Drew Weaver wrote:
Howdy all,
Last night I had an interesting encounter on one of my 6509s /w SUP7203-BXL.
This switch has 3x iBGP sessions with full internet tables and is also
running OSPF.
Two of the three iBGP sessions randomly dropped with:
%BGP-3-NOTIFICATION: sent to neighbor
Hi,
I have problems with a WS-SVC-IPSEC-1 where I'm trying to setup a
site-to-site tunnel.
Last night, I got the tunnel up. But after applying a acl to the 6500,
the tunnel went down and stayed down. Removing configuration just to
get the tunnel up again and continue trying to get the
Hi all,
I use the 3 7200 to connect to upstreams
Cisco 7206VXR (NPE-G1) processor (revision B) with 229376K/32768K
bytes of memory.
Max CPU usage:28%
Cisco 7204VXR (NPE-G2) processor (revision A) with 917504K/65536K
bytes of memory.
Max CPU usage: 75%
Cisco 7206VXR (NPE400) processor
Hi Brian,
I have never seen any event (OIR or any other kind) generated when
plugging/unplugging the SFPs on any Cisco switches. The way I check this is
with usual 'show int status' or simply 'show int x/y' after making the
physical change.
Of course if the interface is up, then you will get
Do you have the inside and outside vlan for your ipsec traffic configured
with a crypto connect? eg
interface Vlan7
description outside:encrypted traffic
no ip address
crypto engine subslot 8/0
crypto connect vlan8
!
interface Vlan8
description inside:cleartext traffic
ip address xxx
hi R.
The G2 will certainly handle it, but I would look into the reason for having
75%, that sounds really bad.
For the G1 and NPE400, I'd say you definitely need more memory - 512 MB or
1G to be fine.
This is what Cisco says:
The amount of memory required to store BGP routes depends on many
We use rancid and show inentory raw command 2x an hour to log approx
when an SFP was inserted/removed...
Best way I've found to do it... It also nabs your serial numbers.
--
Tim
On Mon, Dec 14, 2009 at 8:00 PM, Brian Spade bitkr...@gmail.com wrote:
Hi,
I am doing some testing and can't seem
I use the 3 7200 to connect to upstreams
Cisco 7206VXR (NPE-G1) processor (revision B) with 229376K/32768K
bytes of memory.
Max CPU usage:28%
Cisco 7204VXR (NPE-G2) processor (revision A) with 917504K/65536K
bytes of memory.
Max CPU usage: 75%
Cisco 7206VXR (NPE400) processor
Hi Lee,
No, I don't have it configured with crypto connect. From what I read
so far, I don't need that for site-to-site ipsec?
The asa in the remote office can ping the remote peer ip configured on
the 6500. Just seems like bad magic for me right now that for some
reason the traffic doesn't seem
Hi,
wonder if anyone came to this...
XX-sp#sh proc cpu
CPU utilization for five seconds: 100%/88%; one minute: 100%; five
minutes: 100%
and lasts for a week or two already. It's in ios-base, TID 6
XX-sp#sh proc cpu det 12311
CPU utilization for five seconds:
On Tue, Dec 15, 2009 at 8:45 AM, Pär Åslund psl...@gmail.com wrote:
Hi Lee,
No, I don't have it configured with crypto connect. From what I read
so far, I don't need that for site-to-site ipsec?
All the docs I read talked about the bump in the wire encryption. Somehow
or other you have to
I will be out of the office starting 12/15/2009 and will not return until
12/16/2009.
I will respond to your message when I return. Please contact with
net...@dtcc.com for any production issues
BR_
FONT size=2BR
DTCC DISCLAIMER: This
We recently upgraded one of our routers to 12.2(33)SXI3 (from SXF). Soon
after the upgrade one of our customers complained that he started to see
RA messages. From the beginning on his interface we have ipv6 nd ra
suppress, I added ipv6 nd ra mtu suppress, but the customer says he
still sees
Can someone with a SIP-400 module execute the sh platform hardware capacity
system command and send me the output?
I would prefer people with 7600/RSP720.
--
Tassos
___
cisco-nsp mailing list cisco-nsp@puck.nether.net
Hi
Does anyone know of a way to recover/reset the password on a Cisco IGX. I
have found nothing when searching Cisco.com. Any assistance is greatly
appreciated.
Rgds
Phil Bartlett
Comtek Network Systems (UK) Ltd
===
DDI: - +44 1244 283 054
At 18:49 15/12/2009 +0200, Tassos Chatzithomaoglou wrote:
Can someone with a SIP-400 module execute the sh platform hardware
capacity system command and send me the output?
I would prefer people with 7600/RSP720.
Not a RSP720 but close:
petach-tikva-gp#sh platform hardware capacity system
I have several uniquely numbered 802.1q tagged links coming into a Cisco
7609-S (12.2(33)SRB3) on a single physical port. I would like to use the
same group of subnets for each VLAN and I tried using loopbacks but it
doesn't work. Any ideas on what I'm doing wrong?
interface Loopback 2
ip dhcp
On Tue, 15 Dec 2009, Frank Bulk - iName.com wrote:
I have several uniquely numbered 802.1q tagged links coming into a Cisco
7609-S (12.2(33)SRB3) on a single physical port. I would like to use the
same group of subnets for each VLAN and I tried using loopbacks but it
doesn't work. Any ideas
On Tue, 2009-12-15 at 08:30 -1000, Antonio Querubin wrote:
On Tue, 15 Dec 2009, Frank Bulk - iName.com wrote:
I have several uniquely numbered 802.1q tagged links coming into a
Cisco 7609-S (12.2(33)SRB3) on a single physical port. I would like
to use the same group of subnets for each
Frank,
Can you please explain what do you want to achieve?
I think this should be done in a different way.
Also, what HW do you have?
Arie
-Original Message-
From: cisco-nsp-boun...@puck.nether.net
[mailto:cisco-nsp-boun...@puck.nether.net] On Behalf Of Frank Bulk -
iName.com
Sent:
It's my understanding that BVIs on the 7600-platform only bridge non-IP
traffic, so that wouldn't work.
Frank
-Original Message-
From: Antonio Querubin [mailto:t...@lava.net]
Sent: Tuesday, December 15, 2009 12:30 PM
To: Frank Bulk - iName.com
Cc: cisco-nsp@puck.nether.net
Subject: Re:
I have 5 remote sites where I'm doing FTTH and transporting the traffic over
a third-party transport gear to our HQ. Each site-HQ link is a separate
VLAN and uniquely numbered. My preference is to burn up only one port on
the Cisco 7609-S (RSP720-3C with WS-X6748-DFC3C) and transport gear by
Thanks Pavel and Tim for the quick answer. I must be losing my mind... I
thought I saw this logged before.
/bs
___
cisco-nsp mailing list cisco-nsp@puck.nether.net
https://puck.nether.net/mailman/listinfo/cisco-nsp
archive at
Frank,
The right way to solve it would be to use the ES20 (or more actually the
more recent ES+) modules.
This would allow you to create a separate EVC/EFP (service-instance) per
site, using whatever VLAN IDs (even reusing them, or using QinQ) and
then bridge-domain them all to the same central
7600 SRD3 offer it:
%TRANSCEIVER-DFC1-6-INSERTED: transceiver module inserted in GigabitEthernet1/8
%TRANSCEIVER-DFC1-6-REMOVED: Transceiver module removed from GigabitEthernet1/8
--
Tassos
Brian Spade wrote on 15/12/2009 21:56:
Thanks Pavel and Tim for the quick answer. I must be losing
I have a 2811 which I am trying to set up an ATM T-1 on. T-1 card and AIM
are detected:
Cisco 2811 (revision 49.46) with 249856K/12288K bytes of memory.
2 FastEthernet interfaces
1 Gigabit Ethernet interface
1 Channelized (E1 or T1)/PRI port
1 ATM/Voice AIM
The VWIC2-1MFT-T1/E1 came in a bundle
Hey JAmes,
did you try card type command under global config?
card type {t1 | e1} subslot
http://www.cisco.com/en/US/docs/routers/access/1700/1721/software/feature/guide/t1e11721.html#wp64656
Regards,
On Tue, Dec 15, 2009 at 5:31 PM, james edwards
lists.james.edwa...@gmail.com wrote:
I have
I believe the command you're looking for is...
Router(config)#card type t1 0 0
Steve M. Gerteisen
Senior Network Analyst
BAE Systems
-Original Message-
From: cisco-nsp-boun...@puck.nether.net
[mailto:cisco-nsp-boun...@puck.nether.net] On Behalf Of james edwards
Sent: Tuesday,
The tunnel is up against HE's TunnelBroker service. The Cisco 2600 is
reporting just 612 KB in use.
Frank
C2600#sh bgp summary
BGP router identifier a.b.c.d, local AS number 53347
BGP table version is 2299, main routing table version 2299
2269 network entries using 301777 bytes of memory
2269
I've been having some issues with BGP peers dropping/flapping and tried to come
up with a little EEM applet that would not only down a peer based on syslog
entries but bring it back up.
The bringing down part is easy and tested to work great. But I'm having a hard
time with the bringing up
Apologies if this is off-topic...
Is anyone else seeing Peer's Certificate has been revoked.
while attempting to access tools.cisco.com? Currently using
Firefox. I found a Windows PC, and it seems that MSIE care even
after enabling CRL checking. I can only visit the site in
Firefox if I
Hi,
Am I the only one hit by the HTTPS certificate for tools.cisco.com
having been revoked? FF 3.5 won't access the pages, instead returning
sec_error_revoked_certificate. I can connect with OpenSSL s_client
manually.
--
Peter
___
cisco-nsp mailing
Tony,
An easy trick is to insert a delay in your script that does the shut,
and then after the delay to do the unshut.
As there is no wait action in older EEM codes, you can use a trick
with a ping that would never be answered, and a long timeout value.
event manager applet delay
event syslog
On Tue, 2009-12-15 at 12:42 -0800, Tim Utschig wrote:
Apologies if this is off-topic...
Is anyone else seeing Peer's Certificate has been revoked.
while attempting to access tools.cisco.com?
Hadn't seen your message when I posted mine, but yes I see the exact
same thing.
Thanks for the tip
you're missing the command
card type t1 0 0
Until you do that, the router doesn't know whether it's a T1 or an E1.
David Barak
Need Geek Rock? Try The Franchise:
http://www.listentothefranchise.com
- Original Message
From: james edwards lists.james.edwa...@gmail.com
To:
I was getting that as well. Works now.
tv
- Original Message -
From: Peter Rathlev pe...@rathlev.dk
To: cisco-nsp cisco-nsp@puck.nether.net
Sent: Tuesday, December 15, 2009 3:29 PM
Subject: [c-nsp] https://tools.cisco.com/ certificate revoked?
Hi,
Am I the only one hit by the
No, I haven't as I couldn't figure out how to get that delay to work.
Let me put this up in the lab and see what happens.
Thanks!
tv
- Original Message -
From: Clyde Wildes cwil...@progrizon.com
To: 'Tony Varriale' tvarri...@comcast.net; cisco-nsp@puck.nether.net
Sent: Tuesday,
On Tue, Dec 15, 2009 at 12:42:25PM -0800, Tim Utschig wrote:
I found a Windows PC, and it seems that MSIE care even after
enabling CRL checking.
Insert doesn't before care.
MSIE users will not notice this security issue.
Even after checking the box Check for server certificate
revocation*
Tony,
Have you considered using EEM multiple event support:
event manager applet t1
description Test applet to demonstrate event correlation
event tag e1 syslog pattern syslog msg 1 pattern
event tag e2 syslog pattern syslog msg 2 pattern
trigger delay 10.0
correlate event e1 or event e2
Looks like I will be creating separate L3 domains. ARIN, here I come. =)
Thanks again to this group for this helpful information.
Frank
-Original Message-
From: Arie Vayner (avayner) [mailto:avay...@cisco.com]
Sent: Tuesday, December 15, 2009 2:14 PM
To: frnk...@iname.com;
On Fri, Dec 11, 2009 at 07:44:33AM -0800, Bautista, Noel wrote:
We're contemplating on upgrading our SUP 720 3BXL from
12.2(18)SXF15a native IOS to 12.2(33)SXI3 modular IOS but I read
from the releasenotes that the Install command has been
deprecated. On Cisco's Safe Harbor IOS Release, they
On Tue, 15 Dec 2009, Frank Bulk - iName.com wrote:
Looks like I will be creating separate L3 domains.
If you can live with knowing what part of the IP pool belongs in what vlan
then you can (this works with static addresses (no dhcp) anyway) route the
individual parts of the unnumbered
42 matches
Mail list logo