Ismail M Saeed wrote:
All,
I need to enable IP QoS over ATM VC
I used the following configuration but it did'nt work
Any ideas?
[cut]
Where is your access-list 100? If you forgot it, you have no match...
Mariusz
Message Posted at:
http://www.groupstudy.com/form/read.php?f=7i=57597t=57576
Hi All - I am wondering if the 1-Ethernet WIC card (WIC-1ENET) works with
the WAN slots on Cisco 2600 routers? Do I need certain version of IOS in
order to have it worked on Cisco 2600 WAN slot? Thanks All!
Message Posted at:
http://www.groupstudy.com/form/read.php?f=7i=57596t=57596
Hi All
have a strange probelm with a new 3005 and hope that some one may be able to
help, possibly a hardware problem though.
I shutdown the sydney office in the early hours of saturday morning to get a
new UPS installed for the server room. I restarted the vpn 3005, and what do
you know, of all
Hi people,
Sorry, I'm sure this question gets asked 100's of times, I just went back 5
pages and couldn't find an answer.
Anybody know the passign score required for 640-901? I'm sitting it on
Saturday and would like an idea, someone earlier down said the CIT test had
a passing score of
last minute prep question (and jitters) on how a router switches traffic.
setting for the cit tomorrow. attempting to confirm my understanding of
which type of switching is default for ip and which type for ipx, appletalk,
etc.
from ciscopress cisco internetwork troubleshooting by chappell and
Hi,
No of questions -57
Time you have -105 min
Passing score - 700
-Original Message-
From: James Gosnold [mailto:[EMAIL PROTECTED]]
Sent: Monday, November 18, 2002 3:37 PM
To: [EMAIL PROTECTED]
Subject: 640-901 BSCI [7:57599]
Hi people,
Sorry, I'm sure this question gets asked
Wow, that's a lot lower than I expected, the CCNA I sat a month ago was 849.
My chances are better than I thought, fingers crossed!
Thanks for the info.
Message Posted at:
http://www.groupstudy.com/form/read.php?f=7i=57602t=57599
--
FAQ, list
When I learned it for CCNA and CCNP, I was told that IGRP is Cisco
proprietary. Until recent, I was being told that IGRP is no longer
proprietary
and became an open standard.
I would like to verify on this. Any input from authority would be nice.
Thanks.
hktco
Message Posted at:
Dear All,
I am a little bit confused about the calculation criteria used in rate-limit
command and the traffic metering function (Bc Be)
I need help
Message Posted at:
http://www.groupstudy.com/form/read.php?f=7i=57604t=57604
--
FAQ, list
I always thought that EIGRP was cisco proprietary but IGRP was not. I did
find the below on the ietf site which makes me think that at least in 96 it
was not standard. I think it has been industry standard since 98 though
stuart
IGRP is a proprietary protocol of Cisco, and Cisco believes at
You only have 75 minutes for the exam. Other times are for survey and
tutorial.
THANGAVEL VISHNUKUMAR MUDALIAR wrote in
message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
Hi,
No of questions -57
Time you have -105 min
Passing score - 700
-Original Message-
From: James Gosnold
no. don't waste your time.
Ahed Naimi wrote in message
[EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
Dear All;
Is there any way to block MSN Messenger by using the access-list
statements
on an IOS Cisco router.
Thanks All.
Message Posted at:
Use the following IOS version..
c2600-js-mz.122-12.bin
regards
Silju
Message Posted at:
http://www.groupstudy.com/form/read.php?f=7i=57608t=57299
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report
Use the following IOS version..
c2600-js-mz.122-12.bin. But remember you need 16Mb flash and 64M RAM.
regards
Silju
Message Posted at:
http://www.groupstudy.com/form/read.php?f=7i=57609t=57299
--
FAQ, list archives, and subscription info:
I think it's only supported on the 1700 series routers. Try a HW/SW
compatibility lookup.
Dave
Thomas N. wrote:
Hi All - I am wondering if the 1-Ethernet WIC card (WIC-1ENET) works with
the WAN slots on Cisco 2600 routers? Do I need certain version of IOS in
order to have it worked on
Message Posted at:
http://www.groupstudy.com/form/read.php?f=7i=57611t=57611
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Could you let us know the name of Priscilla Oppenhemier's book for 640-606
exam?
Thanks.
Charles McKnight wrote in message
[EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
I took the Cisco 640-606 exam and finally passed the wording of the
questions was tricky like alot of people said it was.
Took the Written Friday- and failed. Very difficult- Passing score was 58.
Know the exam objectives very well.
To answer an item on question last week. There is still some token ring and
IPX on it.
Boson test#1 was pretty descent, but Caslow, Doyle, and Bruno's books were
all a must.
Message
What are you typing?
Native6506#dir bootflash:
Directory of bootflash:/
1 -rw- 7110024 Mar 29 2002 12:48:52 c6msfc2-js-mz.121-4.E1
2 -rw- 1611604 Mar 29 2002 12:49:42 c6msfc2-boot-mz.121-4.E1
3 -rw- 528259 Mar 28 2002 07:19:26 DRACO2_RM2.srec.121-4r.E
Check how many vty's you have first.
For instance my 2500's have 4 (so line vty 0 4 - is correct)
The 26xx had 133 and the 3550 has 15
I hope this is it, otherwise I am mistaken as well.
Message Posted at:
http://www.groupstudy.com/form/read.php?f=7i=57614t=57574
It is an addition/feature to the backup interface command
use a map-class under atm/fr or isdn
Side A
map-class *frame-relay etc* *name*
frame-relay end-to-end keepalive mode reply
Side B
map-class *frame-relay etc* *name*
frame-relay end-to-end keepalive mode request
note -- Side B is the
It is possible, however Messenger uses so many different ports on so many
different servers that it's not worth your time.
-Original Message-
From: Steven A. Ridder [mailto:[EMAIL PROTECTED]]
Sent: Monday, November 18, 2002 8:36 AM
To: [EMAIL PROTECTED]
Subject: Re: Block MSN Messenger
ok; online
Message Posted at:
http://www.groupstudy.com/form/read.php?f=7i=57618t=57611
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Try to block the login servers:
http://acronymsonline.com/im_ips.htm
-- Lidiya White
-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of
Josh Green
Sent: Monday, November 18, 2002 10:16 AM
To: [EMAIL PROTECTED]
Subject: RE: Block MSN Messenger [7:57595]
Not to mention that msn mesgr can conceal itself using port80 packets.
Josh Green wrote in message
[EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
It is possible, however Messenger uses so many different ports on so many
different servers that it's not worth your time.
-Original
I have seen just blocking 1863/TCP kills this monstrosity..
However I prefer routing all the blocks MSN allocates for the program to
NULL 0
ip route 207.46.106.0 255.255.255.0 null0
ip route 207.68.171.0 255.255.255.0 null0
You will find others once these are killed, just
keep looking for
Vinh Le wrote:
Could you let us know the name of Priscilla Oppenhemier's book for 640-606
exam?
A: Trobleshooting Campus Networks Practical Analys of Cisco and LAN
Protocols.
ISBN 0-471-21013-7
I had this great book with me not only for 606-Support exam. It was useful
for me to pass 441-CND and
I don't know how much you missed it by, but if you used these resources you
should have been close. I would would recommend adding the cisco press mpls
and switching books to the list, and I liked boson#3 better then #1, but
would say grab them both. You're right about this test being a real
On my IOS 6509 the flash card is disk0 not slot0.
MADMAN wrote:
What are you typing?
Native6506#dir bootflash:
Directory of bootflash:/
1 -rw- 7110024 Mar 29 2002 12:48:52
c6msfc2-js-mz.121-4.E1
2 -rw- 1611604 Mar 29 2002 12:49:42
c6msfc2-boot-mz.121-4.E1
I eventually worked it out. It seems that you can't see a flash card on a RP
on a 6000. I'd done a lot of testing with a loaned 6500 for upgrading from
Cat OS Hybrid IOS and back again, just in case. On the 65 you can see the
flash and so boot from it in rommon, which is great because I can leave
Didn't you like my disk0 idea? :-)
xxx6509#dir disk0:
Directory of disk0:/
1 -rw- 13201 Sep 18 2002 18:42:48 6509_20020918.cfg
2 -rw-20775248 Sep 18 2002 18:51:00
c6sup22-po3sv-mz.121-11b.E4.bin
If your Flash card is an ATA, you won't see it with CatOS and it's
Maximus wrote:
http://www.troubleshootingnetworks.com/ is down. any reason?
The Web server is a Mac? ;-) Seriously, it has been crashing more often than
usual. We're tracking down the reasons. This troubleshooting stuff is harder
than it seems.
Thanks for the heads up.
Priscilla
hktco wrote:
When I learned it for CCNA and CCNP, I was told that IGRP is
Cisco
proprietary. Until recent, I was being told that IGRP is no
longer
proprietary
and became an open standard.
No, neither IGRP nor EIGRP are open standards. They are Cisco proprietary.
There are no RFCs or
Folks I have two 2924 switches I am selling, these are great switches for
learning the basics or testing. If you do not need them for your cert needs
they are workhorses for a small network.
Catalyst 2924C-XL-EN22 10/100TX ports 2 10/100FX ports
Catalyst 2924-XL22
Depends on your definition of open standard. As far as I can tell there
are no RFC's for IGRP or EIGRP, which is pretty much the criteria for
something to be considered an open standard in the Internet
community. Also, I don't believe Cisco has released the source code for
either IGRP or
I guess I'm ASSuming a knowledge of when to insert slot or disk, for
me if the one doesn't work I try the other.
Dave
Black Jack wrote:
On my IOS 6509 the flash card is disk0 not slot0.
MADMAN wrote:
What are you typing?
Native6506#dir bootflash:
Directory of bootflash:/
The choice of switching method is determined by:
IOS version
Router platform
Which features are enabled
With new versions of IOS, Cisco tries to make it possible to switch packets
with some faster method than process switching, even if extra processing for
some feature is required. In the olden
I had the similar type of problem, remote users (broadband) would lose
connectivity and get the remote peer not respondin, your ipsec session has
been termintated error. The problem that I had, was with the broadband ISP,
in this case Telstra. Telstra use a bpa hart beat packet, just so Telstra
I have a 6500 in both hybrid and native modes since we have customers
doing both. I am not sure what you mean when you say you can't see the
RP in the cat running OS. The RP and SP convention are particular to
native mode. When running catOS the RP is the MSFC and you
session/switch console to
As mentioned in the RAte-limit White Paper on CCO,
Set the normal burst size to 1.5/8 the trafiic rate. ( devide by 8 for bit
to byte conversion, multiply by 1.5 as the white paper says). It almost
works fine this way.
HTH,
Hamid
Ismail M Saeed wrote in message
[EMAIL PROTECTED]">news:[EMAIL
MADMAN wrote:
I have a 6500 in both hybrid and native modes since we have customers
doing both. I am not sure what you mean when you say you can't see the
RP in the cat running OS. The RP and SP convention are particular to
native mode. When running catOS the RP is the MSFC and you
Hi,
Can anyone advise how to have my email address changed in the RS
mailing list? I want to stop receiving on my Compuserve account and
start receiving on my Earthlink account. Thanks in advance.
Danny
Message Posted at:
http://www.groupstudy.com/form/read.php?f=7i=57640t=57640
Hi Group,
I have a Virual Console ISDN simulator. It crashes when I send extended
ping traffic through it, and I have to reboot it again. Has any one been
through the same experience? Do I need to upgrade the firmware?
Any Advice is appreciated.
Thanks
John
Message Posted at:
Hi all,
wondering if there is a special mailing list for lab equipment sale in
groupstudy?
I don't want to break the rules but did not see any polciy stating no
equipment sale messages can be posted under this mailing list?
Please shed a light if you can. I am just helping a friend to sell his
Several sources I have come across say the way to abort an extended ping is
ctrl-shift-6 followed by an x. Every time I have tested this, the ping is
aborted after just the ctrl-shift-6. The x isn't necessary.
I'm wondering why several books say to include the x and if that's the way
cisco wants
I would enable split tunneling for the networks you need and set the
concentrator logs up to see what is going on. I have pasted a little
dialogue below on what logs to turn on. You can probably get a good idea of
what is going on from this.
In the concentrator we go to Configuration - System -
I have 2 concentrators setup in load balancing function and we had the
same issue but ours was not resolved by split tunneling. We had to flash
both concentrators and this problem went away , there was a bug on bug
track which cisco informed me off at the time I was working on this.
Before
Hi, Hixon,
I failed it on Nov 9, got zero on desktop protocols. So, I read Caslow
throughly and it helped me to pass last weekend. I do see some new material
(MPLS,multicast) not covered by Caslow, but MPLS and VPN arch and Routing
TCP/IP Vol2 should help.
It is indeed very difficult, but
Hi All,
A friend is selling his lab equipment after he passed his lab exame last
week.
A full list is as below:
5 Router Lab for sale. All routers are in perfect working order and
equipped with 16F/16D
memory. The following items are included:
1 x Cisco 2503 - 1 Ethernet - 1 BRI - 2 Serial -
So both Apple Talk and Decnet are not in the current CCIE written Exam?
Also, is there much on bridging? Source route bridging? and frame formats?
--
Regards,
Peter Kingston
Telstra BigPond Direct
Freecall 1800 066 594
Jim Tickle wrote in message
[EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
Send a message from your compuserve account with unsubscribe in the subject
and body and nothing else to the list, then send a new message from your
Earthlink account with subscribe in the subject and body and nothing else to
activate that address.
-Original Message-
From: Danny Free
Would someone mind explaining to me how addressing works on the outside
interface of a PIX in a site-to-site VPN configuration with edge routers
connected to the internet?
PIX1(outside)(e0)R1(e1)INTERNET--(e1)R2(e0)(outside)
PIX2
If I'm provided a /29 address by my ISP for
Studying to take the CCNP Routing exam right now. I was wondering if someone
could provide a little insight into what the test is like. Not looking for
questions and answers, but more the format of the exam. Particularly, is it
multiple choice questions similar to MCSE and the CCNA exams, or
Network is migrating from ATM to Gigabit Ethernet. Transparent mode was
default VTP for all distribution layer switches. We had hubs for all access
layer switches. With the new migration to Gigabit switches would be at all
access layer buildings. Would it be beneficial to run transparent abroad or
OpenBSD is much better than a Mac... my 2 cents
Message Posted at:
http://www.groupstudy.com/form/read.php?f=7i=57651t=57611
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and
Sorta of vague question Are you looking for functionality, speed, or
what.. ?? Do you have specific requirements for your VPNs ??
Message Posted at:
http://www.groupstudy.com/form/read.php?f=7i=57652t=57594
--
FAQ, list archives, and
dr0ss r0zz wrote:
hmm I dont think the router will drop the packet..
The router must drop the packet. It can't send the packet if the MTU for the
outgoing interface is smaller than the packet and the Don't Fragment (DF)
bit is set in the packet, which is what we were discussing.
TCP has
You should use private addressing behind the pix and use static's from the
/29 to map to Servers, etc. behind the pix.
Why would you ever want to put public ip's behind a pix ? especially for a
vpn ? Not cool. It makes it an easier target to spoof, as apposed to RFC1918
addresses.
Answering your
Brunner Joseph wrote:
You should use private addressing behind the pix and use
static's from the /29 to map to Servers, etc. behind the pix.
Why would you ever want to put public ip's behind a pix ?
especially for a vpn ? Not cool. It makes it an easier target
to spoof, as apposed to
ctrl ^ x is how you leave a session (such as telnet) with another device.
that is all you need to know about it. it may get you out of a ping as well
but i don't think of that as anything you would need to know for an exam.
just remember that it gets you out of a session, but leaves the session
Hi,
I got a mc3810 router and was running perfect. Sometime ago I mistakenly
typed a confreg value which I do not remeber exactly but I know it was not a
relevant one. I was actually practicing with the confreg entries.
What happened was that after I just rebooted the router I lost the console
I'm curious how you studied for the IS-IS part. I studied the CiscoPress
book on IS-IS and CCIE Routing and still failed that part. Fortunately I
did well enough on the rest to pass it. I guess the BCSI class would be the
best way to go - if someone else pays for it.
Message Posted at:
To abort a ping, you can just do ctrl-shift-6, as you suspected. I think it
sends a Break. It's a good way to stop many annoying things, like when you
make a typo and the router thinks you've typed a hostname and tries to
Telnet to it. (You can also avoid that annoying behavior with the no ip
I've been doing 6500 upgrades recently to and found
out the same thing, but haven't been able to find a
doc saying so.
--- Patrick Donlon wrote:
I eventually worked it out. It seems that you can't
see a flash card on a RP
on a 6000. I'd done a lot of testing with a loaned
6500 for upgrading
Does anyone else use this feature and have feedback on
the different modes? I tend to run bidirectional mode.
Also, with FREEK when the keepalives are missed FREEK
will force the interface/subinterface down causing the
backup or floating static to kick in. If your frame
provider or PVC doesn't
Well I am a little confused by the question call me stupid :) But he can
use public or private on that link if he uses private just nat on the
pix. VPN to VPN will still work with nat in place.
-Original Message-
From: Priscilla Oppenheimer [mailto:[EMAIL PROTECTED]]
Sent: Monday,
Oh yeah with the limited address space the correct term I meant to use
is PAT not to confuse anyone. The outside interface on the pix has 1
public and everyone gets NAT's to that one global address.
-Original Message-
From: Priscilla Oppenheimer [mailto:[EMAIL PROTECTED]]
Sent: Monday,
Elijah Savage III wrote:
Oh yeah with the limited address space the correct term I meant
to use
is PAT not to confuse anyone. The outside interface on the pix
has 1
public and everyone gets NAT's to that one global address.
So, use public addressing on the PIX(outside)-router link. In the
Yes,
He should use public on the outside link and then private on the inside
the setup would be much easier that way. NAT or PAT on a pix is so easy.
And I had a slight brain fart he can't use private on the outside. The
reason being because of the peer addressing that has to go on the pix
for
okay, i should have explained better...sorry
let's break my point down to a digestable limit...
at this point i want to know how to set up the site-to-site VPN tunnel
between the two PIX's, if i use private addressing on the outside
interfaces of the PIX's.
if both of the outside interfaces
Hi all,
Does anyone know if both CCDA CID #640-025 exams are required in order to
get CCDP if you possess a CCNP? Or just CID #640-025 exam is all you need
for CCDP?
Thanks.
Message Posted at:
http://www.groupstudy.com/form/read.php?f=7i=57667t=57667
You have to use the public ip addresses as I stated in my last email
private is non routeable on the net, though I have seen sprint route
private by mistake from time to time :)
But that is not what confused me, what is confusing me is your ip
addressing problem do you have one? A /29 is a
May I also ask why you want to use private?
-Original Message-
From: Edward Sohn [mailto:[EMAIL PROTECTED]]
Sent: Monday, November 18, 2002 10:50 PM
To: Elijah Savage III; [EMAIL PROTECTED]
Subject: RE: PIX site-to-site VPN question... [7:57648]
okay, i should have explained
thanks for your help, elijah...however, i think are still missing the
full point of my question...i am looking for a complete solution rather
than just 'what's possible' at different points in the network.
i did mean to use a /29 in my example. i used that b/c if i was only
given one IP address
excellent...now we're getting somewhere. that's what i thought...but if
this is the case, then how does the PIX establish the actual peering
with the other PIX?
again, my crypto map peer _address_ example...what IP address do you
use here if using private addresses? and if it's simply the
Priscilla Oppenheimer wrote:
sam sneed wrote:
this is about the comment
You'd get a link but lots of collisions, eh? The half-duplex
side would
receive while it was sending, because the full-duplex side
would send
whenever it wanted. In other words, the 2500 side would report
Deepak,
I am not sure abt soho router configuration, but what does your
following debugs says on client/server:
on server
---
- debug vpdn pppoe pac
- debug vpdn pac
- debug atm pack - Turn this on if you dont see an debugs with above cmds...
on client
-
- debug vpdn pppoe pac
The CCDA exam is required even if you are a ccnp.
Vinh Le wrote in message
[EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
Hi all,
Does anyone know if both CCDA CID #640-025 exams are required in order
to
get CCDP if you possess a CCNP? Or just CID #640-025 exam is all you need
for CCDP?
The only way that you could put private addresses on the OUTSIDE
interface of the PIX (Site A), and still successfully set up a Tunnel to
another PIX across the internet that is behind an edge router of your
own control (Site B), is to build a GRE Tunnel between the Edge Routers.
EX:
Hi Rahul
thanks,
i got the answer. there was a problem in the ppp layer. After using debug
ppp
negotionation i came to know. now its working fine.
There was no major configuration changes in the client end.
regards
deepak
Rahul Kachalia wrote:
Deepak,
I am not sure abt soho router
Perfect...
very interesting, indeed. I have long wondered about this scenario, and
have wondered how companies are implementing their site-to-site VPN's
over the internet. so you're saying (regarding your own roll out), that
your ISP assigned you two address spaces and routed your /27 towards
Cisco Press just recently released a free download to their BSCN book. Just
look for it at http://www.ciscopress.com/
I'm using that for my BSCI study, hope it's useful! Anyone used already? Any
comments?
Matt Crawford wrote:
I'm curious how you studied for the IS-IS part. I studied the
I think 105min is the standard time (30 mins additional) if the exam is
taken in non-English speaking countries, probably to give more time to
candidates to refer a dictionary (that's provided in the Test Center). I
took my CCNA in Taiwan and it was also 105 min (now there's a tip for
In-Line...
Perfect...
very interesting, indeed. I have long wondered about this scenario, and
have wondered how companies are implementing their site-to-site VPN's
over the internet. so you're saying (regarding your own roll out), that
your ISP assigned you two address spaces and routed your
I think your confusing SPI with a CBAC technology. AN spi is a
uni-directional IPSEC peer transform set hash (agreement on what your using
with your IPSEC PEER).
An SPI is made in each direction to each peer. The Access-list permits
flag traffic (matched by the router) as permitted for IPSEC.
I think you might be wrong. I never had to do this outside of the lab
on two VPN routers and 2 pixes in between doing NAT but you should be
able to establish an ESP in tunnel mode between two devices using
private addresses with NAT happening somewhere in between. Remember,
ESP only cares about
4 pieces of 32MB of memory (128MB total) for the Pix515
JUST AN FYI- the PIX 515 has two DIMM slots and guess what ALMOST any ram
(except ddr, or rdram) that will fit with the chasis closed (like the narrow
sticks) will work inside.. look at my home lab pixie.
(i could have done 512MB, but only
Can somebody tell me if the PIX 501 is sufficient to prepare for the CCIE
security lab exam.
Message Posted at:
http://www.groupstudy.com/form/read.php?f=7i=57684t=57684
--
FAQ, list archives, and subscription info:
88 matches
Mail list logo