Ed
Here is my understanding of this. The 28 and 29 bit subnets will be auto
summarized by one of the 24 bit subnets in your routing table when you
are using a 24 bit mask between the two routers. I believe this is the
expected operation of IGRP as it is a classfull routing protocol and
will auto
Hi Friends,
I am having MCSE, CCNA & CCNP certification with around 6 years
experience in networking. After seeing slump in IT. I am little scared
about my future and want to do some certification which ensure my job
stability.
Request you guys to suggest me something which certification I shoul
Oracle and programming are the areas with huge demand at the moment.
JR
""TV IT Helpdesk"" wrote in message
[EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
> Hi Friends,
>
> I am having MCSE, CCNA & CCNP certification with around 6 years
> experience in networking. After seeing slump in IT. I am
So how does the Linksys or cisco 800 handles the IPSec thru PAT then ?
Thanks.
Alex Lee
""Lidiya White"" wrote in message
news:[EMAIL PROTECTED]...
> PIX doesn't support IPSec transparency/IPSec over TCP. Concentrators do.
> It all depends on the device that is between your client and PIX, tha
Let's assume a Win2k DHCP server is set up correctly with different IP
scopes for 2 remote sites. Let's also assume remote-site routers are
set-up correctly with the correct IP helper-address. When remote DHCP
clients start broadcasting for IP addresses at each remote site, and
these broadcasts
Yes. The DHCP packet will be sent out with the source address of the router
in the unicast packet.
Eric Lange
dimitri@ptsci
nti.com
I think if it knows that the destination is down, it will use the next route
in the regular routing table, but I'm not sure. Try it in a lab, as it's a
good question.
""piesupport"" wrote in message
news:[EMAIL PROTECTED]...
> I have enable PBR on one of my interfaces of 7513.which decide on b
Here's a different take on it:
Multicast addresses ARE host addresses in the sense that they are assigned
individually to groups and not to networks.In other words, you don't use
a subnet mask with multicast addresses. You might say that the mask is
assumed to be /32, which would make it a h
you would need an L2 device of some kind. might want to look through
www.kentrox.com or www.adtran.com
see what they have to offer.
come to think of it, such devices would solve a number of problems.
""piesupport"" wrote in message
news:[EMAIL PROTECTED]...
> Can any one tell me device
Lidiya,
On the pix when you configure Ipsec you configure a pool of addresses that
your Ipsec clients will use on your own network. For instance your inside
network will have the ip addressing scheme of 192.168.0.0 with a class c
subnet mask. You set the pool to give the 10.0.0.0 subnet with a
Hi,
Does anybody know what equipment should I have on the rack for CCIE Security
and CCIE Communications and Services Lab exam.
Thank you
Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=47484&t=47484
--
FAQ, list archives, and
Yes it will be. Setup a super scope then the two remote site scopes.
>From: "dj"
>Reply-To: "dj"
>To: [EMAIL PROTECTED]
>Subject: DHCP question [7:47477]
>Date: Wed, 26 Jun 2002 09:39:31 -0400
>
>Let's assume a Win2k DHCP server is set up correctly with different IP
>scopes for 2 remote sites.
Agreed. This could be a big legal trap.
If you use something like Network Stumbler, you're not actually using
their network. You're just seeing the broadcasts from it. Maybe that
would be a good approach.
Ken
>>> "Thomas E. Lawrence" 06/25/02 11:09AM >>>
I realize you are speaking in jest,
In most cases the PIX does not support VPN's over PAT you need a static NAT
to establish a VPN tunnel.
Protocol 50 (Encapsulating Security Payload [ESP]) handles the
encrypted/encapsulated packets of IPSec. PAT devices
don't work with ESP since they have been programmed to work only with
Transmiss
Has Cisco Press or anyone put any Content Swtiching books out yet?
Preferably one that covers CS11152 or similiar.
thanks
Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=47494&t=47494
--
FAQ, list archives, and subscription info
Greetings,
I'm using RSPAN with our 65XX switches with 6.3(3) code. When I enable
RSPAN between to two switches it works fine but, when I try to rspan
between three switches it doesn't work. I only see broadcasts from IP
and IPX, any ideas???
Two switches:
Source Port : Port 9/3-switch
Hi,
Whether anyone attempted CID recently?I am curious
whether there are questions from SNA &ATM?
Thanks.
Saj
__
Do You Yahoo!?
Yahoo! - Official partner of 2002 FIFA World Cup
http://fifaworldcup.yahoo.com
Message Posted at:
http://www.groupstu
I think the take the company would take on it would depend highly on how
worried they are about security. If they have a well written security
policy I think you would be in for some arguments from their legal
department. On the other hand what if it's a company that doesn't even
know that emplo
I have a newbie question, regarding frame-relay. When I order a frame
relay circuit for two locations
Do the telco provide the dlci? Or I make it up? Once the frame relay is
installed on both locations I guess using the dlci numbers it makes the
connection , besides the ip and all other stuff
Can
The Telco's usually provide the DLCI. They provide two separate DLCI's, one
for each side. Then they map the DLCI to the other DLCI, usually over ATM
PVC's, but it could be IP as well.
Steve
""GEORGE"" wrote in message
[EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
> I have a newbie question, r
good questions.
in theory, you may request any dlci you wish, so long as it is in the legal
range for the carrier. this would be numbers 16 through 996? for some, or
through 1004? for others
in fact, if you have a good rapport with your carrier, and they in turn have
their act together, this is
Cisco has made changes to its CID objectives. The following is the
updated link:
http://www.cisco.com/warp/public/10/wwtraining/certprog/testing/current_
exams/640-025.html
No AppleTalk, IPX, SNA, nor Stratacom. The test is 75 questions in 90
minutes, pass mark 755/1000.
Get the Cisco Press To
You can specify the dlci or they can assign.
I always found it advantageous to specify that way I can
set ranges for different areas or purposes...
I have a newbie question, regarding frame-relay. When I
order a frame
relay circuit for two locations
Do the telco provide the dlci? Or I make i
The PIX 501 can be purchased for as little as $450 at many online
locations.
-Original Message-
From: Mr piyush shah [mailto:[EMAIL PROTECTED]]
Sent: Tuesday, June 25, 2002 11:41 PM
To: [EMAIL PROTECTED]
Subject: RE: PIX Firewall simulator ? Pls help [7:47466]
Dear all
I am planning to
either way. You can provide DLCI's or you can have them assigned to you.
They are locally specific. Some companies like having there own range of
DLCI's for admin and management purposes.
>>> "GEORGE" 06/26 2:35 PM >>>
I have a newbie question, regarding frame-relay. When I order a frame
relay c
So far today I have seen no word from Cisco on its exposure to World Com.
the other so called players in the networking industry - Redback, Nortel,
and Lucent, have all said they have very little on the line with WorldCom.
Of course, these are companies with one foot in the grave already.
WorldC
Talking with a couple of my students (employees at Cisco) WCOM is mostly a
Nortel shop. They said that ATT and Sprint are Cisco Powered Networks so
they are the big providers that Cisco is interested in. This is not
official or anything from Cisco it's just what these guys are telling me.
""Ch
Sorry for the cross-post. Anyone from Northeast Indiana please reply to
me off-list.
Thanks,
Ben
Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=47507&t=47507
--
FAQ, list archives, and subscription info: http://www.groupstud
Not too long ago, John Chambers was quoted in one of the networking
magazines talking about erosion of margins, and partners who sold very
cheaply. The talk on the street was that it was no secret he was talking
about WorldCom, who have been notorious for their pricing of Cisco products
as an indu
At 2:26 PM -0400 6/26/02, Dan Penn wrote:
>I think the take the company would take on it would depend highly on how
>worried they are about security. If they have a well written security
>policy I think you would be in for some arguments from their legal
>department. On the other hand what if it
The Cisco guys are saying that UUNet converted a lot of stuff to Juniper and
a few other vendors.
""Chuck"" wrote in message
[EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
> Not too long ago, John Chambers was quoted in one of the networking
> magazines talking about erosion of margins, and partn
This is HUGE for Telco in general...With the restatement this company will
have actually LOST money for over the past year...
Just think about all the IOU's that this company has to all it's
vendor's, we're talking 30 Billion dollars in debt. It look's like
bankruptcy is coming soon for this
Again, R10 is running OSPF and IGRP, with mutual redistribution. R5 is only
running IGRP. My goal is to get routes with native subnets (as shown on
R10) within the same major subnet into R5. Without summarization. Default
network, static routes and policy routing doesn't count either.
Keep th
Are all the Switch 6000 because No third party or other Cisco switches
can be placed in the end-to-end path for RSPAN traffic.
-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] On Behalf Of
[EMAIL PROTECTED]
Sent: Wednesday, June 26, 2002 1:28 PM
To: [EMAIL PROTECTED]
What is the most likely cause of not seeing all PCs from within Network
Neighborhood? I know this is a common problem, but I just need a real
quick re-fresher on this topic. There is also a WINS server in the
networkl.
Thanks,
dj
Message Posted at:
http://www.groupstudy.com/form/read.php?f=7
Cool, so the PIX will not support VPN's over PAT !!! So if I had my Main
Office PIX, and a VPN Concentrator . could I succesfully connect from a
remote office via a cable/adsl modem that does PAT using the Cisco VPN
software client ???
If so ... and if I had say ... 30 - 40 remote offices, po
First I have a specific question regarding canonical to non-canonical mac
conversion.
Given the mac 00b0.d059.8609 (canonical) is the correct conversion
000d.0b9a.6190?
Basically, do I understand what I have read?
And for the written, is Dennis' Boson #3 a good indicator of preparedness. I
have
I just completed the CID exam last week with an 872. I followed the exact
advice Andy has given you (thanks for the recommendation Andy and Leigh
Ann). I read Top-Down Network Design and it is exceptional (both for the
test and for general knowledge). I also used Boson #1 (not great but
adequate)
I am gathering information so I can propose a VPN solution to my company. We
are currently using a vendor for VPN and would like to gain more control.
Here's what I have so far:
PIX running 6.2.1 with 56bit encryption
Plan to buy RSA SecureID Ace Server and Keyfobs
I plan to purchase the 168-bit
1-5
2-4
Worked - thanks guys!
Kevin
Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=47522&t=47332
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violati
I'm looking for Cisco 2514 IOS w/ firewall feature set. Cisco doesn't
supports 25xx series anymore.
Does anyone point me in the right direction to get the software.
Thanks
SM
Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=47523&t=47523
www.cisco.com
It is most certainly still supported and available if you have download
privileges. Did you even check?
""S M"" wrote in message
[EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
> I'm looking for Cisco 2514 IOS w/ firewall feature set. Cisco doesn't
> supports 25xx series anymore.
>
Dimitri,
The only way for WINS clients to browse resources across a ROUTED WINS
network is to configure your WINS server at each subnet to be Push/Pull
replication partners. A small caveat: make sure you are not dealing with
layer 2 or 3 issues that may be preventing upper layer services from
funt
2-5
1-4
will also work :)
""Kevin Love"" wrote in message
[EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
> 1-5
> 2-4
>
> Worked - thanks guys!
>
> Kevin
Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=47527&t=47332
--
FAQ, list
Where did you find info that Cisco does not support
25xx series anymore? I have 156 support contracts
on 2509, 2511, and 2520's. I also just finished a
network wide upgrade of IOS on these same boxes.
I am concerned that Cisco just announced this and
this leaves me with a serious problem.
""S M
Cisco is not a Telco, so the wire service is not a valid source for info.
I could name at least 12 ILEC's that are making profits and have been for
many years and this is only just a stagnant time for them. They will be
moving
forward in another year with huge network expansions. The profitable an
IP Security Through Network Address Translation Support
http://www.cisco.com/univercd/cc/td/doc/product/access/acs_fix/827/827rl
nts/820feat.htm
I think Linksys just has an option for a checkmark on "IPSec through
NAT".
-- Lidiya White
-Original Message-
From: [EMAIL PROTECTED] [mail
VPN traffic can pass through the PAT, if the device that does PAT is
IPSec aware. Remember, that device will only see the
encrypted/encapsulated traffic, so the ip header will have ip src: your
client's public ip; dst: PIX's outside interface. Doesn't matter what
your pool is configured for...
It'
See inlines
-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] On Behalf Of
Paul
Sent: Wednesday, June 26, 2002 5:11 PM
To: [EMAIL PROTECTED]
Subject: Re: Cisco VPN client and NAT [7:47430]
>> Cool, so the PIX will not support VPN's over PAT !!!
If you are ta
Yes, that's quite bull. Cisco still supports the 2500's.
Dan
-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] On Behalf Of
John Kaberna
Sent: Wednesday, June 26, 2002 6:41 PM
To: [EMAIL PROTECTED]
Subject: Re: IOS firewall feature set for Cisco 2514 [7:47523]
www.c
At 10:01 AM 6/26/02, [EMAIL PROTECTED] wrote:
>Yes. The DHCP packet will be sent out with the source address of the router
>in the unicast packet.
A router had many IP addresses, however. To make your statement less
ambiguous, it's important to state that the router uses the address
associated
>
>Hallo Pierre-Alex Guanel,
>Below attached the show isdn status. Please find my configuration file.
>Please check if I've wrong to configure it.
>
>Once the remote router restart, the ISDN can connect to
>HQ(isdnkotaconnect.txt)
>
>Thank YOu for helping me ^-^
>
>HATO
>
> >From: "Pierre-Alex Gua
Group-
Besides Cisco wireless related training, could anyone give me some feedback
on any wireless training courses anyone might have taken?
I know about various training centers, like www.trainingwireless.com and
others, but I would like to know about engineer's experiences at these
courses a
00b0.d059.8609
1011 1101 0101 1001 1000 0110 1001
1101 1011 1001 1010 0110 0001 1001
000d.0b9a.6190
Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=47537&t=47517
--
FAQ, list archiv
No Rick that guy is MOST mistaken some of the 2500 series has been
EOS'd. However cisco is pledging software support until 2005.
Dan
-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] On Behalf Of
Rick
Sent: Wednesday, June 26, 2002 8:31 PM
To: [EMAIL PROTECTED]
Subje
ATM is there... no appletalk or SNA
Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=47538&t=47496
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violation
Thanks
I got info from somewhere else that If the next-hop IP address is not
reachable, then BAD luck, it won't go to next policy. You can though set 2
next-hops, if one fails, it will then it will use the next one.
eg;
route-map dummy permit 10
match ip address 1
set ip next-hop 1.1.1.1 2.2.2.2
Lidiya,
I didn't try PIX, but I tried a 1605: Main office
3030---Internet---1605---VPN clients. It worked fine. 1605 was
configured PAT inside. Does this mean 1650 is IPSec aware? If 1605 is
IPSec aware, why PIX isn't?
Thanks.
Yoshi
-Original Message-
From: [EMAIL PROTECTED] [mailto:[EM
Hi, all.
Here's a link that might be helpful in clearing up some issues that might
arise in the ISDN part of the lab.
http://www.cisco.com/warp/public/129/bri_invalid_spid.html
Regards,
Elmer
Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=47541&t=47541
--
I bet you were using IPSec over TCP. Then it really doesn't matter what
is in the 'middle'. Your Cisco 1605 will see only tcp traffic, not esp.
Cisco 1600 is not IPSec aware (and don't have to be in your setup).
-- Lidiya White
-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL P
Comments Inline:
>>Cisco is not a Telco, so the wire service is not a valid source for info.
--You might want to talk to Chambers and Wall $treet about that. Service
Provider, manufacturer they're all in the same financial boat. Just look at
the 18% drop in Juniper stock today off the news o
>
>Hallo Pierre-Alex Guanel,
>Below attached the show isdn status. Please find my configuration file.
>Please check if I've wrong to configure it.
>
>Once the remote router restart, the ISDN can connect to
>HQ(isdnkotaconnect.txt)
>
>Thank YOu for helping me ^-^
>
>HATO
>
> >From: "Pierre-Alex Gua
My clients uses IPSec over UDP, not TCP. We do have to enable "Allow
IPSec through NAT" on clients. I guess it's the same thing you were
talking about, right?
Thanks.
Yoshi
-Original Message-
From: Lidiya White [mailto:[EMAIL PROTECTED]]
Sent: Wednesday, June 26, 2002 9:56 PM
To: 'supe
Hi,
I want to know if someone has configured ISDN links with IP Address
negotiated command line on PPP dial.
Here is the scenario, location A is PRI and I configure this with PPP and ip
address negotiated. Location B, BRI with Ip address 10.1.1.1/30. Want to
confirm if the location A (PRI) will
64 matches
Mail list logo
