Just curious, but didn't this all start when a couple of vendors got into a
pissing match over on the CCIE Lab list back when?
- Original Message -
From: The Long and Winding Road
To:
Sent: Wednesday, February 12, 2003 6:21 PM
Subject: CCIE Study Materials - Anti-Rant [7:62930]
hi john,
i recommend bookware.com.au they always have 20% off rrp and is $15-20
cheaper than dymocks and the rest..
hth,
mark.
-Original Message-
From: John Brandis [mailto:[EMAIL PROTECTED]]
Sent: Wednesday, February 12, 2003 8:51 PM
To: [EMAIL PROTECTED]
Subject: RE: Top Down Book
Hi Chuck,
Just curious to know what ios release you were using with this? I could not
replicate the same results.
cheers,
Mark.
-Original Message-
From: The Long and Winding Road
[mailto:[EMAIL PROTECTED]]
Sent: Friday, January 03, 2003 9:52 PM
To: [EMAIL PROTECTED]
Subject: Re:
The problem was sorted with portfasta big thankyou to all that helped and
all that criticised
Message Posted at:
http://www.groupstudy.com/form/read.php?f=7i=62947t=62947
--
FAQ, list archives, and subscription info:
Hi,
my answer to this question is: You need both 5000 and 3550.
The 5000 switch is used for CCNP now. and usd in many
installations.
The 3550 switch is new, used for CCIE now and I think will be
used in CCNP in future. It is good to know it because it will be
used in many installations shortly.
There are 2 7200 routers that connect to different providers. Traffic ends
up where it is supposed to. The problem is that we have intermittent slow
response times and some applications that don't work properly over the
internet. My suspicions are that some of the traffic is returning over the
I have to concur with Anan with how nice the new interfaces are to
maneuver. Last week I had the pleasure of taking the new IDS course version
3.0 and had a chance to work with the parts. They were fairly easy to learn
and produce results. If you only have a few sensors the IEV (IDS Event
Hi all,
Is there anyone who have suggestion for this problem:
in my catalyst 6500 I have a lot of message like this, even 60 for day:
Switch_1 (enable) 04/21/1998,03:15:40:DTP-5:Port 1/1 has become non-trunk
Switch_1 (enable) 04/21/1998,03:15:41:DTP-5:Port 1/1 has become trunk
I specify
At 8:06 AM + 2/13/03, Eric Rogers wrote:
Just curious, but didn't this all start when a couple of vendors got into a
pissing match over on the CCIE Lab list back when?
I'll leave it to Paul Borghese to decide how specifically to discuss
this, but the problem literally goes back for years.
Sort of related question. When you SWIP the /24 to your customer,
who is responsible for the address utilization? Said differently,
can you get more addresses if you show that your /19 minus the
customer /24 has the right level of utilization? Or, must the
overall /19, including the customer's
Having installed and worked with both products, I think that Cisco's
offering is more comprehensive, but Snort is highly reliable and much
cheaper.
It doesn't have some of the features of the Cisco product (dynamic
shunning), but for most small to medium sized businesses (like the kind I
work
There's more about the Myers Briggs personality sorter here:
http://keirsey.com/
Anyone else want to share what they are, or have we wasted enough
bandwidth
on this already? :-)
Priscilla
First, you're correct about the mix of learning styles in my class.
This is just a three-hour
- Original Message -
From: Vicuna, Mark
To: The Long and Winding Road ;
Sent: Thursday, 13 February, 2003 1:13 AM
Subject: RE: Tonight's Homily - OSPF authenitcation - I didn't know
[7:60282]
Hi Chuck,
Just curious to know what ios release you were using with this? I could not
I have setup the Easy VPN in 827 router(CPE) .I am able to configure
Extended authentication as local .But i want to configure the nt domain
authentication.Can anyone suggest how this setup can be achieved .
Thanks
Giri
Message Posted at:
As for Myers Briggs, I'm a fellow INTJ. However, I really dislike
their testing process. It seems to consist of Given a certain
situation would you do A or would you do B with no room for a
'maybe'
answer. At least a third of the time I wish there were a sometimes
A
and sometimes B answer.
comments in-line:
-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]
Sent: Wednesday, February 12, 2003 9:06 PM
To: [EMAIL PROTECTED]
Subject: Snort versus Cisco IDS [7:62939]
Someone told me in an authoritative voice today that Cisco doesn't recommend
their IDS.
Haven't done it myself, but I think you have to use the RADIUS function
and the RADIUS server would be Win2K IAS feature for Radius.
I'm sure someone else can give you a more definitive answer.
-Mark
-Original Message-
From: giri g [mailto:[EMAIL PROTECTED]]
Sent: Thursday, February
Backing up what Craig said, Snort is probably better performing in
terms of cost/performance than almost all the IDSes out there,
including Cisco. It does not have a end to end solution to make
one's life easier though, at least not out of the box.
Of course, you will need some sort of a unix
I was wondering how long it would take for some of the big guns in this
group to finally mention this within the group. :-) In fact, as Chuck, Paul,
and John know, I've been ragging on them so much about this topic that they
probably can't stand me anymore.
I've been in the certification business
At 12:18 PM + 2/13/03, DeVoe, Charles (PKI) wrote:
There are 2 7200 routers that connect to different providers. Traffic ends
up where it is supposed to. The problem is that we have intermittent slow
response times and some applications that don't work properly over the
internet. My
true enoughi can just image in the event of a storm (mcast, bcast or spt
loop) what would happen on that segment, specially running ip phones ;-)
then again what you guys are doing could be (a) politically driven (b)
transition phase. what about using auxvlan if indeed you guys are using ip
As for Myers Briggs, I'm a fellow INTJ. However, I really dislike
their testing process. It seems to consist of Given a certain
situation would you do A or would you do B with no room for a
'maybe'
answer. At least a third of the time I wish there were a sometimes
A
and sometimes B
There are also some very nice prebuilt Snort sensors with a GUI from the
following vendors.
www.sourcefire.com
www.silicondefense.com
www.packetalarm.com
I have had the opportunity to evaluate and configure products from all
three, and they have done an excellent job of bringing Snort to the
Thanks for all the replies. It's very helpful to get a feel for the
differences. To quickly synthesize what I've read, I would say that Cisco's
IDS is an enterprise, end-to-end solution, with improving reliability and
ease-of-use. Snort, on the other hand, is more appropriate for the midsize
or
Howard C. Berkowitz wrote:
At 8:06 AM + 2/13/03, Eric Rogers wrote:
Just curious, but didn't this all start when a couple of
vendors got into a
pissing match over on the CCIE Lab list back when?
I'll leave it to Paul Borghese to decide how specifically to
discuss
this, but the
Hi,
you need a Cisco ACS server for AAA authentication via TACACS or
Radius. In the ACS Server you specify thast you want to use the
Windows 2000 user database.
Jens Neelsen
--- giri g wrote:
I have setup the Easy VPN in 827 router(CPE) .I am able to
configure
Extended authentication as
I was wondering how long it would take for some of the big guns in
this
group to finally mention this within the group. :-) In fact, as Chuck,
Paul,
and John know, I've been ragging on them so much about this topic that
they
probably can't stand me anymore.
No, that's not the case, but your
Vicky Mair wrote:
true enoughi can just image in the event of a storm (mcast, bcast or
spt
loop) what would happen on that segment, specially running ip phones ;-)
then again what you guys are doing could be (a) politically driven (b)
transition phase. what about using auxvlan if indeed
There is a windows port of Snort, but I've never used it, so I can't tell
you much about it from personal experience.
Those I know who've tried it usually recommend sticking with Unix.
Your mileage may vary, but you might have an easier time getting snort
running on FreeBSD since there's a very
Last post doesn't seem to have taken, so I'll try again. Does anyone have
any experience with the Madge 750 ATM switch? My PVC's seemed to work fine
but the SVC set-up procedure fails witha cause 90 (cause = mandatory
information element is missing, location = user, diag1 = 90). I have used
the
Priscilla,
Snort is very happy running on Windows platforms as well. I have been
running it as such for a little over a year now in combination with MySQL
and ACID and have been pleased. The only challenge (which may soon be
resolved) is using multi-processor machines, as the often used packet
in the example I gave, from a 7500 router, I believe at the
time isl was the only
vlan sub-interface mode supported. That was why we did
secondary ip's on
the interfaces for the ip phoneselsewhere on the campus
we use aux vlans and vlan interface
with trunks...
Larry Letterman
Network
runs on windoze as well.
http://www.silicondefense.com/techsupport/winsnortacid-iis_1.9.0.htm
regards,
/vicky
-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]
Sent: Thursday, February 13, 2003 9:20 AM
To: [EMAIL PROTECTED]
Subject: RE: OT Re: Snort versus
we use the non negotiate mode on all our trunks...we dont
consider it a work around..
have you checked your g-bics at both ends ?
Larry Letterman
Network Engineer
Cisco Systems
- Original Message -
From: Luca Ciasca
To:
Sent: Thursday, February 13, 2003 4:37 AM
Subject: flapping of
I've been having trouble with Snort on Red Hat and I've searched high and
low and can't find a resolution. My alert file grows to 2GB very quickly and
then crashes the process. I've seen one or two mentions of this same issue
in NG searches but haven't found a resolution. So like someone already
comments in-line:
-Original Message-
From: MADMAN [mailto:[EMAIL PROTECTED]]
Sent: Thursday, February 13, 2003 9:36 AM
To: Vicky Mair
Cc: [EMAIL PROTECTED]
Subject: Re: FW: HSRP question [7:62941]
Vicky Mair wrote:
true enoughi can just image in the event of a storm (mcast,
Has anyone seen this error on an LS1010 ASP IOS version 11.2(10)WA3(4)
Dec 9 19:22:18 _5500C_SWITCH 38: Dec 9 19:13:36: %SCHED-3-THRASHING:
Process thrashing on watched queue 'lec_flush_inputQ' (count 6).
Dec 9 19:22:18 _5500C_SWITCH 39: -Process= LANE Client, ipl= 6, pid=
56
Dec 9
My organization just went through evaluating Cisco IDS which we already
have 12 sensors, Dragon IDS kind of based on Snort, and rolling our own
version of snort. I came up with these 3 based on the different price
points and also because according to some of my research talking to
people at SANS
i was about to suggest using sub-interface but anyway you guys had
reasons in doing so as you said.
regards,
/vicky
-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of
Larry Letterman
Sent: Thursday, February 13, 2003 10:26 AM
To: [EMAIL PROTECTED]
As usual, you were absolutely correct Pricilla! The part which I didn't
mention (because, for some reason, I figured that it was unimportant) was
that this is an HDLC circuit going to my provider for a VPN circuit. They
have a Nortel Shasta 5000 (essentially an IP multi-service edge router) and
I've also had trouble with RedHat...with Snort as well as other apps. I
switched to FreeBSD and have been very pleased so far.
At 06:32 PM 2/13/2003 +, you wrote:
I've been having trouble with Snort on Red Hat and I've searched high and
low and can't find a resolution. My alert file grows
I use ciscopress bscn, is-is ampliation from ciscopress.com and bosom test
regards and good luck
John Faulk escribis en el mensaje
[EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
Hey guys, what were your study materials?
John
On Tue, Feb 11, 2003 at 03:47:01PM +, Mark Smith wrote:
On Thu, 2003-02-13 at 00:06, Priscilla Oppenheimer wrote:
Someone told me in an authoritative voice today that Cisco doesn't
recommend
their IDS. They recommend Snort. Is this really true? Isn't Cisco's IDS a
big part of SAFE?
Whomever told you this:
1) Is extremely naiive (one Cisco
anyone knows why MPLS require CEF to be enable on the cisco routers ?
Regards!
Router Kid~!
Message Posted at:
http://www.groupstudy.com/form/read.php?f=7i=62993t=62993
--
FAQ, list archives, and subscription info:
ket_department09186a0080142dfb.html#title
Message Posted at:
http://www.groupstudy.com/form/read.php?f=7i=62994t=62994
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure
If I were Paul B. I would make the commercial companies pay for the right to
post questions or answers that seem comercial. If you aren't a paying
advertiser you get filtered. Paul has been offering this site bascially for
free over the years and he deserves to get some compensation. I have
Off the top of me noodle I think It has to do the FIB built by CEF
and the FIB probably contains the tag info MPLS uses. I'm sure someone
else can elaborate much more eloquently than I though ;)
Dave
Router Kid wrote:
anyone knows why MPLS require CEF to be enable on the cisco routers ?
ket_department09186a0080142dfb.html#title
;)
Message Posted at:
http://www.groupstudy.com/form/read.php?f=7i=62995t=62995
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure
mpls use sef table to forword lable if you need more information
you can e-mail me in [EMAIL PROTECTED]
Message Posted at:
http://www.groupstudy.com/form/read.php?f=7i=62997t=62993
--
FAQ, list archives, and subscription info:
Ok, so we'll try avoiding the first line of the message.
Bottom line, check out Packet. Good magazine, useful articles, but
thought this may be of interest... Just the e-mail engine doesn't like
the link!
http://www.cisco.com/warp/public/10/wwtraining/certprog/testing/current_
well i had same pro with 6509 and this was becuse of the code version
of the msfc
which version of msfc you are runing
Message Posted at:
http://www.groupstudy.com/form/read.php?f=7i=62999t=62951
--
FAQ, list archives, and subscription
Hi All,
Cisco announced the new feature of Dynamic Multipoint VPN on the new Cisco
IOS 12.2(13)T version. I wonder if anyone has implemented it yet? How is
it working? Couple concerns I am having if designing our WAN using this new
feature:
- Does it support RSA nonces authentication?
- Could
Scott,
I think the problem is that they're trying really hard on the list
to avoid becoming commercial (see the thread CCIE Study Materials -
Anti-Rant [7:62930]), so they've blocked promotions for specific vendors
like that Cisco place (lol!!!)
Geoff Mossburg
-Original
Hi all,
Every time I boot my router, it asks if I want to configure my router. I
know I have to type some sort of confreg line in. Can someone tell me which
one so I can boot my router correctly, without having to reconfigure it each
time.
Thanks.
Message Posted at:
Not to mention the fact that Cisco Systems bought Okena Software
www.okena.com, last month specifically for their Intrusion Prevention
software.
SNORT is a great tool, I don't think that anyone would or can argue that. I
think that being that it's driven by the open source community it comes
0x2102 or just - 40h
Charles
-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of
Johnson, Richard (NY Int)
Sent: Thursday, February 13, 2003 8:22 PM
To: [EMAIL PROTECTED]
Subject: Easy question [7:63002]
Hi all,
Every time I boot my router, it asks if I
You're booting up in ROM MON mode, have you recently broken into this device
or is this the first time the device has been configured? What model is it?
Will Gragido CISSP CCNP CIPTSS CCDA MCP
9450 W. Bryn Mawr Ave.
Suite 325
Rosemont, Il 60018
www.ins.com
[EMAIL PROTECTED]
-Original
Scott Morris wrote in message
[EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
Ok, so we'll try avoiding the first line of the message.
Bottom line, check out Packet. Good magazine, useful articles, but
thought this may be of interest... Just the e-mail engine doesn't like
the link!
Mossburg, Geoff (MAN-Corporate) wrote in
message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
Scott,
I think the problem is that they're trying really hard on the list
to avoid becoming commercial (see the thread CCIE Study Materials -
Anti-Rant [7:62930]), so they've blocked promotions for
Type show version to view your configuration register. If the
configuration register is 2142 perform the following command (from
privilege mode):
config t
config-register 0x2102
end
copy run start
Take care,
Paul Borghese
-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL
Do not forget about the open source scanner Nessus (www.nessus.org) for
penetration testing. One of the best around!
Paul
-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] On Behalf Of
Vicky Mair
Sent: Thursday, February 13, 2003 10:55 AM
To: [EMAIL PROTECTED]
The thing that makes SNORT so powerful is the attack rules which are
updated almost daily. Also, you can not beat the price. Simply find an
unused PC, install Linux and install Snort. The software and OS is
free!
You will need some sort of parsing software to read the snort logs.
Check out
How much does this exam cost ?
Scott Morris wrote in message
[EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
Ok, so we'll try avoiding the first line of the message.
Bottom line, check out Packet. Good magazine, useful articles, but
thought this may be of interest... Just the e-mail engine
Dear Group,
Need some info on establishing site-2-site VPN using Cisco secure 525 PIX
firewall. Can some body forward some url or sample config on the same.
Many thnx in advance
Thanks
Hitesh
DISCLAIMER:
Information contained and transmitted by this E-MAIL is proprietary to
Wipro Limited
64 matches
Mail list logo