Archive for November, 2010

Nov
30

In our current CCDP course – we examined the hot topic of Virtualization in not one, but two lessons.

I thought our students would love to check out this Cisco TechWise TV episode entitled Unlocking the Potential of Virtualization. This episode compliments our course nicely and focuses on:

  • Impediments to virtualization
  • VN-Link and the Nexus 1000v
  • Network interface virtualization
  • Virtualization and storage enviorments

In order to view, you just need to fill out a quick form. I recommend the use of Internet Explorer and Real Player for the best viewing experience.

I hope you enjoy.

Tags: , , ,

Nov
29

In this first of a series of blog posts regarding Catalyst QoS, we will exam the AutoQoS capabilities on the 3560 Catalyst devices. AutoQoS allows for the automation of QoS settings for the switch with an absolute minimum of configuration required from the engineer. In particular, the 3560 AutoQoS features automates the classification and congestion management configurations required in VoIP environments. You should note that the 3560 AutoQoS has much “catching up” to do when you compare this feature to AutoQoS for VoIP and AutoQoS for Enterprise that are both now possible in the pure router class of Cisco devices.

First, the easy part. The interface configuration command required for QoS is simply:

auto qos voip [cisco-phone | cisco-softphone | trust]

Notice the auto qos voip command is used in conjunction with keywords that specify what devices to “trust” when it comes to these important VoIP packets. The cisco-phone keyword instructs the AutoQoS feature to only trust and act upon the incoming voice packets if they are truly sent from a Cisco IP Phone. The phone’s presence is detected thanks to CDP. Similarly, the cisco-softphone keyword instructs the device to only trust and act upon the voice packets if they are sent from a Cisco phone running in software on a PC. Finally, the trust keyword instructs the device to trust markings for VoIP packets that are coming from another switch or router over the port.

Continue Reading

Tags: ,

Nov
28

Just as with the CCDP, Cisco has delayed the release of the new DESGN exam. The DESGN exam (640-864) is expected to be available on December 16, 2010.

Here are the topics promised fro the new exam:

Describe the Methodology used to design a network
Describe developing business trends
Identify Network Requirements to Support the Organization
Describe the tools/process to characterize an existing network
Describe the top down approach to network design
Describe Network Management Protocols and Features
Describe network structure and modularity
Describe the Network Hierarchy
Describe the Modular Approach in Network Design
Describe network architecture for the enterprise
Design Basic Enterprise Campus Networks
Describe Campus Design considerations
Design the Enterprise Campus Network
Design the enterprise data center
Describe enterprise network virtualization tools
Design Enterprise Edge and Remote Network Modules
Describe the Enterprise Edge, branch, and Teleworker design characteristics
Describe physical and logical WAN connectivity
Design the branch office WAN solutions
Describe Access Network solutions for a remote worker
Design the WAN to support selected redundancy methodologies
Identify Design Considerations for a Remote Data Center
Design IP Addressing and Routing Protocols
Describe IPv4 Addressing
Describe IPv6 Addressing
Identify Routing Protocol Considerations in an Enterprise Network
Design a Routing Protocol Deployment
Design network services
Describe the security lifecycle
Identify Cisco technologies to mitigate security vulnerabilities
Select appropriate Cisco security solutions and deployment placement
Describe high level voice and video architectures
Identify the design considerations for voice/video services
Describe Cisco Unified Wireless Network Architectures and Features
Design wireless network using controllers

Describe the Methodology used to design a network

  • Describe developing business trends
  • Identify Network Requirements to Support the Organization
  • Describe the tools/process to characterize an existing network
  • Describe the top down approach to network design
  • Describe Network Management Protocols and Features

Describe network structure and modularity

  • Describe the Network Hierarchy
  • Describe the Modular Approach in Network Design
  • Describe network architecture for the enterprise

Continue Reading

Tags: , ,

Nov
27

Worried about topics like EEM, OER, IP SLA, SNMP and the seemingly endless list of Network Services that might appear in your CCIE R&S (or related track) Lab or Written Exam? The latest of the 3 Day Technology Bootcamps arrives just in time for the new year.

The 3-Day Network Services bootcamp will be help Live Online on Dec 27-29, 2010. Class will run each day from 11 AM EST US to approximately 6 PM EST US. We hope to see you in the Live Event, but a Class-On-Demand version will be available the week following.

Tags: , , ,

Nov
26

In our CCDP bootcamp, we examined Cisco’s implementation of Virtual Private LAN Services (VPLS) in some detail. One blog that I promised our students was more information about how large enterprises or Internet Service Providers can enhance the scalbility of this solution.

First, let us review the issues that influence its scalability. We covered these in the course, but they are certainly worth repeating here.

Remember that VPLS looks just like an Ethernet switch to the customers. As such, this solution can suffer from the same issues that could hinder a Layer 2 core infrastructure. These are:

  • Control-plane scalability – classic VPLS calls for a full-mesh of pseudo-wires connecting the edge sites. This certainly does not scale as the number of edge sites grow – from both operational and control-plane viewpoints.
  • Network stability as the network grows – Spanning Tree Protocol-based (STP) infrastructures tend not to scale as well as Multiprotocol Label Switching (MPLS) solutions.
  • Ability to recover from outages – as the VPLS network grows, it could become much more susceptible to major issues for customer connectivity in the result of a failure.
  • Multicast and broadcast radiation to all sites – remembering that the VPLS network acts as a Layer 2 switch reminds us that multicast and broadcast traffic can be flooded to all customers across the network.
  • Multicast scalability – multicast traffic has to be replicated on ingress PE devices, which significantly reduces forwarding efficiency.
  • IGP peering scalability issues – all routers attached to the cloud tend to be in the same broadcast domain and thus IGP peer, which results in full-mesh of adjacencies and excessive flooding when using link-state routing protocols.
  • STP loops – it is certainly possible that a customer creating an STP loop could impact other customers of the ISP. STP may be blocked across the MPLS cloud, but it is normally used for multi-homed deployments to prevent forwarding loops.
  • Load-balancing – the use of MPLS encapsulation hides the VPLS encapsulated flows from the core network and thus prevents the effective use of ECMP flow-based load-balancing.

Continue Reading

Tags: , ,

Nov
25

Problem Statement

A popular task in CCIE-level scenarios requires creating an access-list matching a set of prefixes using the minimum number of access-list entries. Typically, such scenarios were relatively easy, so figuring out a combination of subnet prefix and wildcard mask was more or less intuitive. However, a good question would be if there exist a generic algorithm for constructing such “minimal” access-lists. To give you a better feel of the problem, let’s start with an example. Look at the following access-list matching nine different subnets:

ip access-list standard TEST
 permit 138.0.0.0
 permit 170.0.0.0
 permit 177.0.0.0
 permit 185.0.0.0
 permit 204.0.0.0
 permit 205.0.0.0
 permit 206.0.0.0
 permit 207.0.0.0
 permit 234.0.0.0

Continue Reading

Tags: , , ,

Nov
25

Have you ever been on your GradedLabs rack of equipment and wanted to test a particular feature or set of configurations, but you certainly do not want to keep these changes on the rack? Perhaps this is because you are right in the middle of solving a Volume 2 lab and you certainly cannot have that configuration impacted.

Thanks to the very handy config replace command, you can easily rollback almost instantly to your previous saved configuration after your experimenting. Here is a demonstration of just how simple this is. Enjoy, and let us give thanks for all there is to learn on blog.ine.com! :-) I also want to thank my good friend Keith Barker for first showing me this one.

Rack29R1#configure terminal
Enter configuration commands, one per line.  End with CNTL/Z.
Rack29R1(config)#hostname TEST
TEST(config)#interface fastethernet0/0
TEST(config-if)#ip address 1.2.3.4 255.0.0.0
TEST(config-if)#no shut
TEST(config-if)#end
TEST#
Nov 25 09:09:58.856: %LINK-3-UPDOWN: Interface FastEthernet0/0, changed state to
up
Nov 25 09:09:59.173: %SYS-5-CONFIG_I: Configured from console by console
TEST#configure terminal
Nov 25 09:10:01.404: %LINEPROTO-5-UPDOWN: Line protocol on Interface FastEtherne
t0/0, changed state to up
TEST#config replace nvram:startup-config force
Total number of passes: 1
Rollback Done
Rack29R1#
Nov 25 09:10:08.644: Rollback:Acquired Configuration lock.
Nov 25 09:10:17.827: %LINK-5-CHANGED: Interface FastEthernet0/0, changed state t
o administratively down
Nov 25 09:10:18.829: %LINEPROTO-5-UPDOWN: Line protocol on Interface FastEtherne
t0/0, changed state to down
Rack29R1#
Nov 25 09:10:22.727: %PARSER-3-CONFIGNOTLOCKED: Unlock requested by process ’3′.
Configuration not locked.
Rack29R1#
Rack29R1#configure terminal
Enter configuration commands, one per line.  End with CNTL/Z.
Rack29R1(config)#hostname TEST
TEST(config)#interface fastethernet0/0
TEST(config-if)#ip address 1.2.3.4 255.0.0.0
TEST(config-if)#no shut
TEST(config-if)#end
TEST#
TEST#config replace nvram:startup-config force
Total number of passes: 1
Rollback Done
Rack29R1#
Rack29R1#show run interface fa0/0
Building configuration...
Current configuration : 83 bytes
!
interface FastEthernet0/0

 no ip address
 shutdown
 duplex auto
 speed auto
end

Rack29R1#

Tags: , ,

Nov
22

Introduction

BGP (see [0]) is the de-facto protocol used for Inter-AS connectivity nowadays. Even though it is commonly accepted that BGP protocol design is far from being ideal and there have been attempts to develop a better replacement for BGP, none of them has been successful. To further add to BGP’s widespread adoption, MP-BGP extension allows BGP transporting almost any kind of control-plane information, e.g. to providing auto-discovery functions or control-plane interworking for MPLS/BGP VPNs. However, despite BGP’s success, the problems with the protocol design did not disappear. One of them is slow convergence, which is a serious limiting factor for many modern applications. In this publication, we are going to discuss some techniques that could be used to improve BGP convergence for Intra-AS deployments.

BGP-Only Convergence Process
Tuning BGP Transport
BGP Fast Peering Session Deactivation
BGP and IGP Interaction
BGP PIC and Multiple-Path Propagation
Practical Scenario: BGP PIC + BGP NHT
Considerations for Implementing BGP PIC
Summary
Further Reading
Appendix: Practical Scenario Baseline Configuration
Continue Reading

Tags: , , , , , ,

Nov
20

Cisco originally promised us a new CCDP exam (version 2.1) on Nov 8, 2010.

That date is now moved to December 23, 2010. Our Class On Demand was designed to cover you for the old blueprint and the new, so there should be no concern for students. Of course we will be taking the new exam the week following its release and we will be sure to provide any updates to the course that may be required free of charge.

In the meantime, watch blog.ine.com for many posts regarding valuable extra technical information regarding this popular new course. I also want to send out one more thank you to the many students we had that were active participants in the live event. It was an honor to have so many Cisco employees join us, as well as the many highly motivated students from around the world.

Tags: , ,

Nov
19

Tags: , ,

Categories

CCIE Bloggers