Boot Camps
Has anyone out there ever taken the CCNA or CCNP boot camps that are offered by Global Knowledge or Wave Technologies? If so, was it worth the money? I'm a disabled veteran working with the veterans vocational rehabilitation and I have been offered a chance to attend a Cisco boot camp which the government will pay for. I just want to get the best training that's offered. I know that attending a college that offers the Cisco training as part of their curriculum may be the best way to go, but I live in Alaska and have to be flown out of state to receive Cisco training. Any advice or information that you provide will be helpful, thanks in advance. Ken in AK _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Port Numbers - Maybe Off Topic
I did not get any takers on the associate list, so I'll try the main list. I am a little confused about port numbers. I understand what they are for, but I do not quite understand how to track down why a host would be listening to a particular port and how to find out who asked for the port to be defined and what the port is being used for. For example netstat -a from my machine shows in part the following ProtoLocal AddressState TCPname:1059LISTENING TCPname:1060LISTENING TCPname:1877LISTENING of course there are many others. I understand that to track these down I go to ftp://ftp.isi.edu/in-notes/iana/assignments/ and download the file named port-numbers. I then look for each port shown above and this tells me the name of the port and who registered it. For example, port 1059 is named nimreg. It was registered by Robert Gordon at austin.ibm.com. Short of asking Robert, how do I find out what nimreg is and why a Windows 98 SE host would be listening on such a port. Also I have seen people on the list ask what port Napster uses for example. People respond back with a number, yet I see no listing for Napster on the list I downloaded. What am I missing here? _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Cisco Certs
Can anyone tell me how do the Cisco certifications match up to degrees obtained from a college? I have been told that getting your MCSE is like getting a two year degree or having two years networking experience. _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Physical Difference Between RJ45 and RJ48
I found one thread in the archives on this general subject, but it did not entirely answer what I need to know. I need to know what the difference is between a RJ-45 and RJ-48 connectors. In particular are there physical dimension differences in the two. I have seen both used to connect a T1 demarc to a CSU/DSU. But I have been told that the RJ-48 is slightly different than the RJ-45. As such the electrical contacts may not reliably match up and cause unexpected connection problems. So is there an actual physical difference in the two? If so, exactly what? _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Physical Difference Between RJ45 and RJ48
I may be on to my own answer. I will add the information here in case it comes up again. I have discovered that RJ connectors are actually defined in the Code of Federal Regulations, which seems an odd place to me. Specifically at Title 47 Chapter 1 Part 68, which is available online at http://www.access.gpo.gov/nara/cfr/waisidx_00/47cfr68_00.html The relevant information appears to be in 68.500 and 68.502. I will be reading these. If anyone has any other information, please let me know. ""Ken"" <[EMAIL PROTECTED]> wrote in message 93ouel$gnm$[EMAIL PROTECTED]">news:93ouel$gnm$[EMAIL PROTECTED]... > I found one thread in the archives on this general subject, but it did not > entirely answer what I need to know. I need to know what the difference is > between a RJ-45 and RJ-48 connectors. In particular are there physical > dimension differences in the two. I have seen both used to connect a T1 > demarc to a CSU/DSU. But I have been told that the RJ-48 is slightly > different than the RJ-45. As such the electrical contacts may not reliably > match up and cause unexpected connection problems. So is there an actual > physical difference in the two? If so, exactly what? > > > _ > FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] > _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
study group in Alaska
Hi, I am looking for cisco study groups in anchorage, Alaska. Anyone know of any? Thanks Ken _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
TCP/IP RFCs
I have searched the archive. Although I found some good references, I wonder if anyone has or can point me to a list of the RFCs one needs to be familiar with that define the basics of TCP/IP. **NOTE: New CCNA/CCDA List has been formed. For more information go to http://www.groupstudy.com/list/Associates.html _ UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html FAQ, list archives, and subscription info: http://www.groupstudy.com Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Why Should the Binary Math Method Be Used to Subnet [7:15306]
This is a study group so I have a question for which I need some education. I am not looking for a flame war, just education. The question I have is of what use is the binary math method of subnetting as compared to just using a program that does subnetting? If the point to the exercise is to produce a plan for subnetting that can then be entered into each device on the network or into a DHCP server setup, what else is achieved by doing this manually? It seems to me that the point is not the journey, but the arrival at the destination. Indeed arrival as quickly as possible, with the least source of error. As Cisco even says; "The purpose of this tool is to provide a way to calculate IP subnetting which is fast, easy, and error free. Doing such calculations manually is time consuming and susceptible to common mathematical mistakes, especially in conversions between binary and decimal numbers." So what is it I am not understanding? Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=15306&t=15306 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
CCNP and chances of finding a job
What are the chances of a CCNP finding a job without prior work experience with routers and such? I'm debating this issue with my girfriend. She thinks that job experience is more important, and that I should be looking for a job to move me up. I, on the other hand, don't think I can find much of a job with just a CCNA and would rather get a CCNP, but I'm not quite sure if just a CCNP by itself can land me a job. Any help would be appreciated. -ken
Re: CCNP and chances of finding a job
the biggest problem I have, is finding a job where I can gain experience with cisco routers. I have had 3 prior jobs dealing with PC's and internet tech support but it's pretty tough to get my foot in the door with just a CCNA. My goal here is to just be able to get a job, and what I'm wondering is if a CCNP will land me one, because it seems like the ccna wont really help much here. Not necessarily one that will pay me a good lump but one where I can at least start to get some experience with routers. currently I only have a 2501 here at home that my parents got for me. - Original Message - From: "Dollard Morgan" <[EMAIL PROTECTED]> To: "'K Sacca'" <[EMAIL PROTECTED]>; <[EMAIL PROTECTED]>; <[EMAIL PROTECTED]> Sent: Thursday, May 25, 2000 2:24 AM Subject: RE: CCNP and chances of finding a job Ken, WOW, congrats for that :) (thats the ken at cisco) the other ken, yammy, im sorry before hand, but im going to have to flame you before you do something stupid. DONT GET UR CCNP without exp. thats the kind of stuff, that ruined microsoft certs, thats ruining the CCNA, and that will eventually ruin the CCNP. on top of that, you'll have a much easier time passing the ccnp if you have work experinence and get real life exposure to networking. i worked hard to get my ccnp, and im going for the ccie now, and i'd love to see my certs keep their value and not get devalorized because some ppl think its the easy road to getting the pot of gold. its not, its a hard and demanding job, theres always something to learn, and always networks with problems. a CCNP is expected certain things, and in case you didnt know, if cisco receives complaints about incompetent work on your part, they can revoke your certification. please do yourself a favor by getting experience, your employer might pay ur certs after that, with training, and you'll wa ste less time on your own doing so. Morgan PS, any1 who wishes to flame me on this subject is free to do so, i guarantee it wont look pretty in the end. I've met one CCNP that had no exp and didnt know wtf he was talking about, and i hope for the others out there i never meet one again. > -Message d'origine- > De: K Sacca [SMTP:[EMAIL PROTECTED]] > Date: jeudi 25 mai 2000 03:26 > À: [EMAIL PROTECTED]; [EMAIL PROTECTED] > Objet: Re: CCNP and chances of finding a job > > Ken > > I received my CCNP almost two months ago. About 2 > weeks after receiving the cert, I started firing off > my resume everywhere. I received a call from Cisco, > as they were interested in my background. I passed > the phone screening, then passed the brutal face to > face interviews at Cisco with about 7 people. I'm now > working with the IOS WAN Test team. Before this job, > I had about 10 years of experience with desktop > computers, network servers and Microsoft products. I > had a MCSE and a Compaq ASE. I made the switch to > Cisco as I see problems down the road for Microsoft. > I think Sprint Paranet will also hire you with a CCNP. > > > Now the task of getting a CCIE should be achievable > since Cisco gave me my very own testbed loaded with > seven routers. > > Good Luck. > Ken > [EMAIL PROTECTED] > > > > "ken" <[EMAIL PROTECTED]> wrote in message > > 000e01bfc5c5$bfdfaf00$0201a8c0@isamu">news:000e01bfc5c5$bfdfaf00$0201a8c0@isamu... > > What are the chances of a CCNP finding a job without > > prior work experience > > with routers and such? I'm debating this issue with > > my girfriend. She > > thinks that job experience is more important, and > > that I should be looking > > for a job to move me up. I, on the other hand, > > don't think I can find much > > of a job with just a CCNA and would rather get a > > CCNP, but I'm not quite > > sure if just a CCNP by itself can land me a job. Any > > help would be > > appreciated. > > > > > >-ken > > > > > > > > ___ > > UPDATED Posting Guidelines: > > http://www.groupstudy.com/list/guide.html > > FAQ, list archives, and subscription info: > > http://www.groupstudy.com > > Report misconduct and Nondisclosure violations to > [EMAIL PROTECTED] > > > __ > Do You Yahoo!? > Kick off your party with Yahoo! Invites. > http://invites.yahoo.com/ > > ___ > UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html > FAQ, list archives, and subscription info: http://www.groupstudy.com > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] ___ UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html FAQ, list archives, and subscription info: http://www.groupstudy.com Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Sniffing Packet From the router. [7:21111]
Hi, Does anyone know how I can sniff packet from a router. Or can the router redirect the packet to another Ethernet interface. Like Span port on the switch. I need to capture the packet that is going across the WAN interface. Thanks. Ken Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=2&t=2 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Frame relay ppoint vs. multi
What's difference? Why can you not ping my own multipoint interface but if it is a point to point is does work? See below =20 interface Serial1 no ip address encapsulation frame-relay ! interface Serial1.1 multipoint ip address 10.1.1.1 255.255.255.252 frame-relay interface-dlci 110 ! router igrp 10 network 10.0.0.0 1 commserver#ping 10.1.1.1 =20 Type escape sequence to abort. Sending 5, 100-byte ICMP Echos to 10.1.1.1, timeout is 2 seconds: . Success rate is 0 percent (0/5) = -- interface Serial0 no ip address encapsulation frame-relay no fair-queue ! interface Serial0.1 point-to-point ip address 10.1.1.1 255.255.255.252 frame-relay interface-dlci 110 =20 ! interface Serial1 no ip address encapsulation frame-relay shutdown ! router igrp 10 network 10.0.0.0 ! =20 commserver#ping 10.1.1.1 =20 Type escape sequence to abort. Sending 5, 100-byte ICMP Echos to 10.1.1.1, timeout is 2 seconds: ! Success rate is 100 percent (5/5), round-trip min/avg/max =3D = 112/116/128 ms _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: 2600 router - critical situation
This happened to me last week. It turned out to be a problem with the router resources. When you downloaded the IOS image it should have informed you what the minimum Hardware required to run the image is (Flash and RAM, 2600 default 8/32). After upgrading the flash, there is not an IOS image, so tftpdnld, as recommended by others, is your friend. I was loading the high crypto image (Which is Huge 11MB) and had neglected to upload the RAM to 48MB from its standard 32MB. At this point you should download a smaller image file from CCO and perform the tftpdnld with the smaller image. The symptom I had was that the router would self corrupt the image while trying to "self-decompress" and like you, my upgrade session was completed successfully. -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] On Behalf Of Ravi Kumar Sent: Tuesday, February 06, 2001 11:00 PM To: [EMAIL PROTECTED] Subject:2600 router - critical situation hi friends I am in deep trouble yesterday i downloaded 12.0 IOS into my 2610 router from my TFTP server. downloading was successful. in fact i deleted old version while upgrading. after that my router is not booting at all. what to do? please help me. bye ravee Get free email and a permanent address at http://www.netaddress.com/?N=1 _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: CCNA - One layer UP
This question has been asked several times before, however I have a my own opinion which seems to work for me. I feel that the BCSN exam probably is the most extensive coverage of internetworking. Topics learned here will carry over to the other exams. Next, I would take BCRAN. Since you just finished routing, why not stay on the topic? The BCRAN is also about routing. Next BCMSN, and finally CIT. I think it would be wise to take CIT last since it covers troubleshooting over the other topics. To recap: BCSN BCRAN BCMSN CIT Ken -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] Sent: Monday, February 12, 2001 8:28 AM To: [EMAIL PROTECTED] Subject: CCNA - One layer UP Hi Friends, Cleared CCNA 2.0 today with the passing score of 903 with all the inputs from this Great Discussion Forum. Thanks guys... Would be nice, if any one give the sequence of CCNP exams to be considered. Thanks in advnce.. Selvakumar.K [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: WAN degree?
DeVry offers a degree in Telecommunications Management. Look here for more information http://www.devry.edu/f_acad_prog.html Watch the URL those are underlines in what look like spaces. -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of jay smith Sent: Saturday, February 24, 2001 10:55 AM To: [EMAIL PROTECTED] Subject: OT: WAN degree? Hello, I am currently a MCSE/CCNA and I am finishing up my AA degree at the local junior college, and looking to start my 3rd year in the fall. Are there any colleges that offer a Bachelor's degree in networking? I have visited several college websites and it seems that they all offer just Computer Engineering, Computer Science, or Management Information Systems degrees. After reviewing the individual coarse outlines, there appears to be very few classes relating to networking. If anyone can offer there advise on this issue, I would greatly appreciate it! _ Get your FREE download of MSN Explorer at http://explorer.msn.com _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
CCIE Study Group or Partners in Chicago
Hi all, My name is Ken Yeo, scheduled for lab on 5/12/01. I am looking for study partners in Chicago area to exchange knowledge and share equipments. I stayed in West Suburb, but welcome anybody within 45 mins driving distant to reply. My homelab consists of five routers and one catalyst. I have been practicing a lot lately (20 hours/week for 3 months) but I will increase my study time since the date is getting closer and closer, the calendar seems like moving a lot faster than usual. Please reply off line at [EMAIL PROTECTED] Many thanks and hopefully I will meet some of you guys on the field someday! Ken _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: computer networking degree
Regardless of the location DeVry has an excellent program in Telecommunications Management which deals specifically with computer networking and voice at all levels. Look at http://www.devry.edu/f_acad_prog.html. Those are underlines in the URL. -Original Message- From: steve billy [mailto:[EMAIL PROTECTED]] Sent: Wednesday, February 28, 2001 7:23 AM To: [EMAIL PROTECTED] Subject: computer networking degree Hi group, Can you please tell me good universities from where one can obtain degree at the undergraduate and graduate level in computer networking (specifically). Thanks Steve __ Do You Yahoo!? Get email at your own domain with Yahoo! Mail. http://personal.mail.yahoo.com/ _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: HEX
Because you can't use it during an exam. Real life...OK, exam...NO. -Original Message- From: Nuria Canamares [mailto:[EMAIL PROTECTED]] Sent: Friday, March 02, 2001 6:27 AM To: 'Dale Frohman' Cc: [EMAIL PROTECTED] Subject: RE: HEX Why don't you use the calculator of windows accesories? -Mensaje original- De: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]En nombre de Dale Frohman Enviado el: Jueves 1 de Marzo de 2001 3:24 PM Para: [EMAIL PROTECTED] Asunto: HEX Does anyone have a way/tricks in remembering how to do HEX conversions? _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Serial Interfaces
Yes, Reg serial is 2.048Mbps, and the HSSI is good to 45Mbps with a T3 and higher with SONET. http://www.cisco.com/univercd/cc/td/doc/pcat/hssi__a1.htm Ken -Original Message- From: John Neiberger [mailto:[EMAIL PROTECTED]] Sent: Wednesday, March 07, 2001 2:17 PM To: [EMAIL PROTECTED] Cc: [EMAIL PROTECTED] Subject: Re: Serial Interfaces I believe that regular serial interfaces max out at 2.048 Mbps. >>> "Raoni" <[EMAIL PROTECTED]> 3/7/01 11:00:12 AM >>> Hello everyone, What serial interfaces can get up to 4 Mbps? Is it just the HSSI or the regular serial Interfaces work at that rate? TIA, Raoni. _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Multipoint and OSPF
I have setup a hub and spoke scenario with OSPF. What am I doing wrong? I can not get the spokes to talk to each other unless I create a dlci = on the frame switch... Config of interfaces below. Ken =20 Hub: interface Serial0.100 multipoint ip address 133.20.33.1 255.255.255.0 no ip route-cache ip ospf network point-to-multipoint ip ospf hello-interval 10 ip ospf priority 90 no ip mroute-cache frame-relay interface-dlci 100 frame-relay interface-dlci 102 router ospf 1 network 133.20.33.1 0.0.0.0 area 0 =20 Spoke 1 interface Serial0 ip address 133.20.33.2 255.255.255.0 encapsulation frame-relay ip ospf network broadcast ip ospf priority 0 no fair-queue frame-relay interface-dlci 101 frame-relay interface-dlci 105 frame-relay lmi-type ansi router ospf 1 network 133.20.33.2 0.0.0.0 area 0 =20 Spoke 2 interface Serial0 ip address 133.20.33.3 255.255.255.0 encapsulation frame-relay ip ospf network broadcast ip ospf priority 0 frame-relay interface-dlci 103 frame-relay lmi-type ansi router ospf 1 network 133.20.33.3 0.0.0.0 area 0 _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: average salaries
Check out http://salary.com/home/layoutscripts/sall_home.asp It even breaks it down by Geographic location and discipline. It also gives you a high a low and a mean, which is way cool! Ken Claussen MCSE CCNA CCA [EMAIL PROTECTED] "The Mind is a Terrible thing to Waste!" -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Denis A. Baldwin Sent: Monday, November 27, 2000 2:02 PM To: [EMAIL PROTECTED] Subject: average salaries Is there a survey somewhere of average salaries for various Cisco Exam holders? Or IT people with certifications in general? I am coming up for review in a few weeks and am about ready to take my CCNA, but would like some ammunition to use against the board of directors. Denis _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Frame Relay SVC
Any one knows how to configure Frame Relay SVC switch on Cisco routers? The Cisco configuration guide has examples for SVC on routers but no example for SVC switch configuration. How do you test your SVC router configuration? I have searched the archives, many have asked the questions but I can't seem to find the answer, so I ask again. Thanks! Ken _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Frame Relay SVC
I can't seem to find an example. The configuration guide covers configuration for SVC on the router side, I am actually looking for a SVC switch configuration. Thanks! Ken "Phil Barker" <[EMAIL PROTECTED]> wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > www.cisco.com > > SEARCH "frame relay svc" > > > > http://www.cisco.com/univercd/cc/td/doc/product/software/ios121/121cgcr/wan_ c/wcdfrely.htm > > > --- Ken Yeo <[EMAIL PROTECTED]> wrote: > Any one knows > how to configure Frame Relay SVC > > switch on Cisco routers? > > > > The Cisco configuration guide has examples for SVC > > on routers but no example > > for SVC switch configuration. How do you test your > > SVC router configuration? > > > > I have searched the archives, many have asked the > > questions but I can't seem > > to find the answer, so I ask again. > > > > Thanks! > > Ken > > > > > > _ > > FAQ, list archives, and subscription info: > > http://www.groupstudy.com/list/cisco.html > > Report misconduct and Nondisclosure violations to > [EMAIL PROTECTED] > > > > Do You Yahoo!? > Get your free @yahoo.co.uk address at http://mail.yahoo.co.uk > or your free @yahoo.ie address at http://mail.yahoo.ie > > _ > FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] > _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Jeff Doyle p. 564 Frame-relay with OSPF
In the book, on the spoke routers, all sub-interfaces didn't explicitly define multipoint or point-to-point inteface, I tried that and IOS 11.2/11.3 requires multipoint or point-to-point interface type to be explicitly defined. I think Doyle means to run point-to-point on the spoke routers because if they are multipoint, by default OSPF network types are mismatched between hub and spoke. Am I correct? Or did I miss anything here? Thanks! Ken _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Jeff Doyle p. 564 Frame-relay with OSPF
In the book, hub subinterface is specified as point-to-point, by befault point-to-point subinterface has OSPF network type point-to-point. However, on the spokes, subinterface's type is not define explicitly, which is not possible. After I enable encapsulation frame-relay on physical interface, if I want to creat subinterfaces, I always needed to specified point-to-point or multipoint. The book didn't and that is why I think it is a mistake in the book. Also, no "ip ospf network" command is used, so default OSPF network type applied. Ken. "Jean-Marc Gilbert" <[EMAIL PROTECTED]> wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > Hello, > > Well, the ospf network type and the real network type are not realy dependent : > you may specifie an "ospf network-type point-to-multypoint" on a point-to-point > frame-relay sub-interface... Thus, you have to ensure all your interfaces are > specifieing the same network type, and it should work fine. > > Hope this help, > jean-marc > > > On 06-Dec-00 Ken Yeo wrote: > > In the book, on the spoke routers, all sub-interfaces didn't explicitly > > define multipoint or point-to-point inteface, I tried that and IOS 11.2/11.3 > > requires multipoint or point-to-point interface type to be explicitly > > defined. > > > > I think Doyle means to run point-to-point on the spoke routers because if > > they are multipoint, by default OSPF network types are mismatched between > > hub and spoke. > > > > Am I correct? Or did I miss anything here? > > > > Thanks! > > Ken > > > > > > _ > > FAQ, list archives, and subscription info: > > http://www.groupstudy.com/list/cisco.html > > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] > > -- > E-Mail: Jean-Marc Gilbert <[EMAIL PROTECTED]> > Date: 07-Dec-00 > Time: 22:48:55 > -- > > _ > FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] > _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Passed BCSN - need opinion on BCRAN book
Hello All, Passed BCSN this morning with an 804. Not great, but not as hard as I anticipated. Some questions very vague! Just as others have said, the objectives from Cisco is what you need to know well, especially OSPF and BGP! Sources used: TCP\IP Routing - Jeff Doyle Boson test 1 Various links provided by the good people on this list including a lot of Cisco links On to BCRAN and to open another debate... Building Cisco Remote Access Networks by Catherine Paquet ISBN 1578700914 or Building Cisco Remote Access Networks by Thomas M. Thomas IIISBN 0072124806 Both get high praises, which is better??? Thanks _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
free cisco book offer
To get your free copy of "The Technology of Edge Aggregation" booklet, please go to the following link http://www.cisco.com/warp/public/779/servpro/solutions/aggregation/cisco10k_jump/ _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
NAT on 1605 with DHCP on Ethernet0
:80) tcp 18:22:41: S seq 1769659304(0) 18:22:41: NAT: i: tcp (192.168.0.35, 1869) -> (216.33.111.110, 80) [12362] 18:22:41: NAT: s=192.168.0.35->204.210.242.88, d=216.33.111.110 [12362] 18:22:41: IP: s=204.210.242.88 (Ethernet1), d=216.33.111.110 (Ethernet0), g=216.33.111.110, len 48, forward 18:22:41: IP ARP: sent req src 204.210.242.88 0010.7bdf.337c, dst 216.33.111.110 .. Ethernet0 deb 18:22:41: IP: s=204.210.242.88 (Ethernet1), d=216.33.111.110 (Ethernet0), len 48, encapsulation failed 18:22:42: IP ARP: rcvd req src 204.210.242.1 0800.3e0e.8270, dst 204.210.242.252 Ethernet0ug all All possible debugging has been turned off version 12.1 no service single-slot-reload-enable service timestamps debug uptime service timestamps log uptime service password-encryption ! hostname Cisco1605 ! logging buffered 4096 debugging logging rate-limit console 10 except errors enable secret *** ! ip subnet-zero no ip finger no ip domain-lookup ! ! ! ! ! ! interface Ethernet0 description connected to EthernetLAN ip address dhcp ip accounting output-packets ip nat outside ! interface Ethernet1 description connected to EthernetWAN ip address 192.168.0.254 255.255.255.0 secondary ip address 192.168.75.1 255.255.255.0 ip nat inside ! interface Serial0 no ip address shutdown ! router r version 2 network 192.168.0.0 network 192.168.75.0 no auto-summary ! ip nat inside source list 101 interface Ethernet0 overload ip classless ip route 0.0.0.0 0.0.0.0 Ethernet0 no ip http server ! logging trap warnings logging 192.168.75.2 access-list 11 permit 192.168.75.0 0.0.0.255 log access-list 11 permit 192.168.0.0 0.0.0.255 log access-list 11 deny any log access-list 101 permit ip 192.168.75.0 0.0.0.255 any no cdp run snmp-server engineID local snmp-server community *** snmp-server community *** snmp-server packetsize 2048 snmp-server contact banner motd ^CCAuthorized Use Only!^C ! line con 0 exec-timeout 0 0 password *** login transport input none line vty 0 4 access-class 11 in exec-timeout 5 0 password *** login ! end Any help on why my encapsulation continues to fail would be appreciated. I have checked Cisco's site and the archives but there aren't any sample NAT configs for a DHCP assigned address. Ken Claussen MCSE CCNA CCA "The opinions and views expressed here are those of a disolusioned technoweenie geek and should not be taken literally. Please step away from the computer!" _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
HSRP Groups
Is there an advantage to having more than one HSRP group assigned to an interface? I don't see an advantage one maybe someone has experienced advantages = in having multiple HSRP groups. Example of config: Router 1 =20 router1#sh run=20 Building configuration... =20 Current configuration: ! version 12.0 service timestamps debug datetime msec localtime show-timezone service timestamps log datetime msec localtime show-timezone =20 service password-encryption ! hostname router1 ! logging buffered 16384 debugging no logging console ! username xxx privilege 15 password 7 xxx username xxx privilege 15 password 7 xxx ! ! ! ! clock timezone cst -6 clock summer-time cdt recurring ip subnet-zero no ip finger !=20 no ip bootp server ! ! ! interface FastEthernet0/0 ip address 10.10.192.215 255.255.255.240 no ip redirects no ip directed-broadcast speed 100 full-duplex standby 3 timers 5 15 standby 3 priority 250 preempt standby 3 authentication guess standby 3 ip 10.10.192.213 standby 3 track FastEthernet0/1 100 standby 4 timers 5 15 standby 4 priority 200 preempt standby 4 authentication guess standby 4 ip 10.10.192.214 standby 4 track FastEthernet0/1 100 ! interface FastEthernet0/1 ip address 10.10.192.226 255.255.255.248 no ip redirects no ip directed-broadcast duplex full speed 100 standby timers 5 15 standby priority 250 preempt standby authentication related standby ip 10.10.192.225 standby track FastEthernet0/0 100 standby 1 timer 5 15 standby 1 priority 200 preempt standby 1 authentication guess standby 1 ip 10.10.192.228 standby 1 track FastEthernet0/0 100 ! ip classless ip route 0.0.0.0 0.0.0.0 10.10.192.209 ip route 0.0.0.0 0.0.0.0 10.10.192.210 ip route 10.10.192.240 255.255.255.240 10.10.192.230 ip route 10.10.192.240 255.255.255.240 10.10.192.229 ip route 10.10.194.0 255.255.255.224 10.10.192.230 ip route 10.10.194.0 255.255.255.224 10.10.192.229 no ip http server ! access-list 1 deny any access-list 10 permit 10.10.192.216 access-list 10 permit xx.xx.xx.xx ! Router 2 =20 router2#sh run=20 Building configuration... =20 Current configuration: ! version 12.0 service timestamps debug datetime msec localtime show-timezone service timestamps log datetime msec localtime show-timezone service password-encryption ! hostname router2 ! logging buffered 16384 debugging no logging console ! username xxx privilege 15 password 7 xxx username xxx privilege 15 password 7 xxx ! ! ! ! clock timezone cst -6 clock summer-time cdt recurring ip subnet-zero no ip finger !=20 no ip bootp server ! ! ! interface FastEthernet0/0 description Exodus Facing ip address 10.10.192.216 255.255.255.240 no ip redirects no ip directed-broadcast speed 100 full-duplex standby 3 timers 5 15 standby 3 priority 200 preempt standby 3 authentication payroll standby 3 ip 10.10.192.213 standby 3 track FastEthernet0/1 100 standby 4 timers 5 15 standby 4 priority 250 preempt standby 4 authentication payroll standby 4 ip 10.10.192.214 standby 4 track FastEthernet0/1 100 ! interface FastEthernet0/1 description Customer Facing ip address 10.10.192.227 255.255.255.240 no ip redirects no ip directed-broadcast duplex full speed 100 standby timers 5 15 standby priority 200 preempt standby authentication related standby ip 10.10.192.225 standby track FastEthernet0/0 100 standby 1 timer 5 15 standby 1 priority 250 preempt standby 1 authentication related standby 1 ip 10.10.192.228 standby 1 track FastEthernet0/0 100 ! ip classless ip route 0.0.0.0 0.0.0.0 10.10.192.209 ip route 0.0.0.0 0.0.0.0 10.10.192.210 ip route 10.10.192.240 255.255.255.240 10.10.192.230 ip route 10.10.192.240 255.255.255.240 10.10.192.229 ip route 10.10.194.0 255.255.255.224 10.10.192.230 ip route 10.10.194.0 255.255.255.224 10.10.192.229 no ip http server ! access-list 1 deny any access-list 10 permit 10.10.192.217 access-list 10 permit xx.xx.xx.xx ! Thanks in Advance Ken _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: When to implement TACACS+
Hi! TACACS+ is a good solution. Some considerations and suggestions: Suggest having individual usernames/passwords for the each user. Setting up telnet and console to access to devices authenticating via the TACACS server. Then configure a local account that is available if the device can not access the TACACS server. I would suggest to have a seperate database not to pull usernames and passwords from a domain database. Setting up usernames and passwords allow you to do it to one place (TACACS server) to affect many devices. Setting up users allow you to track what was done when via logs. Now the logs is a different maintenance issue. Who is going to be checking them, are you going to have them dump into a database in order to view the data in a timely manner I know Cisco Secure does not out of the box dump its log files to a database. That would be something that you would have to automate. How many TACACS servers to have be geographical about it, last thing you want to do is secure yourself to a point of waiting to gain telnet to a down line or interface. With that you probably want to have these databases exchange info as you see fit. How are you going to backup these servers? Important to note any legacy devices might not provide the full functionality of the AAA TACACS server. Some cases it only authenticates, which might be enough something to keep in mind. Lastly is the level of security for authenticating users in the managing group. If you go with a TACACS solution like Cisco's Cisco Secure database passwords are static. If you look at dynamic solution with key fobes ex. SecureID gives you a better chance of preventing password sniffing. Good Luck! Ken - Original Message - From: Tim Lovelace <[EMAIL PROTECTED]> To: <[EMAIL PROTECTED]> Sent: Friday, January 05, 2001 3:02 PM Subject: When to implement TACACS+ > I am in the process of implementing a quit large frame relay network. In the > end it will be 300+ remote nodes. I have been looking at TACACS+ as a means > to make sure that the passwords are the same on all equipment as there will > be one small group managing the entire thing. There will also be several > access servers. My question, is TACACS+ the ideal way to come about this? It > seems to me that it is by what Cisco describes TACACS for. If anyone has any > helpful information on the subject I would appreciate it. What are some > considerations I should look at before implementing it? Thanks > > Tim > > > _ > FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Physical Difference Between RJ45 and RJ48
To Daniel Yes, from further research I believe it does have more to do the way the connector is wired and then used rather than the physical shape and size of the connector. To Howard When I saw it in the CFR, I thought that it must relate back to the Carterphone decision and all of the deregulation, but what a strange place to find telecommunications connector specifications. -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Daniel Cotts Sent: Saturday, January 13, 2001 11:03 PM To: [EMAIL PROTECTED] Subject: RE: Physical Difference Between RJ45 and RJ48 RJ-48 is similar to RJ-45 except that it has a key on the side of the jack. A RJ-45 plug would fit a RJ-48 jack but a RJ-48 plug would not fit a RJ-45 jack. See the following for a physical view of a keyed plug. http://catalog.tycoelectronics.com/AMP/docs/pdf/6/39/195936.pdf Just checked out an Atran CSU/DSU. Its Network (T-1) jack is referred to as an (USOC)RJ-48C. AMP#555164-2. It is keyed. Having said that, I seem to remember a similar discussion some while back where it was said that the RJ specs referred to usage rather than physical characteristics. > -Original Message- > From: Howard C. Berkowitz [mailto:[EMAIL PROTECTED]] > Sent: Saturday, January 13, 2001 6:21 PM > To: [EMAIL PROTECTED] > Subject: Re: Physical Difference Between RJ45 and RJ48 > > > >"Ken" <[EMAIL PROTECTED]> discoevered, > > > > >I may be on to my own answer. I will add the information > here in case it > >comes up again. I have discovered that RJ connectors are > actually defined in > >the Code of Federal Regulations, which seems an odd place to me. > >Specifically at Title 47 Chapter 1 Part 68, which is > available online at > >http://www.access.gpo.gov/nara/cfr/waisidx_00/47cfr68_00.html > > Frightening that I haven't thought about this for 25 years or so, but > a bit of history may shed light on why you found these in an odd > place. > > RJ stands for Registered Jack. It appears in US regulatory literature > as a consequence of the 1975 AT&T breakup and other actions such as > the Carterfone Decision. Prior to these, since The Phone Company > owned everything, there was no need for a third-party vendor or for > modularized customer interfaces. With divestiture, however, the > demarcation of responsibility between carrier and customer, or for > third-party equipment to carrier, was needed. > > While the RJ series had quite reasonable applications simply for > wiring, legal pressures made them ubiquitous in the US. > > > > >The relevant information appears to be in 68.500 and 68.502. > I will be > >reading these. If anyone has any other information, please > let me know. > > > >""Ken"" <[EMAIL PROTECTED]> wrote in message > >93ouel$gnm$[EMAIL PROTECTED]">news:93ouel$gnm$[EMAIL PROTECTED]... > >> I found one thread in the archives on this general > subject, but it did not > >> entirely answer what I need to know. I need to know what > the difference is > >> between a RJ-45 and RJ-48 connectors. In particular are > there physical > >> dimension differences in the two. I have seen both used > to connect a T1 > >> demarc to a CSU/DSU. But I have been told that the RJ-48 > is slightly > >> different than the RJ-45. As such the electrical contacts > may not reliably > >> match up and cause unexpected connection problems. So is > there an actual > > > physical difference in the two? If so, exactly what? > > _ > FAQ, list archives, and subscription info: > http://www.groupstudy.com/list/cisco.html > Report misconduct > and Nondisclosure violations to [EMAIL PROTECTED] > _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: equipment rack
A U is 1.75 inches high. The 2500 is about 1U. -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Dennis Sent: Friday, January 19, 2001 9:22 PM To: [EMAIL PROTECTED] Subject: equipment rack question: an ad for an equipment rack states that it is 20U. how many cisco 2500's will fit in such a rack. Thanks, _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Type 1 to RJ45 TR Cables
These things are called media filters. You need one that goes from a data connector to RJ45 connector. This sort plugs into the MAU. There is another type that plugs into the DB9 connector on the NIC. I looked around for you, but could only find the ones that go on the NIC, not any that go on the MAU. We will be ordering some of these in the next few days. Email me offline at [EMAIL PROTECTED] and I will let you know when I turn up a part number. We have a couple of vendors looking for use now. -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Kevin Welch Sent: Monday, January 22, 2001 12:56 AM To: [EMAIL PROTECTED] Subject: Type 1 to RJ45 TR Cables Does anyone know a part number or a place that sells IBM Type 1 Token = Ring to RJ45 Connectors. I am trying to connect my the TR port on my = 2612 to an IBM 8228 MAU. -- Kevin _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Cisco Secure VPN client
Anyone knows the product number for the software? I have VPN-SW-DES-100= but it is just the license. TIA. Ken **NOTE: New CCNA/CCDA List has been formed. For more information go to http://www.groupstudy.com/list/Associates.html _ UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html FAQ, list archives, and subscription info: http://www.groupstudy.com Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Cisco Secure VPN client
Good point, I always wonder what does the = sign means. I will let the group knows when I find out the result. Thanks! Ken ""Gareth Hinton"" <[EMAIL PROTECTED]> wrote in message 8qra2a$oeu$[EMAIL PROTECTED]">news:8qra2a$oeu$[EMAIL PROTECTED]... > I'd guess at just having to delete the "=". > I believe that normally specifies 'spare', so you wouldn't need another copy > of the software. > Please let me know if this turns out to be incorrect. > > Regards, > > Gareth > > ""Ken Yeo"" <[EMAIL PROTECTED]> wrote in message > 8qqu55$apm$[EMAIL PROTECTED]">news:8qqu55$apm$[EMAIL PROTECTED]... > > Anyone knows the product number for the software? > > > > I have VPN-SW-DES-100= but it is just the license. > > > > TIA. > > Ken > > > > > > **NOTE: New CCNA/CCDA List has been formed. For more information go to > > http://www.groupstudy.com/list/Associates.html > > _ > > UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html > > FAQ, list archives, and subscription info: http://www.groupstudy.com > > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] > > > > > **NOTE: New CCNA/CCDA List has been formed. For more information go to > http://www.groupstudy.com/list/Associates.html > _ > UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html > FAQ, list archives, and subscription info: http://www.groupstudy.com > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] > **NOTE: New CCNA/CCDA List has been formed. For more information go to http://www.groupstudy.com/list/Associates.html _ UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html FAQ, list archives, and subscription info: http://www.groupstudy.com Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Secure VPN Client support for IPX
Hi everyone, Does the Cisco Secure VPN client support IPX via IP tunneling? TIA! Ken **NOTE: New CCNA/CCDA List has been formed. For more information go to http://www.groupstudy.com/list/Associates.html _ UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html FAQ, list archives, and subscription info: http://www.groupstudy.com Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
TACAC+
Hi all, Which freeware/shareware TACAC+ server do you recommend? Do they support date/time authentication? i.e: USERA can login on Monday but not Tuesday? According to CCIE Fundamentals: Network Design and Case Studies, there should be a free copy of TACAC+ for Unix at ftp.cisco.com/pub but I cannot locate it. TIA! Ken **NOTE: New CCNA/CCDA List has been formed. For more information go to http://www.groupstudy.com/list/Associates.html _ UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html FAQ, list archives, and subscription info: http://www.groupstudy.com Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: SMTP troubleshooting
Who is the client targeting for delivery of mail?? an internal machine or a machine on the Internet.. Does mail server have some sort of limit on size of email or attachement? At 08:37 AM 9/29/00 -0500, [EMAIL PROTECTED] wrote: >Hey all, > >Am studying CIT related material and am wondering what one would look for >when troubleshooting SMTP data transfer over an FR circuit, say at 128K >CIR, 256 port speed. > >Situation: > >Corporate site has 3600 class router with a serial interface configured >with T1 port speed and only 256K CIR. One remote site of 11 has 2500 class >router configured with 256K port speed/128K CIR. SMTP servers exist at >both sites. SMTP server at remote does not receive Internet e-mail, it >relies on corporate site SMTP server to supply Internet and corporate wide >mail. > >Problem: > >Clients at remote site cannot send mail with attachments larger than 1 MB >without 'timing out'. They can, however, receive mail with large >attachments from the Internet and corporate. Remote FR circuit tests clean >with no FECN or BECNs to report. > >Any suggestions on approaches to this problem? Need more info? > > > > > >Thank you, >Raul De La Garza III >CCNA NNCSS MCSE CNE >Senior Network Engineer >EmCare Incorporated > > > Brave men are all vertebrates: they have their softness on the surface and >their toughness in the middle. ?G.K. Chesterton > >**NOTE: New CCNA/CCDA List has been formed. For more information go to >http://www.groupstudy.com/list/Associates.html >_ >UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html >FAQ, list archives, and subscription info: http://www.groupstudy.com >Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] **NOTE: New CCNA/CCDA List has been formed. For more information go to http://www.groupstudy.com/list/Associates.html _ UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html FAQ, list archives, and subscription info: http://www.groupstudy.com Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Dialup over modem problem
Hello all, Trying to connect 2 2500 series router over dialup connection. Router will dial and connect to other router, but I can't ping the other address. I've tried assigning IP's to the Async interfaces, no IP's on loopback, using IP's on both, same subnet, different subnets. Any ideas? Sample configs welcome. URL's welcome. Thanks, Ken Dialer#sho runn Building configuration... Current configuration: ! version 11.2 no service password-encryption no service udp-small-servers no service tcp-small-servers ! hostname Dialer ! enable secret 5 $1$gZVO$26a.DvC.SKFDAD9HlADo/1 enable password ! no ip domain-lookup chat-script rstmdm "" "AT&FS0=1&B1&C1&D2&H1&K1&M4&R2" OK chat-script dialnum ABORT ERROR ABORT BUSY "" "ATDT\T" TIMEOUT 60 CONNECT ! interface Loopback0 ip address 192.168.100.10 255.255.255.0 ! interface Serial0 no ip address shutdown ! interface Serial1 no ip address shutdown ! interface TokenRing0 no ip address shutdown ! interface BRI0 no ip address shutdown ! interface Async1 no ip address encapsulation ppp async default routing async mode dedicated dialer in-band dialer rotary-group 0 ! interface Dialer0 no ip address encapsulation ppp dialer in-band dialer map snapshot 1 name Answer xx7063 dialer map ip 192.168.100.11 name Answer broadcast xx7063 dialer-group 1 snapshot server 5 dialer ppp authentication chap ! router rip version 2 network 192.168.100.0 no auto-summary ! ip classless dialer-list 1 protocol ip permit ! line con 0 password xx login line aux 0 script dialer dialnum script reset rstnum modem InOut transport input all stopbits 1 rxspeed 38400 txspeed 38400 flowcontrol hardware line vty 0 4 password xx login ! end Answer#sho runn Building configuration... Current configuration: ! version 11.2 no service password-encryption no service udp-small-servers no service tcp-small-servers ! hostname Answer ! enable secret 5 $1$jzAd$DWjQz/2NZm8DHj0roOEMX/ enable password ! username Dialer password 0 xx no ip domain-lookup chat-script rstmdm "" "AT&FS0=1&B1&C1&D2&H1&K1&M4&R2" OK chat-script dialnum ABORT ERROR ABORT BUSY "" "ATDT\T" TIMEOUT 60 CONNECT ! interface Loopback0 ip address 192.168.100.11 255.255.255.0 ! interface Ethernet0 no ip address no mop enabled ! interface Serial0 no ip address shutdown no fair-queue ! interface Serial1 no ip address shutdown ! interface TokenRing0 no ip address shutdown ! interface Async1 no ip address encapsulation ppp async default routing async mode dedicated dialer in-band dialer rotary-group 0 ! interface Dialer0 ip unnumbered TokenRing0 encapsulation ppp dialer in-band dialer map snapshot 1 name Dialer xx9548 dialer map ip 192.168.100.10 name Dialer broadcast xx9548 dialer-group 1 snapshot client 5 360 dialer ppp authentication chap ! router rip version 2 network 192.168.100.0 no auto-summary ! ip classless dialer-list 1 protocol ip permit ! line con 0 password xx login line aux 0 script dialer dialnum script reset rstmdm modem InOut transport input all stopbits 1 rxspeed 38400 txspeed 38400 flowcontrol hardware line vty 0 4 password xx login ! end **NOTE: New CCNA/CCDA List has been formed. For more information go to http://www.groupstudy.com/list/Associates.html _ UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html FAQ, list archives, and subscription info: http://www.groupstudy.com Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Can't Ping Serial Interface!
Title: COLT tests I am trying to setup a Frame Relay link in a lab situation. We have Layer 2 speaking LMI back and forth and the line Protocol is reported as Up on the serial interface. We assigned it a Private address and created a static route pointing at the serial interface of the other router. When you do a Show ip route it reports that all the routes exist as I believe they should (See config to follow) The Problem is we can't ping the IP address of the local serial interface 192.168.4.1, and I can't seem to figure out why. I beleive if I could ping the local serial interface then traffic would pass from our development network to our test network on 192.168.3.1. Please review my config on the 2610 and help me figure out why I can't ping the local interface before I use this router as a frisbee (which would be a shame considering it is a 2610) Begin Config Current configuration: ! version 12.0 service timestamps debug uptime service timestamps log uptime no service password-encryption ! hostname cisco2600 ! enable password cisco ! ip subnet-zero ! ! ! ! ! interface Ethernet0/0 ip address 192.168.1.3 255.255.255.0 no ip directed-broadcast ! interface Serial0/0 ip address 192.168.4.1 255.255.255.0 no ip directed-broadcast encapsulation frame-relay IETF no ip mroute-cache frame-relay interface-dlci 101 ! ip classless ip route 0.0.0.0 0.0.0.0 192.168.1.1 ip route 192.168.3.0 255.255.255.0 192.168.4.2 no ip http server ! dialer-list 1 protocol ip permit dialer-list 1 protocol ipx permit snmp-server engineID local 0009023094104240 snmp-server community public RO ! line con 0 exec-timeout 0 0 password cisco transport input none line aux 0 line vty 0 4 password cisco login ! no scheduler allocate end cisco2600# End Config Please help to save my sanity! all responses are greatly appreciated! Ken Claussen MCSE CCA CCNA [EMAIL PROTECTED] "The mind is a terrible thing to waste!" -Original Message-From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Ricardo CigandaSent: Tuesday, October 17, 2000 5:00 AMTo: [EMAIL PROTECTED]Subject: COLT tests Hi all! I would like to know what is the finality of the COLT tests. May I have to paid for this or is only a simulation of a test? Thanks in advance. Ricardo Ciganda Dpto. de Sistemas Bytemaster Servicios Informaticos S.A.
Can't Ping Local Serial Interface of 2610
I am trying to setup a Frame Relay link in a lab situation. We have Layer 2 speaking LMI back and forth and the line Protocol is reported as Up on the serial interface. We assigned it a Private address and created a static route pointing at the serial interface of the other router. When you do a Show ip route it reports that all the routes exist as I believe they should (See config to follow) The Problem is we can't ping the IP address of the local serial interface 192.168.4.1, and I can't seem to figure out why. I beleive if I could ping the local serial interface then traffic would pass from our development network to our test network on 192.168.3.1. Please review my config on the 2610 and help me figure out why I can't ping the local interface before I use this router as a frisbee (which would be a shame considering it is a 2610) Begin Config Current configuration: ! version 12.0 service timestamps debug uptime service timestamps log uptime no service password-encryption ! hostname cisco2600 ! enable password cisco ! ip subnet-zero ! ! ! ! ! interface Ethernet0/0 ip address 192.168.1.3 255.255.255.0 no ip directed-broadcast ! interface Serial0/0 ip address 192.168.4.1 255.255.255.0 no ip directed-broadcast encapsulation frame-relay IETF no ip mroute-cache frame-relay interface-dlci 101 ! ip classless ip route 0.0.0.0 0.0.0.0 192.168.1.1 ip route 192.168.3.0 255.255.255.0 192.168.4.2 no ip http server ! dialer-list 1 protocol ip permit dialer-list 1 protocol ipx permit snmp-server engineID local 0009023094104240 snmp-server community public RO ! line con 0 exec-timeout 0 0 password cisco transport input none line aux 0 line vty 0 4 password cisco login ! no scheduler allocate end cisco2600# End Config Please help to save my sanity! all responses are greatly appreciated! Ken Claussen MCSE CCNA CCA _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Can't Ping Local Serial Interface of 2610
Title: Re: Can't Ping Local Serial Interface of 2610 After adding the Frame-relay Map statement, as suggested by several people, I was able to ping the local serial Interface. I then created the interface as a Sub-interface and attempted to use the Frame-relay map command and received the "You should use the Frame-Relay Interface-dlci" command from the router. When the Tnterface-dlci command was applied to the sub-interface (s0/0.1) IP traffic began passing back and forth on the serial link. I also had to add the appropriate static route to the default gateway, as suggested, so other clients on the development network (192.168.1.0) would know where to send traffic destined for the test network (192.168.3.0) or the Intermediate network (192.168.4.0). Routes had already been setup on the routers, but the default gateway did not know about the 192.168.4.0 network until I added the static route. After adding the route all traffic successfully was passed from all clients to the Test network via the intermediate successfully. I understand now why I had to assign the Map statement to the global interface, so that layer Layer 3 knows which layer 2 interface to use, what I am still a little confused about is why the command changes when applied to a sub-interface to Frame-relay interface-dlci instead of Frame Relay Map IP. I appreciate all responses they all helped me to troubleshoot and understand the Frame Relay technology successfully, thank you. Ken Claussen MCSE CCA CCNA [EMAIL PROTECTED] "The mind is a terrible thing to waste!"
Baltimore/Maryland Cisco Users Group?
Does anyone have information on baltimore/Maryland area cisco users group? TIA Kenneth A, DavisSenior Network Administrator American Wood Moulding, LLC7458 New Ridge RoadHanover, MD 21076 ( (410) 850 5430Ê (410) 850 5431Cell (202) 297 3629? [EMAIL PROTECTED]
Certificationzone CCIE November test Q# 22
According to Dolye's book p. 537, I think the answer is A and B instead of B, C. Any comments? Thanks, Ken. -- You chose the following answer(s), A, B The correct answer(s), B, C How does a not-so-stubby area interact with area 0.0.0.0? Choose 2 A. The NSSA sends type 5 LSAs to area 0.0.0.0 B. The NSSA blocks non-default type 5 LSAs from entering the NSSA from area 0.0.0.0 C. The NSSA sends type 7 LSAs to area 0.0.0.0 D. The NSSA accepts type 7 LSAs from area 0.0.0.0 Explanation External routes received by ASBRs in the NSSA are propagated throughout the NSSA as type 7 LSAs, which are advertised into the backbone. This is a directional transfer from the NSSA to area 0.0.0.0. Other than the default generated on the ABR, externals in area 0.0.0.0 are blocked from entering the NSSA. _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: erased flash
When you perform the xmodem command make sure you have enough free space in your flash to load the new IOS. I was trying to load a new image to a 4MB flash where the IOS had been renamed. If you have performed the Xmodem ( I prefer the Xmodem-1K method, supported by hyperterm) you will know that it is a slow procedure, watching paint dry is more exciting. If you truly erased the entire flash this should not be a problem, but issue a "dir flash:" to verify the image you are trying to load will fit into the flash. It is quite frustrating after you have tried this twice only to realize you need to delete the renamed image for it to fit (I was working with a 4MB 2900XL, which I had been told was an 8MB 2900XL). It is my own fault for not verifying their information myself, fortunately this was purely for educational purposes, not a production switch. HTH Ken -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Ganesh Chintalapati Sent: Saturday, March 24, 2001 5:26 AM To: [EMAIL PROTECTED] Cc: [EMAIL PROTECTED] Subject: erased flash Dear group, I recently was configuring ISDN on 1750 router. But accidently I have gi= ven #erase flash command from the prompt. And once I rebooted the router I g= ot the message "not able to find some number" and "not able to locate file f= lash" and I am getting rommon 1> prompt. Pls let me know how do I restore my r= outer to its normal working condition. This is very urgent, I would be most thankful if someone gives me the sol= ution at the earliest. Bye group, Ganesh.Ch _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Internet tutorial ppt
Maybe someone knows... At one time (around last Summer) someone from this list posted an awesome link to a site that had a PowerPoint tutorial about the Internet origins and the backbone description, NAP's etc. Somehow I lost this link. I searched the archives but couldn't find it. There's probably others as well. Does anyone know of this one or even another one? Thanks, Ken _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Token ring to Cat 5 conversion [7:371]
Do you mean an IBM Type 1 cable to UTP Category 5 cable conversion or Token Ring to Ethernet as both Token Ring and Ethernet can run over the same UTP cables? I have done many of both. -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Plantier, William (Spencer) Sent: Thursday, April 12, 2001 1:59 PM To: [EMAIL PROTECTED] Subject: Token ring to Cat 5 conversion [7:371] Has anyone done a Token Ring to Cat 5 conversion? Wm. Spencer Plantier LAN Engineer (919) 474-1300 ext 0873 Office (919) 474-1056 Fax (919)696-8848 Cell [EMAIL PROTECTED] FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=386&t=371 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Token-Ring DB9 to RJ-45 adapter [7:374]
They are called Media Filters. A search using media filter on google.com turned up several companies. But yes they are getting hard to find and the price is going up all the time. -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Brian Lodwick Sent: Thursday, April 12, 2001 2:14 PM To: [EMAIL PROTECTED] Subject: Token-Ring DB9 to RJ-45 adapter [7:374] Does anyone know where I can purchase the little adapter that connects to a DB9 Token-Ring interface on say a 2502 and switches it to RJ-45. I don't know what the name of it would be. I have one, and I broke it open thinking I could just reproduce the cable structure, but it has a small circuit board inside. I am trying to find a place to purchase them, but nobody sells Token-Ring stuff any more it seems. Thanks in advance guys. >>>Brian _ Get your FREE download of MSN Explorer at http://explorer.msn.com FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=387&t=374 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: NAT capabilities of small Netgear/Linksys router [7:657]
Fred, My experience is with the Netgear RT314, but the Linksys 1/4/8 port Cable Modem Router/switch perform almost the same function. These routers allow for port redirection true, but there is one small caveat. If I understand correctly you want to telnet to several different boxes inside your network from outside. You can accomplish this, but not directly. These routers only allow for port forwarding of any single port to any single host, different ports may go to different host true, but you may only port forward telnet to a single machine on your internal network. However you could setup that machine to then telnet to all your other internal hosts. From a security perspective this would be more secure because you are only directly exposing a single host to the outside. The filters, although difficult to setup in some cases, allow for quite robust filtering/logging (Linksys does not support syslog, Netgear does). The routers are also usually pretty secure out of the box, although I would recommend adjusting the filters to drop ALL Source-Routed packets and ALL RFC 1918 addresses that originate from outside the router. These are the two biggest weaknesses of these little routers, otherwise they make an excellent first layer of defense, especially when used with some host based firewall such as Zone Alarm or Black Ice. I use it for my terminal server and a webserver and it has server me extremely well. So far I have not seen any security advisories concerning any of these devices, check www.practicallynetworked.com for more in depth reviews and performance comparisons of the different models/manufacturers, it is an excellent site. PS I have a Cisco 1605R 12.1(5)T and I am using it alongside my Netgear RT314, so far I have not been able to find a way to "Port Forward" on the Cisco Device. I am using DHCP to get an address from my Cable Provider and that works great, but I cannot "Map" a port to an internal address. I would love for someone to correct me on a way to do this, AFAIK this is one of the only advantages these little $100-$200 Cable Modem routers have over there big brother Cisco routers. Otherwise they have less RAM/CPU resources and are not hardware upgradeable. Ken Claussen MCSE CCNA CCA "The Mind is a Terrible thing to Waste!" -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Fred Danson Sent: Saturday, April 14, 2001 4:24 PM To: [EMAIL PROTECTED] Subject: NAT capabilities of small Netgear/Linksys router [7:657] Hey Group, I am considering buying a small Netgear/Linksys router so I can link my computer, terminal server, and power supply to the internet through my cable modem using NAT (actually it would be considered NAT overload or PAT, but Netgear and Linksys call it NAT). All of the Netgear/Linksys advertisements that I have seen are very vague about their NAT capabilities. My goal is to have the ability to telnet to any of my inside devices from an outside location. To do this, I would need to setup static PAT tables, right? Does anyone know if any of these small routers support this? Thanks in advance, Fred _ Get your FREE download of MSN Explorer at http://explorer.msn.com FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=670&t=657 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Passing IPSEC packets on DSL [7:321]
version 12.1 no service single-slot-reload-enable service timestamps debug datetime service timestamps log datetime service password-encryption ! hostname Cisco1605 ! logging buffered 4096 debugging logging rate-limit console 10 except errors enable secret 5 ** ! ip subnet-zero no ip source-route no ip finger no ip domain-lookup ! ! ! interface Ethernet0 description connected to EthernetLAN ip address 192.168.100.1 255.255.255.0 secondary ip address 192.168.10.1 255.255.255.0 ip nat inside no cdp enable ! interface Ethernet1 description connected to Internet ip address dhcp ip nat outside no cdp enable ! ip nat inside source list 101 interface Ethernet1 overload ip nat inside source static tcp 192.168.100.11 53 53 ip nat inside source static udp 192.168.100.11 53 53 ip classless no ip http server ! logging trap debugging logging facility local7 logging source-interface Ethernet0 logging 192.168.100.10 access-list 11 permit 192.168.100.0 0.0.0.255 log access-list 11 permit 192.168.10.0 0.0.0.255 log access-list 11 deny any log access-list 101 permit ip 192.168.100.0 0.0.0.255 any access-list 101 permit ip 192.168.10.0 0.0.0.255 any no cdp run banner motd ^CCAuthorized Use Only!^C ! line con 0 exec-timeout 0 0 password 7 *** login transport input none line vty 0 4 access-class 11 in exec-timeout 5 0 password 7 ** login ! end Cisco1605# This is a basic config with two subnets behind it, primarily for managemnet and education (Mine). I wanted to learn about VLANs and such on a manged switch I had. It work equally well with only a single subnet. The Telnet access lists are also very broad, this was for a lab so I gave any machine on the private network access to the telnet line. It also has Port redirection for DNS, thanks to Jason Roydson for that tidbit of info, a useful and very poorly documented feature in the new IOSes. Ken Claussen MCSE CCNA CCA [EMAIL PROTECTED] "The Mind is a Terrible thing to Waste!" -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Hire, Ejay Sent: Thursday, April 12, 2001 1:13 PM To: [EMAIL PROTECTED] Subject: RE: Passing IPSEC packets on DSL [7:321] Is there any way to do NAT on a PIX or a Cisco router if you only have one usable IP address? I perused CCO, and the most minimalistic NAT/PAT config I can find still requires 2 (1 interface, one global) addresses. The Linksys/Netgear jobbies do it with one IP. i.e. ISP - ISP router Ethernet (216.142.0.1 255.255.255.252) - (216.142.0.2 255.255.255.252) Router - Internal network. -Original Message- From: Elijah Savage [mailto:[EMAIL PROTECTED]] Sent: Thursday, April 12, 2001 9:47 AM To: [EMAIL PROTECTED] Subject: RE: Passing IPSEC packets on DSL [7:321] Yeah his comment makes me curious as to what these DSL router manufacturers have done to make it work. Surely if someone like netgear can make it work Cisco can. -Original Message- From: Circusnuts [mailto:[EMAIL PROTECTED]] Sent: Thursday, April 12, 2001 9:08 AM To: [EMAIL PROTECTED] Subject: Re: Passing IPSEC packets on dsl [7:321] Are you sure- my PIX 506 does it with no problem ??? - Original Message - From: Charles Manafa To: Sent: Thursday, April 12, 2001 8:37 AM Subject: RE: Passing IPSEC packets on dsl [7:321] > VPN does not work when IPSEC packets are NAT'd. One of the reasons why this > doesn't work is that packet authentication will fail when the packet is > NAT'd - the calculated hash will not match after NAT has been applied. > > Charles > > -Original Message- > From: Elijah Savage > To: [EMAIL PROTECTED] > Sent: 12/04/01 12:11 > Subject: Passing IPSEC packets on dsl [7:321] > > All, > > I purchased a 1605 from eBay for my home lab. I decided to play with it > a bit on my DSL circuit. I am using NAT on this router, and everything > works fine except that now I can't vpn from the inside. Example, trying > to establish a vpn connection from a client on my local network in to > our vpn router at my place of employment. Of course with the netgear dsl > router it passes those ipsec packets. I was wondering if anyone has > tried this before and been able to make this happen. > > Thanks in advance. > FAQ, list archives, and subscription info: > http://www.groupstudy.com/list/cisco.html > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] > FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] FAQ, list archives, and sub
RE: access list rearrange? [7:861]
On some of the higher end (7000 series) router platforms there is a command called "Access-list compiled" When added to the IOS config this command tells the router to re-order the list for the most efficient operation. Turbo Access Control Lists "Feature Overview This feature enables Cisco 7200 and 7500 series routers, and Cisco 12000 series Gigabit Switch Routers to evaluate access control lists (ACLs) for more expedient packet classification and access checks. Benefits Access control lists (ACLs) are normally searched sequentially to find a matching rule, and ACLs are ordered specifically to take this factor into account. Because of the increasing needs and requirements for security filtering and packet classification, ACLs can expand to the point that searching the ACL adds a significant amount of time and memory when packets are being forwarded. Moreover, the time taken by the router to search the list is not always consistent, adding a variable latency to the packet forwarding. A high CPU load is necessary for searching an ACL with several entries. The Turbo ACL feature compiles the ACLs into a set of lookup tables, while maintaining the first match requirements. Packet headers are used to access these tables in a small, fixed number of lookups, independently of the existing number of ACL entries. The benefits of this feature include: For ACLs larger than 3 entries, the CPU load required to match the packet to the pre-determined packet-matching rule is lessened. The CPU load is fixed, regardless of the size of the ACL, allowing for larger ACLs without incurring any CPU overhead penalties. The larger the ACL, the greater the benefit. The time taken to match the packet is fixed, so that latency of the packets are smaller (significantly in the case of large ACLs) and more importantly, consistent, allowing better network stability and more accurate transit times." http://www.cisco.com/univercd/cc/td/doc/product/software/ios120/120newft/120 limit/120s/120s6/turboacl.htm (Watch for Word wrap) Ken Claussen MCSE CCNA CCA [EMAIL PROTECTED] "The Mind is a Terrible thing to Waste!" -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Scott Meyer Sent: Tuesday, April 17, 2001 7:44 AM To: [EMAIL PROTECTED] Subject: RE: access list rearrange? [7:861] Remember there is an implied deny at the end of every list. The purpose of the list is to permit 172.16.40.0 and deny everything else. This small a list, especially a standard one, wont have a much impact on router performance. Why deny 172.16.20.0 and 172.16.30.0 first, and making the router process 3 lines of list, if it is going to be denied anyway? Is there a difference between access-list 1 deny 172.16.20.0 0.0.0.255 access-list 1 deny 172.16.30.0 0.0.0.255 access-list 1 permit 172.16.40.0 0.0.0.255 and access-list 1 permit 172.16.40.0 0.0.0.255 The 2 deny statements are not needed, don't do anything, and only add work for the processor. Scott Meyer CCNA, CCDA, MCSE, etc [EMAIL PROTECTED] -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Tolanid Sent: Monday, April 16, 2001 8:53 PM To: [EMAIL PROTECTED] Subject: Re: access list rearrange? [7:861] Scott - my experience has been that access lists are NEVER re-arranged. I would not believe the book. I have the book you are talking about - I'll refer the errata for the book from their website (if they have it). But, again, my understanding is - the IOS will never re-arrange the access list the way "it" thinks is right. Also - I am looking at the example you provided but don't see why the new "re-ordered" one is better?? Thanks Raj "Scott Meyer" wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > I was reading Sybex's old ACRC book. One of the study questions, as well as > a tip in the chapter indicate that the IOS will reorder an access list to > make more sense. > > For example, an access list entered as: > access-list 1 deny 172.16.20.0 0.0.0.255 > access-list 1 deny 172.16.30.0 0.0.0.255 > access-list 1 permit 172.16.40.0 0.0.0.255 > > would be re-ordered as : > access-list 1 permit 172.16.40.0 0.0.0.255 > access-list 1 deny 172.16.20.0 0.0.0.255 > access-list 1 deny 172.16.30.0 0.0.0.255 > > I played around a bit and could not confirm this. show ip access list showed > the access-list exactly as I entered it. > I had always thought that IOS would never re-arrange the list, no matter how > stupid it was entered. > > Am I on crack or is the book wrong? > > Scott Meyer > [EMAIL PROTECTED] > FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report
RE: trunking modes [7:902]
Table 12-1: Fast Ethernet and Gigabit Ethernet Trunking Modes Mode Function on Puts the port into permanent trunking mode and negotiates to convert the link into a trunk link. The port becomes a trunk port even if the neighboring port does not agree to the change. off Puts the port into permanent nontrunking mode and negotiates to convert the link into a nontrunk link. The port becomes a nontrunk port even if the neighboring port does not agree to the change. desirable Makes the port actively attempt to convert the link to a trunk link. The port becomes a trunk port if the neighboring port is set to on, desirable, or auto mode. auto Makes the port willing to convert the link to a trunk link. The port becomes a trunk port if the neighboring port is set to on or desirable mode. This is the default mode for Fast and Gigabit Ethernet ports. nonegotiate Puts the port into permanent trunking mode but prevents the port from generating DTP frames. You must configure the neighboring port manually as a trunk port to establish a trunk link. from my readings, "Desirable" is the best option to use for interoperability. Although ON should be equally effective in forcing the link into "Trunking" mode. Auto is OK, if one side is set to ON or Auto, but would be better switched to desirable on those ports which are part of a trunk group. http://www.cisco.com/univercd/cc/td/doc/product/lan/cat5000/rel_5_2/config/e _trunk.htm (Watch for Wrap) Ken Claussen MCSE CCNA CCA [EMAIL PROTECTED] "The Mind is a Terrible thing to Waste!" -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Lopez, Robert Sent: Tuesday, April 17, 2001 9:54 AM To: [EMAIL PROTECTED] Subject: trunking modes [7:902] Is there any "rule of thumb" when it comes to determining which trunking mode to use. I'm in an environment where about a dozen trunks exist between 4 6509's. The trunking modes have been set using "on", "desirable" and "auto". Is there any need to have them uniform in appearance? For example, one side of the link "desirable", the other side "auto". >From what I'm reading, I'm thinking since these 6509's are in the core of our network, the setting should be to "on" throughout. Any suggestions? TIA! Robert Robert M. Lopez Network Planning Ann Arbor Data Center Pfizer Global Research & Development Phone 734-622-3948 Fax 734-622-1690 "There are only two ways to live your life. One is as though nothing is a miracle. The other is as though everything is a miracle." ...Albert Einstein FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=923&t=902 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
CiscoSecure ACS [7:1125]
Anyone has experience with CiscoSecure ACS? I have a question: Under Network Configuration/Network Access Server Ip address, which internet's ip address you use for the field? I tried loopback, and all physical interfaces. Only the interface sending packet back to ACS server work. There must be a better way, if not there will be no redundancy, what if the link goes down? Please advice, Thanks, Ken Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=1125&t=1125 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: AUX port for dial out??? [7:2077]
Yes. try this link for more info. http://www.cisco.com/univercd/cc/td/doc/product/software/ssr921/rpcg/2.h tm Ken -Original Message- From: Bob Edmonds [mailto:[EMAIL PROTECTED]] Sent: Thursday, April 26, 2001 7:58 AM To: [EMAIL PROTECTED] Subject: AUX port for dial out??? [7:2077] Just a quick question... Is it possible to configure the AUX port on a 2501 to dial out? Possibly configure DDR on it? Just wondering! Any help would be greatly appreciated... Bob CCNA FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=2080&t=2077 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: AUX port for dial out??? [7:2077]
The link isn't broken, it rolled to the next line. Notice the "tm" on the next line. In your browser at the end of the address just add the tm so it shows the whole address on 1 line. As far as Cisco Press books go, the BCRAS (Building Cisco Remote Access Networks) book will cover it. Ken -Original Message- From: Bob Edmonds [mailto:[EMAIL PROTECTED]] Sent: Thursday, April 26, 2001 8:42 AM To: [EMAIL PROTECTED] Subject: Re: AUX port for dial out??? [7:2077] Ken, I tried the link but it seems that it's broken... Now that I know I can do it, I think it'd be cool to try! I don't have CCO access so where do you think I could go to research the subject? Is there any Ciscopress books that would cover the topic? Thanks in advance, Bob CCNA ""Barronton, Ken"" wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > Yes. try this link for more info. > http://www.cisco.com/univercd/cc/td/doc/product/software/ssr921/rpcg/2.h > tm > > Ken > > > -Original Message- > From: Bob Edmonds [mailto:[EMAIL PROTECTED]] > Sent: Thursday, April 26, 2001 7:58 AM > To: [EMAIL PROTECTED] > Subject: AUX port for dial out??? [7:2077] > > > Just a quick question... Is it possible to configure the AUX port on a 2501 > to dial out? Possibly configure DDR on it? Just wondering! Any help would > be greatly appreciated... > > Bob > CCNA > FAQ, list archives, and subscription info: > http://www.groupstudy.com/list/cisco.html > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] > FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=2105&t=2077 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
PIX: Cannot browse Some Website: Try this: www.sitemeter.com [7:2295]
Hi, We are having problem to browse this website: www.sitemeter.com Internet explorer will say "Opening page http://www.sitemeter.com"; in the status bar on the bottom and the page never came up. It came back with error: The page cannot be displayed We are able to browse the site using dialup to Netzero and some other dial up ISP. I wonder those of you who use PIX try this site? Our first thought was reserve DNS was not setup so we setup reserve DNS for the NATed IP on the PIX, but still cannot browse the site. Any ideas? Thanks, Ken Yeo Network Engineer, Aurum Technology Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=2295&t=2295 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Cannot browse Some Website: Try this: www.sitemeter.com [7:2305]
More info on this: When we by pass PIX (plus in a laptop to a hub between PIX and Internet router). We CAN browse www.sitemeter.com. Behind PIX, we can ping www.sitemeter.com and get 100% reply from 216.167.17.2. But we CANNOT browse using IE. Route is going to the correct gateway, do not have 216.167.17 in our WAN. So HTTP/application layer coming from the site is definately blocked in the PIX. Any ideas? Thanks! Ken Yeo Network Engineer Aurum Technology CCNP, CCDA, MCSE, CNE ""Ken Yeo"" wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > Hi, > > We are having problem to browse this website: > > www.sitemeter.com > > Internet explorer will say "Opening page http://www.sitemeter.com"; in the > status bar on the bottom and the page never came up. It came back with > error: > > The page cannot be displayed > We are able to browse the site using dialup to Netzero and some other dial > up ISP. > I wonder those of you who use PIX try this site? > Our first thought was reserve DNS was not setup so we setup reserve DNS for > the NATed IP on the PIX, but still cannot browse the site. Any ideas? > Thanks, > Ken Yeo > Network Engineer, > Aurum Technology > FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=2305&t=2305 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: ATM BOOK : Galina Diker Pildush : CISCO ATM Solutions: [7:2432]
Thanks for everyone who replied my email. I have bought the book, I think it will be helpful for the lab. Ken -Original Message- From: Nigel Taylor [mailto:[EMAIL PROTECTED]] Sent: Friday, April 27, 2001 8:58 PM To: [EMAIL PROTECTED]; Ken Yeo Cc: Cisco Group Study Subject: Re: ATM BOOK : Galina Diker Pildush : CISCO ATM Solutions: Master ATM Implementation of Cisco Networks Ken, I bought this book (http://www.bestwebbuys.com/books/compare/isbn/1578702135) after reading Galina's ATM White Paper on CertificationZone(plug..!) and let me say... at first glance the book is great resource. I've now had the book sometime and let me say it's even more. In her book Galina not only goes through the basic foundation of ATM, but she also covers how to identify and implement a specific solution. What also makes this book awesome is the various well laid out and diagrammed ATM practice lab scenarios. I must say anyone wanting to know more about ATM and having access to the equipment used in the lab examples will most definitely love this book. After, having had David Ginsberg - ATM book (http://www.bestwebbuys.com/books/compare/isbn/0201343029) this really put the technology within my reach. Another bonus in the book is the section that specifically covers the LS1010 ATM switches.. Recently there was a thread on the list in which questions were asked of specific configuration as it relates to the setting up SVC's using Classical IP and ARP over ATM. I went to Galina's book and had the answer in a matter of seconds.. Get this book... it's Cisco ATM and Configuration Explained... ! HTH Nigel... . - Original Message - From: Ken Yeo To: Sent: Friday, April 27, 2001 7:57 PM Subject: ATM BOOK : Galina Diker Pildush : CISCO ATM Solutions: Master ATM Implementation of Cisco Networks > What do you guys think about this book? > > > http://www.amazon.com/exec/obidos/ASIN/1578702135/o/qid=988415758/sr=8-2/ref > =aps_sr_b_1_2/107-6815218-1878111 > **Please read:http://www.groupstudy.com/list/posting.html Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=2432&t=2432 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: port number list on DOS [7:2809]
netstat -a If you find out how to track down what the various ports are really being used for, let me know. I asked about this a while back. So far no one has suggested anything useful except for monitoring and asking security related lists. -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Priscilla Oppenheimer Sent: Tuesday, May 01, 2001 4:39 PM To: [EMAIL PROTECTED] Subject: port number list on DOS [7:2809] OK, I have a DOS question that really is relevant to Cisco networking (sort of. ;-) This came up a couple months ago, but I can't find the answer in the archives. What is the DOS command to see port numbers (services) in use on a PC? Someone posted a command that would let you see the list of TCP and UDP port numbers. One of my students asked how to do this and I remembered that there was a command, but I couldn't remember what it was. Thanks, Priscilla Priscilla Oppenheimer http://www.priscilla.com FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=2815&t=2809 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Cannot browse Some Website: Try this: www.sitemeter.com [7:2956]
Try with static NAT.Still didn't work. Which version of PIX IOS your running? We are running 5.1 -Original Message- From: Daniel Cotts [mailto:[EMAIL PROTECTED]] Sent: Friday, April 27, 2001 4:30 PM To: 'Ken Yeo'; [EMAIL PROTECTED] Subject: RE: Cannot browse Some Website: Try this: www.sitemeter.com [7:22 95] We've had that issue going to certain sites. I do know that if you have a static NAT in your PIX for the inside host that you will connect. Those using dynamic translations won't. > -Original Message- > From: Ken Yeo [mailto:[EMAIL PROTECTED]] > Sent: Friday, April 27, 2001 1:11 PM > To: [EMAIL PROTECTED] > Subject: PIX: Cannot browse Some Website: Try this: www.sitemeter.com > [7:2295] > > > Hi, > > We are having problem to browse this website: > > www.sitemeter.com > > Internet explorer will say "Opening page > http://www.sitemeter.com"; in the > status bar on the bottom and > the page never came up. It came back with > error: > > The page cannot be displayed > We are able to browse the site using dialup to Netzero and > some other dial > up ISP. > I wonder those of you who use PIX try this site? > Our first thought was reserve DNS was not setup so we setup > reserve DNS for > the NATed IP on the PIX, but still cannot browse the site. Any ideas? > Thanks, > Ken Yeo > Network Engineer, > Aurum Technology > FAQ, list archives, and subscription info: > http://www.groupstudy.com/list/cisco.html > Report misconduct > and Nondisclosure violations to [EMAIL PROTECTED] Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=2956&t=2956 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Protocol Type 0x886F [7:3737]
A, Check out Novell's site. 0x886F 111 OBJECT_NOT_FOUND 0x886F 111 NWE_OBJECT_NOT_FOUND HTH kv - Original Message - From: "Andy Prima" To: Sent: Tuesday, May 08, 2001 9:47 PM Subject: Protocol Type 0x886F [7:3737] > Dear all, > I need help on protocol type 0x886F. It seems that this kind of Ethernet > Broadcast is circling around my network and I do not have a clue what it > really is. > > TIA > andy > FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=3744&t=3737 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Querying the FR Switch for DLCIs [7:3863]
B, You can debug frame-relay lmi watch the debug periodically it will tell you what dlci your router should be configured for. HTH kv - Original Message - From: "Barry Kiesz" To: Sent: Wednesday, May 09, 2001 11:28 AM Subject: Querying the FR Switch for DLCIs [7:3863] > Is there a command on a Cisco router to query a FrameRelay switch to find > out which DLCIs are pointed to it? > > Barry > FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=3874&t=3863 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
ISDN call problem [7:4258]
Attempting to get isdn working i get this error anyone experienced this error before? ISDN BR0: Event: Call to 8358662 at 64 Kb/s ISDN BR0: Event: incoming ces value = 1 ISDN BR0: received HOST_DISCONNECT_ACK ISDN BR0: Got a disconnect on a non-existent call (call id = 0x8010). This probably is a call that we placed that never got answered.. r1 interface BRI0 ip address 192.168.50.1 255.255.255.0 encapsulation ppp dialer map ip 192.168.50.2 name r2 broadcast 8358661 dialer-group 1 no fair-queue ppp authentication chap r2 interface BRI0 ip address 192.168.50.2 255.255.255.0 encapsulation ppp isdn spid1 0835866101 isdn spid2 0835866301 dialer map ip 192.168.50.1 name r1 broadcast 8358662 dialer-group 1 no fair-queue ppp authentication chap Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=4258&t=4258 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Ping bri0 [7:4414]
Why would I not be able to ping a bri0? Interface if it says: BRI0 is up, line protocol is up (spoofing) Layer 1 status: ACTIVE Layer 2 status: TEI = 104, State = MULTIPLE_FRAME_ESTABLISHED TEI = 105, State = MULTIPLE_FRAME_ESTABLISHED Spid status: TEI104, ces = 1, state = 5(init) spid1 configured, spid1 sent, spid1 valid TEI105, ces = 2, state = 5(init) spid1 configured, spid2 sent, spid2 valid ?? kv Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=4414&t=4414 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Frame Relay Problem [7:4435]
R, Are you using inverse arp or maps statements for your dlci to ip mappings? If you are using mappings you will need to configure a map statement as the one to the hub but map it to the local ip of the router. Use caution if on production network. For the problem with DHCP try traceroute and see where it dies. hth kv - Original Message - From: "robert alldread" <> To: Sent: Monday, May 14, 2001 11:00 AM Subject: Frame Relay Problem [7:4435] > Hey, > > I have read through the archives and found information close to what I am > needing, but not exactly. > > Here is the question... > > I have (3) 3600 series routers connected by Frame-relay links. router#1 is > the main, router#2 and router#3 hang off of the main in a hub and spoke > config. I have a DHCP server behind router#1 that all subnets use for > address's. I am running EIGRP. > > Router#2 and router#3 have "ip helper-address" statements for the DHCP > server. Router#2 can ping the DHCP server and its own serial interface and > get DHCP addresses, but router#3 can't ping the DHCP server or its own > serial interface, or get DHCP address's. Traffic passes fine, LMI is > correct, and PVC's are setup correctly. Both Router#2 and Router#3 have the > exact same config(beside network numbers, ip address's, and DLCI's). > > What would cause a router not to be able to ping it own serial interface??? > "show ip int s0" says (up,up) and LMI are increasing every 10 seconds.. > > Please helpcisco TAC can't even solve this one... > > I am not a member of groupstudy (yet), so please respond to > "[EMAIL PROTECTED]" > > Thank you guys!! > FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=&t=4435 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Passed CID today [7:4714]
Hi group, I passed CID today to complete the CCDP. The test was not too difficult. I used the Cisco Press book, Boson, and Cisco's web site to supplement info about Stratacom. The Cramsession from Brainbuzz is a very good "hit the highlights" guide, however I found some differences about the format of the test. The Cramsession said: 100 questions 65 to pass 120 minutes CAN review questions. My test: 100 questions 755 to pass 120 minutes CAN NOT review questions. Hope this helps... Ken Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=4714&t=4714 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Which Ethernet Frame Does Everyone Use [7:6179]
I am confused about which Ethernet frame type everyone uses with TCP/IP today. I understand that there are four different types. I see from the Cisco website that they talk about only two of these four. The two they discuss are called Ethernet and IEEE 802.3. The one Cisco calls Ethernet has the following fields Preamble Destination Address Source Address Type Data CRC The one Cisco calls IEEE 802.3 has Preamble Start Frame Delimiter Destination Address Source Address Length Data and 802.2 Header inside the data area as best I can tell CRC Why do they mention these two only? Who uses what? Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=6179&t=6179 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Which Ethernet Frame Does Everyone Use [7:6179]
Yes. Thanks. That helps. I have been doing more research and see that Ethernet II is the one to use in most cases these days. -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Priscilla Oppenheimer Sent: Tuesday, May 29, 2001 2:19 PM To: [EMAIL PROTECTED] Subject: Re: Which Ethernet Frame Does Everyone Use [7:6179] IPv4 and IPv6 use the Ethernet II frame format. Some server and desktop OSs support changing the frame format to 802.3, although there's no reason to do this usually. In the past, some OSs defaulted to 802.3. But most implementations these days use Ethernet II. If a Cisco IOS router receives IP frames encapsulated in an 802.3 header from a device, the router sends to that device in 802.3 also. You can't configure the Ethernet frame format for IP with Cisco IOS. But you can configure the frame format for ARP. Can you think why? IP isn't the only thing out there, though! :-) AppleTalk Phase 2 uses IEEE 802.3 with 802.2 and SNAP. Novell supports four frame types. This is configurable on Cisco IOS routers in interface mode with the IPX network command, and it is configurable on clients and servers, of course. NetBEUI uses 802.3 with 802.2. SNA uses 802.3 with 802.2. DECnet uses Ethernet II. IS-IS uses 802.3 with 802.2. The question of why some books say there are 4 frame formats and some say 2 frame formats has to do with orientation (Novell orientation versus IP) and is really a matter of wording. The other two frame formats, other than the two you mentioned, are a subset of IEEE 802.3 and are as follows: Novell raw Preamble Start Frame Delimiter Destination Address Source Address Length Data (no 802.2) CRC Preamble Start Frame Delimiter Destination Address Source Address Length 802.2 SNAP Data CRC Hope that helps. Priscilla At 12:36 AM 5/29/01, Ken Chipps wrote: >I am confused about which Ethernet frame type everyone uses with TCP/IP >today. I understand that there are four different types. I see from the >Cisco website that they talk about only two of these four. The two they >discuss are called Ethernet and IEEE 802.3. The one Cisco calls Ethernet has >the following fields > > Preamble > Destination Address > Source Address > Type > Data > CRC > >The one Cisco calls IEEE 802.3 has > > Preamble > Start Frame Delimiter > Destination Address > Source Address > Length > Data and 802.2 Header inside the data area as best I can tell > CRC > >Why do they mention these two only? Who uses what? >FAQ, list archives, and subscription info: >http://www.groupstudy.com/list/cisco.html >Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] Priscilla Oppenheimer http://www.priscilla.com FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=6289&t=6179 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Redundancy design question [7:6646]
An excellent book on this subject is High Availability Networking with Cisco by Vincent Jones ISBN 0201704552. -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Priscilla Oppenheimer Sent: Thursday, May 31, 2001 3:11 PM To: [EMAIL PROTECTED] Subject: Re: Redundancy design question [7:6646] Well, you have pinpointed the problem with many redundant campus network designs. They may not be redundant into the WAN. To meet your goals, you may need a backup WAN connection of some sort. Depending on the level of performance you want for the backup and the amount of traffic that you have, you could use a low-speed and low-cost backup such as ISDN or even an analog modem. You'll need to think about the cost, benefits, risks of not doing anything, etc. How often do failures occur with your current WAN? (Mean Time Between Failure)? When problems occur, how quickly do they get fixed? (Mean Time To Repair) What's the cost of downtime? Any layer 8 (politics) issues you need to deal with? Like will you lose your job and/or credibility if the WAN connection is down for a long time? When provisioning backup WAN links, you should learn as much as possible about the actual physical circuit routing also. Different carriers sometimes use the same facilities, meaning that your backup path is susceptible to the same failures as your primary path. Be sure to analyze your local cabling in addition to your carrier's services. Perhaps you have designed an ISDN link to back up a Frame Relay link. Do both of these links use the same cabling to get to the demarcation point in your building network? What cabling do the links use to get to your carrier? The cabling that goes from your building to the carrier is often the weakest link in a network. It can be affected by construction, flooding, ice storms, trucks hitting telephone poles, Bob the back-hoe operator, etc. Priscilla At 03:09 PM 5/31/01, Jon wrote: >I've been reading about designing physical redundancy into networks, by >having hot standby devices and using HSRP between them. As an example, if >a site has a single router and a single core switch, these are points of >risk. By adding a second core switch and a second router, any hardware >failure should be overcome by the standby device taking over. If all the >servers and wiring closet switches are multi-homed to both core switches, >users shouldn't notice that a fault has occured. (I assume that the loss >of a wiring closet switch is acceptable -- perhaps local spares are >sufficient). > >However, if I only have one WAN circuit coming into the facility, it can >only be connected to one router at a time, right? So, if the active >router fails, how does the WAN connectivity fail over, short of an >operator moving the cable to the second router? I'm not trying to address >WAN circuit redundancy or multi-homing, that's a different worm-can to >open. > >Is there some way to have both routers connected to the same WAN circuit? >Something along the lines of a WYE-cable that connects both routers to the >demarc connection? Or is this something that the circuit provider would >address with their equipement (for a fee, I'm sure)? > >If this has been hashed over in the past, I couldn't find it in the >archives. So, if we've covered this before, could someone share the key >search words to locate the discussion? > >-jon- > >__ >Do You Yahoo!? >Get personalized email addresses from Yahoo! Mail - only $35 >a year! http://personal.mail.yahoo.com/ Priscilla Oppenheimer http://www.priscilla.com Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=6660&t=6646 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: can we NAT the destination IP using IOS's NAT nature? [7:7050]
>If yes, can you show me how is the command look like? >>Hi, >>I guess you can config a static nat mapping >>and reverse the inside and outside interface. Mike, Try this instead, ip nat inside source static tcp 192.168.0.100 25 25 extendable This statement will allow mail to your rfc1918 addressed mail bridgehead server. With Cisco's implementation you can actually redirect ports to different output ports unlike most Linksys and Netgear cable/modem routers, have fun and secure your mail realy! The only difference from what you are asking is this is on a port by port basis, I am not familiar of a way to do full 1to1 NAT to virtual IP. Also I have not found any documentation supporting the ability to add "Conduit"(Pix, similar to ACL)statements or access-list's to these statics so use them at your own risk. HTH You can use a secondary address if you need "Virtual addresses" I beleive, I have tested with secondary's on the internal site but not the external. Ken Claussen MCSE CCNA CCA [EMAIL PROTECTED] "The Mind is a Terrible thing to Waste!" Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=7050&t=7050 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
T1 MTBF and MTTR [7:7410]
Does anyone have any figures for the MTBF and MTTR for common WAN lines such as a T1? Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=7410&t=7410 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: 640-504 Test strategy [7:8134]
Hello, Does it really matter? All the CCNP level tests have 60 something questions, and the passing score is in the high 600's or low 700's, and the time is around 90 minutes. Don't let that be a hang-up! Study hard until you know the material, then take the test. At that point the number of questions, passing score, and time doesn't matter. When you're sitting in front of the computer about to take the test and the numbers for the test are revealed does it bother you? If it does you're probably not ready for the test. My strategy is when I see the numbers for the test, I write them down on the scratch pad. I then divide the total time for the test in 4 times and calculate what question number I must be on at that time to be on schedule to finish on time. Example: 64 ques, 90 min At about 22 min in to the test I should be on at least ques # 16 At about 44 min in to the test I should be on at least ques # 32 At about 66 min in to the test I should be on at least ques # 48 At about 88 min in to the test I should be on at least ques # 64 - DONE! Hope this helps, Ken - CCDP, CCNP -Original Message- From: Md Fahim [mailto:[EMAIL PROTECTED]] Sent: Tuesday, June 12, 2001 3:34 AM To: [EMAIL PROTECTED] Subject: 640-504 [7:8122] Hi! What is the passing score for 640-504 (switching exam) and how many questions are there totally. Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=8134&t=8134 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: ARP and TCP/IP layering [7:8335]
What is the source of this information on the sublayers of the layers in the OSI model? Is this information that is readily available? Do other layers of this model, besides the IEEE defined sublayers of the Data Link layer, have sublayers assumed as well? In other words, where can I find more information on this topic? I have not seen it in any of the standard texts or I overlooked. -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Howard C. Berkowitz Sent: Wednesday, June 13, 2001 10:55 AM To: [EMAIL PROTECTED] Subject: Re: ARP and TCP/IP layering [7:8335] >Hi all, > >Trivial yet fundamental question. I have seen ARP described as part of >the network (internet) layer so many times that I have started to >believe it belongs there (although I know well that it operates "as if" >the Layer 2 protocol - as per OSI RM). Now I have eventually come across >Doug Comer's statement: "It's part of the network interface layer." > >I should not ask where the truth is but still I will. That would mean >quite a lot of books are incorrect in this (including Cisco materials). > >Rita Lots of books are indeed wrong, when judged against the ISO Internal Organization of the Network Layer document. Stripping to a minimum of OSI speak, what we think of the network layer actually has three sublayers, one of which arguably extends into the data link layer or at least overlaps it. The Subnetwork Independent Convergence Layer is the truly link-independent part such as IP or CLNP. The Subnetwork Access Protocol is the interface to intelligent layer 2 protocols that have payload identification -- X.25, ATM, LLC, etc. The Subnetwork Dependent Convergence Facility maps between the Subnetwork Independent and Subnetwork Access parts. ARP goes here. Going a step farther, it's also worth considering the functional as well as layering models of B-ISDN/ATM, which identify the U(ser), C(ontrol)/signaling and M(anagement) planes at each layer. ARP is a C plane protocol between the end host and the ingress relay, much as is Q.931 and Q.2931. IP routing protocols, PNNI and SS7 are relay-to-relay M plane protocols. Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=8420&t=8335 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Checking the IOS [7:8693]
Show version There will be a line that says something like... System image file is "flash:c2500-i-l.113-11b.bin", booted via flash Then go to http://www.cisco.com/warp/customer/620/4.html and decript your image name. Ken -Original Message- From: Chang Ngoc [mailto:[EMAIL PROTECTED]] Sent: Friday, June 15, 2001 6:55 AM To: [EMAIL PROTECTED] Subject: Checking the IOS [7:8693] Seems this is a stupid question, but how can I check the IOS located onto my router ( AS 2511 ) if it is IP, IP Plus or IP/FW, etc ? Which command can do that ? Thanks in advance Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=8698&t=8693 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: what about ccie-pre-qualification test in boson ci [7:9027]
Hey, I'm studying for the CCIE written now after getting my NP and DP. I'm reading the All-In-One CCIE study guide by Roosevelt Giles (around 900 pages) then I'm going to take Boson tests and every sample test I can find for a couple of days before taking the exam. Any other suggestions? Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=9089&t=9027 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
CCIE Written [7:9091]
Hello. I'm getting ready for my CCIE written examination on the 26th of June. I've recently gotten my NP and DP, and I'm studying for the CCIE written by reading the entire book of All-In-One CCIE Study guide by Roosevelt Giles. After I read the book, I'm going to take Boson tests and any other test or questions I can to prepare. Any other suggestions? Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=9091&t=9091 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
CCIE Lab Construction [7:9092]
Hello. I've recently come into four Cisco 2621's and four Cisco 2924 switches. I need to configure this equipment into a lab to study for my CCIE lab exam. Any suggestions? Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=9092&t=9092 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: CCIE Written [7:9091]
Do you see much appletalk or NetBios content on the CCIE written? Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=9096&t=9091 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Fast Switching on Cisco Routers [7:9753]
Try www.cisco.com Searched for "fast process switching" and found this in the top ten(4). http://www.cisco.com/warp/public/63/tuning.html and seems to answer most of your questions. HTH. Ken Claussen MCSE CCNA CCA "The Mind is a Terrible thing to Waste!" -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Mohamed El Komy Sent: Monday, June 25, 2001 7:04 AM To: [EMAIL PROTECTED] Subject: Fast Switching on Cisco Routers [7:9753] I'd like to know "which is the default switching in Cisco Routers for TCP/IP traffic?" Is it Process or Fast Switching?" Also there're some questions I need an answer to: 1- When issuning debug commands,do I need to turn off Fast Switching ? 2- Which leads to more CPU and Memory utilization: Process or Fast Swithing? 3- What's the differnece between Fast,Autonomous,Silicon and Optimum Switching? I also need some technical papers about Distributed Switching using VIP cards on Cisco 7500 series and its Architecture. Thanks, komy Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=9758&t=9753 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: MAJOR OT: Free CCNPtraining for convicts [7:34039]
A quick search on CCO revealed this: http://www-search.cisco.com/pcgi-bin/search/public.pl?q=prison&num=10&searchselector=0 There is only one hit and it points to another site. It's also over a year old. Ken >>> "raf" 02/01/02 09:22AM >>> Drop the 'N', give them a red t-shirt and send them off to Cuba! [snip] Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=34089&t=34039 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Off Topic - CCIE LAB and NDA [7:34244]
Chuck, There are still some very large Token Ring installations, although I don't know why. I would think it would be cheaper to phase it out during regular maintenance. As for forward looking? I don't think that's what the CCIE is for. CCIE means you know (or should know) what you are doing with current core technologies. Not new, popular, technologies. Although, there is the CCIE Security certification, which deals with newer stuff. People at Cisco have talked about a AVVID type CCIE certification, too. My opinion is CCIE is right for what people need. You can show your strengths by selecting the one matching your skills the best. Or for that matter, by selecting multiples. Besides, it provides Cisco with another revenue stream. Ken >>> "Chuck Larrieu" 02/02/02 11:32PM >>> [snip] 2) what is it Cisco really considers CCIE level skill? In the past, things like DecNet, Apollo, and Vines were core topics. Cisco has recently dropped those, plus ATM LANE, presumably in response to market conditions. Which leads one to ask - why token ring? The only real world token ring project I have been involved with the past couple of years is ripping them out and replacing them with ethernet. The apologia that there are still some major token ring networks around is a bit lame. There are still some major DecNet networks around, I'm sure. Until very recently ( and maybe they still are ), a major utility company out this way was still running Vines. As was the U.S Navy. 3) Is the CCIE a forward looking certification or not? Based on what I am seeing in the marketplace, the advanced skill levels that one needs to meet demand center around VPN, VoIP, wireless, security, and the underlying infrastructure required to support these technologies. that means lots of QoS, switching, L2-L3 interaction, ATM, giga-whatever, etc. [snip] Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=34272&t=34244 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: hiding an computer ( ip address ) using access list [7:34991]
Beth, My choice would be filtering on the machine. If you're using UNIX, there are several IP filtering (and free) products. You could also tailor the routing table in the machine to only allow it to find your other machine. Why tax the router? Ken >>> "beth" 02/09/02 04:01PM >>> I am adding a computer to my network that i do not want accessible via network to anyone but myself. Can someone suggest best ways to do this, is this possible on the router level via access list? Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=34991&t=34991 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: V35 - smartserial cross-over cable [7:35181]
Try this link as a starting point; http://www.cisco.com/warp/public/534/index.shtml -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] On Behalf Of Taco Hettema Sent: Tuesday, February 12, 2002 6:48 AM To: [EMAIL PROTECTED] Subject: V35 - smartserial cross-over cable [7:35181] Hello, can anyone tell me the pinout of a V35 - smart serial serial DCE/DTE cross-over cable and that of a smart-serial-smart-serial dce/dte cross-over cable? I want to connect a AGS to a 2500 and 2 2500's with one cable (instead of ordering expensive cable-pairs at cisco). Thanks in advance Taco Hettema Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=35351&t=35181 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Serial (X.21) X-over cables [7:35212]
Try this Link as a start; http://www.cisco.com/warp/public/534/index.shtml -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] On Behalf Of Joel Satterley Sent: Tuesday, February 12, 2002 11:30 AM To: [EMAIL PROTECTED] Subject: Serial (X.21) X-over cables [7:35212] Anyone know the Cisco part number (or pin-outs) for the Cab-x.21MT crossover equivalent ? I need to use some back to back serial connections without using a kilostream simulator. Any help would be gratefully rec'd. Thanks. Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=35350&t=35212 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: WAN IP [7:35405]
Brian, Why would this be a problem if you're using two routers that both support a /31 address? There is an RFC (I don't have the number handy) defining this. I can understand the potential if you're not using the same IOS or using routers from different vendors. Ken >>> "Brian" 02/14/02 07:58PM >>> Begging for problems with non compliant hardware/software?? Brian - Original Message - From: "Kent Yu" To: Sent: Thursday, February 14, 2002 1:54 PM Subject: Re: WAN IP [7:35405] > You should be able to use /31 on some IOS. > > Kent > > > ""Larry Letterman"" wrote in message > [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > > I agree, the /30 will cover one wan link between 2 routers.. > > for 3 sites you would 3/30 networks. > > > > Larry Letterman > > Cisco Systems > > [EMAIL PROTECTED] > > > > -Original Message- > > From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of > > Steven A. Ridder > > Sent: Thursday, February 14, 2002 9:00 AM > > To: [EMAIL PROTECTED] > > Subject: Re: WAN IP [7:35405] > > > > > > Unless I'm reading your question totally wrong, that one address will only > > cover 1 link between 2 sites, .1 and .2. I have to imagine I'm reading it > > wrong. > > > > > > ""Tom Richs"" wrote in message > > [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > > > If you have lets say 4 WAN sites or 3 WAN sites connecting as a > triangle, > > > does it make sense to use one network lets say 192.168.5.0/30 as the > > > subnetted ip address for all the WAN serial interfaces between all the > > > sites. > > > > > > > > > > > > > > > > > > _ > > > MSN Photos is the easiest way to share and print your photos: > > > http://photos.msn.com/support/worldwide.aspx Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=35467&t=35405 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Testing [7:35471]
No, but I can see your e-mail. ;-) >>> "Thomas" 02/15/02 12:03AM >>> Can anyone see me? Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=35482&t=35471 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Slightly OT: SSH Poll [7:35505]
I am part of a team that is installing hundreds of switches and routers for a large transportation company. No SSH anywhere. The traffic on this infrastructure is "typical" office communications. Probably not worth securing as strongly as financial information. -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] On Behalf Of John Neiberger Sent: Friday, February 15, 2002 10:07 AM To: [EMAIL PROTECTED] Subject: Slightly OT: SSH Poll [7:35505] I'm wondering how many of you are involved in networks that use SSH exclusively for router access. Since we're in the financial sector, external auditors continually suggest that this is necessary. While it's probably not a bad idea, I personally feel it's more of pain that it's worth, especially considering how often we change the passwords. But that's another matter altogether... So, are any of you using SSH exclusively in fairly large networks? If so, has it been working well for you? Thanks, John Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=35684&t=35505 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Visual switch manager gone after upgrade TFTP. [7:35716]
You need to upgrade the HTML files as well. The .bin file contains the IOS image only. There is a .tar file that upgrades the IOS as well as the HTML files. See http://www.cisco.com/warp/customer/473/36.shtml for more info. Ken -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] On Behalf Of Sim, CT (Chee Tong) Sent: Monday, February 18, 2002 3:43 AM To: [EMAIL PROTECTED] Subject: Visual switch manager gone after upgrade TFTP. [7:35716] I was doing a TFTP upgrade procedure on the XL switch. There is a procedure to delete the HTML files: delete flash:html/* before copying the new flash and I have done that. After I upgraded the IOS and reload it. The IOS was successfully upgraded but when I go to web based (Visual switch manager) , there is no page shown. Then I go to my flash:html/ , it is empty % SwitchA#dir flash:html/ Directory of flash:html/ 190 d--x 0 Mar 01 1993 00:09:40 Snmp 3612672 bytes total (1850880 bytes free) %% I went to other switch (B), I found there are a lot of files on the html folder, what should I do to make the Visual Switch manager working again? Should I copy all the file to switch A? SwitchB#dir flash:html/ Directory of flash:html/ 5 -rwx 965 Mar 01 1993 00:09:55 Detective.html.gz 6 -rwx 671 Mar 01 1993 00:09:55 GraphFrame.html.gz 7 -rwx 675 Mar 01 1993 00:09:55 GraphFrameIE.html.gz 8 -rwx1182 Mar 01 1993 00:09:55 ethhelp.html.gz 9 -rwx1499 Mar 01 1993 00:09:55 fddihelp.html.gz 10 -rwx1538 Mar 01 1993 00:09:56 fdnethlp.html.gz 11 -rwx 538 Mar 01 1993 00:09:56 ieGraph.html.gz 12 -rwx 524 Mar 01 1993 00:09:56 ieLink.html.gz 13 -rwx 959 Mar 01 1993 00:09:56 LinkFetch.html.gz 14 -rwx 960 Mar 01 1993 00:09:56 LinkFetchIE.html.gz 15 -rwx 796 Mar 01 1993 00:09:56 LinkReport.html.gz 16 -rwx3346 Mar 01 1993 00:09:56 TopoMain.html.gz 17 -rwx5154 Mar 01 1993 00:09:57 address.html.gz 18 -rwx3332 Mar 01 1993 00:09:57 addrhelp.html.gz 19 -rwx2573 Mar 01 1993 00:09:57 amether.html.gz 20 -rwx2706 Mar 01 1993 00:09:57 amfddi.html.gz 21 -rwx2907 Mar 01 1993 00:09:58 amfdnet.html.gz 22 -rwx3291 Mar 01 1993 00:09:58 amtr.html.gz 23 -rwx3018 Mar 01 1993 00:09:58 amtrnet.html.gz 24 -rwx3071 Mar 01 1993 00:09:58 arp.html.gz 25 -rwx1147 Mar 01 1993 00:09:58 arphelp.html.gz 26 -rwx 210 Mar 01 1993 00:09:59 back.html.gz 27 -rwx4975 Mar 01 1993 00:09:59 balboa.html.gz 28 -rwx3171 Mar 01 1993 00:09:59 basichlp.html.gz 29 -rwx 171 Mar 01 1993 00:09:59 blank.html.gz 30 -rwx 527 Mar 01 1993 00:09:59 bottom.html.gz 31 -rwx3861 Mar 01 1993 00:10:00 cdp.html.gz 32 -rwx1562 Mar 01 1993 00:10:00 cdphelp.html.gz 33 -rwx3926 Mar 01 1993 00:10:00 cgmp.html.gz 34 -rwx1790 Mar 01 1993 00:10:00 cgmphelp.html.gz == De informatie opgenomen in dit bericht kan vertrouwelijk zijn en is uitsluitend bestemd voor de geadresseerde. Indien u dit bericht onterecht ontvangt wordt u verzocht de inhoud niet te gebruiken en de afzender direct te informeren door het bericht te retourneren. == The information contained in this message may be confidential and is intended to be exclusively for the addressee. Should you receive this message unintentionally, please do not use the contents herein and notify the sender immediately by return e-mail. == Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=35799&t=35716 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: Network jobs in Dallas, TX? [7:35608]
I was an Ericsson casualty. They recently cut 400 R&D people. They also just gave notice to more network engineers. Nortel has several large buildings that are empty as does Ericsson. I don't know about Alcatel, but they are big here. Even Cisco cut people here. It's not a good place to be. Ken >>> "nrf" 02/18/02 06:06PM >>> While I don't live in Texas, I would imagine that there would indeed be lots of unemployed network guys hanging around Dallas, due to the proximity of Telecom Alley, and the implosion of the telecom industr. ""AMR"" wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > Get in line. There's hundreds in line in front of you with similar skills. > > > ""ME"" wrote in message > [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > > I'm new to the Dallas area and recently laid-off. I was wondering if > folks > > here knew of anyone looking for somebody with 10 years network exp. and a > > CCIE in the Dallas area? If so please reply. > > > > Thanks, > > > > Mark Egan, CCIE #8775 Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=35818&t=35608 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Should I buy IDS ? [7:36053]
Ken >>> "Tel Khan" 02/21/02 09:12AM >>> Hi, Where can i obtain information on SNORT? Thanks in advance Tel Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=36072&t=36053 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: IBM' s latest and fastest chip ? [7:36473]
IBM sold all of their networking product lines to Cisco when they formed the Alliance. (http://www-1.ibm.com/services/alliances/cisco/index.html ). IBM sells a great deal of Cisco equipment. IBM sells other lines as well, but like the rest of the world, Cisco is the #1 line. I don't know where Cisco buys their chips and processors from. Disclaimer: I am an IBM employee. -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] On Behalf Of John Green Sent: Monday, February 25, 2002 10:09 PM To: [EMAIL PROTECTED] Subject: IBM' s latest and fastest chip ? [7:36473] ibm says that its chip can run at 110 GHz. who makes the chips or processors for cisco routers and switches. also what about juniper ? who and which companies use chips made by IBM ? is IBM into networking products ? __ Do You Yahoo!? Yahoo! Sports - Coverage of the 2002 Olympic Games http://sports.yahoo.com Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=36487&t=36473 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: Current CD Rom Documentation [7:35930]
Option 1: Purchase a Cisco router or switch, it comes with a copy of the documentation. (although you might get an older version, based on when the CD was packed in the box). Option 2: Go to http://www.cisco.com/go/marketplace Click on the Cisco Company Store, and then on Subscriptions. You can get a Quarterly or Monthy subscription to the documentation CD. -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] On Behalf Of McHugh Randy Sent: Tuesday, February 19, 2002 11:18 PM To: [EMAIL PROTECTED] Subject: Current CD Rom Documentation [7:35930] Does anyone know where or how to obtain a current Cisco CD Rom documentation CD with the latest IOS of like 12.2 on it without like taking an official Cisco course from a Training partner? I have a bunch of them are outdated with only up to IOS 12.1. They certainley seem to be difficult to navigate and do a search on . Any suggestions welcome. Thank you, Randy Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=36594&t=35930 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: certificationZone Bridging White paper ! [7:37393]
Phil, The first bit within the Source Address Field is normally the I/G bit, to define if the source address is individual (unicast) or group (multicast) address. In an SRB bridged environment, this one bit is used to indicate if any Routing Information Field (RIF) information is present in the Token frame following the SA field. This bit will be set by hosts with the SRB environment and used by bridges to indicate the above. The hosts will keep a "forwarding table" on how to reach any required destination host. If the host doesn't know how to get to a particular destination, it will send out an explorer frame (all routes explorer -ARE) or a Spanning tree explorer (SPE) frame to locate the destination. It will depending on your bridged environment which explorer frame is used. The first SRB enabled bridge in the path (from originator to destination) will see that this is an explorer packet and add its route designator (RD) information to the RIF. The first bridge will add the first ring number, it's bridge number, and the ring number of the interface it going to send the explorer packet out of. When all said and done - the host will know how to reach that particular end host and include RIF information in the token frame. The RII, will tell the bridge that a RIF is present and forward the frame according to the RIF RC and RD fields. Ken Sexton Data Network Engineering ICG Communications [EMAIL PROTECTED] -Original Message- From: Phil Barker [mailto:[EMAIL PROTECTED]] Sent: Wednesday, March 06, 2002 6:35 AM To: [EMAIL PROTECTED] Subject: certificationZone Bridging White paper ! [7:37393] Just been re-reading this paper by David Wolfsener. See SNIP below. In the instance where the RII indicator is a 1 the frame will be 'source routed' if the frame is 'source routed' then surely this implies that the RIF must be manipulated in order to reflect the true Source Route !!! I havn't got my 'Interconnections' with me so I cannot confirm. Any ideas ? Phil. >>> SNIP Source Route Transparent Bridging (SRT) SRT works by analyzing the RII bit to determine if a RIF is present. If the RII bit is 0, then a RIF is not present and the frame is transparently bridged. If, however, the RII bit is 1 and a RIF is present, then the frame is source routed. Note that SRT bridges do not add or remove RIFs to frames. By now, you ought to wonder how to configure SRT. >>> END __ Do You Yahoo!? Everything you'll ever need on one web page from News and Sport to Email and Music Charts http://uk.my.yahoo.com Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=37398&t=37393 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: the RD [7:37401]
The RDs in the RIF should always be represented in Hex format. When defining the source-bridge command on the router you define as decimal format. However, with that said, you'll see test questions with the decimal equivalence within the RD fields. In either case, I would know how to convert in both directions, that way you're prepared no matter how it is presented. Ken Sexton Data Network Engineering ICG Communications [EMAIL PROTECTED] -Original Message- From: Mckenzie Bill [mailto:[EMAIL PROTECTED]] Sent: Wednesday, March 06, 2002 9:47 AM To: [EMAIL PROTECTED] Subject: Re: the RD [7:37401] O.k. Let me re phrase my question. How important is it to know how to conevert the RD into hexidecimal? I have the RII and the RIF but then a couple of papers I read stated, and now the easy part...the RD, and then I'm lost. Any help? Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=37432&t=37401 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: certificationZone Bridging White paper ! [7:37393]
In the instance where the RII indicator is a 1 the >frame will be 'source routed' if the frame is 'source >routed' then surely this implies that the RIF must be >manipulated in order to reflect the true Source Route To comment of the above, the RII bit doesn't indicate whether the frame is a specific routed frame or whether it is a explorer frame. It only indicates whether the frame contains RIF information or not. The specifically routed frame indicator is within the RIF (first three bits of the RC field, known as the "type" or "broadcast" bits - 0xx = specifically routed frame, 10x = ARE frame, 11x = SPE frame). Maybe its the way its worded that may be the cause of confusion; I've never read it to verify. Ken Sexton Data Network Engineering ICG Communications [EMAIL PROTECTED] -Original Message- From: Priscilla Oppenheimer [mailto:[EMAIL PROTECTED]] Sent: Wednesday, March 06, 2002 1:04 PM To: [EMAIL PROTECTED] Subject: Re: certificationZone Bridging White paper ! [7:37393] At 08:34 AM 3/6/02, Phil Barker wrote: >Just been re-reading this paper by David Wolfsener. >See SNIP below. > >In the instance where the RII indicator is a 1 the >frame will be 'source routed' if the frame is 'source >routed' then surely this implies that the RIF must be >manipulated in order to reflect the true Source Route The RIF is just referenced (not changed) in frames that are specifically routed. In other words, once the end station has found a route, it just puts it in the frame and the bridges just read it forwards or backwards and route accordingly. Could that be what he's getting at?? On the other hand, I agree with you that on an explorer, an SRT bridge changes the RIF. SRT simply implies a couple things: 1) If the RII is zero, just perform normal Ethernet-style transparent bridging 2) If the RII is one and redundant bridges exits, use the spanning tree to determine which way to forward explorer frames. By the way, SRT is the only form of source route bridging that the IEEE ever standardized. And you can get it for free! ;-) It's in Annex C of IEEE 802.1D, which you can get here: http://standards.ieee.org/getieee802/ Have fun with it! Priscilla >!!! I havn't got my 'Interconnections' with me so I >cannot confirm. > >Any ideas ? > >Phil. > > >>> SNIP > >Source Route Transparent Bridging (SRT) > >SRT works by analyzing the RII bit to determine if a >RIF is present. If the RII bit is 0, then a RIF is not >present and the frame is transparently bridged. If, >however, the RII bit is 1 and a RIF is present, then >the frame is source routed. Note that SRT bridges do >not add or remove RIFs to frames. By now, you ought to >wonder how to configure SRT. > > >>> END > >__ >Do You Yahoo!? >Everything you'll ever need on one web page >from News and Sport to Email and Music Charts >http://uk.my.yahoo.com Priscilla Oppenheimer http://www.priscilla.com Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=37476&t=37393 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: solution of strange prob [7:37377]
How about a duplicate MAC address or IP address? >>> "sam sneed" 03/06/02 04:04PM >>> This makes no sense. ""kaushalender"" wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > Hi group, > > In early post of mine.I have mentioned a problem of my customer who is > not able to browse .Than i took a cross cabel and connected the router > directly to the pc .In that case the browse is opening the website.Can > some 1 help me how can i find that what is the problem which is stoping > the browser to download the page into machine.how can i find bad network > card into 150 pc lan . > > Thanx Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=37507&t=37377 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: certificationZone Bridging White paper ! [7:37393]
Phil, Can I therefore conclude that in a 'Source Route Transparent' Bridge the RIF field will indeed change ? Contrary to the whitepaper. On the above - In SRT mode, you are allowing the router to source route traffic and transparently bridge traffic on the same device (router), but any hosts on either bridging environment can not communicate amongst themselves. (i.e. a host on an SRB network cannot sent traffic destined for a host on the transparent side of the network). The SRT Bridge will never add or remove RIF information from a frame in order for the two technologies to communicate. This is where Source-route Translation bridging (SR/TLB) comes in. Now your above question needs some consideration. The router will now act as a "RIF end station", where a RIF table will be built for end stations on the SRB side, and a forwarding table for the transparent side. By creating a virtual ring within the router, all the token to ethernet frame conversion will take place (i.e MTU, bit ordering, etc) before the frame is sent on its way. It makes no sense to set the RII bit to a "1" when sending the traffic to a transparent end host, as it will not understand what to do with it anyway. Hope this helps Ken Sexton Data Network Engineering ICG Communications [EMAIL PROTECTED] -Original Message- From: Phil Barker [mailto:[EMAIL PROTECTED]] Sent: Wednesday, March 06, 2002 9:02 AM To: [EMAIL PROTECTED] Subject: RE: certificationZone Bridging White paper ! [7:37393] Thanks Ken, >>> SNIP2 The first SRB enabled bridge in the path (from originator to destination) will see that this is an explorer packet and add its route designator (RD) information to the RIF. >>> END SNIP2 Can I therefore conclude that in a 'Source Route Transparent' Bridge the RIF field will indeed change ? Contrary to the whitepaper. Phil. --- "Sexton, Ken" wrote: > Phil, > The first bit within the Source Address Field is > normally the I/G bit, to > define if the source address is individual (unicast) > or group (multicast) > address. In an SRB bridged environment, this one bit > is used to indicate if > any Routing Information Field (RIF) information is > present in the Token > frame following the SA field. > > This bit will be set by hosts with the SRB > environment and used by bridges > to indicate the above. The hosts will keep a > "forwarding table" on how to > reach any required destination host. > > If the host doesn't know how to get to a particular > destination, it will > send out an explorer frame (all routes explorer > -ARE) or a Spanning tree > explorer (SPE) frame to locate the destination. It > will depending on your > bridged environment which explorer frame is used. > > The first SRB enabled bridge in the path (from > originator to destination) > will see that this is an explorer packet and add its > route designator (RD) > information to the RIF. The first bridge will add > the first ring number, > it's bridge number, and the ring number of the > interface it going to send > the explorer packet out of. > > When all said and done - the host will know how to > reach that particular end > host and include RIF information in the token frame. > The RII, will tell the > bridge that a RIF is present and forward the frame > according to the RIF RC > and RD fields. > > Ken Sexton > Data Network Engineering > ICG Communications > [EMAIL PROTECTED] > > > > > -Original Message- > From: Phil Barker > [mailto:[EMAIL PROTECTED]] > Sent: Wednesday, March 06, 2002 6:35 AM > To: [EMAIL PROTECTED] > Subject: certificationZone Bridging White paper ! > [7:37393] > > > Just been re-reading this paper by David Wolfsener. > See SNIP below. > > In the instance where the RII indicator is a 1 the > frame will be 'source routed' if the frame is > 'source > routed' then surely this implies that the RIF must > be > manipulated in order to reflect the true Source > Route > !!! I havn't got my 'Interconnections' with me so I > cannot confirm. > > Any ideas ? > > Phil. > > >>> SNIP > > Source Route Transparent Bridging (SRT) > > SRT works by analyzing the RII bit to determine if a > RIF is present. If the RII bit is 0, then a RIF is > not > present and the frame is transparently bridged. If, > however, the RII bit is 1 and a RIF is present, then > the frame is source routed. Note that SRT bridges do > not add or remove RIFs to frames. By now, you ought > to > wonder how to configure SRT. > > >>> END > > _
Re: CCIE#8903 [7:37490]
But it helps when applying for jobs where they want a CCNA and have no clue what a CCNP is. I had a job interview today where they asked what a CCIE was. :-) Ken >>> "Michael J. Doherty" 03/07/02 04:28PM >>> Actually, if I remember the agreements correctly - you can list the lower level certs (CCxA, CCxP) with the CCIE. It is when you are a CCxP that you should not list the corresponding CCxA. Mike [snip] Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=37603&t=37490 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: CCIE program will be dropping token ring! [7:37422]
>>> "Howard C. Berkowitz" 03/08/02 09:38AM >>> >Lighten up! We're just having a little fun! In that case, some questions about TR: 1. In the Southern Hemisphere, does the token rotate in the other direction? - Yes 1a) If so, does that mean that no TR device can work on the Equator? - You are correct. For that, you need FDDI. 2. If they drop TR and it lands on its side, will it roll? - No. It will bounce, though. 3. Will the Lord of the Rings have to become the Lord of the Ether? - I thought it would just be Lord of the Net. Wait, that's Al Gore. 4. For those who remember Peter, Paul, and Mary, is it true they had an alternate hit called "If I had a token, I'd ring it in the morning?" - No comment. 5. Will Dilbertian managers have to convert to SONET to continue running in circles at the speed of light? - No. They couldn't keep up with themselves. Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=37673&t=37422 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Jr. CCIE Ad on Dice [7:38034]
This is good for a laugh. They are looking for a junior CCIE. http://www.dice.com/DandL/c/cxapga.35951.html Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=38034&t=38034 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]