Hello:
The one limitation of REP is no spanning tree. So, if you're doing anything
with a switch connected to two switches on the ring and using STP for
redundancy, you'll need to modify your design to use something like a backup
interface.
Regards,
Mike
--
Michael K. Smith - CISSP,
Bromirski
Sent: Monday, November 28, 2011 9:15 AM
To: cisco-nsp@puck.nether.net
Subject: Re: [c-nsp] Applying cisco REP
On 2011-11-28 17:55, Michael K. Smith - Adhost wrote:
Hello:
The one limitation of REP is no spanning tree.
Well, isn't it obvious, as REP was developed to eliminate
a limitation on the number of supported vlans ?
On Nov 28, 2011, at 7:14 PM, Łukasz Bromirski luk...@bromirski.net
wrote:
On 2011-11-28 17:55, Michael K. Smith - Adhost wrote:
Hello:
The one limitation of REP is no spanning tree.
Well, isn't it obvious, as REP was developed to eliminate
If you are ssh'ing to the box, you should zeroize your keys and recreate them.
Not sure if this affects your particular OS, but better to be on the safe side.
Mike
--
Michael K. Smith - CISSP, GSEC, GISP
Chief Technical Officer - Adhost Internet LLC mksm...@adhost.com
w: +1 (206) 404-9500 f:
100 0.0.0.0 0.0.0.0 255
ip ospf authentication-key xxx
ip ospf mtu-ignore
no mop enabled
no mop sysid
end
I've got the MTU high, as we use 1500byte for the PPP + L2TP header.
Thanks,
Alex
From: Michael K. Smith - Adhost [mksm...@adhost.com]
Sent: 29
On 9/13/11 5:08 PM, Justin Krejci jkre...@usinternet.com wrote:
Cisco Folks,
Internet Transit Providers
Provider 1
Provider 2
Provider 3
Provider 4
We have aggregated prefixes (/19's, /18's etc) currently advertised to
providers 1-3 on a single router. We are bringing on provider 4 but want
This is the workaround when you can't put the address on the BVI, which
you can't in some cases.
Mike
On 6/22/11 1:24 AM, Juergen Marenda j...@ilk.net wrote:
Sorry,
but I do not see the difference beetween IPv4 and IPv6 Behaviour here.
As far as i remember you put the LAN-Interface vlan1
and
You can do IPv6 on the 87x series, it's just kludgy. You have to use a
separate /64 for the wireless and attach it to the VLAN interface, while
leaving the IPv4 address on the dot11Radio interface.
If anyone would like to see a working configuration let me know and I'll
send it offlist.
Mike
+, Michael K. Smith - Adhost wrote:
You can do IPv6 on the 87x series, it's just kludgy. You have to use a
separate /64 for the wireless and attach it to the VLAN interface, while
leaving the IPv4 address on the dot11Radio interface.
If anyone would like to see a working configuration let me
You are not NAT'ing from 10.200.200.0/24 which is the address pool for
your VPN clients. If you want to get out over the net you will have to
remove the line below.
Mike
On 6/17/11 2:18 PM, Bill Duffy secur...@4duffy.com wrote:
access-list nonat extended permit ip 10.200.200.0 255.255.255.0
-Original Message-
From: cisco-nsp-boun...@puck.nether.net [mailto:cisco-nsp-
boun...@puck.nether.net] On Behalf Of Md. Jahangir Hossain
Sent: Wednesday, May 18, 2011 2:39 AM
To: cisco-nsp@puck.nether.net
Subject: [c-nsp] traffic not passing between Cisco 3750G and Cisco 7206vxr
On 3/8/11 7:59 PM, jack daniels jckdaniel...@gmail.com wrote:
Hi guys,
If I have
Vlan100 , Vlan 2 , Vlan 3 -Trunk Dot1QCisco
3550 Switch1 SwitchA
Vlan 100 is native vlan .While frame goes out to SwitchA from
Switch1, I want to tag the frames of native vlan
Do you have:
global (outside) 1 interface
or similar?
Mike
--
Michael K. Smith - CISSP, GSEC, GISP
Chief Technical Officer - Adhost Internet LLC mksm...@adhost.com
w: +1 (206) 404-9500 f: +1 (206) 404-9050
PGP: B49A DDF5 8611 27F3 08B9 84BB E61E 38C0 (Key ID: 0x9A96777D)
-Original
-Original Message-
From: cisco-nsp-boun...@puck.nether.net [mailto:cisco-nsp-
boun...@puck.nether.net] On Behalf Of David Kotlerewsky
Sent: Monday, January 31, 2011 9:08 AM
To: cisco-nsp@puck.nether.net
Subject: Re: [c-nsp] Router/switch recommendations for colocation
Sooo, does
you suggest here?
David.
On Mon, Jan 31, 2011 at 9:24 AM, Michael K. Smith - Adhost
mksm...@adhost.commailto:mksm...@adhost.com wrote:
-Original Message-
From:
cisco-nsp-boun...@puck.nether.netmailto:cisco-nsp-boun...@puck.nether.net
[mailto:cisco-nsp-mailto:cisco-nsp-
boun
, January 31, 2011 11:02 AM
To: Michael K. Smith - Adhost
Cc: cisco-nsp@puck.nether.net
Subject: Re: [c-nsp] Router/switch recommendations for colocation
I'll agree that folks certainly don't follow the BGP-advertisement
best-practices, but some of the stuff you see in IPv6 advertisements today
Hello All:
We had a GSR with the GRP-B fall over this morning when we brought up a 3rd
transit (full table) connection on the device with an Out of Memory error. We
are running 3-port Gig cards with full memory and the GRP as the base.
Would upgrading to a PRP with full RAM alleviate this
Hello Tim:
On Dec 15, 2010, at 1:12 AM, Tim Vollebregt wrote:
Hi all,
Just having a small question.
For a customer solution we want to mix an ASA5550 with an ASA5520.
Is it possible to have the devices in a HA/failover pair where the 5550 will
be forced to be primary? I can't find
Have you tried setting everything to auto negotiate? Most new switches seem to
do better if you don't hard set the duplex on a GigE link.
Mike
--
Michael K. Smith - CISSP, GSEC, GISP
Chief Technical Officer - Adhost Internet LLC mksm...@adhost.com
w: +1 (206) 404-9500 f: +1 (206) 404-9050
PGP:
Do you have the /24 actually announced or is this just for the test? I ask
because I use the tie-down routes for my /20's but then only have more specific
routes in my internal table, so that the tie-down is only invoked when there is
a catastrophic failure. The tiedown won't work, as you
Are you having to reduce BGP usage because your processor is pegged all the
time with BGP processes (scanner, etc.) or because it spikes? The processor is
supposed to spike while it's doing it's updates. Here's a GSR's output while
scanning.
CPU utilization for five seconds: 99%/0%; one
Hey Deric:
-Original Message-
From: Deric Kwok [mailto:deric.kwok2...@gmail.com]
Sent: Wednesday, October 27, 2010 3:45 PM
To: Michael K. Smith - Adhost; tn...@internode.com.au
Cc: Cisco Network Service Providers
Subject: Re: [c-nsp] pixhelp
Hi
The verion is Cisco PIX
Here is the ITU 100 GHZ grid.
http://www.telecomengineering.com/downloads/DWDM%20ITU%20Table%20-%20100
%20GHz.pdf
ITU 52 is 35.82. Whether or not it will work at .92 is moot, IMO. I
would tell your vendor to give you optics that follow the ITU grid. .92
doesn't show up anywhere in the ITU
Hello:
If you are being asked for a username and password that means the PIX
has been configured previously with that information. A config-less PIX
will just show a ciscopix prompt and have no username and password.
Check out
If I understand you correctly you are trying to ping from a host on your
network, not the directly connected router? If you haven't turned up
BGP yet the return traffic is going to try to go back through the L3
network to your network because it's not yet receiving the
directly-connected route.
One other thing. Do you have an rACL that is blocking ICMP return traffic to
your interface IP?
Mike
--
Michael K. Smith - CISSP, GSEC, GISP
Chief Technical Officer - Adhost Internet LLC mksm...@adhost.com
w: +1 (206) 404-9500 f: +1 (206) 404-9050
PGP: B49A DDF5 8611 27F3 08B9 84BB E61E 38C0
Hello Mark:
-Original Message-
From: cisco-nsp-boun...@puck.nether.net [mailto:cisco-nsp-
boun...@puck.nether.net] On Behalf Of Mark Tech
Sent: Wednesday, August 25, 2010 1:06 PM
To: cisco-nsp@puck.nether.net
Subject: [c-nsp] Router 2 factor authentication
Hi
I am looking for a
Hello Ben:
-Original Message-
From: cisco-nsp-boun...@puck.nether.net [mailto:cisco-nsp-
boun...@puck.nether.net] On Behalf Of Ben Steele
Sent: Wednesday, August 25, 2010 5:42 PM
To: Mark Tech
Cc: cisco-nsp@puck.nether.net
Subject: Re: [c-nsp] Router 2 factor authentication
Out
Hello Jason:
If you save your configuration to a tftp server it will show the
password in the clear. There may be another way but I've not found it.
Mike
--
Michael K. Smith - CISSP, GSEC, GISP
Chief Technical Officer - Adhost Internet LLC mksm...@adhost.com
w: +1 (206) 404-9500 f: +1 (206)
You might want to try clear ip route all
Mike
--
Michael K. Smith - CISSP, GSEC, GISP
Chief Technical Officer - Adhost Internet LLC mksm...@adhost.com
w: +1 (206) 404-9500 f: +1 (206) 404-9050
PGP: B49A DDF5 8611 27F3 08B9 84BB E61E 38C0 (Key ID: 0x9A96777D)
-Original Message-
From:
It looks like you have a physical-layer problem, given the number of
framing errors in the output you provided.
Mike
--
Michael K. Smith - CISSP, GSEC, GISP
Chief Technical Officer - Adhost Internet LLC mksm...@adhost.com
w: +1 (206) 404-9500 f: +1 (206) 404-9050
PGP: B49A DDF5 8611 27F3 08B9
)
-Original Message-
From: Troy Beisigl [mailto:t...@i2bnetworks.com]
Sent: Tuesday, July 06, 2010 11:39 AM
To: Michael K. Smith - Adhost
Cc: cisco-nsp@puck.nether.net
Subject: Re: [c-nsp] high cpu on VIP in 7507
Actually, we had a bad PA that I replaced, but did not clear
Message-
From: Troy Beisigl [mailto:t...@i2bnetworks.com]
Sent: Tuesday, July 06, 2010 11:51 AM
To: Michael K. Smith - Adhost
Cc: cisco-nsp@puck.nether.net
Subject: Re: [c-nsp] high cpu on VIP in 7507
Yep. We saw this with another VIP2/50 in the chassis as well that had
a 100BaseTX card
I don't think you can get traffic from VPN clients to route through the
tunnel back out to the Internet. On the ASA you can use the
'same-security-traffic permit intra-interface' command. On the older
devices, all you can do is make sure that the end user can't surf the
Internet while connected
-Original Message-
From: cisco-nsp-boun...@puck.nether.net [mailto:cisco-nsp-
boun...@puck.nether.net] On Behalf Of Chris Gotstein
Sent: Wednesday, April 14, 2010 1:04 PM
To: cisco-nsp@puck.nether.net
Subject: [c-nsp] bgp maximum-paths
We are a multi-homed ISP with connections to
The ASR's and 7200's aren't NEBS compliant because they have the power
supplies on the back side of the router. I think you're looking at the
GSR's, CSR's or 7600's.
Regards,
Mike
--
Michael K. Smith - CISSP, GSEC, GISP
Chief Technical Officer - Adhost Internet LLC mksm...@adhost.com
w: +1
Answers in line below.
-Original Message-
From: cisco-nsp-boun...@puck.nether.net [mailto:cisco-nsp-
boun...@puck.nether.net] On Behalf Of Rick Coloccia
Sent: Monday, March 29, 2010 12:40 PM
To: 'Cisco-nsp'
Subject: [c-nsp] HSRP, and the router on the other side...
Hi Everyone,
Hello Elmar:
-Original Message-
From: cisco-nsp-boun...@puck.nether.net [mailto:cisco-nsp-
boun...@puck.nether.net] On Behalf Of Elmar K. Bins
Sent: Thursday, March 04, 2010 5:57 AM
To: cisco-nsp@puck.nether.net
Subject: [c-nsp] IPv6, neighbor detection, BGP and my nerves...
-Original Message-
From: Gert Doering [mailto:g...@greenie.muc.de]
Sent: Thursday, March 04, 2010 9:38 AM
To: Michael K. Smith - Adhost
Cc: Elmar K. Bins; cisco-nsp@puck.nether.net
Subject: Re: [c-nsp] IPv6, neighbor detection, BGP and my nerves...
Hi,
On Thu, Mar 04, 2010
Hello Jonathan:
That should be possible. See
http://www.cisco.com/en/US/products/ps6120/products_tech_note09186a0080734db7.shtml
about Intra-interface communications for the PIX/ASA. I'm not sure if the
same exists for routers, however.
Mike
--
Michael K. Smith - CISSP, GSEC, GISP
Chief
Hello Ian:
-Original Message-
From: cisco-nsp-boun...@puck.nether.net [mailto:cisco-nsp-
boun...@puck.nether.net] On Behalf Of Gert Doering
Sent: Wednesday, January 13, 2010 1:19 AM
To: Ian Henderson
Cc: cisco-nsp@puck.nether.net
Subject: Re: [c-nsp] DS3 over STM1
Hi,
On Tue,
Hello Scott:
-Original Message-
From: cisco-nsp-boun...@puck.nether.net [mailto:cisco-nsp-
boun...@puck.nether.net] On Behalf Of scott owens
Sent: Thursday, January 07, 2010 7:16 AM
To: cisco-nsp@puck.nether.net
Subject: [c-nsp] Data Center cooling
Hello,
Has anyone looked
Absolutely not. I've got about 100 of them deployed and wanted to
do the same. The VAR's aren't allowed to sell any more PAK's for those
devices. However, by amazing coincidence, they *do* have 5500's for
sale to replace your gear.
Mike
--
Michael K. Smith - CISSP, GSEC, GISP
Chief
-Original Message-
From: cisco-nsp-boun...@puck.nether.net [mailto:cisco-nsp-
boun...@puck.nether.net] On Behalf Of Marcelo Zilio
Sent: Thursday, December 17, 2009 10:04 AM
To: cisco-nsp@puck.nether.net
Subject: [c-nsp] Serial link CTS=down link UP
Hi,
Has anyone seen this in
Top posting since it's so brief.
http://www.radware.com - they have all different manner of conversion
technologies in their product set.
Mike
--
Michael K. Smith - CISSP, GISP
Chief Technical Officer - Adhost Internet LLC mksm...@adhost.com
w: +1 (206) 404-9500 f: +1 (206) 404-9050
PGP: B49A
Hello Dave:
snip
Hello all, first time poster, please be gentle...
I have a client scenario that I can't work out in the lab for a few
days, hoping someone here might already know if it is possible or not.
I have a client with an ASA5505, base license, currently utilizing the
restricted
Hello Joe:
snip
Is there something fundamental I'm missing, here? Why should a
transparent bridge behave differently with IPv4 than it does with
IPv6?
Joe
! cisco bridge 1
cisco 2620 (MPC860) processor (revision 0x102) with 61440K/4096K bytes
of memory.
System image file is
To: Michael K. Smith - Adhost
Cc: cisco-nsp@puck.nether.net
Subject: Re: [c-nsp] ASA5520 to Pix can't bring up IPSEC L2L tunnel
Hi Mike and others, still no love. I wanted to confirm I made the NAT
entries properly. I used the example on Cisco.com for the ASA and l2l
+
clients
: 0x9A96777D)
-Original Message-
From: Scott Granados [mailto:gsgrana...@comcast.net]
Sent: Thursday, September 03, 2009 12:09 PM
To: Michael K. Smith - Adhost
Cc: cisco-nsp@puck.nether.net
Subject: Re: [c-nsp] ASA5520 to Pix can't bring up IPSEC L2L tunnel
Ah interesting. So
Hello Ryan:
Without the no-nat on the ASA side it will try to NAT the traffic before
putting it down the tunnel. So, you're remove side is looking for the
10. Addresses, but it's going to see traffic coming from the static
outside, NAT'd address. Thus, the tunnel won't come up because your
(206) 404-9050
PGP: B49A DDF5 8611 27F3 08B9 84BB E61E 38C0 (Key ID: 0x9A96777D)
-Original Message-
From: Scott Granados [mailto:gsgrana...@comcast.net]
Sent: Wednesday, September 02, 2009 10:44 AM
To: Michael K. Smith - Adhost; Ryan West; cisco-nsp@puck.nether.net
Subject: Re: [c-nsp
Hello Chris:
-Original Message-
From: cisco-nsp-boun...@puck.nether.net
[mailto:cisco-nsp-boun...@puck.nether.net] On Behalf Of
ch...@lavin-llc.com
Sent: Wednesday, September 02, 2009 11:28 AM
To: cisco-nsp@puck.nether.net
Subject: [c-nsp] OT - Dark Fiber
I was curious to know if there
Hello All:
I will be configuring an ASA where the remote-end requirement is that the
address presented to them is a globally unique (non-RFC 1918) address. I
*think* this means I have to double NAT. So, instead of having the 192.168.x.x
address presented over the tunnel, it has to be a real
Hi,
On Thu, Aug 27, 2009 at 10:00:35AM -0700, Michael K. Smith - Adhost
wrote:
ipv6 address v6 address::1/64 anycast
That's cool. How exactly does it work?
I haven't been able to find anything specifically on Cisco's website
about how it really works. Even the tech docs just say
Hello:
Does anyone know what happened to the 12.0S GRP images? The software
navigator only shows PRP images.
Regards,
Mike
--
Michael K. Smith - CISSP, GISP
Chief Technical Officer - Adhost Internet LLC mksm...@adhost.com
w: +1 (206) 404-9500 f: +1 (206) 404-9050
PGP: B49A DDF5 8611 27F3
Hi Mohammad:
-Original Message-
From: cisco-nsp-boun...@puck.nether.net [mailto:cisco-nsp-
boun...@puck.nether.net] On Behalf Of Mohammad Khalil
Sent: Monday, August 10, 2009 12:21 PM
To: cisco-nsp@puck.nether.net
Subject: [c-nsp] IPSEC VPN
hi
i configured the below on GNS3
-Original Message-
From: cisco-nsp-boun...@puck.nether.net [mailto:cisco-nsp-
boun...@puck.nether.net] On Behalf Of Scott Granados
Sent: Friday, August 07, 2009 1:47 PM
To: cisco-nsp@puck.nether.net
Subject: [c-nsp] ASA5520,can't pass traffic over ipsec tunnel between
Cisco client
Add Time Warner to the IPv6 enabled list as well.
Mike
-Original Message-
From: cisco-nsp-boun...@puck.nether.net [mailto:cisco-nsp-
boun...@puck.nether.net] On Behalf Of Jo Rhett
Sent: Thursday, July 30, 2009 11:30 PM
To: Eric Van Tol
Cc: cisco-nsp@puck.nether.net
Subject: Re:
-Original Message-
From: cisco-nsp-boun...@puck.nether.net [mailto:cisco-nsp-
boun...@puck.nether.net] On Behalf Of Scott Granados
Sent: Thursday, July 30, 2009 3:19 PM
To: cisco-nsp@puck.nether.net
Subject: [c-nsp] problem creating a static on Pix
Hi, I'm having the following
Hello Scott:
-Original Message-
From: Scott Granados [mailto:gsgrana...@comcast.net]
Sent: Thursday, July 30, 2009 3:50 PM
To: Michael K. Smith - Adhost; cisco-nsp@puck.nether.net
Subject: Re: [c-nsp] problem creating a static on Pix
Cool, this really helps.
I also have an acl
-Original Message-
From: cisco-nsp-boun...@puck.nether.net [mailto:cisco-nsp-
boun...@puck.nether.net] On Behalf Of Seth Mattinen
Sent: Wednesday, July 29, 2009 11:04 AM
To: Robert VanOrmer
Cc: cisco-nsp@puck.nether.net
Subject: Re: [c-nsp] Humor: Cisco announces end of BGP
Hello:
Hi,
I am at the beginning of building a best practices document for data
centre design. I am wondering if anyone can poiunt me to the right
document that I can start with. I am looking at a Cisco centric
solution.
Following documents are currently being looked at.
Not
I've never seen this and I'd love to know what it is. This is trying to
ping a CARP interface on set of PF boxes.
Cisco GSR 12.0(32)S8
sea-cor00#ping ipv6 2001:4970:::6
Type escape sequence to abort.
Sending 5, 100-byte ICMP Echos to 2001:4970:::6, timeout is 2
seconds:
T
Success
Hello Marcelo:
I'm working in a migration of a CheckPoint Firewall to an ASA5520. I
freeze
on a situation that seems ASA cannot reproduce CheckPoint
configuration.
Follow the scenario:
- IP Address X on the Internet access IP Address X1 in the Inside
network
through the X-NAT Address.
snip
Some of the closets in the design are uplinked into distribution layer
closets over Cat5e cable. Nothing exceeds 300 ft, however, I am not sure
how far I can stretch these Async lines to the console ports from the
distribution to access layer switches. Does anyone know how far I can go
with
Justin
[Michael K. Smith - Adhost]
On the ASA you have to do the change in the group-policy settings:
group-policy group-name attributes
split-tunnel-policy tunnelall
Regards,
Mike
___
cisco-nsp mailing list cisco-nsp@puck.nether.net
https
15.49% 15.76% 15.97% 0 IP Input
WS-C3750-48TS 12.2(35)SE2 C3750-ADVIPSERVICESK
According to some old threads this was a bug in some older IOS which was
fixed in 12.2(25)
[Michael K. Smith - Adhost]
Do you have cef enabled?
Mike
outbound traffic be sent to the
default gateway of the 3350
snip
[Michael K. Smith - Adhost]
It doesn't appear that NAT is supported on the 3550, so you would have
to use valid IP's on all of your Layer 3 connections for this to work.
See:
http://www.cisco.com/en/US/products/hw/switches/ps646
that can take place?
Perhaps I'm trying to do something weird that no one else has tried...
[Michael K. Smith - Adhost]
Do you need the tunnel mode ipv6ip on the tunnel interface perhaps?
Regards,
Mike
___
cisco-nsp mailing list cisco-nsp
Hello All:
I just want to make sure I haven't lost my mind. I logged into CCO looking for
12.0S images for the GRP and all I see is PRP images. Has Cisco stopped
supplying images for the GRP-based GSR's?
Regards,
Mike
--
Michael K. Smith - CISSP, GISP
Chief Technical Officer - Adhost
-Original Message-
From: cisco-nsp-boun...@puck.nether.net [mailto:cisco-nsp-
boun...@puck.nether.net] On Behalf Of George Stylianou
Sent: Tuesday, March 17, 2009 4:28 AM
To: cisco-nsp@puck.nether.net
Subject: [c-nsp] Cisco 3750G-24PS Issues with POE
hi,
I have 2 of these
I echo what Lincoln said as loudly as I can without typing in all caps. If you
enable filtering and you get a second path somehow or somewhere (customers can
be very helpful by doing stuff when you're not looking), you will loop up
your entire network. This will happen at 3 am 2 years from
Hello Jonathan:
You can have multiple subnets defined on the statics from the outside with no
problem, routed as you described. Such as:
static (inside,outside) 5.1.1.1 192.168.0.1
static (inside,outside) 6.2.2.2 192.168.0.2
If you have multiple inside subnets they would have to be on their
Hello Paul:
Paul A wrote:
Hi, I'm having a bgp issue I can't figure out and hoping someone has ran
into this.
I have two routers, router A and router B doing bgp.
Router A is advertising 5 routes to router B, when the session 1st comes
up,
router B has 5 routes received
Hello:
-Original Message-
From: cisco-nsp-boun...@puck.nether.net [mailto:cisco-nsp-
boun...@puck.nether.net] On Behalf Of luismi
Sent: Tuesday, January 13, 2009 2:56 AM
To: cisco-nsp@puck.nether.net
Subject: [c-nsp] 3750 or 3560?
Hi,
I have a stack based on two 3750 and a
Hello Chris:
-Original Message-
From: cisco-nsp-boun...@puck.nether.net [mailto:cisco-nsp-
boun...@puck.nether.net] On Behalf Of ChrisSerafin
Sent: Tuesday, January 13, 2009 10:35 AM
To: cisco-nsp@puck.nether.net
Subject: [c-nsp] PIX logging
I'm trying to setup a cluster pf PIX
Hello William:
-Original Message-
From: cisco-nsp-boun...@puck.nether.net [mailto:cisco-nsp-
boun...@puck.nether.net] On Behalf Of William
Sent: Monday, January 12, 2009 7:13 AM
To: cisco-nsp@puck.nether.net
Subject: [c-nsp] PIX 6x translation issue
Hi there chaps,
I have a
The appropriate line would look like:
copy running-config tftp://192.168.0.10/filename
So, if you want it to be firewall-config
copy running-config tftp://192.168.0.10/firewall-config
If you have a sub-directory on your tftp server like firewalls it would be
copy running-config
Hello:
Does anyone know if IPv6 HSRP support will ever be written into the 12.0S code,
specifically for GSR's?
Regards,
Mike
--
Michael K. Smith - CISSP, GISP
Chief Technical Officer - Adhost Internet LLC
mksm...@adhost.com
w: +1 (206) 404-9500 f: +1 (206) 404-9050
PGP: B49A DDF5 8611 27F3
Hello Randal:
-Original Message-
From: [EMAIL PROTECTED] [mailto:cisco-nsp-
[EMAIL PROTECTED] On Behalf Of randal k
Sent: Friday, November 21, 2008 9:56 AM
To: cisco-nsp@puck.nether.net
Subject: Re: [c-nsp] 3550 CPU Usage IPSec
Excuse my typo, my original answer of IP Input was
Hello All:
Has anyone ever gotten trunking working between a 3560 and Dell 6248 or
similar? The Dell seems only to support GVRP in comparison to Cisco's VTP.
Since the 3560 doesn't support GVRP I think I'm out of luck, but I'm hoping
someone here has figured out a kludge to get this working.
Hello Leif:
-Original Message-
From: [EMAIL PROTECTED] [mailto:cisco-nsp-
[EMAIL PROTECTED] On Behalf Of Leif Sawyer
Sent: Thursday, November 13, 2008 11:34 AM
To: cisco-nsp
Subject: [c-nsp] 3750 HSRP question
All -
I've got two 3750's acting in an HSRP failover environment
Hello Chris:
I have 2 SAN boxes and several servers, in addition to the rest of the data
center's servers to plan a network upgrade for. We are currently using a 4006
w/Sup II running CatOS 8.4(11)GLX and several older 2950/3500/3550 series
switches.
All of the equipment is getting older
Hello:
-Original Message-
From: [EMAIL PROTECTED] [mailto:cisco-nsp-
[EMAIL PROTECTED] On Behalf Of JR Colmenares
Sent: Tuesday, October 21, 2008 8:07 PM
To: cisco-nsp@puck.nether.net
Subject: [c-nsp] Cannot initiate tunnel (ASA to PIX )
On a L2L tunnel CompanyA can initiate the
Hi Matt:
I am having trouble finding specific information about the GigE ports
on the OSM-2OC12 card. Are those regular GigE ports or the GE-WAN
ports like one would find on the OSM-4GBIC card?
Check out
Hello Alex:
-Original Message-
From: [EMAIL PROTECTED] [mailto:cisco-nsp-
[EMAIL PROTECTED] On Behalf Of Wilkinson, Alex
Sent: Tuesday, September 23, 2008 6:07 AM
To: cisco-nsp@puck.nether.net
Subject: Re: [c-nsp] debugging all incoming traffic on an interface
0n Mon, Sep 22,
Hi,
My company recently bought 202[dot]90[dot]194[dot]0/23 IPs, and since we start
using this IPs, I can't access several site on the net. When check through
robtex.com, a company in India seem to still include these IPs into their RADB
database. I can't email them, browse their sites, maybe
Hello Dalton:
Here are a couple of ideas.
1) Change:
isakmp key address x.x.x.x netmask 255.255.255.255
to
isakmp key address x.x.x.x netmask 255.255.255.255 no-xauth
no-config-mode
2) You might want to add:
isakmp nat-traversal 20
3) I'm assuming you have a LOCAL
Hello Marc:
ip access-list extended DefaultrouteTunnel
permit x.x.x.x 0.0.0.255 10.100.100.0 0.0.0.255
permit y.y.y.y 0.0.0.255 10.100.100.0 0.0.0.255
So that would be
ip access-list extended DefaultrouteWithoutListedNetsTunnel
deny ip 192.168.8.0 0.0.0.255 10.2.60.0 0.0.0.255
Hello Marc:
ip access-list extended DefaultrouteWithoutListedNetsTunnel
deny ip 192.168.8.0 0.0.0.255 10.2.60.0 0.0.0.255
permit ip any 10.2.60.0 0.0.0.255
But packets to 192.168.8.1 still go out through the tunnel.
According to your first configuration email the ACL you
Hello Tom:
Here is a configuration snippet from 12.1 which *should* work, provided you
have the right train, etc. etc.
http://www.cisco.com/en/US/tech/tk583/tk372/technologies_configuration_example09186a00800ef7ba.shtml
Regards,
Mike
-Original Message-
From: [EMAIL PROTECTED]
Hello Steven:
-Original Message-
From: [EMAIL PROTECTED] [mailto:cisco-nsp-
[EMAIL PROTECTED] On Behalf Of Steven Pfister
Sent: Wednesday, July 23, 2008 11:35 AM
To: cisco-nsp@puck.nether.net
Subject: [c-nsp] Renaming interfaces on a PIX 525
We have a pair of PIX 525s
Hello Julien:
-Original Message-
From: [EMAIL PROTECTED] [mailto:cisco-nsp-
[EMAIL PROTECTED] On Behalf Of julien leroiso
Sent: Friday, June 06, 2008 7:19 AM
To: cisco-nsp@puck.nether.net
Subject: [c-nsp] EnableLocalLAN don't work
Hello,
I have a cisco 871 as VPN end-point.
I
Hello Richey:
-Original Message-
From: [EMAIL PROTECTED] [mailto:cisco-nsp-
[EMAIL PROTECTED] On Behalf Of Richey
Sent: Tuesday, June 03, 2008 4:38 PM
To: cisco-nsp@puck.nether.net
Subject: [c-nsp] Giving customers access to your gear.
I've got a customer with a T1. They have
Hello Jerry:
---
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]
Sent: Tuesday, May 13, 2008 8:58 AM
To: Michael K. Smith - Adhost
Cc: cisco-nsp@puck.nether.net
Subject: Re:[c-nsp] SPAN for POS?
Yes, use the switchport capture feature
Hello Gregori:
-Original Message-
From: [EMAIL PROTECTED] [mailto:cisco-nsp-
[EMAIL PROTECTED] On Behalf Of Gregori Parker
Sent: Monday, May 12, 2008 10:35 AM
To: cisco-nsp@puck.nether.net
Subject: Re: [c-nsp] PIX questions
I was hoping to see an answer to this, as I ran into
Hello All:
Is it possible to have a pair of failover ASA 5510's participate in spanning
tree across multiple inside interfaces so I can connection them up to redundant
back-end switches. Something like this (pardon the ASCII art).
5510 5510
|\ /|
| \ / |
| \ /
Hello Justin:
I am responding to your original post after reading your comments about owning
the fiber. My comments are in line below.
So I'm working on a solution involving a pair of 15454s to transport
numerous GigE links between a pair of sites over diverse paths and
still
give us a 10G
Hello Justin:
More in line below.
-Original Message-
From: Justin Shore [mailto:[EMAIL PROTECTED]
Sent: Monday, April 07, 2008 1:26 PM
To: Michael K. Smith - Adhost
Cc: Cisco-nsp
Subject: Re: [c-nsp] ONSs, DWDM SFPs, and the 3560/3750E
Many thanks for the reply, Michael
Hello All:
-Original Message-
From: [EMAIL PROTECTED] [mailto:cisco-nsp-
[EMAIL PROTECTED] On Behalf Of Bruce Pinsky
Sent: Tuesday, March 25, 2008 3:54 PM
To: Wayne Lee
Cc: cisco-nsp@puck.nether.net
Subject: Re: [c-nsp] bgp transit, selecting providers based on source
IP
* PGP
1 - 100 of 126 matches
Mail list logo