Re: [c-nsp] USB to serial converter
On Mon, Feb 04, 2008, Daniel Hooper wrote: Tftpdnld from the console if your device supports it, takes the pain away. .. only if the rom monitor or internal IOS supports a network interface. ;) I'm guessing thats not so much of a problem with stuff today, but in the past, I have fond memories of 36X0's and NM-*-FE's which had no ROM support.. Adrian ___ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/
Re: [c-nsp] USB to serial converter
On Mon, Feb 04, 2008, Daniel Hooper wrote: The more I think about it the more I can see the hassles in it, no password resets, no uploading of boot images in case you lose the running image.. but surely there is something better out there then serial console port? Anyone got any ideas'? Smaller flash images so uploading a base image over max speed RS232 serial isn't such a crappy experience? :) Adrian ___ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/
Re: [c-nsp] USB to serial converter
Yes you can, you can even boot your IOS from a usb drive (although it wasn't supported some time ago even though possible, not sure of current support status). On 04/02/2008, at 7:02 PM, Daniel Hooper wrote: Sorry.. I just realised it was only a few platforms of routers that support the tftp from console commands, I did once manage to upgrade the boot rom on a 3640 to support it, it required a chip puller, some steady hands and a new boot rom chip. (read: not for the faint hearted) I also just realised the new ISR devices have USB ports on them.. does anyone know if it's possible to copy an image of say a USB thumb drive into flash via the usb port? -Dan -Original Message- From: Adrian Chadd [mailto:[EMAIL PROTECTED] Sent: Monday, 4 February 2008 5:22 PM To: Daniel Hooper Cc: cisco-nsp@puck.nether.net Subject: Re: [c-nsp] USB to serial converter On Mon, Feb 04, 2008, Daniel Hooper wrote: Tftpdnld from the console if your device supports it, takes the pain away. .. only if the rom monitor or internal IOS supports a network interface. ;) I'm guessing thats not so much of a problem with stuff today, but in the past, I have fond memories of 36X0's and NM-*-FE's which had no ROM support.. Adrian ___ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/ ___ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/
Re: [c-nsp] USB to serial converter
-Original Message- From: [EMAIL PROTECTED] on behalf of Adrian Chadd Sent: Mon 2/4/2008 7:09 PM To: Daniel Hooper Cc: cisco-nsp@puck.nether.net Subject: Re: [c-nsp] USB to serial converter On Mon, Feb 04, 2008, Daniel Hooper wrote: The more I think about it the more I can see the hassles in it, no password resets, no uploading of boot images in case you lose the running image.. but surely there is something better out there then serial console port? Anyone got any ideas'? Smaller flash images so uploading a base image over max speed RS232 serial isn't such a crappy experience? :) Oh god, been there done that many of times, very painful :).. This email and any files transmitted with it are confidential and intended solely for the use of the individual or entity to whom they are addressed. Please notify the sender immediately by email if you have received this email by mistake and delete this email from your system. Please note that any views or opinions presented in this email are solely those of the author and do not necessarily represent those of the organisation. Finally, the recipient should check this email and any attachments for the presence of viruses. The organisation accepts no liability for any damage caused by any virus transmitted by this email. ___ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/
Re: [c-nsp] Cisco 7600 rate-limit support question
On (2008-02-04 09:33 +0200), Ciprian Radu wrote: On another equipment I saw the rate-limit command used on interfaces and I need to do the same thing (as using police maps just to rate limit traffic doesn't seem like best practice). Yet it is. 'rate-limit' under iface hasn't even worked in many platforms where you can do it in later 12.2S and has been deprecated quit some time. Frankly to me MQC even seems easier, as I can just drop '10M' service-policy, instead of each time thinking about bc/be. -- ++ytti ___ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/
Re: [c-nsp] USB to serial converter
On Mon, February 4, 2008 7:59 am, Daniel Hooper wrote: Maybe just a local Ethernet port which has a hard coded IP address on it that cannot be modified? Or an lcd display on your router/switch that allows configuration of an ip address to manage the device? Which I can connect to via an inexpensive analogue modem from thousands of miles away, right? DSL was looking like it might be the solution to this sort of OOB problem, but it's still more expensive than a POTS line, and increasingly dirt-cheap providers are stopping you from making inbound connections, meaning you have to pay premium for 'business' DSL. Regards, Tim. ___ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/
Re: [c-nsp] USB to serial converter
-Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] Behalf Of Tim Franklin Sent: Monday, February 04, 2008 3:11 AM To: Daniel Hooper Cc: cisco-nsp@puck.nether.net Subject: Re: [c-nsp] USB to serial converter On Mon, February 4, 2008 7:59 am, Daniel Hooper wrote: Maybe just a local Ethernet port which has a hard coded IP address on it that cannot be modified? Or an lcd display on your router/switch that allows configuration of an ip address to manage the device? Which I can connect to via an inexpensive analogue modem from thousands of miles away, right? DSL was looking like it might be the solution to this sort of OOB problem, but it's still more expensive than a POTS line, and increasingly dirt-cheap providers are stopping you from making inbound connections, No, they aren't. What they are doing is blocking well-known ports. But anything above port 1024 has to be open. config t line vty 0 end rotary n Now you can telnet to port 3000+n Ted ___ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/
Re: [c-nsp] OSPF router gets separated from a broadcast domain
Peter Rathlev wrote: When the Dead Interval expires, it will think of the neighbor as down and invalidate all routes learned from it. Only the still connected network is left and announced, but since there are no other OSPF routers on that segment (seen from each of the two) no paths are learned through this segment. I thought just the same before we get burnt by this issue. So I am afraid this doesn't work like this(but I am far from to be sure...) Router A - has customer network x.x.x.0 as connected - connected to transit network t.t.t.0 with address t.t.t.a - loopback: a.a.a.a Router B - connected to backbone - connected to transit network t.t.t.0 with address t.t.t.b assume that we have a connection problem here, so t.t.t.b is up, but cannot reach t.t.t.c and t.t.t.a - loopback: b.b.b.b Router C - connected to backbone - connected to transit network t.t.t.0 with address t.t.t.c - loopback: c.c.c.c Now Router B receives a packet with a destination address x.x.x.x. It makes the routing decision based on it's LSDB, which will be something like this: 1. x.x.x.0 is connected to router a.a.a.a 2. router a.a.a.a has an interface in network t.t.t.0, namely t.t.t.a 3. I (Router B) have also an interface in t.t.t.0: Hurray, we have a path!; BTW. I (Router B) know, that Router C also has an interface in t.t.t.0, so if I (Router B) have my t.t.t.b interface down, I would route toward c.c.c.c. But luckily, this is not the case this time. 4. Router B starts to ARP t.t.t.a without any success and drops the packet. The routing decision on all routers will be similar in the same OSPF area. I don't know whether it happens like I described above, but I am keen to get to know it. cheers, Gabor ___ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/
Re: [c-nsp] multicast routing to VLAN1?
William, If you use PIM sparse mode you need to have a valid RP. If its only this router, then just configure ip pim rp ip of loopback0 Another idea is to use PIM SSM, as you use static joins anyway. Arie -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of William Sent: Monday, February 04, 2008 17:30 PM To: Ziv Leyes Cc: [c-nsp] Subject: Re: [c-nsp] multicast routing to VLAN1? Hia, ip multicast-routing is enabled in global config. Regards, W On 04/02/2008, Ziv Leyes [EMAIL PROTECTED] wrote: First, I must ask this, did you make sure you have the global command ip multicast-routing Then on every interface you want to participate, you better use ip pim sparse-dense-mode Ziv -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of William Sent: Monday, February 04, 2008 1:33 PM To: [c-nsp] Subject: [c-nsp] multicast routing to VLAN1? Hi, We have a 4500+SUP4 running 12.1.19 EW1, running IOS throughout. We have a requirement to push multicast packets from VLAN200 (routed) to VLAN1 (routed, VLAN1 used because of legacy issues). On both VLAN interfaces we have ip pim sparse mode enabled, and have also added join statements to try to get it working. We are unable to get the multicast pushed over to VLAN1, we can see the machine(s) pumping out the multicast onto VLAN200 but nothing getting across. Is there some limitation because of the use of VLAN1? or am I missing something else? Cheers, W ___ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/ ** ** This footnote confirms that this email message has been scanned by PineApp Mail-SeCure for the presence of malicious code, vandals computer viruses. ** ** ** ** This footnote confirms that this email message has been scanned by PineApp Mail-SeCure for the presence of malicious code, vandals computer viruses. ** ** ___ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/ ___ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/ ___ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/
Re: [c-nsp] Strange High CPU
I believe it's normal for cpu to go high when having long cli outputs. Nevertheless, you shouldn't worry because the Virtual Exec process should be (is ?) of low priority. -- Tassos Jorge Evangelista wrote on 4/2/2008 5:08 μμ: Hi list, I I have some issues with a router Cisco 871, it have two VPNs with GRE to others 871 routers, I realise me that when I execute show run or show tech-support (it delays) the cpu process in my router reach 99%, the problem seems the process Virtual Exec, I have seen that it adds 95% load CPU to my router Cisco 871, only for this instant. alias exec ps sh processes cpu | ex 0.00%__0.00%__0.00% #ps CPU utilization for five seconds: 3%/2%; one minute: 5%; five minutes: 5% PID Runtime(ms) Invoked uSecs 5Sec 1Min 5Min TTY Process 4 1958996114727 17075 0.00% 0.77% 0.76% 0 Check heaps 8 285908 1153404247 0.16% 0.20% 0.19% 0 ARP Input 41 631928 1277758494 0.40% 0.47% 0.54% 0 COLLECT STAT COU 42 66696603553110 0.08% 0.01% 0.01% 0 Net Input 44 50784 4394 11557 0.00% 0.02% 0.00% 0 Per-minute Jobs 581452 2660545 0.08% 0.02% 0.13% 2 Virtual Exec 67 1304780 3132327416 0.81% 1.10% 1.24% 0 IP Input 88 36492 40031911 0.00% 0.02% 0.00% 0 IGMPSN When I execute show tech-support TOPYTOP#ps CPU utilization for five seconds: 99%/3%; one minute: 23%; five minutes: 11% PID Runtime(ms) Invoked uSecs 5Sec 1Min 5Min TTY Process 4 1968196115267 17075 0.33% 0.57% 0.68% 0 Check heaps 8 289220 1165989248 0.08% 0.24% 0.22% 0 ARP Input 35 60 1696274 0 0.08% 0.00% 0.00% 0 WLAN LED Timers 41 641396 1283773499 0.24% 0.52% 0.75% 0 COLLECT STAT COU 42 67124608243110 0.00% 0.02% 0.00% 0 Net Input 43 52 50938 1 0.08% 0.00% 0.00% 0 Compute load avg 44 51028 4417 11552 0.00% 0.02% 0.00% 0 Per-minute Jobs 58 14236 3060 4652 92.09% 16.17% 3.78% 2 Virtual Exec 67 1320676 3169609416 1.74% 1.61% 1.34% 0 IP Input 85 308636106 0 0.08% 0.00% 0.00% 0 CEF process 88 36688 40298910 0.00% 0.01% 0.00% 0 IGMPSN 122 488 547892 0.49% 0.04% 0.01% 0 TPLUS According to cisco, the solutions for this problem is that i execute no logging console or undebug all , but I am not running some debug. I am running the same IOS in several cisco routers 871, it works fine, my IOS is c870-advipservicesk9-mz.124-4.T3.bin Could it be a hardware problem or un bug in the IOS?. If anyone can search my IOS have bugs in Bug Toolkithttp://tools.cisco.com/Support/BugToolKit/ [image: Please log in to access] from Cisco, I do not have a CCO account with levels access required. Or how can I tune my config for the Virtual Exec process, any help is appreciated. ___ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/
Re: [c-nsp] USB to serial converter
Not Bluetooth related... It's been my experience that you can fix usage of the same COM port on XP laptops by plugging the adapter into each USB port in turn and then using Device Manager to set the COM port being used to one that you know isn't used by something else. That way, no matter which USB port you use, it's all the same COM port. As an aside, I use an Aten UC232A adapter (not sure what chipset it is). It's been rock solid for the past 3 years or so that I've had it. I used to have a Belkin adapter before this one which would cause inexplicable XP blue screens. Threw the Belkin adapter out soon after getting the Aten. Vijay Ramcharan Vijay Ramcharan, CCIE #14824, CCDP, MCSE. Network Engineer, Verizon Business - RAM C: 917-821-8009. -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Justin Shore Sent: February 04, 2008 09:43 To: 'Cisco-nsp' Subject: Re: [c-nsp] USB to serial converter Forgive me for hijacking the thread but it's a related topic. Does anyone have any positive experiences with Bluetooth console adapters? They could easily eliminate most of the serial port woes. I bought a BlueConsole adapter well over a year ago but due to Microsoft screwing up XP's Bluetooth stack I could never get it to work. My new laptop with builtin Bluetooth can see the adapter and connect but I never get any output (nor does the device appear to be getting any of my input). I haven't heard back from BlueConsole support. Perhaps their new model will work better (or maybe I have a dud) but I carry around a cable I bought at RadioShack many years ago. It appears to have the Prolific chipset. It works fine, though it did take a while to figure that it used a different COM port for each of the 4 USB interfaces in my laptop. I had to create SecureCRT profiles for each of my physical interfaces (Left top/bottom, Rear top/bottom). Does anyone have any product recommendations or warnings? Off-list responses are fine. I'll summarize back to the list. Justin ___ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/ ___ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/
Re: [c-nsp] Help getting started
On Mon, Feb 04, 2008, Casey Mills wrote: I am new to Cisco and trying to get started. I have a 2611 router with a couple ethernet ports to get started. I would like to set it up for home use. DHCP client on one port, DHCP server on the other, and NATing. Can someone point me to a website or send me a config. G'day, Welcome to the Wonderful World of Wouting. I would eventually like to have this router run a VPN so I can remotely access my home network. Is this router capable of doing that? I have 12.2 IOS on it. Dunno about VPN - that depends on the image. DHCP server? Sure. NAT? Sure. DHCP client? Never done it, but if you delete the default route and go int ethx/y ip address dhcp Then it may work! You should start by at least browsing the 26xx IOS 12.2 documentation on the Cisco website. GOing via google and help forums is another way, but you probably won't learn much. Adrian ___ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/
[c-nsp] Help getting started
List I am new to Cisco and trying to get started. I have a 2611 router with a couple ethernet ports to get started. I would like to set it up for home use. DHCP client on one port, DHCP server on the other, and NATing. Can someone point me to a website or send me a config. I would eventually like to have this router run a VPN so I can remotely access my home network. Is this router capable of doing that? I have 12.2 IOS on it. Thanks, Casey ___ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/
Re: [c-nsp] USB to serial converter
On Mon, February 4, 2008 11:32 am, Ted Mittelstaedt wrote: No, they aren't. What they are doing is blocking well-known ports. But anything above port 1024 has to be open. config t line vty 0 end rotary n Now you can telnet to port 3000+n Good point, and a handy tip. I still find serial ports very useful though... Regards, Tim. ___ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/
Re: [c-nsp] USB to serial converter
Hi, Or maybe Cisco could just catch up with the rest of the world and do away with serial ports seeing as it's difficult to get a laptop or PC with a serial port built in. no. keep the serial port. but put it on the front! ;-) alan ___ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/
Re: [c-nsp] BFD aware VRF
Luan Nguyen wrote: I did try with an ethernet link between PE and CE, and bfd config looks good. Unless you're Ethernet links are 1Q trunks like what you'd have between a site with a pair of redundant routers doing both L3 and access layer connections (FHRPs). SRC removed BFD on SVI support, as did SXH on the ME6524s. Yes, I'm beating a dead horse but it aggravates me nonetheless. I need to upgrade to SRC but I am going to lose BFD support as soon as I do, pushing my recovery times up into seconds; far from the milliseconds Cisco sold us on when they blessed this design. Justin ___ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/
Re: [c-nsp] Cisco 4500 not showing all the log detail?
Make sure on the interfaces you want to monitor, you have 'logging event link-status' Ken Matlock Network Analyst (303) 467-4671 [EMAIL PROTECTED] -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of William Sent: Monday, February 04, 2008 10:32 AM To: [c-nsp] Subject: [c-nsp] Cisco 4500 not showing all the log detail? Hi, I have a Cisco 4500 running 12.1 IOS code. It would seem we are not getting up/down port events in the log buffer, to setup logging we have: logging source-interface Vlan1 logging 192.168.1.1 we did set the logging buffer to informational (this doesnt show in show run for some reason?), this is confirmed in 'sh logging' but we aren't seeing the information we would expect! Is there something I've missed? I am getting messages on counters being cleared and configuration from console but that seems to be it. Cheers, W ___ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/ ___ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/
Re: [c-nsp] BFD aware VRF
I have bgp running between PE and CE. So on the PE, you do: router bgp address-family ipv4 vrf whatever neighbor y.y.y.y fall-over bfd Do the same for the CE under bgp. Then on the link between CE and PE, configured the bfd interval...etc. That should work. The problem is my CE is a 1841 with a Channelized T1/PRI port and even with the latest 12.4.15T3, i can't put the bfd command under the serial interface! Without interface level bfd command, bfd won't work. Hello? I did try with an ethernet link between PE and CE, and bfd config looks good. -lmn On Feb 4, 2008 11:47 AM, Vikas Sharma [EMAIL PROTECTED] wrote: Hi, Anyone have configured VRF aware BFD? If yes pls let me know how? Regards Vikas Sharma ___ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/ ___ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/
[c-nsp] Router or Layer3 Switch
We run a fairly large Wireless Internet service. Right now my network is all switched/bridged and is time to route this network. I have 8 Radios at my main location that are connected to the segments of our network. Currently all these 8 Radios Ethernet ports plug into a 2950 switch with 1 port on the switch going to my router. I currently have NO Vlans, just switching only. I would like to segment the broadcast domains by using a router or possibly a layer3 switch. I am running DHCP on this network and that is the only service that I am running. I have limited experience with Layer3 switches, so would this be a good fit for one since I need so many Ethernet ports? Can a layer3 switch run routing protocols like OSPF, EIGRP, BPG if in the future we decided to deploy these on our network? K ___ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/
Re: [c-nsp] USB to serial converter
Forgive me for hijacking the thread but it's a related topic. Does anyone have any positive experiences with Bluetooth console adapters? They could easily eliminate most of the serial port woes. I bought a BlueConsole adapter well over a year ago but due to Microsoft screwing up XP's Bluetooth stack I could never get it to work. My new laptop with builtin Bluetooth can see the adapter and connect but I never get any output (nor does the device appear to be getting any of my input). I haven't heard back from BlueConsole support. Perhaps their new model will work better (or maybe I have a dud) but I carry around a cable I bought at RadioShack many years ago. It appears to have the Prolific chipset. It works fine, though it did take a while to figure that it used a different COM port for each of the 4 USB interfaces in my laptop. I had to create SecureCRT profiles for each of my physical interfaces (Left top/bottom, Rear top/bottom). Does anyone have any product recommendations or warnings? Off-list responses are fine. I'll summarize back to the list. Justin ___ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/
Re: [c-nsp] Router or Layer3 Switch
K, If you need L3 with many Ethernet ports a L3 switch would be just what you need. Be aware that these switches use hardware resources for L3 forwarding, so you may need to choose the right model. This is especially relevant if you plan for example to run a full internet BGP table (look at 7600/6500 at this case...) Take a look at this kind of L3 switch. I think it is the right entry point for what you may need: http://www.cisco.com/en/US/products/ps7077/index.html Arie -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Duracom Lists Sent: Monday, February 04, 2008 17:43 PM To: cisco-nsp@puck.nether.net Subject: [c-nsp] Router or Layer3 Switch We run a fairly large Wireless Internet service. Right now my network is all switched/bridged and is time to route this network. I have 8 Radios at my main location that are connected to the segments of our network. Currently all these 8 Radios Ethernet ports plug into a 2950 switch with 1 port on the switch going to my router. I currently have NO Vlans, just switching only. I would like to segment the broadcast domains by using a router or possibly a layer3 switch. I am running DHCP on this network and that is the only service that I am running. I have limited experience with Layer3 switches, so would this be a good fit for one since I need so many Ethernet ports? Can a layer3 switch run routing protocols like OSPF, EIGRP, BPG if in the future we decided to deploy these on our network? K ___ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/ ___ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/
Re: [c-nsp] Router or Layer3 Switch
Duracom Lists wrote on Monday, February 04, 2008 4:43 PM: We run a fairly large Wireless Internet service. Right now my network is all switched/bridged and is time to route this network. I have 8 Radios at my main location that are connected to the segments of our network. Currently all these 8 Radios Ethernet ports plug into a 2950 switch with 1 port on the switch going to my router. I currently have NO Vlans, just switching only. I would like to segment the broadcast domains by using a router or possibly a layer3 switch. I am running DHCP on this network and that is the only service that I am running. I have limited experience with Layer3 switches, so would this be a good fit for one since I need so many Ethernet ports? Can a layer3 switch run routing protocols like OSPF, EIGRP, BPG if in the future we decided to deploy these on our network? Others have commented on the L3-switch side of things, but you want to consider the implications for your wireless service as roaming between APs can be more challenging when they no longer belong to the same network segment. I'm not a wireless expert, but others might comment on it. oli ___ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/
[c-nsp] improving ADSL MLP failover
Hi, Finally got Multilink PPP to work with ADSL (1841 IOS 12.4(17)). Configs below. They're based on getting direct pvc's from Verizon. When I take down either one of the ATM interfaces, the entire multilink bundle seems to go down for about a minute. I wonder if I can prevent this. I'm thinking maybe assigning the client-end and/or ISP-end ATM pvc's to separate virtual-templates would do the trick. Or maybe changing the ISP-end ATM interfaces to no ip address (I think that's unrelated but maybe a good idea anyways). I don't have access to a test environment, so any insight would be helpful before I try it in production. Thanks, Adam === CONFIGS === --- ISP END --- interface Multilink1 ip unnumbered Loopback0 ppp multilink ppp multilink group 1 ! interface ATM1/0.2106 point-to-point ip unnumbered Loopback0 pvc 2/106 protocol ppp Virtual-Template2 ! ! interface ATM1/0.2107 point-to-point ip unnumbered Loopback0 pvc 2/107 protocol ppp Virtual-Template2 ! ! interface Virtual-Template2 no ip address ppp multilink ppp multilink group 1 -- CLIENT END -- interface Multilink1 ip address x.x.x.x y.y.y.y ip virtual-reassembly ppp multilink ppp multilink group 1 ! interface ATM0/0/0 no ip address no ip mroute-cache no atm ilmi-keepalive dsl operating-mode auto hold-queue 224 in pvc 0/35 protocol ppp Virtual-Template1 ! ! interface ATM0/1/0 no ip address no ip mroute-cache no atm ilmi-keepalive dsl operating-mode auto hold-queue 224 in pvc 0/35 protocol ppp Virtual-Template1 ! ! interface Virtual-Template1 no ip address ppp multilink ppp multilink group 1 ___ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/
Re: [c-nsp] USB to serial converter
Speaking of, does anyone know what happened to Blue Console? There website won't let you order and the emails go unanswered. Aaron On Feb 4, 2008 10:26 AM, Doug McIntyre [EMAIL PROTECTED] wrote: On Mon, Feb 04, 2008 at 08:43:16AM -0600, Justin Shore wrote: Forgive me for hijacking the thread but it's a related topic. Does anyone have any positive experiences with Bluetooth console adapters? They could easily eliminate most of the serial port woes. I bought a BlueConsole adapter well over a year ago but due to Microsoft screwing up XP's Bluetooth stack I could never get it to work. My new laptop with builtin Bluetooth can see the adapter and connect but I never get any output (nor does the device appear to be getting any of my input). I haven't heard back from BlueConsole support. Perhaps their new model will work better (or maybe I have a dud) but The BlueConsole works well with my MacBook.. The main thing I don't like about it is that when it loses power (ie. an unplug) that you have to shutdown the console app attach to the BlueTooth again, and restart up the console app. I guess I am used to jumping from router to router for things requiring serial ports.. They have a battery plug on it for a 9Volt, but that makes it a bit bulky. ___ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/ ___ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/
Re: [c-nsp] Router or Layer3 Switch
I think the line between router and L3 switch is just about gone now, with everything moving to Ethernet. The choice of devices is dependent on what you need in terms of route capacity, port density, and high-touch features. I've seen wireless networks implemented using VPLS services, which requires a device with more intelligence, but is a somewhat slick way to segment users. Someone mentioned the 3750-E which I would recommend as well. Phil On Feb 4, 2008, at 10:42 AM, Duracom Lists wrote: We run a fairly large Wireless Internet service. Right now my network is all switched/bridged and is time to route this network. I have 8 Radios at my main location that are connected to the segments of our network. Currently all these 8 Radios Ethernet ports plug into a 2950 switch with 1 port on the switch going to my router. I currently have NO Vlans, just switching only. I would like to segment the broadcast domains by using a router or possibly a layer3 switch. I am running DHCP on this network and that is the only service that I am running. I have limited experience with Layer3 switches, so would this be a good fit for one since I need so many Ethernet ports? Can a layer3 switch run routing protocols like OSPF, EIGRP, BPG if in the future we decided to deploy these on our network? K ___ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/ ___ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/
Re: [c-nsp] USB to serial converter
Yes, I did use the USB function on the last pair of 3640's. The old one in the pair didn't have USB support, so I used the USB key on the new 3640 to load the newest firmware and ROM, copied that over to a CF card, then used that CF card in the old 3640 to load the new firmware and apply the ROM update. Frank -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Daniel Hooper Sent: Monday, February 04, 2008 2:32 AM To: cisco-nsp@puck.nether.net Subject: Re: [c-nsp] USB to serial converter Sorry.. I just realised it was only a few platforms of routers that support the tftp from console commands, I did once manage to upgrade the boot rom on a 3640 to support it, it required a chip puller, some steady hands and a new boot rom chip. (read: not for the faint hearted) I also just realised the new ISR devices have USB ports on them.. does anyone know if it's possible to copy an image of say a USB thumb drive into flash via the usb port? -Dan -Original Message- From: Adrian Chadd [mailto:[EMAIL PROTECTED] Sent: Monday, 4 February 2008 5:22 PM To: Daniel Hooper Cc: cisco-nsp@puck.nether.net Subject: Re: [c-nsp] USB to serial converter On Mon, Feb 04, 2008, Daniel Hooper wrote: Tftpdnld from the console if your device supports it, takes the pain away. .. only if the rom monitor or internal IOS supports a network interface. ;) I'm guessing thats not so much of a problem with stuff today, but in the past, I have fond memories of 36X0's and NM-*-FE's which had no ROM support.. Adrian ___ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/ ___ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/
Re: [c-nsp] Router or Layer3 Switch
K, I suggest we go a step back here. Can you explain why do you have some many small subnets? What is the network objective and design? Arie -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Duracom Lists Sent: Monday, February 04, 2008 23:47 PM To: cisco-nsp@puck.nether.net Subject: Re: [c-nsp] Router or Layer3 Switch Arie thanks for the information. I have another thing before I make a decision. I have my network setup as follows: 7206VXR Int f0/0 has several (50 or so) /28 subnets F0/0 2950 port 1 Now if I had a L3 Switch (in place of the 2950) can an interface on an L3 switch have multiple subnets? If I put a router in place of the 2950 switch I could easily define multiple subnets per Interface like I do on my edge router. I am just trying to look for the best way to do this since I have never dealt with any L3 switches. K -Original Message- From: Arie Vayner (avayner) [mailto:[EMAIL PROTECTED] Sent: Monday, February 04, 2008 10:17 AM To: Duracom Lists; cisco-nsp@puck.nether.net Subject: RE: [c-nsp] Router or Layer3 Switch K, If you need L3 with many Ethernet ports a L3 switch would be just what you need. Be aware that these switches use hardware resources for L3 forwarding, so you may need to choose the right model. This is especially relevant if you plan for example to run a full internet BGP table (look at 7600/6500 at this case...) Take a look at this kind of L3 switch. I think it is the right entry point for what you may need: http://www.cisco.com/en/US/products/ps7077/index.html Arie -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Duracom Lists Sent: Monday, February 04, 2008 17:43 PM To: cisco-nsp@puck.nether.net Subject: [c-nsp] Router or Layer3 Switch We run a fairly large Wireless Internet service. Right now my network is all switched/bridged and is time to route this network. I have 8 Radios at my main location that are connected to the segments of our network. Currently all these 8 Radios Ethernet ports plug into a 2950 switch with 1 port on the switch going to my router. I currently have NO Vlans, just switching only. I would like to segment the broadcast domains by using a router or possibly a layer3 switch. I am running DHCP on this network and that is the only service that I am running. I have limited experience with Layer3 switches, so would this be a good fit for one since I need so many Ethernet ports? Can a layer3 switch run routing protocols like OSPF, EIGRP, BPG if in the future we decided to deploy these on our network? K ___ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/ ___ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/ ___ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/
[c-nsp] RSP720 and GLC-BX-D,GLC-BX-U SFP's
Hi all, Can anyone confirm is the RSP720 is compatible with the GLC-BX-D/-U SFP? The new 10GE RSP720 is, but I'm referring to the original gigabit version. I checked with our Cisco SE, and the answer was a non-answer. The SFP compatibility matrix's, as well as the release notes for SRA and SRB make no mention of the GLC-BX-D/-U, and SRC only refers to it working with the 10GE model. Obviously it's pretty certain that those SFP's are not currently compatible, but I'd like to eliminate all doubt. Thanks, -- Stephen ___ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/
Re: [c-nsp] USB to serial converter
I just broke down and bought a pcmci CF adapter for my laptop. Format your CF card in a router first, then copy away. It is very handy. -- Colin McNamara (858)208-8105 CCIE #18233,RHCE,GCIH http://www.colinmcnamara.com http://www.linkedin.com/in/colinmcnamara The difficult we do immediately, the impossible just takes a little longer On Mon, 2008-02-04 at 14:26 -0600, Frank Bulk wrote: Yes, I did use the USB function on the last pair of 3640's. The old one in the pair didn't have USB support, so I used the USB key on the new 3640 to load the newest firmware and ROM, copied that over to a CF card, then used that CF card in the old 3640 to load the new firmware and apply the ROM update. Frank -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Daniel Hooper Sent: Monday, February 04, 2008 2:32 AM To: cisco-nsp@puck.nether.net Subject: Re: [c-nsp] USB to serial converter Sorry.. I just realised it was only a few platforms of routers that support the tftp from console commands, I did once manage to upgrade the boot rom on a 3640 to support it, it required a chip puller, some steady hands and a new boot rom chip. (read: not for the faint hearted) I also just realised the new ISR devices have USB ports on them.. does anyone know if it's possible to copy an image of say a USB thumb drive into flash via the usb port? -Dan -Original Message- From: Adrian Chadd [mailto:[EMAIL PROTECTED] Sent: Monday, 4 February 2008 5:22 PM To: Daniel Hooper Cc: cisco-nsp@puck.nether.net Subject: Re: [c-nsp] USB to serial converter On Mon, Feb 04, 2008, Daniel Hooper wrote: Tftpdnld from the console if your device supports it, takes the pain away. .. only if the rom monitor or internal IOS supports a network interface. ;) I'm guessing thats not so much of a problem with stuff today, but in the past, I have fond memories of 36X0's and NM-*-FE's which had no ROM support.. Adrian ___ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/ ___ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/ ___ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/
Re: [c-nsp] USB to serial converter
=) It's for the reasons you've already desecribed (even though you're in a good position now) that I detest USB to serial adapters. Just lost too many hours because of them and lengthened existing downtime. Frank -Original Message- From: Jon Lewis [mailto:[EMAIL PROTECTED] Sent: Sunday, February 03, 2008 1:16 PM To: Frank Bulk Cc: cisco-nsp@puck.nether.net Subject: Re: [c-nsp] USB to serial converter On Sun, 3 Feb 2008, Frank Bulk wrote: This is why on another listserv's short list of tools for techs to have, a laptop with a real serial port was near the top of everyone's list. In our workplace that's a requirement for any tech laptop we buy. We've wasted way to much time installing drivers, recovering from blue screens and lock ups, and toting along and digging out yet another cable. There are good USB serial converters. I've got one that I've used for years and just bought several additional ones. The older one is a Magic Control Technology chip. It's only problem is the inability to send a break without using the baud rate switch trick. The newer ones are all various brandings of the Prolific chip. These seem to work fine with Linux. I haven't tried other OS's. My first Prolific was defective though. It was pretty funny...due to a loose connection in the DB-9 end, it would appear/disappear from the USB bus depending on whether the DB-9 was pointing up or down. The Prolifics I've tested so far will send a break without resorting to the baud rate trick. I've had a couple of notebooks that didn't have serial ports, and with my USB serial converters, it was never a problem. The USB ones are also useful as I think someone else mentioned if you want to simultaneously console into multiple devices. -- Jon Lewis | I route Senior Network Engineer | therefore you are Atlantic Net| _ http://www.lewis.org/~jlewis/pgp for PGP public key_ ___ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/
Re: [c-nsp] PPPoE L2 timeout recovery
It is very clear your Cisco DSL route sends PPPoE Active Discovery Initiation (PADI) frames to the ISP with no response. The PADI frame is the first in a series of PPPoE call-setup frames. If your ISP does not respond with a PPPoE Active Discovery Offer (PADO), PPPoE negotiation does not succeed. The only solution for this problem is to contact your ISP or check your line stability. Regards, Masood Ahmad Shah -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Jason Gurtz Sent: Tuesday, February 05, 2008 12:25 AM To: cisco-nsp@puck.nether.net Subject: [c-nsp] PPPoE L2 timeout recovery I have a 3640A with a WIC1-ADSL residing in an NM-1FE1R2W. IOS is 12.4(13b) Periodically, about every month or two, the dsl link will drop and debugging output shows: ... Sending PADI: vc=0/35 ... padi timer expired Doing a shut no shut on atm2/0 seems to bring the line up back up and it then works fine for another month or two until I have to do it again. The amount of traffic doesn't seem to trigger this behavior. The shut no shut seems to cause a line retrain on this platform since the CD light goes out after the shut. Is this necessarily an ISP problem, or is there something I might be missing on my end like overflowing some NAT table or something? Any other config I should provide? ~JasonG -- ___ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/ ___ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/
[c-nsp] dead WIC-1ADSL?
Hi, I just got a WIC-1ADSL and put it into my 2801 (IOS 12.4(16)). No lights, no logs, no nothing. I understand these cards are supported on the 2801. The part number of the WIC is 73-477108 B0. Is anyone aware of compatibility issues with these cards? Maybe it's just a bad card (or a bad slot). Thanks, Adam ___ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/
Re: [c-nsp] 3750 software stability
Just to be clear, the 3750, 3750G, 3750E, or the 3750ME? Frank -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Brandon Ewing Sent: Monday, February 04, 2008 11:35 AM To: cisco-nsp@puck.nether.net Subject: [c-nsp] 3750 software stability Can anyone here provide thoughts / suggestions regarding the version of IOS for the 3750 platform that has the least problems, and offers the most stability? Featureset is not an issue, as layer 3 functions are not required, just QoS/LACP. -- Brandon Ewing([EMAIL PROTECTED]) ___ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/
Re: [c-nsp] OSPF router gets separated from a broadcast domain
Hi Eddie, On Mon, 2008-02-04 at 10:07 -0500, Alwis Edward-C22562 wrote: How could I read the email trail to understand what was the issue here. I only see the mail below. You can look in the archives, which can be found here: http://puck.nether.net/pipermail/cisco-nsp/ The thread started in a message dated January 29th: http://puck.nether.net/pipermail/cisco-nsp/2008-January/047156.html If you were referring to my bad quoting I apologise. :-) Regards, Peter ___ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/
Re: [c-nsp] PA-2T3+ don't want to use anymore multilinks
Opps I meant PA-MC-T3 interface cards. Silly me. On 2/4/08, Joseph Jackson [EMAIL PROTECTED] wrote: Hey all, I have 2 PA-2T3+ at the end of a DS3. I am currently having to split all the t1's off of it and then reform them in a MPPP bundle. Is there anyway around this with those interface cards? Its not a full DS3 as a few channels are split off for voice but I'd like to take all the remaining channels and just use them as one pipe instead of these MPPP bundles which don't seem to be providing enough bandwidth. Thanks Joseph ___ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/
Re: [c-nsp] OSPF router gets separated from a broadcast domain
Is there any low end Cisco router for the multipoint L2TPV3 tunnel to configure MPLS VPN over IP Tunnel. I just can't buy Cisco 12000 only for the multipoint L2TPV3 tunnel. I was expecting a support of tunnel mode l2tpv3 in Cisco 7500 but I just can't see it. :( Regards, Masood Ahmad Shah ___ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/
[c-nsp] PA-2T3+ don't want to use anymore multilinks
Hey all, I have 2 PA-2T3+ at the end of a DS3. I am currently having to split all the t1's off of it and then reform them in a MPPP bundle. Is there anyway around this with those interface cards? Its not a full DS3 as a few channels are split off for voice but I'd like to take all the remaining channels and just use them as one pipe instead of these MPPP bundles which don't seem to be providing enough bandwidth. Thanks Joseph ___ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/
[c-nsp] Multipoint L2TPV3 tunnel / MPLS VPN over IP Tunnel
Is there any low end Cisco router for the multipoint L2TPV3 tunnel to configure MPLS VPN over IP Tunnel. I just can't buy Cisco 12000 only for the multipoint L2TPV3 tunnel. I was expecting a support of tunnel mode l2tpv3 in Cisco 7500 but I just can't see it. :( Regards, Masood Ahmad Shah ___ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/
Re: [c-nsp] Router or Layer3 Switch
Arie thanks for the information. I have another thing before I make a decision. I have my network setup as follows: 7206VXR Int f0/0 has several (50 or so) /28 subnets F0/0 2950 port 1 Now if I had a L3 Switch (in place of the 2950) can an interface on an L3 switch have multiple subnets? If I put a router in place of the 2950 switch I could easily define multiple subnets per Interface like I do on my edge router. I am just trying to look for the best way to do this since I have never dealt with any L3 switches. K -Original Message- From: Arie Vayner (avayner) [mailto:[EMAIL PROTECTED] Sent: Monday, February 04, 2008 10:17 AM To: Duracom Lists; cisco-nsp@puck.nether.net Subject: RE: [c-nsp] Router or Layer3 Switch K, If you need L3 with many Ethernet ports a L3 switch would be just what you need. Be aware that these switches use hardware resources for L3 forwarding, so you may need to choose the right model. This is especially relevant if you plan for example to run a full internet BGP table (look at 7600/6500 at this case...) Take a look at this kind of L3 switch. I think it is the right entry point for what you may need: http://www.cisco.com/en/US/products/ps7077/index.html Arie -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Duracom Lists Sent: Monday, February 04, 2008 17:43 PM To: cisco-nsp@puck.nether.net Subject: [c-nsp] Router or Layer3 Switch We run a fairly large Wireless Internet service. Right now my network is all switched/bridged and is time to route this network. I have 8 Radios at my main location that are connected to the segments of our network. Currently all these 8 Radios Ethernet ports plug into a 2950 switch with 1 port on the switch going to my router. I currently have NO Vlans, just switching only. I would like to segment the broadcast domains by using a router or possibly a layer3 switch. I am running DHCP on this network and that is the only service that I am running. I have limited experience with Layer3 switches, so would this be a good fit for one since I need so many Ethernet ports? Can a layer3 switch run routing protocols like OSPF, EIGRP, BPG if in the future we decided to deploy these on our network? K ___ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/ ___ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/
Re: [c-nsp] 3750 software stability
Hi Brandon, On Mon, 2008-02-04 at 11:34 -0600, Brandon Ewing wrote: Can anyone here provide thoughts / suggestions regarding the version of IOS for the 3750 platform that has the least problems, and offers the most stability? Featureset is not an issue, as layer 3 functions are not required, just QoS/LACP. If we're talking 3750G (not E) and just layer 2, we've been using 12.2(25)SEE2 for a long time (use SEE4/latest though, it contains some serious bug fixes). We're starting to use 12.2(35)SE5 which also seem quite stable and all. The scenario is data center top-of-the-rack access switches. You can browse through the software release notes and look for what you think is the most mature release. The can be found here: http://www.cisco.com/en/US/customer/products/hw/switches/ps5023/prod_rel ease_notes_list.html (or http://tinyurl.com/2jrj26) Regards, Peter ___ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/
[c-nsp] FWSM IP migration
Hey all, I'm currently planning an IP migration, and one of the issues I'm going to hit and I'm not sure of the way around it... traffic coming into new_int will get translated from 192.168.2.1 - 10.10.10.1, however as the default route on the FWSM point out via old_int it won't get passed through as their will be no existing connection... if I change the default route, that will work for new connections inbound, but then break the existing outbound statements... 192.168.1.0/24 192.168.2.0/24 | | Old_int new_int | | 192.168.1.1 192.168.2.1 +++ | 10.10.10.1 (CSM VIP) / \ 10.11.11.110.11.11.2 How would you go about doing this without it being a big hit changeover? Thanks for any advice/ guidance, ___ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/
Re: [c-nsp] dead WIC-1ADSL?
Hi, I just got a WIC-1ADSL and put it into my 2801 (IOS 12.4(16)). No lights, no logs, no nothing. I understand these cards are supported on the 2801. The part number of the WIC is 73-477108 B0. Is anyone aware of compatibility issues with these cards? Maybe it's just a bad card (or a bad slot). Thanks, Adam Did you install it into a VIC/VWIC or HWIC only slot? I believe there are two HWIC only slots, one VIC only slot, and one slot that can accept regular WICs. ___ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/
Re: [c-nsp] RSP720 and GLC-BX-D,GLC-BX-U SFP's
On Mon, Feb 04, 2008 at 04:14:26PM -0500, [EMAIL PROTECTED] wrote: Hi all, Can anyone confirm is the RSP720 is compatible with the GLC-BX-D/-U SFP? The new 10GE RSP720 is, but I'm referring to the original gigabit version. I checked with our Cisco SE, and the answer was a non-answer. The SFP compatibility matrix's, as well as the release notes for SRA and SRB make no mention of the GLC-BX-D/-U, and SRC only refers to it working with the 10GE model. Obviously it's pretty certain that those SFP's are not currently compatible, but I'd like to eliminate all doubt. Whatever you're smoking, take two puffs and pass it to the left. If the device has an SFP port, of course its compatible with GLC-BX. -- Richard A Steenbergen [EMAIL PROTECTED] http://www.e-gerbil.net/ras GPG Key ID: 0xF8B12CBC (7535 7F59 8204 ED1F CC1C 53AF 4C41 5ECA F8B1 2CBC) ___ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/
Re: [c-nsp] PPPoE L2 timeout recovery
Cisco DSL Router Configuration and Troubleshooting Guide - PPPoE: DSL Router as a PPPoE Client Troubleshooting http://www.cisco.com/en/US/tech/tk175/tk15/technologies_configuration_example09186a008071a7c2.shtml I don't think it is a NAT table overflow issue. If you really think that this is the problem, change your NAT timers to age the translations out faster than the default. I don't think it is a IOS issue because the exact problem you are describing happens with routers that are not Cisco. On Feb 5, 2008 6:25 AM, Jason Gurtz [EMAIL PROTECTED] wrote: I have a 3640A with a WIC1-ADSL residing in an NM-1FE1R2W. IOS is 12.4(13b) Periodically, about every month or two, the dsl link will drop and debugging output shows: ... Sending PADI: vc=0/35 ... padi timer expired Doing a shut no shut on atm2/0 seems to bring the line up back up and it then works fine for another month or two until I have to do it again. The amount of traffic doesn't seem to trigger this behavior. The shut no shut seems to cause a line retrain on this platform since the CD light goes out after the shut. Is this necessarily an ISP problem, or is there something I might be missing on my end like overflowing some NAT table or something? Any other config I should provide? ~JasonG -- ___ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/ ___ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/
Re: [c-nsp] FWSM IP migration
Is the CSM client vlan 'gateway' entry for 10.11.11.0/24 pointing to new_int or old_int? If old_int, what about setting it to new_int and leave the FWSM default gateway pointing to old_int? If the CSM gateway is old_int, a change to new_int will likely affect the existing connections too, but if you're asking for a way to perform a routing policy change on a stateful firewall without there being a hit of some sort, I don't know if that's a reasonable expectation. On 4-Feb-08, at 5:53 PM, Steve Wright wrote: Hey all, I'm currently planning an IP migration, and one of the issues I'm going to hit and I'm not sure of the way around it... traffic coming into new_int will get translated from 192.168.2.1 - 10.10.10.1, however as the default route on the FWSM point out via old_int it won't get passed through as their will be no existing connection... if I change the default route, that will work for new connections inbound, but then break the existing outbound statements... 192.168.1.0/24 192.168.2.0/24 | | Old_int new_int | | 192.168.1.1 192.168.2.1 +++ | 10.10.10.1 (CSM VIP) / \ 10.11.11.110.11.11.2 How would you go about doing this without it being a big hit changeover? Thanks for any advice/ guidance, ___ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/ ___ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/
[c-nsp] 3750 software stability
Can anyone here provide thoughts / suggestions regarding the version of IOS for the 3750 platform that has the least problems, and offers the most stability? Featureset is not an issue, as layer 3 functions are not required, just QoS/LACP. -- Brandon Ewing([EMAIL PROTECTED]) pgpSBf4uKwrKL.pgp Description: PGP signature ___ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/
Re: [c-nsp] dead WIC-1ADSL?
You can install your WIC into slot 1-3, slot 0 is the only one reserved for VIC only, slot 2 is VIC or WIC and 1/3 are HWIC and backwards compatible with WIC. Ben On 05/02/2008, at 9:53 AM, Tom Storey wrote: Hi, I just got a WIC-1ADSL and put it into my 2801 (IOS 12.4(16)). No lights, no logs, no nothing. I understand these cards are supported on the 2801. The part number of the WIC is 73-477108 B0. Is anyone aware of compatibility issues with these cards? Maybe it's just a bad card (or a bad slot). Thanks, Adam Did you install it into a VIC/VWIC or HWIC only slot? I believe there are two HWIC only slots, one VIC only slot, and one slot that can accept regular WICs. ___ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/ ___ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/
Re: [c-nsp] dead WIC-1ADSL?
Oh and in regards to actaully getting it show up, you need a T train IOS, 12.3(8)T and on.. On 05/02/2008, at 8:35 AM, Adam Greene wrote: Hi, I just got a WIC-1ADSL and put it into my 2801 (IOS 12.4(16)). No lights, no logs, no nothing. I understand these cards are supported on the 2801. The part number of the WIC is 73-477108 B0. Is anyone aware of compatibility issues with these cards? Maybe it's just a bad card (or a bad slot). Thanks, Adam ___ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/ ___ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/
Re: [c-nsp] BFD aware VRF
I did try with an ethernet link between PE and CE, and bfd config looks good. Unless you're Ethernet links are 1Q trunks like what you'd have between a site with a pair of redundant routers doing both L3 and access layer connections (FHRPs). SRC removed BFD on SVI support, as did SXH on the ME6524s. Yes, I'm beating a dead horse but it aggravates me nonetheless. I need to upgrade to SRC but I am going to lose BFD support as soon as I do, pushing my recovery times up into seconds; far from the milliseconds Cisco sold us on when they blessed this design. And I'm still waiting for the reason why this has been removed from the code, or why it's an issue to support BFD with SVI. And I'll keep beating both dead horses, at least till Cisco or Juniper (EX series) comes up with a solution. Rubens ___ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/
Re: [c-nsp] dead WIC-1ADSL?
Ben Steele wrote: Oh and in regards to actaully getting it show up, you need a T train IOS, 12.3(8)T and on.. Ok, I'm going to throw the huh? flag here. It's been my understanding for years that x.yT becomes x.(y+1) mainline, and on that date the following things happen: x.(y+1) inherits all of the features of x.yT at that moment x.(y+1) moves forward with ONLY that list of features x.yT stops receiving (most) new features at that moment x.(y+1)T is created and begins receiving new features As such, if a feature came out in 12.3(8)T, one could find it in 12.4 (and wouldn't HAVE to go to 12.4T just to keep the feature). Am I wrong (for the most part...let's not nitpick over exceptions)? (Obviously, every now and then Cisco chooses to use (x+1).0 instead of x.(y+1), but that's immaterial for this discussion.) pt ___ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/
Re: [c-nsp] dead WIC-1ADSL?
Yes sorry Pete your right, I was thinking of the HWIC-1ADSL when I wrote you need 12.4T and copying in 12.3(8)T from the WIC-1ADSL...sigh, so yes a plain WIC-1ADSL should be mainline in 12.4, need more zzz :) On 05/02/2008, at 12:28 PM, Pete Templin wrote: Ben Steele wrote: Oh and in regards to actaully getting it show up, you need a T train IOS, 12.3(8)T and on.. Ok, I'm going to throw the huh? flag here. It's been my understanding for years that x.yT becomes x.(y+1) mainline, and on that date the following things happen: x.(y+1) inherits all of the features of x.yT at that moment x.(y+1) moves forward with ONLY that list of features x.yT stops receiving (most) new features at that moment x.(y+1)T is created and begins receiving new features As such, if a feature came out in 12.3(8)T, one could find it in 12.4 (and wouldn't HAVE to go to 12.4T just to keep the feature). Am I wrong (for the most part...let's not nitpick over exceptions)? (Obviously, every now and then Cisco chooses to use (x+1).0 instead of x.(y+1), but that's immaterial for this discussion.) pt ___ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/
[c-nsp] static route with higher AD preferred over BGP
I have a static route configured with Higher admin distance, intially BGP route does does not install int routing table. after a flap in BGP table the static route starts preferring, although the BGP AD is lower then Static route which is 210. any insight is appereciated. PE3#sh ip bgp vpnv4 vrf ONE 111.111.111.111 BGP routing table entry for 21992:533130:111.111.111.111/32, version 2711475 Paths: (2 available, best #2, table TEST) Flag: 0x800 Advertised to update-groups: 8 9 1 65500, imported path from 21992:410129:111.111.111.111/32 10.10.10.129 (metric 20) from 10.10.10.254 (10.10.10.254) Origin IGP, metric 0, localpref 140, valid, internal Extended Community: SoO:65500:140 RT:21992:410 Originator: 10.10.10.129, Cluster list: 10.10.10.254 mpls labels in/out 85760/1179 Local 33.33.33.34 from 0.0.0.0 (10.10.10.130) Origin incomplete, metric 0, localpref 100, weight 32768, valid, sourced, best Community: 21992:1100 Extended Community: RT:21992:533 mpls labels in/out 85760/nolabel ip route vrf TEST 111.111.111.111 255.255.255.255 33.33.33.34 *210* tag * 1100* ___ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/
Re: [c-nsp] Multipoint L2TPV3 tunnel / MPLS VPN over IP Tunnel
Masood Ahmad Shah wrote on Monday, February 04, 2008 11:47 PM: Is there any low end Cisco router for the multipoint L2TPV3 tunnel to configure MPLS VPN over IP Tunnel. I just can't buy Cisco 12000 only for the multipoint L2TPV3 tunnel. I was expecting a support of tunnel mode l2tpv3 in Cisco 7500 but I just can't see it. :( according to www.cisco.com/go/fn, the MPLS VPNs over IP Tunnels feature is available in recent 12.0S on 7200, 7500, 10700 and GSR. Which release are you using? The command syntax is tunnel mode l3vpn l2tpv3 multipoint on the tunnel.. oli ___ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/
Re: [c-nsp] static route with higher AD preferred over BGP
Atif Sid wrote on Tuesday, February 05, 2008 4:53 AM: I have a static route configured with Higher admin distance, intially BGP route does does not install int routing table. after a flap in BGP table the static route starts preferring, although the BGP AD is lower then Static route which is 210. any insight is appereciated. AD comes into play when a route is known via multiple sources. In your case, BGP will prefer the redistributed static route due to its higher weight over the vpnv4 route you receive via iBGP (weight wins over localpref). To solve this (somewhat classical) problem, make sure you set the weight to zero (using a route-map) when redistributing the floating static into BGP (or set the weight of the ibgp vpnv4 prefixes to 32768). This way, BGP will prefer the iBGP path, installs it in the RIB, and this one wins over the floating static. oli ___ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/
Re: [c-nsp] static route with higher AD preferred over BGP
Hi Atif, On Mon, 2008-02-04 at 22:52 -0500, Atif Sid wrote: I have a static route configured with Higher admin distance, intially BGP route does does not install int routing table. after a flap in BGP table the static route starts preferring, although the BGP AD is lower then Static route which is 210. snip I'm not sure I follow. Is there any time the BGP route is not preferred? PE3#sh ip bgp vpnv4 vrf ONE 111.111.111.111 BGP routing table entry for 21992:533130:111.111.111.111/32, version 2711475 Paths: (2 available, best #2, table TEST) Flag: 0x800 Advertised to update-groups: 8 9 1 65500, imported path from 21992:410129:111.111.111.111/32 10.10.10.129 (metric 20) from 10.10.10.254 (10.10.10.254) Origin IGP, metric 0, localpref 140, valid, internal Extended Community: SoO:65500:140 RT:21992:410 Originator: 10.10.10.129, Cluster list: 10.10.10.254 mpls labels in/out 85760/1179 Local 33.33.33.34 from 0.0.0.0 (10.10.10.130) Origin incomplete, metric 0, localpref 100, weight 32768, valid, sourced, best Community: 21992:1100 Extended Community: RT:21992:533 mpls labels in/out 85760/nolabel ip route vrf TEST 111.111.111.111 255.255.255.255 33.33.33.34 *210* tag * 1100* Your problem might be a redistribute static. Looking at a show ip route, you should actually see the route as a BGP route, but with your statically configured next hop. The preferred route in the example is preferred because of it's weight; locally sourced routes have a default weight of 32768, which makes them preferred to any routes from BGP neighbors. If you'd lower the static routes AD you'd get a RIB failure by the way. The redistributed static would still be the preferred route among the BGP paths, so you'd see a lower admin distance failure from the prefix. But you'd have your static route in your routing table. Your solution could be to not redistribute this route. Either don't redistribute static and use network statements (good idea IMHO) or use a redistribute static route-map xyz and let the route-map deny this specific prefix (or tag). I'd really prefer using network statements myself... Regards, Peter ___ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/
