Zobrazit příspěvky

Tato sekce Vám umožňuje zobrazit všechny příspěvky tohoto uživatele. Prosím uvědomte si, že můžete vidět příspěvky pouze z oblastí Vám přístupných.

Příspěvky - Janko Hrasko

Stran: [1] 2

/dev/null / telly.cz - dávejte si pozor

« kdy: 13. 05. 2022, 15:25:02 »

Absolutně nedoporučuji tuhle firmu (telly.cz). Po objednání 14 denní služby na skušebni dobu vám pak pošlu fakturu na 750KČ, i když jsem je emailem informoval, že o jejich služby už nemám zájem. Prý jsem nepoužíl správnej text pro výpověď smlouvy. Navíc jsem si měl přečíst všeobecní obchodní podmínky, kde uvádějí, že výpověd smlouvy musíte odeslat 2 měsíce před zrušením. Takže žádna akce, jenom klamání zákazníka. Další neplacení považují za to, že jim vzniká vůči vám dluh, i když jejich službu nevyužívate.
Na trhu jsou i firmy s fér přístupem...

Server / DNS: chilské domény z resolveru ve střední Evropě

« kdy: 27. 04. 2021, 13:55:39 »

Dobry den.

Muzu se zeptat, jestly vam jde resolvovat chilske domeny z DNS servru ve stredni evrope? Urcite vim, ze existuje A zaznam na domenu www.movistar.cl. Google dns server to vidi. Ale jakykoliv dns server v CR mi rekurzivni dotaz na domenu www.movistar.cl vrati prazdnej zaznam. Nefunguje to ani z dns servru od nic.cz

Z dns od google to jde:

Kód: [Vybrat]

root@ns2:~# dig @8.8.8.8 www.movistar.cl

; <<>> DiG 9.11.5-P4-5.1+deb10u3-Debian <<>> @8.8.8.8 www.movistar.cl
; (1 server found)
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 43814
;; flags: qr rd ra; QUERY: 1, ANSWER: 1, AUTHORITY: 0, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 512
;; QUESTION SECTION:
;www.movistar.cl.               IN      A

;; ANSWER SECTION:
www.movistar.cl.        4       IN      A       200.54.125.173

;; Query time: 442 msec
;; SERVER: 8.8.8.8#53(8.8.8.8)
;; WHEN: Tue Apr 27 11:46:00 UTC 2021
;; MSG SIZE  rcvd: 60

Dotaz na dns server od nic.cz nejde a ani dalsi ve stredni evrope, ktere jsem zkousel:

Kód: [Vybrat]

root@ns2:~# dig @193.17.47.1 www.movistar.cl

; <<>> DiG 9.11.5-P4-5.1+deb10u3-Debian <<>> @193.17.47.1 www.movistar.cl
; (1 server found)
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: SERVFAIL, id: 49770
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 0, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 1232
;; QUESTION SECTION:
;www.movistar.cl.               IN      A

;; Query time: 2083 msec
;; SERVER: 193.17.47.1#53(193.17.47.1)
;; WHEN: Tue Apr 27 11:53:13 UTC 2021
;; MSG SIZE  rcvd: 44

Server / DKIM: jak příjemce ví, že maily mají být podepsané

« kdy: 02. 09. 2020, 16:24:41 »

Dobry den.

Potreboval bych dovysvetlit princip DKIM. Chapu, ze odesilatel vystavi v DNS pomoci "selector" verejny klic,aby mohl byt podpis emailu overenej.

Jak se ale prijemce dozvi, ze email z nejake domeny ma byt vubec podepsanej? Ku prikladu, domena example.com. Utocnik posle zlej email z teto domeny, nic nepodepise. Jak se prijemce ma dozvedet, ze email mel byt vubec podepsanej?

Server / Re:šablona pro pojmenování servrů ve Vmware vSphere

« kdy: 07. 01. 2020, 18:06:34 »

Ne...
Nazev stroje dle OS je nepodstatnej.

To,co je dulezite je to, aby souhlasila dokumentace s tim, co je vo vSphere. Kdyz je v dokumentaci servr s nazvem server-12, tak to musi souhlasit s tim, co je vo vSphere.

Server / Šablona pro pojmenování serverů ve VMware vSphere

« kdy: 07. 01. 2020, 17:13:24 »

Dobrý den.

Ve firmě máme admina, kterej vždy pojmenuje novej virtuální stroj ve vmware vSphere podle roku,kdy vznikl. Ku příkladu, server19 byl vytvořenej v roku 2019. Bohužel, po čase se rozcházi dokumentace, kde je ku příkladu uvedeno server-db-12, ale mezitím vznikli 2 nové verze, novej stroj s původním ůčelem tedy má název server-db-19,ale v dokumentaci je něco jiného. Nebo když vznikne novej stroj, starej zanikne, tak ma název server-rok a je nutné najít všechnu dokumentaci se starým názvem a změnit ji na novej název.

Ten svůj nápad dávat do každého názvu servra rok jeho vzniku považuje za tak geniální, že neslyší na žádné argumenty proti. Navíc, jeho největší argument je, že fyzicky přejmenovat stroj ve vmware vSpere je neskutečně náročné a dokonce, že to není podporována funkce.

Možná jsem ale omezenej já a tuhle dogmu dávat do názvu stroje rok jeho vzniku je skutečne super. Co si o tomto nápadu myslíte vy?

Vývoj / Python SOAP klient

« kdy: 30. 03. 2017, 22:53:30 »

Dobry den.

Mam tento kod pre soap sluzbu:

Kód: [Vybrat]

from suds.client import Client


url="https://moja_url/Access.svc?wsdl"

client = Client(url)
print client

vrati mi toto:

Kód: [Vybrat]

Suds ( https://fedorahosted.org/suds/ )  version: 0.4.1 (beta)  build: R703-20101015

Service ( Access ) tns="http://tempuri.org/"
   Prefixes (2)
      ns0 = "http://schemas.datacontract.org/2004/07/WebSluzby"
      ns1 = "http://schemas.microsoft.com/2003/10/Serialization/"
   Ports (1):
      (BasicHttpBinding_IAccess)
         Methods (1):
            Login(xs:string login_name, xs:string password, )
         Types (4):
            ns0:LoginResult
            ns1:char
            ns1:duration
            ns1:guid

Ako mam vytvorit dotaz na sluzbu Login s username a password?

Server / Re:Squid3 flush DNS

« kdy: 14. 03. 2017, 15:40:30 »

Dekuju za odpoved.
squid3 -k reconfigure som skusal,ale nepomohlo.

Ale vdaka...

Server / Squid3 flush DNS

« kdy: 14. 03. 2017, 13:35:03 »

Dobry den.

Nevi prosim nekdo, jak udelat flush DNS cache ve squid3 bez restartu daemona?

Sítě / Re:Cisco priority queueing a forwarding

« kdy: 30. 04. 2013, 00:29:02 »

Dovolim si s vasim nazorom nesuhlasit

O mrsenie terminologie tu urcite nejde. Queing je samozrejme nieco urcite ine ako shaping, na tom sa zhodneme. Ale to, preco su urcite queing strategie potlacovane a dochadza k nim iba pri congestion(cize skoro nikdy) a k inym queing strategiam dochadza spravne - teda vzdy tak, ako chceme, podla konfiguracie, je mi zahadou. Vsimnite si totiz, ze v tom odstavci sa pise iba o niektorych queing strategiach, ostatne funguju vzdy a za kazdych okolnosti.

Sítě / Re:Cisco priority queueing a forwarding

« kdy: 29. 04. 2013, 15:57:24 »

Takze mi to nedalo a po asi dvojdnovom googlovani som na jednej FAQ cisco stranke nasiel toto:

Citace

show queueing interface interface-number [vc [[vpi/] vci] - This displays the queueing statistics of an interface or a VC. Even when there is no congestion, you will still be able to see some hits here. The reason for this is that process switched packets are always counted regardless of congestion being present. Cisco Express Forwarding (CEF) and fast-switched packets are not being counted unless there is congestion. The legacy queueing mechanisms like Priority Queueing (PQ), Custom Queueing (CQ), and Weighted Fair Queueing (WFQ), will not provide classification statistics. Only modular Quality of Service Command Line Interface (MQC)-based features in images later than 12.0(5)T provide these statistics.

Takze, PQ, CQ a WFQ queing je prakticky na prd. Sice podla tejto hlasky by sme mali vidiet nejake statistiky vzdy, ale tychto queing strategii sa to netyka. Ze clovek neuvidi statistiky by az tak nevadilo, omnoho horise je, ze tieto quieing strategie sa nebudu uplatnovat ani v praxi, pokial nenastane congestion na danom interface-cize sa nebudu uplatnovat nikdy(to podporuju aj moje testy). poznamka-CEF je zapnute na kazdom routry. Na 100Mbit interfacy ktory je pripojeny k inej lokalite iba linkou cca 35Mbit nedojde ku congestion nikdy(100Mbit interface nevie, ze je pripojeny iba napr. 35Mbit linkou), takze sa nikdy neuplatnia ani tieto queing strategie. A ak budete mat linku vyssiu ako 100Mbit, tak si predsa kupite silnejsi router, aby ste zbytocne neplatili drahsie pripojenie. Tejto strategii od cisca v pripade tychto queing mechanizmov teda fakt nechapem.
Co ale naserie omnoho viac je to, ze toto sa v dokumentacii nikde nedocitate!!! Keby to rovno napisali do dokumentacie, tak si clovek usetri nervy.

Chcem sa podakovat vsetkym prispievatelom za ochotu pri rieseni tohoto problemu.

Sítě / Re:Cisco priority queueing a forwarding

« kdy: 27. 04. 2013, 20:11:51 »

takze, ideme postupne:

show version

Kód: [Vybrat]

Cisco IOS Software, C870 Software (C870-ADVIPSERVICESK9-M), Version 12.4(24)T8, RELEASE SOFTWARE (fc1)
Technical Support: http://www.cisco.com/techsupport
Copyright (c) 1986-2012 by Cisco Systems, Inc.
Compiled Sun 09-Sep-12 09:09 by prod_rel_team

ROM: System Bootstrap, Version 12.3(8r)YI3, RELEASE SOFTWARE

router uptime is 2 hours, 22 minutes
System returned to ROM by reload at 17:39:08 A Sat Apr 27 2013
System restarted at 17:40:04 A Sat Apr 27 2013
System image file is "flash:c870-advipservicesk9-mz.124-24.T8.bin"
Last reload reason: Reload Command



This product contains cryptographic features and is subject to United
States and local country laws governing import, export, transfer and
use. Delivery of Cisco cryptographic products does not imply
third-party authority to import, export, distribute or use encryption.
Importers, exporters, distributors and users are responsible for
compliance with U.S. and local country laws. By using this product you
agree to comply with applicable laws and regulations. If you are unable
to comply with U.S. and local laws, return this product immediately.

A summary of U.S. laws governing Cisco cryptographic products may be found at:
http://www.cisco.com/wwl/export/crypto/tool/stqrg.html

If you require further assistance please contact us by sending email to
export@cisco.com.

Cisco 871 (MPC8272) processor (revision 0x200) with 118784K/12288K bytes of memory.
Processor board ID FHK104519XV
MPC8272 CPU Rev: Part Number 0xC, Mask Number 0x10
5 FastEthernet interfaces
128K bytes of non-volatile configuration memory.
28672K bytes of processor board System flash (Intel Strataflash)

Configuration register is 0x2102

show flash:

Kód: [Vybrat]

28672K bytes of processor board System flash (Intel Strataflash)

Directory of flash:/

    2  -rwx    21910432  Apr 27 2013 17:20:37 +02:00  c870-advipservicesk9-mz.124-24.T8.bin
    3  -rwx        2254   Mar 1 2002 02:03:27 +02:00  sdmconfig-8xx.cfg
    4  -rwx      833024   Mar 1 2002 02:03:43 +02:00  es.tar
    5  -rwx     1052160   Mar 1 2002 02:04:03 +02:00  common.tar
    6  -rwx        1038   Mar 1 2002 02:04:15 +02:00  home.shtml
    7  -rwx      102400   Mar 1 2002 02:04:29 +02:00  home.tar
    8  -rwx      491213   Mar 1 2002 02:04:45 +02:00  128MB.sdf
    9  -rwx         660   Aug 3 2012 13:15:34 +02:00  vlan.dat

27611136 bytes total (3207168 bytes free)

show run all

Kód: [Vybrat]

Building configuration...

Current configuration with default configurations exposed : 12525 bytes
!
version 12.4
parser cache
no service log backtrace
no service config
no service exec-callback
no service nagle
service slave-log
no service slave-coredump
no service pad to-xot
no service pad from-xot
no service pad cmns
no service pad
no service telnet-zeroidle
no service tcp-keepalives-in
no service tcp-keepalives-out
service timestamps debug datetime msec
service timestamps log datetime msec
no service password-encryption
no service exec-wait
no service linenumber
no service internal
no service scripting
no service compress-config
service prompt config
no service old-slip-prompts
no service pt-vty-logging
no service disable-ip-fast-frag
no service sequence-numbers
no service dhcp
!
hostname router
!
boot-start-marker
boot system flash c870-advipservicesk9-mz.124-24.T8.bin
boot-end-marker
!
logging exception 4096
no logging count
no logging message-counter log
no logging message-counter debug
logging message-counter syslog
no logging snmp-authfail
no logging userinfo
logging buginf
logging queue-limit 100
logging queue-limit esm 0
logging queue-limit trap 100
logging buffered 120000
no logging persistent
logging rate-limit console 10 except errors
logging console guaranteed
logging console debugging
logging monitor debugging
logging on
!
no aaa new-model
memory-size iomem 10
clock timezone A 2
errdisable detect cause all
errdisable recovery interval 300
!
crypto pki trustpoint TP-self-signed-1079832824
 enrollment selfsigned
 subject-name cn=IOS-Self-Signed-Certificate-1079832824
 revocation-check none
 rsakeypair TP-self-signed-1079832824
!
!
crypto pki certificate chain TP-self-signed-1079832824
 certificate self-signed 01
  tu je certifikat
        quit
dot11 syslog
dot11 activity-timeout unknown default 60
dot11 activity-timeout client default 60
dot11 activity-timeout repeater default 60
dot11 activity-timeout workgroup-bridge default 60
dot11 activity-timeout bridge default 60
dot11 aaa csid default
ip source-route
ip icmp redirect subnet
ip spd queue threshold minimum 73 maximum 74
!
!
!
!
ip cef
no ip domain lookup
ip domain name domena.cz
ip igmp snooping vlan 1
ip igmp snooping vlan 1 mrouter learn pim-dvmrp
ip igmp snooping vlan 2
ip igmp snooping vlan 2 mrouter learn pim-dvmrp
ip igmp snooping
no ipv6 cef
ipv6 dhcp ping packets 0
!
multilink bundle-name authenticated
!
cwmp agent
 no enable download
 no enable
 request outstanding 5
 parameter change notify interval 60
 session retry limit 11
 management server username 00000C-CISCO871%2dK9V03-FHK104519XV
 no management server password
 no management server url
 no provision code
 no connection request username
 no connection request password
 no wan ipaddress
!
!
!
file prompt alert
emm clear 1b5b324a1b5b303b30480d
vtp file flash:vlan.dat
vtp mode server
vtp version 1
username xxxx privilege 15 secret 5 tajne_heslo.
! 
no crypto isakmp diagnose error
!
!
archive
 log config
  no record rc
  no logging enable
  logging size 100
  no notify syslog contenttype plaintext
  no notify syslog contenttype xml
  hidekeys
 no path 
 no rollback filter adaptive
 rollback retry timeout 0
scripting tcl low-memory 11758933
scripting tcl trustpoint untrusted terminate
no scripting tcl secure-mode
!
!
ip ssh time-out 120
ip ssh authentication-retries 3
ip ssh break-string ~break
ip ssh dh min size 1024
!
!
interface FastEthernet0
 switchport access vlan 1
 switchport trunk encapsulation dot1q
 switchport trunk native vlan 1
 switchport trunk allowed vlan 1-4094
 switchport mode access
 switchport voice vlan none
 switchport priority extend none
 switchport priority default 0
 snmp trap link-status
 ip igmp snooping tcn flood
!
interface FastEthernet1
 switchport access vlan 1
 switchport trunk encapsulation dot1q
 switchport trunk native vlan 1
 switchport trunk allowed vlan 1-4094
 switchport mode access
 switchport voice vlan none
 switchport priority extend none
 switchport priority default 0
 snmp trap link-status
 ip igmp snooping tcn flood
!
interface FastEthernet2
 switchport access vlan 1
 switchport trunk encapsulation dot1q
 switchport trunk native vlan 1
 switchport trunk allowed vlan 1-4094
 switchport mode access
 switchport voice vlan none
 switchport priority extend none
 switchport priority default 0
 snmp trap link-status
 ip igmp snooping tcn flood
!
interface FastEthernet3
 switchport access vlan 1
 switchport trunk encapsulation dot1q
 switchport trunk native vlan 1
 switchport trunk allowed vlan 1-4094
 switchport mode access
 switchport voice vlan none
 switchport priority extend none
 switchport priority default 0
 snmp trap link-status
 ip igmp snooping tcn flood
!
interface FastEthernet4
 ip address 192.168.7.1 255.255.255.248
 ip redirects
 ip proxy-arp
 ip flow ingress
 speed 100
 full-duplex
 snmp trap link-status
 priority-group 1
!
interface Vlan1
 description $ETH-SW-LAUNCH$$INTF-INFO-HWIC 4ESW$
 ip address 192.168.0.33 255.255.255.0
 no ip redirects
 ip proxy-arp
 ip tcp adjust-mss 1452
 autostate
 snmp trap link-status
!
ip classless
ip forward-protocol nd
ip route 0.0.0.0 0.0.0.0 192.168.0.1
ip route 172.32.1.0 255.255.255.0 Vlan1 192.168.0.239
ip route 192.168.2.0 255.255.255.0 192.168.7.2
ip route 192.168.7.8 255.255.255.248 192.168.7.2
ip route 192.168.97.0 255.255.255.0 192.168.7.2
ip route 192.168.221.0 255.255.255.0 192.168.0.239
ip http server
ip http port 80
ip http access-class 23
ip http authentication local
ip http secure-server
ip http secure-port 443
ip http secure-active-session-modules all
ip http max-connections 5
ip http timeout-policy idle 60 life 86400 requests 10000
ip http active-session-modules all
ip http digest algorithm md5
ip http client cache memory pool 100
ip http client cache memory file 2
ip http client cache ager interval 5
ip http client connection timeout 10
ip http client connection retry 1
ip http client connection idle timeout 30
ip http client response timeout 30
ip http path 
!
ip flow-cache entries 12000
ip flow-cache timeout active 1
ip flow-export version 9
ip flow-export destination 192.168.0.1 9995
!
ip rtcp report interval 5000 
ip rtcp sub-rtcp message-type 209 
!
no ip sla logging traps
logging history size 1
logging history warnings
logging trap informational
logging delimiter tcp
logging facility local7
no logging source-interface
access-list 23 permit 192.168.0.1
access-list 23 permit 192.168.4.2
access-list 23 permit 192.168.0.239
access-list 23 permit 172.32.1.2
access-list 23 permit 192.168.0.208
access-list 23 permit 192.168.0.169
access-list 91 permit 192.168.2.250
access-list 191 permit tcp any any eq 22
access-list 191 permit tcp any eq 22 any
access-list 191 permit icmp any any echo
access-list 191 permit icmp any any echo-reply
access-list 191 permit udp host 192.168.0.245 eq 1498 any
access-list 191 permit udp any host 192.168.0.245 eq 1498
access-list 191 permit icmp any any
access-list 193 permit tcp any eq 3389 any
access-list 193 permit tcp any any eq 3389
priority-list 1 protocol ip high list 191
priority-list 1 protocol ip normal list 193
priority-list 1 protocol ip high list 91
priority-list 1 default low
mac-address-table aging-time 300
no cdp run

!
!
!
!
snmp-server engineID local 8000000903000019E872B3D5
snmp-server view *ilmi system included
snmp-server view *ilmi atmForumUni included
snmp-server view v1default iso included
snmp-server view v1default internet.6.3.15 excluded
snmp-server view v1default internet.6.3.16 excluded
snmp-server view v1default internet.6.3.18 excluded
snmp-server view v1default ciscoMgmt.394 excluded
snmp-server view v1default ciscoMgmt.395 excluded
snmp-server view v1default ciscoMgmt.399 excluded
snmp-server view v1default ciscoMgmt.400 excluded
snmp-server community public v1default RO
snmp-server priority normal
no snmp-server trap link ietf
snmp-server trap authentication vrf
snmp-server trap authentication acl-failure
snmp-server trap authentication unknown-content
snmp-server packetsize 1500
snmp-server queue-limit notification-host 10
snmp-server chassis-id FHK104519XV
snmp-server inform retries 3 timeout 15 pending 25
 snmp mib nhrp
snmp mib notification-log globalsize 500
snmp mib notification-log globalageout 15
snmp mib community-map  ILMI engineid 8000000903000019E872B3D5
snmp mib community-map  public engineid 8000000903000019E872B3D5
!
control-plane
!
banner login ^C
-----------------------------------------------------------------------
Cisco Router and Security Device Manager (SDM) is installed on this device. 
This feature requires the one-time use of the username "cisco" 
with the password "cisco". The default username and password have a privilege level of 15.

Please change these publicly known initial credentials using SDM or the IOS CLI. 
Here are the Cisco IOS commands.
          
username <myuser>  privilege 15 secret 0 <mypassword>
no username cisco

Replace <myuser> and <mypassword> with the username and password you want to use. 

For more information about SDM please follow the instructions in the QUICK START 
GUIDE for your router or go to http://www.cisco.com/go/sdm 
-----------------------------------------------------------------------
^C
alias exec h help
alias exec lo logout
alias exec p ping
alias exec r resume
alias exec s show
alias exec u undebug
alias exec un undebug
alias exec w where
default-value exec-character-bits 7
default-value special-character-bits 7
default-value data-character-bits 8
!
line con 0
 login local
 no modem enable
line aux 0
line vty 0 4
 access-class 23 in
 privilege level 15
 login local
 transport input telnet ssh
!
scheduler max-task-time 5000
scheduler allocate 100000 1000
ntp server 192.168.0.110
cns id hostname 
cns id hostname event
cns id hostname image
cns image retry 60
netconf max-sessions 4
netconf lock-time 10
netconf max-message 0
event manager scheduler script thread class default number 1
event manager scheduler applet thread class default number 32
event manager history size events 10
event manager history size traps 10
end

Sítě / Re:Cisco priority queueing a forwarding

« kdy: 27. 04. 2013, 17:47:10 »

Tak som to samozrejme nevydrzal, urobil flash na tom routry a bohuzial nepomohlo

Sítě / Re:Cisco priority queueing a forwarding

« kdy: 27. 04. 2013, 15:48:10 »

Tak nastavenie rychlosti a duplexu na tvrdo a reload routra bohuzial nepomohlo. Stiahol som najnovsi software z netu, v pondelok porovnam md5sum a ked bude spravny podla cisca tak nahrajem a vyskusam ten novy software. Zatial dakujem za rady a napady, buduci tyzden sa ozvem, ci to pomohlo.

Sítě / Re:Cisco priority queueing a forwarding

« kdy: 27. 04. 2013, 14:08:42 »

Dakujem za odpoved. Vypisi ktore prikladam potvrdzuju iba to, co uz viem. Bohuzial, kde mam v konfiguracii chybu uz z toho zistit nedokazem...

router#show interfaces fastEthernet 4

Kód: [Vybrat]

FastEthernet4 is up, line protocol is up 
  Hardware is PQUICC_FEC, address is 0019.e872.b3df (bia 0019.e872.b3df)
  Internet address is 192.168.7.1/29
  MTU 1500 bytes, BW 100000 Kbit, DLY 100 usec, 
     reliability 255/255, txload 1/255, rxload 1/255
  Encapsulation ARPA, loopback not set
  Keepalive set (10 sec)
  Full-duplex, 100Mb/s, 100BaseTX/FX
  ARP type: ARPA, ARP Timeout 04:00:00
  Last input 01:38:46, output 00:00:00, output hang never
  Last clearing of "show interface" counters 20:31:29
  Input queue: 0/75/0/0 (size/max/drops/flushes); Total output drops: 0
  Queueing strategy: priority-list 1
  Output queue (queue priority: size/max/drops):
     high: 0/20/0, medium: 0/40/0, normal: 0/60/0, low: 0/80/0
  5 minute input rate 7000 bits/sec, 7 packets/sec
  5 minute output rate 7000 bits/sec, 8 packets/sec
     6165575 packets input, 638681330 bytes
     Received 0 broadcasts, 0 runts, 0 giants, 0 throttles
     0 input errors, 0 CRC, 0 frame, 0 overrun, 0 ignored
     0 watchdog
     0 input packets with dribble condition detected
     6204284 packets output, 663715242 bytes, 0 underruns
     0 output errors, 0 collisions, 0 interface resets
     0 babbles, 0 late collision, 0 deferred
     0 lost carrier, 0 no carrier
     0 output buffer failures, 0 output buffers swapped out

Prikaz show queueing interface fastEthernet 4 zatial co na testovaci stroj neustale pingam zo stroja ktory je na vlan1

Kód: [Vybrat]

Interface FastEthernet4 queueing strategy: priority

Output queue utilization (queue/count)
        high/0 medium/0 normal/0 low/0

Prikaz show queueing interface fastEthernet 4 zatial co urobim 5 pingov na testovaci stroj priamo z routra

Kód: [Vybrat]

Interface FastEthernet4 queueing strategy: priority

Output queue utilization (queue/count)
        high/5 medium/0 normal/0 low/0

Zaroven vidim, ze sa zdvihli aj pocitadla na prislusnom access-liste, takze show access-lists

Kód: [Vybrat]

Extended IP access list 191
    10 permit tcp any any eq 22
    20 permit tcp any eq 22 any
    30 permit icmp any any echo (5 matches)
    40 permit icmp any any echo-reply
    50 permit udp host 192.168.0.245 eq 1498 any
    60 permit udp any host 192.168.0.245 eq 1498
    70 permit icmp any any

Pripajam vypis zo show running-config

Kód: [Vybrat]

Building configuration...

Current configuration : 6344 bytes
!
! Last configuration change at 16:33:19 A Fri Apr 26 2013 by xxxx
! NVRAM config last updated at 16:38:48 A Fri Apr 26 2013 by xxxx
!
version 12.4
no service pad
service timestamps debug datetime msec
service timestamps log datetime msec
no service password-encryption
no service dhcp
!
hostname router
!
boot-start-marker
boot-end-marker
!
logging buffered 120000 debugging
!
no aaa new-model
!
resource policy
!
clock timezone A 2
ip subnet-zero
ip cef
!
!
!
!
ip flow-cache entries 12000
ip flow-cache timeout active 1
no ip domain lookup
ip domain name domena.cz
!
!         
crypto pki trustpoint TP-self-signed-1079832824
 enrollment selfsigned
 subject-name cn=IOS-Self-Signed-Certificate-1079832824
 revocation-check none
 rsakeypair TP-self-signed-1079832824
!
!
crypto pki certificate chain TP-self-signed-1079832824
 certificate self-signed 01
  ....tu je certifikat....
  quit
username xxxx privilege 15 secret 5 nejake_heslo.
!
!
interface FastEthernet0
!
interface FastEthernet1
!
interface FastEthernet2
!
interface FastEthernet3
!
interface FastEthernet4
 ip address 192.168.7.1 255.255.255.248
 ip flow ingress
 duplex auto
 speed auto
 priority-group 1
!
interface Vlan1
 description $ETH-SW-LAUNCH$$INTF-INFO-HWIC 4ESW$
 ip address 192.168.0.33 255.255.255.0
 no ip redirects
 ip tcp adjust-mss 1452
!
ip classless
ip route 0.0.0.0 0.0.0.0 192.168.0.1
ip route 172.32.1.0 255.255.255.0 Vlan1 192.168.0.239
ip route 192.168.2.0 255.255.255.0 192.168.7.2
ip route 192.168.7.8 255.255.255.248 192.168.7.2
ip route 192.168.97.0 255.255.255.0 192.168.7.2
ip route 192.168.221.0 255.255.255.0 192.168.0.239
!
ip flow-export version 9
ip flow-export destination 192.168.0.1 9995
!
ip http server
ip http access-class 23
ip http authentication local
ip http secure-server
ip http timeout-policy idle 60 life 86400 requests 10000
!
access-list 23 permit 192.168.0.1
access-list 23 permit 192.168.4.2
access-list 23 permit 192.168.0.239
access-list 23 permit 172.32.1.2
access-list 23 permit 192.168.0.208
access-list 23 permit 192.168.0.169
access-list 91 permit 192.168.2.250
access-list 191 permit tcp any any eq 22
access-list 191 permit tcp any eq 22 any
access-list 191 permit icmp any any echo
access-list 191 permit icmp any any echo-reply
access-list 191 permit udp host 192.168.0.245 eq 1498 any
access-list 191 permit udp any host 192.168.0.245 eq 1498
access-list 191 permit icmp any any
access-list 193 permit tcp any eq 3389 any
access-list 193 permit tcp any any eq 3389
priority-list 1 protocol ip high list 191
priority-list 1 protocol ip normal list 193
priority-list 1 protocol ip high list 91
priority-list 1 default low
snmp-server community public RO
no cdp run
!
!
control-plane
!
banner login ^C
-----------------------------------------------------------------------
Cisco Router and Security Device Manager (SDM) is installed on this device. 
This feature requires the one-time use of the username "cisco" 
with the password "cisco". The default username and password have a privilege level of 15.

Please change these publicly known initial credentials using SDM or the IOS CLI. 
Here are the Cisco IOS commands.

username <myuser>  privilege 15 secret 0 <mypassword>
no username cisco

Replace <myuser> and <mypassword> with the username and password you want to use. 

For more information about SDM please follow the instructions in the QUICK START 
GUIDE for your router or go to http://www.cisco.com/go/sdm 
-----------------------------------------------------------------------
^C
!
line con 0
 login local
 no modem enable
line aux 0
line vty 0 4
 access-class 23 in
 privilege level 15
 login local
 transport input telnet ssh
!
scheduler max-task-time 5000
ntp clock-period 17175066
ntp server 192.168.0.5
end

Takze vysledok je taky, ze PQ sa uplatnuje iba na pakety vychadzajuce priamo z routra. Na pakety prechadzajuce routrom sa to nevzatahuje. Overene nielen vypismi z konfiguracie routra, ale taktiez prakticky. Kde mam v konfiguracii chybu nemam sajnu. Budem rad za kazde nasmerovanie...

Sítě / Re:cisco Priority Queueing

« kdy: 26. 04. 2013, 20:22:07 »

Dakujem za odpoved.
To, ze sa nezvysuju citace znamena presne to, ze to bohuzial nefunguje :-( Ked pustim ping -f na testovaciu masinu a zaroven na nu vygenerujem obrovsky traffic, tak bohuzial zacne dochadzat k velkej stratovosti pingov, ktore maju najvyssiu prioritu. Ked spustim pingy priamo z routra, tak sa nestrati samozrejme ani jeden a k zvysovaniu citacov dochadza tak ako ma. Ako pisem, k prioritam dochadza iba ak su pakety vygenerovane priamo z routra a tie ktore nim iba prechadzaju sa to netyka. Fakt neviem co s tym...

Stran: [1] 2