I second Justin, just sharper: Don't mix Vista with anything...
-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Justin Shore
Sent: Tuesday, September 23, 2008 9:47 PM
To: cisco-nsp@puck.nether.net
Subject: Re: [c-nsp] Debugging Cisco VPN Client Software
Hi,
after years of running very smoothly and without any problems (and not
expecting any), we have decided to move our backbone from OSPF (single
area) to iBGP as far as best practice recommendations go ... I've been
trying to find decent write-ups about certain things, but haven't been
too
On Wednesday 24 September 2008 15:52:13 Garry wrote:
after years of running very smoothly and without any
problems (and not expecting any), we have decided to move
our backbone from OSPF (single area) to iBGP as far as
best practice recommendations go ...
This is, indeed, a best practice as
Hi all.
Not sure if it's just me but for the past several months,
I've found the performance (response times) when browsing
www.cisco.com is not all too great.
I've tried using different paths to reach the site, and in
some cases, there is short-lived improvement, and things go
back to
hi, i guess its about time the cco should sit behind akamai or limelight...
what do you think?
On Wed, Sep 24, 2008 at 5:03 PM, Mark Tinka [EMAIL PROTECTED]wrote:
Hi all.
Not sure if it's just me but for the past several months,
I've found the performance (response times) when browsing
Christian MacNevin wrote:
Hi
Got a client running 33SXH1 in their network. Is SXF still the best bet
for stable mcast? Or are there necessary widgets in SXH nowadays?
Routed or layer2?
There are some enhancements in SXH (multicast router guard, IGMP join
filtering) which are more relevant
Mark Tinka wrote:
I've been trying
to find decent write-ups about certain things, but
haven't been too successful as far as certain details go
... maybe somebody has some good pointers for me ...
Philip Smith (Cisco) has some very good slides on this and
other best practice scaling
Higham, Josh wrote:
I am currently investigating using vrf-lite within our company to
support some research requests. I have some hesitation about
maintaining it, though, especially in a smaller enterprise environment
(4 network techs, ~10 branches).
I am comfortable with the technology, but
You might want to try the test pppoe ios command, although i don't know its
exact usage (i haven't tried it myself).
Also there are some devices from Spirent (http://www.spirent.com/analysis/technology.cfm?media=7WS=325SS=101wt=2)
that can do all sorts of performance testing, but they DO cost
That's because they use Huawei gear in their networks... ;-)
-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Mark Tinka
Sent: Wednesday, September 24, 2008 12:03 PM
To: cisco-nsp@puck.nether.net
Subject: [c-nsp] Performance Of www.cisco.com
Hi all.
Garry wrote:
Mark Tinka wrote:
I've been trying
to find decent write-ups about certain things, but
haven't been too successful as far as certain details go
... maybe somebody has some good pointers for me ...
Philip Smith (Cisco) has some very good slides on this and
other best practice
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of Mark Tinka
Sent: Wednesday, September 24, 2008 11:19 AM
To: cisco-nsp@puck.nether.net
Subject: Re: [c-nsp] Converting OSPF backbone to iBGP
On Wednesday 24 September 2008 15:52:13 Garry wrote:
after
Cisco.com has been slow for me for some time now as well.
-Dan
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of S H A N
Sent: Wednesday, 24 September 2008 5:12 PM
To: [EMAIL PROTECTED]
Cc: cisco-nsp@puck.nether.net
Subject: Re: [c-nsp] Performance Of
I typically have no problem getting at least 2MB/sec from
cisco when dowloading software.
- Jared
On Wed, Sep 24, 2008 at 06:30:23PM +0800, Daniel Hooper wrote:
Cisco.com has been slow for me for some time now as well.
-Dan
-Original Message-
From: [EMAIL
Hi,
We are using Cisco 3550, 3560 for access and 4500 for the core.
All the ports of the users are port-secure enabled (switchport port-security
mac-address sticky).
We have enough cases where their ports get in err-disable status due to a
wrong MAC address source.
That mac address
I'm looking to mitigate the recursive DNS behind NAT port de-randomization
issue and see that 7.0.8-1 and greater have the fix (we're on 7.0.8 GD
now).
Please comment on the stability of the 7.0 Interim train or 7.0.9
availability if you have experience.
Thanks,
~JasonG
--
If you have not yet looked at the Admin guide,
(http://www.cisco.com/en/US/docs/app_ntwk_services/data_center_app_servi
ces/ace_appliances/vA1_7_/configuration/administration/guide/xml.html),
that would be a good place to start. There's at least one example in
there. Supposedly the dtd is
Garry wrote:
after years of running very smoothly and without any problems (and not
expecting any), we have decided to move our backbone from OSPF (single
area) to iBGP as far as best practice recommendations go ... I've been
trying to find decent write-ups about certain things, but haven't
Hello,
we installed a few Cisco 4500-E with SUP6-E supervisors. Now one of
them is showing a high CPU load, around 60-70%. I'm unable to find the
reason for this. It's running 12.2(46)SG Enterprise Services.
sh proc cpu shows that the Cat4k Mgmt LoPri process is taking most
of the CPU time:
49
The recent discussion of VRFs, RDs, RTs, VPNv4 labels, etc was
interesting, and starting to sink in.
I've been in early stages of a VRF-lite deployment for some time.
Admittedly, from a VRF-lite perspective, a lot of the configuration is
essentially cut-and-paste, and most of the values you can
On Wed, Sep 24, 2008 at 11:17:27AM +1000, Andy Saykao wrote:
Argh cool. Thanks for that explaination Rodney.
You wrote: based on the local VPN label allocated for either all
connected or that specific route. A table is maintained to map them.
Is there a command to view this table to
Mark Tinka wrote:
Hi all.
Not sure if it's just me but for the past several months,
I've found the performance (response times) when browsing
www.cisco.com is not all too great.
I've tried using different paths to reach the site, and in
some cases, there is short-lived improvement,
How about bringing back the old Mustard and Olive CCO the one which
actually worked...
S H A N wrote:
hi, i guess its about time the cco should sit behind akamai or limelight...
what do you think?
On Wed, Sep 24, 2008 at 5:03 PM, Mark Tinka [EMAIL PROTECTED]wrote:
Hi all.
Not sure if
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Cisco Security Advisory: Cisco IOS IPS Denial of Service
Vulnerability
Advisory ID: cisco-sa-20080924-iosips
http://www.cisco.com/warp/public/707/cisco-sa-20080924-iosips.shtml
Revision 1.0
For Public Release 2008 September 24 1600 UTC (GMT
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Cisco Security Advisory: Cisco IOS Software Layer 2 Tunneling
Protocol (L2TP) Denial of Service Vulnerability
Advisory ID: cisco-sa-20080924-l2tp
http://www.cisco.com/warp/public/707/cisco-sa-20080924-l2tp.shtml
Revision 1.0
For Public Release
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Cisco Security Advisory: Cisco IOS MPLS Forwarding Infrastructure
Denial of Service Vulnerability
Advisory ID: cisco-sa-20080924-mfi
http://www.cisco.com/warp/public/707/cisco-sa-20080924-mfi.shtml
Revision 1.0
For Public Release 2008 September 24
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Cisco Security Advisory: Cisco IOS NAT Skinny Call Control Protocol
Vulnerability
Advisory ID: cisco-sa-20080924-sccp
http://www.cisco.com/warp/public/707/cisco-sa-20080924-sccp.shtml
Revision 1.0
For Public Release 2008 September 24 1600 UTC (GMT
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Cisco Security Advisory: Vulnerability in Cisco IOS While Processing
SSL Packet
Advisory ID: cisco-sa-20080924-ssl
http://www.cisco.com/warp/public/707/cisco-sa-20080924-ssl.shtml
Revision 1.0
For Public Release 2008 September 24 1600 UTC (GMT
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Cisco Security Advisory: Cisco uBR10012 Series Devices SNMP
Vulnerability
Advisory ID: cisco-sa-20080924-ubr
http://www.cisco.com/warp/public/707/cisco-sa-20080924-ubr.shtml
Revision 1.0
For Public Release 2008 September 24 1600 UTC (GMT
On Tue, Sep 23, 2008 at 09:15:49PM +0100, Mario Spinthiras wrote:
Before planning a small deployment I wanted to know if any of you had made
use of GVRP (via GARP) on production Cisco machines. Do they provide the
same result as does VTP?
I have been unable to test it since Cisco doesn't
On Wed, Sep 24, 2008 at 05:03:27PM +0800, Mark Tinka wrote:
Not sure if it's just me but for the past several months,
I've found the performance (response times) when browsing
www.cisco.com is not all too great.
I've found issues with my browser - I use Mozilla Seamonkey, the
continuation of
I took a look at those and couldn't make heads or tails of the
cisco_ace.dtd file
-Original Message-
From: Ramcharan, Vijay A [mailto:[EMAIL PROTECTED]
Sent: Wednesday, September 24, 2008 6:52 AM
To: Teller, Robert; cisco-nsp@puck.nether.net
Subject: RE: [c-nsp] Configure Cisco Ace using
So if I wanted my VLAN db to be on a server , i.e a nice web interface
implemented in an IPAM , are you saying I cant run a software that generates
VTP messages for propagation simply because VTP is proprietary? Do all IOS
not implement GVRP ?
___
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Cisco Security Advisory: Cisco IOS MPLS VPN May Leak Information
Advisory ID: cisco-sa-20080924-vpn
http://www.cisco.com/warp/public/707/cisco-sa-20080924-vpn.shtml
Revision 1.0
For Public Release 2008 September 24 1600 UTC (GMT
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Cisco Security Advisory: Cisco Unified Communications Manager Session
Initiation Protocol Denial of Service Vulnerabilities
Advisory ID: cisco-sa-20080924-cucm
http://www.cisco.com/warp/public/707/cisco-sa-20080924-cucm.shtml
Revision 1.0
Seth Mattinen wrote:
It's been slow for me since this current iteration of the design came
out. I just attributed it to the tradeoff between flashy and functional.
I was stuck on a dialup modem (21k) once during an emergency after my
877 at home failed and trying to access my TAC case online was
Ross Vandegrift wrote:
On Wed, Sep 24, 2008 at 05:03:27PM +0800, Mark Tinka wrote:
Not sure if it's just me but for the past several months,
I've found the performance (response times) when browsing
www.cisco.com is not all too great.
I've found issues with my browser - I use Mozilla
http://www.cisco.com/en/US/docs/ios/12_2sr/12_2srb/feature/guide/srbcgvrp.html
Eugene.
Ross Vandegrift wrote:
On Tue, Sep 23, 2008 at 09:15:49PM +0100, Mario Spinthiras wrote:
Before planning a small deployment I wanted to know if any of you had made
use of GVRP (via GARP) on production
hi,
just a qucik question to see if theres some simple
option. For operational reasons we have to send
a trunk link down to a customer location...in this case
we are wary (as they may move..with the kit that was at
the other end..and someone else will connect to the link
and get themselves a
* A.* First customer ship is expected in September 2008.
I just heard that's been postponed to 'end of October'.
-A
___
cisco-nsp mailing list cisco-nsp@puck.nether.net
https://puck.nether.net/mailman/listinfo/cisco-nsp
archive at
I am having trouble finding specific information about the GigE ports
on the OSM-2OC12 card. Are those regular GigE ports or the GE-WAN
ports like one would find on the OSM-4GBIC card?
-Matt
___
cisco-nsp mailing list cisco-nsp@puck.nether.net
I believe SRD (plus the new ES cards) are supposed to come
out at that time too...
I believe SRD has been delayed for quite some time, and most
certainly will *not* ship before 30sep08.
-A
___
cisco-nsp mailing list cisco-nsp@puck.nether.net
Seconded.
In fact, it's a common sense thing that since it's not being done, is brilliant.
Justin Shore [EMAIL PROTECTED] 09/24/08 01:43PM
Seth Mattinen wrote:
It's been slow for me since this current iteration of the design came
out. I just attributed it to the tradeoff between flashy and
I don't know if this is possible for you to do or not, but have you
considered using static assignments for MAC-Port mappings (e.g.
specify a mac address instead of sticky)?
I only use port security on an N7K at the moment, and we had to use
static mappings due to an outstanding bug related
I am having trouble finding specific information about the GigE ports
on the OSM-2OC12 card. Are those regular GigE ports or the GE-WAN
ports like one would find on the OSM-4GBIC card?
They are GE-WAN ports.
Steinar Haug, Nethelp consulting, [EMAIL PROTECTED]
Depending on what's at the other end, port security might be able to be
used.
Chuck
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of
[EMAIL PROTECTED]
Sent: Wednesday, September 24, 2008 1:44 PM
To: cisco-nsp@puck.nether.net
Subject: [c-nsp] securely
Hi Matt:
I am having trouble finding specific information about the GigE ports
on the OSM-2OC12 card. Are those regular GigE ports or the GE-WAN
ports like one would find on the OSM-4GBIC card?
Check out
[EMAIL PROTECTED] wrote:
just a qucik question to see if theres some simple
option. For operational reasons we have to send
a trunk link down to a customer location...in this case
we are wary (as they may move..with the kit that was at
the other end..and someone else will connect to the link
The 4 ports of Gig on the OSM-OC12 module are gig x/y ports, same
feature set as the supervisor 720 gig ports or WS-X6516. They show up as
int gig x/y. Only OSM-GEWAN module has fancy features enabled for GE.
Ian
[EMAIL PROTECTED] wrote:
I am having trouble finding specific information
I have a PA-FE on a 7206VXR. show int gives
Received 7798 broadcasts, 0 runts, 0 giants, 17 throttles
393 input errors, 0 CRC, 0 frame, 0 overrun, 393 ignored
The throttles seems to be related to the input errors. I also see
throttles with no input errors. We have double checked (and
Yep, i got informed from our AM too :(
--
Tassos
Asbjorn Hojmark - Lists wrote on 24/09/2008 23:24:
I believe SRD (plus the new ES cards) are supposed to come
out at that time too...
I believe SRD has been delayed for quite some time, and most
certainly will *not* ship before 30sep08.
-A
Am I overthinking this? After yesterday's CRG failure
(blog.mozilla.com/it/) I was left with a failed 3750 and got the RMA
this evening.
Is it as simple as replacing the dead unit with this one? I've already
made sure the replacement is running the same IOS image as the stackwise
master.
On Wed, Sep 24, 2008, matthew zeier wrote:
Am I overthinking this? After yesterday's CRG failure
(blog.mozilla.com/it/) I was left with a failed 3750 and got the RMA
this evening.
Is it as simple as replacing the dead unit with this one? I've already
made sure the replacement is
On Wed, Sep 24, 2008, matthew zeier wrote:
How's that done?
in conf mode:
switch 1 renumber new number
Then reload. Make sure you've provisioned the right switch type in the stack
(switch new number provision switch type).
(Have you read the 3750 stacking chapters in the IOS config guide?
Not only postponed, but the feature matrix has been changed, so some
roadmapped features won't show up in SXI.
Rubens
On Wed, Sep 24, 2008 at 4:42 PM, Asbjorn Hojmark - Lists
[EMAIL PROTECTED] wrote:
* A.* First customer ship is expected in September 2008.
I just heard that's been postponed
55 matches
Mail list logo