Jan
24

Just ahead of our brand new CCNA Voice live online bootcamp beginning this Monday, I thought it might be nice to provide an easy-to-follow graphic for those starting out in Voice (or on any other Cisco networking track). This graphic was from last year, but remains quite easy to follow for each and every Cisco track.

Be sure you have a high resolution set if you wish to see the entire thing, otherwise scrolling may be necessary.

Click here for the Cisco Career Certification Path poster

Sep
23

We have a new feature on our All Access Pass streaming video playlists that we believe will help tremendously help you in your studies - but we'll leave you to be the judge of that. We have added the ability for you to save unlimited bookmarks (and take notes on those bookmarks) for each video playlist you have in your online, streaming All Access Pass. Please login to your members account, then navigate to one of the streaming video playlists in order to access the new bookmark feature (i.e. you won't see it on the sample video playlists).

Here is a sample screenshot of the new feature in action. Click to see it larger.

By the way, one other important thing to note about this new feature is that if you take a bookmark, it is not specific to the streaming quality that you chose when saving the bookmark. So if you were watching in the "High" quality, and save a bookmark for a specific spot, you can always choose a different quality level (e.g. "HD") and then click your bookmark, or vice-versa, to watch that bookmark at the different streaming quality. Also, you will be able to copy the links from those bookmarks, and send them to your peers studying with you, that also have an INE AAP membership, and they will be able to access that same spot to comment on something important that you found, and would like to share with them. You will find the appendix to the existing video URL very
similar to that of the way YouTube codes theirs, for easy use.

Enjoy, and be sure to tell us how you like the new feature and if or how it is helping you in your studies, in the comments section!

Sep
01

A while back, in May, we asked you all what you thought of adding closed captioning to all of our videos, and your response - both in comments and private emails - was overwhelmingly positive. This functionality would not only provide better assistance for those with difficulty hearing, but also give everyone the incredible ability to search anywhere within any video for a particular topic or keyword that had been spoken about in the audio track, and immediately jump to that timecode spot in the video. This would every single minute of every video we have the ablility to be searched and subsequently accessed within just a few moments vs. having to watch the entire video over and over each time you wished to return to a particular spot in it for some remedial learning.

Well, you needn't wait much longer.

The above is a screenshot from our internal development site (no, you can't access it from outside, so sorry) where you can not only clearly see the closed captioning enabled on the screen, but also the complete transcript for the video below, along with the clickable timecode to the left of each line of transcript text. In this screenshot I had just clicked on the 0:01:32 timecode, which was the 4th fully visible line of transcript from the bottom. BTW, you needn't have CC turned on in the video in order to use this new click-to-jump transcript timecode - I simply had both turned on for demonstration purposes.

As you may be able to see, this will open up an entirely new world to your studying habits. And this is actually only one of the new improvements to this site that we will be rolling out in the very near future. In fact, if you can think of any new "must-have" features --specifically for our AAP streaming members site-- please, tell us in our comments section below.

So, onto the good news: We have almost 350 hours of our most recent AAP video that is currently being transcribed. This stuff takes time to do. Like imagine 10 hours to transcribe every hour of recorded video. Yeah. That much time. But the good news is - we've been on it for quite some time now (like maybe since May - when we published the initial blog post? :)). So look for it to debut sometime in the next month or two. We're really excited about it, and hope you are also.

Also, a number of you pointed out that there was an increasing synchronization issue between the audio and the video tracks of 3 of our videos on our latest CCNP Voice Course. We greatly appreciate your feedback, and have worked quickly and efficiently to resolve the problem.

The videos in particular that had the sync issue ...
Gateways Trunks and Signaling In-Depth - Part 2
Gateways Trunks and Signaling In-Depth - Part 3
Quality of Service Fundamentals - Part 2
... have all now been fixed, and have been re-uploaded to both our CDN streaming servers as well as our download servers, and are ready for your consumption.

Please, keep your helpful comments coming. We've enjoyed fielding every one of them.

We look forward to serving you and bringing you great advancements for the rest of this year, and well, well into the future.

Kind Regards,
Mark

Jun
23

INE is proud to announce the upcoming release of the following new additions to our All Access Pass Video-on-Demand library:

  • CCNA Security - Implementing Cisco IOS Network Security (640-553 IINS)
  • CCNP Security - Securing Networks with Cisco Routers and Switches (642-637 SECURE v1.0)
  • CCNP Security - Deploying Cisco ASA Firewall Solutions (642-617 FIREWALL v1.0)
  • CCNP Security - Deploying Cisco ASA VPN Solutions (642-647 VPN v1.0)
  • CCNP Security - Implementing Cisco Intrusion Prevention System v7.0 (642-627 IPS v7.0)
  • CCIE Security Advanced Technologies Class for Blueprint v3.0
  • CCIE Service Provider Advanced Technologies Class for Blueprint v3.0

All of these classes will be delivered by me, Brian McGahan - 3 x CCIE #8593.  Release dates for the CCNA Security and CCNP Security videos will be early and late July 2011 respectively.  The CCIE Security Advanced Technologies Class will be running as a live online class from July 25th – July 29th 2011, with an estimated release date of August 5th 2011 for the videos.  The CCIE Service Provider Advanced Technologies Class will be running as a live online class from August 29th – September 2nd 2011, with an estimated release date of September 9th 2011.

Subscribers to the All Access Pass will have immediate access to the streaming videos as they become available, and can attend the live online sessions of CCIE Security ATC and CCIE Service Provider ATC at no additional charge.  Seating is limited for the live class sessions, so contact sales@ine.com as soon as possible if you are interested in attending.  Download versions of each of the classes will be available for purchase as a standalone product, or as a discounted upgrade for AAP subscribers.

We will also releasing a new CCNA course delivered by Brian Dennis - 5 x CCIE #2210, and both CCNA Voice & CCNP Voice courses delivered by Mark Snow - 2 x CCIE #14073.  More details about these releases will be available soon.

 

Jun
20

We're pleased to announce that our recently announced, highly acclaimed CCIE Voice Advanced Technologies Class is available for both streaming and download from our global CDN. The Voice ATC consists of 60 videos totaling just shy of 60 hours of hands down the best CCIE Voice training on the market today. You can download it now for just $299 or as an All Access Pass subscriber you can download it for only $149. For All Access Pass subscriber the online streaming version is included free of charge.

Each of the 60 videos can be individually downloaded without the need to download the whole class. This will enable you to selectively load them onto any computer or mobile device and watch them at your leisure. Although we do not place any DRM on the files themselves we do limit each purchase to two downloads per video.

Watch in the upcoming month for completely redone courses covering the CCNA, CCNA Voice and CCNA Security courses as well as CCNP Voice and CCNP Security courses.  All Access Pass subscribers will be able to stream them for free and download them for only $149. These all stream from CDN locations around the world, so latency in download and streaming alike is not an issue, no matter where in the world you access it from.

Jun
10

We're pleased to announce that our recently released, highly acclaimed Routing and Switching CCIE Advanced Technologies Class is available for download. The RS ATC consists of 156 videos totaling over 80 hours of hands down the best CCIE training on the market today. You can download it now for just $299 or as an All Access Pass subscriber you can download it for only $149. For All Access Pass subscriber the online streaming version is included free of charge.

Each of the 156 videos can be individually downloaded without the need to download the whole class. This will enable you to selectively load them onto any computer or mobile device and watch them at your leisure. Although we do not place any DRM on the files themselves we do limit each purchase to two downloads. You can purchase an additional download for $29.95 in the future if needed under our Investment Protection Program.

Android customers should note that these are .mov files and you will need to download a player for them. We tested several freely available .mov players and didn't run across any issues playing the downloaded videos. Additionally we're going to upload a new version of the streaming videos next week to help with any compatibility issues regarding streaming to these devices. Update - June 11th 2100 GMT - All of the streaming videos are now working on Android enabled devices using the default browser.

If you've been wondering what we've been up to lately here at INE well you can now see that we're once again changing the CCIE training industry. You can watch hundreds of hours of the best CCIE training for just $159 a month and download our newest courses for just $149 as an AAP subscriber.    We've just wrapped post-production on our brand new CCIE Voice ATC class and have made some sample videos available now and are releasing the full product next week.   This weekend you can pre-order the $299 downloadable version for $249 with the coupon code VATC50.

Also in the pipeline are completely redone CCNA, CCNA Voice and CCNA Security courses as well as CCNP Voice and CCNP Security courses.  All Access Pass subscribers will be able to stream them for free and download them for only $149.  These are scheduled for release in July.

 

Jan
24

Today's challenge is drawn from the exciting area of CCNA Security. Enjoy. As always, you can find the answer in the comments area a day or two after the date of this post.

IINS-1: The CIA Triad seeks to define the three primary purposes for network security. These are to secure an organization's data confidentiality, integrity, and availability. Define integrity as it is used in the CIA Triad. For bonus credit, provide the term texts often attribute the A for in CIA as opposed to Availability.

Answer: ______________________________________________________________________________

Bonus: _______________________

Mar
22

One of our students asked me for a concise example of SNMPv3. James, here you go!  This blog has examples and explanations of the features used in SNMPv3.
Older versions of SNMP didn’t provide all the features of SNMPv3. V3 supports a User-based Security Model (USM) for authentication, and a View-based Access Control Model (VACM) to control what that user account may access.  Of course the user accounts don't represent end users, they are just the configuration elements we configure on the SNMP devices, primarily for creating the connection to or from the SNMP device.

With version 3 we may use the following methods:

  1. noAuthNoPriv: requires username, but no MD5 validation of that user, and no encryption
  2. authNoPriv: requires username, provides MD5 validation, but no encryption
  3. authPriv: You guessed it. Requires username, uses MD5 validation, and encrypts too.

Let’s configure the router to support a SNMPv3 manager who will be communicating with it. First, we assign an engineID. This is optional, as the router would have automatically assigned one, but helpful due to the fact that we may need to configure the engineID on the remote manager and by hard coding it on the router we will know what the value is beforehand. (Note: the 00 in food, are Zero Zero, as the engineID is in hexadecimal. :) )

R1(config)#snmp-server engineID local badf00dbabe

Next we can define a view that specifies what may be managed (VACM, see above). In this example, the two views refer to mib-2 and Cisco object IDs respectively.

R1(config)#snmp-server view MYVIEW mib-2 included
R1(config)#snmp-server view MYVIEWRW cisco included

So far, these views are not worth much, as they are just sitting in the config, and not being called on. We can verify the views exist, and also see the other default views present on the router.

R1#show snmp view
*ilmi system - included permanent active
*ilmi atmForumUni - included permanent active
MYVIEW mib-2 - included nonvolatile active
MYVIEWRW cisco - included nonvolatile active
v1default iso - included permanent active
v1default internet.6.3.15 - excluded permanent active
v1default internet.6.3.16 - excluded permanent active
v1default internet.6.3.18 - excluded permanent active
v1default ciscoMgmt.394 - excluded permanent active
v1default ciscoMgmt.395 - excluded permanent active
v1default ciscoMgmt.399 - excluded permanent active
v1default ciscoMgmt.400 - excluded permanent active

Let’s set up some groups and users, so that a remote SNMP manager may get information from this router and/or configure via SNMP. We have options. If we want to allow the manager station to request data, but not require a MD5 hash validation of the user, nor require encryption for the SNMP traffic, we could create a group that doesn’t require MD5 authentication nor encryption. The group and user that we might put in this group may look like this:

R1(config)#snmp-server group groupone v3 noauth read MYVIEW
R1(config)#snmp-server user keith groupone v3
Configuring snmpv3 USM user, persisting snmpEngineBoots. Please Wait...

Note, this would not be much better than SNMPv1, with simple plain text passwords. To verify the group and user, we can use a few simple show commands.

R1#show snmp group
groupname: ILMI security model:v1
readview : *ilmi writeview: *ilmi
notifyview:
row status: active

groupname: ILMI security model:v2c
readview : *ilmi writeview: *ilmi
notifyview:
row status: active

groupname: groupone security model:v3 noauth
readview : MYVIEW writeview:
notifyview:
row status: active

R1#show snmp user

User name: keith
Engine ID: BADF00DBAB0E
storage-type: nonvolatile active
Authentication Protocol: None
Privacy Protocol: None
Group-name: groupone

Next, we create another group, still with NO authentication or encryption, but we will add the ability to write via SNMP based on the view named MYVIEWRW.

R1(config)#snmp-server group grouptwo v3 noauth read MYVIEW write MYVIEWRW
R1(config)#snmp-server user anthony grouptwo v3

Notice, the show group and user commands include both users and groups. Grouptwo has a writeview specified, just as we configured it.

R1#show snmp group
<snip>
groupname: groupone security model:v3 noauth
readview : MYVIEW writeview:
notifyview:
row status: active

groupname: grouptwo security model:v3 noauth
readview : MYVIEW writeview: MYVIEWRW
notifyview:
row status: active

R1#show snmp user
<snip>
User name: anthony
Engine ID: BADF00DBAB0E
storage-type: nonvolatile active
Authentication Protocol: None Privacy Protocol: None
Group-name: grouptwo

Now, lets add some MD5 authentication . No encryption yet, but we are making progress over groupone and grouptwo.

R1(config)#snmp-server group groupthree v3 auth read MYVIEW
R1(config)#snmp-server user marvin groupthree v3 auth md5 marvin-passwd

Notice in the show command, that the new group includes “auth”. We are beginning to use the features that makes SNMPv3 desireable.

R1#show snmp group

groupname: groupone security model:v3 noauth
readview : MYVIEW writeview:
notifyview:
row status: active

groupname: grouptwo security model:v3 noauth
readview : MYVIEW writeview: MYVIEWRW
notifyview:
row status: active

groupname: groupthree security model:v3 auth
readview : MYVIEW writeview:
notifyview:
row status: active

R1#show snmp user
<snip>
User name: marvin
Engine ID: BADF00DBAB0E
storage-type: nonvolatile active
Authentication Protocol: MD5
Privacy Protocol: None
Group-name: groupthree

R1#

Now, we will add a group and user, that leverages the authentication and encryption.

R1(config)#snmp-server group groupfour v3 priv read MYVIEW
R1(config)#snmp-server user scott groupfour v3 auth md5 scott-passwd priv des crypt-key

R1#show snmp group
groupname: groupfour security model:v3 priv
readview : MYVIEW writeview:
notifyview:
row status: active

R1#show snmp user

User name: scott
Engine ID: BADF00DBAB0E
storage-type: nonvolatile active
Authentication Protocol: MD5
Privacy Protocol: DES
Group-name: groupfour

R1#

Our final group and user will use authentication and encryption, along with the ability to write to the SNMP device based on the view MYVIEWRW. This is the most secure of all the examples shown here.

R1(config)#snmp-server group groupfive v3 priv read MYVIEW write MYVIEWRW
R1(config)#snmp-server user petr groupfive v3 auth md5 peter-passwd priv 3des crypt-key

R1#show snmp group
<snip>
groupname: groupfive security model:v3 priv
readview : MYVIEW writeview: MYVIEWRW
notifyview:
row status: active

R1#show snmp user

User name: petr
Engine ID: BADF00DBAB0E
storage-type: nonvolatile active
Authentication Protocol: MD5
Privacy Protocol: 3DES
Group-name: groupfive

R1#

SNMPv3 has the ability to communicate via TRAPs and INFORMs. A TRAP is an SNMP message sent from one application to another, probably the manager station. Unfortunately, TRAPs are not acknowledged so the router doesn’t know if the remote device received it. SNMPv2 and v3 may use an INFORM, which is nothing more than an acknowledged TRAP.

To set up traps and informs, we can use the syntax below. Note that the traps are being sent using an account that doesn’t use MD5 authentication, or encryption, based on the user account configured to send it. The inform destination is using an account that uses authentication, but not encryption. A better use would be to include authentication and encryption, using an account that is assigned to groupfive. The SNMP manager would need to be properly configured with the correct user account information to receive these traps and inform PDUs. The parameters at the end of the command indicate what will trigger the traps/informs.

R1(config)#snmp-server host 10.0.0.100 version 3 noauth keith snmp ipsla hsrp cpu
R1(config)#snmp-server host 10.0.0.100 informs version 3 auth marvin cpu syslog

Note:  Any names used in the demonstration are purely intentional.   Thanks to some of my fellow CCIE comrades, namely Anthony, Marvin, Scott and Petr.

Thanks again James for your request, and best wishes to all in your studies.

 

Jan
15

INE is proud to announce that our CCNA Security Class-on-Demand is now completed and available for viewing! Taught by myself, this class includes more than 12 hours of instructor-led videos to prepare you for the latest Implementing Cisco IOS Network Security (IINS) exam. Video samples of this series can be found below.

This series uses INE's tried and true hands-on learning approach. This unique method of delivery allows you to not only learn how advanced networking technologies work in real-world design scenarios, but to also see live Cisco IOS command line and SDM GUI examples of how to configure, verify, and troubleshoot those scenarios.

Whether your are preparing for the CCNA Security, or beginning your studies for the CCSP or CCIE Security certifications, this series will exceed all of your expectations.

For more info visit http://www.ine.com/ccna-security.htm or email sales@ine.com

Samples of the CCNA Security Bootcamp Class-on-Demand can be found below. Note that the quality of the actual Class-on-Demand recordings is much higher resolution than the YouTube videos, as some quality is lost in the YouTube encoding process.

INE CoD CCNA Security ACL Wildcard Examples

INE CoD CCNA Security IOS Firewall Part 1

INE CoD CCNA Security IOS Firewall Part 2

INE CoD CCNA Security IOS Firewall Part 3

Dec
29

Hello Everyone!

We are thrilled to announce our new self-paced product offerings that include CCSP (Cisco Certified Security Professional), CCNA Security (Cisco Certified Network Associate) , and CCNA Voice online classes and videos-on-demand. The new products are designed for those of you pursuing your Professional and Associate level Cisco certifications and looking for complete end-to-end solutions. Developed from the ground up by our industry-recognized multi-CCIE instructors, the new products use our tried and true hands-on learning approach, where in-depth theory lectures are combined with intense practical configuration examples. This unique method of delivery allows you to understand advanced networking technologies and their work in real-world design scenarios, as well as troubleshooting processes. All products are delivered as either online classes or on-demand videos. Every student enrolling into a live class receives the unique chance of interacting with his colleagues and expert instructors and, of course, these live class students receive on-demand class video recordings free of charge.

Please note that in addition to buying just a single product, you have the option of purchasing various product packages. By purchasing any of the value-added packages, you receive an end-to-end solution covering multiple certification tracks. For example, you might purchase CCNA and CCNA Voice, or CCNA and CCVP, or other such packages up to our CCIE Video Training. For detailed information on every product and associated packages, please consult the links below:

CCNA Voice Video Training
CCNA Security Video Training
CCSP Video Training

Keep in mind that the new products are an addition to our existing and highly acclaimed line of Professional and Associate level training offering that include the following:

CCNA Video Training
CCNP Video Training
CCVP Video Training

Feel free to email our sales team at sales@INE.com or call us at 877-224-8987 to discuss any other options or custom packages that you might want to purchase. Above all, as always, thank you for choosing Internetwork Expert (INE)!

Subscribe to INE Blog Updates