IRC Logs

Network: freenode Channel: #cisco

	Enter your search terms Submit search form
	Web www.irclog.org

[00:00]<fjfkyffr>notepad is always a friend indeed. it's a underated program
[00:00]<vz2ufzzzsz>miller time
[00:00]<vz2ufzzzsz>lates
[00:01]<fjfkyffr>Matrix -> is the way im doing it okay? it's pretty simple so far. i just dont wnat to miss something
[00:02]<z2zzvus>is there a command line method i can use on a 2600 to see what IP is doing the most transfer right now ?
[00:03]<z2zzvus>i have 'ip route-cache flow' on the lan interface
[00:03]<z2zzvus>but i broke my ntop setup a while ago
[00:04]<jeeej>show ip flow IIRC
[00:04]<z2zzvus>says 'incomplete command' my options are acceleration and export
[00:04]<z2zzvus>export just says where its sending netflow info
[00:05]<z2zzvus>accell just says 'not enabled'
[00:05]<fjfkyffr>anybody use nagios to check Interface Status (UP, DOWN, DISABLED) ? ?
[00:05]<z2zzvus>'show ip traf' gets me some info, but its not specific to any IPs
[00:06]<[mzvzyw_]>PopKilla: In that example you pasted you've got "switchport port-security maximum 1 vlan access", not sure what that "vlan access" is doing on the end
[00:06]<jeeej>show ip cache flow
[00:06]<z2zzvus>ozzzo: i love you
[00:06]<jeeej>don't get too carried away, I'm straight ;\
[00:06]<[mzvzyw_]>PopKilla: and you're not assigning the port to a VLAN, "switchport access vlan xx"
[00:07]<fjfkyffr>Matrix- > some cisco guy told me to type it in when i called him, i wasn't sure why he told me that.... so i wasn't really sure if that was nessary. he told me to do this for all ports. which is why i figured i would ask here, just to get a second opnion.
[00:07]<jeeej>i remembered as soon as I logged into my router and tried it
[00:07]<fjfkyffr>so strip out the last statement, and i should be fine.
[00:07]<fjfkyffr>?
[00:08]<[mzvzyw_]>it could be something specific to your IOS.. never seen it though
[00:08]<fjfkyffr>so basicly you're saying its not a norm to put that on there.
[00:10]<[mzvzyw_]>one sec, gonna paste a sample port config
[00:10]<fjfkyffr>ok.
[00:10]<[mzvzyw_]>http://pastebin.com/766140
[00:12]<fjfkyffr>violation restrict -> will simply ignore other devices and not shutdown the port correct?
[00:12]<[mzvzyw_]>yep
[00:12]<fjfkyffr>ahh good, cuz the guy on the phone told me to go with shutdown...which can be cumbersome
[00:13]<[mzvzyw_]>violation protect -> does the same thing, but doesn't send SNMP traps every time it detects another host
[00:13]<[mzvzyw_]>I recommend "restrict", as long as you have a syslog server and check it pretty regularly
[00:14]<[mzvzyw_]>"shutdown" will pretty much alert you to the problem immediately though, so it is good for that, albeit a pain to administer
[00:14]<fjfkyffr>yeap
[00:14]<fjfkyffr>i have a helpdesk that works on the weekends,so i rather have restrict than shutdown
[00:15]<[mzvzyw_]>cool
[00:15]<[mzvzyw_]>yeah, that'll keep them from plugging in "visiting" devices. :)
[00:15]<fjfkyffr>lol
[00:15]<[mzvzyw_]>and also give you a syslog record of their attempts. :)
[00:16]<fjfkyffr>ya, i was trying to get Nagios to check the indivudal interface status using snmp, i get these results back: OK: Interface FastEthernet0/47 (index 10047) is up. (Link is UP), WARNING: Interface FastEthernet0/44 (index 10044) is administratively down. (PORT is disabled by me), and CRITICAL: Interface FastEthernet0/46 (index 10046) is down. HERE is the problem i have with the response i get back. The "DOWN" resonse is the same as if the port is disab
[00:16]<szznz>ok guys, how do i tell eth 0/1 to pull a dhcp addy
[00:16]<fjfkyffr>i wish i can have a seperate resonse cus "DOWN" could also mean the computer is not hooked up.)
[00:16]<szznz>2600 router
[00:17]<szznz>been trying to find it in docs, but no luck
[00:17]<[mzvzyw_]>go to the interface in CLI, "ip address dhcp"
[00:18]<szznz>ok i am in config t now
[00:18]<szznz>i am very new to this
[00:18]<[mzvzyw_]>kk, from config mode, "int e0/1"
[00:18]<[mzvzyw_]>and then "ip address dhcp"
[00:18]<szznz>sec
[00:18]<szznz>in -if now
[00:18]<szznz>ok
[00:19]<szznz>said invalid input
[00:19]<fjsvnf>Sager: ip add dhcp client-id interface_name
[00:19]<szznz>ahh
[00:19]<szznz>from config-if ?
[00:19]<fjsvnf>under config-if
[00:20]<szznz>ya i am
[00:20]<szznz>said the same thing, invalid input
[00:20]<szznz>unless client-id wasnt literal
[00:20]<szznz>i did ip add dhcp client-id eth0/1
[00:20]<szznz>was that correct?
[00:21]<szznz>its arrow is under the d of dhcp
[00:22]<[mzvzyw_]>type "ip address ?"
[00:22]<szznz>incomplete command
[00:22]<szznz>but
[00:22]<szznz>my dsl line is connected to this puter
[00:23]<szznz>it cant be connected to the router until i know what i need to do
[00:23]<szznz>my old smc router died last night
[00:23]<szznz>so i am on solo connection to it now
[00:23]<[mzvzyw_]>you put that question mark on the end and hit enter?
[00:23]<szznz>no
[00:23]<szznz>ok with that it just says address
[00:24]<szznz>and now ip address is still on the command line
[00:24]<szznz>shit, i had the ports backwards
[00:24]<szznz>the lan is on 0/1
[00:25]<szznz>but it says the same thing
[00:25]<szznz>i did ip add dhcp client-id eth0/0 this time
[00:25]<szznz>but it says invalid command again
[00:26]<szznz>so i need 0/1 to give out ips and 0/0 to get an ip from the dsl
[00:26]<szznz>my bad
[00:28]<szznz>in sh run it says, eth 0/0 is ip addy 192.168.123.254
[00:28]<szznz>with subnet
[00:28]<szznz>thats the to lan
[00:29]<[mzvzyw_]>hmm
[00:29]<szznz>interface 0/1
[00:29]<szznz>no ip address
[00:29]<szznz>no up directed broadcast
[00:29]<szznz>ip default gateway ,, is pointed to my old smc router
[00:29]<szznz>with was 192.168.123.254
[00:29]<szznz>ip classless
[00:29]<szznz>ip http server
[00:30]<szznz>with=which
[00:30]<[mzvzyw_]>on my 2600: http://pastebin.com/766171
[00:30]<szznz>not even close
[00:31]<[mzvzyw_]>exit back out to enable prompt and type "sh ver"
[00:31]<szznz>when i do ip address?
[00:31]<szznz>it has one line below it
[00:31]<szznz>address
[00:31]<szznz>ok

Back to #cisco
Or go to some related logs:
#gentoo
#netbsd
#cisco
#gentoo
#gentoo