[c-nsp] unsubscribing the mailing list
Ronnie Westman
Ronnie.Westman at ementor.se
Sun Jun 18 09:20:14 EDT 2006
Please remove me from the mailing list.
Best regards
Ronnie
-----Original Message-----
From: cisco-nsp-bounces at puck.nether.net
[mailto:cisco-nsp-bounces at puck.nether.net] On Behalf Of
cisco-nsp-request at puck.nether.net
Sent: den 17 juni 2006 17:00
To: cisco-nsp at puck.nether.net
Subject: cisco-nsp Digest, Vol 43, Issue 51
Send cisco-nsp mailing list submissions to
cisco-nsp at puck.nether.net
To subscribe or unsubscribe via the World Wide Web, visit
https://puck.nether.net/mailman/listinfo/cisco-nsp
or, via email, send a message with subject or body 'help' to
cisco-nsp-request at puck.nether.net
You can reach the person managing the list at
cisco-nsp-owner at puck.nether.net
When replying, please edit your Subject line so it is more specific
than "Re: Contents of cisco-nsp digest..."
Today's Topics:
1. Re: Redistribute BGP into OSPF (Jason LeBlanc)
2. Weird LAN Problems (John Neiberger)
3. Re: Traffic stats on SVIs (Jee Kay)
4. Re: EoS of PA-A3 Port Adapters (Asbjorn Hojmark - Lists)
5. Re: ASA 5510 & dot1q subinterfaces (Asbjorn Hojmark - Lists)
6. How to tell if a PIX is UR or FO (Jason Lixfeld)
7. Re: How to tell if a PIX is UR or FO (Garry Glendown)
----------------------------------------------------------------------
Message: 1
Date: Fri, 16 Jun 2006 13:16:34 -0400
From: Jason LeBlanc <jml at packetpimp.org>
Subject: Re: [c-nsp] Redistribute BGP into OSPF
To: "a. Rahman Isnaini r. Sutan" <risnaini at indo.net.id>
Cc: cisco-nsp at puck.nether.net
Message-ID: <4492E772.3070109 at packetpimp.org>
Content-Type: text/plain; charset=ISO-8859-1; format=flowed
As do most people, you can use default-information-originate in OSPF to
send the default route to your internal routers.
a. Rahman Isnaini r. Sutan wrote:
> Completely Agree :)
> I'm doing IBGP to overcome this.
>
> Salam,
> a. Rahman Isnaini r. Sutan
>
>
>
> ----- Original Message -----
> From: "Brant I. Stevens" <branto at branto.com>
> To: "Alexandra Alvarado" <aaaa at telconet.net>;
<cisco-nsp at puck.nether.net>
> Sent: Friday, June 16, 2006 1:12 AM
> Subject: Re: [c-nsp] Redistribute BGP into OSPF
>
>
> : Redistributing BGP into OSPF is a fantastic way to destroy your
network.
> :
> :
> : On 6/15/06 1:30 PM, "Alexandra Alvarado" <aaaa at telconet.net> wrote:
> :
> : > Hello,
> : >
> : >
> : >
> : > I have configured BGP with route reflector in chain, but y not use
OSPF
> to
> : > propagate loopbacks. With BGP I use weight as global neighbor
> configuration
> : > and weight inside route-maps to give preference to some networks
by
> specific
> : > paths with a backup in case of link failure.
> : >
> : >
> : >
> : > But now I need to run OSPF to remove around 50 static loopbacks
routes
> per
> : > router.
> : >
> : >
> : >
> : > But, my question is:
> : >
> : >
> : >
> : > To maintain the same BGP path selection up/down per network do I
need to
> : > redistribute BGP into OSPF?
> : >
> : >
> : >
> : > Thanks
> : >
> : >
> : >
> : > Alexandra Alvarado
> : >
> : > _______________________________________________
> : > cisco-nsp mailing list cisco-nsp at puck.nether.net
> : > https://puck.nether.net/mailman/listinfo/cisco-nsp
> : > archive at http://puck.nether.net/pipermail/cisco-nsp/
> :
> :
> : _______________________________________________
> : cisco-nsp mailing list cisco-nsp at puck.nether.net
> : https://puck.nether.net/mailman/listinfo/cisco-nsp
> : archive at http://puck.nether.net/pipermail/cisco-nsp/
> :
> :
>
> _______________________________________________
> cisco-nsp mailing list cisco-nsp at puck.nether.net
> https://puck.nether.net/mailman/listinfo/cisco-nsp
> archive at http://puck.nether.net/pipermail/cisco-nsp/
>
------------------------------
Message: 2
Date: Fri, 16 Jun 2006 12:12:33 -0600
From: "John Neiberger" <jneiberger at gmail.com>
Subject: [c-nsp] Weird LAN Problems
To: cisco-nsp at puck.nether.net
Message-ID:
<547ad0fe0606161112v5deaf479qf5b05894735f4b10 at mail.gmail.com>
Content-Type: text/plain; charset=ISO-8859-1; format=flowed
We're having some really strange problems on our LAN today and I can't
figure it out. We have a 6513 running 12.2(18)SXF4, several Catatalyst
2900 series switches (running CatOS, of course) and a few 2950
switches running varying versions of code. There is an FWSM running
3.1(1) in the 6513.
There was a log message on the 6513 this morning that said that the
FWSM had been switched to non-transparent VTP mode. I thought that was
odd but didn't think much of it. A little while later, we noticed that
none of the ports on one 2950 seemed to be working any longer.
Everything looked fine from the switches perspective--VLAN database
was intact, ports were up, no error, nothing in the logs, trunking was
still up, VLANs were allowed on the trunk--yet the ports that weren't
in the native VLAN seemed to stop passing traffic.
Even stranger, I noticed that the switch had set itself to transparent
mode. I checked another switch and it also had set itself to
transparent mode. Even more strange, and I'm at a loss to explain this
one, I can no longer access our CatOS switches via SSH. I get the
following message on all of them:
"[Connection to <nameofmyswitch> aborted: error status 29]"
I was not able to make the 2950 work so I just gave up and rebooted
it. That seemed to clear up the problem but I still have another 2950
acting up that I have not rebooted yet. It is one of the switches that
has set itself to transparent mode.
Any thoughts about this? I have no idea what happened and I don't even
know where to begin troubleshooting.
We recently upgraded the 6513 to 12.2(18)SXF4 and, just a few days ago
we upgraded the FWSM to 3.1(1). Perhaps this is a bug in one of those
images. There were some configuration changes made to the FWSM this
morning. I'm going to go inquire about those in a moment.
Any ideas what else to check?
Thanks,
John
------------------------------
Message: 3
Date: Fri, 16 Jun 2006 20:07:47 +0100
From: "Jee Kay" <jeekay at gmail.com>
Subject: Re: [c-nsp] Traffic stats on SVIs
To: cisco-nsp at puck.nether.net
Message-ID:
<aad9e1ca0606161207k768e3f2ey71c1273a3c2deff4 at mail.gmail.com>
Content-Type: text/plain; charset=UTF-8; format=flowed
On 13/06/06, Jee Kay <jeekay at gmail.com> wrote:
> What about in the routing world? Do only higher-end routers support
> this aswell (I assume it would be per-subif rather than per-SVI on a
> router) or can I poll reliable stats from 2600s?
More bad manners, I'm afraid.
Is there any way to get these stats via some other route? Ie
access-lists or some Juniper-style firewall counters I can apply
somehow?
Thanks,
Ras
------------------------------
Message: 4
Date: Fri, 16 Jun 2006 23:11:31 +0200
From: "Asbjorn Hojmark - Lists" <lists at hojmark.org>
Subject: Re: [c-nsp] EoS of PA-A3 Port Adapters
To: "'Srikrishna C'" <mr_srikrishna at yahoo.com>
Cc: cisco-nsp at puck.nether.net
Message-ID: <001001c69189$709221d0$280a0a0a at hojmark.net>
Content-Type: text/plain; charset="us-ascii"
> Has Cisco delayed the EoS of the PA-A3 Port adapters:
> PA-A3-OC3-SMI
> PA-A3-T3
> PA-A3-E3
> The EoS was announced on the 31st May 2006.
EoX was announced on 30dec05 and EoS is 31dec06.
http://tinyurl.com/f9t66
-A
------------------------------
Message: 5
Date: Sat, 17 Jun 2006 00:32:32 +0200
From: "Asbjorn Hojmark - Lists" <lists at hojmark.org>
Subject: Re: [c-nsp] ASA 5510 & dot1q subinterfaces
To: "'Adam Greene'" <maillist at webjogger.net>
Cc: cisco-nsp at puck.nether.net
Message-ID: <000801c69194$c1f8e760$280a0a0a at hojmark.net>
Content-Type: text/plain; charset="us-ascii"
> Does anyone see any flaws in my reasoning I should know about?
No, you should be fine.
-A
------------------------------
Message: 6
Date: Sat, 17 Jun 2006 07:52:38 -0400
From: Jason Lixfeld <jason at lixfeld.ca>
Subject: [c-nsp] How to tell if a PIX is UR or FO
To: cisco-nsp at puck.nether.net
Message-ID: <6BEF7925-3085-42E4-BAD3-AE0879B94A95 at lixfeld.ca>
Content-Type: text/plain; charset=US-ASCII; delsp=yes; format=flowed
I have a customer who has a bunch of PIX' boxen, many of which were
purchased as UR/FO bundles. They are all sitting in a storage room
and he would like to tell which ones are the UR boxes and which ones
are the FO boxes. From the docs, if you use a FO box as a primary,
it will reboot every 24 hours (per 6.2 release notes). You can only
use a UR box as a primary and connect an FO box to it as the
secondary unit, so it's important to know which box is the UR
(primary) and which box is the FO (secondary).
Question is, how do you tell which box is the FO and which box is the
UR. As far as I recall, the FO is just a UR with a different license
key, correct? Can a show ver tell this? Does anyone have an example
of what the output would look like on a UR vs a FO box?
Apparently these are PIX 520s running code somewhere in the area of 6.2.
------------------------------
Message: 7
Date: Sat, 17 Jun 2006 14:56:21 +0200
From: Garry Glendown <gkg at gmx.de>
Subject: Re: [c-nsp] How to tell if a PIX is UR or FO
To: Jason Lixfeld <jason at lixfeld.ca>
Cc: cisco-nsp at puck.nether.net
Message-ID: <4493FBF5.1000607 at gmx.de>
Content-Type: text/plain; charset=ISO-8859-1
Jason Lixfeld wrote:
> Question is, how do you tell which box is the FO and which box is the
> UR. As far as I recall, the FO is just a UR with a different license
> key, correct? Can a show ver tell this? Does anyone have an example
> of what the output would look like on a UR vs a FO box?
"show version" does what you need ...
[..]
This platform has a Failover Only-Active/Standby (FO) license.
[..]
(output is from a 7.x PIX, but should be pretty much the same for 6.x)
------------------------------
_______________________________________________
cisco-nsp mailing list
cisco-nsp at puck.nether.net
https://puck.nether.net/mailman/listinfo/cisco-nsp
End of cisco-nsp Digest, Vol 43, Issue 51
*****************************************
More information about the cisco-nsp
mailing list