Hello,
You can use access lists to log it. You can use either logging buffered
(limited in number of entries) or use a dedicated log server.
Alex
Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=34353&t=34346
--
FAQ, list archives
FIPS197 was declared as the new AES in November, 2001. The standard will be
in effect in May, 2002. When do we see it in actual products... not too sure.
http://csrc.nist.gov/publications/fips/fips197/fips-197.pdf
Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=34865&t=34863
--
I have a feeling this is a mismatch type of problem. Please see the link
below:
http://www.cisco.com/univercd/cc/td/doc/cisintwk/itg_v1/tr1918.htm
Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=34866&t=34864
--
FAQ, list archives
I don't think it was difficult, it was simply illy - organized and poorly
worded. As always, if it's too confusing to reason, process of elimination
works great.
Alex
Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=34867&t=34856
-
Not sure if most of you already received this.
https://www.cisco-eventreg.com/cpn2002/
Training sessions, free test, and if are already a qualified lab candidate,
free CCIE lab test. Hurry up, the sessions are filling up really quickly.
Alex
Message Posted at:
http://www.groupstudy.com/form/r
Group,
Has anyone used both concentrator 3000 and checkpoint vpn (either software
or hardware)? What are each's advantages and disadvantages? I am interested
in the following factors: Ease of installation and configuration, security,
manageability, reporting and logging, scalability, and pricing.
I think it refers to half open TCP connections. For example, you may have a
whole bunch of SYN requests that your box has ACKed, but has not received a
SYN ACK from.
Alex
Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=38461&t=38451
-
Hello,
I used Bernard Omrani's test (#2, I think). I liked the questions, and
Bernard replied promptly when I took issue with one of the questions.
Alex
Ole Drews Jensen wrote:
>
> This doesn't answer your question perfectly, but could be a
> good advise.
>
> What I do is to take all the test
Steve,
Why is redistribution into an IGP a big no - no? My understanding is that
this is what people usually do.
If you use OSPF and E2 routes on the third router, then OSPF should find the
optimal route.
Alex
Steven A. Ridder wrote:
>
> If I had 2 7206 routers dual homed to two different ISP
That pretty much rules out redistributing into IGP. I am thinking that
Steve's original suggestion is the only way to go, but I feel that there may
be a problem accepting full routes from two different providers.
Any comments?
Alex
[EMAIL PROTECTED] wrote:
>
> I'm no BGP guru, but I would have
If I understand you correctly, yes. The real destination IP is hidden, and
the destination IP address visible to the internet is the VPN server on the
other side.
Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=26511&t=26452
--
FAQ
Hello Christopher,
If I am not mistaken, E2 is always used by default, but if E1 and E2 are
both available for the same destination, E1 will be used.
http://www.cisco.com/warp/public/104/3.html
Alex
Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=27403&t=27390
-
Hello James,
Since your router 2 IP is on a different subnet you need to have either
routes set up; or run some kind of routing protocol.
Alex
Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=27696&t=27695
--
FAQ, list archives, a
Hello Hunt,
In my understanding the shared key never go across the network. Each peer
computes it out separately. Where did you see in CCO saying that the DES key
is sent across the internet?
Alex
Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=27998&t=27952
--
I have a link here for your reference. Read the section on RSA.
http://www.cisco.com/warp/public/105/IPSECpart3.html
Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=27999&t=27952
--
FAQ, list archives, and subscription info: http:
I wish it was easier to be security - conscious with Microsoft products..
but outlook is very difficult to secure. For a lot of users, it's tedious
for them to disable preview panel and automatic preview; increase attachment
security level and macros security level. These features should have neve
Hello Ike,
>From your email address I know you are based in China. Perhaps you are not
very aware of Cisco's lawyer's fearsome powers due to geographical distance.
I mean no ill will and this is simply a friendly reminder, but please
refrain from posting actual test questions. You signed the Non
I thought it was OK, but not in depth enough. It covered a pretty wide range
of topics, so most of the labs seem to only scratch the surface. Not sure
about the mistakes part.
Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=28992&t=28991
-
Hello Festus:
1. This is a persistent and difficult problem. The short answer is, you
can't. There are a lot of products like Cyberpatrol, but they are not on the
router. Usually they are on the proxy servers, end PC's and firewalls. They
can block a lot of sites but not all. Filtering based on w
Hello David,
I think your config should work, too. But here are a few suggestions
nevertheless:
1. use "nat (inside) 0 0 0" instead of "nat (inside) 0 129.174.1.0
255.255.255.0"
2. delete "static (inside, outside) 129.174.1.0 129.174.1.0", it's not
really needed.
3. Like Ejay said, do a tracerou
Hello Farhn,
www.dslreports.com can tell you a lot of about your provider. Like who
provides the loop, the distance between you and the CO... Check it out.
Alex
Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=30038&t=30032
--
FAQ
> > If you have 2 20' poles, a 32' rope strung between them, and
> the
> > lowest point of the rope is 4' off of the ground, how far
> apart are
> > the poles?
> >
If I understand correctly, I think the answer to this one is 16'.
If the rope is attached to the ends of the poles, then the d
Yoschii,
This sounds more like the so - called "blind dial". Some countries will not
have the dial tone when you connect the modem to it. In order to use dial up
you have to disable the "wait for dial tone" feature otherwise your modem
would just wait forever.
Alex
supernet wrote:
>
> When I t
Gaz,
I think there might be some routing problems. IPSEC is not like a serial
link, it will not pass all traffic, it only passed traffic from one endpoint
of the tunnel to the other endpoint of the tunnel. In your scenario, once
the packet gets to the concentrator, the concentrator wouldn't know
Wayne,
Why not use the router to terminate the links, and put the PIX behind the
router? The PIX will inspect the traffic, and the router can send traffic to
different links depending on where it originated from. Usually a 515 may be
a better solution because it has a DMZ interface where the serv
Paul,
I have a feeling that you might have tried the below, but just for a
suggestion:
Is the ping time always high, or does it vary depending on the time of the
day? If it's the latter, it might be a congestion problem, and you can check
for the presence of FECN's on the frame switch. This happ
Thanks Steve. The slides are very helpful.
Alex
Steven A. Ridder wrote:
>
> Oops, wrong link.
>
> pad
> pad
> pad
>
> http://www.cisco.com/networkers/nw02/presos.html
>
>
> --
> RFC 1149 Compliant
>
>
>
>
> ""Clayton Dukes"" wrote in message
> [EMAIL PROTECTED]">news:[EMAIL PROTECTED]
I don't know the details, but I would imagine that the boot roms are
different. I can't really see Cisco using a Phoenix bios... Finesse is the
original OS used in PIXes, the boot roms probably have the Finesse kernel
inside. Larry Letterman would probably know for sure.
Alex
Calorifer Gogu wro
Facts have spoken. I retract my prior statements.
By extension, could you have used a differenet MB / CPU?
Alex
Mike Sweeney wrote:
>
> Special drivers? bunk-
>
> http://www.packetattack.com/frankenpix.html
>
>
> It can be replaced with a normal, garden varity Intel SE440BX
> motherboard.
Groupstudy,
I'd be very very surprised if Huawei violated Cisco's rights, simply because
Huawei is the largest networking gear company in China, if they did anything
suspicious, Cisco would surely find them. From what I know, Huawei is a
pretty ethical company for a multi national corporation, an
Mr. Ahmad,
I have found Tanenbaum's Computer Networks, 2nd edition to be a very good
book. Radia Perlman's Bridges and Switches is also a classic.
Alex
a. ahmad wrote:
>
> Dear All,
>
> I just want to work on my basic concepts of networking and for
> that I need the name of some valuable book
31 matches
Mail list logo
