Re: HELP!! The Cisco Code & Windows XP [7:16604]
One XP machine also took out about half of AMD's Huston campus about 5 months ago. It does more that just take out segments, It can take out a whole network !!! The next day AMD circulated a memo that anyone connecting an XP machine to the network would receive disciplinary action Wooops !! Tony (Sill working at 4am PST) - Original Message - From: "Charlie Hartwell" To: Sent: Wednesday, August 22, 2001 3:34 AM Subject: RE: HELP!! The Cisco Code & Windows XP [7:16604] > I might be repeating someone else here - I haven't followed the > thread completely. The vulnerability you are talking about is > documented in this field notice... > http://www.cisco.com/warp/public/707/cat5k-8021x-vuln-pub.shtml > > You have to be VERY careful when putting XP on your Cisco switched > LAN, make sure you have new code and/or new SUP's. The 802.1x > authentication option is also available on Win2k but it is disabled > by default, on the XP beta it is enabled by default (not sure if the > final release will be the same). It seems to boil down to STP ports > in "blocking" mode forwarding the 802.1x packets. It has the > potential to bring down a segment in double-quick time, just ask > Xerox, apparently just one curious engineer's PC managed that trick, > they now have a strict "NO XP!" policy on their network (allegedly). > > Regards > > Charlie > > --- Chuck Larrieu wrote: > I did a little more > checking on this. there is a known issue with > > XP clients > > and Catalyst 5000 switches with EARL 1 and certain software > > revisions. I may > > be misunderstanding this completely, but it is an issue with the > > interaction > > of the Cat 5K and XP when 802.1x port authentication is enabled. > > that got me > > to reading on 802.1x authentication. interesting. > > > > Chuck > > > > -----Original Message----- > > From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf > > Of > > Brian > > Sent: Tuesday, August 21, 2001 6:40 PM > > To: [EMAIL PROTECTED] > > Subject: RE: HELP!! The Cisco Code & Windows XP [7:16604] > > > > > > perhaps boss heard about the mstcp thread... > > > > Brian "Sonic" Whalen > > Success = Preparation + Opportunity > > > > > > On Tue, 21 Aug 2001, Chuck Larrieu wrote: > > > > > I'm sure you've had your fair share of smart remarks by now. So I > > won't > > add > > > my own. I will remark that in fairness to your boss, there is > > probably > > > something he has heard or read which caused him to look for > > reassurance. > > > > > > for example, is there a concern with VPN compatibility of > > operation using > > > Win XP VPN client software? is there a security concern based > > upon > > published > > > writings about the XP TCP stack? > > > > > > if the question is "will Cisco routers pass traffic generated by > > XP > > > machines?" the answer is "sure. why not" after all, there is > > nothing in an > > > IP or a TCP header that indicates the type of host OS that > > originates the > > > packet. as long as the traffic is contained in valid packets, the > > router > > > will pass process them. knowing that, may I recommend you sit > > down with > > the > > > boss and ask what his concerns are. what has he read? what has he > > heard? > > why > > > would he think there is reason to be concerned? hell, he could be > > a victim > > > of MBBW ( Management By Business Week - where the president of > > the company > > > saw something in Business Week Magazine over the weekend and on > > Monday > > > morning told your boss to investigate and come back with report. > > ;-> > > > > > > ( and yes, I know some bosses are "she" ) > > > > > > Chuck > > > > > > -Original Message- > > > From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On > > Behalf Of > > > Ray Smith > > > Sent: Monday, August 20, 2001 5:38 PM > > > To: [EMAIL PROTECTED] > > > Subject: HELP!! The Cisco Code & Windows XP [7:16604] > > > > > > > > > Guys, > > > > > > After my boss delegated me to research all I can about what is > > need to > > > upgrade if necessary our Cisco routers and switches to work with > > Windows-XP, > > > I was only able to assert from information on the web that there > > is a bug
RE: HELP!! The Cisco Code & Windows XP [7:16604]
I might be repeating someone else here - I haven't followed the thread completely. The vulnerability you are talking about is documented in this field notice... http://www.cisco.com/warp/public/707/cat5k-8021x-vuln-pub.shtml You have to be VERY careful when putting XP on your Cisco switched LAN, make sure you have new code and/or new SUP's. The 802.1x authentication option is also available on Win2k but it is disabled by default, on the XP beta it is enabled by default (not sure if the final release will be the same). It seems to boil down to STP ports in "blocking" mode forwarding the 802.1x packets. It has the potential to bring down a segment in double-quick time, just ask Xerox, apparently just one curious engineer's PC managed that trick, they now have a strict "NO XP!" policy on their network (allegedly). Regards Charlie --- Chuck Larrieu wrote: > I did a little more checking on this. there is a known issue with > XP clients > and Catalyst 5000 switches with EARL 1 and certain software > revisions. I may > be misunderstanding this completely, but it is an issue with the > interaction > of the Cat 5K and XP when 802.1x port authentication is enabled. > that got me > to reading on 802.1x authentication. interesting. > > Chuck > > -Original Message- > From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf > Of > Brian > Sent: Tuesday, August 21, 2001 6:40 PM > To: [EMAIL PROTECTED] > Subject: RE: HELP!! The Cisco Code & Windows XP [7:16604] > > > perhaps boss heard about the mstcp thread... > > Brian "Sonic" Whalen > Success = Preparation + Opportunity > > > On Tue, 21 Aug 2001, Chuck Larrieu wrote: > > > I'm sure you've had your fair share of smart remarks by now. So I > won't > add > > my own. I will remark that in fairness to your boss, there is > probably > > something he has heard or read which caused him to look for > reassurance. > > > > for example, is there a concern with VPN compatibility of > operation using > > Win XP VPN client software? is there a security concern based > upon > published > > writings about the XP TCP stack? > > > > if the question is "will Cisco routers pass traffic generated by > XP > > machines?" the answer is "sure. why not" after all, there is > nothing in an > > IP or a TCP header that indicates the type of host OS that > originates the > > packet. as long as the traffic is contained in valid packets, the > router > > will pass process them. knowing that, may I recommend you sit > down with > the > > boss and ask what his concerns are. what has he read? what has he > heard? > why > > would he think there is reason to be concerned? hell, he could be > a victim > > of MBBW ( Management By Business Week - where the president of > the company > > saw something in Business Week Magazine over the weekend and on > Monday > > morning told your boss to investigate and come back with report. > ;-> > > > > ( and yes, I know some bosses are "she" ) > > > > Chuck > > > > -Original Message- > > From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On > Behalf Of > > Ray Smith > > Sent: Monday, August 20, 2001 5:38 PM > > To: [EMAIL PROTECTED] > > Subject: HELP!! The Cisco Code & Windows XP [7:16604] > > > > > > Guys, > > > > After my boss delegated me to research all I can about what is > need to > > upgrade if necessary our Cisco routers and switches to work with > Windows-XP, > > I was only able to assert from information on the web that there > is a bug > in > > the switch software that is incompatible with XP. > > > > Does anyone here know of any valuable information that can help > me with > > compiling an educated assessment of this research? Is anyone out > there > > knowledgeable of this issue either from personal experience or > from > > literature? I would really appreciate some feedback. > > > > The only problems that I have actually heard of thus far is that > which > > occurred during the beta test that brought down one of Xerox's > network. I > > understand that there is a patch that is available as a fix, in > addition > to > > the option of upgrading the Switch code. My question is: - > > > > a). Does the incompatibility only exist with the Switch software > or with > the > > router IOS as > > well? > > > > b). Is the patch the best way of dealing with the problem? > > > > I appreciate any help that I can get
RE: HELP!! The Cisco Code & Windows XP [7:16604]
the research I did in thinking about this question a bit more deeply led me to the 802.1x port authentication issue. is it correct that Microsoft turns on everything under the sun by default, and leaves it to the befuddled LAN admins and bedeviled help desk and desktop support people to figure out why things all of a sudden are broken? Chuck -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Priscilla Oppenheimer Sent: Tuesday, August 21, 2001 10:20 AM To: [EMAIL PROTECTED] Subject: RE: HELP!! The Cisco Code & Windows XP [7:16604] I wish that Networking 101 was required in schools. Then even the Management by Business Week types would know about the 7 layers and that the operating system, which generally deals with local file management and I/O, should not matter when considering traffic going through routers and switches. In actuality, there may be issues because the TCP/IP stack and other protocols are part of the operating system and they could be buggy, but if they are standard and not buggy, then there shouldn't be an issue. I don't mean to flame the person that asked. It can't hurt to do some research, and there was that one bug with 802.1x security and Catalyst 5000 switches connecting PCs running Windows XP, but that kind of thing shouldn't happen. On the other hand, both Cisco and Microsoft like to take simple concepts (like bridging, etc.) and make them so complicated that bugs are bound to happen. We run an ISP among other things. I wish that our users would take the basic networking class also. This morning someone called and said she had an error message about running out of server space. So I talked to her about not keeping mail on the server. She said, "you mean I can't keep messages in my In Box?" Sigh. Networking 101 would have a short section on client/server architecture too. Sorry for the babbling. Haven't had my latte yet. Priscilla At 12:05 AM 8/21/01, Chuck Larrieu wrote: >I'm sure you've had your fair share of smart remarks by now. So I won't add >my own. I will remark that in fairness to your boss, there is probably >something he has heard or read which caused him to look for reassurance. > >for example, is there a concern with VPN compatibility of operation using >Win XP VPN client software? is there a security concern based upon published >writings about the XP TCP stack? > >if the question is "will Cisco routers pass traffic generated by XP >machines?" the answer is "sure. why not" after all, there is nothing in an >IP or a TCP header that indicates the type of host OS that originates the >packet. as long as the traffic is contained in valid packets, the router >will pass process them. knowing that, may I recommend you sit down with the >boss and ask what his concerns are. what has he read? what has he heard? why >would he think there is reason to be concerned? hell, he could be a victim >of MBBW ( Management By Business Week - where the president of the company >saw something in Business Week Magazine over the weekend and on Monday >morning told your boss to investigate and come back with report. ;-> > >( and yes, I know some bosses are "she" ) > >Chuck > >-Original Message- >From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of >Ray Smith >Sent: Monday, August 20, 2001 5:38 PM >To: [EMAIL PROTECTED] >Subject: HELP!! The Cisco Code & Windows XP [7:16604] > > >Guys, > >After my boss delegated me to research all I can about what is need to >upgrade if necessary our Cisco routers and switches to work with Windows-XP, >I was only able to assert from information on the web that there is a bug in >the switch software that is incompatible with XP. > >Does anyone here know of any valuable information that can help me with >compiling an educated assessment of this research? Is anyone out there >knowledgeable of this issue either from personal experience or from >literature? I would really appreciate some feedback. > >The only problems that I have actually heard of thus far is that which >occurred during the beta test that brought down one of Xerox's network. I >understand that there is a patch that is available as a fix, in addition to >the option of upgrading the Switch code. My question is: - > >a). Does the incompatibility only exist with the Switch software or with the >router IOS as > well? > >b). Is the patch the best way of dealing with the problem? > >I appreciate any help that I can get. Thanks > > >_ >Get your FREE download of MSN Explorer at http://explorer.msn.com/intl.asp Priscilla Oppenheimer http://www.priscilla.com Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=16763&t=16604 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: HELP!! The Cisco Code & Windows XP [7:16604]
I did a little more checking on this. there is a known issue with XP clients and Catalyst 5000 switches with EARL 1 and certain software revisions. I may be misunderstanding this completely, but it is an issue with the interaction of the Cat 5K and XP when 802.1x port authentication is enabled. that got me to reading on 802.1x authentication. interesting. Chuck -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Brian Sent: Tuesday, August 21, 2001 6:40 PM To: [EMAIL PROTECTED] Subject: RE: HELP!! The Cisco Code & Windows XP [7:16604] perhaps boss heard about the mstcp thread... Brian "Sonic" Whalen Success = Preparation + Opportunity On Tue, 21 Aug 2001, Chuck Larrieu wrote: > I'm sure you've had your fair share of smart remarks by now. So I won't add > my own. I will remark that in fairness to your boss, there is probably > something he has heard or read which caused him to look for reassurance. > > for example, is there a concern with VPN compatibility of operation using > Win XP VPN client software? is there a security concern based upon published > writings about the XP TCP stack? > > if the question is "will Cisco routers pass traffic generated by XP > machines?" the answer is "sure. why not" after all, there is nothing in an > IP or a TCP header that indicates the type of host OS that originates the > packet. as long as the traffic is contained in valid packets, the router > will pass process them. knowing that, may I recommend you sit down with the > boss and ask what his concerns are. what has he read? what has he heard? why > would he think there is reason to be concerned? hell, he could be a victim > of MBBW ( Management By Business Week - where the president of the company > saw something in Business Week Magazine over the weekend and on Monday > morning told your boss to investigate and come back with report. ;-> > > ( and yes, I know some bosses are "she" ) > > Chuck > > -Original Message- > From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of > Ray Smith > Sent: Monday, August 20, 2001 5:38 PM > To: [EMAIL PROTECTED] > Subject: HELP!! The Cisco Code & Windows XP [7:16604] > > > Guys, > > After my boss delegated me to research all I can about what is need to > upgrade if necessary our Cisco routers and switches to work with Windows-XP, > I was only able to assert from information on the web that there is a bug in > the switch software that is incompatible with XP. > > Does anyone here know of any valuable information that can help me with > compiling an educated assessment of this research? Is anyone out there > knowledgeable of this issue either from personal experience or from > literature? I would really appreciate some feedback. > > The only problems that I have actually heard of thus far is that which > occurred during the beta test that brought down one of Xerox's network. I > understand that there is a patch that is available as a fix, in addition to > the option of upgrading the Switch code. My question is: - > > a). Does the incompatibility only exist with the Switch software or with the > router IOS as > well? > > b). Is the patch the best way of dealing with the problem? > > I appreciate any help that I can get. Thanks > > > _ > Get your FREE download of MSN Explorer at http://explorer.msn.com/intl.asp Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=16761&t=16604 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: HELP!! The Cisco Code & Windows XP [7:16604]
perhaps boss heard about the mstcp thread... Brian "Sonic" Whalen Success = Preparation + Opportunity On Tue, 21 Aug 2001, Chuck Larrieu wrote: > I'm sure you've had your fair share of smart remarks by now. So I won't add > my own. I will remark that in fairness to your boss, there is probably > something he has heard or read which caused him to look for reassurance. > > for example, is there a concern with VPN compatibility of operation using > Win XP VPN client software? is there a security concern based upon published > writings about the XP TCP stack? > > if the question is "will Cisco routers pass traffic generated by XP > machines?" the answer is "sure. why not" after all, there is nothing in an > IP or a TCP header that indicates the type of host OS that originates the > packet. as long as the traffic is contained in valid packets, the router > will pass process them. knowing that, may I recommend you sit down with the > boss and ask what his concerns are. what has he read? what has he heard? why > would he think there is reason to be concerned? hell, he could be a victim > of MBBW ( Management By Business Week - where the president of the company > saw something in Business Week Magazine over the weekend and on Monday > morning told your boss to investigate and come back with report. ;-> > > ( and yes, I know some bosses are "she" ) > > Chuck > > -Original Message- > From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of > Ray Smith > Sent: Monday, August 20, 2001 5:38 PM > To: [EMAIL PROTECTED] > Subject: HELP!! The Cisco Code & Windows XP [7:16604] > > > Guys, > > After my boss delegated me to research all I can about what is need to > upgrade if necessary our Cisco routers and switches to work with Windows-XP, > I was only able to assert from information on the web that there is a bug in > the switch software that is incompatible with XP. > > Does anyone here know of any valuable information that can help me with > compiling an educated assessment of this research? Is anyone out there > knowledgeable of this issue either from personal experience or from > literature? I would really appreciate some feedback. > > The only problems that I have actually heard of thus far is that which > occurred during the beta test that brought down one of Xerox's network. I > understand that there is a patch that is available as a fix, in addition to > the option of upgrading the Switch code. My question is: - > > a). Does the incompatibility only exist with the Switch software or with the > router IOS as > well? > > b). Is the patch the best way of dealing with the problem? > > I appreciate any help that I can get. Thanks > > > _ > Get your FREE download of MSN Explorer at http://explorer.msn.com/intl.asp Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=16751&t=16604 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: HELP!! The Cisco Code & Windows XP [7:16604]
the buisness guys only know about layers 8, 9 and 10... -humboldt -Original Message- From: Tom Lisa [mailto:[EMAIL PROTECTED]] Sent: Tuesday, August 21, 2001 5:15 PM To: [EMAIL PROTECTED] Subject: Re: HELP!! The Cisco Code & Windows XP [7:16604] Priscilla, I find that whiskey flavored lattes are best for Mondays & really stressful situations. Prof. Tom Lisa, CCAI Community College of Southern Nevada Cisco Regional Networking Academy Priscilla Oppenheimer wrote: > I wish that Networking 101 was required in schools. Then even the > Management by Business Week types would know about the 7 layers and that > the operating system, which generally deals with local file management and > I/O, should not matter when considering traffic going through routers and > switches. > > In actuality, there may be issues because the TCP/IP stack and other > protocols are part of the operating system and they could be buggy, but if > they are standard and not buggy, then there shouldn't be an issue. > > I don't mean to flame the person that asked. It can't hurt to do some > research, and there was that one bug with 802.1x security and Catalyst 5000 > switches connecting PCs running Windows XP, but that kind of thing > shouldn't happen. On the other hand, both Cisco and Microsoft like to take > simple concepts (like bridging, etc.) and make them so complicated that > bugs are bound to happen. > > We run an ISP among other things. I wish that our users would take the > basic networking class also. This morning someone called and said she had > an error message about running out of server space. So I talked to her > about not keeping mail on the server. She said, "you mean I can't keep > messages in my In Box?" Sigh. Networking 101 would have a short section on > client/server architecture too. > > Sorry for the babbling. Haven't had my latte yet. > > Priscilla > > At 12:05 AM 8/21/01, Chuck Larrieu wrote: > >I'm sure you've had your fair share of smart remarks by now. So I won't add > >my own. I will remark that in fairness to your boss, there is probably > >something he has heard or read which caused him to look for reassurance. > > > >for example, is there a concern with VPN compatibility of operation using > >Win XP VPN client software? is there a security concern based upon published > >writings about the XP TCP stack? > > > >if the question is "will Cisco routers pass traffic generated by XP > >machines?" the answer is "sure. why not" after all, there is nothing in an > >IP or a TCP header that indicates the type of host OS that originates the > >packet. as long as the traffic is contained in valid packets, the router > >will pass process them. knowing that, may I recommend you sit down with the > >boss and ask what his concerns are. what has he read? what has he heard? why > >would he think there is reason to be concerned? hell, he could be a victim > >of MBBW ( Management By Business Week - where the president of the company > >saw something in Business Week Magazine over the weekend and on Monday > >morning told your boss to investigate and come back with report. ;-> > > > >( and yes, I know some bosses are "she" ) > > > >Chuck > > > >-Original Message- > >From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of > >Ray Smith > >Sent: Monday, August 20, 2001 5:38 PM > >To: [EMAIL PROTECTED] > >Subject: HELP!! The Cisco Code & Windows XP [7:16604] > > > > > >Guys, > > > >After my boss delegated me to research all I can about what is need to > >upgrade if necessary our Cisco routers and switches to work with Windows-XP, > >I was only able to assert from information on the web that there is a bug in > >the switch software that is incompatible with XP. > > > >Does anyone here know of any valuable information that can help me with > >compiling an educated assessment of this research? Is anyone out there > >knowledgeable of this issue either from personal experience or from > >literature? I would really appreciate some feedback. > > > >The only problems that I have actually heard of thus far is that which > >occurred during the beta test that brought down one of Xerox's network. I > >understand that there is a patch that is available as a fix, in addition to > >the option of upgrading the Switch code. My question is: - > > > >a). Does the incompatibility only exist with the Switch software or with the > >router IOS as > > well? > > > >b). Is the patch the best way of dealing wit
Re: HELP!! The Cisco Code & Windows XP [7:16604]
Priscilla, I find that whiskey flavored lattes are best for Mondays & really stressful situations. Prof. Tom Lisa, CCAI Community College of Southern Nevada Cisco Regional Networking Academy Priscilla Oppenheimer wrote: > I wish that Networking 101 was required in schools. Then even the > Management by Business Week types would know about the 7 layers and that > the operating system, which generally deals with local file management and > I/O, should not matter when considering traffic going through routers and > switches. > > In actuality, there may be issues because the TCP/IP stack and other > protocols are part of the operating system and they could be buggy, but if > they are standard and not buggy, then there shouldn't be an issue. > > I don't mean to flame the person that asked. It can't hurt to do some > research, and there was that one bug with 802.1x security and Catalyst 5000 > switches connecting PCs running Windows XP, but that kind of thing > shouldn't happen. On the other hand, both Cisco and Microsoft like to take > simple concepts (like bridging, etc.) and make them so complicated that > bugs are bound to happen. > > We run an ISP among other things. I wish that our users would take the > basic networking class also. This morning someone called and said she had > an error message about running out of server space. So I talked to her > about not keeping mail on the server. She said, "you mean I can't keep > messages in my In Box?" Sigh. Networking 101 would have a short section on > client/server architecture too. > > Sorry for the babbling. Haven't had my latte yet. > > Priscilla > > At 12:05 AM 8/21/01, Chuck Larrieu wrote: > >I'm sure you've had your fair share of smart remarks by now. So I won't add > >my own. I will remark that in fairness to your boss, there is probably > >something he has heard or read which caused him to look for reassurance. > > > >for example, is there a concern with VPN compatibility of operation using > >Win XP VPN client software? is there a security concern based upon published > >writings about the XP TCP stack? > > > >if the question is "will Cisco routers pass traffic generated by XP > >machines?" the answer is "sure. why not" after all, there is nothing in an > >IP or a TCP header that indicates the type of host OS that originates the > >packet. as long as the traffic is contained in valid packets, the router > >will pass process them. knowing that, may I recommend you sit down with the > >boss and ask what his concerns are. what has he read? what has he heard? why > >would he think there is reason to be concerned? hell, he could be a victim > >of MBBW ( Management By Business Week - where the president of the company > >saw something in Business Week Magazine over the weekend and on Monday > >morning told your boss to investigate and come back with report. ;-> > > > >( and yes, I know some bosses are "she" ) > > > >Chuck > > > >-Original Message- > >From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of > >Ray Smith > >Sent: Monday, August 20, 2001 5:38 PM > >To: [EMAIL PROTECTED] > >Subject: HELP!! The Cisco Code & Windows XP [7:16604] > > > > > >Guys, > > > >After my boss delegated me to research all I can about what is need to > >upgrade if necessary our Cisco routers and switches to work with Windows-XP, > >I was only able to assert from information on the web that there is a bug in > >the switch software that is incompatible with XP. > > > >Does anyone here know of any valuable information that can help me with > >compiling an educated assessment of this research? Is anyone out there > >knowledgeable of this issue either from personal experience or from > >literature? I would really appreciate some feedback. > > > >The only problems that I have actually heard of thus far is that which > >occurred during the beta test that brought down one of Xerox's network. I > >understand that there is a patch that is available as a fix, in addition to > >the option of upgrading the Switch code. My question is: - > > > >a). Does the incompatibility only exist with the Switch software or with the > >router IOS as > > well? > > > >b). Is the patch the best way of dealing with the problem? > > > >I appreciate any help that I can get. Thanks > > > > > >_ > >Get your FREE download of MSN Explorer at http://explorer.msn.com/intl.asp > > > Priscilla Oppenheimer > http://www.priscilla.com Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=16731&t=16604 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: RE: HELP!! The Cisco Code & Windows XP [7:16604]
Glad you are still around, Chuck... :) The bug being referred to has to deal with the Catalyst 5500 switches, and early EARL versions... http://www.cisco.com/warp/public/707/cat5k-8021x-vuln-pub.shtml Basically, if you are going to roll out XP, you should be using the resource kit, and configuring the networking of the workstations to disable the 802.1X authentication en-masse... HTH, Brant... -Original Message- From: "Chuck Larrieu" To: [EMAIL PROTECTED] Date: Tue, 21 Aug 2001 00:05:14 -0400 Subject: RE: HELP!! The Cisco Code & Windows XP [7:16604] I'm sure you've had your fair share of smart remarks by now. So I won't add my own. I will remark that in fairness to your boss, there is probably something he has heard or read which caused him to look for reassurance. for example, is there a concern with VPN compatibility of operation using Win XP VPN client software? is there a security concern based upon published writings about the XP TCP stack? if the question is "will Cisco routers pass traffic generated by XP machines?" the answer is "sure. why not" after all, there is nothing in an IP or a TCP header that indicates the type of host OS that originates the packet. as long as the traffic is contained in valid packets, the router will pass process them. knowing that, may I recommend you sit down with the boss and ask what his concerns are. what has he read? what has he heard? why would he think there is reason to be concerned? hell, he could be a victim of MBBW ( Management By Business Week - where the president of the company saw something in Business Week Magazine over the weekend and on Monday morning told your boss to investigate and come back with report. ;-> ( and yes, I know some bosses are "she" ) Chuck -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Ray Smith Sent: Monday, August 20, 2001 5:38 PM To: [EMAIL PROTECTED] Subject: HELP!! The Cisco Code & Windows XP [7:16604] Guys, After my boss delegated me to research all I can about what is need to upgrade if necessary our Cisco routers and switches to work with Windows-XP, I was only able to assert from information on the web that there is a bug in the switch software that is incompatible with XP. Does anyone here know of any valuable information that can help me with compiling an educated assessment of this research? Is anyone out there knowledgeable of this issue either from personal experience or from literature? I would really appreciate some feedback. The only problems that I have actually heard of thus far is that which occurred during the beta test that brought down one of Xerox's network. I understand that there is a patch that is available as a fix, in addition to the option of upgrading the Switch code. My question is: - a). Does the incompatibility only exist with the Switch software or with the router IOS as well? b). Is the patch the best way of dealing with the problem? I appreciate any help that I can get. Thanks _ Get your FREE download of MSN Explorer at http://explorer.msn.com/intl.asp From: "Chuck Larrieu" To: [EMAIL PROTECTED] Date: Tue, 21 Aug 2001 00:05:14 -0400 Subject: RE: HELP!! The Cisco Code & Windows XP [7:16604] I'm sure you've had your fair share of smart remarks by now. So I won't add my own. I will remark that in fairness to your boss, there is probably something he has heard or read which caused him to look for reassurance. for example, is there a concern with VPN compatibility of operation using Win XP VPN client software? is there a security concern based upon published writings about the XP TCP stack? if the question is "will Cisco routers pass traffic generated by XP machines?" the answer is "sure. why not" after all, there is nothing in an IP or a TCP header that indicates the type of host OS that originates the packet. as long as the traffic is contained in valid packets, the router will pass process them. knowing that, may I recommend you sit down with the boss and ask what his concerns are. what has he read? what has he heard? why would he think there is reason to be concerned? hell, he could be a victim of MBBW ( Management By Business Week - where the president of the company saw something in Business Week Magazine over the weekend and on Monday morning told your boss to investigate and come back with report. ;-> ( and yes, I know some bosses are "she" ) Chuck -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Ray Smith Sent: Monday, August 20, 2001 5:38 PM To: [EMAIL PROTECTED] Subject: HELP!! The Cisco Code & Windows XP [7:16604] Guys, After my boss delegated me to research all I can about what is need to upgrade if necessary our Cisco routers and switches to work with
RE: HELP!! The Cisco Code & Windows XP [7:16604]
I wish that Networking 101 was required in schools. Then even the Management by Business Week types would know about the 7 layers and that the operating system, which generally deals with local file management and I/O, should not matter when considering traffic going through routers and switches. In actuality, there may be issues because the TCP/IP stack and other protocols are part of the operating system and they could be buggy, but if they are standard and not buggy, then there shouldn't be an issue. I don't mean to flame the person that asked. It can't hurt to do some research, and there was that one bug with 802.1x security and Catalyst 5000 switches connecting PCs running Windows XP, but that kind of thing shouldn't happen. On the other hand, both Cisco and Microsoft like to take simple concepts (like bridging, etc.) and make them so complicated that bugs are bound to happen. We run an ISP among other things. I wish that our users would take the basic networking class also. This morning someone called and said she had an error message about running out of server space. So I talked to her about not keeping mail on the server. She said, "you mean I can't keep messages in my In Box?" Sigh. Networking 101 would have a short section on client/server architecture too. Sorry for the babbling. Haven't had my latte yet. Priscilla At 12:05 AM 8/21/01, Chuck Larrieu wrote: >I'm sure you've had your fair share of smart remarks by now. So I won't add >my own. I will remark that in fairness to your boss, there is probably >something he has heard or read which caused him to look for reassurance. > >for example, is there a concern with VPN compatibility of operation using >Win XP VPN client software? is there a security concern based upon published >writings about the XP TCP stack? > >if the question is "will Cisco routers pass traffic generated by XP >machines?" the answer is "sure. why not" after all, there is nothing in an >IP or a TCP header that indicates the type of host OS that originates the >packet. as long as the traffic is contained in valid packets, the router >will pass process them. knowing that, may I recommend you sit down with the >boss and ask what his concerns are. what has he read? what has he heard? why >would he think there is reason to be concerned? hell, he could be a victim >of MBBW ( Management By Business Week - where the president of the company >saw something in Business Week Magazine over the weekend and on Monday >morning told your boss to investigate and come back with report. ;-> > >( and yes, I know some bosses are "she" ) > >Chuck > >-Original Message- >From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of >Ray Smith >Sent: Monday, August 20, 2001 5:38 PM >To: [EMAIL PROTECTED] >Subject: HELP!! The Cisco Code & Windows XP [7:16604] > > >Guys, > >After my boss delegated me to research all I can about what is need to >upgrade if necessary our Cisco routers and switches to work with Windows-XP, >I was only able to assert from information on the web that there is a bug in >the switch software that is incompatible with XP. > >Does anyone here know of any valuable information that can help me with >compiling an educated assessment of this research? Is anyone out there >knowledgeable of this issue either from personal experience or from >literature? I would really appreciate some feedback. > >The only problems that I have actually heard of thus far is that which >occurred during the beta test that brought down one of Xerox's network. I >understand that there is a patch that is available as a fix, in addition to >the option of upgrading the Switch code. My question is: - > >a). Does the incompatibility only exist with the Switch software or with the >router IOS as > well? > >b). Is the patch the best way of dealing with the problem? > >I appreciate any help that I can get. Thanks > > >_ >Get your FREE download of MSN Explorer at http://explorer.msn.com/intl.asp Priscilla Oppenheimer http://www.priscilla.com Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=16697&t=16604 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: HELP!! The Cisco Code & Windows XP [7:16604]
There were issues with the 5000 series and a beta versions - don't ask me which one - of Windows XP. This issue has allegedly been addressed. http://www.computerworld.com/cwi/story/0,1199,NAV47_STO59523,00.html "Steve Smith" cc: Sent by: Subject: RE: HELP!! The Cisco Code & Windows XP [7:16604] nobody@groups tudy.com 08/20/2001 11:25 PM Please respond to "Steve Smith" We are a full XP shop and a Cisco CNP and have had no issues nor have we seen anything to indicate such with XP. We are 12.1 on routers. Steve -Original Message- From: Ray Smith [mailto:[EMAIL PROTECTED]] Sent: Monday, August 20, 2001 7:38 PM To: [EMAIL PROTECTED] Subject: HELP!! The Cisco Code & Windows XP [7:16604] Guys, After my boss delegated me to research all I can about what is need to upgrade if necessary our Cisco routers and switches to work with Windows-XP, I was only able to assert from information on the web that there is a bug in the switch software that is incompatible with XP. Does anyone here know of any valuable information that can help me with compiling an educated assessment of this research? Is anyone out there knowledgeable of this issue either from personal experience or from literature? I would really appreciate some feedback. The only problems that I have actually heard of thus far is that which occurred during the beta test that brought down one of Xerox's network. I understand that there is a patch that is available as a fix, in addition to the option of upgrading the Switch code. My question is: - a). Does the incompatibility only exist with the Switch software or with the router IOS as well? b). Is the patch the best way of dealing with the problem? I appreciate any help that I can get. Thanks _ Get your FREE download of MSN Explorer at http://explorer.msn.com/intl.asp Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=16631&t=16604 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: HELP!! The Cisco Code & Windows XP [7:16604]
I'm sure you've had your fair share of smart remarks by now. So I won't add my own. I will remark that in fairness to your boss, there is probably something he has heard or read which caused him to look for reassurance. for example, is there a concern with VPN compatibility of operation using Win XP VPN client software? is there a security concern based upon published writings about the XP TCP stack? if the question is "will Cisco routers pass traffic generated by XP machines?" the answer is "sure. why not" after all, there is nothing in an IP or a TCP header that indicates the type of host OS that originates the packet. as long as the traffic is contained in valid packets, the router will pass process them. knowing that, may I recommend you sit down with the boss and ask what his concerns are. what has he read? what has he heard? why would he think there is reason to be concerned? hell, he could be a victim of MBBW ( Management By Business Week - where the president of the company saw something in Business Week Magazine over the weekend and on Monday morning told your boss to investigate and come back with report. ;-> ( and yes, I know some bosses are "she" ) Chuck -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Ray Smith Sent: Monday, August 20, 2001 5:38 PM To: [EMAIL PROTECTED] Subject: HELP!! The Cisco Code & Windows XP [7:16604] Guys, After my boss delegated me to research all I can about what is need to upgrade if necessary our Cisco routers and switches to work with Windows-XP, I was only able to assert from information on the web that there is a bug in the switch software that is incompatible with XP. Does anyone here know of any valuable information that can help me with compiling an educated assessment of this research? Is anyone out there knowledgeable of this issue either from personal experience or from literature? I would really appreciate some feedback. The only problems that I have actually heard of thus far is that which occurred during the beta test that brought down one of Xerox's network. I understand that there is a patch that is available as a fix, in addition to the option of upgrading the Switch code. My question is: - a). Does the incompatibility only exist with the Switch software or with the router IOS as well? b). Is the patch the best way of dealing with the problem? I appreciate any help that I can get. Thanks _ Get your FREE download of MSN Explorer at http://explorer.msn.com/intl.asp Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=16619&t=16604 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
RE: HELP!! The Cisco Code & Windows XP [7:16604]
We are a full XP shop and a Cisco CNP and have had no issues nor have we seen anything to indicate such with XP. We are 12.1 on routers. Steve -Original Message- From: Ray Smith [mailto:[EMAIL PROTECTED]] Sent: Monday, August 20, 2001 7:38 PM To: [EMAIL PROTECTED] Subject: HELP!! The Cisco Code & Windows XP [7:16604] Guys, After my boss delegated me to research all I can about what is need to upgrade if necessary our Cisco routers and switches to work with Windows-XP, I was only able to assert from information on the web that there is a bug in the switch software that is incompatible with XP. Does anyone here know of any valuable information that can help me with compiling an educated assessment of this research? Is anyone out there knowledgeable of this issue either from personal experience or from literature? I would really appreciate some feedback. The only problems that I have actually heard of thus far is that which occurred during the beta test that brought down one of Xerox's network. I understand that there is a patch that is available as a fix, in addition to the option of upgrading the Switch code. My question is: - a). Does the incompatibility only exist with the Switch software or with the router IOS as well? b). Is the patch the best way of dealing with the problem? I appreciate any help that I can get. Thanks _ Get your FREE download of MSN Explorer at http://explorer.msn.com/intl.asp Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=16614&t=16604 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: HELP!! The Cisco Code & Windows XP [7:16604]
Oops, this should have been a reply to TD's message. ""Wojtek Zlobicki"" wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > What does this have to do with Widows XP ? Pardon my ignorance but I don't > see anything that would affect XP in particular. > > > ""td"" wrote in message > [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > > Check it out. > > http://www.cisco.com/warp/public/707/cat5k-8021x-vuln-pub.shtml > > Hope this help > > TD > > > > ""Ray Smith"" wrote in message > > [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > > > Guys, > > > > > > After my boss delegated me to research all I can about what is need to > > > upgrade if necessary our Cisco routers and switches to work with > > Windows-XP, > > > I was only able to assert from information on the web that there is a > bug > > in > > > the switch software that is incompatible with XP. > > > > > > Does anyone here know of any valuable information that can help me with > > > compiling an educated assessment of this research? Is anyone out there > > > knowledgeable of this issue either from personal experience or from > > > literature? I would really appreciate some feedback. > > > > > > The only problems that I have actually heard of thus far is that which > > > occurred during the beta test that brought down one of Xerox's network. > I > > > understand that there is a patch that is available as a fix, in addition > > to > > > the option of upgrading the Switch code. My question is: - > > > > > > a). Does the incompatibility only exist with the Switch software or with > > the > > > router IOS as > > > well? > > > > > > b). Is the patch the best way of dealing with the problem? > > > > > > I appreciate any help that I can get. Thanks > > > > > > > > > _ > > > Get your FREE download of MSN Explorer at > http://explorer.msn.com/intl.asp Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=16612&t=16604 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: HELP!! The Cisco Code & Windows XP [7:16604]
What does this have to do with Widows XP ? Pardon my ignorance but I don't see anything that would affect XP in particular. ""td"" wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > Check it out. > http://www.cisco.com/warp/public/707/cat5k-8021x-vuln-pub.shtml > Hope this help > TD > > ""Ray Smith"" wrote in message > [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > > Guys, > > > > After my boss delegated me to research all I can about what is need to > > upgrade if necessary our Cisco routers and switches to work with > Windows-XP, > > I was only able to assert from information on the web that there is a bug > in > > the switch software that is incompatible with XP. > > > > Does anyone here know of any valuable information that can help me with > > compiling an educated assessment of this research? Is anyone out there > > knowledgeable of this issue either from personal experience or from > > literature? I would really appreciate some feedback. > > > > The only problems that I have actually heard of thus far is that which > > occurred during the beta test that brought down one of Xerox's network. I > > understand that there is a patch that is available as a fix, in addition > to > > the option of upgrading the Switch code. My question is: - > > > > a). Does the incompatibility only exist with the Switch software or with > the > > router IOS as > > well? > > > > b). Is the patch the best way of dealing with the problem? > > > > I appreciate any help that I can get. Thanks > > > > > > _ > > Get your FREE download of MSN Explorer at http://explorer.msn.com/intl.asp Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=16611&t=16604 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Re: HELP!! The Cisco Code & Windows XP [7:16604]
Check it out. http://www.cisco.com/warp/public/707/cat5k-8021x-vuln-pub.shtml Hope this help TD ""Ray Smith"" wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > Guys, > > After my boss delegated me to research all I can about what is need to > upgrade if necessary our Cisco routers and switches to work with Windows-XP, > I was only able to assert from information on the web that there is a bug in > the switch software that is incompatible with XP. > > Does anyone here know of any valuable information that can help me with > compiling an educated assessment of this research? Is anyone out there > knowledgeable of this issue either from personal experience or from > literature? I would really appreciate some feedback. > > The only problems that I have actually heard of thus far is that which > occurred during the beta test that brought down one of Xerox's network. I > understand that there is a patch that is available as a fix, in addition to > the option of upgrading the Switch code. My question is: - > > a). Does the incompatibility only exist with the Switch software or with the > router IOS as > well? > > b). Is the patch the best way of dealing with the problem? > > I appreciate any help that I can get. Thanks > > > _ > Get your FREE download of MSN Explorer at http://explorer.msn.com/intl.asp Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=16607&t=16604 -- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
