IRC Logs

Network: freenode Channel: #cisco

	Enter your search terms Submit search form
	Web www.irclog.org

[20:00]<gndyvx>or you could get a cheap dot1q router
[20:00]<pzgrcdgf>nemith: wouldn't solve it yet, as we cannot put more networkcards into the firewall (simply because there is no space/slot)
[20:01]<gndyvx>depending on your address space you can have the router sit between the firewall and the networks (ie switch)
[20:01]<pzgrcdgf>also all the vmware's only have 2 nic's, one connected to the switch with external IP's and one with internal IP's
[20:01]<gndyvx>let the router intervlan route and send default traffic to the firewall
[20:02]<xud2jfv>if anybody needs a cheap vlan aware firewall: http://m0n0.ch/wall
[20:02]<xud2jfv>even has support for dhcp server or relay on each vlan
[20:02]<xud2jfv>its free
[20:03]<pzgrcdgf>humbolt: freebsd based right? seen it before, does transparent firewalling too right?
[20:04]<pzgrcdgf>humbolt: looks good :) just need to solve vmware then
[20:08]<xud2jfv>freakynl: freebsd I think. Not sure about the transparent stuff. However, the interface is the best I have seen so far.
[20:09]<pzgrcdgf>humbolt: will check it out thx
[20:09]<vd2r>anyone know of a good place to get visio stencils for corning fiber optic products? I'm not having much luck w/ google.
[20:09]<pzgrcdgf>will just drop the vlan's on the internals for now I guess. can't route between them anyways, the only real issue was/is if anyone has access to machines in both vlan's they can add routes to them to talk to eachother directly
[20:10]<pzgrcdgf>chances of that are fairly slim and sniffing is kinda hard on a switch anyways
[20:10]<vd2r>openbsd does 802.1q now as well
[20:15]<rzrsxduddddrx>need some help with 2 cisco routers. 1 is a cisco 2500 and the other is a cisco 2501. apparently the 2500's firmware is not upgradable to the same version as the 2501 and only the 2501 supports irb. Both, however, support crb. What is the difference between crb and irb for briding 2 network connections together?
[20:20]<pzgrcdgf>hey guys, THX :)
[20:33]<rzrsxduddddrx>what is the difference between irb and crb. I have read the documentation on cisco's website but doesn't make much sense to me. could someone explain it in plain english?
[20:40]<dzzc1lyvn>hm
[20:40]<dzzc1lyvn>clear config al
[20:42]<`kgvyg>anyone have exp setting up adsl/ppoe on a 800 series?
[20:42]<`kgvyg>we have one and the dsl keeps flapping randomly
[20:42]<`kgvyg>7 times today
[20:45]<vcul>I would check your db signal
[20:46]<vcul>how well do firewall images perform on the 2500s?
[20:46]<vcul>say 56ios?
[20:46]<`kgvyg>tkup: worked fine before with a 2wire router(sbc)
[20:50]<vcul>do you have a show dsl command that we can look at?
[20:51]<vcul>but I would ask someone who knows his shit :)
[20:53]<`kgvyg>http://pastebin.com/719160
[20:58]<vcul>do you have a vbr-nrt cmd on the interface to force the bw?
[20:58]<`kgvyg>yes, 384 384
[20:59]<`kgvyg>i wasnt the origonal person to do this setup, new to dsl and he no longer works here
[20:59]<vcul>yeah that's what it should be
[21:01]<vcul>can you try putting a lower value on both? say 256 256
[21:01]<vcul>although you shouldn't have to
[21:04]<`kgvyg>http://pastebin.com/719188
[21:04]<`kgvyg>can try
[21:06]<usg>good evening
[21:07]<szygnnz>does anyone know if I 5 Web servers (each with a differenet website) can i use one IP address on the outside of my PIX and route the web traffic in by the url header?
[21:07]<szygnnz>and if the pix cant do that, what can?
[21:07]<fjzvxnz-wjzc>you might be able to do something like that with a CSS load balancer
[21:07]<fjzvxnz-wjzc>but AFAIK a pix cannot do what you ask
[21:08]<szygnnz>hmm
[21:10]<j2rgvr>loather is correct, a PIX cannot. But a proxy server such as MS ISA Server or squid can do what you want.
[21:12]<fjzvxnz-wjzc>oh yeah, squid too
[21:13]<szygnnz>i just found ProxyPass
[21:13]<szygnnz>that might work
[21:13]<szygnnz>thanks guys
[21:13]<vcul>hmmm I thought content switches can do that?
[21:14]<fjzvxnz-wjzc>css should be able to
[21:14]<fjzvxnz-wjzc>if they can't, they're crippled
[21:15]<fjzvxnz-wjzc>i kind of want to get one of those old CSS units to dick around with
[21:15]<fjzvxnz-wjzc>like an 11051 or something
[21:19]<vcul>`Kevin, weird I don't see anything wrong with the config although you got that router working hard
[21:19]<vcul>did you say it was an 800?
[21:23]<`kgvyg>yea
[21:25]<fjzvxnz-wjzc>fairly simple configuration
[21:26]<fjzvxnz-wjzc>no crypto ... how is that router working hard? :D
[21:28]<vcul>for an 800 I thought it would be too much
[21:29]<vcul>what's the scheduler max-task-time for? vpn?
[21:33]<`kgvyg>tkup: no idea on that one :)
[21:35]<`kgvyg>oddly while im in it through the wan interface, it has went down and up without disconnectingme
[21:36]<`kgvyg>http://pastebin.com/719256
[21:37]<dzzzzzzz>Went down as in reboot or flapped?
[21:37]<`kgvyg>flap
[21:38]<vcul>did you record the time of the previous flap?
[21:38]<`kgvyg>mhmm, sec
[21:39]<dzzzzzzz>interesting
[21:39]<`kgvyg>http://pastebin.com/719263
[21:40]<gndyvx>fucking company
[21:41]<gndyvx>i got an email saying that I am running an unlicenced version of securecrt
[21:41]<gndyvx>well i bought it myself and installed it
[21:41]<gndyvx>So SMS Agent Host Service has been disabled until further notice
[21:42]<vz2ufzzzsz>holy crap
[21:43]<vcul>`Kevin, looks somewhat random :/
[21:43]<`kgvyg>mhmm :(
[21:43]<gndyvx>so i guess i buy my own laptop now
[21:44]<vcul>nemith can probably look at it
[21:45]<gndyvx>call your provider
[21:45]<dzzc1lyvn>I'm not going to buy my own
[21:45]<dzzc1lyvn>company has to provide for me
[21:45]<gndyvx>yeah, but then they get to control what you install
[21:45]<`kgvyg>nemith: i will likely have to. ah :/
[21:46]<gndyvx>They saw that they have 32 licenses to SecureCRT 3.44
[21:46]<gndyvx>s/saw/say
[21:47]<gndyvx>i don't want to use 3.44, i want 5.0
[21:47]<dzzzzzzz>5.0.2
[21:47]<dzzzzzzz>Nemith
[21:47]<dzzzzzzz>does 3.44 have tabs?
[21:47]<`kgvyg>nemith how long do you get upgrades etc one you buy a liscence?
[21:47]<vz2ufzzzsz>yeah, tabs rule
[21:47]<gndyvx>Deranger: not even close
[21:47]<`kgvyg>5.x only has tabs
[21:47]<vz2ufzzzsz>3.4 = no tabs
[21:47]<dzzzzzzz>daaaamn
[21:47]<dzzzzzzz>than yeah u need to upgrade
[21:47]<gndyvx>5.0 is tab, 4.x is useable 3.x is old stuff

Back to #cisco
Or go to some related logs:
#gentoo
#reactos
#php
#blender
#css