set snmp trap enable chassis set snmp trap (ip address of snmp host) (public community string) the first one tells the switch to send traps on chassis events, like a power supply failing. the second tells the switch where to send the trap ****************************************************************** ******** From: Question 88 Subject: How do I change the timer for tx/rxload when doing "show int" command? Interface command: load-interval IN_SECONDS ****************************************************************** ******** From: Question 89 Subject: How do I setup FR End-to-End keepalives? I believe so. Just so we're clear (to the original poster) bandwidth on demand is the ability to kick up a line when you reach a certain threshold. floating static can't be used since the lower admin-distance route will never get a chance to float up. FR e-t-e can be setup as follows: int s0/0 blah frame-relay class end-to-end-keepalive blah map-class frame-relay end-to-end-keepalive frame-relay end-to-end keepalive mode bidirectional ****************************************************************** ******** From: Question 90 Subject: How do I setup NAT and Port forwarding? int e0/0 desc This is the inside address using RFC address ip addr 10.1.1.1 255.255.255.0 ip nat inside int s0/0 desc This goes to the ISP using assigned address x.x.x.1/30 ip address x.x.x.1 255.255.255.252 ip nat outside Next line determines who will get to use the NAT Anyone coming from 10.1.1.0 address will be NATed. access-list 1 permit 10.1.1.0 0.0.0.255 Next line assumes that you want to use one IP for everyone and use the port address translation. In your case, you could actually use one to one translation. ip nat inside source list 1 interface serial0/0 overload Set up a static translation so you can telnet into your server Assume your server is at 10.1.1.5 ip nat inside source static tcp 10.1.1.5 23 x.x.x.1 23 or forward http traffic to your 10.1.1.4 server ip nat inside source static tcp 10.1.1.4 80 x.x.x.1 80 ****************************************************************** ******** From: Question 91 Subject: How can I policy-route router generated packets? You need a 'ip local policy route-map ROUTE_MAP_NAME if you want traffic sourced from the router to go through policy (ie: pings). ****************************************************************** ******** From: Question 92 Subject: Is there another way to upload my IOS w/o a tftp server? Here's what I do when I need to upgrade a router's IOS and I don't have LAN or sync serial access to it for TFTP purposes. 1. Plug the following code into the router to configure it for PPP on the AUX port: interface Async1 ip address 192.168.255.254 255.255.255.252 encapsulation ppp no ip route-cache async default routing async mode dedicated ip default-gateway 192.168.255.253 line con 0 line aux 0 no exec exec-timeout 0 0 modem InOut transport input all stopbits 1 rxspeed 38400 txspeed 38400 flowcontrol hardware 2. Configure a "dialup networking" entry on my Windows PC using the ULL- MODEM driver available from the following Cisco URL: http://www.cisco.com/warp/public/471/103.html Configure the dialup networking entry to use 192.168.255.253 as the IP ddress of the dialing interface. 3. Start up the TFTP server on my Windows PC. 4. Connect to the router from my Windows PC using the dialup networking entry 5. Open up the router console and use regular TFTP commands to pull the mage across. Depending on what family of router you have (2500, 2600) your AUX port will accommodate up to 38400 (older families) or 115200 (newer families). ****************************************************************** ******** From: Question 93 Subject: What does the keyword EXTENDABLE mean when doing NAT? From: http://www.cisco.com/warp/public/701/60.html "Extendable" static translations: The extendable keyword allows the user to configure several ambiguous static translations, where an ambiguous translations are translations with the same local or global address. ip nat inside source static <localaddr> <globaladdr> extendable Some customers want to use more than one service provider and translate into each provider's address space. You can use route-maps to base the selection of global address pool on output interface as well as an access-list match. Following is an example: ip nat pool provider1-space ip nat pool provider2-space ip nat inside source route-map provider1-map pool provider1-space ip nat inside source route-map provider2-map pool provider2-space route-map provider1-map permit 10 match ip address 1 match interface Serial0/0 route-map provider2-map permit 10 match ip address 1 match interface Serial0/1 . . . Once that is working, they might also want to define static mappings for a particular host using each provider's address space. The software does not allow two static translations with the same local address, though, because it is ambiguous from the inside. The router will accept these static translations and resolve the ambiguity by creating full translations (all addresses and ports) if the static translations are marked as "extendable". For a new outside-to-inside flow, the appropriate static entry will act as a template for a full translation. For a new inside-to-outside flow, the dynamic route-map rules will be used to create a full translation. ****************************************************************** ******** From: Question 94 Subject: Where can I get some third party icons for my Visio program? Check out www.altimatech.com they sell a product called netzoom that has a great cisco library that they keep up to date, they even take requests ****************************************************************** ******** From: Question 95 Subject: Can you help me interpret the output fomr "Looking Glass" (BGP?) >I am learning BGP. >I notice a lot of our engineers where I work use looking glass at >www.traceroute.org to get answers to a lot of their questions. >Unfortunately it's hard to get them to give me a seminar. >Looking glass isn't covered in my cisco press books. >I am having a hard time grasping when I would need to use looking >glass. >and particularly how to use it. > >I put in an ameritrade address and it gives me the following. > >Query: bgp >Addr: 64.236.2.194 >BGP routing table entry for 64.236.0.0/16, version 89281795 >Paths: (2 available, best #2) > Not advertised to any peer > 1668 > 66.185.128.93 (metric 445601) from 165.117.1.194 (165.117.1.194) > Origin IGP, metric 4294967294, localpref 105, valid, internal > Community: 2548:177 2548:209 2548:666 3706:115 > 1668 > 66.185.128.51 (metric 410701) from 165.117.1.166 (165.117.1.166) > Origin IGP, metric 4294967294, localpref 105, valid, internal, >best > Community: 2548:177 2548:317 2548:666 3706:164 > > >What peer problems would arise where I may need this information? >especially considering I would need to have a peer address to put in >in the first place. This is usually used to confirm that a route is being advertised by the proper ISP. You don't put peer addresses in, you put destination network addresses in. >I see there are communities. not sure who the community members are or >what the parameters contained in the community attribs are. Any way to >find out? Most communities don't have standard meanings. Each AS assigns meanings to the communities that it cares about. By convention, communities are formed by concatenating the ASN that's using the community with a second number that the AS network administrators assign, so the communities shown above are meaningful to AS 2548 and AS 3706. Communities are often used by ISPs to allow their customers to influence routing parameters; for instance, the customer can often send communities that control what localpref the ISP assigns to the routes. >Any good hints/web-links on how to use or get the most out of the >looking glass site would be appreciated. There's nothing really special about the looking glass, it's just showing you the output of "show ip bgp" (and other router commands). It's no different from doing it on your own routers, but the looking glass lets you do it from outside your network, so you can tell whether a problem is specific to your network or more widespread. >Thank you for that enlightening input. >This time I queried. >Query: bgp >Addr: 216.202.0.0 >It is a Genuity address. > >Here is the output below. >Could someone explain >" Advertised to non peer-group peers: > 198.32.187.122 " this belongs to : Exchange Point Blocks (NET-EP-) That's a BGP neighbor of the looking glass router, which the router will share this route with. >Also Genuity actually owns AS number "1" (Very prestigious). . used since the lower admin-distance route will never get a chance to float up. FR e-t-e can be setup as follows: int s0/0 blah frame-relay class end-to-end-keepalive blah map-class frame-relay. nat inside source route-map provider1-map pool provider1-space ip nat inside source route-map provider2-map pool provider2-space route-map provider1-map permit 10 match ip address 1 match interface. route-map provider2-map permit 10 match ip address 1 match interface Serial0/1 . . . Once that is working, they might also want to define static mappings for a particular host using each