Hey All,
We have received a request from a customer who is looking to upgrade or
replace a Cisco Network Registrar (CNR) 5.1 system. I have read through the
Cisco documentation for the product, as it is not something I have had to
implement before. I have contacted our distributor who was unable
On 11/03/2010, at 11:00 PM, Gert Doering wrote:
(Well, actually you can, by plugging a loop between two ports, one port
being a switchport/trunk and the other port being the EoMPLS link. But that
won't gain me much compared to what I have now - if the IOS combination
is broken with
On 12/03/2010, at 5:23 AM, Chris Woodfield wrote:
And while we're on the subject, are there any reasons why Cisco (or any other
vendor AFAIK) has seriously looked into methods of optimizing the TCAM? I'm
thinking in terms of If 10.0.0.0/16 and 10.0.1.0/24 both have the same next
hop, why
Hi,
On Mon, Mar 15, 2010 at 04:25:56PM +1000, David Hughes wrote:
On 11/03/2010, at 11:00 PM, Gert Doering wrote:
(Well, actually you can, by plugging a loop between two ports, one port
being a switchport/trunk and the other port being the EoMPLS link. But that
won't gain me much
On 15/03/2010, at 7:37 PM, Richard A Steenbergen wrote:
The real mess here is the non-deterministic nature of what you're doing.
Someone flaps that /16 and now you've added 1000 new more specifics,
which might push you over the edge in FIB usage, with no way to predict
when or where it will
Hello all,
I have inserted the PA-FE in the chassis after the router has booted, here
is an output of a show diag :
Slot 1:
Fast-ethernet (TX-ISL) Port adapter, 1 port
Port adapter is analyzed
Port adapter insertion time 00:00:04 ago
EEPROM contents at hardware
Hi
We have a customer who has 8 branches. 6 branches gre over
ipsec tunnel is established with their headoffice without having any
problem. Only problem is happening at 2 branches. recently we have
implemented MPLS in our network and that customer all the branches are
connected through MPLS
Hi,
On Mon, Mar 15, 2010 at 12:54:54AM -0700, Ben Basler (bbasler) wrote:
The question is if the ingress linecard has a DFC3B/BXL or DFC3C/CXL or
a CFC (and if a CFC if the Sup is a PFC3B/3BXL or PFC3C/3CXL). You might
be hitting CSCtb41832 which from what I understand will be resolved in
hi all
we have a lot of our customers that are uses SMTP servers other than our own
server
which causes the subnet to be black listed
we tried to block them from accessing any other SMTP server except our own
server using access lists on our core routers
it works fine but is that the optimal
Hi Mohammed,
if your customers aren't assigned unique ip subnets (usually
business/leased-line customers) which are/should be documented seperately in
the appropriate radb but are originating from dynamic access like DSL's you're
somewhat out of any other option.
Even static assignments,
Hi All,
I'm trying to dial in to a Cisco AS5300 and have it L2TP forward the PPP
session to a context on a Redback Smart Edge for termination.
Dialup modem --- AS5300(LAC) --- SE400 (LNS)
Does anyone know if this is possible or have any experience (successful or
unsuccessful) of doing
Hello List!
In our network we have some places with common connection design, when two
switches are cooper-connected via Gigabit Ethernet ports:
C3550-48, Gi0/1 - Gi1/0/1, C3750G
1) 3750G (E)
IOS version: 12.2(50)SE2
3750#sh system mtu
System MTU size is 1998 bytes
System Jumbo MTU size is
On 15/03/10 03:54, Andhy Indarto wrote:
Dear all,
Do you have any suggestion for Data Center service provider in Rome ?
The best known is EurNetCity: http://www.eurfacility.it/
But if you target Italy, you'd be better off looking for something in
Milan, in the Via Caldera Campus.
Ciao!
--
Have you tried the redback-nsp list?
Carl Simpson wrote:
Hi All,
I'm trying to dial in to a Cisco AS5300 and have it L2TP forward the PPP
session to a context on a Redback Smart Edge for termination.
Dialup modem --- AS5300(LAC) --- SE400 (LNS)
Does anyone know if this
Well, the giants are not accompanying drops so usually this means that
they are being accepted.
On an increasing number of IOS based platforms, giants actually refer to
anything over 1500/1518 (even if the interface/system MTU has been
raised above thi) so nothing to worry about.
The giant
Yup, that's right. Each module applies QoS independently. :(
Sharlon Carty
ICT Technician
P.O. Box 1110
Soualiga Boulevard #5
Pond Island, Philipsburg,
St. Maarten, Netherlands Antilles
Mobile: +599 527-4002
E-mail: sharlon.ca...@telemgroup.an
I had a case open with Cisco on this same issue pending for 6 months or so
then I finally closed the ticket; what I saw was basically the STP pkts was
arriving out-of-order due to fragmentation; the remote end never get STP
updates as such.
've been meaning to test this with EoMPLS over
Does anyone know what MFI LFD Stats process of vs-s720-10g with SXI3 code
do??One my client has high CPU on the 6500 switch doing MPLS VPN
6500sw#show proc cpu sort
CPU utilization for five seconds: 99%/80%; one minute: 93%; five minutes:
92%
PID Runtime(ms) Invoked uSecs 5Sec 1Min
i have connected a customer router to one port on Cisco ME3750
when i make the port L3 port and assign it an IP address i cannot ping the
other side (customer router)
when i ceate SVI and assign the customer router in that vlan i can reach it
is there anything i have to do on the Fast Ethernet
Hi Carl,
can you provide (potentially sanitized) PPP-logs (deb ppp nego and stuff)? In
quite some cases I've seen L2TP itself is not the problem...
thanks
Enno
On Mon, Mar 15, 2010 at 01:03:39PM +, David Freedman wrote:
Have you tried the redback-nsp list?
Carl Simpson wrote:
Hi
I saw this across a few router platforms; so I'm guessing in may me
embedded in the base IOS code:
* 7200
* 1800
* 2600
--
Regards,
Ge Moua
Network Design Engineer
University of Minnesota | OIT - NTS
2218 University Ave SE
Minneapolis, MN 55414-3029
Email: moua0...@umn.edu | Office:
On Mon, 2010-03-15 at 10:54 -0400, krunal shah wrote:
Does anyone know what MFI LFD Stats process of vs-s720-10g with SXI3
code do??One my client has high CPU on the 6500 switch doing MPLS VPN
A bit of googling reveals that MFI LFD is an acronym for MPLS
Forwarding Infrastructure, Label
Mohammad Khalil eng_m...@hotmail.com wrote:
we have a lot of our customers that are uses SMTP servers other than
our own server which causes the subnet to be black listed
My guess is that you are not cleanly labelling your IP space which means
the jobs of the people maintaining blacklists
Gert,
As you might know - Cat6500 is an ingress forwarding model - so the
forwarding engine on the ingress linecard does the work. If there is no
local FWD engine, the PFC on the sup does the work. In case of 67xx
modules a CFC relays the header to the PFC.
Having said that, there are some
-Original Message-
From: cisco-nsp-boun...@puck.nether.net
[mailto:cisco-nsp-boun...@puck.nether.net] On Behalf Of Alexander Clouter
Sent: Monday, March 15, 2010 12:05 PM
To: cisco-nsp@puck.nether.net
Subject: Re: [c-nsp] SMTP
Mohammad Khalil eng_m...@hotmail.com wrote:
we have a lot
Mark Tinka wrote:
On Monday 15 March 2010 03:35:32 am luismi wrote:
I just see it.
Anyone here testing it? :D
I'd stopped tracking any developments in SRC as I thought
that line had met its end.
Just read the release notes... a couple of bug fixes but
nothing that solves my biggest issue
I don't understand; you are running netlogin? In which case yes, this is a
feature, not a bug?
Sorry, had to look up what netlogin for Extreme was. No, I am not using it.
___
cisco-nsp mailing list cisco-nsp@puck.nether.net
Yes mls mpls tunnel-recir command is globally enabled.
Supervisor and line cards are in PFC 3C/XL mode. I do not think routes are
reaching over capacity of box.
Mod Ports Card Type Model Serial
No.
--- - --
What is stopping service providers having a bunch of perl scripts that
daily check when IP's they are responsible for get listed? It should be
simply an extension of their NMS platform. Once you have detailed
WHOIS/PTR records you at least have something to point out to the
postmasters, and
Hello,
I'm totally stucked with the following problem -
Catalyst 7606 ( IOS 12.2(33)SRD4) with WS-F6700-DFC3CXL module connected
with C3750-E (IOS 12.2(40)SE) over TenGigabit Xenpaks. Its one of our
backbone lines, transferring only VLAN-201.
There are two small subnets in this VLAN
I've been in the habit of using communities to anchor and announce prefixes
into BGP for years and I think my ways are somewhat dated. I'm looking for a
bit of a refresh. Wondering if anyone here has any thoughts ;)
So hypothetically speaking:
!
router bgp 65535
no synchronization
neighbor
I don't understand; you are running netlogin? In which case yes, this is a
feature, not a bug?
Sorry, had to look up what netlogin for Extreme was. No, I am not using it.
Then this should not be happening, and it is likely an XOS bug. 12.3.3.6
is IIRC the current mainline release;
On Tuesday 16 March 2010 12:22:17 am Kevin Loch wrote:
Which issues did you have with SRC? SRC5 has been very
stable for me.
'watchdog nmi timeouts' and spontaneous crashes from certain
commands ran often by RANCID when BFD is enabled on an NPE-
G1.
Cheers,
Mark.
signature.asc
Hi,
* Drew Weaver drew.wea...@thenap.com [2010-03-15 13:01:31-0400]:
What is stopping service providers having a bunch of perl scripts
that daily check when IP's they are responsible for get listed? It
should be simply an extension of their NMS platform. Once you have
detailed
Hi,
* Drew Weaver drew.wea...@thenap.com [2010-03-15 12:18:01-0400]:
Entities such as Senderbase and UCEPROTECT don't even use WHOIS
information so that point is irrelevant.
...entities such as ISP's and mail server administrators do maintain
their own lists too so I think stating the point
* Alexander Clouter a...@digriz.org.uk [2010-03-15 16:53:12+]:
[snipped]
Hell, Turknet should be sending me some bottles of Raki for getting one
of their /16's turned into a handful of /32 listings. :)
That was meant to be TurkTelekom and a /17...incase there is some Raki
out there
You can use the 'aggregate-address advertise-map' command, instead of
the route map and you should have the same effect setting communities on
the summaries. You can also try tuning the weight for the redistributed
routes to set he preference you like.
Leah
-Original Message-
From:
Hi,
On Mon, Mar 15, 2010 at 09:10:13AM -0700, Ben Basler (bbasler) wrote:
As you might know - Cat6500 is an ingress forwarding model - so the
forwarding engine on the ingress linecard does the work. If there is no
local FWD engine, the PFC on the sup does the work. In case of 67xx
modules a
Hi,
On Mon, Mar 15, 2010 at 06:30:42PM +0100, Bjørn Mork wrote:
I cannot find the appropriate Radius-Attribute for statically defining
the IPv6 address for the CPE's PPP interface.
[..]
We are using Framed-IPv6-Prefix + Framed-Interface-Id (RFC 3162) to
achieve this with Juniper ERXes. The
On Mon, 2010-03-15 at 17:26 +0100, Jirí Procházka wrote:
Catalyst 7606 ( IOS 12.2(33)SRD4) with WS-F6700-DFC3CXL module
connected with C3750-E (IOS 12.2(40)SE) over TenGigabit Xenpaks. Its
one of our backbone lines, transferring only VLAN-201.
From the use of XenPack I assume the module is a
Alexander Clouter a...@digriz.org.uk wrote:
Sending 90,000 DNS queries to all the different RBLs on a daily basis
is an easy way to get banned your network banned.
Doing that is obviously stupid, however I did not tell you to launch a
DoS on a RBL :)
[snipped]
Scrub that, this is far
Gert Doering g...@greenie.muc.de writes:
Does Framed-Interface-ID configure the *client* side via IPv6CP?
Now that's interesting indeed.
(I'm not sure we would something else than ::1 there, to ensure
the CPE has a well-known and pingable address, but it's definitely
a nice tool).
Yes.
hi,
argh, the module model used is WS-X6708-10GE, sorry for confusion.
sitel-edge-new#show module
Mod Ports Card Type Model Serial
No.
--- - -- -- ---
1 24 CEF720 24 port 1000mb SFP
On Mon, 2010-03-15 at 20:35 +0100, Pavel Bykov wrote:
Yeah, your calculations are wrong.
1. Packet is 256 bytes, not 1500. cell is a beter term, since
pointer reference links memory blocks of 256 bytes each. Only content
of one packet can exist in any cell at any one time. E.g. 2x64 byte
On Mon, 15 Mar 2010 13:08:03 -0400, you wrote:
aggregate-address may be a reasonable solution, but I can't seem to
tag a community with an aggregate-address statement like I can with
a network statement
router bgp asnr
address-family ipv4
aggregate-address A.A.A.A M.M.M.M attribute-map
On Wed, Mar 10, 2010 at 4:30 PM, Tim Durack tdur...@gmail.com wrote:
Having a hard time figuring this out. I have a vrf with around 30k
prefixes (partial Internet.)
Sup720-3BXL shows:
RTR-2#sh mls cef summary detail
Total routes: 58231
IPv4 unicast
On 2010-03-15, at 4:37 PM, Asbjorn Hojmark - Lists wrote:
On Mon, 15 Mar 2010 13:08:03 -0400, you wrote:
aggregate-address may be a reasonable solution, but I can't seem to
tag a community with an aggregate-address statement like I can with
a network statement
router bgp asnr
On 15/03/2010 16:26, Jirí Procházka wrote:
When traffic on this link reaches aproximately 6Gbps, latence to servers
gets rapidly worse (about 100-150ms, about 2ms before)
the 6708 card has 200 megs of buffers per port. doing the sums, this works
out at about 160ms of latency, assuming you're
Those aggregates are wrong.
The port groups are arranged fairly oddly.
(fabric asic)
#show int Te7/1 capabilities | inc ASIC
Ports-in-ASIC (Sub-port ASIC) : 1,4-5,7 (1)
#show int Te7/2 capabilities | inc ASIC
Ports-in-ASIC (Sub-port ASIC) : 2-3,6,8 (2)
(FPGA pairs)
Gert,
-Original Message-
Having said that, there are some subtle differences how L2 PDUs
(read:
LACP, STP, VTP, CDP, 802.1x, etc.) are handled by the 3B/3BXL and
3C/3CXL.
... and that's what I assumed, since both your bug ID and the other
one specifically mention 3C.
AFAIK, FIB and LFIB are just not the same table and the MSFC distributes the
routing information in both tables to the PFC3B(XL).
On Wed, Mar 10, 2010 at 9:30 PM, Tim Durack tdur...@gmail.com wrote:
Having a hard time figuring this out. I have a vrf with around 30k
prefixes (partial Internet.)
Hello Bjørn, Gert
Bjørn have you tried using the Framed-Interface-Id with a Cisco CPE?
I have tried the combination Framed-Interface-Id + Framed-IPv6-Prefix
with no luck so far
(The /64 prefix is applied to the dialer interface but the last 64
bits of the PPP interface
address are not affected
Hi,
On Mon, Mar 15, 2010 at 08:02:01PM +0100, Bjørn Mork wrote:
Yes. With this RADIUS account (the prefix is statically configfured in
this case):
[..]
ipv6-pppoe-1:~# ifconfig ppp0
ppp0 Link encap:Point-to-Point Protocol
inet6 addr: 2001:4600:10:11::c/64 Scope:Global
Victor Lyapunov victor.lyapu...@gmail.com writes:
Hello Bjørn, Gert
Bjørn have you tried using the Framed-Interface-Id with a Cisco CPE?
No, I'm afraid I haven't.
I have tried the combination Framed-Interface-Id + Framed-IPv6-Prefix
with no luck so far
(The /64 prefix is applied to the
Hi all,
I'm having some interoperability issues with VLAN trunks (802.1q) between
Cisco and 3Com devices.
Our building is short on horizontal runs, so we have a few 3Com Intellijacks
(NJ2000, NJ220) we'd like to use for our network admins. The idea is to
bring a few VLANs out to each switch, and
Hi Peter,
You can use VTI GRE mode on your side and crypto map on the remote end
device . The remote router with crypto map needs to use the same source and
destination IP for GRE and the VPN tunnel.
-Rakesh
On Thu, Mar 11, 2010 at 11:53 AM, Peter Rathlev pe...@rathlev.dk wrote:
Hi Rakesh,
On 15/03/2010, at 5:41 PM, Gert Doering wrote:
and it's passing MST BPDUs just fine.
Now that is good news :-) - what line card are you terminating the EoMPLS
on? (I'm asking because I'm wondering whether our problem is specific to
6724-SFP)
These are on 6748-GE-TX with SXI3. Also have
57 matches
Mail list logo