You have a device that is reachable only via telnet or console that you've
preconfigured with an IP address, subnet mask, and default gateway and
subsequently shipped out to a remote location to be installed. Once the
device was in place you realized that you've configured it with the wrong
[This isn't the usual type of follies question where you have to figure
something out. In this case, you either know the answer or you don't. If you
don't, you can probably figure out how to look it up and it would be good
information to have in case you see this in your own network.]
Your
At 7:00 PM + 8/1/03, John Neiberger wrote:
[This isn't the usual type of follies question where you have to figure
something out. In this case, you either know the answer or you don't. If you
don't, you can probably figure out how to look it up and it would be good
information to have in case
Three words
MY-CROW-SOFF?
John Neiberger wrote in message
news:[EMAIL PROTECTED]
[This isn't the usual type of follies question where you have to figure
something out. In this case, you either know the answer or you don't. If
you
don't, you can probably figure out how to look it up and
Assign an address (as secondary) from the incorrect range to the router
interface to which this device is connected, and from that router, connect
(telnet or ssh) to that device, fix the ip, (get disconnected in process, of
course), and remove the incorret secondary from the router...voila and
Bill Gates leaving his mark on your network??
Jason
[This isn't the usual type of follies question where you have to figure
something out. In this case, you either know the answer or you don't. If
you
don't, you can probably figure out how to look it up and it would be good
information to
Depending upon the topology you may be able to use Local Area Mobility, and
this is a stretch unless you have the right topology Mobile IP?? Just a
guess! Need to take the edge off before my first lab attempt on Monday!!
Thanks for keeping us thinking!
Jason
John Neiberger wrote in message
What configuration steps would be necessary to configure Local Area
Mobility? How do you make sure local and remote devices can reach this
device?
Jason Viera 8/1/03 2:26:36 PM
Depending upon the topology you may be able to use Local Area Mobility, and
this is a stretch unless you have the
Possibly, but you have to give more detail to win the prize. :-)
[Notice: there is no prize associated with this question. ]
Jason Viera 8/1/03 2:22:32 PM
Bill Gates leaving his mark on your network??
Jason
[This isn't the usual type of follies question where you have to figure
This would work but it might be temporarily disruptive to the network that
is using that subnet address legitimately. Is there another way to do it
that is not disruptive?
Charles Cthulu Riley 8/1/03 2:56:41 PM
Assign an address (as secondary) from the incorrect range to the router
interface
Daniel Cotts 8/1/03 3:16:24 PM
pad
pad
pad
ftp://ftp.rfc-editor.org/in-notes/rfc3330.txt
-Original Message-
From: John Neiberger [mailto:[EMAIL PROTECTED]
Sent: Friday, August 01, 2003 2:00 PM
To: [EMAIL PROTECTED]
Subject: Friday Follies #2 [7:73371]
[This isn't the usual type
pad
pad
pad
ftp://ftp.rfc-editor.org/in-notes/rfc3330.txt
-Original Message-
From: John Neiberger [mailto:[EMAIL PROTECTED]
Sent: Friday, August 01, 2003 2:00 PM
To: [EMAIL PROTECTED]
Subject: Friday Follies #2 [7:73371]
[This isn't the usual type of follies question where you
APIPA
leaving for someone else to take further.
- Original Message -
From: John Neiberger
To:
Sent: Friday, August 01, 2003 3:00 PM
Subject: Friday Follies #2 [7:73371]
[This isn't the usual type of follies question where you have to figure
something out. In this case
Actually, Apple used that block as well for local networking.
quote:
If the host has a Microsoft Windows OS (9x or 2000/XP) or an
Apple OS, it will fall back to what is called the auto-configure
address, which is an address from the 169.254/16 address space
(this was in accordance with the
At 9:04 PM + 8/1/03, annlee wrote:
Actually, Apple used that block as well for local networking.
quote:
If the host has a Microsoft Windows OS (9x or 2000/XP) or an
Apple OS, it will fall back to what is called the auto-configure
address, which is an address from the 169.254/16 address space
Then how about this on the gateway (ie. router to which the misconfigured
one is connected):
ip route 255.255.255.255
interface loopback
ip address 255.255.255.255
This still screws up the packets that go through the gateway router and were
targeted to one of the two addresses in question,
Zsombor Papp wrote:
Then how about this on the gateway (ie. router to which the
misconfigured one is connected):
One more time for those who read it via email:
ip route (address of misconfigured router) 255.255.255.255 (interface)
interface loopback(n)
ip address (gateway used on misc.
: Jason Viera
To:
Sent: Friday, August 01, 2003 1:53 PM
Subject: Re: Friday Follies #1 [7:73370]
Depending upon the topology you may be able to use Local Area
Mobility,
and
this is a stretch unless you have the right topology Mobile
IP?? Just a
guess! Need to take the edge off before my
: Friday Follies #1 [7:73370]
Depending upon the topology you may be able to use Local Area Mobility,
and
this is a stretch unless you have the right topology Mobile IP?? Just a
guess! Need to take the edge off before my first lab attempt on Monday!!
Thanks for keeping us thinking!
Jason
John
that there is a /32 host
on that LAN that doesn't belong there. Redistribution into the routing
protocol allows the rest of the network to become aware of this host route.
John
- Original Message -
From: Zsombor Papp
To:
Sent: Friday, August 01, 2003 8:17 PM
Subject: Re: Friday Follies #1 [7:73370
John Neiberger wrote:
'ip mobile arp' is what allows that device to communicate with
the local
router interface. Without that command you'll never end up with
an entry for
the errant device in the ARP table of the router.
I will if I have a static route pointing to a broadcast interface.
in case anyone is interested, my answer below
--
The Long and Winding Road wrote in
message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
Saw this one today. It caused me to scratch my head in puzzlement for a
moment, until I remembered something.
Today's puzzle - why was I scratching my
d Monroe [mailto:[EMAIL PROTECTED]]
Sent: Wednesday, October 09, 2002 4:59 PM
To: [EMAIL PROTECTED]
Subject: RE: Friday Follies On Wednesday - what's the problem?
[7:55218]
Someone changed the MTU size and now Outlook won't work!
-Original Message-
From: The Long and Winding Road
[mailt
Saw this one today. It caused me to scratch my head in puzzlement for a
moment, until I remembered something.
Today's puzzle - why was I scratching my head in puzzlement, and what was it
I remembered?
High levels - you don't get to play. Let the newbies try their hands.
During the maintenance
I guess you suddenly remembered that this company must be the one which has
filed bankruptcy and has let all their BGP gurus to greener pastures.
The Long and Winding Road wrote in
message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
Saw this one today. It caused me to scratch my head in
]
Subject:Friday Follies On Wednesday - what's the
problem? [7:55218]
Saw this one today. It caused me to scratch my head in
puzzlement for a
moment, until I remembered something.
Today's puzzle - why was I scratching my head in puzzlement
PM
To: [EMAIL PROTECTED]
Subject:Friday Follies On Wednesday - what's the
problem? [7:55218]
Saw this one today. It caused me to scratch my head in
puzzlement for a
moment, until I remembered something
To: [EMAIL PROTECTED]
Subject:Friday Follies On Wednesday - what's the
problem? [7:55218]
Saw this one today. It caused me to scratch my head in
puzzlement for a
moment, until I remembered something.
Today's puzzle
Original Message-
From: Harold Monroe [mailto:[EMAIL PROTECTED]]
Sent: Wednesday, October 09, 2002 4:59 PM
To: [EMAIL PROTECTED]
Subject: RE: Friday Follies On Wednesday - what's the problem? [7:55218]
Someone changed the MTU size and now Outlook won't work!
-Original Message---
I got to thinking about this after posting a question to a company internal
mailing list. Based on some of the responses I received from other
engineers, I wondered at what point one has enough information to answer a
question. At what point asking for further clarification is essentially a
sign
Try this (not I used standard access list that not only did subnet, but also
port.
rate-limit output access-group 101 8000 2000 2000 conform-action transmit
excee
d-action drop
!
acces-list 101 permit tcp 10.10.10.0 0.0.0.255 any eq 80
--
RFC 1149 Compliant.
Chuck wrote in message
[EMAIL
Maybe I shot off the answer too soon. If you are just looking for what
questions to ask, then here's what I'd ask:
1. What equipment, IOS/CatOS rev?
2. What speeds are the links? (You already have this)
3. What is the purpose of this (get the big picture)
4. Who are you limiting? What
1558604987
HTH
Nigel
- Original Message -
From: Chuck
To:
Sent: Friday, May 24, 2002 10:59 AM
Subject: Friday Follies of sorts - answering questions [7:44952]
I got to thinking about this after posting a question to a company
internal
mailing list. Based on some of the responses I
:(bcc: Kevin Cullimore)
Subject: RE: RE: That Friday Follies Question... [7:29473]
Excellent! That perfectly explains the behavior we were experiencing.
I was only able to make this work when the tunnel was in the same major
network. When I made the tunnel a part of a different major net
: That Friday Follies Question... [7:29473]
I thought I had discovered a way to do this but it didn't work,
either. It was a variation of the tunnel technique except the
tunnel is in a completely different classful network. For
example...
A(igrp)-B
The link is 172.16.1.0/28. I create
I was able to get tunnels with secondary addresses to work. Config looked
like this :
lo0
172.16.80.1/27 --R1--162.16.1.x/27 --R3--172.16.20.x/28 --R4--172.16.50.x/28
--R5--E0 172.16.100.5/28
lo1 172.16.80.33/27--R1--
IGRP/OSPF Redist was at R3. 2 tunnels between R3 and R4 for the 2 .80
Whoops.. R1 to R3 is 172.16.1.x not 162.16.1.x
Gregg Malcolm wrote in message
[EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
I was able to get tunnels with secondary addresses to work. Config looked
like this :
lo0
172.16.80.1/27 --R1--162.16.1.x/27 --R3--172.16.20.x/28 --R4--172.16.50.x/28
Why did you need two tunnels? It seems that you need one tunnel for
each mask length but you mention two tunnels for two /28 prefixes. How
did that work out?
thanks,
John
Gregg Malcolm 12/19/01 11:26:29 AM
I was able to get tunnels with secondary addresses to work. Config
looked
like this
John, First off I noticed many errors in my lame schematic. I was able to
ping both 80.1 and 80.33. These are the 2 loops on R1 (OSPF router). There
weren't 2 tunnels, there were two secondary address instead (sorry, but I
was trying to remember from Sat). Need a secondary for each /28
Warning, this is a bit longish...I'd be interested in feedback to see if
anyone agrees/disagrees, finds this at all helpful, etc. Part of this
exercise is to make sure I've got this straight in my head.
Here's a CCO link that may help:
http://www.cisco.com/warp/public/103/5.html
The scenario
Excellent! That perfectly explains the behavior we were experiencing.
I was only able to make this work when the tunnel was in the same major
network. When I made the tunnel a part of a different major net, things
got a little weird.
You're correct, in the scenario I've been playing with IGRP
so many way for them to get
you it's
not funny..!
HTH
Nigel.
- Original Message -
From: John Neiberger
To:
Sent: Wednesday, December 19, 2001 1:17 AM
Subject: More Friday Follies [7:29607]
Okay, I tried something else and it's getting even stranger yet.
Previously, at Chuck's
... :- but then
again the
CCIE
lab isn't a production network is it. there's so many way
for them to
get
you it's
not funny..!
HTH
Nigel.
- Original Message -
From: John Neiberger
To:
Sent: Wednesday, December 19, 2001 1:17 AM
Subject: More Friday Follies [7:29607
John,
Thanks for wrecking my weekend too..
I tried to get this to work using the tunnel method and the secondary
addressing method but with no success.
My lab looks look like this
r4--(igrp/27)--r2--(igrp/27)--r1--(igrp /27)--r8--(ospf /28)
interfaces
r4/r2 network 172.168.10.80/27
r2/r1
The R1/R8 Tunnel needs to be a /28 since you're trying to get /28 routes
into the IGRP domain. However, since you're going from a longer-match
mask to a shorter-mask, you don't need to use this method. It will work
but you could also use a couple of the other methods posted.
First, you could
AFAIK, there is only one way to summarize with rip and igrp and that is by
creating a static and redistributing the static. Since that is not possible
and since we cannot use the default network command we must have an ospf
interface that shares the /27 igrp network to get routes to pass. That
In my testing I was never able to get secondary interfaces to work
properly. IGRP would advertise over one or the other, but not both, and
I wasn't able to figure out how it picked which one to use. I've
configured slightly different scenarios from scratch two or three times
and I could never
Hmmm... interesting. I'll give it a go in my lab and let you know what
happens. I'm looking forwards to Chucks answer as well.
The k1d
John Neiberger wrote in message
[EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
In my testing I was never able to get secondary interfaces to work
properly.
-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of
John Neiberger
Sent: Tuesday, December 18, 2001 12:06 PM
To: [EMAIL PROTECTED]
Subject: Re: That Friday Follies Question... [7:29473]
In my testing I was never able to get secondary interfaces to work
properly. IGRP would advertise
, December 18, 2001 1:02 PM
To: [EMAIL PROTECTED]
Subject: Re: That Friday Follies Question... [7:29473]
Hmmm... interesting. I'll give it a go in my lab and let you know what
happens. I'm looking forwards to Chucks answer as well.
The k1d
John Neiberger wrote in message
[EMAIL PROTECTED]"
Okay, I tried something else and it's getting even stranger yet.
Previously, at Chuck's suggestion I added no ip split-horizon.
However, I only added it to the redistributing router. That
had interesting yet not entirely successful results.
Then, I added no ip split-horizon to the IGRP-only
To: [EMAIL PROTECTED]
Subject: Re: That Friday Follies Question... [7:29473]
In my testing I was never able to get secondary interfaces to
work
properly. IGRP would advertise over one or the other, but
not both, and
I wasn't able to figure out how it picked which one to use.
I've
configured
.
Chuck
-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On
Behalf Of
c1sc0k1d
Sent: Tuesday, December 18, 2001 1:02 PM
To: [EMAIL PROTECTED]
Subject: Re: That Friday Follies Question... [7:29473]
Hmmm... interesting. I'll give it a go in my lab and let
Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of
John Neiberger
Sent: Tuesday, December 18, 2001 11:12 PM
To: [EMAIL PROTECTED]
Subject: Re: RE: That Friday Follies Question... [7:29473]
I thought I had discovered a way to do this but it didn't work,
either
It occurs to me that there is another answer to this problem.
So as a Friday Follies question: what is the other answer I came up with?
Remember, the IGRP domain is /28 the OSPF domain contains routes /27 and
shorter. You must assure reachability to all interfaces in the OSPF domain.
You
in IGRP, /27 in OSPF
Thanks, Gregg
Chuck Larrieu wrote in message
[EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
It occurs to me that there is another answer to this problem.
So as a Friday Follies question: what is the other answer I came up with?
Remember, the IGRP domain is /28 the OSP
ROTECTED]...
It occurs to me that there is another answer to this problem.
So as a Friday Follies question: what is the other answer I came up
with?
Remember, the IGRP domain is /28 the OSPF domain contains routes /27
and
shorter. You must assure reachability to all interfaces in the OSPF
doma
rs to me that there is another answer to this
problem.
So as a Friday Follies question: what is the other answer I
came up
with?
Remember, the IGRP domain is /28 the OSPF domain contains
routes /27
and
shorter. You must assure reachability to all interfaces in
the OSPF
domai
Thought we were down for the count tonite. Good to see a few new messages.
John, by stability w/ secondaries did you mean re-loads? My config is
working fine w/ secondaries on the tunnels even after I reload. I'll admit
that the routing table is a little strange tho. IGRP only router has IGRP
When using secondary IP addresses, IGRP seems to ignore one of
the addresses but I can't tell how it chooses which one to
ignore. A few nights ago I configured this and it ignored the
secondary. Tonight when I did it it ignored the primary and
used the secondary for updates.
Odd, and the
..
-Nigel
- Original Message -
From: Chuck Larrieu
To:
Sent: Thursday, November 08, 2001 12:53 AM
Subject: Friday Follies Returns on Thursday - Access-list construction
[7:25642]
Hey you bad boys and girls!
In preparing my pod for BGP access across the net, I have run into
something
I
Subject: Re: Friday Follies Returns on Thursday - Access-list [7:25701]
interface Ethernet0
...
ip access-group 100 in
!
access-list 100 permit tcp host Router_1 eq bgp host Router_2 gt 1023
access-list 100 permit tcp host Router_1 gt 1023 host Router_2 eq bgp
Similar on Router_1
Router_2 eq bgp
access-list 101 permit tcp host Router_1 eq bgp host Router_2 gt 1023
access-list 101 permit tcp host Router_1 gt 1023 host Router_2 eq bgp
- Original Message -
From: Sasa Milic
To:
Sent: Thursday, November 08, 2001 10:32 AM
Subject: Re: Friday Follies Returns
Sounds to me like he may have config'd NAT to forward all traffic to his web
server.
Mark
-Original Message-
From: Brian [SMTP:[EMAIL PROTECTED]]
Sent: Monday, August 13, 2001 1:46 AM
To: [EMAIL PROTECTED]
Subject:Re: Friday Follies - IP NAT behaviour [7:15822]
why he
) and
responds accordingly.
hope you all enjoyed the puzzle.
Chuck
-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of
Chuck Larrieu
Sent: Sunday, August 12, 2001 9:06 PM
To: [EMAIL PROTECTED]
Subject: Friday Follies - IP NAT behaviour [7:15822]
so I'm late. so sue me
so I'm late. so sue me ;-
last Friday while I was in the office I got to chatting with one of the
other SE's. He had a problem with his home setup and wanted some help. It
was an interesting enough problem that I thought some of you CCNA's, some of
your CCNP candidates, might enjoy taking a
why he gets to the server when telnetting to the router, perhaps the router
is forwarding more ports than just 80, perhaps 23, perhaps more..
Bri
- Original Message -
From: Chuck Larrieu
To:
Sent: Sunday, August 12, 2001 9:06 PM
Subject: Friday Follies - IP NAT behaviour [7:15822
: Chuck Larrieu
To:
Sent: Sunday, August 12, 2001 9:06 PM
Subject: Friday Follies - IP NAT behaviour [7:15822]
so I'm late. so sue me ;-
last Friday while I was in the office I got to chatting with one of the
other SE's. He had a problem with his home setup and wanted some help
Questions keep coming: what to believe and why?
Brought to mind something I found on CCO once. The topic was the maximum
network diameter of an EIGRP network. The following is a quote from CCO:
IP Enhanced IGRP provides the following features:
(snip)
Increased network width. With IP RIP, the
=)
Jim Dixon wrote:
Please follow the below instructions EXACTLY
I have discovered a new application for voice menuing systems.
ENJOY! and remember..INSTALL THAT OPTION 7 on every system you implement. OK? :)
Call this number. It is funny. It is nothing bad.
Call National Discount
Please follow the below instructions EXACTLY
I have discovered a new application for voice menuing systems.
ENJOY! and remember..INSTALL THAT OPTION 7 on every system you implement. OK? :)
Call this number. It is funny. It is nothing bad.
Call National Discount Brokers
1. dial
Huh Hmmm!!!
From: Jim Dixon [EMAIL PROTECTED]
Reply-To: Jim Dixon [EMAIL PROTECTED]
To: [EMAIL PROTECTED]
Subject: Friday Follies
Date: Fri, 10 Nov 2000 11:02:10 -0600
Please follow the below instructions EXACTLY
I have discovered a new application for voice menuing systems.
ENJOY
At least it didn't say AFLAC.
"Jim Dixon" [EMAIL PROTECTED] wrote in message
[EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
Please follow the below instructions EXACTLY
I have discovered a new application for voice menuing systems.
ENJOY! and remember..INSTALL THAT OPTION 7 on every system you
Check this one:
http://www.1112.net/lastpage.html
Chuck
--
I am Locutus, a CCIE Lab Proctor. Xx_Brain_dumps_xX are futile. Your life as
it has been is over ( if you hope to pass ) From this time forward, you will
study US!
( apologies to the folks at Star Trek TNG )
To: Chuck Larrieu
Subject:Re: Friday Follies Extended Through Saturday
I 've taken up your challenge , but after a number of unsuccessful attempts
, I traced it (output below)
Could it be that many more are also attempting to retrieve the Gauntlet ?
Rgrds
E:\tracert 64.220.150.9
Tracing route
, August 04, 2000 9:59 PM
To: Cisco Mail List
Subject:Friday Follies Extended Through Saturday
Again I extend the invitation.
Telnet to 64.220.150.9 password "yahoudi" ( no quotes )
See if you can answer the following questions:
1) what version of IOS is running?
2)
Here's most of your answers
Scott
1) what version of IOS is running?
- 12.1(2)
2) What is the name of the IOS image?
- C2500-jos56i-1.121-2.bin
3) What routing protocols are running?
- IP, IPX - Routed Protocols
- Frame-Relay - Routing Protocols
Should have looked deeper on this one but
-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of
Chuck Larrieu
Sent: 05 August 2000 11:21
To: Cisco Mail List; Kane
Subject: RE: Friday Follies Extended Through Saturday
Interesting. I have now removed the access-list that was applied inbound
All right, guys and gals! This marks the return ( in a small way ) of
Chuck's Friday Follies
I have a bit of a puzzle for you all. If you all have some fun, and think
this might be worth pursuing, I can try to continue the Follies on some
regular basis.
A bit about courtesy and fair play
Again I extend the invitation.
Telnet to 64.220.150.9 password "yahoudi" ( no quotes )
See if you can answer the following questions:
1) what version of IOS is running?
2) What is the name of the IOS image?
3) What routing protocols are running?
4) Are there any other
-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] On Behalf Of
Muthuraja Ayyanar
Sent: Friday, August 04, 2000 7:08 AM
To: 'Chuck Larrieu'; [EMAIL PROTECTED]
Subject:RE: Friday Follies Returns!!! - A small Puzzle
My 2 cents
You will telnet
Hey, I replied privately to a message written by one woman, and copied the
woman who made the original post. Now I'm back in the middle of things
again. Goes to show that no good word, not to mention deed, ever goes
unpunished!
Welcome back, Friday follies!!! :-
Hey Dale, hope you don't mind me
82 matches
Mail list logo