I think t-mobile is running public customer trials with IPV6-only
customers and NAT64. You can sign up here:
http://www.personal.psu.edu/dvm105/blogs/ipv6/2010/07/t-mobile-ipv6-open-trial.html
(google cache link to more details since google groups is throwing 500
errors right now when accessed
asa823-10-smp-k8 is very stable for me on ASA 5580s (not 85) and
large-scale ipsec RA vpn termination.
Sounds like you are hitting a bug though, I'd push for escalation in
TAC. You have a traceback and can grab the crashinfo file off the
flash. They should be able to get a developer involved to
7200 is just announced... it does still have several years of support
left though.
I didn't think a properly licensed 7201 was that much less expensive
than an ASR on a per-session basis, was it?
On Sun, Nov 27, 2011 at 5:42 PM, ar ar_...@yahoo.com wrote:
Any other options for LAC/LNS
. In the mix of devices were various
generations of 7200's which would have far less control plane processing
power than current ISR's
David
...
On 04/11/2011, at 11:39 AM, P C wrote:
What experiences have you had using very aggressive BGP timers on
ISR's connecting to a service provider IP VPN
Done this too. Daisy-chaining router-aux ports is enough to save a
truck roll more times than you'd think, when the justification for OOB
is not present but $3 worth of cables is.
An even better solution is a console server on 3g (carriers like ATT
in the USA will set up a private IP network/APN
What experiences have you had using very aggressive BGP timers on
ISR's connecting to a service provider IP VPN/MPLS services on T1 and
Ethernet links?
Assuming the proper QOS is in place, have values as low as 1/3 or 2/6
proven reliable in production operations?
Off topic: anyone have a VPN load generator? I've always had a
useful application for such.
Anyways, if you use cisco products and you need RA VPN, your best bet
is probably a Cisco 5540/5580 which is either 5k or 10k sessions per
unit. If you need stateful failover, buy 2 and run
a 5580 out of the water...
On paper.
On Sep 6, 2011 8:06 PM, P C pc50...@gmail.com wrote:
Off topic: anyone have a VPN load generator? I've always had a
useful application for such.
Anyways, if you use cisco products and you need RA VPN, your best bet
is probably a Cisco 5540/5580 which
Does anyone have any idea what type of AES-128 encryption throughput
could be expected on a Cisco 7201 without any additional accelerator
cards installed?
___
cisco-nsp mailing list cisco-nsp@puck.nether.net
Only PBR is really required to make a certain netblock/source
address go to a particular egress interface. It should work as
desired
But be warned... PBR/source based routing is process switched on
some platforms and results in a large performance hit. It can also
suffer from some redundancy
I have a cisco-based network that is largely similar to this:
7200 router---Cisco ASA--Cisco ACE---Web Servers
I would like your opinions and thoughts on the options available for
publishing the web servers on the internet in ipv6.
Today I have an IPV6 ARIN allocation and IPV6 connectivity to
. The financial driver is not that
great.
On Wed, Aug 3, 2011 at 2:52 PM, Gert Doering g...@greenie.muc.de wrote:
Hi,
On Wed, Aug 03, 2011 at 12:10:51PM -0600, P C wrote:
* Native IPV6 is out. The 7200 and ASA do it. So do the web servers.
However, I was very disappointed to see _zero_ support
Traditional applications of this have been low speed links (Dial-up, ISDN,
etc.). I've never tried it on anything faster. I will say, generally
per-packet compression isn't as efficient as you might hope.
On Thu, Jun 30, 2011 at 5:55 AM, Mark Mason mma...@jackhenry.com wrote:
To me it seems
I have a prefix I announce (Let's say 1.1.1.0/24) via a VRF-lite
instance on a Cisco 7200 router. I announce this prefix with the
aggregate-address command, which causes the aggregator attribute to be
added. The router when adding this attribute is using the global
routing table's autonomous
It's probably called As it Happens.
http://www.abrahams.co.nz/asithappens/
On Sat, Mar 5, 2011 at 7:07 AM, Daniel Hooper dhoo...@gold.net.au wrote:
What's the best way to graph or log them with 3550 switches?
I once had a windows application that could do 1 second polls on interface
I would like to use IP SLA to monitor udp jitter/loss over multicast. Is
this supported? What about just packet loss?
I can't find any mention of if it can be done or not in the documentation.
The only mention on google I found is from 6 years ago here (see pdf pages
85-87):
When assigning administratively scoped multicast groups for SSM/Source
Specific multicast usage, what is the appropriate range to use? I know
232.0.0.0/8 is a general SSM range, but is there a subsection that is best
used for administratively-scoped or internal-use only addresses? In the
ASM
I always auto-negotiate on anything deployed in the last 5 years for two
reasons:
1) I've seen more undetected errors from mis-configured manual
speed/duplex on a link, than problems prevents by hard-coding devices.
2) As a praticle matter, most new deployment seem to be gigabit and copper
I am looking for a tool/script which will scan some specific arbitrary OIDs
within an IP range or provided IP list and dump the data to a file suitable
for import into Excel. Device count is in the thousands; so being
multithreaded is a big bonus.
Before I try to write something in bash .. does
You may want to ask TAC for the latest Interim or disable SIP inspection if
you don't need it and see if either helps.
It may not help you, but in 8.0.5.x Cisco started mucking around with SIP
inspection; perhaps to fix the security vulnerability. At one place in our
network it broke some
If your pix runs 7.0 or higher, the commands are virtuall identical for the
same corresponding code of ASA. In fact for a long time, the binaries were
the same.
If it's 6.3 on the pix, there's some changee.
If this is for a migration, your best using the configuration migration tool
found on
We have a Cisco 7201 which takes in an ATM DS3 from the telco on which ADSL
connections running PPPoE are terminated.
At times when troubleshooting using all other methods fail, we need to debug
connection problems for an individual site or PVC. However with the
quantity of connections on the
I just updated my 7201 from 12.4(15)T12 to 15.0M to resolve an issue with
RIP. During the process, I've noticed a few changes:
1) (config)#virtual-template 2 pre-clone 500
% Command ignored (deprecated post 12.2S)
Virtual-template pre-clone seems to be removed. It mentions version 12.2S,
which
I'm deploying a Cisco 7200 series router. I've used ISRs in the past many
times, but have never touched any 7200 series (or non-ISR for that matter)
hardware.
Can anyone explain to me the purpose of the 12.2 images I see on CCO for
this device? These images seem to have a different naming and
Yes (at least cisco ASA, not sure about IOS) will works fine with the built
in Windows client. (particularly useful for windows mobile devices without
begin extorted for a SSL vpn license, and then a mobile license on top of
it!). The only issue is without using certs, there's no tunnel-group
Latest 12.4 mainline if it supports everything you need and runs on your
platform -- it's pretty mature at this point.
If you need a 12.4T feature, then the latest rebuild of 12.4(15)T are very
stable releases. They are on something like T9 or T10 right now.
On Fri, Dec 4, 2009 at 1:05 PM,
I need to terminate 2,000 DSL circuits delievered to me from a telco over a
an ATM DS3. I was hoping someone here could offer some equipment
recommendations that they feel are suitable for terminating this traffic, as
I'm having trouble understanding all the IDB and PVC limits offered by the
27 matches
Mail list logo