255.0 encapsulation ppp bridge 1 protocol ieee router eigrp 100 network 10.0.0.0 redistribute connected _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] -- End of waffle from [EMAIL PROTECTED] -- *** Please copy your emails to [EMAIL PROTECTED] *** #---# #.. ..| Richard Gallagher | Office:+32 2 704 5000 # #|| ||| Euro-CATS | Direct:+32 2 704 5421 # #|| ||| Cisco Systems Belgium | Fax: +32 2 704 6000 # # | Pegasus Park | email: [EMAIL PROTECTED] # #.:||:.:||:.| De Kleetlaan, 6A | # # Cisco Systems | BE 1831 Diegem| http://www.cisco.com/tac # #---# "Normal people believe that if it ain't broke, don't fix it. Engineers believe that if it ain't broke, it doesn't have enough features yet." Check out this link: http://www.cisco.com/warp/customer/63/ _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: IS IS
Certainly is. - Original Message - From: Dave E. [EMAIL PROTECTED] Newsgroups: groupstudy.cisco To: [EMAIL PROTECTED] Sent: Friday, January 26, 2001 3:04 PM Subject: IS IS Is IS-IS on the R/S lab exam? Thanks. _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
What's up with the CCIE lab newsgroup?
_ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Ip addressing question
Yes it is. The 172.16.4.255 ip address would be the 172.16.4.252 subnet broadcast address though. - Original Message - From: Jack [EMAIL PROTECTED] Newsgroups: groupstudy.cisco To: [EMAIL PROTECTED] Sent: Thursday, January 25, 2001 6:41 PM Subject: Re: Ip addressing question Ok, so subnet zero is not usable, I understand that. Is the last subnet usable even though it contains the 255 portion of the address? What subnets to we get from this combo?... First subnet= 172.16.4.4 Second subnet= 172.16.4.8 Third subnet= 172.16.4.12 ... Last subnet= 172.16.4.252 _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Certifications on resumes
CCNA is a prerequisite to the CCNP, therefore it is implied to those that know. My personal opinion is that anyone who needs to append all of their cert letters to their name is either trying too hard to impress someone or, very in-confident in their abilities. You can have CCNA, CCNP, MCSE, CNE, Net+, blah blah blah on the end of your name, but as soon as you open your mouth, your credibility will be known to anyone around you that has any idea themselves. If you want to be 'the man', know your sh**, period. Save the letters for your resume. CCIE still rings a pretty sound though! - Original Message - From: Robert Padjen [EMAIL PROTECTED] To: [EMAIL PROTECTED] Sent: Friday, January 26, 2001 12:27 AM Subject: Certifications on resumes I was asked an interesting question this morning by a friend who just passed their CCNP. Basically they wanted to know if they should now remove the CCNA from their resume or list both CCNA and CCNP. I took the position that (as I do) the CCNP implies the CCNA, and therefore one would only list their 'highest' within a track. A number of co-workers said no, list it all. Please chime in with your position - unicast if your just sending a vote and multicast if you are raising a discussion. Sorry to those who feel this is an improper use of the board. Thanks. = Robert Padjen __ Do You Yahoo!? Yahoo! Auctions - Buy the things you want at great prices. http://auctions.yahoo.com/ _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Token Ring Loopback
If you dont need it plugged into anything, why not just create a virtual token ring interface? - Original Message - From: Patrick Murphy [EMAIL PROTECTED] To: 'Cisco [EMAIL PROTECTED] Sent: Tuesday, January 16, 2001 9:15 PM Subject: Token Ring Loopback Any way to fake a Token Ring Interface into thinking it's up when it's = not plugged into anything? _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Challenging !
According to the first paragraph it should set the priority back to 0. - Original Message - From: Pierre-Alex GUANEL [EMAIL PROTECTED] To: [EMAIL PROTECTED] Sent: Friday, January 12, 2001 10:48 AM Subject: Challenging ! I been it on it since 4am. Still can't figure that one out ... From Cisco: "After the token is claimed and changed to an information frame, only stations with priority higher than the trasmitting station can reserve the token for the next pass around the network. When the next token is generated, it includes the highest priority of the reserving station. Stations that raise a token's priority level must reinstate the previous lower priority level after their transmission is complete" CASE SCENARIO: I have 3 stations: A , B, and C Their resective priorities are 1 , 4, and 5. Station X Y Z have priority 0 Station A grabs the token (the priority at the time was 0) and and put data on it. While it goes around the ring, station B reserves the token for itself. When the token comes back to station A (we assume X was the destination), A creates a new token with priority 4 and no reservation set. QUESTIONS: Question: Is the last statement of my case scenario correct or is it the other way arround? (A creates a new token ring with the previous priority: 0 and set the reservation to 4). DIAGRAM: The ring A---W---BCX- |Z---Y-| _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Disappointed with CCNP --Original poster
Unfortunately, anyone that is not getting hands on experience will quickly forget pretty much everything they learned during their studies -in a matter of weeks. This fact quickly turns CCNP's back into CCNA's! Best of luck to you. - Original Message - From: jeongwoo park [EMAIL PROTECTED] To: Groupstudy [EMAIL PROTECTED] Sent: Wednesday, January 10, 2001 7:55 PM Subject: Disappointed with CCNP --Original poster Hi group members!! I am the original poster of this thread. First of all, I appreciate your encouragements, concerns and even criticizing point. I received more replies than I expected. There were some people who made a point on removing my ccnp cert from my resume. It was not only thoughtful suggestion, but also scary suggestion, because I felt that removing it from my resume was like 7 months of ccnp prep going down the drain all of a sudden. However, I made up my mind not remove it. My intension of listing ccnp on my resume was to show how much interest I have on networking. I believe that there is clear difference between ccna without experience and ccnp without experience. If I were employer, I would hire ccnp without experience because there is obviously difference between these two guys in terms of the amount of technical knowledge and potential performance that he or she might make. As some members mentioned, lots of people consider their careers from IT industry because of money. I agree with them not only I am partly one of them, but also money can be one of strong motivation in advancing their living condition. But money doesn't give me enough motivation as my interest in networking does. I didn't even consider CCNP. I was going to start to look for a job after I got MCSE and CCNA certifications. But I couldn't stop my interest in knowing more on network knowledge. There might be some people who would say, " none of these guys would be hired." Well, the biggest irony that I have is that who is going to start his or her career in IT industry if everyone is looking for only experienced engineer. That is why I am looking for entry level of job. I wouldn't be able to perform in the beginning as much as years of experienced CCNP would do. But I am sure that I could learn things faster than most of entry-level job applicants. If nobody offers me a job, I would go for CCIE without any corporation experience. I would buy network devices, and take ccie lab classes. I wonder if there is anyone who made ccie without any corporation experience. I wish there were. If not, I will be the first one who becomes ccie without experience. I am not talking about home-network or training school network experience. I am talking about the experience that can be obtained as a network engineer. I know it would be harder to become ccie without real world experience, but I believe that lots of members who showed their concern would be with me. When I become CCIE, I will put nothing but CCIE, and see if anyone gives me job offer. I wonder if people who emphasizes on only experience still wouldn't hire me. For the people who are already out there and working for company without any certification, I respect them because they might have had harder time on getting a job than I do. Since I posted my message, I had some job interviews. Well, I will see how it will go. Once again, Thanks you for encouragement and advices. I will definitely let you know if I got hired. jeongwoo __ Do You Yahoo!? Yahoo! Photos - Share your holiday photos online! http://photos.yahoo.com/ _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Disappointed with ccnp!!
CCNP level candidates would be expected to perform to a certain level. Your lack of experience combined with the CCNP is a red flag. It is very unlikely you can perform to the level of most CCNP's. I recommend dropping the CCNP from your resume right now and aim at landing an entry level network position anywhere you can to begin accumulating experience (the most important factor in IT). Shortly after landing your position your could then announce your having reached CCNP. This would benefit you in a few ways, first you will not be given tasks you cannot handle which will permit you to hold your job. Secondly, a CCNA with no experience is not going to get much less salary than a CCNP without any experience. Therefore, after you land your first job and announce your newly aquired CCNP, you will probably get yourself a decent raise which would probably put you at or above where you would have entered with CCNP. Plus you won't have to wait months to find a job. - Original Message - From: park jeongwoo [EMAIL PROTECTED] To: [EMAIL PROTECTED] Sent: Monday, January 08, 2001 7:42 PM Subject: Disappointed with ccnp!! Hi group members. I need your help. I am having a hard time on finding a job. I recently got ccnp certification and looking for the entry level of job for network engineer. I am living in San Francisco, and graduated from college less than a year ago. I have less than a year of network experience that I got from school computer lab. I had a harder time finding a job before I became ccnp. So I studied hard believing that ccnp would get me somewhere at least as a entry level network engineer. Now I am kind of confused and disappointed with the fact that I am still having a hard time finding a job even with ccnp certification. I feel like I need more cisco certifications such as ccda, ccdp. Would these certification ever help me find job? It is really discouraging that cisco certification doesn't help me much find a job at this point, because I am also pursuing ccie too. I have to ask myself what is the point of getting cisco certification. Lots of CCNAs are having a job. Why not ccnp? Could somebody tell me why it goes like this, and what I should do? Am I looking for wrong job? I will appreiciate your input. jeongwoo __ Do You Yahoo!? Yahoo! Photos - Share your holiday photos online! http://photos.yahoo.com/ _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Help wanted from my studymates in Canada
Your Visa has expired. - Original Message - From: kaushal Bhatt [EMAIL PROTECTED] To: [EMAIL PROTECTED] Sent: Monday, January 01, 2001 9:30 PM Subject: Help wanted from my studymates in Canada Dear Friends, Wish u all a very happy new year. This help is bit out of way, so pl. bear with me. I am from India and I recently got my immigration visa for Canada, my = concerns are 1) How is job prospect for CCNA in Canada=20 (I have over 3 and half years of exp. in system and network = administration of NT, Netware, Linux and Unix. I am also maintaining our = company's network) I am ccna and mcp. Also I certified Unix admin. from brainbench. 2)In which area of Canada jobs prospects are more 3) Can u recommend any placement agencies who can assist me in getting a = proper opening. 4)When is the right time to land in Canada(in terms of weather) My visa = is valid upto 6-5-2000 Thanking u all=20 Kaushal _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Router 1700 showing Junk
There are a couple of things this could be: 1: config-register on router (most likely) 2: Hyperterminal settings on PC (probably not if you tried multiple PC's) It is probably the config-register on the router. Search CCO for 1700 password recovery and use the techniques to change your config-register back to its default which is probably 0x2102. Check the settings on your PC terminal emulator. They should be set to 8 bits, no parity, 1 stop bit and 9600 baud. - Original Message - From: Hitesh Pathak [EMAIL PROTECTED] To: [EMAIL PROTECTED] Sent: Monday, January 01, 2001 3:31 AM Subject: Router 1700 showing Junk Dear All, I'm having a problem with my 1700 series router. The problem is whenever I start my router it shows continously junk characters on the console. Nothing seems to be working. i have tried changing diff PC as well as console cable. Also I have checked for terminal settings like Baud rate , stop bits , Flow control etceverything is perfect. I am using windows 98 as a terminal (Hyper Terminal). Can anyone help me on this?can it be a DRAM corruption problem. Router has 8 mb of DRAM. many thanks in advance. Get free email and a permanent address at http://www.netaddress.com/?N=1 _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Swap 2520 for a 2522
I know this is really not the place to this, and apologize in advance. I need a Cisco 2522 (Don't care how much memory it has, as long as it = runs) and would be willing trade 2520 with 16/16 and 12.1 Enterprise/FW = Plus IPSec 56 IOS for one. I will also pay for all shipping costs so it = does not cost you anything to trade. =20 Let me know if interested. Thank You _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Interface backup
Once you make a BRI interface a backup to say a serial interface, does = it lock it down so that it is not useable for any other purposes? eg: interface serial 0 backup load 60 5 backup interface bri 0 Cheers. _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Dialup over modem problem
hostname Dialer interface Loopback0 no ip address interface Async1 no ip address encapsulation ppp async default routing async mode dedicated dialer in-band dialer rotary-group 0 ! interface Dialer0 ip address 192.168.100.10 255.255.255.0 encapsulation ppp dialer in-band dialer map snapshot 1 name Answer xx7063 dialer map ip 192.168.100.11 name Answer broadcast xx7063 dialer-group 1 snapshot server 5 dialer ppp authentication chap ! "Barronton, Ken" [EMAIL PROTECTED] wrote in message news:[EMAIL PROTECTED]. com... Hello all, Trying to connect 2 2500 series router over dialup connection. Router will dial and connect to other router, but I can't ping the other address. I've tried assigning IP's to the Async interfaces, no IP's on loopback, using IP's on both, same subnet, different subnets. Any ideas? Sample configs welcome. URL's welcome. Thanks, Ken Dialer#sho runn Building configuration... Current configuration: ! version 11.2 no service password-encryption no service udp-small-servers no service tcp-small-servers ! hostname Dialer ! enable secret 5 $1$gZVO$26a.DvC.SKFDAD9HlADo/1 enable password ! no ip domain-lookup chat-script rstmdm "" "ATFS0=1B1C1D2H1K1M4R2" OK chat-script dialnum ABORT ERROR ABORT BUSY "" "ATDT\T" TIMEOUT 60 CONNECT ! interface Loopback0 ip address 192.168.100.10 255.255.255.0 ! interface Serial0 no ip address shutdown ! interface Serial1 no ip address shutdown ! interface TokenRing0 no ip address shutdown ! interface BRI0 no ip address shutdown ! interface Async1 no ip address encapsulation ppp async default routing async mode dedicated dialer in-band dialer rotary-group 0 ! interface Dialer0 no ip address encapsulation ppp dialer in-band dialer map snapshot 1 name Answer xx7063 dialer map ip 192.168.100.11 name Answer broadcast xx7063 dialer-group 1 snapshot server 5 dialer ppp authentication chap ! router rip version 2 network 192.168.100.0 no auto-summary ! ip classless dialer-list 1 protocol ip permit ! line con 0 password xx login line aux 0 script dialer dialnum script reset rstnum modem InOut transport input all stopbits 1 rxspeed 38400 txspeed 38400 flowcontrol hardware line vty 0 4 password xx login ! end Answer#sho runn Building configuration... Current configuration: ! version 11.2 no service password-encryption no service udp-small-servers no service tcp-small-servers ! hostname Answer ! enable secret 5 $1$jzAd$DWjQz/2NZm8DHj0roOEMX/ enable password ! username Dialer password 0 xx no ip domain-lookup chat-script rstmdm "" "ATFS0=1B1C1D2H1K1M4R2" OK chat-script dialnum ABORT ERROR ABORT BUSY "" "ATDT\T" TIMEOUT 60 CONNECT ! interface Loopback0 ip address 192.168.100.11 255.255.255.0 ! interface Ethernet0 no ip address no mop enabled ! interface Serial0 no ip address shutdown no fair-queue ! interface Serial1 no ip address shutdown ! interface TokenRing0 no ip address shutdown ! interface Async1 no ip address encapsulation ppp async default routing async mode dedicated dialer in-band dialer rotary-group 0 ! interface Dialer0 ip unnumbered TokenRing0 encapsulation ppp dialer in-band dialer map snapshot 1 name Dialer xx9548 dialer map ip 192.168.100.10 name Dialer broadcast xx9548 dialer-group 1 snapshot client 5 360 dialer ppp authentication chap ! router rip version 2 network 192.168.100.0 no auto-summary ! ip classless dialer-list 1 protocol ip permit ! line con 0 password xx login line aux 0 script dialer dialnum script reset rstmdm modem InOut transport input all stopbits 1 rxspeed 38400 txspeed 38400 flowcontrol hardware line vty 0 4 password xx login ! end **NOTE: New CCNA/CCDA List has been formed. For more information go to http://www.groupstudy.com/list/Associates.html _ UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html FAQ, list archives, and subscription info: http://www.groupstudy.com Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] Have you tried adding the IP address to the dialer interface as below? Hope this Helps Glen hostname Dialer interface Loopback0 no ip address interface Async1 no ip address encapsulation ppp async default routing async mode dedicated dialer in-band dialer rotary-group 0 ! interface Dialer0 ip address 192.168.100.10 255.255.255.0 encapsulation ppp dialer in-band dialer map snapshot 1 name Answer xx7063 dialer map ip 192.168.100.11 name Answer broadcast xx7063 dialer-group 1 snapshot server 5 dialer ppp authentication chap ! ! hostname Answer ! interface Loopback0 no ip address ! interface Async1 no ip address encapsulation ppp async default routing async mode dedicated dialer
Which TCP UDP port need to open for Exchange/ Outlook MAPI4 communication
Does anybody know which ports are used for Outlook to communicate with MS Exchange server? Thanks Ruihai ___ UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html FAQ, list archives, and subscription info: http://www.groupstudy.com Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: no access to router
Hi, i am not using flow control on the laptop and i am sure the lap top is ok ,I can get access to the other 2514 using same cable and same laptop without problem . some people said it is possible to use aux via a null modem cable , can you specify a little bit more in detail?? Thanks neal rauhauser wrote in message [EMAIL PROTECTED]... Sounds like you have flow control enabled on the PC port you're using to connect to the router. groupstudy wrote: too bad , i will throw my 2503 out of window ,kiding..,thanks anyway ElephantChild wrote in message ... On Sat, 29 Jul 2000, groupstudy wrote: I got a cisco 2503 . I can't get access to the console except that i can see the information in the terminal window but can't not type .and unfortunately I lost the telnet password and enable password. Do the same cable and terminal emulator work with other routers? If tey do, check that the cable is properly seated and that there isn't dirt in the console port on the router. If it still doesn't work, the router may be set up for software flow control, or hardware flow control, or none at all. Try fiddling with the flow control setup on your terminal emulator and see what happens. If you have a null modem cable, you may also try the aux port. my question is whether doing a password recovery to this router without getting access to the console port is possible ?? No. -- Bungee jumping and skydiving are for wimps. If you want to experience true gut-wrenching terror, have children. --Dusty Rhoades. ___ UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html FAQ, list archives, and subscription info: http://www.groupstudy.com Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] --- ___ UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html FAQ, list archives, and subscription info: http://www.groupstudy.com Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] ___ UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html FAQ, list archives, and subscription info: http://www.groupstudy.com Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] --- ___ UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html FAQ, list archives, and subscription info: http://www.groupstudy.com Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
its register problem!!
Hi Group I found that the reg was somehow changed to 0x2142 and that 's why i lost the config every time it reboots. I used to think it might be a problem of NVRAM because this is a very old router while didn't check the nvram . Now the problem is solved. Thanks for all your help . "Aaron K. Dixon" wrote in message ... I've never actually used the software myself. I still wonder why he is loosing the config every time the router reloads. It sounds like the config-register is either set wrong or he has a hardware problem. I'll have to try the software loader one of these days. Thanks for the link. Regards, Aaron K. Dixon -Original Message- From: Chuck Larrieu [mailto:[EMAIL PROTECTED]] Sent: Sunday, July 30, 2000 2:20 AM To: Aaron K. Dixon; groupstudy; [EMAIL PROTECTED] Subject: RE: unable to upgrade image to 2514 Aaron, I've had pretty good luck doing upgrades through Cisco router software loader. Recently upped my 2501's using the tool. Perhaps "groupstudy" might consider the download. It's free at http://www.cisco.com/pcgi-bin/tablebuild.pl/rsl Chuck -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] On Behalf Of Aaron K. Dixon Sent: Saturday, July 29, 2000 10:37 PM To: groupstudy; [EMAIL PROTECTED] Subject: RE: unable to upgrade image to 2514 Try the method that I listed about booting in boot mode and then doing the upgrade. If you're in boot mode a reload won't be necessary. Are you sure that you're config-reg is set correctly. If it's set to 0x2142 the configuration will be ignored upon reload. If you do a show start the config will be there, but not in a show run. Could you send a show ver? Regards, Aaron K. Dixon -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of groupstudy Sent: Sunday, July 30, 2000 12:21 AM To: [EMAIL PROTECTED] Subject: Re: unable to upgrade image to 2514 Hi Aaron Thanks for your reply, but I did the same upgrade to my 2501,and it's working . the tftp server is connected through the ethernet port while it's not accessible to tftp server due to the lose of configure after the reload . Well i found this additional issue ,the router to which i am gonna give a upgrade is now losing its NVRAM info every time it is reloaded or power on/off, I think that's why the router is not accessible to the tftp server anymore after the reload during the upgrade---because my 2514 can not 'remember' the startup-configuration !! How am i gonna do now . "Aaron K. Dixon" wrote in message ... On a 2500 you should see reload requested. You can't put an image with the router running unless it's in boot mode or you have your flash partitioned. The 2500 runs from flash so it reloads the router in boot mode and tries to copy the flash. Across what medium does the router reach the tftp server? Some things don't work well in boot mode depending on the version of your boot rom's. What version of boot rom's do you have? Can you send a sh version? Try manually putting your router in boot mode. ie change config-reg to 0x2101 and rebooting the router. Then ensure that you have connectivity to your tftp server. If you do then you can load a new image without the reload. Regards, Aaron K. Dixon -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of groupstudy Sent: Saturday, July 29, 2000 9:11 PM To: [EMAIL PROTECTED] Subject: unable to upgrade image to 2514 Hi group I am unable to upgrade system software from 10.3 to 12.0(3)to my 2514 for some reason ,please help. system memory is :4M main and 8M flash: 2514#copy tftp flash NOTICE Flash load helper v1.0 This process will accept the copy options and then terminate the current system image to use the ROM based image for the copy. Routing functionality will not be available during that time. If you are logged in via telnet, this connection will terminate. Users with console access can see the results of the copy operation. Proceed? [confirm]y System flash directory: File Length Name/status 1 5631468 igs-j-l.103-11 [5631532 bytes used, 2757076 available, 8388608 total] Address or name of remote host [255.255.255.255]? 20.20.20.21 Source file name? c2500-is-l_120-3.bin Destination file name [c2500-is-l_120-3.bin]? Accessing file 'c2500-is-l_120-3.bin' on 20.20.20.21... Loading c2500-is-l_120-3.bin from 20.20.20.21 (via Ethernet1): ! [OK] Erase flash device before writing? [confirm]y Flash contains files. Are you sure you want to erase? [confirm]y Copy 'c2500-is-l_120-3.bin' from server as 'c2500-is-l_120-3.bin' into Flash WITH erase? [yes/no]y =notice below==shouldnot happen === %SYS-5-RELOAD: Reload requested %FLH: c2500-is-l_120-3.bin from 20.20.20.21 to flash ... System flash directory: File Length Name/status 1 5631468 igs-j-l.103-11 [5631532 bytes us
no access to router
Hi group I got a cisco 2503 . I can't get access to the console except that i can see the information in the terminal window but can't not type .and unfortunately I lost the telnet password and enable password. my question is whether doing a password recovery to this router without getting access to the console port is possible ?? thanks ___ UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html FAQ, list archives, and subscription info: http://www.groupstudy.com Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: no access to router
too bad , i will throw my 2503 out of window ,kiding..,thanks anyway ElephantChild wrote in message ... On Sat, 29 Jul 2000, groupstudy wrote: I got a cisco 2503 . I can't get access to the console except that i can see the information in the terminal window but can't not type .and unfortunately I lost the telnet password and enable password. Do the same cable and terminal emulator work with other routers? If tey do, check that the cable is properly seated and that there isn't dirt in the console port on the router. If it still doesn't work, the router may be set up for software flow control, or hardware flow control, or none at all. Try fiddling with the flow control setup on your terminal emulator and see what happens. If you have a null modem cable, you may also try the aux port. my question is whether doing a password recovery to this router without getting access to the console port is possible ?? No. -- Bungee jumping and skydiving are for wimps. If you want to experience true gut-wrenching terror, have children. --Dusty Rhoades. ___ UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html FAQ, list archives, and subscription info: http://www.groupstudy.com Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] --- ___ UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html FAQ, list archives, and subscription info: http://www.groupstudy.com Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
unable to upgrade image to 2514
Hi group I am unable to upgrade system software from 10.3 to 12.0(3)to my 2514 for some reason ,please help. system memory is :4M main and 8M flash: 2514#copy tftp flash NOTICE Flash load helper v1.0 This process will accept the copy options and then terminate the current system image to use the ROM based image for the copy. Routing functionality will not be available during that time. If you are logged in via telnet, this connection will terminate. Users with console access can see the results of the copy operation. Proceed? [confirm]y System flash directory: File Length Name/status 1 5631468 igs-j-l.103-11 [5631532 bytes used, 2757076 available, 8388608 total] Address or name of remote host [255.255.255.255]? 20.20.20.21 Source file name? c2500-is-l_120-3.bin Destination file name [c2500-is-l_120-3.bin]? Accessing file 'c2500-is-l_120-3.bin' on 20.20.20.21... Loading c2500-is-l_120-3.bin from 20.20.20.21 (via Ethernet1): ! [OK] Erase flash device before writing? [confirm]y Flash contains files. Are you sure you want to erase? [confirm]y Copy 'c2500-is-l_120-3.bin' from server as 'c2500-is-l_120-3.bin' into Flash WITH erase? [yes/no]y =notice below==shouldnot happen === %SYS-5-RELOAD: Reload requested %FLH: c2500-is-l_120-3.bin from 20.20.20.21 to flash ... System flash directory: File Length Name/status 1 5631468 igs-j-l.103-11 [5631532 bytes used, 2757076 available, 8388608 total] Accessing file 'c2500-is-l_120-3.bin' on 20.20.20.21... [failed] %FLH: retry #1 %FLH: c2500-is-l_120-3.bin from 20.20.20.21 to flash ... (retry) System flash directory: File Length Name/status 1 5631468 igs-j-l.103-11 [5631532 bytes used, 2757076 available, 8388608 total] Accessing file 'c2500-is-l_120-3.bin' on 20.20.20.21... [failed] %FLH: Idling for 30 secs before retry #2 ___ UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html FAQ, list archives, and subscription info: http://www.groupstudy.com Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: unable to upgrade image to 2514
Hi Aaron Thanks for your reply, but I did the same upgrade to my 2501,and it's working . the tftp server is connected through the ethernet port while it's not accessible to tftp server due to the lose of configure after the reload . Well i found this additional issue ,the router to which i am gonna give a upgrade is now losing its NVRAM info every time it is reloaded or power on/off, I think that's why the router is not accessible to the tftp server anymore after the reload during the upgrade---because my 2514 can not 'remember' the startup-configuration !! How am i gonna do now . "Aaron K. Dixon" wrote in message ... On a 2500 you should see reload requested. You can't put an image with the router running unless it's in boot mode or you have your flash partitioned. The 2500 runs from flash so it reloads the router in boot mode and tries to copy the flash. Across what medium does the router reach the tftp server? Some things don't work well in boot mode depending on the version of your boot rom's. What version of boot rom's do you have? Can you send a sh version? Try manually putting your router in boot mode. ie change config-reg to 0x2101 and rebooting the router. Then ensure that you have connectivity to your tftp server. If you do then you can load a new image without the reload. Regards, Aaron K. Dixon -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of groupstudy Sent: Saturday, July 29, 2000 9:11 PM To: [EMAIL PROTECTED] Subject: unable to upgrade image to 2514 Hi group I am unable to upgrade system software from 10.3 to 12.0(3)to my 2514 for some reason ,please help. system memory is :4M main and 8M flash: 2514#copy tftp flash NOTICE Flash load helper v1.0 This process will accept the copy options and then terminate the current system image to use the ROM based image for the copy. Routing functionality will not be available during that time. If you are logged in via telnet, this connection will terminate. Users with console access can see the results of the copy operation. Proceed? [confirm]y System flash directory: File Length Name/status 1 5631468 igs-j-l.103-11 [5631532 bytes used, 2757076 available, 8388608 total] Address or name of remote host [255.255.255.255]? 20.20.20.21 Source file name? c2500-is-l_120-3.bin Destination file name [c2500-is-l_120-3.bin]? Accessing file 'c2500-is-l_120-3.bin' on 20.20.20.21... Loading c2500-is-l_120-3.bin from 20.20.20.21 (via Ethernet1): ! [OK] Erase flash device before writing? [confirm]y Flash contains files. Are you sure you want to erase? [confirm]y Copy 'c2500-is-l_120-3.bin' from server as 'c2500-is-l_120-3.bin' into Flash WITH erase? [yes/no]y =notice below==shouldnot happen === %SYS-5-RELOAD: Reload requested %FLH: c2500-is-l_120-3.bin from 20.20.20.21 to flash ... System flash directory: File Length Name/status 1 5631468 igs-j-l.103-11 [5631532 bytes used, 2757076 available, 8388608 total] Accessing file 'c2500-is-l_120-3.bin' on 20.20.20.21... [failed] %FLH: retry #1 %FLH: c2500-is-l_120-3.bin from 20.20.20.21 to flash ... (retry) System flash directory: File Length Name/status 1 5631468 igs-j-l.103-11 [5631532 bytes used, 2757076 available, 8388608 total] Accessing file 'c2500-is-l_120-3.bin' on 20.20.20.21... [failed] %FLH: Idling for 30 secs before retry #2 ___ UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html FAQ, list archives, and subscription info: http://www.groupstudy.com Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] ___ UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html FAQ, list archives, and subscription info: http://www.groupstudy.com Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] --- ___ UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html FAQ, list archives, and subscription info: http://www.groupstudy.com Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: 2500 flash and RAM
Do you know how many pins are there for a 16M memory for cisco 2501/2514, coz i was asked this question when in the computer shop .and for a 16M configuration,according to cisco, it's possible to us proven vendor memory like Samsun but can any one interpret what the following mean: Cisco specified: 16 MB (4 MB x 36, 70 ns DRAM SIMM) Hitachi HB56D436SBR-7AGS Hyundai HYM536410M-70 Mitsubishi MH4M36ANXJ-7 NEC MC-424000A36BE-70 Samsung KMM5364100A-70 above are the approved model of 16M memory , what doese 4 MB x 36 mean? "Aaron K. Dixon" wrote in message ... I've always had excellent luck and found good prices at www.memoryx.com. I haven't checked their prices in a few months, but they should be worth taking a look at. Regards, Aaron K. Dixon -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Chuck Church Sent: Saturday, July 29, 2000 8:48 PM To: [EMAIL PROTECTED] Subject: 2500 flash and RAM Does anyone know of a good source for 2500 flash and RAM? I'm looking for something cheap for a home lab, so I don't really care if it voids the Cisco warranty. Thanks, Chuck Church CCNP, MCNE, MCSE ___ UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html FAQ, list archives, and subscription info: http://www.groupstudy.com Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] ___ UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html FAQ, list archives, and subscription info: http://www.groupstudy.com Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] --- ___ UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html FAQ, list archives, and subscription info: http://www.groupstudy.com Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
help on AUI status toggling
Hi Group My 2501 has a strange problem : the AUI is connected to a laptop computer which has a 10/100 pcmcia adapter. the ethernet port on 2501 is configured as follow : ip address 10.10.10.10 255.255.255.0 no keepalive the laptop is configured as 10.10.10.11/255.255.255.0 the link light on the transceive and laptop are both up and the 2501 can ping itself but not laptop,2501 is sending message like this when debug ethernet is on. ANCE-5-LOSTCARR: Unit 0, lost carrier. Transceiver problem? %LANCE-5-LOSTCARR: Unit 0, lost carrier. Transceiver problem? the IOS is 10.3 ,yes it's a little bit old ,but why the ethernet does not work. when i turn debug ip packet on ,the debug message is like this ---when ping the laptop Router#ping 10.10.10.11 Type escape sequence to abort. Sending 5, 100-byte ICMP Echos to 10.10.10.11, timeout is 2 seconds: IP: s=10.10.10.10 (local), d=10.10.10.11 (Ethernet0), len 100, sending %LANCE-5-LOSTCARR: Unit 0, lost carrier. Transceiver problem? IP: s=10.10.10.10 (local), d=10.10.10.11 (Ethernet0), len 100, encapsulation failed. IP: s=10.10.10.10 (local), d=10.10.10.11 (Ethernet0), len 100, sending IP: s=10.10.10.10 (local), d=10.10.10.11 (Ethernet0), len 100, encapsulation failed. the default arp type on 2501 is ARPAI wonder what that has got to do with the 'failed encapsulation' when pinging Do you think it is a hardware problem of the ethernet port on 2501 or AUI?? Thanks for your reply ___ UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html FAQ, list archives, and subscription info: http://www.groupstudy.com Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Sprint ION Service
Has anyone looked into the SprintION service? I was wondering is it as good as they are saying it is? http://www.sprintion.com Adrianne Ward
ccie design results
Hi, Does anyone know when the ccie design beta written results will be appearing as I am away from home and will not be back until July Thanks Andy ___ UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html FAQ, list archives, and subscription info: http://www.groupstudy.com Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
