Also look at DJ rack's... I've found they are usually
cheaper for some reason then getting racks from a
computer/network shop. My buddy has a 2-space DJ rack
that he has 2 routers in. Nice durable black case
w/built in handles.. plenty of room of cables when
covers are on the ends of the case.
I've been watching them for awhile now and have been
to their new HQ. The M40 can do OC-48 at wire-speed
and the m160 can do OC-192 at wire-speed. You can read
about all the features, ASICs, etc on their website. I
haven't had much opportunitys to get my hands on JunOS
however, anyone willing to
I would determine what your goal is first, then find
the best product for that piece of the network. Now,
best product to many means many things. I'm not into
sales and I don't care who makes the box. I look at
features/performance/interoperability/vendor support
capability/good box for the buck,
You'll need a feature set with IPSEC 56 encryption.
Your image name should contain a 56 in it, for example
c4000-a3js56i-mz.120-7.T.bin.
--- Very Gentle Guy [EMAIL PROTECTED] wrote:
Dear All,
I'm trying to have IPSec connection to my router
from another one. but the
command crypto is
I looked at that article, and it sounds kind of like a
old approach to a new problem. Go to X company who has
access to everything and you'll be set.
In the long term, it's going to cost lots of $ to
maintain a connection to every backbone ISP and
associated costs with each of those
Has anyone done VPN through these devices with/without
problems? If so, what were the issues? I'm looking at
picking up either a LinkSys or some other flavor but
have little information on how good VPN access works
from people that have them.
Currently am using a PC with 2 NICs on a older
) there has
been discussion of it being tied to a notepad.exe
trojan going around. Haven't followed it closely
though...
...Erick / CCNP-Security+NetRanger, NNCSE
CCIE attempt 2 soon...
__
Do You Yahoo!?
Yahoo! Photos - 35mm Quality Prints
Check your MTU on both devices for this connection.
Are both sides Cisco or one side Cisco and otherside
vendor-X? If your connecting to another vendor then
set MTUs properly.
Other things to check are OSPF network type and
timers. They need to match. I've seen funky things
happen if they are
Hello,
CIR has no effect on routing. If you set the bandwidth
parameter to match your CIR and are using a routing
protocol that uses bandwidth in it's calculation, then
routing will reflect that. 'show interface' will show
what the bandwidth value is.
Erick B. / CCNP-Security+NetRanger, NNCSE
CDP is a data-link layer protocol and includes
information such as interface address's, IOS version,
etc. If you use On demand routing then the router
configured for ODR will place routes in the routing
table from CDP packets. ODR is configured on one
router only - not both ends.
--- "Scoles,
Why not use multiple sequences?
eg:
route-map groupstudy 10
route-map groupstudy 20
.
--- Ida Leung [EMAIL PROTECTED] wrote:
I think you can only apply one route map in and one
out.
ida
On Tue, 19 Sep 2000, Jennifer Mellone wrote:
How many route map statements
Comments inline.. stuff snipped.
--- John Barnes [EMAIL PROTECTED] wrote:
2)What the MTU of a token ring frame?
His answer: about 4470 bytes .
He's right... MTU is Max Transfer Unit which can be
adjusted but the default is around 4470 for Token Ring
and Ethernet is 1500 (Cisco default),
address's since your not staticly mapping them with a
frame map statement.
What does 'show frame lmi' show for input/output
(bottom 2 lines of output).
HTH, Erick B.
--- "Yee, Jason" [EMAIL PROTECTED] wrote:
hi ,
I have problems with my frame-relay serial link
attatched is
=
-/---
Erick B. / http://berk.dhs.org
[EMAIL PROTECTED] / CCNP+Security+NetRanger
/NNCSE, CCIE Written
-/---
__
Do You Yahoo!?
Yahoo! Mail - Free email you can access
The bandwidth and delay values could be different on
each end of a circuit. For example, in frame relay
each PVC has it's own CIR/etc so you would want the
values to reflect that of the PVC. It's not needed if
theres only one route between the 2 routers, but was
pointing out in frame relay, etc
Check the default gateway on the server and routing
table on the server (route print in windows). Try a
extended ping on the remote router from a interface
the servers not attached to. If it doesn't respond
back to the extended ping from a different network #
the server doesn't have a proper
) 2 bytes
- User Prioroty 3 bits
- Canonical FFormat Indicator (CFI) 1 bit
- VLAN Identifier 12 bits
=
-/---
Erick B. / http://berk.dhs.org
[EMAIL PROTECTED] / CCNP+Security+NetRanger
Well,
On Ethernet, the tag is 4 bytes. 2 bytes TPID and 2
byte TCI.
On FDDI and Token Ring, the tag is 10 bytes. 8 byte
TPID and 2 byte TCI.
Is 802.1q a final standard now or still draft (been
awhile since I checked)?
-E
Good question since the info I have shows the value
to be 08-00
Watch the wrap.
http://www.cisco.com/univercd/cc/td/doc/product/software/ios120/12cgcr/np2_r/2ripx.htm#8680
ipx update interval
Default
The default interval is 60 seconds for both IPX
routing updates and SAP updates.
Good luck.
--- Jeff Williams [EMAIL PROTECTED] wrote:
My CCDA Study Guide
Watch the wrap...
http://www.cisco.com/univercd/cc/td/doc/product/access/acs_fix/805/805hwin/index.htm
DCE
EIA/TIA-232
Female
CAB-SS-232FC
DTE
EIA/TIA-232
Male
CAB-SS-232MT
DCE
EIA/TIA-449
Female
CAB-SS-449FC
DTE
EIA/TIA-449
Male
CAB-SS-449MT
DCE
EIA/TIA-530
Female
Th 2500 runs the IOS from flash, so the flash is
read-only when the router is up and running (unless
the flash is partioned? haven't tried it myself). To
upgrade a 2500 series you need to do it from rommon.
A 'show version' will report if it is read-only or
read-write.
--- Saud Shaikh [EMAIL
The timers are the same by default.
--- Tom Chang [EMAIL PROTECTED] wrote:
Does anyone know the default update time for RIP
Version 2? I know RIP v1
is 30 sec...
Tom Chang
__
Do You Yahoo!?
Yahoo! Mail - Free email you can access from
What did you need to know about Nortel/Bay routers?
Also, see http://support.baynetworks.com
Hi all,
Somebody, posted NORTEL FIELD TECH. TIPS last year
on this site.
If someone remember the url for it or has some doc.
please feel free
and email them to me.
Any help it will be much
It is usually Ctrl-Break in most terminal programs.
HyperTerminal break key doesn't work w/NT so you'll
need to get another terminal program such as TeraTerm,
CRT or SecureCRT, procomm, etc.
--- Ajaz Nawaz [EMAIL PROTECTED] wrote:
What is the break for NT 4.0 Workstation ?
You need a channelized T1 module in the router. Leave
the CSU set to a full T1. On the router cfg you'll set
up s0:23 for signalling and such. See www.cisco.com
for sample configs of PRI dial-in's.
--- SH Wesson [EMAIL PROTECTED] wrote:
I have a PRI that is used to backup all my remote
Have you checked your config-register setting, and
tried all the baud rates available?
Can you break into rommon and maintain the console
connection? I'm thinking that maybe when the full
image is decompressed the console port stops
responding for some reason. Possible causes could be
memory
The DLSw local and remote peer IPs should be the IP
address's of the interface where the users are, and
that interface needs to part of the bridge-group
associated with dlsw. You can't make loopbacks part of
a bridge-group.
Think of it as building a IP connection between the 2
interfaces.
Ie:
'show frame map' for frame relay inverse arp.
--- me [EMAIL PROTECTED] wrote:
Is there a command to discover ip addresses learn
from inverse arp.
__
Do You Yahoo!?
Yahoo! Mail - Free email you can access from anywhere!
http://mail.yahoo.com/
the 3640 to
recognize this Network Module
with the 2 WAN cards in it or by some strange luck
did I just get 2 bad
Network Modules and should try and order a 3rd new
one.
=
-/---
Erick B. / http://berk.dhs.org
[EMAIL PROTECTED] / CCNP
Then you're limiting your network device knowledge to
just the world of Cisco. What do you do when you have
to go configure/fix a Bay/Nortel/3Com/whatever box?
Tell them to buy Cisco? When in reality, the other box
works just as well or better.
I hold multiple Cisco and Bay/Nortel
Let me explain the difference. The best description of
it I've seen documented is in the networkers 2000 or
1999 Intro to routing presentation I believe. I can't
locate it at the moment.
Anyway, the 'ip classless' and 'no ip classless'
global IP options modify the routers *forwarding*
on the interface to
source the route update from.
Erick
--- Bob Karen Timmons [EMAIL PROTECTED] wrote:
Greetings,
We're having a discussion at work on the merits of
moving the default gateway from our router to our
switch. In a nutshell, we have multiple IP subnets
and 2 routers with secondary
if the rules are different. If
the rules are the same, it's easier to have 1
access-list for stuff and reference it with
access-group, etc then building the same ruleset on
every interface, etc.
Hope this helps.
Erick
--- nandit [EMAIL PROTECTED] wrote:
Hi group,
Why is there a access list
you mention below, using MLPS VPN's,
what are some of the
caveats? How would you go about setting up such a
thing if your traffic is
going through three or four different ISP's?
Chuck
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED]] On Behalf Of
Erick B
I think he was asking how queuing works over the
Internet in a VPN. This would fall under QoS and to
acheive QoS then it has to be set up properly across
all points from end to end. You may want to look at
MPLS VPNs since MPLS uses traffic shaping/QoS.
Basically, you can have queuing on router
Maybe mount a cover with lock key over the console
port connections.
--- Michael Fountain [EMAIL PROTECTED] wrote:
I've had a couple of suggestions to fix this, but
nothing that works so far.
The best choice would be to lock it up somewhere,
but it is on
customer-owned premise, so
Defered packets occur when the ethernet is too busy
and the interface can't put the packet out on the
wire, so the packet is dropped. This is normal. I
would throw a sniffer on this segment and see whats
going on and try to clean it up.
--- "Luong, David" [EMAIL PROTECTED] wrote:
Hi Folks:
} Defered packets occur when the ethernet is too
busy
} and the interface can't put the packet out on the
} wire, so the packet is dropped. This is normal. I
Bzzt, wrong! The packet isn't dropped, it's
held and transmitted when the wire is free.
My mistake. I would argue that if
Let me take a hit at it... it's not one my favorite
terms...
If someone has a way to describe the term so a 6
year old can understand it,I would appreciate it.
Typically for 'reverse telnet' one configures a static
host table on the router pointing to a loopback IP
address on a certain port.
Sorry for the late response on this one...
You will also see alignment errors if there is a
speed/duplex mismatch.
--- Chuck Larrieu [EMAIL PROTECTED] wrote:
Gentle correction - late collisions occur after the
first 64 bytes of a
frame have been placed on the wire.
Essentially, a station
Hi,
What is the problem and do you have configs?
You will need a vofr dial-peer and a pots dial-peer
setup, then on the frame DLCI you're using you'll need
to configure it with traffic shaping. Lastly, what ver
of IOS?
--- Antonius Kurniadi [EMAIL PROTECTED]
wrote:
Hi all,
I have problem
Send me a copy of your configs. Sounds like you have a
port / dest-pattern mapping mismatch. Are you able to
dial the local phones fine connected to router (if you
have 2 phones plugged into the ports)?
--- Antonius Kurniadi [EMAIL PROTECTED]
wrote:
Hi Erick,
I'm using 11.3(4)T software
You get the sylvan prometric print out, and the right
to call and schedule a lab date.
--- Johnny Honk [EMAIL PROTECTED] wrote:
Hi Everyone,
A quick question...upon successful completion of the
CCIE written, do you
recieve a certificate or anything...or do you miss
out until you have
summarize it with others.
Hope this helps... keep at it.
But the answer says B with the explanation: Networks
must share the same
high-order bits. Look at the binary values to
understand more clearly.
- Erick B.
__
Do You Yahoo!?
Get Yahoo! Mail
Paul,
Disabling CDP is ideal.. but the poster wanted to know
how to block it with a ACL so thats what I was trying
to do.
--- paul doyl [EMAIL PROTECTED] wrote:
Chaps
Why not just disable it on the interface? I have
done it for security
purposes in the past. Perhaps I'm missing sommat,
Umm... I have a backdoor password to reset the
3300/1100s - maybe older models?
--- [EMAIL PROTECTED] wrote:
Iftekhar,
It is a bad news but you cannot break a password in
3-com superstack II
1100/3300 switches. The only way to recover is it
have to be sent to 3-com
this is due to
Do you have this access list applied to the interface
your telnet'd into/across? If so, you may be blocking
your telnet for a second while access list is changed?
Just a thought.
--- [EMAIL PROTECTED] wrote:
Hi group,
I've been having some problems when pasting access
lists to routers
CDP is layer 2. Offhand, I don't remember the MAC
address it uses but perhaps a MAC-address ACL will do
the trick.
Personally, I disable it since it is Cisco-only and I
work in multi-vendor environments.
--- Aaron Prather [EMAIL PROTECTED] wrote:
If you can what protocol does it use? UDP?
Hi again,
I tried blocking it going out the router with ACL but
didn't succeed. I think this is because you can only
apply MAC-address ACLs to certain objects (bridge
groups, etc) and my lab setup isn't setup right to
really see if this works.
CDP uses 01000C-CC which is a Multicast MAC.
t and Nondisclosure violations to
[EMAIL PROTECTED]
=
- Erick B. | erickbe(a)yahoo.com | http://berk.dhs.org
__
Do You Yahoo!?
Get Yahoo! Mail - Free email you can access from anywhere!
http://mail.yahoo.com/
___
UP
many hits your getting.
...Erick
--- Barry Hofland [EMAIL PROTECTED] wrote:
There's no way counting matches for a null0
interface.
If you need the number, fall back to access-lists...
Barry
"D. J. Jones" [EMAIL PROTECTED] wrote in message
8ik0d7$iqe$[EMAIL PROTECTED]">news
"unknown routing
protocol" what the hell is in the 1601 ??? doesnt
it support OSPF ???
=====
- Erick B. | erickbe(a)yahoo.com | http://berk.dhs.org
__
Do You Yahoo!?
Send instant messages with Yahoo! Messenger.
http://im
Hi John,
On serial interfaces you have a few WAN protocols you
can use depending on what your doing, what type of
circuit provider is providing/type of circuit ordered,
etc.
With Point to Point T1s or leased lines these are
connections between 2 locations and you can use WAN
protocols such as
I noticed this to. Not sure if it is any better then
before but I use www.google.com first before the
search box at cisco.com. Google.com returns more
accurate hits on cisco.com most of the time.
--- Rik Guyler [EMAIL PROTECTED] wrote:
I was just on CCO and the search engine changed!
You no
Have you tried a different port in the hub, tried
another hub, or took your PC/laptop and plugged it
into router with crossover to see if interface stays
up? Was this working fine and just started being a
problem?
- Erick
--- William Wong [EMAIL PROTECTED]
wrote:
Help me guys
Interface
of Sniffer as well.
Can anyone suggest decent sniffer software that I
might be able to download
as trial ware or shareware? Thanks a lot, Lance
=
- Erick B. | erickbe(a)yahoo.com | http://berk.dhs.org
__
Do You Yahoo!?
Send instant messages
301 - 356 of 356 matches
Mail list logo