Re: [c-nsp] DHCP_PD / IPv6
The fix is to clear ipv6 dhcp client Dialer123 I use event manager to do this automagically for me like so: event manager applet monitor_ipv6_dhcp event syslog pattern DIALER-6-BIND action 1.0 cli command clear ipv6 dhcp client Dialer1 This reacts to an event in the log of DIALER-6-BIND which for me is my Dialer re-establishing its PPP session, do a clear int d123 and check your logs to verify this for you. You can view the results of event manager by: router#sh event manager history events No. Time of Event Event Type Name 1 Sat Nov 7 11:12:56 2009 syslog applet: monitor_ipv6_dhcp and of course a sh ipv6 dhcp interface d123 will show you your new lease aswell. Cheers, Ben On Sat, Nov 7, 2009 at 7:03 AM, vikas hazrati vikas.hazr...@googlemail.comwrote: Hello all I have been trying testing DHCP-PD functionality for ADSL / PPPoE users. Using basic cisco-site examples I was able to assign an IPv6 prefix to the CPE. The problem I am facing is the following: When the PPPoE session is torn down, the corresponding Virtual-Access interface (and ipv6 routes) are deleted from the NAS as expected, but in the CPE the DHCP-client remains up. So when the PPPoE session is restablished no new routes are installed in the NAS routing table for the DHCP delegated prefixes, so no traffic can be forwarded to the customer subnet. The question is how can I make sure that in a DHCP-PD environment, the DHCP client of the CPE is reinitialized when the PPPoE session used for internet connectivity is re-established The config used on the CPE side is really simple interface Dialer 123 encapsulation ppp dialer pool 123 ipv6 address autoconfig default ipv6 enable ipv6 dhcp client pd DHCP_PD ppp pap sent-username password 0 Any help is welcomed ___ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/ ___ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/
Re: [c-nsp] 4948 IPv6 Throughput
Harald Firing Karlsen wrote: Seth Mattinen wrote: Marco van den Bovenkamp wrote: Yes, it means 'It can't really do it, but we pretend it can' I figured as much. Well, what exactly do you want to know? It means the switch punts all IPv6-packets destined for another prefix to the CPU rendering it quite useless for forwarding IPv6 packets, but it will probably work fine with IPv6 for management (telnet, snmp, etc). If you want performance numbers my bet is you won't be able to push more than about 75-100Mbps under ideal conditions (all 1500B or 9KB packets), but it all depends on the traffic. It is impossible to predict the performance of a switch doing forwarding in software. General forwarding, access lists, etc. Anything you would do with IPv4 right now but in a dual-stack network where things prefer IPv6 first. I'm using 3750's and their TCAM space for v6 stuffs is somewhat tiny. ~Seth ___ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/
[c-nsp] dmzlink-bw and ebgp-multihop 2
I have a very unusual network setup, ISP-A requires me to have ebgp-multihop of 2 because we're not physically connected (we seem to be 2 hops away) Anyways, is there some kind of design implementation to use to make dmzlink-bw work? neighbor disable-connected-check only works if you're 1 hop from a ebgp session, dmzlink-bw works fine on ISP-B's session (3356). Currently I'm using bgp bestpath as-path multipath-relax but the traffic ratios are costing me money, and we do not have the memory to take full tables, or partials (only 32k max) or the money to afford to buy a huge switch just for memory Anyone have some suggestions? Thanks! -G ___ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/
Re: [c-nsp] dmzlink-bw and ebgp-multihop 2
May be tunneling the BGP session with GRE, L2TPv3, MPLS x-connect or VPLS so it will now appear as a single-hop ? Rubens On Sat, Nov 7, 2009 at 7:56 AM, Gary Stanley g...@velocity-servers.net wrote: I have a very unusual network setup, ISP-A requires me to have ebgp-multihop of 2 because we're not physically connected (we seem to be 2 hops away) Anyways, is there some kind of design implementation to use to make dmzlink-bw work? neighbor disable-connected-check only works if you're 1 hop from a ebgp session, dmzlink-bw works fine on ISP-B's session (3356). Currently I'm using bgp bestpath as-path multipath-relax but the traffic ratios are costing me money, and we do not have the memory to take full tables, or partials (only 32k max) or the money to afford to buy a huge switch just for memory Anyone have some suggestions? Thanks! -G ___ cisco-nsp mailing list cisco-...@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/ ___ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/
Re: [c-nsp] MPLS Multi-AS options...
On Friday 06 November 2009 03:40:57 am Kenny Sallee wrote: I'm wondering if anyone is actually doing any flavor of Multi-AS backbone this in the real world? Option A doesn't seem scalable at all. Option B seems scalable, but the level of trust and lack of QoS may be a concern. Option AB - I'm trying to fully understand w/o a ton of lab time. As I read the first Cisco link above, with Option AB - you must configure a sub-interface PER VPN/Client in it's own VRF on each SP's ASBR. So if you have 100 different customers, on that interconnect between SP1 and SP2 you must configure 100 sub-interfaces, VRF's with unique (agree'd upon)RD's. Then you configure a single MP-BGP session to carry the VPNv4 addresses for all VRF's. So really you are only saving X number of BGP sessions with Option AB compared to say just Option A correct? Yes, the difference between Option AB (a.k.a Option D) and Option A or Option B is that with Option AB, only a single eBGP session between the ASBR's is required. Furthermore, while forwarding can be based on MPLS, IP forwarding is also supported, which preserves QoS values that can be used for processing across the ASBR=ASBR link. My suggestion; for any NNI option you choose, it should go a long way in making your life easy, i.e., you don't have create a sub-interface for each customer VPN, you don't have to create an eBGP session for each customer VPN. While Option AB is in an IETF draft state, I only know of Cisco being the only vendor implementing it (there could be others, though - I haven't researched beyond the vendors we use in production). However, some of the other vendors are able to implement the methods Option AB uses to operate, but in such a manner that it may not necessarily be compatible to Cisco's, or if it is, implementing it may not be as scalable, requiring that a number of boxes in the end-to-end VPN connection be touched for co-ordination. Personally, I think Option AB is rather complicated in its design, but based on Cisco's implementation, a lot of that complexity is hidden from the operators, with the routers doing all that automatically. It is an interesting option, but the need to configure a sub-interface for each VPN leaves a strange taste in my mouth. One of the other vendors we're working with is able to implement Option B + IP processing, which is cool because we maintain a single interface for all VPN's, and a single eBGP session for all VPN's, without losing the ability to do QoS. Still checking with Cisco whether they can do this. Things get a lot more interesting when you try to inter-op NNI relationships. If Cisco can't do Option B + IP processing, it may make sense for us to have both a Cisco and non-Cisco NNI router at each NNI site in order to have smooth NNI relationships depending on what platforms our partners can support. Of course, we can only support two platforms, so work becomes trickier if our NNI partner brings along an unsupported device - but, it won't be the end of the world :-). Things get a lot more interesting if you want to NNI for l2vpn/VPLS services. Cheers, Mark. signature.asc Description: This is a digitally signed message part. ___ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/
Re: [c-nsp] Relationship between RAM and routes
On Thursday 05 November 2009 02:12:56 pm Eric Magutu wrote: Hi, What is the relationship between RAM and routes? Well, the more routing entries you have, the more memory you need to hold them. This is truer for dynamic routing protocols than the opposite, as routing entries learned dynamically carry additional attributes along with them and all sorts of goodies that need to make friends with RAM + CPU :-). That said... I want to implement 1000 static routes in a cisco 7206vxr (NPE -G1) and needed to find out what effect it would have on my router. Should I do any upgrades? it has 229376K/32768K bytes of memory 509K of NVRAM 1,000 static routing entries should not be a problem for the platform to handle. I'd be more worried about your energy levels and the amount of NVRAM at your disposal (although there are other options you can consider to manage a larger active configuration). Cheers, Mark. signature.asc Description: This is a digitally signed message part. ___ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/
Re: [c-nsp] Cat6500 Waiting for supervisor to come online in other slot when booting
All, Peter Hicks wrote: I have a pair of 6504Es with Sup32s here, running 12.2(33)SXH6. When they boot, the bootloader loads and I am presented with: ==cut=== ... Cisco IOS Software, s3223_sp Software (s3223_sp-BOOT-M), Version 12.2(33)SXH6, RELEASE SOFTWARE (fc1) Technical Support: http://www.cisco.com/techsupport Copyright (c) 1986-2009 by Cisco Systems, Inc. Compiled Thu 15-Oct-09 11:59 by prod_rel_team Image text-base: 0x40231348, data-base: 0x41B62000 MAC based EOBC installed Waiting (slot 1) for supervisor to come online in other slot. iteration = 0 Next Retry will be done after 6 seconds ==cut=== For the archives - because somebody else is likely to have this problem, the problem was that I had a modular software image and the boot variables weren't set properly. http://www.cisco.com/en/US/prod/collateral/switches/ps5718/ps708/prod_white_paper0900aecd80313e09.html explains how to install modular images. Regards, Peter ___ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/
[c-nsp] unknown ethertype 0x200e
Does anyone know what this might be, from a routed interface on SRD3: 15:00:18.774808 00:02:fc:c1:0d:b2 00:00:00:00:02:02, ethertype Unknown (0x200e), length 78: 0x: 0001 0203 0405 0607 0809 0a0b 0c0d 0e0f 0x0010: 1011 1213 1415 1617 1819 1a1b 1c1d 1e1f 0x0020: 2021 2223 2425 2627 2829 2a2b 2c2d 2e2f .!#$%'()*+,-./ 0x0030: 3031 3233 3435 3637 3839 3a3b 3c3d 3e3f 0123456789:;=? I'd like to know what knob to use to turn it off. Google didn't turn up anything helpful. - Kevin ___ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/
[c-nsp] SNMP Trap Software
hey all i am using Cacti to graph my devices (SNMP port 161) i want a free software that able me to send traps to (SNMP port 162) Best Regards, _ Windows Live: Make it easier for your friends to see what you’re up to on Facebook. http://www.microsoft.com/middleeast/windows/windowslive/see-it-in-action/social-network-basics.aspx?ocid=PID23461::T:WLMTAGL:ON:WL:en-xm:SI_SB_2:092009 ___ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/
Re: [c-nsp] SNMP Trap Software
snmptrapd (part of the net-snmp package, which is included with most Linux/Unix distributions these days), can handle that for you. Take a look at http://net-snmp.sourceforge.net/ Regards, Chris Jones On 08/11/2009, at 9:04 AM, Mohammad Khalil wrote: hey all i am using Cacti to graph my devices (SNMP port 161) i want a free software that able me to send traps to (SNMP port 162) Best Regards, _ Windows Live: Make it easier for your friends to see what you’re up to on Facebook. http://www.microsoft.com/middleeast/windows/windowslive/see-it-in-action/social-network-basics.aspx?ocid=PID23461::T:WLMTAGL:ON:WL:en-xm:SI_SB_2:092009 ___ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/ This email and any files transmitted with it are confidential and intended solely for the use of the individual or entity to whom they are addressed. If you receive this email by mistake, please notify the author and do not make any use of the email. We do not waive any privilege, confidentiality or copyright associated with it. Please consider the environment before printing this e-mail. ___ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/