Jump to content

Site Offline

The community is currently offline and only accessible to those with permission.

Sadikhov IT Certification forums


  • Content Count

  • Joined

  • Last visited

Community Reputation

0 Neutral

About Jamalus

  • Rank
  • Birthday 06/16/1987

Profile Information

  • Gender
  1. I'm having a hard time trying to figure out what this one's going to be like... I am following the course on PEC, but it's mainly about the topics I would expect for the SE role instead of FE. I have my CCNP and still actively work with switching a lot, but I'm really unsure of what to expect. Anyone done this one recently?
  2. I have it running, but not really happy about device support for CNA in general. Next to AP's, WLC etc. it doesn't even support the 2960S etc. I asked my partner channel contacts at cisco and they couldn't tell me why or when it would be supported.. .. Bummed out, to say the least. I loved this at first, because I don't have to fool around in visio for hours to map the network. Now it's hust another useless tool to me.
  3. Any luck ? I would have to do the Field Engineer exams myself within the next two months. Not really excited about the courses available on PEC ... Cheers
  4. Jamalus

    1 subnet with /22 need saparate with /30 bit

    How about private VLANS ?
  5. Jamalus

    Layer 3 Port-Channel as router-on-a-stick

    True, true ... I WILL be running a 3750 stack and a 2960S stack at core/distribution and access layer respectively. With the 3750 and 2960, I belive it is possible to participate in the OSPF, so you could rely on that. Of course, as you mentioned, I won't be needing it, as we can solve it just fine by the channel. Just one thing I'm not 100% sure of is if the 2960S channel can be configured as a layer 3 logical interface. I can't see it mentioned in the release notes for the IOS ... From your post I assume you have tried this and it worked, but I really want to be sure.
  6. Jamalus

    Layer 3 Port-Channel as router-on-a-stick

    chrcel, I contacted the Cisco partner helpline for this and they advised me to go with the 12.2(55) IOS, which allows the 2960(S) to participate in routing. They call this 'routed access' -> http://www.cisco.com/en/US/solutions/collateral/ns340/ns517/ns431/ns17/net_presentation0900aecd804598c2.pdf Looks good, feels good, but haven't been able to put this in lab. (don't have a 3750, let alone 2) I'd recommend you to check this out if you have the chance.
  7. Solved - was an issue with our IT admin, who set the tunnel group profiles and locks in the user profiles ....
  8. As the title says: I would like to check if we can make .1Q encapsulated subinterfaces on a Cisco Etherchannel. We will be using a Cat 3750G-12S with IP services IOS. This should essentially act as a router on a stick, but the stick being an Etherchannel interface. I don't have a lab environment to test in at the moment and I really want to stay away from SVI's for each and every subnet, as we will be handling .01X as well in the future and we would prefer to keep our VLAN IDs and names consistent across the access layers .... Really annoying, because Cisco is really taking their time to respond to this one. Any thoughts?
  9. I'm having some trouble trying to get different tunnel groups to receive different addresses from separate address pools for Remote Access VPN to my ASA. I have two tunnel groups (one for production network and one for LAB) and the same amount of tunnel groups and policies. Both the connection profile and the policy state the respective address pool for each. Both are set to only distribute via local pool. Still, when connection to the LAB tunnel profile, I get all LAB settings, apart from IP addresses and DNS settings. Any clue, anyone? BTW: here's the profiles and policies: tunnel-group CCBE-VPN type remote-access tunnel-group CCBE-VPN general-attributes address-pool (inside) VPN address-pool VPN default-group-policy CCBE-VPN group-policy CCBE-VPN internal group-policy CCBE-VPN attributes dns-server value vpn-tunnel-protocol IPSec l2tp-ipsec svc password-storage enable ipsec-udp enable split-tunnel-policy tunnelspecified split-tunnel-network-list value CCBE-VPN_splitTunnelAcl default-domain value CCBELUX.COM vlan none address-pools value VPN group-policy CCBE-LAB internal group-policy CCBE-LAB attributes banner value TETTEN !!!! dns-server value vpn-tunnel-protocol IPSec l2tp-ipsec default-domain value LAB.LOCAL address-pools value LAB tunnel-group CCBE-LAB type remote-access tunnel-group CCBE-LAB general-attributes address-pool (LAB) LAB address-pool LAB default-group-policy CCBE-LAB And here's the address pools: ip local pool VPN mask ip local pool LAB LABVPN- mask Very strange her is that it substitued my address range for the lab with LAB LABVPN- instead of LAB Argh! It's driving me nuts !!!
  10. Jamalus

    MS IAS

    I am actually looking for a pretty in-depth guide around Microsoft IAS remote connection policies. I've been deploying this a few times in conjuction with Cisco equipment, but can't seem to grasp the exact nature and often get stuck when dealing with multiple policies. Anyone have any good material on this, as Google keeps feeding me the same pages over and over, all pointing to single request policies -> not entirely helpful.
  11. Seems this wasn't possible at all using CUBAC and Unity Connection ...Solved using Call Handlers and forwarding rules ... not quite what we had in mind, but it works for now.
  12. Well, now I'm stuck with the call actually going to the call handler... but only after having passed by the extension's mailbox (even though it's defined as a call handler). Seems I will need to go get me some reading materials for unity connection call flow issues.
  13. I am kind of stuck configuring Unity Connection Call Handlers or Direct/Forwarded Routing Rules to provide call routinginto the ARC CUBAC console on a Business Edition CUCM. Calls to the main number (411) should get routed as follows: Call within business hours goes to attendant console if it is logged in. If the console operator is not logged in or the queues are full, the call should be redirected to 666. If 666 receives calls within business hours, it should ring for 60 seconds and then to a GDM mailbox. If the call is outside of business hours, it should only ring for 30 seconds, before playing a prompt saying our offices are closed. Attached files show the call flowchart for this. Now, basically what I do is create a handler that directs the call to the CUBAC, one for the GDM and one for the 'closed' recording, but I can't seem to figure out how to check if the queues are full. The Direct Routing rules, based on business hours should route to the 411 handler within hours and to 666 outside. To be very honest, I have never set up call routing in Unity Connection and the new ARC console is completely new to me ..... Would be very happy if someone could shed a light on this.
  14. Jamalus

    DNS in router

    Also, the fact that your link may come down does not mean that you can no longer use the DNS associated with that ISP link. They may well be available through the secondary link from the other ISP. If the DNS goes down, of course the option of adding an array of available DNS servers solves that problem, as noted by Sunfish.
  15. 1) make sure all GUI files are available in flash on both the router and the CUE module 2) enable the router GUI and test it. 3) make sure you have a route to the CUE and are able to ping it from router and client 4) try it now just for reference, I googled up the following for you: http://www.cisco.com/en/US/docs/voice_ip_comm/unity_exp/rel2_1/ccm_gui/ch1over.html#wp1052528 HTH