inline comments
On Friday, October 30, 2009, Marcelo Zilio ziliomarc...@gmail.com wrote:
A third option (if your switches support it) is enable port security and
maximum mac address numbers on each switchport.
depending on if the device is being used as layer3 and how his
topology is set up,
what version of supervisor are you running in the chassis? if you are
running a sup6, is it a sup6 or a sup6e? the latter has bitten us
several times in the past.
q.
On Mon, Jun 7, 2010 at 12:56 PM, Steven Pfister spfis...@dps.k12.oh.us wrote:
I'm trying to set up a new switch, a 4506e, for a
network-manager-vpnc
in the ubuntu repos.
little buggy. in my experience, no one client works for all profiles
or vpn endpoints. shrewsoft, kvpnc, and nm-vpnc all are used on my
system.
ynmv.
q.
-= sent via iphone. please excuse spelling, grammar, and brevity =-
On Aug 10, 2010, at 9:57, Jan
we are deploying them in ~50 sites (mix of 7010, 7018). smattering of
5k/2248 when needed. using them in a collapsed core (agg, core vdc
model) to replace existing 650x/sup720 cores.
running light services (eigrp, qos, multicast) but using vpc to
provide full redundancy between 45xx/65xx closets.
having used this book -- its of some value. its a great tool for
configuration of the device -- quite lacking on architecture and the
little one offs of the device. if you need to get the device configured,
its a good reference.
q.
-= sent via gmail using alpine. keeping it old school =-
i cannot speak to anything else on your list -- but a fresh c4507r-e with
sup6e is sitting in my lab right now.
code
lab4507re(config)#int vlan 250
lab4507re(config-if)#mac-add
lab4507re(config-if)#mac-add
^
% Invalid input detected at '^' marker.
there are a couple of nasty bugs in 5.1(2) with regards to peer-gateway.
peer-gateway will blackhole traffic for ipv4 and v6 if enabled in your
domain. not sure of your storage scenario -- but it sounds like your
slowly building out and may need this command in your toolbox for a
later day.
been using n7k deployed with vdc to have a physical collapsed core in a
logical two-tier (distribution, core) model. we've used this to keep
used features to a minimum within each context (i.e. i'm not going to
run vpc within my core context).
also deployed vdc to create isolation between
from the release notes -- i see the following[0]
STP can not be enabled on switches under the parent Cisco Nexus 5000
Series switch.
it seems that since you've got your n5010 underneath the n5020, you've
got stp processes running and designated ports being assigned to the
upstream
testing in my lab now -- simple back to back copper over glc-t between
n5020 running 4.2(1)n2(1) and asr1002 running 3.1.0s
=
asr1002-1#sh run int gig 0/0/3
Building configuration...
Current configuration :
-mail
/\ www.asciiribbon.org - against proprietary attachments
On 04/15/2011 02:01 PM, Gert Doering wrote:
Hi,
On Fri, Apr 15, 2011 at 01:44:03PM -0700, quinn snyder wrote:
testing in my lab now -- simple back to back copper over glc-t between
n5020 running 4.2(1)n2(1) and asr1002 running 3.1.0s
not seeing the vpc peer-link in th config, nor a layer-3 address for
the keepalive link to communicate across.
if you are planning to use vpc -- there are a number of things wrong.
i guess a deeper understanding of your topology and what you are
attempting to accomplish is in order.
q.
-= sent
prashanth --
i see that you have all ports as 'network' ports. i assume this is
done by invoking
spanning-trew port type network
under the interface configuration stanza or so. in n7k land, this
invokes a feature called 'bridge-assurance' and it must be explicitly
enabled on the other end. it
=-
On Jun 27, 2011, at 12:12, Prashanth kumar smarni7...@gmail.com wrote:
Quimm,
Spanning tree type is normal for all the ports connected to downstream
switched.
spanning-tree port type normal
-Thanks
Prashanth
On Mon, Jun 27, 2011 at 11:28 AM, Quinn Snyder snyd...@gmail.com wrote:
prashanth
2960-s.
stacking was afflicted with serious bugs up until a few months ago.
seems to be stable with current code.
q.
-= sent via iphone. please excuse spelling, grammar, and brevity =-
On Jul 5, 2011, at 18:10, chris stand cstand...@gmail.com wrote:
Yes,
The nature of the 3750 with its
depending on code version, i've seen the n7k not create the layer-2
vlan associated with the svi, even allowing you to place it on a
trunk.
can you confirm that the layer-2 vlan is in place and created?
regards,
q.
-= sent via ipad. please excuse brevity, spelling, and grammar =-
On Jul 9,
dfc-based linecards will require dfc4 to function in sup2t chassis (if
supported by software). any 6700-series cards supported in sup2t will
need this upgrade.
6708 linecard cleverly omitted from upgrade path -- this, as stated,
will need to be replaced with 6908 line-rate card -- or used in
c6513-e behaves same as non-e chassis without sup2t[0]
[0]
http://www.cisco.com/en/US/prod/collateral/switches/ps5718/ps708/qa_c67-6214
10.pdf
regards,
q.
-Original Message-
From: cisco-nsp-boun...@puck.nether.net
[mailto:cisco-nsp-boun...@puck.nether.net] On Behalf Of Drew Weaver
Sent:
holemans --
via 'sh int ex/y trans det' one can scrape the dom information from
the pluggable, assuming the pluggable supports dom.
regards,
q.
-= sent via iphone. please excuse spelling, grammar, and brevity =-
On Sep 9, 2011, at 2:24, Holemans Wim wim.holem...@ua.ac.be wrote:
Recently we
n5548/n5596 support 1/10gbe on all ports in chassis, as well as
converged ethernet (assuming appropriate licensing is installed, of
course). [0]
regards,
q.
[0]
http://www.cisco.com/en/US/prod/collateral/switches/ps9441/ps9670/data_sheet_c78-618603.html
-= sent via ipad. please excuse brevity,
On Sep 29, 2011, at 13:29, Phil Mayers p.may...@imperial.ac.uk wrote:
Tim Durack tdur...@gmail.com wrote:
We are currently using the C6K in this role. The N7K is looking like
the logical replacement.
Likwise. Hence my asking! I'm a bit disappointed that the current 10g cards
on the n7k
check into the following bug
bug id: CSCti80308
i have hit this in other c4k chassis with different cards, but the result is
the same.
regards,
q.
-= sent via ipad. please excuse brevity, spelling, and grammar =-
On Oct 3, 2011, at 17:55, Martin T m4rtn...@gmail.com wrote:
I have a following
are you sure that its supported?
lx4 == wwdm optic == 4x2.5gbps channels using wideband muxing.
additionally, when looking at datasheets for x2 and sfp+ modules, one
will see that lx4 optic mentions 4 lanes, launching in the 1300nm
space and a separate pluggable for x2-10gb-lrm.
sfp+ only
issu from 2.x train to 3.x train is unsupported. this is outlined in
issu notes for asr1k platform.
google 'asr1k issu compatibility tables' for info.
regards,
q.
-= sent via iphone. please excuse spelling, grammar, and brevity =-
On May 2, 2012, at 20:42, CiscoNSP_list CiscoNSP_list
of the pdu -- confirmed with a multimeter for current and
voltage -- the p/s would show ~ ½ available power.
eventually upgrading to a later sxj release fixed the issue. cisco has a
posted ddts -- internally at last check -- for this. hit up your account team
for details.
regards,
q.
--
quinn
i guess the bigger picture (and one that i've said on a few occassions
to people both inside and outside of cisco) is what does this change?
i do work with several large enterprise customers who are entirely eigrp
shops, but (and possibly because of) the use of eigrp has made them
primarily
scale is important, but it depends on your server environment.
mostly legacy kit -- dual-home the n2k.
servers with teamed nic -- single home the n2k and team on the server.
it is possible as of 5.1(3)n2(1) or so to run 'enhanced vpc' (basically vpc on
either side of the n2k) -- but i feel
vpc inconsistency commands to find an issue.
q.
--
quinn snyder
snyd...@gmail.com
___
cisco-nsp mailing list cisco-nsp@puck.nether.net
https://puck.nether.net/mailman/listinfo/cisco-nsp
archive at http://puck.nether.net/pipermail/cisco-nsp/
actual performance on the 4451 (this is the only isr4400 model) -- will be up
to 2gbps with the license upgrade.
according to the bu -- this is with services enabled.
q.
-= sent via iphone. please excuse spelling, grammar, and brevity =-
On Jun 27, 2013, at 9:16, Scott Voll
to vary greatly
depending on features used, packet size, etc. So I am hoping it's the
former...
On Thu, Jun 27, 2013 at 7:52 PM, quinn snyder snyd...@gmail.com wrote:
actual performance on the 4451 (this is the only isr4400 model) -- will be
up to 2gbps with the license upgrade.
according
if i recall -- the asr9k only supports a single sdr (default sdr) anyway.
asr1k only supports ios-xe -- so only the typical routing isolation is
supported (vrf, etc). the only device that will provide 'sdr-like' emulation is
a vdc on n7k -- though this is not a direct comparison.
q.
-= sent
On Jul 21, 2013, at 13:00, Justin M. Streiner strei...@cluebyfour.org wrote:
On Sun, 21 Jul 2013, Jon Lewis wrote:
This solution connects Cisco Catalyst 6800ia access switches to Cisco
Catalyst 6500 or 6800 Series core switches. The entire configuration works
as a single extended switch
-- especially
with limited ability for provisioning onsite at each location. this slide
underneath something like glue networks -- which has a similar concept -- but
on cisco kit.
q.
--
quinn snyder
snyd...@gmail.com
On 10-Sep-13, at 11:58 , Luis Miguel Cruz Miranda luis...@imasd.net wrote
configuration is applied per port group on each linecard.
however -- each interface (and subsequent 'show' commands) have an
enable/disable knob so that mapping can occur on some (but not all) interfaces.
q.
-= sent via iphone. please excuse spelling, grammar, and brevity =-
On Sep 11, 2013,
).
q.
--
quinn snyder
snyd...@gmail.com
On 12-Sep-13, at 06:16 , harbor235 harbor...@gmail.com wrote:
Thank you for the reply Quinn, can I perform unique vlan mappings per
interface as well?
e.g. port 1 --- map vlan 1 to 11, port 2 --- map vlan 2 to vlan 12
both ports
isn't most of that a by-product of using trident/trident+?
i know that trident ii fixes some of that -- but i think that comes down to the
(some say unwise) decision of using ots components, no?
q.
--
quinn snyder
snyd...@gmail.com
On 12-Sep-13, at 20:15 , Pete Templin peteli...@templin.org
on a side note -- it requires a lot of compute to run successfully (ram and
proc).
large scale networks will require large pools of resources.
the software may be free -- but running it may not be if you're short on
servers.
q.
-= sent via iphone. please excuse spelling, grammar, and
On Oct 3, 2013, at 8:12, Aaron aar...@gvtc.com wrote:
I saw in Cisco TAC Case Open Tool, under IOS XR... XRv (XR on a server).
XRv same as VIRL ?
xrvr == xr within virl.
doesn't ncs run virtualized xr (xrv)?
q.
-= sent via iphone. please excuse spelling, grammar, and brevity =-
On 3-Oct-13, at 11:00 , Nick Hilliard n...@foobar.org wrote:
On 03/10/2013 16:16, quinn snyder wrote:
on a side note -- it requires a lot of compute to run successfully (ram
and proc).
It shouldn't need that much (although the csr1000v's insane compute
requirements are a complete mystery
-nsp
archive at http://puck.nether.net/pipermail/cisco-nsp/
___
cisco-nsp mailing list cisco-nsp@puck.nether.net
https://puck.nether.net/mailman/listinfo/cisco-nsp
archive at http://puck.nether.net/pipermail/cisco-nsp/
--
quinn snyder
snyd...@gmail.com
.
Thanks again,
evt
-Original Message-
From: cisco-nsp [mailto:cisco-nsp-boun...@puck.nether.net] On Behalf Of
quinn snyder
Sent: Thursday, October 10, 2013 9:06 PM
To: cisco-nsp@puck.nether.net
Subject: Re: [c-nsp] Meraki...information
meraki switches create pseduo-out-of-band
http://www.cisco.com/en/US/prod/collateral/switches/ps9441/ps9402/white_paper_c07-728188.pdf
take it with a grain of salt — as some of it is very marketecture related.
q.
--
quinn snyder
snyd...@gmail.com
On 13-Nov-13, at 10:23 , Arne Larsen / Region Nordjylland a...@rn.dk wrote:
Hi all
something like pfr[0] may be useful in this instance, assuming the kit can run
it.
on newer kit, pfr-v2 is much less sucky than the pfr of old.
q.
[0]
http://docwiki.cisco.com/wiki/PfR:Solutions:BasicLoadBalancing#PfR_Features_that_Enable_Load_Balancing
-= sent via ipad. please excuse
On Apr 22, 2014, at 21:39, Mike Hale eyeronic.des...@gmail.com wrote:
Actually...check this out.
https://supportforums.cisco.com/discussion/11445646/advice-needed-cisco-asr-1002-routers-sfps
The GLC-T don't appear to be supported on first glance. The GE-T are.
Since your vendor calls
the catalyst line at this
point. vpc is used to dual-home to each access idf. vdc used to split out
chassis into multiple aggregation zones. aside from random bugs cropping up in
the scheduler between 5.0 — 5.1 — 5.2 — 6.x; everything has been solid.
q.
--
quinn snyder
snyd...@gmail.com
i'd not look at nexus as edge/peering to replace c6k/7600.
c6k replacement needs to look at role and requirements, not point product
placement.
asr1k with rp2 control-plane or asr9k, depending on density/cost models
(although to gert's earlier point, asr9001 fits small edge/pop, especially if
On Mar 18, 2015, at 12:50, Mark Tinka mark.ti...@seacom.mu wrote:
I guess these boxes make sense in legacy RAN networks, where you may need a
mix-and-match of old interfaces that you can uplink into your MPLS core.
I suppose one could use them as an edge router where low-speed
On 22-Feb-15, at 08:47 , Roland Dobbins rdobb...@arbor.net wrote:
He should be looking for redundant active/active, instead. DNS, not an IP
address, should be used to reach each active instance of the service in
question.
i think true active/active becomes a nirvana that we all
On May 8, 2015, at 10:59, Mark Tinka mark.ti...@seacom.mu wrote:
I was reading some release notes the other day (like IOS XR) where I see
FlowSpec now within the Cisco hinterland.
Mark.
bgp flowspec was introduced in xr 5.2.0.
i'm currently toying with it in the lab as cycles permit.
On May 9, 2015, at 03:13, Adam Vitkovsky adam.vitkov...@gamma.co.uk wrote:
Also IOS XE has support for flowspec safi for RR functionality.
How do you find the match and set options so far?
Reading through the docs the match options seem pretty limited on XR
-compared to Junos.
But at
the “crossover” and “rollover” adapters for your ethernet cables to aid in
testing (e.g. it doesn’t work with your hacked cable, toss a rollover or
crossover adapter in between and see if it fixes it, then remake the cable).
q.
--
quinn snyder | snyd...@gmail.com
On Jun 30, 2015, at 11:43, chris tknch
as AF in BGP
for RR functionality).
also — adam — evpn is also supported on nexus 9000-series, but the use-case is
different. evpn is used for vxlan within the datacenter to provide layer-2
over layer-3 fabric.
still a few bugs, but it works.
q.
--
quinn snyder | snyd...@gmail.com
9k wasn’t designed for
anything other than cheap, dense 10/40gbe switching inside of the d/c. i’d
hesitate to use those platforms anywhere outside of this role.
q.
—
quinn snyder | snyd...@gmail.com
signature.asc
Description: Message signed with OpenPGP using GPGMail
___
as you really add a lot of
control-plane overhead with not as much benefit -- especially as it pertains to
any upgrades.
you'd also need to look at specific caveats with vsm blades running cgn in
nv-edge.
q.
--
quinn snyder | snyd...@gmail.com
-= sent via iphone. please excuse spelling, gr
l-plane of
$device, especially if administration is already ornerous within the network.
however -- i just tend to be wary of control-plane unification technologies, as
i have been bitten and burned by things not working as expected due to said
technology.
q.
--
quinn snyder | snyd...@gmail.com
mended links is (2) for the peer-link, this can
scale and you'll need to dial this in for your situation.
playing in the lab and running through a reflective set of test cases is your
best bet here. obviously -- you'll need to extrapolate this to being under
load as well.
q.
--
quinn snyder
re of this link
does not mean catastrophic failure of the domain. this is similar to something
like ‘fast-hellos’ using an oob link when dealing with vss.
q.
--
quinn snyder | snyd...@gmail.com
signature.asc
Description: Message signed with OpenPGP using GPGMail
specific corner cases are
encountered.
q.
--
quinn snyder | snyd...@gmail.com
signature.asc
Description: Message signed with OpenPGP using GPGMail
___
cisco-nsp mailing list cisco-nsp@puck.nether.net
https://puck.nether.net/mailman/listinfo/cisc
that i have played with.
(6) running concurrent have swallowed the b200-m3 blade i was testing on.
given my test cases -- i saw cpu as a concern, but i was more interested in
feature support, but i saw upwards of 9ghz cpu being used per vm.
it is not lightweight by any means in current stat
now using both nso as well as some
home grown apps.
the support is much larger and the github posted earlier has a lot of solid
models to build from.
q.
--
quinn snyder | snyd...@gmail.com
-= sent via iphone. please excuse spelling, grammar, and brevity =-
___
lied a patch that brought me to the appropriate revision level.
i’ve not contacted the b/u for exact differences — but this is just a sandbox
for me to play in. obviously — the vetting process for baked in code will
occur with the releases from cco.
q.
--
quinn snyder | snyd...@gmail.com
s
aking specific interest in this platform — as we’re deploying within
several customer networks.
q.
--
quinn snyder | snyd...@gmail.com
signature.asc
Description: Message signed with OpenPGP
___
cisco-nsp mailing list cisco-nsp@puck.nether.net
https://pu
tay away from the ASR1002 or ASR1002-F. Those are too old for life.
>
> In general, I'd say focus on the RP2 and RP3 chassis.
agreed.
q.
--
quinn snyder | snyd...@gmail.com
___
cisco-nsp mailing list cisco-nsp@puck.nether.net
https://puck.nether.n
XRv is simple control-plane of XR in a VM. This is why L2 forwarding isnt
supported (though is configured).
XRv9000 is full control- and data-plane and much tighter coupling of the two.
L2 forwarding should work, but L2VPNs and such will fail miserably.
q.
--
quinn snyder | snyd
several outages from
process interrupts allowing heartbeats to fail (loopguard, UDLD, etc).
Since moving all of my customers to 6.2+ — I’ve not seen ISSU oddities. YMMV,
of course.
q.
--
quinn snyder | snyd...@gmail.com
-= sent via iphone. please excuse spelling, grammar, and brevity
of the L2 domain on the inside — and L3
domain on the outside sending encap’d traffic.
q.
--
quinn snyder | snyd...@gmail.com
-= sent via iphone. please excuse spelling, grammar, and brevity =-
> On Jan 30, 2018, at 11:33, Aaron Gould <aar...@gvtc.com> wrote:
>
> Ha, thanks
. we can do a layer-2 overlay on a
layer-3 network). while mpls does such things as well — for a long time — the
requirements for dc have diverged from service provider. this is slowly
changing.
q.
--
quinn snyder | snyd...@gmail.com
> On 1 Feb, 2018, at 10:04, Aaron Gould <aar...@gv
rough — due to scheduler rebuilds with each release. Many
things broke.
I can’t think of any of my customers today running vPC on n7k — as most of them
have moved to either ACI or VXLAN-EVPN — so I don’t have any anecdotes from the
field.
q.
—
Quinn Snyder | snyd...@gmail.com
-= Sent vi
> On Nov 12, 2019, at 01:39, Mark Tinka wrote:
> Doesn't seem like a big jump if it is based on the old mapping, where
> IOS XE 3.x was actually IOS 15.x. IIRC, it was a way to bring the old
> IOS numbering convention into the new IOS XE numbering convention.
>
> So technically speaking, if
are-Infrastruct.html>
I’ve used them successfully to leak routes between VRF and GRT without physical
loopback cable, etc.
q.
--
Quinn Snyder | snyd...@gmail.com <mailto:snyd...@gmail.com> | +1 480 619 2749
> On Jan 8, 2021, at 03:38, BASSAGET Cédric
> wrote:
>
> Hello,
> I'm
70 matches
Mail list logo