Place a summary route to null 0 for the networks on Router D on your OSPF
routers and set the metrics appropriately for the summary route
-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of
Kevin Schwantz
Sent: Tuesday, May 29, 2001 10:03 AM
To: [EMAIL PROTEC
Actually you can get IPSEC to work with nat. The problem lies within the
procedure on the router. Packets are nat'ed before the IPSEC process takes
place.
Here is a link dealing with IPSEC and nat. I am sure if you search around
there will be more. This link deals with one side doind NAT and IPSE
Sure. Get the mac address and then on the switch do a show cam dynamic.
Match the MAC on the PC with the MAC in the CAM. The cam will also list the
Vlan and port the mac is assigned to.
-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of
Richard spalding
Sent
'Jay Chandradas'; 'Chris
Larson'; 'Bob Boone'; [EMAIL PROTECTED]; [EMAIL PROTECTED]
Subject: RE: bri flapping with demand cirquit/igrp redistribution
Can somebody tell me how come CDP may bring the line
up? As you know, it works only in layer 2 as said
before. Your di
Will CDP keep the line up? Turn off CDP.
-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of
Bob Boone
Sent: Friday, March 16, 2001 5:30 PM
To: Jay Chandradas; [EMAIL PROTECTED]; [EMAIL PROTECTED]
Subject: Re: bri flapping with demand cirquit/igrp redistribut
Exam Content
The Routing and Switching Lab exam tests any feature that can be
configured on the equipment in the Equipment
List, except as noted below.
Effective immediately, the following topics have been removed from the
lab exam content:
LAT
DECnet
Apollo
Banya
I have used it as well. It is a good solution if you will not need to scale
to multiple DMZ's, and won't need to create any VPN tunnels to a PIX.
The 100 only has an insed, outside and DMZ.
"NetEng" <[EMAIL PROTECTED]> wrote in
message 8vu1kk$cuq$[EMAIL PROTECTED]">news:8vu1kk$cuq$[EMAIL
Actually you could get by just fine with 2 or 3
2500 series and a Cat 1900. The CAT 1900 has basically the same OS as 5000. Make
sure the 2500's have a couple serial (use them as a frame relay or
X.25 switch) and to test ISDN you will need an ISDN interface and ISDN
simulator.
- Origi
TACACS should usually be setup so that if TACACS is unavailable to the
device that the local password can be used. If you do not know the local
info then you will need to do a break as the router boots to get into rommon
and set the configuration register so the router does not load the startup
co
I also have official courseware from
ICRC
ACRC
BCRAN
CIT
CLSC
MCNS
And did not sign any agreements or NDA's saying that I would not sell trade
or give them away. The material is copyrighted so I could not copy it but as
for a trade or sale?
- Original Message -
Fr
I didn't realize that the courseware from Cisco was not tradeable, sellable
or could not be given away? Is there such an NDA or rules when you buy
Official Cisco courses?
- Original Message -
From: "Marc_Andre Giroux" <[EMAIL PROTECTED]>
To: "Brian" <[EMAIL PROTECTED]>
Cc: <[EMAIL PROTEC
er is simply a timeout.
- Original Message -
From: "Priscilla Oppenheimer" <[EMAIL PROTECTED]>
To: <[EMAIL PROTECTED]>
Sent: Monday, November 20, 2000 4:47 PM
Subject: Re: !H !H !H!H
At 03:25 PM 11/20/00, Chris Larson wrote:
>Even if this was correct you cannot si
:47 PM
Subject: Re: !H !H !H!H
At 03:25 PM 11/20/00, Chris Larson wrote:
>Even if this was correct you cannot simply by getting an !h say that this
is
>from an access-list. There are many reasons for a host unreachable message.
>
>Also, from most workstations (Windows that is), you will
What is the difference between the 2. I know a T-3
is the about equal to 30 T-1's, but there must also be a difference in signaling
right?
- Original Message -
From: "Chris Larson" <[EMAIL PROTECTED]>
To: "Rossetti, Stan" <[EMAIL PROTECTED]>; "'Jennifer Cribbs'"
<[EMAIL PROTECTED]>; "cisco" <[EMAIL PROTECTED]>
Sent: Monday, November 20, 2000 3:25 PM
Even if this was correct you cannot simply by getting an !h say that this is
from an access-list. There are many reasons for a host unreachable message.
Also, from most workstations (Windows that is), you will simply get a
timeout and neither !A or !h from packets being denied by an access-list.
Why is everyone referring to DSL as broadband? My
understanding of broadband would leave me to think that DSL is not broadband at
all. What gives?
We use IP Unnumbered to assign all of our
Frame-relay PVC's a single IP (that of e0). Then we don't have to assign each
PVC sub interface a seperate address.
- Original Message -
From:
net974 at Yahoo
To: [EMAIL PROTECTED]
Sent: Monday, October 16, 2000 10:18
AM
Yes.
If you dedicate your BRI to backup it can't be used for anything else. Using
a dialer interface allows you to specify the dialer as the backup to the
serial and frees the BRI physically for other things like load thresholds,
dialing in, dialing out, and DDR.
- Original Message -
Fro
The spanning tree algorithm WILL execute if you plug a PC into a cAT switch.
- Original Message -
From: "Leigh Anne Chisholm" <[EMAIL PROTECTED]>
To: "Jared Carter" <[EMAIL PROTECTED]>; "'Jon Mitchell'"
<[EMAIL PROTECTED]>; <[EMAIL PROTECTED]>
Sent: Friday, September 29, 2000 7:35 PM
Sub
Funny, your website www.netcginc.com doesn't mention
anything about having certified people on staff, even though I am sure it is
important to most potential customers. In fact your website (ha ha) doesn't
seem to have much on it at all. I am sure you will get a lot of business
though becaus
Furthermore I want proof of your status. Scan your certs dude. I know your
not certified, there is no way in hell.
- Original Message -
From:
RHM
To: John Kaberna ; [EMAIL PROTECTED]
Sent: Thursday, September 21, 2000 6:29
AM
Subject: RE: Bye
Are
you gone yet
Yeah no kiddin. I think you are really just angry
at everyone because you can't seem to pass any of the tests. I have not seem a
single post from you (John) with any relevant technical information at all. Just
a bunch of angry sideways comments. All you have to do is study a little, drop
the
Yeah right. YOu read all the books and passed the
test in 6 days. Sure ya did.
- Original Message -
From:
John Kaberna
To: [EMAIL PROTECTED]
Sent: Thursday, September 21, 2000 1:43
AM
Subject: Bye
Well the past couple weeks have been fun but
reading through o
: "Jason1" <[EMAIL PROTECTED]>
To: "Chris Larson" <[EMAIL PROTECTED]>; "Jim Bond" <[EMAIL PROTECTED]>;
<[EMAIL PROTECTED]>
Cc: <[EMAIL PROTECTED]>
Sent: Wednesday, September 20, 2000 5:31 PM
Subject: Re: CA in IPSec
> I don't thin
You must reboot after deleting sub interface to completely clear it from
router.
- Original Message -
From: "Patrick Stiever" <[EMAIL PROTECTED]>
To: <[EMAIL PROTECTED]>
Sent: Wednesday, September 20, 2000 7:58 PM
Subject: Deleting Sub interfaces
> Ladies and Gentlemen,
>
> I have a int
Sure, you can use priority queuing or custom queuing to prioritize by things
like protocol/port, interface, destination etc. And you can combine it with
traffic-shaping.
- Original Message -
From: "Plantier, William" <[EMAIL PROTECTED]>
To: <[EMAIL PROTECTED]>
Sent: Wednesday, September
Microsoft Advance Server has a CA and the resource kit has the SCEP (simple
cert enrollment protocol) developed by Cisco. You can use this as a root CA
for your orginaztion (or outside your enterprise) to issue certificates to
the routers, the Cisco VPN client and the 2000 boxes
- Original M
Unfortunatley, this won't work. The router is not saying there is no IOS it
is saying that either the flash is bad or that
it has not been partitioned. If you have an older flash for same router, put
it back into
the router in the first slot and the new flash into the second slot. When
the router
I have looked through the archives, and I am sure this has been asked but I
can't find reference to it.
Where can I find OID numbers for monitoring Cisco Routers and Switches
through MRTG?
smime.p7s
I use Procomm Plus and the break works there as oppossed to Hyperterm.
- Original Message -
From: "Clay Stuckey" <[EMAIL PROTECTED]>
To: "group study" <[EMAIL PROTECTED]>
Sent: Tuesday, September 05, 2000 9:28 AM
Subject: Break command under hyperterm
> What is the proper key stroke co
We have 2 CAT5500 with 2 RSM modules. We have duplicate ATM PVC's coming
into each RSM. How or can we load balance and provide redundancy between
them running say HSRP/MHSRP?
___
UPDATED Posting Guidelines: http://www.groupstudy.com/list/guide.html
FAQ, list archiv
If you are using hyperterm to try adn issue a break, many people have had
problems with this. Try it with a different terminal emulator, or maybe
someone in the group can post the right key combo for hyperterm.
- Original Message -
From: "Cbridgett" <[EMAIL PROTECTED]>
To: <[EMAIL PROTEC
Why post a pgp message to a public group??
Just curious.
- Original Message -
From: "Bessette, Jesse" <[EMAIL PROTECTED]>
To: <[EMAIL PROTECTED]>
Sent: Friday, September 01, 2000 10:42 AM
Subject: Thank god it's friday!!
> -BEGIN PGP MESSAGE-
> Version: PGP 6.0.2
> Comment: E
I also want to add that if you look at the load 1/255 to gauge router loads,
it is based on the bandwidth settings. If you have a 56k link but your
bandwidth is set to default then you will not get an accurate reading on
your load setting. I set the bandwidth setting for this reason on links that
Title: subinterfaces
You need to reboot the router to get rid of a sub
interface. Maybe Secondary IP addresses would be a solution for what you want to
do.
Also, the router is stating that to route between
ethernet Sub interfaces you need ISL or dot q because it assumes you will
be routing
This is an interesting question. The PIX is Intel Processoe based though.
The OS is proprietary and not based on any UNIX or other well knwon kernel.
It is hardened. YOu would also have to be able to load a bootstrap loader
onto the PC. It would be interesting if you got this to work. Please keep
I too am not a salesman, I am an engineer but. We sell a camera server
(4ports 1 for each camera if you want 4). The server is the size of an
external modem and get this. you can pan tilt and zoom all controlled
over the web. You can use your browser to get into the server and control
all
We are looking for a lab. If anybody has used lab we would like to purchase.
I have seen labs advertised here, but they always seem to be used. We would
like to purchase a whole lab as oppossed to pieces off e-bay.
___
UPDATED Posting Guidelines: http://www.groupst
Do a show line on the router. Find the number of your aux port and add 2000,
this is your port # for the aux. Then telnet to the address /port of the
router and wa-la.
telnet 127.16.1.39 2129
- Original Message -
From: "Thomas Peroutka" <[EMAIL PROTECTED]>
To: "Group Study" <[EMAIL PR
We have a similiar situation. We bring all of our outside customers into a
single router that routes traffic into a dmz with private addresses (serial
interface on router has public IP, routes to ethernet private ip connected
to DMZ). The DMZ has a lower security then the DMZ we provide services i
Are you using WINS? Do you have the wins server entered into the DUN
connection?
Are you blocking and netbios ports on your router through access-lists?
- Original Message -
From: "Leon Bass" <[EMAIL PROTECTED]>
To: <[EMAIL PROTECTED]>
Sent: Tuesday, August 22, 2000 1:16 PM
Subject: Aut
You will always need to have a router or a route processor to router between
VLANS. At least with current technology. Layer 3 switching is really just
being able to processes a route and then forward at switch or wire speeds.
It still needs to process a route, and is routing between lan segments.
You can set the amount of time a translation times out and get's cleared. It
sounds like yours are sitting around for longer then normal.
ip nat translation timeout
When port translation is not configured, translation entries time out after
24 hours. This time can be adjusted with the above com
OTECTED]
Subject: Re: pix-to-pix tunnel...somebody make it work!!!
hi chris. what's the title of this book? or isbn#?
"Chris Larson" <[EMAIL PROTECTED]> wrote in message
009AE8FD8584D3119A2E0008C7F4A8492A63@WEBSERVER">news:009AE8FD8584D3119A2E0008C7F4A8492A63@WEBSERV
WINS is used to register netbios names and map them to ip addresses.
Similiar to DNS except DNS is a Host name to ip address system. The netbios
name is of course the name you give to your machine. The master browser is
and backup master browser keep a list of available network resources. Master
b
It is surprising since Netopia and Cisco equipment work very well together
(in my opinion). You can request from them a regular DSL modem and plug the
Cisco into that letting them handle everything up to and including the
modem.
Also,
I am not saying Cisco is god and everyone should use them, but
It really depends on what encryption level you use, and even then I have
heard varying reports from Cisco. If you are doing a lot of tunnels like
over 300 with 3DES I would look at the 3000 series concentrators.
-Original Message-
From: rayza manesh [mailto:[EMAIL PROTECTED]]
Sent: Thur
>From what I understand from the BCRAN course, you are right, the ISDN will
not disconnect just because the Serial line went down if you are using it.
However, if you configure your logical dialer without load thresholds and
ppp multilink you can use 1 B channel for 1 connection so that if you are
uld search CCO for Java blocking CBAC for a more in depth
explanation.
-Original Message-
From: Dinesh_Kakkar [mailto:[EMAIL PROTECTED]]
Sent: Wednesday, August 09, 2000 11:30 PM
To: 'Chris Larson'; [EMAIL PROTECTED]
Subject: RE: enable security features with Cisco IOS using CB
No the config-reg option only keeps the router from going into, or allows
going into rommon AFTER you have entirely booted the router. You cannot use
conf-reg to keep from issueing a break before the router is booted.
-Original Message-
From: David Jones [mailto:[EMAIL PROTECTED]]
Sent
You can buy the Visio Enterprise Edition from Microsoft now. They bought
Visio. Since they bought it I don't believe you can buy the extra
Manufacturer stuff as an add-on and you have to buy the Enterprise.
Tech-data or most distributirs should have it.
> -Original Message-
> From:
Are you trying to use NAT with the tunnel?
I find the stuff on CCO about VPN to be overkill, so I will include a piece
of a Chapter on VPN I wrote for Syngress media, that I may simplify what you
found on CCO for pix to pix VPN. You can take it or leave it, but the config
should work just replac
We use CBAC as a usefull first line of defense before the firewall. Using
CBAC we can limit embryonic or half open connections, specifiy a maximum
number of incomplete handshakes, set thresholds for certain types of data,
limit java scripts and the level at which they operate, only allow
connectio
Why don't you just add a DNS entry for those systems on your inside DNS so
that it replies with the address instead of asking the external dns? It will
still ask the external DNS for any other entries is does not have in it's
table.
-Original Message-
From: Cisco Wave [mailto:[EMAIL PRO
First a computer does looks in it's arp (Address resolution protocol) cache
to see if it already has an IP to MAC in it's database. If it does not the
computer generally will do an ARP broadcast which all systems see and the
computer using that ip address will respond with it's MAC address the Mac
I use a lantronix terminal server. I plug all the console into the terminal
server and then when I need console access I telnet to the terminal server
and choose the device from a menu (built by you the admin) or telnet to the
port on the terminal server that the device is attatched to.
-Ori
You will need a DSL modem no matter what. DSL is only the carrier, like a T,
a dialup, etc, they all need a modem or DSU before connecting to a router.
If you purchase a router it may have the DSL hardware integrated similiar
(but different)to a Cisco with an internal DSU but in principle you wil
Ah this sucks. We are just trying to learn and help each other out. Thanx
for the labs and remote acces and selling us good packages regardless of who
you are!
I appreciate having the option and the availability no matter where it
comes from. This bs sucks. This is about sharing info.
Oh yeah. There was a lot of CBAC and access-lists and about the outgoing_src
outgoing_dst type lists.
-Original Message-
From: Chuck Larrieu [mailto:[EMAIL PROTECTED]]
Sent: Tuesday, August 08, 2000 6:52 PM
To: Chris Larson; 'Scott A. Jensen'; [EMAIL PROTECTED]
Subject: RE
I ahve
learned the the numbers are dependant on the BW setting in the router. In other
words a load of 9/255 on an interface that has the bandwidth setting at it's
default 1544 would not reflect an accurate load on a link that was not a
T-1.
Set
the bandwidth parameter of the interface or
I would look and see if the Crypto card is available for the router yet.
Cisco had a PL2 card for the CET and Private Link technology and they were
working on (last time I checked) a card that would take the encryption and
decryption off the router processor and onto the Card. Again, I am not sure
There is no Centri Firewall on the exam.
It is basically :
The PIX
TACACS+ and very little radius
Ports ISAKMP and IPSEC oprate on
IPSEC/IKE
NAT
Different types of threats (hijacking, routing update spoofs etc.)
And that is all I can remember from the test.
Chris Larson
CNE, MCP +I, CCNP
Because you have both interfaces in the same network. One of them has to be
in a different network to route between them.
-Original Message-
From: Howard C. Berkowitz [mailto:[EMAIL PROTECTED]]
Sent: Tuesday, August 08, 2000 12:59 PM
To: [EMAIL PROTECTED]
Subject: Re: Strange one (for me
YOu should be able to if everyone is following IPSec standards. The only
problem I have run into is compatibility with IKE and other ISAKMP
implementations. We end up doing IPSEC Manual keying to get around this.
-Original Message-
From: Mike Shannon [mailto:[EMAIL PROTECTED]]
Sent: Frida
You can use IP forwarding on the router to the DHCP and set the scope on the
clients and server so that it picks up addresses in that scope from dhcp, OR
you can use DHCP on the router to assign addresses to the clients preventing
broadcasts for DHCP across the WAN link.
-Original Message
Also, one other thing I forgot. If you are trying to do debugs and not
seeing anything, then aside form checking syntax etc. make sure the debug
command you are using does not require fast switching to be turned off. Many
debug commands won't work with silicon, autonomous or fast switching and
mu
Sh logging. Make sure console logging and or monitor logging is enabled,
also check the message level.
router#sh logging
Syslog logging: enabled (0 messages dropped, 0 flushes, 0 overruns)
Console logging: level debugging, 1959 messages logged
Monitor logging: level debugging, 1846 mess
Also, one other thing I forgot. If you are trying to do debugs and not
seeing anything, then aside form checking syntax etc. make sure the debug
command you are using does not require fast switching to be turned off. Many
debug commands won't work with silicon, autonomous or fast switching and
mus
If you have a modem connected to the AUX port you should also have a Line
and/or Async port "tied" to the aux port. Do a show line and see if that
tells you nething
-Original Message-
From: Hans Stout [mailto:[EMAIL PROTECTED]]
Sent: Thursday, August 03, 2000 11:23 AM
To: [EMAIL PROTECTED
Yes it is available. I have taken the test an earned the specialization.
These are the topics covered by the exam:
TACACS+/RADIUS
Threats
PIX
Perimeter Security and CBAC
VPN's
I cannot remember what else of the top of my head.
Chris Larson
CNE, MCP +I, CCNP +Sec
EIR is your burst rate or Excess Information Rate
-Original Message-
From: Jay Hennigan [mailto:[EMAIL PROTECTED]]
Sent: Wednesday, August 02, 2000 11:55 PM
To: Sim, CT (Chee Tong)
Cc: '[EMAIL PROTECTED]'
Subject: Re: what is mean by EIR on the frame relay???
On Thu, 3 Aug 2000,
Typically indicates that the router is not sensing a Carrier Detect signal.
Generally can be attributed to a Telephone Company problem, faulty or
incorrect cabling, or a hardware failure in the DSU.
-Original Message-
From: Sim, CT (Chee Tong) [mailto:[EMAIL PROTECTED]]
Sent: Wednesd
MRTG does equally well on NT (at least for me).
-Original Message-
From: Shane Snedecor [mailto:[EMAIL PROTECTED]]
Sent: Wednesday, August 02, 2000 1:15 PM
To: Okuwa, Daley
Cc: 'Gunjan Mathur at 9netave'; [EMAIL PROTECTED]
Subject: RE: Transfer utilisation
If your running Linux/Unix ch
Just so it is clear, IKE does not replace ISAKMP. ISAKMP is an open
framework for Key Management. IKE uses parts of the ISAKMP framework to
create SA's and exchange key info. Mainly the Skeme and Oakley protocols
that follow ISAKMP.
-Original Message-
From: Paul Harlow [mailto:[EMAIL PRO
S/H if you are really desperate.
"Chris Larson" <[EMAIL PROTECTED]> wrote in message
009AE8FD8584D3119A2E0008C7F4A8492A14@WEBSERVER">news:009AE8FD8584D3119A2E0008C7F4A8492A14@WEBSERVER...
> Use the console cable you get with the routers (at least that's what I
use),
And 1 dsu nned to do internal clocking and the other should get clock from
the line.
-Original Message-
From: George Zhang [mailto:[EMAIL PROTECTED]]
Sent: Tuesday, August 01, 2000 1:05 PM
To: [EMAIL PROTECTED]
Subject: Re: CSU/DSU lab
You need to use a crossover cable.
Fanglo MA wrote
Access-list maybe?
-Original Message-
From: Nasser N Khwaja [mailto:[EMAIL PROTECTED]]
Sent: Tuesday, August 01, 2000 2:45 PM
To: [EMAIL PROTECTED]
Subject: Telnet vs Ping
I am able to Telnet from my PC to a Router, but cannot PING. Why so?
Your answers are requested.
Thanks,
[EMAIL PRO
they will hook u up.
Note: Using memory other then Cisco will viod your Cisco warranty and
smartnet contract.
Chris Larson
CNE, MCP +I, CCNP +Security
-Original Message-
From: Fanglo MA [mailto:[EMAIL PROTECTED]]
Sent: Monday, July 31, 2000 10:11 PM
To: [EMAIL PROTECTED]
Subject
x27;s
database.
If you are speaking about a cisco device dialing into an NT RAS system, then
you can use MS-CHAP on the router (which I have never sone I just know it is
an option).
Chris Larson
CNE, MCP +I, CCNP +Security
-Original Message-
From: Michael W. Oliver [mailto:[
Use the console cable you get with the routers (at least that's what I use),
and if you use HDLC or PPP on the routers and config the DSU right it will
work like a charm.
Chris Larson
CNE, MCP +I, CCNP +Security
-Original Message-
From: Fanglo MA [mailto:[EMAIL PROTECTED]]
Port 139 is the netbios session service. This can be dangerous. In most
instances (if you ask ne1 who attended SANS they would say ALL) you should
block this from external networks on your router as Windows will accept
anonymous connections to this port.
I do not know a well known app for 2039.
Funny you should mention. I am starting a new job in Old Alexandria on
August 15. Moving from Jersey. I am a little nervous as I have been with the
company I am leaving for 5 years, but there seems to be so much going on in
the Alexandria/Reston/Arlington area in the way of tech.
Speaking of the
What does happen? I would think that nothing happens because traffic with
the wrong color coming into the switch port would be dropped. Is this what
happens?
-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]
Sent: Thursday, July 27, 2000 2:51 PM
To: [EMAIL PROTECTED]
S
I can sympathize. Congratulations it is a big deal. I too do not find many
people to talk to or get excited about what I do. It seems to be that way
for many many engineers. I have resolved to simply saying "I work with
computers" when people ask me what I do because even if I explain it to them
t
That would depend on your knowledge of the material. They change the
questions so if you get more questions on topics you do not know about then
yes the tests get harder the second time. If the second time you get more
questions on topics you know then they get easier.
Harder is a matter of persp
You can reverse telnet to any line. Do a show line, take thge line # of the
device you want to telnet to and add 2000. That will be the port of the
device. So if I have an async or line 65 and my router is ip 192.168.2.2, I
can reverse telnet to the modem by doing a telnet 192.168.2.2 2065
It w
If I remember from BCRAN, if you do a show line, and find your line number.
Now if you telnet to your router port 2000 + line number that should be it.
So if you have a modem (or console but console has a different number) that
is async 65 or line 65 you would reverse telnet to it by telnetting
Portfast simply allows the port to begin forwarding immedtiatly as opposed
to going through the blocking, litening, learning, forwarding states that a
spanning tree port goes through. It can safely be disabled if you do not
have redundant paths.
-Original Message-
From: Chen, Scott [mailt
Oops. 86 my previous reply I did not read this correctly. I have no idea why
you would use 3 seperate routers to connect 3 subnets as oppossed to using 1
router. Unless there was some redundancy or VPN security being applied.
-Original Message-
From: RAUL RENTERIA [mailto:[EMAIL PROTECTED
If you have a large amount of traffic, broadcasting etc. You would split it
up between floors. Many places do use switches and Vlans to do this. If you
have a different company on each floor, you would not want to constantly
"share" traffic with them. Or if you had global resources on one floor an
I had heard rumors about this, but have never heard of anyone doing it.
I tried this on my 3640 running 12.0(7) and there is no ISDN network
command. Maybe you need enterprise IOS (I am running IP Plus IPSEC). There
is a way to set TEI statically, but I do not think that would be sufficient.
I di
No, they will most likely see a difference, but there are a couple factors
to consider.
Does everybody go to a single server or are your resources spread around?
The reason I ask is you could bog down the server. A simple solution to that
would be install another NIC in the server at 100 Full-dupl
I have heard rumor that Cisco put commands in the IOS of 12 to do this, but
it has so far been only a rumor. You would need something that simulates the
telco switch like a Madge Switch or ISDN simulator box (expensive) as all
layer 2 info comes from the Telco.
-Original Message-
From: [E
If you are using the config you show below, it doesn't work because you are
already assigning an IP using unnumbered ethernet 0. You need to take any IP
aff the interface then do the command. If you cannot even issue the command
because it is not in the routers command set then upgrade your IOS.
>From my understanding no. However the VPN 1.1 client is s much better
and for $180.00 for a hundred users why wouldn't you. Also, the 128 bit VPN
client is the same cost as the 56 buit and is compatible with the 56 bit. So
you might as well purchse the 128 bit even if you are only currently u
WOW. Great prices. Thanx fer the tip!!
-Original Message-
From: John Dill [mailto:[EMAIL PROTECTED]]
Sent: Thursday, June 29, 2000 7:45 PM
To: [EMAIL PROTECTED]
Subject: Sourcing Router RAM Cheap [was Re: Using off the shelf DRAM in
cisco 3620]
In my opinion, the place to get RAM for cu
I am using 5.1(2) with VPN Client 1.1It works great and was terribly
easy to setup. Using IKE Config Mode I only had to issue 5 or 6 commands to
the PIX, setup the client and we were routing to the inside. Using config
mode with wildcard pre-shared keys simplifies things tremendously, and it
a
Be careful with those ports. They are easily exploitable in the MS
environment.
-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]
Sent: Thursday, June 29, 2000 2:31 PM
To: [EMAIL PROTECTED]; [EMAIL PROTECTED]
Subject: RE: Microsoft Networking over WAN
TCP 137
UDP 138
If you are on a switch check the counters for errors.
The most common network problems are due to cabling/NIC issues.
Make sure both sides (the server and the switch) are the same speed and
duplex. Make sure you are using CAT5 cable and it is "colored" properly.
This actually is the cause of man
1 - 100 of 110 matches
Mail list logo