wildweaselmi

A product or brand that I love is Apple. I believe everything they release is quality x 10.

A product or brand that I love is Apple. I believe everything they release is quality x 10.

tracetcp - excellent tool that doesn't rely on ICMP for checking for open ports... you can also scan for open ports (example to scan between 130 and 140: tracetcp 147.249.58.1 -h 3 -m 1 -p 1 -t 500 -c -r 130 140 -n)

tracetcp - excellent tool that doesn't rely on ICMP for checking for open ports... you can also scan for open ports (example to scan between 130 and 140: tracetcp 147.249.58.1 -h 3 -m 1 -p 1 -t 500 -c -r 130 140 -n)

Other Ubuntu Network Tools that should be loaded on your Ubuntu Network Analyzer Desktop or Laptop. Nessus - a powerful remote network security auditor, with a nice GUI. Nessus supports plugins and offers a usually current attack database. It also features useful scripting abilities, allowing you to automate many tasks. Install the nessus package using your favorite package manager. Nmap - the standard network mapper. Has a thousand and one uses. To install Nmap install the nmap package. Kismet - a wireless sniffing tool. Includes support for GPS map scanning with in use of the gpsdrive package. Install the kismet package from the Universe Repository. Chkrootkit - chkrootkit can be used to help determine if a machine has been compromised. While not what you should use for the 'final word' on if you have been compromised, it runs a lot of useful checks and can direct suspicions towards finding a solution. To install chkrootkit install the chkrootkit package. Rkhunter (Ubuntu 6.06 and above only) - another rootkit detection software. Install the rkhunter package from the Universe Repository. tiger - Tiger is a package consisting of Bourne Shell scripts, C code and data files which is used for checking for security problems on a UNIX system. It scans system configuration files, file systems, and user configuration files for possible security problems and reports them. Install tiger chkrootkit john. GnuPG - also known as GPG, is an open source PGP replacement implementing the OpenPGP standard. Lacks support for IDEA, but is incredibly useful. Included by default. GnuPG will allow you to encrypt emails, digitally sign, and integrates well into the Evolution mail client as well as Thunderbird. Seahorse - a light-weight Gnome frontend for GPG, makes managing keys much easier. Install the seahorse package from the Universe Repository. Nemesis - a command-line based packet injection utility. Requires a bit of reading the documentation to get full use from. To install nemesis install the nemesis package from the Universe Repository. Tcpdump - while its name suggests that it works for only TCP, tcpdump also supports UDP, BGP, NFS, and a lot of other packet types. It is a powerful network utility that should be in every admins toolbox, allowing you to pull in everything off the wire. In combination with ethereal it doesn't miss much. To install tcpdump install the tcpdump package. OpenSSH - OpenSSH almost singlehandedly stopped admins from using telnet, an insecure protocol. The OpenSSH client is installed by default. Generally you want to use SSH instead of telnet or rsh. In some situations, such as large number of clients, you might want to pursue other options, such as telnet with ssl. To install the ssh server install the openssh-server package. denyhosts (Ubuntu 6.10 and above only) - scans your SSH logs to find brute-force attacks, and then blocks the IPs they came from. To install denyhosts install the denyhosts package.

Other Ubuntu Network Tools that should be loaded on your Ubuntu Network Analyzer Desktop or Laptop. Nessus - a powerful remote network security auditor, with a nice GUI. Nessus supports plugins and offers a usually current attack database. It also features useful scripting abilities, allowing you to automate many tasks. Install the nessus package using your favorite package manager. Nmap - the standard network mapper. Has a thousand and one uses. To install Nmap install the nmap package. Kismet - a wireless sniffing tool. Includes support for GPS map scanning with in use of the gpsdrive package. Install the kismet package from the Universe Repository. Chkrootkit - chkrootkit can be used to help determine if a machine has been compromised. While not what you should use for the 'final word' on if you have been compromised, it runs a lot of useful checks and can direct suspicions towards finding a solution. To install chkrootkit install the chkrootkit package. Rkhunter (Ubuntu 6.06 and above only) - another rootkit detection software. Install the rkhunter package from the Universe Repository. tiger - Tiger is a package consisting of Bourne Shell scripts, C code and data files which is used for checking for security problems on a UNIX system. It scans system configuration files, file systems, and user configuration files for possible security problems and reports them. Install tiger chkrootkit john. GnuPG - also known as GPG, is an open source PGP replacement implementing the OpenPGP standard. Lacks support for IDEA, but is incredibly useful. Included by default. GnuPG will allow you to encrypt emails, digitally sign, and integrates well into the Evolution mail client as well as Thunderbird. Seahorse - a light-weight Gnome frontend for GPG, makes managing keys much easier. Install the seahorse package from the Universe Repository. Nemesis - a command-line based packet injection utility. Requires a bit of reading the documentation to get full use from. To install nemesis install the nemesis package from the Universe Repository. Tcpdump - while its name suggests that it works for only TCP, tcpdump also supports UDP, BGP, NFS, and a lot of other packet types. It is a powerful network utility that should be in every admins toolbox, allowing you to pull in everything off the wire. In combination with ethereal it doesn't miss much. To install tcpdump install the tcpdump package. OpenSSH - OpenSSH almost singlehandedly stopped admins from using telnet, an insecure protocol. The OpenSSH client is installed by default. Generally you want to use SSH instead of telnet or rsh. In some situations, such as large number of clients, you might want to pursue other options, such as telnet with ssl. To install the ssh server install the openssh-server package. denyhosts (Ubuntu 6.10 and above only) - scans your SSH logs to find brute-force attacks, and then blocks the IPs they came from. To install denyhosts install the denyhosts package.

Unfortunately for Skype users, a spam filter similar to email spam filtering is not available. It appears that Skype has no plans to launch anything similar to that. However, you can take spam management into your own hands. Completely eliminating spam is unlikely, but by following some simple steps you will reduce your spam messages dramatically. Privacy Settings Set your privacy settings to only allow your people in your Contact List to contact you. To do this, in Windoze go to File--> Privacy…--> Select the second privacy option--> Save. To do this in Mac OS X version go to Skype Preferences - Privacy and select Only people in my Contact list. This is the most important step. If you cannot choose this setting for any reason, trying the rest of these steps will help. Status Setting Change your status. In the Skype message boards SkypeMe! mode has been lovingly dubbed PornMe. If you routinely leave your status set to SkypeMe!, you’re leaving yourself much more vulnerable to spam, especially because of the Skype Directory. In a similar vein, remove as much personal information as you can from your profile. Gender seems to be a particular flag for spammers. Blocking Users Block spammers. You can choose to block them from the message window or in your settings. By selecting Blocked Users in the Privacy window, (Skype Preferences - Privacy - Click on Blocked Users) you can see a list of blocked users. You can select individual users from the list, then click block this person. This will not dramatically reduce the spam messages, but it will eliminate repeats and probably make you feel a little better. Report Abuse Report abuse to http://support.skype...ckets&_m=submit . The support form allows you to select a specific category for the type of spam you’re receiving. While this may not help immediately, it will help Skype identify problem areas and improve future versions of Skype. Skype Alternatives Here is a website with the top 10 alternatives to Skype

Unfortunately for Skype users, a spam filter similar to email spam filtering is not available. It appears that Skype has no plans to launch anything similar to that. However, you can take spam management into your own hands. Completely eliminating spam is unlikely, but by following some simple steps you will reduce your spam messages dramatically. Privacy Settings Set your privacy settings to only allow your people in your Contact List to contact you. To do this, in Windoze go to File--> Privacy…--> Select the second privacy option--> Save. To do this in Mac OS X version go to Skype Preferences - Privacy and select Only people in my Contact list. This is the most important step. If you cannot choose this setting for any reason, trying the rest of these steps will help. Status Setting Change your status. In the Skype message boards SkypeMe! mode has been lovingly dubbed PornMe. If you routinely leave your status set to SkypeMe!, you’re leaving yourself much more vulnerable to spam, especially because of the Skype Directory. In a similar vein, remove as much personal information as you can from your profile. Gender seems to be a particular flag for spammers. Blocking Users Block spammers. You can choose to block them from the message window or in your settings. By selecting Blocked Users in the Privacy window, (Skype Preferences - Privacy - Click on Blocked Users) you can see a list of blocked users. You can select individual users from the list, then click block this person. This will not dramatically reduce the spam messages, but it will eliminate repeats and probably make you feel a little better. Report Abuse Report abuse to http://support.skype...ckets&_m=submit . The support form allows you to select a specific category for the type of spam you’re receiving. While this may not help immediately, it will help Skype identify problem areas and improve future versions of Skype. Skype Alternatives Here is a website with the top 10 alternatives to Skype

Code Description 0 Pad. 1 Subnet Mask. 2 Time Offset (deprecated). 3 Router. 4 Time Server. 5 Name Server. 6 Domain Name Server. 7 Log Server. 8 Quote Server. 9 LPR Server. 10 Impress Server. 11 Resource Location Server. 12 Host Name. 13 Boot File Size. 14 Merit Dump File. 15 Domain Name. 16 Swap Server. 17 Root Path. 18 Extensions Path. 19 IP Forwarding enable/disable. 20 Non-local Source Routing enable/disable. 21 Policy Filter. 22 Maximum Datagram Reassembly Size. 23 Default IP Time-to-live. 24 Path MTU Aging Timeout. 25 Path MTU Plateau Table. 26 Interface MTU. 27 All Subnets are Local. 28 Broadcast Address. 29 Perform Mask Discovery. 30 Mask supplier. 31 Perform router discovery. 32 Router solicitation address. 33 Static routing table. 34 Trailer encapsulation. 35 ARP cache timeout. 36 Ethernet encapsulation. 37 Default TCP TTL. 38 TCP keepalive interval. 39 TCP keepalive garbage. 40 Network Information Service Domain. 41 Network Information Servers. 42 NTP servers. 43 Vendor specific information. 44 NetBIOS over TCP/IP name server. 45 NetBIOS over TCP/IP Datagram Distribution Server. 46 NetBIOS over TCP/IP Node Type. 47 NetBIOS over TCP/IP Scope. 48 X Window System Font Server. 49 X Window System Display Manager. 50 Requested IP Address. 51 IP address lease time. 52 Option overload. 53 DHCP message type. 54 Server identifier. 55 Parameter request list. 56 Message. 57 Maximum DHCP message size. 58 Renew time value. 59 Rebinding time value. 60 Class-identifier. 61 Client-identifier. 62 NetWare/IP Domain Name. 63 NetWare/IP information. 64 Network Information Service+ Domain. 65 Network Information Service+ Servers. 66 TFTP server name. 67 Bootfile name. 68 Mobile IP Home Agent. 69 Simple Mail Transport Protocol Server. 70 Post Office Protocol Server. 71 Network News Transport Protocol Server. 72 Default World Wide Web Server. 73 Default Finger Server. 74 Default Internet Relay Chat Server. 75 StreetTalk Server. 76 StreetTalk Directory Assistance Server. 77 User Class Information. 78 SLP Directory Agent. 79 SLP Service Scope. 80 Rapid Commit. 81 FQDN, Fully Qualified Domain Name. 82 Relay Agent Information. 83 Internet Storage Name Service. 84 ------ 85 NDS servers. 86 NDS tree name. 87 NDS context. 88 BCMCS Controller Domain Name list. 89 BCMCS Controller IPv4 address list. 90 Authentication. 91 client-last-transaction-time. 92 associated-ip. 93 Client System Architecture Type. 94 Client Network Interface Identifier. 95 LDAP, Lightweight Directory Access Protocol. 96 ------ 97 Client Machine Identifier. 98 Open Group's User Authentication. 99 GEOCONF_CIVIC. 100 IEEE 1003.1 TZ String. 101 Reference to the TZ Database. 102-111 ------ 112 NetInfo Parent Server Address. 113 NetInfo Parent Server Tag. 114 URL. 115 ------ 116 Auto-Configure 117 Name Service Search. 118 Subnet Selection. 119 DNS domain search list. 120 SIP Servers DHCP Option. 121 Classless Static Route Option. 122 CCC, CableLabs Client Configuration. 123 GeoConf. 124 Vendor-Identifying Vendor Class. 125 Vendor-Identifying Vendor-Specific. 126 ------ 127 ------ 128 TFPT Server IP address. 129 Call Server IP address. 130 Discrimination string. 131 Remote statistics server IP address. 132 802.1P VLAN ID. 133 802.1Q L2 Priority. 134 Diffserv Code Point. 135 HTTP Proxy for phone-specific applications. 136 PANA Authentication Agent. 137 LoST Server. 138 CAPWAP Access Controller addresses. 139 OPTION-IPv4_Address-MoS. 140 OPTION-IPv4_FQDN-MoS. 141-149 ------ 150 TFTP server address, Etherboot, GRUB configuration path name. 151-174 ------ 175 Etherboot. 176 IP Telephone. 177 Etherboot, PacketCable and CableHome. 178-207 ------ 208 pxelinux.magic (string) = F1:00:74:7E (241.0.116.126). 209 pxelinux.configfile (text). 210 pxelinux.pathprefix (text). 211 pxelinux.reboottime (unsigned integer 32 bits). 212-219 ------ 220 Subnet Allocation. 221 Virtual Subnet Selection. 222-223 ------ 224-254 Private use. 255 End.

Code Description 0 Pad. 1 Subnet Mask. 2 Time Offset (deprecated). 3 Router. 4 Time Server. 5 Name Server. 6 Domain Name Server. 7 Log Server. 8 Quote Server. 9 LPR Server. 10 Impress Server. 11 Resource Location Server. 12 Host Name. 13 Boot File Size. 14 Merit Dump File. 15 Domain Name. 16 Swap Server. 17 Root Path. 18 Extensions Path. 19 IP Forwarding enable/disable. 20 Non-local Source Routing enable/disable. 21 Policy Filter. 22 Maximum Datagram Reassembly Size. 23 Default IP Time-to-live. 24 Path MTU Aging Timeout. 25 Path MTU Plateau Table. 26 Interface MTU. 27 All Subnets are Local. 28 Broadcast Address. 29 Perform Mask Discovery. 30 Mask supplier. 31 Perform router discovery. 32 Router solicitation address. 33 Static routing table. 34 Trailer encapsulation. 35 ARP cache timeout. 36 Ethernet encapsulation. 37 Default TCP TTL. 38 TCP keepalive interval. 39 TCP keepalive garbage. 40 Network Information Service Domain. 41 Network Information Servers. 42 NTP servers. 43 Vendor specific information. 44 NetBIOS over TCP/IP name server. 45 NetBIOS over TCP/IP Datagram Distribution Server. 46 NetBIOS over TCP/IP Node Type. 47 NetBIOS over TCP/IP Scope. 48 X Window System Font Server. 49 X Window System Display Manager. 50 Requested IP Address. 51 IP address lease time. 52 Option overload. 53 DHCP message type. 54 Server identifier. 55 Parameter request list. 56 Message. 57 Maximum DHCP message size. 58 Renew time value. 59 Rebinding time value. 60 Class-identifier. 61 Client-identifier. 62 NetWare/IP Domain Name. 63 NetWare/IP information. 64 Network Information Service+ Domain. 65 Network Information Service+ Servers. 66 TFTP server name. 67 Bootfile name. 68 Mobile IP Home Agent. 69 Simple Mail Transport Protocol Server. 70 Post Office Protocol Server. 71 Network News Transport Protocol Server. 72 Default World Wide Web Server. 73 Default Finger Server. 74 Default Internet Relay Chat Server. 75 StreetTalk Server. 76 StreetTalk Directory Assistance Server. 77 User Class Information. 78 SLP Directory Agent. 79 SLP Service Scope. 80 Rapid Commit. 81 FQDN, Fully Qualified Domain Name. 82 Relay Agent Information. 83 Internet Storage Name Service. 84 ------ 85 NDS servers. 86 NDS tree name. 87 NDS context. 88 BCMCS Controller Domain Name list. 89 BCMCS Controller IPv4 address list. 90 Authentication. 91 client-last-transaction-time. 92 associated-ip. 93 Client System Architecture Type. 94 Client Network Interface Identifier. 95 LDAP, Lightweight Directory Access Protocol. 96 ------ 97 Client Machine Identifier. 98 Open Group's User Authentication. 99 GEOCONF_CIVIC. 100 IEEE 1003.1 TZ String. 101 Reference to the TZ Database. 102-111 ------ 112 NetInfo Parent Server Address. 113 NetInfo Parent Server Tag. 114 URL. 115 ------ 116 Auto-Configure 117 Name Service Search. 118 Subnet Selection. 119 DNS domain search list. 120 SIP Servers DHCP Option. 121 Classless Static Route Option. 122 CCC, CableLabs Client Configuration. 123 GeoConf. 124 Vendor-Identifying Vendor Class. 125 Vendor-Identifying Vendor-Specific. 126 ------ 127 ------ 128 TFPT Server IP address. 129 Call Server IP address. 130 Discrimination string. 131 Remote statistics server IP address. 132 802.1P VLAN ID. 133 802.1Q L2 Priority. 134 Diffserv Code Point. 135 HTTP Proxy for phone-specific applications. 136 PANA Authentication Agent. 137 LoST Server. 138 CAPWAP Access Controller addresses. 139 OPTION-IPv4_Address-MoS. 140 OPTION-IPv4_FQDN-MoS. 141-149 ------ 150 TFTP server address, Etherboot, GRUB configuration path name. 151-174 ------ 175 Etherboot. 176 IP Telephone. 177 Etherboot, PacketCable and CableHome. 178-207 ------ 208 pxelinux.magic (string) = F1:00:74:7E (241.0.116.126). 209 pxelinux.configfile (text). 210 pxelinux.pathprefix (text). 211 pxelinux.reboottime (unsigned integer 32 bits). 212-219 ------ 220 Subnet Allocation. 221 Virtual Subnet Selection. 222-223 ------ 224-254 Private use. 255 End.

Name: GMC Yukon (1999) Date Added: 01 February 2010 - 07:09 AM Owner: wildweaselmi Short Description: I always wanted one and Julie's friend said she could hook us up at the dealership she worked at. This Yukon was a lemon and didn't know it until it was too late. Bought it in 2003 and it lasted a little over a year. View Vehicle

Name: GMC Yukon (1999) Date Added: 01 February 2010 - 07:09 AM Owner: wildweaselmi Short Description: I always wanted one and Julie's friend said she could hook us up at the dealership she worked at. This Yukon was a lemon and didn't know it until it was too late. Bought it in 2003 and it lasted a little over a year. View Vehicle

When you are worried that a configuration may or may not work you can run the following commands The following example reloads the software on the router in 10 minutes: Router# reload in 10 Router# Reload scheduled for 11:57:08 PDT Fri Apr 21 1996 (in 10 minutes) Proceed with reload? Router# If the change turns out to be successful then just run the following The following example cancels a pending reload: Router# reload cancel %Reload cancelled. This trick allows you to make changes and if they lock you out or if they break your connection, after the set time the switch or router will reload/reboot and load the original configuration found in the startup to running config. Just don't save the save changes by running a copy running-config to starutp-config until you are for sure your changes have been implemented successfully. Reference: Cisco Article Warm Reload

When you are worried that a configuration may or may not work you can run the following commands The following example reloads the software on the router in 10 minutes: Router# reload in 10 Router# Reload scheduled for 11:57:08 PDT Fri Apr 21 1996 (in 10 minutes) Proceed with reload? Router# If the change turns out to be successful then just run the following The following example cancels a pending reload: Router# reload cancel %Reload cancelled. This trick allows you to make changes and if they lock you out or if they break your connection, after the set time the switch or router will reload/reboot and load the original configuration found in the startup to running config. Just don't save the save changes by running a copy running-config to starutp-config until you are for sure your changes have been implemented successfully. Reference: Cisco Article Warm Reload

Product Number Product Description Qty WS-C4507R Catalyst 4500 Chassis (7-Slot),fan, no p/s, Red Sup Capable 1 PWR-C45-2800ACV Catalyst 4500 2800W AC Power Supply (Data and PoE) 1 PWR-C45-2800ACV/2 Catalyst 4500 2800W AC Power Supply (Data and PoE) 1 CAB-AC-2800W-TWLK U.S. Power Cord, Twist Lock, NEMA 6-20 Plug 2 WS-X4516 Catalyst 4500 Supervisor V (2 GE),Console(RJ-45) 1 WS-X4516/2 Catalyst 45xxR Redundant Supervisor V (2 GE),Console(RJ-45) 1 S45IPBK9-12237SG Cisco CAT4500 IOS IP BASE SSH 1 WS-C4507R-EMS-LIC Catalyst 4507R RMON Agent License 1 WS-X4548-GB-RJ45V= Catalyst 4500 PoE 802.3af 10/100/1000, 48-Ports (RJ45) 5 WS-G5484= 1000BASE-SX Short Wavelength GBIC (Multimode only) 4

Product Number Product Description Qty WS-C4507R Catalyst 4500 Chassis (7-Slot),fan, no p/s, Red Sup Capable 1 PWR-C45-2800ACV Catalyst 4500 2800W AC Power Supply (Data and PoE) 1 PWR-C45-2800ACV/2 Catalyst 4500 2800W AC Power Supply (Data and PoE) 1 CAB-AC-2800W-TWLK U.S. Power Cord, Twist Lock, NEMA 6-20 Plug 2 WS-X4516 Catalyst 4500 Supervisor V (2 GE),Console(RJ-45) 1 WS-X4516/2 Catalyst 45xxR Redundant Supervisor V (2 GE),Console(RJ-45) 1 S45IPBK9-12237SG Cisco CAT4500 IOS IP BASE SSH 1 WS-C4507R-EMS-LIC Catalyst 4507R RMON Agent License 1 WS-X4548-GB-RJ45V= Catalyst 4500 PoE 802.3af 10/100/1000, 48-Ports (RJ45) 5 WS-G5484= 1000BASE-SX Short Wavelength GBIC (Multimode only) 4

Product Number Product Description Qty WS-C6509-E Catalyst 6500 Enhanced 9-slot chassis,15RU,no PS,no Fan Tray 1 S733ALK9-12218SXD Cisco CAT6000-SUP720 IOS ENT W/IPV6/SSH/3DES LAN ONLY 1 WS-C6X09-EMS-LIC Catalyst 6x09 RMON Agent License 1 WS-SUP720-3B Catalyst 6500/Cisco 7600 Supervisor 720 Fabric MSFC3 PFC3B 1 WS-SUP720-3B Catalyst 6500/Cisco 7600 Supervisor 720 Fabric MSFC3 PFC3B 1 WS-C6509-E-FAN Catalyst 6509-E Chassis Fan Tray 1 WS-CAC-6000W Cat6500 6000W AC Power Supply 2 CAB-AC-C6K-TWLK Power Cord, 250Vac 16A, twist lock NEMA L6-20 plug, US 4 BF-S720-64MB-SP Bootflash for SUP720 - 64MB-SP 1 BF-S720-64MB-RP Bootflash for SUP720-64MB-RP 1 MEM-S2-512MB Catalyst 6500 512MB DRAM on the Supervisor (SUP2 or SUP720) 1 MEM-MSFC2-512MB Catalyst 6500 512MB DRAM on the MSFC2 or SUP720 MSFC3 1 BF-S720-64MB-SP Bootflash for SUP720 - 64MB-SP 1 BF-S720-64MB-RP Bootflash for SUP720-64MB-RP 1 MEM-S2-512MB Catalyst 6500 512MB DRAM on the Supervisor (SUP2 or SUP720) 1 MEM-MSFC2-512MB Catalyst 6500 512MB DRAM on the MSFC2 or SUP720 MSFC3 1 WS-X6548-GE-45AF= Cat 6500 PoE 802.3af 10/100/1000 48-port(RJ45)CEF256 card 6 WS-X6724-SFP= Catalyst 6500 24-port GigE Mod: fabric-enabled (Req. SFPs) 1 MEM-XCEF720-256M Catalyst 6500 256MB DDR, xCEF720 (67xx interface, DFC3A) 1 WS-F6700-CFC Catalyst 6500 Central Fwd Card for WS-X67xx modules 1 GLC-SX-MM= GE SFP, LC connector SX transceiver 12

Product Number Product Description Qty WS-C6509-E Catalyst 6500 Enhanced 9-slot chassis,15RU,no PS,no Fan Tray 1 S733ALK9-12218SXD Cisco CAT6000-SUP720 IOS ENT W/IPV6/SSH/3DES LAN ONLY 1 WS-C6X09-EMS-LIC Catalyst 6x09 RMON Agent License 1 WS-SUP720-3B Catalyst 6500/Cisco 7600 Supervisor 720 Fabric MSFC3 PFC3B 1 WS-SUP720-3B Catalyst 6500/Cisco 7600 Supervisor 720 Fabric MSFC3 PFC3B 1 WS-C6509-E-FAN Catalyst 6509-E Chassis Fan Tray 1 WS-CAC-6000W Cat6500 6000W AC Power Supply 2 CAB-AC-C6K-TWLK Power Cord, 250Vac 16A, twist lock NEMA L6-20 plug, US 4 BF-S720-64MB-SP Bootflash for SUP720 - 64MB-SP 1 BF-S720-64MB-RP Bootflash for SUP720-64MB-RP 1 MEM-S2-512MB Catalyst 6500 512MB DRAM on the Supervisor (SUP2 or SUP720) 1 MEM-MSFC2-512MB Catalyst 6500 512MB DRAM on the MSFC2 or SUP720 MSFC3 1 BF-S720-64MB-SP Bootflash for SUP720 - 64MB-SP 1 BF-S720-64MB-RP Bootflash for SUP720-64MB-RP 1 MEM-S2-512MB Catalyst 6500 512MB DRAM on the Supervisor (SUP2 or SUP720) 1 MEM-MSFC2-512MB Catalyst 6500 512MB DRAM on the MSFC2 or SUP720 MSFC3 1 WS-X6548-GE-45AF= Cat 6500 PoE 802.3af 10/100/1000 48-port(RJ45)CEF256 card 6 WS-X6724-SFP= Catalyst 6500 24-port GigE Mod: fabric-enabled (Req. SFPs) 1 MEM-XCEF720-256M Catalyst 6500 256MB DDR, xCEF720 (67xx interface, DFC3A) 1 WS-F6700-CFC Catalyst 6500 Central Fwd Card for WS-X67xx modules 1 GLC-SX-MM= GE SFP, LC connector SX transceiver 12

Standard Router Ports Configuration interface range GigabitEthernet1/1, GigabitEthernet2/1 description ATT-Router1-gi0/0 switchport switchport access vlan 50 switchport mode access no ip address speed 100 duplex full power inline never no cdp enable Standard Server Ports Configuration (VLAN100 is used if servers have there own mgmt vlan separate from users data vlan) interface range GigabitEthernet1/2 – 24, GigabitEthernet2/2 - 24 description Server switchport switchport access vlan 100 switchport mode access no ip address no snmp trap link-status power inline never spanning-tree portfast spanning-tree guard loop Standard User Ports Configuration (VLAN101 is users data vlan and shows this vlan is on the first floor, VLAN201 is user voip vlan) Interface range GigabitEthernet1/25 – 30, GigabitEthernet2/25 - 30 description User-Workstation switchport switchport access vlan 101 switchport mode access switchport voice vlan 201 no ip address wrr-queue cos-map 1 1 1 wrr-queue cos-map 1 2 0 wrr-queue cos-map 2 1 2 3 4 6 7 wrr-queue cos-map 2 2 5 mls qos trust cos spanning-tree portfast service-policy input TRUST_COS_POLICY Standard VoIP Server Ports Configuration (VLAN200 is voip server mgmt vlan if separate from users voip VLAN) interface range GigabitEthernet1/31 – 40, GigabitEthernet2/31 - 40 description Voice-Servers switchport switchport access vlan 200 switchport mode access no ip address speed 100 duplex full wrr-queue cos-map 1 1 1 wrr-queue cos-map 1 2 0 wrr-queue cos-map 2 1 2 3 4 6 7 wrr-queue cos-map 2 2 5 no snmp trap link-status power inline never spanning-tree portfast spanning-tree guard loop Standard Private VoIP Ports VLAN Configuration (VLAN98 (41-44) is configured the same as VLAN99 (45-48)) interface range GigabitEthernet1/41 – 44, GigabitEthernet2/41 - 44 description Avaya Devices switchport switchport access vlan 98 switchport mode access no ip address speed 100 duplex full wrr-queue cos-map 1 1 1 wrr-queue cos-map 1 2 0 wrr-queue cos-map 2 1 2 3 4 6 7 wrr-queue cos-map 2 2 5 no snmp trap link-status power inline never spanning-tree portfast spanning-tree guard loop

Standard Router Ports Configuration interface range GigabitEthernet1/1, GigabitEthernet2/1 description ATT-Router1-gi0/0 switchport switchport access vlan 50 switchport mode access no ip address speed 100 duplex full power inline never no cdp enable Standard Server Ports Configuration (VLAN100 is used if servers have there own mgmt vlan separate from users data vlan) interface range GigabitEthernet1/2 – 24, GigabitEthernet2/2 - 24 description Server switchport switchport access vlan 100 switchport mode access no ip address no snmp trap link-status power inline never spanning-tree portfast spanning-tree guard loop Standard User Ports Configuration (VLAN101 is users data vlan and shows this vlan is on the first floor, VLAN201 is user voip vlan) Interface range GigabitEthernet1/25 – 30, GigabitEthernet2/25 - 30 description User-Workstation switchport switchport access vlan 101 switchport mode access switchport voice vlan 201 no ip address wrr-queue cos-map 1 1 1 wrr-queue cos-map 1 2 0 wrr-queue cos-map 2 1 2 3 4 6 7 wrr-queue cos-map 2 2 5 mls qos trust cos spanning-tree portfast service-policy input TRUST_COS_POLICY Standard VoIP Server Ports Configuration (VLAN200 is voip server mgmt vlan if separate from users voip VLAN) interface range GigabitEthernet1/31 – 40, GigabitEthernet2/31 - 40 description Voice-Servers switchport switchport access vlan 200 switchport mode access no ip address speed 100 duplex full wrr-queue cos-map 1 1 1 wrr-queue cos-map 1 2 0 wrr-queue cos-map 2 1 2 3 4 6 7 wrr-queue cos-map 2 2 5 no snmp trap link-status power inline never spanning-tree portfast spanning-tree guard loop Standard Private VoIP Ports VLAN Configuration (VLAN98 (41-44) is configured the same as VLAN99 (45-48)) interface range GigabitEthernet1/41 – 44, GigabitEthernet2/41 - 44 description Avaya Devices switchport switchport access vlan 98 switchport mode access no ip address speed 100 duplex full wrr-queue cos-map 1 1 1 wrr-queue cos-map 1 2 0 wrr-queue cos-map 2 1 2 3 4 6 7 wrr-queue cos-map 2 2 5 no snmp trap link-status power inline never spanning-tree portfast spanning-tree guard loop

Step one is to assign a static IP address to your server Step two is to install the LDAP server dameon using the Synaptic Package Manager search for the following three items and mark to install slapd ldap-utils db4.8-util Click Apply to install the above items Step three is to configure the LDAP server (slapd.conf) Open terminal and type: su gedit /etc/ldap/slapd.conf REFERENCE

Step one is to assign a static IP address to your server Step two is to install the LDAP server dameon using the Synaptic Package Manager search for the following three items and mark to install slapd ldap-utils db4.8-util Click Apply to install the above items Step three is to configure the LDAP server (slapd.conf) Open terminal and type: su gedit /etc/ldap/slapd.conf REFERENCE

Instead of using the proprietary Cisco TACACS for user authentication we strongly suggest utilizing a RADIUS server which will allow for authentication for multiple different scenarios.Again, we aren't a big fan of using Microsoft Windows for critical needs like user authentication so we suggest using ubuntu or another Linux flavor to host your RADIUS server.Then install the software which we have been playing with freeradius(if you are going enterprise with this I suggest you utilize LDAP an database versus SQL, Python or Perl)

Instead of using the proprietary Cisco TACACS for user authentication we strongly suggest utilizing a RADIUS server which will allow for authentication for multiple different scenarios.Again, we aren't a big fan of using Microsoft Windows for critical needs like user authentication so we suggest using ubuntu or another Linux flavor to host your RADIUS server.Then install the software which we have been playing with freeradius(if you are going enterprise with this I suggest you utilize LDAP an database versus SQL, Python or Perl)

I'm having a trouble with configuring tacacs+ on a cisco 2948 switch. We have added the following config, but when logging in to the switch, you are still prompted with the Username: prompt. If this login fails it will then go to tacacs. Any ideas what I am missing? #tacacs+ set tacacs server x.x.x.x primary set tacacs server y.y.y.y set tacacs server z.z.z.z set tacacs key xxxxxxx ! #authentication set authentication login tacacs enable console primary set authentication login tacacs enable telnet primary set authentication login tacacs enable http primary set authentication enable tacacs enable console primary set authentication enable tacacs enable telnet primary set authentication enable tacacs enable http primary