Use LEFT and RIGHT arrow keys to navigate between flashcards;
Use UP and DOWN arrow keys to flip the card;
H to show hint;
A reads text to speech;
65 Cards in this Set
- Front
- Back
What is CEF
|
Cisco Express Forwarding.
1) Starts CEF Switching 2) Creates FIB Tables |
|
What does the ip cef [distributed] command do?
|
Enables CEF down to all interfaces capable of CEF.
Usually a default enable on new, needed on 7100, 7200, 7500 |
|
What are the steps required to configure MPLS?
|
1) Enable CEF to create FIB table
2) Configure MPLS to start LDP 3) Configure MPLS LDP protocol |
|
What is the FIB, LFIB, and difference between them?
|
FIB: Routing table for unlabeled packets, formed by routing protocols (OSPF, BGP)
LFIB: Label table for labeled packets, formed by LDP protcols |
|
What are the MPLS tag protocols?
|
LDP and TDP. tdp is 3rd party.
you can enable both on an interface |
|
How do service providers typically prevent customers from sending their own LDP tags?
|
Usually via ACL blocking port 646 on customer side interface
|
|
What are the possible label operations in MPLS?
|
1 - Swap
2 - Push (apply) 3 - Pop (remove) |
|
What is the Penultimate Hop Popping (PHP)?
|
Second to last LSR in an LSP which removes label so only IP lookup is done on last LSR.
Should also be the last multi-connected LSR in network. Typically a "P" router, whereas "PE" router is IP lookup in LFIB |
|
What are the steps to configure and verify MPLS LDP?
|
1) enable
2) Config t 3) mpls ip 4) mpls label protocol ldp 5) interface s0/0.1 6) mpls ip 7) exit 8) exit 9) sh ip mpls int 10) sh ip mpls ldp discovery [all | vrf) 11) sh ip mpls ldp neighbor |
|
What are the steps to configure and verify MPLS LDP not directly connected networks?
|
enable
confi t mpls ip mpls label protcol ldp interface tunnel10 tunnel-destination 10.10.10.10 mpls ip exit exit sh mpls ldp discovery one side can be "mpls ldp discovery targeted-hello accept" |
|
When would you configure an interface using both LDP and TDP?
|
When that equipment or interface connects to networks and devices which only support tdp. tdp not common but fully compatible and shows in the FIB fine
|
|
What MTU sizes should be used with various MPLS flavors?
|
Normal LAN MTU is 1500
Pure MPLS increases MTU to 1504 MPLS VPN requires 2 label increase to 1508 MPLS VPN-TE requires 3 label increase to 1512 Interface MTU increase on WAN interfaces is automatic Interface MTU increase on LAN interfaces is NOT |
|
How could MTU affect routing protocols?
|
Particularly in OSPF, "hello" parameters include an MTU size, if this is hard coded and doesn't match, adjacencies will never form
|
|
What are the steps to configure and verify MPLS VPN?
|
ip cef
ip vrf sample_A rd 100:110 route-target export 100:1000 route-target import 100:1000 interface loopback0 ip address 10.10.10.4 255.255.255.255 ip router isis interface loopback101 ip vrf forwarding sample_A ip address 200.0.4.1 255.255.255.0 router bgp 100 bgp log-neighbor-changes neighbor 10.10.10.6 remote-as 100 neighbor 10.10.10.6 update-source loopback0 address-family vpnv4 neighbor 10.10.10.6 activate neighbor 10.10.10.6 send-community both exit-address-family address-family ipv4 vrf sample_A redistribute connected no auto-summary no synchronization exit-address-family |
|
What are the two primary issues when dealing with generic protocol re-distribution?
|
1) Sub-optimal routing
2) Routing loops 3) Slow convergence |
|
Rules of thumb on protocol re-distribution
|
Redistribution rules of thumb
1) router should always prefer internal pre-fix information over external prefix information 2) router should never inject learned routes into the domain from which they were learned Just remember that when routes are re-distributed, the metric must be understandable to the receiving protocol |
|
Configure basic IGRP/EIGRP redistribution
|
IGRP/EIGRP re-distribution config
router igrp/eigrp 1 network 131.108.0.0 redistribute static redistribute ospf 1 redistribute rip redistribute isis default−metric 10000 100 255 1 1500 |
|
Configure basic OSPF redistribution
|
OSPF re-distribution config
router ospf 1 network 131.108.0.0 0.0.255.255 area 0 redistribute static metric 200 subnets redistribute rip metric 200 subnets redistribute igrp 1 metric 100 subnets redistribute eigrp 1 metric 100 subnets redistribute isis metric 10 subnets |
|
Configure basic RIP redistribution
|
RIP re-distribution config - always a low metric or routes will never be reached
router rip network 131.108.0.0 redistribute static redistribute igrp 1 redistribute eigrp 1 redistribute ospf 1 redistribute isis default−metric 1 |
|
Name some common solutions for filtering/altering redistribution metrics
|
distribute-list
route-map tag matching tag setting set metrics under redistribute command |
|
Name 3 uses for Local Policy Routing
|
1) Re-circulate local-bound traffic
2) Traffic Filtering 3) To apply flow precedence, priority, packet size, etc *12.3 added direct command to apply policy to local generated traffic |
|
What LSA Types are impacted by the command clear ip ospf redistribution and where should you run this command?
|
This command flushes the Type 5 and Type 7 LSAs. It would be run on the ASBR.
|
|
What is the purpose of the LSA Type 8 in OSPF for IPv6?
|
Link LSAs provide the link-local address of the router to all other routers attached to the link, inform other routers attached to the link of a list of IPv6 prefixes to associate with the link, and allow the router to assert a collection of Options bits to associate with the network LSA that will be originated for the link.
|
|
What IEEE 802.1x keyword is used to with the dot1x port-control interface configuration command in order to enable IEEE 802.1x authentication and cause the port to begin in the unauthorized state, allowing only EAPOL frames to be sent and received through the port?
|
Auto
|
|
What is the stratum in NTP?
|
NTP uses the concept of a “stratum” to describe how many NTP “hops” away a machine is from an authoritative time source.
|
|
Some examples of advanced extended access-lists (BGP filtering can use instead of prefix lists)
|
access-list <ACL #> permit ip <network> <wildcard mask of network> <subnet mask> <wildcard mask of subnet mask>
The source portion of the extended ACL is used to match the network portion of the BGP route and the destination portion of the ACL is used to match the subnet mask of the BGP route. Here are some examples: access-list 100 permit ip 10.0.0.0 0.0.0.0 255.255.0.0 0.0.0.0 Matches 10.0.0.0/16 – Only access-list 100 permit ip 10.0.0.0 0.0.0.0 255.255.255.0 0.0.0.0 Matches 10.0.0.0/24 – Only access-list 100 permit ip 10.1.1.0 0.0.0.0 255.255.255.0 0.0.0.0 Matches 10.1.1.0/24 – Only access-list 100 permit ip 10.0.0.0 0.0.255.0 255.255.255.0 0.0.0.0 Matches 10.0.X.0/24 – Any number in the 3rd octet of the network with a /24 subnet mask. access-list 100 permit ip 10.0.0.0 0.255.255.0 255.255.255.0 0.0.0.0 Matches 10.X.X.0/24 – Any number in the 2nd & 3rd octet of the network with a /24 subnet mask. access-list 100 permit ip 10.0.0.0 0.255.255.255 255.255.255.240 0.0.0.0 Matches 10.X.X.X/28 – Any number in the 2nd, 3rd & 4th octet of the network with a /28 subnet mask. access-list 100 permit ip 10.0.0.0 0.255.255.255 255.255.255.0 0.0.0.255 Matches 10.X.X.X/24 to 10.X.X.X/32 – Any number in the 2nd, 3rd & 4th octet of the network with a /24 to /32 subnet mask. access-list 100 permit ip 10.0.0.0 0.255.255.255 255.255.255.128 0.0.0.127 Matches 10.X.X.X/25 to 10.X.X.X/32 – Any number in the 2nd, 3rd & 4th octet of the network with a /25 to /32 subnet mask |
|
Steps to configure basic MPLS-TE using OSFP
|
ip cef
mpls traffic-eng tunnels interface loopback0 ip address 10.10.10.6 255.255.255.255 interface tunnel158 ip unnumbered loopback0 tunnel destination 10.10.10.4 tunnel model mpls traffic-eng tunnel mpls traffic-eng autoroute announce tunnel mpls traffic-eng priority 2 2 tunnel mpls traffic-eng bandwidth 158 tunnel mpls traffic-eng path-option 1 explicit name low interface tunnel159 ip unnumbered loopback0 tunnel destination 10.10.10.4 tunnel model mpls traffic-eng tunnel mpls traffic-eng autoroute announce tunnel mpls traffic-eng priority 4 4 tunnel mpls traffic-eng bandwidth 159 tunnel mpls traffic-eng path-option 1 explicit name straight tag-switching ip mpls traffic-eng tunnels frame-relay interface-dlci 603 ip rsvp bandwidth 512 512 router ospf 9 network 10.1.1.0 0.0.0.255 area 9 network 10.10.10.0 0.0.0.255 area 9 mpls traffic-eng area 9 mpls traffic-eng router-id loopback0 ip explicit-path name low enable next-address 10.1.1.21 next-address 10.1.1.10 next-address 10.1.1.1 next-address 10.1.1.14 ip explicit-path name straight enable next-address 10.1.1.21 next-address 10.1.1.5 next-address 10.1.1.14 end Verify: show ip ospf mpls traffic-eng link show ip ospf database opaque-area |
|
Is MPLS a Layer 2 or Layer 3 Technology?
|
It is considered both a L2 and L3 technology
|
|
Does MPLS-TE functionality map to COS or QOS
|
COS
|
|
Name the common problems with MPLS?
|
The Tag Distribution Protocol (TDP) or Label Distribution Protocol (LDP) session does not start.
The TDP or LDP session starts, but the labels are not allocated or distributed. The labels are allocated and distributed, but the forwarded packets are not labeled. The large IP packets are not propagated across the MPLS backbone, even though they were successfully propagated across the pure IP backbone. |
|
Common MPLS issues resolutions
|
Check TDP and LDP eanbled and same on both sides
Ensure CEF is enabled Enable MPLS globally as well as at interface level Check label bindings and routes in FIB, LFIB, and LIB MTU issues are common Use MPLS-aware traceroute |
|
How do you use extended access-list to filter in a routing protocol?
|
In short - Match the host to the subnet...
Extended IP access list 100 10 deny ip host 155.1.0.2 host 150.1.7.0 *NOT documented in command ref or doc-cd, must be remembered This is goes back to being VERY SPECIFIC. Show everyone you know exactly what you are doing |
|
What does EIGRP use the router-id field in external routes for?
|
Loop prevention mechanism
if you want to prevent an external route from being installed, simply set it's router-id to the same as another router. Now neither router will originate external routes. |
|
What is EIGRP Feasibility Condition?
|
Feasibility Condition is where a router could have a better metric than the Feasible Successor, but not be placed in the routing table due to having a longer Reported Distance.
The important note is that not all routes make it into the EIGRP routing table and should be viewed individually on routers |
|
List the 5 phases of OER (Optimized Edge Routing)?
|
Profile Phase
Measure Phase Apply Policy Phase Control Phase Verify Phase |
|
How can you resolve OSPF MTU issues?
|
1) Change on LAN switches system mtu 1500, use sh sys mtu on 3560
2) Change MTU on router-interfaces (local, not WAN) 3) Issue the ip ospf mtu-ignore |
|
What is a Forwarding Equivalence Class (FEC)?
|
FEC is a group of IP packets which are forwarded in the same manner, over the same path, and with the same forwarding treatment. An FEC might correspond to a destination IP subnet, but it also might correspond to any traffic class that the Edge−LSR considers significant. For example, all traffic with a certain value of IP precedence might constitute a FEC.
|
|
What is RIB/FIB
|
Routin Information Base(RIB) is the Table which is build up by Routing Protocols or static Routes. It could have the same entry for reaching one network with the corresponding metrics. The Forwarding Information Base(FIB) has only one entry per network, the FIB is gerated (as a subset) by the RIB, the FIB tuples are unique.
|
|
What is LIB/LFIB
|
The Label Forwarding Information Base (LFIB) is derived from the Label Information Base (LIB), it is a subset of the LIB. Also the LFIB contains no IP information whereas the LIB does hold IP information. Cisco says the LFIB is generated when the actual shortest path to a destination is chosen. Hence, in the LFIB there will be one label pair for a destination (or FEC), whereas the LIB holds all possible paths to the destination.
|
|
What causes EIGRP FD to be inaccessible?
|
The router is not using that EIGRP route in its routing table. Usually, the route is overridden by another routing protocol that has lower administrative distance
|
|
What is the recommended way to send ony the default route out a given interface
in EIGRP? |
Use distribute -list to filter all outbound route advertisements sent out the interface with the
exception of the default (0.0.0.0) NOTE: DO NOT use ip summary-address eigrp for this |
|
What is EIGRP route-leaking?
|
Allowing a more specific and thus, preferred, route thorugh a summarization command
|
|
How to configure EIGRP unequal cost load balancing.
|
Variance
|
|
When should you use the BGP "weight" attribute?
|
NEVER!!
- Only local - Causes Loops - Defaults to higher, preferred value (32768 of 65535) |
|
How do you place routes into BGP?
|
1) Network Statements
2) Protocol re-distribution |
|
True or False:
In the command sh ip bgp summ, a status of "active" means the bgp peer is actively advertising. |
FALSE!!
"active" means waiting in BGP speak |
|
List the common ways to filter BGP routes?
|
Prefix-List, Route-Map, Filter-List
|
|
What is the technical description, and differentiator, of a route-map?
|
Cisco’s mechanism to select and modify routes with if/then style algorithms.
Route-maps are used for more than just BGP in a cisco router, such as traffic shaping and policy routing. |
|
List the BGP decision algorithm selection order:
|
- Do not consider IBGP patch if not synchronized
- Do not consider path if no route to next hop - Highest weight - Highest local preference - prefer local route - shortest AS path - lowest origin code IGP<EGP - lowest MED - prefer EBGP over IBGP - Path with shortest next-hop metric wins - lowest router id |
|
What is a "Hold-Up" route?
|
they are present only to make sure bgp advertises that network. the assumption, is that ure igp has more specific routes to all used subnets under that network. so, everyone is happy - bgp advertises your major network, and all routable destinations are routed by the igp once the packet reaches your AS
|
|
Why should you cut/paste BGP neighbor configurations?
|
1) Good policy and avoids errors
2) There is 1 30-45 second window after configuration of peer 1 before it starts to send and receive routes - whether your filters are present or not! 3) Can also configure session in "shut" state |
|
What are the steps to quick test your BGP advertisements?
|
1) sh ip bgp
2) sh ip bgp neigh x.x.x.x adv 3) go to nitrous.digex.net or another looking glass and do a route lookup to ensrue your routes are under your AS and not your providers |
|
Name the most comon BGP attributes?
|
Prefix, AS Path, Next-Hop, Weight, Local Pref, Origin Code, MED
|
|
What process are community destinations usually applied with?
|
Route-maps
|
|
Follow these 4 steps when adding BGP routes:
|
Use network statements to inject routes
Use AS-Path lists to control adv Use AS Path padding to prefer-de-prefer externally heard routes have full iBGP mesh |
|
You can clear BGP route tables with "clear ip bgp" and "clear ip bgp soft"
What;s the difference? |
Clear ip bgp blows away the table and causes massive relearn.
soft issues route withdrawls and recomputes |
|
What is the BGP TTL hack?
|
Changing the expect TTL setting from default 255 to 254 or other non-common number
|
|
What is DTP?
|
Cisco proprietary (switch only) protocol) which auto negotiates VLAN trunking on an interface
|
|
If one side of a trunk is configured as "desirable" what does that side do?
|
Sends DTP frames, trunks if negotiation is successfull
|
|
How do you configure a SVI?
|
interface vlan[vlan#]
|
|
In 802.1q encaps, each vlan is tagged with 4 byte tag. Which number is tagged for traffic sent and received on the "native" vlan?
|
NONE!
Traffis sent and received on native vlan interface does not have tag inserted |
|
What vlan does control plane traffic transverse?
|
VLAN 1
|
|
What are the 5 default vlans?
|
1 and 1002-1005
|
|
If newly configured SVI interface shows down/down, what is probable cause?
|
1) No ports on the new vlan
2) vlan must exist in vlan database |
|
Difference between PAGP and LACP
|
PAGP usually L2 etherchannels
LACP usually L3 etherchannels not compatible |