Hey folks, I had a question on Cisco's IDS offering.
Currently im getting ready to order:
3 IDS 4210's
2 IDS 4235's
VMS 2.1
and a 10 Agent bundle of Cisco's new Security Agent (OEM Okena).
I have a question on the management and rollout of the project.
Now if I buy VMS 2.1 which touts as being
Anyone deployed AES in a large scale VPN rollout? If so, had any issues,
caveat's? Wondering if I should stick with 3des, or step it up a notch
and go with AES. All routers are deployed with code that supports it:
12.2(13)t1. Just wondering if its ready for prime time yet.
--Rich
Message Poste
Can anyone recommend a stable native IOS with IPX support for a Cat 6000
running an MFSC 2 / Sup2?
--Rich
Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=62819&t=62819
--
FAQ, list archives, and subscription info: http://www.grou
Hi, im posting to inquire about the new feature introduced in rev
12.2(13)T1 called DMVPN.
Has anyone had any experience configuring it? Good, bad?
I have a scenario where im about to deploy 36 1760 bundles
(CISCO1760-VPN/K9) with some 2611XM's and a 7204 at the hub connected to
a DS3.
We are go
bounce
--Rich
Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=57561&t=57561
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTE
Hey guys, had a quick question on the PIX FW.
When implementing a DMZ what would be the tangible benefit of using the
traditional:
NAT outside to DMZ inside, create ACLs. As opposed to making a NAT 0
statement in the firewall?
Either way you are going to be using ACL's on the firewall to permit
Anyone know where I could get some step by step pre-configuration setups for
a Cisco 3000 VPN Client? Looked around on Cisco, dint seem to find anything...
Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=53202&t=53202
--
FAQ, lis
Anyone know where I could get some step by step pre-configuration setups for
a Cisco 3000 VPN Client? Looked around on Cisco, dint seem to find anything...
Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=53201&t=53201
--
FAQ, lis
hmm. last post got cutoff. Download the .tar file if you plan to use the
HTML interface and do a:
archive download-sw tftp://10.1.1.1/image.tar
check out the options after "download-sw". 3550 come with 16megs flash, so
you can do a /leave-sw and keep the old image for failover.
>>> "MADMAN" 09
need to do an: archive command..
Switch#archive download-sw
tftp://192.149.64.17/c3550-i5q3l2-mz.121-11.EA1.BIN!! >> "Juan Blanco"
09/06 1:01 PM >>>
Team,
I just got a 3550 switch(current smi image), I am trying to put the new emi
image but I am getting the following error...What I am doing wro
Looking for a good proxy/traffic management "appliance"...anyone work with
http://www.packeteer.com/, they look sweet
Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=52705&t=52705
--
FAQ, list archives, and subscription info:
Hey all, quick question on configuring a VPN connection from an internal
connection, to an external connection. Simply put how you do it? Iv got a
host on the inside that is using the Cisco VPN client software to create a
tunnel to another company. Iv got to the point where he authenticates and
cr
Has anyone experienced intermittent DNS timeout issues with a 6509 switch?
Locally the DNS server is functioning properly, but when across VLANS seems
to be timeout out intermittent. Any help would be appreciated.
Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=51638&t=51638
-
Hey all, maybe silly question, but how do I log who is port scanning me? Iv
got the logging on my PIX to informational, and still don't see anything
like port scanning logs...
Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=51503&t=51503
---
Hey guys/gals, a little off topic question. Would anyone recommend a
WindowsNT/2000 auditing software/tool? My goal is to have a listing of all
users, what groups they are in, and what they have access too. Anything else
would be icing on the cake. I know NT has some things built in the resource
k
understandable...is there anywhere out there a listing of prefix's for
different ISP's?
>>> "Robert D. Cluett" 07/29 10:45 AM >>>
Each company names their own equipment differently. The only constants will
be the domian name at the end of the DNS name.
5 ms 69.498 ms
69.597 ms
21 66.220.40.4 (66.220.40.4) 54.965 ms 55.057 ms 55.232 ms
22 groupstudy.com (66.220.63.9) 54.547 ms 55.467 ms 54.702 ms
and
Richard Tufaro
Anda Inc. - Weston FL
Network Warrior - Anda Inc.
Message Posted at:
http://www.groupstudy.com/form
i know its the event command but why not document in the IOS?
>>> "Richard Tufaro" 07/25 1:04 PM >>>
Anyone tried the
show ip eigrp e
command on a router running (of course) eigrp and 12.2(10a)? Seems like its
not in the command sequence.
Message Posted at:
ht
Anyone tried the
show ip eigrp e
command on a router running (of course) eigrp and 12.2(10a)? Seems like its
not in the command sequence.
Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=49678&t=49678
--
FAQ, list archives, and
Hey all, want to thank all the people for the advice on the routing email.
Tough exam it was. Passable, but you need to be on the ball. Now iv got the
Switching test up next and was wondering if anyone has used Quizware as an
alternative to Boson? Thanks.
Richard Tufaro - MCSE - CCNA - GSEC
Hey all, kinda off topic but wanted to throw it out there and see what info
I could gleen. My company is looking into a SSL Accelerator for use with a
Lotus web client. Anyone have any recommendations, horror stories, etc?
Thanks.
Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&
Why don't people get the notion that a "Firewall" is essentially a router.
PIX = Firewall = Router... Firewall = Router. It ROUTES
>>> "Jeffrey Reed" 07/16 8:19 PM >>>
I?m still pretty green with PIX in general and was talking today about
introducing a PIX into an existing network. The custo
y exceeds the capacity of the
port?
b) Have you checked the interface statictics for the router's connection to
the switch?
c) What about test transfers from PC to PC at the remote site OK/Not OK ?
> -Original Message-
> From: Richard Tufaro [mailto:[EMAIL PROTECTED]]
> Se
Hey all. Know that this is off topic but I wanted to throw it out there to
see if anyone has had any feedback. Has anyone experienced any issues with
HP ProCurve 4000M switches, running into a Cisco router (1720..etc.)? Any
caveats? Im having a problem with one of our remote facilities and
perform
either way. You can provide DLCI's or you can have them assigned to you.
They are locally specific. Some companies like having there own range of
DLCI's for admin and management purposes.
>>> "GEORGE" 06/26 2:35 PM >>>
I have a newbie question, regarding frame-relay. When I order a frame
relay c
them that way. Im only saying that we need to realize exactly what a FW
should do, and what it should not. We also need to realize exactly how a FW
works, not how the GUI works!
I agree it is a completely different interface, but if you are used to the
IOS interface, it will come quickly and you wil
Hey all, just recently got my hands on 4 new PIX firewalls and I am having
some issues with them that perhaps may be shortcoming of the PIX or me, but
I wanted to throw them out there and see if anyone has any comments:
1. Is there a way in the PIX to !Comment your access-list or conduit lines
to
Hey all, I was wondering when configuring rules in a Cisco PIX running
(6.2), when making your rules, is it better to do access-lists or conduits?
Which way is Cisco going on those?
Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=47146&t=47146
-
Hey guys/gals, I was looking over the archives in group study and saw
something called "ciscobot". But when I try to get to the web site it does
not come up. What happen to this project? Anyone know? I was thinking of
doing something akeen to a Bot that would answer cisco related questions and
did
Anyone seen or used this? http://pancho.lunarmedia.net/index.shtml
Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=45930&t=45930
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misco
What do you call a person that graduates at the bottom of his/her medical
school class?
- doctor.
>>> "Kaminski, Shawn G" 05/31 1:47 PM >>>
But then he'll only be a "paper" Ph. D. :-) Let's get a good four week
thread going on this everyone, whadda ya say?! :-)
I couldn't resist throwing a l
When configuring Cisco ACS server with a router across the WAN connected by
frame-relay, is there a way to tell the router to send the IP-originating
interface as the ethernet controller? Much like when setting up syslog
across a Frame WAN using: logging source-INTERFACE. Any ideas?
Message Po
Hey Rodney,
I received my GSEC in Spt of 01. When I was going threw the track it
was a great experience. The volume of data that you need to absorb is great,
and the way they structure it and keep it fresh was fantastic. To get a
better understanding of all around security and policy the GS
Hey guys/gals,
My company is going to be considering buying a Proxy server. Can I get
some feedback on the types of Proxy servers out there that this group is
using and how your experience's with them have been? Only real considerations:
1. Fast as hell (of course)
2. Integration with NT/2
Whats the Link?
>>> "Tim Potier" 04/11 8:41 PM >>>
Although I have not used the syslog function of this app, the 3com app is
pretty cool too. Unfortunately, it only runs on Windows, but combines a
FTP/TFTP server and client, as well as a syslog server. Not shabby..and free!
Message Posted
Has anyone checkout out this new Syslog program from Somix? Looks nice..
http://www.somix.com/products/logalot/
Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=41209&t=41209
--
FAQ, list archives, and subscription info: http://w
Anyone ever use this?
Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=40547&t=40547
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL
anyone know what the heck this is...my 7206 is having "difficulties" booting:
rommon 6 > boot disk0:c7200-js-mz.121-14.bin
loadprog: error - on load of image from file system with monlib
boot: cannot load "disk0:c7200-js-mz.121-14.bin"
Message Posted at:
http://www.groupstudy.com/form/read.
Anyone have a good recommendation for an IOS on a 7206VXR with a PA2-T3+?
Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=40188&t=40188
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Repor
>>> "Patrick Ramsey" 03/22 11:35 AM >>>
a 486 with 16mb of ram, linux, and mrtg...
-PAtrick
>>> "Rafay Aslam" 03/22/02 11:25AM >>>
HI Guys
I wanted to know how much traffic is passing through my T1 or how much
traffic is utilizing my T1 bandwidth. Tell me the most efficent and accurate
way of
ve an experience
to share? Thanks!
Richard Tufaro
Network Engineer
Anda Inc.
Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=39185&t=39185
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisc
Hey been browsing around, and wondered if anyone took the leap to version
3.3 of RME with CiscoWorks 2K. We are using CiscoWorks 2K with RME 2.2 and I
wanted to know if anyone could share an experience. Thanks.
Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=39056&t=39056
Hey guys..a little off topic but where is the BEST place to find out how to
install and configure Cisco CPU and Memory stats with MRTG. I get to somix
and the MIB's but what do i do with them?
Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=36765&t=36765
--
Hey Im looking for a good naming convention that clearly tells the location,
company and function of the device. Does anyone what to submit there naming
contentions? What is the "best" naming convention?
Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=36535&t=36535
---
Anyone have any experience with solar winds Orion, software for monitoring
the WAN/LAN? Also anyone have a suggestion for an enterprise LAN/WAN alert
monitoring software solution?
Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=33606&t=33606
---
Any recommendations on an External DSU, connecting to an T3 (DS3). Larscom,
Digital link, ADC Kentrox?
Richard Tufaro - MCSE - GSEC- CCNA
Network Engineer - Anda Inc.
[EMAIL PROTECTED]
MSN IM - [EMAIL PROTECTED]
Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=32841&
Any recommendations on an External DSU, connecting to an T3 (DS3). Larscom,
Digital link, ADC Kentrox? Ohh and the T3 will be frame.
Richard Tufaro - MCSE - GSEC- CCNA
Network Engineer - Anda Inc.
[EMAIL PROTECTED]
MSN IM - [EMAIL PROTECTED]
Message Posted at:
http://www.groupstudy.com/form
Whats the Diff between an Cisco 7204 and an 7204VXR. I can't seem to find it
anywhere. When you do the config maker on Cisco's site they make you choose
that one as the only option for the 7204. Are they the same thing. According
to the docs, there ate 3 prod #'s. Cisco7204-DC, Cisco7204-CH and
Ci
Anyone want to share stories about an 7204? What has been your experience
with them? We may be getting ready to hook up with a few, for our WAN
concentrator.
Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=32814&t=32814
--
FAQ, l
Can a 1720 do VoIP?
Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=32807&t=32807
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PR
Found one. This one was submitted, but I couldn't get to it. Before.
http://www.gazi.edu.tr/tacacs/index.php
>>> Richard Tufaro 01/21 11:25 AM >>>
Where would one, go about getting the freeware UNIX version of Tacacs+?
Cisco http://www.cisco.com/warp/public/480/tacplu
Where would one, go about getting the freeware UNIX version of Tacacs+?
Cisco http://www.cisco.com/warp/public/480/tacplus.shtml, points me to a
place where i can't connect to it. Anyone have any independent sites that
they know of, that are severing it up?
Message Posted at:
http://www.groups
What is the proper way to shutdown a router? not reload, but shutdown? Just
flick the switch? Seems to brutal to me.
Richard Tufaro - MCSE - GSEC- CCNA
Network Engineer - Anda Inc.
[EMAIL PROTECTED]
MSN IM - [EMAIL PROTECTED]
Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&a
Anyone know where on Cisco's site there is a place to "recommend" an image
for IOS upgrade?
Richard Tufaro - MCSE - GSEC- CCNA
Network Engineer - Anda Inc.
[EMAIL PROTECTED]
MSN IM - [EMAIL PROTECTED]
Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&
Hey at the ending of c5rsm-jsv-mz.120-3c.W5.8.bin, what does the w5.8 mean?
Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=32325&t=32325
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Rep
Found the answer..thanks
http://www.cisco.com/univercd/cc/td/doc/product/lan/cat5000/cnfg_nts/rsm/4058_01.htm#xtocid157290
Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=32317&t=32317
--
FAQ, list archives, and subscription in
)
Richard Tufaro - MCSE - GSEC- CCNA
Network Engineer - Anda Inc.
[EMAIL PROTECTED]
MSN IM - [EMAIL PROTECTED]
Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=32315&t=32315
--
FAQ, list archives, and subscription in
Hey guys...is there a quick rundown of the best hardware software, that
would be good for a DS3 connection?
Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=31914&t=31914
--
FAQ, list archives, and subscription info: http://www.gr
Hey guys/gals I know this is really OT but I thought I would throw it out
there to see if anyone has any ideas. Iv got a SCO V/386 System and
apparently the thing is old that no one remembers the password to itOR
is even with the company anymore. Is there a way that I can boot with a
floppy in
ing between root cause & specific
symptoms." In this case, as manifested by the overall vagueness of the
symptom itself.
"Richard Tufaro" @groupstudy.com on 12/28/2001 10:30:07
AM
Please respond to "Richard Tufaro"
Sent by: [EMAIL PROTECTED]
To: [EMAIL PROTEC
Yeah, iv had no problem with it before. With other routers, 1720's, etc.
>>> MADMAN 12/28 9:35 AM >>>
Your not plugging it in hot are you?!?!?!
Dave
Richard Tufaro wrote:
>
> Hey guys, iv got an 3640 running IOS 12.0(9). When I plugged in my WIC-DSU
I
>
Hey guys, iv got an 3640 running IOS 12.0(9). When I plugged in my WIC-DSU I
got this error in my Syslog Log.
%QUICC-1-UNEXPECTED_INTERRUPT: Quicc(1), Unexpected modem-signal interrupt
Cisco does not have a good explanation of it, and basically tells you to
contact support. I don't have support
Would anyone have a recommendation for a Windows Syslog server, that logs to
a ODBC data source. Anything except for Kiwi, tried it and its buggy as all
hell.
Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=28407&t=28407
--
FAQ,
Hey folks, we are having a problem with our 2924 switch, it periodically
times out clients. Is there a easy way to view usage and/or performance on
the switch? I know this is a easy question for you folks. the IOS is :
Version 11.2(8)SA4, RELEASE SOFTWARE (fc1)
Message Posted at:
http://www.gr
thanks for the info.
Richard Tufaro - MCSE - GSEC- CCNA
Network Engineer - Anda Inc.
[EMAIL PROTECTED]
>>> "Dennis H" 09/24 2:42 PM >>>
>From what I've seen each ip attempts 15 know vulnerabilities in IIS.
Normally they scan an address once so trying to
i said 25000 attempts, about 50 ips
>>> "Dennis H" 09/24 11:36 AM >>>
So you're saying you're going to try to stop over 25000 ips at the firewall
or router? Don't you think there might be a better approach? Maybe a
map-class to stop requests t
True but it would reduce the load on the servers and firewalls.
>>> "MJ" 09/24 9:23 AM >>>
Even we start blocking IP's still the packets will come till our router and
result in congestion in the network from ISP to our premises.
Mukul
""Richard
we have the same problem. I have over 25000 attempts to compromise servers.
Guess ill start blocking IP's at the firewall, or router.
Richard Tufaro - MCSE - GSEC- CCNA
Network Engineer - Anda Inc.
[EMAIL PROTECTED]
>>> "MJ" 09/24 8:43 AM >>>
I recently see
Anyone familiar with DLC connecting back to a AS/400. We seem to be having
some really weird intermittent issues with it. Nodes on the LAN seem to
intermittent loss connection then regain it. Network consists of 4 Cat 5500
with RSM doing VLAN routing. Nodes on the same segment as the 400 have
issu
na, but thanks. Result = BAD RSM! Replaced the RSM and everything was cool.
Still waiting for the Cisco diags, ill give you guys more info when i get
them back. Thanks Slow,
>>> Peter Slow 07/24 11:47 AM >>>
still need help?
-Original Message-----
From: Richard Tuf
Hey im having a problem with my RSM here are the messages anyone got a clue?
Success rate is 100 percent (5/5), round-trip min/avg/max = 1/2/4 ms
CR-RSM#
27w4d: %SYS-2-MALLOCFAIL: Memory allocation of 18184 bytes failed from
0x601E71F0, pool Processor, alignment 0
-Process= "Per-minute Jobs", ip
Can anyone steer me in the right dir IOS wise with this router. It seems to
have a old obscure bug with ISDN and CHAP connections, and I need to flash
it. It needs to have ISDN, IP and IPX. Here is the show ver. Thanks guys.
Cisco Internetwork Operating System Software
IOS (tm) 3000 Software (I
www.securityfocus.com, packetstorm gets stale, not as up-to-date as Security
Focus
Richard Tufaro, CCNA, MCSE, GSEC
Network Engineer
Anda Inc.
[EMAIL PROTECTED]
>>> "Bill Pearch" 06/01 3:40 PM >>>
Um, yes. Only more of them because there a
50=ESP 51=AH
Richard Tufaro, CCNA, MCSE, GSEC
Network Engineer
Anda Inc.
[EMAIL PROTECTED]
>>> "Tony Medeiros" 05/30 10:45 AM >>>
Either protocol 50 or 51. Which stands for "Authentication header" or
"Encapsulated Security Protocol" (AH or ESP)
Anyone know the best IOS for a 2524 Cisco router, that I need to do ISDN and
IP on?
Richard Tufaro, CCNA, MCSE, GSEC
Network Engineer
Anda Inc.
[EMAIL PROTECTED]
Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=5574&am
es that ARIN uses. I suggest you go to
the ARIN site and read up.
As for how long... that last time I filed for an ASN it took about one week
to get it. There are restrictions to getting an ASN too...
HTH
--
John Hardman CCNP MCSE
""Richard Tufaro"" wrote in message
[EMAIL
Hey guys/gals,
Got a quick question. How long would it take (assuming that we can get
a class C) to get a independent class C from ARIN and a AS for use with 2
ISPS and BGP?
Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=5429&t=5429
Can you ping domain controllers by name on said boxes?
Richard Tufaro, CCNA, MCSE, GSEC
Network Engineer
Anda Inc.
[EMAIL PROTECTED]
>>> "Robert Perez" 05/21 1:01 PM >>>
HELP!!
I have an issue where it appears that multiple users cannot login. I
receive the error
Scary, use VPN
>>> "Rizzo Damian" 05/21 10:15 AM >>>
Hey all, is it possible to translate public IP addresses (outside) to
private IP addresses (inside) on a PIX firewall. Basically the exact
opposite of what's usually performed on a firewall. We are going to have
users dial in to our internet r
ke sure to walk a mile in their shoes.
That way, when you do criticize them, you're a mile away and you have their
shoes.
- Original Message -
From: "Richard Tufaro"
To:
Sent: Friday, May 18, 2001 10:42 AM
Subject: Dual Internet Routes [7:5028]
> Hey all,
>
>
Hey all,
My company has been annoyed by recent provider outages and wants to
start to use dual internet routes through the same ISP BUT different pops.
We are currently getting 2 Cisco 3640 routers with 128 of ram in each for
possible future FULL BGP routes, although currently we would only
81 matches
Mail list logo
