Re: IOS BUG??? [7:74804]

2003-09-04 Thread William Lijewski 
Can you post your configurations for this?  What area is R5 in?  Why are you
skipping over R5 as the end of the virtual-link?

-- 
Bill Lijewski
CCIE #8642


Jens Petter Eikeland  wrote in message
news:[EMAIL PROTECTED]
 Hi group ,

 I have been working on a backup solution with isdn and the primary is a
 frame link
 I am running on an  2500 with 12.1(18) and a 2500 with 12.(18)

 Thi is my net.

 R6-R1==R5--R4R2-

 R6r4

  is frame-relay net

 == is isdn link

 Area 0 is R6 to R1,
 Area 1 is from r6down to r4
 Area 2 is from R4 and to R2

 My primary virtual link is from R6 to R4
 My backup primary is from R1 to R4

 What happens her is that the backup virtual link wont come up over the
isdn
 link.
 I have tested this both with and without demand circuit, dialer watch and
 without any of them.

 My config is correct and my authentication is correct. I have also tested
 this without authentication.

 The strange thing is that this has happen to me on two different rack. I
 have had several people go
 Over this, but they cant find any thing wrong

 Is there anywon hwo knows if there is an bug in this software with regards
 to this.??

 JP
 **Please support GroupStudy by purchasing from the GroupStudy Store:
 http://shop.groupstudy.com
 FAQ, list archives, and subscription info:
http://www.groupstudy.com/list/cisco.html




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7i=74814t=74804
--
**Please support GroupStudy by purchasing from the GroupStudy Store:
http://shop.groupstudy.com
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html

Re: Console port now working on 4000 [7:74489]

2003-08-30 Thread William Lijewski 
Does it display anything when you powercycle the router?  Does it display
the bootup information and then freeze?

If it displays the bootup information and then freezes you may have
accidentally put 'no exec' under the console port.  You would need to break
into the router, just like you would if you were resetting the password.

-- 
Bill Lijewski
CCIE #8642


Rohit-Sundriyal(CCNA)  wrote in message
news:[EMAIL PROTECTED]
 Hi All


 My Cisco 4000 consol port is not work any idea what whent wrong or how to
 make it work.

 Thanks in advance
 **Please support GroupStudy by purchasing from the GroupStudy Store:
 http://shop.groupstudy.com
 FAQ, list archives, and subscription info:
http://www.groupstudy.com/list/cisco.html




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7i=74531t=74489
--
**Please support GroupStudy by purchasing from the GroupStudy Store:
http://shop.groupstudy.com
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html

Re: eigrp help [7:73272]

2003-07-31 Thread William Lijewski 
Can you post your configs so we can see exactly what you are doing?

Thanks,

-- 
Bill Lijewski
CCIE #8642
PPC-DAT Ep-Ng-Ist  wrote in message
news:[EMAIL PROTECTED]
 Hi all,
 I need some help on eigro redistribution.I redist eigrp from two AS into
 each other.I can see all the routes in one AS and not the other. What do I
 need to do?
 Rgds,
 AK




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7i=73287t=73272
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: ISDN connect/disconnect issue [7:71845]

2003-07-03 Thread William Lijewski 
Usually when it goes up and down that fast its an authentication problem.
Try the 'debug ppp authentication' command on your router and post the
output.  You should see 2 challenges, 2 responses, and 2 successes.  If you
don't see those then you have an issue with your usernames and/or passwords.

-- 
Bill Lijewski
CCIE #8642



 wrote in message
news:[EMAIL PROTECTED]
 Hey folks:

 I'm struggling with an ISDN issue in which the call comes up, but then is
 immediately dropped without the interesting traffic being sent.  I'm an
 ISDN neophyte, so I'm more than willing to admit a config error on my
part,
 but from what I can see, my first thought is that it's a provider issue.
 Anyone ever experienced this before?

 Thanks,

 BJ


 Debug dialer shows:

 Jul  3 15:02:14.261: BR0/0 DDR: Dialing cause ip (s=w.x.y.z+1, d=w.x.y.z)
 Jul  3 15:02:14.261: BR0/0 DDR: Attempting to dial (number)..
 Jul  3 15:02:17: %LINK-3-UPDOWN: Interface BRI0/0:1, changed state to up
 Jul  3 15:02:18: %ISDN-6-CONNECT: Interface BRI0/0:1 is now connected to
 (number)
 Jul  3 15:02:18: %LINK-3-UPDOWN: Interface BRI0/0:1, changed state to down
 Jul  3 15:02:18.045: BR0/0:1 DDR: disconnecting call

 Debug isdn q921 shows:

 Jul  3 15:05:35: %ISDN-6-CONNECT: Interface BRI0/0:1 is now connected to
 (number)
 Jul  3 15:05:35: %ISDN-6-DISCONNECT: Interface BRI0/0:1  disconnected from
 (number) , call lasted 1 seconds

 Debug isdn q931 shows:

 Jul  3 15:08:03.270: ISDN BR0/0: TX - SETUP pd = 8  callref = 0x0C
 Jul  3 15:08:03.270: Bearer Capability i = 0x8890218F
 Jul  3 15:08:03.274: Channel ID i = 0x83
 Jul  3 15:08:03.274: Keypad Facility i = 'number'
 Jul  3 15:08:03.470: ISDN BR0/0: RX  CONNECT_ACK pd = 8  callref = 0x0C
 Jul  3 15:08:07.354: ISDN BR0/0: RX  RELEASE pd = 8  callref = 0x0C
 Jul  3 15:08:07.402: ISDN BR0/0: RX  Feature Indicate i = 0x8100
 Jul  3 15:08:07.450: ISDN BR0/0: RX 
 Relevant Config:

 interface Dialer16
  description ISDN dial backup to John Doe
  bandwidth 56
  ip address w.x.y.z+1 / 30
  no ip directed-broadcast
  ip nat outside
  encapsulation ppp
  dialer remote-name JohnDoe
  dialer string (number) class top1r2
  dialer pool 6
  dialer-group 1
  pulse-time 0
  ppp authentication chap

 interface BRI1/5
  description ISDN dial backup Group #6
  bandwidth 56
  no ip address
  no ip directed-broadcast
  encapsulation ppp
  dialer pool-member 6
  isdn switch-type basic-ni
  isdn spid1 (x)
  isdn spid2 (y)
  no fair-queue
  ppp authentication chap

 map-class dialer top1r2
  dialer idle-timeout 1800
  dialer isdn speed 56

 (interesting traffic defined as all TCP)


 
 mail2web - Check your email from the web at
 http://mail2web.com/ .




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7i=71859t=71845
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Upgrading IOS with new flash on my 2500's [7:65472]

2003-03-14 Thread Clements, William (Bill) 
All,
I recently bought some new flash for my 2500's and would like to know if
there is an easier way to upload the newest IOS, other than with the console
cable. 
 
Thanks,
 
Bill Clements MCSE, CCNP
Network Engineer
INS




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7i=65472t=65472
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: OT: Cisco Advertising [7:64561]

2003-03-06 Thread William W.Kimandu 
Try this Link
New ad campaign. Very detailed

http://www.cisco.com/offer/powernow/sm_med/bdm/mobility/index.html?sid=11831
4_49

MADMAN  wrote in message
news:[EMAIL PROTECTED]
 Priscilla Oppenheimer wrote:

 
 
  They are probably trying go generate more spending!? But, alas, there's
no
  evidence that advertising actually works. :-)
 
  Priscilla
 

I think there are some folks on Madison Ave. the would vehemently
 disagree with you;)

Dave
 --
 David Madland
 CCIE# 2016
 Sr. Network Engineer
 Qwest Communications
 612-664-3367

 You don't make the poor richer by making the rich poorer. --Winston
 Churchill




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7i=64651t=64561
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

RE: Cisco Call Manager backup question [7:62617]

2003-02-06 Thread TALBOT, WILLIAM P (SWBT) 
Tim,

http://www.cisco.com/univercd/cc/td/doc/product/voice/c_callmg/3_2/install/b
ackup/b_r321.htm 

has the information you are looking for...

Pat


-Original Message-
From: Lipscombe, Tim [mailto:[EMAIL PROTECTED]]
Sent: Thursday, February 06, 2003 10:05 PM
To: [EMAIL PROTECTED]
Subject: Cisco Call Manager backup question [7:62617]


Does any one know where I can find information about the Cisco Call Manager
3.2 backup utility? I am trying to find out what my backup tapes have on
them. 
 
Thanks Tim Lipscombe




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7i=62621t=62617
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

RE: OT-Netscreen 5xp VPN very slow [7:62461]

2003-02-05 Thread William 
Well, having worked with the Netscreen Firewall products, I find it
interesting that you feel its your bottle neck.  Take a look at the
architecture you've outlined:

PC---NetScreen---Cable Modem VPN Gateway (what type of gateyway is
this?)Internet.

The short answer here is that anytime you add security devices to a traffic
flow especially when cipher-decipher takes place, you'll take a performance
hit.  That's the price we pay (though things are improving dramatically!)
for privacy.  NetScreens traditionally are quite fast devices and though the
5X is a smaller appliance its still quite good.

Will Gragido CISSP CCNP CIPTSS CCDA MCP
9450 W. Bryn Mawr Ave.
Suite 325
Rosemont, Il 60018
www.ins.com
[EMAIL PROTECTED]


-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] 
Sent: Wednesday, February 05, 2003 1:24 AM
To: [EMAIL PROTECTED]
Subject: RE: OT-Netscreen 5xp VPN very slow [7:62461]

Hi,

Did you check the NS-5XP log?
Also, if you place your PC behind the NS and access internet, what's the
path of your traffic? Simply PC- FW- cable modem- Internet OR
PC- FW( VPN gateway ) - cable modem - VPN gateway - Internet?

BUT you mentioned 3DES, if NS is just using as a Firewall, encryption (3DES
and VPN) should not cause your problem.

rgds,
ivan




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7i=62500t=62461
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

RE: OT-Netscreen 5xp VPN very slow [7:62461]

2003-02-05 Thread William 
My mistake, I thought that you were implying that there was a performance
issue with that architecture.

Will Gragido CISSP CCNP CIPTSS CCDA MCP
9450 W. Bryn Mawr Ave.
Suite 325
Rosemont, Il 60018
www.ins.com
[EMAIL PROTECTED]


-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] 
Sent: Wednesday, February 05, 2003 10:49 PM
To: [EMAIL PROTECTED]
Subject: RE: OT-Netscreen 5xp VPN very slow [7:62461]

William,

I just pointed out the one of the possible architecture.

VPN gateway I mentioned may be other vendors that can work with netscreen
like checkpoint... Any problems on my thought?

Ivan




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7i=62561t=62461
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

RE: About Unity Engineer Exam [7:62389]

2003-02-04 Thread William 
It's a difficult exam in that you need to know all the hardware specs for
the various servers etc.  Other than that, its not too bad.

Will Gragido CISSP CCNP CIPTSS CCDA MCP
9450 W. Bryn Mawr Ave.
Suite 325
Rosemont, Il 60018
www.ins.com
[EMAIL PROTECTED]


-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] On Behalf Of
Jefferson Orsi Siratuti
Sent: Tuesday, February 04, 2003 12:13 PM
To: [EMAIL PROTECTED]
Subject: About Unity Engineer Exam [7:62389]

Hello,

anyone has take the Unity Engineer Exam? This exam is hard? Boson tests are
the best simulates for this exam?

Thanks.

Jefferson
CCNA / CCNP / BISCI Technician / MCSE (2/7)




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7i=62454t=62389
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

RE: Richard A. Deal Books [7:62027]

2003-01-28 Thread William 
Ask him yourself, he contributes to this group ;-)  Rich's books are quite
good.  He clearly expresses his points and doesn't get lost in non-relevant
idioms.

Will Gragido CISSP CCNP CIPTSS CCDA MCP
9450 W. Bryn Mawr Ave.
Suite 325
Rosemont, Il 60018
www.ins.com
[EMAIL PROTECTED]


-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] On Behalf Of
Joseph R. Taylor
Sent: Tuesday, January 28, 2003 9:43 AM
To: [EMAIL PROTECTED]
Subject: Richard A. Deal Books [7:62027]

Hi Everyone,
I'm interested in knowing how good Richard A. Deal's books are.
Especially in reference to MCNS. Thank you in advance.
Joseph R. Taylor
MCSE, CCNP




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7i=62034t=62027
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

RE: NT4.0 password crack tool [7:61807]

2003-01-28 Thread William 
One wordL0phtCrack

Will Gragido CISSP CCNP CIPTSS CCDA MCP
9450 W. Bryn Mawr Ave.
Suite 325
Rosemont, Il 60018
www.ins.com
[EMAIL PROTECTED]


-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] On Behalf Of
Evans, TJ (BearingPoint)
Sent: Monday, January 27, 2003 3:58 PM
To: [EMAIL PROTECTED]
Subject: RE: NT4.0 password crack tool [7:61807]

Why not use LinNT?
... boot off of a linux floppy, reset admin password and boot up with new
password.

Since you are (presumably) not trying to be sneaky _and_ you have direct
access to the machine changing the PW should not be a problem, yes?

Oh - and it is free, and works with WinNT4 - WinXP.


Thanks!
TJ
-Original Message-
From: Arnold, Jamie [mailto:[EMAIL PROTECTED]] 
Sent: Saturday, January 25, 2003 2:54 PM
To: [EMAIL PROTECTED]
Subject: RE: NT4.0 password crack tool [7:61807]

Why do a command line?  Just rename user manager to logon.scr and reboot
(you'll need NTFSDOS Pro) and in 15 minutes you get user manager with root
perms.

Imagination is more important than knowledge
 
Albert Einstein


-Original Message-
From: Juntao [mailto:[EMAIL PROTECTED]] 
Sent: Friday, January 24, 2003 4:50 PM
To: [EMAIL PROTECTED]
Subject: Re: NT4.0 password crack tool [7:61807]


u'r talking about nt4 login passwords, the SAM database? lophtcrack works,
it takes a long time though systernals has tools to login to the box, and
change things. u can also change cmd.exe to the default screen savec name,
the command line will pope up after a while, after reboot. and change the
password with the net user command if the server or the box is part of the
global admin group, i'm sure u know u can change the password or reset it,
even just with, user manager for domains. and there is of course a lot of
other things that can be done, depending on ur situation.

hope the above helps
regards

Kazan, Naim  a icrit dans le message de news:
[EMAIL PROTECTED]
 I am trying to recover my password that someone set on my sniffer box 
 running on NT4.0. Any help will be greatly appreciated.

 Naim Kazan
 FISC-SDS
 WORK: 201-915-7347
 HOME: 973-492-1466
 CELL: 917-559-0591
 EMAIL: [EMAIL PROTECTED]
 PAGER: 800-759-8352 Pin 1145361

**
The information in this email is confidential and may be legally 
privileged.  Access to this email by anyone other than the 
intended addressee is unauthorized.  If you are not the intended 
recipient of this message, any review, disclosure, copying, 
distribution, retention, or any action taken or omitted to be taken 
in reliance on it is prohibited and may be unlawful.  If you are not 
the intended recipient, please reply to or forward a copy of this 
message to the sender and delete the message, any attachments, 
and any copies thereof from your system.

**




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7i=61993t=61807
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

RE: NAT and VoIP [7:62053]

2003-01-28 Thread William 
You may indeed experience issues with NAT and VoIP.  You will have to
revisit your NAT pool and review the address schema for your IP telephony
end points and most likely adjust your pools accordingly.  This will also,
depending on the size of the deployment and enterprise, probably cause you
to have to review your DHCP scope(s) as well.

Will Gragido CISSP CCNP CIPTSS CCDA MCP
9450 W. Bryn Mawr Ave.
Suite 325
Rosemont, Il 60018
www.ins.com
[EMAIL PROTECTED]


-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] On Behalf Of neil
K.
Sent: Tuesday, January 28, 2003 2:14 PM
To: [EMAIL PROTECTED]
Subject: NAT and VoIP [7:62053]

Anyone heard about having problems with NAT and running VoIP.
I want run VoIP across a DSL link with NAT.

Thanks in advance.

neil K.




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7i=62059t=62053
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

RE: T1 and Frame Relay Sniffers [7:61531]

2003-01-22 Thread William Pearch 
I have some experience with the Fireberd 6000s with various interfaces - and
I use the Agilent Advisor software version on a near daily basis - I really
like it's h.323 capabilities.  I did not know that TCC was now Acterna - one
of my co-workers has been crowing about his old Domino Wan boxes that he got
through ebay.
 
Thanks for the info - I have an email into Acterna for a quote.
 
Bill
 
 

-Original Message- 
From: s vermill [mailto:[EMAIL PROTECTED]] 
Sent: Tue 1/21/2003 6:59 PM 
To: [EMAIL PROTECTED] 
Cc: 
Subject: RE: T1 and Frame Relay Sniffers [7:61531]



Clarification below...

s vermill wrote:

 William Pearch wrote:
 
  Does anyone have a recomendation for a sniffer solution to
 look
  at T1's, V.35, Frame Relay?  Any experience with the Logix
  product?
  
  Bill in Anchorage
 
 

 Sorry, no Logix experience that I can remember.  There really
 are two distinct types of WAN test equipment.  For intrusively
 troubleshooting circuits any one of many Bit Error Rate test
 sets are usually employed.  What used to be TTC (now Acterna)
 is responsible for the famous Fireberd series and also the
 T-Berd series.  These are great products (I prefer the Fireberd
 in most cases for digital stuff but the T-Berd 310 has several
 optical options for SONET, PoS, etc).  These also can monitor
 non-intrusively in many cases.  As for v.35, there probably
 isn't much you could do for in-service monitoring. 

ThatCb,bs true in the case of the Fireberd and the T-Berd, which are
primarily
used for intrusive testing (in my experience).  They donCb,bt drill
down (up?)
any further than the L2 frame and don't look at all into the payload.  In
the case of the below-mentioned Agilent Advisor, which is primarily used for
in-service monitoring (in my experience), you can look much further up the
protocol stack.  I use it for HDLC decodes, for example, where HDLC might be
carrying any number of upper-layer data (and sometimes man-readable ASCII
text), which can be furhter decoded.  It doesnCb,bt much matter whether
or not
itCb,bs v.35, TIA/EIA-232 or 422, whatever (as long as you have the
appropriate
interface module).

In the
 T-Carrier and Frame Relay world, the test set can lock to the
 frame, verify the FCS, etc.  I've also used the Agilent Advisor
 (formerly the HP Internet Advisor) quite a bit, which is a
 Windows-based test set for both LANs and WANs.  It seems
 primarily geared towards sniffing or in-service stuff but can
 serve as an intrusive test set as well.  None of these that
 I've mentioned are cheap, to say the least.




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7i=61541t=61531
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

T1 and Frame Relay Sniffers [7:61531]

2003-01-21 Thread William Pearch 
Does anyone have a recomendation for a sniffer solution to look at T1's,
V.35, Frame Relay?  Any experience with the Logix product?
 
Bill in Anchorage




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7i=61531t=61531
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

RE: Loading IOS / OT Now [7:61413]

2003-01-21 Thread William Pearch 
The BayRS does have some very cool features.
 
My favorite was the modularity of the software - if you didn't want a
feature you built your software package without it.  The only way you wound
up with a bloated OS was if you either needed all the bling blings or if it
was loaded by someone that didn't know what they wanted.  With Cisco IOS, if
I want Frame Relay SVC's on a 3640 I have to get a bloated 'Enterprise' IOS
load that has more knobs then I'll ever use!
 
The biggest problem(s) with the Bay/Wellfleet routers?  There was that baby
poop brown color... Lack of marketing skills... Not enough blinkie
lights...  a terrible web page... fairly shallow product lineup... and they
weren't percieved as a leader in the market, but a follower.  When Bay
bought the Accellar I thought they were on to something and then Nortel
happened.  That's not a bad or a good thing - just change.  Never
underestimate the importance of blinking lights.

Bill 

-Original Message- 
From: Erick B. [mailto:[EMAIL PROTECTED]] 
Sent: Tue 1/21/2003 8:51 PM 
To: [EMAIL PROTECTED] 
Cc: 
Subject: RE: Loading IOS / OT Now [7:61413]



I use bnfs95 still but it was always an unsupported
tool. Not aware of anything for 3com NetBuilders
though. Old NB's had a floppy drive. Another cool
BayRS tool is the PCAP tool to do captures right on
the router. I like BayRS.




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7i=61542t=61413
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

RE: Traceroute troubles [7:61247]

2003-01-16 Thread William Pearch 
Solved my own problem - see CSCdu43762 on the CCO.  Shows up with the 7200
and an NSE-1 and (evidently though they are not listed) the 1760, 2621,
2621XM, 2611 and 1720.  Solution is to turn off PXF (rate limiting of ICMP
unreachables) using:  no ip icmp rate unreach
 
Lesson learned?  Read everything... :)
 
Bill
 
 

-Original Message- 
From: William Pearch 
Sent: Thu 1/16/2003 8:12 PM 
To: William Pearch; [EMAIL PROTECTED] 
Cc: 
Subject: Traceroute troubles


Why does traceroute seem to have problems with the second check of a final
hop?
 
RouterA-RouterB
 
When trace from routerA loopback to routerB loopback, first one comes back
fine, second is a * and third is fine.  Seems wierd - 500 pings all go swell.
Then to top it off... RouterA trace to RouterA loopback0, first one comes
back fine, second is a * and third is fine.  500 pings all go swell.
 
I've tried over ethernet, fast ethernet, serial (HDSL and frame relay).
 
Same behavior on my 2600's and 1700's.  All running 12.2.13T.  I wasn't
able to find anything on the CCO this evening.
 
Thoughts?
 
Bill Pearch, Anchorage




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7i=61247t=61247
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

RE: Confusion on CISSP requirements [7:60997]

2003-01-14 Thread William Gragido 
Not necessarily Scott.  You've got to be able to prove (in others words have
documentable proof), that you've worked for a cumulative total of 4 years in
the security field.  Now, the caveat is that your work can be spread amongst
the ten domains or relegated to one as long as your total time meets the
minimum criteria.  Then you are eligible to test.  Once you test and pass,
you must then be sponsored by a CISSP in good standing.

Shoot me a note with any questions,

Will Gragido CISSP CCNP CIPTSS CCNA CCDA MCP blah blah blah
NSC
www.ins.com

-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of
Scott
Sent: Monday, January 13, 2003 6:44 PM
To: [EMAIL PROTECTED]
Subject: OT: Confusion on CISSP requirements [7:60997]


I'm a CCIE with over 4 years of experience in networking and a college
degree.  Each position I have had required a small percentage of security
related work.  Does that satisfy the requirements or are they asking for
100% security work?  Any help greatly appreciated.




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7i=61035t=60997
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

RE: VoIP from behind PIX [7:60796]

2003-01-10 Thread William Gragido 
What sorts of performance issues are you noticing on the telephony side of
the house?  You said it was acceptable so on a MOS scale, whats the voice
quality like?  Thanks.

Will

-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of
[EMAIL PROTECTED]
Sent: Friday, January 10, 2003 6:18 AM
To: [EMAIL PROTECTED]
Subject: RE: VoIP from behind PIX [7:60796]


We have several DSL sites that are composed of a PIX 501 and one or two IP
phones. Voice quality is acceptable but not great.
Scott

 --- On Fri 01/10, Simer Mayo  wrote:From: Simer Mayo [mailto:
[EMAIL PROTECTED]]To: [EMAIL PROTECTED]: Fri, 10 Jan 2003 07:35:17
GMTSubject: VoIP from behind PIX [7:60796]1. Will PIX 515 handle VoIP
traffic?2. Will PIX 501 handle VoIP traffic?3. Can we VPN between 2
(site-to-site) and pass VoIP traffice thru theVPN Thanks SimerMessage Posted
at:http://www.groupstudy.com/form/read.php?f=7i=60796t=60796--
FAQ, list archives, and subscription
info: http://www.groupstudy.com/list/cisco.htmlReport misconduct and
Nondisclosure violations to [EMAIL PROTECTED]

___
Join Excite! - http://www.excite.com
The most personalized portal on the Web!




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7i=60828t=60796
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

OSPF area command with advertise option [7:60550]

2003-01-07 Thread William Li 
Hi group

 

   I just happened to find there is an advertise option could be added
in area area-id range ip-address mask command. The command could be
like this area area-id range ip-address mask advertise.  My question
is, will there be any functional difference between with and without
this option. As per DOC CD, option advertise means: Sets the address
range status to advertise and generates a Type 3 summary link-state
advertisement (LSA). But by default, when we generate a summary address
in ABR without any options, the summary address will be advertised
automatically, am I right? 

 

Thanks

 

William




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7i=60550t=60550
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: O/T more campus design issues [7:60136]

2003-01-03 Thread William 
Hi Priscilla

Maybe you can try this:

ip forward-protocol udp 137
ip forward-protocol udp 138
ip forward-protocol spanning-tree

Best regards,

William
Priscilla Oppenheimer  wrote in message
[EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
 bergenpeak wrote:

 Thanks. I always like hearing from you, bergenpeak. DHCP is working and
the
 DHCP server is on the other net so we think inter-VLAN routing and the
 helper address are behaving and that STP forwarding delay isn't biting us.

 We tried having the helper address point to a broadcast just in case that
 would help Windows. It didn't break DHCP but it didn't help Windows
either.
 ;-)

 Most things are working, just not Windows. Luckly the customer is a
Windows
 type, unlike me, so we'll get it working hopefully.

 THANKS!

 Priscilla

 
  If you only have hosts connected to the switch (not L2
  devices),
  enable port-fast on the host ports.   This eliminates the
  spanning tree states on the port and thus the port begins
  forwarding packets with a few seconds of the link coming online.
  This might be the problem if static IPs are assigned to the
  hosts.  If DHCP is being used and DHCP is working, I'd expect
  it is not a problem with the port and spanning tree.
 
  One other possible gotcha is regarding routing and the VLAN
  interface.
  If no devices are active on the VLAN, the router might consider
  the
  VLAN subnet down and withdraw the route from its
  advertisements.
 
 
 
 
 
  Priscilla Oppenheimer wrote:
  
   You all remember my very simple campus network re-design that
  I've been
   helping out with? It sure has been keeping me humble. ;-)
  
   So we upgraded the single subnet to two subnets and two VLANs.
  
   Everything is working OK except for Windows networking. The
  PCs on the new
   subnet can't find a domain controller for authentication.
  
   So, you can feel free to yell at me for not gathering more
  information on
   the symptoms, but the client hasn't told me much. ;-) But
  does this ring a
   bell with anyone? Are there standard recommendations on how
  to handle this
   in a subnetted VLANed internetwork.
  
   I'm not too well informed on Windows networking. My co-author
  wrote that
   chapter in my troubleshooting book.
  
   Thank-you so much!
  
   Priscilla




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7i=60199t=60136
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

17X0 HSRP bug [7:60197]

2003-01-02 Thread William Pearch 
Those of you that have 1700 series routers in your labs, take a look at bug
CSCdz64230.  It had me chasing my tail a while this evening.  The net net is
you get a flapping link, and nearly constant hsrp state changes and spanning
tree action.
TTFN,
Bill




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7i=60197t=60197
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

RE: 7200 Router Questions... [7:59645]

2002-12-23 Thread William Pearch 
In order to hit performance marks that are excellent with IPSec you will
need not only a spiffy NPE but the PA-VAM or PA-ISA.  Be aware that the
PA-VAM may not work with the latest and greatest IPSec image.  I picked
up a 7206VXR VPN bundle from Cisco last month and the only IOS supported
was 12.1(9)E.  This may have changed with 12.2(13)T - do your homework
and test it.
With the VAM and the NPE-400 Cisco claims ~150Mbps throughput.  Be sure
to top it off with memory - if you are running lots of tunnels you will
need the space.  I haven't tested the performance myself and do not know
how the split bus of the 7200's will affect performance of one PA or
another depending on where it's plugged in.  Not all my questions have
been answered...
The VPN bundle lists for $23,500 - apply your discount.  That gives you
fastethernet interfaces(2), the PA-VAM, and the NPE-400.  You'll have to
pay for more  If you can use a newer IOS version (come ON Cisco...)
you can run the easy VPN server on the box and make life so much easier.
The 12.1 code does a good job of working with x.509 certs, but there is
a lot of command change between 12.1(9) and 12.2(13)T, so watch your
configurations carefully and be prepared to rewrite things between
versions.
The PA-ISA does run with a piece of 12.2 code (I have a client using it)
and does just fine.  In the case of both accellerators there is no AES
support that I am aware of.  If you are looking for AES, the software
crypto engine is supposed to support it in 12.2(13)T on some(all?)
platforms and I've heard that there's a new crypto hardware piece in the
works to support it also.

Just a thought:  Depending on your application, you may consider buying
two smaller VPN enabled routers (3600 or 2600) and using multiple
tunnels frome each site to the hub for layer 3 based load balancing and
fault tolerance.  They are routers, make 'em route!  (Or heck, just buy
2 7206 bundles... :)  You may get performance every bit as good, with
availability numbers that make you look like an uber-star to the boss.  

TTFN,
Bill Pearch, Anchorage


-Original Message-
From: Edward Sohn [mailto:[EMAIL PROTECTED]] 
Sent: Saturday, December 21, 2002 10:11 AM
To: [EMAIL PROTECTED]
Subject: RE: 7200 Router Questions... [7:59645]


thanks for the info.

have you or anyone else any idea what configuration it takes for a 7200
router to be comparable in performance to a PIX 515 when it comes to a
site-to-site VPN?  for example, would a 7204VXR by itself be enough
(over more than enough, for that matter) to meet the packet throughput
performance of a PIX 515 on a 3DES ipsec tunnel set up site-to-site?  i
can't seem to find pps performance specs for the 7200 series...

thanks,

ed

-Original Message-
From: MADMAN [mailto:[EMAIL PROTECTED]] 
Sent: Friday, December 20, 2002 1:46 PM
To: Edward Sohn
Cc: [EMAIL PROTECTED]
Subject: Re: 7200 Router Questions... [7:59645]




Edward Sohn wrote:
 Can anyone help me answer a few questions regarding this series
 router?
 
 1.  The spec sheet says it performs multiprotocol routing over ipsec.
 My question is: how?  Is there some inherent technology that performs 
 this feature, or is it the IOS's ability to create a GRE over an IPSEC

 tunnel? 2.  What are the main differences between the NPE's and NSE's?

 I can't decide which processor I need.

 The primary differance is the NSE is it is only supported in the 
7200VXR and incorporates the PXF processor for accelerated packet
switching.

 3.  What's the difference between the VXR models and the normal
 models?

   To get VXR performance you must use at least a NPE300 and you get a 
MIX backplane, good for voice stuff.  Also the VXR gives you increased 
backplane bandwidth capabilities.

   With the new NPE-1G you no longer have any bandwidth point
limitations!

   Dave

 
 That's it, for starters...any help would be greatly appreciated.
 
 Ed
-- 
David Madland
CCIE# 2016
Sr. Network Engineer
Qwest Communications
612-664-3367

You don't make the poor richer by making the rich poorer. --Winston
Churchill




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7i=59780t=59645
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

RE: Hello (long response) [7:58824]

2002-12-11 Thread William Gragido 
LMAO.

-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of
Peter van Oene
Sent: Tuesday, December 10, 2002 2:45 PM
To: [EMAIL PROTECTED]
Subject: Re: Hello (long response) [7:58824]


I brought these issues to my boss attention last wednesday and on thursay
he

ordered me to 'clean' house.  The first thing I did was to send pink
slips
to all

4 CCIEs in the group and told them that they are fired because they don't
know

anything other than RS.  They were making $130k/year and sucking almost
all
of

So essentially, you started on 11/25 and after 8 days of work you were
making 500k/year headcount reductions? Is wine coming out of the tap there
yet or did you wake up?

I don't disagree with your points and have never been one to judge an
individuals quality on the basis of a vendor exam, but I think there are
more credible ways to make this point.




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7i=58976t=58824
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: is there anyone migrating isdn backup to dsl b [7:58568]

2002-12-08 Thread William Pearch 
You'll hit your three letter acroronym  service level agreement real soon now
(TLA SLA RSN.)


-Original Message-
From: Priscilla Oppenheimer 
Sent: 12/4/02 12:56:52 PM
To: [EMAIL PROTECTED] 
Subject: Re: is there anyone migrating isdn backup to dsl b [7:58568]

It sounds like DSL has a low mean time between failure (MTBF) but a high
mean time to repair (MTTR), which can be just as bad, especially if it's
your only backup. Of course, your mileage may vary (YMMV), depending on
the
service provider. Also, a service level agreement (SLA) would help, as
Chuck
mentions.

Does that message set a record for the number of acronyms used? :-)

Priscilla

The Long and Winding Road wrote:

 Mirza, Timur  wrote in
 message
 [EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
  we are looking to migrate isdn backup at our retail stores to
 dsl...is
 there
  anyone that has performed this already?


 CL: having done a number of data networks that were DSL based (
 but none
 migrating ISDN to DSL ) I can offer this consideration: if a
 DSL link goes
 down for whatever reason, it may take more than a couple of
 days for your
 telco to get it back up and working. You will want to have some
 solid
 service level agreements in place. DSL on the whole is
 extremely reliable.
 The problem tends to be during those rare instances when it is
 down for
 whatever reason, some telcos seem to have DSL repair low on
 their priority
 list.

 CL: other than that caviat, why not?


 
  Timur Mirza
  Principal Network Engineer
  Network Planning  Engineering, West Region
  15505-B Sand Canyon Avenue
  Irvine, California 92618
  Verizon Wireless
  949.286.6623 (o)
  949.697.7964 (c)






Message Posted at:
http://www?.groupstudy.com/form/read.php?f=7i=58574t=58568
--
FAQ, list archives, and subscription info:
http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

[GroupStudy.com removed an attachment of type application/ms-tnef which had
a name of winmail.dat]




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7i=58766t=58568
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Which 3550 to purchase [7:58560]

2002-12-06 Thread Clements, William (Bill) 
All, 
I am looking to purchase a 3550, or two if I can afford it, for my home lab.
I am looking on EBAY and see the SMI models with the EMI image. Is there
more to the EMI switch than just software? 
Thanks in Advance 
Bill Clements




Bill Clements, MCSE, CCNP
Network Engineer
International Network Services 
(972) 550-4441




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7i=58560t=58560
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

RE: rate-limit question [7:58423]

2002-12-03 Thread William Lijewski 
Well its actually a config at work that our ISP put on the router.  It is:

rate-limit 16000 8000 8000 conform-action set-prec-transmit 2

This is on our 256k link and we are having complaints that the line has
performance issues.  What I get out of this line is that anything in the 1st
24k or bandwidth is going to have the precedence set to 2, but what I really
need to know is if the rest of the traffic above the 24k is getting dropped?

There are a lot of TCP retransmissions on the line which leads me to believe
that the packets are getting dropped... I really need to know what happens
without that exceed-action command.

And as a side question, why would the ISP put this line in?

Thanks again,
Bill



Message Posted at:
http://www.groupstudy.com/form/read.php?f=7i=58489t=58423
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

RE: AW: Port Security on 3550 based on given MAC-Addre [7:58339]

2002-12-03 Thread William Lijewski 
Hello,

The default for the maximum number of mac-addresses is one, and the default
violation is shutdown.

Bill


Message Posted at:
http://www.groupstudy.com/form/read.php?f=7i=58490t=58339
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

RE: Help needed on ISDN PPP Multilink [7:58474]

2002-12-03 Thread William Lijewski 
Can you past the config from the other side also?  That would help.

Bill


Message Posted at:
http://www.groupstudy.com/form/read.php?f=7i=58492t=58474
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

rate-limit question [7:58423]

2002-12-02 Thread William Lijewski 
For rate-limit, is there a default exceed-action ?  I have been looking in
the documents and all of the configs I seem to find all have the
exceed-action drop, what I am wondering is what happens if I leave the
exceed-action command off of the statement?  Do the packets that don't
conform still go through unchanged, or do they get dropped?

Thanks for the help.

Bill


Message Posted at:
http://www.groupstudy.com/form/read.php?f=7i=58423t=58423
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

RE: ONS 15454 Questions [7:55896]

2002-10-21 Thread William Pearch 
Couple of notes from another 15454 user at the bottom of the email...

Dre wrote:

  Can it participate in an MPLS network?

It probably will be able to someday.  Give it about 10-20 years or so.

  Does it support IP GRE, 802.1p, .q, DiffServ ?

It will pass IEEE 802.1Q tagged frames.  It cannot terminate or
participate in negotiation of an IEEE 802.1Q or Cisco ISL trunk.  So,
no, not really. That stuff can pass through it, but it won't terminate
or negotiate them. Make sense?

Not a SONET transport engineer, and I don't play one on TV:

The best way that I've found to describe the ONS platform is to call it
a fairly smart but dumb L2 device.  It's not a switch really.  It can't
really do trunking 'n such, but it does allow you to pass the tags
through.  It's not a router, so it isn't going to do GRE, DiffServe,
routing, or act as an MPLS PE or P device.  It's just a big freekin go
fast box for moving voice and data.  That's it.  No L3, basic L2.  If
you want it to participate in an MPLS network, it will most likely be
just the 'last mile' between your PE and the CPE.  At 10Gig that's a
fast mile.
If you want something SONET and slightly smarter, look at the Coriolis
boxes.  Not a lot smarter, mind you...  This stuff is generally designed
to be big and dumb, reliable as all, and faster 'n snot.
If you have access to PEC as a Cisco Partner, there is an excellent web
based training session on the ONS15454 that will walk you through some
of the basics, and point you in the direction of the rest.

Bill

[GroupStudy.com removed an attachment of type application/x-pkcs7-signature
which had a name of smime.p7s]




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7i=56059t=55896
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

RE: DQoS exam - review [7:55603]

2002-10-16 Thread Gragido, William 

No,I am speaking of Deploying Quality of Service 9E0601
Cisco QoS.  Its a mandatory exam for the CIPTS specialization.

-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of
Kim Graham
Sent: Wednesday, October 16, 2002 6:10 AM
To: [EMAIL PROTECTED]
Subject: RE: DQoS exam - review [7:55603]


Is this the QoS/Mcast exam you are speaking of?  I am looking at writing it
sometime mid December as preparation for the CCIE and as part of the CCIP
track.

Kim / Zukee




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7i=55718t=55603
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

RE: DQoS exam - review [7:55603]

2002-10-15 Thread Gragido, William 

CIPT is a tough exam.  I took and failed it and am scheduled to hit again in
the next week.  I thought that DQoS was much easier than CIPT.

-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]
Sent: Tuesday, October 15, 2002 11:49 PM
To: [EMAIL PROTECTED]
Subject: RE: DQoS exam - review [7:55603]


CIPT 5 times with your lab getting so close!?! Sounds like alot of energy
put into that single test.




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7i=55665t=55603
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

RE: FS IBM SX GBIC's work fine with Cisco 3500 series switches [7:54933]

2002-10-05 Thread William Pearch 

I can vouch for the IBM GBICs working in the 3550 switches as well.

TTFN,
Bill

-Original Message-
From: Tim Medley [mailto:[EMAIL PROTECTED]] 
Sent: Saturday, October 05, 2002 7:26 AM
To: [EMAIL PROTECTED]
Subject: OT: FS IBM SX GBIC's work fine with Cisco 3500 series switches
[7:54929]


I have a bunch of IBM SX GBIC's for sale i anyone is interested for use
in your labs. I have tested these in several 3500 XL series switches as
well as in a 6500 and they work fine.

Selling them for $25 each plus shipping. Simple inexpensive way to use
Gig E in your home lab.

I do not believe that these are on the approved Cisco third party GBIC
list, so I wouldn't use them on a production network.

Tim


Tim Medley, CCNP+Voice, CCDP, CWNA
Sr. Network Architect
VoIP Group
iReadyWorld

[GroupStudy.com removed an attachment of type application/x-pkcs7-signature
which had a name of smime.p7s]




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7i=54933t=54933
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

RE: PIX Confusion [7:54875]

2002-10-04 Thread Chee, William 

Try this:

static (inside,outside) tcp interface ftp 192.168.1.2(or IP of your internal
host) 5051 netmask 255.255.255.
255 0 0


-Original Message-
From: NetEng [mailto:[EMAIL PROTECTED]]
Sent: Friday, October 04, 2002 11:10 AM
To: [EMAIL PROTECTED]
Subject: PIX Confusion [7:54875]


I have a PIX 501 and get a single IP from my ISP. I would like to set up an
FTP conduit, but on port 5051. I can't find any docs on how to do this. When
I play around it it states that I have to change my NAT rules too. I still
want all inside users access outside. Any info or links are appreciated.

NetEng




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7i=54894t=54875
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

RE: VWIC 2MFT-T1 [7:54796]

2002-10-03 Thread William Pearch 

I have been using VWIC-1MFT's and VWIC-2MFT's to connect in a data mode
to WIC-1DSUs using a cross over T1 cable.  When you do this, it is
imperative to add the 'speed 64' portion of the channel-group if that is
the base speed of the DS0.  I am finding that in general, if I want
something to work I shouldn't trust default settings :)

TTFN,
Bill Pearch, Anchorage

-Original Message-
From: Larry Perdue [mailto:[EMAIL PROTECTED]] 
Sent: Thursday, October 03, 2002 7:14 AM
To: [EMAIL PROTECTED]
Subject: RE: VWIC 2MFT-T1 [7:54796]


You need to use the channel-group command to create the serial
interface, it doesn't do this automatically.  Here is an example from
one that I have
done:
controller T1 2/1
  framing esf
  clock source internal
  linecode b8zs
  cablelength short 133
  channel-group 0 timeslots 1-24 speed 64

In this case, the channel-group command creates a serial 2/1:0
interface that can then be given an IP address and used accordingly.


 -Original Message-
From:   [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED]]

Sent:   Thursday, October 03, 2002 9:42 AM
To: [EMAIL PROTECTED]
Subject:VWIC 2MFT-T1 [7:54796]

Has any one configured a Data T1 on the following card (VWIC 2MFT-T1)?
This is very different from what I've seen in the past...

I've been looking on CCO for data configuration, but haven't found
anything. They say it's possible.

Cheers,
mkj

~~~
Michael Jablonski
ABN AMRO Asset Management Holdings, Inc.
161 North Clark St.
9th Flr
Chicago, IL  60601-2468
PH: 312.884.2996 
FAX: 312.278.5550
~~~




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7i=54811t=54796
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

RE: BCRAN Passed. [7:54732]

2002-10-03 Thread Gragido, William 

Congrats, I passed DQoS today!

-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of
Jimmy
Sent: Thursday, October 03, 2002 8:52 PM
To: [EMAIL PROTECTED]
Subject: Re: BCRAN Passed. [7:54732]


How is the simulation question? Easy? How many simulation question
altogether?

Amir Tahir  wrote in message
[EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
 HI,
 I used Cisco certification guid, Sybex exam notes and amother book named 
 Remote access for cisco networks by bill burton. exam was ok but i had
 problems in simulation Question. I could not perform the command
  copy run start  i was keep geeting wrror. then i tried wr command to
 cave running configuration but could not save it. so i let that Question
go
 without that. rest was ok not that bad
  I spent almost 6-10 hrs a day to review stuff  finish cisco book almost
4
 times, coz i m not working in cisco networks yet so 

 thanks for your mail
 if U have any Q please feel free to ask.
 regards
 Amir




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7i=54843t=54732
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

RE: Period to take ccnp tests [7:54848]

2002-10-03 Thread Gragido, William 

There are only two other exams for the CIPTS bro, CVOICE and CIPT.  no no
time limit



-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of
Leonardo Rocha
Sent: Thursday, October 03, 2002 11:47 PM
To: [EMAIL PROTECTED]
Subject: Period to take ccnp tests [7:54848]


Guys, if one take a ccnp exam today, is there a time limit to take the other
3 exams or else the exam gets invalid?

Can someone help me?


tks a lot,

leo




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7i=54849t=54848
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

RE: OT: FXO FXS terminology - comments? [7:54331]

2002-09-27 Thread Gragido, William 

In Ciscoland FXS provides line voltage, ring etc.,
where as FXO is leading you out to the PSTN or to a PBX

-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of
Jennifer Mellone
Sent: Friday, September 27, 2002 12:27 PM
To: [EMAIL PROTECTED]
Subject: RE: OT: FXO FXS terminology - comments? [7:54331]


That sounds great and makes more sense now! I always like reading your posts
:-)

I always confuse which device plugs into which port. I remember it like
this:

Plug phone or Station into FXS (where Station=S)
Plug PBX/CO into FXO (where Office=0)

- Jennifer




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7i=54339t=54331
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

RE: Deploying Quality of Service Exam 9E0-601 [7:54111]

2002-09-25 Thread Gragido, William 

The best materials are the Cisco Courseware, and Cisco IOS Quality of
Service Solutions Configuration Guide Release 2.2, I'd also recommend taking
a look at the DQoS Boson's, they are pretty close to the materials from what
I've seen.  I'm taking this exam on Saturday, so I'll let you know how good
I think they truly are then :-)

-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of
John Huston
Sent: Wednesday, September 25, 2002 4:28 PM
To: [EMAIL PROTECTED]
Subject: Deploying Quality of Service Exam 9E0-601 [7:54111]


I would appreciate it if someone would recommend the best self study or
otherwise material
for the subject.

Thank you in advance for your help.




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7i=54166t=54111
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: reserving bandwidth [7:52954]

2002-09-11 Thread William R. 

William R.  wrote in message
[EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
 Hi Silvio.

 You can apply a class-map, policy-map and then service-policy
on
 your serial interface.

 This doc can give you and idea how to manage your bandwidth.

http://www.cisco.com/warp/public/105/priorityvsbw.html  
http://www.cisco.com/warp/public/105/qos_subint.html 
and specially
http://www.cisco.com/warp/public/125/cbwfq_17920.html

William R.



 Silvio Macias  wrote in message
 [EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
  Hi everybody!!!
  I have a simple question, what techniques can I use in order
 to configure
  bandwidth reservation in serial interfaces?
  I want to match an extended access list, representing the
 interesting
  traffic.
  What I want to do is to reserve a minimun bandwidth for this
 customer, even
  if the serial interface is experiencing severe congestion
 problems ...
  thanks to everybody in advanced ...
 
  SM
 [EMAIL PROTECTED]
[EMAIL PROTECTED]




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7i=53087t=52954
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Re: reserving bandwidth [7:52954]

2002-09-11 Thread William R. 

Hi Silvio.

You can apply a class-map, policy-map and then service-policy on
your serial interface.

This doc can give you and idea how to manage your bandwidth.


Silvio Macias  wrote in message
[EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
 Hi everybody!!!
 I have a simple question, what techniques can I use in order
to configure
 bandwidth reservation in serial interfaces?
 I want to match an extended access list, representing the
interesting
 traffic.
 What I want to do is to reserve a minimun bandwidth for this
customer, even
 if the serial interface is experiencing severe congestion
problems ...
 thanks to everybody in advanced ...

 SM
[EMAIL PROTECTED]




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7i=53086t=52954
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

RE: Which PIX to buy [7:52572]

2002-09-03 Thread William Pearch 

Although I can't help with the leasing issue...

If you really need speed and you are using the 6500's take a look at the
new firewall blade.  List is $43K a pop, but wow, talk about throughput
(5 Gigs is the spec sheet.)
Runs PIX OS, supports everything, yada, yada, yada, ymmv, vwpbl...  Ok,
so it's overkill for the proffered OC3 issue, but very, very cool and
may fit in to what you want to do.  I'll take two...

TTFN,
Bill

-Original Message-
From: John Chang [mailto:[EMAIL PROTECTED]] 
Sent: Monday, September 02, 2002 3:50 PM
To: [EMAIL PROTECTED]
Subject: Which PIX to buy [7:52572]


I'm wondering which PIX I need.  I need something that will work with
OC12 
155Mbps when saturated.  Right now we have a T3 line and will eventually

get an OC3.  I would need redundant PIXs.  Can anyone recommend a
company 
that leases them?



Thank you.




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7i=52588t=52572
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Xyplex Terminal Server to Cisco Console port .... HOW? [7:52551]

2002-09-02 Thread William D. Mohat 

I am trying to connect a Xyplex 1620 terminal server
to the Console port on a number of Cisco routers.I have
it running (sort of)  but I lose a few characters under heavy
load.   This is odd, since 9600 baud is hardly heavy
compared to the Xyplex's capacity of 115K per port...

   Hardware handshaking would help. BUT ... the
Xyplex doesn't use DTR/DSR pins, and the Cisco Console
ports don't have RTS / CTS connected.   So  hardware
handshaking is out.

   Is there some configuration options that will keep this
setup from losing data?   Has anyone used a Xyplex with
Cisco console ports successfully?

Bill Mohat
[EMAIL PROTECTED]




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7i=52551t=52551
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

RE: IDS Appliance [7:52308]

2002-08-29 Thread Gragido, William 

Are the Cisco sensors signature based or anomaly based?  At what data rate
(realized), do they max out and in effect, stop reading signatures?  Just
curious since I've not worked with their offerings.



-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of
Steven A. Ridder
Sent: Thursday, August 29, 2002 6:38 PM
To: [EMAIL PROTECTED]
Subject: Re: IDS Appliance [7:52308]


so far so good.  I installed one for a client, and it worked awesome.  I
even dropped it 10 feet, and it still worked!



Brian Wilkins  wrote in message
[EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
 I was wondering if anyone else has been experiencing problems with Cisco's
 IDS sensor appliance (formerly Netranger).  Almost every time I load a
 service pack or new signature file I end up rebuilding the device from
 scratch using the install CD's.  I've filed multiple cases with TAC, with
 little help recieved.  I've even spoken to the product manager for the
 devices and still can't seem to stabilize these things.

 Anyone else using Cisco IDS appliances?  If so, how's your luck with them?

 Thanks,

 Brian




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7i=52334t=52308
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

RE: No longer 4 digits [7:52146]

2002-08-27 Thread Gragido, William 

Its been a long time coming folks.  In the grand scheme of things, I'd say
that the 5 digit is right about on time considering that other elite
industry certs that have been around for approximately the same amount of
time are either or already there or way past that.  I don't think that it
will hurt the value of the cert because once again at the end of the day,
its the engineer/consultant/analyst et al, that makes the cert not the other
way around.

Will Gragido CISSP CCNP MCP Waiting in written la la land for the lab


-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of
Paul Borghese
Sent: Tuesday, August 27, 2002 4:12 PM
To: [EMAIL PROTECTED]
Subject: Re: No longer 4 digits [7:52146]


This is it!  The thing that will turn the industry around.  Let's start
asking people if their network is C1k compatable.  Explain how most networks
were designed for four digit CCIE's and they will need to hire us for a
complete overhall of the network.

Yea sure it will cost a lot, but look at the consequences of not upgrading
your network to C1k compatability!

Paul


- Original Message -
From: MADMAN
To:
Sent: Tuesday, August 27, 2002 2:56 PM
Subject: Re: No longer 4 digits [7:52146]


 CCIE 1040 sits next to me and I asked him if Imran (sp?) was his
 proctor and it was.  Imran designed the orgianal program and it's our
 guess he was the proctor for the 1st CCIE.

   Imran was pretty tough, I remember talking to him at networkers in
 Denver when the CCIE recert first came out and about 100 of us took the
 test and only 2 passed.  He chuckled stating his intention was to make
 it difficult so as to require studying.

   Dave

 Chuck's Long Road wrote:
 
  this topic of fascination for many often leads to a bit of confusion as
 well
 
  http://www.cisco.com/warp/public/625/ccie/ccie_program/ccie_present.html
 
  shows the number of CCIE's world wide as of 7/31/02
 
  The first CCIE number issued was 1025.  Over the years, some have
retired,
  some have neglected to recertify ( including Jeff Doyle, last time I
  looked )
 
  So according to Cisco's numbers, on July 31 2002 there were 8031 active
  CCIE's.
 
  As a sidebar, Terry Slattery, CCIE 1026, tells how he was tested by CCIE
  1025 ( sorry, I can't remember the name )
  The theory was / remains that only CCIE's should test candidates.
 
  No one seems to know who  tested #1025, nor the criteria used.
 
  Chuck
 
  --
 
  www.chuckslongroad.info
 
  still  a  work in progress,
  but on line for your enjoyment
 
  z
  Jim Brown  wrote in message
  [EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
   First number assigned to a candidate was 1025. When we hit 11025 their
  will
   be 10,000 candidates not including people who didn't recertify.
  
   -Original Message-
   From: Reza Sharifi [mailto:[EMAIL PROTECTED]]
   Sent: Tuesday, August 27, 2002 11:20 AM
   To: [EMAIL PROTECTED]
   Subject: RE: No longer 4 digits [7:52146]
  
  
   Is that because there are more than 1 CCIE,s?.
  
   Reza
 --
 David Madland
 CCIE# 2016
 Sr. Network Engineer
 Qwest Communications
 612-664-3367

 You don't make the poor richer by making the rich poorer. --Winston
 Churchill




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7i=52167t=52146
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

RE: What I mean to Cisco [7:51492]

2002-08-16 Thread William Pearch 

My post was meant to be light hearted, not a plea for help.  I think
it's obvious that the bot that responded to my email query is messed up.
Once again- humor alert! :)
I'm familiar with SMARTnet and the warranty process but thanks for
asking- there might be some on the list that aren't.  I'm still batting
back and forth if I will Snet access devices that are under $1000 -
right now I'm thinking that is a waste of money/time/effort.

TTFN,
Bill

-Original Message-
From: Turpin, Mark [mailto:[EMAIL PROTECTED]] 
Sent: Friday, August 16, 2002 5:48 AM
To: [EMAIL PROTECTED]
Subject: RE: What I mean to Cisco [7:51492]


Bill,

Do you have a SMARTnet contract for that 1710?  Are you within the
warranty period for support?  If you're not familiar with SMARTnet take
a moment to check it out:
http://www.ciscomug.org/resources/files/cmugpresentation-20020206-smartn
et.p
pt

After flipping through that presentation, are you still within the valid
warranty period?  If so, contact the TAC over the phone and tell them
about the feelings you are having regarding their service.
[EMAIL PROTECTED] != Cisco Customer Advocacy Representatives.

If after going through those slides you realize you are outside your
warranty, you should understand what's happening to you.  It costs money
to run a business.  The pricing of their support is typically something
I would not argue with.

-Mark

-Original Message-
From: William Pearch [mailto:[EMAIL PROTECTED]]
Sent: Thursday, August 15, 2002 11:40 PM
To: [EMAIL PROTECTED]
Subject: OT:What I mean to Cisco [7:51492]


I've got a poorly behaving 1710 router (reboots when you log out/TACACS
issue) that I'm trying to get straight with the TAC and I received this;

Dear $Customer$, 

Thank you for contacting Cisco's Technical Assistance Center(TAC). 

We have recieved your request

I love it when I'm a double dollar sign to a company :)


Bill
Anchorage, AK

[GroupStudy.com removed an attachment of type
application/x-pkcs7-signature which had a name of smime.p7s]  The
information transmitted is intended only for the person or entity to
which it is addressed and may contain confidential and/or privileged
material. Any review, retransmission, dissemination or other use of, or
taking of any action in reliance upon, this information by persons or
entities other than the intended recipient is prohibited. If you
received this in error, please contact the sender and delete the
material from all computers.

[GroupStudy.com removed an attachment of type application/x-pkcs7-signature
which had a name of smime.p7s]




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7i=51510t=51492
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

OT:What I mean to Cisco [7:51492]

2002-08-15 Thread William Pearch 

I've got a poorly behaving 1710 router (reboots when you log out/TACACS
issue) that I'm trying to get straight with the TAC and I received this;

Dear $Customer$, 

Thank you for contacting Cisco's Technical Assistance Center(TAC). 

We have recieved your request

I love it when I'm a double dollar sign to a company :)


Bill
Anchorage, AK

[GroupStudy.com removed an attachment of type application/x-pkcs7-signature
which had a name of smime.p7s]




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7i=51492t=51492
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

RE: GBIC's - Cisco and otherwise [7:51148]

2002-08-12 Thread William Pearch 

When I was learning a bit about SAN's and Fibre Channel, one of my
instructors mentioned that there were only 3 manufacturers of GBICs
(couple years ago, may have changed by now).  I have put GBICs (no long
haul stuff) obtained from Nortel, IBM, Compaq, Brocade, Cisco, and
unknown into a 3500, a 2950, a Nortel 420, Dell and a couple others
just to see if they would work.  They did.  Fibre Channel GBICs, GigE
GBICs, all seemed to work just fine.  I'll try it in a 3550 later this
month, and it will probably seem to work just fine also.

SEEMED to work just fine.  I wouldn't do that on a production network,
but on a 'oh s$!%' or a giggles and grin basis, yea - no worries.

YMMV, VWPBL, OSTCAAT...

TTFN,
Bill Pearch, Anchorage

-Original Message-
From: Chuck's Long Road [mailto:[EMAIL PROTECTED]] 
Sent: Saturday, August 10, 2002 9:27 AM
To: [EMAIL PROTECTED]
Subject: OT: GBIC's - Cisco and otherwise [7:51148]


I took a bit of a risk, and purchased some GBIC;s off That Auction Site.
Of the four, three are Cisco branded, and the fourth is labeled
Agilent ( used to be HP )

I had done a bit of investigation prior to purchase. I see that the
Auction Site has listings for Agilent, IBM, and Extreme GBIC's, as well
as Cisco. However, I was unable to find any direct and clearly stated
indication that all GBIC's are interchangeable.

IBM and Agilent GBIC's cost few pretty pennies less than Cisco BTW,
although I suspect now that the same source OEM's for all these
manufacturers.

So I paid my money, took my chance, and have an Agilent GBIC on one
switch connected to a Cisco GBIC on another. No connectivity problems.
Came right up. Is passing traffic even as I write.

Thinking logically, why should GBIC's be any different that NIC's or
patch cables, transceivers of various sorts and brands, or CSU/DSU's?
They are all build to industry specifications and industry standards.
They all do the same thing.

Just thought I'd pass that along to those trying to stretch their
practice lab or network upgrade dollars.

[GroupStudy.com removed an attachment of type application/x-pkcs7-signature
which had a name of smime.p7s]




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7i=51285t=51148
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

RE: polycom Video Unit [7:49882]

2002-07-28 Thread William Pearch 

The Polycom Viewstations and Via-Video units use unicast UDP (RTP)
traffic for data streams and unicast TCP(RTCP) traffic for signaling and
control.  

Part of the initialization process is an agreement on what codec's are
going to be used.  This negotiation process is different depending on if
there is a gatekeeper involved in the conversation.  The important thing
to remember about a 323 MCU is that it is essentially a h.323 terminal.
Any I-frames or K-frames that happen between a terminal and the MCU are
between the terminal and the MCU - not between participants in the
conference.  There is an initialization process between each endpoint
and the MCU that would handle things like data rate and terminal
capabilities.

I would refer you to a handful of whitepapers available on polycom's web
site, especially the ones from PictureTel.
http://www.polycom.com/resource_center/0,1408,997,00.html  The old
pictureTel whitepapers are much better written and easier to use than
anything else I've found on h.323 so far.

There is another excellent resource on the web/mail-list; the h323
forum.  I don't recall the web site right now, do a google search I'm
sure you will hit.

TTFN,
Bill 'VTC over IPSec' Pearch, Anchorage AK

-Original Message-
From: Michael L. Williams [mailto:[EMAIL PROTECTED]] 
Sent: Saturday, July 27, 2002 11:39 AM
To: [EMAIL PROTECTED]
Subject: Re: polycom Video Unit [7:49882]


John Neiberger  wrote in message
[EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
 I suppose it depends on the unit but ours mainly use unicast to the 
 Cisco MCU.  As far as I know they use standard H.323.  The downside if

 you're using an MCU is that the PolyComm units have a lot of different

 codecs available that might not be known by the MCU.  For example, the

 Cisco MCU can only do G.711 audio, but if you let two video units 
 speak directly to each other they use G.726 ( I think.  Maybe it's 
 G.722?) and it sounds
much
 better.

That brings up an interesting question tho unless the MCU is
converting between codecs for end stations that might want to use
different codecs, must the MCU understand the codec or would it simply
act as a relay startion for that data.  (i.e. if two end-stations
are using a codec that they understand but the MCU doesn't, would it be
a problem since the MCU would merely forward the unknown (to it) audio
data to the other end station).

The Cisco MCU supports many more codecs than G.711 including the popular
G.729 codec (which gives roughly G.711 quality with an 8:1 compression).
The G.722 (you were right.. it's G.722, not G.726) that covers from
50-6900Hz instead of 50-3900Hz as most narrowband codecs do.  So if
you're trying to play more high fidelity sound, you may want to use
that.  I haven't seen many units that support this codec though (but I
have by no means seen tons of units, just a few).  However, if the audio
you're trasmitting is human speech, the G.722 isn't going to gain you
much in terms of sound quality since it would be preserving an
additional frequency range that's not used alot by human speech.

Does anyone have any input or experience with how and/or when the MCU
codec support comes into play?  I would think that if the endpoints are
at the same datarate and using the same audio/video codecs, the MCU
would just be a bounce point and the actual codecs in the MCU wouldn't
be utilized  Just a theory tho..

Mike W.

[GroupStudy.com removed an attachment of type application/x-pkcs7-signature
which had a name of smime.p7s]




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7i=49917t=49882
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

RE: Opinions on 4000 -vs- 6500 [7:48467]

2002-07-13 Thread William Pearch 

Be wary of Gig to the desktop in Windows boxes.  In most cases, PC class
(non-64/66 PCI) simply can't handle it.  On top of that, as Howard
mentioned, the server has to be a screamer or it won't be able to keep
up with the GigE either.  You can get better performance with a *nix
box, but if it's Intel based, it will still (sweeping generality here)
suffer throughput issues.
A few notes from some GigE Windows work I've done in the past.

Try to move big files rather than lots of little ones.
Go for Jumbo Frames.
TCP Window size is tuneable in W2K.  Tune it.
More Memory.  On a Compaq DL380 I saw best performance/$ at about the
2GB RAM mark.  3GB of RAM was better, but only a skosh.
Lots of cache, and LOTS of hard drives.  It is better to have 20 18Gig
drives than 10 36 Gig drives for SPEED.  Spindles mean things.  It may
be a good time to think fibre channel.
64/66 minimum for your RAID controllers.  PCI-X is even better.  Don't
bother with the built in RAID controllers in most servers - they are
fairly lame.
Pay attention to your cables.  Bad fiber installs or so so copper will
kill your performance.

Sit back and enjoy the blinkie lights.

TTFN,
Bill Pearch, Anchorage AK


-Original Message-
From: Howard C. Berkowitz [mailto:[EMAIL PROTECTED]] 
Sent: Wednesday, July 10, 2002 11:32 AM
To: [EMAIL PROTECTED]
Subject: RE: Opinions on 4000 -vs- 6500 [7:48467]


At 12:02 PM + 7/10/02, [EMAIL PROTECTED] wrote:
Gig to the desktop would be overkill.  You have to make a decision on 
were to place your bottleneck, and adjust interface speed accordingly.

We have a very similar setup with Cat 6000, Cat 4000, and Cat 3000's.  
We determined that 100MP to the desktop would suffice any current 
requirement.


 From the application standpoint, this is a sort-of it depends.  Let 
me throw out some off-the-top-of-my-head examples.

A digitized mammogram series is about 250 MBytes, or 2 Gbits. It 
contains several views, so the physician doesn't need it all at once. 
If the workstation has a fast local disk, you should be able to 
retrieve the set in about 20 seconds on FE.  The image server may 
very well be the bottleneck.  Once you have the set, flipping from 
image to image is a workstation limitation.

But if you were going to do high-resolution imagery with motion 
(movie special effects, real-time cardiac MRI, etc.), you have to 
deliver frames fast enough to have smooth motion.  Now, the physician 
is not apt to decide he or she is going to study the imagery with no 
warning, so scheduling an upload isn't all that unreasonable.  If you 
did want RIGHT NOW full motion imagery, you very well might want GB 
or even faster to the workstation.  That's going to mean a pretty 
powerful workstation!


-Original Message-
From: Kim Graham [mailto:[EMAIL PROTECTED]]
Sent: Wednesday, July 10, 2002 7:28 AM
To: [EMAIL PROTECTED]
Subject: Re: Opinions on 4000 -vs- 6500 [7:48467]


We currently have 4006's SupII in our closets and they have no trouble 
handling the traffic (240 ports).  If you want to go IOS you can move
up to
the SupIII engine on this unit.   They interface with our 6513's via
gig
uplinks and to date we have not had any issues with the 4006's or the 
gig uplinks.

Personally I like them, but others may have varying opinions.

Kim



  From: Michael Williams
  Date: 2002/07/10 Wed AM 12:41:15 EDT
  To: [EMAIL PROTECTED]
  Subject: Opinions on 4000 -vs- 6500 [7:48467]

  We are going to setup some closets in hospitals for radiology to 
 transfer  large images across.  They want gig to the desktop  If 
 we have 20-30  computers/printers connected with Cat5E gig to a 4000 
 will that be too  much?  I'm thinking it won't overwhelm the 
 backplane unless all devices
are
  cranking gig at once (which I've yet to hear of a PC or printer that

 can  actually handle Gig .)

  What would be the best recommendation for Sups?  Sup1, 2 or 3?  We 
 don't  need L3 at that level as each 4000 would uplink (via Gig) to a

 6500 for  L3.

  We could do 6506 in the closet for the Cat5 gig modules are 
 expensive and  only have 16 ports per blade where the 4000 modules 
 have 48 ports of  10/100/1000 for the Cat5 and are cheaper

  Thanks for any input

  Mike W.

[GroupStudy.com removed an attachment of type application/x-pkcs7-signature
which had a name of smime.p7s]




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7i=48714t=48467
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

RE: Cisco Video Conferencing [7:48646]

2002-07-11 Thread William Pearch 

If you are referring to the Cisco branded MCUs and h.323 Gatekeepers,
yes - I use them.  You can save a bit of cash in some cases by turning
to the vendor of the hardware (Radvision) but the support for these
products from Cisco has been first rate.  The written documentation is a
little slight on CCO, but generally useable.  There are better and
cheaper h.323 Gatekeepers than the Cisco IOS MCM - free323 comes to mind
- and there is a h.323 proxy in beta that is also freeware.
Scheduling software and billing software for the VTC 'stuff' is spendy.
I believe one of our business units is looking seriously at Todd
software for billing and scheduling so I should have a better grasp on
how that is done in a month or two.
To the individual products;
The Cisco 3510 is fairly lame - so of course I have two of them in my
network... :)  A fixed config box that can handle up to about 4Mb of VTC
traffic.  It is stackable for aggregate horsepower, but there are
cheaper ways to get the 'umph' you need than buying a bunch of 1U MCUs.
The Cisco 3540 is a killer box that is scaleable and priced accordingly.
It supports T.120 and can bridge (gateway, actually) to h.320 networks
as well.  If I were going to spend my money again, I'd get this box (or
the RadVision original).
One of the interesting thing about these boxes is that there really
isn't a command line, exactly.  You use the console port once - to set
an IP address.  After that, it's a Windows application to configure the
rest.  Warning about the 3510 - After just about any configuration
change it reboots.  The thing get's rebooted more than a Windows 95
box...
If you have an interest in VTC, but don't want to bite off the 20-40K to
get started with MultiPoint VTC, I can recommend Glowpoint/WireOne for a
decent service provider in the lower 48.  They even provide the VTC
terminal equipment.  Do the numbers based on your expected use - you may
be supprised.
One item about VTC/h.323 regardless of whose equipment you use:  Get
your QOS butt in order and give yourself about 20% overhead on the VTC.
TTFN,
Bill 'VTC over IPSEC' Pearch, Anchorage


-Original Message-
From: Johnson, Richard (NY Int) [mailto:[EMAIL PROTECTED]] 
Sent: Thursday, July 11, 2002 6:48 PM
To: [EMAIL PROTECTED]
Subject: Cisco Video Conferencing [7:48646]


Hi All, 

Is anyone out there currently using it? If so what are your opinions of
it?


Thanks 

Rich

[GroupStudy.com removed an attachment of type application/x-pkcs7-signature
which had a name of smime.p7s]




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7i=48655t=48646
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

DLSW FST Encapsulation Compatability? [7:47209]

2002-06-22 Thread William Lijewski 

Can FST encapsulation handle both Token Ring hosts and Ethernet hosts?  In
the CCIE Practical Studies book there is a chart that sayd it only works
with Token Ring hosts, yet a couple of pages before that it states that it
will work with all types of Media?

Thanks for the help




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7i=47209t=47209
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

OT: Cisco 3510 Configuration [7:46668]

2002-06-14 Thread William Pearch 

I'm having some difficulty with one of my 3510 MCUs.  It will allow a
confrence to start with a service prefix but will not allow you to
provide a confrence ID.  I know this is a long shot, but anyone know
much about the Cisco MCUs?  Otherwise, it's off to the TAC on Monday...

TTFN,
Bill h.323 is my life Pearch, Anchorage AK




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7i=46668t=46668
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

RE: Cryptography and frame-relay [7:46621]

2002-06-14 Thread William Pearch 

For the medical traffic that we are throwing over frame, hospitals are
choosing to IPSec encrypt more and more.  Is it necessary?  I think it
will be due to HIPPA, but that may or may not play out long run.  Will
it protect your data?  Only from people that have the ability to
intercept C-band satalite or tap fiber and don't want to walk into the
doctors office and just photocopy your records... :)  Remember, End to
End security doesn't stop at the routers.
If your physical security measures are lax, and your security processes
are non-existant, you are wasting your time in securing the transport
between locations.  Pick off the low hanging fruit first.

TTFN,
Bill


-Original Message-
From: Paulo Roque [mailto:[EMAIL PROTECTED]] 
Sent: Friday, June 14, 2002 11:23 AM
To: [EMAIL PROTECTED]
Subject: Cryptography and frame-relay [7:46621]


Hi All,

Is necessary to encrypt the comunication that goes over frame-relay
links or the frame-relay virtual circuits (PVC/SVC)  mechanisms are
secure enough to protect my data?

Thanks


--
Eng. Paulo Roque
Network Engineer
Cisco Certified Network Associate
[EMAIL PROTECTED]

[GroupStudy.com removed an attachment of type application/x-pkcs7-signature
which had a name of smime.p7s]




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7i=46669t=46621
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

RE: Bitswapping Tool [7:44385]

2002-05-20 Thread TALBOT, WILLIAM P (SWBT) 

If Bill told you that, then Bill is only *partially* correct.  Might there
be scenarios without token-ring present?  Maybe.  Might there be scenarios
with token-ring still present?  Certainly.  It is on the blueprint and as
such, is fair game.  TR has not been officially removed from the lab
requirements by Cisco.

pt

-Original Message-
From: Steven Ridder [mailto:[EMAIL PROTECTED]]
Sent: Monday, May 20, 2002 10:17 AM
To: [EMAIL PROTECTED]
Subject: Re: Bitswapping Tool [7:44385]


Bill Parqhurst told me.


From: Jay 
To: Steven A. Ridder 
CC: [EMAIL PROTECTED]
Subject: Re: Bitswapping Tool [7:44385]
Date: 20 May 2002 09:00:39 -0400
MIME-Version: 1.0
Received: from khan.execulink.net ([209.239.12.72]) by hotmail.com with 
Microsoft SMTPSVC(5.0.2195.4905); Mon, 20 May 2002 06:07:16 -0700
Received: (from jg@localhost)by khan.execulink.net (8.11.6/8.11.6) id 
g4KD0eM08597;Mon, 20 May 2002 09:00:40 -0400
X-Authentication-Warning: khan.execulink.net: jg set sender to 
[EMAIL PROTECTED] using -f
In-Reply-To: 
References: 
X-Mailer: Ximian Evolution 1.0.3
Message-Id: 
Return-Path: [EMAIL PROTECTED]
X-OriginalArrivalTime: 20 May 2002 13:07:17.0110 (UTC) 
FILETIME=[4452B960:01C1]

So no token ring probably means no Source-Route Bridging?  How do you
know there is no Token Ring anymore, I find that surprising.   Is there
something that supplies what is *not* on the test?  I thought anything
was fair game except for that list on the web site that includes LANE,
LAT, AT, DECNet, etc...  Didn't see anything about Token Ring though.

On Sat, 2002-05-18 at 07:18, Steven A. Ridder wrote:
  Plus, there is no more token ring on lab.
 
 
  Darren S Crawford  wrote in message
  [EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
   You won't have time.  Besides nothing like would be allowed.
  
   D.
  
   At 01:49 PM 5/17/2002 -0400, Jason Greenberg wrote:
   Does anyone know if the CCIE lab gives you access to a bitswapping 
tool
   for converting mac addresses to canonical format?
   
   --
   Jason Greenberg, CCNP
   Network Administrator
   Execulink, Inc.
   [EMAIL PROTECTED]
   x$:0`0:$xx$:0`0:$xx$:0`0:$xx$:0`0:$xx$:
   Lucent Technologies - Enhanced Services  Sales
   NetworkCare Professional Services
   http//www.lucent.com/netcare/
   Darren S. Crawford - CCNP, CCDP, CISSP
  
   Distinguished Member of the Consulting Staff
  
   Northwest Region - Sacramento Office
   Voicemail (916) 859-5200 x310
   Pager (800) 467-1467
   mailto:[EMAIL PROTECTED]
   x$:0`0:$xx$:0`0:$xx$:0`0:$xx$:0`0:$xx$:
  
   Every Job is a Self-Portrait of the person Who Did It
   Autograph Your Work With EXCELLENCE!
_
Get your FREE download of MSN Explorer at http://explorer.msn.com/intl.asp.




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7i=44562t=44385
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

PIX VPN 'Understanding' [7:44158]

2002-05-14 Thread William Pearch 

So I finnally have time to just try things.  And what do I do?  Try
something that doesn't seem to work.
I mirrored the configs from the CCO for a PIX to PIX to PIX IPSec fully
meshed VPN.  All seemed well, until I tried a h323 conversation between
PC's behind different PIX's.  This did not work.  
I don't understand why.  Perhaps it is that I don't understand the PIX
well enough to troubleshooot.  ISAKMP SA's were created.  Just the h.323
doesn't work.  Idea's?  
The Cisco page in question is
http://www.cisco.com/warp/public/110/pixmeshed.html 
Hardware used was Pix 501's with PIX OS 6.1.  Polycom VTC gear and
software on the Windows 2K PC's.

Thanks for any enlightenment any of you may have on this one.

Bill in Anchorage

[GroupStudy.com removed an attachment of type application/x-pkcs7-signature
which had a name of smime.p7s]




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7i=44158t=44158
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

RE: CCIE in 3-6 Months from cisco Interesting [7:43306]

2002-05-07 Thread Gragido, William 

Its getting kind of hot in here..

-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of
Jason Forrester
Sent: Monday, May 06, 2002 4:50 PM
To: [EMAIL PROTECTED]
Subject: Re: CCIE in 3-6 Months from cisco Interesting [7:43306]


Becareful with the kid comment.  I passed my CCIE at 20, dang near 19.

Jason
CCIE 8748

Michael L. Williams wrote:

 nrf  wrote in message
 [EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
  Bullshi*.  There are a significant number of guys lately who've passed
the
  lab who I wouldn't hesitate to call paper (heck, even they have
honestly
  referred to themselves as paper, usually after getting a few drinks into
  them).

 Significant?  Help me understand the extent to which you use that word?
If
 you're a proctor for CCIE labs and saw people day in and day out, then I
 would take your word for it.  I have yet to take the lab, but I'm
trying
 to understand how someone could make it through the lab and still be
 considered paper.  Is the lab that big of a joke?  Consider it's
very
 high fail rate, I can't see it being so easy that people can't pass
 without understanding what they're doing?   At least to the same level
that
 anyone else who ever passed the lab did  Personally I use paper to
mean
 someone with a cert that doesn't have any hands-on to match it  like
 paper MSCE.. I worked with this kid who was 19, has his MSCE, CNE, and
 Master CNE, but had zero hands on definitely paper...  but we're
talking
 the CCIE lab here. it's simply not possible (IMHO) to pass the lab
 without at least a minimum of hands-on (whether in a job or on practice
 equipment) to give one the skills to pass.

  But I do agree with the premise that the main reason for the devaluing
of
  the cert is the bad economy, and the lab-rats are a lesser consideration
  (still important, but lesser).  But on the other hand, I think it is the
  case that the CCIE will probably never attain the status that it once
did,
  simply because the we will probably never see another huge network
 buildout
  orgy  like the dotcom boom again in our lifetime.  So while I believe
the
  networking industry will get better, people who thinks it's going to get
  back to, say, 1999, are just deluding themselves.

 Agreed  I don't thik we'll see things back like there were a couple of
 years ago.  But I'm trying to draw a fine distinction between the
devaluing
 of a cert (due to shoddy cert process) -vs- the salary that one pulls in
 with the cert.  The CCIEs now (in general) don't make and probably in the
 future won't make what CCIEs of two years ago did.  Is this a devaluation
of
 the cert.  Certainly not.  That's the market that's the economy  I
 don't believe that has much to do with whether employers and network
 professionals value the certification (i.e. consider someone with CCIE
to
 be a true expert in networking).




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7i=43521t=43306
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

RE: CCIE in 3-6 Months from cisco Interesting [7:43306]

2002-05-07 Thread Gragido, William 

The begining of wisdom is the realization that you know nothingsomeone
important said that once and I believe that its meaning is as pertinent
today as it was when it was originally stated.  To suggest that a CCIE
possess god like qualities is a disservice to the CCIE and God if one stops
to think about it.  CCIEs are people and are capable of major goof ups just
as much as the lowliest desktop technician.  We live in an imperfect world,
I think that its time that we all re-evaluate our conceptual understanding
of the CCIE certification and realize that its merely another step in the
never ending progression of learning.  :-)

My 2 Cents,

Will Gragido CCNP CCNA CCDA MCP and SoB ;-)

-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of
TALBOT, WILLIAM P (SWBT)
Sent: Monday, May 06, 2002 5:36 PM
To: [EMAIL PROTECTED]
Subject: RE: CCIE in 3-6 Months from cisco Interesting [7:43306]


I agree, there is a perception of CCIE's as arrogant know-it-alls.

Some of this is surely warranted, and some surely stems from envy.

Which is why I can laugh at this joke you may have already heard:

Q:What's the difference between a CCIE and God?
A:God doesn't think he is a CCIE...

Pat
(Set to incur the wrath of the aforementioned God at the RS Lab in RTP on
May 18)




-Original Message-
From: nrf [mailto:[EMAIL PROTECTED]]
Sent: Sunday, May 05, 2002 7:29 PM
To: [EMAIL PROTECTED]
Subject: Re: CCIE in 3-6 Months from cisco Interesting [7:43306]


I also agree with you on many points.  But anyway, inline




 I see your point about people not skipping the tech interview because of
 CCIE.  And I also agree that it's a good thing.  After all, when 'lab
rats'
 (as you call them) are applying for jobs, it just makes sense that one
would
 give a tough interview to weed them out.  However, one must ask themselves
 What is the purpose of the cert?  Just like a college degree in, say
 Computer Science.  The BS in CS doesn't guarantee an employer that the
 person has experience, say, with PERL.  However, the degree indicates that
 this person can learn and understand the logic of programming, etc.  I
don't
 think the purpose of the CCIE (or any Cisco cert) is to guarentee
knowledge
 of  absolutely everything in networking.  That's not possible.  However, I
 believe that it does indicate an advanced level of understanding of
network
 principles as well as knowledge of specific technologies (EIGRP, HSRP,
 DLSw+, etc).  So, as in your example of the person that didn't learn BGP
 because it wasn't required for the cert, I have to say So what.  That
 wasn't the point of the CCIE.  The CCNP cert doesn't cover IS-IS, for
 example, but I would hope anyone with CCNP could sit down, read about
IS-IS,
 know how to look up IS-IS related commands on Cisco's site, and then
 implement what needs to be implemented.  That's, IMHO, the purpose of
 obtaining the cert.

This is absolutely true, nobody can know everything, and the CCIE was never
designed to do that.

On the other hand, there is a major difference between somebody who admits
he doesn't know the answer, but can probably look it up, and somebody who
boldly states something that is flatly wrong.  For example, with that guy I
interviewed who claimed that CEF can only be run on a GSR, clearly this was
a case where he was trying to snow me.   Now I admit, I was trying to trick
him (I deliberately pretended that I knew nothing about networks because I
wanted to see what kinds of things he would say if he didn't think I was a
networking guy myself), and boy, was he tricked.



  It's certainly not a big joke, it's just that yes you really can pass
the
  lab without experience.   Granted, you need dedication and you need
money
 to
  buy a home lab.

  Exactly - you need practice equipment.  So you don't need a real job
that
  provides hands-on equipment. You just need a lab, a lot of time, and a
lot
  of money for exam attempts (or a willingness to go into debt).  But a
  networking job?  Not really, not to pass the lab.

 I understand your differentiation between real-world hands-on and practice
 lab (lab rat) hands-on.  I truly do.  But, again, it's like the college
 degree thing.  If a company wants someone who has experience, they'll
 interview and ask questions that only seasoned professionals could answer.
 But, if they want someone with a certain level of knowledge, demonstrated
 ability to learn new things, and the ability to find resources and answer
 questions, then that could be a seasoned professional or someone that's
 certified (or someone with both).  On the flip side of your argument, I've
 met people that are trying to get into networking from the telco side, and
 could explain in great detail how a T1 works, but couldn't explain HSRP (a
 very simple thing to understand and setup) to save their life.  Doesn't
mean
 their stupid, just not exposed to it.  And the cert provides exposure to
 these things, whether real world or lab rat

RE: Pix load balance? [7:42974]

2002-05-07 Thread Gragido, William 

The best way to load balance is to use an application layer (layer 4-7)
switch.  I am not too familiar with Cisco's offering of this technology
(sadly), but have worked extensively with Foundry's ServerIrons and they are
excellent devices!

-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of
Brian Zeitz
Sent: Tuesday, May 07, 2002 8:50 AM
To: [EMAIL PROTECTED]
Subject: RE: Pix load balance? [7:42974]


Load balancing is supposed to be done on content switches according to
what I am reading. I cannot be done on the firewall withing the site,
nor can it be done with different ISPs.

Brian Zeitz MCSE, CCNP

-Original Message-
From: Gaz [mailto:[EMAIL PROTECTED]]
Sent: Tuesday, May 07, 2002 6:58 AM
To: [EMAIL PROTECTED]
Subject: Re: Pix load balance? [7:42974]

What's the reason?
I'm not disputing the fact, just wondering what the limitation is. I
take it
that the limitation is only that it cannot do stateful failover with two
active PIXes?

Cheers,

Gaz

 wrote in message
[EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
 Yeah, I asked the same questions last month.  They can not.  If you
really
 need firewall and Load balancing, FW-1 is the way to go.

 Theo
 CSS1, CCNP, CCSE






 Patrick
 Sent by: [EMAIL PROTECTED]
 05/06/2002 06:28 AM
 Please respond to Patrick


 To: [EMAIL PROTECTED]
 cc:
 Subject:Re: Pix load balance? [7:42974]


 No.

 GEORGE  wrote in message
 [EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
  Can you load balance to pix firewalls?
  Has anyone done this?




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7i=43525t=42974
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

RE: CCIE in 3-6 Months from cisco Interesting [7:43306]

2002-05-06 Thread TALBOT, WILLIAM P (SWBT) 

I agree, there is a perception of CCIE's as arrogant know-it-alls.

Some of this is surely warranted, and some surely stems from envy.

Which is why I can laugh at this joke you may have already heard:

Q:What's the difference between a CCIE and God?
A:God doesn't think he is a CCIE...

Pat
(Set to incur the wrath of the aforementioned God at the RS Lab in RTP on
May 18)




-Original Message-
From: nrf [mailto:[EMAIL PROTECTED]]
Sent: Sunday, May 05, 2002 7:29 PM
To: [EMAIL PROTECTED]
Subject: Re: CCIE in 3-6 Months from cisco Interesting [7:43306]


I also agree with you on many points.  But anyway, inline




 I see your point about people not skipping the tech interview because of
 CCIE.  And I also agree that it's a good thing.  After all, when 'lab
rats'
 (as you call them) are applying for jobs, it just makes sense that one
would
 give a tough interview to weed them out.  However, one must ask themselves
 What is the purpose of the cert?  Just like a college degree in, say
 Computer Science.  The BS in CS doesn't guarantee an employer that the
 person has experience, say, with PERL.  However, the degree indicates that
 this person can learn and understand the logic of programming, etc.  I
don't
 think the purpose of the CCIE (or any Cisco cert) is to guarentee
knowledge
 of  absolutely everything in networking.  That's not possible.  However, I
 believe that it does indicate an advanced level of understanding of
network
 principles as well as knowledge of specific technologies (EIGRP, HSRP,
 DLSw+, etc).  So, as in your example of the person that didn't learn BGP
 because it wasn't required for the cert, I have to say So what.  That
 wasn't the point of the CCIE.  The CCNP cert doesn't cover IS-IS, for
 example, but I would hope anyone with CCNP could sit down, read about
IS-IS,
 know how to look up IS-IS related commands on Cisco's site, and then
 implement what needs to be implemented.  That's, IMHO, the purpose of
 obtaining the cert.

This is absolutely true, nobody can know everything, and the CCIE was never
designed to do that.

On the other hand, there is a major difference between somebody who admits
he doesn't know the answer, but can probably look it up, and somebody who
boldly states something that is flatly wrong.  For example, with that guy I
interviewed who claimed that CEF can only be run on a GSR, clearly this was
a case where he was trying to snow me.   Now I admit, I was trying to trick
him (I deliberately pretended that I knew nothing about networks because I
wanted to see what kinds of things he would say if he didn't think I was a
networking guy myself), and boy, was he tricked.



  It's certainly not a big joke, it's just that yes you really can pass
the
  lab without experience.   Granted, you need dedication and you need
money
 to
  buy a home lab.

  Exactly - you need practice equipment.  So you don't need a real job
that
  provides hands-on equipment. You just need a lab, a lot of time, and a
lot
  of money for exam attempts (or a willingness to go into debt).  But a
  networking job?  Not really, not to pass the lab.

 I understand your differentiation between real-world hands-on and practice
 lab (lab rat) hands-on.  I truly do.  But, again, it's like the college
 degree thing.  If a company wants someone who has experience, they'll
 interview and ask questions that only seasoned professionals could answer.
 But, if they want someone with a certain level of knowledge, demonstrated
 ability to learn new things, and the ability to find resources and answer
 questions, then that could be a seasoned professional or someone that's
 certified (or someone with both).  On the flip side of your argument, I've
 met people that are trying to get into networking from the telco side, and
 could explain in great detail how a T1 works, but couldn't explain HSRP (a
 very simple thing to understand and setup) to save their life.  Doesn't
mean
 their stupid, just not exposed to it.  And the cert provides exposure to
 these things, whether real world or lab rat experience I mean,
 really, does it matter if you setup HSRP in a lab or in the real-world?  I
 think not... HSRP is HSRP

 I guess, when it comes down to it, I feel if you (the hiring person) wants
 someone that can explain CEF, which models have software CEF, which have
 hardware CEF, which 6500 blades are fabric enabled and which aren't just
by
 their model number, then you're not looking for anything but sheer
 experience.  So why blame the cert for not providing that background to a
 person, when that's not the point of the cert to begin with?

 
  Two friends of mine, for example, are basically lab-rats (Ok, they
  did have previous experience, but very little).  They accomplished it by
  basically borrowing my lab and all my books.  They can't find decent
work,
  because they can't pass the newly tightened tech interviews.  So they
are
  back doing sys-admin work, which is what they had been doing before

SCEP - x.509 Certificates and IOS [7:43277]

2002-05-03 Thread William Pearch 

Ok, so with all the 'gurus' out here, there must be someone that has done
this before.
I've gone through all the documentation I can find on Microsoft's web site
and Cisco's web site looking for information on setting up a CA on Windows
2000 and having a Cisco router use SCEP to register for a certificate.  I've
loaded the SCEP plug in, upgraded the version to the most recent on the
Windows box, but I'm still haveing troubles with registration.  Using IOS
12.1(9)e on a 7206VXR and/or 12.2(4)YB on a 1760.
After setting the hostname, domain name and creating the RSA keys on the
router I do the following
(config)#crypto ca identity YourCA
(ca-identity)#enrollment url http://IP.ADD.RES.S:80/certsrv/mscep/mscep.dll
(ca-identity)#enrollment mode ra
(ca-identity)#query url ldap://IP.ADD.RES.S
 
Then authenticate... all is well
(config)#crypto ca authenticate YourCA
 
I get the fingerprint, accept the cert.
Then enrolling:
(config)#crypto ca enroll YourCA
Starts the enrollment, provide the challenge password for revocation
purposesaccept the defaults for the certificate name, ect
Fingerprint comes up like it should...
then BAM!
%CRYPTO-6-CERTREJECT message
 
The microsoft cert server is set up as a stand alone root CA, and the web
enrollment for certificates is working just fine(user type certs).
 
Ideas?  Thoughts? 
Thanks!
 
Bill




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7i=43277t=43277
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

RE: Urgent help Please! [7:43084]

2002-05-02 Thread Gragido,William 

Members,

This is a problem.  I feel that is not only inappropriate for someone to
solicit the aide of this board and its subscribers in order to crack
passwords, its unethical and potentially illegal.  No offense Ravi, but this
is unacceptable given to current state of legislation regarding Information
Security.  Paul, its your call and as such, I will leave it to your
discretion, however there are clear problems with this.

Regards,

Will Gragido

-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of
[EMAIL PROTECTED]
Sent: Wednesday, May 01, 2002 11:19 PM
To: [EMAIL PROTECTED]
Subject: Urgent help Please! [7:43084]


Hi ! All,

Can any one please break this password?

enable secret 5 $1$rMrT$blzJIo4ZyCBfJkvu2CP/Z1

Thanks in advance.

===
WARNING
 This message may contain information that is confidential
 and may be subject to the provisions of section 61A of the
 Police Act 1958, which creates an offence to have unlawful
 possession of Police documents. If you are not the
 intended recipient of this message or have received
 this message in error, you must not peruse, use, pass or
 copy this message or any of its contents.

 Also note, the views expressed in this message may not
 necessarily reflect those of the New Zealand Police.




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7i=43118t=43084
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

2 interesting questions on DLSW + [7:43041]

2002-05-01 Thread William Lijewski 

I have two questions about DLSW + that I could use some explainations for. 
I would greatly appreciate any feedback you may have.

1) When you are doing DLSW Lite across the Frame Relay why is it necessary
to map the LLC2 across the frame when you are not using passthrough?  I can
undertand it when you do specify the passthrough command, but without it I'm
kind of confused?  (is it because there is no other mode of transport across
the frame since its encapsulating it in the frame packets)

2) Here is one that you will probably never get, but there are a couple of
us trying to figure this one out and can't find any documentation on it. 
Okay, say you have the following lists set up for DLSW:

dlsw ring-list 1 rings 1 2 
dlsw port-list 1 s0
dlsw bgroup-list 1 bgroups 1 3

and then you do a command:

dlsw remote-peer 1 tcp 1.1.1.1

Which list does it actually apply to the remote peer?  Does it apply all of
them?  The 1st one?  Anyone know for sure?

Thanks and sorry for the rather long post.


Message Posted at:
http://www.groupstudy.com/form/read.php?f=7i=43041t=43041
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

2 interesting questions on DLSW + [7:43041]

2002-05-01 Thread William Lijewski 

I have two questions about DLSW + that I could use some explainations for. 
I would greatly appreciate any feedback you may have.

1) When you are doing DLSW Lite across the Frame Relay why is it necessary
to map the LLC2 across the frame when you are not using passthrough?  I can
undertand it when you do specify the passthrough command, but without it I'm
kind of confused?  (is it because there is no other mode of transport across
the frame since its encapsulating it in the frame packets)

2) Here is one that you will probably never get, but there are a couple of
us trying to figure this one out and can't find any documentation on it. 
Okay, say you have the following lists set up for DLSW:

dlsw ring-list 1 rings 1 2 
dlsw port-list 1 s0
dlsw bgroup-list 1 bgroups 1 3

and then you do a command:

dlsw remote-peer 1 tcp 1.1.1.1

Which list does it actually apply to the remote peer?  Does it apply all of
them?  The 1st one?  Anyone know for sure?

Thanks and sorry for the rather long post.




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7i=43048t=43041
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

2 questions I'm confused about [7:42739]

2002-04-27 Thread William Lijewski 

Hello all,

I have 2 quick topics I could use some clarification on:

1) There is a new command for 12.2 called 

PPP MULTILINK LOAD-THRESHOLD

What is the difference between this command and DIALER LOAD-THRESHOLD, and
when would I use one over the other?

2) In OSPF you can advertise the newtworks in 2 ways:

network 180.4.4.0 0.0.0.255 area 0

or 

network 180.4.4.4 0.0.0.0 area 0

What is the advantage of advertising just the specific interface, is there
really a difference between the two?

Thanks in advance.


Message Posted at:
http://www.groupstudy.com/form/read.php?f=7i=42739t=42739
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

RE: Secret Clearance [7:42499]

2002-04-26 Thread William Gragido 

LOL.  Actually the policies are quite similar, Gaz however its all
discretionary.  People will talk regardless.  If someone is inclined to talk
then they are inclined to ramble on about clearances et al.  For what its
with, its not as though when a clearance is issued they hand you a plac and
throw confetti in the air, its usually quietly done..or is it?  ;-)


-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of
Gaz
Sent: Thursday, April 25, 2002 4:37 PM
To: [EMAIL PROTECTED]
Subject: Re: Secret Clearance [7:42499]


The policies seem more lax in the US than in UK. I'm of the understanding
that it is frowned upon to advertise the fact that you have any specific
level of security clearance, particularly TS to avoid being targetted for
any reason.
I'm just guessing obviously, but seems like common sense.

Can you tell me any more about yourself ;-)

Gaz

Paul Jin  wrote in message
[EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
 Was this for Secret or TS?

 thanks,
 Paul

 EMW_Tech wrote:
 
  I shouldn't respond to a OT thread, but FYI, I had my persoanl
  interview by
  a DSS agent back in Decemberstill waiting.  Oh, the process
  began in May
  2000.




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7i=42641t=42499
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

RE: mpls exam [7:42225]

2002-04-23 Thread William Gragido 

Foundry's MPLS is a completely solid, end-to-end solution Theodore.  Its
extrmely robust and well thought out.  I believe that I have a whitepaper
from Foundry on their solution from one of the seminars I attended, I will
be happy to forward it if you would like.

-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of
[EMAIL PROTECTED]
Sent: Monday, April 22, 2002 7:24 PM
To: [EMAIL PROTECTED]
Subject: Re: mpls exam [7:42225]


I passed it.  Just read the 2 Cicso books, know ATM well, and use every
other source you have.

I hear that Foundry's MPLS is better though






Dave Dunbar
Sent by: [EMAIL PROTECTED]
04/22/2002 11:35 PM
Please respond to Dave Dunbar


To: [EMAIL PROTECTED]
cc:
Subject:mpls exam [7:42225]


Does anyone out there have any advice on what to study for the exam.
Has anyone found a site where
there are any practice exams. Any help would be appreciated.  Thanks.




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7i=42322t=42225
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

RE: Security advice - opening ports other than 80 and 443 in[7: [7:42356]

2002-04-23 Thread William Gragido 

Do you load balance traffic to your fire wall(s)?  If so, what methodology
and more importantly, whose technology are you using.  For example, if you
were utilizing Foundry Networks ServerIronXLs and are employing a sandwich
architecture, you could not only switch based on the protocol and in effect
load balance all port 80 and 443 traffic to different devices respectively,
you could also provide nimda/code red (sic Trojan) mitigation.  I believe
that Cisco's CSS switches will allow you the same functionality but am not
quite up to speed on that gear. Security Policies gain legitimacy through
actions.  Your Security Policy and Procedures should act as a point of
reference to for your Rulesets, however it will be up to you as the
administrator, working with your ITSEC team and business units to define and
streamline your identify the types of traffic you will need to allow entry
and exit from your network in order to maintain normal business conditions.
Remember the more complex a solution is, the greater the risk due to
learning curve, configuration etc.   you are concerned about Worms and
viruses infiltrating hosts within or past a zone/dmz you may wish to explore
not only Network Based Intrusion Detection, but Host Based as well.



-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of
Patrick Ramsey
Sent: Tuesday, April 23, 2002 12:59 PM
To: [EMAIL PROTECTED]
Subject: Re: Security advice - opening ports other than 80 and 443 in[7:
[7:42347]


a good security policy would have had this matetr taken care of as soon as
it sprouted!  :)   (not directed to you Sam, just replying to thread)  :)

that aside,

1) opening up every port on the firewall is not danegrous unless you have
something accesible via the firewall listening on a specific port.

2) it only takes one server to be hacked to bring a network to a stop

3) 1 should never happen because it is highly insecure..  :)

 sam sneed  04/23/02 12:41PM 
They can do more than just bring the server down. They can gain control of
the server and have it attack other servers on your network or outside
network. ex. the IIS code red worm only needed port 80 to be open on
Winblows servers to spread across the internet.

Brown, M  wrote in message
[EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
 Certain application requires port other than 80 or 443 opened in the
 firewall for inbound and outbound traffic. The firewall was configured to
 allow traffic to that specific server ip address.

 The software vendor argues that the worst scenario could be that hackers
 could bring the server down. No other significant would be possible. 

  Is that true  ?

 How risky is that to my network ?  I would like to secure that connection
 using CA from the company and IPSec. The software vendor argues that is
not
 necessary.
  Confidentiality Disclaimer   
This email and any files transmitted with it may contain confidential and
/or proprietary information in the possession of WellStar Health System,
Inc. (WellStar) and is intended only for the individual or entity to whom
addressed.  This email may contain information that is held to be
privileged, confidential and exempt from disclosure under applicable law. If
the reader of this message is not the intended recipient, you are hereby
notified that any unauthorized access, dissemination, distribution or
copying of any information from this email is strictly prohibited, and may
subject you to criminal and/or civil liability. If you have received this
email in error, please notify the sender by reply email and then delete this
email and its attachments from your computer. Thank you.






Message Posted at:
http://www.groupstudy.com/form/read.php?f=7i=42356t=42356
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

RE: MBA or CCIE [7:41809]

2002-04-19 Thread William Gragido 

Thats not necessarily true.  Bill Gates is an excellent example of someone
with limited education, who went on to be a force to be reckoned with in the
business world.

-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of
nrf
Sent: Thursday, April 18, 2002 3:10 PM
To: [EMAIL PROTECTED]
Subject: Re: MBA or CCIE [7:41809]


I understand.  But on the other hand, if you have ambitions to be the CxO, a
CCIE  isn't going to cut it.  Like you said, it's a case of what you want
out of life.

However, what I will definitely say is this.  If you work for a company that
is willing to finance your degree at night school, you're a fool not to take
it.  If you're not the one paying for it, you should get as many degrees as
you can, because you never know what's going to happen in the future.



Wes Stevens  wrote in message
[EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
 A lot of it is what you want out of life. I will be 50 in 5 years and am
 perfectly happy playing with cisco's. I make more money then my boss with
 the mba does and have more job security. What happens if you get laid off
at
 45 or 50 with a middle to upper management job? If you are not way up
there
 in the corner office area you are going to have a hard time finding a job.
I
 work for a company in the fortune top 5 that is very stable. Yet this
 economy is hitting us also. They are going to cut my office way back from
 500 people to 200 by the end of the year. They will offer me a job in
 Houston as they can always find a spot for a cisco network engineer. My
boss
 and a lot of other are really scrambling. There are no jobs in the local
 market and less chances of them finding a place in another part of the
 company as they are cutting back everywhere.

 Just some food for thought.


 From: nrf
 Reply-To: nrf
 To: [EMAIL PROTECTED]
 Subject: Re: MBA or CCIE [7:41809]
 Date: Thu, 18 Apr 2002 14:37:51 -0400
 
 Drew  wrote in message
 [EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
   Sean Knox wrote:
   
   
I was actually heading towards my CCIE, but after getting my CCNP, I
 am
content with that for now and and getting more experience
(fortunately
 I
 am
not some new wide-eyed kid in the field and have been doing this
 awhile).
Congrats on your decision to pursue your MBA and I wish you luck.
   
  
   I made a similar decision myself within the last few weeks.  I had
   planned on pursuing my CCIE-Security, but realize that I don't work
   enough with Cisco products on a daily basis, and certainly not with
   routing in a complex way, to feel that I would deserve the cert, even
   if I attained it.  I'm going back to school for my MS in CS, starting
   classes in June.
  
   I think in the long run, an advanced degree is more of a benefit than
   an advanced vendor cert.  But thats just me.
 
 Exactly.  Especially later in your life.  Fiddling with Cisco boxes might
 be
 cool now, but do you still want to be doing that when you're 50?
Probably
 not, you probably want to be sitting in a director's chair ordering other
 young guys to set up the systems.  It's hard to win promotion to that
chair
 without an advanced education.
 _
 Get your FREE download of MSN Explorer at
http://explorer.msn.com/intl.asp.




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7i=42008t=41809
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Passing CIT score [7:41472]

2002-04-15 Thread Cornett, William 

Was wondering if anyone has taken the CIT exam recently and what was the
passing score.  I am about to take my CIT exam in 2 weeks which will
complete my CCNP track WHOOT!.   Thanks in advance


William Cornett
CCNA




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7i=41472t=41472
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

ISDN CHAP / PAP Authentication ? [7:41108]

2002-04-10 Thread William Lijewski 

I am confused about the debug output of a simple ISDN configuration.  I have
two routers R1 and R2 connecting with ISDN.  R1 is using only PAP
authentication, and R2 is using CHAP PAP.  Now the debug is what is throwing
me :

03:23:12: BR0 DDR: Dialing cause ip (s=180.1.113.1, d=180.1.113.3)
03:23:12: BR0 DDR: Attempting to dial 8358662
03:23:12: %LINK-3-UPDOWN: Interface BRI0:1, changed state to up
03:23:13: BR0:1 PPP: Treating connection as a callout
03:23:13: BR0:1 CHAP: I CHALLENGE id 66 len 23 from r2
03:23:13: BR0:1 CHAP: O RESPONSE id 66 len 23 from r1
03:23:13: BR0:1 CHAP: I SUCCESS id 66 len 4
03:23:13: BR0:1 PAP: I AUTH-REQ id 17 len 13 from r2
03:23:13: BR0:1 PAP: Authenticating peer r3
03:23:13: BR0:1 PAP: O AUTH-ACK id 17 len 5
03:23:13: BR0:1 DDR: dialer protocol up.

It shows that CHAP is successful?  Then is shows PAP as successful also? 
Shouldn't it just skip over CHAP and go straight to PAP?

I have also tried to change the CHAP hostname on R2 to something different,
then CHAP authentication fails and the PAP never kicks in?

Can someone explain this to me or point me to a good document on the subject?

Thanks in advance.



Message Posted at:
http://www.groupstudy.com/form/read.php?f=7i=41108t=41108
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

FR SVCs [7:40893]

2002-04-09 Thread William Pearch 

Has anyone worked with FR SVC's on 7200s and 1700's?  Any known issues?
Love it?  Hate it?  Wish it came is yellow? 

A coworker has opened a case with the TAC regarding configuring multiple
FR SVCs on a single physical interface.  I was wondering if anyone else
has run into the same or similar issues.

Thanks,
Bill in AK

[GroupStudy.com removed an attachment of type application/x-pkcs7-signature
which had a name of smime.p7s]




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7i=40893t=40893
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Sample Configuration for Basic-5ess ISDN Switch environment [7:40906]

2002-04-09 Thread William 

Hi

Does anyone have sample config the the above environment?


Thanks in advance.


Best regards,


William




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7i=40906t=40906
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

RE: TCP/IP and DOD [7:39657]

2002-04-08 Thread William Gragido 

No, we upgraded it ourselves Rico, I was there throughout the ninetieswe
went from Banyan environments to IP (Unix/NT).

-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of
Rico Ortiz
Sent: Friday, April 05, 2002 6:42 PM
To: [EMAIL PROTECTED]
Subject: RE: TCP/IP and DOD [7:39657]


When I was in the Marines (about 10 yrs ago) the used Banyard Vines for
there networks. I believe EDS has been hired to upgrade there current
network to an IP setup.. Rico

-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of
Priscilla Oppenheimer
Sent: Thursday, March 28, 2002 2:12 PM
To: [EMAIL PROTECTED]
Subject: RE: TCP/IP and DOD [7:39657]


And I've heard that the US side in Desert Storm used Banyan for their
networking systems, not TCP/IP!?

Priscilla

At 12:05 PM 3/28/02, Howard C. Berkowitz wrote:
 Thats what the DoD taught in their DataCommunications Schools.  Sorry
Dom.

Absolutely, positively wrong, though. That's an urban legend that has
been disavowed by every early developer I can think of, including the
DARPA people. It developed out of pure DARPA sponsored research in
networking.

I'm hard-pressed to think of any nuclear command  control
communications system, before the mid-80's or so, that used TCP/IP,
and at one time I knew pretty much every system that was deployed.
Among the ones I can talk about, they were circuit-switched or radio.
Some of the circuit-switched networks were computer controlled,
including AUTODIN I and a variety of intelligent networks.

Without detailed research, I'd tend to say the first military TCP/IP
applications were in tactical, not strategic, nets.

Actually, the first demonstration that packet switched networks were
resilient to massive attack came from the Iraqi air defense system in
Desert Storm.

 
 -Original Message-
 From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of
 Chuck
 Sent: Thursday, March 28, 2002 9:00 AM
 To: [EMAIL PROTECTED]
 Subject: Re: TCP/IP and DOD [7:39657]
 
 
 the real reason being.?
 
 
 
 
   wrote in message
 [EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
   Sorry, the
 
   be resilient to Global Thermal Nuclear attacks
 
   is a myth.
 
   Dom Stocqueler
 
 
 
 
 
   William
   Gragido To:
   [EMAIL PROTECTED]
 Subject: RE: TCP/IP and DOD
   [7:39657]
   Sent
   by:
 
   nobody@groups
 
   tudy.com
 
 
 
   27/03/2002
 
   20:17
 
   Please
   respond
   to
 
   William
 
   Gragido
 
 
 
 
 
 
   The DoD adopted TCP/IP as its native protocol for communications in
1983.
   DARPA lead the charge for a communications system that would be
resilient
   to
   Global Thermal Nuclear attacks (therein allowing for continued,
   uninterrupted comm), and would allow for common connectivity of
   multi-vendor
   solutions.  This of course did yield 'ARPA NET' which, by a decision
of
 the
   DCA (Defense Communications Agency), in 1983 was split in two yielding
a
   smaller version of 'ARPA NET' and 'MILNET'.  The evolution of the
modern
   internet can followed done the line from 'ARPA NET' and as we all know
by
   virtue of adding new networks to the mix, 'ARPA NET' was de-regulated
in
   1991 ushering the age of the modern internet.
 
   Hope that helps,
 
   Will Gragido
 
   -Original Message-
   From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of
   Michael Williams
   Sent: Wednesday, March 27, 2002 1:37 PM
   To: [EMAIL PROTECTED]
   Subject: RE: TCP/IP and DOD [7:39657]
 
 
   It's kinda fuzzy.  I myself just got through doing a tech review of a
book
   covering this topic as well as have written my own materials for
   training,
   etc covering this topic.  IMHO, DoD is credited with creating the
   internet
   even though at the time it wasn't called the internet and didn't use
the
   same protocols we do now.  Although the DoD started the whole mess,
from
   what I've read DoD commisioned ARPANET to research this.  I'm sure
that
   peoples are various universities and colleges were in on the actual
   deveopment evidenced by the fact that in 1971 there were 15 nodes
(with a
   total of 23 hosts), namely UCLA, SRI, UCSB, U of Utah, BBN, MIT, RAND,
 SDC,
   Harvard, Lincoln Lab, Stanford, UIU(C), CWRU, CMU, and NASA/Ames.
Note
   most
   of those listed are colleges/universities. I've read some about BBN,
   however
   it seems to me their main role was to supply the first computers
   (Honeywell 516 mini computers with 12K of memory) that acted as
 Information
   Message Processors (IMPs) (routers?).
 
   However, I would humbly suggest that Howard B. or Priscilla O. throw
their
   2
   cents in here.
 
   Also, since your doing a technical edit, be careful of the words you
 choose
   as well.  For example you use the word written over and over above,
but
 I
   don't think the conversation is really about which pro

RE: RE: My interview story [7:40553]

2002-04-05 Thread William Pearch 

When I moved back to Alaska from Omaha, I interviewed at a place that
sent all of their candidates to a 'speciallist' who did personality
tests.  I responded well to the interview, but not the job offer. :)

TTFN,
Bill Pearch, GCI Telehealth Systems Manager
Anchorge AK

-Original Message-
From: John Neiberger [mailto:[EMAIL PROTECTED]] 
Sent: Friday, April 05, 2002 4:04 AM
To: [EMAIL PROTECTED]
Subject: Re: RE: My interview story [7:40553]


That may be true, but it just sounds like something straight 
off the pages of Dilbert.  :-)

I know personally I wouldn't respond to such an interview 
well.  If someone wants to test my creativity and 
troubleshooting, then they should mock up a lab and throw it at 
me.  Perhaps that's because I'm not used to the idea of being 
psychologically tested during an interview.

What's next, ink blot tests?  Values clarification drills? 
Written personality tests?  I can see it now:  We're sorry, 
you're an INTJ but we really want an ESTJ for this position.

Okay, I've got to stop answering email this early.  :-)

John

[GroupStudy.com removed an attachment of type application/x-pkcs7-signature
which had a name of smime.p7s]




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7i=40615t=40553
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

RE: Intusion Detection and IT Security [7:40337]

2002-04-03 Thread William Gragido 

thats a great book, there are also some good docs on www.infosyssec.com

-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of
Paul Borghese
Sent: Wednesday, April 03, 2002 3:21 PM
To: [EMAIL PROTECTED]
Subject: Re: Intusion Detection and IT Security [7:40337]


Check out Network Intrusion Detection an Analyst Handbook by Stephen
Northcutt.

Paul Borghese
- Original Message -
From:
To:
Sent: Wednesday, April 03, 2002 11:53 AM
Subject: Intusion Detection and IT Security [7:40337]


 Does anyone have a suggestion on good books for learning about Intrusion
 Detection and IT Security for a beginner?  The books don't necesarily have
 to be Cisco based, but more on the basics of Intrusion Detection and IT
 Security concepts and tools used.

 Thanks in advance

 _
 Chat with friends online, try MSN Messenger: http://messenger.msn.com




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7i=40396t=40337
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

RE: CID Exam Cert Book [7:39669]

2002-04-02 Thread William Gragido 

Here is my list for the CID:

DCN
Padjen book
Top Down


-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of
Priscilla Oppenheimer
Sent: Tuesday, April 02, 2002 1:13 AM
To: [EMAIL PROTECTED]
Subject: RE: CID Exam Cert Book [7:39669]


At 10:03 PM 4/1/02, Robert Padjen wrote:
Top Down is a great book for DCN, but it's not really
for the CID. I'll go out on a limb and suggest mine (
;) ). Sybex CID Study Guide.

I'm sure you'll get flamed for advertising your own book, but I'm going to
give you a hard time also for lack of accuracy. ;-)

Top-Down Network Design is not a certification book, but it is based on the
work I did on both the Designing Cisco Networks (DCN) and the Cisco
Internetwork Design (CID) training classes when I worked for Cisco.

I have heard that Cisco has made CID match my Top-Down Network Design book
even more closely than before. I know for a fact that the description of
the CID course is taken from my Top-Down Network Design book. I did a
double-take when I read the following text from the description of the CID
class here:
http://www.cisco.com/pcgi-bin/front.x/wwtraining/CELC/index.cgi?action=Cours
eDescCOURSE_ID=321

Good internetwork design recognizes a customer's requirements embody many
business and technical goals, including requirements for availability,
scalability, affordability, security, and manageability. Difficult
internetwork design choices and tradeoffs must be made when designing the
internetwork before any physical devices or media are selected.

CID covers typical internetwork design business and technical goals and
constraints. CID details the top-down design process and the importance of
using systematic methods for internetwork design. Using systematic methods
helps you, the internetwork designer, to keep pace with changing
technologies and customer requirements.

I said to myself, Hey I wrote that. Oh yeah, I should have had a lawyer
look at my book contract. Cisco can use anything I wrote in the book.
Bummer. or maybe not?? ;-]

Priscilla

To save a buck, if you
feel comfortable with the material, you may want to
forgo the big book and use the Exam Notes (used books
are out there too). The new test might focus on
multicast more than the books reflect, and they may
have less StrataCom and ATM, but its close enough.
640-025 (the exam the book was written to) is still
the current version.

Good luck.


--- Andy Barkl  wrote:
  The book is not that great. It has many errors and
  omissions.
  I recommend the Cisco Press Top-Down Network Design
  book for the new CID
  exam.
 
 
  -Original Message-
  From: [EMAIL PROTECTED]
  [mailto:[EMAIL PROTECTED]] On Behalf Of
  STRAND Scott
  Sent: Wednesday, March 27, 2002 12:32 PM
  To: [EMAIL PROTECTED]
  Subject: CID Exam Cert Book [7:39669]
 
  Has anyone who has taken the CID exam used the Cisco
  CID Exam
  Certification
  Guide. (Michael Crane, Reggie Terell). I was wanting
  to
  get some opinions on this book, especially the
  practice test on the CD.
  I
  intend to use BOSON as well.
 
  Thanks,
  Scott
  CCNP, CCDA
 
  [GroupStudy.com removed an attachment of type
  application/x-pkcs7-signature
  which had a name of smime.p7s]
[EMAIL PROTECTED]


=
Robert Padjen

__
Do You Yahoo!?
Yahoo! Tax Center - online filing with TurboTax
http://http://taxes.yahoo.com/


Priscilla Oppenheimer
http://www.priscilla.com




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7i=40199t=39669
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

RE: CID Exam Cert Book [7:39669]

2002-04-02 Thread William Gragido 

I have that book, it is great!  Robert does an excellent job outlining the
intricacies of the CID.  I am taking soon, (probably in May after the
CISSP).  Thanks for the great book Robert!

Regards,

Will

-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of
Robert Padjen
Sent: Monday, April 01, 2002 9:03 PM
To: [EMAIL PROTECTED]
Subject: RE: CID Exam Cert Book [7:39669]


Top Down is a great book for DCN, but it's not really
for the CID. I'll go out on a limb and suggest mine (
;) ). Sybex CID Study Guide. To save a buck, if you
feel comfortable with the material, you may want to
forgo the big book and use the Exam Notes (used books
are out there too). The new test might focus on
multicast more than the books reflect, and they may
have less StrataCom and ATM, but its close enough.
640-025 (the exam the book was written to) is still
the current version.

Good luck.


--- Andy Barkl  wrote:
 The book is not that great. It has many errors and
 omissions.
 I recommend the Cisco Press Top-Down Network Design
 book for the new CID
 exam.


 -Original Message-
 From: [EMAIL PROTECTED]
 [mailto:[EMAIL PROTECTED]] On Behalf Of
 STRAND Scott
 Sent: Wednesday, March 27, 2002 12:32 PM
 To: [EMAIL PROTECTED]
 Subject: CID Exam Cert Book [7:39669]

 Has anyone who has taken the CID exam used the Cisco
 CID Exam
 Certification
 Guide. (Michael Crane, Reggie Terell). I was wanting
 to
 get some opinions on this book, especially the
 practice test on the CD.
 I
 intend to use BOSON as well.

 Thanks,
 Scott
 CCNP, CCDA

 [GroupStudy.com removed an attachment of type
 application/x-pkcs7-signature
 which had a name of smime.p7s]
[EMAIL PROTECTED]


=
Robert Padjen

__
Do You Yahoo!?
Yahoo! Tax Center - online filing with TurboTax
http://http://taxes.yahoo.com/




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7i=40198t=39669
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

AS-Path Filtering in Confederations? [7:40249]

2002-04-02 Thread William Lijewski 

Can you filter out certain confederations (in the main AS) using AS-Path
access-lists?  I don't think that it's possible since they are technically
in one big main AS.  I have also tried it to no avail, but the thing that
makes me think it may be able to be done is if I do a show bgp regexp ^$ it
shows just my routes local to my confederation, not anyone elses.  I've
looked on CCO without any luck.

Can someone tell me if this is possible or not?

Thanks.

Example:

(65001) - (65002) - (65003)

I want to filter so that confederation 65003 does not see any routes that
originated in confederation 65001 using AS-Path Access-Lists.


Message Posted at:
http://www.groupstudy.com/form/read.php?f=7i=40249t=40249
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

FW: Cisco Devices in MS Active Directory [7:40095]

2002-04-01 Thread William Harrison 

Chris,

Let me add to what David has said well.  While Active Directory is Microsoft
Directory service and is based on industry standard X.500 and LDAP and
Kerboros.  It is SNMP that is the only link between your Microsoft and Cisco
devices.  Therefore,  management at best is monitoring the whole network.  I
think you will find that programs, such as Ciscoworks, are written because
of the nature of business.  Every manufacture wants his product to be
unique.  As far as SMS goes, it is capable of detection and monitor any snmp
device.  The key would be the response to the monitoring.  SMS could only
notify you at certain alert levels.  This may be fine for your purposes.

As final thought,  consider your purposes and needs for management.  I think
that a combination of products is currently your best for full management!

Bill Harrison
MCSE, CCNP
Instructor

-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of
David Armstrong
Sent: Monday, April 01, 2002 4:10 PM
To: [EMAIL PROTECTED]
Subject: Re: Cisco Devices in MS Active Directory [7:40095]


Chris,

We've been looking into several network management packages. The answers all
seem to be the same. Network management software can find devices via a
number of methods but all need the hardware vendor's specific management
software to adequately work with each company's devices. In the case of
Cisco that would of course be Cisco Works. I don't know yet whether MS's SMS
software interfaces with CiscoWorks or not but it would certainly be able to
manage it via Active Directory. There are several other companies that have
similar software that would integrate with Active Directory as well.

Hope that helps some,

David Armstrong

Mann, Chris  wrote in message
[EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
 Can Cisco routers and switches be managed at all from with Microsoft
 Active Directory, or some Active Directory snap-in? I tried looking on CCO
 and Microsoft.com but did not see too much on how the two of them
interact,
 if at all.

 Thanks,

 Chris




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7i=40113t=40095
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

MFR - Multilink Frame Relay [7:40138]

2002-04-01 Thread william moody 

Here's my setup:
RouterA with 2 Serials into an F/R cloud connecting to RouterB with 1 Serial
into the F/R cloud.

Do both sides need MFR configured in order to talk or RouterB simply have
F/R encapsulation on his serial interface?

If there are pvc's on each F/R connection at RouterA, what should I use for
the interface-dlci?

What do I configure in terms of DLCI's at RouterB?

Is it necessary to configure a MFR subinterface?

The 1 example I found doesn't give a great deal of detail.




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7i=40138t=40138
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

FW: Anybody use Port Security on Switc [7:39457]

2002-03-28 Thread William Harrison 

To handle mac address security,  most cataylst series switches have a max
mac count command that only allow X number of mac address per port.  Set the
command to one.  The switch will only forward the one address.  All others
will be drop or forwarded to other ports.

William Harrison

-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of
Russ Malko
Sent: Thursday, March 28, 2002 8:08 AM
To: [EMAIL PROTECTED]
Subject: RE: Anybody use Port Security on Switc [7:39457]


How do you protect yourself, security wise, when the user disconnects their
PC and re-connects a hub, which has the same MAC address programmed in to
mask any device connected to it.

Wouldn't it show the same MAC address for any device on that port?  Is there
a way to scan or monitor for this activity?

Curious,

Luke




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7i=39755t=39457
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

RE: TCP/IP and DOD [7:39657]

2002-03-28 Thread William Gragido 

Yes, thats true, we ran Banyon Vines, the USMC that is in addition to
various Unix variants.

-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of
Priscilla Oppenheimer
Sent: Thursday, March 28, 2002 1:12 PM
To: [EMAIL PROTECTED]
Subject: RE: TCP/IP and DOD [7:39657]


And I've heard that the US side in Desert Storm used Banyan for their
networking systems, not TCP/IP!?

Priscilla

At 12:05 PM 3/28/02, Howard C. Berkowitz wrote:
 Thats what the DoD taught in their DataCommunications Schools.  Sorry
Dom.

Absolutely, positively wrong, though. That's an urban legend that has
been disavowed by every early developer I can think of, including the
DARPA people. It developed out of pure DARPA sponsored research in
networking.

I'm hard-pressed to think of any nuclear command  control
communications system, before the mid-80's or so, that used TCP/IP,
and at one time I knew pretty much every system that was deployed.
Among the ones I can talk about, they were circuit-switched or radio.
Some of the circuit-switched networks were computer controlled,
including AUTODIN I and a variety of intelligent networks.

Without detailed research, I'd tend to say the first military TCP/IP
applications were in tactical, not strategic, nets.

Actually, the first demonstration that packet switched networks were
resilient to massive attack came from the Iraqi air defense system in
Desert Storm.

 
 -Original Message-
 From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of
 Chuck
 Sent: Thursday, March 28, 2002 9:00 AM
 To: [EMAIL PROTECTED]
 Subject: Re: TCP/IP and DOD [7:39657]
 
 
 the real reason being.?
 
 
 
 
   wrote in message
 [EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
   Sorry, the
 
   be resilient to Global Thermal Nuclear attacks
 
   is a myth.
 
   Dom Stocqueler
 
 
 
 
 
   William
   Gragido To:
   [EMAIL PROTECTED]
 Subject: RE: TCP/IP and DOD
   [7:39657]
   Sent
   by:
 
   nobody@groups
 
   tudy.com
 
 
 
   27/03/2002
 
   20:17
 
   Please
   respond
   to
 
   William
 
   Gragido
 
 
 
 
 
 
   The DoD adopted TCP/IP as its native protocol for communications in
1983.
   DARPA lead the charge for a communications system that would be
resilient
   to
   Global Thermal Nuclear attacks (therein allowing for continued,
   uninterrupted comm), and would allow for common connectivity of
   multi-vendor
   solutions.  This of course did yield 'ARPA NET' which, by a decision
of
 the
   DCA (Defense Communications Agency), in 1983 was split in two yielding
a
   smaller version of 'ARPA NET' and 'MILNET'.  The evolution of the
modern
   internet can followed done the line from 'ARPA NET' and as we all know
by
   virtue of adding new networks to the mix, 'ARPA NET' was de-regulated
in
   1991 ushering the age of the modern internet.
 
   Hope that helps,
 
   Will Gragido
 
   -Original Message-
   From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of
   Michael Williams
   Sent: Wednesday, March 27, 2002 1:37 PM
   To: [EMAIL PROTECTED]
   Subject: RE: TCP/IP and DOD [7:39657]
 
 
   It's kinda fuzzy.  I myself just got through doing a tech review of a
book
   covering this topic as well as have written my own materials for
   training,
   etc covering this topic.  IMHO, DoD is credited with creating the
   internet
   even though at the time it wasn't called the internet and didn't use
the
   same protocols we do now.  Although the DoD started the whole mess,
from
   what I've read DoD commisioned ARPANET to research this.  I'm sure
that
   peoples are various universities and colleges were in on the actual
   deveopment evidenced by the fact that in 1971 there were 15 nodes
(with a
   total of 23 hosts), namely UCLA, SRI, UCSB, U of Utah, BBN, MIT, RAND,
 SDC,
   Harvard, Lincoln Lab, Stanford, UIU(C), CWRU, CMU, and NASA/Ames.
Note
   most
   of those listed are colleges/universities. I've read some about BBN,
   however
   it seems to me their main role was to supply the first computers
   (Honeywell 516 mini computers with 12K of memory) that acted as
 Information
   Message Processors (IMPs) (routers?).
 
   However, I would humbly suggest that Howard B. or Priscilla O. throw
their
   2
   cents in here.
 
   Also, since your doing a technical edit, be careful of the words you
 choose
   as well.  For example you use the word written over and over above,
but
 I
   don't think the conversation is really about which programmers
actually
   wrote the code it's more about who either spearheaded or caused the
   evolution of the *standards* we call TCP/IP in which case I don't
think
   crediting the DoD is incorrect.
 
   My 2 cents =)
   Mike W.


Priscilla Oppenheimer
http://www.priscilla.com




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7i=3983

RE: TCP/IP and DOD [7:39657]

2002-03-27 Thread William Gragido 

The DoD adopted TCP/IP as its native protocol for communications in 1983.
DARPA lead the charge for a communications system that would be resilient to
Global Thermal Nuclear attacks (therein allowing for continued,
uninterrupted comm), and would allow for common connectivity of multi-vendor
solutions.  This of course did yield 'ARPA NET' which, by a decision of the
DCA (Defense Communications Agency), in 1983 was split in two yielding a
smaller version of 'ARPA NET' and 'MILNET'.  The evolution of the modern
internet can followed done the line from 'ARPA NET' and as we all know by
virtue of adding new networks to the mix, 'ARPA NET' was de-regulated in
1991 ushering the age of the modern internet.

Hope that helps,

Will Gragido

-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of
Michael Williams
Sent: Wednesday, March 27, 2002 1:37 PM
To: [EMAIL PROTECTED]
Subject: RE: TCP/IP and DOD [7:39657]


It's kinda fuzzy.  I myself just got through doing a tech review of a book
covering this topic as well as have written my own materials for training,
etc covering this topic.  IMHO, DoD is credited with creating the internet
even though at the time it wasn't called the internet and didn't use the
same protocols we do now.  Although the DoD started the whole mess, from
what I've read DoD commisioned ARPANET to research this.  I'm sure that
peoples are various universities and colleges were in on the actual
deveopment evidenced by the fact that in 1971 there were 15 nodes (with a
total of 23 hosts), namely UCLA, SRI, UCSB, U of Utah, BBN, MIT, RAND, SDC,
Harvard, Lincoln Lab, Stanford, UIU(C), CWRU, CMU, and NASA/Ames.  Note most
of those listed are colleges/universities. I've read some about BBN, however
it seems to me their main role was to supply the first computers
(Honeywell 516 mini computers with 12K of memory) that acted as Information
Message Processors (IMPs) (routers?).

However, I would humbly suggest that Howard B. or Priscilla O. throw their 2
cents in here.

Also, since your doing a technical edit, be careful of the words you choose
as well.  For example you use the word written over and over above, but I
don't think the conversation is really about which programmers actually
wrote the code it's more about who either spearheaded or caused the
evolution of the *standards* we call TCP/IP in which case I don't think
crediting the DoD is incorrect.

My 2 cents =)
Mike W.




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7i=39677t=39657
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

1760s [7:39338]

2002-03-23 Thread William Pearch 

Has anyone used the 1760 routers?  Thoughts, comments, suggestions?

TTFN,
Bill in Anchorage

[GroupStudy.com removed an attachment of type application/x-pkcs7-signature
which had a name of smime.p7s]




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7i=39338t=39338
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Classful Prefix-list [7:39113]

2002-03-21 Thread William Lijewski 

Can someone tell me how to create a Prefix-list to only alow classful routes
for BGP.  I know you can do the following with an extended access-list:

access-list 100 permit ip 0.0.0.0 127.0.0.0 host 255.0.0.0
access-list 100 permit ip 128.0.0.0 63.255.0.0 host 255.255.0.0
access-list 100 permit ip 192.0.0.0 31.255.255.0 host 255.255.255.0

Is there way to do it?  Any good reading material on Prefix-lists?

Thanks in advance.




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7i=39113t=39113
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

RE: Who is Priscilla Oppenheimer ? [7:38662]

2002-03-18 Thread William Gragido 

LOL.  Hey Priscilla, who are you anyways ;-)  What was the name of that book
you authored?  

-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of
dk
Sent: Monday, March 18, 2002 9:51 AM
To: [EMAIL PROTECTED]
Subject: Who is Priscilla Oppenheimer ? [7:38662]


Who is this mystery woman .. who seems to know everything !




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7i=38677t=38662
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

RE: you American need to think [7:38323]

2002-03-18 Thread William Gragido 

That is an excellent point!  As if that diet coke will really help!
Pleaase!

-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of
QOSMAN
Sent: Friday, March 15, 2002 7:21 PM
To: [EMAIL PROTECTED]
Subject: Re: you American need to think [7:38323]


Correctonly in America we order a double-cheese burger, large fries and
a Diet Coke
:)

Mike Sweeney wrote:

 I think you folks are missing a valuable point and lesson here.

 The real point has nothing to do with if *Jim* is correct, a flame baiter,
a
 pond scum commie or my best friend.. it does have everything to do with
 something that America is pretty unique about having for US living here.
THe
 ablility to say virtually ANYTHING you want without fear of the jackboot
 crowd coming to visit you and inform you of the error of your ways.
 Unintentionly *Jim* has reminded us.. or should remind us that America for
 all it's faults is still the one place that people to this day DIE to try
to
 get to. Why?  because Americans come close to being free in the true sense
 of the word. You can buy what you want, pick and choose what you want,
 sponge off your neighbors, have 8 SUVs, and SAY pretty much what you want.
 Oh, there may be repercussions of saying things.. but most times the
police
 are not going to shoot you down in the street(Kent State excepted) or have
 you *disappear*(watch of the unmarked black helicopters)

 So *Jim*.. bad mouth us all you want and personally I will enjoy the fact
 that I live in a place where I can read your rants, reply to them or
delete
 them without fear.

 Long live the Bill of Rights and the US Constitution. May we remember  why
 they exist and people die for those beliefs.

 MikeS
 www.packetattack.com

 PS-- for those that seem to care.. I am neither Right or Left.. I happen
to
 Libertarian which puts me outside of the box :)




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7i=38680t=38323
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

RE: Who is Priscilla Oppenheimer ? [7:38662]

2002-03-18 Thread William Gragido 

Top Down Network DesignNo worries Larry, we still love you man!

-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of
Larry Letterman
Sent: Monday, March 18, 2002 10:34 AM
To: [EMAIL PROTECTED]
Subject: RE: Who is Priscilla Oppenheimer ? [7:38662]


check out her book cisco press book, top down networking..Sorry if the
title is not exactly correct, its not in front of me...


Larry Letterman
Cisco Systems
[EMAIL PROTECTED]


-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of
dk
Sent: Monday, March 18, 2002 7:51 AM
To: [EMAIL PROTECTED]
Subject: Who is Priscilla Oppenheimer ? [7:38662]


Who is this mystery woman .. who seems to know everything !




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7i=38689t=38662
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

RE: you American need to think [7:38323]

2002-03-15 Thread William Gragido 

What in hell's bells does this have to do with studying Internetworking
technologies?

-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of
Scott H.
Sent: Thursday, March 14, 2002 9:52 PM
To: [EMAIL PROTECTED]
Subject: Re: you American need to think [7:38323]


Crawl back into that hole you came out of.  Nobody wants to listen to your
B.S.

Jim Bond  wrote in message
[EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
 Sorry for wasting your bandwidth, but I have to say
 this.

 Being rich is good; being smart is good. But if you
 treat others like sxxt, others will treat you like
 sxxt too. Think about this: if you are a CCNA and your
 CCIE co-worker say your stupid or dumb, will you
 respect him?

 There are so many knowledgeable and friendly people on
 this list, but there are some rude and arrogant people
 too.

 I agree that Bin Laden is a murderer, an evil, but you
 American need to think why he only attacks US, not
 Germany or Russia or Japan or others.

 Show some respect to others, it won't make you poor.
 Also remember that there are always someone richer and
 smarter than you.

 Over. Dismiss.

 Jim

 __
 Do You Yahoo!?
 Yahoo! Sports - live college hoops coverage
 http://sports.yahoo.com/




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7i=38413t=38323
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

RE: Recommending Books for CCIE [7:38295]

2002-03-15 Thread William Gragido 

I would recommend having them all in your arsenal.  They are great refernce
tools and it has just been brought to my attention that Brad Ellis and Co.,
have a new one out that I will be checking out soon as well.

-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of
norco
Sent: Thursday, March 14, 2002 4:55 PM
To: [EMAIL PROTECTED]
Subject: Re: Recommending Books for CCIE [7:38295]


For the written i probably wouldn;t go with either of Doyles books - save
those for the lab!! :)

The best book is the Caslow book, followed by either the Exam Cram or the
Sybex book (neither of these books are particularly brilliant in their own
write - pardon the pun!but are tailored to the exam and are good as a
revision).

norco


 wrote in message
[EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
 Would anyone recommend book(s) to study fo CCIE writen exam?

 Thanks.




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7i=38414t=38295
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Way OT (Sorry) RE: you American need to think [7:38323]

2002-03-15 Thread TALBOT, WILLIAM P (SWBT) 

It's *Americans* - plural, as in lots of Americans, more than one, but still
one.  Many united, FOCUSED Americans.  

And by the way, we *are* thinking.  We are thinking about which parties are
going to be next in line to be recipients of the large amounts of ordinance
that will be dropped by our Air Force as an example of what happens to
people who attack or support people who attack innocent civilians in office
buildings; or anywhere else for that matter.



-Original Message-
From: Jim Bond [mailto:[EMAIL PROTECTED]]
Sent: Thursday, March 14, 2002 6:26 PM
To: [EMAIL PROTECTED]
Subject: OT: you American need to think [7:38323]


Sorry for wasting your bandwidth, but I have to say
this.

Being rich is good; being smart is good. But if you
treat others like sxxt, others will treat you like
sxxt too. Think about this: if you are a CCNA and your
CCIE co-worker say your stupid or dumb, will you
respect him? 

There are so many knowledgeable and friendly people on
this list, but there are some rude and arrogant people
too.

I agree that Bin Laden is a murderer, an evil, but you
American need to think why he only attacks US, not
Germany or Russia or Japan or others.

Show some respect to others, it won't make you poor.
Also remember that there are always someone richer and
smarter than you. 

Over. Dismiss.

Jim

__
Do You Yahoo!?
Yahoo! Sports - live college hoops coverage
http://sports.yahoo.com/




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7i=38519t=38323
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

RE: what does SC0: stand for? [7:38517]

2002-03-15 Thread TALBOT, WILLIAM P (SWBT) 

Quoting from CCO:

The interface sc0 is an internal management interface that is connected to
the switching fabric and participates in all of the functions of a normal
switch port, such as Spanning-Tree Protocol (STP), Cisco Discovery Protocol
(CDP), and VLAN membership. 

taken from http://www.cisco.com/warp/public/473/8.html

Hope this helps,

Pat

-Original Message-
From: Eric Waguespack [mailto:[EMAIL PROTECTED]]
Sent: Friday, March 15, 2002 10:07 PM
To: [EMAIL PROTECTED]
Subject: what does SC0: stand for? [7:38517]


any idea?



__
Do You Yahoo!?
Yahoo! Sports - live college hoops coverage
http://sports.yahoo.com/




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7i=38520t=38517
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

RE: what does SC0: stand for? [7:38517]

2002-03-15 Thread TALBOT, WILLIAM P (SWBT) 

Probably switch console or system console

Good question though, I am curious to see what it really means.

Pat

-Original Message-
From: Eric Waguespack [mailto:[EMAIL PROTECTED]]
Sent: Friday, March 15, 2002 10:46 PM
To: [EMAIL PROTECTED]
Subject: RE: what does SC0: stand for? [7:38517]


thanks, but i know what it is and how to use it, what
i am curious about is what it stands for, SC0 .. for
example tty stands for teletype. 




--- TALBOT, WILLIAM P (SWBT)  wrote:
 Quoting from CCO:
 
 The interface sc0 is an internal management
 interface that is connected to
 the switching fabric and participates in all of the
 functions of a normal
 switch port, such as Spanning-Tree Protocol (STP),
 Cisco Discovery Protocol
 (CDP), and VLAN membership. 
 
 taken from
 http://www.cisco.com/warp/public/473/8.html
 
 Hope this helps,
 
 Pat
 
 -Original Message-
 From: Eric Waguespack [mailto:[EMAIL PROTECTED]]
 Sent: Friday, March 15, 2002 10:07 PM
 To: [EMAIL PROTECTED]
 Subject: what does SC0: stand for? [7:38517]
 
 
 any idea?
 
 
 
 __
 Do You Yahoo!?
 Yahoo! Sports - live college hoops coverage
 http://sports.yahoo.com/
[EMAIL PROTECTED]


__
Do You Yahoo!?
Yahoo! Sports - live college hoops coverage
http://sports.yahoo.com/




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7i=38527t=38517
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

RE: another CCNP [7:38269]

2002-03-14 Thread William Gragido 

Welcome to the club!

-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of
Michael J. Doherty
Sent: Thursday, March 14, 2002 1:26 PM
To: [EMAIL PROTECTED]
Subject: Re: another CCNP [7:38269]


Congratulations!!


- Original Message -
From: King, Ty
To:
Sent: Thursday, March 14, 2002 1:57 PM
Subject: another CCNP [7:38269]


 Just passed my last test today.

 Ty King
_
Do You Yahoo!?
Get your free @yahoo.com address at http://mail.yahoo.com




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7i=38283t=38269
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

RE: Recommending Books for CCIE [7:38295]

2002-03-14 Thread William Gragido 

I have heard good things about the Exam Cram.  If you don't have them
already, i would pick up the Caslow and Doyle books as well.

-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of
[EMAIL PROTECTED]
Sent: Thursday, March 14, 2002 3:26 PM
To: [EMAIL PROTECTED]
Subject: Recommending Books for CCIE [7:38295]


Would anyone recommend book(s) to study fo CCIE writen exam?

Thanks.




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7i=38303t=38295
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

RE: The CCNA exam has changed effective 3-12-02 [7:37960]

2002-03-12 Thread William Gragido 

A fellow that I work with just took the CCNA today, it is currently still
testing at the 507 level.



-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of
VanHaaren, Nicole
Sent: Tuesday, March 12, 2002 1:17 PM
To: [EMAIL PROTECTED]
Subject: RE: The CCNA exam has changed effective 3-12-02 [7:37960]


A friend of mine just scheduled hers today, but is still taking the 640-507
test.

Nicole VanHaaren, CCNP, CCSE
Systems Consultant
Broadwing Technology Solutions

 -Original Message-
From:   [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]
Sent:   Tuesday, March 12, 2002 1:52 PM
To: [EMAIL PROTECTED]
Subject:RE: The CCNA exam has changed effective 3-12-02 [7:37960]

I think this is a great idea.  However, I'm halfway thru my CCNP
certification.  Is it going to be necessary or advisable to recert in the
600 track?  Please advise.

Jeff
 +++The information transmitted is intended only for the person or entity to
which it is addressed and may contain confidential and/or privileged
material.  Any review, retransmission, dissemination or other use of, or
taking of any action in reliance upon, this information by persons or
entities other than the intended recipient is prohibited.   If you received
this in error, please contact the sender and destroy any copies of this
document.+++
The information transmitted is intended only for the person or entity to
which it is addressed and may contain confidential and/or privileged
material. Any review, retransmission, dissemination or other use of, or
taking of any action in reliance upon, this information by persons or
entities other than the intended recipient is prohibited. If you received
this in error, please contact the sender and destroy any copies of this
document.




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7i=37993t=37960
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

RE: Appletalk in CIT beta ? [7:37650]

2002-03-08 Thread William Gragido 

You will want to know and understand the fundamentals of Appletalk.

-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of
Constantin Tivig
Sent: Friday, March 08, 2002 6:45 AM
To: [EMAIL PROTECTED]
Subject: Appletalk in CIT beta ? [7:37650]


Well, it's time for me to take the CIT beta.

Question: how much AppleTalk is in there ?
Are there many q on this topic? Unfortunately I have 0 experience w/
AppleTalk, so I am very concerned.

All the best,

Costin




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7i=37660t=37650
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

RE: CCIE program will be dropping token ring! [7:37422]

2002-03-06 Thread William Gragido 

AWESOME

-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of
Steven A. Ridder
Sent: Wednesday, March 06, 2002 10:44 AM
To: [EMAIL PROTECTED]
Subject: CCIE program will be dropping token ring! [7:37422]


I'm in a meeting with the CCIE program manager and they will be removing
Token-ring soon!

--

RFC 1149 Compliant.


Scott H.  wrote in message
[EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
 Not that bad.  A bunch of dates open in March and April in San Jose--if
you
 can't do that, you are screwed until August.  The one thing that I have
 noticed is that when people get within their 28 day window, they drop
their
 date.  This opens up dates for the more serious contenders.

 Best of luck!
 Scott

 AMR  wrote in message
 [EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
  What's the wait time like nowadays?
 
  -A




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7i=37436t=37422
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

  1   2   3   4   5   6   >