Re: [c-nsp] Juniper MX240 & MX480

Hi, On 26 October 2017 at 09:26, Sebastian Becker wrote: > > On 26 October 2017 at 01:54, Mark Mason wrote: > > > > Can someone educate me on the Juniper MX240 and MX480 chassis > > > > I can but I think this is the wrong list. Indeed. Mark, try asking

Re: [c-nsp] LNS Alternatives

(Resending to list from subscribed address -- got my puck nsp lists mixed up :-)) On Monday, 23 May 2016, Dale Shaw <dale.shaw+j-...@gmail.com> wrote: > Hi anonymous poster, and James, > > On Monday, 23 May 2016, James Bensley <jwbens...@gmail.com> wrote: > >> Have

Re: [c-nsp] ASA

Hi madunix, On Wed, Feb 11, 2015 at 7:26 PM, madu...@gmail.com madu...@gmail.com wrote: I would like to block the following ports: 135,137,138,139,445,593, tcp/udp on my Firewall [...] Well, what you need to do, is figure out how to block those ports, perhaps by modifying the 'in'

Re: [c-nsp] Influence VTI tunnel QoS based on remote site bw change?

[resending using cisco-nsp subscribed address] On Mar 6, 2013 5:13 AM, Dale Shaw dale.s...@gmail.com wrote: Hi Fernando, On Mar 5, 2013 9:52 PM, Fernando Santos fernandomiguelsan...@gmail.com wrote: […] We were trying to figure out if there is a way to keep only 1 tunnel between each

Re: [c-nsp] Megapath frame relay question

Hi Bill, On Fri, Feb 24, 2012 at 5:09 AM, Bill b...@siliconics.net wrote: [...] The issue I have is, there's no connectivity from the router itself. This is an IOS / PPP thing. Look at your routing table. If you really need self ping to work with PPPoFR, there are a couple of workarounds.

Re: [c-nsp] Megapath frame relay question

Hi again, On Fri, Feb 24, 2012 at 6:58 AM, Dale Shaw dale.shaw+cisco-...@gmail.com wrote: This is an IOS / PPP thing. Look at your routing table. Er, I may have misinterpreted your problem. What are you trying to ping, exactly? The IP assigned to the Virtual-Template interface, a directly

Re: [c-nsp] ASA5520 has very high CPU

Hi, On Fri, Aug 12, 2011 at 10:17 PM, le luu le2...@yahoo.com wrote: I have a ASA5520 always has very high CPU 95% - 98% almost all time even that traffic goes thru the ASA is low. Anyone knows why ? No. It's impossible to say, based on the limited amount of information you've provided.

Re: [c-nsp] spam from gallant systems llc

Hi, On Thu, May 26, 2011 at 12:34 AM, Mike mike-cisconspl...@tiedyenetworks.com wrote: Public notice:        Galant systems llc is trolling the cisco nsp list and sending unsolicited commercial email solicitations to email addresses culled from it. I promise never to do business with

Re: [c-nsp] traffic not passing between Cisco 3750G and Cisco 7206vxr

Hi Mike, On Wed, May 25, 2011 at 1:56 AM, Michael K. Smith - Adhost mksm...@adhost.com wrote: Um, bad cable?  No IP addresses?  Not sure what kind of connection problem you are having. I don't think his IOS is post-rapture ready. Cheers, Dale ___

Re: [c-nsp] off-topic NMS Suggestion

Hi, On Wed, May 18, 2011 at 12:38 PM, omar parihuana omar.parihu...@gmail.com wrote: Please could you suggest me a NMS for WAN/LAN? Strictly speaking it's not an NMS but based on your requirements of monitoring and reporting, I recommend Statseeker -- www.statseeker.com. Cheers, Dale

Re: [c-nsp] Netflow Version 9

Hi, On Sunday, January 16, 2011, Ziv Leyes z...@gilat.net wrote: I wonder what happened to versions 6 to 8... They're in the same place as Leisure Suit Larry 4. Cheers Dale ___ cisco-nsp mailing list cisco-nsp@puck.nether.net

Re: [c-nsp] suppress bgp updates?

Hi Mark, On Wed, Nov 17, 2010 at 12:06 PM, Mark Kent m...@noc.mainstreet.net wrote: But what I want is to completely hide all internal turmoil from the outside world... as long as edge is up I want it to show 192.0.2/24 in a constant fashion. I feel like this was possible in the mid-'90s.

Re: [c-nsp] suppress bgp updates?

On Thu, Nov 18, 2010 at 7:40 AM, Dale Shaw dale.shaw+cisco-...@gmail.com wrote: What happens if you drop the administrative distance of your static on 'edge' from 240 to something lower than 110? .. A whopping great big black hole is what happens, as Mark politely pointed out to me off-list

Re: [c-nsp] 12.4 for 7205vxr npe-g2 recommendation?

Hi, On Fri, Oct 15, 2010 at 6:00 AM, LM asturlui...@gmail.com wrote: just that, any recommendation? services running: - nat - eigrp - bgp - hsrp - pim - cdp - gre tunnels - ipsec 12.4(15)T -- latest. Cheers, Dale ___ cisco-nsp mailing list

Re: [c-nsp] Configuration register 0x2 sanity check

Hi John, On Thu, Sep 23, 2010 at 2:13 PM, John Neiberger jneiber...@gmail.com wrote: The engineer said that on all Cat 4K devices, we should be using 0x2 as the configuration register. I told her that I normally used 0x2102, but she said not to use that on these switches, that 0x2 was the

Re: [c-nsp] Generic TCP and UDP

Hi, 2010/4/12 Mohammad Khalil eng_m...@hotmail.com: what does the mentioned items include ? what traffic types do it represents ? What context have you seen the terms 'generic TCP' and/or 'generic UDP' used? It's probably just a way of referring to TCP and UDP as layer 4 / transport layer

Re: [c-nsp] c6509 booting in ROMMON

Hi, On Mon, Mar 22, 2010 at 10:08 PM, Youssef Bengelloun-Zahr yous...@720.fr wrote: My bootvar / confreg looks correct to me, doesn't it ? What does this give you? #remote command switch sh bootvar cheers, Dale ___ cisco-nsp mailing list

Re: [c-nsp] changing password on catos

Hi, On Wed, Mar 10, 2010 at 12:16 PM, Sony Scaria sony.sca...@gmail.com wrote: I was trying to change the password on catos, and this is how the device responded. I want to know whether this (Usage: set password) is just a warning or the password has never been changed!!. Since i use tacacs

Re: [c-nsp] loose connectivity to gateway

Bill, On Mon, Mar 8, 2010 at 12:08 PM, Bill Buhlman billbuhl...@yahoo.com wrote: Working on a small LAN with a 2651 router as its gateway. Periodically workstations will loose connectivity to the gateway at fa0/0. All workstations are WinXP. Repairing the network connection reinstates the

Re: [c-nsp] Input queue flushes and drops

Hi Rodney, On Sun, Feb 28, 2010 at 12:26 PM, Rodney Dunn rod...@cisco.com wrote: Should we increase the input queue size to 150,200,250, etc ? Could these flushed/drops be the cause of the poor VoIP performance? Yeah..set it to the max of 4096. This is a platform-specific recommendation or

Re: [c-nsp] IPV6 again

Hi, On Wed, Feb 3, 2010 at 9:37 PM, Tom Lanyon t...@netspot.com.au wrote: They are not handing out an for www.youtube.com but most of the content (img+video) servers are on v6. Hmm, really? I'm speaking to www.youtube.com (youtube-ui.l.google.com) on 2001:4860:c004::64 cheers, Dale

Re: [c-nsp] recommended router for following specs

Hi, On Mon, Jan 11, 2010 at 10:14 PM, Rasheed Khan rasheed...@yahoo.com wrote: could anybody recommend core router and modules required for below specs snip Yeah, sure, send us all a copy of the Request For Tender / Request For Quote you're responding to, and we'll all have a go. I mean,

Re: [c-nsp] 12.4 IOS recommendation for 7206

Hi, On Tue, Dec 15, 2009 at 7:42 AM, sky vader aptg...@gmail.com wrote: Any recommendation for a stable enterprise IOS [for 7200] supporting following feature set. [...] There was a thread on this in the last week or so. I'm personally happy with 12.4(15)T - we run it on 12 or so 7200s

Re: [c-nsp] Bandwidth Statement - Tunnel Interface

Hi, On Fri, Dec 4, 2009 at 2:55 AM, sky vader aptg...@gmail.com wrote: So what does tunnel bandwidth transmit / receive statement under tunnel interface do? For example: I guess it could be useful if the underlying physical transmission was asymmetric in nature, e.g. ADSL. Ultimately, though,

Re: [c-nsp] c7200, only one IP configured, seeing 2 as connected

Hi Roger, On Mon, Nov 16, 2009 at 10:31 PM, Roger Wiklund co...@xy.org wrote: I have a strange problem. I have a Serial interface with one /30 IP configure as a link network between PE and CE. [] Have you ever seen this before? Yeah. Check out:

Re: [c-nsp] Experiences with l2tpv3/xconnect?

Hi Adrian, On Thu, Nov 5, 2009 at 9:44 PM, Adrian Chadd adr...@creative.net.au wrote: I don't have the option to up the MTU; the supplied underlying circuit is an L2 ethernet metro ethernet style service. Do you know for sure that the carrier MTU doesn't have the headroom you need? cheers,

Re: [c-nsp] Can Ping Websites but cannot browse.

Hi, On Tue, Nov 3, 2009 at 1:26 AM, Alexander Clouter a...@digriz.org.uk wrote: It is a pretty impressive [read: hard/unusual -- Ed.] to screw up non-SSLed traffic with an MTU issue, In Opposite Land? or in a land where IPSec and PPPoX don't exist? :-) cheers, Dale

[c-nsp] Aftermarket/DIY mounts for Cisco ISR AIMs

Hi, Long story short: we've got a bunch of VPN AIMs but no mounts (stand-offs/spacers). It happened 'cause a colleague removed them for government security compliance reasons, but left the mounts behind (still attached to the system board). It's not feasible to recover the mounts from the

[c-nsp] Does a cisco 837 support traffic shaping on Ethernet?

Hi, I don't have an 837 handy, and I know they're a bit ancient and useless, but I have a customer asking about support for class-based shaping on his ageing fleet of 837s. He has Ethernet0 configured as LAN-side and Ethernet2 configured as WAN-side -- not using the ADSL/ATM interface at all.

Re: [c-nsp] Es20+ card and licensing question

Hi Andy, On Thu, Oct 15, 2009 at 6:01 AM, Webster, Andy andy.webs...@illinois.gov wrote: Hi,        I'm looking at the ES20+ cards for 7600s and I am confused by the licensing options.  There are two license options 76-ES+BASIC and 76-ES+ADVIP.  Do I need to purchase one of these two options

[c-nsp] WCCPv2 - issuing ip wccp command over ip wccp accelerated

Hi all, One from left field -- Does anyone know what the impact (if any) is on a hardware-based platform (in my case a 6500/SUP2/MSFC2) running: ip wccp 61 accelerated ip wccp 62 accelerated ..when the following commands are issued over the top? ip wccp 61 ip wccp 62 There are active

Re: [c-nsp] Help with QoS

Hi James, On Tue, Sep 22, 2009 at 7:22 AM, james edwards lists.james.edwa...@gmail.com wrote: This is on the 2811, I get this error: I/f GigabitEthernet0/2/0 class class-default requested bandwidth 50%, available only 25% You're getting this message because, by default, IOS enforces an

[c-nsp] 7200/NPE-G1 WCCPv2 performance - L2 redirect vs GRE

Hi all, Does anyone know whether there is any notable performance difference with WCCPv2 using L2 redirect vs GRE as a packet forwarding method on 7200s? (NPE-400, NPE-G1, NPE-G2)? WCCPv2 is a heavy user of processor cycles on our 7200s so I'm looking at ways to reduce the impact without

[c-nsp] OT: Learning about SONET/SDH

Hi all, I'd like to learn more about SONET/SDH, as deployed in carrier transmission networks. Something practical that starts from the beginning would be best, as I have had very little exposure to this stuff to date. Some of the books I've read about are very much buried in the land of

[c-nsp] OT: Using wireshark to decode IPSec/ESP

Hi all, Has anyone used wireshark successfully to decode ESP traffic? The only material I can find online is people having the same problem as me, or people using null encryption. I need to peek inside esp-3des/esp-sha-hmac SAs The wireshark wiki entry is:

Re: [c-nsp] PIX/ASA Change Control

Hi, On Thu, Jun 25, 2009 at 9:02 PM, Roy Otto Kleivroy.otto.kl...@nc-spectrum.no wrote: I can truly recommend NCM, works like a charm, although it does cost a bit I've heard good things about NCM, and was given an extra boost of confidence once I discovered it wasn't a Cisco software product

Re: [c-nsp] Shaping and dialer ints 12.4(24)T vs. 15T8

Hi Charles, On Sat, Jun 20, 2009 at 11:22 AM, Church, Charlescchur...@harris.com wrote: Can anyone confirm for me if some shaping and/or NBAR bugs were fixed between 24T and older 15T7 or T8? Hmm, it doesn't directly match your scenario, but there were some new QoS features introduced in

[c-nsp] Using 'shutdown' versus pulling the cable

Hi all, I'm working on some failover test scenarios and I'm trying to determine if issuing a 'shutdown' command on a router's Ethernet interface is effectively identical, from the perspective of the attached switch, as removing the cable. Here's a simplified topology: R1-Fa0/0 -- Fa1/0/1-SW1

Re: [c-nsp] LX vs LH Transceivers

Hi Justin, On Tue, Jun 16, 2009 at 9:08 AM, Justin Krejcijkre...@usinternet.com wrote: We are running into some performance issues on the 7200 when under load so we have a 6509 sup720 3bxl. The sup720 has one sfp port and one sfp/rj45 combo port. We have one GLC-LH-SM SFP transceiver installed

Re: [c-nsp] 6500/SUP32 - RP ROMMON upgrade?

Hi, semi-hijack On Mon, Jun 15, 2009 at 8:52 AM, Graham Woodengra...@g-rock.net wrote: I just updated the SP¹s ROMMON on a Sup32 to the latest, c6ksup32-rm2.srec.122-18r.SX9.  However, can this same file be applied to update the RP's ROMMON as well?  While logged into CCO I have only came

Re: [c-nsp] need help with 6509-E with WS-SUP32-GE-3B

Check the config-register, as Aaron suggests, but also check the SP's config-register. #remote command switch show boot If the RP shows 0x2102 but the SP is something else, that could be the problem. To fix, go into config mode on the RP and re-enter the 0x2102 config-register, ^Z, then write

Re: [c-nsp] BGP - OSPF (Or another way?)

Hi, On Wed, Jun 10, 2009 at 9:05 AM, m...@adv.gcomm.com.au wrote: I know redistributing bgp-ospf is considered a bad idea, but other than adding a static route, is there another option? You could use a 'reliable static' (using IP SLA and the 'track' keyword on the 'ip route' command) and

Re: [c-nsp] HSRP on Sub-interface

Hi Ziv, On Tue, May 26, 2009 at 4:55 PM, Ziv Leyes z...@gilat.net wrote: Hi all, I know that theoretically it's supposed to be working but I must be sure it does before I implement it. I have two 7200VXR and I want to make one of the Gigabit interfaces to receive a trunk from the switch

Re: [c-nsp] Cat 6509 Power supplies

Hi Bill, On Wed, May 27, 2009 at 3:51 AM, Bill Blackford bblackf...@nwresd.k12.or.us wrote: I have a question about power supplies. I am upgrading a 6509 chassis from SuP1/MFSC2 to a pair of SUP720-3BXL's, fan and new power supplies. I originally spec'd a pair of 4000W units. Now as we

Re: [c-nsp] WCCPv2 - what happens to existing connections when redirect-list is modified?

Hi Geoff, On Sat, May 23, 2009 at 12:25 AM, Geoffrey Pendery ge...@pendery.net wrote: If I'm core WAAS, and I see a new TCP conn come in, I need to know just by looking at this conn whether it's coming from another WAAS or just an end host.  So if I'm taking a new conn from an end host, when

Re: [c-nsp] Cat 6500 (IOS) dhcp Client

Hi Dan, On Sat, May 23, 2009 at 2:09 AM, Dan Benson dben...@swingpad.com wrote: Safe to assume I am up the river on this one then?  Thanks. //db The command lookup tool [1] suggests the 'ip address dhcp' command is available in 12.2SX and 12.2SR trains, but it depends on your feature set,

Re: [c-nsp] Interface descriptions - what do you put in?

Hi Pete, On Fri, May 22, 2009 at 1:07 AM, Pete Templin peteli...@templin.org wrote: What do you put into your interface descriptions?  Do you document circuit ID, far-end equipment/port, near-end equipment/port, and/or anything else? Our L3VPN service provider uses this format on PE-CE

Re: [c-nsp] WCCPv2 - what happens to existing connections when redirect-list is modified?

Hi Brad, On Sat, May 23, 2009 at 11:53 AM, Brad Hedlund brhed...@cisco.com wrote: One thing you could do to make this transition hitless would be to first apply No Optimization policies in your WAAS appliances for the flows in question (VoIP call signaling). Once this is done any new flows

[c-nsp] WCCPv2 - what happens to existing connections when redirect-list is modified?

Hi all, Scenario: WCCPv2 configured and active for WAAS, all TCP traffic redirected (no redirect-list configured for service groups 61 and 62) What happens to active/existing TCP sessions that _are_ being intercepted/redirected if I configure a redirect-list with a 'deny' statement that matches

Re: [c-nsp] WCCPv2 - what happens to existing connections when redirect-list is modified?

Hi all, On Fri, May 22, 2009 at 1:38 PM, Dale Shaw dale.shaw+cisco-...@gmail.com wrote: Can anyone provide any insight? Thanks for the replies -- that makes sense. I'm proceeding on the basis that by _not_ intercepting/redirecting, the affected flows will barf, as I'm sure that TFO, at least

Re: [c-nsp] Cat 6500 (IOS) dhcp Client

Hi, On 20 May 2009, at 01:46, Dan Benson wrote: As strange as this sounds, I have a need to be assigned an address on a Cat6500 Running IOS via dhcp (to a vlan or a dedicated port). On Wed, May 20, 2009 at 4:39 PM, Steve Lalonde st...@enta.net wrote: Not so strange. You've got a DHCP

Re: [c-nsp] OT: Cisco WAAS Setup Scenario

Further to this, Felix, if you decided against inline deployment, you can set up WCCP ACLs that would ensure that only traffic to/from the WAAS-enabled spoke site is redirected at the head-end. i.e. if the spoke site is 192.168.10.0/24, you could have a config like this on the WCCP router(s) at

[c-nsp] WCCPv2 on cat6500/SUP2-MSFC2 (WAAS)

Hi, Is anyone out there running WCCPv2 on cat6500/SUP2-MSFC2 hardware? Does it work properly? Is it supported in hardware? What code are you running? Native or hybrid? How much SP/RP memory and flash do you have? Any noteworthy caveats? :-) Sorry for all the questions. We have a bunch of older

Re: [c-nsp] ip tcp mss on sup720

Hi Javier, The command reference indicates that the ip tcp mss global command is applicable only to TCP sessions terminating on or originating from the local device. The ip tcp adjust-mss interface command was integrated in 12.2(33)SXH. I've confirmed that I don't see it in 12.2(18)SXF5. Are you

[c-nsp] CEF issue with NAT pool with add-route keyword (NVI)

Hi, I've just encountered a strange problem: SW1__Vlan10  --  Fa0/0__R1__Se0/1/0  --  Se0/1/0__R4 SW1's config is: interface Loopback0  ip address 10.255.8.8 255.255.255.255 ! interface Vlan10  ip address 10.1.18.8 255.255.255.0 ! router rip  version 2  network 10.0.0.0  no auto-summary 8---

Re: [c-nsp] Nexus 5000?

Hi, On Mon, May 11, 2009 at 3:26 PM, Elmar K. Bins e...@4ever.de wrote: I'd say most Cisco devices will be able to use GLC-T's on 10/100/1000. I must admit, the only place I've encountered the 1000-only situation is on WS-X6724-SFP (and I assume 48-SFP) 6500 series line cards. Apart from here

Re: [c-nsp] Hub-Spoke QoS

Hi, On Sat, May 9, 2009 at 7:45 PM, Lala Lander ssh...@gmail.com wrote: How are you going to configure QoS/Policing/Shaper on hub site so it cannot overwhelm a DS3 or OC3 site with say like 100~200 Mbps traffic? I am looking for your suggestions how you are dealing with link speed mismatches

Re: [c-nsp] DNS Stuff

Hi, On Mon, Apr 27, 2009 at 4:08 PM, Mohammad Khalil eng_m...@hotmail.com wrote: Hey all is there any way to know the number of DNS requests or hits on a specific DNS server (Via SNMP for example) can we darw this ? Are you asking if there's a way to track such requests by interrogating a

Re: [c-nsp] The dreaded microburst - definition and troubleshooting

Hi Rodney, Thanks for the response. On Fri, Apr 24, 2009 at 11:31 PM, Rodney Dunn rod...@cisco.com wrote: On Fri, Apr 24, 2009 at 02:38:01PM +1000, Dale Shaw wrote: Does anyone have any tips for troubleshooting microbursts, particularly in relation to the c7200 platform exhibiting no buff

[c-nsp] The dreaded microburst - definition and troubleshooting

Hi all, Is there a universally agreed upon definition for a 'microburst'? Is there a defined time measurement - i.e. 5ms, 10ms, 50ms, 100ms, 1000ms - during which a certain bps or pps threshold must be met/exceeded? Does anyone have any tips for troubleshooting microbursts, particularly in

Re: [c-nsp] VTY Lines

Hi Lee, On Sun, Apr 19, 2009 at 10:53 PM, Lee ler...@gmail.com wrote: What I'd like to know is what extra protection service tcp-keepalives-in gives you that the exec-timeout on the VTYs doesn't. Hmm, I guess it might come in useful if you're accessing the vty line via a firewall with

[c-nsp] 7200/NPE-G2 field notices

In case you missed 'em.. Title: Updated Cisco Field Notice: FN - 62535 - NPE-G2, Incompatibility With Lower-Revision VXR Series Chassis With Specific Port Adaptors - RMA required URL: http://www.cisco.com/en/US/customer/ts/fn/620/fn62535.html Title: Updated Cisco Field Notice: FN - 62514 -

Re: [c-nsp] BGP conditional advertisemet - NON-EXIST route map's access-list problem

Hi Burak, On Mon, Mar 16, 2009 at 12:06 AM, Burak Dikici bdik...@gmail.com wrote: i am trying to use BGP conditional advertisemet configuration. I have got a problem with NON-EXIST route map's access-list. In the NON-EXIST router map i am using the commands which is written below ; Here are

Re: [c-nsp] BGP MSS=576 bytes

Hi, 2009/2/12 Antonio Soares amsoa...@netcabo.pt: This seems buggy to me :( Bad documentation, at least. The IOS 12.4 *mainline* command reference and config guide waffle on and on about 'bgp transport' yet the command (BGP router config mode or per-neighbour) doesn't even exist in that train.

Re: [c-nsp] VTP domain.

Hi, On Wed, Feb 11, 2009 at 10:54 AM, Mark Tinka mti...@globaltransit.net wrote: No clear way to do this, today, without deleting the 'vlan.dat' file. Wish that could be fixed. Anyone out there sadistic enough to have tried copying out vlan.dat, nullifying the VTP domain with a hex editor,

Re: [c-nsp] core OSPF configurations

Hi, On Tue, Feb 10, 2009 at 10:50 AM, Brian Spade bitkr...@gmail.com wrote: Thanks Pete Pete for your insight. :-) I was hoping to get more feedback from engineers, but this definitely helps. Strange comment. Anyway, if it was me, I'd: router ospf processID passive-interface default

Re: [c-nsp] Hello

On Tue, Feb 10, 2009 at 6:49 AM, Renelson Panosky panocisc...@gmail.com wrote: Hello every one *insert terrible routing protocol adjacency dad joke here* :-) cheers, Dale ___ cisco-nsp mailing list cisco-nsp@puck.nether.net

Re: [c-nsp] setting source address for icmp messages

Hi, When I read the OP I figured he was talking about automatically generated ICMP messages (e.g. unreachables, source quench), not pings send for administrative purposes (or IP SLAs or whatever). I don't personally know of an elegant way to achieve this. One potentially undesirable option might

Re: [c-nsp] training simulator

Hi, On Thu, Jan 22, 2009 at 5:31 PM, Michael Malitsky malit...@netabn.comwrote: Can anyone recommend a training simulator appropriate for someone studying for CCNA/CCNP? On Fri, Jan 23, 2009 at 9:44 AM, chip chip.g...@gmail.com wrote: dynamips/dynagen http://dynagen.org/ Agreed. While

Re: [c-nsp] How to set port bandwidth on CatOS

Hi Everton, On Thu, Dec 18, 2008 at 5:08 AM, Everton Diniz notrev...@gmail.com wrote: How can i set bandwidth on Sw running CatOS? Like IOS: int f1/1 band 1 The bandwidth command in IOS doesn't actually change the bandwidth of an interface -- it's used by other higher layer processes

[c-nsp] Catalyst 3750 stacks with many members

Hi all, We have a few large (6 member) cat3750 stacks in our environment, most in L2 edge/access roles, and most providing PoE to cisco IP phones. Does anyone have any tips as to how to make large stacks more reliable? We're seeing really high CPU and have found you need to be really careful

[c-nsp] Identifying device(s) connected to cisco L2-only switch

Hi all, Here's the scenario: - L2 switchport in cat3750 up/up - No MAC learnt on the interface (sh mac-addr int gi1/0/4 shows no dynamic MAC address) - Attached device not necessarily configured with an IP in the correct VLAN (mismatched with switchport) - endpoint IP configuration unknown I

[c-nsp] Help: Lost ACS Solution Engine recovery CD (base image 4.1.x)

Hi all, I have a broken ACS-SE (CSACSE-1113-K9) running base image release 4.1.1.4 with appliance management release 4.1.1.23. It's not a production device so it's not urgent, but in the process of attempting to patch it to address the ACS DoS vulnerability, I busted it good and proper. Turns

Re: [c-nsp] %SW_MATM-4-MACFLAP_NOTIF

Similarly, I've seen this on new Solaris hosts with local-mac-address set to false. # eeprom | grep mac local-mac-address?=false # Needs to be changed to 'true', otherwise all interfaces use the same MAC. # eeprom local-mac-address?=true # cheers, Dale On Thu, Oct 16, 2008 at 1:19 PM, Michael

[c-nsp] CiscoWorks LMS - Apache daemon registration information

Hi, Could someone with LMS 3.x running on Windows please send me the output of pdreg -l Apache ? I've got an HTTP/SSL problem and I think I've stuffed the daemon registration for Apache (relates to bug CSCso59571). cheers, Dale ___ cisco-nsp mailing

Re: [c-nsp] CiscoWorks LMS - Apache daemon registration information

On Wed, Aug 27, 2008 at 1:30 PM, Dale Shaw [EMAIL PROTECTED] wrote: Could someone with LMS 3.x running on Windows please send me the output of pdreg -l Apache ? Thanks all -- have had a few replies and, for now at least, I'm back up and running (although my SSL woes continue). cheers, Dale

Re: [c-nsp] OT: network inventory

Hi, On 8/20/08, Adam Greene [EMAIL PROTECTED] wrote: OK, great thanks. I think we will give rancid a whirl. I assume that I'll be able to tftp whatever config file rancid creates back into a new device should we experience a hardware failure. Yep, just make sure you turn off the feature that

Re: [c-nsp] engineer opening

Hi, On Fri, May 9, 2008 at 2:27 PM, Manoj koshti [EMAIL PROTECTED] wrote: I am looking for Network and Security Engineer with 3 year of networking experience in cisco networking for graveyard shift Do you realise this is a mailing list with global membership? You haven't specified where the

Re: [c-nsp] Netflow Question

Hi, [EMAIL PROTECTED] wrote: Second part to this question is anyone recommend a Netflow analyzer? Either application or appliance (price is important.) I'd like to get one where I can assign clients access where they only have access to the ports I assign them. I'm currently using

Re: [c-nsp] Cisco 6513 goes straight into rommon

AMLIATLCORE# That may be it, how do we change it??? Jonathan On Tue, Apr 22, 2008 at 10:24 PM, Dale Shaw [EMAIL PROTECTED] wrote: What does remote command switch sh boot say the config-register is? Is it possible the SP is set to boot to ROMMON, but the RP isn't? (seems

[c-nsp] Catalyst 3750 failure - marsupial interference

Hi all, Does anyone know if there's a bug ID for this problem? We're running IOS 12.2(44)SE. The problem is best visualised. See: http://i25.tinypic.com/309lesx.jpg ... The culprit is an Australian possum -- you'll note the missing power cable from the switch lowest in the stack, and the

Re: [c-nsp] Netflow Top Talkers?

Hi, ..on-topic, relevant NetFlow conversations snipped.. While we're on the topic of quick n dirty methods for seeing top talkers/active flows through a router (i.e. methods that don't depend on any supporting infrastructure), does anyone else find the sh ip cache flow output only partially

Re: [c-nsp] PBR with NAT/PAT - strange (non-deterministic) behaviour

G'day oli, On Fri, Mar 7, 2008 at 7:02 PM, Oliver Boehmer (oboehmer) [EMAIL PROTECTED] wrote: Can you try adding match interface to the NAT route-maps? I.e. route-map App01-NAT-FOO1 permit 10 match ip address 125 match interface Serial0/1.742 Sigh! Thanks -- that was it. I was under

Re: [c-nsp] PBR with NAT/PAT - strange (non-deterministic) behaviour

Hi oli, On Fri, Mar 7, 2008 at 7:41 PM, Oliver Boehmer (oboehmer) [EMAIL PROTECTED] wrote: match ip next-hop should also work. Not sure why it didn't, would need to see the full config.. but in your case, I'd work with interfaces (also use set interface in PBR route-map).. I started off

[c-nsp] PBR with NAT/PAT - strange (non-deterministic) behaviour

Hi all, I'm trying to configure two 2611XMs to do PBR and NAT. The relevant config snippet is included below, but essentially one of the routers is doing what I want, and the other isn't. I suspect I'm hitting an IOS bug, or my config isn't quite right (hmmm, thanks captain obvious.) I have a

Re: [c-nsp] Result of Duplicate SEQ on Prefix List

Hi, On Thu, Feb 21, 2008 at 3:34 PM, Christian Koch wrote: if by mistake a prefix list was added with the same sequence number, would there be any negative result? On Fri, Feb 22, 2008 at 10:54 AM, Higham, Josh [EMAIL PROTECTED] wrote: I believe that you get an error, but it's easy to

[c-nsp] Tracking down spoofed source IPs in DMVPN (GRE multipoint) environments

Hi all, Today I had to track down a Windows PC with a 169.254.x IP that was sending some annoying directed broadcast packets around my network. Yes, uRPF would take care of this, and that's what I've used to drop any such traffic in the future. I was using NetFlow and CEF to trace the source,

Re: [c-nsp] internal enterprise MPLS/VRF recommendations

Hi Josh, On 2/1/08, Higham, Josh [EMAIL PROTECTED] wrote: I have a couple of internal groups that need some level of private connectivity within our network, and I'm looking at some high level input about the various options. [...] I don't know how much heart surgery you'd need to perform on

Re: [c-nsp] CCNP exams while working full time?

Hi Mohamed, On Jan 22, 2008 8:15 PM, Mohamed Ahmad [EMAIL PROTECTED] wrote: I just wanted to see how many of you guys took some CCNP exams (and studied for them :)) while in full time employment? It's definitely possible and I suspect the majority of people do it this way. I self-studied my

Re: [c-nsp] [OT] Driving 1310nm optics through 1550nm circulators

All, On Jan 10, 2008 4:34 AM, David Freedman [EMAIL PROTECTED] wrote: Interesting that his carrier delivers them as part of their *dark* fibre product Perhaps its cheaper if you take a single strand + diplexer as opposed to a pair, (i.e perhaps its a dark single fiber and the diplexers

[c-nsp] [OT] Driving 1310nm optics through 1550nm circulators

Hi, Apologies for the off-topic post, but I figured there'd be a few fibre optic guru nerd types out there. I need to connect some equipment (a router to a switch) via a dark fibre service. At each end, the service is presented as TX and RX on an optical circulator -- the fibre run itself is a

Re: [c-nsp] copy tftp flash gives OOOOOO!OOOOOO!

Hi all, - Original Message - From: Jeffrey Ollie [EMAIL PROTECTED] To: Adam Greene [EMAIL PROTECTED] Cc: cisco-nsp@puck.nether.net Sent: Thursday, December 20, 2007 5:07 PM Subject: Re: [c-nsp] copy tftp flash gives OO!OO! The Os indicate that a TFTP packet was lost along

Re: [c-nsp] Configure IP helper via SNMP?

Hi Drew, On Dec 11, 2007 5:30 AM, Drew Weaver [EMAIL PROTECTED] wrote: Well, we were going to use both 'whether the helper address was configured' and whether the MAC address of the NIC (which would've been configured dynamically via an application in which it gets added/removed

Re: [c-nsp] Cat3750 crash 12.2(40)SE

:07 PM, Dale Shaw [EMAIL PROTECTED] wrote: Hi all, Has anyone seen this crash? Happened on a 2-member Cat3750-12S-E stack. All I did was change the IP address on a Port-channel interface and it died on me. I literally just went: conf t, int po1, ip address a.b.c.d 255.255.255.0 enter

[c-nsp] IOS NAT, translating source into IP not included in routing table

Hi, My Google-fu is failing me.. Scenario: FastEthernet0 (NAT inside), IP 10.20.20.1/24 Tunnel1 (NAT outside), IP 172.16.0.1/24 DMVPN environment with EIGRP Performing static source address translation from hosts in 10.20.20.0/24 to 192.168.20.x interface FastEthernet0 ip address 10.20.20.1

Re: [c-nsp] IOS NAT, translating source into IP not included in routing table

and some ideas might come up later... rgs a. rahman isnaini r.sutan - Original Message - From: Dale Shaw [EMAIL PROTECTED] To: cisco-nsp@puck.nether.net Sent: Thursday, November 22, 2007 5:39 AM Subject: [c-nsp] IOS NAT,translating source into IP not included in routing table Hi

[c-nsp] Cat3750 crash 12.2(40)SE

Hi all, Has anyone seen this crash? Happened on a 2-member Cat3750-12S-E stack. All I did was change the IP address on a Port-channel interface and it died on me. I literally just went: conf t, int po1, ip address a.b.c.d 255.255.255.0 enter and it fell over. First it crashed the stack master

Re: [c-nsp] Cisco IOS support for blksize / rfc 2348

Hi, On Nov 6, 2007 9:52 AM, Clinton Work [EMAIL PROTECTED] wrote: I'm trying to determine when blksize / rfc 2348 support was added to several Cisco IOS releases. It might have been added with defect CSCds46280, but the bug report doesn't provide any details. Support for tftp RFC2348 is

Re: [c-nsp] Useful HSRP feature additions WAS: Rate limiting questions

Hi all, On 10/28/07, Christopher E. Brown [EMAIL PROTECTED] wrote: 5 min later, the MAC entry times out, but the ARP entries are there for another 4hr 55min... Now we have our layer2 network with no target for that MAC and flooding everywhere. (3hr 55min?) I was tempted to start a new

Re: [c-nsp] Where do you put the optical attenuators?

Hi, On 10/27/07, John Souvestre [EMAIL PROTECTED] wrote: I would think that putting them on the receiver side would be best. This way they will attenuate the noise along with the signal. I agree. Cisco's documentation for their SC and LC attenuators (not that they're special in any way)

  1   2   >