• Shuffle
    Toggle On
    Toggle Off
  • Alphabetize
    Toggle On
    Toggle Off
  • Front First
    Toggle On
    Toggle Off
  • Both Sides
    Toggle On
    Toggle Off
  • Read
    Toggle On
    Toggle Off
Reading...
Front

Card Range To Study

through

image

Play button

image

Play button

image

Progress

1/65

Click to flip

Use LEFT and RIGHT arrow keys to navigate between flashcards;

Use UP and DOWN arrow keys to flip the card;

H to show hint;

A reads text to speech;

65 Cards in this Set

  • Front
  • Back
What is CEF
Cisco Express Forwarding.

1) Starts CEF Switching
2) Creates FIB Tables
What does the ip cef [distributed] command do?
Enables CEF down to all interfaces capable of CEF.

Usually a default enable on new, needed on 7100, 7200, 7500
What are the steps required to configure MPLS?
1) Enable CEF to create FIB table
2) Configure MPLS to start LDP
3) Configure MPLS LDP protocol
What is the FIB, LFIB, and difference between them?
FIB: Routing table for unlabeled packets, formed by routing protocols (OSPF, BGP)

LFIB: Label table for labeled packets, formed by LDP protcols
What are the MPLS tag protocols?
LDP and TDP. tdp is 3rd party.
you can enable both on an interface
How do service providers typically prevent customers from sending their own LDP tags?
Usually via ACL blocking port 646 on customer side interface
What are the possible label operations in MPLS?
1 - Swap
2 - Push (apply)
3 - Pop (remove)
What is the Penultimate Hop Popping (PHP)?
Second to last LSR in an LSP which removes label so only IP lookup is done on last LSR.

Should also be the last multi-connected LSR in network. Typically a "P" router, whereas "PE" router is IP lookup in LFIB
What are the steps to configure and verify MPLS LDP?
1) enable
2) Config t
3) mpls ip
4) mpls label protocol ldp
5) interface s0/0.1
6) mpls ip
7) exit
8) exit
9) sh ip mpls int
10) sh ip mpls ldp discovery [all | vrf)
11) sh ip mpls ldp neighbor
What are the steps to configure and verify MPLS LDP not directly connected networks?
enable
confi t
mpls ip
mpls label protcol ldp
interface tunnel10
tunnel-destination 10.10.10.10
mpls ip
exit
exit
sh mpls ldp discovery
one side can be "mpls ldp discovery targeted-hello accept"
When would you configure an interface using both LDP and TDP?
When that equipment or interface connects to networks and devices which only support tdp. tdp not common but fully compatible and shows in the FIB fine
What MTU sizes should be used with various MPLS flavors?
Normal LAN MTU is 1500
Pure MPLS increases MTU to 1504
MPLS VPN requires 2 label increase to 1508
MPLS VPN-TE requires 3 label increase to 1512

Interface MTU increase on WAN interfaces is automatic
Interface MTU increase on LAN interfaces is NOT
How could MTU affect routing protocols?
Particularly in OSPF, "hello" parameters include an MTU size, if this is hard coded and doesn't match, adjacencies will never form
What are the steps to configure and verify MPLS VPN?
ip cef
ip vrf sample_A
rd 100:110
route-target export 100:1000
route-target import 100:1000

interface loopback0
ip address 10.10.10.4 255.255.255.255
ip router isis

interface loopback101
ip vrf forwarding sample_A
ip address 200.0.4.1 255.255.255.0

router bgp 100
bgp log-neighbor-changes

neighbor 10.10.10.6 remote-as 100

neighbor 10.10.10.6 update-source loopback0

address-family vpnv4
neighbor 10.10.10.6 activate
neighbor 10.10.10.6 send-community both
exit-address-family

address-family ipv4 vrf sample_A
redistribute connected
no auto-summary
no synchronization
exit-address-family
What are the two primary issues when dealing with generic protocol re-distribution?
1) Sub-optimal routing
2) Routing loops
3) Slow convergence
Rules of thumb on protocol re-distribution
Redistribution rules of thumb

1) router should always prefer internal pre-fix information over external prefix information
2) router should never inject learned routes into the domain from which they were learned

Just remember that when routes are re-distributed, the metric must be understandable to the receiving protocol
Configure basic IGRP/EIGRP redistribution
IGRP/EIGRP re-distribution config
router igrp/eigrp 1
network 131.108.0.0
redistribute static
redistribute ospf 1
redistribute rip
redistribute isis
default−metric 10000 100 255 1 1500
Configure basic OSPF redistribution
OSPF re-distribution config
router ospf 1
network 131.108.0.0 0.0.255.255 area 0
redistribute static metric 200 subnets
redistribute rip metric 200 subnets
redistribute igrp 1 metric 100 subnets
redistribute eigrp 1 metric 100 subnets
redistribute isis metric 10 subnets
Configure basic RIP redistribution
RIP re-distribution config - always a low metric or routes will never be reached
router rip
network 131.108.0.0
redistribute static
redistribute igrp 1
redistribute eigrp 1
redistribute ospf 1
redistribute isis
default−metric 1
Name some common solutions for filtering/altering redistribution metrics
distribute-list
route-map
tag matching
tag setting
set metrics under redistribute command
Name 3 uses for Local Policy Routing
1) Re-circulate local-bound traffic
2) Traffic Filtering
3) To apply flow precedence, priority, packet size, etc

*12.3 added direct command to apply policy to
local generated traffic
What LSA Types are impacted by the command clear ip ospf redistribution and where should you run this command?
This command flushes the Type 5 and Type 7 LSAs. It would be run on the ASBR.
What is the purpose of the LSA Type 8 in OSPF for IPv6?
Link LSAs provide the link-local address of the router to all other routers attached to the link, inform other routers attached to the link of a list of IPv6 prefixes to associate with the link, and allow the router to assert a collection of Options bits to associate with the network LSA that will be originated for the link.
What IEEE 802.1x keyword is used to with the dot1x port-control interface configuration command in order to enable IEEE 802.1x authentication and cause the port to begin in the unauthorized state, allowing only EAPOL frames to be sent and received through the port?
Auto
What is the stratum in NTP?
NTP uses the concept of a “stratum” to describe how many NTP “hops” away a machine is from an authoritative time source.
Some examples of advanced extended access-lists (BGP filtering can use instead of prefix lists)
access-list <ACL #> permit ip <network> <wildcard mask of network> <subnet mask> <wildcard mask of subnet mask>

The source portion of the extended ACL is used to match the network portion of the BGP route and the destination portion of the ACL is used to match the subnet mask of the BGP route. Here are some examples:

access-list 100 permit ip 10.0.0.0 0.0.0.0 255.255.0.0 0.0.0.0
Matches 10.0.0.0/16 – Only

access-list 100 permit ip 10.0.0.0 0.0.0.0 255.255.255.0 0.0.0.0
Matches 10.0.0.0/24 – Only

access-list 100 permit ip 10.1.1.0 0.0.0.0 255.255.255.0 0.0.0.0
Matches 10.1.1.0/24 – Only

access-list 100 permit ip 10.0.0.0 0.0.255.0 255.255.255.0 0.0.0.0
Matches 10.0.X.0/24 – Any number in the 3rd octet of the network with a /24 subnet mask.

access-list 100 permit ip 10.0.0.0 0.255.255.0 255.255.255.0 0.0.0.0
Matches 10.X.X.0/24 – Any number in the 2nd & 3rd octet of the network with a /24 subnet mask.

access-list 100 permit ip 10.0.0.0 0.255.255.255 255.255.255.240 0.0.0.0
Matches 10.X.X.X/28 – Any number in the 2nd, 3rd & 4th octet of the network with a /28 subnet mask.

access-list 100 permit ip 10.0.0.0 0.255.255.255 255.255.255.0 0.0.0.255
Matches 10.X.X.X/24 to 10.X.X.X/32 – Any number in the 2nd, 3rd & 4th octet of the network with a /24 to /32 subnet mask.

access-list 100 permit ip 10.0.0.0 0.255.255.255 255.255.255.128 0.0.0.127
Matches 10.X.X.X/25 to 10.X.X.X/32 – Any number in the 2nd, 3rd & 4th octet of the network with a /25 to /32 subnet mask
Steps to configure basic MPLS-TE using OSFP
ip cef
mpls traffic-eng tunnels

interface loopback0
ip address 10.10.10.6 255.255.255.255

interface tunnel158
ip unnumbered loopback0
tunnel destination 10.10.10.4
tunnel model mpls traffic-eng
tunnel mpls traffic-eng autoroute announce
tunnel mpls traffic-eng priority 2 2
tunnel mpls traffic-eng bandwidth 158
tunnel mpls traffic-eng path-option 1 explicit name low

interface tunnel159
ip unnumbered loopback0
tunnel destination 10.10.10.4
tunnel model mpls traffic-eng
tunnel mpls traffic-eng autoroute announce
tunnel mpls traffic-eng priority 4 4
tunnel mpls traffic-eng bandwidth 159
tunnel mpls traffic-eng path-option 1 explicit name straight

tag-switching ip
mpls traffic-eng tunnels
frame-relay interface-dlci 603
ip rsvp bandwidth 512 512

router ospf 9
network 10.1.1.0 0.0.0.255 area 9
network 10.10.10.0 0.0.0.255 area 9
mpls traffic-eng area 9
mpls traffic-eng router-id loopback0

ip explicit-path name low enable
next-address 10.1.1.21
next-address 10.1.1.10
next-address 10.1.1.1
next-address 10.1.1.14

ip explicit-path name straight enable
next-address 10.1.1.21
next-address 10.1.1.5
next-address 10.1.1.14

end

Verify:
show ip ospf mpls traffic-eng link
show ip ospf database opaque-area
Is MPLS a Layer 2 or Layer 3 Technology?
It is considered both a L2 and L3 technology
Does MPLS-TE functionality map to COS or QOS
COS
Name the common problems with MPLS?
The Tag Distribution Protocol (TDP) or Label Distribution Protocol (LDP) session does not start.

The TDP or LDP session starts, but the labels are not allocated or distributed.
The labels are allocated and distributed, but the forwarded packets are not labeled.

The large IP packets are not propagated across the MPLS backbone, even though they were successfully propagated across the pure IP backbone.
Common MPLS issues resolutions
Check TDP and LDP eanbled and same on both sides

Ensure CEF is enabled

Enable MPLS globally as well as at interface level

Check label bindings and routes in FIB, LFIB, and LIB

MTU issues are common

Use MPLS-aware traceroute
How do you use extended access-list to filter in a routing protocol?
In short - Match the host to the subnet...
Extended IP access list 100
10 deny ip host 155.1.0.2 host 150.1.7.0

*NOT documented in command ref or doc-cd, must be remembered
This is goes back to being VERY SPECIFIC. Show everyone you
know exactly what you are doing
What does EIGRP use the router-id field in external routes for?
Loop prevention mechanism

if you want to prevent an external route from being installed, simply set it's router-id to the same as another router. Now neither router will originate external routes.
What is EIGRP Feasibility Condition?
Feasibility Condition is where a router could have a better metric than the Feasible Successor, but not be placed in the routing table due to having a longer Reported Distance.

The important note is that not all routes make it into the EIGRP routing table and should be viewed individually on routers
List the 5 phases of OER (Optimized Edge Routing)?
Profile Phase
Measure Phase
Apply Policy Phase
Control Phase
Verify Phase
How can you resolve OSPF MTU issues?
1) Change on LAN switches system mtu 1500, use sh sys mtu on 3560

2) Change MTU on router-interfaces (local, not WAN)

3) Issue the ip ospf mtu-ignore
What is a Forwarding Equivalence Class (FEC)?
FEC is a group of IP packets which are forwarded in the same manner, over the same path, and with the same forwarding treatment. An FEC might correspond to a destination IP subnet, but it also might correspond to any traffic class that the Edge−LSR considers significant. For example, all traffic with a certain value of IP precedence might constitute a FEC.
What is RIB/FIB
Routin Information Base(RIB) is the Table which is build up by Routing Protocols or static Routes. It could have the same entry for reaching one network with the corresponding metrics. The Forwarding Information Base(FIB) has only one entry per network, the FIB is gerated (as a subset) by the RIB, the FIB tuples are unique.
What is LIB/LFIB
The Label Forwarding Information Base (LFIB) is derived from the Label Information Base (LIB), it is a subset of the LIB. Also the LFIB contains no IP information whereas the LIB does hold IP information. Cisco says the LFIB is generated when the actual shortest path to a destination is chosen. Hence, in the LFIB there will be one label pair for a destination (or FEC), whereas the LIB holds all possible paths to the destination.
What causes EIGRP FD to be inaccessible?
The router is not using that EIGRP route in its routing table. Usually, the route is overridden by another routing protocol that has lower administrative distance
What is the recommended way to send ony the default route out a given interface
in EIGRP?
Use distribute -list to filter all outbound route advertisements sent out the interface with the
exception of the default (0.0.0.0)

NOTE: DO NOT use ip summary-address eigrp for this
What is EIGRP route-leaking?
Allowing a more specific and thus, preferred, route thorugh a summarization command
How to configure EIGRP unequal cost load balancing.
Variance
When should you use the BGP "weight" attribute?
NEVER!!

- Only local
- Causes Loops
- Defaults to higher, preferred value (32768 of 65535)
How do you place routes into BGP?
1) Network Statements
2) Protocol re-distribution
True or False:

In the command sh ip bgp summ, a status of "active" means the bgp peer is actively advertising.
FALSE!!

"active" means waiting in BGP speak
List the common ways to filter BGP routes?
Prefix-List, Route-Map, Filter-List
What is the technical description, and differentiator, of a route-map?
Cisco’s mechanism to select and modify routes with if/then style algorithms.

Route-maps are used for more than just BGP in a cisco router, such as traffic
shaping and policy routing.
List the BGP decision algorithm selection order:
- Do not consider IBGP patch if not synchronized
- Do not consider path if no route to next hop
- Highest weight
- Highest local preference
- prefer local route
- shortest AS path
- lowest origin code IGP<EGP
- lowest MED
- prefer EBGP over IBGP
- Path with shortest next-hop metric wins
- lowest router id
What is a "Hold-Up" route?
they are present only to make sure bgp advertises that network. the assumption, is that ure igp has more specific routes to all used subnets under that network. so, everyone is happy - bgp advertises your major network, and all routable destinations are routed by the igp once the packet reaches your AS
Why should you cut/paste BGP neighbor configurations?
1) Good policy and avoids errors
2) There is 1 30-45 second window after configuration of peer 1 before it starts to send and receive routes - whether your filters are present or not!
3) Can also configure session in "shut" state
What are the steps to quick test your BGP advertisements?
1) sh ip bgp
2) sh ip bgp neigh x.x.x.x adv
3) go to nitrous.digex.net or another looking glass and do a
route lookup to ensrue your routes are under your AS and
not your providers
Name the most comon BGP attributes?
Prefix, AS Path, Next-Hop, Weight, Local Pref, Origin Code, MED
What process are community destinations usually applied with?
Route-maps
Follow these 4 steps when adding BGP routes:
Use network statements to inject routes

Use AS-Path lists to control adv

Use AS Path padding to prefer-de-prefer externally heard routes

have full iBGP mesh
You can clear BGP route tables with "clear ip bgp" and "clear ip bgp soft"

What;s the difference?
Clear ip bgp blows away the table and causes massive relearn.

soft issues route withdrawls and recomputes
What is the BGP TTL hack?
Changing the expect TTL setting from default 255 to 254 or other non-common number
What is DTP?
Cisco proprietary (switch only) protocol) which auto negotiates VLAN trunking on an interface
If one side of a trunk is configured as "desirable" what does that side do?
Sends DTP frames, trunks if negotiation is successfull
How do you configure a SVI?
interface vlan[vlan#]
In 802.1q encaps, each vlan is tagged with 4 byte tag. Which number is tagged for traffic sent and received on the "native" vlan?
NONE!

Traffis sent and received on native vlan interface does not have tag inserted
What vlan does control plane traffic transverse?
VLAN 1
What are the 5 default vlans?
1 and 1002-1005
If newly configured SVI interface shows down/down, what is probable cause?
1) No ports on the new vlan
2) vlan must exist in vlan database
Difference between PAGP and LACP
PAGP usually L2 etherchannels
LACP usually L3 etherchannels

not compatible