RE: a question about ospf virtual-link auth [7:66648]
thanks a lotDanny Free wrote: > > OOPS, > I forgot to add on Router 2: > ! > router ospf 100 > area 0 authentication message-digest. > > :)) Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=66815&t=66648 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: a question about ospf virtual-link auth [7:66648]
Hi, Yes. If Area 0 is MD5 then virtual link must be MD5 also. Example: ROUTER 1 ! int loopback0 ip address 150.150.1.1 255.255.255.0 ip ospf network point-to-point ! router ospf 100 network 150.150.1.0 0.0.0.255 area 0 network 150.150.10.0 0.0.0.255 area 0 network 150.150.20.0 0.0.0.255 area 1 area 0 authentication message-digest area 1 virtual-link 150.150.2.2 message-digest-key 1 md5 cisco ! int s0 ip address 150.150.10.1 255.255.255.0 ip ospf message-digest-key 1 md5 cisco ! int s1 ip address 150.150.20.1 255.255.255.0 ! ROUTER 2 ! int loopback0 ip address 150.150.2.2 255.255.255.0 ip ospf network point-to-point ! router ospf 100 network 150.150.2.0 0.0.0.255 area 1 network 150.150.20.0 0.0.0.255 area 1 network 150.150.30.0 0.0.0.255 area 2 area 1 virtual-link 150.150.1.1 message-digest-key 1 md5 cisco ! int s0 ip address 150.150.20.2 255.255.255.0 ! int s1 ip address 150.150.30.1 255.255.255.0 ! Router 3 ! int loopback0 ip address 150.150.3.3 255.255.255.0 ip ospf network point-to-point ! router ospf 100 network 150.150.3.0 0.0.0.255 area 2 network 150.150.30.0 0.0.0.255 area 2 ! int s0 ip address 150.150.30.2 255.255.255.0 ! Best of luck. Danny Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=3&t=66648 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: a question about ospf virtual-link auth [7:66648]
OOPS, I forgot to add on Router 2: ! router ospf 100 area 0 authentication message-digest. :)) Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=4&t=66648 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: a question about making cisco 6506 as a dhcp serve [7:14465]
ip dhcp pool Mars host 172.16.2.254 mask 255.255.255.0 hardware-address 02c7.f800.0422 ieee802 client-name Mars default-router 172.16.2.100 172.16.2.101 domain-name cisco.com dns-server 172.16.1.102 172.16.2.102 netbios-name-server 172.16.1.103 172.16.2.103 netbios-node-type h-node are you successful with it? Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=42107&t=14465 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: a question related ccnp paper [7:40443]
That's true also. -Original Message- From: Brian Zeitz [mailto:[EMAIL PROTECTED]] Sent: Thursday, April 04, 2002 9:14 AM To: [EMAIL PROTECTED] Subject: RE: a question related ccnp paper [7:40443] Correct me if I am wrong BUT, You can take all the CCNP test first, but you wont be a CCNP until you finish your CCNA. -Original Message- From: Ricky Chan [mailto:[EMAIL PROTECTED]] Sent: Thursday, April 04, 2002 8:28 AM To: [EMAIL PROTECTED] Subject: RE: a question related ccnp paper [7:40443] Yes, it is. -Original Message- From: Farooq Ahmed [mailto:[EMAIL PROTECTED]] Sent: Thursday, April 04, 2002 1:11 AM To: [EMAIL PROTECTED] Subject: a question related ccnp paper [7:40443] Can any body confirm me either ccna is prerequiste for ccnp or not. Some of my friends say yes it is but some say no it is not.That is why i m asking here. Farooq Ahmed Network Administrator See Dave Matthews Band live or win a signed guitar http://r.lycos.com/r/bmgfly_mail_dmb/http://win.ipromotions.com/lycos_02 0201 /splash.asp Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=40481&t=40443 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: a question related ccnp paper [7:40443]
Correct me if I am wrong BUT, You can take all the CCNP test first, but you wont be a CCNP until you finish your CCNA. -Original Message- From: Ricky Chan [mailto:[EMAIL PROTECTED]] Sent: Thursday, April 04, 2002 8:28 AM To: [EMAIL PROTECTED] Subject: RE: a question related ccnp paper [7:40443] Yes, it is. -Original Message- From: Farooq Ahmed [mailto:[EMAIL PROTECTED]] Sent: Thursday, April 04, 2002 1:11 AM To: [EMAIL PROTECTED] Subject: a question related ccnp paper [7:40443] Can any body confirm me either ccna is prerequiste for ccnp or not. Some of my friends say yes it is but some say no it is not.That is why i m asking here. Farooq Ahmed Network Administrator See Dave Matthews Band live or win a signed guitar http://r.lycos.com/r/bmgfly_mail_dmb/http://win.ipromotions.com/lycos_02 0201 /splash.asp Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=40476&t=40443 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: a question related ccnp paper [7:40443]
Yes, it is. -Original Message- From: Farooq Ahmed [mailto:[EMAIL PROTECTED]] Sent: Thursday, April 04, 2002 1:11 AM To: [EMAIL PROTECTED] Subject: a question related ccnp paper [7:40443] Can any body confirm me either ccna is prerequiste for ccnp or not. Some of my friends say yes it is but some say no it is not.That is why i m asking here. Farooq Ahmed Network Administrator See Dave Matthews Band live or win a signed guitar http://r.lycos.com/r/bmgfly_mail_dmb/http://win.ipromotions.com/lycos_020201 /splash.asp Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=40466&t=40443 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: A question about virtual token ring interface [7:29370]
I never found a use for the Virtual Ring interfaces. To test DLSw and RSRB configs really requires something to generate traffic and I only know of a few ways to do that. First, if you have an IOS that can do APPN, search through the archives for APPN and you'll find some configs that allow your routers to be APPN end-nodes. If your DLSw or RSRB configs are correct, your nodes will connect. Another option is to have two PCs running NetBEUI. That's probably the best option if you can do it. Thirdly, you can use other routers as hosts but this can be tricky. DLSw was not intended to transport IP but it can if you tweak it correctly. I have set up SRB with DLSw and tested it using pings but it definitely can be treacherous. :-) Good luck, John Get your own "800" number Voicemail, fax, email, and a lot more http://www.ureach.com/reg/tag On Mon, 17 Dec 2001, Raymond Cai ([EMAIL PROTECTED]) wrote: > Hi, John > > I saw you ask the question about usability of virtual token ring > interface > several month ago on groupstudy, may I know your findings? > > I 'd like to know whether it is possible to connect 1601 and 2501 back > to > back with a virtual tr interface at each end and practice RSRB. seems to > me > the connection is always closed no matter which encapsulation I use, > direct > or tcp. I am not sure whether it is bcos of my config or the virtual tr > interface. > > Another question is how come I can assign IP address to virtual tr > interface > while using 12.0.20 , but not on 12.2.6.? > > Appreciate your help. > > Raymond > CCNP/CCDP [EMAIL PROTECTED] Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=29371&t=29370 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: a question from lan switching book [7:23764]
thanks all kindly answers, :) Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=23822&t=23764 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: a question from lan switching book [7:23764]
i am clear now, and thank you very very much for explain this point to me Leigh Anne Chisholm wrote: > > Think of it like this. Shared is as many people in a 10 foot > by 10 foot > room as you can stuff. The size of the room can be an analogy > for the > bandwidth of the network and the number of people in the room > are analogous > to PC's connected to the shared bandwidth. > > The rules of conversation are this: You can only talk if you > perceive that > no one else is talking. If you hear someone else talking, you > must stop > immediately, and wait a random period until you are able to try > speaking > again. Of course, before you begin speaking, you must > determine whether > someone else is speaking. That's shared bandwidth. In this > environment > where only 1 PC can speak at a time, that PC is able to use the > entire > bandwidth of the pipe to send one frame. That frame travels at > 10 Mbps. > Each PC however must pause briefly between sending frames in an > effort to > let others talk... > > Now just because you have 10 PC's, each PC won't necessarily > have traffic to > send when all 9 others do. Thus, never make the comparison > that if you have > 10 PC's, on a shared 10 Mbps link, that each PC has 1 Mbps of > bandwidth. > Not true. Each PC has the ability to use 10 Mbps of bandwidth > just like > each person has the ability to speak in our 10 foot by 10 foot > room--but as > the number of people in that room increase in their desire to > speak, the > ability of others to "get a word in edgewise" decreases. The > more PC's, the > more difficult to utilize that shared bandwidth. > > Now the term "switched" is also known as "dedicated". Switched > is a > point-to-point link between the connected device and the > switch. Think of > it like our telephone system. I'm able to pick up my phone and > dial > whomever I like. When I lift the receiver, I have a dialtone. > I couldn't > care less if my neighbor is on the phone--I have a link to the > telephone > company's central office. I don't care who my neighbors are > talking to. I > don't hear that conversation. I can use as much of my > bandwidth as I have > available because I've got a dedicated, point-to-point link > between myself > and the telephone exchange (aka in networking terms, PC and LAN > Switch > port). > > Now let me throw a bit of a curve into this discussion. > > In a half-duplex switched environment, just because I'm able to > use the full > bandwidth between myself and the telephone company's central > office, that in > itself doesn't guarantee that my call will get through. > Switched networks > operating in half-duplex mode are able to suffer from > collisions. If I try > and phone my mom at the same time some goofy telemarketer does, > our phone > calls collide. Likely, I get a busy signal. > > In a full-duplex environment, this type of collision won't > occur. One of us > will get the "answering service" which will take a message, > forwarding it > when the line becomes free. In the full-duplex switching world, > the switch > buffers the traffic, forwarding it when the destination port is > available. > > > > To go on a bit of a tangent here... > > Now of course, the telephone company only has a limited number > of circuits > that it can carry at one time. In networking terms, this is > known as the > capacity of the backplane of the switch. The switch is not > able to forward > unlimited traffic rates. For example, the Catalyst 5000 series > switch can > only forward 1.2 Gbps of traffic at any given time. > > > -Original Message- > > From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] > > Sent: Monday, October 22, 2001 9:57 AM > > To: [EMAIL PROTECTED] > > Subject: RE: a question from lan switching book [7:23764] > > > > > > is shared means that there is a 10M ethernet, if there are 10 > station in > > this network, every station has the 1M? > > > > or is shared means that there is a 10M ethernet, if there are > 10 > > station in > > this network every station has the 10M bandwidth when you > transmisstion, > > (csma/cd) after this station trasmisted, another can transmit > and has 10M > > bandwidth. > > > > which is right? > > > > thanks for answered :) > > Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=23821&t=23764 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: a question from lan switching book [7:23764]
In this environment > where only 1 PC can speak at a time, that PC is able to use the entire > bandwidth of the pipe to send one frame. That frame travels at 10 Mbps. Specifically, the frame doesn't actually travel at 10mbs. The frame travels at the speed of electrical current on a medium. This speed is the same for 10mb ethernet, 100mb ethernet, GigE, etc. The frame is copied to the medium at 10mbs... Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=23801&t=23764 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: a question from lan switching book [7:23764]
At 10:14 AM 10/22/01, Mike Sweeney wrote: >Shared is your basic hub Hub or cabling, i.e. 10Base2 or 10Base 5. All stations hear each other's frames. They all contend for and share the bandwidth. They are affected by each other's collisions. >or bridge.. A bridge divides up collision domains. Stations on opposites of the bridge do not share bandwidth and do not see each other frames, unless forwarded by the bridge. The bridge forwards to a specific device (and floods broadcasts and unknown unicasts) just like a switch. Stations on opposite sides of a bridge are not affected by each other's collisions. >layer two.. no switching.. what one >workstation/host/device sees, all will see. > >MikeS Priscilla Oppenheimer http://www.priscilla.com Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=23798&t=23764 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: a question from lan switching book [7:23764]
Geat explanation! And one of the best analogies I've seen yet. If you're not an instructor you ought to be... Leigh Anne Chisholm wrote: > Think of it like this. Shared is as many people in a 10 foot by 10 foot > room as you can stuff. The size of the room can be an analogy for the > bandwidth of the network and the number of people in the room are analogous > to PC's connected to the shared bandwidth. > > The rules of conversation are this: You can only talk if you perceive that > no one else is talking. If you hear someone else talking, you must stop > immediately, and wait a random period until you are able to try speaking > again. Of course, before you begin speaking, you must determine whether > someone else is speaking. That's shared bandwidth. In this environment > where only 1 PC can speak at a time, that PC is able to use the entire > bandwidth of the pipe to send one frame. That frame travels at 10 Mbps. > Each PC however must pause briefly between sending frames in an effort to > let others talk... > > Now just because you have 10 PC's, each PC won't necessarily have traffic to > send when all 9 others do. Thus, never make the comparison that if you have > 10 PC's, on a shared 10 Mbps link, that each PC has 1 Mbps of bandwidth. > Not true. Each PC has the ability to use 10 Mbps of bandwidth just like > each person has the ability to speak in our 10 foot by 10 foot room--but as > the number of people in that room increase in their desire to speak, the > ability of others to "get a word in edgewise" decreases. The more PC's, the > more difficult to utilize that shared bandwidth. > > Now the term "switched" is also known as "dedicated". Switched is a > point-to-point link between the connected device and the switch. Think of > it like our telephone system. I'm able to pick up my phone and dial > whomever I like. When I lift the receiver, I have a dialtone. I couldn't > care less if my neighbor is on the phone--I have a link to the telephone > company's central office. I don't care who my neighbors are talking to. I > don't hear that conversation. I can use as much of my bandwidth as I have > available because I've got a dedicated, point-to-point link between myself > and the telephone exchange (aka in networking terms, PC and LAN Switch > port). > > Now let me throw a bit of a curve into this discussion. > > In a half-duplex switched environment, just because I'm able to use the full > bandwidth between myself and the telephone company's central office, that in > itself doesn't guarantee that my call will get through. Switched networks > operating in half-duplex mode are able to suffer from collisions. If I try > and phone my mom at the same time some goofy telemarketer does, our phone > calls collide. Likely, I get a busy signal. > > In a full-duplex environment, this type of collision won't occur. One of us > will get the "answering service" which will take a message, forwarding it > when the line becomes free. In the full-duplex switching world, the switch > buffers the traffic, forwarding it when the destination port is available. > > To go on a bit of a tangent here... > > Now of course, the telephone company only has a limited number of circuits > that it can carry at one time. In networking terms, this is known as the > capacity of the backplane of the switch. The switch is not able to forward > unlimited traffic rates. For example, the Catalyst 5000 series switch can > only forward 1.2 Gbps of traffic at any given time. > > > -Original Message- > > From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] > > Sent: Monday, October 22, 2001 9:57 AM > > To: [EMAIL PROTECTED] > > Subject: RE: a question from lan switching book [7:23764] > > > > > > is shared means that there is a 10M ethernet, if there are 10 station in > > this network, every station has the 1M? > > > > or is shared means that there is a 10M ethernet, if there are 10 > > station in > > this network every station has the 10M bandwidth when you transmisstion, > > (csma/cd) after this station trasmisted, another can transmit and has 10M > > bandwidth. > > > > which is right? > > > > thanks for answered :) Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=23795&t=23764 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: a question from lan switching book [7:23764]
> is shared means that there is a 10M ethernet, if there are 10 station in > this network, every station has the 1M? > > or is shared means that there is a 10M ethernet, if there are 10 station in > this network every station has the 10M bandwidth when you transmisstion, > (csma/cd) after this station trasmisted, another can transmit and has 10M > bandwidth. > is mean that all station fight for bandwith of that 10mb. Only 1 station can send packet each time, so is not true that each station have the 1mb. Is true that one station at time has all 10mb. Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=23793&t=23764 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: a question from lan switching book [7:23764]
You're closer to being correct on your first answer, but each station won't get exactly 1MB. Ethernet is shared medium. In CSMA/CD, the MA means Multiple Access. All stations on that link are competing for bandwidth on the link. If 9 of the stations are idle and one station wants to transmit it will have a lot of the bandwidth available. If more stations transmit then less bandwidth will be available per station. This doesn't mean that each station gets the same amount of bandwidth, though. Link usage in ethernet is very dynamic depending on traffic patterns. HTH, John >>> "xie rootstock" 10/22/01 9:56:57 AM >>> is shared means that there is a 10M ethernet, if there are 10 station in this network, every station has the 1M? or is shared means that there is a 10M ethernet, if there are 10 station in this network every station has the 10M bandwidth when you transmisstion, (csma/cd) after this station trasmisted, another can transmit and has 10M bandwidth. which is right? thanks for answered :) Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=23789&t=23764 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: a question from lan switching book [7:23764]
Think of it like this. Shared is as many people in a 10 foot by 10 foot room as you can stuff. The size of the room can be an analogy for the bandwidth of the network and the number of people in the room are analogous to PC's connected to the shared bandwidth. The rules of conversation are this: You can only talk if you perceive that no one else is talking. If you hear someone else talking, you must stop immediately, and wait a random period until you are able to try speaking again. Of course, before you begin speaking, you must determine whether someone else is speaking. That's shared bandwidth. In this environment where only 1 PC can speak at a time, that PC is able to use the entire bandwidth of the pipe to send one frame. That frame travels at 10 Mbps. Each PC however must pause briefly between sending frames in an effort to let others talk... Now just because you have 10 PC's, each PC won't necessarily have traffic to send when all 9 others do. Thus, never make the comparison that if you have 10 PC's, on a shared 10 Mbps link, that each PC has 1 Mbps of bandwidth. Not true. Each PC has the ability to use 10 Mbps of bandwidth just like each person has the ability to speak in our 10 foot by 10 foot room--but as the number of people in that room increase in their desire to speak, the ability of others to "get a word in edgewise" decreases. The more PC's, the more difficult to utilize that shared bandwidth. Now the term "switched" is also known as "dedicated". Switched is a point-to-point link between the connected device and the switch. Think of it like our telephone system. I'm able to pick up my phone and dial whomever I like. When I lift the receiver, I have a dialtone. I couldn't care less if my neighbor is on the phone--I have a link to the telephone company's central office. I don't care who my neighbors are talking to. I don't hear that conversation. I can use as much of my bandwidth as I have available because I've got a dedicated, point-to-point link between myself and the telephone exchange (aka in networking terms, PC and LAN Switch port). Now let me throw a bit of a curve into this discussion. In a half-duplex switched environment, just because I'm able to use the full bandwidth between myself and the telephone company's central office, that in itself doesn't guarantee that my call will get through. Switched networks operating in half-duplex mode are able to suffer from collisions. If I try and phone my mom at the same time some goofy telemarketer does, our phone calls collide. Likely, I get a busy signal. In a full-duplex environment, this type of collision won't occur. One of us will get the "answering service" which will take a message, forwarding it when the line becomes free. In the full-duplex switching world, the switch buffers the traffic, forwarding it when the destination port is available. To go on a bit of a tangent here... Now of course, the telephone company only has a limited number of circuits that it can carry at one time. In networking terms, this is known as the capacity of the backplane of the switch. The switch is not able to forward unlimited traffic rates. For example, the Catalyst 5000 series switch can only forward 1.2 Gbps of traffic at any given time. > -Original Message- > From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] > Sent: Monday, October 22, 2001 9:57 AM > To: [EMAIL PROTECTED] > Subject: RE: a question from lan switching book [7:23764] > > > is shared means that there is a 10M ethernet, if there are 10 station in > this network, every station has the 1M? > > or is shared means that there is a 10M ethernet, if there are 10 > station in > this network every station has the 10M bandwidth when you transmisstion, > (csma/cd) after this station trasmisted, another can transmit and has 10M > bandwidth. > > which is right? > > thanks for answered :) Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=23788&t=23764 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: a question from lan switching book [7:23764]
is shared means that there is a 10M ethernet, if there are 10 station in this network, every station has the 1M? or is shared means that there is a 10M ethernet, if there are 10 station in this network every station has the 10M bandwidth when you transmisstion, (csma/cd) after this station trasmisted, another can transmit and has 10M bandwidth. which is right? thanks for answered :) Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=23783&t=23764 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: a question from lan switching book [7:23764]
hehehe.. maybe *I* needed more coffee :) Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=23781&t=23764 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: a question from lan switching book [7:23764]
I'm coming in at the end of this thread so I apologize if I'm stating something that someone else already covered. I wanted to nitpick a little, perhaps because I need more coffee, as usual, A hub is a layer one technology since it's simply a multiport physical repeater. It is truly shared. As Mike mentions, what one device sees all others will see. A bridge is a layer two technology that limits the traffic seen on each port. A bridge--or switch--will forward broadcast/multicast traffic out all ports. It will also forward unicast traffic destined for unknown destinations. Once it has populated its bridge table, an endstation on a given port will only see broadcast/multicast traffic and traffic that is destined for it specifically. It will not see unicast traffic destined for hosts on other ports. Regards, John >>> "Mike Sweeney" 10/22/01 8:14:08 AM >>> Shared is your basic hub or bridge.. layer two.. no switching.. what one workstation/host/device sees, all will see. MikeS Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=23773&t=23764 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: a question from lan switching book [7:23764]
Shared is your basic hub or bridge.. layer two.. no switching.. what one workstation/host/device sees, all will see. MikeS Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=23768&t=23764 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: a question of security [7:15609]
> I am no security expert but I would think you could use private address > space on your internal network and use NAT on the router. Not the best > security design, but if you are limited to the specified resources, this may > work! > Using ACL's or, better yet, the firewall feature set, would be far better for your security posture than NAT. NAT is not a security solution Also, with the ease of use of open source firewall software and the low cost of the platforms it runs on, there is no excuse for not deploying some sort of firewall device. But keep in mind, this is just step one for securing your network... Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=15615&t=15609 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: a question of security [7:15609]
I am no security expert but I would think you could use private address space on your internal network and use NAT on the router. Not the best security design, but if you are limited to the specified resources, this may work! Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=15613&t=15609 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: a question for VPN Design experts [7:15061]
Minor problem. Most routing protocols, via IPSec, have to run over a GRE tunnel. Configuring this on the spokes is easy. Configuring this on the Hub is a little more difficult, since you don't know the destination IP address. Although, you might be able to configure NHRP in order to overcome this. This would require a lot of lab-time to confirm functionality. Another option is to configure the Spokes with NAT/PAT over the IPSec tunnel. Then the Sites connecting to the Core, are acting as clients rather then sites. Minor issue, you can no longer push out updates to systems at the remote sites. You'll need to configure systems at the remote sites to pull changes from the central site. David C Prall [EMAIL PROTECTED] http://dcp.dcptech.com - Original Message - From: "mindiani mindiani" To: Sent: Monday, August 06, 2001 8:30 PM Subject: a question for VPN Design experts [7:15061] > I have a network that I am implementing using ipsec 3DES over > the internet by ADSL using cisco routers. There is 700 remote sites > connecting by vpn to the main site to a cisco 7140 router. > the remotes sites are negotiating the IP address from the ISP. > I am wondering if activating a routing protocol on the routers would be a > good idea. > > Please suggest what would be a good solution > > _ > Get your FREE download of MSN Explorer at http://explorer.msn.com/intl.asp Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=15065&t=15061 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: a question about making cisco 6506 as a dhcp server [7: [7:14508]
Please do make sure you prefix the MAC address with the media identifier or it simply will not work. Thanks, Shannon Murphy, CCNA, CCDA -Original Message- From: Mark & Monica Baker [mailto:[EMAIL PROTECTED]] Sent: Wednesday, August 01, 2001 10:20 AM To: [EMAIL PROTECTED] Subject: RE: a question about making cisco 6506 as a dhcp server [7: 14491] Leo, If I understand you correctly, you want to do a manual binding, giving one particular DHCP client the same address all the time? If so, go here and take a look at the config: http://www.cisco.com/univercd/cc/td/doc/product/software/ios120/120newft /120t/120t1/easyip2.htm#xtocid432218 Thanx, Mark Baker CCNA CCNP -Original Message- From: Leo Shen [SMTP:[EMAIL PROTECTED]] Sent: Wednesday, August 01, 2001 6:25 AM To: [EMAIL PROTECTED] Subject:a question about making cisco 6506 as a dhcp server [7:14465] first,the 6506 is a new one,it's ios is 12.16,so it can control layer2&layer3 with one interface(the old has two interfaces,one is router,another is switch,but the new one only has one interface,it can control both router and switch). now,i have maken the 6506 as dhcp server for about 2 months,the config is : ip dhcp pool vlan210 network 10.2.10.0 255.255.255.0 default-router 10.2.10.254 dns-server 10.2.90.1 ! ip dhcp pool vlan230 network 10.2.30.0 255.255.255.0 default-router 10.2.30.254 dns-server 10.2.90.1 ! ip dhcp pool vlan221 network 10.2.21.0 255.255.255.0 default-router 10.2.21.254 dns-server 10.2.90.1 .. now,I want to make some special user have special ip address,for instance,one user's mac address is aa-bb-cc-dd-ee-ff,I want that his address will be 10.2.10.101,another user's mac address is 12-34-56-78-90-12,his address will be 10.2.21.202,how can I realize it?except using static address,must via dhcp and 6506'config could someone tell me the command and config? thanks! Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=14508&t=14508 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: a question about making cisco 6506 as a dhcp server [7:14491]
Leo, If I understand you correctly, you want to do a manual binding, giving one particular DHCP client the same address all the time? If so, go here and take a look at the config: http://www.cisco.com/univercd/cc/td/doc/product/software/ios120/120newft /120t/120t1/easyip2.htm#xtocid432218 Thanx, Mark Baker CCNA CCNP -Original Message- From: Leo Shen [SMTP:[EMAIL PROTECTED]] Sent: Wednesday, August 01, 2001 6:25 AM To: [EMAIL PROTECTED] Subject:a question about making cisco 6506 as a dhcp server [7:14465] first,the 6506 is a new one,it's ios is 12.16,so it can control layer2&layer3 with one interface(the old has two interfaces,one is router,another is switch,but the new one only has one interface,it can control both router and switch). now,i have maken the 6506 as dhcp server for about 2 months,the config is : ip dhcp pool vlan210 network 10.2.10.0 255.255.255.0 default-router 10.2.10.254 dns-server 10.2.90.1 ! ip dhcp pool vlan230 network 10.2.30.0 255.255.255.0 default-router 10.2.30.254 dns-server 10.2.90.1 ! ip dhcp pool vlan221 network 10.2.21.0 255.255.255.0 default-router 10.2.21.254 dns-server 10.2.90.1 .. now,I want to make some special user have special ip address,for instance,one user's mac address is aa-bb-cc-dd-ee-ff,I want that his address will be 10.2.10.101,another user's mac address is 12-34-56-78-90-12,his address will be 10.2.21.202,how can I realize it?except using static address,must via dhcp and 6506'config could someone tell me the command and config? thanks! Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=14491&t=14491 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: a question about making cisco 6506 as a dhcp server [7:14470]
Hi Leo, the command in global config mode is: ip dhcp excluded-address x.x.x.x this will reserve the ip address for a specific client that is not using DHCP. Thanks, Saleem -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Leo Shen Sent: Wednesday, August 01, 2001 6:25 AM To: [EMAIL PROTECTED] Subject: a question about making cisco 6506 as a dhcp server [7:14465] first,the 6506 is a new one,it's ios is 12.16,so it can control layer2&layer3 with one interface(the old has two interfaces,one is router,another is switch,but the new one only has one interface,it can control both router and switch). now,i have maken the 6506 as dhcp server for about 2 months,the config is : ip dhcp pool vlan210 network 10.2.10.0 255.255.255.0 default-router 10.2.10.254 dns-server 10.2.90.1 ! ip dhcp pool vlan230 network 10.2.30.0 255.255.255.0 default-router 10.2.30.254 dns-server 10.2.90.1 ! ip dhcp pool vlan221 network 10.2.21.0 255.255.255.0 default-router 10.2.21.254 dns-server 10.2.90.1 .. now,I want to make some special user have special ip address,for instance,one user's mac address is aa-bb-cc-dd-ee-ff,I want that his address will be 10.2.10.101,another user's mac address is 12-34-56-78-90-12,his address will be 10.2.21.202,how can I realize it?except using static address,must via dhcp and 6506'config could someone tell me the command and config? thanks! Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=14470&t=14470 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: A question on EIGRP traffic [7:3464]
One hint - By default EIGRP will use a MAX of 50% of the CONFIGURED bandwidth of the interface (via Bandw command). You can change this behavior, however. "Curtis Call" cc: Enviado por: Asunto: Re: A question on EIGRP traffic [7:3464] nobody@groups tudy.com 08.05.01 02:34 AM Por favor, responda a "Curtis Call" By default the EIGRP protocol will use a MAXIMUM of 50% of the link bandwidth. In most cases it won't use much bandwidth at all since it will just be hello traffic when the network is stable, but while passing update information this rule stays in effect. At 10:14 AM 5/7/01, you wrote: >I have been told the cisco EIGRP protocol is using by default 50% of the >bandwith of the WAN link. Can anybody give me more detail on this. > > > >_ >Get Your Private, Free E-mail from MSN Hotmail at http://www.hotmail.com. >FAQ, list archives, and subscription info: >http://www.groupstudy.com/list/cisco.html >Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=4232&t=3464 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: A question on EIGRP traffic [7:3464]
Cisco EIGRP by default will use "up to" 50% of the wire for its routing protocol traffic. This is a feature to prevent the routing protocol from consuming all available bandwidth. Brian On Mon, 7 May 2001, mindiani mindiani wrote: > I have been told the cisco EIGRP protocol is using by default 50% of the > bandwith of the WAN link. Can anybody give me more detail on this. > > > > _ > Get Your Private, Free E-mail from MSN Hotmail at http://www.hotmail.com. > FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] > --- We have MOVED!! Make note of our new address!!! I'm buying / selling used CISCO gear!! email me for a quote Brian Feeny,CCDP,CCNP+VAS Scarlett Parria [EMAIL PROTECTED] [EMAIL PROTECTED] 318-213-4709 318-213-4701 Netjam, LLC http://www.netjam.net 333 Texas St. VISA/MC/AMEX/COD Suite 140130 day warranty Shreveport, LA 71101 Cisco Channel Partner p: 318-212-0245 f: 318-212-0246 Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=3746&t=3464 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: A question on EIGRP traffic [7:3464]
By default the EIGRP protocol will use a MAXIMUM of 50% of the link bandwidth. In most cases it won't use much bandwidth at all since it will just be hello traffic when the network is stable, but while passing update information this rule stays in effect. At 10:14 AM 5/7/01, you wrote: >I have been told the cisco EIGRP protocol is using by default 50% of the >bandwith of the WAN link. Can anybody give me more detail on this. > > > >_ >Get Your Private, Free E-mail from MSN Hotmail at http://www.hotmail.com. >FAQ, list archives, and subscription info: >http://www.groupstudy.com/list/cisco.html >Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=3509&t=3464 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: A question regarding private addressing (correction)
Let me make some comments fundamentally for background. It's increasingly considered useful to minimize the amount of configuration that an end station needs to do before becoming active. Servers and routers are special cases. DHCP is stateful: the DHCP server remembers what addresses have been assigned. Apple and Microsoft alternatives are dynamic stateless alternatives. They select a tentative name, and then broadcast sequentially selected addresses until they find one with no conflict. BTW, this is similar to the way NetBEUI checks for name uniqueness. CLNS and IPv6 alternatives listen for a high-order prefix defining alink-local or site-local part, and prefix these part(s) in front of MAC addresses. Still mostly stateless, but more cooperative. >At 10:37 PM 1/6/01, John Nemeth wrote: >>On May 29, 5:24am, Craig Columbus wrote: >>} >>} OK. I can accept that Microsoft (or Apple for that matter) would do >>} something like this and then expect the world to revolve around >> >>Actually, as Howard mentioned, neither of these companies >>initiated the protocol > >It can be argued that Apple initiated the particular protocol that we have >been discussing, that is, the Microsoft Automatic Private IP Addressing >method. The client sends a gratuitous ARP 10 times broadcasting the >network-layer address that it wants to use. If the address is in use, the >client selects another address. The creators of AppleTalk, including >Gursharan Sidhu, Ron Hochsprung, and Alan Oppenheimer own a patent that >reads essentially just like that. > >The patent is from 1984. At that time IP networks were managed by computer >scientists. Apple had the brilliant idea that ordinary people could set up >and manage networks. I think we should give credit where credit is due. As >Chuck mentioned, in the 1990s Microsoft also tried to make file and print >sharing easy, but the majority of the credit should go to Apple. > >Apple could have imposed the dynamic network-layer addressing patent on the >industry but perhaps it was too specific. (It has a bunch of LocalTalk >specifics in it.) Also, they probably let it go because they recognize the >value of furthering the ease of use of IP networks. People who will be >connecting their home appliances together don't want to understand IP >addressing, subnet masks, etc.! And how about ad hoc networks in training >classes, on long plane rides, in hotel lobbies, on the beach, etc. &;-) > >John makes some other very good points below. I don't want to detract from >them, but I just had to make the point again about AppleTalk. It's unfair >to not do so. > >Priscilla > > >>} them. However, I'm confused as to the benefit. Why would anyone want a >>} non-assigned default IP address to appear on their network? Do they really >>} think that people will implement a non-RFC1918 compliant address space just >>} to save configuration time? (Actually, I can think of several cases where >> >>It does save configuration time, since this is for cases where no >>configuration at all happens, most likely due to the lack of a real >>administrator. >> >>} How do Internet backbone routers (BGP ASs) deal with this traffic? >> >>They don't. There is a reason why this address range is called >>"link local". It's only useful within a single network segment that >>isn't connected to any other networks. >> >>} Let's say that I want to take the easy way out and I connect a small >>} network to the Internet via an ISP. I'm not running NAT, but I'm running >>} the 169.254 addresses inside my network. If I've got a static route to an >> >>Then, you're SOL. To connect to the Internet, some kind of >>configuration must happen (even, if it is just a box running NAT on the >>outside interface and a DHCP server on the inside interface). >> >>} ISP public address, and we're not exchanging routing information, I can't >>} see how this traffic would ever get back to my network. If I'm exchanging >> >>It wouldn't. >> >>} routes with an ISP (via BGP or some other interior protocol), where and how > >} do the 169.254 routes get filtered? There has to be some mechanism, or >> >>It should be filtered at the network ingress point. >> >>} there would be thousands of summary routes back to 169.254 showing up on >>} the Internet table. >> >>169.254 should never ever show up on the Internet, although I >>wouldn't be surprised if it did. I've seen some pretty large ISP's put >>RFC-1918 addresses on the global Internet, which is also a no-no. >> >>} Any help in understanding this is appreciated. >> >>The purpose of this is to setup small impromptu isolated networks >>which often don't have an administrator with no configuration at all >>required. > > > > >Priscilla Oppenheimer >http://www.priscilla.com > >_ >FAQ, list archives, and subscription info: >http://www.groupstudy.com/list/cisco.html >Report miscond
RE: A question regarding private addressing
Let me make some comments fundamentally for background. It's increasingly considered useful to minimize the amount of configuration that an end station needs to do before becoming active. Servers and routers are special cases. DHCP is stateful: the DHCP server remembers what addresses have been assigned. Apple and Microsoft alternatives are dynamic stateless alternatives. They select a tentative name, and then broadcast sequentially selected addresses until they find one with no conflict. CLNS and IPv6 alternatives listen for a high-order prefix defining alink-local or site-local part, and prefix these part(s) in front of universal MAC lists. Still mostly stateless, but more coooperative. >At 10:37 PM 1/6/01, John Nemeth wrote: >>On May 29, 5:24am, Craig Columbus wrote: >>} >>} OK. I can accept that Microsoft (or Apple for that matter) would do >>} something like this and then expect the world to revolve around >> >> Actually, as Howard mentioned, neither of these companies >>initiated the protocol > >It can be argued that Apple initiated the particular protocol that we have >been discussing, that is, the Microsoft Automatic Private IP Addressing >method. The client sends a gratuitous ARP 10 times broadcasting the >network-layer address that it wants to use. If the address is in use, the >client selects another address. The creators of AppleTalk, including >Gursharan Sidhu, Ron Hochsprung, and Alan Oppenheimer own a patent that >reads essentially just like that. > >The patent is from 1984. At that time IP networks were managed by computer >scientists. Apple had the brilliant idea that ordinary people could set up >and manage networks. I think we should give credit where credit is due. As >Chuck mentioned, in the 1990s Microsoft also tried to make file and print >sharing easy, but the majority of the credit should go to Apple. > >Apple could have imposed the dynamic network-layer addressing patent on the >industry but perhaps it was too specific. (It has a bunch of LocalTalk >specifics in it.) Also, they probably let it go because they recognize the >value of furthering the ease of use of IP networks. People who will be >connecting their home appliances together don't want to understand IP >addressing, subnet masks, etc.! And how about ad hoc networks in training >classes, on long plane rides, in hotel lobbies, on the beach, etc. &;-) > >John makes some other very good points below. I don't want to detract from >them, but I just had to make the point again about AppleTalk. It's unfair >to not do so. > >Priscilla > > >>} them. However, I'm confused as to the benefit. Why would anyone want a >>} non-assigned default IP address to appear on their network? Do they really >>} think that people will implement a non-RFC1918 compliant address space just >>} to save configuration time? (Actually, I can think of several cases where >> >> It does save configuration time, since this is for cases where no >>configuration at all happens, most likely due to the lack of a real >>administrator. >> >>} How do Internet backbone routers (BGP ASs) deal with this traffic? >> >> They don't. There is a reason why this address range is called >>"link local". It's only useful within a single network segment that >>isn't connected to any other networks. >> >>} Let's say that I want to take the easy way out and I connect a small >>} network to the Internet via an ISP. I'm not running NAT, but I'm running >>} the 169.254 addresses inside my network. If I've got a static route to an >> >> Then, you're SOL. To connect to the Internet, some kind of >>configuration must happen (even, if it is just a box running NAT on the >>outside interface and a DHCP server on the inside interface). >> >>} ISP public address, and we're not exchanging routing information, I can't >>} see how this traffic would ever get back to my network. If I'm exchanging >> >> It wouldn't. >> >>} routes with an ISP (via BGP or some other interior protocol), where and how > >} do the 169.254 routes get filtered? There has to be some mechanism, or >> >> It should be filtered at the network ingress point. >> >>} there would be thousands of summary routes back to 169.254 showing up on >>} the Internet table. >> >> 169.254 should never ever show up on the Internet, although I >>wouldn't be surprised if it did. I've seen some pretty large ISP's put >>RFC-1918 addresses on the global Internet, which is also a no-no. >> >>} Any help in understanding this is appreciated. >> >> The purpose of this is to setup small impromptu isolated networks >>which often don't have an administrator with no configuration at all >>required. > > > > >Priscilla Oppenheimer >http://www.priscilla.com > >_ >FAQ, list archives, and subscription info: >http://www.groupstudy.com/list/cisco.html >Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _
RE: A question regarding private addressing
Agreed. Apple has never truly received the credit that they deserve for most of their offerings. Simplicity and functionality are attributes that help make Apple who they are, and their innovative spirit did spark inspiration in the PC world. -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Priscilla Oppenheimer Sent: Sunday, January 07, 2001 4:27 PM To: [EMAIL PROTECTED] Subject: RE: A question regarding private addressing At 10:37 PM 1/6/01, John Nemeth wrote: >On May 29, 5:24am, Craig Columbus wrote: >} >} OK. I can accept that Microsoft (or Apple for that matter) would do >} something like this and then expect the world to revolve around > > Actually, as Howard mentioned, neither of these companies >initiated the protocol It can be argued that Apple initiated the particular protocol that we have been discussing, that is, the Microsoft Automatic Private IP Addressing method. The client sends a gratuitous ARP 10 times broadcasting the network-layer address that it wants to use. If the address is in use, the client selects another address. The creators of AppleTalk, including Gursharan Sidhu, Ron Hochsprung, and Alan Oppenheimer own a patent that reads essentially just like that. The patent is from 1984. At that time IP networks were managed by computer scientists. Apple had the brilliant idea that ordinary people could set up and manage networks. I think we should give credit where credit is due. As Chuck mentioned, in the 1990s Microsoft also tried to make file and print sharing easy, but the majority of the credit should go to Apple. Apple could have imposed the dynamic network-layer addressing patent on the industry but perhaps it was too specific. (It has a bunch of LocalTalk specifics in it.) Also, they probably let it go because they recognize the value of furthering the ease of use of IP networks. People who will be connecting their home appliances together don't want to understand IP addressing, subnet masks, etc.! And how about ad hoc networks in training classes, on long plane rides, in hotel lobbies, on the beach, etc. &;-) John makes some other very good points below. I don't want to detract from them, but I just had to make the point again about AppleTalk. It's unfair to not do so. Priscilla >} them. However, I'm confused as to the benefit. Why would anyone want a >} non-assigned default IP address to appear on their network? Do they really >} think that people will implement a non-RFC1918 compliant address space just >} to save configuration time? (Actually, I can think of several cases where > > It does save configuration time, since this is for cases where no >configuration at all happens, most likely due to the lack of a real >administrator. > >} How do Internet backbone routers (BGP ASs) deal with this traffic? > > They don't. There is a reason why this address range is called >"link local". It's only useful within a single network segment that >isn't connected to any other networks. > >} Let's say that I want to take the easy way out and I connect a small >} network to the Internet via an ISP. I'm not running NAT, but I'm running >} the 169.254 addresses inside my network. If I've got a static route to an > > Then, you're SOL. To connect to the Internet, some kind of >configuration must happen (even, if it is just a box running NAT on the >outside interface and a DHCP server on the inside interface). > >} ISP public address, and we're not exchanging routing information, I can't >} see how this traffic would ever get back to my network. If I'm exchanging > > It wouldn't. > >} routes with an ISP (via BGP or some other interior protocol), where and how >} do the 169.254 routes get filtered? There has to be some mechanism, or > > It should be filtered at the network ingress point. > >} there would be thousands of summary routes back to 169.254 showing up on >} the Internet table. > > 169.254 should never ever show up on the Internet, although I >wouldn't be surprised if it did. I've seen some pretty large ISP's put >RFC-1918 addresses on the global Internet, which is also a no-no. > >} Any help in understanding this is appreciated. > > The purpose of this is to setup small impromptu isolated networks >which often don't have an administrator with no configuration at all >required. Priscilla Oppenheimer http://www.priscilla.com _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: A question regarding private addressing
At 10:37 PM 1/6/01, John Nemeth wrote: >On May 29, 5:24am, Craig Columbus wrote: >} >} OK. I can accept that Microsoft (or Apple for that matter) would do >} something like this and then expect the world to revolve around > > Actually, as Howard mentioned, neither of these companies >initiated the protocol It can be argued that Apple initiated the particular protocol that we have been discussing, that is, the Microsoft Automatic Private IP Addressing method. The client sends a gratuitous ARP 10 times broadcasting the network-layer address that it wants to use. If the address is in use, the client selects another address. The creators of AppleTalk, including Gursharan Sidhu, Ron Hochsprung, and Alan Oppenheimer own a patent that reads essentially just like that. The patent is from 1984. At that time IP networks were managed by computer scientists. Apple had the brilliant idea that ordinary people could set up and manage networks. I think we should give credit where credit is due. As Chuck mentioned, in the 1990s Microsoft also tried to make file and print sharing easy, but the majority of the credit should go to Apple. Apple could have imposed the dynamic network-layer addressing patent on the industry but perhaps it was too specific. (It has a bunch of LocalTalk specifics in it.) Also, they probably let it go because they recognize the value of furthering the ease of use of IP networks. People who will be connecting their home appliances together don't want to understand IP addressing, subnet masks, etc.! And how about ad hoc networks in training classes, on long plane rides, in hotel lobbies, on the beach, etc. &;-) John makes some other very good points below. I don't want to detract from them, but I just had to make the point again about AppleTalk. It's unfair to not do so. Priscilla >} them. However, I'm confused as to the benefit. Why would anyone want a >} non-assigned default IP address to appear on their network? Do they really >} think that people will implement a non-RFC1918 compliant address space just >} to save configuration time? (Actually, I can think of several cases where > > It does save configuration time, since this is for cases where no >configuration at all happens, most likely due to the lack of a real >administrator. > >} How do Internet backbone routers (BGP ASs) deal with this traffic? > > They don't. There is a reason why this address range is called >"link local". It's only useful within a single network segment that >isn't connected to any other networks. > >} Let's say that I want to take the easy way out and I connect a small >} network to the Internet via an ISP. I'm not running NAT, but I'm running >} the 169.254 addresses inside my network. If I've got a static route to an > > Then, you're SOL. To connect to the Internet, some kind of >configuration must happen (even, if it is just a box running NAT on the >outside interface and a DHCP server on the inside interface). > >} ISP public address, and we're not exchanging routing information, I can't >} see how this traffic would ever get back to my network. If I'm exchanging > > It wouldn't. > >} routes with an ISP (via BGP or some other interior protocol), where and how >} do the 169.254 routes get filtered? There has to be some mechanism, or > > It should be filtered at the network ingress point. > >} there would be thousands of summary routes back to 169.254 showing up on >} the Internet table. > > 169.254 should never ever show up on the Internet, although I >wouldn't be surprised if it did. I've seen some pretty large ISP's put >RFC-1918 addresses on the global Internet, which is also a no-no. > >} Any help in understanding this is appreciated. > > The purpose of this is to setup small impromptu isolated networks >which often don't have an administrator with no configuration at all >required. Priscilla Oppenheimer http://www.priscilla.com _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: A question regarding private addressing
On May 29, 5:24am, Craig Columbus wrote: } } OK. I can accept that Microsoft (or Apple for that matter) would do } something like this and then expect the world to revolve around Actually, as Howard mentioned, neither of these companies initiated the protocol, but that's a minor point. } them. However, I'm confused as to the benefit. Why would anyone want a } non-assigned default IP address to appear on their network? Do they really } think that people will implement a non-RFC1918 compliant address space just } to save configuration time? (Actually, I can think of several cases where It does save configuration time, since this is for cases where no configuration at all happens, most likely due to the lack of a real administrator. } How do Internet backbone routers (BGP ASs) deal with this traffic? They don't. There is a reason why this address range is called "link local". It's only useful within a single network segment that isn't connected to any other networks. } Let's say that I want to take the easy way out and I connect a small } network to the Internet via an ISP. I'm not running NAT, but I'm running } the 169.254 addresses inside my network. If I've got a static route to an Then, you're SOL. To connect to the Internet, some kind of configuration must happen (even, if it is just a box running NAT on the outside interface and a DHCP server on the inside interface). } ISP public address, and we're not exchanging routing information, I can't } see how this traffic would ever get back to my network. If I'm exchanging It wouldn't. } routes with an ISP (via BGP or some other interior protocol), where and how } do the 169.254 routes get filtered? There has to be some mechanism, or It should be filtered at the network ingress point. } there would be thousands of summary routes back to 169.254 showing up on } the Internet table. 169.254 should never ever show up on the Internet, although I wouldn't be surprised if it did. I've seen some pretty large ISP's put RFC-1918 addresses on the global Internet, which is also a no-no. } Any help in understanding this is appreciated. The purpose of this is to setup small impromptu isolated networks which often don't have an administrator with no configuration at all required. }-- End of excerpt from Craig Columbus _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: A question regarding private addressing
Simple. To make it easy to set up a network. For amateurs who just want to plug a couple of PC's together in their home or office. Microsoft, for all the bad rap they take, have throughout their tenure made great effort to make things easier for people to do things. Whether they succeeded or not can be argued. But the history, going back to Windows for Workgroups, has been to try to make it relatively easy for non technical people to set up simple networks for file and print sharing. What with NetBEUI losing in the market place, and the pre-eminence of IP due to the internet ) why not attempt another form of easy networking using something like this? Question: how long before we start hearing people say things like "why should I pay a professional to come in and set up my network when I can just buy a couple of computers, a hub, and some wire at CompUSA and do it all myself?" Chuck -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] On Behalf Of Craig Columbus Sent: Saturday, January 06, 2001 7:49 AM To: [EMAIL PROTECTED] Subject: RE: A question regarding private addressing OK. I can accept that Microsoft (or Apple for that matter) would do something like this and then expect the world to revolve around them. However, I'm confused as to the benefit. Why would anyone want a non-assigned default IP address to appear on their network? Do they really think that people will implement a non-RFC1918 compliant address space just to save configuration time? (Actually, I can think of several cases where people might just go for this.) How do Internet backbone routers (BGP ASs) deal with this traffic? Let's say that I want to take the easy way out and I connect a small network to the Internet via an ISP. I'm not running NAT, but I'm running the 169.254 addresses inside my network. If I've got a static route to an ISP public address, and we're not exchanging routing information, I can't see how this traffic would ever get back to my network. If I'm exchanging routes with an ISP (via BGP or some other interior protocol), where and how do the 169.254 routes get filtered? There has to be some mechanism, or there would be thousands of summary routes back to 169.254 showing up on the Internet table. Any help in understanding this is appreciated. Thanks, Craig At 03:27 AM 1/6/2001 -0800, you wrote: >On May 28, 10:03am, Priscilla Oppenheimer wrote: >} >} Microsoft stole this from AppleTalk. Ironically, Apple doesn't care and in > > MS made a draft RFC about it, which has expired, and there is a >new draft by Apple (see my previous note). > >} fact has been using the Automatic Private IP Addressing scheme for a few >} years. I think Microsoft themselves only started using it pretty recently. >} (Windows 2000, you say?) > > No, Windows 98 does it as well (not sure about Windows 95, but it >would be a good bet). > >}-- End of excerpt from Priscilla Oppenheimer > >_ >FAQ, list archives, and subscription info: >http://www.groupstudy.com/list/cisco.html >Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: A question regarding private addressing
Let's try for some perspective on 169.254 and related issues. Trying to remember an IETF hallway discussion, I think with Jeff Schiller of MIT (might have been Bill Manning), the convention for using this particular block originated at MIT, not either Apple or Microsoft. Don't confuse this mechanism with more general DHCP intended to let the device operate in a general network. It's really intended for single subnet operation. IPv6 has a link-local autoconfiguration mode that also achieves this sort of mechanism, but IPv6 autoconfiguration derives from OSI protocols, not AppleTalk. The specific convention is now in the Zeroconf Working Group: http://www.ietf.org/internet-drafts/draft-ietf-zeroconf-ipv4-linklocal-01.txt From http://www.ietf.org/html.charters/zeroconf-charter.html >The goal of the Zero Configuration Networking (ZEROCONF) Working >Group is to enable networking in the absence of configuration and >administration. >Zero configuration networking is required for environments where >administration is impractical or impossible, such as in the home or >small office, >embedded systems 'plugged together' as in an automobile, or to allow >impromptu networks as between the devices of strangers on a train. > >ZEROCONF requirements will make networking as easy as possible, but >no easier. In some cases other considerations may dominate ease of >use. For >example, network security requires some configuration which may not >be as easy as the unacceptable alternative of 'no security.' > >Networks where ZEROCONF protocols apply can include (but are not >limited to) environments where no DHCP, MADCAP or DNS servers are >present. > >This working group will address both IPv4 and IPv6. > >Many functions which are not of fundamental importance to host and >application configuration are outside the scope of the working >group. This is not >because there are no other problems to solve for networking in an >environment without preexisting configuration. This working group >will focus on an >achievable subset of these problems. The ZEROCONF WG will precisely >define the requirements for each of the following functions: > >* Interface Configuration (IP address, network prefix, gateway router) > >* Name-to-Address Translation > >* Service Discovery > >* Automatic allocation of Multicast Addresses > >* Sufficient security features to prevent networks from being any >less secure than networks which do not use ZEROCONF protocols > >The working group will define the requirements to provide these >functions on two distinct network topologies: > >1. A single network segment, where all hosts are reachable by >link-layer broadcast or multicast messages. > >2. A set of network segments, (on different IP subnetworks) >interconnected by a single router. > >Automatic configuration of an arbitrary topology of routers and >subnets is out of the scope of the ZEROCONF WG charter. > >The working group will also define how such a network may >automatically transition from 'configured' to 'unconfigured' >behavior, as well as from >'unconfigured' to 'configured'. That is, the same hosts must be able >to function on networks with no configuration as well as be capable >of direct IP >connectivity to the global Internet, including DNS entries supplied >through standard DNS services. It is also possible that both modes >(ZEROCONF and >administered) may coexist on the same network; the modes may not be >exclusive of each other. > >When ZEROCONF networks or hosts which are configured using ZEROCONF >protocols are connected to the big 'I' internet, they should not >automatically become vulnerable to new security threats. > >This WG will produce two documents. The first describes the >requirements for the configuration (and security) services, >defaults, and mechanisms a node >needs to fully participate on ZEROCONF networks and/or configured >networks. The second, which follows the first, will detail a >'profile' specifying which >standards specifically satisfy ZEROCONF requirements. > >The WG will also produce two protocol specifications. First, the WG >will develop a document describing automatic generation and >assignment of link-local >IPv4 addresses in environments lacking host configuration (static or >using DHCP). The document will describe existing practice as well as >define >recommendations for future implementations. Second, the WG will >develop a profile of the Address Allocation Protocol (AAP) to >provide Zero >Configuration Multicast Address Allocation support for IPv4 and >IPv6. No protocol modifications to AAP are expected. Rather, a >subset of existing feature >will be profiled for use in ZEROCONF environments. _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: A question regarding private addressing
My limited understanding on these addresses are that they should ONLY be used on your local lans. Communication to the internet via an ISP would have to be dealt with by using NAT or some other proxy mechanism such as a firewall in which the outside addresses are registered. ..dj "Craig Columbus" <[EMAIL PROTECTED]> wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > OK. I can accept that Microsoft (or Apple for that matter) would do > something like this and then expect the world to revolve around > them. However, I'm confused as to the benefit. Why would anyone want a > non-assigned default IP address to appear on their network? Do they really > think that people will implement a non-RFC1918 compliant address space just > to save configuration time? (Actually, I can think of several cases where > people might just go for this.) > How do Internet backbone routers (BGP ASs) deal with this traffic? > Let's say that I want to take the easy way out and I connect a small > network to the Internet via an ISP. I'm not running NAT, but I'm running > the 169.254 addresses inside my network. If I've got a static route to an > ISP public address, and we're not exchanging routing information, I can't > see how this traffic would ever get back to my network. If I'm exchanging > routes with an ISP (via BGP or some other interior protocol), where and how > do the 169.254 routes get filtered? There has to be some mechanism, or > there would be thousands of summary routes back to 169.254 showing up on > the Internet table. > Any help in understanding this is appreciated. > > Thanks, > Craig > > At 03:27 AM 1/6/2001 -0800, you wrote: > >On May 28, 10:03am, Priscilla Oppenheimer wrote: > >} > >} Microsoft stole this from AppleTalk. Ironically, Apple doesn't care and in > > > > MS made a draft RFC about it, which has expired, and there is a > >new draft by Apple (see my previous note). > > > >} fact has been using the Automatic Private IP Addressing scheme for a few > >} years. I think Microsoft themselves only started using it pretty recently. > >} (Windows 2000, you say?) > > > > No, Windows 98 does it as well (not sure about Windows 95, but it > >would be a good bet). > > > >}-- End of excerpt from Priscilla Oppenheimer > > > >_ > >FAQ, list archives, and subscription info: > >http://www.groupstudy.com/list/cisco.html > >Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] > > _ > FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] > _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: A question regarding private addressing
It's been my experience that when a M$ ip stack assumes this address and mask, that it is NOT appearing on their network, and can't even talk to same-subnet hosts in most cases. As far as benefit is concerned, I believe that it might allow you to determine if a dhcp attempt occurred or not. Craig Columbus <[EMAIL PROTECTED]>@groupstudy.com on 01/06/2001 10:49:09 AM Please respond to Craig Columbus <[EMAIL PROTECTED]> Sent by: [EMAIL PROTECTED] To: [EMAIL PROTECTED] cc:(bcc: Kevin Cullimore) Subject: RE: A question regarding private addressing OK. I can accept that Microsoft (or Apple for that matter) would do something like this and then expect the world to revolve around them. However, I'm confused as to the benefit. Why would anyone want a non-assigned default IP address to appear on their network? Do they really think that people will implement a non-RFC1918 compliant address space just to save configuration time? (Actually, I can think of several cases where people might just go for this.) How do Internet backbone routers (BGP ASs) deal with this traffic? Let's say that I want to take the easy way out and I connect a small network to the Internet via an ISP. I'm not running NAT, but I'm running the 169.254 addresses inside my network. If I've got a static route to an ISP public address, and we're not exchanging routing information, I can't see how this traffic would ever get back to my network. If I'm exchanging routes with an ISP (via BGP or some other interior protocol), where and how do the 169.254 routes get filtered? There has to be some mechanism, or there would be thousands of summary routes back to 169.254 showing up on the Internet table. Any help in understanding this is appreciated. Thanks, Craig At 03:27 AM 1/6/2001 -0800, you wrote: >On May 28, 10:03am, Priscilla Oppenheimer wrote: >} >} Microsoft stole this from AppleTalk. Ironically, Apple doesn't care and in > > MS made a draft RFC about it, which has expired, and there is a >new draft by Apple (see my previous note). > >} fact has been using the Automatic Private IP Addressing scheme for a few >} years. I think Microsoft themselves only started using it pretty recently. >} (Windows 2000, you say?) > > No, Windows 98 does it as well (not sure about Windows 95, but it >would be a good bet). > >}-- End of excerpt from Priscilla Oppenheimer > >_ >FAQ, list archives, and subscription info: >http://www.groupstudy.com/list/cisco.html >Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] +-+ | This message may contain confidential and/or privileged | | information. If you are not the addressee or authorized to | | receive this for the addressee, you must not use, copy, | | disclose or take any action based on this message or any| | information herein. If you have received this message in | | error, please advise the sender immediately by reply e-mail | | and delete this message. Thank you for your cooperation. | +-+ _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: A question regarding private addressing
OK. I can accept that Microsoft (or Apple for that matter) would do something like this and then expect the world to revolve around them. However, I'm confused as to the benefit. Why would anyone want a non-assigned default IP address to appear on their network? Do they really think that people will implement a non-RFC1918 compliant address space just to save configuration time? (Actually, I can think of several cases where people might just go for this.) How do Internet backbone routers (BGP ASs) deal with this traffic? Let's say that I want to take the easy way out and I connect a small network to the Internet via an ISP. I'm not running NAT, but I'm running the 169.254 addresses inside my network. If I've got a static route to an ISP public address, and we're not exchanging routing information, I can't see how this traffic would ever get back to my network. If I'm exchanging routes with an ISP (via BGP or some other interior protocol), where and how do the 169.254 routes get filtered? There has to be some mechanism, or there would be thousands of summary routes back to 169.254 showing up on the Internet table. Any help in understanding this is appreciated. Thanks, Craig At 03:27 AM 1/6/2001 -0800, you wrote: >On May 28, 10:03am, Priscilla Oppenheimer wrote: >} >} Microsoft stole this from AppleTalk. Ironically, Apple doesn't care and in > > MS made a draft RFC about it, which has expired, and there is a >new draft by Apple (see my previous note). > >} fact has been using the Automatic Private IP Addressing scheme for a few >} years. I think Microsoft themselves only started using it pretty recently. >} (Windows 2000, you say?) > > No, Windows 98 does it as well (not sure about Windows 95, but it >would be a good bet). > >}-- End of excerpt from Priscilla Oppenheimer > >_ >FAQ, list archives, and subscription info: >http://www.groupstudy.com/list/cisco.html >Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: A question regarding private addressing
MS started using the private addressing thing with Windows 98... Z >From: Priscilla Oppenheimer <[EMAIL PROTECTED]> >Reply-To: Priscilla Oppenheimer <[EMAIL PROTECTED]> >To: <[EMAIL PROTECTED]> >Subject: RE: A question regarding private addressing >Date: Fri, 05 Jan 2001 15:28:00 -0800 > >At 08:40 PM 1/5/01, Willy Schoots wrote: > >If this > >attempt to locate a DHCP server fails, the Windows 2000 DHCP client > >autoconfigures its stack with a selected IP address from the >IANA-reserved > >class B network 169.254.0.0 with the subnet mask 255.255.0.09 . The DHCP > >client tests (using a gratuitous ARP) to make sure that the IP address >that > >it has chosen is not already in use. If it is in use, it selects another >IP > >address (it does this for up to 10 addresses). Once the DHCP client has > >selected an address that is verifiably not in use, it configures the > >interface with this address. It continues to check for a DHCP server in >the > >background every 5 minutes. If a DHCP server is found, the >autoconfiguration > >information is abandoned, and the configuration offered by the DHCP >server > >is used instead. > >Good answer, Willy. I think there is a typo in the subnet mask. I think you >meant 255.255.0.0. > >I would just like to ask, why does this look so familiar and who said >AppleTalk was silly? &;-) > >Microsoft stole this from AppleTalk. Ironically, Apple doesn't care and in >fact has been using the Automatic Private IP Addressing scheme for a few >years. I think Microsoft themselves only started using it pretty recently. >(Windows 2000, you say?) > >When troubleshooting Macintoshes that can't get on the net, the first thing >I check for is a 169.254.x.x address which indicates the Mac couldn't find >the DHCP server (usually due to some silly Layer 1 problem &;-) > >Now, we can start using this troubleshooting method with PCs also. Other >than for troubleshooting, I don't expect this private addressing scheme to >get too popular, though it's kind of cool and a great Apple invention! I >could see it being used in schools or small businesses that don't access >the Internet, but who doesn't access the Internet these days? > >OK, enough rambling. > >Priscilla > > > > >Priscilla Oppenheimer >http://www.priscilla.com > >_ >FAQ, list archives, and subscription info: >http://www.groupstudy.com/list/cisco.html >Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ Get your FREE download of MSN Explorer at http://explorer.msn.com _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: A question regarding private addressing
On May 28, 10:03am, Priscilla Oppenheimer wrote: } } Microsoft stole this from AppleTalk. Ironically, Apple doesn't care and in MS made a draft RFC about it, which has expired, and there is a new draft by Apple (see my previous note). } fact has been using the Automatic Private IP Addressing scheme for a few } years. I think Microsoft themselves only started using it pretty recently. } (Windows 2000, you say?) No, Windows 98 does it as well (not sure about Windows 95, but it would be a good bet). }-- End of excerpt from Priscilla Oppenheimer _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: A question
On May 28, 9:48am, "Howard C. Berkowitz" wrote: } >Chuck Larrieu mentioned, } } >I believe the 169.250.0.0 is a Microsoft reserved address. Microsoft, if } >memory serves, uses it in conjunction with their automatic network } >configuration A search of the RFC's did not reveal anything. } } As I remember, it's buried in the DHCP specification, or even a draft } revision. I vaguely remember a proposal to document 169.254/16, but } can't remember if that was a draft or RFC. It was a draft, which has expired. I used to have a reference to the draft, but I don't know where it is at the moment. However, a search of Internet Drafts at http://www.ietf.org/ turned up the following URL: http://search.ietf.org/internet-drafts/draft-ietf-zeroconf-ipv4-linklocal-01.txt which appears to be an updated version of the draft (covers machines with multiple interfaces). Surprisingly, it was written by somebody at Apple. }-- End of excerpt from "Howard C. Berkowitz" _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: A question
Hi All, Finally we are able to solve the problem. The problem was with the Sonicwall Firewall. It had a older firmware which used to make the DHCP server in the network unavailable. This was the reason why non of the PC in the network were able to get the IP address from the DHCP server. Here came the MS AIPC which assigned the 169.254.x.x ip addresses to the new pcs(logon). I should thank everbody who had replied or guided me in the right direction. I was really humbled to get help from people like you all. Please continue to help others. Thanks once again. Saswata --- Marty Adkins <[EMAIL PROTECTED]> wrote: > Kathy Miihalisko wrote: > > > > Saswata, > > > > Very interesting, took a cue from Chuck and > attached the following, does any > > of this look familiar? > > > > WHAT MICROSOFT SAYS: > > > > For a device running Windows CE 3.0, if this > attempt to locate a DHCP server > > fails, the DHCP client will auto configure the > stack with a selected IP > > address from the Microsoft-reserved class B > network 169.254.0.0 with the > > subnet mask 255.255.0.0. This process is called > Automatic IP (Auto IP). Auto > > IP is enabled by default. To disable Auto IP, > update the AutoCfg registry > > key. The DHCP client will test, using a gratuitous > ARP, to be sure that the > > IP address the client has chosen is not already in > use. If the address is in > > use, the client selects another IP address. The > client repeats this > > selection process for up to ten addresses. Once > the DHCP client has selected > > an address that is verifiably not in use, the > client configures the > > interface with this address. The client continues > to check for a DHCP server > > in the background every 5 minutes, or according to > the interval specified by > > the AutoInterval registry key. If a DHCP server is > found, the auto > > configuration information is abandoned and the > configuration offered by the > > DHCP server is used instead. > [snip] > IOW, it only took Microsoft about 15 years to figure > out how to emulate > the auto address acquisition of an Apple Mac. :-) > > MS calls it plug and play IP (pnpip) as described in > http://msdn.microsoft.com/library/backgrnd/html/pnpip.htm > Also see RFC 2563. > > Marty Adkins Email: > [EMAIL PROTECTED] > Mentor Technologies Phone: 410-280-8840 > x3006 > 275 West Street, Plaza 70WWW: > http://www.mentortech.com > Annapolis, MD 21401 Cisco CCIE #1289 > . > , MD 21401 Cisco CCIE #1289 > . > __ Do You Yahoo!? Yahoo! Photos - Share your holiday photos online! http://photos.yahoo.com/ _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: A question
Kathy Miihalisko wrote: > > Saswata, > > Very interesting, took a cue from Chuck and attached the following, does any > of this look familiar? > > WHAT MICROSOFT SAYS: > > For a device running Windows CE 3.0, if this attempt to locate a DHCP server > fails, the DHCP client will auto configure the stack with a selected IP > address from the Microsoft-reserved class B network 169.254.0.0 with the > subnet mask 255.255.0.0. This process is called Automatic IP (Auto IP). Auto > IP is enabled by default. To disable Auto IP, update the AutoCfg registry > key. The DHCP client will test, using a gratuitous ARP, to be sure that the > IP address the client has chosen is not already in use. If the address is in > use, the client selects another IP address. The client repeats this > selection process for up to ten addresses. Once the DHCP client has selected > an address that is verifiably not in use, the client configures the > interface with this address. The client continues to check for a DHCP server > in the background every 5 minutes, or according to the interval specified by > the AutoInterval registry key. If a DHCP server is found, the auto > configuration information is abandoned and the configuration offered by the > DHCP server is used instead. [snip] IOW, it only took Microsoft about 15 years to figure out how to emulate the auto address acquisition of an Apple Mac. :-) MS calls it plug and play IP (pnpip) as described in http://msdn.microsoft.com/library/backgrnd/html/pnpip.htm Also see RFC 2563. Marty Adkins Email: [EMAIL PROTECTED] Mentor Technologies Phone: 410-280-8840 x3006 275 West Street, Plaza 70WWW: http://www.mentortech.com Annapolis, MD 21401 Cisco CCIE #1289 _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: A question
The 169.254.0.0 - 169.254.255.255 block belongs to IANA. Perhaps you see the Information Sciences Institute at USC because they are the contact for IANA? Priscilla At 03:18 PM 1/5/01, Lowell Sharrah wrote: >It does not belong to Microsoft. It belongs to USC. Go to > >http://www.arin.net/whois/index.html > >and type in 169.254 and hit enter. > >Lowell E. Sharrah >SBC-DataComm >517-241-7059 wk >517-360-0481 pgr >517-930-1993 cell >[EMAIL PROTECTED] > > >>> "Kathy Miihalisko" <[EMAIL PROTECTED]> 01/05/01 02:46PM >>> >Saswata, > >Very interesting, took a cue from Chuck and attached the following, does any >of this look familiar? > >WHAT MICROSOFT SAYS: > >For a device running Windows CE 3.0, if this attempt to locate a DHCP server >fails, the DHCP client will auto configure the stack with a selected IP >address from the Microsoft-reserved class B network 169.254.0.0 with the >subnet mask 255.255.0.0. This process is called Automatic IP (Auto IP). Auto >IP is enabled by default. To disable Auto IP, update the AutoCfg registry >key. The DHCP client will test, using a gratuitous ARP, to be sure that the >IP address the client has chosen is not already in use. If the address is in >use, the client selects another IP address. The client repeats this >selection process for up to ten addresses. Once the DHCP client has selected >an address that is verifiably not in use, the client configures the >interface with this address. The client continues to check for a DHCP server >in the background every 5 minutes, or according to the interval specified by >the AutoInterval registry key. If a DHCP server is found, the auto >configuration information is abandoned and the configuration offered by the >DHCP server is used instead. >Note If the Windows CE client determines that a DHCP server is available, >Windows CE checks if the IP address offered by the server is on the same >subnet. If the address is on the same subnet, Windows CE requests that it >use the automatically configured IP address. This feature prevents >application sessions from being stopped unnecessarily. > >AND WHAT IANA SAYS: > >IP block lookup for 169.254.0.0 >whois -h whois.arin.net 169.254.0.0 > >Internet Assigned Numbers Authority (IANA) (NETBLK-LINKLOCAL) >For use with Link Local Networks >Information Sciences Institute >University of Southern California >4676 Admiralty Way, Suite 330 >Marina del Rey, CA 90292-6695 > >Netname: LINKLOCAL >Netblock: 169.254.0.0 - 169.254.255.255 > >-Original Message- >From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of >Chuck Larrieu >Sent: Friday, January 05, 2001 1:48 PM >To: Saswata Mohapatra; [EMAIL PROTECTED] >Subject: RE: A question > > >I believe the 169.250.0.0 is a Microsoft reserved address. Microsoft, if >memory serves, uses it in conjunction with their automatic network >configuration A search of the RFC's did not reveal anything. A search of >ARIN whois indicated that the block itself is assigned to "linklocal" >Microsoft claims it is theirs >http://msdn.microsoft.com/library/wcedoc/wcecomm/tcpip_50.htm e.g. > >-Original Message- >From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] On Behalf Of >Saswata Mohapatra >Sent: Friday, January 05, 2001 10:13 AM >To: [EMAIL PROTECTED] >Subject:A question > >Hi Networker > >I have couple of questions. > >1. We recently received a router preconfigured from >one of our client. The moment we connect the router to >our network, all of our PC in our internal network got >a message about IP conflict with another IP address >which is not our internal IP address. We use >10.210.X.X as our internal IP and the conflicting IP >was 169.254.X.X. We use DHCP server internally. This >router was connected to our network through Sonicwall >Firewall which disallows all the incoming traffic. So, >we removed the router and everything worked fine. So, >my question is "Is there a DHCP server in the router?" > >2. How should I connect my PC to the console. I have >the console cables with me. I am using Windows NT >server. I tried to connect the cable to the com2 and >when I tries to use the Hyper terminal it took most of >the processor time. So please help me out. > >Somebody please help me. I have to finish this work by >the end of the day. > >TIA. > >Saswata Priscilla Oppenheimer http://www.priscilla.com _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: A question regarding private addressing
At 08:40 PM 1/5/01, Willy Schoots wrote: >If this >attempt to locate a DHCP server fails, the Windows 2000 DHCP client >autoconfigures its stack with a selected IP address from the IANA-reserved >class B network 169.254.0.0 with the subnet mask 255.255.0.09 . The DHCP >client tests (using a gratuitous ARP) to make sure that the IP address that >it has chosen is not already in use. If it is in use, it selects another IP >address (it does this for up to 10 addresses). Once the DHCP client has >selected an address that is verifiably not in use, it configures the >interface with this address. It continues to check for a DHCP server in the >background every 5 minutes. If a DHCP server is found, the autoconfiguration >information is abandoned, and the configuration offered by the DHCP server >is used instead. Good answer, Willy. I think there is a typo in the subnet mask. I think you meant 255.255.0.0. I would just like to ask, why does this look so familiar and who said AppleTalk was silly? &;-) Microsoft stole this from AppleTalk. Ironically, Apple doesn't care and in fact has been using the Automatic Private IP Addressing scheme for a few years. I think Microsoft themselves only started using it pretty recently. (Windows 2000, you say?) When troubleshooting Macintoshes that can't get on the net, the first thing I check for is a 169.254.x.x address which indicates the Mac couldn't find the DHCP server (usually due to some silly Layer 1 problem &;-) Now, we can start using this troubleshooting method with PCs also. Other than for troubleshooting, I don't expect this private addressing scheme to get too popular, though it's kind of cool and a great Apple invention! I could see it being used in schools or small businesses that don't access the Internet, but who doesn't access the Internet these days? OK, enough rambling. Priscilla Priscilla Oppenheimer http://www.priscilla.com _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: A question about Microsoft private addressing
Though I cannot troubleshoot your problem, a couple ideas come to mind that might help you troubleshoot your problem. Do you know about Microsoft Automatic Private IP Addressing? It's different than the rest of the world's private addressing per RFC 1918 (10, 172.16, 192.168, etc.) Microsoft defines a set of addresses for private LANs not connected to the Internet in the 169.254.0.1 - 169.254.255.254 range. When a computer fails to get a legitimate address from a DHCP server it often ends up with a 169.254.x.x address. I have especially seen this with Macintoshes. Adding the router to your config may have made it impossible for the clients to reach the DHCP server. A router does not forward DHCP broadcast requests unless you tell it to with the "ip forward-protocol udp 67" global command and "ip helper-address" interface command. Priscilla At 10:12 AM 1/5/01, Saswata Mohapatra wrote: >Hi Networker > >I have couple of questions. > >1. We recently received a router preconfigured from >one of our client. The moment we connect the router to >our network, all of our PC in our internal network got >a message about IP conflict with another IP address >which is not our internal IP address. We use >10.210.X.X as our internal IP and the conflicting IP >was 169.254.X.X. We use DHCP server internally. This >router was connected to our network through Sonicwall >Firewall which disallows all the incoming traffic. So, >we removed the router and everything worked fine. So, >my question is "Is there a DHCP server in the router?" > >2. How should I connect my PC to the console. I have >the console cables with me. I am using Windows NT >server. I tried to connect the cable to the com2 and >when I tries to use the Hyper terminal it took most of >the processor time. So please help me out. > >Somebody please help me. I have to finish this work by >the end of the day. > >TIA. > >Saswata > > >__ >Do You Yahoo!? >Yahoo! Photos - Share your holiday photos online! >http://photos.yahoo.com/ > >_ >FAQ, list archives, and subscription info: >http://www.groupstudy.com/list/cisco.html >Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] Priscilla Oppenheimer http://www.priscilla.com _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: A question
there is also a utility called ipac_off.inf or something that will turn this feature on windows machines off permenatley if you want i will ftp it to you Duck - Original Message - From: Kathy Miihalisko <[EMAIL PROTECTED]> To: Chuck Larrieu <[EMAIL PROTECTED]>; Saswata Mohapatra <[EMAIL PROTECTED]>; <[EMAIL PROTECTED]> Sent: Friday, January 05, 2001 11:46 AM Subject: RE: A question > Saswata, > > Very interesting, took a cue from Chuck and attached the following, does any > of this look familiar? > > WHAT MICROSOFT SAYS: > > For a device running Windows CE 3.0, if this attempt to locate a DHCP server > fails, the DHCP client will auto configure the stack with a selected IP > address from the Microsoft-reserved class B network 169.254.0.0 with the > subnet mask 255.255.0.0. This process is called Automatic IP (Auto IP). Auto > IP is enabled by default. To disable Auto IP, update the AutoCfg registry > key. The DHCP client will test, using a gratuitous ARP, to be sure that the > IP address the client has chosen is not already in use. If the address is in > use, the client selects another IP address. The client repeats this > selection process for up to ten addresses. Once the DHCP client has selected > an address that is verifiably not in use, the client configures the > interface with this address. The client continues to check for a DHCP server > in the background every 5 minutes, or according to the interval specified by > the AutoInterval registry key. If a DHCP server is found, the auto > configuration information is abandoned and the configuration offered by the > DHCP server is used instead. > Note If the Windows CE client determines that a DHCP server is available, > Windows CE checks if the IP address offered by the server is on the same > subnet. If the address is on the same subnet, Windows CE requests that it > use the automatically configured IP address. This feature prevents > application sessions from being stopped unnecessarily. > > AND WHAT IANA SAYS: > > IP block lookup for 169.254.0.0 > whois -h whois.arin.net 169.254.0.0 > > Internet Assigned Numbers Authority (IANA) (NETBLK-LINKLOCAL) >For use with Link Local Networks >Information Sciences Institute >University of Southern California >4676 Admiralty Way, Suite 330 >Marina del Rey, CA 90292-6695 > >Netname: LINKLOCAL >Netblock: 169.254.0.0 - 169.254.255.255 > > -Original Message- > From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of > Chuck Larrieu > Sent: Friday, January 05, 2001 1:48 PM > To: Saswata Mohapatra; [EMAIL PROTECTED] > Subject: RE: A question > > > I believe the 169.250.0.0 is a Microsoft reserved address. Microsoft, if > memory serves, uses it in conjunction with their automatic network > configuration A search of the RFC's did not reveal anything. A search of > ARIN whois indicated that the block itself is assigned to "linklocal" > Microsoft claims it is theirs > http://msdn.microsoft.com/library/wcedoc/wcecomm/tcpip_50.htm e.g. > > -Original Message- > From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] On Behalf Of > Saswata Mohapatra > Sent: Friday, January 05, 2001 10:13 AM > To: [EMAIL PROTECTED] > Subject: A question > > Hi Networker > > I have couple of questions. > > 1. We recently received a router preconfigured from > one of our client. The moment we connect the router to > our network, all of our PC in our internal network got > a message about IP conflict with another IP address > which is not our internal IP address. We use > 10.210.X.X as our internal IP and the conflicting IP > was 169.254.X.X. We use DHCP server internally. This > router was connected to our network through Sonicwall > Firewall which disallows all the incoming traffic. So, > we removed the router and everything worked fine. So, > my question is "Is there a DHCP server in the router?" > > 2. How should I connect my PC to the console. I have > the console cables with me. I am using Windows NT > server. I tried to connect the cable to the com2 and > when I tries to use the Hyper terminal it took most of > the processor time. So please help me out. > > Somebody please help me. I have to finish this work by > the end of the day. > > TIA. > > Saswata > > > __ > Do You Yahoo!? > Yahoo! Photos - Share your holiday photos online! > http://photos.yahoo.com/ > > _ > FAQ, list archives, and subscription info: > http://www.groupstudy.com/list/cisco.html > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] > > ___
RE: A question
It does not belong to Microsoft. It belongs to USC. Go to http://www.arin.net/whois/index.html and type in 169.254 and hit enter. Lowell E. Sharrah SBC-DataComm 517-241-7059 wk 517-360-0481 pgr 517-930-1993 cell [EMAIL PROTECTED] >>> "Kathy Miihalisko" <[EMAIL PROTECTED]> 01/05/01 02:46PM >>> Saswata, Very interesting, took a cue from Chuck and attached the following, does any of this look familiar? WHAT MICROSOFT SAYS: For a device running Windows CE 3.0, if this attempt to locate a DHCP server fails, the DHCP client will auto configure the stack with a selected IP address from the Microsoft-reserved class B network 169.254.0.0 with the subnet mask 255.255.0.0. This process is called Automatic IP (Auto IP). Auto IP is enabled by default. To disable Auto IP, update the AutoCfg registry key. The DHCP client will test, using a gratuitous ARP, to be sure that the IP address the client has chosen is not already in use. If the address is in use, the client selects another IP address. The client repeats this selection process for up to ten addresses. Once the DHCP client has selected an address that is verifiably not in use, the client configures the interface with this address. The client continues to check for a DHCP server in the background every 5 minutes, or according to the interval specified by the AutoInterval registry key. If a DHCP server is found, the auto configuration information is abandoned and the configuration offered by the DHCP server is used instead. Note If the Windows CE client determines that a DHCP server is available, Windows CE checks if the IP address offered by the server is on the same subnet. If the address is on the same subnet, Windows CE requests that it use the automatically configured IP address. This feature prevents application sessions from being stopped unnecessarily. AND WHAT IANA SAYS: IP block lookup for 169.254.0.0 whois -h whois.arin.net 169.254.0.0 Internet Assigned Numbers Authority (IANA) (NETBLK-LINKLOCAL) For use with Link Local Networks Information Sciences Institute University of Southern California 4676 Admiralty Way, Suite 330 Marina del Rey, CA 90292-6695 Netname: LINKLOCAL Netblock: 169.254.0.0 - 169.254.255.255 -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Chuck Larrieu Sent: Friday, January 05, 2001 1:48 PM To: Saswata Mohapatra; [EMAIL PROTECTED] Subject: RE: A question I believe the 169.250.0.0 is a Microsoft reserved address. Microsoft, if memory serves, uses it in conjunction with their automatic network configuration A search of the RFC's did not reveal anything. A search of ARIN whois indicated that the block itself is assigned to "linklocal" Microsoft claims it is theirs http://msdn.microsoft.com/library/wcedoc/wcecomm/tcpip_50.htm e.g. -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] On Behalf Of Saswata Mohapatra Sent: Friday, January 05, 2001 10:13 AM To: [EMAIL PROTECTED] Subject:A question Hi Networker I have couple of questions. 1. We recently received a router preconfigured from one of our client. The moment we connect the router to our network, all of our PC in our internal network got a message about IP conflict with another IP address which is not our internal IP address. We use 10.210.X.X as our internal IP and the conflicting IP was 169.254.X.X. We use DHCP server internally. This router was connected to our network through Sonicwall Firewall which disallows all the incoming traffic. So, we removed the router and everything worked fine. So, my question is "Is there a DHCP server in the router?" 2. How should I connect my PC to the console. I have the console cables with me. I am using Windows NT server. I tried to connect the cable to the com2 and when I tries to use the Hyper terminal it took most of the processor time. So please help me out. Somebody please help me. I have to finish this work by the end of the day. TIA. Saswata __ Do You Yahoo!? Yahoo! Photos - Share your holiday photos online! http://photos.yahoo.com/ _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: A question
>Chuck Larrieu mentioned, >I believe the 169.250.0.0 is a Microsoft reserved address. Microsoft, if >memory serves, uses it in conjunction with their automatic network >configuration A search of the RFC's did not reveal anything. As I remember, it's buried in the DHCP specification, or even a draft revision. I vaguely remember a proposal to document 169.254/16, but can't remember if that was a draft or RFC. >A search of >ARIN whois indicated that the block itself is assigned to "linklocal" >Microsoft claims it is theirs >http://msdn.microsoft.com/library/wcedoc/wcecomm/tcpip_50.htm e.g. > >-Original Message- >From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] On Behalf Of >Saswata Mohapatra >Sent: Friday, January 05, 2001 10:13 AM >To:[EMAIL PROTECTED] >Subject: A question > >Hi Networker > >I have couple of questions. > >1. We recently received a router preconfigured from >one of our client. The moment we connect the router to >our network, all of our PC in our internal network got >a message about IP conflict with another IP address >which is not our internal IP address. We use >10.210.X.X as our internal IP and the conflicting IP >was 169.254.X.X. We use DHCP server internally. This >router was connected to our network through Sonicwall >Firewall which disallows all the incoming traffic. So, >we removed the router and everything worked fine. So, >my question is "Is there a DHCP server in the router?" > >2. How should I connect my PC to the console. I have >the console cables with me. I am using Windows NT >server. I tried to connect the cable to the com2 and >when I tries to use the Hyper terminal it took most of >the processor time. So please help me out. > >Somebody please help me. I have to finish this work by >the end of the day. > >TIA. > >Saswata > > >__ >Do You Yahoo!? >Yahoo! Photos - Share your holiday photos online! >http://photos.yahoo.com/ > >_ >FAQ, list archives, and subscription info: >http://www.groupstudy.com/list/cisco.html >Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] > >_ >FAQ, list archives, and subscription info: >http://www.groupstudy.com/list/cisco.html >Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: A question
Here is a link with some more info on it for Win2000 (also applicable to Win98/ME) about this http://www.microsoft.com/TechNet/network/tcpip2k.asp If a Microsoft TCP/IP client is installed and set to dynamically obtain TCP/IP protocol configuration information from a DHCP server (instead of being manually configured with an IP address and other parameters), the DHCP client service is engaged each time the computer is restarted. The DHCP client service now uses a two-step process to configure the client with an IP address and other configuration information. When the client is installed, it attempts to locate a DHCP server and obtain a configuration from it. Many TCP/IP networks use DHCP servers that are administratively configured to hand out information to clients on the network. If this attempt to locate a DHCP server fails, the Windows 2000 DHCP client autoconfigures its stack with a selected IP address from the IANA-reserved class B network 169.254.0.0 with the subnet mask 255.255.0.09 . The DHCP client tests (using a gratuitous ARP) to make sure that the IP address that it has chosen is not already in use. If it is in use, it selects another IP address (it does this for up to 10 addresses). Once the DHCP client has selected an address that is verifiably not in use, it configures the interface with this address. It continues to check for a DHCP server in the background every 5 minutes. If a DHCP server is found, the autoconfiguration information is abandoned, and the configuration offered by the DHCP server is used instead. This autoconfiguration feature is known as Automatic Private IP Addressing (APIPA) and allows single subnet home office or small office networks to use TCP/IP without static configuration or the administration of a DHCP server. -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Chuck Larrieu Sent: Friday, January 05, 2001 7:48 PM To: Saswata Mohapatra; [EMAIL PROTECTED] Subject: RE: A question I believe the 169.250.0.0 is a Microsoft reserved address. Microsoft, if memory serves, uses it in conjunction with their automatic network configuration A search of the RFC's did not reveal anything. A search of ARIN whois indicated that the block itself is assigned to "linklocal" Microsoft claims it is theirs http://msdn.microsoft.com/library/wcedoc/wcecomm/tcpip_50.htm e.g. -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] On Behalf Of Saswata Mohapatra Sent: Friday, January 05, 2001 10:13 AM To: [EMAIL PROTECTED] Subject:A question Hi Networker I have couple of questions. 1. We recently received a router preconfigured from one of our client. The moment we connect the router to our network, all of our PC in our internal network got a message about IP conflict with another IP address which is not our internal IP address. We use 10.210.X.X as our internal IP and the conflicting IP was 169.254.X.X. We use DHCP server internally. This router was connected to our network through Sonicwall Firewall which disallows all the incoming traffic. So, we removed the router and everything worked fine. So, my question is "Is there a DHCP server in the router?" 2. How should I connect my PC to the console. I have the console cables with me. I am using Windows NT server. I tried to connect the cable to the com2 and when I tries to use the Hyper terminal it took most of the processor time. So please help me out. Somebody please help me. I have to finish this work by the end of the day. TIA. Saswata __ Do You Yahoo!? Yahoo! Photos - Share your holiday photos online! http://photos.yahoo.com/ _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: A question
Saswata, Very interesting, took a cue from Chuck and attached the following, does any of this look familiar? WHAT MICROSOFT SAYS: For a device running Windows CE 3.0, if this attempt to locate a DHCP server fails, the DHCP client will auto configure the stack with a selected IP address from the Microsoft-reserved class B network 169.254.0.0 with the subnet mask 255.255.0.0. This process is called Automatic IP (Auto IP). Auto IP is enabled by default. To disable Auto IP, update the AutoCfg registry key. The DHCP client will test, using a gratuitous ARP, to be sure that the IP address the client has chosen is not already in use. If the address is in use, the client selects another IP address. The client repeats this selection process for up to ten addresses. Once the DHCP client has selected an address that is verifiably not in use, the client configures the interface with this address. The client continues to check for a DHCP server in the background every 5 minutes, or according to the interval specified by the AutoInterval registry key. If a DHCP server is found, the auto configuration information is abandoned and the configuration offered by the DHCP server is used instead. Note If the Windows CE client determines that a DHCP server is available, Windows CE checks if the IP address offered by the server is on the same subnet. If the address is on the same subnet, Windows CE requests that it use the automatically configured IP address. This feature prevents application sessions from being stopped unnecessarily. AND WHAT IANA SAYS: IP block lookup for 169.254.0.0 whois -h whois.arin.net 169.254.0.0 Internet Assigned Numbers Authority (IANA) (NETBLK-LINKLOCAL) For use with Link Local Networks Information Sciences Institute University of Southern California 4676 Admiralty Way, Suite 330 Marina del Rey, CA 90292-6695 Netname: LINKLOCAL Netblock: 169.254.0.0 - 169.254.255.255 -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Chuck Larrieu Sent: Friday, January 05, 2001 1:48 PM To: Saswata Mohapatra; [EMAIL PROTECTED] Subject: RE: A question I believe the 169.250.0.0 is a Microsoft reserved address. Microsoft, if memory serves, uses it in conjunction with their automatic network configuration A search of the RFC's did not reveal anything. A search of ARIN whois indicated that the block itself is assigned to "linklocal" Microsoft claims it is theirs http://msdn.microsoft.com/library/wcedoc/wcecomm/tcpip_50.htm e.g. -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] On Behalf Of Saswata Mohapatra Sent: Friday, January 05, 2001 10:13 AM To: [EMAIL PROTECTED] Subject:A question Hi Networker I have couple of questions. 1. We recently received a router preconfigured from one of our client. The moment we connect the router to our network, all of our PC in our internal network got a message about IP conflict with another IP address which is not our internal IP address. We use 10.210.X.X as our internal IP and the conflicting IP was 169.254.X.X. We use DHCP server internally. This router was connected to our network through Sonicwall Firewall which disallows all the incoming traffic. So, we removed the router and everything worked fine. So, my question is "Is there a DHCP server in the router?" 2. How should I connect my PC to the console. I have the console cables with me. I am using Windows NT server. I tried to connect the cable to the com2 and when I tries to use the Hyper terminal it took most of the processor time. So please help me out. Somebody please help me. I have to finish this work by the end of the day. TIA. Saswata __ Do You Yahoo!? Yahoo! Photos - Share your holiday photos online! http://photos.yahoo.com/ _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: A question
Hi Chuck, Thank you for the quick response. I went to Microsoft and found out more on this. But my question is why it should assign an IP address eventhough I have a DHCP server in my network? How to solve the second part? I have downloaded the latest version of Hyper terminal from Hilgreave but it did not help me. I have connected the console directly to my com port. Is this ok? Please help me out Thanks Saswata "Chuck Larrieu" wrote in message <000301c07747$f7d3a540$[EMAIL PROTECTED]>... >I believe the 169.250.0.0 is a Microsoft reserved address. Microsoft, if >memory serves, uses it in conjunction with their automatic network >configuration A search of the RFC's did not reveal anything. A search of >ARIN whois indicated that the block itself is assigned to "linklocal" >Microsoft claims it is theirs >http://msdn.microsoft.com/library/wcedoc/wcecomm/tcpip_50.htm e.g. > >-Original Message- >From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] On Behalf Of >Saswata Mohapatra >Sent: Friday, January 05, 2001 10:13 AM >To: [EMAIL PROTECTED] >Subject: A question > >Hi Networker > >I have couple of questions. > >1. We recently received a router preconfigured from >one of our client. The moment we connect the router to >our network, all of our PC in our internal network got >a message about IP conflict with another IP address >which is not our internal IP address. We use >10.210.X.X as our internal IP and the conflicting IP >was 169.254.X.X. We use DHCP server internally. This >router was connected to our network through Sonicwall >Firewall which disallows all the incoming traffic. So, >we removed the router and everything worked fine. So, >my question is "Is there a DHCP server in the router?" > >2. How should I connect my PC to the console. I have >the console cables with me. I am using Windows NT >server. I tried to connect the cable to the com2 and >when I tries to use the Hyper terminal it took most of >the processor time. So please help me out. > >Somebody please help me. I have to finish this work by >the end of the day. > >TIA. > >Saswata > > >__ >Do You Yahoo!? >Yahoo! Photos - Share your holiday photos online! >http://photos.yahoo.com/ > >_ >FAQ, list archives, and subscription info: >http://www.groupstudy.com/list/cisco.html >Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] > >_ >FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html >Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] > _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: A question
I believe the 169.250.0.0 is a Microsoft reserved address. Microsoft, if memory serves, uses it in conjunction with their automatic network configuration A search of the RFC's did not reveal anything. A search of ARIN whois indicated that the block itself is assigned to "linklocal" Microsoft claims it is theirs http://msdn.microsoft.com/library/wcedoc/wcecomm/tcpip_50.htm e.g. -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] On Behalf Of Saswata Mohapatra Sent: Friday, January 05, 2001 10:13 AM To: [EMAIL PROTECTED] Subject:A question Hi Networker I have couple of questions. 1. We recently received a router preconfigured from one of our client. The moment we connect the router to our network, all of our PC in our internal network got a message about IP conflict with another IP address which is not our internal IP address. We use 10.210.X.X as our internal IP and the conflicting IP was 169.254.X.X. We use DHCP server internally. This router was connected to our network through Sonicwall Firewall which disallows all the incoming traffic. So, we removed the router and everything worked fine. So, my question is "Is there a DHCP server in the router?" 2. How should I connect my PC to the console. I have the console cables with me. I am using Windows NT server. I tried to connect the cable to the com2 and when I tries to use the Hyper terminal it took most of the processor time. So please help me out. Somebody please help me. I have to finish this work by the end of the day. TIA. Saswata __ Do You Yahoo!? Yahoo! Photos - Share your holiday photos online! http://photos.yahoo.com/ _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: a question about "enable secret 5 abcd1234"
Title: RE: a question about "enable secret 5 abcd1234" And forget the no encrypt thing. It doesn't reverse the hash. -Original Message-From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Taylor, DonSent: Thursday, November 16, 2000 8:48 PMTo: 'cslx'; [EMAIL PROTECTED]Subject: RE: a question about "enable secret 5 abcd1234" You'll need a keyboard, console cable, and a few hundred years. -Original Message- From: cslx [mailto:[EMAIL PROTECTED]] Sent: Thursday, November 16, 2000 8:33 PM To: [EMAIL PROTECTED] Subject: Re: a question about "enable secret 5 abcd1234" but how can I do that,could you give me some more details? thanx "Miller, Nathan (AZ15)" <[EMAIL PROTECTED]> wrote in message [EMAIL PROTECTED]" target=_blank>news:[EMAIL PROTECTED]... > What you are seeing is an MD5 hash of the clear text password. Unlike the > type "7" password there is no "easy" way to get the clear text password from > the hash. I believe (I may be wrong) that an MD5 hash can be brute forced > but it takes LOTS of processing power and time. > Regards, > > Nathan > > -Original Message- > From: cslx [mailto:[EMAIL PROTECTED]] > Sent: Thursday, November 16, 2000 1:58 AM > To: [EMAIL PROTECTED] > Subject: a question about "enable secret 5 abcd1234" > > > the present question is : > I know the password's encrypted text is abcd1234,but how can I know the > clear text of the encrypted text "abcd1234"?that is to say, how can I know > the real password?could someone tell me?thanx a lot > > > _ > FAQ, list archives, and subscription info: > http://www.groupstudy.com/list/cisco.html > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] > > _ > FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] > _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: a question about "enable secret 5 abcd1234"
Title: RE: a question about "enable secret 5 abcd1234" You'll need a keyboard, console cable, and a few hundred years. -Original Message- From: cslx [mailto:[EMAIL PROTECTED]] Sent: Thursday, November 16, 2000 8:33 PM To: [EMAIL PROTECTED] Subject: Re: a question about "enable secret 5 abcd1234" but how can I do that,could you give me some more details? thanx "Miller, Nathan (AZ15)" <[EMAIL PROTECTED]> wrote in message [EMAIL PROTECTED]" TARGET="_blank">news:[EMAIL PROTECTED]... > What you are seeing is an MD5 hash of the clear text password. Unlike the > type "7" password there is no "easy" way to get the clear text password from > the hash. I believe (I may be wrong) that an MD5 hash can be brute forced > but it takes LOTS of processing power and time. > Regards, > > Nathan > > -Original Message- > From: cslx [mailto:[EMAIL PROTECTED]] > Sent: Thursday, November 16, 2000 1:58 AM > To: [EMAIL PROTECTED] > Subject: a question about "enable secret 5 abcd1234" > > > the present question is : > I know the password's encrypted text is abcd1234,but how can I know the > clear text of the encrypted text "abcd1234"?that is to say, how can I know > the real password?could someone tell me?thanx a lot > > > _ > FAQ, list archives, and subscription info: > http://www.groupstudy.com/list/cisco.html > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] > > _ > FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] > _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: a question about "enable secret 5 abcd1234"
but how can I do that,could you give me some more details? thanx "Miller, Nathan (AZ15)" <[EMAIL PROTECTED]> wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > What you are seeing is an MD5 hash of the clear text password. Unlike the > type "7" password there is no "easy" way to get the clear text password from > the hash. I believe (I may be wrong) that an MD5 hash can be brute forced > but it takes LOTS of processing power and time. > Regards, > > Nathan > > -Original Message- > From: cslx [mailto:[EMAIL PROTECTED]] > Sent: Thursday, November 16, 2000 1:58 AM > To: [EMAIL PROTECTED] > Subject: a question about "enable secret 5 abcd1234" > > > the present question is : > I know the password's encrypted text is abcd1234,but how can I know the > clear text of the encrypted text "abcd1234"?that is to say, how can I know > the real password?could someone tell me?thanx a lot > > > _ > FAQ, list archives, and subscription info: > http://www.groupstudy.com/list/cisco.html > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] > > _ > FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] > _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: a question about "enable secret 5 abcd1234"
What you are seeing is an MD5 hash of the clear text password. Unlike the type "7" password there is no "easy" way to get the clear text password from the hash. I believe (I may be wrong) that an MD5 hash can be brute forced but it takes LOTS of processing power and time. Regards, Nathan -Original Message- From: cslx [mailto:[EMAIL PROTECTED]] Sent: Thursday, November 16, 2000 1:58 AM To: [EMAIL PROTECTED] Subject: a question about "enable secret 5 abcd1234" the present question is : I know the password's encrypted text is abcd1234,but how can I know the clear text of the encrypted text "abcd1234"?that is to say, how can I know the real password?could someone tell me?thanx a lot _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: a question about "enable secret 5 abcd1234"
You will need to do a password recovery. You can always still keep the old password. While doing password recovery you will able to see what the old enable password is. Do a serach on password recovey on CCO. If you don't find what you want, send a mail regarding what type of router it is, and I'm sure someone will point you in the right direction. W J >From: "cslx" <[EMAIL PROTECTED]> >Reply-To: "cslx" <[EMAIL PROTECTED]> >To: [EMAIL PROTECTED] >Subject: Re: a question about "enable secret 5 abcd1234" >Date: Thu, 16 Nov 2000 18:43:48 +0800 > >thanx,but now I don't know the enable password of this router,is there any >way except clear the password? >thanx >"W Jones" <[EMAIL PROTECTED]> wrote in message >[EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > > What you need to do is this. > > > > enter config mode. > > type in no service password-encryption. > > save what you just did and you should be able to see the en pass in >clear > > text. > > > > > > W J. > > > > > > > > >From: "cslx" <[EMAIL PROTECTED]> > > >Reply-To: "cslx" <[EMAIL PROTECTED]> > > >To: [EMAIL PROTECTED] > > >Subject: a question about "enable secret 5 abcd1234" > > >Date: Thu, 16 Nov 2000 16:58:00 +0800 > > > > > >the present question is : > > >I know the password's encrypted text is abcd1234,but how can I know the > > >clear text of the encrypted text "abcd1234"?that is to say, how can I >know > > >the real password?could someone tell me?thanx a lot > > > > > > > > >_ > > >FAQ, list archives, and subscription info: > > >http://www.groupstudy.com/list/cisco.html > > >Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] > > > > >_ > > Get Your Private, Free E-mail from MSN Hotmail at >http://www.hotmail.com. > > > > Share information about yourself, create your own public profile at > > http://profiles.msn.com. > > > > _ > > FAQ, list archives, and subscription info: >http://www.groupstudy.com/list/cisco.html > > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] > > > > >_ >FAQ, list archives, and subscription info: >http://www.groupstudy.com/list/cisco.html >Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ Get Your Private, Free E-mail from MSN Hotmail at http://www.hotmail.com. Share information about yourself, create your own public profile at http://profiles.msn.com. _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: a question about "enable secret 5 abcd1234"
see http://www.alcrypto.co.uk/cisco/ Taco. -Original Message- From: cslx [mailto:[EMAIL PROTECTED]] Sent: Thursday, November 16, 2000 9:58 AM To: [EMAIL PROTECTED] Subject: a question about "enable secret 5 abcd1234" the present question is : I know the password's encrypted text is abcd1234,but how can I know the clear text of the encrypted text "abcd1234"?that is to say, how can I know the real password?could someone tell me?thanx a lot _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: a question about "enable secret 5 abcd1234"
thanx,but now I don't know the enable password of this router,is there any way except clear the password? thanx "W Jones" <[EMAIL PROTECTED]> wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > What you need to do is this. > > enter config mode. > type in no service password-encryption. > save what you just did and you should be able to see the en pass in clear > text. > > > W J. > > > > >From: "cslx" <[EMAIL PROTECTED]> > >Reply-To: "cslx" <[EMAIL PROTECTED]> > >To: [EMAIL PROTECTED] > >Subject: a question about "enable secret 5 abcd1234" > >Date: Thu, 16 Nov 2000 16:58:00 +0800 > > > >the present question is : > >I know the password's encrypted text is abcd1234,but how can I know the > >clear text of the encrypted text "abcd1234"?that is to say, how can I know > >the real password?could someone tell me?thanx a lot > > > > > >_ > >FAQ, list archives, and subscription info: > >http://www.groupstudy.com/list/cisco.html > >Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] > > _ > Get Your Private, Free E-mail from MSN Hotmail at http://www.hotmail.com. > > Share information about yourself, create your own public profile at > http://profiles.msn.com. > > _ > FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] > _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: a question about "enable secret 5 abcd1234"
What you need to do is this. enter config mode. type in no service password-encryption. save what you just did and you should be able to see the en pass in clear text. W J. >From: "cslx" <[EMAIL PROTECTED]> >Reply-To: "cslx" <[EMAIL PROTECTED]> >To: [EMAIL PROTECTED] >Subject: a question about "enable secret 5 abcd1234" >Date: Thu, 16 Nov 2000 16:58:00 +0800 > >the present question is : >I know the password's encrypted text is abcd1234,but how can I know the >clear text of the encrypted text "abcd1234"?that is to say, how can I know >the real password?could someone tell me?thanx a lot > > >_ >FAQ, list archives, and subscription info: >http://www.groupstudy.com/list/cisco.html >Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ Get Your Private, Free E-mail from MSN Hotmail at http://www.hotmail.com. Share information about yourself, create your own public profile at http://profiles.msn.com. _ FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: A question about IPSec
Each protocol also has a number, a few other people posted links to lists of those protocol numbers. In an access list, you can specify them like this: access-list 102 permit tcp 192.168.1.0 0.0.0.255 192.168.100.0 0.0.0.255 This would allow all TCP traffic to go from 192.168.1.0 subnet over to the 192.168.100.0 subnet... pretty standard access list command. In that command, the keyword tcp (access-list 102 permit TCP...) specifies the protocol in use. If you want to allow protcol #50 instead... you would do something like access-list 102 permit 50 192.168.1.0 0.0.0.255 192.168.100.0 0.0.0.255 Or something to that effect. Just substitute the # of the protocol in where you would normally put "tcp" or "udp" or "ip". Hope this helps, Travis Gamble > -Original Message- > From: George Zhang > Sent: 31 August 2000 15:33 > To: [EMAIL PROTECTED] > Subject: A question about IPSec > > I read the following form Cisco documentation about IPSec: > > "IKE uses UDP port 500. The IPSec ESP and AH protocols use > PROTOCOL > numbers 50 and 51. Ensure that your access-list are > configured so that > 50, 51 and UDP port 500 traffic is not blocked ..." > > My question is, what are the PROTOCOL numbers? This is the > first time I > read or heard about "PROTOCOL number"? I know many > protocols by names > such as TCP, UDP, ICMP etc, by I have never heard about > PROTOCOL > numbers? What protocols 50 and 51 are associated with? > Could someone > please explain that to me? Thanks. > > George Zhang, CCNP > > > ___ > UPDATED Posting Guidelines: > http://www.groupstudy.com/list/guide.html > FAQ, list archives, and subscription info: > http://www.groupstudy.com > Report misconduct and Nondisclosure violations to > [EMAIL PROTECTED] > > > > > The information in this e-mail is confidential to the ordinary user of the > e-mail address to which it was addressed. If you receive it in error, you > should not use or disseminate the information in it; instead, please e-mail > it back to the sender then delete the message from your system. > > Internet communications are not 100% secure and it is the responsibility of > the recipient to ensure that this email has not been tampered with and that > its attachments are virus free. > > > > > > > ___ > UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html > FAQ, list archives, and subscription info: http://www.groupstudy.com > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] > ___ UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html FAQ, list archives, and subscription info: http://www.groupstudy.com Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: A question about IPSec
from http://www.isi.edu/in-notes/iana/assignments/protocol-numbers PROTOCOL NUMBERS In the Internet Protocol version 4 (IPv4) [RFC791] there is a field, called "Protocol", to identify the next level protocol. This is an 8 bit field. In Internet Protocol version 6 (IPv6) [RFC1883] this field is called the "Next Header" field. Stefano > -Original Message- > From: George Zhang [mailto:[EMAIL PROTECTED]] > Sent: giovedì 31 agosto 2000 16.33 > To: [EMAIL PROTECTED] > Subject: A question about IPSec > > > I read the following form Cisco documentation about IPSec: > > "IKE uses UDP port 500. The IPSec ESP and AH protocols use PROTOCOL > numbers 50 and 51. Ensure that your access-list are > configured so that > 50, 51 and UDP port 500 traffic is not blocked ..." > > My question is, what are the PROTOCOL numbers? This is the > first time I > read or heard about "PROTOCOL number"? I know many protocols by names > such as TCP, UDP, ICMP etc, by I have never heard about PROTOCOL > numbers? What protocols 50 and 51 are associated with? Could someone > please explain that to me? Thanks. > > George Zhang, CCNP > > > ___ > UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html > FAQ, list archives, and subscription info: http://www.groupstudy.com > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] > ___ UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html FAQ, list archives, and subscription info: http://www.groupstudy.com Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: A question about IPSec
Hi George, Hi Group, The protovol-number is a 8-bit field in the IP-Header and defines the Protocol that the packet encapsulated in the ip-header uses. Common Protocol Numbers: 1 ICMP 6 TCP 17 UDP 88 IGRP 89 OSPF You can find the complete reference at http://www.isi.edu/in-notes/iana/assignments/protocol-numbers hth Reinhold -- Reinhold Fischer CCNP/SCSA/HP Certified Consultant for Network Management On Thu, 31 Aug 2000, George Zhang wrote: > I read the following form Cisco documentation about IPSec: > > "IKE uses UDP port 500. The IPSec ESP and AH protocols use PROTOCOL > numbers 50 and 51. Ensure that your access-list are configured so that > 50, 51 and UDP port 500 traffic is not blocked ..." > > My question is, what are the PROTOCOL numbers? This is the first time I > read or heard about "PROTOCOL number"? I know many protocols by names > such as TCP, UDP, ICMP etc, by I have never heard about PROTOCOL > numbers? What protocols 50 and 51 are associated with? Could someone > please explain that to me? Thanks. > > George Zhang, CCNP > > > ___ > UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html > FAQ, list archives, and subscription info: http://www.groupstudy.com > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] > > ___ UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html FAQ, list archives, and subscription info: http://www.groupstudy.com Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: A question about IPSec
>From the IANA: "In the Internet Protocol (IP) [DDN], [RFC791] there is a field, called Protocol, to identify the next level protocol. This is an 8 bit field." Look here: http://www.isi.edu/in-notes/iana/assignments/protocol-numbers for all the gory details... Dale [=`) >From: George Zhang <[EMAIL PROTECTED]> >Reply-To: George Zhang <[EMAIL PROTECTED]> >To: [EMAIL PROTECTED] >Subject: A question about IPSec >Date: Thu, 31 Aug 2000 09:33:24 -0500 > >I read the following form Cisco documentation about IPSec: > >"IKE uses UDP port 500. The IPSec ESP and AH protocols use PROTOCOL >numbers 50 and 51. Ensure that your access-list are configured so that >50, 51 and UDP port 500 traffic is not blocked ..." > >My question is, what are the PROTOCOL numbers? This is the first time I >read or heard about "PROTOCOL number"? I know many protocols by names >such as TCP, UDP, ICMP etc, by I have never heard about PROTOCOL >numbers? What protocols 50 and 51 are associated with? Could someone >please explain that to me? Thanks. > >George Zhang, CCNP > > >___ >UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html >FAQ, list archives, and subscription info: http://www.groupstudy.com >Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] _ Get Your Private, Free E-mail from MSN Hotmail at http://www.hotmail.com. Share information about yourself, create your own public profile at http://profiles.msn.com. ___ UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html FAQ, list archives, and subscription info: http://www.groupstudy.com Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: A question about IPSec
Are they not the port numbers? -Original Message- From: George Zhang Sent: 31 August 2000 15:33 To: [EMAIL PROTECTED] Subject:A question about IPSec I read the following form Cisco documentation about IPSec: "IKE uses UDP port 500. The IPSec ESP and AH protocols use PROTOCOL numbers 50 and 51. Ensure that your access-list are configured so that 50, 51 and UDP port 500 traffic is not blocked ..." My question is, what are the PROTOCOL numbers? This is the first time I read or heard about "PROTOCOL number"? I know many protocols by names such as TCP, UDP, ICMP etc, by I have never heard about PROTOCOL numbers? What protocols 50 and 51 are associated with? Could someone please explain that to me? Thanks. George Zhang, CCNP ___ UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html FAQ, list archives, and subscription info: http://www.groupstudy.com Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] > The information in this e-mail is confidential to the ordinary user of the e-mail address to which it was addressed. If you receive it in error, you should not use or disseminate the information in it; instead, please e-mail it back to the sender then delete the message from your system. Internet communications are not 100% secure and it is the responsibility of the recipient to ensure that this email has not been tampered with and that its attachments are virus free. > ___ UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html FAQ, list archives, and subscription info: http://www.groupstudy.com Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: a question about layer 2 switching
frank wrote: > > The following is cut from a CCNA book: > "FragmentFree is a modified form of cut-through switching ,in which > the switch waits for the collision window (64 bytes) to pass before > forwarding. If a packet has an error ,it almost always occurs > within the first 64 bytes." > > I want to know how the last sentence is concluded? > Any help would be appreciated. Without going into gory details, 64 bytes is the frame propagation time over a maximum length segment of the prefix of the frame. If a collision occurs after the first 64 bytes, it is a "late collision" in that by definition, if the network is to IEEE specifications, you should be able to detect a collision within the first 64 bytes. The "fragment free" avoids runts generated from collisions and the associated jam packets generated when a collision is detected so that they are not propagated. However, fragment free does nothing to check the IP CRC or TCP checksum (really only the former is relevant to a switch) so late collisions and CRC errors can still be propagated. Jeff Kell <[EMAIL PROTECTED]> ___ UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html FAQ, list archives, and subscription info: http://www.groupstudy.com Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: A question about CCNP Routing 2.0
You've answered your own question. - Original Message - From: "Tony Tan" <[EMAIL PROTECTED]> Newsgroups: groupstudy.cisco To: <[EMAIL PROTECTED]> Sent: Wednesday, June 14, 2000 11:32 AM Subject: A question about CCNP Routing 2.0 > After reviewing the Routing 2.0 Guide annouced by cisco, I wonder whether > cisco will test any aspects concerning IPX/SPX, appletalk, DDR etc, items > listed in ACRC guide. > > Anybody has practical experience? > > Thanks in advance! > > Tony > > > ___ > UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html > FAQ, list archives, and subscription info: http://www.groupstudy.com > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] __ Do You Yahoo!? Talk to your friends online with Yahoo! Messenger. http://im.yahoo.com ___ UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html FAQ, list archives, and subscription info: http://www.groupstudy.com Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: a question about ip connectivity
Sorry. Been away awhile. >after dial our change to > 167.65.104.0 255.255.255.0 167.65.104.42 167.65.104.42 2 > 167.65.104.0 255.255.255.0 167.65.107.12 167.65.107.12 1 ---^ Looks to me like a bug or misconfig somewhere. This second line could only be correct if the mask were 255.255.252.0. Notice that if the dial-in server mask were really /22 (255.255.252.0), then 167.65.107.12 *would* be in subnet 167.65.104.0 255.255.252.0 Maybe DUN's seeing already a /24 mask for 167.65.104.0 and has a bug or something. In that case, I would *expect* the routing table to look like: 167.65.104.0 255.255.255.0 167.65.104.42 167.65.104.42 2 167.65.104.0 255.255.252.0 167.65.107.12 167.65.107.12 1 ---^ and the first route to be used, instead of the second (longer prefix). You didn't answer the question about what OS and, if it's Win95, whether you're using DUN 1.3 or not. - Tks | <mailto:[EMAIL PROTECTED]> BV | <mailto:[EMAIL PROTECTED]> Sr. Technical Consultant, SBM, A Gates/Arrow Co. Vox 770-623-3430 11455 Lakefield Dr. Fax 770-623-3429 Duluth, GA 30097-1511 = -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Cai, Land Sent: Tuesday, May 30, 2000 11:23 PM To: '[EMAIL PROTECTED]'; CISCO_GroupStudy (E-mail) Cc: Cai, Land Subject: RE: a question about ip connectivity Bob, Thanks for your detailed posting. The internal LAN segment has same B class network as dial-up, it 's because I dial to our dial in server located in the other branch office(not dail to internet). We set the ip network to B class, while use 24 prefix to subnet it. Now I have resolved this problem. I noticed that after dial out, the routing table of the PC be affected, as follows: Before dial out 167.65.104.0 255.255.255.0 167.65.104.42 167.65.104.42 1 after dial our change to 167.65.104.0 255.255.255.0 167.65.104.42 167.65.104.42 2 167.65.104.0 255.255.255.0 167.65.107.12 167.65.107.12 1 note, 167.65.107.12 is gotten from PPP server IP pool. 167.65.104.42 is Ethernet Card IP addr. Can you explain why this route table be updated to this appearance. And why this happen? Thanks, Cai, land CCNA... -Original Message- From: Bob Vance [mailto:[EMAIL PROTECTED]] Sent: Tuesday, May 30, 2000 10:27 PM To: CISCO_GroupStudy (E-mail) Cc: 'Cai, Land' Subject:RE: a question about ip connectivity What OS are you running on the desktop? If Win95, upgrade to MS DUN 1.3. What does route print show, both before and after the dial-up connection. What is the netmask on your LAN IP address? You shouldn't have to do anything to have access *to* the Ethernet LAN *and* the dial-up network at the same time. You will get a default gateway that will allow access to Internet sites thru the dial-up, but it shouldn't break access *to* the LAN side -- you should still be able to access anything on the LAN side. I do this every day -- in fact that is how I am connected to send this post. I am on a PC on the LAN in my house, talking *through* a Win95 PC (running NAT software) that has a LAN card *and* has made a dial-up connection to the Internet. This "NAT" PC talks to both the internal LAN and the Internet. The only thing that I see different in your case, is that the LAN is a subnet of the *same* Class B network as the dial-up. NIC = 167.65.104.42 PPP = 167.65.107.12 I would assume that both prefixes are /24, but (and I'm not gonna test it), but perhaps DUN has a problem with using subnets of the same Classful network for the LAN and the dial-up. In my case the PPP "network" is 10 and the LAN is 192.168.1 -- totally different and no possibility of confusion. BTW, how is that your internal LAN has the same Class B network address as the dial-up? Now, one final point: Joe used the word "across" the LAN (while I specifically said, "to"), and he would obviously be correct. If you were going to access another "internal" subnet, besides 167.65.104.0/24, say, 167.65.200.0/24, then, of course, you'd need to have a router on your LAN to that subnet *and* add a static route on the PC to that subnet (route add ...) thru that router. >From your post, however, I did not take this last situation to be your problem. It seems that you couldn't connect to *other* 167.65.104.X guys. - Tks| <mailto:[EMAIL PROTECTED]> BV | <mailto:[EMAIL PROTECTED]> Sr. Technical Consultant, SBM, A Gates/Arrow Co. Vox 770-623-3430 11455 Lakefield Dr. Fax 770-623-3429 Duluth, GA 30097-1511 = -Original Message- F
Re: a question about ip connectivity
What did you expect it to look like? is it affecting anthying ? Your bridging over the modem. No problem i can see.. NK "Cai, Land" wrote: > > Bob, > > Thanks for your detailed posting. The internal LAN segment has same B class > network as dial-up, it 's because I dial to our dial in server located in > the other branch office(not dail to internet). We set the ip network to B > class, while use 24 prefix to subnet it. Now I have resolved this problem. > I noticed that after dial out, the routing table of the PC be affected, as > follows: > > Before dial out > 167.65.104.0 255.255.255.0 167.65.104.42 167.65.104.42 1 > after dial our change to > 167.65.104.0 255.255.255.0 167.65.104.42 167.65.104.42 2 > 167.65.104.0 255.255.255.0 167.65.107.12 167.65.107.12 1 > > note, 167.65.107.12 is gotten from PPP server IP pool. > 167.65.104.42 is Ethernet Card IP addr. > Can you explain why this route table be updated to this appearance. And why > this happen? > > Thanks, > Cai, land > CCNA... > > -Original Message- > From: Bob Vance [mailto:[EMAIL PROTECTED]] > Sent: Tuesday, May 30, 2000 10:27 PM > To: CISCO_GroupStudy (E-mail) > Cc: 'Cai, Land' > Subject:RE: a question about ip connectivity > > What OS are you running on the desktop? > If Win95, upgrade to MS DUN 1.3. > > What does > route print > show, both before and after the dial-up connection. > What is the netmask on your LAN IP address? > > You shouldn't have to do anything to have access *to* the Ethernet LAN > *and* the dial-up network at the same time. > You will get a default gateway that will allow access to Internet > sites thru the dial-up, but it shouldn't break access *to* the LAN > side -- you should still be able to access anything on the LAN side. > > I do this every day -- in fact that is how I am connected to send this > post. I am on a PC on the LAN in my house, talking *through* a Win95 PC > (running NAT software) that has a LAN card *and* has made a dial-up > connection to the Internet. This "NAT" PC talks to both the internal > LAN and the Internet. > > The only thing that I see different in your case, is that the LAN is > a subnet of the *same* Class B network as the dial-up. > NIC = 167.65.104.42 > PPP = 167.65.107.12 > I would assume that both prefixes are /24, but (and I'm not gonna test > it), but perhaps DUN has a problem with using subnets of the same > Classful network for the LAN and the dial-up. > In my case the PPP "network" is 10 and the LAN is 192.168.1 -- > totally different and no possibility of confusion. > > BTW, how is that your internal LAN has the same Class B network address > as the dial-up? > > Now, one final point: > Joe used the word "across" the LAN (while I specifically said, "to"), > and he would obviously be correct. > If you were going to access another "internal" subnet, besides > 167.65.104.0/24, say, 167.65.200.0/24, then, of course, you'd need > to have a router on your LAN to that subnet *and* add a static route on > the PC to that subnet (route add ...) thru that router. > > From your post, however, I did not take this last situation to be your > problem. It seems that you couldn't connect to *other* 167.65.104.X > guys. > > - > Tks| <mailto:[EMAIL PROTECTED]> > BV | <mailto:[EMAIL PROTECTED]> > Sr. Technical Consultant, SBM, A Gates/Arrow Co. > Vox 770-623-3430 11455 Lakefield Dr. > Fax 770-623-3429 Duluth, GA 30097-1511 > = > > -Original Message- > From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of > Joe Martin > Sent: Wednesday, May 24, 2000 8:42 AM > To: [EMAIL PROTECTED] > Subject: Re: a question about ip connectivity > > When you dial-up, a new default gateway is dynamically added into your > workstation to point to the dialup gateway. To continue to allow access > across your LAN also, you will need to have routes to your lan segments. > These routes could be added statically or could be learned dynamically > thru > a routing protocol. > > JOE > CCNP, CCDP, and a few other things... > CCIE Lab - May 27/28 > > ""Cai, Land"" <[EMAIL PROTECTED]> wrote in message > [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > > Sorry for made a mistake, the IP add of ether Card is 167.65.104.42. > > > > -Original Message- > > From: Andrew Larkins [mailto:[EMAIL PROTECTED]] > > Sent: Wednesday,
RE: a question about ip connectivity
Bob, Thanks for your detailed posting. The internal LAN segment has same B class network as dial-up, it 's because I dial to our dial in server located in the other branch office(not dail to internet). We set the ip network to B class, while use 24 prefix to subnet it. Now I have resolved this problem. I noticed that after dial out, the routing table of the PC be affected, as follows: Before dial out 167.65.104.0 255.255.255.0 167.65.104.42 167.65.104.42 1 after dial our change to 167.65.104.0 255.255.255.0 167.65.104.42 167.65.104.42 2 167.65.104.0 255.255.255.0 167.65.107.12 167.65.107.12 1 note, 167.65.107.12 is gotten from PPP server IP pool. 167.65.104.42 is Ethernet Card IP addr. Can you explain why this route table be updated to this appearance. And why this happen? Thanks, Cai, land CCNA... -Original Message- From: Bob Vance [mailto:[EMAIL PROTECTED]] Sent: Tuesday, May 30, 2000 10:27 PM To: CISCO_GroupStudy (E-mail) Cc: 'Cai, Land' Subject: RE: a question about ip connectivity What OS are you running on the desktop? If Win95, upgrade to MS DUN 1.3. What does route print show, both before and after the dial-up connection. What is the netmask on your LAN IP address? You shouldn't have to do anything to have access *to* the Ethernet LAN *and* the dial-up network at the same time. You will get a default gateway that will allow access to Internet sites thru the dial-up, but it shouldn't break access *to* the LAN side -- you should still be able to access anything on the LAN side. I do this every day -- in fact that is how I am connected to send this post. I am on a PC on the LAN in my house, talking *through* a Win95 PC (running NAT software) that has a LAN card *and* has made a dial-up connection to the Internet. This "NAT" PC talks to both the internal LAN and the Internet. The only thing that I see different in your case, is that the LAN is a subnet of the *same* Class B network as the dial-up. NIC = 167.65.104.42 PPP = 167.65.107.12 I would assume that both prefixes are /24, but (and I'm not gonna test it), but perhaps DUN has a problem with using subnets of the same Classful network for the LAN and the dial-up. In my case the PPP "network" is 10 and the LAN is 192.168.1 -- totally different and no possibility of confusion. BTW, how is that your internal LAN has the same Class B network address as the dial-up? Now, one final point: Joe used the word "across" the LAN (while I specifically said, "to"), and he would obviously be correct. If you were going to access another "internal" subnet, besides 167.65.104.0/24, say, 167.65.200.0/24, then, of course, you'd need to have a router on your LAN to that subnet *and* add a static route on the PC to that subnet (route add ...) thru that router. >From your post, however, I did not take this last situation to be your problem. It seems that you couldn't connect to *other* 167.65.104.X guys. - Tks| <mailto:[EMAIL PROTECTED]> BV | <mailto:[EMAIL PROTECTED]> Sr. Technical Consultant, SBM, A Gates/Arrow Co. Vox 770-623-3430 11455 Lakefield Dr. Fax 770-623-3429 Duluth, GA 30097-1511 = -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Joe Martin Sent: Wednesday, May 24, 2000 8:42 AM To: [EMAIL PROTECTED] Subject: Re: a question about ip connectivity When you dial-up, a new default gateway is dynamically added into your workstation to point to the dialup gateway. To continue to allow access across your LAN also, you will need to have routes to your lan segments. These routes could be added statically or could be learned dynamically thru a routing protocol. JOE CCNP, CCDP, and a few other things... CCIE Lab - May 27/28 ""Cai, Land"" <[EMAIL PROTECTED]> wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > Sorry for made a mistake, the IP add of ether Card is 167.65.104.42. > > -----Original Message- > From: Andrew Larkins [mailto:[EMAIL PROTECTED]] > Sent: Wednesday, May 24, 2000 6:24 PM > To: Cai, Land > Subject: RE: a question about ip connectivity > > you need a route to the other subnet... > > Andrew Larkins > Usko Communications > Tel: +2711 236-8000 > Fax: +2711 236-8350 > Cell: +2783-656-7214 > Email: [EMAIL PROTECTED] > > > "This message may contain information which is confidential and subject to > legal privilege. If you are not the intended recipient, you may not peruse, > use, disseminate, distribute or copy this message. If you have received > this message in error, please notify the sender immediately by email, > facsimile or telephone and return and/or destroy the origi
RE: a question about ip connectivity
What OS are you running on the desktop? If Win95, upgrade to MS DUN 1.3. What does route print show, both before and after the dial-up connection. What is the netmask on your LAN IP address? You shouldn't have to do anything to have access *to* the Ethernet LAN *and* the dial-up network at the same time. You will get a default gateway that will allow access to Internet sites thru the dial-up, but it shouldn't break access *to* the LAN side -- you should still be able to access anything on the LAN side. I do this every day -- in fact that is how I am connected to send this post. I am on a PC on the LAN in my house, talking *through* a Win95 PC (running NAT software) that has a LAN card *and* has made a dial-up connection to the Internet. This "NAT" PC talks to both the internal LAN and the Internet. The only thing that I see different in your case, is that the LAN is a subnet of the *same* Class B network as the dial-up. NIC = 167.65.104.42 PPP = 167.65.107.12 I would assume that both prefixes are /24, but (and I'm not gonna test it), but perhaps DUN has a problem with using subnets of the same Classful network for the LAN and the dial-up. In my case the PPP "network" is 10 and the LAN is 192.168.1 -- totally different and no possibility of confusion. BTW, how is that your internal LAN has the same Class B network address as the dial-up? Now, one final point: Joe used the word "across" the LAN (while I specifically said, "to"), and he would obviously be correct. If you were going to access another "internal" subnet, besides 167.65.104.0/24, say, 167.65.200.0/24, then, of course, you'd need to have a router on your LAN to that subnet *and* add a static route on the PC to that subnet (route add ...) thru that router. >From your post, however, I did not take this last situation to be your problem. It seems that you couldn't connect to *other* 167.65.104.X guys. - Tks | <mailto:[EMAIL PROTECTED]> BV | <mailto:[EMAIL PROTECTED]> Sr. Technical Consultant, SBM, A Gates/Arrow Co. Vox 770-623-3430 11455 Lakefield Dr. Fax 770-623-3429 Duluth, GA 30097-1511 = -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Joe Martin Sent: Wednesday, May 24, 2000 8:42 AM To: [EMAIL PROTECTED] Subject: Re: a question about ip connectivity When you dial-up, a new default gateway is dynamically added into your workstation to point to the dialup gateway. To continue to allow access across your LAN also, you will need to have routes to your lan segments. These routes could be added statically or could be learned dynamically thru a routing protocol. JOE CCNP, CCDP, and a few other things... CCIE Lab - May 27/28 ""Cai, Land"" <[EMAIL PROTECTED]> wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > Sorry for made a mistake, the IP add of ether Card is 167.65.104.42. > > -Original Message- > From: Andrew Larkins [mailto:[EMAIL PROTECTED]] > Sent: Wednesday, May 24, 2000 6:24 PM > To: Cai, Land > Subject: RE: a question about ip connectivity > > you need a route to the other subnet... > > Andrew Larkins > Usko Communications > Tel: +2711 236-8000 > Fax: +2711 236-8350 > Cell: +2783-656-7214 > Email: [EMAIL PROTECTED] > > > "This message may contain information which is confidential and subject to > legal privilege. If you are not the intended recipient, you may not peruse, > use, disseminate, distribute or copy this message. If you have received > this message in error, please notify the sender immediately by email, > facsimile or telephone and return and/or destroy the original message." > > > > > -Original Message- > From: Cai, Land [mailto:[EMAIL PROTECTED]] > Sent: 24 May 2000 10:57 > To: Cisco (E-mail) > Subject: a question about ip connectivity > > > Hi, > > Supposed to have a desktop, whose ether Card ip is 167.65.107.42 and > have a smooth IP connectivity with other hosts. Now I need to dial up to > PPP server, and get the IP 167.65.107.12. But at this time, I can only do > ping 167.65.107.X, while can't ping 167.65.104.X. That's why? And how to > enable to ping the both IP segments. All the mask is 255.255.255.0. > > Thanks in advance. > CCNA, MSCE. > > Cai, land > > ___ > UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html > FAQ, list archives, and subscription info: http://www.groupstudy.com > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] > > ___ > UPDATED Posting Guidelines: http://ww
Re: a question about ip connectivity
When you dial-up, a new default gateway is dynamically added into your workstation to point to the dialup gateway. To continue to allow access across your LAN also, you will need to have routes to your lan segments. These routes could be added statically or could be learned dynamically thru a routing protocol. JOE CCNP, CCDP, and a few other things... CCIE Lab - May 27/28 ""Cai, Land"" <[EMAIL PROTECTED]> wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > Sorry for made a mistake, the IP add of ether Card is 167.65.104.42. > > -Original Message- > From: Andrew Larkins [mailto:[EMAIL PROTECTED]] > Sent: Wednesday, May 24, 2000 6:24 PM > To: Cai, Land > Subject: RE: a question about ip connectivity > > you need a route to the other subnet... > > Andrew Larkins > Usko Communications > Tel: +2711 236-8000 > Fax: +2711 236-8350 > Cell: +2783-656-7214 > Email: [EMAIL PROTECTED] > > > "This message may contain information which is confidential and subject to > legal privilege. If you are not the intended recipient, you may not peruse, > use, disseminate, distribute or copy this message. If you have received > this message in error, please notify the sender immediately by email, > facsimile or telephone and return and/or destroy the original message." > > > > > -Original Message- > From: Cai, Land [mailto:[EMAIL PROTECTED]] > Sent: 24 May 2000 10:57 > To: Cisco (E-mail) > Subject: a question about ip connectivity > > > Hi, > > Supposed to have a desktop, whose ether Card ip is 167.65.107.42 and > have a smooth IP connectivity with other hosts. Now I need to dial up to > PPP server, and get the IP 167.65.107.12. But at this time, I can only do > ping 167.65.107.X, while can't ping 167.65.104.X. That's why? And how to > enable to ping the both IP segments. All the mask is 255.255.255.0. > > Thanks in advance. > CCNA, MSCE. > > Cai, land > > ___ > UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html > FAQ, list archives, and subscription info: http://www.groupstudy.com > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] > > ___ > UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html > FAQ, list archives, and subscription info: http://www.groupstudy.com > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] > --- ___ UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html FAQ, list archives, and subscription info: http://www.groupstudy.com Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: a question about ip connectivity
Sounds like your station cannot ping to other networks. Check that there is a default gateway configured on your station - it should point at the local router's ip address which should be in the form 167.65.107.x regards, Cormac http://www.cormaclong.com --- "Cai, Land" <[EMAIL PROTECTED]> wrote: > Hi, > > Supposed to have a desktop, whose ether Card ip > is 167.65.107.42 and > have a smooth IP connectivity with other hosts. Now > I need to dial up to > PPP server, and get the IP 167.65.107.12. But at > this time, I can only do > ping 167.65.107.X, while can't ping 167.65.104.X. > That's why? And how to > enable to ping the both IP segments. All the mask > is 255.255.255.0. > > Thanks in advance. > CCNA, MSCE. > > Cai, land > > ___ > UPDATED Posting Guidelines: > http://www.groupstudy.com/list/guide.html > FAQ, list archives, and subscription info: > http://www.groupstudy.com > Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] = http://www.cormaclong.com __ Do You Yahoo!? Send instant messages & get email alerts with Yahoo! Messenger. http://im.yahoo.com/ ___ UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html FAQ, list archives, and subscription info: http://www.groupstudy.com Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: a question about ip connectivity
Sorry for made a mistake, the IP add of ether Card is 167.65.104.42. -Original Message- From: Andrew Larkins [mailto:[EMAIL PROTECTED]] Sent: Wednesday, May 24, 2000 6:24 PM To: Cai, Land Subject:RE: a question about ip connectivity you need a route to the other subnet... Andrew Larkins Usko Communications Tel: +2711 236-8000 Fax: +2711 236-8350 Cell: +2783-656-7214 Email: [EMAIL PROTECTED] "This message may contain information which is confidential and subject to legal privilege. If you are not the intended recipient, you may not peruse, use, disseminate, distribute or copy this message. If you have received this message in error, please notify the sender immediately by email, facsimile or telephone and return and/or destroy the original message." -Original Message- From: Cai, Land [mailto:[EMAIL PROTECTED]] Sent: 24 May 2000 10:57 To: Cisco (E-mail) Subject: a question about ip connectivity Hi, Supposed to have a desktop, whose ether Card ip is 167.65.107.42 and have a smooth IP connectivity with other hosts. Now I need to dial up to PPP server, and get the IP 167.65.107.12. But at this time, I can only do ping 167.65.107.X, while can't ping 167.65.104.X. That's why? And how to enable to ping the both IP segments. All the mask is 255.255.255.0. Thanks in advance. CCNA, MSCE. Cai, land ___ UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html FAQ, list archives, and subscription info: http://www.groupstudy.com Report misconduct and Nondisclosure violations to [EMAIL PROTECTED] ___ UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html FAQ, list archives, and subscription info: http://www.groupstudy.com Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]