Hi,
In a recent meeting with our Cisco SE, he told me something that doesn't
seem right to me. I'm having trouble finding documentation to support
either side though.
Given the following diagram (apologies to console people) -
http://tinyurl.com/cisco-mpls
It's my understanding that traffic
On Tue, December 2, 2008 10:48 am, TiM wrote:
Can anyone point me to Documentation that would answer this question?
I'm sure that ingress traffic is assigned some internal you're in VRF x
label, but our SE was clear in stating it would be an MPLS header added
and removed, the same
Well, when you say it, it sounds very simple, the problem is I don't really
know the subneting stuff for IPv6, for example.
We don't use any of the IGP you've mentioned in our IPv4 setup, we only have
some iBGP peers between our routers.
Do we HAVE to use OSPF, ISIS or EIGRP or we can still
On Tue, 2008-12-02 at 12:17 +0800, Nimal David Sirimanne wrote:
The IOS i'm using is Cisco IOS Software, C3550 Software
(C3550-IPSERVICESK9-M), Version 12.2(25)SEE1, RELEASE SOFTWARE (fc1)
However, when i go to config mode, i get this:
Switch(config)#ip sla ?
% Unrecognized command
Is
On Tuesday 02 December 2008 19:37:48 Gert Doering wrote:
- of course there's lots of work in this.
And not forgetting that you have to tell IOS to route v6
traffic:
ipv6 unicast-routing
And also that you'd like it do it via CEF:
ipv6 cef
It would be nice if Cisco had these
Hi,
On Tue, Dec 02, 2008 at 11:45:20AM +, [EMAIL PROTECTED] wrote:
- and update all your ACLs etc to account for any SNMP/telnet/ssh/etc
that might be getting to your router via IPv6
Thanks for pointing that out. Indeed, I've overlooked it - apply all
security measures that you have for
Hi,
On Tue, Dec 02, 2008 at 02:17:59PM +0200, Ziv Leyes wrote:
Well, when you say it, it sounds very simple, the problem is I
don't really know the subneting stuff for IPv6, for example.
Well, it's like CIDR in IPv4 - you put aside a number of bits for the
network part, and the rest is host.
On (2008-12-01 14:50 -0500), Julio Arruda wrote:
And I understand Nexus is the EARL8, correct ?
And this would also mean the 3B, 3C and the XLs are all EARL7, but with
distinct sizes for the TCAMs tied to them ?
3C is EARL7.5.
--
++ytti
___
As far as I know you can't do that, you will need a router in place.
Sent from my iPhone
On 2 Dec 2008, at 05:14, John Arden [EMAIL PROTECTED] wrote:
is it possible to do a ipv6 6to4 configuration on a 5500 series ASA?
All of my CCO, Yahoo and Google searches turn up plenty of sample
TiM a écrit :
I'm sure that ingress traffic is assigned some internal you're in VRF x
label, but our SE was clear in stating it would be an MPLS header added
and removed, the same information as if it was egressing towards Site 2/3.
IMHO, you're right. Just consider the VRF-lite feature
How does one get around the side-effect of not allowing broadcasts; i.e.
wouldn't this break ARP functionality?
- Original Message -
From: Jay Hennigan [EMAIL PROTECTED]
To: cisco-nsp@puck.nether.net
Sent: Monday, December 01, 2008 4:29 PM
Subject: Re: [c-nsp] security
Matlock,
Hi,
On Tue, Dec 02, 2008 at 09:02:56AM -0500, Adam Greene wrote:
How does one get around the side-effect of not allowing broadcasts; i.e.
wouldn't this break ARP functionality?
This has no effect on things that happen *inside* the network - it will
just stop converting IP broadcast - link
Hi,
On Tue, Dec 02, 2008 at 12:36:03PM +0200, Ziv Leyes wrote:
I know this has probably been asked a thousand times. I'm not asking for
answers, only for directions on where to start from.
Well, my standard answer to IPv6 is
there is nothing magic about it, just the addresses look funny
Hi,
so - you need
(nice list of tasks to be undertaken deleted)
- and update all your ACLs etc to account for any SNMP/telnet/ssh/etc
that might be getting to your router via IPv6
As Gert says, IPv6 work is just like IPv4 work except for the
more funky addresses - oh, and the fact that IPv6
Ziv Leyes wrote:
I know this has probably been asked a thousand times. I'm not asking for
answers, only for directions on where to start from.
Hi Ziv,
At NANOG44 I saw Philip Smith / Ron Bonica's excellent tutorial on ipv6 routing:
On 12/2/08, Adam Greene [EMAIL PROTECTED] wrote:
How does one get around the side-effect of not allowing broadcasts; i.e.
wouldn't this break ARP functionality?
Not within the subnet
using ethernet arp is only on the local segment and won't traverse the router
no ip directed broadcast stops
Hi,
On Tue, Dec 02, 2008 at 02:07:03PM +, Will Hargrave wrote:
Whether you can do this by yourself... I don't know.
Be more optimistic :-) - the most difficult part in IPv6 is getting used
to having more-than-enough addresses available. No more lengthy discussions
on do I use a /28 or /27
No need to scare,
7200 VXR is to much I think.
Number of ipv6 prefixes only 1500.
Configuration a bit 'similar' to IPv4, it just your BGP configuration
divided into ipv4 ipv6 address family.
All policy as well.
What you can do (in Gilat) if your provider doesn't support IPv6 yet (it
might be
Gert mentioned a Cisco book or two, let me just toss out a glowing
recommendation for:
Deploying IPv6, http://tinyurl.com/DeployingIPv6
Global IPv6 Strategies, http://tinyurl.com/GIPv6Strategies
(The first is very technical, very real world / deployment oriented ... the
latter is
Hi,
On Tue, Dec 02, 2008 at 09:58:02AM -0500, TJ wrote:
Gert mentioned a Cisco book or two, let me just toss out a glowing
recommendation for:
Deploying IPv6, http://tinyurl.com/DeployingIPv6
Global IPv6 Strategies, http://tinyurl.com/GIPv6Strategies
Oh, yes. These are the
Hi all,
I know this has probably been asked a thousand times. I'm not asking for
answers, only for directions on where to start from.
I have a network with three 7200VXR routers running C7200-IS-M Ver. 12.4(13b)
We run a few BGP uplink peers and we're uplink providers to a few many other
Michael Simpson wrote:
On 12/2/08, Adam Greene [EMAIL PROTECTED] wrote:
How does one get around the side-effect of not allowing broadcasts; i.e.
wouldn't this break ARP functionality?
Not within the subnet
using ethernet arp is only on the local segment and won't traverse the router
Hi,
On Tue, Dec 02, 2008 at 03:29:58PM +, Paul Cosgrove wrote:
Arp uses a destination IP of 255.255.255.255, which is the 'limited
broadcasts address'. Packets with this destination are never routed
between subnets.
Actually, ARP does *not* use any IP broadcast address at all, neither
On Tue, 2 Dec 2008, Ziv Leyes wrote:
Will we be able to perform this task by ourselves or with the lack of
knowledge/experience will be better to call someone that knows the job?
IPv6 is not magic. If you can do IPv4 BGP comfortably, you most likely
have all the necessary basic knowledge to
Hi,
You're right and your SE is wrong.
What he's saying wouldn't be possible as both site 1 and site 4 are out of MPLS
domain.
You can see in the VRF routing table the code 'L' (local) and also the VRF CEF
table doesn't have any imposed label.
Regards,
Leonardo.
-Mensagem
Gert Doering wrote:
Hi,
On Tue, Dec 02, 2008 at 03:29:58PM +, Paul Cosgrove wrote:
Arp uses a destination IP of 255.255.255.255, which is the 'limited
broadcasts address'. Packets with this destination are never routed
between subnets.
Actually, ARP does *not* use any IP
On Mon, Dec 01, 2008 at 02:53:41PM -0300, Juan Angel Menendez wrote:
It's already here: N7K-M148GS-11 Nexus
7000 Series 48-Port Gigabit Ethernet Module (SFP) with 40 Gbps Fabric
Hi there,
I am wondering why I can see some VLANs configured on L3 interfaces in
the internal VLAN usage.
Wasn't it supposed to show up only internal VLANs allocated from the
range 1006-4094?
For example:
7609#show vlan inter usage
VLAN Usage
20
Actually, ARP does *not* use any IP broadcast address at all, neither
limited or subnet broadcast.
Because it isn't using IP...
___
cisco-nsp mailing list cisco-nsp@puck.nether.net
https://puck.nether.net/mailman/listinfo/cisco-nsp
archive at
Hi, if your transit provider doesn't already run native IPv6 you can get
a tunnel at tunnelbroker.net, and you can request BGP via a request BGP
tunnel command once you are logged in.
Once you have IPv6 connectivity established (either native IPv6 or via a
tunnel from anybody) if you want a self
We seem to have a faulty ACE20 MOD. (license SC6K-3.0.0A14-ACE, license
claim download activation key) The issue we encounter is that the card is
not active on the 6500 switch and even after trying a power enable. So we
can not enter to the configuration terminal of this card.
We are running IOS
You need IOS 12.2(18)SXF4 for ACE support in 6500/SUP720.
--
Tassos
Larry Stites wrote on 02/12/2008 21:06:
We seem to have a faulty ACE20 MOD. (license SC6K-3.0.0A14-ACE, license
claim download activation key) The issue we encounter is that the card is
not active on the 6500 switch and even
On Tue, 2008-12-02 at 14:56 -0300, Leonardo Gama Souza wrote:
I am wondering why I can see some VLANs configured on L3 interfaces in
the internal VLAN usage.
Wasn't it supposed to show up only internal VLANs allocated from the
range 1006-4094?
For example:
7609#show vlan inter usage
Rinse,
BGP, OSPF and per use MQOS.
On 2/12/08 6:16 PM, Rinse Kloek [EMAIL PROTECTED] wrote:
Looks like every thousand user uses 1% CPU. What kind of features did you
enable (BGP/OSP/ACL's ? )
Roddy Strachan schreef:
Actually testing/implementing one now.
One test we had about
Marian Ďurkovič wrote:
On Mon, Dec 01, 2008 at 02:53:41PM -0300, Juan Angel Menendez wrote:
It's already here: N7K-M148GS-11 Nexus
7000 Series 48-Port Gigabit Ethernet Module (SFP) with 40 Gbps Fabric
Hi Peter,
Subinterfaces use internal VLANs and are not switched like other
VLANs. If you were using the VLANs as regular switchport VLANs on a
trunk, they wouldn't consume internal VLANs, but subinterfaces do.
So the command 'show platform hardware capacity vlan' should be tracking
the free
Hi,
On Tue, 2008-12-02 at 20:46 -0300, Leonardo Gama Souza wrote:
So the command 'show platform hardware capacity vlan' should be tracking
the free internal VLANs, but this is not happening:
7609#show platform hardware capacity vlan
VLAN Resources
VLANs: 4094 total, 68 VTP, 0 extended,
Hi guys,
Can anyone give me any insight into this problem? When i do a sh log on
my 7206, is always see multiple entries for this error:
Dec 3 01:48:04.145: %AMDP2_FE-3-UNDERFLO: FastEthernet1/0 transmit error
Dec 3 01:53:24.238: %AMDP2_FE-3-UNDERFLO: FastEthernet1/0 transmit error
Dec 3
First hit on google search:
http://supportwiki.cisco.com/ViewWiki/index.php/A_Catalyst_switch_causes_the_AMDP2_FE-3-UNDERFLO_error_on_a_connected_device
A Catalyst switch causes the %AMDP2_FE-3-UNDERFLO error on a connected device
While a frame is being transmitted, the local buffer
Probably a little off-topic for this list, but wondering if
anyone else is registering random but frequent crashes
and/or lock-ups of Mac OS X 10.5.5 when using Cisco VPN
Client 4.9.01 (0100).
Cheers,
Mark.
signature.asc
Description: This is a digitally signed message part.
It is a bug.. We will file one to get it fixed.
sukumar
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of Peter Rathlev
Sent: Wednesday, December 03, 2008 6:14 AM
To: cisco-nsp
Subject: Re: [c-nsp] RES: VLAN internal usage
Hi,
On Tue, 2008-12-02 at 20:46
Thank you all for your replies, it gave me a lot of clues and points to start
from.
Ziv
-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Mike Leber
Sent: Tuesday, December 02, 2008 8:14 PM
To: cisco-nsp@puck.nether.net
Subject: Re: [c-nsp] New IPv6
42 matches
Mail list logo