** ip addresses used are imaginary **
Here's a really dumbed down version of my CoPP implementation. Its pretty
simple. I have ACL's to allow ssh from anywhere in my network, and then
allow telnet from anywhere in my network (note there is an unintentional
deny statement in that access-list). Then
When you use IP SLA to track if an upstream is working on a ISP
connection (From customer point of view, and you are not the ISP that
knows what will be safe to ping), what do you usually configure to
ping? I have found that one hop up from the CPE is not necessary
reliable on DSL/Cable. I was wo
http://www.cisco.com/en/US/products/sw/iosswrel/ps1835/products_data_sheet09186a008052edd3.html
http://www.juniper.net/techpubs/software/junos/junos82/feature-guide-82/download/fg-ipv6-over-mpls.pdf
On Oct 19, 2010, at 6:25 PM, texas ex wrote:
> Hi All,
>
> I was wondering if someone could poin
Hi All,
I was wondering if someone could point me to Cisco documentation on how to
configure a Cisco box to exchange IPv6 reachability information based on RFC
4798 in BGP (especially when the BGP neighbor is a non-Cisco device such as
Juniper).
Thanks.
___
Okay, I must be missing something. I've setup a default static route that is
showing up in the ipv6 route tables, but not in the local ipv6 eigrp topology
nor redistributing out. Anyone have a clue? Or yet another ipv6 bug
interface Vlan4
ip address 129.77.4.252 255.255.255.0
ipv6 address 2620
On Tue, 2010-10-19 at 15:48 -0500, Jeff Wojciechowski wrote:
> So - that begs the question - how can I see the CPU utilization on the
> 2 server switches (which happen to be about 20 degrees F hotter than
> the client switches so I know they are working harder)?
You could use "remote command show
All-
We have a stack of five 3750G-48TS switches and am curious if it's possible to
find the cpu utilization of each member of the stack?
According to
http://www.cisco.com/en/US/docs/switches/lan/catalyst3750/software/troubleshooting/cpu_util.html
"In a switch stack, CPU utilization is measure
Hi,
On 20 October 2010 03:39, Randy McAnally wrote:
> Is it safe for existing BGP4 sessions/config without 'address-family '
> context to use the 'address-family ipv6 unicast' context to add a BGP6 peer
> for the first time?
Changing the list of advertised address-families will reset the BGP
Hi.
> Also, can the tunnel terminate on multiple
> switches if they are all configured with the same access vlan tag?
Yes, but not with out some gotchas.
If you have a lot of broadcast traffic, and are running the inner
Vlans (C-Vlans) "sparsely meshed" you will have a lot more broadcast
traffic
Hi Andreas,
On Tue, 19 Oct 2010, Andreas Mueller wrote:
Hello,
my PIX515E is running PIX 8.0.4 with multiple contexts. In one of my contexts
I would like to have IPv6 connectivity. The Interface is configured as
I silently assume but just to verify - no shared interface between the
On Tue, 2010-10-19 at 16:02 +0200, Andreas Mueller wrote:
> interface GigabitEthernet1
> nameif inside
> security-level 100
> ip address 192.168.1.232 255.255.255.0
> ipv6 address :::1::e8/64
> ipv6 nd prefix :::1::/64 no-advertise no-autoconfig
>
[...]
> when I t
Depends on what you mean by "low end." You could try looking at the 2960's.
http://www.cisco.com/en/US/products/ps6406/index.html
Also, I'm not sure what you mean by "can the tunnel terminate" but if both
switches in the same vlan connect using an access port, sure. No Dot1Q (Or ISL)
trunk wil
Is it safe for existing BGP4 sessions/config without 'address-family '
context to use the 'address-family ipv6 unicast' context to add a BGP6 peer
for the first time?
Thanks!
--
Randy
___
cisco-nsp mailing list cisco-nsp@puck.nether.net
https://pu
Hello,
my PIX515E is running PIX 8.0.4 with multiple contexts. In one of my
contexts I would like to have IPv6 connectivity. The Interface is
configured as follows (anonymized IPv6 address)
-- interface:
interface GigabitEthernet1
nameif inside
security-level 100
ip address 192.16
Has anyone experienced crashes with the 3750-12S switches. We have tried
12.2(44), 12.2(50), 12.2(53), and 12.2(55) to alleviate the issue but no
difference. I had read about a cisco bug for a memory leak where enabling ip
routing on the switch was a workaround. I have tried this, but no change.
Hi there,
Can anyone provide recommendations for a low end cisco switch that provides
dot1q tunneling features? Also, can the tunnel terminate on multiple
switches if they are all configured with the same access vlan tag?
Thanks,
Jeff.
___
Assuming your interfaces are named inside and outside, use show ip to verify,
the following should work.
static (inside,outside) publicip privateip
access-list outside-in permit udp any host publicip eq 53
access-group outside-in in interface outside
Sent from handheld
On Oct 19, 2010, at 8
Hi,
On Tue, Oct 19, 2010 at 11:54:14AM +0200, Arne Larsen / Region Nordjylland
wrote:
> L3sw --trunk--- L2sw1 --trunk--- L2sw2
>
> It it possible that the L2sw2 switch won't send mac address table updates to
> the others switches if src and des mac is located on it self.
Classic ethernet switc
Hello,
To have a better overview of a Cloud (or OpenFlow) Switch, I would
greatly appreciate to invite you to a further reading of the
presentation entitled "FI technologies on cloud computing and trusty
networking" from our partner, Chunghwa Telecom (Leading ISP in Taiwan)
:
http://www.asiafi.ne
Hi
I got pix501 but doesn't have asdm support
How can I configure it as cli to map from private to public and open
the port 53 named server to allow access from outside and inside
Thank you so much
___
cisco-nsp mailing list cisco-nsp@puck.nether.net
> L3sw --trunk--- L2sw1 --trunk--- L2sw2
>
> It it possible that the L2sw2 switch won't send mac address table updates to
> the others switches if src and des mac is located on it self.
Switches don't send "mac address table updates" to one another. Switches
send Ethernet frames, and *learn* MAC
Hi all.
L3sw --trunk--- L2sw1 --trunk--- L2sw2
It it possible that the L2sw2 switch won't send mac address table updates to
the others switches if src and des mac is located on it self.
/Arne
___
cisco-nsp mailing list cisco-nsp@puck.nether.net
h
as well as the books, if you have access to Cisco Networkers/Live material then
the NX-OS Software Architecture and Nexus Hardware Architecture session(s) but
together by your friendly clueful Cisco folks are likely useful too.
there are a few of us who are on this list who have spent countless
Hi Group,
Please help:
I'm using etherchannell between two 7600 - 2 pair of ports in module 3
and 2 pair in module 4 (6708 cards)
I've tried to migrate channell ports on one of router from card in slot
4 to the same card in slot 7 without any success.
# sh ethercha 1 port-cha
Re Phil, Terry,
p.may...@imperial.ac.uk (Phil Mayers) wrote:
> We have 3750Gs running IPv6 BGP. This was covered in the archives a while
> back (I'm
> a bit short on time now or I'd expand on it). You need later software (we're
> on
> 12.2(52)SE)
You will need Advanced IP Services, and BGP/v
Thks for that will look into that IOS version.
Terry
On 10/19/2010 6:53 PM, Phil Mayers wrote:
On 10/19/2010 01:57 AM, Terry Rupeni (USP) wrote:
Hi,
We had a 3745 running our IPv6 BGP but has finally given up on us. We
have a spare Catalyst 3750G. Had a look at this site:
http://www.cisco
look into Cisco REP
--
From: "Mohammad Khalil"
Sent: Monday, October 18, 2010 5:06 PM
To:
Subject: [c-nsp] L2 Rings
hi all
what is better building a L2 ring using STP or MST ? or building the
network using VPLS ?
On 10/19/2010 01:57 AM, Terry Rupeni (USP) wrote:
Hi,
We had a 3745 running our IPv6 BGP but has finally given up on us. We
have a spare Catalyst 3750G. Had a look at this site:
http://www.cisco.com/en/US/docs/ios/ipv6/configuration/guide/ip6-roadmap.html
and states it doesn't.
Just want to r
On 10/19/2010 01:03 AM, Michael Sinatra wrote:
Is anyone out there polling the IPv6 neighbor discovery cache via SNMP?
Previously, yes. I get them via expect/cli now, because the OID sorting
required for snmpwalk of that table on 6500s is prohibitively expensive
when it gets very large (well
29 matches
Mail list logo
