sorry, couldn't resist...
https://blog.router-switch.com/wp-content/uploads/2012/01/Cisco-7600-router-Like-a-switch.jpg
On Thu, Dec 19, 2019, 02:29 Howard Leadmon wrote:
> I know a while back I had asked about replacing an old 7606/RSP720 I
> had handling routing, and I got some great info fro
It's N7K. Yeah, sorry I forgot to mention that. :)
On Thu, Aug 17, 2017 at 9:18 PM, Gert Doering wrote:
> Hi,
>
> On Thu, Aug 17, 2017 at 02:01:07PM +0200, Andriy Bilous wrote:
> > Just a follow-up. Po interface is a L3 channel with subinterface
> po631.2310
> > c
; 16 авг. 2017 г. 1:40 ПП пользователь "Andriy Bilous" <
> andriy.bil...@gmail.com> написал:
>
>> Hello,
>>
>> I am trying to configure SPAN session with port-channel interface as the
>> source
>>
>> monitor session 2
>> sour
Hello,
I am trying to configure SPAN session with port-channel interface as the
source
monitor session 2
source interface port-channel631 both
destination interface Ethernet5/30
no shut
However on the sniffer I see only locally generated frames - CDP, LLDP,
UDLD and no transit traffic. Am
In most of the cases you won't notice any disruptions as long as your
(copper/fibre) links are up and running. STP timers are overly pessimistic
regarding propagation delay for the worst case when you need to communicate
topology change from the furthest right bridge to the furthest left in the
slo
magic' VLAN number or is this a bug/feature of
> the 'all' statement?
>
> Sadly, if I understand it correctly, the 'all' keyword means I can only
> have a single ACL active -- no ability to set up another capture port with
> a different VACL.
>
> ~Randy
&g
Could it be that you're using only one direction in IP ACLs bound to VACL?
E.g.
permit any 10.0.0.0
instead of
permit 10.0.0.0 any
permit any 10.0.0.0
On Wed, Dec 18, 2013 at 9:23 PM, Randy wrote:
> I experimented and the following allowed me to see both sides of the
> traffic:
>
> (config-i
You need to match on the exact protocol to make ZBF work properly. In your
first example you match and inspect on access-list 102 which is IP and IP
header have not enough information to link echo with corresponding
echo-reply. TFTP is asymmetrical - ZBF should work with it though (again
with appro
I suspect you would need to sync config-registers on both. In some
circumstances when SP fails to boot, chassis would program 'halt on boot'
on RP to prevent infinite reset cycling (most electrical failures happen on
reset).
On Tue, Jan 26, 2010 at 10:19 AM, Phil Mayers wrote:
> This morning we
Not sure if it's available in IP Base but you can still allow dynamically
learned routes to be propagated out of stub with leak-map - 'eigrp stub
leak-map bla'.
On Wed, Jun 12, 2013 at 1:34 AM, Tim Huffman wrote:
> >> Although we've done several MPLS VPNs in the past, we've always used
> BGP as
In classic IOS the IP you use in the distance command for OSPF must be a
Router ID not the next-hop calculated for prefix. I think there is your
problem.
On Thu, Apr 4, 2013 at 12:42 PM, Lee Starnes wrote:
> Hello,
>
> We are trying to change the administrative distance on one of the OSPF
> neig
Just that you know there is 'debug condition interface' command which will
limit the output of your debugs to the interface in interest. What Peter
suggests suits you better though.
On Thu, Mar 14, 2013 at 5:38 PM, "Rolf Hanßen" wrote:
> Hi,
>
> I saw there was already a discussion concerning
I am still wondering - WHY? Our cable guys were always handing over
ethernet tails from their SDH with speed nonegotiate, claiming their
equipment just doesn't support it (and it was Alcatel - where NOTHING is
certain). I've heard that it's actually true. Can anyone confirm?
On Fri, Jan 25, 2013
I understand that. =) Just wonted to get to the bottom of this issue.
On Thu, Dec 13, 2012 at 5:00 PM, Phil Mayers wrote:
> On 13/12/12 15:55, Andriy Bilous wrote:
>
>> Defaults are initiated on RRs and thus locally originated route always
>> win.
>>
>
> In
Defaults are initiated on RRs and thus locally originated route always win.
On Thu, Dec 13, 2012 at 4:19 PM, Christian Meutes wrote:
> You need add-path on both sides, yes. But as Phil already noted your RRs
> are definitely tie-breaking to different pathes.
>
> On 13.12.2012, at 22:12, Phil May
Apparently you can short-circuit VRFs with a GRE tunnel and run RIP (for
example) through it. =)
interface Loopback1000
ip address 3.3.3.3 255.255.255.255
!
interface Loopback1001
ip address 4.4.4.4 255.255.255.255
!
interface Tunnel1
ip vrf forwarding inet
ip address 5.5.5.1 255.255.255.0
tu
Seen the same with CDP on ISR G2 with 15.0M - they've sent CDP frames in
every subinterface. It IS annoying.
Won't surprise me if that was an actual feature request to get something
obscure and ugly working in CiscoWorks or Prime. =)
On Mon, Dec 10, 2012 at 5:57 PM, Peter Rathlev wrote:
> On M
Redistribution of networks local to the router is a non-recursive process.
static/connected->ospf1->ospf2 won't work, you need to redistribute them
explicitly into each process: static->ospf1 and static->ospf2 in your case.
On Mon, Dec 10, 2012 at 2:41 PM, Murat Kaipov wrote:
> Hello guys.
>
>
int g0/1
flow send off
flow rec off
On Fri, Oct 12, 2012 at 9:05 PM, Jonathan Charles wrote:
> We have a Cisco 2921 running 15.2(3T);
>
> We are seeing PAUSE OUTPUT incrementing on the device, and every time it
> does, our users experience pretty nasty jitter and silence on VOIP calls.
>
> The
Someone on IRC shared excellent slides about getting IPTV work as
expected. They might be worth to take a look at:
http://www.slideshare.net/brouer/challenges-and-experiences-with-iptv-from-a-network-point-of-view
On Tue, Jun 26, 2012 at 11:38 PM, John Neiberger wrote:
> On Tue, Jun 26, 2012 at
Many NMSs have this functionality under the name "events correlation",
though I can't really comment on the quality of those.
On Tue, Jun 5, 2012 at 4:45 PM, chris stand wrote:
> Howdy,
>
> For those of you with SNMP monitoring up/down tools.
>
> Do you track up/down status of a switch port AND
What 'show bootvar' says? Also when you're intending to boot from
local file system I'd recommend not to miss keyword 'flash' in 'boot
system' command - boot system flash disk1:c7200-is-mz.124-13b.bin
On Fri, Mar 30, 2012 at 7:46 AM, Joseph Mays wrote:
> Sorry, disregard the previous message, hit
match community requires _ip-community_number_ not the numerical value
of the community intself.
On Sun, Feb 26, 2012 at 2:41 PM, Jason Lixfeld wrote:
> On 2012-02-26, at 4:14 AM, Oliver Boehmer (oboehmer) wrote:
>
>> iBGP as PE-CE routing protocol is not officially supported in IOS (i.e.
>> betw
vty 0 4
transport input ssh
?
debug ip ssh on the router ssh -vvv on the client?
On Thu, Feb 23, 2012 at 2:56 PM, Chris Lane wrote:
> running a 7600 with s72033-advipservicesk9_wan-mz.122-33.SXH7
> actually just installed device, added crypto key rsa ~ all normal here,
> noting unusual to repor
Also non-E 3-slot chassis can't host 67xx modules.
On Tue, Feb 7, 2012 at 6:38 PM, Bill Wade wrote:
> Also the 6513E backplane provides 80Gb (dual fabric channels) for each slot
> whereas the 6513 is limited to 40Gb in slots 1-8.
>
>
>
>
>
> From: Phil Mayers
>
Or https://supportforums.cisco.com/docs/DOC-19518
On Tue, Jan 17, 2012 at 10:48 AM, Andriy Bilous wrote:
> https://supportforums.cisco.com/docs/DOC-19517
>
> On Tue, Jan 17, 2012 at 10:38 AM, Nick Hilliard wrote:
>> On 17/01/2012 00:15, Mohammad Khalil wrote:
>>> H
https://supportforums.cisco.com/docs/DOC-19517
On Tue, Jan 17, 2012 at 10:38 AM, Nick Hilliard wrote:
> On 17/01/2012 00:15, Mohammad Khalil wrote:
>> Hi all , i am looking for building an applet according to below
>> i will track configuration changes via the syslog pattern CONFIG_I
>> if detect
Depending on your hardware and topology you might be able to xconnect
RSPAN session through your L3. RSPAN supports ACLs to filter monitored
traffic.
http://www.cisco.com/en/US/docs/switches/lan/catalyst6500/ios/12.2SX/configuration/guide/span.html#wp1033684
* You can use output access control lis
I would recommend to isolate this port into queue-set 2, which isn't
used by default, and apply buffers tuning Anton suggested to this
queue-set, so you won't ruin queueing on other ports as they don't
drop anyway.
int g1/0/17
queue-set 2
IIRC new stackable 2960-S do not allow the configuration o
Notice that Advertised Distance (768) over Tunnel2 is now > Feasible
Distance (512) of the best route and as such this route can't be a
feasible successor, can't be considered as an alternative path and
therefore can't be installed in routing table. So, as long as
offset-list adds <=255, advertised
There is a bug in most of SEs for all stackable models, which makes
drop statistics unusable (see CSCso81660 for example - there are lots
of BugIDs with same diagnostics and keep in mind "Fixed-in is a lie).
Reported numbers aren't realistic and often go both ways - increase
and decrease in what ap
That came in 15.0(4)M iirc, called 'right-to-use' license and
basically reverts to the old licensing model. The juggling with PAKs
was a nightmare.
On Sun, Dec 18, 2011 at 11:19 PM, Per Carlson wrote:
>> You need 'data' license for MPLS. You should have trial option if that's
>> newly shipped 390
You gonna need DATA license to enable MPLS capabilities.
http://www.cisco.com/en/US/prod/collateral/routers/ps10616/white_paper_c11_556985.html#wp9000809
On Sat, Dec 17, 2011 at 10:57 PM, Righa Shake wrote:
> Hi,
>
> Am trying to configure MPLS on a cisco 3945 with the below features however
> t
Probably this?
R1(config)#router eigrp 100
R1(config-router)#eigrp ?
event-log-size Set EIGRP maximum event log entries
event-logging Log IP-EIGRP routing events
log-neighbor-changes Enable/Disable IP-EIGRP neighbor logging
log-neighbor-warnings Enable/Disable IP-EIGRP
If you're still OK with reloading the box you could try 'show run all'
with both trains and compare those. It prints out the great deal of
defaults along with custom config and might give you a hint where to
look next.
On Tue, Aug 23, 2011 at 5:03 PM, Chris Gotstein wrote:
> Update on this issue:
Yup, match community accepts community-list as an argument, not the
'raw' value. So you need first define them
ip community-list 1 permit xx:1
ip community-list 2 permit xx:2
The whole config should be like that
RTR1
router bgp 100
nei RTR2 remote-as 100
nei RTR2 send-community
nei RTR2 route-
Funnily enough there is an authenticationFailure trap which contains
the address of misbehaving poller (no varbind with community though).
http://www.cisco.com/en/US/tech/tk648/tk362/technologies_tech_note09186a00800a9405.shtml
On Tue, Aug 2, 2011 at 6:07 PM, Ryan Pavely wrote:
> We are hitting
'show policy-map interface' just doesn't work on 3560/3750/2960
http://www.cisco.com/en/US/docs/switches/lan/catalyst2960/software/release/12.2_55_se/configuration/guide/swqos.html
(at the very end of the document)
Note Do not use the show policy-map interface privileged EXEC command
to display c
That is called an Instance in SNMP terms. The instance could be seen
as an index which serves to link different variables/tables in
different MIBs. In your case polling OIDs in ENTITY-MIB with index
1003 (that is OID.Instance) should return all kind of information
about PS in question like name, se
int lo0
ip ospf network point-to-point
That'll advertise lo0 address with configured mask instead of /32.
On Fri, Jul 15, 2011 at 11:27 AM, Alexandre Durand
wrote:
> Hi Andrew,
>
> No negociate is not available ont he interface. and i forced speed and
> duplex but with no success to turn this po
That could be "broken" TFTP server which doesn't wrap around 64Mb as
cisco doesn't support BLOCKSIZE option. In this case you'll download
over and over until memory/flash is full. The one I've seen it with
was pumpkin, guess there are plenty others around.
On Fri, Jun 24, 2011 at 10:23 PM, Scott V
distributed, ie, DFC).
>
> sh module will clearly tell you whether a DFC is present or not, under the
> Sub-Module heading.
>
> Tim
>
> At 12:22 PM 3/26/2011, Andriy Bilous quipped:
>
>> As far as I'm aware there is no DFC in 6516, it's a "legacy" ca
disregard =)
On Sat, Mar 26, 2011 at 8:22 PM, Andriy Bilous wrote:
> As far as I'm aware there is no DFC in 6516, it's a "legacy" card with
> a single 8Gb (duplex) connection to the fabric. Your output actually
> confirms that, saying CEF256. Are there any other mod
As far as I'm aware there is no DFC in 6516, it's a "legacy" card with
a single 8Gb (duplex) connection to the fabric. Your output actually
confirms that, saying CEF256. Are there any other modules in the
chassis?
On Sat, Mar 26, 2011 at 8:05 PM, Jeff Kell wrote:
> On 3/26/2011 2:32 PM, Jon Lewis
Both ping and telnet go out with the same source IP? No ip telnet
source-interface in the config?
On Sun, Feb 20, 2011 at 2:14 PM, Rutger Bevaart wrote:
> On Feb 20, 2011, at 1:54 PM, Chris Evans wrote:
>> Try pinging with a larger mtu? Rule that out first I would say.
>>
>
> Thanks for the tip,
There is the smartports macros feature on switches only and it works
differently than you described - you have to apply macro to the
interface/interface range every time you've changed it and it does not
replace but adds the configuration to the existing configuration on
the port.
On Thu, Jan 6, 2
That is correct answer, with some hidden side-effects though.
srr-queue bandwidth limit requires mls qos to be enabled globally. mls
qos by default places queue 1 on ALL egress ports in shaped mode and
reserves 1/25 * interface bandwidth = 4Mb/s on the 100Mb/s interface.
Shaped queue does NOT shrin
There is also instance-id
R5(config-if)#ipv6 ospf 1 area 0 instance ?
<0-255> Instance ID
which you could call "poor man's plain-text authentication" in a
desperate attempt to prevent disasters caused by situations like the
one Mikael described. Neighbors with different instance-ids won't form
Also FlexWANs
On Wed, Jan 5, 2011 at 10:18 PM, John Neiberger wrote:
> On Wed, Jan 5, 2011 at 2:13 PM, Robert Hass wrote:
>> On Wed, Jan 5, 2011 at 9:09 PM, John Neiberger wrote:
>>> I've done some recent upgrades from 12.2(18) up to 12.2(33) and we've
>>> been having to put an fdp package on f
You need separate access-list for every peer. In your config all
traffic hitting VPNTRAFF will be matched in crypto map 10.
On Fri, Dec 17, 2010 at 1:33 PM, Righa Shake wrote:
> Chris,
>
> Below is my sample config
>
> !
> !
> crypto isakmp policy 1
> encr 3des
> authentication pre-share
> gro
Don't get all excited, it's 10G only. :/
On Mon, Dec 13, 2010 at 10:14 PM, Daniel Holme wrote:
>
> On 13 Dec 2010, at 16:31, Phil Mayers wrote:
>
>> On 13/12/10 16:23, Gert Doering wrote:
>>> Hi,
>>>
>>> On Mon, Dec 13, 2010 at 01:25:29PM +0200, Ziv Leyes wrote:
http://blog.ioshints.info/20
You could use the nat pool of type match-host, the last octet will match then
ip nat pool one2one 172.16.10.1 172.16.10.254 netmask 255.255.255.0
type match-host
On Wed, Nov 10, 2010 at 9:29 AM, Ziv Leyes wrote:
> You could use a 255 addresses pool like:
> ip nat pool NAT 172.16.10.1 172.16.10.2
It does work this way - in 12.4(24)T1 anyway. I'm curious what
hardware/software op's using and why is seed metric required there.
R1#sh run int fa0/0
Building configuration...
Current configuration : 129 bytes
!
interface FastEthernet0/0
no ip address
duplex auto
speed auto
ipv6 address 2620
I started to believe after your post that it could be true as we have
the same hand over from our EoSDH. That is on fiber and having speed
nonegotiate on those ports annoys the hell out of me.
Another case - multispeed media-converters which are rare guest by
ISPs I guess. The lack of optical sock
Oh, believe me, you're not alone. We have actually a cable guy with a
piece of paper on the wall behind picturing a road sign - crossed red
circle with the word "auto" inside.
On Thu, Aug 19, 2010 at 6:52 PM, John Neiberger wrote:
> On Thu, Aug 19, 2010 at 10:07 AM, Adam Armstrong wrote:
>> On 1
'no cdp log mismatch duplex' could be a better way to get rid of
annoying message but still have cdp running. That is if you're sure
it's a bug not inadequate configuration.
On Wed, Aug 18, 2010 at 4:42 AM, Jeferson Guardia wrote:
> Guys,
>
> Thanks for all replies, googling it I came across a l
Actually changing domain name will reset config revision, so the step
with transparent isn't necessary.
On Thu, Aug 5, 2010 at 9:57 AM, Holger wrote:
> On 04.08.10 17:09, Troy Beisigl wrote:
>> After reading up on VTP server configurations at Cisco, I wanted to
>> get someone's real life experien
Multilink. As members come and go you could still have your bandwidth
"slices" proportional to the actual bandwidth available at any given
time.
On Tue, Jul 13, 2010 at 7:56 PM, Kenny Sallee wrote:
> So - I've research the difference between the 'bandwidth percent' and
> 'bandwidth remaining perc
show queueing int xxx detailed in SXI seems to know about 5-min
average bps and 30-s bytes counters
On Tue, Jul 6, 2010 at 12:16 PM, Ruslan Pustovoytov wrote:
> This is not possible on 67xx line card.
> This card have only dropped statistics via show queueing int XXX
> ___
After a couple of fights we gave up using non-ASCII characters. Even when
IOS has no problems with representation, every single piece of management
software has its own special way at showing them.
If you think that underscore is the safe way to work around space characters
parsing then you're wro
iirc 3825 has an USB socket which is accessible from rommon and if I am not
mistaken you could boot from it.
On Tue, Jun 15, 2010 at 9:09 PM, harbor235 wrote:
> The entire contents of the flash is erased, or so says the dialogue when
> you
> initiate tftpdnld. It is a 64M compact flash card.
> T
#show diagnostics result module 1 detail
should help you identify which GOLD test has failed.
#hw-module module 1 reset
resets power to the module
On Tue, Jun 1, 2010 at 3:56 PM, Renelson Panosky wrote:
> Thank you, same thing Cisco suggest
>
> On Tue, Jun 1, 2010 at 9:45 AM, Dmitry Valdov wr
We've had one of those, was accepted for RMA without any further questions
through channel partner.
On Thu, Apr 15, 2010 at 3:21 PM, Tassos Chatzithomaoglou wrote:
> One year after the original post, i "finally" met the same issue on a
> 6748-GE-TX card.
> Anyone got any complaints from Cisco ab
cisco seems to know about -vrf option in outgoing ssh connections on 4500.
http://www.cisco.com/en/US/customer/docs/switches/lan/catalyst4500/12.2/53SG/configuration/vrf.html#wp1082522
As for copy you have to specify ip tftp/ftp source-interface to choose
proper vrf (dunno if ip ssh source-interf
Trunk to PE could be quite handy. For xconnecting RSPAN VLAN over backbone
for example.
On Thu, Mar 25, 2010 at 2:58 PM, Steve Bertrand wrote:
> Hi all,
>
> I'm going to be deploying some old 3550's as CPE on a
> Fibre-over-Ethernet network. I've never used a layer-3 switch for this
> job before
Control-plane traffic is governed by pak_priority inside the router
http://www.cisco.com/en/US/tech/tk543/tk544/technologies_tech_note09186a0080094612.shtml
This document is pretty old and doesn't reflect newer platforms, though
basics remain the same I believe.
Some little bit is also here:
http
If you haven't mixed the output from 2 platforms then it's your supervisor,
not linecards, has failed some minor test.
show diagnostic result module 5
may provide you with some ideas where to look next.
On Fri, Oct 23, 2009 at 3:22 PM, Renelson Panosky wrote:
> A lot of my WS-X6148A-GE-45AF sho
Both will work. Seeing you have FlexWAN and probably migrating from SXF to
SXH/SXI do not forget to place FPD image on the same file system where new
IOS sits.
On Thu, Oct 22, 2009 at 12:57 PM, Sony Scaria wrote:
>
>
> Hi there,
>
>
>
> I have a 6509E (SUP 720 ) switch where I am gonna upgrade t
r31ms001#sh ver | i (IOS|ME)
Cisco IOS Software, s6523_rp Software (s6523_rp-ADVIPSERVICESK9-M), Version
12.2(33)SXH4, RELEASE SOFTWARE (fc1)
cisco ME-C6524GS-8S (R7000) processor (revision 1.4) with 983040K/65536K
bytes of memory.
r31ms001#sh power
system power redundancy mode = redundant
system
69 matches
Mail list logo
