Hello,
I would like to ask you how to define a new radius attribute on a Cisco NAS
(Cisco 3825).
We have already define the attribute on our AAA server, but we don't know how
to configure the Cisco NAS for this new attribute.
Please could you help us to solve this ?
Thanks.
Best regards
Tj
On Wed, 2009-04-29 at 14:57 -0500, Jason Link wrote:
With an ASA running a redundant physical interface pair for the Inside
interface, each link connected to a separate switch which is connected
to a separate router, and everything running EIGRP, I get multiple
routes (2) to the same
Hello,
I have enabled traffic engineering support in my domain. My setup is like.
(Cisco)--Gig---(Juniper1)---FE---(Juniper2). When I see the
entries at Cisco in the TE-DB that were built from LSAs sent by Juniper2, it
shows me igp metric as IGP metric:invalid. I am unable
hey all,
I am looking for a free software for security management
any suggestions ?
_
Drag n’ drop—Get easy photo sharing with Windows Live™ Photos.
http://www.microsoft.com/windows/windowslive/products/photos.aspx
Charles Wyble char...@thewybles.com writes:
Last time I looked into this (mid last year) the Linux bits weren't
very mature. Not sure how Mikrotik or Vyatta have changed it.
Hopefully they have made things better.
Mikrotik has done their own MPLS/VPLS implementation. You can't really
use
Mohammad,
You mean open source ?
PFsense, IPCop, Untangle, ect
Unfortunately this list is not on what you need.
rgs
a. r. isnaini rangkayo sutan
Mohammad Khalil wrote:
hey all,
I am looking for a free software for security management
any suggestions ?
On Thu, 30 Apr 2009 01:35:40 -0300, Rubens Kuhl wrote:
Have anynone done any testing interoperating Cisco MPLS (Cat 6k or 7600
families) with Mikrotik (which is just packaging of MPLS Linux) ? I'm
specially curious about EoMPLS and H-VPLS interoperating, but basic
LDP/RSVP/MPLS-TE/MPLS-FRR
Hi Jay,
Unfortunately, shaping is an outbound feature only. We work round this by
implementing outbound QoS on the CE device on the other end of the link.
As far as I know, there are few, if any, software-based queuing mechanisms to
deal with inbound traffic. Once traffic has arrived on an
On Wed, Apr 29, 2009 at 04:23:48PM -0400, Jeff Kell wrote:
Quick question... the new[ish] Catalyst 2975 switch looks like a
2960+stacking. Do these things stack with 3750s / 3750Es ? They show
up as another blade on the stack?
We've been told that it's the usual StackWise, but without the
Thanks for that.
I ran clear running-config
Then write memory
Then reboot
Default username is admin and password is system in case anyone
needs this info.
Cheers,
Mark
-Original Message-
From: Don Nightingale [mailto:dnigh...@wellesley.edu]
Sent: 29 April 2009 18:01
To: Kelsay,
Since we use BGP as peering to our ISPs, and don't use BGP internally in our
core, I haven't used MED or local_pref much. However, we have two routers
connected to another ASN (not via the internet) and I'm trying to influence
their return path since we are getting asynchronous routing. I'm
We have a selection of ZR modules (XENPAK-10GB-ZR) in 6500s that we
are using to drive some links at 10Gbps and I have recently noticed
that all receive values (as reported via the sh int te x/y trans
command) are lower than what Cisco specify as the minimum allowed
values for those
On Thu, Apr 30, 2009 at 03:37:44PM +0100, Michael Robson wrote:
We have a selection of ZR modules (XENPAK-10GB-ZR) in 6500s that we
are using to drive some links at 10Gbps and I have recently noticed
that all receive values (as reported via the sh int te x/y trans
command) are lower than
Jon Lewis wrote:
On Wed, 29 Apr 2009, Jose wrote:
From my understanding of this feature, it would seem as if the RPF
check was working in strict mode vs loose mode.
http://www.cisco.com/en/US/docs/switches/lan/catalyst6500/ios/12.2SXF/hybrid/release/notes/ol_4563.html#wp210802
I've known
On Apr 30, 2009, at 9:37 AM, Michael Robson wrote:
We have a selection of ZR modules (XENPAK-10GB-ZR)
For these modules, none of them are transmitting at anything like
their maximum of +4.0dBm (Cisco's figures for the maximum transmit
power), they are in fact transmitting between +1.9dBm
All,
We have a chassi with 2x sup720-3B and running SXI that, for the second
time, appears to have lost the standby SUP to the above error messages.
The first time, the pattern was:
Mar 17 17:24:37.378 GMT: %XDR-6-XDRIPCNOTIFY: Message not sent to slot
6/0 (6) because of
IPC error timeout.
I'm going to re-open the TAC case and see what they say, but I was
wondering if anyone had come across this. There are some
SR 611339993 opened
___
cisco-nsp mailing list cisco-nsp@puck.nether.net
https://puck.nether.net/mailman/listinfo/cisco-nsp
Unfortunately, EIGRP on the ASA doesn't appear to support the max-paths
command.
Both physical interfaces are in the same VLAN, connected to different
switches that are trunked together...and I understand that only one
switchport should be active, and it is shown as such when doing a sh
int
Hello,
I have five 827 adsl routers in front of a 2821 for internet access.
The 2821 is doing cef load sharing:
ip cef load-sharing algorithm include-ports source destination
Browsing the internet works great, but it seems like large downloads
timeout often, but not all of the time. When i
Afternoon all,
I've been asked to look into the capabilities of the Cisco IOS feature
'Per-Session Shaping and Queuing' and I am looking for some expertise
from anyone who has utilized this feature.
I would like to know if it is possible to shape an SSS session that is
forwarded on to
On Thu, 2009-04-30 at 09:31 -0400, Matthew Huff wrote:
...
neighbor 10.151.0.82 route-map setMED-LOW out
neighbor 10.151.0.82 filter-list 10 out
route-map setMED-LOW permit 10
match ip address routemap_ecn
set metric 200
ip access-list standard routemap_ecn
permit 129.77.44.0
I've
Hello,
¿Does Cisco ASA5505 support 4 network segments, one inside, one outside and two
DMZs?
¿Does Cisco ASA5505 support all ASA5510, 5520... functionalities, like for
example OSPF?
Thanks
Jonathan
___
cisco-nsp mailing list
On Thu, 2009-04-30 at 11:39 -0500, Jason Link wrote:
Additionally, I'm not sure HSRP would help me in a situation like this,
since the way I understand it the ASA will still learn both routers
real IP address and will form a neighbor to each one. I would like to
avoid calling out the neighbor
On Thu, 2009-04-30 at 12:51 -0400, Matthew Huff wrote:
rtr-feed2 is on our side. What I'm attempting to do is to pref
rtr-feed1 over rtr-feed2 (hence the 200 metric).
I'm also seeing the metric of 0 on the show ip bgp neighbor
10.151.0.82 advertised-routes.
Well, as I tried writing:
On
Maybe that's the best option here. I can't seem to find any other way to do it
cleanly.
Thanks!
-Original Message-
From: Peter Rathlev pe...@rathlev.dk
Sent: Thursday, April 30, 2009 11:52 AM
To: Jason Link jason.l...@whgroup.com
Cc: Cisco-nsp cisco-nsp@puck.nether.net
Subject: RE:
The 5505 will support as many VLANs as you are licensed for. The base license
won't do what you are asking, but the plus license will. You can configure the
VLANs with ACLs to make them function as you wish (DMZ1 / DMZ2 / etc). As for
the routing, it should do OSPF and EIGRP - but it can't
Steve,
From what I know this is meant to be used on the terminating LNS...
Arie
-Original Message-
From: cisco-nsp-boun...@puck.nether.net
[mailto:cisco-nsp-boun...@puck.nether.net] On Behalf Of Steve McCrory
Sent: Thursday, April 30, 2009 19:35
To: cisco-nsp@puck.nether.net
Subject:
Ah. I didn't realize the show was before the route-map was applied. I was
trying to make sure everything was setup correctly on our side before
contacting the other ASN.
They may very well have something that zero's the metric.
Matthew Huff | One Manhattanville Rd
OTA Management
Are you aware of any techniques (expect DPI) that would allow us to
inspect a users traffic as their VPDN session passes through our network
via a series of tunnels?
Is it possible to terminate a user temporarily to apply some sort of QoS
before forwarding them onto to their final destination
Guys,
I've been trying a bunch of different methods, but nothing seems to
achieve what I want. Ideally I'd like to use Priority Queueing (or
something that operates the same) on the ATM0 interface of a Cisco
877.
I have 3 classes of traffic:
Telnet/SSH/ICMP/Management - High Priority
General
I found a CatOS way of doing this, set port auxiliaryvlan 3/1 30.
However, I was unable to find an IOS way, does one exist?
I'm attempting move machines from one subnet to another, and rather
than do this one at a time, 2 vlans would be ideal.
On 4/30/09, Cord MacLeod cordmacl...@gmail.com wrote:
I found a CatOS way of doing this, set port auxiliaryvlan 3/1 30.
I think that requires incoming traffic to have an 802.1q tag of vlan
30 to work..
However, I was unable to find an IOS way, does one exist?
switchport voice vlan 30
But
32 matches
Mail list logo
