8 pm.
Generally, they ask many questions and may want to try different things, but
my guess is having CCIE expedited it. I had number of other similar
instances.
-Keyur Shah-
CCIE# 4799 (Security; Routing and Switching)
css1,scsa,scna,mct,mcse,cni,mcne
Hello Computers
"Say Hello to Your F
set debug for aaa and configure to log to syslog. It is not easy to parse
that log though, but can be done.
-Keyur Shah-
CCIE# 4799 (Security; Routing and Switching)
css1,scsa,scna,mct,mcse,cni,mcne
Hello Computers
"Say Hello to Your Future!"
http://www.hellocomputers.com
the whole
lab. That will make candidates think from real world angle. That is just an
example, many such things come to mind.
Impressive article John, you described ccie's day in real world very well.
-Keyur Shah-
CCIE# 4799 (Security; Routing and Switching)
css1,scsa,scna,mct,mcse,cni,mcne
I did not mean to say without touching production network.
-keyur shah-
-Original Message-
From: nrf [mailto:[EMAIL PROTECTED]]
Sent: Tuesday, February 05, 2002 5:27 AM
To: [EMAIL PROTECTED]
Subject: Re: LongRE: CCIE starting pay [7:33899]
If I may ask, why exactly is it a good
.
-Keyur Shah-
CCIE# 4799 (Security; Routing and Switching)
css1,scsa,scna,mct,mcse,cni,mcne
Hello Computers
"Say Hello to Your Future!"
http://www.hellocomputers.com
Toll-Free: 1.877.794.3556
"Now offering CCIE Security Lab Workbook and remote bootcamp,
http://www.hellocomputers.com/he
You can use AAA time-of-day access feature with PIX to accomplish this.
-Keyur Shah-
CCIE# 4799 (Security; Routing and Switching)
css1,scsa,scna,mct,mcse,cni,mcne
Hello Computers
"Say Hello to Your Future!"
http://www.hellocomputers.com
Toll-Free: 1.877.794.3556
Fremont: 510.795.6
You have to apply crypto map on real interface, otherwise phase I won't kick
off in case of crypto acl match. You can configure isakmp identity and peer
ip to loopback, provided you use the command crypto map mymap local-address.
-Keyur Shah-
CCIE# 4799 (Security; Routing and Switching)
It is a very good introductory book. I recommend using that book and
implement those labs on smaller rack (4-5 routers). Next step would be to do
more advanced labs like, IPExpert or Ccbootcamp.
-Keyur Shah-
CCIE# 4799 (Security; Routing and Switching)
css1,ccna,ccda,scsa,scna,mct,mcse,mcp+i,mcp
Try fixup protocol smtp 25 and obviously, conduit to allow smtp.
-Keyur Shah-
CCIE# 4799 (Security; Routing and Switching)
css1,ccna,ccda,scsa,scna,mct,mcse,mcp+i,mcp,cni,mcne,cne,cna
Hello Computers
"Say Hello to Your Future!"
http://www.hellocomputers.com
Toll-Free: 1.877.794.355
Ali,
This should work fine. Make sure you point your static routes to pix outside
address on your edge routers, which I am sure you will.
Thanks
-Keyur Shah-
CCIE# 4799 (Security; Routing and Switching)
css1,ccna,ccda,scsa,scna,mct,mcse,mcp+i,mcp,cni,mcne,cne,cna
Hello Computers
"Say Hel
One way to do it would be port span on switch for port connected to e0/0 and
then filter the captured traffic with sniffer.
-Keyur Shah-
CCIE# 4799 (Security; Routing and Switching)
css1,ccna,ccda,scsa,scna,mct,mcse,mcp+i,mcp,cni,mcne,cne,cna
Hello Computers
"Say Hello to Your Future!&
Study MCNS, CSISS, CSIDS books. Vconsole and boson have practice tests. Know
basics of unix and nt/win2k.
-Keyur Shah-
CCIE# 4799 (Security; Routing and Switching)
css1,ccna,ccda,scsa,scna,mct,mcse,mcp+i,mcp,cni,mcne,cne,cna
Hello Computers
"Say Hello to Your Future!&
Also, Andrew Mason's Cisco Secure Internet Security Solutions is very very
good reference book for MCNS and CCIE Security.
-Keyur Shah-
CCIE# 4799 (Security; Routing and Switching)
css1,ccna,ccda,scsa,scna,mct,mcse,mcp+i,mcp,cni,mcne,cne,cna
Hello Computers
"Say Hello to Your Fut
You still need conduit or access list to bypass PIX ASA.
-Keyur Shah-
CCIE# 4799 (Security; Routing and Switching)
css1,ccna,ccda,scsa,scna,mct,mcse,mcp+i,mcp,cni,mcne,cne,cna
Hello Computers
"Say Hello to Your Future!"
http://www.hellocomputers.com
Toll-Free: 1.877.794.355
Set port speed and duplex manually rather than leaving it to auto negotiate.
This is very common problem on all cisco switches.
-Keyur Shah-
CCIE# 4799 (Security; Routing and Switching)
css1,ccna,ccda,scsa,scna,mct,mcse,mcp+i,mcp,cni,mcne,cne,cna
Hello Computers
"Say Hello to Your Future!&
Are you running any GRE tunnels through pix?
-Keyur Shah-
CCIE# 4799 (Security; Routing and Switching)
css1,ccna,ccda,scsa,scna,mct,mcse,mcp+i,mcp,cni,mcne,cne,cna
Hello Computers
"Say Hello to Your Future!"
http://www.hellocomputers.com
Toll-Free: 1.877.794.3556
Fremont: 510.795.6
Daniel,
You can do this with trunking two vlans. I hope you have fast ethernet port.
-Keyur Shah-
CCIE# 4799 (Security; Routing and Switching)
css1,ccna,ccda,scsa,scna,mct,mcse,mcp+i,mcp,cni,mcne,cne,cna
Hello Computers
"Say Hello to Your Future!"
http://www.hellocomputers.com
MCNS + PIX Advanced + VPN + IDS.
Good luck.
-Keyur Shah-
CCIE# 4799 (Security; Routing and Switching)
css1,ccna,ccda,scsa,scna,mct,mcse,mcp+i,mcp,cni,mcne,cne,cna
Hello Computers
"Say Hello to Your Future!"
http://www.hellocomputers.com
Toll-Free: 1.877.794.3556
-Origin
That is not true. Cat 6k is in some racks.
-Keyur Shah-
CCIE# 4799 (Security; Routing and Switching)
css1,ccna,ccda,scsa,scna,mct,mcse,mcp+i,mcp,cni,mcne,cne,cna
Hello Computers
"Say Hello to Your Future!"
http://www.hellocomputers.com
Toll-Free: 1.877.794.3556
-Original Message
Dante,
Try this document,
http://www.cisco.com/warp/public/110/alias.html
-Keyur Shah-
CCIE# 4799 (Security; Routing and Switching)
css1,ccna,ccda,scsa,scna,mct,mcse,mcp+i,mcp,cni,mcne,cne,cna
Hello Computers
"Say Hello to Your Future!"
http://www.hellocomputers.com
Toll-Free: 1.87
Make sure your dmz network is routed to outside interface of the pix. It
seems that you do not want to nat dmz network, if that is not what you want,
remove nat(dmz) 0 and add nat(dmz) 1 0 0 statement.
-Keyur Shah-
CCIE# 4799 (Security; Routing and Switching)
css1,ccna,ccda,scsa,scna,mct,mcse
Brian,
Did you try without pool statement, vpdn group 1 client configuration
address local pptp-pool
It will use its current ip. Make sure to nat 0 from inside to client's ip.
-Keyur Shah-
CCIE# 4799 (Security; Routing and Switching)
css1,ccna,ccda,scsa,scna,mct,mcse,mcp+i,mcp,cni,mcne,cn
Title: Access List & Catalyst
set
cam static MAC PORT
will
do the job.
-Original Message-From: Deloso, Elmer G.
[mailto:[EMAIL PROTECTED]]Sent: Friday, July 07, 2000 10:02
AMTo: '[EMAIL PROTECTED]'Subject: Access List &
Catalyst
Hi, all. Is
there a way to implement acc
nagios is awesome. we use it for our inhouse and client network monitoring.
Great free tool!
-Keyur Shah-
CCIE# 4799 (Security;R/S)
CISSP,CCSP,CWNA,CCSA,SCNA,MCSE,MCNE,MCT,CNI
"Say Hello to Your Future!"
http://www.hellocomputers.com
Toll-Free: 1.877.79.HELLO
-Original Message
checkbox
and had choose all that apply selection with real close choices, which made
the test 3 times harder than it really is.
I have heard that people are using CWNA book plus cisco AP product line and
basic config knowledge to prepare for cisco wireless test and wanted your
thoughts.
-Keyur Shah
Shane,
use arp timeout 1 to reduce timeout and then do no arp timeout on vlan
interface on MSFC2.
-Keyur Shah-
CCIE# 4799 (Security;R/S)
CISSP,CCSP,CWNA,CCSA,SCNA,MCSE,MCNE,MCT,CNI
"Say Hello to Your Future!"
http://www.hellocomputers.com
Toll-Free: 1.877.79.HELLO
-Origin
Try global config command,
ip tacacs source-interface
-Keyur Shah-
CCIE# 4799 (Security; Routing and Switching)
CISSP,ccsa,css1,scsa,scna,mct,mcse,cni,mcne
Hello Computers
"Say Hello to Your Future!"
http://www.hellocomputers.com
Toll-Free: 1.877.794.3556
-Original Message
switching knowledge is
required for written.
-Keyur Shah-
CCIE# 4799 (Security; Routing and Switching)
CISSP,ccsa,css1,scsa,scna,mct,mcse,cni,mcne
Hello Computers
"Say Hello to Your Future!"
http://www.hellocomputers.com
Toll-Free: 1.877.794.3556
Fremont: 510.795.6815
-Origin
excellent credential. These days, everyone seem to know routing
and switching. CCIP (or voice, content) cert(s) will be excellent addition
to CCNP credential.
-Keyur Shah-
CCIE# 4799 (Security; Routing and Switching)
CISSP,ccsa,css1,scsa,scna,mct,mcse,cni,mcne
Hello Computers
"Say Hello to Your F
ot to
spend more than 10-15 minutes though.
- hardest part is to wait for results email. make sure you plan something
hectic the next day of your test. i was on email every second and it was not
fun to wait.
-Keyur Shah-
CCIE# 4799 (Routing/Switching and Security)
CSS1,SCSA,SCNA,MCSE,MCP,MCP+I,CNE
it's links, http://www.cisco.com/warp/public/707/
-Keyur Shah-
CCIE# 4799 (Routing/Switching and Security)
CSS1,SCSA,SCNA,MCSE,MCNE,CCNA,CCDA,CNE
Hello Computers
"Say Hello To Your Future!"
http://www.hellocomputers.com
E-mail: mailto:[EMAIL PROTECTED]
Toll-Free: 1.877.79.Hello
Hi Paul,
In my practice lab, I had access to
routers/pix/AAA/CA/cat/isdn/solaris/cspm/tftp/syslog/ids sw.
Thanks
-Keyur Shah-
CCIE# 4799 (Security, Routing/Switching)
CSS1,SCSA,SCNA,MCT,MCSE,MCP,MCP+I,CNI,CNE,CNA,MCNE,CCNA,CCDA
Hello Computers
"Say Hello To Your Future!&
What kind of traffic are you talking about Jeremy? Few megs or 10s or 100s
of mbps?
-Keyur Shah-
CCIE# 4799 (Security; Routing and Switching)
CSS1,CCNA,CCDA,SCSA,SCNA,MCT,MCSE,MCP+I,MCP,CNI,MCNE,CNE,CNA
Hello Computers
"Say Hello to Your Future!"
http://www.hellocomputers.com
acl on internal interface
then permit what you want inspected. Also, icmp can not be inspected thru
cbac.
-Keyur Shah-
CCIE# 4799 (Security; Routing and Switching)
CSS1,CCNA,CCDA,SCSA,SCNA,MCT,MCSE,MCP+I,MCP,CNI,MCNE,CNE,CNA
Hello Computers
"Say Hello to Your Future!&
just heard from VUE that cisco certification exam prices for all career
certifications with numbers 640-* and 9E0-* are going up to US$125 starting
november 1st.
-Keyur Shah-
CCIE# 4799 (Security; Routing and Switching)
CSS1,CCNA,CCDA,SCSA,SCNA,MCT,MCSE,MCP+I,MCP,CNI,MCNE,CNE,CNA
Hello
Tom,
You can accomplish this with alias command. Here is an example,
http://www.cisco.com/warp/public/110/alias.html
-Keyur Shah-
CCIE# 4799 (Security; Routing and Switching)
CSS1,CCNA,CCDA,SCSA,SCNA,MCT,MCSE,MCP+I,MCP,CNI,MCNE,CNE,CNA
Hello Computers
"Say Hello to Your Future!&
would have to
configure each parameter manually on all participating routers and clients.
IKE is called phase I negotiation, which ensures that peer is who it says it
is.
-Keyur Shah-
CCIE# 4799 (Security; Routing and Switching)
CSS1,CCNA,CCDA,SCSA,SCNA,MCT,MCSE,MCP+I,MCP,CNI,MCNE,CNE,CNA
Hello
General unix knowledge is required for written exam. I recommend to learn
basic unix skills.
-Keyur Shah-
CCIE# 4799 (Security, Routing/Switching)
CSS1,SCSA,SCNA,MCT,MCSE,MCP,MCP+I,CNI,CNE,CNA,MCNE,CCNA,CCDA
Hello Computers
"Say Hello To Your Future!"
http://www.hellocomputers.com
E-ma
great for learning
and implementing in small office.
Just my 2c.
"Now offering CCIE Security Lab Subscription Pacakge and Remote Bootcamp"
-Keyur Shah-
CCIE# 4799 (Security; Routing and Switching)
css1,ccna,ccda,scsa,scna,mct,mcse,mcp+i,mcp,cni,mcne,cne,cna
Hello Computers
"Say
You are right. Desktop models of firewalls do not support failover feature
for obvious reason.
"Now offering CCIE Security Lab Subscription Pacakge and Remote Bootcamp"
-Keyur Shah-
CCIE# 4799 (Security; Routing and Switching)
css1,ccna,ccda,scsa,scna,mct,mcse,mcp+i,mcp,cni,mcne,cne
What will your users be using? Vpn client 3 or cisco secure client 1.1 or
win2k vpn client?
"Now offering CCIE Security Lab Subscription Pacakge and Remote Bootcamp"
-Keyur Shah-
CCIE# 4799 (Security; Routing and Switching)
css1,ccna,ccda,scsa,scna,mct,mcse,mcp+i,mcp,cni,mcne,cne
bscription Pacakge and Remote Bootcamp"
-Keyur Shah-
CCIE# 4799 (Security; Routing and Switching)
css1,ccna,ccda,scsa,scna,mct,mcse,mcp+i,mcp,cni,mcne,cne,cna
Hello Computers
"Say Hello to Your Future!"
http://www.hellocomputers.com
Toll-Free: 1.877.794.3556
Fremont: 510.795.6815
Santa C
firewall, if
they have two firewalls, but for the sake of argument let's say pix). Data
on the backend is only accessible by web tier and not outside world. In that
case, it is not necessary to use norandomseq.
-Keyur Shah-
CCIE# 4799 (Security; R/S)
CISSP,ccsa,css1,scsa,scna,mct,mcse,cni
mask is not matching in acl to interface. You can also do this,
route-map deny_lo1 deny 10
match interface lo1
route-map deny_lo1 permit 20
or else
access-list 99 permit host 1.1.1.1
-Keyur Shah-
CCIE# 4799 (Security;R/S)
CISSP,SCNA,CCSA,MCSE,MCNE
"Say Hello to Your Future!&
Azhar,
It is upto you on what you want to log. if you select level 7 then it is 0
through 7. if you pick level 3 then it is 0 through 3.
-Keyur Shah-
CCIE# 4799 (Security;R/S)
CISSP,CCSA,SCNA,MCSE,MCNE
"Say Hello to Your Future!"
Toll-Free: 1.877.79.HELLO
-Original Message
If it is inside to outside traffic, timeout xlate can be set.
-Keyur Shah-
CCIE# 4799 (Security, Routing/Switching)
CISSP,ccsa,css1,scsa,scna,mcse,mct,mcne,cni
Hello Computers
http://www.hellocomputers.com
-Original Message-
From: Paul [mailto:[EMAIL PROTECTED]]
Sent: Sunday, July 14
46 matches
Mail list logo
