on my tftp file that the 4500 is able to
boot with, but this is rather annoying.
I've never heard of a battery in a router, but could this be a possibility?
Or could the NVRAM really be corrupted somehow? If I do a reload, it'll
remain, but not through power loss.
Please CC via email.
PS As a side note, I hear Halifax has the best passing rate. Folks book
there just to have a slight edge over SJO or RTP. Of course, with that
rumor floating around, I can see Cisco toughening up there ;-)
--
Jason Roysdon, CCNP+Security/CCDP, MCSE, CNA, Network+, A+
List email: [EMAIL PROTECTE
except VPN (which I'm sure they'll be adding soon).
But you're right, if you really want to pull the
management/eye-candy/reporting up to the level of Checkpoint, get CSPM.
--
Jason Roysdon, CCNP+Security/CCDP, MCSE, CNA, Network+, A+
List email: [EMAIL PROTECTED]
Homepage: http://jas
Sounds like a permissions problem with the tftp daemon... My Linux tftp
daemon has no problem uploading new files that don't exist.
--
Jason Roysdon, CCNP+Security/CCDP, MCSE, CNA, Network+, A+
List email: [EMAIL PROTECTED]
Homepage: http://jason.artoo.net/
""Sean Young"
retty useful as well.
--
Jason Roysdon, CCNP+Security/CCDP, MCSE, CNA, Network+, A+
List email: [EMAIL PROTECTED]
Homepage: http://jason.artoo.net/
""chica"" wrote in message
[EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
> hi,
> i'm setting up my lab and w
reading Groupstudy, I've got to focus right
now).
TIA
--
Jason Roysdon, CCNP+Security/CCDP, MCSE, CNA, Network+, A+
List email: [EMAIL PROTECTED]
Homepage: http://jason.artoo.net/
Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=13212&t=13212
vercd/cc/td/doc/product/voice/c_ipphon/7900/admingd/7900set.htm
TTFN,
Jason Roysdon, CCNP+Security/CCDP, MCSE, CNA, Network+, A+
List email: [EMAIL PROTECTED]
Homepage: http://jason.artoo.net/
Message Posted at:
http://www.groupstudy.com/form/read.php?f=
y, "What's the point" as it just seems to
add more complications than it solves.
Jason Roysdon, CCNP+Security/CCDP, MCSE, CNA, Network+, A+
List email: [EMAIL PROTECTED]
Homepage: http://jason.artoo.net/
McMasters, Eric wrote:
>
> Jason,
> Thanks for the info on t
but previously wasn't a requirement for the Security Specialist Cert).
184 questions, 3.5 hours. I was done in 1.5 hours and I went slow and
steady and made comments on the items I knew and had info to add/disagree
on. 12 weeks from the test close date (June 15th) to find out if I passed
(I do
I'm not sure if I already mentioned it, but Cisco is holding a free Beta
exam for the CSIDS v2 (w/ IDS CSPM):
Take the CSIDS 2.0 Beta Exam for FREE!
For a short time, the beta exam for IDSPM (Intrusion Detection System with
Policy Manager) will be available to take at no charge. This test is bas
haps what was going on the entire
time was that since I had 10mbit configured on the Catalyst (and that's the
only speed supported on e0/0 on the 2610), that it automatically limited to
half-duplex? Except that the Catalyst CDP was transmitting that it was
running full-duplex (CDP bug?).
--
ipl= 4, pid= 29
-Traceback= 800F83B8 800FA0B0 800FA968 8085CFFC 8085D784 80858034 808575A4
80856B3C 802350
FC 80233738 80233938 80233A94 8011A09Csh mem
HeadTotal(b) Used(b) Free(b) Lowest(b)
Largest(b)
Processor 80FA04D8 7732008 7676276 55732 10832
327
m going to go play with PIX OS 6 and confirm if the VPN Client
v3 requires the PIX to have 3DES.
--
Jason Roysdon, CCNP+Security/CCDP, MCSE, CNA, Network+, A+
List email: [EMAIL PROTECTED]
Homepage: http://jason.artoo.net/
Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=6004&
That sounds very bogus. Now I must go test it. News at 11.
--
Jason Roysdon, CCNP+Security/CCDP, MCSE, CNA, Network+, A+
List email: [EMAIL PROTECTED]
Homepage: http://jason.artoo.net/
""Alex Lee"" wrote in message
[EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
&
tp://www.cisco.com/warp/public/471/103.html
--
Jason Roysdon, CCNP+Security/CCDP, MCSE, CNA, Network+, A+
List email: [EMAIL PROTECTED]
Homepage: http://jason.artoo.net/
""James Haynes"" wrote in message
[EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
> As an aside
loss of connectivity).
--
Jason Roysdon, CCNP+Security/CCDP, MCSE, CNA, Network+, A+
List email: [EMAIL PROTECTED]
Homepage: http://jason.artoo.net/
""ElephantChild"" wrote in message
[EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
> On Fri, 25 May 2001, Scott Meyer wrote:
Oh, just had a thought which solved odd bugs in the past with routers:
Have you disabled 'ip route-cache' on the interfaces? At this point you
could probably care less, but I'd be curious to hear if it was a switching
problem.
--
Jason Roysdon, CCNP+Security/CCDP, MCSE, CNA, Ne
;"ACK" traffic from the old network.
> >
> >Thanks again,
> >Craig
> >
> >At 03:24 AM 5/25/2001 -0400, you wrote:
> > >What if you move the default route to toward the PIX? I bet it works
> then.
> > >How is the router to know where to
line to the
router/terminal server (and then only if you're connected out to something
else, not just sitting at EXEC mode), not the outgoing line. This doesn't
work if you telnet directly to the line port (2001, etc.), but only if you
first connect to the router (CON, VTY) and then reverse-teln
on your
servers to each of the routers.
IMHO, you're more likely to cost your company more money in the long run
trying to have servers routing than to buy a Cisco box. Especially when it
comes to support and maintenance.
--
Jason Roysdon, CCNP+Security/CCDP, MCSE, CNA, Network+, A+
List ema
You need to configure bootp/dhcp proxy. Like you, I avoid access servers,
but I just so happen to have a config:
interface Group-Async1
ip unnumbered FastEthernet0/0
encapsulation ppp
async default routing
async mode interactive
peer default ip address dhcpwrote in message
[EMAIL PROTEC
select "RIP for Internet Protocol" and hit
Remove (warning, it'll want to reboot).
--
Jason Roysdon, CCNP+Security/CCDP, MCSE, CNA, Network+, A+
List email: [EMAIL PROTECTED]
Homepage: http://jason.artoo.net/
""Robert Nelson-Cox"" wrote in message
[EMAIL
option (but bleh) would be to go to a Proxy server for all http
traffic. Block port 80 going out except from the Proxy server, and the
Proxy server shouldn't be allowing the streaming traffic through.
--
Jason Roysdon, CCNP+Security/CCDP, MCSE, CNA, Network+, A+
List email: [EMAIL PRO
ere that just either won't
release the IP, or will go to 0.0.0.0 or 169.254.x.x and won't find the new
DHCP server (or won't accept a new lease). I've never found a rhyme or
reason to it, but it just happens (usually forcing a release all, renew all
fixes it).
--
Jason Roysdon
know
where to send it. Why not just set up a static route toward the PIX for the
old network?
--
Jason Roysdon, CCNP+Security/CCDP, MCSE, CNA, Network+, A+
List email: [EMAIL PROTECTED]
Homepage: http://jason.artoo.net/
""Craig Columbus"" wrote in message
[EMAIL PRO
You posted to the list via email and may not be aware, but the corresponding
newsgroup is called groupstudy.cisco and the list is called "Cisco
Certifications: Professional/Tech." Just pull out your credit card and give
3Com support a call.
--
Jason Roysdon, CCNP+Security/CCDP,
(well, a Pentium might
be wiser with SSH 3DES, but my 486 has no problems, hehee). Just make sure
you disable all other services on the box.
--
Jason Roysdon, CCNP+Security/CCDP, MCSE, CNA, Network+, A+
List email: [EMAIL PROTECTED]
Homepage: http://jason.artoo.net/
""Vincent Chong&
ports serial connections (and can send break unlike the
default NT4 Hyperterminal). There is also an SSHv1 add-on for connecting to
Cisco gear (Cisco only uses SSHv1 so far).
http://hp.vector.co.jp/authors/VA002416/teraterm.html
--
Jason Roysdon, CCNP+Security/CCDP, MCSE, CNA, Network+, A+
or
c:\winnt directory with:
@c:\progra~1\ttermpro\ttssh.exe
--
Jason Roysdon, CCNP+Security/CCDP, MCSE, CNA, Network+, A+
List email: [EMAIL PROTECTED]
Homepage: http://jason.artoo.net/
""Circusnuts"" wrote in message
[EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
DSPs and Voice Compression Codecs G.711, G.729, G.723.1
Provides hardware based compressed voice to fit significantly more voice
lines over a single copper pair without breaking to the end-to-end delay
budget.
"
--
Jason Roysdon, CCNP+Security/CCDP, MCSE, CNA, Network+, A+
List email: [EMAIL
sconnect
(Win2k uses the same CTRL+] option).
--
Jason Roysdon, CCNP+Security/CCDP, MCSE, CNA, Network+, A+
List email: [EMAIL PROTECTED]
Homepage: http://jason.artoo.net/
""Frank Kim"" wrote in message
[EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
> Hi folks,
> I k
ng and
Backbone VPNs"
-- Jason Roysdon, CCNP+Security/CCDP, MCSE, CNA, Network+, A+
List email: [EMAIL PROTECTED]
Homepage: http://jason.artoo.net/
""nrf"" wrote in message
[EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
> I would like to hear some opinions on MP
; version which is
great if you have a Palm/Visor (although I always have my QRG with me in my
laptop bag).
http://www.cisco.com/dprg/
--
Jason Roysdon, CCNP+Security/CCDP, MCSE, CNA, Network+, A+
List email: [EMAIL PROTECTED]
Homepage: http://jason.artoo.net/
""Chuck Larrieu&q
source address which ISP to route back through.
Mind you there is no redundancy here. You'll need BGP for that, and even
then you might not get global redundancy.
--
Jason Roysdon, CCNP+Security/CCDP, MCSE, CNA, Network+, A+
List email: [EMAIL PROTECTED]
Homepage: http://jason.artoo.net/
&
have the trunks forward long distance, so if all 4 local trunks are
in use the 5th+ caller get forwarded to the other 4 trunks no longer in use
and get a "disconnect" message.
--
Jason Roysdon, CCNP+Security/CCDP, MCSE, CNA, Network+, A+
List email: [EMAIL PROTECTED]
Homepage: http://j
or IPv6 thus far... I mean
Cisco IOS doesn't even support it (yet).
http://www.cisco.com/warp/public/732/Tech/ipv6/
http://www.totaltele.com/view.asp?articleID=39924&Pub=TT&categoryid=626&kw=c
isco
Looks like 12.2(1)T will, but many won't use non-General Release versions,
It's no different than using a single DHCP server for multiple subnets/lans.
Just because it has a "V" in front doesn't make it magical ;-)
Here, let Trinity help you learn about 'ip helper':
http://routergod.com/trinity/
--
Jason Roysdon, CCNP+Security/CCDP
Hey Paul, why not have all "UNSUBSCRIBE" emails bounced and/or send an
auto-message with the URL to unsubscribe? Hmm, actually, I'll just killfile
the keyword ;-)
--
Jason Roysdon, CCNP+Security/CCDP, MCSE, CNA, Network+, A+
List email: [EMAIL PROTECTED]
Homepage: http://
one someone will get. So if ISP1 fails,
50% of the people would still get the DNS for the IP for that ISP, and due
to DNS caching, you can't just simple remove the DNS to solve it (2 days in
the minimum requirement for DNS caching).
--
Jason Roysdon, CCNP+Security/CCDP, MCSE, CNA, Networ
SaMBa running, which
will include smbd and nmbd making the box act as an NT browse-master.
--
Jason Roysdon, CCNP+Security/CCDP, MCSE, CNA, Network+, A+
List email: [EMAIL PROTECTED]
Homepage: http://jason.artoo.net/
""Sim, CT (Chee Tong)"" wrote in message
[EMAIL PROTECTED]&q
2001
"
--
Jason Roysdon, CCNP+Security/CCDP, MCSE, CNA, Network+, A+
List email: [EMAIL PROTECTED]
Homepage: http://jason.artoo.net/
Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=5530&t=5530
--
FAQ, list archives
ommand, which can also be graphed
(very necessary as soon as you start adding VPN tunnels).
--
Jason Roysdon, CCNP+Security/CCDP, MCSE, CNA, Network+, A+
List email: [EMAIL PROTECTED]
Homepage: http://jason.artoo.net/
Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=5505&am
Very cool. I know within our company custom Centrex group that's the case
as well, but not all local calls, just calls between our Centrex lines.
--
Jason Roysdon, CCNP+Security/CCDP, MCSE, CNA, Network+, A+
List email: [EMAIL PROTECTED]
Homepage: http://jason.artoo.net/
"&qu
to set up
such a thing.
Anyway, my Wife forwarded me a link to this site that's been doing this
since '99. They even have distributors that update with them live so they
have very updated information (plus 12,000 volunteers that update prices
they see about town).
http://www.gasprice
Great idea! Now, if only you didn't have to pay for an ISDN usage charges
since you're calling yourself ;-)
--
Jason Roysdon, CCNP+Security/CCDP, MCSE, CNA, Network+, A+
List email: [EMAIL PROTECTED]
Homepage: http://jason.artoo.net/
""Ambern, Jeff"" wrote in m
Thanks for the corrections, Michael.
Chuck, PacBell/SBC likes to do that sort of thing. Nice and insecure. Of
course, they also tell customers to put public IPs on desktops and don't
bother to mention anything about a firewall ;-)
--
Jason Roysdon, CCNP+Security/CCDP, MCSE, CNA, Networ
p dhcp server *' stuff is for the local dhcp server that
could be configured on the router. You'll want 'debug ip udp' but be aware
that this will potentially generate a ton of debugs depending on normal
traffic. I just did it on my local VoIP network: Bad idea, hehee.
What's
tions, especially with VoIP/FR), but
that won't really affect a simple FR Data network.
--
Jason Roysdon, CCNP+Security/CCDP, MCSE, CNA, Network+, A+
List email: [EMAIL PROTECTED]
Homepage: http://jason.artoo.net/
""Richie, Nathan"" wrote in message
[EMAIL PROTECTED]"&
ll remain in force and so that packets can be routed to the
interface.
"
--
Jason Roysdon, CCNP+Security/CCDP, MCSE, CNA, Network+, A+
List email: [EMAIL PROTECTED]
Homepage: http://jason.artoo.net/
""Ken Vandenbark"" wrote in message
[EMAIL PROTECTED]">new
ing system isn't there out in
front like it is at eBay... my Wife bought a book 2 weeks ago and added
Priority Mail, and still has yet to get notification of shipment and I've
had the same experience 6 mos. ago taking 3 weeks to get a book):
http://www.bestwebbuys.com/books/index.html
--
Ja
Yeah, in thinking about it more, I've used WVIC-2MFT-T1-DI module in an
HM-HDV to talk ISDN QSIG to a PBX. Of course that's voice though...
--
Jason Roysdon, CCNP+Security/CCDP, MCSE, CNA, Network+, A+
List email: [EMAIL PROTECTED]
Homepage: http://jason.artoo.net/
""To
tried and need to get some sleep, but
curious). I'm guessing you could and wondering what it would take to
connect this to a few BRIs in a lab environment.
--
Jason Roysdon, CCNP+Security/CCDP, MCSE, CNA, Network+, A+
List email: [EMAIL PROTECTED]
Homepage: http://jason.artoo.net/
"&qu
What exactly are you looking to do? Connect two BRIs in a lab? You want an
ISDN Simulator to do that. Otherwise, you want to know someone at a local
telco to get you access to their switch ;-p
Actually, I bet I could pull it off with one of our local telcos that I do
networking work for (they'
a bit concerned that the files for creaking a PIX is available
for pub access, but like they say, physical security is half the battle!
--
Jason Roysdon, CCNP+Security/CCDP, MCSE, CNA, Network+, A+
List email: [EMAIL PROTECTED]
Homepage: http://jason.artoo.net/
""Doug Hammond&q
Speaking of the Lab. Anyone notice when it went up to $1250? Not that I'm
ready to schedule it, but I've always heard it was $1K.
http://www.cisco.com/warp/public/625/ccie/exam_preparation/lab.html#11
--
Jason Roysdon, CCNP+Security/CCDP, MCSE, CNA, Network+, A+
List email: [EMAIL
in February.
At this point, we're just two CCIEs shy of Silver status, but then isn't
everyone?
I still don't get why Cisco doesn't have a step between Premier and Silver.
Two CCNA/DAs for Premier vs. Two CCNA/DAs, Two CCNP/DPs, Two CCIEs to Silver
is such a big step. Why not
US? Basically, before
deregulation the telco did everything, including the inside telco wiring and
even the phones. With deregulation, they started demarcation to establish
the point to which the telco was responsible and where the customer was.
--
Jason Roysdon, CCNP+Security/CCDP, MCSE, CNA,
out with a great guy I wanted to fill this new opening with, but
he also had an obscenely-high offer of $75K (well, he's a green MCSE2k with
a lot of network experience, but not at the "enterprise" level). I told him
to take the $75K even though I'd rather have him working with
treme have legal action taken against you. Even without that, it's not
welcome at groupstudy.com if it skirts breaking NDA.
--
Jason Roysdon, CCNP+Security/CCDP, MCSE, CNA, Network+, A+
List email: [EMAIL PROTECTED]
Homepage: http://jason.artoo.net/
""Victim"" wrote
0 6w2d 100156
--
Jason Roysdon, CCNP+Security/CCDP, MCSE, CNA, Network+, A+
List email: [EMAIL PROTECTED]
Homepage: http://jason.artoo.net/
""Anthony"" wrote in message
[EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
> I have two 2621's, each with 64MB of memor
o get their new "DOA" routers replaced so they
actually work with VoIP).
Nice crappy service on this one, but TAC held up their end, just not Cisco
RMA. Details to follow when I find out what happens. Sorry, this whole
thing really has me PO'd at Cisco. Basically, don't sell
is [EMAIL PROTECTED]
[arin.net]
ICG NetAhead, Inc. (NET-ICG-BLK-BLK6) ICG-BLK-BLK6
206.214.0.0 -
206.217.255.255
Dreamscope (NET-DREAMSCOPE) DREAMSCOPE 206.216.246.0 -
206.216.246.255
--
Jason Roysdon, CCNP+Security/CCDP, MCSE, CNA, Networ
Nope, you can use the outside interface to PAT as of 5.2 (perhaps newer):
pix(config)# global (outside) 1 interface
outside interface address added to PAT pool
pix(config)#
--
Jason Roysdon, CCNP+Security/CCDP, MCSE, CNA, Network+, A+
List email: [EMAIL PROTECTED]
Homepage: http
al" way a number of times (ie, call that site and ask them to
power-cycle the device), but late night this would be useful as well when
folks aren't there, or I don't feel like drivin'.
Of course, check 'show clock' if you don't run ntp/sntp on the box (well,
t I might otherwise choose to skip. Hmm, perhaps I'll
announce my search for a study partner next.
--
Jason Roysdon, CCNP+Security/CCDP, MCSE, CNA, Network+, A+
List email: [EMAIL PROTECTED]
Homepage: http://jason.artoo.net/
Message Posted at:
http://www.g
her that I learn it better and also keep at
it longer.
Anyway, I've got a lab full of gear
( http://r2cisco.artoo.net/routers.html ), just thinking that two heads are
better than one in preparation at this point.
--
Jason Roysdon, CCNP+Security/CCDP, MCSE, CNA, Network+, A+
List email: [EMAIL PROT
conf t
line con 0
speed 9600
! change terminal software to 9600 baud
end
wr m
!!!
!! TFTP upload (fast):
IP_ADDRESS=192.0.0.254
IP_SUBNET_MASK=255.255.255.0
DEFAULT_GATEWAY=192.0.0.1
TFTP_SERVER=192.0.0.253
TFTP_FILE=c2600-d-mz.120-7.XK2.bin
TFTP_VERBOSE=2
tftpdnld
y
e accelerator).
Of course, Cisco is more than happy to sell you both, which at times is the
preferred solution if you have both site to site and large client installs.
--
Jason Roysdon, CCNP+Security/CCDP, MCSE, CNA, Network+, A+
List email: [EMAIL PROTECTED]
Homepage: http://jason.artoo.net/
but at
this point I'm out of the loop until they get it straightened out.
Ok, I'll stop ranting now. I'm fighting an evil NT4 install so I can work
on CSPM. Yet another product that needs to be updated ;-p
--
Jason Roysdon, CCNP+Security/CCDP, MCSE, CNA, Network+, A+
List
refuse to think of myself as a
"Trekkie." I just watch all the re-runs. Tuvok would be a good name for a
security box.
Anyone else have good ideas for sci-fi naming conventions? I'm just about
out of Star Wars names *g*
--
Jason Roysdon, CCNP+Security/CCDP, MCSE, CNA, Networ
Post your config, if you don't mind. Nuke the passwords and any IPSEC keys,
etc.
--
Jason Roysdon, CCNP+Security/CCDP, MCSE, CNA, Network+, A+
List email: [EMAIL PROTECTED]
Homepage: http://jason.artoo.net/
""Brandon"" wrote in message
[EMAIL PROTECTED]">
labs ;-)' I'm installing NT4 right now (stupid CSPM requires it) and
will have VNC running to access it. I just wish I had the IDS Sensor for
the 4 weeks to really take advantage, but I might be able to swing an unused
Sensor elsewhere.
--
Jason Roysdon, CCNP+Security/CCDP, MCSE, CNA, Ne
Sorry to find humor in this (but that's my nature), but:
Step #1 to securing NT: disable IIS ;-p
--
Jason Roysdon, CCNP+Security/CCDP, MCSE, CNA, Network+, A+
List email: [EMAIL PROTECTED]
Homepage: http://jason.artoo.net/
""John Brandis"" wrote in message
[EMAI
A number of engineers I know love it. I found 3Com's 3CDaemon first and
have used it ever since (but Pumpkin looks very easy as well).
--
Jason Roysdon, CCNP+Security/CCDP, MCSE, CNA, Network+, A+
List email: [EMAIL PROTECTED]
Homepage: http://jason.artoo.net/
""Jim Yam"
mages stored
in PPT, so it's not nearly as useful if it was searchable text (but you can
still use the index to find stuff). Absolute worst test I've ever had to
deal with.
--
Jason Roysdon, CCNP+Security/CCDP, MCSE, CNA, Network+, A+
List email: [EMAIL PROTECTED]
Homepage: http://
YES NVRAM up
up
c1605r_unused#ping 192.168.45.254
Type escape sequence to abort.
Sending 5, 100-byte ICMP Echos to 192.168.45.254, timeout is 2 seconds:
!
Success rate is 100 percent (5/5), round-trip min/avg/max = 4/4/4 ms
--
Jason Roysdon, CCNP+Security/CCDP, MCSE, CNA, Network+, A+
List
ng as you don't have multiple interfaces and/or a
DMZ).
--
Jason Roysdon, CCNP+Security/CCDP, MCSE, CNA, Network+, A+
List email: [EMAIL PROTECTED]
Homepage: http://jason.artoo.net/
""John Gotti"" wrote in message
[EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
Of course if the source is open, it has more eyes looking at it (than say M$
software which seems to be having a new security announcement every week
right now).
--
Jason Roysdon, CCNP+Security/CCDP, MCSE, CNA, Network+, A+
List email: [EMAIL PROTECTED]
Homepage: http://jason.artoo.net
I'd be curious to see your PIX config. I bet we could make some suggestions
on tightening things up and also point out where they probably got through
(got any IIS boxes?).
--
Jason Roysdon, CCNP+Security/CCDP, MCSE, CNA, Network+, A+
List email: [EMAIL PROTECTED]
Homepage:
You have a route to the fe network? You said you had reachability, so I'd
assume it, but you might want to make sure.
--
Jason Roysdon, CCNP+Security/CCDP, MCSE, CNA, Network+, A+
List email: [EMAIL PROTECTED]
Homepage: http://jason.artoo.net/
""Brandon"" wrote in
" (previously known as Concentrator
3000 client), aka "Cisco VPN Client" (not "Cisco Secure VPN Client" which is
just a Cisco-branded OEM from IRE).
--
Jason Roysdon, CCNP+Security/CCDP, MCSE, CNA, Network+, A+
List email: [EMAIL PROTECTED]
Homepage: http://jason.artoo.net/
2610 has only console and auxiliary ports built in, other than the single
ethernet port. Are you sure you didn't get a 2610 with a module already
installed? Perhaps give us a 'show version' readout which will show the
hardware devices in the router.
--
Jason Roysdon, CCNP+Secu
Correct on the nat question (for security reasons I wouldn't be that broad,
but I guess it doesn't hurt that much). What's a show xlate giving you?
Are the nodes you're testing with actually getting NAT xlates?
--
Jason Roysdon, CCNP+Security/CCDP, MCSE, CNA, Network+, A
Do a 'show xlate local x.x.x.x' and search for a private IP on the
fastethernet segment.
It sounds like your PIX 'nat (inside) #' is missing the network of the
fastethernet segment.
nat (inside) 1 192.168.1.0 255.255.255.0 0 0
nat (inside) 1 192.168.2.0 255.255.255.0 0
7;d normally do this, but rather
have AAA or local users defined with levels set.
--
Jason Roysdon, CCNP+Security/CCDP, MCSE, CNA, Network+, A+
List email: [EMAIL PROTECTED]
Homepage: http://jason.artoo.net/
""Albert Lu"" wrote in message
[EMAIL PROTECTED]">news:[EMAIL P
True, true. Good point. Of course, you can always disable all the fixups
;-)'
--
Jason Roysdon, CCNP+Security/CCDP, MCSE, CNA, Network+, A+
List email: [EMAIL PROTECTED]
Homepage: http://jason.artoo.net/
""Carroll Kong"" wrote in message
[EMAIL PROTECTED]">
listening, you'll see the
broadcast request for the boot config file, and I can't see how any security
could be passed to stop/block getting the wrong config? I always just set
'no service config' as a matter of best-practices whenever configuring a
router, but I'm wondering if an
Anyone wishing to unsubscribe, please see the Groupstudy.com website
regarding the proper procedure:
http://groupstudy.com/list/help.html
--
Jason Roysdon, CCNP+Security/CCDP, MCSE, CNA, Network+, A+
List email: [EMAIL PROTECTED]
Homepage: http://jason.artoo.net/
""M. HASAN USMANI
Use ACLs to block. Not as simple as the command you're looking for.
--
Jason Roysdon, CCNP+Security/CCDP, MCSE, CNA, Network+, A+
List email: [EMAIL PROTECTED]
Homepage: http://jason.artoo.net/
""Jacques Atlas"" wrote in message
[EMAIL PROTECTED]">news:[EM
T1, so the
1.5mbit connection is the limit, not the PIX. We're actually doing VPN
IPSEC tunnels to a number of "test sites" (my house, my office, my boss'
house) and have 7960 IP Phones working remotely. Works great so far.
--
Jason Roysdon, CCNP+Security/CCDP, MCSE, CNA, N
a route-map for all telnet
traffic to the router's ips and set it to forward to Null, and then they
just get nothing, period. More work than it's worth, IMHO ;-)
--
Jason Roysdon, CCNP+Security/CCDP, MCSE, CNA, Network+, A+
List email: [EMAIL PROTECTED]
Homepage: http://jason.artoo.net/
eq telnet
(1.1.1.1 & 2.2.2.2 should match all of the routers IPs).
--
Jason Roysdon, CCNP+Security/CCDP, MCSE, CNA, Network+, A+
List email: [EMAIL PROTECTED]
Homepage: http://jason.artoo.net/
""Chuck Larrieu"" wrote in message
[EMAIL PROTECTED]">news:[EMAIL P
urity hole,
but prevents them on flawed/badly coded end devices.
--
Jason Roysdon, CCNP+Security/CCDP, MCSE, CNA, Network+, A+
List email: [EMAIL PROTECTED]
Homepage: http://jason.artoo.net/
""Carroll Kong"" wrote in message
[EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
And the Modular Cafe shows they work in 1720 w/12.0.1(XA3). 1600 is shown
to now be supported.
--
Jason Roysdon, CCNP+Security/CCDP, MCSE, CNA, Network+, A+
List email: [EMAIL PROTECTED]
Homepage: http://jason.artoo.net/
""LeBrun, Tim"" wrote in message
[EMAIL PRO
12.0.1(XA3)
1600 series - Not Available
4 clicks, question answered.
--
Jason Roysdon, CCNP+Security/CCDP, MCSE, CNA, Network+, A+
List email: [EMAIL PROTECTED]
Homepage: http://jason.artoo.net/
""Sujal G. Ajmera"" wrote in message
[EMAIL PROTECTED]">news:[EMAI
uter had a default GNS delay of 500 ms. The default GNS delay for
any later release is 0 ms. If you find you need a delay as discussed below,
use the command ipx gns-response-delay to add an apropriate delay. Sh ipx
int will show you the configured GNS delay for a particular interface."
--
Jaso
firewallking.com/phpnuke/html/layout.php as well.
--
Jason Roysdon, CCNP+Security/CCDP, MCSE, CNA, Network+, A+
List email: [EMAIL PROTECTED]
Homepage: http://jason.artoo.net/
""John Andrews"" wrote in message
[EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
> Does anyone
Get a remote power device (APC MasterSwitch) and console terminal server
(500-cs or 2509/2511) so you can all access it remotely ;-)
--
Jason Roysdon, CCNP+Security/CCDP, MCSE, CNA, Network+, A+
List email: [EMAIL PROTECTED]
Homepage: http://jason.artoo.net/
wrote in message
[EMAIL PROTECTED
PBI-NET-7
63.192.0.0 -
63.207.255.255
Now, WYSE needs to be giving that Class B back ;-p How much of that address
space is even in use? 5%? 10%? 25% tops?
We run RIPv2 internally and have 63/24 blocks from Sprint & UUNET and have
no reachability problems to other 63/8 blocks.
--
Jason Roysdon,
You can run traffic through a Proxy box before it hits the PIX if URL
filtering is what you want. Then block all :80 + :443 traffic through the
PIX from anything but the Proxy. Or whatever protocols it is you want to
URL filter. This way you get the best of both worlds.
--
Jason Roysdon, CCNP
1 - 100 of 250 matches
Mail list logo