Hi Folks.
Can anyone tell me how I can get around following problem?
Our server guys want to run windows update on there Windows servers directly
from the DMZ zone.
It seems that Microsoft is using DNS load balancing when they are announcing
the dns name.
How is this possible to get working in
If I remember correctly, whenever an Etherchannel changes from two or
more members to one member (or vice versa), an STP reconvergence is
triggered. Assuming that to be correct, you'll still have an STP blip
during a link/card failure. :(
No, an Etherchannel is a single link as far as STP
Phil Mayers wrote:
I'm sorry to say whether you believe it or not has little to do with the
reality of the situation. To the best of my (by no means encyclopaedic)
knowledge, there is no such thing.
In any event, Tassos has already suggested:
1) make the port an access port
2) block
I experienced a funny thing, trying to setup some templates for PE
routers. I'd like to do as much as possible in the template, and then
just the unit specifics afterwards. What I did was basically this:
! ;; Template
interface Loopback0
! ip address lies in specific configuration
no ip
Hey Paul,
You got an examples on how you would block this on the port with the
protocol type and the MAC?
I've never done MAC blocking, or protocol type probably easy though.
...Skeeve
-Original Message-
From: Paul Cosgrove [mailto:[EMAIL PROTECTED]
Sent: Thursday, 24 April 2008
Peter,
lab-core-1#sh ip bgp sum
BGP router identifier 10.0.0.1, local AS number 65432
BGP table version is 1, main routing table version 1
Neighbor V AS MsgRcvd MsgSent TblVer InQ OutQ Up/Down State/PfxRcd
10.0.0.1 4 123 0 3 0 00 never OpenSent
and AS
On 24/04/2008, at 8:17 PM, Peter Rathlev wrote:
I experienced a funny thing, trying to setup some templates for PE
routers. I'd like to do as much as possible in the template, and then
just the unit specifics afterwards. What I did was basically this:
! ;; Template
interface Loopback0
! ip
Hi Skeeve,
Here are a couple of alternative ways you should be able to block VTP.
You can the following on a trunk link by setting up two vtp servers
(with same domain etc.) and watching the vtp traffic using debug
sw-vlan vtp xmit and debug sw-vlan vtp packet. Add a filter to one
switch
On Thu, 2008-04-24 at 21:37 +0930, Tom Storey wrote:
Any ACLs on the interfaces between the two peers?
Nope, it's peering with itself. No ACLs, just the configuration I
pasted. (It's lab equipment.)
Regards,
Peter
___
cisco-nsp mailing list
On Thu, 2008-04-24 at 13:05 +0100, Mateusz Błaszczyk wrote:
Peter,
lab-core-1#sh ip bgp sum
BGP router identifier 10.0.0.1, local AS number 65432
BGP table version is 1, main routing table version 1
Neighbor V AS MsgRcvd MsgSent TblVer InQ OutQ Up/Down State/PfxRcd
10.0.0.1
All
Thanks for your replies. This is what I came up with too. Yes, the route
remains in the table if the next hop is reachable through a 0.0.0.0 route
for example. I am trying out each scenario now so will list results for
everyones benefit.
G
On Wed, Apr 23, 2008 at 6:21 PM, Adam Armstrong
Hi all,
Just looking through cisco's website and trying to find an IOS match for
the SPA-2X1GE-V2
Have not managed to find any details as to which IOS on the 12k is
required - of course this will be running in relevant SIP in the 12k
chassis. Tried software advisor but to no avail...
Anyone
Hi Mark,
A 12k recently landed onto my knees with a SPA-5X1GE-V2 onboard:
it came with IOS version 12.0(32)SY4. So far everything is good,
even if it's just running a basic MPLS config.
Cheers,
Paolo
On Thu, Apr 24, 2008 at 03:39:44PM +0200, Mark Pace Balzan wrote:
Hi all,
Just looking
Paul,
To be honest, i didn't think the mac acl would work using 0x2003 as an
ethertype, because the value 0x2003 refers to the Local
Code field (or Protocol Identifier (PID)) of the LLC/SNAP header.
But i tried it and it worked. It also worked for UDLD (0x0111).
I then found out that IEEE
Does anyone have any pointers on how a 7609 RSP720 running
122-33.SRB2 builds the rpf table.
rtr3#sh ip rpf x.y.x.19
failed, no route exists
rtr3#sh ip route x.y.z.19
Routing entry for x.y.z.16/28
Known via ospf xxx, distance 110, metric 13, type intra area
Last update from a.b.c.194 on
Thanks for testing that Tassos,
The protocol identifier field is five bytes long, and is divided into a
three byte OUI (which isn't used) and the two byte ethertype.
Paul.
Tassos Chatzithomaoglou wrote:
Paul,
To be honest, i didn't think the mac acl would work using 0x2003 as an
Thank you Mike Cuz this is the first time I'm reading about this feature
therefore I'll do this procedure
but I have another inquiry I did configure the Sensor in inline mode with two
Virtual Sensors each two interfaces belong to Virtual Sensor
I put the First Virtual Sensor (VS1) as External
Are you running PIM on TE1/1?
Paul.
Jay Young wrote:
Does anyone have any pointers on how a 7609 RSP720 running
122-33.SRB2 builds the rpf table.
rtr3#sh ip rpf x.y.x.19
failed, no route exists
rtr3#sh ip route x.y.z.19
Routing entry for x.y.z.16/28
Known via ospf xxx, distance 110,
Or maybe the OUI is used for VTP...
http://www.cisco.com/warp/public/473/21.html
Paul Cosgrove wrote:
Thanks for testing that Tassos,
The protocol identifier field is five bytes long, and is divided into a
three byte OUI (which isn't used) and the two byte ethertype.
Paul.
Tassos
So, an update for anyone who is interested.
As suspected, the route is removed from the routing table if there is no
other route to the next hop address. A default route being configured means
that the static route stays as the next hop is reachable via this.
The configuration of object tracking
We have a 2950 which has suddenly stepped up CPU from 10 to 96% the box is
lightly loaded but has Decnet/lat traffic from servers on 3 ports.
Interrupts 7%
Total process % ~10%
Output interpretor susggests from sh tech that I have 66% process switching
Debug is off except for Spanningtree
Hello,
I am curious if anyone is experiencing bugs with the 1841 platform? In
our case it's acting as a firewall, and terminating 5 IPSEC tunnels.
Also routing between several VLANs. No dynamic routing protocols.
Remote access via SSH. It seems that we are getting a bunch of error
messages in
Elmar K. Bins wrote:
[EMAIL PROTECTED] (Benny Amorsen) wrote:
[EMAIL PROTECTED] writes:
racked a lot of 7200's. never had a problem with them drooping
alarmingly. tighten your screws.
It IS a problem with 1U front mounted stuff. Even 3750's suffer from
it.
3750s always had the cheapest
Hi,
On Thu, Apr 24, 2008 at 12:04:48PM -0500, Michael Malitsky wrote:
Am I correct that this router is not really meant to do all this, and we
should put an ASA in it's place, or am I missing something?
No matter what you do to the router, it must not crash when doing config
changes. Have TAC
Yes pim sparse-mode on all interfaces.
Jay
On Thu, Apr 24, 2008 at 12:26 PM, Paul Cosgrove [EMAIL PROTECTED] wrote:
Are you running PIM on TE1/1?
Paul.
Jay Young wrote:
Does anyone have any pointers on how a 7609 RSP720 running
122-33.SRB2 builds the rpf table.
rtr3#sh ip
Yes pim sparse-mode on all interfaces.
Jay
On Thu, Apr 24, 2008 at 12:26 PM, Paul Cosgrove [EMAIL PROTECTED] wrote:
Are you running PIM on TE1/1?
Paul.
Jay Young wrote:
Does anyone have any pointers on how a 7609 RSP720 running
122-33.SRB2 builds the rpf table.
rtr3#sh ip
Hello,
did anyone use more than 12 member in one mlppp bundle?
As far as i understand cisco support up to 12 members.
We are espessially interesting in:
1) GSR + SIP-401 + SPA-1XCHSTM1
2) 7600 + SIP-200 + SPA-8XCHT1/E1
3) 7200 + PA-MCX-8E1
We have try in lab mlppp with 16 members (7200-7600)
Disable spanning-tree debug.
Juliano Luz
Analista de Redes e Telecomunicações
Infra-Estrutura de Redes e Telecomunicações
Telemática - Confederação SICREDI - Porto Alegre
+55 (51) 3358-7113
http://www.sicredi.com.br
-Mensagem original-
De: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED]
Hello,
We have changed our internet connection over from 4 dsl lines to one
connection. We have a 25mbit connection provided by a neighboring
company and we have an agreement with them that we will only use
10mbit bursting to 12 or 13mbit. What would I need to do on our 2801
to limit our
Now it trying to have an iBGP-session with itself,
How strange. Normally it'll complain that it can't peer with
itself.
a thing I normally can't configure. :-)
That actually is possible: Set up two loopbacks, create a tunnel
between the loopbacks, and peer over that tunnel with one end of
the
On Wed, Apr 23, 2008 at 5:18 AM, Jason Berenson [EMAIL PROTECTED] wrote:
Greetings,
For anyone that cares. It seems that the bad NPE-G1 was running 12.2.x
bootstrap code. Once they sent me one that was running 12.3.x and
12.4.19 IOS everything worked like a charm.
Thanks,
Jason
Hi,
Sidney,
I already got the G1 replaced, it's working. I have an NPE-400 in a VXR
chassis that was running fine with 12.3.x until I put 12.4.19 on it. It
starts the boot process, shows the version of bootstrap (12.2.x) then
shows the amount of memory (256M) then does this:
rommon
rommon
Hi folks.
We're working on a project to expand some access equipment (ADSL access).
I'm trying to figure out the best approach for customers who have their own
netblocks.. Such as a /29. Today, customers who have their own netblocks
connect and receive a single /32 static address via our
On Fri, Apr 25, 2008 at 12:48 AM, Jason Berenson [EMAIL PROTECTED] wrote:
Sidney,
I already got the G1 replaced, it's working. I have an NPE-400 in a VXR
chassis that was running fine with 12.3.x until I put 12.4.19 on it. It
starts the boot process, shows the version of bootstrap (12.2.x)
Sidney,
Without the PAs it does the same thing up until it tells me how much
memory it has, then it scrolls this non stop:
monitor: command boot abo
mon
-Jason
Sidney Boumendil wrote:
On Fri, Apr 25, 2008 at 12:48 AM, Jason Berenson [EMAIL PROTECTED] wrote:
Sidney,
I already got the
Very interesting. I have a problem with having an ethernet in global doing
NAT over a VRF, and the vrf doesn't know how to get to the ethernet LAN
segment in the global.
I was thinking of just doing: ip route vrf whatever 1.1.1.0 255.255.255.0
3.3.3.3 global, where 3.3.3.3 is just some bogus
Joe,
I tried using the shape command under the policy-map but it doesn't
seem to take effect. When I use the police command it does take
effect.
Any ideas?
On Thu, Apr 24, 2008 at 4:35 PM, Joe Maimon [EMAIL PROTECTED] wrote:
shaping
Dan Letkeman wrote:
Hello,
We have changed
I would say you need to use CBWFQ for this.
Create an ACL match everything or whatever interested you out of your
network and assigned to a class-map, then create a policy map
policy-map out
class out
bandwidth 10M
shape peak 13M
interface WAN
service out out
-lmn
On Thu, Apr 24, 2008 at 6:48
Luan,
I have tried this, but it doesn't seem to take effect. My connection
is on an HWIC-4ESW. Could that be a problem? If I use police cir
1000 it works and seems to take effect.
Thanks,
Dan.
On Thu, Apr 24, 2008 at 7:27 PM, Luan Nguyen [EMAIL PROTECTED] wrote:
I would say you need to
On Thu, 24 Apr 2008, Paul Stewart wrote:
Without messing with Radius, what options do I have to inject these routes
towards the endpoints when they are changing different devices all the time?
This seems like such a simple question but I have yet to come up with an
elegant solution ;) I was
Why not mess with radius? It'll apply the route let ospf do the rest
regardless of which nas takes the call. I may be missing something, but I
don't believe an alternate elegant/clean solution exists. It's worked
fine for us for many years.
cheers,
brian
On Thu, 24 Apr 2008, Paul Stewart
Michael,
responses inline...
On Thu, Apr 24, 2008 at 10:04 AM, Michael Malitsky [EMAIL PROTECTED]
wrote:
Hello,
I am curious if anyone is experiencing bugs with the 1841 platform? In
our case it's acting as a firewall, and terminating 5 IPSEC tunnels.
An 1841 is an ISR with built in
Hi,
I'm testing a tube ipv6 based.
Please kindly trace to indotube6.indo.net.id or access
http://indotube6.indo.net.id
Other thing, I saw in my Cisco 12.2T that if interface has many ipv6
addresses, there will be no secondary stated.
Nope sure if the traceroute will take which ip to be showed
I'm a little confused about the throughput of Cisco devices.
The portable product sheet lists the 870 series as Fast/CEF switching as
12.80 Mbps maximum theoretical throughput.
Does this mean an 877 with a ADSL2 service trained up at 20-24Mbps will
never actually be able to attain those speeds?
Hey all,
I just acquired a Cisco 4006 with a lot of network ports. 2 * 48 10/100 and
a 1 * 48Gig ports.
I've been told that the Sup1 is CatOS based. So I am wondering what SUP's
can it take that run IOS and can access all the ports?
I am completely unfamiliar with Blades of the 4000 (and
45 matches
Mail list logo