"no keepalive" and "no shutdown" command on router and switch interface

Similar Messages

• Why can't I connect to my wifi on my IPAD at home, my laptop does. And yes I have a router and know the password.

  why can't I connect to my WIFI at home, my laptop does. And yes I have a router and I know the password.

  Look at iOS Troubleshooting Wi-Fi networks and connections  http://support.apple.com/kb/TS1398
  Also try this - Turn Off your iPad. Then turn Off the wireless router & then back On. Now boot your iPad. Hopefully it will see the WiFi.
   Cheers, Tom 

• When I share a video with fcpx and it goes to Quicktime, the last few seconds goes mute. I checked the clip and sent that the same route and all is fine. It is only when I send the whole 3gb video. Any ideas?

  When I share a video with fcpx and it goes to Quicktime, the last few seconds goes mute. I checked the clip and sent that the same route and all is fine. It is only when I send the whole 3gb video. Any ideas?

  paul71054 wrote:
  ... Any ideas?
  add a few seconds black to your project.
  Try again.
  could be some really weird codec problem, with 'cut' GOPs', .. somethin'...

• Any idea why i get constant "sim failure" messages and a shutdown?

  I am getting constant Sim Failure messages during itube video playing, resulting in shutdowns. Any ideas why and a solution?

  Brett,
  Well done getting the wireless network secured.
  You have to precede the (hex) password with a '$' in Mac OS, to tell the Internet Connect dialog box that you are keying a hex password (rather than ASCII). This is because the Mac has detected that the network is WEP protected, and leaves it to you to decide how you want to key the password.
  As an alternative, in Internet Connect (or from the AirPort icon menu), you can elect to join an "Other" network. If you select your network again, it'll come up with "WEP Password" as the option of Wireless Security. You can change this to "WEP 40/128-bit hex" and then not have to precede your password with the '$'.
  Alternatively, you could tell us the make and model of your wireless router and we can tell you how to set, and use an ASCII password. From your 10-character hex password, we can see that you're using 40/64-bit WEP. Non-Apple routers can be a bit fussy when using ASCII passwords with 40-bit WEP (don't worry, this is also true for Windows PC's using 40-bit WEP too), but we can talk you through it.
  As a final alternative, as you have such a whizzy Mac, as long as your wireless router supports it, you could use WPA security, and never have to worry about ASCII / hex / '$', etc. Older Macs (particularly original AirPort cards - not AirPort Extreme - and OS9) were limited to 40-bit WEP.

• Lead Time - Customizatiou0131n steps: Shipping point, route, and loading group

  It says about delivery scheduling that "The lead time considers the shipping point, route, and loading group". Can anybody explain me briefly the customization menu steps about this sentence?
  Thanks in advance.

  Please go through this document it will help you
  1) Maintain transportation planning point through Menu as follows:
  IMG Maintain Logistic Execution  Definition Enterprise Structure  transportation planning point.
  Create your own like BP01 enter the general data¡¯s required
  2) Defining modes of transport:
  IMG RoutesBasic Transportation Functions  Transportation Logistic Execution Define modes of transportDefine routes
  Use the standard like:
  Shipping type: 01
  Description: Road
  3) Define shipping types :
  Basic Transportation Transportation Logistic ExecutionIMG Define shipping types Route Functions
  Or through T-code: SM30
  PT: 01
  Description: Truck
  Mdtr: 01
  STPG: 0001
  4) Define transportation connecting point :
  LogisticIMG DefineRoutes  Basic Transportation Functions  Transportation Execution Define transportation connection pointsroutes
  Copy the std point and make it FB01 as departure zone and FB02 as destination zone
  5) Define routes and stages.
   Logistic Execution IMG Define Define routes Routes  Basic Transportation Functions Transportation routes and stages
  Use the standard route and copy it as FB0001 and enter the departure zone and destination as what we created.
  6) Defining Transportation Zone:
  Basic Transportation Logistic Execution IMG Define transportation Router determination  Route Transportation Functions zones
  Use the standard transportation zone depending on the route so as for the example use 0000000003 - Southern Region
  7) Maintain country or transportation zone for shipping points
   Logistic Execution IMG  Route determination  Route  Basic Transportation Functions Transportation Maintain country and transportation zone for shipping point
  Shipping point be ASH1 and route as 0000000003 which is assigned to country India
  8) Maintain route determination:
  Logistic ExecutionIMG Route determination Route  Basic Transportation Functions  Transportation  Maintain route determination
  Country of departure: India
  Departure Zone: 0000000003
  Country of destination: India
  Destination Zone: 0000000003
  And enter the data’s needed like shipping condition 01, etc.
  Maintain Transportation relevance for shipping point, sales document type and delivery types.
  9) Now create shipping types
  IMG Define shipment Shipments  Transportation Logistic Execution types
  Copy the standard 0001 and make it to AFIL
  10) Define and assign traffic zones through T-Code: T_76 (or) thru menu as follows
  IMG Define Basic functions  Shipments cost  Transportation Logistic Execution and assign tariff zones
  Copy the standard and make it to FABTARIFF and assign our transportation planning point as ATP1, ATP2 assign tariff zone to every particular transportation planning point
  11) Define and assign pricing procedures
  Shipments Transportation  Logistic Execution IMG define and assign pricing Price control  Pricing cost procedures
  Copy the standard shipping cost pricing procedure SDFC00 to FBSC01
  12) Assign purchasing data:
   Logistic Execution IMG Assign purchasing data Settlement  Shipments cost Transportation
  13) Assign transportation planning point to shipping condition, purchase organization, purchasing group and to plants.
  14) Define Automatic G/L account determination:
   Transportation  Logistics Execution IMG Automatic G/L Account Determination Settlement Shipment Costs
  Or through T-code: OMWB
  Use G/L account 614000 as used in standard
  15) Automatic determination of CO assignments:
  IMG Automatic Settlement  Shipment Costs  Transportation Logistics Execution Determination of CO Assignments
  Or T-code: OKB9
  16) Maintain shipping point address.
   Logistics Execution  Definition Enterprise Structure Define, copy, delete, check shipping point
  17) Creating G/L account centrally.
  Financial AccountingAccounting  Master Records  General Ledger 
  Individual Processing Centrally
  Or through T-Code: FS00
  18) Enter the G/L account 614000 to the company code AFIL
  19) Create transportation condition records:
   Shipment cost  Transportation  Master data Logistic Execution createPrices
  Or thru T-code: TK11
  Enter condition type FB00 that is freight condition type, which is used as standard in the shipping cost pricing procedure.
  Enter the price and save it
  Process:
  1. The system determines the pricing procedure for the shipment cost item-using transportation planning point, service agent and shipment cost item category
  2. Calculation Basis
  3. Condition Record
  4. Access sequence.
  For the sales order, create a delivery using VL01N and pick the goods. Now create a shipment using VT01N and assign the delivery to the shipment document. Make sure to enter the carrier and other details before performing the transportation planning and execution. Save the shipment document and PGI for the delivery would be done automatically.
  A shipment represents a physical goods movement between two or more locations.
  For the system to create a shipment, shipping-relevant deliveries must exist.
  You use Transportation Planning to group pending deliveries into shipments and then to perform the shipments.
  The outbound delivery documents contain routes that the system calculates in route determination, and a transportation planning date for the delivery.
  Dynamic transportation planning is responsible for grouping together outbound deliveries into shipments that have at least the same route, visit plan type and the same transportation planning date.
  The following restrictions can be taken into account for a shipment in Dynamic Transportation Planning:
  • Weight
  • Volume
  • Variable capacity
  • Number of stops
  • Maximum duration
  • Loading units
  Create Shipment Document
  Use
  After the status of the delivery is open for transportation planning, it is possible to create a shipment document to schedule the transportation.
  Transportation Create Single document Logistics Logistic Execution  TransportationPlanning
  T.code: VT01n
  Enter your transportation planning point and shipment type. Press enter.
  Creating the shipment cost document
  Use
  After the deliveries are scheduled by shipment and the shipment is executed, now it is time to maintain and close the shipment document in order to record all relative information and ready for the shipment cost settlement.
  Single document Logistics Logistic Execution  Transportation Shipment cost Create
  T.code: VI01.
  After creation of shipment cost doc. You settle the Shipment cost.
  Go to VI02, enter shipment cost no.and press enter.
  Then go to Overview -- Fright cost items, Select the line item and double click it.
  Go as main menu: Item --> Acc. assignment, you enter G/L acc. and cost center to which the transportation cost will be posted.
  On the Standard change, details – Freight cost items screen, then check the check box “Transfer”, which means you will transfer the relative transportation cost to FI/CO, in this case, the system should determined which Purchase Order will used to settle the cost, so after you check the “Transfer” check box.
  Press save button on the current screen.
  Shipment cost settlement and documents:
  Use
  After the shipment cost settled in shipment cost document, it has the following affects:
  It creates a service entry sheet that refers to the purchase order determined.
  It posts acceptance of services performed.
  It creates an accounting document for the accruals.
  Further subsequent documents are created in FI.
  Create Delivery:
  T.code: Vl01n
  Create TO:
  T.code: LT03
  Create Shipment Document
  Use
  After the status of the delivery is open for transportation planning, it is possible to create a shipment document to schedule the transportation.
   Transportation Planning  Create Single document Logistics Logistic Execution Transportation
  T.code: VT01n
  Enter your transportation planning point and shipment type. Press enter.
  Creating the shipment cost document
  Use
  After the deliveries are scheduled by shipment and the shipment is executed, now it is time to maintain and close the shipment document in order to record all relative information and ready for the shipment cost settlement.
  Single document Logistics Logistic Execution  Transportation Shipment cost Create
  T.code: VI01.
  After creation of shipment cost doc. You settle the Shipment cost.
  Go to VI02, enter shipment cost no.and press enter.
  Then go to Overview -- Fright cost items, Select the line item and double click it.
  Go as main menu: Item --> Acc. assignment, you enter G/L acc. and cost center to which the transportation cost will be posted.
  On the Standard change, details – Freight cost items screen, then check the check box “Transfer”, which means you will transfer the relative transportation cost to FI/CO, in this case, the system should determined which Purchase Order will used to settle the cost, so after you check the “Transfer” check box.
  Press save button on the current screen.
  Shipment cost settlement and documents:
  Use
  After the shipment cost settled in shipment cost document, it has the following affects:
  It creates a service entry sheet that refers to the purchase order determined.
  It posts acceptance of services performed.
  It creates an accounting document for the accruals.
  Further subsequent documents are created in FI.
  Generally process is-
  1) VL01N
  2) VT01
  3) VL02N - PGI
  4) VI01
  5) ML81N – Service Entry Sheet
  6) MIRO – Invoice Verification
  Shipping docs (VT01) are created before PGI...
  You cannot carry out transportation planning or creation of shipment after the goods issue has been executed. Once goods issue is done it means that the material has left your premises so there is no need for a transportation planning after it.
  In case you need carry out the shipment documents at the end of the day you could just create the delivery documents during the day and at end of the day create the shipment documents and the goods issue
  This link is also usseful:
  http://help.sap.com/printdocu/core/Print46c/en/data/pdf/LETRA/SDTRA.pdf
  Hope this helps you.
  Regards
  nitin

• Introduce second default gateway into policy-based routing and optimization

  Questions:
  1) How to get the second PBR_DEFAULT_GATEWAY address 10.20.20.3 into the policy-based routing for redundancy?
  2) Any optimizations as more and more traffic (policy-based routed and otherwise) goes through interface Gi1/0/1?
  Address range A.B.0.0/16 represents assigned Internet-routable addresses.
  Network also uses 10.0.0.0/8, 172.16.0.0/20, 192.168.0.0/16.
  DEFAULT_GATEWAY router participates in OSPF and injects the default routes 0.0.0.0/0 10.10.10.1 and 0.0.0.0/0 10.20.20.1 into OSPF.
  PBR_DEFAULT_GATEWAY router participates in OSPF but filters out default routes injected by DEFAULT_GATEWAY router.
  ROUTER_A participates in OSPF and receives default routes injected by DEFAULT_GATEWAY router.
  ROUTER_A contains the attached policy-routing configuration that allows the subnet A.B.30.0/24 to route anywhere on the network and uses PBR_DEFAULT_GATEWAY as the way out.

  Ok I will see if I can run out to work and try this today..
  After thinking about this, If I need to get to local ip addresses (192.168.1.0 and 192.168.128.0), I might have to change my route map to include those ranges in an ACL, then assign the 172.20.200.1 as the gateway to get to those networks, with the last statement being the traffic to be sent out the firewall
  for instance
  # Access to one of my local networks
  access-list 101 permit ip 172.20.200.0 0.0.0.255 192.168.1.0 0.0.0.255
  # Send Internet traffic to ASA/PIX
  access-list 172 permit ip 172.20.200.0 0.0.0.255 any
  route-map pix-172-20-200 permit 10
  match ip address 101
  set ip next-hop 172.20.200.1
  route-map pix-172-20-200 permit 20
  match ip address 172
  set ip next-hop 172.20.200.2
  and so on?
  I know I need to be in front of my switch to test the change from set ip default next-hop to set ip next-hop...
  I wantto make sure I can still get to the local networks I need to get to.
  I appreciate all your help, and I will test this later on today..
  Thanks
  Don Hickey

• TS1398 Wifi in off and on mode: I have a problem connecting to my home wifi. Everytime i need to touch the wifi setting. I need to switch off and on again and again. Restarting my router does not help

  Sick of this wifi issue in my iPad mini.

  If you are having WiFi problems it is necessary to isolate whether the problem is with your network or your iPad. Note: Do NOT consider your network to be blameless if some other devices can connect to it.
  First, test your iPad on some other networks: a friends, Starbucks, Barnes & Noble, etc.
  If it works well there then the problem is probably with your network. Check for a firmware update for your router. If none exists which corrects the problem consider replacing the router.
  If your iPad does not function well on other networks it possibly has a hardware problem. You could try Settings > General > Reset > Reset Network Settings to see if that corrects the problem. If not, contact Apple Support or visit an Apple store for evaluation. They can provide a replacement if your iPad is bad.
  If you need more help please give the make, model, and version of your WiFi router and how you have it configured.
  See also here: http://www.apple.com/support/ipad/wifi/

• Using a router or switch with Airport Extreme

  I currently have an Airport Extreme 5th generation working great for my home network!  My ISP Modem (on ground floor "Level-B" of 3 story house including basement) attaches to the Airport Extreme via an ethernet cable into the WAN port.  Then each of the 3 LAN ports is in use:
  #1 going to my "main Mac" - MBP-13" just a few feet from the Airport Extreme in my lower level basement office (Level-A)
  #2 going upstairs to a non-WiFi eMac (Feb 2005) - that's on Level-C
  #3 going to my Canon MP640 printer/scanner so that I can use it for scanning (it is attached via USB to the Airport Extreme but that does not permit scanning)  This is located next to my MBP on Level-A
  OK but now I want to try to get my 1997 LaserWriter 12/640 PS (works great!) (and I have 2 expensive toner cartridges left!) set-up and I have some instructions on how to do this.  It will likely necessitate me having my Mac Pro G4-733 running OS 9.2.2 and the LW 12/640 both connected to my network via ethernet cables.  That's 5 connections and I only have 3 ports going out.
  But I do own a D-Link DIR-635 router and also an 8 port Peabird 8 por 10/100 Switch.  Can I use either of these to do the setup?
  OR - can I simply unplug the MP640 printer and the eMac for an hour or so that it will take to configure (if I can) the LW 12/640?
  OK but then if I do configure it, I won't need the G4-733 Power PC any longer, but I will want the LW 12/640 as part of my network so will at least need a 4th ethernet port at that time.  Do I then need to attach the router (or switch) and then connect the LW12/640 (and something else as the router or switch will use up one of the 3 Airport Extreme ethernet LAN ports…)
  Thanks for any comments on how to proceed here.
  Best regards,
  Steve Schulte
  Monday 14 January 2013

  Still have not found time to try to connect the Apple LaserWriter 12/640 but it is on my list-- have gotten that list down to just a few items--- so making progress!
  Now how to get my Apple Stock…………
  Best regards,
  Steve Schulte
  Thursday 24 January 2013

• How to set the router and play the Command & Conquer using direct IP mode?

  My router is WRT54GFirmware Version: v3.03.1
  How to set the router and play the Command & Conquer using direct IP mode with other computer?

  Hi, when you say direct IP mode, what do you mean ? do you wanna play the game online or on the LAN ??
  can you give a few more details.

• Problem with Cisco 861W router and outgoing VPN

  We have a Cisco 861W router that is blocking an outgoing PPTP on the internal access point only. The outgoing VPN works when the traffic is through a wired connection or the connection is on another access point. We fail to make a connection only when connection to the 861W's internal Access Point.
  Here is the Access Point Configuration:
  Current configuration : 2100 bytes
  version 12.4
  no service pad
  service timestamps debug datetime msec
  service timestamps log datetime msec
  no service password-encryption
  hostname obap
  enable secret 5 $1$.1RF$go1D7WITXUn3s8TUaw3tC.
  no aaa new-model
  dot11 syslog
  dot11 ssid OLIVER
     authentication open
     authentication key-management wpa
     guest-mode
     wpa-psk ascii 0 XXXXXXXXXXX
  username XXXXXX privilege 15 secret 5 $1$Wc0K$OzcQDDQfjHP6La31eXMoG/
  bridge irb
  interface Dot11Radio0
  no ip address
  no ip route-cache
  encryption mode ciphers aes-ccm tkip
  ssid OLIVER
  antenna gain 0
  station-role root
  bridge-group 1
  bridge-group 1 subscriber-loop-control
  bridge-group 1 block-unknown-source
  no bridge-group 1 source-learning
  no bridge-group 1 unicast-flooding
  bridge-group 1 spanning-disabled
  interface GigabitEthernet0
  description the embedded AP GigabitEthernet 0 is an internal interface connecti
  ng AP with the host router
  no ip address
  no ip route-cache
  bridge-group 1
  no bridge-group 1 source-learning
  bridge-group 1 spanning-disabled
  interface BVI1
  ip address 192.168.0.2 255.255.255.0
  no ip route-cache
  ip http server
  no ip http secure-server
  ip http help-path http://www.cisco.com/warp/public/779/smbiz/prodconfig/help/eag
  bridge 1 route ip
  banner login ^CC
  % Password change notice.
  Default username/password setup on AP is cisco/cisco with priv¾ilege level 15.
  It is strongly suggested that you create a new username with privilege level
  15 using the following command for console security.
  username <myuser> privilege 15 secret 0 <mypassword>
  no username cisco
  Replace <myuser> and <mypassword> with the username and password you want to
  use. After you change your username/password you can turn off this message
  by configuring  "no banner login" and "no banner exec" in privileged mode.
  ^C
  line con 0
  privilege level 15
  login local
  no activation-character
  line vty 0 4
  login local
  cns dhcp
  end
  obap#
  Here is the Router's Configuration:
  Current configuration : 5908 bytes
  ! No configuration change since last restart
  version 15.0
  no service pad
  service tcp-keepalives-in
  service tcp-keepalives-out
  service timestamps debug datetime msec localtime show-timezone
  service timestamps log datetime msec localtime show-timezone
  service password-encryption
  service sequence-numbers
  hostname obrouter
  boot-start-marker
  boot-end-marker
  logging buffered 51200
  logging console critical
  enable secret 5 $1$i9XE$DjxFVAEC9nC4/r6EQKCd6/
  no aaa new-model
  memory-size iomem 10
  clock timezone PCTime -5
  clock summer-time PCTime date Apr 6 2003 2:00 Oct 26 2003 2:00
  crypto pki trustpoint TP-self-signed-1856757619
  enrollment selfsigned
  subject-name cn=IOS-Self-Signed-Certificate-1856757619
  revocation-check none
  rsakeypair TP-self-signed-1856757619
  crypto pki certificate chain TP-self-signed-1856757619
  certificate self-signed 01
    3082024D 308201B6 A0030201 02020101 300D0609 2A864886 F70D0101 04050030
    31312F30 2D060355 04031326 494F532D 53656C66 2D536967 6E65642D 43657274
    69666963 6174652D 31383536 37353736 3139301E 170D3036 30313032 31323030
    34345A17 0D323030 31303130 30303030 305A3031 312F302D 06035504 03132649
    4F532D53 656C662D 5369676E 65642D43 65727469 66696361 74652D31 38353637
    35373631 3930819F 300D0609 2A864886 F70D0101 01050003 818D0030 81890281
    8100B1A4 FB786547 3D582260 03DB768D 116BDE9A 309FBA04 B53F77B0 BFE32344
    7C3439B3 97192B36 760A9411 1D5C7549 8D86F532 ABA44F53 0D08B7F4 A9A747D5
    071330C3 65BF25A8 927F3596 29BB5A80 90C8D169 22268476 3B8DDE1E FDB7170D
    B4820D03 5580A849 A92C7E76 9AC10867 505A2FEE 64360741 7F9DBDBF 3D79982C
    F81D0203 010001A3 75307330 0F060355 1D130101 FF040530 030101FF 30200603
    551D1104 19301782 156F6272 6F757465 722E6272 75736868 6F672E63 6F6D301F
    0603551D 23041830 168014D8 5BC2FFB2 967A4C7B 11B44122 5C8D31F7 749B9230
    1D060355 1D0E0416 0414D85B C2FFB296 7A4C7B11 B441225C 8D31F774 9B92300D
    06092A86 4886F70D 01010405 00038181 005901F1 C239074B B8213567 CF7B65BF
    DAFE4557 69B2A3B1 5F2593C7 A54B9598 23FD5E7A 563AA6E0 AFB25801 FA0061E8
    F9545372 DB600B3A BE68AE65 1EDA593E 6A0C96B8 5A4136AF 393F9AAC 651E1C36
    B8B7C6C0 47936C24 D2ECE9A5 9446EE32 FC7461FA AD8CF1CE A7FBF341 07E9C3C6
    505AB88D 0E7FCAFC 5792298A E5E4D1FE CC
          quit
  no ip source-route
  ip dhcp excluded-address 192.168.0.1 192.168.0.99
  ip dhcp pool ccp-pool1
     import all
     network 192.168.0.0 255.255.255.0
     dns-server 216.49.160.10 216.49.160.66
     default-router 192.168.0.1
  ip cef
  no ip bootp server
  ip domain name brushhog.com
  ip name-server 216.49.160.10
  ip name-server 216.49.160.66
  license udi pid CISCO861W-GN-A-K9 sn FTX155281FY
  username tech38 privilege 15 secret 5 $1$d/4Z$n/23EsXbzfHF5XfJ8Nv.y0
  ip tcp synwait-time 10
  ip ssh time-out 60
  ip ssh authentication-retries 2
  interface FastEthernet0
  interface FastEthernet1
  interface FastEthernet2
  interface FastEthernet3
  interface FastEthernet4
  description $ES_WAN$$FW_OUTSIDE$
  no ip address
  no ip redirects
  no ip unreachables
  no ip proxy-arp
  ip flow ingress
  duplex auto
  speed auto
  pppoe-client dial-pool-number 1
  interface wlan-ap0
  description Service module interface to manage the embedded AP
  ip unnumbered Vlan1
  no ip redirects
  no ip unreachables
  no ip proxy-arp
  ip flow ingress
  arp timeout 0
  interface Wlan-GigabitEthernet0
  description Internal switch interface connecting to the embedded AP
  interface Vlan1
  description $ETH-SW-LAUNCH$$INTF-INFO-HWIC 4ESW$$ES_LAN$$FW_INSIDE$
  ip address 192.168.0.1 255.255.255.0
  no ip redirects
  no ip unreachables
  no ip proxy-arp
  ip flow ingress
  ip nat inside
  ip virtual-reassembly
  ip tcp adjust-mss 1412
  interface Dialer0
  ip address negotiated
  no ip redirects
  no ip unreachables
  no ip proxy-arp
  ip mtu 1452
  ip flow ingress
  ip nat outside
  ip virtual-reassembly
  encapsulation ppp
  dialer pool 1
  dialer-group 1
  ppp authentication chap pap callin
  ppp chap hostname XXXXXXXXXXXXX
  ppp chap password 7 XXXXXXXXXXXXXXXX
  ppp pap sent-username XXXXXXXXXXXXXX password 7 XXXXXXXXXXX
  no cdp enable
  ip forward-protocol nd
  ip http server
  ip http authentication local
  ip http secure-server
  ip http timeout-policy idle 60 life 86400 requests 10000
  ip nat inside source static tcp 192.168.0.25 80 interface Dialer0 80
  ip nat inside source list 1 interface Dialer0 overload
  ip route 0.0.0.0 0.0.0.0 Dialer0
  logging trap debugging
  access-list 1 remark INSIDE_IF=Vlan1
  access-list 1 remark CCP_ACL Category=2
  access-list 1 permit 192.168.0.0 0.0.0.255
  dialer-list 1 protocol ip permit
  no cdp run
  control-plane
  banner exec ^C
  % Password expiration warning.
  Cisco Configuration Professional (Cisco CP) is installed on this device
  and it provides the default username "cisco" for  one-time use. If you have
  already used the username "cisco" to login to the router and your IOS image
  supports the "one-time" user option, then this username has already expired.
  You will not be able to login to the router with this username after you exit
  this session.
  It is strongly suggested that you create a new username with a privilege level
  of 15 using the following command.
  username <myuser> privilege 15 secret 0 <mypassword>
  Replace <myuser> and <mypassword> with the username and password you
  want to use.
  ^C
  banner login ^CAuthorized access only!
  Disconnect IMMEDIATELY if you are not an authorized user!^C
  line con 0
  login local
  no modem enable
  transport output telnet
  line aux 0
  login local
  transport output telnet
  line 2
  no activation-character
  no exec
  transport preferred none
  transport input all
  line vty 0 4
  privilege level 15
  login local
  transport input telnet ssh
  scheduler max-task-time 5000
  scheduler allocate 4000 1000
  scheduler interval 500
  end
  Any help would be appreciated

  Hello,
  i have the same problem with router CISCO861W-GN-E-K9. Version 12.4(22r)YB5, RELEASE SOFTWARE (fc1)
  Can someone help?
  Thank you.
  Here is my config for internal AP and router.

• Cisco 877W router and external ADSL modem

  Cisco 877W router and external ADSL modem
  In order to support ADSL2+ on a pre ADSL2+ router and in preparation for a later migration to BT infinity I am trying to configure the Router using an external adsl2+ modem appropriately.
  The original configuration had 3 ports configured as one (internal lan) vlan and bridge group together with one wireless sub-interface, the remaining port configured a second vlan and bridge group with a second wireless sub- interface. The Dialer was a member of the second bridge group. This way the second wireless interface and associated bridge group provided a kind of DMZ for outbound access.
  The configuration I am attempting is similar the lan ports remain the same, but port 0 as a member of the vlan and bridge group (now a pppoe client) associated with one of the wireless sub interfaces as per above. The ATM interface is downed. This nearly works except that if the wireless subinterface on this bridge group is configured the dialer no longer dials giving a 'no dialer string' error. If I do not configure that wireless sub interface all works well.
  If anyone is interested to look I would appreciate any comments. I enclose a sanitised config in which you will note the 'commented out' wireless subnet interface (in red).
  version 12.4
  no service pad
  service tcp-keepalives-in
  service tcp-keepalives-out
  service timestamps debug datetime msec localtime show-timezone
  service timestamps log datetime msec localtime show-timezone
  service password-encryption
  service sequence-numbers
  hostname xxxxxxxxxxxxxxxxxxxxx
  boot-start-marker
  boot-end-marker
  logging buffered 4096 warnings
  enable secret 5 xxxxxxxxxxxxxxxxxxxxxxxxxxxx
  aaa new-model
  aaa group server radius sdm-vpn-server-group-2
  aaa group server radius rad_eap
   server 192.168.253.1 auth-port 1812 acct-port 1813
   server 192.168.253.1 auth-port 1645 acct-port 1646
  aaa group server radius rad_mac
  aaa group server radius rad_acct
  aaa group server radius rad_admin
  aaa group server tacacs+ tac_admin
  aaa group server radius rad_pmip
  aaa group server radius dummy
  aaa authentication login default local
  aaa authentication login sdm_vpn_xauth_ml_2 group sdm-vpn-server-group-2
  aaa authentication login eap_methods group rad_eap
  aaa authentication login mac_methods local
  aaa authorization exec default local
  aaa authorization ipmobile default group rad_pmip
  aaa authorization network sdm_vpn_group_ml_2 local
  aaa accounting network acct_methods start-stop group rad_acct
  aaa session-id common
  clock timezone PCTime 0
  clock summer-time PCTime date Mar 30 2003 1:00 Oct 26 2003 2:00
  crypto pki trustpoint TP-self-signed-2834265337
   enrollment selfsigned
   subject-name cn=IOS-Self-Signed-Certificate-2834265337
   revocation-check none
   rsakeypair TP-self-signed-2834265337
  crypto pki certificate chain TP-self-signed-2834265337
   certificate self-signed 01 nvram:IOS-Self-Sig#2F.cer
  dot11 syslog
  dot11 ssid GuestAP
     vlan 101
     authentication open
     authentication key-management wpa
     mbssid guest-mode
     wpa-psk ascii 7 113B162712001F4A2D2B25
  dot11 ssid LanAP
     vlan 100
     authentication open eap eap_methods
     authentication network-eap eap_methods
     authentication key-management wpa
     mbssid guest-mode
  no ip source-route
  ip cef
  no ip dhcp use vrf connected
  ip dhcp excluded-address 10.10.10.1
  ip dhcp excluded-address 192.168.252.1 192.168.252.8
  ip dhcp excluded-address 192.168.252.15 192.168.252.254
  ip dhcp pool sdm-pool1
     import all
     network 192.168.252.0 255.255.255.0
     domain-name XXX.Local
     dns-server xxx.xxx.xxx.xxx
     default-router 192.168.252.254
  ip auth-proxy max-nodata-conns 3
  ip admission max-nodata-conns 3
  no ip bootp server
  no ip domain lookup
  ip domain name XXX.Local
  ip name-server xxx.xxx.xxx.xxx
  ip name-server xxx.xxx.xxx.xxx
  ip reflexive-list timeout 120
  vpdn enable
  vpdn-group 1
   request-dialin
    protocol pppoe
  username administrator privilege 15 secret 5 £££££££££££££££££££££
  class-map type inspect match-any IN_to_OUT_CLASS
   match protocol tcp
   match protocol udp
   match protocol icmp
  class-map type inspect match-any OUT_to_IN_CLASS
   match protocol https
   match protocol smtp extended
  class-map type inspect match-any DMZ_to_IN_CLASS
   match protocol http
   match protocol https
   match protocol smtp extended
  policy-map type inspect DMZ_to_IN_POL
   class type inspect DMZ_to_IN_CLASS
    inspect
   class class-default
    drop log
  policy-map type inspect IN_to_OUT_POL
   class type inspect IN_to_OUT_CLASS
    inspect
   class class-default
    drop log
  policy-map type inspect OUT_to_IN_POL
   class type inspect OUT_to_IN_CLASS
    inspect
   class class-default
    drop log
  zone security INSIDE
  zone security OUTSIDE
  zone security DMZ
  zone-pair security OUT_TO_IN source OUTSIDE destination INSIDE
   service-policy type inspect OUT_to_IN_POL
  zone-pair security IN_TO_OUT source INSIDE destination OUTSIDE
   service-policy type inspect IN_to_OUT_POL
  zone-pair security DMZ_TO_OUT source DMZ destination OUTSIDE
   service-policy type inspect IN_to_OUT_POL
  zone-pair security DMZ_TO_IN source DMZ destination INSIDE
   service-policy type inspect DMZ_to_IN_POL
  bridge irb
  interface Loopback0
   no ip address
  interface Null0
   no ip unreachables
  interface ATM0
   no ip address
   shutdown
   no atm ilmi-keepalive
   dsl operating-mode auto
  interface FastEthernet0
   description Outside Interface (PPPoE)
  interface FastEthernet1
   description Inside Interface
   switchport access vlan 10
  interface FastEthernet2
   description Inside Interface
   switchport access vlan 10
   spanning-tree portfast
  interface FastEthernet3
   description Inside Interface
   switchport access vlan 10
   spanning-tree portfast
  interface Dot11Radio0
   no ip address
   no ip route-cache cef
   no ip route-cache
   encryption vlan 100 mode ciphers aes-ccm tkip
   encryption vlan 101 mode ciphers aes-ccm tkip
   ssid GuestAP
   ssid LanAP
   mbssid
   speed basic-1.0 basic-2.0 basic-5.5 6.0 9.0 basic-11.0 12.0 18.0 24.0 36.0 48.0 54.0
   channel 2437
   station-role root
  interface Dot11Radio0.100
   description LanAP
   encapsulation dot1Q 100
   no ip route-cache
   no cdp enable
   bridge-group 10
   bridge-group 10 subscriber-loop-control
   bridge-group 10 spanning-disabled
   bridge-group 10 block-unknown-source
   no bridge-group 10 source-learning
   no bridge-group 10 unicast-flooding
  !interface Dot11Radio0.101
  ! description GuestAP
  ! encapsulation dot1Q 101
  ! no ip route-cache
  ! no cdp enable
  ! bridge-group 1
  ! bridge-group 1 subscriber-loop-control
  ! bridge-group 1 spanning-disabled
  ! bridge-group 1 block-unknown-source
  ! no bridge-group 1 source-learning
  ! no bridge-group 1 unicast-flooding
  interface Vlan1
   description $ES_LAN$
   no ip address
   ip virtual-reassembly
   pppoe enable group global
   pppoe-client dial-pool-number 1
   bridge-group 1
  interface Vlan10
   no ip address
   ip virtual-reassembly
   bridge-group 10
  interface Dialer1
   description $FW_OUTSIDE$
   ip address negotiated
   no ip redirects
   no ip unreachables
   no ip proxy-arp
   ip mtu 1452
   ip nat outside
   ip virtual-reassembly
   zone-member security OUTSIDE
   encapsulation ppp
   ip route-cache flow
   dialer pool 1
   dialer-group 1
   ppp authentication chap pap callin
   ppp chap hostname XXXXXXX
   ppp chap password 7 xxxxxxxxxxxxxxxxxxx
   ppp pap sent-username xxxxxxxxxxxxxxxxxx password 7 xxxxxxxxxxxxxxxxxxxxx
   ppp ipcp dns request
   ppp ipcp wins request
   hold-queue 224 in
  interface Dialer0
   no ip address
  interface BVI10
   description Inside Interface
   ip address 192.168.253.254 255.255.255.0
   ip access-group 101 in
   ip helper-address 192.168.253.1
   ip nat inside
   ip virtual-reassembly
   zone-member security INSIDE
  interface BVI1
   description DMZ Interface
   ip address 192.168.252.254 255.255.255.0
   ip nat inside
   ip virtual-reassembly
   zone-member security DMZ
  ip local pool SDM_POOL_1 192.168.20.9 192.168.20.14
  ip forward-protocol nd
  ip route 0.0.0.0 0.0.0.0 Dialer1
  ip http server
  ip http access-class 1
  ip http authentication local
  ip http secure-server
  ip http timeout-policy idle 600 life 86400 requests 10000
  ip nat inside source list Inside_Clients_NAT interface Dialer1 overload
  ip nat inside source static 192.168.253.10 xxx.xxx.xxx.xxx
  ip access-list extended DMZ_to_IN_POL
   remark SDM_ACL Category=128
   permit ip any any
  ip access-list extended Inside_Clients_NAT
   remark SDM_ACL Category=2
   permit ip 192.168.253.0 0.0.0.255 any
  logging 192.168.253.10
  access-list 1 remark Auto generated by SDM Management Access feature
  access-list 1 remark SDM_ACL Category=1
  access-list 1 permit 192.168.253.0 0.0.0.255
  access-list 100 remark VTY Access-class list
  access-list 100 remark SDM_ACL Category=1
  access-list 100 permit ip 192.168.253.0 0.0.0.255 any
  access-list 100 deny   ip any any
  access-list 101 remark Auto generated by SDM Management Access feature
  access-list 101 remark SDM_ACL Category=1
  access-list 101 remark Auto generated by SDM for NTP (123) xxx.xxx.xxx.xxx
  access-list 101 permit udp host xxx.xxx.xxx.xxx eq ntp host 192.168.253.254 eq ntp
  access-list 101 permit tcp 192.168.253.0 0.0.0.255 host 192.168.253.254 eq telnet
  access-list 101 permit tcp 192.168.253.0 0.0.0.255 host 192.168.253.254 eq 22
  access-list 101 permit tcp 192.168.253.0 0.0.0.255 host 192.168.253.254 eq www
  access-list 101 permit tcp 192.168.253.0 0.0.0.255 host 192.168.253.254 eq 443
  access-list 101 permit tcp 192.168.253.0 0.0.0.255 host 192.168.253.254 eq cmd
  access-list 101 deny   tcp any host 192.168.253.254 eq telnet
  access-list 101 deny   tcp any host 192.168.253.254 eq 22
  access-list 101 deny   tcp any host 192.168.253.254 eq www
  access-list 101 deny   tcp any host 192.168.253.254 eq 443
  access-list 101 deny   tcp any host 192.168.253.254 eq cmd
  access-list 101 deny   udp any host 192.168.253.254 eq snmp
  access-list 101 permit ip any any
  access-list 199 permit ip any host 10.1.1.1
  dialer-list 1 protocol ip permit
  no cdp run
  radius-server attribute 32 include-in-access-req format %h
  radius-server host 192.168.253.1 auth-port 1812 acct-port 1813 key 7 XXXXXXXXXXXXXXXXXX
  radius-server host 192.168.253.1 auth-port 1645 acct-port 1646 key 7 XXXXXXXXXXXXXXXXXX
  radius-server vsa send accounting
  control-plane
  bridge 1 protocol ieee
  bridge 1 route ip
  bridge 10 protocol ieee
  bridge 10 route ip
  banner login C Border Router
  line con 0
   no modem enable
   transport output telnet
  line aux 0
   transport output telnet
  line vty 0 4
   access-class 100 in
   privilege level 15
   length 0
   transport input telnet ssh
  scheduler max-task-time 5000
  scheduler interval 500
  ntp server xxx.xxx.xxx.xxx source Dialer0 prefer
  ntp server xxx.xxx.xxx.xxx source Dialer0 prefer
  sntp server xxx.xxx.xxx.xxx
  end

  Hi Jody,
  Apologies delay in replying. I have done the following:
  Made two of the FE ports vlan1,BVI1 (for LAN traffic)
  Left one port as VLAN10 as the pppoe client conected to the externalmodem
  Made the last port VLAN10 as well and gave it an IP addess as for a DMZ client.
  I have DHCP configured to serve the DMZ  addresses.
  This all works for LAN clients and also works for a client attachedto that physical DMZ port.
  When I added a dot11radio sub interface into VLAN 10 the wireless client did not get an IP lease. Everything else continued to work.
  I had never thought about this before, but if a dot11radio interface is on the same vlan (but not being part ofa bridge group) why are DHCP broadcasts not propogating to all the vlan members as I would have expected. I recognise that this isa limit in my understanding.
  If I then made VLAN10 a member of a new Bridge Group, I lost WAN connectivity as per original posting.
  I cannot add another VLAN due to the 2 vlan limit in this image.
  Finally regarding your comment about giving it what it wants, what exactly did you have in mind. The dialer already has a dial string parameters configured.
  Think I am about to give upon this.
  Regards,

• EAZYVPN and DMVPN on the same router,same interface

  Hi all,
             First of all, thanks in advance for the help. I have setup DMVPN and EAZYVPN on  one router. Tunnel interface on Spoke one and Spoke two are up/up and show crypto ISakmp sa shows both tunnels are in idle. However, tunnel to Spoke one(10.10.1.1) keep bouncing on and off(see below). Every 30 sec or so, the tunnel gone back to IKE phase while tunnel for spoke two(5.5.5.1) still leave active. THe configuration on the HUB side is the same for both spoke!! show crypto ipsec sec shows both side has the same life time(IOS default). Could that be an IOS debug on the spoke one?
  Hub :
  Cisco IOS Software, 2800 Software (C2800NM-ADVIPSERVICESK9-M), Version 15.1(3)T2, RELEASE SOFTWARE (fc1)
  HUB#sh crypto ipsec security-association
  Security association lifetime: 4608000 kilobytes/3600 seconds
  Spoke one:
  Cisco IOS Software, C2600 Software (C2600-ADVSECURITYK9-M), Version 12.4(8), RELEASE SOFTWARE (fc1)
  SPOKE1#sh crypto ipsec security-association
  Security association lifetime: 4608000 kilobytes/3600 seconds
  HUB#sh crypto isakmp sa
  IPv4 Crypto ISAKMP SA
  dst             src             state          conn-id status
  5.5.5.1         5.5.5.2         QM_IDLE           1002 ACTIVE
  10.10.1.1       10.10.1.2       MM_NO_STATE       1134 ACTIVE (deleted)
  10.10.1.1       1.1.1.10        QM_IDLE           1126 ACTIVE
  10.10.1.1       1.1.1.10        QM_IDLE           1076 ACTIVE
  HUB#sh crypto se
  HUB#sh crypto session
  Crypto session current status
  Interface: Serial0/1/1
  Username: testuser
  Profile: AccountingPro
  Group: Accounting
  Assigned address: 20.20.20.1
  Session status: UP-ACTIVE    
  Peer: 1.1.1.10 port 60201
    IKEv1 SA: local 10.10.1.1/500 remote 1.1.1.10/60201 Active
    IPSEC FLOW: permit ip 0.0.0.0/0.0.0.0 host 20.20.20.1
          Active SAs: 2, origin: dynamic crypto map
  Interface: Serial0/1/1
  Username: testuser
  Profile: AccountingPro
  Group: Accounting
  Assigned address: 20.20.20.2
  Session status: UP-ACTIVE    
  Peer: 1.1.1.10 port 49768
    IKEv1 SA: local 10.10.1.1/500 remote 1.1.1.10/49768 Active
    IPSEC FLOW: permit ip 0.0.0.0/0.0.0.0 host 20.20.20.2
          Active SAs: 2, origin: dynamic crypto map
  Interface: FastEthernet0/1
  Profile: DMVPN
  Session status: UP-IDLE
  Peer: 5.5.5.2 port 500
    IKEv1 SA: local 5.5.5.1/500 remote 5.5.5.2/500 Active
  Interface: Serial0/1/1
  Profile: DMVPN
  Session status: DOWN-NEGOTIATING
  Peer: 10.10.1.2 port 500
    IKEv1 SA: local 10.10.1.1/500 remote 10.10.1.2/500 Inactive
  HUB#
  2.  My second issue is, I use the same interface(s0/1/1=10.10.1.1) for eazyvpn access. The client from eazyvpn is connected fine,but does not receive traffric back(statics window show no decrypted=0 and reeiced=0). The eazy vpn can't even ping the IP address assigned to the vpn client(20.20.20.2), and the client can only pin 10.10.1.1 address. Reverse router is able but the 20.20.20.0/24 network didn't show up in the ip table of the HUB router!!!
  DMVPN AND EAZYVPN SERVER config..
  crypto keyring dmvpnkey 
    pre-shared-key address 0.0.0.0 0.0.0.0 key DMVPNLAB
  crypto isakmp policy 1
  encr 3des
  authentication pre-share
  group 2
  crypto isakmp policy 10
  encr aes
  authentication pre-share
  group 2
  crypto isakmp policy 20
  encr aes
  authentication pre-share
  group 2
  crypto isakmp policy 30
  encr 3des
  hash md5
  authentication pre-share
  group 2
  crypto isakmp policy 40
  authentication pre-share
  crypto isakmp keepalive 30
  crypto isakmp xauth timeout 90
  crypto isakmp client configuration group Accounting
  key eazypvn
  dns 4.2.2.2
  wins 4.2.2.2
  domain bigBois.com
  pool dmAccouting
  crypto isakmp profile AccountingPro
     match identity group Accounting
     client authentication list access_in
     isakmp authorization list my_vpn
     client configuration address respond
  crypto isakmp profile DMVPN
     keyring dmvpnkey
     match identity address 0.0.0.0
  crypto ipsec transform-set DMVPN ah-sha-hmac esp-aes
  mode transport
  crypto ipsec transform-set EAZYVPN esp-3des esp-md5-hmac
  crypto ipsec profile dmvpnlab
  set transform-set DMVPN
  set isakmp-profile AccountingPro
  crypto dynamic-map Remote_Acc 20
  set transform-set EAZYVPN
  set isakmp-profile AccountingPro
  reverse-route
  crypto map RemoteAcc client authentication list access_in
  crypto map Remote_Acc client authentication list my_vpn
  crypto map Remote_Acc 20 ipsec-isakmp dynamic Remote_Acc
  interface Loopback0
  ip address 192.168.200.1 255.255.255.0
  interface Loopback2
  ip address 172.16.10.1 255.255.255.0
  interface Loopback3
  ip address 172.16.15.1 255.255.255.0
  interface Tunnel1
  bandwidth 10000
  ip address 4.4.4.1 255.255.255.0
  no ip redirects
  ip mtu 1400
  no ip next-hop-self eigrp 10
  ip nhrp authentication DMVPN
  ip nhrp map multicast dynamic
  ip nhrp network-id 7940
  ip nhrp registration timeout 10
  ip tcp adjust-mss 1360
  tunnel source Serial0/1/1
  tunnel mode gre multipoint
  tunnel key 7940
  tunnel protection ipsec profile dmvpnlab
  interface FastEthernet0/0
  description OUTSIDE
  ip address 1.1.1.1 255.255.255.0
  ip virtual-reassembly in
  duplex auto
  speed auto
  interface FastEthernet0/1
  description INSIDE
  ip address 5.5.5.1 255.255.255.0
  ip nat inside
  ip virtual-reassembly in
  duplex auto
  speed auto
  interface Serial0/1/0
  no ip address
  shutdown
  clock rate 2000000
  interface Serial0/1/1
  description to SPOKE1
  ip address 10.10.1.1 255.255.255.0
  crypto map Remote_Acc
  interface Serial0/3/0
  no ip address
  shutdown
  router eigrp 10
  network 4.4.4.0 0.0.0.255
  network 5.5.5.0 0.0.0.255
  network 10.0.0.0
  network 10.10.10.0 0.0.0.3
  network 172.16.0.0 0.0.0.255
  network 172.16.1.0 0.0.0.255
  network 172.16.10.0 0.0.0.255
  network 172.16.15.0 0.0.0.255
  network 192.168.200.0
  ip local pool dmAccouting 20.20.20.1 20.20.20.10
  ip forward-protocol nd
  ip http server
  ip http authentication local
  ip http secure-server
  THanks  a bunch for the help,
  Ernest

  Any ideas why devices keep renewing phase 1?
  Thanks,

• MAC Floods ISP with TCP ports and is shutdown when count reaches 200

  I was told by ISP provider that my MAC floods them with massive amount of TCP ports when I open a single Safari or FireFox web page. When I am NOT connected, the TCP port count is ABOUT 3 with a Windows XP using a IE connection to APPLE.com PLUS AN SSL CONNECTION. When I open the same web page ON MY MAC, the count INSTANTLY jumps to 70+ and if I connect to another page it jumps to well over 100. If I leave pages open and jump to several different sites, I soon exceed the MAX TCP port limit of 200 and everyone on our home network is pretty much shutdown. Since it is a wireless connection to the ISP, the have to limit TCP ports to 200 per antenna connection. WHY DOES MY MAC USE SO MANY TCP PORTS FOR A SINGLE BROWSER CONNECTION?
  The home network uses LinkSys WRT54G router and WAP54G configured as Wireless Repeater. Windows does not have this problem. I do not have this problem anywhere else but on this wireless ISP connection. How do I remedy this problem?

  Here is a trap of opening a browser page:
  1. sudo tcpdump –pv tcp
  clayton-arndts-computer-2:~ claytonarndt$ sudo tcpdump –pv tcp
  tcpdump: WARNING: en0: no IPv4 address assigned
  tcpdump: illegal token: –
  clayton-arndts-computer-2:~ claytonarndt$
  2.
  lsof -i
  clayton-arndts-computer-2:~ claytonarndt$ lsof -i
  COMMAND&nbs p; PID USER FD TYPE DEVICE SIZE/OFF NODE NAME
  ARDAgent 2395 claytonarndt 17u IPv4 0x29bc0f0 0t0 UDP *:net-assistant
  AppleVNCS 2406 claytonarndt 4u IPv6 0x29c1d90 0t0 TCP *:vnc-server (LISTEN)
  SystemUIS 2409 claytonarndt 10u IPv4 0x29bb7a8 0t0 UDP :
  firefox-b 3645 claytonarndt 22u IPv4 0x49a966c 0t0 TCP 192.168.1.113:54212->a204-245-162-11.deploy.akamaitechnologies.com:http (ESTABLISHED)
  firefox-b 3645 claytonarndt&nbs p; 27u IPv4 0x4a9b270 0t0 TCP 192.168.1.113:54213->a204-245-162-11.deploy.akamaitechnologies.com:http (ESTABLISHED)
  firefox-b 3645 claytonarndt 28u IPv4 0x3f3e66c 0t0 TCP 192.168.1.113:54101->216.178.33.45:http (ESTABLISHED)
  firefox-b 3645 claytonarndt 38u IPv4 0x3f56e64 0t0 TCP 192.168.1.113:54208->prodwebmail-mtc06.evip.aol.com:http (ESTABLISHED)
  firefox-b 3645 claytonarndt 39u IPv4 0x4a36a68 0t0 TCP 192.168.1.113:54178->204.2.241.146:http (ESTABLISHED)
  firefox-b 3645 claytonarndt 46u IPv4 0x3fb4e64 0t0 TCP 192.168.1.113:54211->a204-245-162-26.deploy.akamaitechnologies.com:http (ESTABLISHED)
  firefox-b 3645 claytonarndt 47u IPv4 0x4a9a66c 0t0 TCP 192.168.1.113:5 4188->a204-245-162-25.deploy.akamaitechnologies.com:http (ESTABLISHED)
  firefox-b 3645 claytonarndt 48u IPv4 0x3f56a68 0t0 TCP 192.168.1.113:54105->204.0.5.25:http (ESTABLISHED)
  firefox-b 3645 claytonarndt 49u IPv4 0x49b7270 0t0 TCP 192.168.1.113:54135->204.0.5.9:http (ESTABLISHED)
  firefox-b 3645 claytonarndt 50u IPv4 0x49b8e64 0t0 TCP 192.168.1.113:54136->204.0.5.27:http (ESTABLISHED)
  firefox-b 3645 claytonarndt 51u IPv4 0x4a37270 0t0 TCP 192.168.1.113:54185->a204-245-162-33.deploy.akamaitechnologies.com:http (ESTABLISHED)
  firefox-b 3645 claytonarndt 5 5u IPv4 0x49f3e64 0t0 TCP 192.168.1.113:54164->204.0.5.17:http (ESTABLISHED)
  firefox-b 3645 claytonarndt 62u IPv4 0x3ec5a68 0t0 TCP 192.168.1.113:54111->204.0.5.16:http (ESTABLISHED)
  firefox-b 3645 claytonarndt 64u IPv4 0x4a3666c 0t0 TCP 192.168.1.113:54179->a204-245-162-19.deploy.akamaitechnologies.com:http (ESTABLISHED)
  firefox-b 3645 claytonarndt 65u IPv4 0x49d2270 0t0 TCP 192.168.1.113:54155->204.0.5.17:http (ESTABLISHED)
  firefox-b 3645 claytonarndt 69u IPv4 0x49c266c 0t0 TCP 192.168.1.113:54142->204.0.5.33:http (ESTABLISHED)
  firefox-b 3645 claytonarndt 71u IPv4 0x49eee64 0t0 TCP 192.168.1.113:54168->204.2.241.160:http (ESTABLISH ED)
  firefox-b 3645 claytonarndt 72u IPv4 0x49c2270 0t0 TCP 192.168.1.113:54143->204.0.5.24:http (ESTABLISHED)
  firefox-b 3645 claytonarndt 76u IPv4 0x4aa0a68 0t0 TCP 192.168.1.113:54215->prodwebmail-mtc06.evip.aol.com:http (ESTABLISHED)
  firefox-b 3645 claytonarndt 77u IPv4 0x4a9aa68 0t0 TCP 192.168.1.113:54221->a204-245-162-17.deploy.akamaitechnologies.com:http (ESTABLISHED)
  SlingPlay 3655 claytonarndt 6u IPv4 0x3f56270 0t0 TCP 192.168.1.113:53903->192.168.1.100:commplex-link (ESTABLISHED)
  SlingPlay 3655 claytonarndt 7u IPv4 0x3ef6270 0t 0 TCP 192.168.1.113:53904->spas.slingmedia.com:http (CLOSED)
  SlingPlay 3655 claytonarndt 10u IPv4 0x3f6666c 0t0 TCP 192.168.1.113:53905->192.168.1.100:commplex-link (ESTABLISHED)
  clayton-arndts-computer-2:~ claytonarndt$
  3.
  lsof -i -n
  clayton-arndts-computer-2:~ claytonarndt$ lsof -i -n
  COMMAND PID USER FD TYPE DEVICE SIZE/OFF NODE NAME
  ARDAgent 2395 claytonarndt 17u IPv4 0x29bc
  0f0 0t0 UDP *:net-assistant
  AppleVNCS 2406 claytonarndt 4u IPv6 0x29c1d90 0t0 TCP *:vnc-server (LISTEN)
  SystemUIS 2409 claytonarndt 10u IPv4 0x29bb7a8 0t0 UDP :
  firefox-b 3645 claytonarndt 22u IPv4 0x49a966c 0t0 TCP 192.168.1.113:54212->204.245.162.11:http (ESTABLISHED)
  firefox-b 3645 claytonarndt 27u IPv4 0x4a9b270 0t0 TCP 192.168.1.113:54213->204.245.162.11:http (ESTABLISHED)
  firefox-b 3645 claytonarndt 28u IPv4 0x3f3e66c 0t0 TCP 192.168.1.113:54101->216.178.33.45:http (ESTABLISHED)
  firefox-b 3645 claytonarndt 38u IPv4 0x3f56e64 0t0 TCP 192.168.1.113:54208->64.12.230.1:http (ESTABLISHED)
  firefox-b 3645 claytonarndt 39u IPv4 0
  x4a36a68 0t0 TCP 192.168.1.113:54178->204.2.241.146:http (ESTABLISHED)
  firefox-b 3645 claytonarndt 46u IPv4 0x3fb4e64 0t0 TCP 192.168.1.113:54211->204.245.162.26:http (ESTABLISHED)
  firefox-b 3645 claytonarndt 47u IPv4 0x4a9a66c 0t0 TCP 192.168.1.113:54188->204.245.162.25:http (ESTABLISHED)
  firefox-b 3645 claytonarndt 48u IPv4 0x3f56a68 0t0 TCP 192.168.1.113:54105->204.0.5.25:http (ESTABLISHED)
  firefox-b 3645 claytonarndt 49u IPv4 0x49b7270 0t0 TCP 192.168.1.113:54135->204.0.5.9:http (ESTABLISHED)
  firefox-b 3645 claytonarndt 50u IPv4 0x49b8e64 0t0 TCP 192.168.1.113:54136->204.0.5.27:http (ESTABLISHED)
  firefox-b 3645 claytonarndt
  51u IPv4 0x4a37270 0t0 TCP 192.168.1.113:54185->204.245.162.33:http (ESTABLISHED)
  firefox-b 3645 claytonarndt 55u IPv4 0x49f3e64 0t0 TCP 192.168.1.113:54164->204.0.5.17:http (ESTABLISHED)
  firefox-b 3645 claytonarndt 62u IPv4 0x3ec5a68 0t0 TCP 192.168.1.113:54111->204.0.5.16:http (ESTABLISHED)
  firefox-b 3645 claytonarndt 64u IPv4 0x4a3666c 0t0 TCP 192.168.1.113:54179->204.245.162.19:http (ESTABLISHED)
  firefox-b 3645 claytonarndt 65u IPv4 0x49d2270 0t0 TCP 192.168.1.113:54155->204.0.5.17:http (ESTABLISHED)
  firefox-b 3645 claytonarndt 69u IPv4 0x49c266c 0t0 TCP 192.168.1.113:54142->204.0.5.33:http (ESTABLISHED)
  firefox-b 3645 claytonarndt 71u IPv4 0x49eee64 0t0 TCP 192.168.1.113:54168->204.2.241.160:http (ESTABLISHED)
  fir
  efox-b 3645 claytonarndt 72u IPv4 0x49c2270 0t0 TCP 192.168.1.113:54143->204.0.5.24:http (ESTABLISHED)
  firefox-b 3645 claytonarndt 77u IPv4 0x4a9aa68 0t0 TCP 192.168.1.113:54221->204.245.162.17:http (ESTABLISHED)
  SlingPlay 3655 claytonarndt 6u IPv4 0x3f56270 0t0 TCP 192.168.1.113:53903->192.168.1.100:commplex-link (ESTABLISHED)
  SlingPlay 3655 claytonarndt 7u IPv4 0x3ef6270 0t0 TCP 192.168.1.113:53904->157.22.2.7:http (CLOSED)
  SlingPlay 3655 claytonarndt 10u IPv4 0x3f6666c 0t0 TCP 192.168.1.113:53905->192.168.1.100:commplex-link (ESTABLISHED)
  clayton-arndts-computer-2:~=2
  0claytonarndt$
  The Famous, the Infamous, the Lame - in your browser. Get the TMZ Toolbar Now!
  The Famous, the Infamous, the Lame - in your browser. Get the TMZ Toolbar Now!

• The difference b/w physical removal & entering shutdown command?

       Hi all,
           What is the difference between A port has enabled by no-shutdown command but it has not physically connected and for the same port has been disabled by shutdown command even it has physically connected with other device?
             Thanqs in advance.

       Hi all,
           What is the difference between A port has enabled by no-shutdown command but it has not physically connected and for the same port has been disabled by shutdown command even it has physically connected with other device?
             Thanqs in advance.
  The no shutdown command. An interface may be correctly configured and physically connected, yet be "administratively down." In this state it will not function at all.Operational enable state only has something to do with the type of port.
  Either access or trunk or none/disable.
  Access Ports for clientpc will be (#switchport mode access) and  trunk for uplink to another switch or router(#switchport mode trunk)
  This is the output from #show interface
  Port is shutdown:
  FastEthernet0/1 is administratively down, line protocol is down (disabled)
  Port is no shutdown and is not connected
  FastEthernet0/2 is down, line protocol is down (notconnect)
  Port is no shutdown and is connected
  FastEthernet0/3 is up, line protocol is up (connected)
  Hope to Help !!
  Ganesh.H
  Remember to rate the helpful post

• Default static route and Null 0

  Hi Everyone,
  Need to clear some doubts  for below setup
  Switch 3550A is connected to Internet Router and has OSPF nei relationship with it.
  3550A#                      sh run int fa0/11
  Building configuration...
  Current configuration : 272 bytes
  interface FastEthernet0/11
   description OSPF LAN Connection to 2691 Router Interface Fas 0/1
   no switchport
   ip address 192.168.5.2 255.255.255.254
  sh ip route shows
  3550A#sh ip route
  Gateway of last resort is 192.168.5.3 to network 0.0.0.0
  O*E2 0.0.0.0/0 [110/1] via 192.168.5.3, 20:39:56, FastEthernet0/11
  3550A#
  All is working fine.
  For testing  purposes i config below static route on 3550A
  ip default-network 192.168.1.0
  ip route 192.168.1.0 255.255.255.0 Null0
  After above change
  3550A#           sh ip route
  Codes: C - connected, S - static, R - RIP, M - mobile, B - BGP
         D - EIGRP, EX - EIGRP external, O - OSPF, IA - OSPF inter area
         N1 - OSPF NSSA external type 1, N2 - OSPF NSSA external type 2
         E1 - OSPF external type 1, E2 - OSPF external type 2
         i - IS-IS, su - IS-IS summary, L1 - IS-IS level-1, L2 - IS-IS level-2
         ia - IS-IS inter area, * - candidate default, U - per-user static route
         o - ODR, P - periodic downloaded static route
  Gateway of last resort is not set
  S*   192.168.1.0/24 is directly connected, Null0
  O*E2 0.0.0.0/0 [110/1] via 192.168.5.3, 20:38:38, FastEthernet0/11
  Now i can not ping to internet as below
  3550A#ping 4.2.2.2
  Type escape sequence to abort.
  Sending 5, 100-byte ICMP Echos to 4.2.2.2, timeout is 2 seconds:
  Success rate is 0 percent (0/5)
  When we ping from Switch then source IP is always the Outside interface IP right?
  So in this case Switch is using which IP as source?
   Ping to internet is not working as default network is set to 192.168.1.0 and all request goes to this IP and then it goes to
  Null interface right?
  Extended ping works fine as below
  3550A#ping
  Protocol [ip]:
  Target IP address: 4.2.2.2
  Repeat count [5]:
  Datagram size [100]:
  Timeout in seconds [2]:
  Extended commands [n]: y
  Source address or interface: 192.168.5.2
  Type of service [0]:
  Set DF bit in IP header? [no]:
  Validate reply data? [no]:
  Data pattern [0xABCD]:
  Loose, Strict, Record, Timestamp, Verbose[none]:
  Sweep range of sizes [n]:
  Type escape sequence to abort.
  Sending 5, 100-byte ICMP Echos to 4.2.2.2, timeout is 2 seconds:
  Packet sent with a source address of 192.168.5.2
  Success rate is 100 percent (5/5), round-trip min/avg/max = 76/79/80 ms
  Second thing to confirm is this ping works because 192.168.5.2 is directly connected to Internet Router interface?
  Regards
  MAhesh

  Hi Mahesh,
  When we ping from Switch then source IP is always the Outside interface IP right?
  That is correct.  By default it is always the outgoing interface on the device unless you specify it differently.
  Ping to internet is not working as default network is set to 192.168.1.0 and all request goes to this IP and then it goes to
  Null interface right?
  That is correct. Null0 can't be used as next-hop.
  Second thing to confirm is this ping works because 192.168.5.2 is directly connected to Internet Router interface?
  No, that is because 192.168.5.0/30 is NATed. Remember 192.168.x.x address is a private segment and cannot access the Internet unless NAT is used.
  HTH
  Reza