Hello:
The one limitation of REP is no spanning tree. So, if you're doing anything
with a switch connected to two switches on the ring and using STP for
redundancy, you'll need to modify your design to use something like a backup
interface.
Regards,
Mike
--
Michael K. Smith - CISSP, GSEC
This does not work:
Switch A -- REP switch 1
| (REP ring)
|-- REP switch 2
You have to use backup links on Switch A so that both links aren't active at
the same time.
Mike
--
Michael K. Smith - CISSP, GSEC, GISP
Chief
Hi Ghassan:
The REP ring can take 4094 vlans. You can also block specific VLANs or sets of
VLANs for load-balancing purposes.
Mike
--
Michael K. Smith - CISSP, GSEC, GISP
Chief Technical Officer - Adhost Internet LLC mksm...@adhost.com
w: +1 (206) 404-9500 f: +1 (206) 404-9050
PGP: B49A DDF5
If you are ssh'ing to the box, you should zeroize your keys and recreate them.
Not sure if this affects your particular OS, but better to be on the safe side.
Mike
--
Michael K. Smith - CISSP, GSEC, GISP
Chief Technical Officer - Adhost Internet LLC mksm...@adhost.com
w: +1 (206) 404-9500 f
100 0.0.0.0 0.0.0.0 255
ip ospf authentication-key xxx
ip ospf mtu-ignore
no mop enabled
no mop sysid
end
I've got the MTU high, as we use 1500byte for the PPP + L2TP header.
Thanks,
Alex
From: Michael K. Smith - Adhost [mksm...@adhost.com]
Sent: 29
On 9/13/11 5:08 PM, Justin Krejci jkre...@usinternet.com wrote:
Cisco Folks,
Internet Transit Providers
Provider 1
Provider 2
Provider 3
Provider 4
We have aggregated prefixes (/19's, /18's etc) currently advertised to
providers 1-3 on a single router. We are bringing on provider 4 but want
This is the workaround when you can't put the address on the BVI, which
you can't in some cases.
Mike
On 6/22/11 1:24 AM, Juergen Marenda j...@ilk.net wrote:
Sorry,
but I do not see the difference beetween IPv4 and IPv6 Behaviour here.
As far as i remember you put the LAN-Interface vlan1
and
You can do IPv6 on the 87x series, it's just kludgy. You have to use a
separate /64 for the wireless and attach it to the VLAN interface, while
leaving the IPv4 address on the dot11Radio interface.
If anyone would like to see a working configuration let me know and I'll
send it offlist.
Mike
+, Michael K. Smith - Adhost wrote:
You can do IPv6 on the 87x series, it's just kludgy. You have to use a
separate /64 for the wireless and attach it to the VLAN interface, while
leaving the IPv4 address on the dot11Radio interface.
If anyone would like to see a working configuration let me
You are not NAT'ing from 10.200.200.0/24 which is the address pool for
your VPN clients. If you want to get out over the net you will have to
remove the line below.
Mike
On 6/17/11 2:18 PM, Bill Duffy secur...@4duffy.com wrote:
access-list nonat extended permit ip 10.200.200.0 255.255.255.0
-Original Message-
From: cisco-nsp-boun...@puck.nether.net [mailto:cisco-nsp-
boun...@puck.nether.net] On Behalf Of Md. Jahangir Hossain
Sent: Wednesday, May 18, 2011 2:39 AM
To: cisco-nsp@puck.nether.net
Subject: [c-nsp] traffic not passing between Cisco 3750G and Cisco 7206vxr
On 3/8/11 7:59 PM, jack daniels jckdaniel...@gmail.com wrote:
Hi guys,
If I have
Vlan100 , Vlan 2 , Vlan 3 -Trunk Dot1QCisco
3550 Switch1 SwitchA
Vlan 100 is native vlan .While frame goes out to SwitchA from
Switch1, I want to tag the frames of native vlan
Do you have:
global (outside) 1 interface
or similar?
Mike
--
Michael K. Smith - CISSP, GSEC, GISP
Chief Technical Officer - Adhost Internet LLC mksm...@adhost.com
w: +1 (206) 404-9500 f: +1 (206) 404-9050
PGP: B49A DDF5 8611 27F3 08B9 84BB E61E 38C0 (Key ID: 0x9A96777D)
-Original
-Original Message-
From: cisco-nsp-boun...@puck.nether.net [mailto:cisco-nsp-
boun...@puck.nether.net] On Behalf Of David Kotlerewsky
Sent: Monday, January 31, 2011 9:08 AM
To: cisco-nsp@puck.nether.net
Subject: Re: [c-nsp] Router/switch recommendations for colocation
Sooo, does
you suggest here?
David.
On Mon, Jan 31, 2011 at 9:24 AM, Michael K. Smith - Adhost
mksm...@adhost.commailto:mksm...@adhost.com wrote:
-Original Message-
From:
cisco-nsp-boun...@puck.nether.netmailto:cisco-nsp-boun...@puck.nether.net
[mailto:cisco-nsp-mailto:cisco-nsp-
boun
.
Mike
--
Michael K. Smith - CISSP, GSEC, GISP
Chief Technical Officer - Adhost Internet LLC
mksm...@adhost.commailto:mksm...@adhost.com
w: +1 (206) 404-9500 f: +1 (206) 404-9050
PGP: B49A DDF5 8611 27F3 08B9 84BB E61E 38C0 (Key ID: 0x9A96777D)
From: David [mailto:webnet...@gmail.com]
Sent: Monday
Hello All:
We had a GSR with the GRP-B fall over this morning when we brought up a 3rd
transit (full table) connection on the device with an Out of Memory error. We
are running 3-port Gig cards with full memory and the GRP as the base.
Would upgrading to a PRP with full RAM alleviate this
Hello Tim:
On Dec 15, 2010, at 1:12 AM, Tim Vollebregt wrote:
Hi all,
Just having a small question.
For a customer solution we want to mix an ASA5550 with an ASA5520.
Is it possible to have the devices in a HA/failover pair where the 5550 will
be forced to be primary? I can't find
Have you tried setting everything to auto negotiate? Most new switches seem to
do better if you don't hard set the duplex on a GigE link.
Mike
--
Michael K. Smith - CISSP, GSEC, GISP
Chief Technical Officer - Adhost Internet LLC mksm...@adhost.com
w: +1 (206) 404-9500 f: +1 (206) 404-9050
PGP
for.
Instead of 'network 192.0.2.0' use 'aggregate-address 192.0.2.0 255.255.255.0
summary-only' and then set the origin igp in your route-map for the outbound
announcement.
Mike
--
Michael K. Smith - CISSP, GSEC, GISP
Chief Technical Officer - Adhost Internet LLC mksm...@adhost.com
w: +1 (206
to consider accepting a default-only from a
provider. This will certainly cut down on the amount of processor for
scanning, although it will still hit 99% when it's running, would be my guess.
Mike
--
Michael K. Smith - CISSP, GSEC, GISP
Chief Technical Officer - Adhost Internet LLC mksm
Hey Deric:
-Original Message-
From: Deric Kwok [mailto:deric.kwok2...@gmail.com]
Sent: Wednesday, October 27, 2010 3:45 PM
To: Michael K. Smith - Adhost; tn...@internode.com.au
Cc: Cisco Network Service Providers
Subject: Re: [c-nsp] pixhelp
Hi
The verion is Cisco PIX
grid, even at 50 Ghz. The spectral
width on the optics is .2nm, but I wouldn't want to be sitting on the
edge of the acceptable limit.
Mike
--
Michael K. Smith - CISSP, GSEC, GISP
Chief Technical Officer - Adhost Internet LLC mksm...@adhost.com
w: +1 (206) 404-9500 f: +1 (206) 404-9050
PGP: B49A
/products_password_
recovery09186a008009478b.shtml for information on how to reset the
password.
Setting up http access is dependent upon the operating system, so it
will be hard to assist you before knowing whether or not it's in the 6.x
or 7.x train.
Mike
--
Michael K. Smith - CISSP, GSEC, GISP
Chief Technical
If I understand you correctly you are trying to ping from a host on your
network, not the directly connected router? If you haven't turned up
BGP yet the return traffic is going to try to go back through the L3
network to your network because it's not yet receiving the
directly-connected route.
One other thing. Do you have an rACL that is blocking ICMP return traffic to
your interface IP?
Mike
--
Michael K. Smith - CISSP, GSEC, GISP
Chief Technical Officer - Adhost Internet LLC mksm...@adhost.com
w: +1 (206) 404-9500 f: +1 (206) 404-9050
PGP: B49A DDF5 8611 27F3 08B9 84BB E61E 38C0
On 9/3/10 4:07 PM, Mohammad Khalil eng_m...@hotmail.com wrote:
hi all
we use OSPF to transport customers routers into our backbone , i read in one
of Cisco presentations that its best to use BGP for the same purpose
your opinions please
In my opinion, BGP is best for inter-AS
,
Mike
--
Michael K. Smith - CISSP, GSEC, GISP
Chief Technical Officer - Adhost Internet LLC mksm...@adhost.com
w: +1 (206) 404-9500 f: +1 (206) 404-9050
PGP: B49A DDF5 8611 27F3 08B9 84BB E61E 38C0 (Key ID: 0x9A96777D)
___
cisco-nsp mailing list cisco
--
Michael K. Smith - CISSP, GSEC, GISP
Chief Technical Officer - Adhost Internet LLC mksm...@adhost.com
w: +1 (206) 404-9500 f: +1 (206) 404-9050
PGP: B49A DDF5 8611 27F3 08B9 84BB E61E 38C0 (Key ID: 0x9A96777D)
___
cisco-nsp mailing list cisco-nsp
Hello Jason:
If you save your configuration to a tftp server it will show the
password in the clear. There may be another way but I've not found it.
Mike
--
Michael K. Smith - CISSP, GSEC, GISP
Chief Technical Officer - Adhost Internet LLC mksm...@adhost.com
w: +1 (206) 404-9500 f: +1 (206
You might want to try clear ip route all
Mike
--
Michael K. Smith - CISSP, GSEC, GISP
Chief Technical Officer - Adhost Internet LLC mksm...@adhost.com
w: +1 (206) 404-9500 f: +1 (206) 404-9050
PGP: B49A DDF5 8611 27F3 08B9 84BB E61E 38C0 (Key ID: 0x9A96777D)
-Original Message-
From
It looks like you have a physical-layer problem, given the number of
framing errors in the output you provided.
Mike
--
Michael K. Smith - CISSP, GSEC, GISP
Chief Technical Officer - Adhost Internet LLC mksm...@adhost.com
w: +1 (206) 404-9500 f: +1 (206) 404-9050
PGP: B49A DDF5 8611 27F3 08B9
Ahh, okay. Are you running DCEF globally and CEF switching on the
interface?
Mike
--
Michael K. Smith - CISSP, GSEC, GISP
Chief Technical Officer - Adhost Internet LLC mksm...@adhost.com
w: +1 (206) 404-9500 f: +1 (206) 404-9050
PGP: B49A DDF5 8611 27F3 08B9 84BB E61E 38C0 (Key ID: 0x9A96777D
Could you send a sanitized configuration of the port?
Mike
--
Michael K. Smith - CISSP, GSEC, GISP
Chief Technical Officer - Adhost Internet LLC mksm...@adhost.com
w: +1 (206) 404-9500 f: +1 (206) 404-9050
PGP: B49A DDF5 8611 27F3 08B9 84BB E61E 38C0 (Key ID: 0x9A96777D)
-Original
to the VPN.
Mike
--
Michael K. Smith - CISSP, GSEC, GISP
Chief Technical Officer - Adhost Internet LLC mksm...@adhost.com
w: +1 (206) 404-9500 f: +1 (206) 404-9050
PGP: B49A DDF5 8611 27F3 08B9 84BB E61E 38C0 (Key ID: 0x9A96777D)
-Original Message-
From: cisco-nsp-boun
There's really not enough to go on. You haven't said what type of
interfaces are involved or shown the configuration of those interfaces on
two sides of a link. Are they Ethernet, SONET, Frame-Relay?
My guess is that you don't have your ospf network type correct on your
interfaces, but without
Hello Dominic:
It looks like you only have 256 Mb of Packet Ram. You should probably
upgrade to 512 MB. I run multiple full peers on 3 port GE cards with no
trouble, but they are all set to 512/512.
Regards,
Mike
On 5/4/10 2:03 PM, Dominic domi...@broadconnect.ca wrote:
Hi Everyone:
I
On 4/14/10 8:15 PM, Jay Nakamura zeusda...@gmail.com wrote:
If you're email is your AS, then it looks like you have Qwest and a more
local provider.
I love how people on these lists casually deduces someone's AS and
upstream from the mail header and gives more specific advice. Love
it.
-Original Message-
From: cisco-nsp-boun...@puck.nether.net [mailto:cisco-nsp-
boun...@puck.nether.net] On Behalf Of Chris Gotstein
Sent: Wednesday, April 14, 2010 1:04 PM
To: cisco-nsp@puck.nether.net
Subject: [c-nsp] bgp maximum-paths
We are a multi-homed ISP with connections to
On 4/14/10 2:48 PM, Chris Gotstein ch...@uplogon.com wrote:
It's inbound i'm mostly concerned with. I'm taking full routes from
both providers. Paths to both a relatively equal, so the path with the
lowest ID is winning, causing it to be overloaded.
Chris Gotstein, Sr
The ASR's and 7200's aren't NEBS compliant because they have the power
supplies on the back side of the router. I think you're looking at the
GSR's, CSR's or 7600's.
Regards,
Mike
--
Michael K. Smith - CISSP, GSEC, GISP
Chief Technical Officer - Adhost Internet LLC mksm...@adhost.com
w: +1
Answers in line below.
-Original Message-
From: cisco-nsp-boun...@puck.nether.net [mailto:cisco-nsp-
boun...@puck.nether.net] On Behalf Of Rick Coloccia
Sent: Monday, March 29, 2010 12:40 PM
To: 'Cisco-nsp'
Subject: [c-nsp] HSRP, and the router on the other side...
Hi Everyone,
Hello Elmar:
-Original Message-
From: cisco-nsp-boun...@puck.nether.net [mailto:cisco-nsp-
boun...@puck.nether.net] On Behalf Of Elmar K. Bins
Sent: Thursday, March 04, 2010 5:57 AM
To: cisco-nsp@puck.nether.net
Subject: [c-nsp] IPv6, neighbor detection, BGP and my nerves...
-Original Message-
From: Gert Doering [mailto:g...@greenie.muc.de]
Sent: Thursday, March 04, 2010 9:38 AM
To: Michael K. Smith - Adhost
Cc: Elmar K. Bins; cisco-nsp@puck.nether.net
Subject: Re: [c-nsp] IPv6, neighbor detection, BGP and my nerves...
Hi,
On Thu, Mar 04, 2010
Brad:
On 2/9/10 8:07 PM, Brad Hedlund brhed...@cisco.com wrote:
Ray,
My point there, put another way, is that Data Center operating costs are going
to be scrutinized more now than ever before.
They are always scrutinized by those of us supplying those services. I'm
sure there were some
Hello Jonathan:
That should be possible. See
http://www.cisco.com/en/US/products/ps6120/products_tech_note09186a0080734db7.shtml
about Intra-interface communications for the PIX/ASA. I'm not sure if the
same exists for routers, however.
Mike
--
Michael K. Smith - CISSP, GSEC, GISP
Chief
On 2/1/10 12:59 PM, Peter Kranz pkr...@unwiredltd.com wrote:
Currently in our network we use dot1Q trunks to forward end-user/customer
VLANs from Site A to Site B to provide them virtual point-to-point circuits
between data centers without the overhead of some type of VPN tunnel.
However
Hello Ian:
-Original Message-
From: cisco-nsp-boun...@puck.nether.net [mailto:cisco-nsp-
boun...@puck.nether.net] On Behalf Of Gert Doering
Sent: Wednesday, January 13, 2010 1:19 AM
To: Ian Henderson
Cc: cisco-nsp@puck.nether.net
Subject: Re: [c-nsp] DS3 over STM1
Hi,
On Tue,
Hello Scott:
-Original Message-
From: cisco-nsp-boun...@puck.nether.net [mailto:cisco-nsp-
boun...@puck.nether.net] On Behalf Of scott owens
Sent: Thursday, January 07, 2010 7:16 AM
To: cisco-nsp@puck.nether.net
Subject: [c-nsp] Data Center cooling
Hello,
Has anyone looked
Absolutely not. I've got about 100 of them deployed and wanted to
do the same. The VAR's aren't allowed to sell any more PAK's for those
devices. However, by amazing coincidence, they *do* have 5500's for
sale to replace your gear.
Mike
--
Michael K. Smith - CISSP, GSEC, GISP
Chief
-Original Message-
From: cisco-nsp-boun...@puck.nether.net [mailto:cisco-nsp-
boun...@puck.nether.net] On Behalf Of Marcelo Zilio
Sent: Thursday, December 17, 2009 10:04 AM
To: cisco-nsp@puck.nether.net
Subject: [c-nsp] Serial link CTS=down link UP
Hi,
Has anyone seen this in
On 11/11/09 6:03 AM, Jens Link li...@quux.de wrote:
Mark Meijerink mark.meijer...@sara.nl writes:
Is anyone of you using RSA tokens and rancid? If so, please explain how
you make this work. Thanks in advance for your comments.
Friend of mine told me that a combination of a web cam,
Hello:
On 9/23/09 11:58 PM, abs abhishak...@yahoo.com wrote:
Hello all,
I am new to this so please excuse my ignorance.
I am running the following version of IOS: Cisco IOS Software, 2800 Software
(C2800NM-ADVENTERPRISEK9-M), Version 12.4(11)T, RELEASE SOFTWARE (fc2)
I recently made
Top posting since it's so brief.
http://www.radware.com - they have all different manner of conversion
technologies in their product set.
Mike
--
Michael K. Smith - CISSP, GISP
Chief Technical Officer - Adhost Internet LLC mksm...@adhost.com
w: +1 (206) 404-9500 f: +1 (206) 404-9050
PGP: B49A
Hello Dave:
snip
Hello all, first time poster, please be gentle...
I have a client scenario that I can't work out in the lab for a few
days, hoping someone here might already know if it is possible or not.
I have a client with an ASA5505, base license, currently utilizing the
restricted
Hello Joe:
snip
Is there something fundamental I'm missing, here? Why should a
transparent bridge behave differently with IPv4 than it does with
IPv6?
Joe
! cisco bridge 1
cisco 2620 (MPC860) processor (revision 0x102) with 61440K/4096K bytes
of memory.
System image file is
Hello Scott:
That error is something not matching up in the Phase 1 portion. You
should look at the ISAKMP values on both sides to make sure they match.
Including, but not limited to, proposals, session key, lifetime values,
DH Group, etc.
Regards,
Mike
--
Michael K. Smith - CISSP, GISP
Hi Scott:
They will set to the lowest, but it's always a good idea for everything
to match.
Mike
--
Michael K. Smith - CISSP, GISP
Chief Technical Officer - Adhost Internet LLC mksm...@adhost.com
w: +1 (206) 404-9500 f: +1 (206) 404-9050
PGP: B49A DDF5 8611 27F3 08B9 84BB E61E 38C0 (Key ID
proposals don't match.
Mike
--
Michael K. Smith - CISSP, GISP
Chief Technical Officer - Adhost Internet LLC mksm...@adhost.com
w: +1 (206) 404-9500 f: +1 (206) 404-9050
PGP: B49A DDF5 8611 27F3 08B9 84BB E61E 38C0 (Key ID: 0x9A96777D)
-Original Message-
From: cisco-nsp-boun
permit ip 10.18.0.0 255.255.255.0 10.18.15.0
255.255.255.192
I should note that the mask on the remote side for the 10.18.0.0 subnet
is a /20, not a /24.
Regards,
Mike
--
Michael K. Smith - CISSP, GISP
Chief Technical Officer - Adhost Internet LLC mksm...@adhost.com
w: +1 (206) 404-9500 f: +1
Hello Chris:
-Original Message-
From: cisco-nsp-boun...@puck.nether.net
[mailto:cisco-nsp-boun...@puck.nether.net] On Behalf Of
ch...@lavin-llc.com
Sent: Wednesday, September 02, 2009 11:28 AM
To: cisco-nsp@puck.nether.net
Subject: [c-nsp] OT - Dark Fiber
I was curious to know if there
You might also be experiencing a sag, not a spike, where your going below
the rated power input for the supply. These can be as damaging as a spike,
and the surge protectors don't usually catch them - you have to have a line
conditioner in place for that.
Regards,
Mike
On 9/1/09 11:12 AM,
address.
Has anyone ever configured something like this on an ASA? I've always used the
inside addresses for interesting traffic in the ACL. Can I use the static,
outside address in the tunnel?
Regards,
Mike
--
Michael K. Smith - CISSP, GISP
Chief Technical Officer - Adhost Internet LLC
mksm
Hi,
On Thu, Aug 27, 2009 at 10:00:35AM -0700, Michael K. Smith - Adhost
wrote:
ipv6 address v6 address::1/64 anycast
That's cool. How exactly does it work?
I haven't been able to find anything specifically on Cisco's website
about how it really works. Even the tech docs just say
Hello:
Does anyone know what happened to the 12.0S GRP images? The software
navigator only shows PRP images.
Regards,
Mike
--
Michael K. Smith - CISSP, GISP
Chief Technical Officer - Adhost Internet LLC mksm...@adhost.com
w: +1 (206) 404-9500 f: +1 (206) 404-9050
PGP: B49A DDF5 8611 27F3
Hi Mohammad:
-Original Message-
From: cisco-nsp-boun...@puck.nether.net [mailto:cisco-nsp-
boun...@puck.nether.net] On Behalf Of Mohammad Khalil
Sent: Monday, August 10, 2009 12:21 PM
To: cisco-nsp@puck.nether.net
Subject: [c-nsp] IPSEC VPN
hi
i configured the below on GNS3
-Original Message-
From: cisco-nsp-boun...@puck.nether.net [mailto:cisco-nsp-
boun...@puck.nether.net] On Behalf Of Scott Granados
Sent: Friday, August 07, 2009 1:47 PM
To: cisco-nsp@puck.nether.net
Subject: [c-nsp] ASA5520,can't pass traffic over ipsec tunnel between
Cisco client
Add Time Warner to the IPv6 enabled list as well.
Mike
-Original Message-
From: cisco-nsp-boun...@puck.nether.net [mailto:cisco-nsp-
boun...@puck.nether.net] On Behalf Of Jo Rhett
Sent: Thursday, July 30, 2009 11:30 PM
To: Eric Van Tol
Cc: cisco-nsp@puck.nether.net
Subject: Re:
-Original Message-
From: cisco-nsp-boun...@puck.nether.net [mailto:cisco-nsp-
boun...@puck.nether.net] On Behalf Of Scott Granados
Sent: Thursday, July 30, 2009 3:19 PM
To: cisco-nsp@puck.nether.net
Subject: [c-nsp] problem creating a static on Pix
Hi, I'm having the following
Hello Scott:
-Original Message-
From: Scott Granados [mailto:gsgrana...@comcast.net]
Sent: Thursday, July 30, 2009 3:50 PM
To: Michael K. Smith - Adhost; cisco-nsp@puck.nether.net
Subject: Re: [c-nsp] problem creating a static on Pix
Cool, this really helps.
I also have an acl
-Original Message-
From: cisco-nsp-boun...@puck.nether.net [mailto:cisco-nsp-
boun...@puck.nether.net] On Behalf Of Seth Mattinen
Sent: Wednesday, July 29, 2009 11:04 AM
To: Robert VanOrmer
Cc: cisco-nsp@puck.nether.net
Subject: Re: [c-nsp] Humor: Cisco announces end of BGP
Hello:
Hi,
I am at the beginning of building a best practices document for data
centre design. I am wondering if anyone can poiunt me to the right
document that I can start with. I am looking at a Cisco centric
solution.
Following documents are currently being looked at.
Not
On 6/9/09 4:05 PM, m...@adv.gcomm.com.au m...@adv.gcomm.com.au wrote:
Hi,
We are receiving a /24 from one of our upstreams, that we need to
redistribute into our IGP (OSPF), so that all of our cores are aware
that they can reach this /24 primarily through this upstream(Then, if
this
rate is 0 percent (0/5)
However, it shows up in the neighbor statement.
sea-cor00#sho ipv6 nei
IPv6 Address Age Link-layer Addr State
Interface
2001:4970:::6 0 .5e00.0101 REACH
Gi0/0.19
Regards,
Mike
--
Michael K. Smith - CISSP, GISP
Hello Marcelo:
I'm working in a migration of a CheckPoint Firewall to an ASA5520. I
freeze
on a situation that seems ASA cannot reproduce CheckPoint
configuration.
Follow the scenario:
- IP Address X on the Internet access IP Address X1 in the Inside
network
through the X-NAT Address.
snip
Some of the closets in the design are uplinked into distribution layer
closets over Cat5e cable. Nothing exceeds 300 ft, however, I am not sure
how far I can stretch these Async lines to the console ports from the
distribution to access layer switches. Does anyone know how far I can go
with
Justin
[Michael K. Smith - Adhost]
On the ASA you have to do the change in the group-policy settings:
group-policy group-name attributes
split-tunnel-policy tunnelall
Regards,
Mike
___
cisco-nsp mailing list cisco-nsp@puck.nether.net
https
15.49% 15.76% 15.97% 0 IP Input
WS-C3750-48TS 12.2(35)SE2 C3750-ADVIPSERVICESK
According to some old threads this was a bug in some older IOS which was
fixed in 12.2(25)
[Michael K. Smith - Adhost]
Do you have cef enabled?
Mike
outbound traffic be sent to the
default gateway of the 3350
snip
[Michael K. Smith - Adhost]
It doesn't appear that NAT is supported on the 3550, so you would have
to use valid IP's on all of your Layer 3 connections for this to work.
See:
http://www.cisco.com/en/US/products/hw/switches/ps646
that can take place?
Perhaps I'm trying to do something weird that no one else has tried...
[Michael K. Smith - Adhost]
Do you need the tunnel mode ipv6ip on the tunnel interface perhaps?
Regards,
Mike
___
cisco-nsp mailing list cisco-nsp
Hello All:
I just want to make sure I haven't lost my mind. I logged into CCO looking for
12.0S images for the GRP and all I see is PRP images. Has Cisco stopped
supplying images for the GRP-based GSR's?
Regards,
Mike
--
Michael K. Smith - CISSP, GISP
Chief Technical Officer - Adhost
-Original Message-
From: cisco-nsp-boun...@puck.nether.net [mailto:cisco-nsp-
boun...@puck.nether.net] On Behalf Of George Stylianou
Sent: Tuesday, March 17, 2009 4:28 AM
To: cisco-nsp@puck.nether.net
Subject: [c-nsp] Cisco 3750G-24PS Issues with POE
hi,
I have 2 of these
I echo what Lincoln said as loudly as I can without typing in all caps. If you
enable filtering and you get a second path somehow or somewhere (customers can
be very helpful by doing stuff when you're not looking), you will loop up
your entire network. This will happen at 3 am 2 years from
Hello Everyone:
I have two 2800 series routers with 4, clear-channel T-1's between. I'm
running MPPP with the 4 T1's in the bundle. Performance is *awful*. 100
byte packets, 40 ms with 98% delivered. 1500 byte packets, 900 ms latency
with 25% packet loss.
Here are my config snippets from the
Hello Seth:
On 3/6/09 8:12 PM, Seth Mattinen se...@rollernet.us wrote:
Michael K. Smith wrote:
Hello Everyone:
I have two 2800 series routers with 4, clear-channel T-1's between. I'm
running MPPP with the 4 T1's in the bundle. Performance is *awful*. 100
byte packets, 40 ms with 98
Hello Everyone:
Sorry for the post-to-my-own-post. Jeremy Gaddis jer...@evilrouters.net
was kind enough not to out me on the list, but what the hey.
I only had one 64k channel enabled on each T-1.
channel-group 0 timeslots 24
I used to know T-1's, I swear.
Thanks Jeremy!
Regards,
Mike
Hello Jonathan:
You can have multiple subnets defined on the statics from the outside with no
problem, routed as you described. Such as:
static (inside,outside) 5.1.1.1 192.168.0.1
static (inside,outside) 6.2.2.2 192.168.0.2
If you have multiple inside subnets they would have to be on their
Hello Paul:
Paul A wrote:
Hi, I'm having a bgp issue I can't figure out and hoping someone has ran
into this.
I have two routers, router A and router B doing bgp.
Router A is advertising 5 routes to router B, when the session 1st comes
up,
router B has 5 routes received
Hello Dan:
On 1/28/09 5:20 PM, Dan Ciora da...@catalinajazzclub.com wrote:
Hello,
My name is Dan and I just start working with Cisco Router.
We have a router 800 Series that was working perfect. We had to upgrade
the point of sale application, and the new version needs to comunicate
in
Hello:
-Original Message-
From: cisco-nsp-boun...@puck.nether.net [mailto:cisco-nsp-
boun...@puck.nether.net] On Behalf Of luismi
Sent: Tuesday, January 13, 2009 2:56 AM
To: cisco-nsp@puck.nether.net
Subject: [c-nsp] 3750 or 3560?
Hi,
I have a stack based on two 3750 and a
Hello Chris:
-Original Message-
From: cisco-nsp-boun...@puck.nether.net [mailto:cisco-nsp-
boun...@puck.nether.net] On Behalf Of ChrisSerafin
Sent: Tuesday, January 13, 2009 10:35 AM
To: cisco-nsp@puck.nether.net
Subject: [c-nsp] PIX logging
I'm trying to setup a cluster pf PIX
Hello William:
-Original Message-
From: cisco-nsp-boun...@puck.nether.net [mailto:cisco-nsp-
boun...@puck.nether.net] On Behalf Of William
Sent: Monday, January 12, 2009 7:13 AM
To: cisco-nsp@puck.nether.net
Subject: [c-nsp] PIX 6x translation issue
Hi there chaps,
I have a
On 1/9/09 4:37 PM, chloe K chloekcy2...@yahoo.ca wrote:
Yes. you are right
it works now. https works fine
But I can't logon in http as user pix and pw
Do I need to do anything?
snmp works fine. But I can't get CPU info in cacti?
It only shows the interface.
The appropriate line would look like:
copy running-config tftp://192.168.0.10/filename
So, if you want it to be firewall-config
copy running-config tftp://192.168.0.10/firewall-config
If you have a sub-directory on your tftp server like firewalls it would be
copy running-config
Hello:
Does anyone know if IPv6 HSRP support will ever be written into the 12.0S code,
specifically for GSR's?
Regards,
Mike
--
Michael K. Smith - CISSP, GISP
Chief Technical Officer - Adhost Internet LLC
mksm...@adhost.com
w: +1 (206) 404-9500 f: +1 (206) 404-9050
PGP: B49A DDF5 8611 27F3
Hello John:
On 11/30/08 10:32 AM, mm-tech [EMAIL PROTECTED] wrote:
snip
The issue is after I configure the iBGP relationship between Router1 and
Router2: connectivity to the 62.217.X.X/29 subnet on Router1 is lost. It
cannot be pinged anymore from outside. The 91.195.X.X/23 is announced
Hello Randal:
-Original Message-
From: [EMAIL PROTECTED] [mailto:cisco-nsp-
[EMAIL PROTECTED] On Behalf Of randal k
Sent: Friday, November 21, 2008 9:56 AM
To: cisco-nsp@puck.nether.net
Subject: Re: [c-nsp] 3550 CPU Usage IPSec
Excuse my typo, my original answer of IP Input was
Hello Matthew:
On 11/14/08 5:35 PM, Mathew Cameron [EMAIL PROTECTED]
wrote:
Guys
I am trying to design a failsafe solution for a large amount of customers. The
solution is plain ethernet and i was plannning to use 3750-12s switches as a
router. However I read the Data Sheet from cisco
Hello All:
Has anyone ever gotten trunking working between a 3560 and Dell 6248 or
similar? The Dell seems only to support GVRP in comparison to Cisco's VTP.
Since the 3560 doesn't support GVRP I think I'm out of luck, but I'm hoping
someone here has figured out a kludge to get this working.
Hello Leif:
-Original Message-
From: [EMAIL PROTECTED] [mailto:cisco-nsp-
[EMAIL PROTECTED] On Behalf Of Leif Sawyer
Sent: Thursday, November 13, 2008 11:34 AM
To: cisco-nsp
Subject: [c-nsp] 3750 HSRP question
All -
I've got two 3750's acting in an HSRP failover environment
1 - 100 of 151 matches
Mail list logo