Posts from ‘CCNA General’

Aug
17

This course covers the basics of implementing inter-VLAN routing by explaining the theory behind two common methodologies, as well as their implementation on Cisco routers and switches. By the end of this course students will be able to explain the differences between “Router-On-A-Stick” and “Switched Virtual Interfaces,” as well as how to implement inter-VLAN routing using either of these techniques.


Why You Should Watch:

Virtually all organizations that implement VLANs into their switched networking topologies also need to know how to route IP traffic between those VLANs. Knowing the techniques available to accomplish this kind of routing is essential whether you are managing a network, or simply pursuing a networking certification (like the Cisco CCNA).

Many learners are confused about the differences between VLANs and SVIs (Switched Virtual Interfaces) as well as their inter-relationship. This course is meant to clarify any confusion you may have between those differences, and teach you both the theory and implementation (utilizing Cisco IOS software) of Inter-VLAN Routing.


Who Should Watch:

This course is intended for anyone wanting to learn about inter-VLAN routing with an emphasis on the techniques to do so using Cisco routers and switches. A basic familiarity with the Cisco IOS command line and the basic high-level concepts of VLANs, switches, routers and IP routing are recommended.


About The Instructor

Keith Bogart has been in the IT field since 1998. Keith started as a Customer Service Representative at Cisco Systems, and then transitioned into the Cisco Technical Assistance Center (TAC). For almost twenty years Keith has served as both a Technical Instructor as well as Course Developer for Cisco Systems and (for the past few years) INE. Keith is a Cisco Certified Internetwork Expert, as well as a Cisco Certified Networking Associate. Keith is currently employed as a Technical Instructor and Course Developer at INE.

May
07


Don’t miss our CCNA/CCNP Kickoff with Keith Bogart Tomorrow!

 

Join Keith May 8th at 10 am PST/ 1 pm EST for his CCNA/CCNP Kickoff.

This is a FREE live session that is open to everyone. In this open forum, you’ll have the opportunity to ask Keith all of your questions regarding the CCNA or CCNP Routing & Switching exam and related technologies.

Get all of your questions answered by an experienced industry expert! Just click here.

Mar
14

Tomorrow, March 15th, we will air our March 2018 Networking Technologies Live Session with Keith Bogart. This course is designed for those with absolutely no knowledge of computer networks, but who would like to learn more and possibly head down a career path working on computer networks.

 

    When:
    March 16, 2018 10 am PST/ 1 pm EST


    Instructor Info:
    This Course is taught by Keith Bogart, CCIE #4923. Keith started his networking career as customer service representative at Cisco Systems in 1996. His desire to learn more soon led him to a position as a Cisco Technical Assistance Center (TAC) engineer on the “Dial-Access” team, and within six months he had obtained his Dial-ISP CCIE. He later became a network consulting engineer and obtained his CCNA certification while teaching the technologies to Cisco employees during his lunch breaks. Keith was the first instructor on Cisco’s TAC Training team, where he taught a wide range of internetworking topics and later developed and taught other courses such as routing protocols, LAN switching, MPLS, 802.1x, and CCNA. After almost 17 years with Cisco, Keith joined a small startup and focused on 802.11 Wi-Fi technologies, during which time he obtained his CWNA certification. He is now very happy to be working with INE as an instructor for Routing & Switching.


    Who Should Watch:
    Anyone with little to no knowledge about the IT and networking industry that would like to learn more.


    Why You Should Watch:
    This live session will allow you to find out more about what a computer network is, what types of things it can be used for, and what types of careers are available for those who want to design, install, monitor, and troubleshoot networks by asking questions, and discussing these topics with an industry expert.
Mar
09

Don’t forget to watch Keith Bogart’s live CCNA/CCNP Q&A session TODAY at 1pm!

 

During this live Q&A Keith bogart will answer all of your questions about the Cisco CCNA and CCNP Routing and Switching exams. Check back at 1 pm (EST) to get all of your questions answered by an industry expert.

Mar
06

Watch our March 2018 CCNA Kickoff Session with Keith Bogart TOMORROW at 1:30 PM EST.

 

This kickoff session for those who are interested in, or have started to study for the CCNA certification. In this free session, we will cover common trouble areas that most people experience when getting started with their certification. Topics include: how to approach making a study schedule, strategies for not becoming overwhelmed during the study process, deciding whether to take one test or two to get your CCNA, what to expect when you walk into the testing center, which topics to study and how in depth, and what study tools can be useful. Keith will also discuss the testing experience and the CCNA Certification test format.

When: March 7th at 10:30 am PST/ 1:30 pm EST

Estimated Length: 3 hours

Instructor: Keith Bogart CCIE #4923

Cost: FREE

Feb
08

Presented by INE instructor Keith Bogart (CCIE #4923), this free 60 minute session is an open forum for anyone seeking information regarding the Cisco CCNA or CCNP Routing & Switching exam and related technologies. Ask questions live with an experienced industry expert!

 

When: February 9th at 10 am (PST)/1 pm (EST)

Who Should Watch: Anyone with questions about earning their associate or professional level Cisco certification

Instructor: Keith Bogart CCIE #4923

Jan
31

Tune into our live CCNA Kickoff session to get advice from a seasoned professional on what to expect during the CCNA Certification exam, and how to pass the first time.

When: February 1st at 10 am PST/ 1 pm EST

Estimated Length: 3 hours

Instructor: Keith Bogart CCIE #4923

Cost: FREE

Who Should Watch:
This webinar is for anyone and everyone! Since this webinar is geared towards those who are just starting out on their journey towards CCNA certification, no prior knowledge is needed in order to participate, just an interest in earning your CCNA.

What We’ll Discuss:
We will cover common trouble areas that most people experience when getting started with their CCNA certification, such as how to approach making a study schedule and strategies for not becoming overwhelmed by the sheer quantity of topics to be learned. We will also discuss the testing experience and the CCNA Certification test format. Topics include: Deciding whether to take one test or two to get your CCNA, What to expect when you walk into the testing center, which topics to study and how in depth, and what study tools can be useful. Last, Keith will talk about his own experience taking the CCNA exam and offer advice based off of his own personal observations.

Check Out All of Our Upcoming Webinars:

CCNA/CCNP Q&A: February 2018
February 9, 2018 10 am (PST)/ 1 PM (EST)

Deciphering Spanning-Tree Technologies
February 16, 2018 10 am (PST)/ 1 pm (EST)

Introduction to Networking Technologies
March 15, 2018 10 am (PST)/ 1 pm (EST)

May
15

 

The following question was recently sent to me regarding PPP and CHAP:

 

At the moment I only have packet tracer to practice on, and have been trying to setup CHAP over PPP.

It seems that the “PPP CHAP username xxxx” and “PPP CHAP password xxxx” commands are missing in packet tracer.

I have it set similar to this video… (you can skip the first 1 min 50 secs)

https://www.youtube.com/watch?v=5ltNfaPz0nA

As he doesn’t use the missing commands, if that were to be done on live kit would it just use the hostname and magic number to create the hash?

 

Also, in bi-directional authentication, do both routers have to use the same password or can they be different as long as they match what they expect from the other router?

Thanks, Paul.

 

Here was my reply:

Hi Paul,

When using PPP CHAP keep in mind four fundamental things:

  1. The “magic number” that you see in PPP LCP messages has nothing to do with Authentication or CHAP.  It is simply PPPs way of trying to verify that it has a bi-directional link with a peer. When sending a PPP LCP message a random Magic Number is generated.  The idea is that you should NOT see your own Magic Number in LCP messages received from your PPP Peer.  If you DO see the same magic number that you transmited, that means you are talking to yourself (your outgoing LCP CONFREQ message has been looped back to you).  This might happen if the Telco that is providing your circuit is doing some testing or something and has temporarily looped-back your circuit.
  2. At least one of the devices will be initiating the CHAP challenge.  In IOS this is enabled with the interface command, “ppp authentication chap”.  Technically it only has to be configured on one device (usually the ISP router that wishes to “challenge” the incoming caller) but with CHAP you can configure it on both sides if you wish to have bi-directional CHAP challenges.
  3. Both routers need a CHAP password, and you have a couple of options on how to do this.
  4. The “hash” that is generated in an outgoing PPP CHAP Response is created as a combination of three variables, and without knowing all three values the Hash Response cannot be generated:
  • A router’s Hostname
  • The configured PPP CHAP password
  • The PPP CHAP Challenge value

I do all of my lab testing on real hardware so I can’t speak to any “gotchas” that might be present in simulators like Packet Tracer.  But what I can tell you, is that on real routers the side that is receiving the CHAP challenge must be configured with an interface-level CHAP password.

The relevant configurations are below as an example.

ISP router that is initiating the CHAP Challenge for incoming callers:

username Customer password cisco
!
interface Serial1/3
 encapsulation ppp
 ppp authentication chap
 ip address x.x.x.x y.y.y.y
!

Customer router placing the outgoing PPP call to ISP:

hostname Customer
!
interface Serial1/3
 encapsulation ppp
 ppp chap password cisco
 ip address x.x.x.x y.y.y.y
!

If you have a situation where you expect that the Customer Router might be using this same interface to “call” multiple remote destinations, and use a different CHAP password for each remote location, then you could add the following:

 

Customer router placing the outgoing PPP call to ISP-1 (CHAP password = Bob) and ISP-2 (CHAP password = Sally):

hostname Customer
!
username ISP-1 password Bob
username ISP-2 password Sally
!
interface Serial1/3
 encapsulation ppp
 ppp chap password cisco
 ip address x.x.x.x y.y.y.y
!

Notice in the example above, the “username x password y” commands supercede the interface-level command, “ppp chap password x”. But please note that the customer (calling) router always needs the “ppp chap password” command configured at the interface level.  A global “username x password y” in the customer router does not replace this command.  In this situation, if the Customer router placed a call to ISP-3 (for which there IS no “username/password” statement) it would fallback to using the password configured at the interface-level.

Lastly, the “username x password y” command needs to be viewed differently depending on whether or not it is configured on the router that is RESPONDING to a Challenge…or is on the router that is GENERATING the Challenge:

  • When the command “username X password Y” is configured on the router that is responding to the CHAP Challenge (Customer router), the router’s local “hostname” and password in this command (along with the received Challenge) will be used in the Hash algorithm to generate the CHAP RESPONSE.

 

  • When the command “username X password Y” is configured on the router that is generating the CHAP Challenge (ISP Router), once the ISP router receives the CHAP Authentication Response (which includes the hostname of the Customer/calling router) it will match that received Hostname to a corresponding “username X password Y” statement. If one is found that matches, then the ISP router will perform its own CHAP hash of the username, password, and Challenge that it previously created to see if its own, locally-generated result matches the result that was received in the CHAP Response.

Lastly, you asked, “ Also, in bi-directional authentication, do both routers have to use the same password or can they be different as long as they match what they expect from the other router?”

Hopefully from my explanations above it is now clear that in the case of bi-directional authentication, the passwords do indeed have to be the same on both sides.

 

Hope that helps!

Keith

 


 

 

Tags: , ,

Sep
01

A while back, in May, we asked you all what you thought of adding closed captioning to all of our videos, and your response – both in comments and private emails – was overwhelmingly positive. This functionality would not only provide better assistance for those with difficulty hearing, but also give everyone the incredible ability to search anywhere within any video for a particular topic or keyword that had been spoken about in the audio track, and immediately jump to that timecode spot in the video. This would every single minute of every video we have the ablility to be searched and subsequently accessed within just a few moments vs. having to watch the entire video over and over each time you wished to return to a particular spot in it for some remedial learning.

Well, you needn’t wait much longer.
Continue Reading

Tags: ,

Jun
20

We’re pleased to announce that our recently announced, highly acclaimed CCIE Voice Advanced Technologies Class is available for both streaming and download from our global CDN. The Voice ATC consists of 60 videos totaling just shy of 60 hours of hands down the best CCIE Voice training on the market today. You can download it now for just $299 or as an All Access Pass subscriber you can download it for only $149. For All Access Pass subscriber the online streaming version is included free of charge.

Each of the 60 videos can be individually downloaded without the need to download the whole class. This will enable you to selectively load them onto any computer or mobile device and watch them at your leisure. Although we do not place any DRM on the files themselves we do limit each purchase to two downloads per video.

Watch in the upcoming month for completely redone courses covering the CCNA, CCNA Voice and CCNA Security courses as well as CCNP Voice and CCNP Security courses.  All Access Pass subscribers will be able to stream them for free and download them for only $149. These all stream from CDN locations around the world, so latency in download and streaming alike is not an issue, no matter where in the world you access it from.

Tags: ,

Categories

CCIE Bloggers