Hello,
we are experiencing problem with ASA 5505. There is limit to 50 internal
hosts due to the licence and the limit is always reached in short time
after reboot even if the number of internal hosts is below apx 10.
the sh local output is:
Detected interface 'outside' as the Internet
Hello,
I had once tried to use the NAT controls on the interfaces on a PIX and I
was dissappointed because things didn't work as expected, but I don't
remember the exact details. What I remember is that if you want to be
safe, you must put access-list everywhere. So I use now no nat-control
On Thu, 2009-07-23 at 11:50 +0800, Mark Tinka wrote:
We've standardized on 9,000 bytes on all our switches and routers,
especially so because we are both a C J house.
Different line cards that support different values, different switch
models within C that support different values, are
Also the 3560/3750 series support jumbo frames up to only 9000 bytes.
When people define these MTU sizes, what does this size include? The
payload? The ip header? Layer 2 header? Some documentation seems murky on
this issue.
When working with MTU changes necessary for MPLS operation,
We need to split the netflow data coming off of a router to two different
destinations based on the port.
I.e.
We need to export Pos1/0 and G6/1 to destination 1
and
everything to destination 2.
Is it possible to do this? or do I need to send all of the data through a
software collector and
Hi,
I have a CE router doing eBGP peering with two of my PE routers over
distinct WAN circuits. The CE router services two netblocks on its LAN
interface: one is for VOICE, the other (secondary IP address) is for DATA.
I want the customer's DATA traffic to flow to/from PE1 by default, and
This will be my first experience with the new Cisco Modular IOS. I am
tasked with upgrading the IOS (which is already modular) of a 6500.
The current image is already installed on disk0:/sys...
Just for peace of mind, and a good nights sleep :-)...I was hoping for
some confirmation from
Look in to PBR with either router tracking or one of the other IP SLA
event types to monitor for the link going down.
Rodney
Adam Greene wrote:
Hi,
I have a CE router doing eBGP peering with two of my PE routers over
distinct WAN circuits. The CE router services two netblocks on its LAN
On (2009-07-22 19:54 -0400), Adam Greene wrote:
I've toyed with the idea of trying to use VRF for this application,
but I'm pretty new to it and don't know if it's really a viable
approach.
MTR[0], Multi-topology routing is intended for for establishing separate
topologies based on
On Thu, 23 Jul 2009, Ray Burkholder wrote:
When people define these MTU sizes, what does this size include? The
payload? The ip header? Layer 2 header? Some documentation seems
murky on this issue.
Depends on the platform. Several networks I have been working on has been
standardised to
On Jul 23, 2009, at 7:45 PM, Drew Weaver wrote:
Is it possible to do this?
If it's a Cisco router running an image which supports Flexible
NetFlow, yes. I don't know about Juniper routers.
One can also send all the NetFlow telemetry to two destinations on
many Cisco platforms/trains,
thank you very much guys,
I will try to create this script and will give you.
See ya
--
NO STREES
ECO ATTITUD :D
On Tue, Jul 21, 2009 at 7:39 AM, Ivan Pepelnjak i...@ioshints.info wrote:
Tcl doesn't have expect but it does have typeahead which you can
probably use to
We're a small shop and our group's upstream is single-homed in terms of
providers but dual-homed in terms of physical connectivity, with a private
ASN.
Occasionally there's BGP events and I would like to be remotely notified --
NAGIOS can do that and I prefer SNMP polling. We're not doing an
Hi Frank,
You say maybe traps is the next step.
You can get an snmp trap when a peer changes state, you can then get nagios to
respond to the traps using traphandler
Some info at
http://www.cisco.com/en/US/docs/ios/12_3t/12_3t7/feature/guide/gt_bmibe.html
We are using nagios and
If it's a Cisco router running an image which supports Flexible
NetFlow, yes. I don't know about Juniper routers.
Juniper supports this also on several main relases.
Nils Kolstein
___
cisco-nsp mailing list cisco-nsp@puck.nether.net
According to the documentation:
* IP multicast boundaries filter data and control plane traffic
including IGMP, PIM, and AutoRP messages. PIM Register messages are sent
using unicast and will not be filtered.
However, I have multiple multicast boundaries set up on various SVIs and
PIs, and IGMP
I need to redistribute my default route from my ospf process to my bgp.do I use
a route map to just allow my default ?
Sent from my iPhone
___
cisco-nsp mailing list cisco-nsp@puck.nether.net
https://puck.nether.net/mailman/listinfo/cisco-nsp
Hi Guys,
With your help I was able to register my SIP phones with Cisco
CallManager but I have a problem here. When the externally registered
SIP phone calls an internal phone and when I press the answer button the
call immediately gets disconnected. I have the below config on my ASA
5505:
Are the VOICE and DATA traffic going to distinct servers? If that's the
case, you can tweak the BGP route selection policy on the CE router. See
this article for an example (not too far off from what you're looking for):
http://www.nil.com/ipcorner/ScalablePolicyRouting/
If you cannot
Thanks to all who replied. I think we're going further with trying out
Mediawiki. The most important thing is of course that the written
documentation is up to date as much as possible. Easy editing is
paramount to achieving this.
Regards,
Peter
On Wed, 2009-07-22 at 18:02 -0400, jp wrote:
We
On Thu, Jul 23, 2009 at 09:03:41AM -0500, Frank Bulk wrote:
Currently the NAGIOS plugin I'm developing polls the bgpPeerState,
bgpPeerIn/OutUpdates and bgpPeerIn/OutTotalMessages and alerts me if there's
a change. Since a BGP session could be re-established in a short amount of
time, I
To advertise a BGP default route to a BGP neighbor, use the neighbor
default-originate router configuration command.
/Regards,
Masood
I need to
redistribute
my default route from my ospf process to my bgp.do
I use a
route map to just allow my default ?
Sent from my
iPhone
I m facing a strange issue regarding the NAT. The problem statement is as
below
NAT configured on 3845 with 12.4.24 T ADV ENT SERVICES
- Have got 64 /25 inside subnets to do the nat with 64 Live IP's. one
each for /25 inside subnet.
- I checked the processes and memory on freshly
Kiran,
SIP inspection doesn't always work as it should. Take a look at 'show
service-policy inspect sip' and see if you're getting drops. If you are, you
may need to remove it from the default global policy:
policy-map global_policy
class inspection_default
no inspect sip
-ryan
I need some clarification with some general LACP principles.
I have a cisco switch talking to a load balancer (F5). both sides are in active
mode. There are four links making up the bundle and the F5 LTM load balancer is
the Actor. What happens when I administrataively shutdown link 1?
a) The
On 23/07/2009 17:10, Brandon Ewing wrote:
Have you looked at the following plugins in the Nagios Exchange?
http://exchange.nagios.org/directory/Plugins/Uncategorized/Software/SNMP/check_bgp_neighbors/details
Honestly if you are looking that scale of NAT you should look at the
ASR1002. It does all NAT in the hardware path and it scales way above
what IOS can do in software.
If you were talking 5-10k translations that's one thing.
Rodney
Hitesh Vinzoda wrote:
I m facing a strange issue regarding
Yes, you need to install to a different (non-existing) directory for the new
image.
The 'install bind' *should* do the work of adding the proper boot commands.
If you have dual-supervisors, you can simply force a switchover instead of a
full reload for decreased downtime. If you have
When adding ports to a spanning-tree instance, spanning-tree discovers and
eliminates
loops in the topology. What your are experiencing is an as designed
feature of spanning tree.
You can segment your layer2 domain via PVST/PVST+ or you can segment your
layer 2 domain
using MST via customer
Hi!
You gave me a good reason to finally test this command and document what it
does and how it's used in a hub-and-spoke environment:
http://wiki.nil.com/OSPF_flooding_filters_in_hub-and-spoke_environment
It's exactly what's needed to solve the original problem (but of course you
need a static
Just configure network 0.0.0.0 0.0.0.0 in your BGP process. Whenever
there's a default route in the IP routing table, BGP will advertise it. More
details in:
http://wiki.nil.com/BGP_default_route
http://blog.ioshints.info/2007/11/bgp-default-route.html
Ivan
http://www.ioshints.info/about
On Wed, 22 Jul 2009, Ruben Alvarez wrote:
Yes the routers in area 1 are set to redistribute connected and static.
They do DSL aggregation and if you can imagine I need some flexibility with
those addresses (approx /20.) I'll move IP pools and /30 -/29 networks from
router to router as
This is my first post.
I have 2 questions:
1) does The cisco-nsp Archives have a search function to look for posts that
may have already been addressed and/or answered?
2) What criteria would you use to determine whether a Metro Ethernet
network should move forward with VRF-Lite or use MPLS
Currently I have a 7606 RSP720 hitting 94% CPU.
A 'sh proc cpu sorted' indicates that SNMP ENGINE is the source.
Any thoughts on this?
Thanks
-b
--
Bill Blackford
Senior Network Engineer
Technology Systems Group
Northwest Regional ESD
Bill Blackford wrote:
Currently I have a 7606 RSP720 hitting 94% CPU.
A 'sh proc cpu sorted' indicates that SNMP ENGINE is the source.
Any thoughts on this?
It lays to rest the old A watched pot never boils adage... :-)
Jeff
___
cisco-nsp
A 'sh proc cpu his' shows the pegging starting about 8 hours ago.
-b
-Original Message-
From: cisco-nsp-boun...@puck.nether.net
[mailto:cisco-nsp-boun...@puck.nether.net] On Behalf Of Bill Blackford
Sent: Thursday, July 23, 2009 2:05 PM
To: cisco-nsp mailing list
Subject: [c-nsp] SNMP
Oops. Meant for another list.
My apologies to the group.
Meanwhile,
My 5 second utilization shows 94%/0 does this indicate that it's all process
switched vs. CEF switched?
-b
-Original Message-
From: Bill Blackford
Sent: Thursday, July 23, 2009 2:11 PM
To: Bill Blackford; cisco-nsp
Another question on this same concept.
On this platform, are ip prefix-lists punted to the CPU?
-b
-Original Message-
From: cisco-nsp-boun...@puck.nether.net
[mailto:cisco-nsp-boun...@puck.nether.net] On Behalf Of Bill Blackford
Sent: Thursday, July 23, 2009 2:18 PM
To: cisco-nsp
Hello All,
I hope you guys can help me with the following issue.
It started a couple of weeks ago when one customer reported degraded
performance.
The customer has ~30 servers on a WS-C3750E-48TD, which in turn has a
single 10GE link to the 6500 in question.
The 10GE link on the 6500 has a
Is there any tweak, trick or feature that enables a route-reflector to pass
on multiple iBGP paths to clients ?
This is for a straightforward iBGP ipv4 setup (no multiprotocol bgp or MPLS,
so no unique VRF ids etc).
(7200 running 12.2SB or later)
Thanks
Dean
We experienced an issue on our network where we have a link between 2 cisco
ME6524s. There was packet loss across the link, but the interfaces on either
side never actually dropped. The packet loss however was severe enough to
cause problems w/ our OSPF (the neighbor session kept dropping up
We experienced an issue on our network where we have a link
between 2 cisco ME6524s. There was packet loss across the
link, but the interfaces on either side never actually
dropped. The packet loss however was severe enough to cause
problems w/ our OSPF (the neighbor session kept
Tony Baade wrote:
We experienced an issue on our network where we have a link between 2 cisco
ME6524s. There was packet loss across the link, but the interfaces on either
side never actually dropped. The packet loss however was severe enough to
cause problems w/ our OSPF (the neighbor
Hi Randy,
I use this web page to search for past nsp posts.
http://markmail.org/search/?q=cisco%20nsp#query:cisco%20nsp%20list%3Anet
.nether.puck.cisco-nsp+page:1+state:facets
Cheers.
Andy
This email and any files transmitted with it are confidential and intended
solely for the use of the
44 matches
Mail list logo
