port/duplex configs [7:69582]
I have always configured ports on CAT switch to 100/full manually instead of AUTO. What is recommended when asked this question for the CCIE written. Should both the end device ( NIC ) and switch both be configured to 100/FULL? Ian Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=69582&t=69582 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: port/duplex configs [7:69582]
This has come up in the ccie written. If I understand this subject correctly AUTO , sends out packets to try and match the 2 devices up with regards to speed and duplex. If your getting connection problems this would be a speed issue. If its some sort of packet loss/error then this could be a duplex problem. I have always configured the CAT port manually so there isnt any problems. Why would you choice AUTO? - Original Message - From: "John Neiberger" To: Sent: Tuesday, May 27, 2003 5:35 PM Subject: Re: port/duplex configs [7:69582] > >>>> ian williams 5/27/03 10:29:21 AM >>> > >I have always configured ports on CAT switch to 100/full manually instead > of > >AUTO. > >What is recommended when asked this question for the CCIE written. Should > >both the end > >device ( NIC ) and switch both be configured to 100/FULL? > > I can't imagine why such a question would be asked on any exam since the > correct answer is that you configure whatever is necessary to establish a > connection with the end device. In my opinion, you should always use AUTO > unless this causes problems, in which case you hard-set your devices to > 100/HALF, not 100/FULL. If you'd like the rationale for that I refer you to > the archives for my previous rantings on this subject. > > I'd fall over in shock if you were to be asked a question like this on your > exam, but as long as you understand the issues involved you should be > adequately prepared for whatever question of this type that they throw at > you. > > Regards, > John Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=69649&t=69582 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Virtual Link Problem [7:69640]
I cant see a problem here, but I have been caught on this one before when using MD5 authentication. Remember when using MD5 authentication in Area 0 the R2 will have a direct connection into Area 0 after the virtual link has been made so needs to have MD5 authentication as well. You can also do MD5 authentication on the virtual link itself, this was what I was trying to do and got confused with the MD5 authentication between R2 and Area 0. When I removed all the MD5 authentication it still would come up. In the end I removed the config and started again, bingo it came up - Original Message - From: "Kevin Love" To: Sent: Wednesday, May 28, 2003 5:37 AM Subject: Virtual Link Problem [7:69640] > Hey Team, > > I cannot figure this out. I've configured lots of virtual links, but no > matter what I do this isn't working. I had md5 authentication configured > for Area 0, but to isolate the problem, I removed authentication and the > virtual link still isn't up. I need another set of eyes (or two) looking at > this. Please help if you can! > > Here's the topology: > > Area 2 (Loopback 0) > | > R2 >\ > \ > FR >Area 1 > /\ > R5R6 > \/ >Area 0 > Ethernet > > Here are the salient config snippets: > > R2 > ! > interface Loopback0 > ip address 192.168.2.2 255.255.255.255 > ip ospf network point-to-point > ! > interface Serial1.256 multipoint > ip address 172.16.56.2 255.255.255.248 > ip ospf priority 255 > frame-relay map ip 172.16.56.2 105 > frame-relay map ip 172.16.56.5 105 broadcast > frame-relay map ip 172.16.56.6 106 broadcast > no frame-relay inverse-arp > ! > router ospf 1 > log-adjacency-changes > area 1 virtual-link 192.168.5.5 > area 1 virtual-link 192.168.6.6 > network 172.16.56.0 0.0.0.7 area 1 > network 192.168.2.2 0.0.0.0 area 2 > ! > > R5 > > interface Ethernet0 > ip address 172.16.200.5 255.255.255.128 > ip ospf hello-interval 15 > ! > interface Serial0 > ip address 172.16.56.5 255.255.255.248 > encapsulation frame-relay > ip ospf network point-to-multipoint > frame-relay map ip 172.16.56.2 501 broadcast > frame-relay map ip 172.16.56.5 501 > frame-relay map ip 172.16.56.6 501 broadcast > no frame-relay inverse-arp > frame-relay lmi-type cisco > ! > router ospf 1 > log-adjacency-changes > area 1 virtual-link 192.168.2.2 > network 172.16.56.0 0.0.0.7 area 1 > network 172.16.200.0 0.0.0.127 area 0 > network 192.168.5.5 0.0.0.0 area 5 > ! > > R6 > > interface Serial0 > ip address 172.16.56.6 255.255.255.248 > encapsulation frame-relay > ip ospf network point-to-multipoint > frame-relay map ip 172.16.56.2 601 broadcast > frame-relay map ip 172.16.56.5 601 broadcast > frame-relay map ip 172.16.56.6 601 > no frame-relay inverse-arp > frame-relay lmi-type cisco > ! > interface FastEthernet0 > ip address 172.16.200.6 255.255.255.128 > ip ospf hello-interval 15 > half-duplex > ! > router ospf 1 > log-adjacency-changes > area 1 virtual-link 192.168.2.2 > network 172.16.56.0 0.0.0.7 area 1 > network 172.16.200.0 0.0.0.127 area 0 > network 192.168.6.6 0.0.0.0 area 6 > ! > > R2#sh ip ospf vir > Virtual Link OSPF_VL5 to router 192.168.5.5 is down > Run as demand circuit > DoNotAge LSA allowed. > Transit area 1, Cost of using 65535 > Transmit Delay is 1 sec, State DOWN, > Timer intervals configured, Hello 10, 40, Wait 40, Retransmit 5 > Virtual Link OSPF_VL4 to router 192.168.6.6 is down > Run as demand circuit > DoNotAge LSA allowed. > Transit area 1, Cost of using 65535 > Transmit Delay is 1 sec, State DOWN, > Timer intervals configured, Hello 10, 40, Wait 40, Retransmit 5 > R2# > > Trust me on the router-IDs for the virtual link statements - I have > triple-checked them. I have reloaded the routers with no luck. What am I > missing here?! > > Thanks! > Kevin Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=69653&t=69640 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: BGP Load Balance [7:69611]
No - Original Message - From: "Azhar Teza" To: Sent: Tuesday, May 27, 2003 11:16 PM Subject: BGP Load Balance [7:69611] > If BGP route has two equal paths to the same destination, can it do load > balance by installing the command? maximum-paths 2 > > ___ > Join Excite! - http://www.excite.com > The most personalized portal on the Web! Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=69651&t=69611 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Multicast server [7:69686]
Has anyone got any Multicast server software for windows NT I would like to get some multicast traffic working on my testlab thanks Ian Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=69686&t=69686 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Am I over my head guys? [7:69746]
go for it Deal with it heheheheh Your be fine Ian - Original Message - From: "B Rudy" To: Sent: Thursday, May 29, 2003 8:52 AM Subject: Am I over my head guys? [7:69746] > Hey guys, I just got an offer to become a 2nd senior network engineer for > this company in Orange Country. Great News i know!! > > Dilemma: I am a CCNP but have no local Area Nework Experience. Going to be > workin with Catalyst 6500 switches. Also i have about 2 yrs working with > cisco equipment, however, dont feel i am ready for a senior title and > duties. Also working with cisco routers. > > What do you guys think i should do? > > 1. Take the job and see how it works out? Maybe mess up their network and > look real dumb and unknowledgable on some troubleshooting. risked getting > fired? > 2. Let the job go, and watch a great opp float away? > 3. Keep the existing job i have working with cisco equipment and technology? > > p.s. This job is a senior position, so meaning senior pay. very positive > aspect, and a great company going places. over 4000 employees. > > Your output is greatly appreciated. Really need some advice. Thanx Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=69751&t=69746 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
crypto maps and IPSEC tunnels [7:71341]
Hi I have just setup a IPSEC tunnel between to routers and tunneling a source address of 192.168.50.1 going to a host on router B 172.x.x.x./24 Everything works with the current configs given below. But I want to change the acl 101 on router B from using a class A mask to something like a class C mask or even a host address. I have changed the ACL 101 and even added a deny ip any any log to the end to see what is being dropped. The VPN tunnel doesnt come up unless I use a class A mask like showen below. I know this is an ACL but is being used for matching traffic, do they work differently and dont support host address ?? Thanks Ian Here is the config of router A ! crypto isakmp policy 10 encr 3des hash md5 authentication pre-share crypto isakmp key cisco address 10.10.10.10 ! ! crypto ipsec transform-set TEST esp-3des ! crypto map cisco 1 ipsec-isakmp set peer 10.10.10.10 set transform-set TEST match address 101 access-list 101 permit ip 192.0.0.0 0.255.255.255 10.0.0.0 0.255.255.255 access-list 101 permit ip 192.0.0.0 0.255.255.255 172.0.0.0 0.255.255.255 Here is the config router B crypto isakmp policy 10 encr 3des hash md5 authentication pre-share crypto isakmp key password address 10.10.10.20 ! ! crypto ipsec transform-set TEST esp-3des ! crypto map cisco 1 ipsec-isakmp set peer 10.10.10.20 set transform-set TEST match address 101 access-list 101 permit ip 172.0.0.0 0.255.255.255 192.0.0.0 0.255.255.255 access-list 101 permit ip host 10.10.10.10 host 10.10.10.20 Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=71341&t=71341 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
