to an etoken company. It
might be place to start.
Annlee
Thomas N wrote:
I am not sure if this question is off the topic or not but hopping
people
can give me some suggestion. I am working on DMVPN and it seems PKI can
not
be missed out of the design for security purpose. I am wondering
I got SOHO sites with PPPoE connection to the Internet. They use CHAP for
authentication. I would like to setup an ACL to filter out traffic on the
outside interface. I am wondering what TCP/UDP port CHAP protocol use?
Thanks!
Thomas
Message Posted at:
I am not sure if this question is off the topic or not but hopping people
can give me some suggestion. I am working on DMVPN and it seems PKI can not
be missed out of the design for security purpose. I am wondering what are
good PKI vendors out there? Is there any hardware appliance PKI vendor?
I got a lab setup simulating DMVPN with IPSec over GRE. I would like to
apply an access control list to the outside interface of the routers to
block everything, except for TCP/UPD ports that are needed for GRE, IPSec,
IKE and those related to DMVPN implementation. Does someone know what ports
Hi All,
I got couple 831 routers and deployed VPN tunnel on the network. They work
pretty well for a SOHO, except that they crash when I put the show ip route
*. This happens to all 831s I have. I upgraded to the latest IOS but
still have the same problem. Anyone know the fix for this?
ethernet cable would work. It used pin 1,2,4,5.
Scott
-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] Behalf Of
Thomas N
Sent: Thursday, June 12, 2003 2:39 PM
To: [EMAIL PROTECTED]
Subject: RJ48-RJ48 cable [7:70596]
Hi All,
I am wondering what
Hi All,
I am wondering what is the difference between the RJ48 and RJ45
connector/cable? I am setting a router with a integrated CSU/DSU
(WIC-1DSU-T1) with a T1 RJ48 connection hand off by the ISP. They however
do not provide the cable. Could I make a cable with RJ45 connectors for
this? What
Network Engineer
Cisco Systems
- Original Message -
From: Thomas N.
To: [EMAIL PROTECTED]
Sent: Tuesday, April 01, 2003 8:14 PM
Subject: VLAN loop problem [7:66656]
Hi All,
I got a problem in the production campus LAN here between VLANs. Please
help me out
on the access ports?
Larry Letterman
Network Engineer
Cisco Systems
- Original Message -
From: Thomas N.
To: [EMAIL PROTECTED]
Sent: Tuesday, April 01, 2003 8:14 PM
Subject: VLAN loop problem [7:66656]
Hi All,
I got a problem in the production campus LAN here
-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] Behalf Of
Thomas N.
Sent: Wednesday, April 02, 2003 12:18 PM
To: [EMAIL PROTECTED]
Subject: Re: VLAN loop problem [7:66656]
What does portfast bpdu-guard do? Does it prevent interfaces with
portfast
Hi All,
I got a problem in the production campus LAN here between VLANs. Please
help me out! Below is the scenario:
We have VLAN 10 (10.10.x.x) and VLAN 20 (10.20.x.x) subnets. Routing is
enable/allowed between the two subnets using MSFC of the 6500. Each subnet
has a DHCP server to assign
By default, all 3550 acts as a layer-2 switch. In order to provide layer-3
routing, you will have to put on the ip routing on the global
configuration mode.
Also, All interfaces on the boxes are set as layer-2 switch (no ip
address).
Thomas
wrote in message
[EMAIL PROTECTED]">news:[EMAIL
Hi All,
Cisco announced the new feature of Dynamic Multipoint VPN on the new Cisco
IOS 12.2(13)T version. I wonder if anyone has implemented it yet? How is
it working? Couple concerns I am having if designing our WAN using this new
feature:
- Does it support RSA nonces authentication?
- Could
Interesting! I learned OSPF on BSCN book but never deploy it. EIGRP has
been very easy to configured and very fast converged comparing to RIP/RIPv2.
It seems OSPF gets lots of favor as a stardard protocol. I am curious if
OSPF support load sharing on equal / unequal paths? Thanks All for the
Hi All,
I am deploying Site-to-site VPN using Cisco IOS routers. I am wondering
what software package offering the management, connectivity monitoring of
tunnels, and content reporting available? How much it costs? Thanks!
Thomas
Message Posted at:
Hi All,
I have been using EIGRP for our routing protocol for the last couple years,
which is prettly great. The controversal of selecting the routing protocol
came up again recently. I would like to have your opinion on EIGRP vs.
OSPF, which one is refered? What's the weakness and advantage?
Hi All,
I am trying to avoid fragmentation of packets across the IPSec+GRE tunnel
with transform-set using ah-sha-hmac AND esp-3des for header
authentication and payload encryption. What size of MTU or TCP
addjust-MSS should I use for maximum performance? I tried out couple
values and found TCP
Trimble
-Original Message-
From: Thomas N. [mailto:[EMAIL PROTECTED]]
Sent: Monday, January 27, 2003 11:15 PM
To: [EMAIL PROTECTED]
Subject: Re: Cisco 831 routers [7:61707]
Thanks Paul. Do you have any chance to test out for performance of
GRE+IPSec? Is it bet
ment). I
haven't tested them with all knobs on (GRE+IPsec, CBAC, IDS, QoS,
EIGRP/OSPF, etc.), but VPN+CBAC has worked beautifully.
Check with your VAR or Cisco account team for leadtimes.
Cheers.
Paul
-Original Message-
From: Thomas N. [mailto:[EMAIL PROTECTED]]
Sent: Thursday,
Hi All,
I wonder if anyone here could get a hold of the new Cisco 831 VPN router? I
am trying to get couple of these routers but being told they are onhold by
Cisco. I am just curious why? and when they are available again? Thanks!
Thomas.
Message Posted at:
The Long and Winding Road wrote in
message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
yes, here is a link on the Cisco web site:
http://www.cisco.com/cgi-bin//Software/Crypto/crypto_main.pl
this should get you started.
HTH
--
TANSTAAFL
there ain't no such thing as a free lunch
Hi All,
I plan to buy VPN routers, ship them to Japan then deploy VPN between Cisco
routers using 3DES encryption between Japan and U.S. for my company. Do I
need to register with the government or certain organization? How the
process work? Also, where can I find a list of countries allowed
Hi Larry,
I am using trunking on the LAN side of the routers to route between VLANs.
However, WAN interfaces of these routers are not configured as trunk. The
WAN link is just connected using a different subnet. And no, I don't use
bridging. So if VLAN is just local significant, should it not
Hi All,
I am wondering if the VLAN number is valid locally on a LAN only or it goes
across the WAN link? In my scenario, I have two LANs separated with 2 WAN
routers. On the LAN # 1, I assign a VLAN 100 with IP address (gateway) of
10.100.1.1. On LAN # 2, I assign another VLAN 100 but with an
national phone calls to literally the other
side
of the world. We saved $6000 a month by getting rid of the frame-relay
and
installing this VPN, and couldn't be happier :-)
GOOD LUCK!
-Original Message-
From: Thomas N. [mailto:[EMAIL PROTECTED]]
Sent: Friday, November 22, 2002
Hi All - I am wondering if anyone here has VoIP working well over IPSec
tunnels? Cisco said this could be done, but I am not sure how this approach
works in a practical internet enviroment? Thanks!
TN
Message Posted at:
http://www.groupstudy.com/form/read.php?f=7i=57880t=57880
EIGRP, OSPF and RIPv2 do routing update with multicast traffic. IPSec alone
does not support multicast. GRE does support multicasting traffic. You can
use GRE over IPSec tunnel to run routing protocol such as EIGRP, OSPF or
RIPv2.
Thomas
H wrote in message
[EMAIL PROTECTED]">news:[EMAIL
Thanks Dave!
MADMAN wrote in message
[EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
I think it's only supported on the 1700 series routers. Try a HW/SW
compatibility lookup.
Dave
Thomas N. wrote:
Hi All - I am wondering if the 1-Ethernet WIC card (WIC-1ENET) works
with
Hi All - I am wondering if the 1-Ethernet WIC card (WIC-1ENET) works with
the WAN slots on Cisco 2600 routers? Do I need certain version of IOS in
order to have it worked on Cisco 2600 WAN slot? Thanks All!
Message Posted at:
http://www.groupstudy.com/form/read.php?f=7i=57596t=57596
You can get couple of these GBIC adapters for less than $200 from
MJSystems.com.
Jeffrey Reed wrote in message
news:200211131729.RAA19686;groupstudy.com...
GigaStack Stacking GBIC and 50cm cable WS-X3500-XL $250
1000BASE-T GBIC WS-G5483= $395
1000BASE-SX WS-G5484= $500
t places to see what is getting where and you'll be
able to narrow down the problem.
Thomas N. wrote in message
[EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
Thank you All for the confirmation! I used extended ping with DF bit
set
as
Richarde mentioned and found out that the packet s
?
Again, thank you All for the help!
Thomas N.
Message Posted at:
http://www.groupstudy.com/form/read.php?f=7i=54634t=54634
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure
ded ping with the no
fragment option to determine which MTU size will work in your situation.
Cheers!
Richarde
Thomas N. wrote in message
[EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
Hi All,
I am setting up a site-to-site VPN between 2 LANs using Cisco IOS VPN
(Cisco
2600 routers). I could g
Thanks much to All!
Thomas N.
Mcfadden, Chuck wrote in message
[EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
It's possible. Make sure the router has a 100BT interface and set up
dot1q
between the router and the switch. use sub ints on the router to define
the
Vans and your good to
of
the 6509 as the MLS-RP? The command set on 6500 is not the same as the CAT
5000. Thanks!
Thomas N.
Message Posted at:
http://www.groupstudy.com/form/read.php?f=7i=25169t=25169
--
FAQ, list archives, and subscription info: http://www.groupstudy.com
so that if the supervisor engine on one distribution 6506 dies, all
ports/trunks on this 6506 can still be OK with redundant link? Putting dual
supervisor engines on each 6506 will be my last solution. Thanks All!
Thomas N.
Message Posted at:
http://www.groupstudy.com/form/read.php?f=7i
you can follow up with some reading on
CEF and what is is and is supposed to do.
Sometimes the folks over on NANOG don't have much good to say about CEF
but
that's another story.
Chuck
Thomas N. wrote in message
[EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
What does the no ip rout
Anyone have any problem turning on VLAN interfaces that are running on NAT
protocol? I couldn't turn VLAN on my 6509 that has ip nat inside
statement. Thanks!
Thomas N.
Message Posted at:
http://www.groupstudy.com/form/read.php?f=7i=24595t=24595
? OR do I not understand you question?
-Patrick
Thomas N. 10/29/01 08:45PM
Anyone have any problem turning on VLAN interfaces that are running on NAT
protocol? I couldn't turn VLAN on my 6509 that has ip nat inside
statement. Thanks!
Thomas N.
Message Posted at:
http://www.groups
What does the no ip route-cache cef does? Anyone knows? Thanks.
Message Posted at:
http://www.groupstudy.com/form/read.php?f=7i=24612t=24612
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report
4006 has a Supervisor Engine
II
(WS-X4013). It has an uplink TRUNK to a CAT 6509 that has MSFC doing
routing between VLANS and has MLS enabled.
My question is if I have MLS configured on MSFC of the 6509, the
enabling
of
MLS on CATOS of 4006 via 6509 MSFC as the MLS-RP working? Thanks!
On the last sencentence, I meant packets to/from host on different VLAN /
subnet...
Sorry,
Thomas N. wrote in message
[EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
Well, please correct me if I am wrong. As my understanding, MLS is the
main
feature of Layer 3 switch (5000, 60
...?
Cheers,
Thomas N.
Message Posted at:
http://www.groupstudy.com/form/read.php?f=7i=23471t=23471
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
-shape adaptive commands. The reason I would like to implement
Traffic Shaping with map-class because I would like to apply Frame-Relay
fragmentation into some PVC to reduce delay time... Any idea why Traffic
Shaping with map-class timeouts my PVCs? Thanks All!
Thomas N.
Message Posted at:
http
Just to clarify, I ONLY want to purge (refresh) the mls cache, but NOT
want to disable the mls. So should I use clear mls ip or else? Thanks
All.
Dominick Marino wrote in message
[EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
clear mls ip
Regards,
Dom
Thomas N. wrote in
Hi All,
I would like to purge the entries in the MLS cache of the 6509, then let the
switch relearn the MAC. What commend should I use? Thanks All!
Thomas N.
Message Posted at:
http://www.groupstudy.com/form/read.php?f=7i=21540t=21540
--
FAQ
Hi All,
Can anyone show me some good URL regarding the Fragmentation for Frame
Relay network? Thanks!
Thomas N.
Message Posted at:
http://www.groupstudy.com/form/read.php?f=7i=20757t=20757
--
FAQ, list archives, and subscription info: http
of 200Mbps
link? Thanks All!
Thomas N.
Message Posted at:
http://www.groupstudy.com/form/read.php?f=7i=20494t=20494
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations
I am also interesting in implementing VoIP. Based on what I read so far:
- Delay should be less then 150ms
- Implement Traffic Shaping for Voice (VoIP or VoFR)
Thomas N.
MJ wrote in message
[EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
Dear All,
I am planning to implement VoIP bet
terested to here if it works
cheers
Thomas N. wrote in message
[EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
Hm... my topology messed up with the line swapping. Here it goes again:
-
video conf. camera
|
Ethernet0
it is possible to
implement so that my video conference camera can call the ISP MCU with ISDN
lines using the gateway mdule VIC-2BRI-NT/TE? Thanks!!!
Thomas N.
Message Posted at:
http://www.groupstudy.com/form/read.php?f=7i=19905t=19905
--
FAQ, list
Sorry I missed my topology:
ISDN video conf. camera
|
Video conf. camera ---Ethernet0-Router-VIC-2BRI-NT/TEISDN
cloud---ISDN video conf. camera
|
ATT MCU
Can my IP conf. video camera talk with ISDN video conf. camera using this
VIC-2BRI-NT/TE module?
Thomas N. wrote
Thomas N. wrote in message
[EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
Sorry I missed my topology:
ISDN video conf. camera
|
Video conf. camera ---Ethernet0-Router-VIC-2BRI-NT/TEISDN
cloud---ISDN video conf. camera
|
ATT MCU
Can my IP conf. video camera talk with IS
Hi All,
My company is concerning about running voice/video over IP network. Our WAN
is running on fractial T1, so bandwidth limitation is a big problem to us.
What will be the mininum bandwidth requirement for voice and video traffic?
128k? Thanks!
Thomas N.
Message Posted at:
http
/VC
3520. Do you think I can substitute these modules with the IP/VC 3520 so
that I can convert my IP network to PSTN for voice and video (said,
conference room...)??? What models should I use for 2600 and 3600? Thanks
All!
Thomas N.
Message Posted at:
http://www.groupstudy.com/form/read.php
like to test my theory and analyzing... Please give me your thought!
Thanks!
Thomas N.
David Goddard wrote in message
[EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
Thomas,
This question has a lot of strange inaccuracies in it, but here we go...
1. The routing path chosen will al
of the info!
Thomas N.
Andras Bellak wrote in message
[EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
We are currently running a mix of polycom mp and fx units via h.323 on
our WAN. We have set all the units to not run at any speed greater than
256k. The video quality is great on all of them, ev
Hi All,
My Cisco 3620 router has both internal flash SIMM and the external PCMCIA
flash card. Each flash hold a different version of the IOS image. If I
want the router to boot from the IOS image from the PCMCIA card, what boot
system command should I use? Thanks!
Thomas N.
Message
Hi All,
I ran into a scenario below and I am not sure what path router A will choose
to reach the destination network, 10.50.0.0 / 255.255.0.0, on router B.
10.1.1.1 / 255.255.0.0
|
--S0- Router A-S1-
|
You cannot have the same network assigned to different
interfaces/sub-interfaces
Sean Knox wrote in message
[EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
On a Cisco router/switch running IOS with VLAN capabilities (i.e. 8500)
can
a physical interface have an IP address if a subinterface off
Thanks All! I changed the cable and it worked!
Jeff Gercken wrote in message
[EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
I carry a 2 rollover cable and a coupler as well as the std 3' rollover.
This way if you can always create the cable that works.
PS I hate that little button. I love
the configuration which I assumed they're saved in
NVRAM of the MSFC or Sup. Engine?
Again, Thanks much to All!!!
Thomas N.
Message Posted at:
http://www.groupstudy.com/form/read.php?f=7i=18138t=18138
--
FAQ, list archives, and subscription info: http
I heard that if one has an Adtran 800, he/she can use it as the ISDN
switch...
Jaspreet Bhatia wrote in message
[EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
Guys,
I am trying to setup an ISDN lab and do not have access to
an ISDN switch . What I do have is two BRI lines each
I ran into this problem before. The way you configure would work only if
you encapsulate using ISL. If you use the dot1q, you have to configure the
physical interface FE0/0 with a management VLAN (VLAN 1 by default).
Sub-interfaces will be assigned a different VLAN and encapsulated with
dot1q.
Hi All,
I attempted to access to the CAT 6509 with the CONSOLE port today. This
6509 is in production. It appeared that I didn't get any output on my
HyperTerminal. My HyperTerminal setting is: 9600 bits per second, Data
bits = 8, Parity = none, Stope bit = 2 (as indicated on Cisco.com),
if there is
any other value beside 0x2102 that I can use for the register to let the
router boot from the flash with the configuration? The router was also
hardware upgrade with:
- Boot ROM = 11.0(10c)
- 16MB flash
- 16MB memory
The new IOS image is IP/H.323 version 12.2(1)
Thomas N.
Message Posted
Thanks All for the info!!!
Thomas N.
EA Louie wrote in message
[EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
yes. they are different certification programs
- Original Message -
From: Thomas N.
To:
Sent: Sunday, August 19, 2001 8:31 PM
Subject: Re: Difficulty - CCIE
Sorry I cannot answer. However I do have additional question. Can one take
CCIE written exam, then CCIE lab exam and become CCIE without going through
CCNA and CCNP???
James Harris wrote in message
[EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
Would anyone who has taken the CCNP and the
That boot ROM is too old. It cannot recognize the 8MB flash module. You
need at least boot ROM version 5.2 in order to read the 8MB flash module.
The latest boot ROM is 11.0(10c) I believe. You can get these boot ROM from
Cisco.
Thomas N.
Rik Thomas wrote in message
[EMAIL PROTECTED]"
Hi All,
I wonder if RIPv2 support load balancing? Does it choose path based on the
hop count only? Thanks All!!!
Thomas
Message Posted at:
http://www.groupstudy.com/form/read.php?f=7i=16105t=16105
--
FAQ, list archives, and subscription
Hi All,
On my Cisco 3620 router, I have two different IOS images. One is on the
internal SIMM flash. The other is on the PCMCIA flash card. I would like
the router to boot the image from the PCMCIA card instead of the internal
flash. What command should I use? Thanks and sorry for the
There is some article on Cisco web site at show how to connect routers
back-to-back using the AUX ports. So I think you can apply this to your two
routers, unless you intent to use the AUX ports for something else.
Thomas
Charles Ryan wrote in message
[EMAIL PROTECTED]">news:[EMAIL
r choice is to add the command boot system and
tell
it which IOS image to use...
HTH
Nigel .
- Original Message -
From: Thomas N.
To:
Sent: Tuesday, August 14, 2001 10:36 PM
Subject: Boot IOS from PCMCIA card [7:16106]
Hi All,
On my Cisco 3620 router, I have two different IO
-
Again, Thanks All!
Thomas N.
Nigel Taylor wrote in message
[EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
Thomas,
Yes... Yes.. I'll expand on my first Yes in
saying that the load balancing would be dependent on the model router and
w
Hi All,
I have a problem here with HSRP on 6509. The Cisco 6509 has 2 MSFC cards.
As I understand correctly, only the first card (active one) does the
routing. The second card (standby one) should do NOTHING, unless the first
card goes down (please correct me if I am wrong). In my case,
Yes, I do run EIGRP. Will EIGRP cause the problem?
Jim Yam wrote in message
[EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
What routing protocol are you running? EIGRP will do load sharing between
two interfaces.
JY
Thomas N. wrote in message
[EMAIL PROTECTED]">news:
MSFC stay standby still (no routing, no load balancing, no natting
and nothing else), listen and only kick off if the first MFSC died?
Thanks All for the help and suggestion!!!
Thomas
Thomas N. wrote in message
[EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
Hi All,
I have a prob
77 matches
Mail list logo
