����� FAQ ��⠢��� �� ���ਠ��� FIDO-����७樨 RU.CISCO,
newsgroup comp.dcom.sys.cisco, ᯨ᪠ ���뫪� inet-admins,
����७権 online.comptek.ru � ��㣨� ���筨���.
���ᨡ� �ᥬ ����⥫� �� RU.CISCO.
���ᨡ� �ᥬ, �� ���뫠� ��뫪�, ���� q/a.
����騩�� ������ ���� FAQ - Dmitriy Yermakov,
dyer@rcp.ru, 2:5030/1115
��� ������ ����䨪�樨 - $Date: 2014/05/05 18:52:43 $.
����������, ��ࠢ����� ���� ���뫠�� ��
dyer@rcp.ru
� �⢥� �� ����� �� ��� - ���졠 㪠�뢠�� (��� �������) ���� �⢥�.
http://rcp.ru/faq/cisco.html
����⮢�� �����
ftp://ftp.east.ru/pub/inet-admins/cisco.txt
http://rcp.ru/faq/cisco.txt
DISCLAIMER.
���⠢�⥫� ������� ⥪�� �� ���� Cisco-����
� �� �����⢫�� tech-support by e-mail or netmail.
0. ��騥 ������
1. Sync,Async,AUX,Callback
2. Frame Relay
3. X.25
4. ACL
5. Traffic-shape, QoS
6. Routing
7. TACACS,RADIUS,AAA
8. Memory
9. NTP, TZ
10. NAT
11. Telco, ISDN
12. VoIP
13. SNMP
14. Cables
15. TROUBLESHOOTING
16. Switching,VLAN
17. Netflow
18. PIX/ASA
96. Modules
97. SoftWare
98. IOS Black List/White List/Recommendations
99. Misc
����⪨ �� �����
===========================================================
0. ��騥 ������
===========================================================
Q: ��� ����� ��-� ������ �� Cisco ?
A: � :)
UniverCD, ���騩 � ���⠢��.
http://www.cisco.com �
http://www-europe.cisco.com
������ ��ॢ���� ���ਠ��.
http://cisco.udm.ru ����-���
[23.01.2001]
http://www.pluscom.ru/general/library/index.htm������⥪� PlusCom
: (Vladimir Chepikov)
Cisco Product Quick Reference Guide
: (Alexey Milevsky)
Portable Product Sheets
[11.09.2000] �� ������ UniverCD.
: (Dmitry Morozovsky) '���' DocCD �� Cisco - gzip-compressed
(Dmitry Lesnichenko) ᥩ�� ᮤ�ন��� UniverCD �� gzip-compressed, � bzip2-compressed.
���⮬� ����� "gzcat -f" � �ਢ������� �ࠣ���� �㦭� �ᯮ�짮���� "bzcat"
------- httpd.conf:
Action text/gzipped /cgi-bin/gzcat.cgi?
AddHandler text/gzipped .html .htm
------- gzcat.cgi:
#!/bin/sh -
echo "Content-type: text/html"
echo ""
HF=${DOCUMENT_ROOT}/$REQUEST_URI
if [ -r $HF ]; then
gzcat -f $HF
else
echo "No such file, sorry"
fi
A: �� ������ ��⠭���� ��� Win2k (Sergey Zarubin)
From: "Evan Wagner"
Newsgroups: comp.dcom.sys.cisco
Subject: Re: Windows 2000 & Cisco CD
Date: Thu, 20 Apr 2000 23:04:18 -0400
To get the Cisco documentation to work under Windows 2000:
Run regedit
Export your registry (as a precaution)
Locate the Windows 2000 Registry Key: HKEY_LOCAL_MACHINE/SOFTWARE/Microsoft/IE4/Setup/Path
Change the value from "%programfiles%\Internet Explorer" to the location
where IE is installed on your system, for example "D:\Program Files\Internet Explorer"
Uninstall the Cisco Documentation CD
Delete the old install directory
Reinstall the Cisco documentation CD and you should be good to go.
Q: �� �������� univercd ��� FreeBSD ����� 䠩��� � ��⠫����
��������� �������묨 �㪢���, ����� �� ���������� �� �⮣�?
A: (Victor Sudakov) mount_cd9660 -j
A: ����ᠭ�� ����稪
Cisco Systems and Cisco Routers in a Nutshell
http://www.clark.net/pub/rbenn/cisco.html
[18.01.2002] ⥯��� �� Cisco Systems? In a Nutshell
���� ⠪�� �����⥫�� �ࢥ�: McGraw-Hill Beta Books
http://www.pbg.mcgraw-hill.com/betabooks/betabooks-home.html
A: (Dmitriy Yermakov)
���-����� ������� �ਬ��� ���䨣�� ���� ��
�������
http://relcom.eu.net/INFO/NOC-IP/FAQ/faq.html
ᠩ� �.����������
http://www.bog.pp.ru/work/cisco_access.html
Cisco ����� � ���졠 � ���� � �������� �.��誮��
http://www.parkline.ru/Library/koi/CISCO/
Sample Configurations �� www.cisco.com
http://www.cisco.com/warp/public/700/tech_configs.html
Guide to Cisco Router Configuration
http://www.primenet.com/~web/router/cisco-configuration.html
TACACS-FAQ -
http://www.easynet.de/tacacs-faq
CISCO-FAQ - comp.dcom.sys.cisco Frequently Asked Questions
Date: 10 February 2002
Subject: Where can I obtain/View the FAQ
B.
http://www.networkingunlimited.com/CiscoFAQ.html
C.
http://www.evolutiontechnical.com/cisco-faq/index.htm
D.
http://mrubino.com:8080/cdsc-faq
http://cube.sut.ru/~dyer/faq/cisco-networking-faq.txt �
ftp://ftp.east.ru/pub/inet-admins/cisco-networking-faq.txt
CISCO-FAQ �� �ࢥ� Cisco -
http://www.cisco.com/warp/public/458/index.shtml
��娢 mailing-list inet-admins
http://info.east.ru/win/inetadm.html ��� ⮦� ���� ������/�⢥��. � �� ⮫쪮 �� Cisco.
�����让 FAQ
http://www.sunshine.dp.ua/os/reports/ciscofaq.html
���� � ᮮ�饭�ﬨ �� RU.CISCO ��
http://www.opennet.ru/base/cisco
[07.09.2000] >A: Martin McFlySr
���� �� ��᪥ �� ������ Google
http://cisco.google.com/cisco
[18.09.2000] ����� �������� Cisco Press "S.Zaytsev"
[23.01.2000]
http://www.npr.ru/tutorial/course98.html
���� ������ 祬 ������� :) ���ਠ�� ���ᮢ "�ࠪ��� �ਬ������ ������⨧�� CISCO � ��௮�⨢��� ����", ���⠭��� � ����-��५� 1998 ���� ��� ���㤭���� ��� "��� ���ᨨ".
Q: ��� ����� ��娢 RU.CISCO ?
A: (Dmitriy Yermakov)
http://groups.google.com/groups?hl=ru&safe=off&group=fido7.ru.cisco :) ru?cisco.zip FTP
ru?cisco.zip HTTP
������ ! ��ଠ� ���� - Squish. Viewer - SQVIEW
Q: ��� ����� ᢥ��� IOS ?
A: (Denis Saveliev)
��� ���ᨨ ����� ��
ftp://ftpeng.cisco.com/isp
P.S. (DY) ����饬-� IOS �� ��ᯫ�⥭.
[09.02.2000] (DY) ��쪮 ��⥩ �� void.ru
���䨣������ ��� Cisco
(1)
(2)
���饭�� ����� �� ���� Cisco IOS (��ॢ�� Phrack 55)
(1)
(2)
P.S. � ��� ����� ����� �� ���䨣������ ���㯠��
�� ������ ���ਠ��� ��ࣥ� ����������
[09.02.2000] ��᪨�� �������, public �����.
http://www.cisco.com/public/cons/isp/documents
� �ᥤ��� ��⠫��� ⮦� ������� ��������
http://www.cisco.com/public/cons
[25.10.2002] Documentation Icon Library
(Vladimir Litovka) Cisco Dynamic Configuration Tool - ��᪠�� � ०��� guest � �������� ᮡ��� ���䨣���� � ����� �� �� ����������.
===========================================================
1. Sync,Async,AUX,Callback
===========================================================
Access-Dial Technical Tips
WAN Technical Tips
How to Tunnel Async Data
[19.05.2003] (Denis V. Schapov)
Recommended Modemcaps for Internal Digital and Analog Modems on Cisco Access Servers
Configuring and Troubleshooting V.92 Modems
Q: ���᪠��� ��� �� Cisco 2509 ᤥ���� �室 � ������� �� IFCICO !
A: (Dmitriy Yermakov)
�� �ᯮ�짮����� TACACS/RADIUS �. (7.6)
username **EMSI_INQC816 nopassword
username **EMSI_INQC816 autocommand telnet [host] [port_ifcico] /stream ����审������ ������ ���稪� /stream ���� ����� ����� ��⥬
�� ������
banner login # **EMSI_REQA77E #
����/�� ���� � �����⥫쭮�� �襭�� �� ��諨
� ���� �� ����
A: (Alecsey Gusev)
username **EMSI_INQC816 nopassword noescape
username **EMSI_INQC816 autocommand telnet
username **EMSI_INQC816**EMSI_INQC816q. nopassword noescape
username **EMSI_INQC816**EMSI_INQC816q. autocommand telnet
username **EMSI_INQC816q nopassword noescape
username **EMSI_INQC816q autocommand telnet
username **EMSI_TZP16B2 nopassword noescape
username **EMSI_TZP16B2 autocommand telnet
�� �㦥� banner login # **EMSI_REQA77E #
A: (Alecsey Gusev)
��� Argus'a ���� �������� ���짮��⥫� **EMSI_TZP16B2,
argus ���� ����� ���뫠�� ��.
[19.07.2000] (Sergei Shumakov) ⠪��� ���� �筮 �� ������. ��� ��
-TZP16B2-
�� ���� �����, �� ⮫쪮 �� ⮣�, ��� ������ **EMSI_REQA77E.
A: ���稪 ��� ifcico (Maksim Malchuk)
*** session.c.orig Wed Dec 27 16:22:31 1995
- --- session.c Tue Feb 13 08:48:13 1996
***************
*** 163,168 ****
- --- 163,170 ----
SM_ERROR;
}
+ PUTSTR("**EMSI_INQC816\r");
+
p=buf;
/*PUTSTR(" \r");*/
PUTCHAR('\r');
Q: Dialout service for unix ��� ��� ��楯��� ���� NAS'a � 祬� �����.
A: (Sergei Shumakov)
Com Port Redirector
P.S. (DY) ��⠫�� �த��� "�����"
A: Alex Tutubalin, Vadim Mikhailov
Win95/NT
http://www.cisco.com - dialout serice ��� ��� ⠬ ���.
FreeBSD,Linux
modemu-0.0.1 ��㫨��� /dev/ttyXX �१ �� ⥫���.
��� �᪨ �� �㤥� ������� ⥫��� �� ���� 2000+n.
H� 䠪�� ��� �� �१ �� ��諥��, ��� �� ��� �����?
(AT): H� 2000+n ��p�� ��� flow control. � dialout 室�� �� 6000+n.
(DY): nettty - ���-� � ࠩ���
http://www.livingston.com
��� �� 㦥 ����� ���. ���� ����� -
ftp://ftp.sut.ru/pub/dyer
����� 2 ���ᨨ - �ਣ����쭠� � ���祭��� by birdie@
A: (Leonid Kirillov)
��� Win'95/3.x/NT ����� �蠥��� �� �����
http://www.cisco.com/univercd/cc/td/doc/product/access/acs_soft/dialoutd/index.htm
���ᮡ �襭�� ����� ��� ����� �������⥭.
NB. Cisco DialOut utility 㦥 ����� �६� End-Of-Life.
����� ��� -
http://www.tacticalsoftware.com/de.asp
Q: �����-�� ���-����� �࣠�������� ��������� �� �� ��।������� �����,
� �� ����� ������, ᪠���? ��� �㬠����, �� �� ����� ���-�
�࣠�������� �१ ��ꥤ������ �����, � Dialer Group? �����, ����᭮;)
A: (Vasily Ivanov)
5000+�����
�p�� ��⠭������ rotary �� �㦭�� ������.
Q: ��⥫��� ��������� - ��楯��� ����� �� AUX. �ய�ᠫ ��� ���饥:
line aux 0
location TESTING
access-class 1 in
password line anything
script reset reset-modem
modem InOut
transport preferred none
transport input all
transport output none
stopbits 1
rxspeed 19200
txspeed 19200
flowcontrol hardware
����� ⥫��⮬ �� ��� �����, ����� �������� � ����, � ����� �� ����
᭠�㦨 - �設�, ����� ��������� ��㡪� � �����, �� 祣�
�⢠������. H������ ��⮢, ��祣�. ��⠫�� ��ᥬ� �������
ࠡ���� ��ଠ�쭮.
�㤠 ��� ����� ����, �⮡� ��� �ਧ���� AUX? IOS 11.2.
A: (Sergey Zhuk)
line aux 0
login local
modem Dialin
terminal-type vt100
stopbits 1
rxspeed 38400
txspeed 38400
flowcontrol hardware
���... ࠡ�⠥�...
� inout ⮦� ࠡ�⠥�...
Q: �� �� ����� 20xx, 40xx, 60xx ���⮢ �� Cisco ?
A: (Dmitri Beloslioudtsev)
� �� ࠧ�� ०��� ࠡ��� telnet:
Telnet port 20xx
Telnet raw port 40xx
Telnet binary port 60xx
: (Eugene Zhilitsky)
����� 30��, 50��, 70�� - � �� ᠬ��, �� ��� rotary.
P.S. (DY)
6000+ port number binary connection ( CR converted to CR+LF)
9000+ port number Xremote
Q: � �� ���᪠��� �� �ᥧ���騩 All, ��� � ��᪥ 2503 ����p���� AUX
��p� ��� ������祭�� � ���� ������ � �뤥������ ������. H�
��p�p��p� � �p㣮� ��p��� �뤥����� ��⠫��� ⮫쪮 �ᨭ�p����
��p��.
A: (Dmitry Morozovsky)
int a0
ip unn e0
enc ppp
keep 10
asy mode dedicated
asy def rou
asy dyn rou
li a 0
speed 38400
flow hard
esc NONE
stopbits 1
���� ���䨣���� ������ (��� reverse telnet �㦭� modem inout & tran in telnet)
Q: ��� ���⠢��� ࠡ���� NT, Win c ��� �� ���-������ ?
A: (mkader) How to Configure Windows 95 Dial-up Networking via a
Null-modem Cable
A: (Alexander Karpoff)
ppp �१ ������� � � 95, � � NT ࠡ���� ��� ����.
� ���� �ᥣ�-� �室��� ��
http://www.mindspring.com/~kewells/net/
� ᪠��� ����室��� *.inf.
[19.07.2000] (
zaruba@artelecom.ru)
�।����� ᪠稢��� �
ftp://ftp.zelax.ru/pub/soft/mdmzelax.inf
�. ⠪ ��
http://www.zelax.ru/faq/faq76.html
P.S. (DY) ������� �� ��, ����� ���⠢��� �� NT ����� ������ - X.25 pad. P.P.S. (DY) ���� mdm3640t.inf ��� ����� ��� -
http://rcp.ru/mdm3640t.inf.txt � ����ࠬ� - ࠡ�⠥� :)
A: (DY) � ��� ����� ����� ᯮᮡ (�⪮��� ���-� � ���� �� ��᪥)
=============================================================================
* Area : RU.WINDOWS.NT (RU.WINDOWS.NT)
* From : Dmitry Vashkovsky, 2:5020/168.121 (��⭨� ������� 26 1997 19:23)
* Subj : NT&�뤥������ ����� =============================================================================
��� ᤥ���� %SUBJ%?
���� NT4+SP3+RAS&Routing+Motorola Premier 33.6
�।����� ��ਠ�� �襭�� ����� ࠡ�⠥� � ���� � ��� � ��७ ����� ������묨, � ��� ⮦� ࠡ�⠥� �� �� :)
� ⠪ ������ �।��⠢�� ��� �뤥������ ����� �� ���ன � ��襩 ��� ���� �����, �� ����祭�� �� �ࠧ� ������砥��� � �������
� �������� ����묨 �।�⢠�� nt ��� ��㤠���� 㢨����. �ࠧ� ᪠��, �� � ����᪨� �� �⮬� ������ ����ᠭ� �ᥣ� ��� ���窨, �� �� ������ ࠡ���� �� null modem, �� ���� �ࠢ��쭮. H� ᠬ�� ���� �� ������� x25.
��ࢮ� �� �� ������ ᤥ���� ��࠭��� �� ��直� ��砩 �� ��४�ਨ ras � 䠩� pad.inf � ����� ���� �������� ���� � ��� �� nt3.51 䠩� modem.inf � ��।����� ��� (⮫쪮 � ���! � nt4 ��� ���室�饣� ���ᠭ�� null modem) ���ᨫ �� ���� ���ᠭ�� ��� ������� ��⠢�� ⮫쪮 �������� ����� ���ଠ�� � ��।�������� ��� ����室���� ��� ����� ���ᠭ��
�㫬�����, �ਢ��� ��� ��� ���������
;----------------------------------------
[Null Modem 33600]
CALLBACK_TIME=10
DEFAULTOFF=
MAXCARRIERBPS=33600
MAXCONNECTBPS=33600
COMMAND=
CONNECT=
;----------------------------------------
���襬�� ���� �롨ࠥ� Install X25 Pad ��� � �।�������� ���� ����⢥��� �롨ࠥ� Null Modem, ����� ���⢥ত��� ��, �� ����� �� ���� ᪠����, �� ������ ���ன�⢮ ࠡ�⠥� ⮫쪮 �� dial out � �� �த�⮪��� tcp/ip :) ����ࠨ��� dialup � ��� ����饭��� �25 � ��� ���쪮 ��ப � ��ࢮ� � ������� ��५�� ���� �롨ࠥ� ��� �㫬���� � ��⠫��� ���� ���� ��㭤� (� �����ᠫ ��� ������). �� ����� ᯮ����� ࠡ����. ���쪮 �� ������ � ���ᠭ�� ���� 㪠���� �㦥 ����, �� � ���ᠭ�� �㫬�����. � ��� ����� ����� modem.inf �� nt3.51 ����� ������ ��� 㦥 ��।������� pad.inf (�ࠢ�� ��� 19200, �� �� ��ન ��ॡ��� �� ���) � ���� �� ftp:\\www.advance.com.ru �� ⠬ ����� ��אַ � ��.
Dmitry
dva@skydive.ru http:\\www.advance.com.ru/skydiver
��: �� ⮣� ��� � ��� �� ��ࠡ�⠥� �� ������ 㣮���� ���� ����� =============================================================================
A: (DY)
�������� �����-� �६� �
http://www.mindspring.com/~kewells/net/
��襫 ���쪮 ��㣨� ��⥬.
���� �� �����, �� �ᯮ����.
�� ��� ��᪨ -
modemcap entry usr_ll:FD=&f1&l1:AA=A
line X
modem autoconfigure type usr_ll
�� ��� Win,WinNT
�⠢���� ��ଠ��� �ࠩ��� �� ��⠭�������� ������.
���䨣�ਬ �����
AT&F1
AT&W
��ਠ�� 1.
� ����ன��� ������ (⠬ ��� ��-� ⨯� advanced/extra settings)
�⠢�� ����� ���樠����樨 AT&L1
��ਠ�� 2.
� ���窥 � ⥫�䮭�� �⠢�� X3T1
(� ⠪�� ��ਠ�� ������ �㤥� ࠡ���� �� �����,
����� � �� 㬥�� �� ��ᯮ��� ०�� Leased Line)
� �� � ⮬ �� -
http://www.psc.ru/sergey/TehSerenada/CISCO/ONLINE/wint4ll.html
[14.03.2001] � �� -
http://peps37.ktk.ru/freebsd/leased-nt/
Q: � ����� �� ��-����� , ����� �� ��।����� �����饬� �������� 1.8>����
DNS ��⮬���᪨ � ���� ? � ��蠫 , �� ⠪�� �뢠��.
A: (Sergiy Zhuk)
async-bootp dns-server 192.168.3.100 192.168.3.110
�� DNS ^^^
async-bootp nbns-server 192.168.3.2 192.168.2.2
� �� netbios (wins)
Q: �⮨� ��᪠ 3640 � ���ன ��⠭����� ����� Mica-modem �� 30 1.9>������� �
����� �1 ᮥ������� � ���. ����� � ����� ������� sh use � ���� ���⨭�� ⠪��� �����
66 tty 66 pupkin ...
55 tty 55 vasya ...
��� ��� 㧭��� �� ������ ⠩��� � ��⮪� �1 ��襫 ���짮��⥫� �.�. ������� �� �ਢ離� line � bchannel, � ��� � ����� �� �� �������.
A: (Andrew Lun)
sh modem csm
1.10>Q: ������� Cisco 1005. ������⥫�� ���� �䨣����
��� ᨭ���. ���᪠���, pls, ��� �� ���⠢��� ࠡ���� � ����� �������?
A: (Dmitry Morozovsky)
��� 1005 sync-async ��४��砥��� ��⮬.
H�稭�� � 2520/2522 -- �������� physical-layer async �� ����䥩�
(����, ������� �������, �� �� �⮬ ������� SNMP ����� ����䥩�).
P.S. (DY) The Cisco 1005 requires the IP/ASYNC or the IP/IPX/ASYNC feature set of Cisco IOS Software in order to allow asynchronous mode on its Serial interface.
IP/Async - c1005-qy-mz
IP/IPX/Async - c1005-nqy-mz
1.11>Q: ��� uucp-譨���.
A: (DY) �� RADIUS ���� �� inet-admins, �� �筮��� �� ������.
a. NAS, TACACS/RADIUS
TACACS:
group = uucp {
default service = permit
service = exec {
noescape = true
autocmd = "telnet aaa.bbb.ccc.ddd 540 /stream"
}
}
RADIUS:
(Victor Sudakov)
uucp Auth-Type = Accept
Service-Type = Login-User,
Login-IP-Host = ip.of.uucp.host,
Login-Service = TCP-Clear,
Login-TCP-Port = 540
(Vladimir Kravchenko)
cistron 1.4.x ------------------------------------------------------------------------
# hints
DEFAULT Prefix = "uu", Strip-User-Name = No
Hint = "UUCP"
------------------------------------------------------------------------
# users
DEFAULT Huntgroup-Name = POOL, Hint = UUCP, Auth-Type = Accept
Service-Type = Login-User,
Cisco-AVPair = "shell:autocmd=rlogin xxx.xxx.xxx.xxx /user $user" ------------------------------------------------------------------------
P.S. (Vladimir Kravchenko) radius-server optional-passwords,
�⮡� cisco �� ��訢��� ���.
��� RADIUS, (Dmitry Morozovsky)
/var/spool/uucp/public/.rhosts:
nas0 ciscoTS
nas1 ciscoTS
(Basil Dolmatov) - NAS ��室�� � ᯥ���᪨� ������ "ciscoTS"...
������ ��� � ���� ࠧ����...
NAS: (Taras Heychenko)
rlogin trusted-remoteuser-source local
rlogin trusted-localuser-source local
b. Clients
sys �� taylor-uucp
myname client
system host
time any
call-login uuclient
call-password cl.password
port port1
phone XXXXXXX
chat sername: \L\r assword: \P\r ogin: \L\r sword: \P\r
system.pat �� UUPC/@
200 gGt N g(%L_GWSIZE%,%L_GPSIZE%)/g(%R_GWSIZE%,%R_GPSIZE%) ""
\W20\c name--name--name \p\p\L sword:-\L-sword:-\L-sword:-\L-sword: \p\P
\crlogin\sUUHOST\r ogin--ogin--ogin \p\p\L sword:-\L-sword:-\L-sword: \p\P
UUHOST �������� �� �
��� ���� � autocommand "->-> \crlogin\sUUHOST\r " ����� �모����
1.12>Q: ����� ������ � Cisco � Windows
A: (Vyacheslav V. Fedorov)
H� Cisco 2511:
version 11.
service exec-callback
...
aaa authentication login execcheck tacacs+
aaa authentication ppp ppp_list tacacs+
...
interface Async2
ip unnumbered Ethernet0
ip tcp header-compression passive
encapsulation ppp
async mode interactive
peer default ip address x.x.x.x
ppp callback initiate
ppp authentication chap ppp_list
....
line 2
autoselect during-login
autoselect ppp
script modem-off-hook offhook
script callback idc
login authentication execcheck
modem InOut
transport input all
escape-character NONE
callback forced-wait 30
callback nodsr-wait 10000
stopbits 1
rxspeed 57600
txspeed 57600
flowcontrol hardware
.....
H� �ࢥ� ��� tacacs+:
� 䠩�� tacacs.config
user= mylogin {
global = cleartext "xxxxxxxxxx"
service=ppp protocol = lcp {
callback-dialstring = 388888
}
service=ppp protocol=ip {
}
service=exec {
callback-dialstring = 388888
callback-line=2
nocallback-verify=1
}
}
(DY) ��� RADIUS �ਬ�୮ ⠪:
# users
Cisco-AVPair = "lcp:callback-rotary=1",
Cisco-AVPair = "lcp:callback-dialstring=1234567890"
A: (Dmitry Valdov)
��� ⮣�, �⮡ � ��� ������� �����, �� ⠪��� ������ ��室��� callback-dialstring = ""
� ��饬:
cisco:
service exec-callback (�� �㦭� ⮫쪮 � ��砥, � �।���������� �ᯮ�짮���� callback � �ਯ⠬�.)
....
chat-script dial ABORT ERROR TIMEOUT 50 "" "AT" "OK" "ATD\T" "CONNECT"
....
interface group-async 1
ppp authentication pap
ppp callback accept
...
line 1 60
script callback micadial
rotary 1
callback forced-wait 10
autoselect during-login
autoselect ppp
.....
� ⠪���:
group = callback {
.....
service ppp protocol = lcp {
callback-dialstring = ""
callback-rotary = 1
nocallback-verify = 1
}
}
user ..... {
member = callback service = exec {
.....
callback-dialstring = "" nocallback-verify = 1 callback-rotary = 1
}
}
���⤠��� ᠬ� ������ ����訢��� callback �� cbcp �� �� ������ � ���.
� �� �� �⪠�뢠��, � ��� ����訢��� ����� ⥫�䮭�. ��� H� ���� ��
�� 㪠���� � �� ����.
A: (Andy Igoshin)
ftp://ftp.vsu.ru/pub/hardware/cisco/callback
[29.01.2001] >A: (Denis Shaposhnikov) ��� RADIUS'a
pp****** Crypt-Password = "**********************************"
Cisco-AVPair = "lcp:callback-dialstring=******",
Fall-Through = Yes,
Hint = "DL-S"
[29.01.2001] >A: (Oleg V Prokofiev)
� ࠤ���
call Auth-Type = Local, Password = "******"
Service-Type = Framed-User,
Framed-Protocol = PPP,
Framed-MTU = 1500,
Cisco-AVPair = "lcp:callback-dialstring=135"
[31.01.2001] >A: (Maxim Basunov)
�p���p �p��� ��� exec-callback ��� ��誨
ftp://ftp.idknet.com/pub2/cb3.scp
1.13>Q: ��� �易�� ��� ��᪨ �� �1?
A: (Gosha Zafievsky), ��� (Oleh Hrynchuk)
���䨣 �p���p�� ���騩 (��������� � ��砥 5300 & 3600):
controller E1 ZZZ
linecode hdb3 |
framing CRC4 | �� ��� ��p����p� ������� �� ��������p. ���p㤮�����
clock source line primary | H� 3600 ���� ⮫쪮 � 12.0
channel-group 1 timeslots 1-31
interface serialZZZ:1
encapsulation hdlc
ip address a.b.c.d x.y.z.t
ip route 0.0.0.0 0.0.0.0 serialZZZ:1
�� ����⠢����� ����� ZZZ ������ �� ����p�⭮� �������...
1.14>Q: M���� �� �p���������� IP ����� �p�� AUX ��p� � �p�� ������祭���
� ���'� �� H� (�㬠� �p�� ���-�����), ��� � ����� ���?
A: (??), ��� (Oleh Hrynchuk)
�� ����. ������ ᠬ��� ������������ - � cisco3640 �� �뫮 Ethernet.
������ ��諮�� ���������� � �������, �ᯠ��� ⠪��
RJ-45 - DB-25
1-5
2-6,8
3-3
4-7
5-7
6-2
7-20
8-4
�� ��⠫쭮� ��� ���筮 �� �ᨭ. �����.
[13.06.2000] 1.14>Q: ��� ���� ����ந�� ����� �� async ����� ?
A: (Mathey M. Teplov)
�, ���ਬ��, �� � ������ ����� ᮢ����� ᤥ���� ⠪:
1) 㡨����� modem autoconfigure ���� �ய��뢠��� no modem autoconfigure
2) ���樠�������� �����, ��� 115200 8,n,1
!
! chat-script ���ࠢ��� (Michael Smirnov)
chat-script RESET-SCRIPT ABORT BUSY ABORT ERROR ABORT "NO CARRIER" ABORT "NO ANSWER" "" AT&F1 OK
!
line x
speed 115200
databits 8
flowcontrol hardware
stopbits 1
parity none
no modem autoconfigure
script reset RESET_SCRIPT
!
� �� �⮣� ���⪮ �ய��뢠��� � F1 ��䨫� � Courier ���饥: &A3&B1&C1&D2&G2&H1&I0&K1&L0&M4&N0&P1&R2&S0&T5&X0&Y0%N6
� ���⠢���� �� �� ������� ���� �� ��㧨��� �� F1.
��७� �� ���쪮� ����.
[05.09.2000] 1.15>Q: Callback �� �����
A: (Eugene Crosser)
Linux: Callback � ᠬ �� ����. H� ��� ���� �ਯ� �ਢ��, �� ���� �᭠.
[01.03.2001] >A: (Juri Milodanovich) ���ன�� callback � pppd
[23.01.2001] 1.16>Q: ���� ��誠 1601, AUX� �� ��� ���, ���� �������
����� �� ���᮫�, �⮡� �� ���䨣���� ����� �뫮.
A: (Alex Bakhtin)
��몠��� ��� � ��p� � p���⠥��. ���쪮 ��� PPP ⠬ �p��� ⠪ ��
��������, � ������ �⮣� �����.
����p� � ���������� ������� PPP �� ���᮫� � ���p��㬥��� �孨���� ����������� �室�饣� PPP, ����� ⥮p����� �p���p�. �����, �
���� ���p���� ���-����� �� ᤥ����, � �p��� �㤥�.
1. H㦥� ���, ���p� �������� ������ �p������ (⠪ �� 㬥�� Virtual
Async ���p䥩��), ���쪮 � �����, service provider or enterprise.
2. H� ���᮫� ����� ᤥ���� autocommand telnet localhost xxxx /stream,
�䨣�p�p���� ᮮ⢥�����騬 ��p���� �����, p�� �ᥣ� ⠪ ��, ���
��� fido.
3. ���⢥��⢥��� ��p���� ������ �㦭�� �p������ � ppp � ���������
virtual async.
Dialout, ��宦�, �� ᤥ���� �����, ��� � p�����, ����� ����� ᠬ ������
�p� �����⮬ DTR� - �� �p����� �� ⮩ �� �奬�, �����⢥���, �� �p������ ����᭨�� PPP �� �� callout, ��������...
[26.01.2001] 1.17>Q: �� �㦭� ᪠���� cisco'�, �� �� �, ����� �� ��� telnet'��, ᪠��� ppp � ����稫 PPP, � �� "This line may not run PPP'?
��� �㦭� ᯥ�. ��p�� IOS?
A: (Basil Dolmatov)
Enterprise IOS + vty-async � ���䨣�.
[28.02.2001] 1.18>Q: � �� ���� WINS, DNS, PDC � BDC - �த� ����� ����� � �� �४�᭮ ࠡ�⠥�. ������ ��-�� ��த ������ �� ����� � ��室�� � ���, ��� ����������� � �������ࠬ, ���짮������ �⥢묨 ����ᠬ� ...
A: (Denis V. Schapov)
conf t
async nbns-server ....
�� ������� NetBios node type: p-node (0x2)
�몫���� master browsing � NetBIOS
�� ����ᠭ� ��� �����
Cisco- Windows Networking Design Implementation Guide
Cisco - Configuration Issues with Cisco Routers and Windows NT
[12.04.2001] (Denis V. Schapov) ��������, ��⠫� � �� �� ����� � Win2000 � mppp
Cisco - Microsoft Windows 2000 PCs with MPPP Connections Experience Low Throughput
[03.09.2001] 1.19>Q: ����� 砩���� - ����� �� �� �᪥ 26 ��� 36 � ����ந�� callback ��� ࠤ��� � ⠪���? � �� - ���?
A: (Denis V. Schapov)
�����.
Configuring EXEC Callback
Async-PPP Callback Between an Access Server and a PC
[07.03.2002] 1.20>Q: Callback ��� TACACS/RAIDUS
A: (Victor E. Denisenko)
username xxx callback-dialstring "" password 7 0000000000000
chat-script callback ABORT ERROR "" "AT Z" OK "ATDPw \T" TIMEOUT 60 CONNECT \c interface Async65
async default routing
async mode dedicated
ppp max-bad-auth 3
ppp callback permit
ppp authentication pap
line aux 0
script dialer callback
script callback callback
modem InOut
modem autoconfigure type usr_courier
transport input all
escape-character NONE
callback forced-wait 5
stopbits 1
speed 115200
flowcontrol hardware
[08.09.2002] 1.21>Q: BSTUN �� AUX. ����� �� ⠪�� ᤥ���� � � ����� � ���?
A: (Kostya Golubev)
��� �p����� (祬, �p�訢�����, AUX �� �p���� �⫨砥���, �p��� ��� ��p����뢠���� ��������� �p����p��)
bstun peer-name x.x.x.x
bstun protocol-group 1 async-generic (�y ��� 祣� ⠬ ⥡� ����)
int lo0
ip add x.x.x.x
int a17
no ip add
enc bstun
bstun group 1
bstun route all tcp y.y.y.y
asp role primary (� �py��� ��p��� - secondary)
asp rx-ift nnn (� �����������)
line 17
speed 9600
flow h
modem inout
stopb 1
P.S. (Oleg V Prokofiev) � ���䨣��樨 AUX async ������ ���� ᪠����
no ip route-cache, � ����� ���� �� ��⠥��� ���ᢨ���� �
ᮮ⢥��⢥��� �� ࠡ�⠥�.
[06.03.2003] 1.22>Q: � 2 祫����� � ��������� �������/���� ���������� � ࠧ��� ��設
�� as5300 � �� ������� � ���� �����. � � ��� �� �⮨� Negotiate
multi-link for single link connections ⮣�� �� ���� ��ଠ�쭮. �.�.
ࠧ�� Vi � ip-����. � 祬 �����, ��祬� ��ꥤ������ ���� ?
A: (Maxim Basunov)
multilink bundle-name both
A: (Denis V. Schapov)
Criteria for Naming Multilink PPP Bundles
===========================================================
2. Frame Relay
===========================================================
[02.04.2001] 2.0> (��ࣥ� ���) ��� ��� ��砫� ��� ��뫮�.
Cisco Enterprise: Frame Relay WAN
Frame Relay
Q: Frame Relay & Unnumbered interface
��-� �����p�� �p��� ����� ��� ��ᠫ, �� IP unnumbered ��
FrameRelay subinterfaces �� �뢠��. � � ���� ����稫���.
A: (Alex Tutubalin)
�p���p�� ⠪:
Interface Serial 0
no ip address
frame-relay lmi-type ansi
Interface Serial 0.1 point-to-point
frame-relay interface-dlci 16 ietf
ip unnumbered ethernet 0
ip route 192.168.111.48 255.255.255.240 Serial 0.1
C �p㣮� ��p��� �⮨� FreeBSD + Cronyx Sigma-22.
��� �� ᤥ���� �p���p�� ⠪:
cxconfig cx0 hdlc fr +extclock
ifconfig cx0 192.128.111.49 195.54.222.201
route add default 192.168.111.201
.49 - Ethernet �� �⮩ �� ��設�
.201 - Ethernet �� Cisco
A: (Alex Zinin)
� ��砥 � unnumbered ���������� ��ࠥ� ⮫쪮 ��ᢥ����
�. � ᠡ����䥩�� -- ���� ���� ��砩.
��饥 �ࠢ��� ⠪�� -- ip unnumbered ����� �⠢��� ⮫쪮 ��
����䥩��, ����� Cisco ��ᬠ�ਢ��� ��� p-t-p.
��� WAN ����䥩ᮢ ⨯ ��।������ ��������樥�.
�.�. hdlc - ptp, ppp-ptp, slip-ptp, fr-ptm, x25-ptm, smds-ptm
�⤥��� ��砩 -- dialer. �� �� ����� ⨯� ����䥩�
� ࠡ�⠥� �᪫��⥫쭮 ᠬ����⥫쭮 ������ data-link
���.
� ��砥 �� � ᠡ����䥩ᠬ�, �� ����� ࠧ���� ����
䨧��᪨� p-t-m �� ���쪮 p-t-p � p-t-m ����䥩ᮢ.
���⢥��⢥��� �� p-t-p ����� �ᯮ�짮���� unnumbered.
[28.03.2001]2.2>Q: frame-relay traffic shaping?
A: ��� ����� �. ���ࠤ��
Configuring and Troubleshooting Frame Relay
[18.01.2001] (Slawa Olhovchenkov) Frame Relay Switch over IP Tunnel
===========================================================
3. X.25
===========================================================
���� �⢥⮢ - Eugene Zhilitsky, � �� 㪠���� ����.
Q: [DOS-COM1]--a1[Cisco2509]--[Cisco2522]-- -[?]--[UNIX-APP]
H� Cisco2522 �믮������ �࠭���� TCP � X.25, � 2509 ����
������ telnet �� �࠭�㥬� ����. H�, ������ � �H����設�
�����, � �������� ���.
����� �࠭��樨 � binary � stream, � telnet /stream � � ��묨
��ࠬ��ࠬ� � � � ��㣮�. � ��䠩� � ⨯�
x29 profile aaaa 2:0 3:0 4:100 7:21 11:14, � ����� ��ᯥਬ���.
A: (Eugene Zhilitsky)
4:100 - �� �祭� ����, ������� ������ ���� �室��� ⮫쪮 �१ 100*0.05=5 ᥪ㭤!
1. �࠭���� � ⥫��� ������ ���� stream.
2. x29 profile aaa 1:0 2:0 3:2 4:5 5:0 8:0 9:0 10:0 12:0 15:0 22:0
3:2 - �� ��� "��䨫��⨪�", �⮡� �� ^M ������ �室��� �ࠧ� ��, ������ �� ��蠥� (� �祭� ।��� ᯥ樠���� �ਫ�������). ����� �⠢��� 3:0.
3. �� �ᨭ���� ����� (a1[Cisco2509]), � ���� ������祭� ��ᮢ�� �窠:
escape-character NONE
telnet transparent
4. ��� �, ����� ��ᮢ�� �窠 ��室�� �� ����� ��� - noesc.
5. H� ��� vty, ����� ����� �ᯮ�짮������ ��� �࠭��樨 ���� ⠪��:
escape-character NONE
telnet transparent
6. ����� ����� ��� ���� ��ப ����� �ᯮ�짮���� ����:
terminal-type download
��� ᯮᮡ ���᪠���� ���� �� RU.CISCO (�� �����⭮ �� ����� :-(.
H� �த� �� ����� ��祣� �� ���� :-))))) ������ ࠡ����.
Q: ��� ����ࠨ���� �25?
A: ���� ���⮥ ������� �ࠢ���: �� ��ࠬ���� labp (hdlc) � �25
������
���� ��������묨 �� ����� ����� �����, �� ������� DTE/DCE -
�� ������ ���� _ࠧ��_. �� ⮣�, �� ���� ���뢠��, �� ࠧ��� ����� �� �� ��� (lapb) �� ��᪥ 㪠�뢠���� � _����_,
� � ����設�⢠ ��㣨� �ந�����⥫�� - � _�����_.
Q: ����, �� �� ���� �25-box'� ���� ��ࠬ��� "��㯯� �����᪨� 3.3>�������",
� � ��᪥ � ⠪��� �� ��襫. �� ������?
A: ������ ������ � �⮬ ��ࠬ��� �������� 256 � ������ �������
������. H��ਬ��, �� �25-box'� ⠪�� ��ࠬ����:
��㯯� �����᪨� ������� - 4
H���� ��ࢮ�� Two-way VC - 1
������⢮ Two-way VC - 16
����� �� ��᪥ ���� ���⠢���:
x25 ltc 1025
x25 htc 1040
Q: � �ய�ᠫ �࠭���� �25-���, �� ��� �� ࠡ�⠥�, ��᪠ ����� ��� �뤠�� Username: (����᪠���� exec). �� ������?
A: � ��� ��� �࠭��樨 �ᯮ������ ⠪�� �� �25 ���� ��� � � x25
address �� Serial. �ᯮ�짮����� Call User Data (cud) � �࠭��樨 ��
ᯠᠥ�. ���� ������ ���� ࠧ�묨, ���ਬ��, ������ �25 ���� �
�࠭��樨 � ������� ������ᮢ.
Q: ��-�� ������ ���� �ᯮ�짮���� ������� � �� ����.
A: ����� ���� 㤠��� x25 address �� ���䨣��樨 Serial. ��� ��ࠬ��� �ᯮ������ � ��室��� ������ �맮�� ��� ���� ���筨��. � ��� 㤠����, � ������ �맮�� ���� �室��� � ����� ���ᮬ ���筨��.
�ࠪ��᪨ �� �25 �� �ॡ���, �⮡� ���� ���筨�� �� 㪠��� �ࠢ��쭮, ���� �� �����, ⠪ �� �� ������ ࠡ���� � ��� ����.
Q: ��! �࠭���� ��ࠡ�⠫�. H� ����� �������, ���� �⮡� �� 3.6>�맮� �
Call User Data (cud) ����᪠���� �࠭����, � �� �맮� �� ⮬� �� �����
��� cud ����᪠��� exec.
A: �ய��� ��� ���� �१
x25 routing
x25 route alias Serial
Q: H� y ���� ��� ����p��� Cisco <--> Eicon �� X.25.
���� �� � ��p��� Cisco.
PPP � Frame Relay ���y稫���, � ��� X.25 �����. � ����.
A: (john gladkih)
direct connection?
interface Serial1
description x.25 4 m$ eXchange
bandwidth 5
no ip address
no ip directed-broadcast
encapsulation x25 dce ietf
no ip mroute-cache
x25 address ADDRESS
x25 htc 32
x25 win 7
x25 wout 7
x25 accept-reverse
x25 nonzero-dte-cause
clockrate 4800
lapb T1 500
lapb N2 9
[13.06.2000] 3.8>Q: ���᪠��� �������� ��� ��⠫쭮 ��ࠡ��뢠�� ⠪�� "���祪" translate: translate x25 03 cud 4411 profile NUL ppp ............
A: (Vasily Ivanov)
����� �� ��p����뢠��, �.�. ��� ����p��� � ��p��� ��᪨ 墠⠥� ����� � ��p���� �����襣��� ���p䥩�. ��⠢��� ��� ᮢ���⨬��� � ��p묨 ������. ��p���� ���� �ᯮ�짮���� translate x25 12345 virtual-template 1. � ��⠫쭮
� ��p⨭���� ᬮ�p� �� Configuring Protocol Translation and Virtual Asynchronous Devices
[05.09.2000] 3.9>Q: � ��� �ᯮ���� ��� � ������� ����� ���㦤��� ����� pad ����㯠 �१ xot � ����� x.25 ��� �� �⥫� �ਭ����� �맮�� � facilities ����� �� xot ���������. �� ���㠫쭮?
���� ���� �楯�. �� �� �ॡ�� 12.1 ;) (��� � ����� �
�����ᨨ �� �� � annex-g? ⮣�� 12.1 ���� ������)
A: (john gladkih)
ok. ���� � annex-g, �� �� ������� x25 switch:
service pad to-xot
service pad from-xot
service tcp-keepalives-in
service tcp-keepalives-out
!
frame-relay switching
!
x25 profile test dte
x25 address 61273
x25 htc 32
x25 win 7
x25 wout 7
x25 ips 1024
x25 ops 1024
x25 nonzero-dte-cause
x25 subscribe flow-control never
lapb modulo 128
x25 routing acknowledge local
!
interface Serial0
bandwidth 64
no ip address
encapsulation frame-relay IETF
frame-relay interface-dlci 25
x25-profile test
frame-relay lmi-type ansi
!
x25 route ^6127305 xot 10.10.0.21 xot-keepalive-period 10
x25 route .* source ^$ substitute-source 6127305999 interface Serial0
dlci
25
x25 route .* interface Serial0 dlci 25
�⪫�祭�� ᮣ��ᮢ���� flow-control �� ����䥩� ���
�맮���.
ࠧ���� �������� ���ᡮ�� ����⮢.
pad call �१ xot ��室�� c ����� src address � �� src
��� ������塞 �� 6127305999
� ��㣮� ��� xot ��祣� �ᮡ������:
x25 route ^612.* xot 10.10.0.118 xot-keepalive-period 10
xot-keepalive-period ��� ��� ��� �����.
[19.10.2001] 3.9>Q: X25 node address, � � � ��� ��騩 ���� 㧫�,
��������� ��� � �����म� 㪠�뢠����? ��� � �᪨ ��� ⠪���, � ����
㪠�뢠�� ���� ��� ������� �25 ���� ��� ������-� ����砭�� PVC?
���� ���⠢�塞� �� �25 ����� ����� ����� ��� ��:
1. ���� �����, ����� ������ � ��楤�� �맮��.
2. ���� ᮡ�⢥��� �������. H� �맮� �� ���� ������ �������� ����䥩� (������ � �� - exec).
� "�����" �25 ����� �� ���� ࠧ������� � �������� �⤥�쭮.
� ��᪥ �� �� ⠪. ��� ����� 㬥�⭠ �������� � IP-���ᮬ �� ����䥩�. ������ ���, ����砥� �ࠧ� ��� ���:
1. ����� ��� �ᯮ�짮���� ��� ���� ����䥩� (���ਬ��, � ������⨧�樨).
2. ��� ���� ����㯠�� ��� ���� ����, �.�. ⥫��⮬ �� ���� ����� ������� exec.
�25 � ��᪥ ᤥ���� �������筮. ���� ����䥩� �ࠪ����� ��� ���� ����� � ������ � ��楤��� �맮���. � ��� ���� ᮡ�⢥��� ���ன�⢠. �� �� �ᥣ�� �������, ������ �� �㦭� ࠧ����. ��� �⮣� ���� ᯥ樠��� �������. H��ਬ��, �⮡� ��᪠ "�⪫�������" �� ����, �� �� �� ���⢮��� � ��楤��� �맮��, ��� ����� ������ �१ Alias (� FAQ ���� �ਬ��).
[02.12.2001] 3.10>Q: � �� ���᪠��� ��������� ���� ��䨫� x29 ��� �᪨?
����� �⮨� ��� ⠪��:
x29 profile default 1:0 2:0 3:0 4:1 5:0 7:0 9:0 10:0 12:0 13:0 14:0 16:0 17:0 18:0
H� ��祭 :( H� ��室��, ॥-�ᥣ�, xon/xoff.
A: (������� H���ᥫ��)
� ��� ࠡ�⠫� �����-�
x29 profile default 1:0 2:0 3:2 4:2 5:0 6:5 7:21 8:0 9:0 10:0 11:16 12:0
13:4 14:0 15:0 16:8 17:24 18:2 19:0 20:0 21:0 22:0
� ��� ��㣨� �㦤� (����� �� ����� �� ��⠩�)
x29 profile tdt 1:0 2:1 3:2 4:0 5:0 6:0 7:21 8:0 9:0 10:0 11:16 12:0 13:0
14:0 15:0 16:127 17:24 18:18 19:0 20:0 21:0 22:0
A: (john gladkih)
x29 profile default 1:1 2:0 3:127 4:1 5:0 6:0 7:0 8:0 9:0 10:0 12:0 13:0 14:0 15:0 19:0 21:0
A: (Serge Patokov)
1:0 2:0 3:0 4:1 5:1 6:0 7:21 8:0 9:0 10:0 12:0 13:0 14:0 15:0 18:0 19:0 21:0
[08.10.2002] 3.11>Q: � �� ����� ����� SWIFT ��१ ����? ���ਯ�� �� ��������...
A: (Shpak Vladimir)
������, ࠡ�⠥�.
��� ⠪�� �奬�: CyLink(encryptor)<----x25---->cisco1720<-----AnnexG----->cisco2610<-----x25----->To x25 network
���ਯ�� CyLink. ���쪮 ���� ᮢᥬ �� � ���.
��᪠ �� �ய�᪠�� ������� facility.
������ ���⮩ �������� "x25 version 1993" �� x25 ����䥩�.
[11.11.2002] 3.12>Q: ���� ����䥩� BRI, �� ����� ��室�� IP ������, ������㫨���� � �.25. H��� �� �ਭ���, ������ � ��ࠢ��� ����� �� Ethernet.
A: (Oleg V Prokofiev)
X.25 over ISDN Bi-Directional Call
Configuring X.25 on ISDN
===========================================================
4. ACL
===========================================================
Flexible Packet Matching for Cisco IOS XE
Q: ���������樨 �� access-lists ��� ����� �� �⠪ �� ����.
������ ४������樨 � ᮮ�ࠦ����.
aaa.bbb.ccc.ddd, naa.nbb.ncc.ndd - ᮮ⢥��⢥��� � ��� � ��᪠. wba.wbb.wbc.wbd - wildcard bits
������ !!! � access-list �ᯮ������ �� netmask, � wildcard bits.
���� ��⪠� ��㫠, �� � �।����� ���짮����� ⠪�� -
WB=255-NM
⠪�� ��ࠧ��, � netmask 255.255.255.0 � access-list
������ 0.0.0.255
! deny all RFC1597 & default
no access-list 101
access-list 101 deny ip host 0.0.0.0 any
access-list 101 deny ip 10.0.0.0 0.255.255.255 any
access-list 101 deny ip 127.0.0.0 0.255.255.255 any
access-list 101 deny ip 172.16.0.0 0.15.255.255 any
access-list 101 deny ip 192.168.0.0 0.0.255.255 any
! deny ip spoofing
access-list 101 deny ip aaa.bbb.ccc.ddd wba.wbb.wbc.wbd any
! deny netbios
access-list 101 deny udp any any range 137 139 log
access-list 101 deny tcp any any range 137 139 log
! deny Back-Orifice
access-list 101 deny udp any any eq 31337 log
! deny telnet
access-list 101 deny tcp any any eq telnet log
! deny unix r-commands and printer, NFS, X11, syslog. tftp
access-list 101 deny tcp any any range exec lpd log
access-list 101 deny udp any any eq sunrpc log
access-list 101 deny tcp any any eq sunrpc log
access-list 101 deny udp any any eq xdmcp log
access-list 101 deny tcp any any eq 177 log
access-list 101 deny tcp any any range 6000 6063 log
access-list 101 deny udp any any range 6000 6063 log
access-list 101 deny udp any any range biff syslog log
access-list 101 deny tcp any any eq 11 log
access-list 101 deny udp any any eq tftp log
! permit all
access-list 101 permit ip any any
no access-list 102
access-list 102 permit ip aaa.bbb.ccc.ddd wba.wbb.wbc.wbd any
access-list 102 deny ip any any
int XXX
ip access-group 101 in
ip access-group 102 out
Q: �����, ��������, �ਬ�� access-list'� ( ���� ������� ���
����㯠 ����� �� ����७��� ��� �� ����� - ��⠢��� ⮫쪮
����������� ࠡ��� �� http � e-mail) Cisco - 1601 ��࠭�� �������७.
A: (Alex Bakhtin)
�⠪. ���� ��� ���⥣�� �� ��⠭���� �����-���⮢:
1. ������� �� ���᭮�, ������ �� ��⠫쭮�.
2. ������ �� �㦭��, ������� �� ��⠫쭮�.
� ���譥� FAQ�, ����� �� ��४���������, ������� �ਬ��,
����ᠭ� ������ �� ��ࢮ�� �ਭ樯�. H� �㤥� ���㦤��� �२����⢠ � ������⪨ ������� ���室�, ���쪮 � �������, � ��� ���� ������� �ᯮ�짮���� ��ன. � �������� ������ �����筮 㭨���ᠫ��� ��⮤���, ����� ����� ���� �ᯮ�짮���� �� ������� ����� ��ண� ⨯�, � ��⥬ �ਢ��� �ਬ�� ॠ�쭮 ࠡ���饩 ���䨣��樨. �ࠧ� ��� ᪠����, ��
�� ��������ᠭ�� - �� ��� ��� IMHO. �।���������� ࠧࠡ�⪠
access-list�, ��࠭�稢��饣� ���������� ����㯠 _�����_ � �������� ���,
� �� ��࠭�祭�� ���������⥩ �� ��室� ����� �� �����쭮� ��.
�⠪.
H���� ����� ��� � ��⥬�⨧�樨 ⮣�, �� ��, ᮡ�⢥��� �⨬ �������. ��� �⮣� �।����� ����ந�� ������ ⠡����:
! ! ! ! !
!www !mail!ftp!binkd!� ⠪ ����� - ����� ���稫塞 �ࢨ��
! ! ! ! !����� � ����� �� �⨬ �।��⠢���
! ! ! ! !���짮��⥫� "�����" ------------!----!----!---!-----!---------------------------------------- www.qq.ru ! X ! ! ! !
relay.qq.ru ! ! X ! ! !
ftp.qq.ru ! ! ! X ! !
any ! ! ! ! X !
����� ����/
��㯯� ��⮢,
����� �।��⠢���� ᮮ⢥�����騥 �ࢨ��. ���冷� �ᯮ������� ��⮢
� ⠡��� �����. ���� ��� �ࠢ���:
a. ��騥 ��।������ ����室��� �ᯮ������ ��� ����� ����. �� ���� host
10.0.1.1/32 ������ ���� �ᯮ����� _���_ 祬 subnet
10.0.1.0/24. ���⢥��⢥��� � ᠬ�� ������ ����� ������ ��-�
⨯� any.
b. � ��砥, � �� �ࠢ��� a. ����뢠����, �� ���冷� �����-�
�������� ��ப ����� ���� ��� (��� � ��襬 �ਬ�� www, relay � ftp
����� ���� ������ � �� ���浪�, �� ��易⥫쭮 ��� 祬 any), �
�� ����� ��᮪�� ����樨 ���� �⠢��� ����, ������⢮ ���饭�� �
����� �� �⬥祭�� �ࢨᠬ �।���������� ����訬. � ��襬 ��砥 ��
�।��������, �� �᭮��� ������ ���� ����㯠�� �� www �ࢥ�, ��⥬
�㤥� ��।������� �����-� ������⢮ ����� � � ᮢᥬ ���� �㤥�
����ᮢ �� ftp.
�� ��⠢�����, ��ન �, �� ����������, ��⨬���樨 ⠪�� ⠡���� (����� �� ����� �����筮 ⢮��᪨� � ���ਢ�����;-)) ����� ���室��� ᮡ�⢥��� � ����ᠭ�� ��ࢮ� ���ᨨ access-list�. ��ࢠ� ����� �㤥� �ࠪ��᪨ ���쪮� ��襩 ⠡����.
ip access-list extended Firewall
permit tcp any host www.qq.ru eq www
permit tcp any host relay.qq.ru eq smtp
permit tcp any host ftp.qq.ru eq ftp
permit tcp any any eq 24554
������ ��ப� �� 㬮�砭�� �ਭ������� �� deny ip any
any. �����᪨, ������� ��ࢮ� ���ᨨ access-list� �����祭�. �� �� ������, �⮡� �த������ ࠧ������ ��� access-list? � ����� ���� ��
������塞 ���� �����
deny ip any any log
����� �� ⮫쪮 ������ ���� ��⠫쭮� ��䨪, �� �뫮 ᤥ���� ��-㬮�砭��, �� � ���⠢��� �뤠���� �� ���᮫�/������/syslog ᮮ�饭�� � ������, ��������� ��� �� �ࠢ���. � �����, � ����ᨬ��� �� ⮣�, ����� �ࢨ�� �� �뫨 ��⥭� � ��襬 ����(ᮮ�饭�� �� ���襭�� ������ ���� �믠���� �� ���᮫�), ����� �㤥� ��ࠡ��뢠�� ��� access-list. ��� �ਬ��� ᮮ�饭��:
%SEC-6-IPACCESSLOGP: list firewall denied tcp xxx.xxx.xx.xx(1418) ->
%xxx.xxx.xxx.xx(23), 1 packet
%SEC-6-IPACCESSLOGP: list firewall denied udp xxx.xxx.xxx.xxx(4000) ->
%xxx.xxx.xxx.xx(1038), 1 packet
%SEC-6-IPACCESSLOGP: list firewall denied udp xxx.xxx.xxx.xxx(53) ->
%xxx.xxx.xxx.xx(1041), 1 packet
%SEC-6-IPACCESSLOGP: list firewall denied udp xxx.xxx.xxx.xxx(53) ->
%xxx.xxx.xxx.xx(1044), 1 packet
%SEC-6-IPACCESSLOGP: list firewall denied udp xxx.xxx.xxx.xxx(53) ->
%xxx.xxx.xxx.xx(1047), 1 packet
%SEC-6-IPACCESSLOGP: list firewall denied udp xxx.xxx.xx.xx(49869) ->
%xxx.xxx.xxx.xx(33456), 1 packet
%SEC-6-IPACCESSLOGP: list firewall denied udp xxx.xxx.xx.xx(49869) ->
%xxx.xxx.xxx.xx(33458), 1 packet
��� ᮡ�⢥��� � ��;) H��� �� ���뢠�� ���뢠�� _��_�室_ ����
domain - �⮡� � ��� ��室��� �⢥�� �� ��� dns ������. active ftp - �� ����� �⤥�쭠� ����. ��� �ਬ�� ॠ�쭮 ࠡ���饣� access-����, ��, ࠧ㬥����, �� �������, �� ࠡ�⠥�;) ��, ���� �� ���뢠�� ���뢠�� established. �� ����� ; - ��� �������ਨ.
===================
ip access-list extended firewall
permit tcp any any eq smtp ; �� ���� �ਭ����� ����� �� smtp
permit tcp any any eq domain ; ��� ���窨 �� dns
permit udp any any eq domain ;
permit tcp any any eq 22 ; ssh
permit tcp any host fido.qq.ru eq 24554 ; binkd
permit tcp any any established ; ��� ��� ᠬ��
permit tcp any host www.qq.ru eq www ; www-�ࢥ�
permit tcp any host images.qq.ru eq www
permit tcp any host www.qq.ru range 8100 8104 ; ��� ��� ������
permit tcp any host images.qq.ru range 8100 8104
permit udp any any eq ntp ; �� ��設� ����� ������� �६� � ���譨� ntp
permit tcp any any range 40000 44999 ; 㦥 �� ����� ��� 祣�:-((
permit tcp any any eq ident
permit icmp any any
permit tcp any eq ftp-data any gt 1023; ��� active-ftp
deny ip any any log
===================
P.S. ��� ⮣� �⮡� � ���� ��-⠪� �뫨 ����� ���⮢ ����:
deny tcp any any range 0 65535 log
deny udp any any range 0 65535 log
P.P.S. (Anatoly Gerasimov)
��� � ������� - �� ��易⥫쭮. ��� ⮣� �⮡� � ���� ������ ����p� ��p⮢ �p��� deny ip any any log ����室��� �⮡� � access-list ����⢮���� ��� �� �� ������ �p�����, ������饬� port ��� ��� tcp ⠪ � ��� udp.
Q: ��� ᤥ���� transparent-proxy ?
A: (DY)
��� SQUID'a SQUID Frequently Asked Questions: Interception Caching/Proxying
��� oops'a oops F.A.Q.
[19.06.2001] (Denis V. Schapov) ������� ������ �⥫� ������ transparent proxy �� ����� PBR
(route-map).
Access Control Lists and IP Fragments
[27.04.2001] (Max T) Cookbook for setting up transparent wccp caching using squid and a cisco access server
[05.10.2001] How To Make a Transparent WWW Proxy
Q: Dynamic ACL.
A: ��� (Oleh Hrynchuk)
You can use timed access-lists in IOS 12.x
You will need the router to synch to a clock source
for accuracy though..
for example:
int ser0/0
ip access-group 101 in
!
access-list 101 remark --FOR THE QUAKE 3 PLAYERS AT THE OFFICE--
access-list 101 permit udp any any range 27850 27999 time-range lunchtime access-list 101 deny any any
!
time-range lunchtime
periodic weekdays 12:00 to 14:00
periodic weekend 00:00 to 23:59
!
ntp source loopback0
ntp server
!
[13.06.2000] 4.5>Q: ��� ࠧ���� ��室��� �� ���� ⥫��⮬ ⮫쪮
� ��।������� ��⮢ ?
A: (Gosha Zafievsky)
access-list 11 permit host 192.168.1.1
line vty 0 4
access-class 11 in
===========================================================
5. Traffic-shape, QoS
===========================================================
[07.12.2001] (Denis V. Schapov) Policing and Shaping Overview
��� �� ��㫠 ��� ���� ��ࠬ�� CAR
Comparing Traffic Policing and Traffic Shaping for Bandwidth Limiting
(Denis V. Schapov) How to Classify All Interface Traffic with a Single Policer
(Slawa Olhovchenkov) Applying QoS Features to Ethernet Subinterfaces
Configuring QoS Catalyst 4500 Series Switch Cisco
Q: ��� ������ ��室�騩 ftp-��䨪 ?
A: (Vasily Ivanov)
��� Active-FTP
access-list 115 permit tcp host 123.123.123.123 eq ftp-data any gt 1023
��� Passive-FTP
access-list 115 permit tcp host 123.123.123.123 any eq ftp
Q: ��� ᤥ���� traffic-shape �� tun ?
A: (DY)
��� �������� ��᮪ ࠡ�祣� ���䨣� �� 4000.
interface Tunnel1
ip address xxx.xxx.xxx.xxx 255.255.255.252
tunnel source aaa.aaa.aaa.aaa
tunnel destination bbb.bbb.bbb.bbb
!
interface Ethernet0
ip address aaa.aaa.aaa.aaa 255.255.255.224 secondary
traffic-shape group 122 32000 8000 8000 1000
!
no access-list 122
access-list 122 permit ip host aaa.aaa.aaa.aaa host bbb.bbb.bbb.bbb
access-list 122 deny ip any any
P.S. Vyacheslav Furist
������� ���� �뫮 ��
access-list 122 permit gre host aaa.aaa.aaa.aaa host bbb.bbb.bbb.bbb
Q: ��� ������ �室�騩 ��䨪?
A: "Boris Mikhailov"
�� �室� ������� policyroute, � ��� ������ 墠��.
�� ������� �� �� 11.2(���-� 12~13) traffic-shap
�ਢ� ���몠���� � �� 襩��� (�祭� ���� ����� �� ࠭��).
access-list 180 ����뢠�� �p��䨪, ���p� ���� 襩����
interface Loopback1
ip address 192.168.11.1 255.255.255.255
traffic-shape rate 64000
!
interface Serial0
ip policy route-map incoming-packets
!
access-list 180 permit ip any 192.168.1.0 0.0.0.255
!
route-map incoming-packets permit 10
match ip address 180
set interface Loopback1
Q: Bandwith, queue
A: (Alex Bakhtin)
�᭮��� ��ࠬ��, ����� ����� �� ��।������
������ �ய�᪠��� �� custom queuing, ���� byte-count. queue length ��
�� ���� ����� ����. �⠪. �����⨬, � ��� ���� ⠪�� ��� queue-list:
c4000-m#sh queueing custom
Current custom queue configuration:
List Queue Args
1 1 byte-count 6000
1 2 byte-count 3000
1 3 byte-count 4500
��⠫�� ��।� �� 1500. ����⭮, �� ������� bandwith ���
������ �� ��।�� �� ��������. ���������� ��।��, ����⭮, �ந�室�� �� �᭮����� �����-� ���ਥ�, ����� � � ������ ��砥 ��
���뢠�. �����, �� ��稭��� ��室��� �� 17 ��।�� ��稭�� � �㫥��� -
1. ��।��� 1500 ���� �� ��।� 0 (� ⠬ ���� ������)
2. ��।��� 6000 ���� �� ��।� 1
3. ��।��� 3000 ���� �� ��।� 2
4. ��।��� 4500 ���� �� ��।� 3
5. ��।��� 1500 ���� �� ��।� 4
.....
17. ��।��� 1500 ���� �� ��।� 16
�����⨬, �� �� �ᯮ��㥬 ��� ��襣� ��䨪� ⮫쪮 ���� 4
��।� - � ��⠫�� ��।� ��䨪 ������� �� ��������. ���⢥��ᥭ��, � �।��� �� ���� 横� �㤥� ��।���
S=1500(q0)+6000(q1)+3000(q2)+4500(q3)+1500(q4)=16500 ����
���⢥��⢥���, ��� Q0 �㤥� �뤥����
B0=1500/16500~=9% BW
B1~=36% BW
B2~=18% BW
B3~=28% BW
B4~=9% BW
�� ���� ॠ���� ������ �ய�᪠��� �������� �ய��樮���쭮 �ᯮ��㥬� ��।�. ���⢥��⢥���, ॠ��� bandwith �� ������ ��।� �������� � ������� ��ࠬ��� byte-count, �� indirectly, ⠪ ��� �� ������
�� � �ᯮ��㥬�� ॠ�쭮 ��।�� � �� �ய�᪭�� ᯮᮡ����
����䥩�.
����� ���祭��, ࠧ㬥����, ���� ���� ⮫쪮 �� �����筮 ��쥧��� ��।�����. ��易�� �� � ⥬, �� � byte-count ����뢠����
� ����� ��।�� �����, ����� �� ࠢ�� ��।����� �� ���� - � ���� ॠ�쭠� ���������� ����� �㤥� �����. ��, �� ����ᠭ� ��� - �� �����
祬 ����� ⥮���᪨� �몫���� �� ࠡ�� � �������� �����. ����쭮
�� �� ���祭�� ���� ��������, ���������� �।��� ࠧ��� ����� � ��
⮫쪮;)
Q: Traffic-shape �� Loopback'e, Tunnel'� ���� ��� ��� ?
A: (Alex Bakhtin)
H���� �६� ����� ��� ����������� 襩��� ��
BVI ����䥩� � �裡 � 祬 � �����筮 ��쥧�� ��������� �⮩
������. �⠪.
1. ������ ࠡ�⠥�. � 12.x - <=12.0(2a), � 11.3 ⮦� �� �����-� ���ᨨ.
2. ������ ࠡ�⠥� �ਢ� - 襩��� ⮫쪮 process-switched ������. (btw, ��
��� ࠧ ��稭� ⮣�, �� 襩��� �� ��㯯� �ᨭ��� �१ policy-route
ࠡ�⠥�)
3. ������ �� ����㠫��� ����䥩�� (����묨 ����� BVI, loopback �
Tunnel) unsupported by Cisco. �� ���� ��樠�쭮 ��� ���. ��, �� ��
࠭�� �� - �� ��� ⠪�� � ����� ���䨣��/��������� ��ப�, �����
������� ��� �������. � ���뢠� �� �⮬� ������ ���� � �᪥ - ���
�।������ ���� ४���� �� ���.
��� ��, �����, �� �����⥫�� ᯮᮡ 襩���� �� �㯡���
�ਤ���� ������ � �ᯮ������ 11.3 ��� 12.x:-((
Q: ��� ������ �� ?
A: (Alexander Kazakov)
� ��饬 � �⤠� ����ﭭ� 32� ��� ��. �� p���⠥� � ������ ���� ���p������. �p���-p���� ������ ���� �� �⠫, ��� ᭠砫� �p������� �� �⥭����� ��誥.
��� ���頫 - p���稩 ���䨣:
=== Cut ===
interface Serial2/0
description xxx XXX
ip address aaa.bbb.ccc.ddd 255.255.255.0
no ip route-cache
no ip mroute-cache
bandwidth 128
ipx network B021
ipx accounting
priority-group 2
traffic-shape group 191 32000 8000 8000 1000
!
access-list 191 permit tcp any any eq ftp
access-list 191 permit tcp any any eq ftp-data
priority-list 2 protocol ip medium list 101
priority-list 2 protocol ipx low
priority-list 2 protocol ip high tcp telnet
priority-list 2 protocol ip high udp snmp
priority-list 2 protocol ip high tcp echo
priority-list 2 protocol ip high udp echo
Q: ��-� �⠫������� � ����祩 ᮢ������ �����-����� �ਮ�⨧��� ��䨪� � IPsec? �����᭮ ⮬�, �� � ��襫 � ᠩ� � ����� � Priority Queuing, QoS "ࠡ�⠥�" � ᠬ�� ����, �� ��� access-list, NAT, fw, cef, ipsec, etc.
�.�. � � ��� ��-� �ਯ⮢���, �� ࠧ������ "��" �� �ਮ���⠬ 㦥
�� ᬮ��. ������ �����: �� ������?
A: (Denis V. Schapov)
qos pre-classify
71xx/72xx
Quality of Service for Virtual Private Networks
Quality of Service for Virtual Private Networks
26xx/36xx
Quality of Service for Virtual Private Networks
17xx - 12.2(8)T
Quality of Service for Virtual Private Networks
� �.�.
��� 26xx,36xx - 12.2(2)T4 ������
��� 17xx - ����� �������� 12.2(4)YB
===========================================================
6. Routing
===========================================================
IP Routing Protocols
BGP Case Studies
BGP (Border Gateway Protocol)
(Slawa Olhovchenkov) Why Are Some OSPF Routes in the Database but Not in the Routing Table?
Why can't I filter OSPF
Q: ���� ��� Cisco2511, ����� ������ ᮥ������� ���� �������,
���� �१ serial, ��ன �१ async, ��� ����� �� �뤥������.
� �⮬ ���� ���, �� ����� ����� ���H ����� �१ ����������
�����. �� ���� ����, �� �� ����� ���������� ⮫쪮 ⮣�� �����
��� ����� �ய����.
A: (Vasily Ivanov)
ip route <��p�� �㤠 ���� �������> <��᪠> <��p�� �� ������p㥬�� int.> 216
�� �p�⮪��� p�⨭�� ����� ���p��� <= 200, ���⮬� ������ ��p�窠 ����� � �����쭮� ⠡��� p�⨭�� ⮫쪮 ����� 㯠��� ��� ⢮�� ���p䥩�. ����� main-���� ����⠭������, ��� ����� �㤥� ���p� �p�⮪����� p�⨭�� �� ⠡����, � �᪠ ��筥� �����뢠�� dialer idle-timeout �� �p�ᠭ�� �p��.
Q: ���᪠��� �� ���� 襯���� ��᪥, �⮡� ��� �����ᨫ� ਯ��
�� Ethernet ppp-����� � ��� /32, � �� ���ॣ�����
�� � ������.
A: Dmitry Morozovsky, Mike Shoyher, Gosha Zafievsky
router rip
version 2
! ���� �������
redistribute static subnets
no auto-summary
! ���� �� ����蠥�
redistribute connected subnets
Q: OSPF, RIP
A: (Alex Bakhtin)
router ospf 10
redistribute connected metric 1 subnets route-map only_public_net
redistribute static metric 1 subnets route-map only_public_net
redistribute rip
network 194.186.108.0 0.0.0.63 area 0
!
router rip
version 2
redistribute connected route-map only_public_net
redistribute static route-map ony_public_net
redistribute ospf 10 metric 4
redistribute ospf 200 metric 4
network 194.186.108.0
neighbor 194.186.108.10
neighbor 194.186.108.138
!
���㬥����, �⮨� ip classless � ip subnet-zero.
Q: � ���� ��� ����� C, � ���ன ������ �� �� ����. � �� 6.4>������
��室�� ����� �� ���������騩 ���� (��� �⢠���襣��� dialup-�)
� ��� Cisco � Cisco �⮣� ������ ��稭��� �⨬ ����⮬ ��ॡ��뢠����. ��祬� �� � ��� �� �⮣� ����������.
A: (Basil (Vasily) Dolmatov)
� ������ �⮨� route �� ���� ��� ����� C.
� ���饩 (��襩) Cisco �ய�ᠭ� ⮫쪮 routes, ����� ��� ���᭨�� �� ���ᮢ ��⨢��� ����䥩ᮢ � �����- ���� ��⨭�-��⮪����. ��⠫쭮� ������ �� default route, � ���� �� ������.
��� �⮣� ��������?
� Cisco ���� �����⥫�� ����䥩� Null0. ���䨣������� �� �ᥣ� ����� ��������:
int Null0
ip unreachables
������ �����筮 �������� �� ���� route � ���䨣���� Cisco (�।�������, �� ��� ����� C - 193.193.193.0/24)
ip route 193.193.193.0 255.255.255.0 Null 0 100
� �⮬ ��砥, � ���� �ᯮ������, � route �� ���� �����⥭ Cisco,
� ������ ��� route � �㤥� ��⨢�� (����� ��� ���ਪ� �����),
� �� ���� �������⥭, � ��⨢�� �⠭�� route �� Null0 � Null0
�⢥�� �� ��襤訩 ����� icmp !H. �� ����, �������� ����-����� ��
������ 㦥 �� �㤥�.
����, ४��������� �� �ய���� ⠪�� �� routes ��� private-networks,
�� �।����� �� ��砩��� ����뢠��� � ��� ������.
ip route 10.0.0.0 255.0.0.0 Null0 100
ip route 172.16.0.0 255.240.0.0 Null0 100
ip route 192.168.0.0 255.255.0.0 Null0 100
Q: ���� ��� ������ � �����ࠬ, ���� ��� �⪨, ��� ᤥ����, �⮡�
������ ��� 室��� �� ��� ������ ?
A: (Dmitriy Yermakov)
policy-routing, �ਬ�� ���� �� CD.
��� �ਬ�� ( � �祭� ���⮬ ��砥 )
access-list 110 permit ip aaa.aaa.aaa.0 0.0.0.255 any
access-list 111 permit ip bbb.bbb.bbb.0 0.0.0.255 any
route-map XXXX permit 10
match ip address 110
set default interface Serial 0
route-map XXXX permit 20
match ip address 111
set default interface Serial 1
int eth 0
ip policy route-map XXXX
P.S. [29.11.2001] 2 ������, 2 ������, 2 ��, policy routing + NAT + backup
6.5.1>Q: � ��� ��� ᤥ���� �⮡� �� aaa � bbb ����� ������� �p� � 6.5.1>�p㣮�
�� �p�室� �p�� �� �p������p�� ?
A: (Denis V. Schapov)
+ access-list 110 deny ip aaa.aaa.aaa.0 0.0.0.255 bbb.bbb.bbb.0 0.0.0.255
+ access-list 111 deny ip bbb.bbb.bbb.0 0.0.0.255 aaa.aaa.aaa.0 0.0.0.255
��� ��
����� set default interface �ᯮ�짮���� 'set ip default next-hop' (�
⠡��� ��⨭�� ������ ���� �������� �� aaa.aaa.aaa.0 � bbb.bbb.bbb.0)
���� "ࠧ�易��" �� �� �� �室� �� ��� ������⨧���
6.5.2>Q: ��� ��४����� ��⨭� �� ����᭮�� ������ �� ������� 6.5.2>�᭮�����? ��㣠 �������� �� �����.
A: (Oleg A. Lebedev)
Tech Tips and Training: Static and Policy Routing Enhancements
A: (Denis V. Schapov)
Enhanced Object Tracking
A: (Alexander V. Klepikov)
Ethernet/DSL+ISDN-backup
Q: � ��������� �� ��-����� URL ��� ���� ᥪ�⮬ ����᪠ OSPF
����� Gated � Cisco ?
A: (Alex Bakhtin)
� gated � � Cisco �� 㬮�砭�� ���⠢���� ࠧ�� hello/dead ���ࢠ��.
������ ���⠢������ ᮮ⢥������� ���ࢠ��� � gated.
P.S. (DY) � ������ GateD ����� � ���ࠢ���, deb ip ospf
������� ���᭨��.
A: (Basil (Vasily) Dolmatov)
Ospf yes {
backbone {
authtype none;
interface aaa.bbb.ccc.ddd
cost 1 {
retransmitinterval 5;
transitdelay 1;
priority 0;
hellointerval 10;
routerdeadinterval 40;
};
};
};
import proto ospfase {
ALL ;
};
export proto ospfase type 1 {
proto ospfase {
ALL
metric 1; };
proto static {
All
metric 1; };
proto direct {
ALL
metric 1; };
};
Q: ���� ����᪨� �����y�: ip route 0.0.0.0 0.0.0.0 Serial 0/0
��� ��� �᪫���� ��� �� ospf'��� ����ᮢ?
����� redistribute static - �� �।������ ;)
A: (Dmitry Morozovsky)
1. �����
default-information originate always, ��� �������� ��� ��
default-information originate , � ⠪� �㦭� ��� �㤠-� �������
2. ��䨫����� ;)
distribute-list out [interface name]
access-list permit 0.0.0.0 0.0.0.0
Q: � ��� �� �� ��-����� �� 㢠������ ���� ⮫���� ����᭨�� � �窨 �७�� �ࠪ⨪� (� ������訬 �ਬ��稪��), �� ⠪�� stubby areas � � ����� ����� �� �������� ��ࠢ����?
�ࠢ��쭮 �� � �������, �� ��� � ��饬-� �㦭� ��� �������� ����ᮢ ����?
A: (Alex Mikoutsky), ��� (Oleh Hrynchuk)
� �᪠� ���� �� ⨯� �㯨����� � - stub, totally stub, Not-so-stubby.
�� ������ ��� ������� ��� � �� �������.
Stub - �� ⠪�� ���, ���ࠬ � ���ன �� �㦭� �����, �㤠 ������
������, �।�����祭�� external ���ᠬ. ������ - ⮫쪮 external, �.�.
⥬, ����� ᠬ� ।���ਡ������� � ����� ���. ����� ��� ����ᮢ ASBR
�㤥� �모�뢠�� ��䮫� ������� ��� ���뫪� �� ���� ᮮ⢥������� ����⮢. � ⠪�� ��� ����� ���쪮 ��室�� � ������, � ����� ASBR �㦥� �� � ��䮫�. �� ⥡� ������, ����� �� ��� ��ᬠ�ਢ��� ����, � ����� - ����. �� ��������, �᭮� ����, ���ਪ�� �� ������� �� ASBR: area 1 default-cost ��� ��� 1 - ⨯� stub.
�� ��⠫�� ��������, ��室�騥 �� ��㣨� �, �� external ���� ����������.
Totally stub � Not-so-stubby - �� ᯥ���᪨� ���� �ਫ���,
�������騥 䨫����� ⠪�� ������ ������⮢ �� ��㣨� � ⨯� interdoman (totally stub), ������, ⮫쪮 � ⮬ ��砥, � � �⮩ �⠫쭮 �㯨����� �ਨ ��� �� ������ external �������. �⮡� �८������ ������
��࠭�祭��, ��� ����� ᤥ���� ⨯� NSSA (��稭�� � ���ᨨ 11.3). �
������ ����� � ��� ����� �㤥� ���������� ⮫쪮 ��䮫� ��
������� default-information originate. ��� ��, ��� � � �।��饬 ��砥, ASBR�� ����� ���� ���쪮.
� ����⭮ ����ᠫ?
[03.08.2000] 6.9>Q: H��� ����㦨�� �� ᨭ���� ����� �����
Nortel ARN � CISCO-3640. ����� ��� ��㦠� �� ppp � rip. ������,
�⮡� ��㦨�� �� frame-relay � ospf.
A: (Sergey Y. Afonin)
������� �� ARN � BayRS 13.20 � CISCO 3640 IOS version 12.0
�ࠣ���� ���䨣� ARN (as-boundary-router true � ���� �� �⭮����,
�� ������ � ⮬, �� ���� ����� ।���ਡ���� ��, �� ���� �
�� ��䨫����� ᯥ樠�쭮; � false - � ।���ਡ����� ⮫쪮
⮫쪮 ospf):
ospf router-id xxx.xxx.xxx.234
as-boundary-router true
area area-id 0.0.0.0
back
back
serial slot 1 connector 1
cable-type v35
bofl disabled
promiscuous enabled
service transparent
circuit-name S11
frame-relay
dlcmi
management-type none
back
default-service
pvc dlci 16
vc-state active
back
ip address xxx.xxx.xxx.218 mask 255.255.255.252
address-resolution arp-in-arp
ospf area 0.0.0.0
mtu 1480
back
arp
back
back
back
back
�ࠣ���� ���䨣� 3640 (��� ⮦� ��譥� ����, �ࠢ��):
!
interface Serial2/0
ip address xxx.xxx.xxx.217 255.255.255.252
ip access-group nasprotect out
ip directed-broadcast
encapsulation frame-relay
ip ospf network broadcast
no ip mroute-cache
no keepalive
no fair-queue
frame-relay map ip xxx.xxx.xxx.218 16 broadcast IETF
!
router ospf 13227
router-id aaa.aaa.aaa.234
redistribute connected subnets
redistribute static subnets
network xxx.xxx.xxx.216 0.0.0.3 area 0.0.0.0
!
��� �ࠢ������ BayRS � Nortel ࠡ���� ⠪ �� ASN � �����
�ਨ BN, � ��, �������, � ��� ��� ��������.
6.10>Q: Routing, metric, distance, etc.
A: (Alex Bakhtin)
1. Routing Protocol - �p�⮪�� �������� ��p�p�⨧�樨, OSPF/EIGRP/etc.
2. Routing Process - �p����, �믮����騩 ����p�� ������-���� p��⨭������
�p�⮪���. ��p���p������ ���� ��p����p���:
1. Routing Protocol
2. ID (AS ��� EIGRP, process number ��� OSPF, etc).
�p���� �롮p� ��p�p��, ���p� �㤥� ��⠭����� � ⠡���� ��p�p�⨧�樨 ���騩.
����� � ��� ���� ��� A, � p������ ��� Routing Process: EIGRP 1 (���⠭��, �����⨬ 55), OSPF 1(���⠭�� 54), ⠡��� ��p�p�⨧�樨 ����.
1. �p���� EIGRP 1 ����砥� ������ � ��p�p�� � �� A (��� ���쪮
��p�p�⮢ - ᮢ�p襭�� �� �����)
2. � ᮮ⢥��⢨� � �� ����p�⬮� �� �롨p��� ������訩 ��p�p�� � ��
A � ��p����� ��� �p�����, �⢥��饬� �� ����祭�� p��⮢ � ⠡����
��p�p�⨧�樨.
3. ��� �p���� ��ᬮ�p�� �� ��p�p�� A, ����� � ⠡��� ��p�p�⨧�樨
��������� ��p�p��, �� ������ � ��⠢�� ��p�p�� A � ⠡���� �
���⠭樥� 55.
4. �p���� OSPF 1 ������ ������ � ��p�p�� � A.
5. OSPF 1 �롥p�� ������訩 ��p�p�� � A � ��p����� ��� �p�����,
�⢥��饬� �� ����祭�� p��⮢ � ⠡���� ��p�p�⨧�樨:)
6. ��� �p���� ��ᬮ�p�� �� ��p�p�� �, ������ � ⠡��� ���������
��p�p�� � ���⠭樥� 55, �p����� 55 � 54 � ��⠢�� � ⠡����
��p�p�⨧�樨 ���� ��p�p��.
����p� ��������, ���p��. �� ������ �p���室���, � ��� �p���� ����� ��������p�⨢��� ���⠭�� 55? H� ����� ���p��� ��� ������, ��
⢮���, "���p���"?;) ���砩, ����� �p�⮪��� ��������� - ��祬 ��
�⫨砥���. H���� �� ��������, �� ���p��� � ���� p����� �p����� ��p�p�⨧�樨, ����� ���� p������� �� ������ �p�⮪���, �p������.
===========================================================
7. TACACS,RADIUS,AAA
===========================================================
Q: ��� ����� tacacs-plus/radius ? � ��室����� ?
A: (Dmitriy Yermakov) ��. ⠪�� ࠧ��� SoftWare
ftp://ftpeng.cisco.com/pub/tacacs �ਣ������ �� Cisco (ls ⠬ �� ࠡ�⠥�, ᭠砫� get README, ��⮬ get �, �� �㦭�)
ls ⠬ ࠡ�⠥� �� �� ��� ��⠫����.
ftp://ftp.east.ru/pub/inet-admins - ���祭�� �� �।��� ࠧ��� ���᭮�⥩
ftp://ftp.vsu.ru/pub/hardware/cisco/tacacs - � �� �ய��祭��. pppd ⥯��� �⤥�쭮 �� tac+ia, �� �冷� - tacpppd
[08.09.2000] >A: (Igor Prokopov) ��� ����� TACACS+ ��� NT ?
http://www.nttacplus.com NTTacPlus2 (��������� ����㯭� ��� ᪠稢����)
Radius Tacacs+ Available for Windows NT 4.0 and Windows 95/98
����⠥� � ODBC (Access97), �।�०���� e-mail'�� �� ����砭�� �����,
����� ���� backup-�ࢥ, ࠡ���� � ���쪨�� CISCO, ����� ��㯯� �� �ਢ������ � �.�.
������ ����� �� ���죨 ��� �� ��१�� ;)))
[23.01.2001] >A: (Oleh Hrynchuk) AV pairs - (broken link)
TACACS+ Attribute-Value Pairs
Q: �� �����, ��� ��࠭���� � ����ᮢ ��᪨ �� login? �� ����, 7.2>�
� ���� ࠧ ���ࠢ��쭮 �⢥⨫ �� login/password � �ࠧ� ᤥ���� hangup
� �� ��訢��� ��� �� � ��. �� ࠢ�� � ����設�⢥ �ਯ⮢ �� �� �।�ᬮ�७�. � ���� ��᪠ 㯮୮ ��訢��� �� ࠧ�. ���⠭�� "Command Summary" �ᯥ� �� �ਭ�. ����� �� � ⠪��� ���� ����� �᪠��?
A: (Alexey Kshnyakin)
conf t; tacacs-server attempts N
Q: ��� ᭨����/����� ����⨪� �� ����䥩ᠬ ?
A: (Dmitriy Yermakov)
᭨���� ����� ⠪
conf t
int X
ip accounting
ࠧ���� rsh �� ����, �ਬ�୮ ⠪
ip rcmd rsh-enable
ip rcmd remote-host enable
�, �� �� :)
/usr/bin/rsh cisco clear ip accounting
/usr/bin/rsh cisco sh ip accounting checkpoint > `/bin/date +"%Y%m%d%H%M"` /usr/bin/rsh cisco clear ip accounting checkpoint
����� �������� ������, � �� ��ਠ��.
A: (Konstantin D. Myshov)
1) ��ਯ�:
#!/bin/sh
#[skip]
rsh -l loger cisco.domain.adr clear ip accounting
rsh -l loger cisco.domain.adr sh ip accounting checkpoint
#[skip �� ���� �ਯ� :-)]
2) H� ��᪥ �������:
username specloger privilege 8 password 0 plane_text_password
! ��� ��������� � �१ password 7 �����뢠���� �㤥� �� sh ru
ip rcmd rsh-enable
ip rcmd remote-host loger REMOTE_IP_ADDRESS REMOTE_USER_NAME enable 8
privilege exec level 8 show ip accounting checkpoint
privilege exec level 1 show ip
privilege exec level 8 clear ip accounting
P.S. (Andrey Kuksa)
kuksaa@chph.ras.ru
������� �� ��
no ip rcmd domain-lookup
P.P.S. (DY) Cisco ����� in-addr.arpa ��� ���,
� ���ண� ��襫 ����� �� RSHELL. � IN PTR ���� - �� ��᪠��.
no ip rcmd domain-lookup ��� ���� �몫�砥�.
�� 㬮�砭�� - ����祭�.
P.P.P.S. � ⠪�� 0.4>Q:
Q: ��� �������� "Username:" �� "login:" ?
A: (DY)
������� 2 ��ਠ�� -
1. � tac+ia ����� ��८�।����� ��� prompt.
2. aaa authentication username-promt
[03.07.2001] (Jen Linkova) � �� ������ �� �㭪� 28 �� tacacs-faq
A: (Alex Shavkun)
aaa authentication baner
aaa authentication username-prompt
aaa authentication password-prompt
[03.08.2000] 7.5>Q: rsh cisco show version ������ ��-� ⨯� Undefined error
A: (Alex Bakhtin)
debug ip tcp rcmd
[14.08.2000] 7.6>Q: �� ࠡ�⠥� aaa authentication banner "..." �� �ᯮ�짮����� tacacs
��� radius ��� ��⥭⨪�樨
A: (Alexandre Snarskii), ��� (Vladimir Kravchenko)
�������� �ᯮ�짮���� banner login "..."
[08.09.2000] 7.6>Q: ��� �� ifcico, ࠧ�� ����� - ࠧ�� ����.
A: (DY) ����뢠�� ⥬� ifcico.
tacacs.conf (tac+ia-0.9x)
group = fido {
after authorization "/usr/local/tacplus/emsi $user $port"
login = none
service = exec { }
}
user = \*\*EMSI_INQC816 { member = fido }
user = \*\*EMSI_INQC816q { member = fido }
user = \*\*EMSI_INQC816\*\*EMSI_INQC816q. { member = fido }
cat /usr/local/tacplus/emsi
#!/bin/sh
if [ "X$2X" = "Xtty3X" ]
then
echo noescape=true
echo autocmd="telnet host_1 60179 /stream"
else
echo noescape=true
echo autocmd="telnet host_2 60179 /stream"
fi
exit 2
A: (Denis Shaposhnikov) ���䨣 ��� RADIUS'a
**EMSI_INQC816 Auth-Type=Accept
Service-Type = Login-User,
Login-Service = Telnet,
Login-IP-Host = fido.XXXXX.ru,
Login-TCP-Port = 60179
P.S. �������� ��ਠ��� ��� Login-Service:
(Vadim Mikhailov) Rlogin
(Ilya Rubinchik) TCP-Clear
[27.12.2000] 7.7>Q: ��� �� ��⥭⨪�樨 �� ࠤ��� ���짮��⥫�
�������� in-out ip access-list �� ��� ����䥩� ?
A: (Michael Korban)
Framed-Filter-Id="blabla.in"
Framed-Filter-Id="blabla.out"
P.S. (DY) ��� TACACS'a - ���� userguide, ⠬ ����ᠭ�.
[07.05.2001] 7.8>Q: � ����� �� ���⠢��� Cisco 2611 ���ਧ�����
RADIS-�� ��� TACACS-�� �����⮢ �������, ����� ����� � ����
� ethernet-���� �१ wic ?
Q1: ������� �� ����������� ���⠢��� ��室��� �-� ���
�࠭���� ᮥ�������, ��室�騥, �����⨬, �-� ������⨧��� �?
A: (Dmitri Kalintsev)
��.
A: (Vladimir N. Garnick)
����� ��� ⠪: Configuring Lock-and-Key Security (Dynamic Access Lists)
�ਬ��: Example of Lock-and-Key with TACACS+ Authentication
A: (Denis V. Schapov)
�����, IP/FW Feature Set, auth-proxy
[19.08.2001] (Michael Smirnov) ���ଠ�� �� ����祭�� ��H-����� �������
�� ��������� ����� ��室��� �� ��� ����� ⥫��⮬:
http://info.east.ru/inet-admins/9903/msg00282.html
� chat-�ਯ�� �ᯮ�짮���� AT-�������?
http://www.j2.ru/frozenfido/ru.unix/1343939200170.html
[23.12.2002] 7.9>Q: ����⠥� �� "ppp timeout idle" �� �ᨭ��� ��� ���? �⠢����� ��� �⠢����, �� ���쪮 ��� ࠡ�祥?
A: (Denis V. Schapov)
How to Setup PPP Idle Timeout For Async Using RADIUS
PPP Per-User Timeouts
[31.05.2002] 7.10>Q: RADIUS �⤠�� per-user access-list - � �����
��ࠧ�� � ����� ������⥫쭮�� �� �㤥� ࠡ����. � �㤥� �� ����� ?
A: (Oleg V Prokofiev)
������� �㤥� acl ��।���� �� aaa, � �� aaa acl �� ������, � �㤥� ࠡ���� acl �� dialer � ��砥 diler profiles, � ��砥 legacy ddr �㤥� ࠡ���� acl �� bri
[08.01.2003] 7.11>Q: ��� ���⠢��� username/password ��� autentification
� 㤠������ ��� �� "encapsulation ppp"?
A: (Victor Sudakov)
Configuring Authentication
[29.05.2003] ISDN Pre-Auth
Preauthentication with ISDN PRI
Preauthentication with ISDN PRI and Channel-Associated Signalling Enhancements
[27.02.2003] (Slawa Olhovchenkov) AAA Dead-Server Detection
[19.10.2004] 7.12>Q: ����� �� � RADIUS-� (TACACS+) �������� �� ����䥩� nat inside ��� nat outside?
A: (Oleg Gawriloff) RADIUS:
Cisco-AVPair="lcp:interface-config=ip nat inside"
P.S. (DY) [nsp] PPPoE and NAT on the LNS
A: (Rishat N Agzamov) TACACS
user = xxxx {
member = yyyy
global = cleartext "zzzzzz"
service = ppp protocol = lcp {
interface-config = "ip nat outside"
}
}
===========================================================
8. Memory
===========================================================
������ ������ - Kingston, Transcend, Micron.
�த��� - AllMemory
iBuy
Ak-Cent
[2000.10.12] 8.0> ��饥.
A: (Alex Bakhtin)
��ꥬ �����, ��p�������� IOS�� �����뢠���� � �뢮�� ������� sh ver
� ���� ���� �ᥫ MEM1/MEM2, ��� MEM1 - �� ��ꥬ process memory � MEM2 -
�� ��ꥬ IO memory.
P.S. (DY) for example
6144K/2048K - �ᥣ� 8Mb (2511)
126976K/4096K - �ᥣ� 128Mb (3640)
��� AS5300 - 65536K/16384K - 64Mb Main Memory � 16Mb Packet Memory
(2 �⤥���� DRAM SIMM)
[20.05.2003] (Alexey Luckyanchikov) How to Determine the SIMM Configuration of a 3620 or 3640
Q: � ����� ᨬ� ����� �⠢��� � CISCO ? � � � �� ��p��p������, �� 8.1>����
�� ���室��. :-(
A: (Vasily Ivanov)
H� ᨬ�� ������ ���� �p����쭮 p�ᯠ�� ��p���窨, 㪠�뢠�騥 �p��������
ᨬ� � p���� 稯�� � ����ᥪ㭤�� (����設�⢮ ��⠩᪨� �p�������⥫�� �� ��p���窨 �� p�ᯠ�����). ��� ⠡��窠, ���p�� ������� ��� �� ᤥ����:
�����p �p�������� 68 67 66 11
4Mb 512k*8/9 X X X X
4Mb 1M*2/4/16/18 - X X -
8Mb 2M*8/9 - X - X
16Mb 2M*8/9 X X - X
16Mb 4M*2/4/16/18 - X - -
H��� 69 70
50ns X X
60ns - -
70ns X -
������ [X] ����祭� ���⠪��, ���p� ����室��� ᮥ������ � 72� ���⠪⮬ ᨬ�, ���筮 �� �뢥��� 㦥 � �����p���⢥���� ������� �� ��p���祪. [-] - ����� ���⠪�. � �����饥 �p��� ����� ��� �p����� �㯨�� 4� ���p��� ᨬ� � �p������樥� 1M*2/4/16/18 � 16� ���p��� � �p������樥� 4M*2/4/16/18. 8�� ���p��� ᨬ� � �⠭��p⭮� �p������樥� 1M*2/4/16/18 � p��p�� CISCO �� p������ !!! ����� ��� � EDO RAM.
NB !!! � 25�� ᨬ� ��� ��p��� _p������_��_����_ ! H������.
A: (Leonid Kirillov)
�� ᥡ� ������� �������� ������:
1. SIMM ������ ����� ���� ������� ���� ࠢ��� ��� RAM �� �����;
2. ������� ����� 2 �����: ���� � ����. � ����� �㦭� SIMM � �⭮����, � ����� - ���, ⠪ ��� �� �몫�祭� �� �����. �⫨稥 �祭� ���⮥ - �� ����ﭠ ���� �����奬� �����. ��� �� �᪠�� - ���ᮢ��� �� ���⨭��: --------------------------------|
|
=======SIMM================== |
|
RAM1 RAM2 RAM3 RAM4 par |
par |
|
Cisco 2501
3. ���塠����� SIMM ������� ��� �����������. ����� ��ࠧ�� � ����� ᥡ� 16�� ����� �� 32 (�祭� �뫮 �㦭�:-) ����⠥� ��ଠ�쭮.
A: (Kirill Osovsky)
�� ������� � SIMM'��.
��� 1600 - �⭮��� ������⥫쭠 - ࠡ���� ��� ����, �� ⮣�� �⢠����� on-board DRAM. Dual bank 8 Mb ������� � ࠡ�⠥��� ��� 8 ��
��� 3620 - �⭮��� (���쪮 � ����) ���ࠧ��筠. �㠫 ���� 8 �� ������� ��� �㠫 ����, �� ࠡ���� 3620 � ��� �� �㤥� (�� �������� �� ������樨)
3640 - ࠡ�⠥� � �㠫 ����.
A: (Dmitry Morozovsky)
�� ����������: 36xx ࠡ�⠥� � EDO (3640 �筮, 3620. �������, ⮦�). 3640 �� ���⠭���� �⭮�� ������⢠ ���������� ᨬ��� ���室�� � 64ࠧ�來� ०��, �� 㢥��稢��� �ந�����⥫쭮���, �� ⠪�� 㢥��稢��� � ��室 ����� � �裡 � alignment.
P.S. (Basil Dolmatov)
3620 �������� ⮫쪮 FPM.
3640 �������� � EDO ⮦�.
[25.07.2001] P.P.S (Alexander Voropay)
� 3620 � 3640 ��ଠ�쭮 ࠡ�⠥� ������ �� 2500 � DRAM
� FLASH ���㫨.
Q: ���᪠��� ��� �� ��������� �� 100-������ DIMM'�, ����� �
2600 ����. ��� ��� �� ����� �㯨��? �� ��� ⮭�� ���ᮢ �� �।������.
A: (Dmitry Morozovsky)
���室�� ������ ��� HP LJ 4000 (100pin EDO SODIMM). �� ⮣�, ����� ���� ������ � �ࠪ��᪨ ��� ����� Micron, Transcend, Kingston. � ��� -- ���� �� ��⠫���.
P.S. �� �� �⭮���� � � MC3810.
P.P.S. (Vitaliy Tyulkin)
�������� �����:
32K bytes of non-volatile configuration memory.
16384K bytes of System flash (Device not programmable)
���
2500 processor with 14336 Kbytes of main memory
%Error: System flash bank 0 chip 0 unknown, chip id 0x9155 (reversed = 0x89AA)
�⢥� �� Transcend:
Upgrading Flash memory requires ROM level 10.2(8a) or higher.
[04.07.2000] 8.3>Q: � �� ���᪠��� �� ��-�����, ����� SIMM-������ ���室��
� �ਨ 4000 (�����⭥�, 4500M+) � 祣� �� ��� �ய����?
������� � ����: edo/fpm, �⭮���, �����, � 稯��.
A: (Alexander Voropay)
��� 4X00 ���室�� � �� ᠬ�� ������, �� � ��� 2500,
� FLASH � DRAM. Packet DRAM � �� ᠬ��, �� � System
DRAM, � 祬 ����� ⥬ ���� :-)
� �����⭮, 72-pin SIMM, NoEDO (FPM), real Parity.
��易⥫쭮 ������ ����� ��६�窨 ID. ����
���� -60ns ��� ��� System DRAM �������� � -70ns.
[09.04.2001] 8.4>Q: ���� DIMM (SODIMM ?) 100 pin, �� �� ��ᠭ� 16��,
SYNC, 100MHz. �������� �� ��� ����� � Cisco 26xx ?
A: (Gosha Zafievsky)
� sync - � ॥ �ᥣ� SDRAM.
� 261x/262x �� �������, � 265x - ������� (⥮���᪨)
��� 2600 (1x/2x) ������� EDO.
[01.02.2006] >A: (Alexander Voropay)
CISCO 2600 � CISCO 2600X� �ᯮ����� 100-pin DIMM-�, ����� ��������� �� ࠧꥬ�,
�� �ᯮ����� ࠧ��� �孮����� �����. � CISCO 2600 �ਬ������� EDO, � CISCO 2600XM - SDRAM.
� ���⠢��� � 2600XM EDO ����� �� 2600, BOOTROM ������ "Invalid SPD" � CISCO �� ������.
����� �� ᣮ��
[22.04.2001] (Dmitry Morozovsky) ��� 366x �������� ����� SDRAM.
������� SPD PC66 � ����॥.
(Denis V. Schapov) How to Determine the SIMM Configuration of a 3620 or 3640
Q: ��� ��ᬮ����, �쪮 � ����� ���㫥� ����� �⮨� � C3825, �� 8.4>���뢠�?
A: (Eugene Grosbein)
Overview of Cisco 3800 Series Routers
�ᥣ� ��� � ��� ECC DDR SDRAM. �ਬ�� ��� ����� 3845:
#show tech | include Size of dimm|Memory Slot
Size of dimm = 256 Megabytes
Memory Slot Empty
� ��ࢮ� � ����� �� 256M, ��ன ���⮩.
[18.03.2003] Cisco FLASH (Alexander Voropay)
��� CISCO 2500, 4000, 3600, 5300 (boot � ��⥬���)
� ����⭮, �������� ��㣨� �ਬ������� FLASH �
���� ᯥ樠���� SIMM-��, ���쪮 �������
���筮� PC-�����. �� GPL �����������
MEM-***-1X16F; MEM-***-16FS; MEM-16F-AS53
��� �ࠢ��� �� ��� ��館������塞�, ������ �ॡ����
upgrade Boot-ROM. �믮������ �� �����奬��
FLASH Intel 28F0XX, AMD � Fujitsu.
���訥 ������ CISCO ����� ������ PCMCIA.
������! �������� ��� �⠭���� �� PCMCIA
FLASH ����窨, ��ᮢ���⨬� ����� ᮡ��.
��� �����⥫��.
���� ���⮩ ᯮᮡ ����� ⨯ FLASH -
��⠢��� �� � ������ ����㪠 ��� Windows'95/98
��� ����. � ������, �� ᣮ��, ��� ��� �⮣�
� �।�����祭�.
1) ��� ���뢠��� Linear Flash - �� ���� ���쪮
�����奬 FLASH � ����ਤ�� PCMCIA. � GPL �����������
MEM-***-FLC20M . ��� Windows �ॡ�� �ᮡ� �ࠩ���
(FFS/FTL) � �� �ᯮ�������. � CISCO ������� ��� flash: ��� slot0:
� �뤠�� ���ଠ�� �� show flash slot0: chips
� 稯�� �� ������ ᤥ����. ����砥��� ।��, �����
������ � �����쭮 ��ண�� (��� ��.ᨭ⥧��, Apple Newton,
Poqet PC, ⥫�䮭��� �⠭権 � �.�.).
���� � CISCO 1005, 805, 3600 (� �� ?)
# show version �뤠��
16384K bytes of processor board PCMCIA Slot0 flash (Read/Write)
2) Flash ����� �ਪ��뢠���� ����� IDE/ATA ���.
����५� ⠪�� ����� SanDisk, �ࠩ��� ���� � ��⠢�
Windows'95/98 : ������� ���� ��� ��� 16..64Mb �� ���
����� CISCO IOS(ᮢ���⨬�� fs !). �����������
MEM-***-FLD48M. � CISCO ������� ��� disk0:
# show version �뤠��
46976K bytes of ATA PCMCIA card at slot 0 (Sector size 512 bytes).
�� �������� ������� :
# dir all-filesystems
�ᯮ������ �� ������⢥ ���� �����, MP3-���� � �.�.
�⮨� �������, � �ᮡ���� � ����� ���室���
PCMCIA-->CompactFlash (CF � PCMCIA-ATA ��������� ᮢ���⨬�)
��.
http://www.compactflash.org ���� FAQ
��������� �������� �� ���쪨� ��������.
���� � CATALYST, CISCO 7200 (� ��?)
P.S. (DY) � Catalyst 5000, Cisco 7500, LS1010 �ᯮ������
� �ଠ� ����� �� flash. � �ਬ���, �� �������� � flash
��� 5000 ������� ����� �� 7200.
Formatting a Flash Memory Card
PCMCIA Flash memory cards must either be formatted on the RSM or on an RSP-based 7500 series router running software at the same level, or greater, as the RSM. Flash memory cards previously formatted on an RP-based Cisco 7000 series router cannot be used on the RSM. Note that Flash memory cards formatted on the RSM can be used on RSP-based 7500 series routers (but not on RP-based 7000 series routers).
PCMCIA Filesystem Compatibility Matrix and Filesystem Information
===========================================================
9. NTP, TZ
===========================================================
[24.12.2001] 9.0> (�����)
Basic System Managment Commands - ntp server
Bog BOS: IOS - ����樮���� ��⥬� ������⨧�� CISCO
Q: ��� �ࠢ��쭮 ���⠢��� timezone � ᨭ������� �६� �� ��᪥
A: (Vasily Ivanov)
��� �p���p ��� ��᪠ (UTC+6): (NB: ����� �ࠢ��쭮��� ᬥ饭�� �� UTC �� �����饥 �६�)
clock timezone OMT 6
clock summer-time OMTS recurring last Sun Mar 3:00 last Sun Oct 3:00
� ��:
1) ��� ��⠭����������, � ⮫쪮 �� ⠩�-�p��p� �p��� ���⠢���� ��pp��⭮, � �� �� ��室���� � �p���� ���������� �� �ᮢ, � �᪠ �㤥� ����� ����砭�� �⮣� �p����.
2) ���⠢����� �ᮢ �p���室�� �� �p���, � 5-10 �����. ������� �������.
A: (Alec Voropay) ��� ��᪢� <>
clock timezone MSK 3
clock summer-time MSD recurring last Sun Mar 2:00 last Sun Oct 3:00
A: (DY) 30.10.2011 ���室 �� ������ �६� �� �㦥�
clock timezone MSK 4
no clock summer-time MSD
Q: � ��� ���⠢��� ���� ᨭ������� �६� � �����-���� �ࢥ
� ���� ᠬ�� ntp-�ࢥ ?
A: (Maksim Malchuk)
ntp source interfaceX
ntp master 3
ntp server aaa.bbb.ccc.ddd
ntp server eee.fff.ggg.hhh
ntp server iii.jjj.kkk.lll
P.S. (Alex Bakhtin)
ntp master 3 - �� �����, �� � �p������ �� ntp servers,
���p� �p���ᠭ� � ���䨣�, ��᪠ �㤥� ����� ᥡ� �p��p�� � stratum 3.
P.P.S. (Sergey Romantsov)
Ntp master - 㪠�뢠��, �� router ���� ����� �� ���筨��� "�筮��" �६���, ���⮬� � ����室��� �⮡� �� ࠧ����� �६� ��㣨� ���ன�⢠�, ����室��� ��� ����� ��� master � ᮮ⢥�����饩 ����稭�� stratum. stratum=1 : �� �⮬�� ���
stratum=2 : �����⢮ �����।�⢥��� ������祭� � �⮬�� �ᠬ
stratum=3 : ���ன�⢮ �易�� � ���ன�⢮� ( � ���)
� ⠪ �����... �� 15.
stratum=16 : ���ன�⢮ �� ���� ���ਧ������ ���筨��� �६���.
[18.02.2003] 9.3>Q: Cisco 800 �� �������� ������� ntp.
A: �ᯮ�짮���� "sntp"
A: (Denis V. Schapov)
��� IOS IP Plus - ⠬ ���� ntp
===========================================================
10. NAT
===========================================================
NAT Technical Tips
Network Address Translation (NAT) FAQ
Using NAT in Overlapping Networks
Network Address Translation on a Stick
[13.09.2001] 10.0. (Denis V. Schapov) NAT, IPSEC, ACL ���冷� ��ࠡ�⪨
NAT Order of Operation
Sample Configuration: IPSec Router-to-Router, Pre-shared, NAT Overload Between a Private and a Public Network
10.1>Q: ����� ���-����� ᤥ���� �� ��᪥ 2511 � IOS 11.3,
�⮡� �� ᮥ������� �� FTP, WWW � �����쭮� �⪨ (����饩 public
���� ����) ��⠭���������� � ���� ᪠��� 62.244.63.114,
�� �易�� � ⥬, �� �� ��⠭������� ᮥ������� � �⮣� ����
������ ���������� �१ ��⭨�.
A: dimka@spy.ints.net (Dmitry Aksyonov)
�筮 ��� �⮣� ����:
[..]
ip nat inside source list 111 interface Loopback4 overload
[..]
interface Loopback4
ip address 62.244.63.162 255.255.255.255
[..]
interface Ethernet0
ip nat inside
[..]
interface Serial0
ip nat outside
[..]
access-list 111 permit tcp 194.44.58.0 0.0.0.255 any eq ftp
access-list 111 permit tcp 194.44.58.0 0.0.0.255 any eq ftp-data
access-list 111 permit tcp 194.44.58.0 0.0.0.255 any eq www
��⠫�� ����� �� ����� ;)
��ᬮ���� �� ����砥��� - sh ip nat tra
10.2>Q: ���� ��� �⪨: 192.�.�.0 � 193.�.�.80/28 � ��᪠ 2509
H㦭� ������� NAT, �⮡� � �� 192... �⪨ 室��� � 193... .
������� ��᮪(��) ���䨣� ��᪨, ⮫쪮 ࠡ���騩 � �����.
A: (Eugene A. Rakhmatulin)
H��� ��᮪ ॠ�쭮 ࠡ���饣� ���䨣� (�������� ⮫쪮 IP): ���� ��� 193.193.193.224/29, ������ ��� ������ � ����७��� ��� 192.168.1.0/24.
H� �࠭���� ��� ����७��� ���ᮢ, �� 192.168.1.2 �뤥����� ���� 193.193.193.227, � �� 192.168.1.2 �����뢠���� ����᪠� �࠭���� ���� 193.193.193.230.
cs-2501# show running-config
[ .. ]
ip nat pool one 193.193.193.227 193.193.193.227 netmask 255.255.255.248
ip nat inside source list 1 pool one overload
ip nat inside source static 192.168.1.2 193.193.193.230
[ .. ]
!
interface Ethernet0
ip address 192.168.1.1 255.255.255.0
ip broadcast-address 192.168.1.255
ip nat inside
[ .. ]
!
interface Serial1
description Link to Provider
ip address 193.193.193.226 255.255.255.248
ip nat outside
[ .. ]
access-list 1 permit 192.168.1.0 0.0.0.255
10.3>Q: ������ �뤠� ���� ॠ��� ���� (����� ��襣� ࠭�� ����� 10.3>���ᮢ)
� �㦭� � �祭�� ���室���� ��ਮ�� (3 ���) ����⨢�� ��७���ந��
Cisco 2509 ��� ������⨧�樨 � ���饩 ���䨣��樨:
Ethernet - ᮥ������� ������� �����⢥��� ॠ��� ���ᮬ �
������⨧�� ������;
Serial1 - ᬮ��� (�१ �뤥�����) � ���� 䨧����� ���(~20 �������+�ணࠬ��� ������⨧���);
Serial2 - ᬮ��� � �����(~10 �������).
A: (Ilya Geldiev)
ip nat translation timeout 1800
ip nat translation tcp-timeout 1800
ip nat translation udp-timeout 150
ip nat inside source list 101 interface Async8 overload
' ip nat inside source static tcp {Ethernet0-ip} 80 {Async8-ip} 80
extendable
' �� ����� 祬 ��� ���-����ᮢ �� ����७��� ��H
!
interface Ethernet0
description connected to internal LAN
ip nat inside
!
interface Async8
description connected to ISP
ip nat outside
!
interface Async9
description connected to internal Remote Access
dialer-group 1
!
interface Group-Async1
description connected to Dial-inPCs_mobile
ip nat inside
!
10.4>Q: ������� ���⭮ � Inet-� � �������. ������ ��� ����� -- ���
��᪨� ���� � ���⮬ 25 ����� � ������� ᥣ���� �� ��� ���⮢�� ?
A: CoreDumped@CoreDumped.null.ru
ip nat inside source static tcp int.ter.nsl.addr 25 ext.ter.nal.addr 25 extendable no-alias
===========================================================
11. Telco, ISDN
===========================================================
PBX interoperability application notes for 5300
(Alcatel, Ericsson, Siemens Hicom 300 Series)
PBX interoperability application notes for 2600
Voice Network Signaling and Control
��������� ᨣ������権
��� �-200
�����
�� �����
[20.10.2000] 11.0> �����ન � ISDN Layer 1,2.
��������� ���쪨� ����ᮢ � �⢥⮢.
(Gosha Zafievsky)
����饬 �� ᬮ���� �� ����.
Cisco �� 㬮�砭�� ��⠥� ��� user-side device.
� Layer 1 not UP - ����� _�����쭮_ �� ������ � ᮥ�������,
ᬮ���� sh controller e1 XX �� �।��� ������ �訡��.
�訡�� ����� ��������� ⮫쪮 � ��砥 ����������� � ��⠭����
crc/no-crc, ��㣨� ��ਠ��� ��������� �ࠩ�� ।��. ��� ⮫쪮 �訡�� �� ������� �ய����, Layer 1 ���筮 �⠭������ ACTIVE.
���⠢��� �ࠢ��쭮 isdn switch-type
� Layer 2 TEI_ASSIGNED - ���⠢��� �ࠢ��쭮 network side,
������ ���� MULTIPLE_FRAME_ESTABLISHED, �� ����� �� �� ⥫�䮭��⠬ :)
� � ��㣮� ��� �㯮� ������, �� 㬥�饥
NETWORK-SIDE, ���⠢��� IOS 12.1.3T - ⠬ ������
isdn protocol-emulate network
��� ⮫쪮 Layer 2 MULTIPLE_FRAME_ESTABLISHED - �� ������ ࠡ����.
� ������᪨� ����� �� ������� Layer 2 -
deb isdn q931 �� ���� ������襬� ����.
(DY) Understanding the show controllers e1 Command
(DY) E1 Troubleshooting Flowchart
E1 PRI Troubleshooting
(Igor Monakhov) ������ Q.931 disconnect cause
ISDN Switch Types, Codes, and Values
11.1>Q: AS5300 � Ericsson MD-110.
A: (Aleksey Fedorov)
� ���� AS5300 ������祭� � Ericsson AXE-10 �� r2-digital.
� ���� ��砥 �⮡� �� �뫮 ��� �㦭� ᪠����:
cas-custom 0
debounce-time 10
seizure-ack-time 10
country itu use-defaults
A: (DY) ࠡ�⠥� ��� ⠪, �� � �⠭樥� (MD-110) ����� ��砫���.
controller E1 1
clock source line secondary 1
pri-group timeslots 1-31
!
interface Serial1:15
isdn switch-type primary-net5
isdn incoming-voice modem
isdn bchan-number-order ascending
isdn sending-complete
!
11.2>Q: 2610 ����� �� ��� ������� �� Definity, �� ������
� Definity BRI ����������� � �ࠧ� ������.
A: (Gosha Zafievsky)
H� ��᪥ isdn switch-type basic-net3,
� Definity ��� BRI ���� ������ ���
data module ��� trunk, �� �� ��� WCBRI station.
Country protocol : etsi.
11.3>Q: isdn caller number, AS5300, Alcatel S12, ISDN PRI.
A: (Victor L. Belov)
interface Serial0:15
isdn switch-type primary-net5
isdn protocol-emulate user
isdn incoming-voice modem
isdn sending-complete
� ��� ��室��.
ios 12.0.4-XH
[13.06.2000] 11.4>Q: ����� 3640 - E1R2 - AXE 10.
A: (Vladimir A. Golovnin)
controller E1 0/0
framing NO-CRC4
ds0-group 0 timeslots 1-15,17-31 type r2-digital r2-compelled
cas-custom 0
debounce-time 10
seizure-ack-time 10
dnis-digits min 1 max 2
ani-digits min 3 max 6
description First E1 line : connected to port 1
� ���� ������ ⠪:
controller E1 0/0
framing NO-CRC4
ds0-group 0 timeslots 1-15,17-31 type r2-digital r2-compelled
cas-custom 0
country easteurope
debounce-time 10
release-guard-time 150
seizure-ack-time 2
dnis-digits min 1 max 3
ani-digits min 0 max 3
answer-guard-time 40
ani-timeout 1
�த� ࠡ�⠥, �� �ਢ��쪮 ��� �. ����⠫� �� �ਢ�� �����
seizure-ack-time = 8, � �� 10 � ��� ���� ��㡪� �� �ࠫ�.
P.S. (Gosha Zafievsky)
country easteurope
��� � �⨬ - ������p�⭥�. � �� ��� ��砫� ���⠢�� country itu use-defaults. R2MFC � Cisco - ���� � ᥡ�...
11.5>Q: �������� ����� ����室������ - �易�� �� ISDN ��� ������� - 11.5>Zyxel
Prestige-100 (�� ISDN-���� ⠪��) � Cisco 2522CH.
�����襭�� �� ����砥��� �� ᤥ����. ������� ������ Zyxel ��� ᠬ�,
�� ⠪ �� ������, 㤠���� ���� �������� authentification �� ��⮪���
pap, �� ��⮪�� �� �����������. � ⠪ ������� ��⮪�� ����� ���������
�� BRI0:1 ��� BRI0:2, � ��� �� ���� �� ���䨣���� �� �⤥�쭮��, �
� ᪠���� ��-� �� LeasedLine - � �� �⢥砥� �� ������.
��� � �� ���� �� ᪠����, �⮡� ������� �� �⮣� Zyxel� 64 ��� 128 �
�� ������ - ISDN ?
A: (Mark Gorovenko)
��⮪�� �㤥� ����������� �� Virtual-Access
���祪 �� ��������� ���䨣� �ਢ���. � ��� ����� ��譥��, �뫮 ᤥ���� ��� ⮣� �⮡� ����� �뫮 ������� � ࠧ�� ����, �� ����� �모����.
interface Virtual-Template1
ip unnumbered Ethernet0
no ip directed-broadcast
autodetect encapsulation ppp
peer default ip address pool default
no fair-queue
ppp authentication chap pap callin
ppp multilink
!
interface BRI0
ip unnumbered Ethernet0
encapsulation ppp
no ip route-cache
bandwidth 128
dialer pool-member 1
autodetect encapsulation ppp
isdn incoming-voice modem 64
isdn answer1 xxx
isdn answer2 xxx
isdn calling-number xxx
peer default ip address pool default
no cdp enable
ppp authentication chap pap callin
!
interface Dialer0
ip address xxxx
encapsulation ppp
bandwidth 64
dialer remote-name xxx
dialer idle-timeout 30
dialer string xxx
dialer load-threshold 1 either
dialer pool 1
dialer-group 1
autodetect encapsulation ppp v120
peer default ip address xxx
no cdp enable
ppp authentication chap pap callin
!
interface Dialer1
ip unnumbered Ethernet0
encapsulation ppp
bandwidth 64
dialer remote-name xxxx
dialer idle-timeout 30
dialer wait-for-carrier-time 15
dialer string xxxxx
dialer load-threshold 1 either
dialer max-call 4
dialer pool 1
dialer-group 2
peer default ip address xxx
no cdp enable
ppp authentication chap pap callin
!
ip local pool default xxx
ip classless
ip route 0.0.0.0 0.0.0.0 xxxxx
ip route xxxxxxxx 255.255.255.255 Dialer1
ip route xxxxxxxx 255.255.255.255 Dialer0
access-list 11 permit any
access-list 100 permit ip any host xxxxxx
virtual-profile virtual-template 1
dialer-list 1 protocol ip list 11
dialer-list 2 protocol ip list 100
11.6>Q: MC3810+Alcatel, �p���p�� p�� � 1-2 ��� ������ PRI ����
����y �⠭樥� � ���⮬:
Layer 2 Status:
TEI = 0, Ces = 1, SAPI = 0, State = TEI_ASSIGNED
^^^^^^^^^^^^^Layer 2 y襫 � ��y�
A: (Gosha Zafievsky)
� �� ��� ����让 ����ப �� ����⥫�, � ���ண� ���쬠 ���ࠧ��� ��������� ࠡ��� L2. ������ �뫥����� �ய��뢠����
int sx:15
isdn tei-negotiation first-call
[30.08.2001] 11.7>Q. ������ ��� �� AS5300 �� 12.2(x). ��१ ���
����⠫� ��室��� ������ � netmeeting'a � PSTN. ������祭�� �१ PRI.
A: (Dmitry Valdov)
conf t
voice-port 0:D
bearer-cap Speech
��뫪�: Voice - Outbound ISDN Calls Fail when Originated from NetMeeting or Similar Third Party H.323 Devices
��७� - ࠡ�⠥�.
(Denis V. Schapov) Voice - Outbound ISDN Calls Fail when Originated from NetMeeting or Similar Third Party H.323 Devices
[21.10.2001] 11.8>Q: ���� �� ᯮᮡ ���⠢��� as5300 ������ ��室�騩
������� ������ � �ᯮ�짮������ �����⭮�� ������� �1?
A: (Denis V. Schapov)
Configuring a T1 or E1 Interface for Outgoing Analog Calls Using the modem dialout controller Command
A: (Dmitry Valdov)
line 1 XXX
modem dialout-controller e1 0
[13.02.2002] 11.9>Q: ����⮢᪨� ���-30 (��� ��� ���) � �᪨�� PRI.
A: (Igor Zafievsky)
��ࢠ�� � "�����" �� ����⪨ ����� ����� (ࠡ���� ⮫쪮 �� ������/���������) �� ��� �����, �� ��誥 - ds0 group type fxs-loop-start.
[18.02.2002] 11.10>Q: AS5200 � ��� NEAX-61 sigma �� �p�⮪��y R2.
�⠭�� �� ���y砥� ᨣ��� ���⢥p������ ������ ������ (�-1 �-1).
A: (Andrey Zimin)
�� 52-�, �� ࠡ�⠥� ��� ⠪:
==
!
controller E1 1/2
framing NO-CRC4
ds0-group 0 timeslots 1-15,17-31 type r2-digital r2-compelled ani
cas-custom 0
unused-abcd 1 0 0 1
country easteurope
release-ack
dnis-digits min 3 max 7
ani-digits min 0 max 16
description DTI051602
!
==
��� � ����� ���� ����� - ������� B-������ ����� � ��࠭��� ���ﭨ� ⨯�:
12 cas - - insvc signaling 0 0 0 1 1 1 0 1
23 cas - - 0 0 0 1 1 0 0 1
[03.07.2002] 11.10>Q: Cisco 2600 with NM-HDV-1E1-30E and Panasonic 500
A: (Igor Vorontsov)
� ����-����� ����᭮:
1. ����������� ����� PRI30 � Panasonic KX-TD500 - primary-net5, � �� QSIG, �쪮 �� �� �� �⢥ত��� ⥫�䮭����. ;)
�롨��� �� ��� ���� Euro-Standart.
2. Network side ISDN PRI �� ��� �� 㬥��. ���⢥�⢥���, �� ��誥 ����
�⠢��� protocol-emulate network. ���� �� ��諨 ���⭮� �⢥ত���� � ���㬥�����, ���� ������ ��५���⨫�.
3. ����쪮 �� �� ����ਫ� ⥫�䮭���� �� ������ ��⮤� ��।�� �����
en-block � ������ ���, �� ����� - ⠬ overlap. ;)
4. H� ���뢠�� �ய���� �� ��� DDI-⠡����.
[05.08.2002] 11.11>Q: ��� ����� ������ � ᨣ��������� E&M, CAS ?
A: (Denis V. Schapov)
Voice Network Signaling and Control
Voice - Analog E&M Signaling Overview
Understanding and Troubleshooting Analog E&M Interface Types and Wiring Arrangements
[20.03.2003] 11.12>Q: E1/R2 Iskratel Si2000, Cisco
A: (Sergey Afonin)
3640:
controller E1 3/0
framing NO-CRC4
ds0-group 0 timeslots 1-15,17-31 type r2-digital r2-compelled
cas-custom 0
country easteurope
dnis-digits min 1 max 6
dnis-complete
===========================================================
12. VoIP
===========================================================
Voice/Data Integration Technologies
IP Ports and Protocols used by H.323 Devices
(Pavel Rodionov) VoIP Traversal of NAT and Firewall
Understanding Codecs: Complexity, Hardware Support, MOS, and Negotiation
Fine-Tuning Analog and Digital Voice Ports
��뫪� �� ����ன��
[26.02.2001] ���䨣��樮��� 䠩�� ��� Cisco
[26.02.2001] ���⠭�� � १����� ����� IP-⥫�䮭�� Comptek
[22.03.2001] (Andrei Ioudine) ���ன�� gatekeeper'a
���䨣��樮��� 䠩�� ��� Cisco
VoIP with Gatekeeper
Understanding Cisco IOS Gatekeeper Call Routing
[07.03.2002] Troubleshooting One Way Voice Issues
(Denis V. Schapov) ip routing -
��⠫� ॠ����樨 ����⨧�樨 � IP � �����饣� ᢨ�稭�� IP 㦥 � ����ᮬ. ��� �������� �१ cef/fast, �� ⮣�, �� ��㣮�� ��� ��� routing table/FIB � ᮮ�. ��⨢������� ��⨭��.
Cisco Software for VoIP Applications Development
NAT-Support of IP Phone to Cisco CallManager
NAT Support for SIP
Configuring H.323 Support for Virtual Interfaces
Troubleshooting No Ringback Tone on ISDN-VoIP (H.323) Calls
Troubleshooting No Busy Tone and No Announcement Messages on ISDN-VoIP (H.323) Calls
[05.12.2002] (Alexey G Misurenko) Third Party H323 Calls Fail with Cisco IOS Later than 12.2(8)T
Configuring Dial Plans, Dial Peers, and Digit Manipulation
Cisco ATA 186 FAQ and Common Issues
How to reset a Cisco ATA186 to factory defaults (ࠡ�⠥� � �� 2.15)
(Dmitry Arsh) Voice Over IP - Per Call Bandwidth Consumption
(Akimov Petr) Troubleshooting Echo Problems between IP Phones and Cisco IOS Gateways
[23.01.2004] ������ � ��⮤� �業�� ����⢠ ��� IP-⥫�䮭��
Recognizing and Categorizing Symptoms of Voice Quality Problems
[31.01.2001] 12.1>Q: ��� ������ ���� �������� ᨣ��� ����� ����� ���� ���? � ���⠬� FXO.
A: (Vladimir Golovko)
���⠢� �� ����� "�⡮����":
http://www.pluscom.ru/general/news/event/td10/td-10.html
�� ������ ������.
P.S. (DY) "���筮�" �������� "�⡮�����" - ��⥪�� �⡮�.
A: (DY) � FXO ����砥��� � � PBX - ���⠢��� �� �⠭樨
"�ਭ㤨⥫�� �⡮�" ��� �����뢠�� VWIC-FXO-M2, ��� �� �����
������ ���� 㦥 �襭�.
A: (Vladislav Nebolsine) � 12.1T � 12.2 - � ⮬ � � � 12.2(6) -
FXO Supervisory Disconnect H� ࠡ�⠥�, ������ ��ࠧ�� ��-�� ���� �
DSPWare (�� ���ப�� DSP).
H� � 12.1(5)XM � � 12.2(2)T � ��� - ���ਬ��, � 12.2(4)T - FXO
Supervisory Disconnect ��������, ⠪ ��� �� �뫠 ��९�ᠭ� � ����祭�
����� ����� DSPWare.
!!! NB (DY) �. ���� �������ਨ
���⠪� ������� ᨫ쭮 ��������� � ⥯��� ����� ����뢠�� �� ⮫쪮
busy, �� � �� ��⠫�� cptones. ���㬥����:
FXO Answer and Disconnect Supervision
[25.09.2001] (PhoneMan) FXO Supervision Disconnect
FXO Disconnect Supervision
(DY) Voice - Understanding FXO Disconnect Problem
(Vladislav Nebolsine) ����� ��ࠧ��, ��� �������쭠� ���䨣���� ������ �룫拉�� ⠪:
voice class custom-cptone class1
dualtone busy
frequency 425
cadence 200 300
voice-port 1/0/0
cptone RU
supervisory disconnect dualtone pre-connect
supervisory custom-cptone class1
no battery-reversal
�� ������� ��易⥫��. ��⠫�� cptones ����������� �� �����. ��
������ �롮� IOS: ४������� �� ��뢠���� � 12.2T, � ���⠢���
12.1(5)XM4.
(Slawa Olhovchenkov)
� 12.1(5)XM ��ଠ�쭮 ��� ⠬ �� ࠡ�⠥�, � 12.2(2)T ��� ���� ������
ࠡ�⠥�, � 㣠���� ����ன��. �.�. � ⠩����� �� ���⠢��� -- ��� ࠡ���� �� �㤥�.
voice-port 1/6
disc-pi-off
cptone RU
timeouts call-disconnect 1
timeouts wait-release 1
timing guard-out 500
station-id number +6006
caller-id enable
supervisory disconnect dualtone mid-call
supervisory answer dualtone
supervisory custom-cptone panas
supervisory dualtone-detect-params 1
no battery-reversal
���� �� ����⠢� -- ��த��� �㤪� � ࠧ��� ������ �뢠�� ࠧ�� � ��� �祭� ����� ���室�� ���� � �設�.
voice class custom-cptone mer
dualtone disconnect
frequency 350 440
cadence 500 250
voice-port 3/1
supervisory disconnect dualtone mid-call
supervisory answer dualtone
supervisory custom-cptone mer
[22.03.2001] >A: (Vladislav Nebolsine) � �奬� �ਬ�୮ ⠪�� phone:FXO--->FXS:PABX:FXS--->FXO:router:FXS<---FXO:phone
�� ����� ���� � ���� �� �����
���쪨�� ᯮᮡ���:
1. ��३� �� E&M ��� �࠭������ ᮥ�������
2. �ᯮ�짮���� ground-start signalling
3. H���ந�� power denial � ��� PABX
[25.09.2001] DTMF � ���ࠢ����� FXS->FXO �� ��।�����.
[07.02.2001] >A: (Yura Zotin) �� "�⡮�����" -
http://www.icon.sp.ru
(DY) � ��
http://www.ddelta.ru/telephone/accessory/index.html http://www.telesys.ru/dialoff.shtml
http://www.vinco.spb.ru/dop.htm
[10.04.2001] 12.2>Q: PSTN-AS5300-3640-PSTN, ᨣ�������� - PRI, IOS - 12.1(5)T5, �⠭�� - EWSD �� �ᥣ�� ���� ���.
A: (Gosha Zafievsky)
0. �⪠����� �� 12.1(3a)T4. �� ������� ��� 12.1(5)T
1. ���⠢��� EWSD �뤠���� ��� �������� �� ��室� �
ISDN-�࠭�� ᮮ�饭�� ALERTing.
2. �뤠���� � 3600/5300 �� ᮮ�饭��.
A: (S.Bat)
in se0/0:15
isdn send-alerting
isdn sending-complete
[18.02.2002] 12.3>Q: �� ������� ����稪� ������� show call active voice brief rtt:ms pl:/ms lost://?
A: (Sergei Batakov), ��� Vladimir Tregub
pl:/ms
pl: - �� OnTimeRvPlayout, �.�. �� ���⥫쭮��� ���ந��������
����ᮢ�� ������, ��襤�� ���६�. �� ��� ������ ���� ���㫥���.
OnTimeRvPlayout - Duration of voice playout from data received on time
for this call. You can derive the Total Voice Playout Duration for Active
Voice by adding the OnTimeRvPlayout value to the GapFill values.
pl:ms - �� �㬬� ��� GapFill (GapFillWithSilence+GapFillWithPrediction+GapFillWithInterpolation +GapFillWithRedundancy) , �.�. �� ���⥫쭮��� "�����⮪" �
��⮪� ����ᮢ�� ������ ����� �� �������, ����� ���६� �� �뫨
����祭� ��� ���ந��������. �.�. �����⬮� �����饭��
(�����樨 "�����⮪") ����ﭭ�� ����ᮢ�� ������ ���쪮,
� � ��ࠬ�� GapFill ���쪮:
GapFillWithSilence - Duration of voice signal replaced with silence
because the voice data was lost or not received on time for this call. GapFillWithPrediction - Duration of voice signal played out with signal synthesized from parameters or samples of data preceding and following
in time because the voice data was lost or not received on time from
the voice gateway for this call.
GapFillWithInterpolation - Duration of voice signal played out with signal synthesized from parameters or samples of data preceding and following
in time because the voice data was lost or not received on time from the
voice gateway for this call.
GapFillWithRedundancy - Duration of voice signal played out with signal synthesized from redundancy parameters available because the voice data
was lost or not received on time from the voice gateway for this call.
�� ��� ������ ���� 0 (� �⮬� ���� ��६�����). � ��� �� ��� ᮨ���ਬ�
� pl: (pl: pl:3440/12630ms - � �� ࠧ� ����� ����ᮢ�� ����⮢
���� ������� �� ��ண�, ���� ��室��, �� 誮� ������).
lost:// - � ����ﭭ��/࠭���/������� ����⮢.
����, ����� �� ���� 0, �� ��� �� ������. � ��� �� lost:1868/197/10325,
�.�. �� 3381 ����祭��� ����⮢ (rx:3381/542279 ) 55% ����⮢ ������,
� ��� 5,8% ����⮢ ��諨 誮� ������ (�� �������� � ࠭���� ����⠬�,
� �筮 �� �����, � �� ��� ���ਧ�������, � �� ⮦� ����뢠����).
����⭮, �� �� �⮬ ����⢮ ����� �㤥� ���娬.
[07.03.2002] 12.4>Q: �� �ᯮ�짮����� tcl-�ਯ� cisco 5300 �� ����
�⠭樨 Alert. �ࠧ� ���� Connect. � �ਯ� �� �ਬ����� - ��
��ଠ�쭮 Alert ��⥬ Connect.
A: (Denis V. Schapov)
CSCdt67217
CSCdu49780
CSCdw72304
Both of these bugs did not have fixes integrated but rather worked around either using a customized TCL script to provide alerting or use IOS 12.0(7)T. Here is a snip of the modified script they used.....
proc act_Setup { } {
init_perCallVars
leg proceeding leg_incoming <--- send call proceeding
leg progress leg_incoming -p8 <--- send PI 8 after call proceeding
leg connect leg_incoming <--- connect call
# leg setupack leg_incoming <--- commented out so IOS ignores statement
�ࠢ�� ��� tcl �ਯ�, �⮡� �� ᠬ �⤠��� alerting, ��। connect.
[20.06.2002] 12.5>Q: �� �ᯮ���� AS5350 ��� dial-up � ��� VoIP-�� ? ������� ������ �������� �� ����⮭.
A: (Vladislav Nebolsine)
��� �뫮 ࠭��:
Understanding How Inbound and Outbound Dial Peers are Matched on Cisco IOS Platforms
H��� ᯮᮡ:
Understanding How Inbound and Outbound Dial Peers are Matched on Cisco IOS Platforms
[11.07.2002] 12.6>Q: � ����� ���-� � ��砫� ����� ᨬ��� + ��������?
A: (Vladislav Nebolsine)
���� - ⠪�� �� ᨬ���, ��� � �� ��� ��� '*':
rule 0 ^+0 0
rule 1 ^+1 1
rule 2 ^+2 2
...
rule 9 ^+9 9
� ⠪�� ᯮᮡ ��ꥬ� ��䨪� �� �ࠡ�⠫ � '+',
��� ࠡ�⠥� � ����묨 ��ࠬ�.
� ᮦ������, ��㣮�� ��� ���� ��䨪� '+' �� 12.2(11)T - ���. num-exp
��� ⮦� �� � ᥫ�, �� � ��த�.
��� ��� ⠪ � 12.2(11)T:
rule 1 /^\+/ //
12.2(11)T ����� ⠬ ��, ��� � ��㣨� ������, � /release/122/bin. H� CCO
�� ����� � ���� ������.
��� ⠪ (।��� ��ਠ�� �� ��室�饬 ���� POTS � ���⠭��� ��䨪�):
dial-p v 123 p
dest +......
[24.07.2002] 12.7>Q: � ��� ����� ������� � ATA-186 �� ATA-186 ��� SIP proxy/GateKeeper ?
A: (DY)
� ATA-A �ய���� � ����⢥ SIPproxy/GK ip address ATA-B.
� ATA-B - ip ATA-B. �ய���� �� ����� �ਣ������ UID_0/1.
��. ⠪�� CompTek : ���� � ������� Cisco ATA 186
�� �� �⭮���� � � 7960/SIP - �. ���ᯥ祭�� ����������⢨� 2-� Cisco IP Phone 7960 ��� proxy.
��� � ATA/79[46]0 > 2 - �. ࠧ��� SoftWare, SIP, Other.
12.8>Q: alias static ࠡ�⠥� ��� ��� ? ��� gateways X,Y,Z ��-�०����
������ ���� ��易⥫쭮 ��ॣ������� �� ������ GK/proxy ?
A: (Dmitry Arsh), (Denis V. Schapov)
��ࠡ�⠫. � ������� alias static ���� �ய��뢠�� tech-prefix � ������� gw-type-prefix 1# gw ipaddr x.x.x.x ⮣�� ࠡ�⠥�, ���� -- ���.
[29.07.2002] 12.9>Q: ��� �१ alias static ������ ���� ? e164 7095......., zone prefix 7095* �� ࠡ����. � tech-prefix'��� �� ����� ����������
�.�. ��� X,Y,Z ࠢ���ࠢ�� � ��� ��� ������-�� �࣠�������� ���-�� round-robin �롮��, �� �ࠩ�� ��᮫��� �ਮ���.
A: (Dmitry Arsh)
zone prefix gk 7095....... gw-priority 0
zone prefix gk 7095....... gw-priority 10 gw1 gw2 gw3
��� gw1, gw2, gw3 -- H.323 ID ��� ���⢥��, ����� � �ய��뢠� � alias static:
alias static 192.168.1.1 gkid gk ras 192.168.1.2 gateway voip h323id gw1
����� ��ࠧ��, ������ �� 7095....... ���뫠���� �� �� �� gw, �� ��⠫�� ��⮬�⮬ ���⠢����� priority 0, ������騩 �롮� ��� ��⠫��� �� ���᪥ destination gateway ��� �⮣� ��䨪�.
H� � ����⭮, �� � ����� �뤥���� �� ��� ��� gw �����-����� � ����⢥ �᭮�����, � ��⠫�� -- backup-��, � �᭮����� �⠢���� priority 10, ��⠫�� ��� -- ᪠���, 5.
[29.07.2002] 12.10>Q: ATA & ringback
A: (Denis V. Schapov)
� ����� ⮫쪮 � ⮬, �� �� ATA � �㤨� ������ ��� ���, ⮣�� ���� ��� �����
[09.09.2002] 12.11>Q: ��� 1750(c FXS) ᮥ������ ��� � ��㣮�, �� ⮣� ��� �� ����� ���� ������ ��㡪� �� ��㣮� - �設�, � ����� ���⪨� �㤪��
A: (Vladislav Nebolsine)
���⪨� �㤪�� �� �㤥�, �� � ���⠢��� "timeouts wait-release 3" �� ����ᮢ�� ����, � �१ �� ᥪ㭤� �㤥� dial tone.
[09.09.2002] 12.12>Q: ��� �ਪ���� ������� ���ࢫ���� VoIP? ��ਬ�� 73x ?
A: (German Myzovsky)
COR (Class of restriction) Configuring Class of Restrictions (COR) ���, � �� �����ন������ IOS'��:
a). ����� �� TCL ���騩 �ਯ�:
=== cut ===
# Script Locked by: TarioNetworks
# Script Version: 1.0.0
# Script Name: kazakhstan
# Script Lock Date: Fri Sep 6 02:14:15 2002
exit 3
# Script Approval Signature: C/8a7d
=== cut ===
Note: <3> ����砥� "No route to destination".
��⠫�� ���� �� �롮� � ���㬥�� ISDN Switch Types, Codes, and Values
�). �������� �� flash:
copy t
ftp://tftp.fidonet.org/kazakhstan.1.0.0.tcl flash:
�). ᮧ����� ���䨣����:
call application voice KA3AXCTAH flash:kazakhstan.tcl
dial-peer voice 73 voip
application ka3axctah
incoming called-number 73[123]T
A: (Vladislav Nebolsine)
���� ��� ��饩 ���ଠ樨 (� �� � ����⢥ �।������� � ����⢨�!)
ᮮ���, �� � 11T ����� ��������:
1. ������� ��।�������� �������� �室��� ������� � �롮 cause code
2. ������� �室��� ������� �� ��।�������� source ip address �
�롮 cause code
VoIP Gateway Trunk and Carrier Based Routing Enhancements
[19.09.2001] (Slawa Olhovchenkov) �������� ��� TCL scripts
TCL IVR API Version 2.0 Programmer's Guide
Starting with Cisco IOS Release 12.1(3)T, TCL scripts are no longer locked, so customers can create and change their own TCL scripts.
P.S. (German Myzovsky) �� ���ࠢ��, �� �ࠩ��� ��� � �⭮襭�� TCL IVR v1.0. P.P.S. (Vladimir Kravchenko) 2.0 ��� �� �� �� ����� �� �ॡ�� ������
1.0 �䠨� ��� 3600 series �� �ॡ�� ������ � 12.2.10
[20.09.2001] (German Myzovsky) �⨫�� lockScript ��� ������뢠��� TCL IVR scripts
lockScript
��� ����᪠ �⨫��� �ॡ���� Solaris/SPARC
TCL IVR 1.0 Frequently Asked Questions
[03.12.2002] 12.13>Q: ���� ��� �, �ਭ������ �� ���� ����.
����� �� ᤥ���� ⠪, �⮡� �� ���� dial-peer voice X voip
������ ��⥫� � ����� src addr, � �� ��㣮� - � ��㣨�?
A: (Denis V. Schapov)
VoIP Interoperability with CEF anf PBR
[10.12.2001] (Denis V. Schapov) ������� ��� Cisco Call Manager
Cisco MCS-7825
Cisco MCS-7835
Compaq DL320
Compaq DL380
IBM xServer 330
IBM xServer 340
� ⮫쪮 ��� CM >= 3.0(8) ��-�����
P.S. (Andy Parfenov)
Cisco MCS-7825 = Compaq DL320
Cisco MCS-7835 = Compaq DL380
P.P.S (Dmitry Arsh) Cisco CallManager 3.2
[11.12.2001] (Vladislav Nebolsine) VoIP IP-to-IP gatewaying
VoIP-to-VoIP tandem switching �� �����ন������ � �� ࠡ�⠥� �
ᮮ⢥��⢨� � ����������, �� ������⨧���� IP-������ �� ����� ������⨧���, � �� ����ᮢ��� gateway.
[30.07.2002] (Vladislav Nebolsine) �㬠�, �� �� �뤠� ������� ⠩��, � ᪠��, �� �����প�
"VoIP to VoIP Gateway Feature" ����� � 12.2(12)T
��ࢮ��砫쭮 ��������� �� 265x, 26xx-XM, 3660, 3725, 3745.
��筥� �㤥� ������ �� ��樠�쭮� ���᪥.
[25.04.2003] (Slawa Olhovchenkov) VoIP-VoIP Gateway
Cisco Multiservice IP-to-IP Gateway Feature
P.S. (DY) ����� �������� �� Restriction.
Universal Voice Transcoding Support for IP-to-IP Gateways
[24.05.2003] (Denis V. Schapov) ���� ����᭮, � 12.3(1) �� IPIPGW �������� flow-around mode (�ப����� ⮫쪮 ᨣ������樨) � ��樠�쭮 CCM support �१ ICT.
[12.02.2002] (Vladislav Nebolsine) ����, �� ����讬� ᥪ��� -
� 12.2(10)T ������� �����騥 (���� ����ࠢ��譨�) regex ��� translation rules.
[06.07.2002] regex ����� � 12.2(11)T - � 㦥 �����, �� ࠡ�⠥�.
voice translation rule 1
rule 1 /^810/ //
��. ��䨪� �㤥� ��१��. ���� ����� ᤥ���� � ⠪:
dial-p voice 123 pots
dest 810T
no forward-digits-all
�� �� ᠬ� ��䥪�.
[07.03.2002] (Denis V. Schapov) ���ᨬ��쭮� � dial-peers
as5300 PLATFORM_MAX_DIAL_PEERS 5000
as5400 PLATFORM_MAX_DIAL_PEERS 5000
c1700 PLATFORM_MAX_DIAL_PEERS 500
c2600 PLATFORM_MAX_DIAL_PEERS 2147483647
c3600 PLATFORM_MAX_DIAL_PEERS 2147483647
c3800 PLATFORM_MAX_DIAL_PEERS 2147483647
c7100 PLATFORM_MAX_DIAL_PEERS 5000
c820 PLATFORM_MAX_DIAL_PEERS 2147483647
chopin PLATFORM_MAX_DIAL_PEERS 2147483647
mc3810 PLATFORM_MAX_DIAL_PEERS 2147483647
rsp PLATFORM_MAX_DIAL_PEERS 2147483647
ubr910 PLATFORM_MAX_DIAL_PEERS 2147483647
ubr920 PLATFORM_MAX_DIAL_PEERS 2147483647
Also, there is a hard coded number-exp limit set at 250.
This was changed from 64 to 250 by CSCds10118.
(DY): Note: The maximum number of dial peers that can be configured on a Cisco IOS gateway depends on the available memory (DRAM).
Each dial peer consumes approximately 6KB of memory. Make sure that you have at least 20% of the total memory reserved for other CPU processes.
If the dial peers are used for call routing, a larger number of dial peers will add to the delay to route a call.
This will be significant as the Cisco IOS voice stack looks through dial peers from the top down, similar to an Acess Control List.
[09.09.2002] (Andrew Anikin) AS5350 � R2 - �� 㬮�砭�� AS5350 �� ࠧ�뢠�� ᮥ�������,
� ��室�� Disconnect � PI.
�⮡� �ந�室�� ࠧ�� ᮥ������� ���� ���� �������:
voice-port 3/0:D
disc-pi-off
[21.10.2002] (Andrew Anikin) ���襭�� �室�饣� ����ᮢ��� ��䨪� ��室�騬. �� ࠡ�� ��-���ᥫ��� �� ����-�����, �筥� ��� ����� ���������� ��ࠡ�⪨. � �⮬ ����� ����� 㡥������, ᪠��� 'no non-linear' �� voice-port.
����� ��, �� ���襭�� �ய����.
��� ��䥪� ���� �� XB5, XB7, 12.2.11T.
(Vladislav Nebolsine) �� ��宦� �� CSCdx61444
"AS5350,5400: Clipping speech happen at double-talk condition".
��稭��� ⮫쪮 ��, 䨪� � 128.0.0.220.spe ���
� ����� ५���� 11T. Workaround: "no non-linear", �� � �宬.
[25.12.2002] (Denis V. Schapov) cisco 827-4V&T.38
The T.38 Fax Relay for Voice over IP (VoIP) feature provides standards-based fax relay protocol support on the Cisco 827-4V router
Release Notes for the Cisco 800 Series Routers and Cisco SOHO 70 Series Routers for Cisco IOS Release 12.2(11)YU
��� ����᮪, modem passthrough ⠬ ��.
H� �ய���� �������, ����� �������� �� memory requirements ;)
[11.07.2003] QoS for VoIP �� Ethernet/DSL WAN ������
(Denis V. Schapov) CBTS (CBWFQ inside GTS) + LLQ
CRTP ࠡ���� �� �㤥�, �� � �।�
���⮩ �ਬ�� Class-Based Traffic Shaping to Support Low-Latency Queuing
[29.12.2003] ��� ������ CCM � AudioCodes.
(Alexey G Misurenko) CCM � AudioCodes
[22.08.2007] �������� �� ���䨪��� Cisco IP Phone 7940 (SIP) ��� CCM?
(Slawa Olhovchenkov) ��. ���� ��������樨 �� cisco.com (�ॡ���� ����� � ����ࠪ⮬ �� download)
===========================================================
13. SNMP
===========================================================
SNMP BUG -
http://www.cisco.com/warp/public/707/cisco-malformed-snmp-msgs-pub.shtml
[18.11.2001] ��� ��砫� - Simple Network Management Protocol Technical Tips
(Dmitriy Smirnov) SNMP Counters: Frequently Asked Questions 64-bit counters
(Alexey Betin) Cisco Network Management Toolkit - MIBs
(Andrey Zhilyakov)
Moving Files and Images Between a Router and TFTP Server via SNMP
������� � ����� �奬�.
How To Copy Configurations To and From Cisco Devices Using SNMP
13.1>Q: ����� ��᪨ �� snmp ?
A: (Oleh Hrynchuk)
snmp-server system-shutdown
and after that....
snmpset -c community -t 70 ip.addr.of.router .1.3.6.1.4.1.9.2.9.9.0 i 2
13.2>Q: Download cisco config via SNMP.
A: ��� (Oleh Hrynchuk)
Using SNMP and the appropriate OID .1.3.6.1.4.1.9.2.1.55, postfix the IP address as the index for the OID. Use this "OID" as a string set value.
The string value will be the name of the file.
snmpset .1.3.6.1.4.1.9.2.1.55.10.10.20.20 string ""
The router will reward you with a nice log message and the file should
appear on the tftp server (in this example, 10.10.20.20).
Be careful as some UN*X tftp servers will not create files, but can only
write to existing files (little security precaution).
A much more interesting exercise is to get a router to read a config from
a tftp server using only snmp...but we'll cover that some other time.
Tod Daniels
Greymatter, Inc.
[17.01.2001] >A: (Joe Hishon)
I use a UNIX shell script. You need to have a tftp server also running.
For example if your tftp server is at 192.168.1.1, and your target router
is IP "$IP" and read-write community "$RW" then the important lines are:
'wr mem'
snmpset -c $RW $IP .1.3.6.1.4.1.9.2.1.54.0 integer 1
'wr net'
snmpset -c $RW $IP .1.3.6.1.4.1.9.2.1.55.192.168.1.1 string routername-confg
for COS switches... 'wr net'
snmpset -c $RW $IP .1.3.6.1.4.1.9.5.1.5.1.0 octetstring 192.168.1.1
snmpset -c $RW $IP .1.3.6.1.4.1.9.5.1.5.2.0 octetstring routername-confg snmpset -c $RW $IP .1.3.6.1.4.1.9.5.1.5.4.0 integer 3
P.S. (DY)
'copy tftp runn'
snmpset -c $RW $IP .1.3.6.1.4.1.9.2.1.53.XXX.XXX.XXX.XXX string "filename"
[18.11.2001] >A: (Roman Popov)
Cisco IOS and Configuration File Migration Using SNMP
[29.09.2004] >A: (Anton V. Yuzhaninov)
How To Copy Configurations To and From Cisco Devices Using SNMP-IP Application Services
[09.04.2001] 13.3>Q: �� �������� sh ver ����� 㢨���� ���ଠ�� ����� ��ࠧ�� ����⮢��� ���ன�⢮ (reboot, power-up � �). ����� �� ��� ���ଠ�� ������
�� snmp ? ( ����� ��⪠ MIB ?)
A: (� ���������)
OLD-CISCO-SYSTEM-MIB
"whyReload" -- "1.3.6.1.4.1.9.2.1.2"
[04.10.2001] 13.4>Q: ��� ������ ���⠢��� ���� ᤥ���� ��室�騩 ������
(��� dial on demand). ����⥫쭮 �� SNMP?
A: (Andrey Kostin)
Ping MIB Implementation
[06.11.2001] 13.5>Q: ��� �� snmp ���� dial-up ���짮��⥫� ?
A: (Roman Popov)
snmpset -v1 $router $community .1.3.6.1.4.1.9.2.9.10.0 i $line
[22.04.2002] 13.6>Q: �������� �� ��࠭���� SNMP-index ����䥩ᮢ ?
A: (DY) ��. Interface Index Persistence
[27.12.2002] 13.7>Q: ��� �������� � ������� ⠩�-⮢ ?
A: (DY) ��� AS5300, Octal E1 Card �룫廊� ⠪
current usage per E1
enterprises.9.10.19.1.1.9.1.3.0.0 = Gauge32: 17 enterprises.9.10.19.1.1.9.1.3.0.1 = Gauge32: 0 enterprises.9.10.19.1.1.9.1.3.0.2 = Gauge32: 0 enterprises.9.10.19.1.1.9.1.3.0.3 = Gauge32: 0 enterprises.9.10.19.1.1.9.1.3.0.4 = Gauge32: 15 enterprises.9.10.19.1.1.9.1.3.0.5 = Gauge32: 0 enterprises.9.10.19.1.1.9.1.3.0.6 = Gauge32: 0 enterprises.9.10.19.1.1.9.1.3.0.7 = Gauge32: 0
max usage per E1
enterprises.9.10.19.1.1.9.1.4.0.0 = Counter32: 25 enterprises.9.10.19.1.1.9.1.4.0.1 = Counter32: 0 enterprises.9.10.19.1.1.9.1.4.0.2 = Counter32: 0 enterprises.9.10.19.1.1.9.1.4.0.3 = Counter32: 0 enterprises.9.10.19.1.1.9.1.4.0.4 = Counter32: 20 enterprises.9.10.19.1.1.9.1.4.0.5 = Counter32: 0 enterprises.9.10.19.1.1.9.1.4.0.6 = Counter32: 2 enterprises.9.10.19.1.1.9.1.4.0.7 = Counter32: 2
enterprises.9.10.19.1.1.4.0 - total current usage
enterprises.9.10.19.1.1.8.0 - total max usage
P.S. (Vladimir Kravchenko)
�� ���稪� ��ࠦ��� "Layer3 Active Calls" -- ������ �� ��ࠦ���
� �� ��� ���稪 �����뢠�� �� ���-�� ������� TS � ��⮪�, � ���-��
��⨢��� �������, �� ����� connected.
A: (nevian) AS5350, 12.3(6a)
1.3.6.1.4.1.9.10.19.1.1.9.1.3.(slot).(int) - current usage 1.3.6.1.4.1.9.10.19.1.1.9.1.4.(slot).(int) - max usage
(Andrey Silvestrov)
Using SNMP to Find a Port Number from a MAC Address on a Catalyst Switch
===========================================================
14. Cables
===========================================================
14.1>Q: ���蠫, �� ���� ������ ��� ᮥ������� ���� �᮪ DB60M <-> DB60M
�� ����� �� cisco.com �� ᬮ� ��� ���� ?
A: (Yuri Yuferev)
http://www.pacificable.com/PicFrames/CABMMXHD60PicFrame.htm?
[23.01.2001] 14.2>Q: ��४���� ethernet AUI ������ ��� ᮥ������� 2� ��⨢���
AUI ���⮢.
A: (Orlov Sergey)
��४���� ethernet AUI ������
DB15 DB15
DI-A 5 3 DO-A
DI-B 12 10 DO-B
11 11 DO-S
DO-A 3 5 DI-A
DO-B 10 12 DI-B
4 4 DI-S
CI-A 2 2 CI-A
CI-B 9 9 CI-B
[03.07.2001] (Yuri Selivanov) H� ��� �࠭ᨢ� �⨬ ����������? :))
��祬, pinouts ��室�� ��, � ��� ��娢� ��ᬮ���� �� deja ��� ���
⠬ ��� -- google �� ��졠? :)
This fragment was taken from the "old" comp.dcom.lans.ethernet FAQ:
03.10 Q: Can I make a cable to connect the AUI ports of two devices directly
to each other?
A: Yes and no. You can make the equivalent of a null modem cable by
connecting a two-pair, twisted pair cable connecting pins 3/10 at
each end to pins 5/12 (respectively) at the other. This connects
transmit-to receive (null modem). However, this will probably NOT
work with "standard" software because:
- There is no collision detect. If a collision occurs neither
device will back-off or and retry.
- There is no loopback (stations will not hear their own
transmissions which may cause diagnostics failures).
- There is no heartbeat (SQE test) provided, which may cause
diagnostic failure.
If you want to use standard software, buy some transceivers. An AUI
null-modem will work for a laboratory, test environment under
certain conditions.
[03.07.2001] (Eugene Zhilitsky) ��� ����������.
1. ����� �ᯠ��� �������� �㤥� ࠡ���� �� full-duplex, �.�. �� FD � ��⥪� ��������, � ���� �⪫������.
2. H������ ��᪨, � ��⭮�� �����ୠ� � ��稭���� :) ��� 25�� FD �� 㬥��. �������⥫쭮, �� ⠪�� ����� ࠡ���� �� �㤥�.
[25.01.2001] 14.3>Q: ���᪠��� ��� ��������� ���� � ����� ���� C20 �� x25 ?
A: (Vladimir N. Baronov)
������ "���-�����" RS-232+Cisco CAB 232-MT,
DB25 Male DB25 Female
1 - 1
2 - 3
3 - 2
4,5 - 8
6 - 20
7 - 7
8 - 4,5
15,17 - 24
20 - 6
24 - 15,17
������� Eicon S51 + Cisco 25xx
[12.10.2001] 14.4>Q: H� �쪮 ��� ���ᨬ��쭮 ����� 㤫����� ��ப V.35 �㬠� �ᯮ�짮���� ��� 㤫����⥫� ����� ���� 5 ��⥣�ਨ ����� ࠧ쥬� DB25 (����砥��� ��� ������). �� ����� ⠪? ������� ��, ��� ����⥫쭮 ��।����� ���� � ������ ��� ᨣ����� �������� (��� ������ �� �᭮).
A: (Andrey Kostin)
V.35/RS449 Cable Length Recommendations
V.35/RS449 Cable Length Recommendations
===========================================================
15. TROUBLESHOOTING
===========================================================
[23.01.2001] 15.1>Q: %SYS-2-MALLOCFAIL: Memory allocation of 1684
bytes failed from 0x195A98, pool iomem, alignment 4.
�� �� ⠪�� � ��� ����� ?
A: (Denis V. Schapov) ������� ������ �����
Troubleshooting Memory Problems
Troubleshooting High CPU Utilization on Cisco Routers
A: (SO) Troubleshooting High CPU Utilization in IP Input Process
A: (DY)
Troubleshooting Buffer Leaks
Buffer Tuning
Troubleshooting Router Hangs
A: (Basil Dolmatov)
������ ���� ���稫���, ���� ���ࠣ���������..
����� ����� ࠧ�묨 ᯮᮡ���, � ����ᨬ��� �� ॠ�쭮� ��稭�...
�稭�� �� �����쭮� ������� ����� ��� �몫�祭�� �㭪権, �����
����� ��蠪 � ������ ������� �� �ﭥ�, �த����� ��⨬���樥� �㭪権,
����� ������ � �ਬ������� ������, � �����稢�� ᬥ��� IOS �� ��,
� ��� ����� ������� memory leak ���࠭�� (��� �� �� ���ᥭ :)
I/O mem � 25-� �ਨ _�ᥣ��_ 2 ����... :)
A: (Sergey Nedosekin)
� ��� ⨯�筠� �訡�� memory allocation. ������� �㦭� ⠪ �� ���
� � ��砥 ���筮�� �����.
1. ���⠢��� ᢥ���/����� ����� ����� ���, � ������� �� ⠬ ���
��� 㦥 ��ࠢ��� ��� �� �� ���ᥭ. :)
2. �������� ������.
3. �������� ����. (��� �� ���뢠���� ���)
(DY - ��� ��� 諠 �� 805)
P.S. (DY) 㢥����� ��ꥬ ����� ��� I/O ����� ��� �������
memory-size iomem NN
NN - � � ��業�� �� ��饩 �����, �� 㬮�砭�� ��ꥬ
I/O memory - 25%.
���㯠�� � ����⢨� �� ��१���㧪�.
P.P.S. (����䥩@chgnet)
� १���� ������� �� �⮡ࠦ����� � ���䨣� �� sh run, ��筨� � ������� no memory-size iomem
����� ������� �� �⮡ࠦ�����, � ����⥫쭮 ����������,
� 㪠��� ����让 %% �� ����讬 ������⢥ �����. ����� 㬥����� ���祭��.
[23.01.2001] 15.2>Q: ���� 2511 � � �ନ���� ����ﭭ� ���� ᮮ�饭��
3d16h: %LANCE-5-LATECOLL: Unit 0, late collision error
A: (Vlad V.Paramonov) �����᭮
IPFAST through LPD
Error Message: %LANCE-5-LATECOLL: Unit [dec], late collision error
Explanation: An Ethernet transceiver is malfunctioning, the Ethernet is overloaded, or the Ethernet cable is too long.
Recommended Action: Repair or replace the controller.
P.S. (DY) � ��饬 ��砥 �������� ������ hub, �㤠 ����祭� ��᪠ �� switch.
[13.02.2000] 15.3>Q: � �� ��� ��� ��誮���� ��।����� ��������,
� ���-� ����� � ��� ���������������. �� ���᪠��� �� ���, ���,
���� show stack/region/etc �뫮���� ���室�騩 ���?
A: (Andrey Zimin)
http://www.cisco.com/stack
(� �� ����⭮� ������ ��-���, ��� ����� ������� ����)
४������� �ࠧ� �� �뫮 - � ���� �� �������...
����� �����⥫쭮 ����뢠�.
ࠡ�⠥� ⮫쪮 �� ������ �� ᢥ��� ��⨭��.
� �� ��������, � ��� ����� ����� �१ ��䨣���-2.
� ����� �� �������� - �� ����砩��, ⠬ �� ⮫쪮 ����� ᬥ��� ��⥭쪮 ����� 祣� �� �����, �� � ��誮�� ������ࠬ �-�� �� �ᥣ��,
�� �ᥬ � �� ��... 8-)
[13.02.2000] 15.4>Q: ��p���� (� ����ᨬ��� �� ���p㧪�) ������� ������ mica. ��� �� AS5300 ⠪ � �� 3640. ��p�� portware 2.7.2.0.
���᪠��� ��������� ��� � �⨬ ��p�����.
A: (Andrey Zimin)
������ ��� ��������.
���⠢� 12.1(6)�� - ⠬ ���� ���쪮 ������ 䨪ᮢ.
[05.03.2001] 15.5>Q: ���᪠���, ��� �� MICA-� �������
V90, � � ࠡ�⠥� 33 600 � ��.
A: (Gosha Zafievsky)
������� portware �� 2.6.2.0 � ��砥 R2 ���� 2.7.2.0 � ��砥 ISDN PRI.
[27.03.2001] 15.6>Q: 3640, 12.0(9), ����� 8 BRI. �� down/up
������ � ��� ⥫�䮭��⮢ ����� �室�� � TEI_ASSIGNED.
A: (Vladislav Nebolsine) � �� debug bri ⠬ ���� �� ����� �訡�� - "Sending MPH-ERROR Indication reporting error to layer2", � �� �筮 CSCdp60924
��䨪ᥭ� � 12.1(7.4). �� ���ᠭ�� �����:
"When the cable is disconnected from a bri on a 2600, the TEI is not
released : L2 remains in state TEI_ASSIGNED.
When the cable is reconnected and L1 comes back up, the router will use
the same TEI when it sends a SABME to reconnect LAPD.
In my lab setup, the ISDN switch ignores these SABME's, no doubt
because it does not consider this TEI to be
assigned any more. See attached debugs. [...]"
===========================================================
16. Switching,VLAN
===========================================================
[27.02.2001] Configuring InterVLAN Routing and ISL/802.1Q Trunking on a Catalyst 2900XL/3500XL/2950 Switch Using An External Router
����� �������� �� Table 1, 2 �� ������ minimal feature set
802.1Q Trunking Between Catalyst Switches Running CatOS and Cisco IOS System Software
(Denis V. Schapov) Cisco - 802.1Q Encapsulation Support on Cisco 2600/3600 Series Routers
Routing Between VLANs Overview
Configuring ISL Trunks on Cisco Routers
[27.02.2001] (Jen Linkova) VLANs and Routers
ISL Functional Specification
Creating Ethernet VLANs on Catalyst Switches
Configuring Multi-VLAN Port on Catalyst 2900XL/3500XL ������ �������� �� Note. ���� trunk, ���� multi-vlan port.
Understanding and Configuration VLAN Trunk Protocol (VTP)
(Denis V. Schapov) Fast EtherChannel(R) and ISL on Servers and NICs-Vendor Information
(DY) Understanding EtherChannel Load Balancing and Redundancy on Catalyst Switches
[27.11.2001] iXBT: ���䨣������ ������� � �����প�� 802.1Q
Catalyst Switched Port Analyzer (SPAN) Configuration Example
[03.12.2002] (Pavel Rodionov) Configuring 802.1Q and Layer 2 Protocol Tunneling (3550)
(Yuri Selivanov) Configuring 802.1Q and Layer 2 Protocol Tunneling (3750)
[16.12.2003] (Yuri Selivanov)
ISL
802.1q
[27.02.2004] (DY) Cisco Switch/FAQ
ISL - _������_ �� 100Mb/1Gb �����.
802.1q - 10/100Mb
� 25xx _��_ �� 802.1q, ��, ⥬ ����� ISL.
VLAN 802.1q _�����_ ������� �� 19xx, ISL only. ��� 19xx ���� Enterprise soft.
� Catalyst 2950-xx - _������_ 802.1q
VLAN 802.1q _�����_ ࠡ���� �� ����� 10Mbit (� �ਬ��� 2610<->29xx)
(Artem I. Ivanov) Cisco 2611, 8FLASH/24DRAM, IOS 12.0(4)T, 802.1q �⫨筮 ����� �� Ethernet.
Cisco IOS IEEE 802.1Q Support
(Denis V. Schapov) �� ���� _��樠�쭮_ �� �� (802.1q on ethernet) supported ⮫쪮 ��稭�� � 12.2(2)T
[24.10.2000] Basil Dolmatov - 17[25]0 �� �����ন���� ISL, hardware limitation. � �� �㤥� �����ন����.
(�ਣ�) - "IEEE 802.1Q (VLAN) and ISL are not supported on the Cisco 1720 or Cisco 1750 due to a hardware limitation in the 860T processor."
Cisco 1700 Series - Release Notes for Release 12.0 T BugID - CSCdm72054
P.S. (Pavel Rodionov) �� 1700 �ਨ �����ন���� 1721, 1751, 1760 � 1710. � ᮮ⢥�����騬 Feature Set.
(Volume) -
http://www.cisco.com/warp/public/cc/pd/rt/1700/
(Dmitry Valdov) - dot1q �� 17-� �ਨ 㬥�� 1710, 1711, 1712, 1721, 1751, 1760. 1720, 1750 - �� 㬥��.
[27.05.2003] (Pavel Rodionov) - �� ������ EI � SI (Enhanced Image � Standard Image)
Cisco Catalyst 2950 Series Switches with Standard Image and Enhanced Image Software
� ��⪮ -- �� ������ �� ������ ��������, �� �� ������ �� IOS.
[02.06.2003] 16.1>Q: �� p�訫 �p������ ���p��� ��p���� ���H-� �� �����稪��, ���p�� ����室��� ��������� �p�� �p���?
A: (Denis V. Schapov) Virtual LAN Security Best Practices
===========================================================
17. Netflow
===========================================================
[13.06.2000] 17.1>Q: �� ⠪�� NetFlow � � 祬 ��� ���� ?
A: (DY)
������ �� �⮬ ����� ������ �� Cisco
http://www.cisco.com/warp/public/732/netflow
Cisco IOS Software - NetFlow IOS Support Matrix
������� � �������쭠� ����� IOS - NetFlow Packaging
�ணࠬ�� ��� ᡮન � ��ࠡ�⪨ ����⨪� NetFlow - �. ࠧ��� SoftWare
A: (Vladislav Nebolsine)
�ਬ��� ���䨣��樨 -
NetFlow Policy Routing
⠬ �� ��뫪� �� �������⥫��� ���㬥����.
A: (DY) ���� � cisco.opennet.ru
���ன�� Netramet ��� ���� ��䨪� ���।�⢮� netflow
���ன�� Netfltools ��� ���� ��䨪� ���।�⢮� netflow
[07.05.2001] 17.2>Q: � ࠡ�⠥� �� ᡮ� netflow-����⨪� � ����䥩�
�� ����祭��� �� ��� ip tcp header-compression ?
A: (Alexandre Snarskii)
��.
����� (Victor Sudakov)
Q: ��� �।�� ip tcp header-compression?
A: H� �㤥� ࠡ���� netflow. H� �㤥� ࠡ���� IP fast switching.
����� ����, �� ��-����� ࠡ���� �� �㤥� :)
[29.07.2004] UPDATE: (Alexey G Misurenko)
Before Cisco IOS Release 12.0(7)T, if compression of TCP or Real-Time Transport Protocol (RTP)
headers was enabled, compression was performed in the process switching path. That meant that packets traversing interfaces that had TCP or RTP header compression enabled
were queued and passed up to the process to be switched. This procedure slowed down
transmission of the packet, and therefore some users preferred to fast switch uncompressed
TCP and RTP packets.
Now, if TCP or RTP header compression is enabled, it occurs by default in the fast-switched path or the Cisco Express Forwarding-switched (CEF-switched) path, depending on
which switching method is enabled on the interface. Furthermore, the number of TCP and RTP header
compression connections was increased to 1000 connections each.
If neither fast switching nor CEF switching is enabled, then if TCP or RTP header compression is enabled, it will occur in the process-switched path as before.
[12.10.2001] (Dmitry Morozovsky, Andrey Zimin)
NetFlow �� ��।������ ��⠥� ������ �室�騩 ��䨪. � �⫨稥 ��
ip accounting, ����� �� �������. �뢮�: ��� ������ �ᥣ� ��� ���� ������� �� ��� ����䥩�� core router'��. � �� ����� ������ -- ��, �ਤ���� ��⮬ �᪫���� ����⠭�� ������.
�����⢨�� �⮣�, ����, ���� �, �� NetFlow �� �� ����� ����� �� ����⠥� ��䨪, ᣥ������� ᠬ�� ���.
���� ������� �� _�࠭���_ _��_
������� ����⭮, �� ⮣�� �������� �㡫裂 �� �㤥�.
Hmm... � �⮨� ����� ������� ��室�騩 ��䨪 ������ ���।�⢮� NetFlow, ��� �㡫����� �� �ᥣ�� ����� �������. � � �ࠢ��쭮 �����, �� �ᨭ��� NetFlow ������� �� ४��������. ��� ��稭���?
[17.05.2001] (Sergey V. Artjushkin) H� ࠡ�⠥� �� Tunnel0 netflow.
�� � �� �㤥� �������.
NetFlow Deployment on Logical Interfaces
[03.08.2001] (Denis V. Schapov) netflow export with redundancy
NetFlow Multiple Export Destinations
��祬, �� command reference �����, �� �� ������ � 12.1(3)T
(Sergey V. Artjushkin) NetFlow Multiple Export Destinations
===========================================================
18. PIX/ASA
===========================================================
Configuration Examples and TechNotes
Managing System Access
PIX/ASA 7.x as a DHCP Relay Configuration Example
===========================================================
96. Modules
===========================================================
[11.03.2001] 96.1>Q: � �� �ࠢ��, �� wic-1T 㬥�� async � 17xx
� �� 㬥�� async � 26xx?
A: (Denis V. Schpov)
�ࠢ��.
Understading the 1-Port Serial WAN Inteface Card (WIC-1T)
===========================================================
97. SoftWare
===========================================================
����� ��뫪� �� ࠧ���� ��� ��� Cisco � �� ⮫쪮.
������ ����� �㡫������ �� ��㣨� ࠧ�����.
Cisco Release Notes
Cisco PIX Firewall Software
Accounting
���᮪ �⥩, ���������� �� �ਧ����� foreign/russian/other
(� �窨 �७�� RelCom'a) -
http://relcom.duty.ru/dbdump.txt.gz
��� sh ip account
IPaccounting
ipanalize
ipacc from ss23 by bwm - ss23.tar.gz �
ss23.tar.Z
���稪 IP ��䨪� �१ SNMP ��� (Yura Pismerov)
Statistics
aaa+fw
FreeBSD
ipacc for kernel
Cisco IP accounting simulator (daemon). ��㫨���� show ip accounting (a-la Cisco) ��� ���� IP-����⨪� � Unix-���
[25.02.2001]��� ��䨪� �� �ᯮ�짮����� FreeBSD � ����⢥ ������⨧���. [19.08.2001]ipacctd
[19.08.2001]netgraph node ��� �����⨭�� ��䨪�
Linux
netfilter2 (constantin cherkasoff)
P.S. � � ��祬�-�� � �� �ᯮ�짮���� NeTraMet, �����६���� ᭨����
� 4-� ����䥩ᮢ. ��࠭�祭�� - ��宦� �� ࠡ�⠥� ����� ������ �࠭�.
NetFlow [14.03.2001]
NB! �� ࠧ��� �����ଠ�, ����� ����� � byte order
(Alexander Kefeli) ���� � ⮬ �� �� Cisco ����� (�� �⭮襭�� �
Intel) ���冷� ���� � 楫�� ��. ��� ��ࠫ� �� ��⥫� ���� ���������. � SPARC, MIPS ��� �� �� ���� ⮣�� �� ������ ����
��ଠ�쭮.
TF-TANT@SWITCH: Flow-Based Monitoring and Analysis: Software (���� Jen Linkova)
NeTraMet Release Notes
cflowd: Traffic Flow Analysis Tool
IPMeter (NeTraMet + �������)
OSU flow-tools � ������� �⨫�⪨. ��� �����
NFCollector/java by John Gladkih
Flow Data Collector Daemon
���⮩ �������� �� ��
Extreme Happy Netflow Tool
NetFlowTools by Andrey Slepuhin
Flowc (��� Anton A. Golubev)
NeTAMS - The Right Way To Manage Your IP Traffic
Softflowd (�ਣ����� ? NetFlow)
pfflowd converts OpenBSD PF status messages to Cisco NetFlow. datagrams
a NetFlow probe - libpcap-based tool that collect network traffic data and emit it as NetFlow flows towards the specified collector
Netflow implementation for netgraph (Gleb Smirnoff)
Shaping
BW_MAN bandwidth management system
ALTQ
MONITORING
MRTG �
[05.03.2001] (Igor Nikolaev) Using MRTG to Monitor and Graph Traffic Loads RRDtool
SNMP Traffic Monitor (Yura Pismerov)
MRTG for Windows 95, 98, and ME
ROUTING
GateD
���䨣� RelCom'a ��� GateD - snapshot
GNU Zebra
(Yuri PQ) Quagga Routing Suite
mrt
��� ࠡ��� � ACL
http://www.isi.edu/ra/RAToolSet RAToolSET
http://www.lexa.ru/snar/bgpq.html
ftp://ftp.sztaki.hu/pub/private/kissg/aclgen
TACACS,RADIUS,Billing [25.01.2001]
Cisco Secure ACS
TACACS
ftp://ftpeng.cisco.com/pub/tacacs �ਣ������ �� Cisco
ftp://ftp.east.ru/pub/inet-admins
ftp://ftp.vsu.ru/pub/hardware/cisco/tacacs tac+ia - Best choice :)
http://www.disaster.com/tacplus
http://www.shrubbery.net/tac_plus
http://www.nttacplus.com - TACACS for NT ($$ ?)
http://stiwww.epfl.ch/tacacs http://web.tiscalinet.it/macchese/PAM/patch-tac_plus.F4.0.3.alpha-PAM-0.3
PAM module
TacacsPlus Perl module by Mike Shoyher, ���� � �� CPAN
Native MySQL support is in Devrim Seral's improvement of Cisco version + recommend update (for you the crossplatformity, minor bugfixes)
Tacacs+ RPM Distribution Home Page (Alexander Voropay)
RADIUS
�� ⠪�� RADIUS, ᯨ᮪ Products (Ruslan Laishev)
radius by vadik likholetov
RADAACT by RiNet Corp.
http://www.chat.ru/~kitiket merit-AAA + PostgreSQL + perl5 + Pg
cistron
Livingston
Merit AAA
freeRADIUS
XtRADIUS
ICRADIUS
PerlRADIUS
Radiator Radius Server ($$)
RADIUS from Vovida
GNU Radius
pppd, ���祭� ��� RADIUS
pppd-radius
����� ��� ��� �࣠����樨 ����-㧫� (����⨪�,��⥭�䨪���,�����⨭�)
Billing [07.08.2002]
"BG - �������" - 㭨���ᠫ쭠� ����������� ��⥬� Java ? FREE !?
LANBillng - ����������� ��⥬� ���� �������᪨� � ���������᪨� ���ᨨ
ppp billing
User management, authentication, and billing software for UNIX
Freeside - Billing and account administration software
radius+mysql
http://www.oss-net.ru/oss2000.html ��� ���-2000 ($$)
http://www.servocomp.ru/rus/abs.htm ��᮫�� ($$)
PortaOne is a VoIP (IP Telephony) Billing Solutions Company VoIP Billing ($$) IPSoft billing ($$)
MIND-CTI ($$)
Traffic Accounting System
Billing ih h323 proxy environment Debitel Cookbook
VoIP [04.10.2001]
SIP
VOVIDA SIP proxy/redirect/feature server, H.323, MGCP to SIP protocol translators
ftp http jredirector (JAVA)
NIST-SIP stack (JAVA)
oSIP library (LGPL) and the Opensource SIP Registrar (and redirect server)
The partysip SIP proxy server
SIP Implementations
Columbia SIPd $$$
Mera Networks SIP library ($$$)
SIP proxy �ࢥ�
siproxd - SIP proxy/masquerading daemon
iptel.org SIP Express Router
comand line tool for developers and amdinistrators of SIP
PortaSIP - SIP server, RTP proxy, can be bundled with PortaBilling ($$)
H.323
AquaGatekeeper (FreeBSD, Linux, Win32)
http://www.openh323.org
http://www.opengatekeeper.org
GNU GateKeeper
KOMproxyd h323,sip
Linux masq h323 module
NAT & H.323 module
netfilter patches
Mera Networks xPEERience Gatekeeper/Proxy (xPGK) (DEMO, $$$)
Mera Networks H.323 library ($$$)
Other
Asterisk - the Open Source Linux PBX
Bayonne - GNU telephony server
skinny-proxy
Open Callmanager project
Applications
OpenMCU, OpenAM, OpenIVR, OpenGK, OhPhone, PSTNGw, CallGen323
TUNNELs [17.05.2001]
for FreeBSD (���� ���-� ��襫)
ftp://ftp.sut.ru/pub/dyer/tunnel
(nos-tun ���� � ᠬ�� ��⥬�)
ftp://ftp.radio-msu.net/pub/homebrew/FreeBSD/gre
(Alexander A. Karpoff) -
http://mike.spottydogs.org/projects/gre-tun
(Marat B. Kuznetsov) - � ���ᨨ (afair) 4.0 � ᠬ�� ��⥬� ⠪ �� ���� gif
http://www.freebsd.org/cgi/man.cgi?gif
�ᯥ譮 �ᯮ������ ��� �࣠����樨 IPoverIP �㭭��� 㦥 ����� ����...
TOOLS
http://www.caida.org/tools/taxonomy/performance.xml Traffic simulator ?
Syslogd for !*nix
[23.01.2003] (DY) MT Syslog Daemon
[27.02.2001] (
ter@sibintek.net) Syslogd for NT
[27.02.2001] (Dmytro Kryvko)
http://www.mt.lv/wirsys/sysloginstall.exe
TFTPD for !*nix
http://tftpd32.jounin.net/
http://www.firedaemon.com/
PIX log parsers (Roman Oplanchuk)
http://cs.calvin.edu/~mpost89/pixlog/ http://cert.uni-stuttgart.de/projects/fwlogwatch
[27.02.2001] (Valery Borovyk) ACL editor, tftpd, etc
VLANs [19.10.2001]
FreeBSD (� 4.x 802.1q ����)
FreeBSD VLAN mini HowTo (Yuri Selivanov)
�ࠩ��� ISL -
ftp://ftp.radio-msu.net/pub/homebrew/FreeBSD
��� fxp -
http://www.euitt.upm.es/~pjlobo/fbsdvlan.html (patch MTU>1500. ���祬 �� 4.4-STABLE � ���� ����� ࠡ�⠥� � ��� ����)
(Jen Linkova) FastEtherChannel
Linux
���� ��ᨭ, ������� � Linux � VLAN
802.1q -
http://scry.wanfear.com/~greear/vlan.html �
http://vlan.sourceforge.net
ISL -
http://www.tu-chemnitz.de/~sger/isl
(Igor Nikolaev)
http://www.candelatech.com/~greear/vlan/cisco_howto.html
PPPoE
[12.10.2001] (DY) PPPoE ������ ��� Windows 98/98SE/ME/2000/XP/2002
RASPPPOE Home Page
(Nikolay Y. Kryukov) A PPPoE Implementation for Linux
a href="
http://www.in-line.ru/technology/article9.asp">�ਬ������ �孮����� PPPoE � ���� ����� ��� ����
===========================================================
98. IOS Black List/White List/Recommendations
===========================================================
[14.06.2000] 12.0(5)Tx. ���p� ᮢ��. �모��� ��
��� ��� �ᯮ�짮����� _ᮢ�p襭��_ �� �p������.
Alex Bakhtin
[15.06.2000] 3640 12.0(4)T - CEF �����. ���쭮.
Dmitri Kalintsev
[05.09.2000] Vladislav Nebolsine
12.1 (��� �㪮���) - �� ��७��� � ����⠭��� 12.0� (� �㪮����), � ������ ���諨 �� �� ��.
� � 12.1� (� �㪮����) ��������� ���� �� (� �����প� ����� ������), ����� � �६���� ��३��� � 12.2.
���� ��, ����� �� ��諨 � 12.1, ⠪ ��� �뫨 �� � 12.0�, � � 12.0XK. H��ਬ��, �����প� Q.SIG, ����� �뫠 � 12.0(5)XK � 12.0(7)XK), ���諠 �� � 12.1(1), � � 12.1(2)T. � �� �� �� �� ࠧ����� ��-T �������.
�롨��� ���� �� ���ॡ����� (� ࠧ���� ���) � ������ �ॡ㥬�� �� � ������. ���祭� �� � ������ ���ᨨ ���� � ���㬥��樨 �� www.cisco.com:
http://www.cisco.com/univercd/cc/td/doc/product/index.htm
12.1(2a) - ���� ࠡ����� ����� ���� � �����業��� �����প�� �����.
�� ������ [17.05.2001] - ����������� �⠡��쭮�� ����ᮢ��� ������ �� ᥣ����譨� ����: 12.2(1).
���� ����⭮���, �� 12.2(1) �� �㤥� �����쭮 ࠡ���� � ���묨
����ﬨ �� VoIP. ��� �ᥣ��, �ࠢ��쭥� �⠢��� ���� � �� �� ����� �
��� ��.
[01.08.2002] ��� ����� ᠬ� �⠡���� �� ᥣ����譨� ���� 12.2(2)XB5
�� ���� 12.1(5)XM8 ������� �� �⮨�, "�������" ������� �������, ��
㦥 ��稭��� �� ���.
� ����� �� ᮮ�頫.
12.1(3)T - ࠧ�� SNMP ������� �� sub-if VLAN/ISL.
-is- - 㦥 �� ����� � 8Mb Flash
P.S. VLAN/ISL only ! �� encap dot1q �� �㤥� ࠧ��� snmp-index,
[15.03.2001] (Denis V. Schapov) �� Bug Id : CSCds00250
ifTable is not populated for Fast Ethernet subinterfaces defined as trunks having dot1q encapsulation.
Basil (Vasily) Dolmatov - ���... � �� �⠫ �� ���짮���� IRB � ࠭��� ������ 11.2 mainline ;)
[17.01.2001] (Vladislav Nebolsine) ���� �⠡���� _����ᮢ��_ IOS �� ᥣ����譨� ���� - 12.1(3a)XI4
[04.01.2001] � �� ����室������ ������ ����, � �� 12.2(5).
12.2(1) � �ᯮ�짮����� 㦥 �� ४���������.
[17.01.2001] (Dmitry Valdov) � 90% ��� 12.1(x)T �� 7206VXR �� ࠡ�⠥� export netflow
[19.02.2001] (Denis V. Schapov) c3640-i-mz.121-2.T.bin - �ய����� secondary ���� �� FastEthernet
���㬥������ ���. ������ ��� �� ����� ᢥ��� ��� �⪠����� �����.
[20.02.2001] (Andrey Kostin) no ip finger �������, ���, ������ � 12.1(5), ��䨪ᥭ [�㤥�] � 12.2(1)
���짮������ "ip finger rfc-compliant" � ����⢥ workaround �� ᮢ����: ��砥��� ����ᠭ�� ��ᨩ 䨭���, ����� �������� �� vty, ���
������ ⮫쪮 ॡ�⮬. ��襭�� - �ᯮ�짮���� ��� ��� ����.
(Andrey Zolotnicky) - BugID - CSCds92731
[20.02.2001] (Yuri Jilkin) �� ��ॣ��� 3620 � 12.0.7(�) �� 12.1.5(�) ���������� ������� ����� �� �ᥬ 30-� ����䥩ᠬ Async(33-62).
����砥��� ⮫쪮 �� Async60 � ⮫쪮 ifDescr:
snmpwalk mycisco.domain.dom public | grep Async
interfaces.ifTable.ifEntry.ifDescr.5 = Async60
(Alexandre Snarskii) ���� no workaround.
[10.07.2001] (Denis V. Schpov) ����� � NAT � skinny protocol � 12.1(5)T-12.1(5)T6 �����⥫쭮, Bug ID CSCds72170
NAT Enabled Routers Encounter Problems with Cisco IOS 12.1(5)T
��襭��: ��३� �� 12.1(5)T7 ��� �ࠧ� �� T9, ��� ����� ᢥ��� �����
P.S. ��� �६����� �襭��, ������� �� in � out ����䥩ᮢ
(inside&outside) acl, ��� ������� ������ tcp � dst_port � src_port 2000.
[19.08.2001] (Ruslan Laishev) 3640 ISO 12.2 (3)
H� ��直� ��砩, �� ����� �� �������� 蠡���� ".T" (��� ����祪 :) � dial-peer-�, �⪠⨫ �� 12.2 (1) - ࠡ�⠥�.
"^T" ⮦� �� ��������.
(Cyril Zlachevsky) � TCL IVR, ��宦�, �������� - � ���� �ਯ�,
�ᯥ譮 ࠡ�⠢訩 �� 12.1(3)T, 12.1(5)T � 12.2.1 �� 12.2.3 ��
����᪠���� - "ccappmib: insertion error. duplicate name new"
[12.10.2001] (Vladimir Litovka) BGP crash on 12.2(1b)
�।�०��� �� �����㦥���� �� - � �� 12.2(1b) ᪠����
neighbor x.x.x.x default-originate
��誠 ���������� �室�� � reboot. ��७� �� 2509 (c IP IPSec Plus, Enterprise), ��� ����� �� ������� ���㠫쭮 - �� ����.
[13.10.2001] (Gosha Zafievsky) � 12.2(3) �த� ��� Display IE ��稭���.
[17.10.2001] (Dmitri Kalintsev) ������ 12.2 ����� ��� � ���⨫�����, ��㤭����ந������� � �祭� ������� (��祭�� - ॡ��). ��䨪ᠭ�
(�த�) � 12.2(5). 12.2(3) ����� ��� � ATM p-t-p, ����� ��� ���� ��
�����. ��䨪ᥭ� � 12.2(5) (䠪�).
[12.11.2001] (Oleg A. Lebedev) 12.2.5 � SNMP �� sub-����䥩��
CSCdv27118
Cisco IOS Release 12.2(3) may not successfully support the Simple Network Management Protocol (SNMP) Management Information Base (MIB) for fast
ethernet subinterfaces in the ifIndex Mib object. There is no workaround.
(Vladimir Chepikov) � 12.2.6, ����� �멤��, ������ 㦥 ࠡ���� -
���뫠�� interim 12.2.5(5.4), ⠬ 㦥 ��� ��䨪ᨫ�.
CSCdv22756, CSCdv27118 - bug IDs.
P.S. [29.11.2001] (Denis V. Schapov) ��� ��� � resolved caveats 12.2(6)
[29.11.2001] (Denis V. Schapov) SNMP support for IfTable for 802.1Q subinterfaces BugID - CSCds00250 㦥 �⠫ Assigned, Severity 2
[24.12.2001] (Dmitry Valdov) ip tacacs source-interface ��� �
IOS (tm) 3600 Software (C3640-IS-M), Version 12.2(4)T1, RELEASE SOFTWARE (fc1)
[25.12.2001] (Igor Suvorov) bug in ios 12.2.6a, Cisco 801
Cisco 801, ios 12.2.6a (������), ip �����.
������� �ᯮ�������� �⢥� �� bootp ����� �� ��⮪��䨣��樨.
�.�. ����� cisco 諥�, � �⢥� �� ����. H� TAC ��祣� ��宦��� ��
��襫, �� �訡�� ���ந�������� �����.
�⪠� �� ���� 12.0 ����� �蠥�.
[19.02.2002] (Vladimir Tregub) 1751: no IP CEF
H�� � 1751 ��, �� �ࠩ��� ��� � ���⮬ ���.
cisco#1751sh ip cef
^
% Invalid input detected at '^' marker.
cisco1751#sh ver
Cisco Internetwork Operating System Software
IOS (tm) C1700 Software (C1700-Y-M), Version 12.2(4)T1, RELEASE SOFTWARE (fc1)
���� ⮫쪮 � IP/VOICE PLUS, ����� �� � �⮨� 0$, �� �ਤ���� ���㯨��
������ (Minimum Recommended Memory to download image - 16 MB Flash and 48 MB RAM).
[31.05.2002] (Vladislav Nebolsine) cRTP over FR
cRTP ����� ��⢮ ࠡ���� ���� � �������� 12.2 ������ IOS.
��� ⠪��
IOS (tm) MC3810 Software (MC3810-A2ISV5-M), Version 12.2(8)T1, RELEASE
IOS (tm) 7200 Software (C7200-JO3S-M), Version 12.2(8)T1, RELEASE
SOFTWARE
����� ��宦�� ���� - CSCdw28689 "frame relay packets not compressed as expected" (��� �� CSCdw46908/CSCdw91283/CSCuk32308)
������ ���-� � 12.2(6.8)T, ��䨪ᥭ� � 12.2(9.1)T.
��� - cRTP �����-����� ��� ����� � 12.2(6) � ��� 䠪��᪨ ��
��� ���䨣�����. �� ��ᠥ��� T ���� 12.2(10)T, ���-�... �� ᮢ����.
12.2(9)T �� �������, 12.2(10)T �멤�� � ���� ��� (�ਥ���筮). 12.2(10) ������ ࠡ����
(Slawa Olhovchenkov) � 3810 ����. no ip route-cache �� ᠡ������
�� 3810 ����. � 7200 �� � ���浪�.
[09.09.2002] (Irakli Natsvlishvili) 122-11.T - SSH ࢥ� ᮥ������� �����
� �㤠 ������ � �ਪ�� bad CRC.
===========================================================
99. Misc
===========================================================
99.1>Q: ��� ���� ��᪥ break ?
03 �� ��, 02 - ������, � break - �� �� ᨬ���, � �祭� ������ ����-��� (c) Michael Shestyriov
A: (DY)
RTFM �� �ନ����� :)
cu,tip - ~#, ~%
(��������� �� � ssh ⮦� ���� escape character. � �� �奬� ssh->host->telnet cisco ���� ~~#
� �� man ssh:
~B Send a BREAK to the remote system (only useful for SSH protocol
version 2 and if the peer supports it).
)
DOS Navigator - F4
Cisco Break Sequence
A: (Alec Voropay)
Standard Break Key Sequence Combinations During Password Recovery
99.2>Q: ��� ����⠭����� ������ (�� ����, � ����������) ��� ��� 99.2>ᬥ����
��� �� �����-� ��㣮�? ����� �� ᤥ���� �� ��� ���� ���䨣��樨?
A: (Gosha Zafievsky)
RTFM, ����p�⭮ User Guide, �� ����p�⭥�
"Recovering a lost enable password".
��.
P.S. (DY) �� Break - �. ���
(Andrey Tarasov) ������� password 7 05080F1C2243 -
PTM's Cisco password decryption tool
Cisco weak password decryption applet
(Evgeny Sergachev) �����뢠�� ��� level 7
Use of the Configuration Register on All Cisco Routers
[25.07.2000] >A: (Konstantin Gribakh) Cisco ᮡࠫ� �� �� ��楤���
�� ����� ��࠭�窥 Password Recovery Procedures
99.3>Q: ��������� �� � ����裡 ����㤮����� Cisco ?
[2005.09.09]>A: (Sergey Nikiforov)
���� �� Cisco
�⮡� 㧭��� ����� ���䨪�⮢, �����筮 ���⥢��� ������.
� �����業�� ���� ᪠��� ᪠� �ਣ�����.
P.S. (DY) ���⨭�� ���� ��� - ����䨪��� � ��業���. (nag.ru)
A: (Serge Turchin)
��, ����� ���䨪�⮢ ��/1-���-59 - ��/1-���-91
����������� ������������
����������� ������������ ������� "������������"
A: (Denis Golovenko )
��/1-���-70 -- ��� ������� 2505/07/09/11/18
A: (Vladislav Nebolsine)
����� �뫮 �������� ���饥 ����㤮�����:
������⨧���� Cisco
761, 765, 771, 775
1001, 1003, 1005, 1601, 1603
2501, 2503, 2505, 2507, 2509, 2511, 2512, 2514, 2518, 2520, 2522
26xx
3620, 3640
4000, 4000M, 4500, 4500M, 4700, 4700M
7204, 7206, 7505, 7507, 7513
AS5200, AS5300
MC3810
Cache Engine LDIR-410, LDIR-420
LAN ���������
Catalyst 1400, 1900, 2820, 29xx
3000, 3100, 3200
5000, 5002, 5500, 5505
WAN ���������
LightStream 1010
IGX8, IGX16, IGX32, IGX8410, IGX8420, IGX8430
BPX8600
MGX8220
��⥢� ��࠭� Cisco PIX Firewall
(3 ����� ���饭���� �� ��⥬� ���䨪�樨 �।�� �����
���ଠ樨 �� �ॡ������ ������᭮�� ���ଠ樨)
P.S. (DY)
���᮪ ᮮ⢥��⢨� ����㤮����� � ���䨪�⮢
���� ���䨪�⮢ ����裡 ���ᨨ
[05.01.2001] >A: Ilia Zubkov - �� ���䨪��� Catalyst
� ��� ⥬� -- ��� � ���� �� �⮫� ����� ����� ���쬠 ���. ������� �����裡 ������⨭� (�/�, �� 02.11.2000) � ���᪨� ��� ��᪨ � ⮬, ��, ���,
"� ��� ����� � ����室����� ���䨪�樨 �������"
⨯� Catalyst 1900,2900XL,3500XL,4000,6000,8500CSR "����裡 ᮮ�頥�, �� 㪠������ ����㤮����� �� �������� ���䨪�樨 � ��⥬� "���������",
� ��� �ਬ������ �� ����頥� ���������� ��ᯫ���� ��
�� ��⠭���� �� 㧫�� �裡 ��� ᮥ������� ����㤮����� �� �������易���� �� �� ��⮪���� Ethernet, FastEthernet, GigabitEthernet".
�� ����� ࠧ㬥���, �����騬 � �����裡 �� ������ �⪠�뢠�� � �뤠�
����� �⮣� ���쬠.
P.S. (DY) ����� �� ���쬮 �/� (��� ��室�饣� �����) �
����� �⮣� ���쬠 �� ���� �� �ᥭ.
[25.07.2001] (Vladimir V. Lobanov) ���� ���䨪��� ��� �� 22.06.2001 #329, #330, #331.
� ��� 㪠��� ����� 29xx � 35xx.
[25.07.2001] (Vladimir Tregub)
��/1-���-332 Cisco Catalyst 1912/24
�ਬ������ �� ��� ���ᨨ � ����⢥ �������� �����쭮� ��
��/1-���-331 Cisco Catalyst 29xx
�ਬ������ �� ��� ���ᨨ � ����⢥ �������� �����쭮� ��
��/1-���-331 Cisco Catalyst 2948G-L3
�ਬ������ �� ��� ���ᨨ � ����⢥ �������� �����쭮� �� � �㭪�ﬨ ������⨧�樨
Sergey Eremenko
��/1-���-329 35xx XL
��/1-���-330 2948G-L3
��/1-���-331 29xx XL, 29xxG
��/1-���-332 19xx
��/1-���-333 40xx
��� �� 22.06.2001 �� 22.06.2004
[25.10.2005] (Sergey Goncharov) 3750 ���䨪�� ���
��-1-���-0014
Cisco Systems, Inc.
��������� �����쭮� ��
Catalyst WS-C3750, WS-C3750G, ME-C3750 (����� �� 12.2)
H�砫� ����⢨� ���䨪�� 15.09.2005
����砭�� ����⢨� ���䨪�� 15.09.2008
[13.06.2000] 99.4>Q: ��� �� �������� 䠩�� ��p������� ��p�� ���,
IP-only ��, IP/IPX ��� enterprise?
A: (Serge Turchin)
*-i-* - IP
*-is-* - IP Plus
*-d-* - Desktop
*-ds-* - Desktop Plus
*-j-* - Enterprise.
� �.�. � 11.2 ��� IP/IPX, � ⮫쪮 Desktop, �� ���� 業� ᭨����
� �ࠢ����� � 11.1. ���䨪� - a - appn. �����, ���-� ���� ��
�ࢥ� ������.
� 1000-��� 拉� ��⥬� ��㣠�. n-Novell, b - Apple Talk, y - IP,
q - �ᨭ��� ��ਠ��.
� �� - �� ᠩ� ��� ��pᨩ �뫨 䠩�� p����p�� � 2-4p��� ����� ��ᮢ �
�
�������� ��� boot � �������� - �� bootstrap only? :-)
� 7500, 4500-4700 ��� ������ �����⢮ ��⮢�� ��⥬. H� ����
ᯥ樠��� �.�. bootflash � ��� ����ᠭ� 㪮�祭��� �����
��⥬�.
A: (Dmitriy Yermakov)
������� �� ���ᠭ� ��� - Cisco IOS(R) Reference Guide �. Cisco IOS Image Feature Definition
Q: ���᪠��� ��� �� CCO ����� ᯨ᮪ ���������⥩ �����⭮�� feature set
��� �����⭮� �������.
A: (Slawa Olhovchenkov)
H������� ������� ᯮᮡ (�࠭�� ����� �ᥣ�) �� ��� �� ��뫪�
Cisco IOS Software Configuration �
���������� ⥡� ����� ��� � � ���� ⠬ Cross-Platform Release Notes.
��� �㯮 ��拉�� ����뭨 ⠡��� (Platform-Specific Information Includes memory recommendations, supported hardware, feature set tables, and platform-specific notes).
99.5>Q: ���� �� �����প� R2 ��� 3600 ?
A: Vladislav Nebolsine
***Hot News*** Announcing R2 support for the 3600 Digital Modems!!
Hot News!!!
===========
Announcing R2 support for the 3600 family of Digital Modems =================================================
The 3600 team is pleased to announce R2 support for integrated Digital Modems on the popular Cisco 3600 series platform. This feature is available with the introduction of IOS 12.0(1)T
This new feature supports the use of R2 signalling with the 3600 internal digital modems, enabling high-speed (up to 56kbps) remote access for branch offices and small/mid size ISP's who utilize this specific line-signalling protocol.
This announcement extends the range of connectivity options available for
the 3600 Digital Modems, now supporting:
PRI CAS(CT1) R2 (CE1))
By supporting this flexible range of signalling protocols , the 3600
digital modem solutions can now be deployed on a world-wide basis!
A Country list and Mini Q&A follow.
Countries configurable with R2 on the 3600: (this is a subset of the
supported 5300 R2 countries)
=================================
Argentina Australia Brazil * China *
Columbia Costa Rica
Eastern Europe mode supports:
Croatia Russia * Ecuador (ITU and LME)
Greece Guatemala Hong Kong (China & ITU Variants)
India Indonesia Israel *
ITU mode supports:
Denmark Finland Germany
Russia (ITU variant) *
Hong Kong (ITU variant)
South Africa (ITU variant)
Korea * Malaysia * Mexico (Telmex and Telnor) *
New Zealand * Paraguay Peru
Philippines Saudi Arabia
Note: All countries listed have been tested in house. Countries marked
with a * have also been successfully tested in-country.
Mini Q&A
=========
Q. What is R2 ?
A. R2 is a signaling system (Q.422) used by a number of countries
worldwide. This signaling system runs over an E1 Carrier (2.048Mb/s), containing 32 64Kb/s timeslots, of which, 30 timeslots can be used
for digital modem calls.
Q. Does this feature require new hardware in the 3600?
A. No
Q. What network modules support this feature?
A. All the current 1/2 PRI NMs, including the new 1FE 1/2 PRI NM.
Q.Is the Cisco Dial-out Utility supported through an R2 connection?
A. Yes. Version 2 of the Cisco Dial-out Utility (available early
November) together with MICA Portware 2.5.1.0 support Dial/Fax out
through the R2 interface
Q. Is this R2 feature supported the Cisco 2600, 3620, and 3640?
A. The ability for Modem calls to be terminated through an R2 interface
is available for all platforms that support Cisco digital modems. This currently limits R2 support to the 3640/3620
Q. Do I need a new version of the digital modem microcode to support R2?
A. No. All shipping versions of Portware are supported. For information
on Portware and instructions on downloading the latest version, please
visit:
http://www.cisco.com/public/sw-center/sw-access.shtml.
Q. What IOS is required to utilize this feature?
A. IOS 12.0(1)T and above
Q. Can I support ISDN PRI R2, and CAS in the same chassis?
A. Yes, on a per network module basis. Each individual PRI NM can be
configured as R2,CAS or ISDN PRI.
Q. What countries will this R2 feature be available in?
A. At FCS, a subset of the 5300 supported R2 countries will be supported.
All Countries in the list above have been successfully tested internally.
Q. Will the new mixed media FE/PRI support R2?
A. Yes.
Q. Can two PRI/R2 links share one DM NM?
A. Yes. The pool of modems is available to all R2/PRI interfaces.
99.6>Q: ����� �� ������� �㤥� ५�� V.90 ��� MICA ?
A: (Oleg Zharoff)
��襫 ������� ����������� ५�� V.90 ��� MICA �������, ����� 2.5.1.0.
(broken link)
99.8>Q: ��� ����� - �� ����� ��� ���⠢��� ����� �� � H�����쭮��
������ ? H�砫 ���� ��� �� VLAN� - � �������� �����. MS ࠡ�⠥� ��ଠ�쭮, � H������ ������ �� ���.
A: (Serge Turchin)
�ய���� spantree portfast �� ����� ��⠫���.
[13.06.2000] 99.8.1>Q: ��� ���⠢��� ����� �� 2924XL ����॥ ���樠��������� ?
A: os@alkar.net
Using Portfast and Other Commands to Fix Workstation Startup Connectivity Delays
99.9>Q: ��-����� �����, ��� ���� � ���ﭭ� ���� �� 1020?
A: (Gleb Pijov)
Question: How do you recover lost passwords on a Cisco 1020?
Answer:
As the Cisco 1020 is rarely physically secured, password recovery is
done by calling Cisco and providing a system generated CHALLENGE. Using
the override program, the support engineer can provide a one-time
password to use to get into enable mode. Then, follow these steps:
1.Customer: Put up dip switch 1 and apply power. You should see
"Console Username:".
2.Customer : Login with Username "enable" and Password "override". It
will print a CHALLENGE.
3.Cisco runs the override program and prints a RESPONSE.
4.Customer: On the 1020, log in as "enable" and give the RESPONSE as
the password. That will get you the # prompt, then you can do a wr t to
see the current enable password. Or, you can do a config t and reset the
enable password.
99.10>Q: ����� � MTU �� interface tunnel.
A: "Philipp V. Patrushoff"
BugID: CSCdm54169
[13.09.2000] Vladislav Nebolsine, NB !!!
��� ��ࠢ��� � 11.3(11) � 12.0(6)
You cannot change the MTU size of a tunnel interface using software
after Cisco IOS Release 11.3(9.2).
Workarounds:
Use images between Release 11.3(5.1)T and Release 11.3(9.3) or
Release 12.0(0.16) and Release 12.0(4.2).
Configure ip mtu on the tunnel interface before you configure tunnel destination. If tunnel destination is already configured, then unconfigure
the destination, configure ip mtu, and then reconfigure the destination.
You need to wait five seconds after removing the tunnel destination before issuing the ip mtu command. Once the workaround is issued, there should be
no problems in the event of a router reboot as the ip mtu command
is parsed before the tunnel destination.
[27.12.2000] 99.11>Q: ���� ���쪮 ��᮪ �p�� 25xx. Hy��� �����p������
�� ��� � ��p�������� ������ ������ X25 routing, �p�祬 ����⥫쭮 ����� �p��⮬ ��-��� FreeBSD. ��� ?
A: (Alex Bakhtin), (John Gladkih), (Vladislav Staroselsky)
=== newconfig ===
interface serial
shutdown
exit
no x25 route ...
x25 route ...
interface serial
no shutdown
end
=== newconfig ===
=== Cisco config ===
ip rcmd rcp-enable
ip rcmd remote-host enable
ip rcmd remote-username
rlogin trusted-remoteuser-source local
rlogin trusted-localuser-source local
=== Cisco config ===
=== change_routing.sh ===
#!/bin/sh
su -c "rcp newconfig @:running-config"
=== change_routing.sh ===
� newconfig ��⠢�塞 �y��� ��������� ⥪y饣� p�y⨭�� (�p�� no route � route). �p����뢠�� �� FreeBSD p�. � �y��� ������ ���y᪠�� change_routing.sh
[23.01.2001] 99.12>Q: ��祬� �� ping'������ �����쭮�� ����䥩�
��᪨ (� �ਬ��� Serial 0) round-trip � ��� ࠧ� �����,
祬 �� ping'������ 㤠������ ���.
A: (Eugene Zhilitsky)
������� ����䥩�� ��᪠ ������, �१ 㤠�����.
A: (����� ��������)
� point-to-point ������ �१ �ਠ�� ���� �ᥣ�� ࠡ�⠥� �१ ��ன ����� �����, �.�. ����� ������� � ᮡ�⢥��� ����䥩�, ������ �ᥣ�� ����� �� ����䥩� �ᥤ� � ���������� ���⭮. �� ����� 㢨���� �� �६��� �����. �.�. � ᮡ�⢥��� ��������� serial ����䥩� �� ���������.
A: (Maxim Basunov)
ip route localip loopback0
[16.02.2001] 99.13>Q: ����� �� ���-����� �ਣ������� 'ip mask-reply'
�� ����䥩�?
A: (Victor Sudakov)
���� �������, ���ਬ�� ������� �ਭ�-�ࢥ�, ��� ������
�� �����⢥��� ᯮᮡ ������ ���� �����.
[28.02.2001] 99.14>Q: � trunk'���� ����� ��⠫���, � ���� ������祭 router, switch ���� input/CRC error. �� ������?
A: (Jen Linkova)
1)���⪮� ������� speed & duplex
2)�⪫�祭�� cdp � ����� ��
3)no keepalive � ��� ����
A: (Oleg Stasiuk)
� ��� ���㬥��� ���p���� ����c���c� c����� c ��c����c�������
c��p�c⥩ � �㯫��c�, ������c⨪� � ��⮤� �p�⨢����c⢨�.
Troubleshooting Cisco Catalyst Switches to Network Interface Card (NIC) Compatibility Issues
Configuring and Troubleshooting Ethernet 10/100Mb Half/Full Duplex Auto-Negotiation
[14.12.2001] 99.16>Q: ��� �������� �� �������, ����� � ���᮫� ?
A: (Sergey N. Okishev)
Configuring Accounting
������ �ommand Accounting. ���� � ��� ��, ������ �� sh ver.
99.17>Q: ��� ����� �१ rsh �믮����� ������⥫쭮��� ������ ?
��ਬ�� conf t; int xx; shutdown
A: ����. �ᯮ���� ������ ���䨣��樨 ���।�⢮� tftp/rcp/snmp.
99.18>Q: ����� ���� ����� (�� த���) ����� ��⪭��� � PIX 525?
A: (Irakli Natsvlishvili)
http://www.cisco.com/warp/public/770/fn15028.shtml
99.19>Q: ����쪮 ����� ���� �����᪨� ����䥩ᮢ �� ��᪥ ?
A: (Pavel Rodionov)
Maximum Number of Interfaces and Subinterfaces for Cisco IOS Software Platforms: IDB Limits
[25.12.2003] 99.20>Q: �������� �� ���� ᮤ�ন���� ����⮢ � �᪨?
A: (Denis V. Schapov)
� ��諥���� ����⠡��
IP Traffic Export
� ���� ��ᬮ����
debug ip packet dump
A: (Alex V. Belinsky)
������� ���稩 ��䬪 �� ��㣮� ���� �� ᢨ��, �� ��� ᨤ�� unix
box � ��蠥� tcpdump'��.
[03.08.2004] 99.21>Q: �����ᨫ vty 0. H� clear line [x] � clear line vty [y] �᪠ ������, �� [OK],
�� ॠ�쭮 �� ������ vty.
A: (Alexandre Snarskii)
H��� tcb (tcp control block) �⮣� ᮥ������� � ������� ��� ��
��� tcp-ᮥ�������.
RT001-201#show tcp brief
TCB Local Address Foreign Address (state)
447236F0 192.168.10.131.23 remote.host.removed.32781 ESTAB
RT001-201#clear tcp tcb ?
<0x0-0xFFFFFFFF> TCB address
T001-201#clear tcp tcb 447236F0
[confirm]Connection closed by foreign host.
- ��� ⠪ � ᠬ ᥡ� � ��誨 ����⨫.
[01.02.2006] >Q: � �����㦨�, �� CISCO BootRom ᮤ�ন� ������ ������� 'priv' ����� ��訢��� ���.
�� �� �� ������� � ��� ����� ��� ?
A: ������� 'priv' - �� �孮�����᪠� ������� BootRom.
��� ���뢠�� ����� 20 �������⥫��� ������: ���� ������, �����, �⫠�稪 � �.�.
CISCO �� ᮮ�頥� ��� �� ������ �������. ������ ��⮤ �����樨 ��� �� �����㦥�.
��� �������� �� 10 ����� ���⮢ serial cookie. ������ ���ᠭ �����:
http://ers.msk.ru/cisco/priv.html
===========================================================
NN. ����⪨ �� �����.
===========================================================
Sergey Trofimovsky - PPP per-user timeouts explained
http://www.employees.org/~dpeng/per_user_timeout.htm
���� ������, ��稭�� � 11.3(8)T (��� AA :-) timeouts 㦥 � � PPP/PAP ࠡ����.��� ����⮢ � vprofiles etc.
Dmitriy Yermakov - ���-� ��稭�� � 11.3(5)T ������
ppp authorization per interface
⥯��� ����� �⪫���� ���ਧ��� �� leased line � enc ppp
Serge Turchin - � 12.03T ����� X.25 over FR...
Vladislav Nebolsine - H�, � ������ �� �⮩ ��樨 ����� ������ Annex G (X.25 over Frame Relay)
Dmitriy Yermakov - �ॡ������ � ��ꥬ� �����
Cisco-on-line Conference on Comptek
Martin McFlySr
Cisco Year 2000 Product Compliance URL
Dmitriy Yermakov - ����� � Zelax M115 �� �離� cisco-unix,
�襭�� �� ����� �������� -
http://knot.pu.ru/faq/pppd.html
��ᯠ��� ࠧ����� �������, ���䨣� ��� ������� -
http://www.links.ru
[13.06.2000] Cisco IOS Software RoadMap
[13.06.2000] Vasily Ivanov - ��࠭�祭�� ��� ������� ��� MICA ������� -
(broken link)
[04.07.2000] Vladislav Nebolsine - � ���� ����᭮ - � 12.1(2)XH ������ - �����প� E1 R2 ��� 2600/3600/7200,
- Caller ID ��� 3810/2600/3600,
- ISDN PRI Q.931 User-Side/Network-Side ��� ����ᮢ�� ���㫥� 2600/3600
(�� �⮣� �� ⮫쪮 Q.SIG)
- � ���-�� ��㣮�.
�������:
New Features in Release 12.1(2)XH
[04.07.2000] ����ࣥ��� � NM-*AM (����� � NM-8AM (NM-16AM))
����⮬�:
1. ������ �� ����� ���� �� �室�饬 ������.
2. ������ �����뢠�� ����稥 �室�饣� ������ ���� �� ������祭�� � ⥫.�����.
3. �� ������ ����� ⥫��⮬ �� ����� ⥫�䮭 - �����
handshack-ᨣ���� - ॢ 50 ��.
�������� ���.
[27.12.2000] Yuri Vorobyev - Cisco ground
http://www.cisco.com/univercd/cc/td/doc/product/access/acs_mod/cis3600/3600_ cn/nebslugs.htm
[02.08.2000] Gosha Zafievsky NM-8AM, NM-16AM _��_ �����ন���� ०�� leased line.
P.S. (DY) �����騥 ����� ����ᯥਬ������ � ATA � ����般 �६����
�������� CARRIER. �� १���� �� ������.
[12.09.2000] john gladkih - LL (leased line) �� MCOM ������� (NM-8/16AM)
���� ����ᮢ��� LL �� MCOM �������? ��� ࠡ�⠥�.
�� �������� 18 ����� �� ���⪮� �����. ��१ DDR+RIP
[06.02.2001] Alex Bakhtin - ������� ��� LL ᠯ��p� ��� NM-8(16)AM. � ������ 12.1T �p���.
������ - Leased Line Support for Cisco 2600/3600 Series Analog Modems
NB !!! Loop current is required.
(john gladkih) - ���殮��� �� ������祭�� ������� � 2-� ��
� ����� ������ ���� _��_ _�����_ 12-18 V, �� �⮬ ⮪
_������ ����_ _��࠭�祭_ ���筨��� �� ~1.2mA
[05.09.2000] Victor L. Belov - �㭭��� � win98 �� cisco router
��ਠ�⮢ 2 =-)
1. pptp �����ন������ ⮫쪮 � ᯥ樠�쭮� IOS
(12.0.7XE �� ��... �� ����� �筮) �� 7xxx ������⨧����.
� ��㣮� ��� pptpd �� FreeBSD � Linux ࠡ�⠥� ��ଠ�쭮.
2. �� ������ ������⨧���� �����ন������ l2tp �㭭���,
�� ⮣�� �� 95/98/NT �ਤ���� �⠢��� ���. ������ - ���ਬ��
WinVPN ��
http://www.routerware.com
� Windows 2000 ���� ������� �����প� l2tp. � ���� �����
����� ��� � Cisco IPSec - ����砥��� ᮢᥬ ���.
[22.10.2000] (DY) �ᥢ���뤥����� �� 祬 㣮���, ��� ��������� �����.
��� ����ࠨ���� DDR - ���� ����.
� �⮡� ��᪠ ᠬ� ��������� ����� �� ����ᨬ� �� ��⨢���� � ��,
����୮�, ����� ��� ����ந�� ntp �� ��᪥ :)
[09.12.2000] Valery Filippov - 4500 �� �ﭥ� 4Mbit �� DCE.
[27.12.2000] Eugeny Krasilnikov - undocumented Cisco IOS commands
http://boerland.com/dotu
[23.01.2001] Dmitri Lubimkov - AS5300 & [Bb]ad modems
��室� �� 祣� 5300-� ����砥� ������ ��� bad? ������� ��� ��� ���
���, ���� �� ��室�� � ���ﭨ� (�� show modem call-stats) 'B' ���
'b'.
H��쪮 � ������� B ��-�� ����讣� ������⢠ ���ᯥ��� ������⮢ (����������).
4-� �⮫��� � show modem. ����� ���� AS5300 �� �� �⮣� ������ � ���
�� �� �ࠢ����.
� b ������� ����୮� ⮫쪮 ����� �� � ���䨣��樨 �⪫���� - � ����� � ���.
� ����� ���-��� ��� ��饣� reload �ਢ��� �� � ���⢮? � ��� �� -
�����. � ����� ⠪ - ᬮ��� � ������ ����� �⭮����� Bad �����. H� ����� ���㫥 6 ��� 12 ������� - ������ �� ������. firmware ����㦠���� � ����� -
� ���쪮 ������� �ࠧ�. ������� spe - �����, �� ��稭����� � 0. �।������� � ⥡� Bad 9-� ����� - �� spe 1/1. ����� �������:
spe 1/1 1/1
firmware location flash:mica-modem-pw.2.7.2.0.bin
firmware upgrade busyout
�� ������� �� ��࠭���� �� �ਪ��뢠�� ����� ������� ������� ᥩ�� (�� ���� �����) � �� ��������� ���� �ਤ�� recovery time. ������� sh modem - �������� ������ ���� ����祭� ��� ! ����� Cisco ⥯��� �㤥� ����� ����� �������� �� ��⠫�� ������ �� ���㫥. � �� �� ⠪�� �����, �
�������
clear line :-)
� �룮���� ��� ���짮��⥫�� � ����� �� ����� firmware ����� ����.
���쪮 �����, �� modem ��稭����� � 0, � line � 1 - ���� 1 �ਡ������ �
������ ������ � clear line
! ������� �� p ��⮬ �� D � ��⮬ ������ ᭮�� ����㯭� - �� ��������
����� ����� ������.
ᥣ���� ����� _���� ����_ ���쪮 ������� ��ᥫ� � ���ﭨ� 'p' �
����� �� ���� �� ��室���. �� �� ����� ���� �� �����?
��稭� ����୮� � �⮬ �� - ����� �� ������ �� ���㫨 � p �ॢ����� � D
����� IOS'� - 12.0(7)T, SPE ���䨣����:
spe 1/0 2/9
firmware location flash:mica-modem-pw.2.7.2.0.bin
firmware upgrade recovery
����� �� ������ ��⮬�⨧���� ������� � ६��� ������� �� ����� modem ?
H������ ������ ���� �室��� � T (Back-to-Back test in progress) � ���㤠
�� ���������� - ��� ⮣�� 㦥 ⮫쪮 ��१���㧪�.
� ��⠢�� ��� ��⮬�⨧��� - �㪠�� ��� ��������.
[23.01.2001] �� loadbalancing, per-packet, per-destination.
A: Vladimir Chepikov - Cisco - Sample Configurations for Load Sharing with >BGP in Single and Multihomed Environments
A: Urri Kotov, Victor L. Belov, Valery Filippov
All: ������� ���䨣����: CISCO 7120 ᮥ������ � 2611 ����
�������� 1920 � 1280 ����. ��䨪 (ISP) ��� �� 2611 � ��� 7120.
��� ����ந�� ��᮪, �⮡� ��䨪 ����� �� ������� _�ய��樮���쭮
�ய�᪭�� ᯮᮡ����_ ������? ���筮 ��䨪 ���� ࠢ����୮,
����訩 ����� �室�� � ����饭�� � �ᥬ� ��⥪��騬�. �� �⮬ ����
�⮡� �� ���뢥 ��� �� ������� �� ����娢����� �
ࠡ���騩.
����� ��⮪�� ������⨧�樨 ����饭?
BGP. H� ����� �������� �� 㣮���.
EIGRP 㬥�� ���뢠�� bandwidth, delay, load � �.�.
H��쪮 � �������, �� ��⮪�� �������� ������⨧�樨
� ����筮� �⮣� �ய��뢠�� � ⠡���� ������⨧�樨 ��।������
�������. � � ⠡��� ������⨧�樨 ����뢠���� ���� ������� �
���� ��� ����� �������묨 ���⠬� (���ᠬ�), (�� ����� �ய����
� ��⨪��, ��� ��直� ⠬ EIGRP � ��.), � ��।������� ��䨪�
�� �� ����� (����) ������� �� ᠬ ��⮪�� ��������
������⨧�樨, � ��-� ��㣮�. H� www.cisco.com �� ����⪨
���᪠ �⮣� 祣�-� (load balancing) �ਢ���� � ���� ���殢 ��
���ᠭ�� ip cef. ������ � �� �몫�祭��� ip cef �᪠ ��-⠪�
��।���� ����㧪�.
������� ������ � �, �� ��� 㬥�� �� ������ ���类: per packet
� per destination. � � �ࠢ��쭮 ��� �� ������᪨, �
per packet ����砥� ���� �।������ ����⮢ (���� ���, ��ன
���). Per destination ������� ���� - � � ���� ��������
�����, ��� destination-���� ���ண� ��� �宦����� �
���-���-⠡���(?), ���� ᮧ���� �� �宦����� � �ய��뢠��
�㤠 ����, ����㧪� �� ����� � ��� ������ �����.
H� ���� �� ��⮤�� �� ���� �࠭⨨, �� ���� �� ������� �� �㤥�
�室��� � ����饭��, ��⮬� ��� � ��砥 per packet �� �ᥣ��
�㤥� ����訩 �����, � � ��砥 per destination, ��� �����뢠��
�ࠪ⨪�, �ᥣ�� �������� �����-����� ������ � ⮫��� �������,
����� ��筥� ���� ��-����� ����讥, � ���� ��� ��䨪
������ �१ ���� ����� (��, ����� �� ����� ����㦥� �
������ ᮧ����� ��� �⮣� ������ ����� � ���-���-⠡���).
����� ��⠥��� ������.
�� per-packet �ந�室�� ��� ����㧪� �������
�� �� ࠡ�⠥� �� processor switching, ���쪮 �
�������. �� �� ᠬ�� �� fast switching ⮫쪮 ��
CEF ��������. � per-destination ࠡ�⠥� �� fast
switching'�, �� ���� �祭� ��ࠢ������� ����㧪�
�� ������. ����� �� ������ ����筮, ��⮬� ���
route-cache. � ������� CEF � EIGRP ����� ᤥ����
non-equal multi-path (ࠡ�⠥� ���ਬ�� � ���⥫�����
�� ������ � ��������, ���� �⢮� - 16����, ��㣮� -
34����). ����� load-balancing ����� ᤥ���� ��
processor switching (�� ����� ����䥩�� no ip
route-cache) �� �������� ����� ��� �� OSPF,
��� �� static. ������ �� �������� � ᬥ� � BGP.
�������� ᪠��� 2 serial unnumbered �� loopback.
�� �⮣� � ����� �� ��⨪� � 1 bgp ����
����� loopback'���. ����� ᤥ���� � �� 2-� bgp-
�����, �� ����� ⠬ full-view � �� �� ��ࠢ����.
� �� ��砥 �㦭� OSPF ��� BGP ᪠���� maximum
paths = 2. H� �� �� ⥮��, � � ������ ��砥
�� ��ࠢ��業��� ������� ��室 ⮫쪮 ���� - CEF+
EIGRP.
(Valery Filippov) :
�� ��ࠧ�� ��砫쭥�. ��䨪 � ��砥 per-packet load-balancing
������� � ᮮ⢥��⢨� � �����맢��⭮� ����稭�� "traffic share count",
��� � �������� �� ࠧ����ࠧ��� �襪 ��⨭����� ��⮪����.
� ��砥 � eigrp ��室� �� bandwidth, delay,load ... ��������
metric-� ��� �� ࠧ�� ������⠬ 楫������ ������� ������
��� �� ��㣠 � ���� ������� ���稭� traffic share count.
�.�. share count ��� ��襣� ������� �ᥣ�� 1.
��室� �� ��襨��������� ����⭮, �� ����� �������� � �������
eigrp ����� ������� �� �⭮襭�� "�ਭ" ������� N:1.
(�ਬ�� � ���⥫������ ���� ���������, �������, � ������ 34� � ��� ��⠥��� �ਬ�୮ 2 � ������ ������, ����� ����� 16� 㦥 ����㦥� ���������).
� �� ��襫 ᯮᮡ� �������� �� share count "����襣� ���" (ࠧ��-�� ��������� �������� ios � ���ᮢ��� ���ਬ�� balancing 3:2 � ������� ��⨪��
ip route a.a.a.a 255.255.255.255 c.c.c.c
ip route a.a.a.a 255.255.255.255 d.d.d.d
ip route a.a.a.a 255.255.255.255 interfaceC
ip route a.a.a.a 255.255.255.255 interfaceD
ip route a.a.a.a 255.255.255.255 interfaceC c.c.c.c
;)), ���⮬� ��室���� ��� �� ������ � cisco � ������� � ���������
��譨� "��ନ���" �����, ���ਬ�� Tunnel �������쭮� �ਭ�. ��� �ਬ�� ࠡ�祩 �������樨 � ��������� ���� ������� 2M � 1.66�.
router#sh ip route X.X.X.X
Routing entry for X.X.X.X/32
Known via "eigrp YYYY", distance 170, metric 2663936, type external
Redistributing via eigrp YYYY
Last update from A.A.A.A on Tunnel0, 09:11:34 ago
Routing Descriptor Blocks:
B.B.B.B, from B.B.B.B, 09:11:34 ago, via Serial4/5
Route metric is 2663936, traffic share count is 96
^^^
Total delay is 55000 microseconds, minimum bandwidth is 2038 Kbit
Reliability 255/255, minimum MTU 1500 bytes
Loading 1/255, Hops 1
* C.C.C.C, from C.C.C.C, 09:11:34 ago, via Serial4/4
Route metric is 2946304, traffic share count is 87
^^^^
Total delay is 55000 microseconds, minimum bandwidth is 1664 Kbit
Reliability 255/255, minimum MTU 1500 bytes
Loading 1/255, Hops 1
A.A.A.A, from A.A.A.A, 09:11:34 ago, via Tunnel0
Route metric is 256640000, traffic share count is 1
^^^^
Total delay is 25000 microseconds, minimum bandwidth is 10 Kbit
Reliability 255/255, minimum MTU 1476 bytes
Loading 1/255, Hops 1
X.X.X.X �ᯮ������ � ����⢥ loopback ���� ��� bgp.
Serial4/4 is up, line protocol is up
MTU 1500 bytes, BW 1664 Kbit, DLY 50000 usec, rely 255/255, load 81/255
30 second input rate 416000 bits/sec, 275 packets/sec
30 second output rate 489000 bits/sec, 203 packets/sec
Serial4/5 is up, line protocol is up
MTU 1500 bytes, BW 2038 Kbit, DLY 50000 usec, rely 255/255, load 65/255
30 second input rate 442000 bits/sec, 311 packets/sec
30 second output rate 575000 bits/sec, 237 packets/sec
Tunnel0 is up, line protocol is up
MTU 1514 bytes, BW 10 Kbit, DLY 20000 usec, rely 255/255, load 153/255
30 second input rate 4000 bits/sec, 3 packets/sec
30 second output rate 6000 bits/sec, 2 packets/sec
[20.02.2001] (Sergey Budnitsky) ����� �� �����প� V.92 - Cisco Systems Supports New V.92 and V.44 Modem Standards on Its Award-Winning Remote Access Platforms
(Andrey Kostin) ����������.
NextPort CSMv6 modems (AS5350, AS5400, AS5800 with 324-modem cards)
March 2001: V.92 Quick Connect and Modem on Hold, V.44
Q3 CY 2001: V.92 PCM Upstream
MICA modems (3600, AS5300, AS5800 with MICA cards)
April 2001: V.92 Quick Connect and Modem on Hold, V.44
(no plans for V.92 PCM Upstream)
Microcom modems (AS5200, AS5300)
No upgrades; firmware is End of Engineering
[04.09.2001] (Denis V. Schapov) ���, ������ � �� CCO �� ttcp
����� ���� �ਣ������.
Using Test TCP (TTCP) to Test Throughput
[04.09.2001] (Denis V. Schapov) CallBack
From Cisco IOS version 12.1(7), it is possible to use the Internet
Engineering Task Force (IETF) RADIUS attribute 19 for ISDN and Analog
Microsoft callback.
Auth-Type = Local, Password = "cisco"
Service-Type = callback framed
! --- Service-Type (6) is callback framed (4)
! --- Callback framed is also known as Dialback-Framed-User
Callback =6083
! --- IETF RADIUS Callback attribute (19) with the phone number
! --- for the callback
�� ���� ⥯��� ����� �㤥� per-user ࠧ���� ������� _⮫쪮_ callback.
[20.09.2001] (Dmitry Morozovsky) HotSwap �� 3660
3661, ᥩ�� ���� ����� (2CE1, FE, 1E2W, 4T). IOS � 12.0T �� 12.1(5)T9.
���頭�� ���墠� �������筮�� ����� �� � �� ���� ࠡ�⠫ �ᥣ��; ����� ⮣�, � 12.1 �� ᢥ����⠢�塞� ���㫨 ���४⭮ ���墠�뢠���� �� 室�. � 12.0 ������ (����-�ன�� ࠧ) �������� ��१���㧪� �� "��⮡��� �訡���"
(Sergey V. Artjushkin) Intel460T �� �祭� ���४⭮ ࠡ�⠥� � dot1q.
1) �� �ਢ���쭮 ����ࠨ������ �࠭� ����
2) ����� �몫���� spaning tree �� vlan'��. ����� �㭪�� � ᢨ��
��������, �� �� �����ন������. Intel ��樠�쭮 ��� �� no work around. (Dmitry Frolov) � ���⮩ ���䨣��樨 � 1 ᢨ祬 �� ࠡ�⠥� ��� ��४����. H���室��� ������ ᢨ� ��訢��� 4.60.85. � � ���짮���� fbsd,
� stable ��ࠧ� �� ࠭�� ������ ᥣ� ���� (��䨪ᨫ� vlan'�).
[25.04.2003] (Eugene Grosbein) Tx level ��� ������� Microcom
��� ������� Tx level - ॣ����� :T52 ��� V.90 � :T51 ��� V.34
[09.06.2003] (Vitaly Gonchar) CA, BSD, Cisco - VPN solutions with IPSec (IPSec IP Tunnel Cisco<->FreeBSD, IPSec GRE Tunnel Cisco<->FreeBSD)
Resolve IP Fragmentation, MTU, MSS, and PMTUD Issues with GRE and IPSEC
[22.07.2003] Cisco IOS Packaging 12.3 packages
[19.02.2004] (Dmitri Kalintsev) Portable Product Sheet - Router Perf (���� ⠡��� �ந�����⥫쭮�� ���)
tftp � Cisco IOS ����� 32��
- �ᯮ�짮���� tftp-hpa
- �ᯮ�짮���� FTP (� ⮬ � � �� rommon - �. tftp ����� 32MB � ru.cisco)
Cisco routers & SSH
��� ⮣� �⮡� ��ࠡ�⠫ ssh �㦭�:
- ᮮ⢥�����騩 IOS
- transport input ssh �� line vty 0 X
- ᣥ������ � �ਢ易�� ����:
ip domain name example.com
crypto key generate rsa general-keys label CISCO_KEY_LABEL modulus <360-2048> ip ssh rsa keypair-name CISCO_KEY_LABEL
--- cut here ---
* Origin: ... (2:5030/49)