Thanx,
for instant reply.
I am referring to have same ip on the serial interfaces of client router.
Again I will show u my topolgy
client-routerserver-router(isp)
2serial intf 2 serial intf
serial 0 -ip add- 1.1.1.1 serial 0 ip add- 1.1.1.2
serial 1 -ip
Hi all,
I have two PIX 501's, one at head office one at remote end, linked together
using IPSec VPN. The problem I have is that users at the remote site, have
timeout issues using MS Terminal Server client.
It is very random too. Sometimes users can be connected for 5-6 hours
without getting
Hello Group,
On a router you have the following logging available,
alerts Immediate action needed (severity=1)
critical Critical conditions (severity=2)
debugging Debugging messages (severity=7)
emergencies System is unusable (severity=0)
errors Error conditions (severity=3)
informational
Hello,
I have the practise lab I am working on.
3 routers in lab,
AS100 --AS200-AS300
I have a loopback 1.1.1.1 in AS100 and I want to advertise it to AS200 who
in turn will advertise it to AS300. When it arrives in AS300 it has to look
like it originated in AS200 and NOT for
Greetings,
[jens@workstation jens]$ ssh
@@@
@WARNING: REMOTE HOST IDENTIFICATION HAS CHANGED! @
@@@
IT IS POSSIBLE THAT SOMEONE IS DOING SOMETHING NASTY!
Someone could be
Hi
I need to recover the password for a CISCO 2611 without wiping the
config?
Any idea's?
Philip
Message Posted at:
http://www.groupstudy.com/form/read.php?f=7i=62738t=62738
--
FAQ, list archives, and subscription info:
Philip van Dalen wrote:
I need to recover the password for a CISCO 2611 without wiping the
config?
Any idea's?
http://www.cisco.com/warp/public/474/pswdrec_2600.shtml
Regards,
Marco.
Message Posted at:
If a client were to take an E3 (T3) would they be able to cap/restrict the
bandwidth at lets say 20Mbps? could something be done to the router to allow
this?
Best Regards.
Message Posted at:
http://www.groupstudy.com/form/read.php?f=7i=62740t=62740
I have an interesting problem with an attempt to add an ATM card (an
ATM-1AE3) into a 3640.
I'm using 12.2.13a Enterprise Plus IOS (ie most recent available).
Router 1 is my test 3600.
Slot 0 - 2E2W dual ethernet / dual WIC (nothing in the WIC slots)
Slot 1 - Serial 4T
Slot 2 - empty
Slot 3 -
Hello,
has anybody an idea, how to filter the new Media-Sharing-Tools like Kazaa
V.2.02, which ist tunneling it's data over an individual TCP-Port or Port
80. The pix would only filter to OSI-Level 5 i guess.
I tried to filter the whole subnet of kazaa.com, but this won't work well.
Any ideas
This means that someone changed the rsa key on the PIX and that is only
became active after the reboot.
Verify with your guys that they changed nothing - otherwise it could be a
sort of attack
-Original Message-
From: Jens von B|low [mailto:[EMAIL PROTECTED]]
Sent: 10 February 2003 12:41
Hello Philip Van Dalen,
Try this link for details.Hope this may be usefull.
http://www.cisco.com/warp/public/474/pswdrec_2600.shtml
Best Regards,
R.S.Sundar
-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of
Philip van Dalen
Sent: Monday, February 10,
That is what I suspect or perhaps an overzealous engineer.
Does one specify the RSA key for SSH (is it the same as the one for the
IPSEC stuff)
How would one change such a thing? I don't remember having to ever create
one during the initial installation?
PS: I rebooted the box and noticed that
Hello
Could you please tell me in the PIX Cisco firewall their clients need to be
firewall clients or not?
Hanan
Message Posted at:
http://www.groupstudy.com/form/read.php?f=7i=62746t=62746
--
FAQ, list archives, and subscription info:
The RSA key pair is generated when you want to enable SSH access to the unit
Command for this is ca generate rsa key . You need to have
configured the hostname and domain name before using this command.
remember to do the ca save all afterwards. Try that and see if the key
changes again after a
I have the following inquiries and need some advise :
1) Does CiscoView supports voice port ?
2) How many devices can CiscoView supports ?
3) Can CiscoView support non-Cisco product ?
Can HP OpenView performs all task that CiscoView do ?
thanks in advance.
regards
Jimmy
ahh i see i did not specify the gefault gatway command on my cisco 2501 for
the linksys. all i did was make the external port for my sun box 2323 and
for my cisco 23 to activate the port forwarding from my linksys over my NAT
internally to my 2511 router. Actually mine is also a 2511.
Sorry
Hi,
You mentioned that you were doing static nat on the router, this could
effect it if the vpn client terminates on the router. The ip addresses that
you have statics for is translated to the global IP address, and doesn't go
through your vpn, since the access-list in your crypto map doesn't
Andrew,
Of interest is that the RSA key was generated sometime after my reboot of
the router. It looks like PDM (because this was the only way I could access
the device) created a new key for me or at some point... Not sure when...
Anyway, I ca zeroize rsa, ca generate rsa key and ca save alled
[EMAIL PROTECTED] wrote:
I have the following inquiries and need some advise :
1) Does CiscoView supports voice port ?
2) How many devices can CiscoView supports ?
3) Can CiscoView support non-Cisco product ?
Can HP OpenView performs all task that CiscoView do ?
thanks in advance.
Don't have any gear to test this on, but what if you
put a network 1.1.1.1 mask 255.255.255.255 in your
AS 200--AS300 eBGP peer? The route received from AS100
will populate the routing table and thus cause AS200's
network statement to be satisfied and thus advertised.
This may make 1.1.1.1 to
My RSA keys never change during reload etc.
Based on that I get the feeling that someone(engineer) changed something and
told no-one. Just my 2 cents
-Original Message-
From: Jens von B|low [mailto:[EMAIL PROTECTED]]
Sent: 10 February 2003 15:31
To: [EMAIL PROTECTED]
Subject: RE: ssh -
I think something is being lost in the translation...
This confuses me, too.
--T
Message Posted at:
http://www.groupstudy.com/form/read.php?f=7i=62753t=62728
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
When studying for the CCIE with friends, we decided that if you forget the
broadcast keyword, the terrorists win.
--T
Message Posted at:
http://www.groupstudy.com/form/read.php?f=7i=62754t=62614
--
FAQ, list archives, and subscription info:
I need to connect to the AUX port using a modem. The only problem is that I
do not want to use an external telephone line. Is there a way to simulate :
host--modemAUX (router)
Where can I find the information?
Thanks in advance.
MO
Message Posted at:
Been spending this weekend on what was once the Cisco Advanced SE Training
( ASET ) set of labs. These are available for those whose Cisco account team
approves - there are a few conditions which can be found in the wee places
of certification training.
The program is run by Lab Gear ( the only
Try the following Break into router, next copy start to run, change
password, copy run to start, change config register back.
Daniel Ladrach
CCNP, CCNA
WorldCom
-Original Message-
From: Philip van Dalen [mailto:[EMAIL PROTECTED]]
Sent: Monday, February 10, 2003 5:53 AM
To: [EMAIL
Look at CAR
Router Kid @groupstudy.com em 10/02/2003 08:22:44
Favor responder a Router Kid
Enviado Por: [EMAIL PROTECTED]
Para: [EMAIL PROTECTED]
cc:
Assunto:E3 bandwidth issue. [7:62740]
If a client were to take an E3 (T3) would they be able to cap/restrict the
bandwidth at
If you're asking what I think you're asking, then I think your answer is
yes, but you won't be able to pass any traffic across the circuit. Unless
you've confused me (it doesn't seem I would be the only one), then the
answer might not be the same.
- Original Message -
From: Monu Sekhon
Only problem is which side are you pinging
-Original Message-
From: John Murphy [mailto:[EMAIL PROTECTED]]
Sent: Monday, February 10, 2003 11:15 AM
To: [EMAIL PROTECTED]
Subject: Re: Simple Ip issue (need help) [7:62728]
If you're asking what I think you're asking, then I
Hello
Could you please tell me in the PIX Cisco firewall their clients need to be
firewall clients or not?
Hanan
Message Posted at:
http://www.groupstudy.com/form/read.php?f=7i=62761t=62761
--
FAQ, list archives, and subscription info:
Hi All,
Thanx again for all for contribution
confusion still there ,
I am pinging remote side and I am able too.
any comments from all(still confused with answers)
Walker, James - Is wrote:
Only problem is which side are you pinging
-Original Message-
From: John
I'm preparing for the written, any last minute advice on the new test?
David
Message Posted at:
http://www.groupstudy.com/form/read.php?f=7i=62763t=62763
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Dear all,
From cisco configuration example
http://www.cisco.com/en/US/tech/tk713/tk317/technologies_configuration_examp
le09186a00800944ff.shtml
I'm wondering that the line no cdp enable is required for both router
in order to make a serial connection up for back-to-back connection.
If you ping you are probably pinging the Local IP.Try debug ip icmp to
verify what you are pinging.
Daniel Ladrach
CCNP, CCNA
WorldCom
-Original Message-
From: Monu Sekhon [mailto:[EMAIL PROTECTED]]
Sent: Monday, February 10, 2003 12:03 PM
To: [EMAIL PROTECTED]
Subject: RE: Simple Ip
Cisco Discovery Protocol (CDP) is a managment protocol that allows routers
and switches to tell each other about their IOS version, hardware platform,
and basic config info. Some security experts say to disable it because it
tells too much.
It has nothing to do with bringing the serial interface
You can't have duplicate IP addresses anywhere. They have to be unique. The
only exceptions would be if you were doing some sort of NAT or tunneling or
something and the duplicates were hidden from each other.
You don't get an error when you try to configure it because it's a lot
harder for IOS
hanan wrote:
Hello
Could you please tell me in the PIX Cisco firewall their
clients need to be
firewall clients or not?
PIX isn't a client/server architecture. Firewalls generally aren't. The term
firewall client isn't used usually.
PIX is a network firewall that protects an inside
Can someone explain the difference between the following access-group
commands and the impact of each access-list binded with those interfaces?
access-list acl_in permit tcp any any
access-group acl_out in interface outside
and
Access-list acl_in permit tcp any any
access-group acl_in
access-list acl_in permit tcp any any - creates an access list which permits
all tcp from any source to any destination
access-group acl_out in interface outside - binds the acl_out access list to
the outside interface (for inbound traffic). You must determine what the
acl_out access list
This must be on PIX? The syntax isn't quite right for IOS.
Ismail Al-Shelh wrote:
Can someone explain the difference between the following
access-group
commands and the impact of each access-list binded with those
interfaces?
access-list acl_in permit tcp any any
The acl_in is just a
oops, one mistake
I meant to say this
access-group acl_in in interface inside - binds the acl_in access list
(created above) to the inside interface .
instead of this
access-group acl_in in interface inside - binds the acl_in access list
(created above) to the outside interface (for inbound
Hi all,
Anybody help me with the most complete books to prepare for the new lab
format?
In this moment i use All-In-One Cisco CCIE Lab Sudy Guide 2nd Edition and
Cisco CCIE Lab Practice Kit.
Are any more completing book in the field?
tks all
Background
I have two sites connected via 2600 series routers and a
point-to-point T1. Recently we were able to piggy-back on a faster
connection using two Pix 515's and a VPN tunnel. I'd like to keep the
T1 for load-balancing and fault-tolerance. To do this, the clients
have to go to the
VPN Terminates at the PIX. The problem ended up being that a few internal
hosts did not have thier gateway setup...also...the mail server was a Team
Internet ( appliance )...and it refused to see any other gateway other than
itself...hmmm.
Anywaywe are providing a work around for the remote
Any CCIE study groups here in the Chicago area?
Regards,
David
Message Posted at:
http://www.groupstudy.com/form/read.php?f=7i=62777t=62777
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report
Hi, im posting to inquire about the new feature introduced in rev
12.2(13)T1 called DMVPN.
Has anyone had any experience configuring it? Good, bad?
I have a scenario where im about to deploy 36 1760 bundles
(CISCO1760-VPN/K9) with some 2611XM's and a 7204 at the hub connected to
a DS3.
We are
Chuck,
Your post reminds me of those weird little ice cream stands that I sometimes
see at the mall and various carnivals. It's called something like Dipping
Dots - The Ice Cream of the Future. The initial human instinct is much
like the Cro-Magnon humanoids encountering the monolith at the
At 06:18 PM 2/10/2003 +, Priscilla Oppenheimer wrote:
You can't have duplicate IP addresses anywhere. They have to be unique. The
only exceptions would be if you were doing some sort of NAT or tunneling or
something and the duplicates were hidden from each other.
You don't get an error when
Hmm, I don't think the problem lies with the ISDN or its capabiltiy to dial,
as DW mentioned, pings are possible from router to router, so a route is
possible, just not from the LAN.
possibly a better debug would be debug ip icmp an then run either extended
pings from the Fast Ether, or from the
I'd be interested in joining one, or forming a new one.
Nguyen, David wrote:
Any CCIE study groups here in the Chicago area?
Regards,
David
--
Chris Theiss
IPG WAN Group
[EMAIL PROTECTED]
(312) 425-6624
Message Posted at:
http://www.groupstudy.com/form/read.php?f=7i=62782t=62777
Did you check the commands ip nat outside and ip nat inside on the
corresponding interfaces?
I missed them more than once
Regards,
Jose
McHugh Randy escribis en el mensaje
[EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
I am looking for the command to forward traffic to port 80 from the
outside
Folks
I am wondering if anyone has any recommendations for BGP study. I am
booked in for the BGP beta exam on Friday and still dont feel
comfortable with my level of BGP knowledge. I have read the following
over the last few months
Halabi - Internet Routing Architectures.
Hey, what about a CCNP Study Group in Chicago?
Timothy B. Fernandez
Network Technician
Technical Operations New York 2
Thomson Financial
-Original Message-
From: Chris Theiss [mailto:[EMAIL PROTECTED]]
Sent: Monday, February 10, 2003 5:09 PM
To: [EMAIL PROTECTED]
Subject: Re: CCIE
Do you have a traceroute at where it died at?
Daniel Ladrach
CCNP, CCNA
WorldCom
-Original Message-
From: Keith Campbell [mailto:[EMAIL PROTECTED]]
Sent: Monday, February 10, 2003 5:58 PM
To: [EMAIL PROTECTED]
Subject: Re: Any help appreciated - Router will not route [7:62568]
No problem with the splitting of hairs. :-)
I have been wondering why Cisco lets you do what the original poster is
doing, which most of us misunderstood. He is using the same IP address on 2
serial interfaces on the SAME router.
If you try to use the same IP address on two Ethernet interfaces,
check this out
http://www.packeteer.com/products/packetshaper/
Christian Seemueller wrote in message
[EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
Hello,
has anybody an idea, how to filter the new Media-Sharing-Tools like Kazaa
V.2.02, which ist tunneling it's data over an individual
At 01:20 AM 2/11/2003 +, Priscilla Oppenheimer wrote:
No problem with the splitting of hairs. :-)
I have been wondering why Cisco lets you do what the original poster is
doing, which most of us misunderstood. He is using the same IP address on 2
serial interfaces on the SAME router.
Sonet
Hello-
Anyone have a current script used to test isdn line availability? There are
app's available, but scripting seems to be the way to go...anyone out there
using their own scripts to test isdn call setups etc..?
Thx!
_
Thanks for that. I had read that previously and it helped somewhat.
However, my problem comes from interaction of the various technologies.
For instance, I want to use some static packet filtering to keep IP spoofing
out, denying private IPs from coming in from the outside interface, but when
I
I have written expect scripts to test connectivity.
Do you have backup interface applied or are you using dialer watch.
Ronnie
Rich Muller wrote in message
[EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
Hello-
Anyone have a current script used to test isdn line availability? There
are
app's
Nuno Lopes wrote in message
[EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
Hi all,
Anybody help me with the most complete books to prepare for the new lab
format?
In this moment i use All-In-One Cisco CCIE Lab Sudy Guide 2nd Edition and
Cisco CCIE Lab Practice Kit.
Are any more completing
Charles Riley wrote:
I think you may have overreacted and scared everybody away! :-)
Chuck,
Rounding out that analogy, the CCIE of the future will probably
be reduced
to being the CCNP of today.
They can still make CCIE much harder than CCNP and if it is much harder, it
will be more
At 11:40 PM 2/10/2003 +, Peter Walker wrote:
Folks
I am wondering if anyone has any recommendations for BGP study. I am
booked in for the BGP beta exam on Friday and still dont feel
comfortable with my level of BGP knowledge. I have read the following
over the last few months
actually, i think you have it backwardsthe CCNP of tomorrow will be the
CCIE of todayCCC tests are getting harder...the bar is being raised
if what you state is truly the way you truly feel, then you were in pursuit
of the CCIE for the wrong reason in the first place.
sorry you're so
Ladies n' Gentlemen, a quick question about the IOS feature set. Does
anyone know of a way to configure an async serial port (either a sync/async
WIC or the 8/16 port NM) on a 3600 platform to act as a point-to-multipoint
FRAD? The application is for SCADA, so a single RS-232 based PC at 1200
Dear Priscilla,
Thank you for your clear explaination.
May be it is better to disable cdp for low speed link, and security issue.
Regards,
Lawrence
Priscilla Oppenheimer wrote in message
[EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
Cisco Discovery Protocol (CDP) is a managment protocol
I would bundle the two serial interfaces together using Multilink PPP, then
place access control on the router so customer's can't talk to each other,
then apply rate limiting to each customer with guaranteed 64k, burst
additional 64k and do rate limiting on bundle (if that's possible).
This is
Tom@I-McNamara wrote:
Thanks for that. I had read that previously and it helped
somewhat.
However, my problem comes from interaction of the various
technologies.
That article helped me a lot to understand interactions of various
technologies and transformations of packets. I've used table
69 matches
Mail list logo
