May 18, 2012

Posts Comments

You are here: Home / Archives for CCNP

5 ways to make sure Etherchannels work.

May 4, 2009 By Leave a Comment

Channeling is not that hard to do, its just temperamental. Here are 5 tips to ensure that your EtherChannel configuration goes smoothly:

  1. Make them look the same!!! I’m talking about the interfaces here. Check them next to each other. I’ve seen too many broken configurations where they just didn’t match up.
  2. Set the same speed and duplex. Don’t let the IOS decide for you. Hard code it so you know it’s done.
  3. All ports in an EtherChannel DO NOT have to be next to each other or even on the same module.
  4. SPAN ports can’t be in an EtherChannel
  5. Sometimes you need to shut down both sides and let them negotiate again.

I know there are other items that I could bring out on the list. These are just some of the ones I remember off hand. How do you make sure the EtherChannel works? Add a comment on this post to tell others about it.

Find more information on Cisco EtherChannel technologies on the Cisco Support Wiki.


You can also download the Kindle version of the Quick Reference sheet. If you do, make sure you get the kindle app for the iphone!

Filed Under: BCMSN, CCNP Study Tagged With: , ,

VLAN 1 on a Cisco Switch

May 4, 2009 By 1 Comment

In the many years I have been teaching Cisco courses I have come across a number of thoughts on VLAN 1. Some say not to use it, some say use it for management only. Have you ever wondered what the deal with VLAN 1 is? Well here is the scoop according to the VLAN Security White Paper via Cisco.com.

  • The Document recommends that you not use VLAN 1 for inband management traffic. Instead you should pick a different that you will dedicate to keeping management traffic separate from user data and protocol traffic.
  • Prune VLAN 1 from all the trunks and from all the access ports that don’t require it (including not connected and shutdown ports).

As far as the special VLAN for management purposes the document recommends the following:

  • Don’t configure the management VLAN on any trunk or access port that doesn’t require it (including not connected and shutdown ports).
  • When feasible, prefer out-of-band management to inband management.

There is certainly more that is discussed in the document and I think its a pretty good read.  Have a look for yourself!

Filed Under: BCMSN, CCNP Study Tagged With: , ,

Can you knock out half of the CCNP in a week?

March 30, 2009 By 4 Comments

Your probably thinking..yeah right! Actually, I have met a few people that have. How did they do it? I think it was a combination of a lot of reading, a strong background in networking and the class I’m teaching this week. That class, the “CCNP2″ training from Ascolta is a bear, but I’ve actually had people do it.

But why am I making a big deal of this? First, understand that the CCNP2 training covers bot the ISCW as well as ONT content. Then take a look at the topics as defined by Cisco and then I think you’ll understand.

First ISCW:

Implement basic teleworker services Describe Cable (HFC) technologies. Describe xDSL technologies. Configure ADSL (i.e., PPPoE or PPPoA). Verify basic teleworker configurations. Implement Frame-Mode MPLS Describe the components and operation of Frame-Mode MPLS (e.g., packet-based MPLS VPNs). Configure and verify Frame-Mode MPLS. Implement a site-to-site IPSec VPN Describe the components and operations of IPSec VPNs and GRE Tunnels. Configure a site-to-site IPSec VPN/GRE Tunnel with SDM (i.e., preshared key). Verify IPSec/GRE Tunnel configurations (i.e., IOS CLI configurations). Describe, configure, and verify VPN backup interfaces. Describe and configure Cisco Easy VPN solutions using SDM. Describe network security strategies Describe and mitigate common network attacks (i.e., Reconnaissance, Access, and Denial of Service). Describe and mitigate Worm, Virus, and Trojan Horse attacks. Describe and mitigate application-layer attacks (e.g., management protocols). Implement Cisco Device Hardening Describe, Configure, and verify AutoSecure/One-Step Lockdown implementations (i.e., CLI and SDM). Describe, configure, and verify AAA for Cisco Routers. Describe and configure threat and attack mitigation using ACLs. Describe and configure IOS secure management features (e.g., SSH, SNMP, SYSLOG, NTP, Role-Based CLI, etc.) Implement Cisco IOS firewall Describe the functions and operations of Cisco IOS Firewall (e.g., Stateful Firewall, CBAC, etc.). Configure Cisco IOS Firewall with SDM. Verify Cisco IOS Firewall configurations (i.e., IOS CLI configurations, SDM Monitor). Describe and configure Cisco IOS IPS Describe the functions and operations of IDS and IPS systems (e.g., IDS/IPS signatures, IPS Alarms, etc.) Configure Cisco IOS IPS using SDM

Then ONT:

Describe Cisco VoIP implementations Describe the functions and operations of a VoIP network (e.g., packetization, bandwidth considerations, CAC, etc.). Describe and identify basic voice components in an enterprise network (e.g. Gatekeepers, Gateways, etc.) Describe QoS considerations Explain the necessity of QoS in converged networks (e.g., bandwidth, delay, loss, etc.). Describe strategies for QoS implementations (e.g. QoS Policy, QoS Models, etc.). Describe DiffServ QoS implementations Describe classification and marking (e.g., CoS, ToS, IP Precedence, DSCP, etc.). Describe and configure NBAR for classification. Explain congestion management and avoidance mechanisms (e.g., FIFO, PQ, WRR, WRED, etc.). Describe traffic policing and traffic shaping (i.e., traffic conditioners). Describe Control Plane Policing. Describe WAN link efficiency mechanisms (e.g., Payload/Header Compression, MLP with interleaving, etc.). Describe and configure QoS Pre-Classify. Implement AutoQoS Explain the functions and operations of AutoQoS. Describe the SDM QoS Wizard. Configure, verify, and torubleshoot AutoQoS implementations (i.e., MQC). Implement WLAN security and management Describe and Configure wireless security on Cisco Clients and APs (e.g., SSID, WEP, LEAP, etc.). Describe basic wireless management (e.g., WLSE and WCS). Configure and verify basic WCS configuration (i.e., login, add/review controller/AP status, security, and import/review maps). Describe and configure WLAN QoS.

Looks pretty rough right? Well, it is. But thats ok. When I teach this class in a week I obviously dont cover every detail of each topic but its a great way to wet your whistle. Especially if you like drinking from a firehose!!! Anyhow, you can find the CCNP2 course information on the Ascolta web site.

As you can tell, I am in for a busy week!

Filed Under: ISCW, ONT Tagged With: , , , , ,
« Older Posts
Newer Posts »