IRC Networks
Irc Logs Stats
Start date: 2007-09-27 02:48:27
Last update: 2008-10-24 20:19:38
Channels: 41
Logged Lines: 6230436
Size: 1834.10 MB
Powered by
Channel Info
Network: freenodeChannel: #cisco |
Search in www.irclog.org
Log from #cisco at freenode 2006-06-08
[20:01]<jeeej>i have my own business too. I got an email the other day telling me how to start it
[20:01]<sxrmns>I already have one 8 D
[20:01]<jeeej>I'll be getting hundreds or thousands of dollar bills in the mail any day now
[20:02]<sxrmns>once you pay that business licence, you can get mad tax write offs
[20:02]<znzzvyvnaznnl>hi all.
[20:02]<jeeej>all isn't here
[20:02]<sxrmns>anything food based, --> business meeting
[20:02]<znzzvyvnaznnl>hi ozzzo ..
[20:02]<sxrmns>gas receipts --> travlings to prospective clients houses
[20:02]<znzzvyvnaznnl>:)
[20:02]<jeeej>hi neg
[20:02]<sxrmns>laptop computer - > another deduct 8 )
[20:02]<sxrmns>negativecreep....
[20:02]<znzzvyvnaznnl>ShadeS: ???
[20:02]<sxrmns>You're not the same negative creep on aim?
[20:03]<znzzvyvnaznnl>ShadeS: No!!..somebody took it before I got to it.
[20:03]<znzzvyvnaznnl>:)
[20:03]<sxrmns>I know who then 8 P
[20:03]<fjzvxnz>ShadeS: pray you *never* get audited.
[20:03]<sxrmns>loather, I keep *all* my receipts
[20:03]<sxrmns>in seperate folders based on year, and type of receipt
[20:03]<sxrmns>no worries.
[20:04]<sxrmns>8 )
[20:04]<znzzvyvnaznnl>Anyone of you has hands on experience with MPLS on Cisco routers? I have to clear up some confusions.
[20:06]<znzzvyvnaznnl>wow...did i say the magic words?? everybody gone so quiet..........
[20:07]<fjzvxnz>i've never done any mpls
[20:08]<znzzvyvnaznnl>ahan
[20:08]<fjzvxnz>there were a couple people mentioning mpls in here a couple days ago, though
[20:08]<fjzvxnz>can't remember who it was.
[20:09]<m2r>is it just a survey of mpls usage or do you have an actual question?
[20:09]<znzzvyvnaznnl>dbg: actual questions
[20:10]<znzzvyvnaznnl>dbg: It's regarding MPLS VPNs.
[20:10]<znzzvyvnaznnl>dbg: I have iBGP running between my core routers (i.e. PE). Some documentation suggests that I need to run OSPF/IS-IS alongside that.
[20:11]<znzzvyvnaznnl>dbg: Is that true?
[20:12]<m2r>negativecreep: well, you need to propagate routes to next hops somehow. you run igp to propagate this information in your network
[20:13]<znzzvyvnaznnl>dbg: iBGP is already running to propagate these routes. Won't that do?
[20:14]<znzzvyvnaznnl>brb ... dinner time.
[20:17]<m2r>negativecreep: in sufficiently perverted setup, you can do without igp, yes. but you don't want to. the best practice is to have igp to propagate routes to loopback addresses and use them as ibgp peering addresses and next hops.
[20:19]<fjzvxnz>i seriously need to learn more about routing tables
[20:25]<fjzvxnz>s/tables/protocols/
[20:36]<znzzvyvnaznnl>dbg: Thanks for the explanation.
[20:37]<znzzvyvnaznnl>OSPF or IS-IS?? no flames please.
[20:37]<m2r>negativecreep: whichever you're most familiar with
[20:37]<znzzvyvnaznnl>I am running OSPF currently but peers suggest that IS-IS is better for MPLS.
[20:39]<znzzvyvnaznnl>dbg: An interface can belong to one and only one VRF only. Am I right?
[20:40]<m2r>negativecreep: full explanation why you need igp would include rather long discussion on how exactly lsp are built, why route aggregation is detrimental in mpls networks etc. but for now you better stick with best practices.
[20:41]<znzzvyvnaznnl>dbg: Agreed. I shall read on that.
[20:42]<m2r>negativecreep: generally yes. you can use vrf selection with prb if you really need to.
[20:42]<m2r>pbr that is
[20:42]<znzzvyvnaznnl>hmm
[20:44]<m2r>http://www.cisco.com/en/US/products/sw/iosswrel/ps1838/products_feature_guide09186a0080296409.html explain how to use multiple vrf with one interface, but don't worry about that unless you have some specific need for this.
[20:45]<znzzvyvnaznnl>Thanks. I shall have a look.
[20:46]<znzzvyvnaznnl>My scenario is something like CE<---eBGP--->PE1<--OSPF-->P1<---iBGP--->P2<---OSPF--->PE2<---eBGP--->CE
[20:47]<znzzvyvnaznnl>This is the existing diagram without any MPLS vpn configuration at the moment.
[20:47]<znzzvyvnaznnl>I have labelled routers just to make it clear.
[20:48]<znzzvyvnaznnl>FBH^^: :)
[20:48]<vr2>...... stupid default settings on windows pptp
[20:49]<znzzvyvnaznnl>dbg: Can you suggest a case study which is similar to my design so I can read more. It's a production network and I am short of lab equipment to test the scenario.
[20:49]<znzzvyvnaznnl>:(
[20:50]<vz2ufzzzsz>winner access?
[20:50]<vz2ufzzzsz>there is winner access and loser access
[20:50]<vz2ufzzzsz>uh, yeah
[20:50]<vz2ufzzzsz>:)
[20:51]<vz2ufzzzsz>loser access = no access to code and some documents
[20:51]<vz2ufzzzsz>winner access = code, etc
[20:52]<vz2ufzzzsz>awesome
[20:52]<m2r>negativecreep: run ospf on all of your p* devices - single area, if your network in not too large. use if only for distributing routes to loopbacks. run ibgp between pe routers' loopbacks full mesh, or with route reflector (i'd recommend setting up rr even in small networks). use ibgp to carry vpnv4 routes and rest of your ipv4 routes.
[20:52]<m2r>s/use if/use it/
[20:53]<znzzvyvnaznnl>dbg: Thanks. Can I send you my config at a later stage when I try this stuff on paper. As I said, no lab equipment. Maybe you can have a look and comment at it.
[20:54]<m2r>negativecreep: don't forget to include network drawings
[20:55]<znzzvyvnaznnl>sure
[20:55]<znzzvyvnaznnl>email?
[20:55]<m2r>negativecreep: dginsburg@amt.ru. please note that i'm in GMT+4 timezone.
[20:55]<znzzvyvnaznnl>i am GMT +5
[20:56]<m2r>ok
[20:56]<znzzvyvnaznnl>dbg: I dont mean to bug you but if you have any IM account on which we can talk in real time?
[20:56]<znzzvyvnaznnl>I am very thankful for your help.
[20:56]<fncu>sup
[20:56]<vd2r>I have access to code, but not some documents. don't know why
[20:57]<m2r>negativecreep: just msg me in irc.
[20:57]<fncu>what's your userid i'll fix your cco id
[20:57]<znzzvyvnaznnl>dbg: Thanks a ton.
[20:57]<fncu>8)
[21:01]<fjfkyffr>when you want to remove a interface settings (such as port security), i can simply type: no switchport port-security right?
[21:02]<vz2ufzzzsz>yeah
[21:02]<vz2ufzzzsz>no [command]
[21:03]<vd2r>you'll probably want to clear the port security mac address as well. no switchport port-security mac-address (address | all)
[21:05]<sxrmns>configuring switches is only something you do if your switch doesn't suck, right?
[21:07]<vz2ufzzzsz>heh
[21:08]<fjfkyffr>i'm gooing to turn on port security, i had to type / copy and paste all the mac addreses and settings i want for each interface, but just incase is there a way way to clear all settings that i just applied to all inerfaces (globally)
[21:09]<fjfkyffr>so far i have notepad open with all the settings i want, i'll paste it in
[21:12]<wdeed>hey nemith..
[21:12]<wdeed>are you there
[21:14]<dzzc1lyvn>going through my BSCI book
[21:14]<dzzc1lyvn>and wanted to ask him something
[21:15]<gndyvx>hey Dark3Lite
[21:15]<vd2r>PopKilla: you can do interface range to work on port security for the whole switch.
[21:15]<dzzc1lyvn>which books do you prefer?
[21:15]<dzzc1lyvn>the Cisco Press or the Sybex..
[21:16]<djzwzvnz>Anyone here do any automation with MRTG/Cisco switches?
