I have two Cisco Routers model C2851 with IOS
c2800nm-ipvoicek9-mz.124-3g. These two routers are acting as peer
routers between a Fiber WAN link. I would like to encrypt data between
my two private networks that are behind these two routers, without
using a Certificate Authority (CA). Anyone with configuration or
idea of how to go about it.

DM.

I have two Cisco Routers model C2851 with IOS
c2800nm-ipvoicek9-mz.124-3g. These two routers are acting as peer
routers between a Fiber WAN link. I would like to encrypt data between
my two private networks that are behind these two routers, without
using a Certificate Authority (CA). Anyone with configuration or
idea of how to go about it.

DM.

I have two Cisco Routers model C2851 with IOS
c2800nm-ipvoicek9-mz.124-3g. These two routers are acting as peer
routers between a Fiber WAN link. I would like to encrypt data between
my two private networks that are behind these two routers, without
using   a Certificate Authority (CA). Anyone with configuration or
idea of how to go about it.


DM.

We had the same issue before in our network as well.
After a long struggle , we moved to another solution,
bought a new L4 foundry switches and connected the
cache to redirect the web traffic ..

try with the newer IOS...best of luck.

regards,
sakthi


--- Nasser Heidari <blackhat_hk@...> wrote:

> Hi all,
>
> Recently I configured a 6500 with SUP-720 for
> transparent web caching
> with IP Spoofing. The configuration was quite
> simple.
> The idea behind IP Spoof enabled cache is to
> redirect both send and
> receive traffic to web cache and the box will spoof
> the source ip of
> the original user requesting the page. you have to
> do the following tasks:
>
> 1- Set 2 WCCP general configuration one with "ip
> wccp web-cache" and
> the other with "ip wccp 95"
> 2- On the VLAN/L3 Port facing the Internet you have
> to set "ip wccp
> web-cache redirect out" to redirect outbound
> connections to web cache.
> 3- On the VLAN/L3 Port facing cache interface you
> have to set "ip wccp
> redirect exclude in" to exclude web cache traffic
> itself.
> 4- On the VLAN/L3 Port facing users you have to set
> "ip wccp 95
> redirect out" to redirect incoming traffic (web
> responses to cache).
>
> but when i redirect all users traffic to the web
> cache the
> 6500 with the golden sup720 explode with %100 cpu
> usage and the box
> starts to drop traffic!
> I've done so many tests with different modular / non
> modular IOS of
> different versions but no success. As i searched the
> command reference
> for the 12.2 IOS I've noticed that using WCCP
> requires full and
> interface-full mls flow configuration I've done it
> as well but again
> no success. Generally something like 250mbps traffic
> passes this 6500
> but I've tested even with 100mbps and still IP INPUT
> process (or
> ios-base process in modular IOS) eat up all the CPU.
> Another point
> that may help is that using WCCP without IP spoof
> (just "ip wccp
> web-cache" command) only takes %15 of CPU handling
> 150mbps traffic.
> Other configuration regarding cache is that it's
> using version 2, GRE
> for Assignment Method and Layer 2 for Forwarding
> Method and no WCCP
> password is in place. There is an "accelerated"
> keyword for wccp but
> it seems it works only with WCCP version 1. I've
> seen some comments
> regarding high CPU utilization on 6500 but all of
> them state that it's
> been fixed before 12.2(18)SXD4
>
(http://www.cisco.com/en/US/docs/switches/lan/catalyst6500/catos/8.x/configurati\
on/guide/msfc_ios.html).
> i've tested the following IOS:
> s72033-adventerprisek9_wan-mz.122-33.SXH.bin
> s72033-adventerprisek9_wan-vz.122-33.SXH.bin
> s72033-advipservicesk9_wan-mz.122-18.SXF12.bin
> which are the latest available.
>
> Does any one has any idea???
>
>             ----------
> users ---->|  6500    |-----> Internet
>             ----||----
>                /  \
>               /    \
>          cache1    cache2
>
>


Do Something Usefully,That Something Will Help You To Get Some useful Thing
Atlast.

Regards,

V.Sakthi Vadivel Velumani ,


      
________________________________________________________________________________\
____
Be a better friend, newshound, and
know-it-all with Yahoo! Mobile.  Try it now. 
http://mobile.yahoo.com/;_ylt=Ahu06i62sR8HDtDypao8Wcj9tAcJ

Hi all,

Recently I configured a 6500 with SUP-720 for transparent web caching
with IP Spoofing. The configuration was quite simple.
The idea behind IP Spoof enabled cache is to redirect both send and
receive traffic to web cache and the box will spoof the source ip of
the original user requesting the page. you have to do the following tasks:

1- Set 2 WCCP general configuration one with "ip wccp web-cache" and
the other with "ip wccp 95"
2- On the VLAN/L3 Port facing the Internet you have to set "ip wccp
web-cache redirect out" to redirect outbound connections to web cache.
3- On the VLAN/L3 Port facing cache interface you have to set "ip wccp
redirect exclude in" to exclude web cache traffic itself.
4- On the VLAN/L3 Port facing users you have to set "ip wccp 95
redirect out" to redirect incoming traffic (web responses to cache).

but when i redirect all users traffic to the web cache the
6500 with the golden sup720 explode with %100 cpu usage and the box
starts to drop traffic!
I've done so many tests with different modular / non modular IOS of
different versions but no success. As i searched the command reference
for the 12.2 IOS I've noticed that using WCCP requires full and
interface-full mls flow configuration I've done it as well but again
no success. Generally something like 250mbps traffic passes this 6500
but I've tested even with 100mbps and still IP INPUT process (or
ios-base process in modular IOS) eat up all the CPU. Another point
that may help is that using WCCP without IP spoof (just "ip wccp
web-cache" command) only takes %15 of CPU handling 150mbps traffic.
Other configuration regarding cache is that it's using version 2, GRE
for Assignment Method and Layer 2 for Forwarding Method and no WCCP
password is in place. There is an "accelerated" keyword for wccp but
it seems it works only with WCCP version 1. I've seen some comments
regarding high CPU utilization on 6500 but all of them state that it's
been fixed before 12.2(18)SXD4
(http://www.cisco.com/en/US/docs/switches/lan/catalyst6500/catos/8.x/configurati\
on/guide/msfc_ios.html).
i've tested the following IOS:
s72033-adventerprisek9_wan-mz.122-33.SXH.bin
s72033-adventerprisek9_wan-vz.122-33.SXH.bin
s72033-advipservicesk9_wan-mz.122-18.SXF12.bin
which are the latest available.

Does any one has any idea???

             ----------
users ---->|  6500    |-----> Internet
             ----||----
                /  \
               /    \
          cache1    cache2

you can use both if you have two or more VLAN, depend on your network design :) and how you configured your routers

 

Regards,

----- Original Message ----
From: Adrian Lopez <lomadrian@yahoo.com.mx>
To: Cisco_CCIE_Lab@yahoogroups.com
Sent: Monday, May 5, 2008 12:23:26 AM
Subject: Re: [Cisco_CCIE_Lab] ADSL or DSL load balance

thats a good one..

but use Gateway load balancing instead of HSRP. because HSRP will use one of the 2 Internet links..  

mehmood moon <mehmood_sajid@ yahoo.com> escribió:

Try PBR on Cisco router

 

http://www.cisco. com/en/US/ docs/ios/ 12_4/ip_route/ configuration/ guide/piconfig. html

 

Get two(2) Cisco Router, terminate two(2) ADSL on first Router and other two(2) ADSL on 2nd Router  and configure HSRP

http://www.cisco. com/en/US/ tech/tk648/ tk362/technologi es_configuration _example09186a00 80094e90. shtml

 

Regards,

 

----- Original Message ----
From: pratheepan sarasanandam <srptheepan@yahoo. com>
To: Cisco_CCIE_Lab@ yahoogroups. com
Sent: Friday, May 2, 2008 8:33:17 PM
Subject: [Cisco_CCIE_ Lab] ADSL or DSL load balance

Dear Group members

How to load balance 4 ADSL in to one. Is there any way from Cisco ( No need other vender solution)

Regards
Pradeepan

---

Be a better friend, newshound, and know-it-all with Yahoo! Mobile. Try it now.

---

Be a better friend, newshound, and know-it-all with Yahoo! Mobile. Try it now.

---

Yahoo! Deportes Beta
¡No te pierdas lo último sobre el torneo clausura 2008!
Entérate aquí http://deportes. yahoo.com

---

Be a better friend, newshound, and know-it-all with Yahoo! Mobile. Try it now.

Try PBR on Cisco router

 

http://www.cisco.com/en/US/docs/ios/12_4/ip_route/configuration/guide/piconfig.html

 

Get two(2) Cisco Router, terminate two(2) ADSL on first Router and other two(2) ADSL on 2nd Router  and configure HSRP

http://www.cisco.com/en/US/tech/tk648/tk362/technologies_configuration_example09186a0080094e90.shtml

 

Regards,

 

----- Original Message ----
From: pratheepan sarasanandam <srptheepan@yahoo.com>
To: Cisco_CCIE_Lab@yahoogroups.com
Sent: Friday, May 2, 2008 8:33:17 PM
Subject: [Cisco_CCIE_Lab] ADSL or DSL load balance

Dear Group members

How to load balance 4 ADSL in to one. Is there any way from Cisco ( No need other vender solution)

Regards
Pradeepan

---

Be a better friend, newshound, and know-it-all with Yahoo! Mobile. Try it now.

---

Be a better friend, newshound, and know-it-all with Yahoo! Mobile. Try it now.

hi all,

is it possible to create dhcp server on cisco 3750 switch??????
if possible tell me the commans!!!!!!!!

thnx
Ravi

hi all,

  is it possible to create dhcp server on cisco 3750 switch??????
  if possible tell me the commans!!!!!!!!


thnx
Ravi

Hi

I was trying to do Layer 2 password recovery on 6509 switch,

1. I power cycled the switch and it rebooted.
2. When it asked for password, i pressed " Enter"
3. When typed enable at console prompt, it asked for password, i pressed " Enter"
it keeps asking for password, but i was not able to get int to console(enable) to apply set password and set enablepass


I have also attached password recovery procedure for 6509. Any help is appreciated.

 

 

Waiting for your reply,

Shibi

---

Be a better friend, newshound, and know-it-all with Yahoo! Mobile. Try it now.

Any Body tell me how to make a Medium SIze HotSpot,and wht is the basic checklist for creating Hotspot,and which minimum device are required for the Same.?

 

Thanks and Regards

Ravindra  A Gandhi

---

Bollywood, fun, friendship, sports and more. You name it, we have it.

Any Body tell me how to make a Medium SIze HotSpot,and wht is the basic checklist for creating Hotspot,and which minimum device are required for the Same.?

 

Thanks and Regards

Ravindra  A Gandhi

---

Bollywood, fun, friendship, sports and more. You name it, we have it.

Hi

 

Can anybody please send me the config file to be used on layer 3 devices for LAM?

 

 

Thanks a lot in advance,

Shibi

---

Be a better friend, newshound, and know-it-all with Yahoo! Mobile. Try it now.