Nov
07

This course is specifically designed to prepare you for the CCNA Cyber Ops labs once they are released. As any expert will tell you, in order to truly master something you need to go beyond a surface understanding and delve into the core of the subject you're studying. Our CCNA Cyber Ops Labs - Create Your Labs Course helps you do just that, it is the ultimate guide to prepare you for the lab portion of the CCNA Cyber Ops Exam. In this video, Bassam Alkaff goes beyond simply familiarizing you with hands on labs and their related tools, he also teaches you how to make your own home labs and understand the core usage and important features of the tools used in them, setting you on the path towards CCNA, CCNP and CCIE Success.

 

 

Aug
17

This course covers the basics of implementing inter-VLAN routing by explaining the theory behind two common methodologies, as well as their implementation on Cisco routers and switches. By the end of this course students will be able to explain the differences between "Router-On-A-Stick" and "Switched Virtual Interfaces," as well as how to implement inter-VLAN routing using either of these techniques.


Why You Should Watch:

 

Virtually all organizations that implement VLANs into their switched networking topologies also need to know how to route IP traffic between those VLANs. Knowing the techniques available to accomplish this kind of routing is essential whether you are managing a network, or simply pursuing a networking certification (like the Cisco CCNA).

Many learners are confused about the differences between VLANs and SVIs (Switched Virtual Interfaces) as well as their inter-relationship. This course is meant to clarify any confusion you may have between those differences, and teach you both the theory and implementation (utilizing Cisco IOS software) of Inter-VLAN Routing.


Who Should Watch:

 

This course is intended for anyone wanting to learn about inter-VLAN routing with an emphasis on the techniques to do so using Cisco routers and switches. A basic familiarity with the Cisco IOS command line and the basic high-level concepts of VLANs, switches, routers and IP routing are recommended.


About The Instructor

Keith Bogart has been in the IT field since 1998. Keith started as a Customer Service Representative at Cisco Systems, and then transitioned into the Cisco Technical Assistance Center (TAC). For almost twenty years Keith has served as both a Technical Instructor as well as Course Developer for Cisco Systems and (for the past few years) INE. Keith is a Cisco Certified Internetwork Expert, as well as a Cisco Certified Networking Associate. Keith is currently employed as a Technical Instructor and Course Developer at INE.

May
07


Don't miss our CCNA/CCNP Kickoff with Keith Bogart Tomorrow!

 

 

Join Keith May 8th at 10 am PST/ 1 pm EST for his CCNA/CCNP Kickoff.

This is a FREE live session that is open to everyone. In this open forum, you'll have the opportunity to ask Keith all of your questions regarding the CCNA or CCNP Routing & Switching exam and related technologies.

Get all of your questions answered by an experienced industry expert! Just click here.

Mar
14

Tomorrow, March 15th, we will air our March 2018 Networking Technologies Live Session with Keith Bogart. This course is designed for those with absolutely no knowledge of computer networks, but who would like to learn more and possibly head down a career path working on computer networks.

 
    When:
    March 16, 2018 10 am PST/ 1 pm EST



    Instructor Info:
    This Course is taught by Keith Bogart, CCIE #4923. Keith started his networking career as customer service representative at Cisco Systems in 1996. His desire to learn more soon led him to a position as a Cisco Technical Assistance Center (TAC) engineer on the “Dial-Access” team, and within six months he had obtained his Dial-ISP CCIE. He later became a network consulting engineer and obtained his CCNA certification while teaching the technologies to Cisco employees during his lunch breaks. Keith was the first instructor on Cisco’s TAC Training team, where he taught a wide range of internetworking topics and later developed and taught other courses such as routing protocols, LAN switching, MPLS, 802.1x, and CCNA. After almost 17 years with Cisco, Keith joined a small startup and focused on 802.11 Wi-Fi technologies, during which time he obtained his CWNA certification. He is now very happy to be working with INE as an instructor for Routing & Switching.



    Who Should Watch:
    Anyone with little to no knowledge about the IT and networking industry that would like to learn more.



    Why You Should Watch:
    This live session will allow you to find out more about what a computer network is, what types of things it can be used for, and what types of careers are available for those who want to design, install, monitor, and troubleshoot networks by asking questions, and discussing these topics with an industry expert.
Mar
09

Don't forget to watch Keith Bogart's live CCNA/CCNP Q&A session TODAY at 1pm!

 

During this live Q&A Keith bogart will answer all of your questions about the Cisco CCNA and CCNP Routing and Switching exams. Check back at 1 pm (EST) to get all of your questions answered by an industry expert.

Mar
06

Watch our March 2018 CCNA Kickoff Session with Keith Bogart TOMORROW at 1:30 PM EST.

 

This kickoff session for those who are interested in, or have started to study for the CCNA certification. In this free session, we will cover common trouble areas that most people experience when getting started with their certification. Topics include: how to approach making a study schedule, strategies for not becoming overwhelmed during the study process, deciding whether to take one test or two to get your CCNA, what to expect when you walk into the testing center, which topics to study and how in depth, and what study tools can be useful. Keith will also discuss the testing experience and the CCNA Certification test format.

When: March 7th at 10:30 am PST/ 1:30 pm EST

Estimated Length: 3 hours

Instructor: Keith Bogart CCIE #4923

Cost: FREE

Feb
08

Presented by INE instructor Keith Bogart (CCIE #4923), this free 60 minute session is an open forum for anyone seeking information regarding the Cisco CCNA or CCNP Routing & Switching exam and related technologies. Ask questions live with an experienced industry expert!

 

When: February 9th at 10 am (PST)/1 pm (EST)

Who Should Watch: Anyone with questions about earning their associate or professional level Cisco certification

Instructor: Keith Bogart CCIE #4923

Feb
07

Last week we added a new CCNA Cyber Ops Course. This course is available to AAP members through your members and to everyone else through ine.com

 

Why You Should Watch:
Cisco's CCNA Cyber Ops certification provides individuals with the knowledge to identify and respond to security incidents. This certification provides a path to working in a Security Operations Center (SOC) and security positions. As a CCNA level certification, Cyber Ops provides introductory knowledge so one may be aware of the security landscape, understand security concepts and general networking.

About the Course:
This course will cover the exam topics of the Understanding Cisco Cybersecurity Fundamentals (SECFND 210-250) Exam.This course is taught by Andrew Crouthamel and is 7 hours and 32 minutes long.

What You'll Learn:
We will dive into topics such as networking concepts and IP addressing, as well as security concepts including access control models, risk assessment and the CIA triad. We will also review cryptography methods and host-based analysis details, as well as security monitoring tools and attack methods used by threat actors.

About the Author:
Andrew is a seasoned IT engineer with over 12 years of experience. He started out in IT as an assistant computer technician, blowing dust out of computers for a school district, moving up through the ranks to systems administrator, network engineer, and IT Manager. He currently works for an international satellite communications company, ensuring LAN and WAN connectivity for a large network of ground stations and customers such as NASA, ESA, JAXA, Boeing, The U.S. Air Force, and more. Andrew holds numerous Cisco and CompTIA certifications, and is a part-time Cisco Instructor.

Andrew's hobbies outside of technology include many outdoor activities, such as hiking and canoeing. He is currently learning woodworking and is working on a 17' cedar wood-strip canoe in his garage, much to his wife's dismay. He lives in Pennsylvania, where his family has been for generations, dating back to 1754. Andrew lives with his wife, young daughter and too many pets

Jan
31

Tune into our live CCNA Kickoff session to get advice from a seasoned professional on what to expect during the CCNA Certification exam, and how to pass the first time.

When: February 1st at 10 am PST/ 1 pm EST

Estimated Length: 3 hours

Instructor: Keith Bogart CCIE #4923

Cost: FREE

Who Should Watch:
This webinar is for anyone and everyone! Since this webinar is geared towards those who are just starting out on their journey towards CCNA certification, no prior knowledge is needed in order to participate, just an interest in earning your CCNA.

What We'll Discuss:
We will cover common trouble areas that most people experience when getting started with their CCNA certification, such as how to approach making a study schedule and strategies for not becoming overwhelmed by the sheer quantity of topics to be learned. We will also discuss the testing experience and the CCNA Certification test format. Topics include: Deciding whether to take one test or two to get your CCNA, What to expect when you walk into the testing center, which topics to study and how in depth, and what study tools can be useful. Last, Keith will talk about his own experience taking the CCNA exam and offer advice based off of his own personal observations.

Check Out All of Our Upcoming Webinars:

CCNA/CCNP Q&A: February 2018
February 9, 2018 10 am (PST)/ 1 PM (EST)

Deciphering Spanning-Tree Technologies
February 16, 2018 10 am (PST)/ 1 pm (EST)

Introduction to Networking Technologies
March 15, 2018 10 am (PST)/ 1 pm (EST)

May
15

 

The following question was recently sent to me regarding PPP and CHAP:

 

At the moment I only have packet tracer to practice on, and have been trying to setup CHAP over PPP.

It seems that the "PPP CHAP username xxxx" and "PPP CHAP password xxxx" commands are missing in packet tracer.

I have it set similar to this video... (you can skip the first 1 min 50 secs)

https://www.youtube.com/watch?v=5ltNfaPz0nA

As he doesn't use the missing commands, if that were to be done on live kit would it just use the hostname and magic number to create the hash?

 

Also, in bi-directional authentication, do both routers have to use the same password or can they be different as long as they match what they expect from the other router?

Thanks, Paul.

 

Here was my reply:

Hi Paul,

When using PPP CHAP keep in mind four fundamental things:

  1. The "magic number" that you see in PPP LCP messages has nothing to do with Authentication or CHAP.  It is simply PPPs way of trying to verify that it has a bi-directional link with a peer. When sending a PPP LCP message a random Magic Number is generated.  The idea is that you should NOT see your own Magic Number in LCP messages received from your PPP Peer.  If you DO see the same magic number that you transmited, that means you are talking to yourself (your outgoing LCP CONFREQ message has been looped back to you).  This might happen if the Telco that is providing your circuit is doing some testing or something and has temporarily looped-back your circuit.
  2. At least one of the devices will be initiating the CHAP challenge.  In IOS this is enabled with the interface command, “ppp authentication chap”.  Technically it only has to be configured on one device (usually the ISP router that wishes to “challenge” the incoming caller) but with CHAP you can configure it on both sides if you wish to have bi-directional CHAP challenges.
  3. Both routers need a CHAP password, and you have a couple of options on how to do this.
  4. The "hash" that is generated in an outgoing PPP CHAP Response is created as a combination of three variables, and without knowing all three values the Hash Response cannot be generated:
  • A router's Hostname
  • The configured PPP CHAP password
  • The PPP CHAP Challenge value

I do all of my lab testing on real hardware so I can't speak to any "gotchas" that might be present in simulators like Packet Tracer.  But what I can tell you, is that on real routers the side that is receiving the CHAP challenge must be configured with an interface-level CHAP password.

The relevant configurations are below as an example.

ISP router that is initiating the CHAP Challenge for incoming callers:

username Customer password cisco
!
interface Serial1/3
encapsulation ppp
ppp authentication chap
ip address x.x.x.x y.y.y.y
!

Customer router placing the outgoing PPP call to ISP:

hostname Customer
!
interface Serial1/3
encapsulation ppp
ppp chap password cisco
ip address x.x.x.x y.y.y.y
!

If you have a situation where you expect that the Customer Router might be using this same interface to "call" multiple remote destinations, and use a different CHAP password for each remote location, then you could add the following:

 

Customer router placing the outgoing PPP call to ISP-1 (CHAP password = Bob) and ISP-2 (CHAP password = Sally):

hostname Customer
!
username ISP-1 password Bob
<em><strong>username ISP-2 password Sally</strong></em>
!
interface Serial1/3
encapsulation ppp
ppp chap password cisco
ip address x.x.x.x y.y.y.y
!

Notice in the example above, the "username x password y" commands supercede the interface-level command, "ppp chap password x". But please note that the customer (calling) router always needs the "ppp chap password" command configured at the interface level.  A global "username x password y" in the customer router does not replace this command.  In this situation, if the Customer router placed a call to ISP-3 (for which there IS no "username/password" statement) it would fallback to using the password configured at the interface-level.

Lastly, the "username x password y" command needs to be viewed differently depending on whether or not it is configured on the router that is RESPONDING to a Challenge...or is on the router that is GENERATING the Challenge:

  • When the command "username X password Y" is configured on the router that is responding to the CHAP Challenge (Customer router), the router's local "hostname" and password in this command (along with the received Challenge) will be used in the Hash algorithm to generate the CHAP RESPONSE.

 

  • When the command "username X password Y" is configured on the router that is generating the CHAP Challenge (ISP Router), once the ISP router receives the CHAP Authentication Response (which includes the hostname of the Customer/calling router) it will match that received Hostname to a corresponding "username X password Y" statement. If one is found that matches, then the ISP router will perform its own CHAP hash of the username, password, and Challenge that it previously created to see if its own, locally-generated result matches the result that was received in the CHAP Response.

Lastly, you asked, " Also, in bi-directional authentication, do both routers have to use the same password or can they be different as long as they match what they expect from the other router?"

Hopefully from my explanations above it is now clear that in the case of bi-directional authentication, the passwords do indeed have to be the same on both sides.

 

Hope that helps!

Keith

 

 

 

 

Subscribe to INE Blog Updates

New Blog Posts!