Re: [c-nsp] ME 3600X questions

It is being planned for 15.2(4)S, Q3CY12. -Waris -Original Message- From: LavoJM [mailto:lav...@secureobscure.com] On Behalf Of cisco...@secureobscure.com Sent: Tuesday, September 13, 2011 12:29 PM To: Waris Sagheer (waris); cisco-nsp@puck.nether.net Subject: RE: [c-nsp] ME 3600X questi

Re: [c-nsp] ZBFW and DHCP

obvious question, but is DHCP passed in the service policy? ie : ip access-list extended al-dhcp remark Permit DHCP Clients to be allocated an address by the router permit udp any any eq bootpc permit udp any any eq bootps class-map type inspect match-all cm-dhcp match access-group name al-d

Re: [c-nsp] BGP neighbor with more specific prefixes

On Tue, 13 Sep 2011, Justin Krejci wrote: Cisco Folks, Internet Transit Providers Provider 1 Provider 2 Provider 3 Provider 4 We have aggregated prefixes (/19's, /18's etc) currently advertised to providers 1-3 on a single router. We are bringing on provider 4 but want to advertise only a few

Re: [c-nsp] BGP neighbor with more specific prefixes

use a route-map(applied outbound) to control what you adveritse. ./Randy --- On Tue, 9/13/11, Justin Krejci wrote: > From: Justin Krejci > Subject: [c-nsp] BGP neighbor with more specific prefixes > To: "cisco-nsp" > Date: Tuesday, September 13, 2011, 5:08 PM > Cisco Folks, > > Internet Trans

Re: [c-nsp] BGP neighbor with more specific prefixes

--- On Tue, 9/13/11, Justin Krejci wrote: > From: Justin Krejci > Subject: [c-nsp] BGP neighbor with more specific prefixes > To: "cisco-nsp" > Date: Tuesday, September 13, 2011, 5:08 PM > Cisco Folks, > > Internet Transit Providers > Provider 1 > Provider 2 > Provider 3 > Provider 4 > > We h

[c-nsp] BGP neighbor with more specific prefixes

Cisco Folks, Internet Transit Providers Provider 1 Provider 2 Provider 3 Provider 4 We have aggregated prefixes (/19's, /18's etc) currently advertised to providers 1-3 on a single router. We are bringing on provider 4 but want to advertise only a few individual /24's within those aggregated pref

[c-nsp] Cisco Template Manager

Hello, I would like to ask for help with testing a free template system called Cisco Template Manager, Unix/Linux tool under GNU/GPL. CTM is a set of tools which will help you to keep your Cisco configurations consistent and in accordance to pre-defined templates. If you have any suggestions,

Re: [c-nsp] ME 3600X questions

Hi Waris, What about 6VPE (VPNv6 routing)? Thanks, John -Original Message- From: cisco-nsp-boun...@puck.nether.net [mailto:cisco-nsp-boun...@puck.nether.net] On Behalf Of Waris Sagheer (waris) Sent: Tuesday, September 13, 2011 11:43 AM To: Alex Wågberg; cisco-nsp@puck.nether.net Subjec

Re: [c-nsp] ME 3600X questions

Unicast IPv6 Routing will be supported in 15.1(2)EY1, October 30th. -Waris -Original Message- From: cisco-nsp-boun...@puck.nether.net [mailto:cisco-nsp-boun...@puck.nether.net] On Behalf Of Alex Wågberg Sent: Tuesday, September 13, 2011 8:12 AM To: cisco-nsp@puck.nether.net Subject: Re:

Re: [c-nsp] Input errors, overrun & unknown protocols drops on LAN interface

I'd say you have a lot of traffic with TTL 1 or a link-local multicast address on the interface, if everything else is working correctly. Otherwise you are process switching a lot of traffic. Here are some pointers: http://www.cisco.com/en/US/products/hw/routers/ps133/products_tech_note09186 a0080

[c-nsp] Sup2T static multicast mac address issues

Folks, I'm migrating a working config from a sup720-10g to a sup2t, and get this error message when trying to configure a static multicast mac entry sup2t# mac address-table static 0100.5e7e.b008 vlan 5 interface tengigabitethernet 5/4 tengigabitethernet 6/4 disable-snooping IP-based forwarding

Re: [c-nsp] Bridging T1s together on PA-MC-T3

Actually what you want is L2TPv3 local switching of PPP frames it sounds like. http://www.cisco.com/en/US/docs/ios/12_3t/12_3t2/feature/guide/gtl2tpv3.html#wp1043078 - jared On Sep 13, 2011, at 11:56 AM, Jay Nakamura wrote: > Are you actually Ethernet bridging or just want to TDM cross connect?

Re: [c-nsp] Bridging T1s together on PA-MC-T3

Well, ideally we¹d just cross-connect them, but anything that effectively bridges them together would be great. VRF might do the trick. Thanks, -Nick Voth From: Jay Nakamura Date: Tue, 13 Sep 2011 11:56:11 -0400 To: Nick Voth Cc: "cisco-nsp@puck.nether.net" Subject: Re: [c-nsp] Bridging T1

Re: [c-nsp] Input errors, overrun & unknown protocols drops on LAN interface

Clear the counters on the interface 'clear counters Fa0/0' and then see how quickly they are still incrementing. It may also be worth running a 'show int counters err' to see if the drops could be being caused by anything else. David On 13 Sep 2011, at 16:18, Farooq Razzaque wrote: > Dear Dav

Re: [c-nsp] Bridging T1s together on PA-MC-T3

Are you actually Ethernet bridging or just want to TDM cross connect? I don't think you can cross connect it but perhaps you can create a VRF and route IP? On Sep 13, 2011 11:47 AM, "Nick Voth" wrote: > Folks, > > I'm hoping this is easy/obvious question, but I've looked around and can't > find t

Re: [c-nsp] Bridging T1s together on PA-MC-T3

What you are describing sounds like you want to place the two interfaces either 1) in a VRF so they can only talk to each other 2) in a locally terminated *oMPLS/xconnect situation. You are likely to do best with the VRF as it's more likely to be supported in what

Re: [c-nsp] ME 3600X questions

Hi, While on this subject, I know this have been brought up before, and the answers were "this summer" or "October". But what is the status of ipv6 for 3600x/3800x ? BR, -- Alex Wagberg On 2011-08-18 11:49, Richard Hartmann wrote: Hi all, we will most likely be getting a few 3600X in the

[c-nsp] Bridging T1s together on PA-MC-T3

Folks, I'm hoping this is easy/obvious question, but I've looked around and can't find the config I'm looking for. I have several channelized DS3s coming in and terminating on PA-MC-T3 cards. I use those for regular "ppp" T1 circuits out to client sites. I now have the need to "bridge" 2 client

Re: [c-nsp] Input errors, overrun & unknown protocols drops on LAN interface

Dear David I increased the hold on Queue to size 3500 but the input error and input queue drops are there . May be the frequency of increasing is reduced but it is still there. > From: d...@dcptech.com > To: farooq_...@hotmail.com; david.roth...@gmail.com > CC: cisco-nsp@puck.nether

Re: [c-nsp] Input errors, overrun & unknown protocols drops on LAN interface

On 13/09/2011 15:11, Farooq Razzaque wrote: > what input queue size we can increase to for testing. the hold queue will only help for traffic directed towards the router (e.g. bgp / ssh / snmp/ etc). In practice this isn't going to make a whole pile of difference, because most of your traffic is g

Re: [c-nsp] Input errors, overrun & unknown protocols drops on LAN interface

Dear Nick what input queue size we can increase to for testing. > Date: Tue, 13 Sep 2011 14:34:27 +0100 > From: n...@foobar.org > To: farooq_...@hotmail.com > CC: david.roth...@gmail.com; cisco-nsp@puck.nether.net > Subject: Re: [c-nsp] Input errors, overrun & unknown protocols drops

Re: [c-nsp] ZBFW and DHCP

I have Zones for both inside self and outside self Scott On Mon, Sep 12, 2011 at 1:38 PM, Hughes, Scott GRE-MG wrote: > Did you setup any zone-pairs involving the 'self' zone? If you don't use > self zones, no additional configuration should be necessary for DHCP > packets. > > > > On Sep 12, 20

Re: [c-nsp] Troubleshoot UDP out-of-sequence

On Monday, September 12, 2011 07:47:14 PM Persio Pucci wrote: > The bad part is that I believe my customers (and the boss) won't take > "that's how UDP works" for an answer. Although there's TCP Replay for the > multicast streams, it is somewhat "delayed" from the realtime data and that > puts them

Re: [c-nsp] Input errors, overrun & unknown protocols drops on LAN interface

To minimize the input drops you can increase the hold-queue. Another issue to look at is the buffers as well, most likely have misses and failures there. The flushes are caused by SPD, which are control plane packets that need to make it to the processor so they are put ahead of everything else in

Re: [c-nsp] Input errors, overrun & unknown protocols drops on LAN interface

On 13/09/2011 14:18, Farooq Razzaque wrote: > How can we resolve this then I already told you: >> >> You either need a faster router than a 3800 series or else larger >> >> input buffers. The input buffers can be adjusted with the "hold-queue" command. But probably you just need a more powerful

Re: [c-nsp] Routers and switches backup tools..

It's all about rancid. Will do exactly what you want to do and can be scheduled right in cron. -Original Message- From: Ambedkar Sent: Tuesday, September 13, 2011 3:10 AM To: cisco-nsp@puck.nether.net Subject: [c-nsp] Routers and switches backup tools.. Hi, Is there any free Back

Re: [c-nsp] Troubleshoot UDP out-of-sequence

On Monday, September 12, 2011 05:45:06 PM Nick Hilliard wrote: > I would be interested to hear your opinion on how tcp over multicast would > work. Of course, straight TCP won't work over multicast. There are other protocols which will meet the suggestions of RFC 3048. > But I agree with your

Re: [c-nsp] Input errors, overrun & unknown protocols drops on LAN interface

Dear David How can we resolve this then > Subject: Re: [c-nsp] Input errors, overrun & unknown protocols drops on LAN > interface > From: david.roth...@gmail.com > Date: Tue, 13 Sep 2011 14:04:57 +0100 > CC: n...@foobar.org; cisco-nsp@puck.nether.net > To: farooq_...@hotmail.com > >

Re: [c-nsp] Input errors, overrun & unknown protocols drops on LAN interface

Input drops are usually caused by the input queue filling up and then tail drops occurring because there is no more space for new packets in the queue. I've seen this happen where you have an upstream device trying to send packets faster than the downstream device can process them. On 13 Sep 2

Re: [c-nsp] etherchannel load-balancing & WS-X6708 issue

>-Original Message- >From: Nick Hilliard [mailto:n...@foobar.org] >Sent: Monday, September 12, 2011 11:13 AM >To: Jiri Prochazka >Cc: cisco-nsp@puck.nether.net >Subject: Re: [c-nsp] etherchannel load-balancing & WS-X6708 issue > >On 09/09/2011 12:33, Jiri Prochazka wrote: >> Primary box

Re: [c-nsp] Input errors, overrun & unknown protocols drops on LAN interface

Dear Nick Thanks for your reply. What does input error means ? I am also having the drops in Input queue Input queue: 0/75/3267688/769 (size/max/drops/flushes); Total output drops: 0 > Date: Tue, 13 Sep 2011 12:18:05 +0100 > From: n...@foobar.org > To: farooq_...@hotmail.com > CC:

Re: [c-nsp] Troubleshoot UDP out-of-sequence

Hi Nick, except for two minor corrections (multicast source is SP, users in NY; and Sao Paulo to Rio does not use RADs, they are PA-OC12s) that's pretty much what is going on here. QoS is off on the 3560, but really cannot give up on him for now. Would you consider it a suspect more than the othe

Re: [c-nsp] Input errors, overrun & unknown protocols drops on LAN interface

On 13/09/2011 10:13, Farooq Razzaque wrote: > I am facing the input errors, overrun & unknown protocols drops on LAN > interface-Gi0/0 (having sub-interface) on MPLS router. port overruns mean that your router is receiving data faster than it can handle. You either need a faster router than a 380

Re: [c-nsp] IOS XR

On Monday, September 12, 2011 07:41:17 PM Rob Shakir wrote: > This is one of the nice things about looking at > convergence between the optical and IP/MPLS layers - as > I think is outlined in [0], there's now some possibility > for the IP/MPLS layer to get some insight into what's > happening at

Re: [c-nsp] Routers and switches backup tools..

Thanks to everyone. Ambedkar. On Tue, Sep 13, 2011 at 1:27 PM, cisco group wrote: > OPUtils is a commercial product. However I dont like it as it uses > tftp and effectively your transferring your data in clear text. > > You can easily setup a linux box to do secure transfers with expect. > Jus

Re: [c-nsp] Troubleshoot UDP out-of-sequence

On 13/09/2011 04:22, Persio Pucci wrote: > all Cisco gear, in the following order: > > 7200 receiving the multicast on a NPE-G1, sending on the same NPE-G1 to a > 7600, arriving on a ws6748 with DFC3, going to a OC12 to Rio, arriving on a > 7600 on a OC12, uplinking to a 3560 via a Sup32, 3560 goi

[c-nsp] Input errors, overrun & unknown protocols drops on LAN interface

Dear Team I am facing the input errors, overrun & unknown protocols drops on LAN interface-Gi0/0 (having sub-interface) on MPLS router. Can u anyone help me out on this. MPLS#sh int gi0/0 GigabitEthernet0/0 is up, line protocol is up Hardware is BCM1125 Internal MAC, address is 001c.f6

Re: [c-nsp] Routers and switches backup tools..

OPUtils is a commercial product. However I dont like it as it uses tftp and effectively your transferring your data in clear text. You can easily setup a linux box to do secure transfers with expect. Just google cisco + linux + expect + backup Cheers, On Sep 13, 4:35 pm, Craig Askings wrote:

Re: [c-nsp] Routers and switches backup tools..

IOS 'archive' tool works perfectly fine as well. You can find details at CCO, as well as google gives a short intro here: http://www.techrepublic.com/blog/networking/use-the-cisco-ios-archive-comman d-to-archive-your-routers-configuration/532 Cheers, Andris -Original Message- From:

Re: [c-nsp] RSP720 dropping ipsec packets

I tried the following with the same results: 12.2(33)SRC6 and 12.2(33)SRD6 and 15.0(x). Currently we're running 15.1(1)S1 on them all. The only bad one that I documented was: RSP720 Hw = 5.6 MSFC4 Hw = 1.5 PFC3CXL Hw = 1.0 Firmware was 12.2(33r)SRD I dont have the original bad RSP720 Hw version.

Re: [c-nsp] Routers and switches backup tools..

On 13/09/2011 5:10 PM, Ambedkar wrote: Hi, Is there any free Backup tools are available which will regular backup's of cisco devices say weekly once for scheduled day and time. Rancid. Craig. ___ cisco-nsp mailing list cisco-nsp@puck.nether.net http

Re: [c-nsp] Routers and switches backup tools..

Rancid. Regards, Farhan Jaffer On Tue, Sep 13, 2011 at 12:10 PM, Ambedkar wrote: > Hi, > Is there any free Backup tools are available which will regular backup's of > cisco devices say weekly once for scheduled day and time. > > Thanks in advance. > > Bye. > Ambedkar > _

Re: [c-nsp] Routers and switches backup tools..

On Sep 13, 2011, at 2:10 PM, Ambedkar wrote: > Is there any free Backup tools are available which will regular backup's of > cisco devices say weekly once for scheduled day and time. --- Rolan

Re: [c-nsp] Routers and switches backup tools..

On 09/13/2011 08:10 AM, Ambedkar wrote: Hi, Is there any free Backup tools are available which will regular backup's of cisco devices say weekly once for scheduled day and time. You're going to get a million replies; "rancid" is what most people use.

[c-nsp] Routers and switches backup tools..

Hi, Is there any free Backup tools are available which will regular backup's of cisco devices say weekly once for scheduled day and time. Thanks in advance. Bye. Ambedkar ___ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mail

Re: [c-nsp] Troubleshoot UDP out-of-sequence

On 09/12/2011 11:50 PM, cisco...@secureobscure.com wrote: Or someone should be out there developing mTCP (Multipoint TCP for multicast applications) requiring reliable delivery. There is a need for both reliable delivery, and multicast in the case of financial etc. Such as PGM, which was specif