Your better off just running system mtu 1504(if you want to deliver
QinQ to customers) and then specifying the larger mtu frames on your
trunk interfaces, this still restricts your customer access ports to
1504 while allowing you to run what you need, jumbo frame mtu on an
interface will
I seem to recall there was a command that allowed a router to still
cef switch packets when the next hop was an interface rather than an
ip address, ie an ADSL client dialer interface with ip route 0.0.0.0
0.0.0.0 d0
Am I dreaming or was there a command which still allowed this to be
cef
I concur with the 2801/2811 being the better choice than an ASA in
this scenario, just make sure you have the AIM-VPN module with it.
The only benefit I can see the ASA giving you is more advanced deep
packet inspection(compared to CBAC), even then you really need the SSM
module in the ASA
How many PPPoE sessions did you have terminated and approx what
traffic flow in those graphs?
On 21/03/2008, at 5:30 AM, Tassos Chatzithomaoglou wrote:
We did some testing on a NPE-G2 for a week and this was the
difference from NPE-G1:
http://img84.imageshack.us/img84/905/g1vsg2px4.gif
On 18/03/2008, at 8:08 PM, Gert Doering wrote:
Actually netflow is much *less* resource-hungry than ip accounting.
I was referring to the overall resources ie the huge amount of disk
space often needed, the servers to collect it etc.. as for the actual
routers resources I'll take your
worth having in a lot of other debugging
situations.
Regads,
Peter
On Tue, 2008-03-18 at 11:19 +1030, Ben Steele wrote:
try ip accounting on your interface, it won't impact your cpu much on
a T1 link and will give you you top IP talkers, you probably want
to
append the output packets option
looking for
a quick view of an offender on a router.
Ben
On 18/03/2008, at 8:22 PM, Ben Steele wrote:
On 18/03/2008, at 8:08 PM, Gert Doering wrote:
Actually netflow is much *less* resource-hungry than ip accounting.
I was referring to the overall resources ie the huge amount of disk
space
try ip accounting on your interface, it won't impact your cpu much on
a T1 link and will give you you top IP talkers, you probably want to
append the output packets option to it to see who is downloading the
most, a sh ip accounting will give you a list of IP's and byte
counts for that
Can you not just summarise the redundant routes at each site with
static's over the wireless link with a higher AD and redistribute
those static's into OSPF?
On 15/03/2008, at 1:22 PM, [EMAIL PROTECTED] wrote:
We have a client with a network that's got a main hub site and two
'remote'
Actually I can vouch for per-packet working fine for sensitive
applications like VoIP as long as your bonded lines are basically
parallel in the sense they are the same technology over the same
distance with the same characteristics, ie multiple T1 lines through
the same carrier to the
, 2008 at 2:28 AM, Ben Steele [EMAIL PROTECTED]
wrote:
Scenario: cluster of PE's terminating DSL CE's running EIGRP between
CE and PE in MPLS VPN's, so the CE's could terminate on any one of the
PE's.
Problem: would like to identify EIGRP routes from certain neighbors
for BGP redistribution
:29 PM, Ben Steele wrote:
Ah looks just like what I was after, thanks a lot Diogo!
Ben
On 13/03/2008, at 8:23 PM, Diogo Montagner wrote:
Hi Ben,
Did you tried to use the Site of Origin feature ?
http://www.cisco.com/en/US/docs/ios/12_3t/12_3t8/feature/guide/gtmvesoo.html
Best regards
Are any other hosts affected off the switch during this period aswell?
Ben
On 13/03/2008, at 8:05 AM, Jason Berenson wrote:
Rodney,
They connect back to a cisco switch. No errors anywhere along the
ethernet and no packet loss. It also only flapped 3 times yesterday
and
2 times 5 days
(flaps
OSPF/BGP instance 1) is the only one that takes a hit out of all of
them connected to the switches.
I'm leaning away from thinking this is an ethernet issue, but I
definitely could be wrong. Are there any helpful outputs I could
include?
Thanks,
Jason
Ben Steele wrote
Scenario: cluster of PE's terminating DSL CE's running EIGRP between
CE and PE in MPLS VPN's, so the CE's could terminate on any one of the
PE's.
Problem: would like to identify EIGRP routes from certain neighbors
for BGP redistribution to use set extcommunity cost pre-bestpath x x
for
On 07/03/2008, at 2:18 PM, Hiromasa Sekiguchi wrote:
Hi,
The cisco products have bgp fast-external-fallover function.
It is available on only eBGP, isn't it?
Yes, only for eBGP
We'd like to do same behabior like it on iBGP.
So, is there any solutions?
Have a look at bfd for BGP
Ben
I'm going to recommend rsync mainly for it's resume of transfer
ability over scp(given your files sound large), you can tunnel it via
ssh using a flag like --rsh=ssh or similar for security, it would
depend on your OS, on top of that to make it even smoother you could
use pre-shared keys
On 06/03/2008, at 9:59 AM, Justin Shore wrote:
No-negotiate - Forces trunking but will not negotiate anything.
I don't think that's right, switchport nonegotiate actually just
stops DTP from being transmitted and hence can't be applied when the
switchport is in dynamic desirable mode,
On 04/03/2008, at 2:25 AM, Higham, Josh wrote:
A small note, the default for EIGRP is to only consider bandwidth and
delay, so the other values will have no impact.
Another small note :) is that despite the fact EIGRP doesn't use all
the metrics to calculate its path you do need to fill all
On 03/03/2008, at 2:24 AM, Dan Letkeman wrote:
In what kind of scenario can redistributing both routing protocols
cause a routing loop?
Lots, especially anything with redundancy built in, essentially you
need 2-ways into the network, this is where the confusion will come in
for the
On 02/03/2008, at 4:55 AM, Dan Letkeman wrote:
Is there a simple explanation as to how
the metric is calculated for eigrp?
5 things, Bandwidth, Delay, Reliability, Load and MTU.
I used to use the Big Dogs Really Like Meat acronym when I was first
learning about it to help remember :)
Most
One of the key principles that have changed over those years is the
move from the hierachical design model to the enterprise composite
network model, as there was not enough modularity provided in the 3-
layer access/distribution/core method for most campus styled design
networks, and of
None of your neighbors are flapping or at least their route tables?
could be BGP RIB tables constantly being updated by unstable peer,
check to see if any have excessive updates, is the router meshed with
any others via iBGP? ie similar route tables, maybe compare memory
consumption with a
PDLM's.
Note on the 12.4 issues: what kind of memory issues were you seeing,
Ben? We only manage about 12 routes on this router between OSPF and
BGP so I wonder if that would really be an issue for us.
Thanks,
Adam
- Original Message - From: Ben Steele [EMAIL PROTECTED
Do you have an IPS module installed (ie AIP-SSM-10 etc.)?
If not then it maybe something being caught by ip audit if you have that
configured to drop packets upon a match, sh ip audit count will give you
stats on that, is there any rate-limiting configured?
Probably best you show us your
Yes you can, you can even boot your IOS from a usb drive (although it
wasn't supported some time ago even though possible, not sure of
current support status).
On 04/02/2008, at 7:02 PM, Daniel Hooper wrote:
Sorry.. I just realised it was only a few platforms of routers that
support the
You can install your WIC into slot 1-3, slot 0 is the only one
reserved for VIC only, slot 2 is VIC or WIC and 1/3 are HWIC and
backwards compatible with WIC.
Ben
On 05/02/2008, at 9:53 AM, Tom Storey wrote:
Hi,
I just got a WIC-1ADSL and put it into my 2801 (IOS 12.4(16)). No
lights,
Oh and in regards to actaully getting it show up, you need a T train
IOS, 12.3(8)T and on..
On 05/02/2008, at 8:35 AM, Adam Greene wrote:
Hi,
I just got a WIC-1ADSL and put it into my 2801 (IOS 12.4(16)). No
lights, no logs, no nothing. I understand these cards are supported
on the
Yes sorry Pete your right, I was thinking of the HWIC-1ADSL when I
wrote you need 12.4T and copying in 12.3(8)T from the
WIC-1ADSL...sigh, so yes a plain WIC-1ADSL should be mainline in 12.4,
need more zzz :)
On 05/02/2008, at 12:28 PM, Pete Templin wrote:
Ben Steele wrote:
Oh
this as the cpu went crazy @
like 90%.
Thanks for your suggestions.
Cheers,
Aaron.
-Original Message-
From: Ben Steele [mailto:[EMAIL PROTECTED]
Sent: Friday, February 01, 2008 2:31 PM
To: Aaron R
Cc: cisco-nsp@puck.nether.net
Subject: Re: [c-nsp] Spanning-Tree question
Just stumbled across a router in our network currently sitting at 1535
days of uptime, not to often you see that sort of uptime on a router
these days, given this router does nothing important anymore though...
in fact I think it's probably been forgot about, which is a good
enough reason
to know what bugs you;ve encountered so far?
As im testing this in lab right now, and so far all has been good
On 1/25/08, Ben Steele [EMAIL PROTECTED] wrote:
I'd recommend 7.2(2)
I've got it running on a few 5510's that have been up without a crash
for about a year, 8.0 does bring some really
Howdy,
Anyone had any experience with getting MS Exchange to work with a
webvpn client on ASA 8.0(2) or greater without using the AnyConnect
client (ie clientless) now that MAPI support isn't available?
Doesn't look like smart tunnels will do the job either and can't find
anything else
Yep it should handle that without too much fuss.
Ben
On 30/6/07 12:31 AM, Paul Stewart [EMAIL PROTECTED] wrote:
Hi folks...
I'm googled and searched the archives.. need to ask to be sure...
Cisco 2821 w/1 gig RAM - should it be able to handle 140-160 PPPOE sessions
without too much
I've been running it on my lab 5520 for a few days now and so far so
good, mainly testing the EIGRP implementation(which I must add is great
to see on there).
Unfortunately it still hasn't fixed a mail logging timestamp bug I have
open with TAC at the moment.
Ben
Asbjorn Hojmark - Lists
___
cisco-nsp mailing list cisco-nsp@puck.nether.net
https://puck.nether.net/mailman/listinfo/cisco-nsp
archive at http://puck.nether.net/pipermail/cisco-nsp/
--
Ben Steele
Cisco Field Engineer
Cisco Systems Engineer
Corporate Projects Team
Internode Systems Pty Ltd
Ph: 08
/pipermail/cisco-nsp/
--
Ben Steele
Cisco Field Engineer
Cisco Systems Engineer
Corporate Projects Team
Internode Systems Pty Ltd
Ph: 08 8228 2968
___
cisco-nsp mailing list cisco-nsp@puck.nether.net
https://puck.nether.net/mailman/listinfo/cisco-nsp
If you are running a 1500 byte MTU path for your GRE tunnels take off 24
bytes for your GRE encapsulation, ie try adding ip mtu 1476 into your
tunnel interface, as long as there is no blocking of ICMP in the return
path back to the host it should work.
Ben
Stefan Hegger wrote:
Hi,
hope you
Howdy,
Does anyone know of something similar to this that would be achievable
on an mpls xconnect between a 6509 and 7300?
The scenario is 2 seperate switch worlds at the end of each xconnect
which are linked together(via xconnect) to provide a complete L2 path
end to end for 2 ASA's that are
101 - 139 of 139 matches
Mail list logo