Christian Koch [EMAIL PROTECTED] writes:
im a bit confused by your use of terms in the question...
are you asking about vrf-aware firewalls?
Probably. Most of them seem to only do 250 firewalls per box, or in
the case of the FWSM, per module. What about the service providers
with thousands of
i dont understand your correlation..
layer 3 vpns and vrf's are not dependant on firewalls
On Thu, Jul 10, 2008 at 4:37 AM, Benny Amorsen
[EMAIL PROTECTED][EMAIL PROTECTED]
wrote:
Christian Koch [EMAIL PROTECTED] writes:
im a bit confused by your use of terms in the question...
are you
It's more stable now on what code?
On Thu, Jul 10, 2008 at 12:13:28PM +0800, Ganbold wrote:
Ganbold wrote:
David Coulson wrote:
The whole router reloads, or just one of the RSPs? Have you tried it
with just a single RSP? Maybe one is dying?
Router reloads :(
FYI, I have experienced
Hi all,
Is there anyone there who can send me a script (linux shell script,
perl, python, expect...) to do a cisco pix 6.3 backup?
If not I will create a new one, but I would be much better if I don't
need to re-create the wheel again if someone can share a script.
Regards.
Pavel Skovajsa [EMAIL PROTECTED] writes:
What if the service provider wants to provide centralized firewalled
internet connection to those customers?
Exactly. There must be many ISP's which offer hosted firewalls and
Internet access for their MPLS customers. But how? None of the
solutions seem
Rodney Dunn wrote:
It's more stable now on what code?
On 12.4(19a).
Ganbold
On Thu, Jul 10, 2008 at 12:13:28PM +0800, Ganbold wrote:
Ganbold wrote:
David Coulson wrote:
The whole router reloads, or just one of the RSPs? Have you tried it
with just a single RSP? Maybe
That's good news as 12.4 is the sunset code for that platform along
with 12.0S.
sunset meaning until it goes full end of support.
Rodney
On Thu, Jul 10, 2008 at 05:42:44PM +0800, Ganbold wrote:
Rodney Dunn wrote:
It's more stable now on what code?
On 12.4(19a).
Ganbold
On Thu,
Hi Arie,
Sorry for top posting but I guess this time it will be easier as your
answer was also above mine:)
This is my network topology and schematic:
http://www.screenshots.cc/show.php/15014_draft.jpeg.html
Router C (in my schema RD-1):
RO-BUC-RD1#sh ip mroute count
IP Multicast
Hello again,
On a closer look I see for example:
on RC1:
RO-BUC-RC1#sh ip pim neighbor
PIM Neighbor Table
Mode: B - Bidir Capable, DR - Designated Router, N - Default DR Priority,
P - Proxy Capable, S - State Refresh Capable
Neighbor InterfaceUptime/Expires
On Thursday 10 July 2008 06:03:31 Jose Leitao wrote:
Today I upgraded a 3560 to
c3560-advipservicesk9-mz.122-44.SE2, and looking at the
output of show version, I noticed something rather
peculiar:
cisco WS-C3560-24PS (PowerPC405) processor (revision N0)
with 0K/8184K bytes of memory
Hi Luismi, (stands for Luis Miguel?)
There are a few useful links I've found for you:
http://www.mangeek.com/portfolio/pixbackup.html
http://3d2f.com/programs/1-918-kiwi-cattools-download.shtml
http://www.networksecurityarchive.org/html/Firewalls/2004-09/msg00227.html
Once I wrote a .vbs script
Hi all,
We got 2 WS-C6504-E chassis both with 1 sup 7203CXL and 2 WS-X6748-GE-TX
and we see that the asic temperature is always higher then 40C which is
the max operational temperature according to the docs.
vssshow environment switch 1 temperature
chassis id 1 switch_id 1
switch 1
On 10/07/2008, at 7:38 PM, luismi wrote:
Is there anyone there who can send me a script (linux shell script,
perl, python, expect...) to do a cisco pix 6.3 backup?
RANCID supports the PIX. See http://shrubbery.net/rancid/
Nick
___
cisco-nsp
Thanks Ziv!
El jue, 10-07-2008 a las 14:26 +0300, Ziv Leyes escribió:
Hi Luismi, (stands for Luis Miguel?)
There are a few useful links I've found for you:
http://www.mangeek.com/portfolio/pixbackup.html
http://3d2f.com/programs/1-918-kiwi-cattools-download.shtml
Koen [EMAIL PROTECTED] writes:
We got 2 WS-C6504-E chassis both with 1 sup 7203CXL and 2
WS-X6748-GE-TX and we see that the asic temperature is always higher
then 40C which is the max operational temperature according to the
docs.
The max operational temperature quoted in documentation is
Mihai Tanasescu wrote:
Hello again,
On a closer look I see for example:
on RC1:
RO-BUC-RC1#sh ip pim neighbor
PIM Neighbor Table
Mode: B - Bidir Capable, DR - Designated Router, N - Default DR Priority,
P - Proxy Capable, S - State Refresh Capable
Neighbor Interface
Hi Robert,
I didn't read anything about this but if i look at some others chassis
like a 6509 the in- and outlet temps are higher but the asic temps are
31C. Could it be the fan-tray of a 6504-e isn't powerfull enough to cool
the chassis?
Thanks,
Koen
Robert E. Seastrom wrote:
Koen
We have a 7204vxr currently in use as our border router. As part of a
transition of our upstream bandwidth from an ATM connection to gigabit
Ethernet, we need to replace some of the modules.
The router currently has a PA-A6-OC3MM module connecting to our service
provider (in the lower right
I just checked a couple 3550s with that version, they look fine. Guess
it's a 3560/3750 thing only.
Chuck
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of Mark Tinka
Sent: Thursday, July 10, 2008 7:23 AM
To: cisco-nsp@puck.nether.net
Subject: Re: [c-nsp]
I'm trying to track down the source of some strange traffic patterns in our
network. All of our remote sites have VOIP from a remote PBX to a central PBX
at our main facility. All of this was set up before I got here, and I have very
little contact with it.
In checking out the strange traffic,
How long ago were the switches installed? Is it possible there is an
accumulation of dust on the module/ASICs?
Chuck
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of Koen
Sent: Thursday, July 10, 2008 8:42 AM
To: cisco-nsp@puck.nether.net
Subject: Re:
Hi Charles,
(i'm a colleague) , we've just installed them, fresh new suite, fresh new
cisco's. There's also no production traffic on it yet, just testing at this
moment. I think they've been up for little over a month.
There's no blocking in airflow, also seems that inlet temps that the cisco
is
Hello again,
I fixed it like this:
ip mroute vrf vrf_business 172.16.103.237 255.255.255.255
fallback-lookup global
ip mroute vrf vrf_default_3 172.16.103.237 255.255.255.255
fallback-lookup global
(global table is the one with MPLS also activated)
But why doesn't it work via the VRF ?
Was there some point in the software versions for the Cat6500 where the Earl
NDE Task process suddenly began using hardly any CPU utilization?
We have 6 catalyst 6500s, 2 of them are farly new, and 4 of them are fairly
old, all of them have almost equal load and netflow is configured exactly
On Thursday 10 July 2008 20:58:26 Steven Pfister wrote:
- As a first step, we're going to replace the I/O
controller with the new one using a FE GBIC, and put the
PA-GE in along with the PA-A6-OC3MM until its time to cut
over to gigabit Ethernet. Is there any restrictions on
where we can put
Not really sure what you mean by 'once per day', might make more sense
if you had a graph of it, NetFlow would be real useful. That said, if
you think the traffic is all VoIP, it could be something as simple as a
scheduled conference call that occurs at the same time creating so much
traffic. If
On Thu, 10 Jul 2008, Mark Tinka wrote:
On Thursday 10 July 2008 06:03:31 Jose Leitao wrote:
Today I upgraded a 3560 to
c3560-advipservicesk9-mz.122-44.SE2, and looking at the
output of show version, I noticed something rather
peculiar:
cisco WS-C3560-24PS (PowerPC405) processor (revision N0)
Greetings,
Jose Leitao wrote:
Hi everyone,
Today I upgraded a 3560 to c3560-advipservicesk9-mz.122-44.SE2, and
looking at the output of show version, I noticed something rather
peculiar:
cisco WS-C3560-24PS (PowerPC405) processor (revision N0) with
0K/8184K bytes of memory
Should this be a
Hi,
Thanks everyone for the replies, does anyone have the Cisco Bug ID?
Thanks,
JL
On Thu, Jul 10, 2008 at 4:31 PM, Kyle York [EMAIL PROTECTED] wrote:
Greetings,
Jose Leitao wrote:
Hi everyone,
Today I upgraded a 3560 to c3560-advipservicesk9-mz.122-44.SE2, and
looking at the output of
On Jul 10, 2008, at 8:58 AM, Steven Pfister wrote:
The router currently has a PA-A6-OC3MM module connecting to our
service provider (in the lower right slot). The IO controller has 2
FE/E ports (don't have the part number). We want to replace the IO
controller with a c7200-I/O-GE+E and the
Greetings,
Time for RMA ? the uplink is basic P2P L3 routing
1y40w: %LINEPROTO-5-UPDOWN: Line protocol on Interface
GigabitEthernet0/7, changed state to down
1y40w: %LINEPROTO-5-UPDOWN: Line protocol on Interface
GigabitEthernet0/7, changed state to up
1y40w: %PM-4-ERR_DISABLE:
Greetings,
Jose Leitao wrote:
Hi,
Thanks everyone for the replies, does anyone have the Cisco Bug ID?
CSCsq70343. I don't think it's viewable outside yet, but am looking for
the process to make it so. With any luck it will be viewable in the next
day or so.
Thanks,
JL
On Thu, Jul 10,
that i cant answer.it just sounded like you were implying a vrf needed
firewall service, which is what was confusing me...
but FWSM scales to 4 per chassis, which is 2000 contexts, 20gbps throughput
..'on paper'...
IOS FW is VRF aware as well, and 7200 makes for a great CE device..
On
In 12.2(18)SXE code for PFC switched packets the SP sends the packets
out via inband rather than sending them to the RP. So changing to
12.2(18)SXE or higher release for PFC switched traffic reduces the
CPU of the RP, but increases the SP CPU load slightly. So the fairly
old ones I guess
On Thu, 10 Jul 2008, Steven Pfister wrote:
We have a 7204vxr currently in use as our border router. As part of a
transition of our upstream bandwidth from an ATM connection to gigabit
Ethernet, we need to replace some of the modules.
The router currently has a PA-A6-OC3MM module connecting
Not having much luck finding this in bugtool/release notes (although I'm
aware of what is fixed in 33S1 , until I find this one no idea if
upgrade will help)
router#sh ip bgp vpnv4 all | in :
snip
Route Distinguisher: 1234:9989
Route Distinguisher: 1234:9990
Route Distinguisher: 1234:9991
Route
Hello All,
I have a question about policy based routing on Cat6500. I want to
split HTTP traffic and route it through proxy and route rest of the
traffic straight to the internet. The only thing that worries me is
will 6500 with sup720 be powerful enough to route 1-10Gbps of traffic
with PBR. I
Maybe it's the fact that these are sup720-3cxl-10ge , with X2 modules
installed (which also seem to get hot, 41C), and this packed in a small
chassis
Check CISCO-ENTITY-SENSOR-MIB::entSensorThresholdTable. Looking at some
720C-10GE's, the minor threshhold for the 'asic-#' sensors are
I've just found out that dhcpv6 relay functionality is currenty not
supported on the cat 3750 series
(http://www.cisco.com/en/US/docs/ios/ipv6/configuration/guide/ip6-roadmap.html)
Can someone shed some light when to expect this feature?
Thanks
Joerg
--
Joerg Mayer
39 matches
Mail list logo
