We're monitoring the traffic of service instances (under SRD2) just like the traffic of
subinterfaces, ifInOctets/ifOutOctets, etc (in the latest IF-MIB, service instances are
represented as subinterfaces and associated with an ifIndex).
No issues so far, except that we can't configure the
Hello Everyone,I have the following requirements for small integration
project and it's not working:
1. Remote access VPN for only 1-2 users.
2. Remote users can get access to the internal network only with certificate
- software or hardware.
3. the gateway is Cisco ASA 5510.
*notes:*
1. i don't
I have router 1841
and i connected leased line 4M
from the LAN side i connected 3COm switch
then ASA and another router comes
there is a server connected to another firewall connected to the 3COM switch
now the case i want to divide the 4M between the ASA and the other router
and i want at the
I have router 1841
and i connected leased line 4M
from the LAN side i connected 3COm switch
then ASA and another router comes
there is a server connected to another firewall connected to the 3COM switch
now the case i want to divide the 4M between the ASA and the other router
and i want at the
Hi Group,
I am currently considdering to replace a couple of juniper ERX310's,
with cisco ASR1002's. The junipers, are doing PPPoE termination for
both OinQ vlans and ATM pvc's and also DHCP for some subscribers.
The ATM part will remain on the juniper routers, as this will be
decomissioned in
I agree then. There probably is a platform level command that would
show the hw switched traffic I just don't know what it is for that
platform.
Rodney
On Tue, Jun 23, 2009 at 11:53:51PM +0200, Peter Rathlev wrote:
On Tue, 2009-06-23 at 11:11 -0400, Rodney Dunn wrote:
On Sun, Jun 21, 2009 at
Am trying to reload a low end IOS device (c800 in this case) without
displaying a confirmation prompt.
My issue is that the platform needing to issue the command can not see
the VTY output so could not be expected to respond to a confirmation
prompt, looked in vain for some kind of /noconfirm
Actually, seems I can just send a reload\ny via my vty and it accepts
it, a much simpler (if not ugly) solution.
Dave.
___
cisco-nsp mailing list cisco-nsp@puck.nether.net
https://puck.nether.net/mailman/listinfo/cisco-nsp
archive at
I have dot1q-tunnel working fine on SRB4, SRB5, SRD2.
QinQ is somewhat different from dot1q-tunnel, because it usually refers to the termination of double-tagged traffic (vs
dot1q-tunnel which refers to the addition of an extra tag), something that is not supported on the 67xx cards.
--
Tassos
Hello
Regarding Cisco 7600 platform what is the difference between WS-X6724+CFC
and ES20 line cards? I found some specs about latter but nothing useful
about X6724.
The problem that I'm facing now is with given small ISP network blueprint
to implement and the lack of some specified parts.
I wanted to propose the EEM solution :)
How about Tclsh with typeahead command?
http://wiki.nil.com/Insert_responses_to_command_prompts_in_Tclsh
Ivan
http://www.ioshints.info/about
http://blog.ioshints.info/
-Original Message-
From: David Freedman
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Ah, that's nice, but I really wanted something as feature independent as
possible, such a shame that the SNMP remote shutdown does not work on
this platform :(
Thanks,
Dave.
Ivan Pepelnjak wrote:
I wanted to propose the EEM solution :)
How
You can't use reload at to meet your needs?
Jared Mauch
On Jun 24, 2009, at 8:25 AM, David Freedman
david.freed...@uk.clara.net wrote:
Am trying to reload a low end IOS device (c800 in this case) without
displaying a confirmation prompt.
My issue is that the platform needing to issue the
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
No, same problem :
#reload at 01:00
Reload scheduled for 01:00:00 BST Thu Jun 25 2009 (in 10 hours and 50
minutes) by user on vty0 (10.0.0.1)
Reload reason: Reload Command
Proceed with reload? [confirm]
#reload in 5
Reload scheduled for 14:15:10 BST
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Yes, unfortunately it does take the command but alas does not work:
Router(config)#snmp-server system-shutdown
Router(config)#end
Router#
Router#sh run | in shutdown
snmp-server system-shutdown
$ snmpset -v2c -c private 10.0.0.2
Hi,
On Wed, Jun 24, 2009 at 04:37:43PM +0400, victor wrote:
Regarding Cisco 7600 platform what is the difference between WS-X6724+CFC
and ES20 line cards?
Price, and features. Especially price. And a bit price.
Extra features of ES20 as compared to 6724 are:
- VPLS
- QinQ termination
You can try openca. http://www.openca.org/
almog ohayon wrote:
Hello Everyone,I have the following requirements for small integration
project and it's not working:
1. Remote access VPN for only 1-2 users.
2. Remote users can get access to the internal network only with certificate
-
So, it seems to be some kind of analogous feature to TCP SYN protect or
such like, to protect a client flooding a server.
All,
Cisco have identified this as a bug, fixed in 1.5 - CSCsw52831 /
CSCsu42225 udp packets are dropped by ace. It's a timing-related issue
in session setup.
Many
In the past I used snmp dto do this, you need to enable
snmp-server system-shutdown
Before it is possible, and it is not possible on all platforms, but is it takes
this command it should work
I don't have the mib handy , but can dig for it if you can't find it
Brian
-Original
Hi,
I need to move a link tonight from a 6500 to an ASR. This link requires no
negotiation per the carrier. On the 6500, this is currently configured --
speed nonegotiate.
However, the ASR does not have this option:
tk-rtr1#conf t
Enter configuration commands, one per line. End with CNTL/Z.
Hmm.. looks like I am answering my own question... :-)
Seems like the command is 'no negotiation auto'
If you beg to differ, please speak up! :-)
/bs
On Wed, Jun 24, 2009 at 8:26 AM, Brian Spade bitkr...@gmail.com wrote:
Hi,
I need to move a link tonight from a 6500 to an ASR. This link
Maybe you can create an acl with all values and (if using the right supervisor)
you can check the acl hits.
I wish there was something like the sh mls qos int stat that exists on the
3750s.
--
Tassos
Matthew Huff wrote on 24/06/2009 17:16:
Is there any way with a C6509/Sup3203B with X6548
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Cisco Security Advisory: Cisco Physical Access Gateway Denial of
Service Vulnerability
Advisory ID: cisco-sa-20090624-gateway
Revision 1.0
For Public Release 2009 June 24 1600 UTC (GMT
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Cisco Security Advisory: Vulnerabilities in Cisco Video Surveillance
Products
Advisory ID: cisco-sa-20090624-video
Revision 1.0
For Public Release 2009 June 24 1600 UTC (GMT
On Wed, Jun 24, 2009 at 11:32:46AM +0300, Mohammad Khalil wrote:
I have router 1841
and i connected leased line 4M
from the LAN side i connected 3COm switch
then ASA and another router comes
there is a server connected to another firewall connected to the 3COM switch
now the case i want
Hi,
$ snmpset -v2c -c private 10.0.0.2 1.3.6.1.4.1.9.2.9.9.0 i 2
Error in packet.
Reason: noCreation (That table does not support row creation or that
object can not ever be created)
Failed object: SNMPv2-SMI::enterprises.9.2.9.9.0
hmmm, wonder if you've got some SNMP ACLs or community
On Wed, 24 Jun 2009, Phil Mayers wrote:
So, it seems to be some kind of analogous feature to TCP SYN protect or
such like, to protect a client flooding a server.
All,
Cisco have identified this as a bug, fixed in 1.5 - CSCsw52831 / CSCsu42225
udp packets are dropped by ace. It's a
yes, I have tried with v2, the 800 series simply does *not* support remote SNMP
reloads despite
having the command in place, I can happily perform this on an 7200 just not an
800 series,
tried 12.4(15)T and 12.4(20)T ADVIPSERVICES.
$ snmpset -v2c -c private 10.0.0.2 1.3.6.1.4.1.9.2.9.9.0 i 2
Hi,
ME6524 is used as the PE devices in my topology. The P devices (6506) are in a
remote locations and hence the link between PE and P are limited to 30Mbps. As
the traffic enters the network, I can mark them with EXP bits, but I haven't
found a way on ME6524 to prioritise the traffic as it
Believe me, I'm well aware how bad it is.
They won't assign a larger subnet to this PVC.
I'm thinking this is a pretty tailor-made situation for MPLS / VRFs, but I have
to get my customer to play ball.
We can keep our existing address space, use separate routing tables per
instance and I can
The ASR1002 seems overkill for 2000 subs, but perhaps a certain feature or
PPS is not supported on a 7200 platform.
Yes, RADIUS can hand out a Framed-IP just fine. We do it all the time.
Frank
-Original Message-
From: cisco-nsp-boun...@puck.nether.net
31 matches
Mail list logo