Whats the reason behind this request? Which traffic do you want dropped,
and why? Just curious..
oli
Vikas Sharma wrote on Thursday, June 28, 2007 7:12 AM:
Hi Ozgur,
I have tried what you have suggested in lab and found it is difficult
to block packets originated from local router
Hello,
iam pondering a few month now about best practices of placing and designing
infrastructure ACLs and policing untrusted traffic to an acceptable rate.
When speaking about infrastructure iam thinking about iBGP and eBGP, OSPF,
SNMP, ICMP and SSH. Protecting iBGP is simple when its
On (2007-06-29 09:28 +0200), Peter Basquiat wrote:
with rate-limit, MQC or CoPP if supported?
I use MQC+ACL in AS border, to drop everything except rate-limited ICMP and
UDP 'traceroute port range' to core links and core loops. (I don't advertise
PE side of the customer point-to-points so they
(as a side note, and IMHO, 'x' is an unfortunate choice of name for this
standard - to me it indeed sounded initially like 802.1 something or
802.1 whatever)
Thanks, but what I mean is 802.1X, the authentication protocol, is not
the 802.1Q as the VLAN trunking protocol.
Sorry Guys, wrong list ...
Ahmad Cheikh Moussa wrote:
Hi!
today I've tried to download the german locale for ccm 4.2(3).
I can not find any download link for this version. I only found
locales for 4.2(1). Could it be that actually there is no locale
for the callmaner 4.2(3) ?
Regards,
Hi!
today I've tried to download the german locale for ccm 4.2(3).
I can not find any download link for this version. I only found
locales for 4.2(1). Could it be that actually there is no locale
for the callmaner 4.2(3) ?
Regards,
Ahmad
--
Ahmad Cheikh-Moussa
ISP-Technik
NetUSE AG
Hi,
On Fri, Jun 29, 2007 at 05:06:42AM -0400, Sridhar Ayengar wrote:
What I can't figure out is how to configure the network for the servers.
Make them neither inside nor outside - then packets will never be NATted
coming from this interface, or going towards it.
This is the cool thing about
I have a NAT question which could probably be considered simple, but my
Google-fu fails me. I would appreciate either an answer, or a pointer
to where I can RTFM.
I have four networks that I'm routing between. The first is a
publicly-accessible block for servers with a routeable IP block.
On Fri, 2007-06-29 at 10:43 +0530, Vikas Sharma wrote:
Hi,
Need help to understand the concept of multicast?
My question is what is the mac address, when a packet is forwarded across
the WAN? Is it the mac address of connected router (unicast mac address) or
multicast mac-address? When L2
On Fri, 2007-06-29 at 06:06 -0500, Swaroop Potdar wrote:
Most WAN media types are P2P in nature so there is no Multicast to MAC
mapping.
Well yes, but since the OP mentioned multicast MAC addresses, it was a
pretty safe bet to assume he was talking about Ethernet
Since ethernet is a
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Hi to all of you,
Do you know if it sposible to configure Multicast AFI for IPv6 in the
BGP configuration in the 12.2(18)SXF9 advanced enterprize IP feature set ?
Cheers,
Dimitrios
- --
Dimitrios K. Kalogeras
Electrical Engineer, Ph.D.
Network
Most WAN media types are P2P in nature so there is no Multicast to MAC mapping.
Since ethernet is a broadcast and multiple access type media in nature, the
multicast to mac address mapping is desired to avoid flooding of traffic to all
hosts connected to the media.
So when you enable IGMP
On Fri, 29 Jun 2007, Dimitrios Kalogeras wrote:
Hash: SHA1
Hi to all of you,
Do you know if it sposible to configure Multicast AFI for IPv6 in the
BGP configuration in the 12.2(18)SXF9 advanced enterprize IP feature set ?
No. It is available only in 12.2(33)SRB and later - if I
Hi folks
We are having an issue with dial-up customers and hoping someone can shed
some light on a possible solution. There are several options and one of
them could involve a configuration change on our 5400XM
At a remote POP, we have 10 T1's coming into a AS5400XM box which then takes
Yes it can do it
You need a data dial peer to use to specify which are data calls.
http://www.cisco.com/en/US/products/sw/iosswrel/ps1839/products_feature_guide09186a0080110d2b.html
Regards
Brian
-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Paul
Hi,
Do you think it is possible pre define the IP address of a L2TP tunnel
without using AAA server?
(for example using DHCP for IP pool and somehow define configure DHCP
server to map IP to certain parameters received from LNS)
Tks,
Alaerte
___
Do you have a live interface in vlan 630? A port on the switch
configured as vlan 630 that is up and up.
Scott
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of Joann Deng
Sent: Thursday, June 28, 2007 5:04 PM
To: cisco-nsp@puck.nether.net
Subject:
Just a quick question,
RMON will pull syslog messages correct?
You just set this as an event?
anyone know this command string off the top of their head?
Thanks,
___
cisco-nsp mailing list cisco-nsp@puck.nether.net
IIRC NAT occurs after routing, therefore it traffic is simply routed between
inside interfaces, it should never be NATed.
You could, however, always do something like this in the ACL which decides
what traffic is NATed:
ip nat inside source list 100 interface WAN overload
!
access-list 100 deny
Hi folks...
I'm googled and searched the archives.. need to ask to be sure...
Cisco 2821 w/1 gig RAM - should it be able to handle 140-160 PPPOE sessions
without too much trouble? We have much older routers at some remote
locations handling 60-80 sessions with little problems
The total
Hi,
On Sat, Jun 30, 2007 at 12:26:45AM +0930, Tom Storey wrote:
IIRC NAT occurs after routing, therefore it traffic is simply routed between
inside interfaces, it should never be NATed.
Specifically, inside-to-outside NAT occurs if and only if (!) the
packet comes in from an ip nat inside
Hi,
On Fri, Jun 29, 2007 at 11:35:22AM +0200, Vincent De Keyzer wrote:
This is the cool thing about the classic IOS NAT - you can do things like
this.
Does Cisco have any other NAT than the classic IOS one ?
PS: You can reply on-list if ever my question makes sense :)
Yes, they
We have a setup where a pair of our 6500 switches each connect via FE to a
telco's ME3400 switch, and the telco provides ethernet connectivity from
customers back to us using q-in-q. We deploy small vlan capable switches
(i.e. 2912xl) as CPE and each is configured to use a different vlan which
can you get to the console and reload there? It will then show you the image
it is loading.
Aaron
On 6/29/07, Voll, Scott [EMAIL PROTECTED] wrote:
I have a router I just inherited that every time I telnet to it and
issue a Show command it locks up. Any idea what's causing it, and how
to fix
50 miles east..was trying not to drive ;-)
From: heh heh [mailto:[EMAIL PROTECTED]
Sent: Friday, June 29, 2007 1:50 PM
To: Voll, Scott
Cc: cisco-nsp@puck.nether.net
Subject: Re: [c-nsp] VTY locks on show commands
can you get to the console and
On Fri, 29 Jun 2007, Voll, Scott wrote:
I have a router I just inherited that every time I telnet to it and
issue a Show command it locks up. Any idea what's causing it, and how
to fix it?
It's a 26xx and I don't know the IOS as I can't do a Show Ver.
Can you do a dir flash: or dir /all?
No oob? ouch.
On 6/29/07, Voll, Scott [EMAIL PROTECTED] wrote:
50 miles east……….was trying not to drive ;-)
--
*From:* heh heh [mailto:[EMAIL PROTECTED]
*Sent:* Friday, June 29, 2007 1:50 PM
*To:* Voll, Scott
*Cc:* cisco-nsp@puck.nether.net
*Subject:* Re:
Maybe try TFTP'ing the config off to yourself and review the config.
Maybe some weird commands are causing crazy CPU spikes or something of
that nature.
Chris Serafin
Security Engineer
[EMAIL PROTECTED]
Voll, Scott wrote:
I have a router I just inherited that every time I telnet to it and
On Fri, 29 Jun 2007, Voll, Scott wrote:
I have a router I just inherited that every time I telnet to it and
issue a Show command it locks up. Any idea what's causing it, and how
to fix it?
Does it lock up even if you do show version | inc XYZXYZ ? If that still
works, it's probably an MTU
Jon Lewis wrote:
I just tried setting up vrrp on the 6500s for one of these customer vlans
and found that neither 6500 would see the other's vrrp multicast packets,
and so each thought it was the only router and became the active router.
Is this a known issue when connecting switches to
Voll, Scott wrote:
I have a router I just inherited that every time I telnet to it and
issue a Show command it locks up. Any idea what's causing it, and how
to fix it?
It's a 26xx and I don't know the IOS as I can't do a Show Ver.
Is it directly connected to another Cisco device that
Yep it should handle that without too much fuss.
Ben
On 30/6/07 12:31 AM, Paul Stewart [EMAIL PROTECTED] wrote:
Hi folks...
I'm googled and searched the archives.. need to ask to be sure...
Cisco 2821 w/1 gig RAM - should it be able to handle 140-160 PPPOE sessions
without too much
My question would be... how many could it go up to with 'out too much fuss'
?
300? 400?
...Skeeve
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of Ben Steele
Sent: Saturday, 30 June 2007 2:49 PM
To: Paul Stewart; cisco-nsp@puck.nether.net
Subject: Re:
OK... I need to try to understand by what you mean 'type of sessions'?
I'm talking about typical residential internet services, most of which are
between 512 and 2MB.
Traffic patterns would be consistent with what your typical user would do.
I am unsure how to evaluate the pps required per user
34 matches
Mail list logo