Priscilla Oppenheimer wrote:
Yes, that's true indeed that access lists don't cause process switching
anymore, so wouldn't show up in IP Input.
Two exceptions that I failed to mention are logging and the side effect
of a deny. By default, a deny causes the generation of an ICMP admin.
Priscilla Oppenheimer wrote:
Maybe a dumb question, but I know you guys can help me. :-)
How would I know if a router is using excessive CPU on IP access lists?
What am I looking for when I do a show processes cpu?
You can't determine the portion due to ACL processing from any single
Priscilla Oppenheimer wrote:
DTP uses protocol type 2004 too, just like DISL. I guess it's just an
update
to DISL for use with 802.1Q rather than ISL?
Yes. Step 1: negotiate whether to trunk. Step 2: if the result is yes,
then negotiate which flavor. If both are indifferent, favor ISL.
.
Why was EIGRP designed this way?
I don't know why, but I do know Cisco is revisiting that decision.
At Networkers 2002 Alvaro described an enhancement on the drawing board
called reliable three-way handshake. Backward compatible.
See session RST-440.
Marty Adkins
Chesapeake NetCraftsmen, LLC
Keith Woodworth wrote:
|- Anyway to acutally tell for certain if the router is dropping packets?
|-
|-show buffers
|-show queueing
|-show queue interface etc.
Showing misses/failures on all buffers but these have the most:
Small buffers, 104 bytes (total 50, permanent 50, peak 201 @
Keith Woodworth wrote:
we use ip route-cache policy on each interface that is has policy routing
enabled. I'm trying to find out how route-cache correlatets to CEF. Does
ip route-cache policy need to be turned off when CEF is enabled? How is
it it different than CEF? The two seem to be
Priscilla Oppenheimer wrote:
sam sneed wrote:
this is about the comment
You'd get a link but lots of collisions, eh? The half-duplex
side would
receive while it was sending, because the full-duplex side
would send
whenever it wanted. In other words, the 2500 side would report
Cable Guy wrote:
I am trying to clear arp-cache in IOS 12.1 and get unexpected results.
Below
you see debug arp turned on, the current arp cache, then the clear command.
Immediately, the router sends out arp requests for the entries that were in
the cache.
Why does the router immediately
Paulo Roque wrote:
It4s exactly that kind of task I want to avoid !
Paulo
Georgescu, Aurelian escreveu na mensagem
news:200211072134.VAA21948;groupstudy.com...
You have to set up daylight saving and time zone on each client, so they
will know how to interpret the UTC.
The NTP time
Priscilla Oppenheimer wrote:
The router is testing for a duplicate IP address. Hopes it
doesn't get a reply.
What it sends already is a reply, as the debug in the original message
stated. Here's an example:
Oops, I didn't read the debug carefully enough. Thanks for the correction!
Cable Guy wrote:
When you put a hardware loopback plug on a serial to test it, why does the
router see it as a loopback? With the show int serial command, you will see
-serial up, line protocol up (loopback mode)-
Of course it needs to see it as loopback otherwise the router wouldn't
Priscilla Oppenheimer wrote:
s vermill wrote:
Anyone smart on interworkings of Cisco routers care to clarify
something for me? I was in a discussion with someone in
another forum. It was being discussed how pings from a local
ethernet interface to a local serial interface on the
Jason Yates wrote:
How would I setup my ethernet interface, on my cisco 2500 running IOS
12.06,
to grab it's ip info from a dhcp server, or is this impossible?
You want:
interface e0
ip address dhcp
Works for me!
- Marty
Message Posted at:
Priscilla Oppenheimer wrote:
Interesting test. I think I understand it. ;-)
Where are the debugs being run, by the way? The local router that is
pinging
or the router at the other end? It looks like they are on the local router
doing the pings? Try running them on the other router. Be
John Neiberger wrote:
We've had nothing but bad luck with the 3C905C NICs. We've purchased a
*bunch* of low-end Dell PCs that have that NIC and they tend to get the
blue screen of death and then reboot if they're connected to Cisco
switches, especially when STP is turned on. Very odd
One more treatment of an old topic, but rather well done.
FWIW,
- Marty
Message Posted at:
http://www.groupstudy.com/form/read.php?f=7i=51295t=51295
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report
...padding...padding...padding...padding...padding...padding...padding...
padding...padding...padding...padding...padding...padding...padding...padding...
Marty Adkins wrote:
One more treatment of an old topic, but rather well done.
FWIW,
- Marty
http://www.cisco.com/warp/public/100
to add to the reading list on this topic:
http://www.cisco.com/warp/public/63/highcpu.html
Marty Adkins Email: [EMAIL PROTECTED]
Chesapeake NetCraftsmen, LLC o:410.757.3050,
p:[EMAIL PROTECTED]
1290 Bay Dale Drive, Suite 312 http://www.netcraftsmen.NET
Arnold, MD
outbound mail without having done a POP fetch
in the last several minutes, an error message tells you that you must
do that first.
And BTW, none of these reduce spam, only the relaying of it!
Marty Adkins Email: [EMAIL PROTECTED]
Chesapeake NetCraftsmen, LLC o
Here's a pretty good explanation of the STP timers, diameter, etc.
Understanding and Tuning Spanning-Tree Protocol Timers
http://www.cisco.com/warp/public/473/122.html
Much easier to follow than the IEEE standard.
Marty Adkins Email: [EMAIL PROTECTED]
Chesapeake
Michael L. Williams wrote:
Paul Lalonde wrote in message
[EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
but
routing out via an Ethernet interface will likely just *drop* the packet
onto that broadcast domain (subnet) without pointing it to a specific
next
hop.
This raises an
Anthony Pace wrote:
I thought on some platforms there was a way to cache the ACLs and or policy
route-maps so they could be fast/CEF/mls switched. Like the logic got
copiled and pushed into silicon (or something like that). Is there any
vlaidity to that?
Anthony Pace
Actually on ALL
Leigh Anne Chisholm wrote:
1. See Priscilla's response first.
2. Your query wondering about what protocols other than Novell that can
use
the 802.3 frame makes me wonder if you have misunderstood encapsulation.
Novell's encapsulations were developed prior to the IEEE finalizing their
ms and a
WAN link is assumed to take 20 ms (your geography may vary :-)
Marty Adkins Email: [EMAIL PROTECTED]
Mentor Technologies Phone: 240-568-6526
133 National Business Pkwy WWW: http://www.mentortech.com
Annapolis Junction, MD 20701Cisco CCIE
Priscilla Oppenheimer wrote:
Socket has another meaning in the Unix world which I have never quite
understood. Perhaps someone else can explain that.
Socket = logical connection = tuple of (remote IP, source port, dest port).
The source IP is implicit. :-)
- Marty
Message Posted at:
Priscilla Oppenheimer wrote:
VTP advertisements are sent to a data-link-layer multicast
01-00-0C-CC-CC-CC. The SNAP type is 2003 which distinguishes the frame from
other Cisco frames that use that multicast (CDP and DISL, for example).
As I said before, the router would have to be sitting
routers, the XL
switch console port uses hardware flow control. If a lead is floating
(not connected), the switch sees that as a don't transmit condition.
This causes it to just buffer up all the output. What you type is
acted upon, but you see no display.
Marty Adkins Email
Priscilla Oppenheimer wrote:
Has anyone seen this and is there a workaround?
On a Catalyst 1900 switch enterprise edition, the software has decided that
one of my ports should not flood unknown unicast or multicast. This
wouldn't be a problem except that the port is also my monitor port
a process to run.
Thanks to both of you for digging and actually trying these on real
gear -- it helps everyone learn much more thoroughly.
Marty Adkins Email: [EMAIL PROTECTED]
Mentor Technologies Phone: 240-568-6526
133 National Business Pkwy WWW
Priscilla Oppenheimer wrote:
To look at ip traffic he should use debug ip packet detail. (Be careful on
a busy production router. This displays a lot of info, and when you ask a
router to use CPU cycles to display output on the console instead of using
those cycles to route packets, you're
Priscilla Oppenheimer wrote:
When a workstation starts up, it can multicast an ICMP router solicitation
packet to ask for immediate advertisements, rather than wait for the next
periodic advertisement to arrive. Although most routers support RDP, few
workstation IP implementations support
Howard C. Berkowitz wrote:
OSI, in its _basic_ 7 layer form, is a useful tool for
conceptualizing and educating. That's it. Certain concepts, like the
generic relationship between layers, protocol encapsulation, etc.,
are generally useful. But I assure you, from personal experience in
is not fast-switched, nor process-switched -- it's not switched at all!
If a ping is sourced from the router with two equal paths, the pings
will alternate paths on a per-packet basis.
Marty Adkins Email: [EMAIL PROTECTED]
Mentor Technologies Phone: 240-568-6526
be bridged) to time out and retransmit. If the max
retry count was exceeded, the session was dropped.
Someplace in my paper archives I believe I have the slides from a
DECUS presentation that broke out the timing budget.
Marty Adkins Email: [EMAIL PROTECTED]
Mentor Technologies
Daniel Cotts wrote:
The 3500's use the router like IOS.
The 2900 series that use the CatOS or set commands are the 2901 and the
following:
http://www.cisco.com/univercd/cc/td/doc/product/lan/c29xx/c2926/01intro.htm
Watch the wrap.
The 2901 is no longer made. It is a two slot fixed
Howard C. Berkowitz wrote:
In the most general sense, a tunnel is a means of taking a protocol
data unit payload of OSI layer N of protocol family P1: (N,P1)-PDU,
and transmitting it with a delivery header at layer M of protocol
family P2. What is actually transmitted is, minimally, a
environment. You will also learn how to
handle questions.
Besides Toastmasters, I can heartily recommend Friesen, Kay Associates'
three-day Instructional Techniques workshop. I've sent a number of new
instructors to it who found it very helpful. http://www.fka.com/
Marty Adkins
reference, here's another good explanation (watch wrap):
http://www.corningcablesystems.com/web/privnet/privnet.nsf/%28vwAllKeys%29%7CvwAllKeys/D1574C2BD2F2388B8525698A004DD6C5?OpenDocument
Marty Adkins Email: [EMAIL PROTECTED]
Mentor Technologies Phone: 240-568
at it, enable bpdu-guard so if someone does back-door
and create a loop, the portfast-enabled port will be disabled.
I'd love to see if that makes the Macs happy.
Marty Adkins Email: [EMAIL PROTECTED]
Mentor Technologies Phone: 240-568-6526
133 National
(fast-switching, etc.)
Marty Adkins Email: [EMAIL PROTECTED]
Mentor Technologies Phone: 240-568-6526
133 National Business Pkwy WWW: http://www.mentortech.com
Annapolis Junction, MD 20701Cisco CCIE #1289
Message Posted at:
http://www.groupstudy
at that port, it should reply with
an ICMP port unreachable. It's possible that some device is filtering
the UDP packets in the forward direction, or the ICMP unreachables in
the reverse direction, while happily passing ICMP echo/echo-reply.
Marty Adkins Email: [EMAIL PROTECTED
index.html
If you're into hardware chipsets, then follow the links at:
http://www.scyld.com/expert/100mbps.html
And as a great place to start on anything about Ethernet, Charles Spurgeon's
site at U. Texas is still great: http://wwwhost.ots.utexas.edu/ethernet/
Marty Adkins
Priscilla Oppenheimer wrote:
It makes it easy to have Internet connectivity in the kitchen or bathroom.
Gives a whole new meaning to PPP! ;-)
My, you are in rare form tonight! Keep in comin' :-
- Marty
Message Posted at:
http://www.groupstudy.com/form/read.php?f=7i=558t=537
is still on the exam -- I think it's
worthwhile for people to contrast the various methods of service
location used over the years, vis a vis Novell and Microsoft.
Marty Adkins Email: [EMAIL PROTECTED]
Mentor Technologies Phone: 240-568-6526
133 National Business
er to
http://www.tara.ca/ourlabs/ccie.html and peak at Halifax.
They're redesigned their site -- they used to have a Quicktime 360 degree
"movie" of the lab. Back when I was still teaching CCIE prep classes
I used to show it to people. It helped take the edge off of the unkn
Priscilla Oppenheimer wrote:
At 10:09 PM 3/23/01, you wrote:
Are you sure that the LAA bit applies to Ethernet? I've never seen
that defined as such in any doc. Only for Token Ring.
- Marty
It's in IEEE 802.3. I just checked. And I bet you have seen it used! How
about in DECnet
erent from the default HDLC keepalive message
that is exchanged between the two routers.
Marty Adkins Email: [EMAIL PROTECTED]
Mentor Technologies Phone: 240-568-6526
133 National Business Pkwy WWW: http://www.mentortech.com
Annapolis Junction, MD 20701
dates fast Ethernet. AFAIK, there are no Cisco
routers with 10Mb Ethernets that support full-duplex. Prior to the
introduction of fast Ethernet in the industry, there were a few NIC
vendors that added full-duplex capability to 10Mb cards. But it never
really caught on; plus it was superceded by 10/100
"Howard C. Berkowitz" wrote:
The thing is, Juniper's technology is based upon a central bus architecture
shared memory, not shared bus. There is a difference. I don't
have the URL handy, but Cisco has a paper out by the Stanford
University professor who architected the GSR. It
and server
code deals very gracefully with multiple responses (see the RFC).
Marty Adkins Email: [EMAIL PROTECTED]
Mentor Technologies Phone: 240-568-6526
133 National Business Pkwy WWW: http://www.mentortech.com
Annapolis Junction, MD 20701Cisco
oing back the packet with the
Cisco's magic number. But that was a while back.
So thanks, Howard, for responding!
- Marty
At 10:16 PM 2/19/2001 -0500, Marty Adkins wrote:
"Howard C. Berkowitz" wrote:
HDLC really doesn't offer any advantages over PPP, so it really
reflects someone
etary HDLC keepalive
will report a loop condition on the layer 1. And it will also, by
default, treat a looped interface as "line protocol up", which is
great for testing, using just the router.
Marty Adkins Email: [EMAIL PROTECTED]
Mentor Technologies
Priscilla Oppenheimer wrote:
Yup, SLARP is pretty cool. It's one good reason to use HDLC. It makes
configuration so easy. Also, the students will love saying SLARP. I'm
helping out with the academy at our local high school, as I've mentioned
before. Those students will love saying SLARP,
Also see RFC 2563.
Marty Adkins Email: [EMAIL PROTECTED]
Mentor Technologies Phone: 410-280-8840 x3006
275 West Street, Plaza 70WWW: http://www.mentortech.com
Annapolis, MD 21401 Cisco CCIE #1289
_
FAQ, list archives
g this one
by its present router ID. The same principle applies to the DR election
-- there is no coup option.
Now if you were to shut down the interface with the existing router ID...
Marty Adkins Email: [EMAIL PROTECTED]
Mentor Technologies Phone: 410-280-8840 x3006
in more detail (no CCO account required):
How to Choose the Best Router Switching Path for Your Network
http://www.cisco.com/warp/public/105/20.html
Performance Tuning Basics:
http://www.cisco.com/warp/public/63/tuning.html
Marty Adkins Email: [EMAIL PROTECTED]
Mentor
Here's an old one I saved in my archives but you could probably search
for it on nexial as well. The main situation it addresses is the use
of a router as a commserver, with a dumb terminal attached or dialed up.
Marty Adkins Email: [EMAIL PROTECTED]
Mentor Technologies
"Howard C. Berkowitz" wrote:
Amen. One of the realities of publishing is that even if it were
possible to have enough reviews to catch every error, the book would
be far more expensive and would come out too late to be useful. Even
if the book were "precise," how does the author deal with
You might experiment with traffic shaping. If you set it low enough
you will decrease the routers effective use of the available bandwidth.
Note this will NOT lower the delay. But it might approximate what
you're looking for.
Marty Adkins Email: [EMAIL PROTECTED]
Mentor
orite workstation. Read about
it here:
http://www.mentortech.com/product/network_mon/tnm31/ttcp.htm
http://www.mentortech.com/product/network_mon/tnm32/ttcp.htm
and download from:
http://www.mentortech.com/learn/tools/tools.shtml
Marty Adkins Email: [EMAIL PROTECTED]
Mentor Techno
://www.cisco.com/univercd/cc/td/doc/product/software/ios121/121cgcr/ibm_r/brprt1/br1dtb.htm#xtocid274036
Marty Adkins Email: [EMAIL PROTECTED]
Mentor Technologies Phone: 410-280-8840 x3006
275 West Street, Plaza 70WWW: http://www.mentortech.com
Annapolis, MD
, only 7000 routers have that $2 Dallas
watch chip included.
Marty Adkins Email: [EMAIL PROTECTED]
Mentor Technologies Phone: 410-280-8840 x3006
275 West Street, Plaza 70WWW: http://www.mentortech.com
Annapolis, MD 21401 Cisco CCIE #1289
""Ross
I agree with Chuck. However, the default coefficient (K) values cause
the effects of load to be ignored. So it worked and noone noticed the
minor error until you scrutinized the config.
Cendant? I just taught a CIT class in NYC to two folks from there...
Marty Adkins Email
06:47:58: ICMP: dst (10.0.0.1) host unreachable sent to 192.1.63.198
06:47:59: ICMP: dst (10.0.0.1) host unreachable sent to 192.1.63.198
06:48:00: ICMP: dst (10.0.0.1) host unreachable sent to 192.1.63.198
06:48:01: ICMP: dst (10.0.0.1) host unreachable sent to 192.1.63.198
Marty Adkins
phone... :-) Folks, if
you've never typed in one of these obscenely long addresses, you'll not
appreciate it.
Exit nostalgic mode,
Marty Adkins Email: [EMAIL PROTECTED]
Mentor Technologies Phone: 410-280-8840 x3006
275 West Street, Plaza 70WWW: http://www.mentortech.c
can police
differently, but for a starting point, shape the hub site output to
equal the remote site's port rate.
HTH,
Marty Adkins Email: [EMAIL PROTECTED]
Mentor Technologies Phone: 410-280-8840 x3006
275 West Street, Plaza 70WWW: http://www.mentortech.com
Annapolis,
have for months in Oregon and realized that folks may be missing the basic
arithmetic involved, though they understand the more complicated aspects.
That's weird!
Ahh, in a few months, we'll all be jealous of the great snow conditions.
Then we can calculate the length of a bit on the ca
67 matches
Mail list logo
