Muutke küpsiste eelistusi

CCNP Official Exam Certification Library 4th edition [Raamat]

3.89/5 (18 hinnangut Goodreads-ist)
, , , ,
  • Formaat: Book, 2400 pages, kõrgus x laius x paksus: 252x202x182 mm, kaal: 4980 g, Contains 3 hardbacks and 3 CD-ROMs and 1 Paperback / softback and 1 DVD-ROM
  • Ilmumisaeg: 09-Aug-2007
  • Kirjastus: Cisco Press
  • ISBN-10: 158720178X
  • ISBN-13: 9781587201783
Teised raamatud teemal:
  • Raamat
  • Hind: 206,19 €*
  • * saadame teile pakkumise kasutatud raamatule, mille hind võib erineda kodulehel olevast hinnast
  • See raamat on trükist otsas, kuid me saadame teile pakkumise kasutatud raamatule.
  • Kogus:
  • Lisa ostukorvi
  • Tasuta tarne
  • Lisa soovinimekirja
CCNP Official Exam Certification Library 4th editionSuurem pilt
  • Formaat: Book, 2400 pages, kõrgus x laius x paksus: 252x202x182 mm, kaal: 4980 g, Contains 3 hardbacks and 3 CD-ROMs and 1 Paperback / softback and 1 DVD-ROM
  • Ilmumisaeg: 09-Aug-2007
  • Kirjastus: Cisco Press
  • ISBN-10: 158720178X
  • ISBN-13: 9781587201783
Teised raamatud teemal:
Püsilink: https://www.kriso.ee/db/9781587201783.html
CCNP Official Exam Certification Library

Fifth Edition

 

CCNP Certification Library is a comprehensive review and practice package for the four Cisco® CCNP® exams: BSCI, BCMSN, ISCW, and ONT. The four books contained in this package, CCNP BSCI Official Exam Certification Guide, Fourth Edition, CCNP BCMSN Official Exam Certification Guide, Fourth Edition, CCNP ISCW Official Exam Certification Guide, and CCNP ONT Official Exam Certification Guide, present complete reviews and ample opportunities to test your knowledge of CCNP exam topics. These authorized Cisco CCNP study guides are written by CCIE® certified individuals and certified Cisco instructors, bringing years of teaching and consulting experience together in an ideal test preparation format.

 

CCNP BSCI Official Exam Certification Guide, Fourth Edition, helps you evaluate your ability to use advanced IP addressing and routing in implementing scalability for Cisco integrated services routers (ISRs) connected to LANs and WANs. This book covers all the topics on the CCNP BSCI exam 642-901. CCNP BCMSN Official Exam Certification Guide, Fourth Edition, covers all the topics on the CCNP BCMSN exam 642-812 and helps you understand how to implement scalable multilayer switched networks. CCNP ISCW Official Exam Certification Guide covers all the topics on the CCNP ISCW exam 642-825 and tests your ability to secure and expand the reach of an enterprise network to teleworkers and remote sites with a focus on securing remote access and VPN client configuration. CCNP ONT Official Exam Certification Guide covers all the topics on the CCNP ONT exam 642-845 and examines your ability to optimize and apply effective quality of service (QoS) techniques for converged networks.

 

Every chapter in each Cisco Press Official Exam Certification Guide focuses your study and tests your knowledge of the subject through specially designed assessment features. Do I Know This Already? quizzes assess your knowledge and help you decide how much time you need to spend on each section. The detailed Foundation Topics sections review the exam topics you will need to master. Each chapter includes a Foundation Summary section full of tables and concise reviews for quick reference. Challenging chapter-ending review questions and scenario-based exercises test your knowledge of the subject matter, reinforce key concepts, and ensure that you understand how all the technologies work together in a real-world environment. Finally, each books companion CD-ROM has a robust, customizable test engine that allows you to take practice exams that mimic the real testing environment. You can take a full sample exam, focus on particular topic areas, randomize answers for reusability, track your progress, examine your strengths and weaknesses, and refer to an electronic version of the book to review concepts.

 

CCNP Certification Library, Fifth Edition, is part of a recommended learning path from Cisco that can include simulation and hands-on training from authorized Cisco Learning Partners and self-study products from Cisco Press. To find out more about instructor-led, e-learning, and hands-on instruction offered by authorized Cisco Learning Partners, please visit http://www.cisco.com/go/authorizedtraining.

 

Coverage of all four CCNP exams enables you to identify and fill your knowledge gap before the exam date.





Prepare for the BSCI 642-901, BCMSN 642-812, ISCW 642-825, and ONT 642-845 CCNP BCSI Official Exam Certification Guide, Fourth Edition, coverage includes essential routing principles for designing and managing scalable network; EIGRP, OSPF, and IS-IS functions and operations; basic BGP configuration; multicast routing; Cisco IOS routing features, including redistribution, route filtering, and DHCP; and IPv6 addressing and the transition from IPv4 to IPv6 CCNP BCMSN Official Exam Certification Guide, Fourth Edition, coverage includes Spanning Tree Protocol concepts; virtual LAN (VLAN), VLAN trunking, and inter-VLAN routing; gateway redundancy technologies and protocols; wireless LAN topologies, components, connectivity, and standards; implementing a Cisco Unified Wireless Network; wireless client access; access layer voice concepts; and preventing and mitigating attacks against switched network security CCNP ISCW Official Exam Certification Guide coverage includes the Cisco hierarchical network model as it pertains to the WAN; teleworker configuration and access with broadband technologies; Frame mode MPLS; IPsec VPN implementations; Cisco device hardening; Cisco IOS® Firewall features; and Cisco IOS Intrusion Prevention System(IPS) features CCNP ONT Official Exam Certification Guide coverage includes implementing a voice-over-IP (VoIP) network; implementing QoS on converged networks; specific IP QoS mechanisms for implementing the DiffServ QoS model; AutoQoS; wireless security; and basic wireless management

 

4 Companion CD-ROMs

The four companion CD-ROMs contain test banks with a total of more than 800 practice questions, including simulation-based questions, and the full text in electronic format.

 

This volume is part of the Exam Certification Guide Series from Cisco Press®. Books in this series provide officially developed exam preparation materials that offer assessment, review, and practice to help Cisco Career Certification candidates identify weaknesses, concentrate their study efforts, and enhance their confidence as exam day nears.

 

Category: Cisco PressCisco Certification

Covers: BSCI exam 642-901, BCMSN exam 642-812, ISCW exam 642-825, and ONT exam 642-845

 

$179.99 USA / $224.99 CAN

 

Muu info

The CCNP Official Exam Certification Library is a comprehensive study package for the current CCNP exams. Complete coverage of all the CCNP exam topics as provided by Cisco ILSG ensures readers will arrive at a complete understanding of what they need to master to succeed on the exam. This library contains the four Exam Certification Guides for each of the new CCNP exams, namely:

BSCI 642-901 BCMSN 642-812 ISCW 642-825 ONT 642-845

The books each follow the logical organization of the exam objectives. Material is presented in a concise manner, focusing on increasing readers' retention and recall of exam topics. Readers will organize their exam preparation through the use of the consistent features in these chapters:

Pre-Chapter Quizzes Foundation Review sections Chapter-Ending Quizzes Scenario-based exercises

The CD-ROMs contained with these books provide a customizable test engine with a test bank of over 200 practice questions. The CCNP Exam Certification Guides contained in this library are best of breed assessment, review, and practice tools. Well-regarded for their level of detail, assessment features, and challenging review questions and exercises, these books not only prepare readers to succeed on the exam, but also in their daily job as an IT professional.
Foreword xxvii
Introduction xxviii
Part I Introduction to Scalable Networks
3(54)
Network Design
5(32)
``Do I Know This Already?'' Quiz
5(5)
Foundation Topics
10(21)
Building Scalable Networks
10(1)
Scalability
10(2)
Multiplexing
12(1)
Enterprise Architecture
13(1)
Hierarchical Design Model
13(2)
Enterprise Composite Network Model
15(3)
Enterprise Campus
18(1)
Enterprise Edge
19(1)
Service Provider Edge
19(1)
SONA and IIN
20(2)
Phase 1: Integrated Transport
22(1)
Phase 2: Integrated Services
22(1)
Phase 3: Integrated Applications
23(1)
Services-Oriented Network Architecture
23(2)
Comparing Routing Protocols
25(1)
Distance Vector and Link State Routing Protocols
25(1)
Classless and Glassful Routing
26(1)
Interior and Exterior Gateway Protocols
27(1)
Convergence Times
28(1)
Proprietary and Open Protocols
28(1)
Summarizing Routing Protocol Characteristics
29(2)
Foundation Summary
31(4)
Q&A
35(2)
IP Address Planning and Summarization
37(20)
``Do I Know This Already?'' Quiz
37(4)
Foundation Topics
41(11)
Understanding IP Addresses
41(1)
Reviewing IP
41(1)
Reviewing Binary Numbering Fundamentals
41(2)
Calculating Classfully Assumed Network Ranges
43(1)
Calculating Network Ranges Using Subnet Masks
44(2)
Understanding Summarization
46(1)
Summarization Advantages
47(1)
Summarization Solutions
48(2)
Address Planning
50(2)
Foundation Summary
52(2)
Q&A
54(3)
Part II EIGRP
57(64)
EIGRP Principles
59(28)
``Do I Know This Already?'' Quiz
59(4)
Foundation Topics
63(20)
EIGRP Features and Advantages
63(1)
Neighborship and Reliable Incremental Updates
63(1)
Neighbor Discovery and Recovery
64(1)
Sophisticated Metric
64(2)
DUAL
66(4)
Queries
70(1)
Additional EIGRP Advantages
70(1)
Incremental Updates
71(1)
Multicast Addressing for Updates
71(1)
Unequal-Cost Load Sharing
71(1)
Understanding EIGRP Tables
72(1)
Creating the Neighbor Table
72(1)
Contents of the Neighbor Table
72(1)
Becoming a Neighbor
73(1)
Creating the Topology Table
73(1)
Maintaining the Topology Table
74(1)
Adding a Network to the Topology Table
75(1)
Removing a Path or Router from the Topology Table
76(1)
Finding an Alternative Path to a Remote Network
76(1)
Creating the Routing Table
77(1)
EIGRP Path Selection
77(1)
Updating the Routing Table in Passive Mode with DUAL
78(1)
Updating the Routing Table in Active Mode with DUAL
79(1)
EIGRP Network Design
80(1)
EIGRP Design Issues
81(1)
Guideline to Address Scaling Issues
82(1)
Foundation Summary
83(2)
Q&A
85(2)
Scalable EIGRP
87(34)
``Do I Know This Already?'' Quiz
87(4)
Foundation Topics
91(19)
Configuring EIGRP
91(1)
Required Commands for Configuring EIGRP
91(3)
Optional Commands for Configuring EIGRP
94(1)
Summarization with EIGRP
94(2)
Stub Routers
96(2)
Load Balancing in EIGRP
98(1)
Tuning the EIGRP Process
99(2)
Authentication
101(1)
Optional EIGRP Commands over WANs
102(1)
EIGRP Defaults in Bandwidth Utilization
102(2)
Configuring the Pure Point-to-Point Network
104(1)
Verifying the EIGRP Operation
105(1)
The show ip eigrp neighbors Command
105(1)
The show ip eigrp topology Command
106(2)
The show ip eigrp traffic Command
108(1)
Troubleshooting EIGRP
108(2)
Foundation Summary
110(2)
Q&A
112(2)
Scenarios
114(4)
Scenario 4-1
114(1)
Scenario 4-2
115(3)
Scenario Answers
118(3)
Scenario 4-1 Answers
118(1)
Scenario 4-2 Answers
119(2)
Part III OSPF
121(126)
Understanding Simple Single-Area OSPF
123(40)
``Do I Know This Already?'' Quiz
123(5)
Foundation Topics
128(28)
Understanding OSPF Fundamentals
128(1)
OSPF Snapshot
128(2)
Neighbors and Adjacencies
130(3)
Designated Router and Backup Designated Router
133(4)
Multiple Areas
137(1)
Problems with OSPF in a Single Area
137(1)
Area Structure
137(1)
OSPF Packet Types
138(1)
Configuring OSPF in a Single Area
139(1)
Required Commands for Configuring OSPF Within a Single Area
139(1)
Enabling the OSPF Routing Protocol
139(1)
The OSPF network Command
140(1)
Configuration Options for an Internal Router
141(1)
Defining the Router ID and Loopback Interfaces
141(1)
Changing the Default Cost
142(1)
Determining the Designated Router Using the priority Command
143(1)
A Working Configuration of OSPF on a Single Router
143(1)
Checking the Configuration of Single-Area OSPF
144(1)
The show ip ospf Command
144(2)
The show ip ospf database Command
146(1)
The show ip ospf interface Command
147(3)
The show ip ospf neighbor Command
150(2)
The show ip protocols Command
152(2)
The show ip route Command
154(1)
The debug Commands
155(1)
Foundation Summary
156(3)
Q&A
159(1)
Scenarios
160(1)
Scenario 5-1
160(1)
Scenario Answers
161(2)
Scenario 5-1 Answers
161(2)
OSPF Network Topologies
163(16)
``Do I Know This Already?'' Quiz
163(5)
Foundation Topics
168(8)
OSPF Network Topology Options
168(1)
Understanding the Differences Between OSPF Network Types
169(1)
Designated Routers and Topology Support
169(1)
Standards
169(1)
Neighbor Recognition
170(1)
Timers
170(1)
Subinterfaces
171(1)
Selecting an OSPF Design
171(1)
Configuring OSPF in a Nonbroadcast Environment
172(1)
Configuring OSPF with the Nonbroadcast OSPF Network Type
173(1)
Configuring the OSPF Point-to-Multipoint Network Type
174(1)
Configuring OSPF with the Broadcast Network Type
174(1)
Configuring OSPF with the Point-to-Point Network Type on a Frame Relay Subinterface
175(1)
Foundation Summary
176(1)
Q&A
177(2)
Using OSPF Across Multiple Areas
179(52)
``Do I Know This Already?'' Quiz
179(7)
Foundation Topics
186(30)
The Purpose of Multi-area OSPF
186(1)
The Features of Multi-area OSPF
186(1)
Router Types
187(1)
Link-State Advertisements
187(1)
Different Types of Areas
188(1)
The Operation of Multi-area OSPF
189(1)
ABR LSA Propagation
189(1)
OSPF Path Selection Between Areas
190(1)
Calculating the Cost of a Path to Another Area
191(1)
Design Considerations in Multi-area OSPF
192(1)
Capacity Planning in OSPF
192(2)
Number of Neighbors per Router
194(1)
Number of Areas per ABR
194(1)
Summarization
194(1)
Virtual Links
194(2)
Multi-area OSPF Over an NBMA Network
196(1)
Required Configuration Commands for a Multi-area OSPF Network
196(1)
Enabling the OSPF Routing Protocol
196(1)
Enabling the network Command
197(1)
Optional Configuration Commands for a Multi-area OSPF Network
198(1)
The area range Command
199(1)
The summary-address Command
200(1)
The area stub. Command
201(1)
The area area-id stub no-summary Command
202(2)
The area default-cost Command
204(1)
The area virtual-link Command
205(2)
Working Configuration of Multi-area OSPF
207(1)
Verifying the Configuration of OSPF in a Multi-area Network
208(1)
The show ip ospf border-routers Command
208(1)
The show ip route Command
209(1)
The show ip ospf virtual-links Command
210(1)
The show ip ospf database Command
211(1)
Troubleshooting a Multi-area OSPF Network
212(1)
The log-adjacency-changes Command
213(1)
Useful debug Commands
214(1)
The debug ip packet Command
214(1)
The debug ip ospf events Command
214(1)
Common Problems with Adjacencies
215(1)
Foundation Summary
216(2)
Q&A
218(2)
Scenarios
220(5)
Scenario 7-1
220(1)
Scenario 7-2
221(1)
Scenario 7-3
222(3)
Scenario Answers
225(6)
Scenario 7-1 Answers
225(1)
Scenario 7-2 Answers
225(3)
Scenario 7-3 Answers
228(3)
OSPF Advanced Topics
231(16)
``Do I Know This Already?' Quiz
231(3)
Foundation Topics
234(10)
Special OSPF Areas
234(2)
Stub Areas
236(3)
Totally Stubby Areas
239(1)
Not-So-Stubby Areas
240(1)
Troubleshooting
241(1)
Configuring OSPF Authentication
241(1)
Plaintext Password Authentication
242(1)
Message Digest Authentication
242(2)
Foundation Summary
244(1)
Q&A
245(2)
Part IV IS-IS
247(72)
Fundamentals of the Integrated IS-IS Protocol
249(32)
``Do I Know This Already?''Quiz
249(6)
Foundation Topics
255(19)
Introduction to Integrated IS-IS
255(1)
Understanding the Lingo
255(1)
Network Layer Protocols Used in Integrated IS-IS
256(1)
Helios
256(1)
LSP
257(1)
Comparing IS-IS and OSPF
257(1)
Areas
258(1)
LAN Topology
258(1)
Advertisements
259(1)
Encapsulation
260(1)
Future Development
261(1)
ISO Addressing for Integrated IS-IS
261(2)
NETs and NSAPs
263(1)
Rules of ISO Addressing
263(1)
Example of a NET Address
263(1)
Basic Principles of Area Routing
264(1)
IS-IS Adjacency
264(2)
Establishing Adjacencies on a Point-to-Point Link
266(1)
Establishing Adjacencies on a Broadcast Link
266(1)
Establishing Adjacencies on an NBMA Link
266(1)
Integrated IS-IS Operation
267(1)
The Update Process
267(1)
Sending and Receiving LSPs
267(2)
Determining Whether the LSP in the Database Is Valid
269(1)
The Decision Process
270(1)
Integrated IS-IS Design Considerations
271(1)
Area Design of Integrated IS-IS Routers
271(1)
Route Summarization
272(1)
Integrated IS-IS NBMA Design Solutions
273(1)
Foundation Summary
274(4)
Q&A
278(3)
Configuring Integrated IS-IS
281(38)
``Do I Know This Already?'' Quiz
281(4)
Foundation Topics
285(22)
Basic Configuration of Integrated IS-IS
285(1)
Optional Integrated IS-IS Commands
286(1)
Changing the Router from Level 1-2
286(2)
Configuring Summarization
288(2)
Configuring NBMA
290(1)
Broadcast Configuration over NBMA
290(2)
Point-to-Point Configuration over NBMA
292(2)
Verifying the Integrated IS-IS Operation
294(1)
The show clns neighbors Command
295(2)
The show clns interface Command
297(3)
The show isis database Command
300(1)
The show isis database detail Command
301(3)
Troubleshooting the Integrated IS-IS Operation
304(1)
The show isis spf-log Command
304(2)
The debug Commands
306(1)
Foundation Summary
307(2)
Q&A
309(1)
Scenarios
310(4)
Scenario 10-1
310(1)
Scenario 10-2
311(3)
Scenario Answers
314(5)
Scenario 10-1 Answers
314(2)
Scenario 10-2 Answers
316(3)
Part V Cisco IOS Routing Features
319(74)
Implementing Redistribution and Controlling Routing Updates
321(46)
``Do I Know This Already?'' Quiz
321(5)
Foundation Topics
326(32)
Understanding Redistribution Fundamentals
326(3)
Understanding the Routing Decisions That Affect Redistribution
329(1)
Routing Metrics and Redistribution
329(1)
Path Selection Between Routing Protocols
330(1)
Potential Problems with Redistribution
330(1)
Avoiding Routing Loops When Redistributing
331(2)
Avoiding Suboptimal Routing Decisions When Redistributing
333(1)
Avoiding Problems with Network Convergence When Redistributing
334(1)
Exchange of Routing Protocol-Specific Parameters
334(1)
Controlling Routing Updates During Redistribution
335(1)
Passive Interfaces
335(1)
Static Routes
336(1)
Default Routes
336(1)
The Null Interface
337(1)
Distribute Lists
338(1)
Route Maps
338(1)
Configuring Redistribution
339(1)
Redistribution Configuration Syntax
340(1)
Configuring the Default Metric
341(1)
Configuring the Default Metric for OSPF, IS-IS, RIP, or BGP
342(1)
Configuring the Default Metric for EIGRP
343(1)
Configuring the Administrative Distance
344(1)
Configuration Commands to Control Routing Updates in Redistribution
345(1)
Configuring the Passive Interface
346(1)
Configuring Static Routes
346(2)
Configuring Default Routes
348(1)
Redistribution Case Studies
348(1)
Example 1: Route Redistribution Without Redundant Paths
348(2)
Example 2: Route Redistribution with Redundant Paths
350(3)
Example 3: A Default Network in a Redistributed Environment
353(1)
Controlling Routing Updates with Filtering
354(2)
Verifying, Maintaining, and Troubleshooting the Redistribution and Filtering Implementation
356(1)
The traceroute Command
357(1)
The Extended ping Command
357(1)
Using traceroute and Extended ping
357(1)
Foundation Summary
358(2)
Q&A
360(1)
Scenario
361(2)
Scenario 11-1
361(2)
Scenario Answers
363(4)
Scenario 11-1 Answers
363(4)
Controlling Redistribution with Route Maps
367(14)
``Do I Know This Already?'' Quiz
367(4)
Foundation Topics
371(6)
Understanding Route Maps
371(1)
Route Map Characteristics
371(1)
Pseudo-code Example
372(1)
Configuring Route Maps
373(1)
The match Commands for Redistribution with Route-Maps
374(1)
The set Commands for Redistributing with Route-Maps
375(1)
Monitoring the Configuration of Eoute Maps and Redistribution
376(1)
Foundation Summary
377(2)
Q&A
379(2)
Dynamic Host Control Protocol
381(12)
``Do I Know This Already?'' Quiz
381(4)
Foundation Topics
385(5)
Understanding DHCP
385(1)
DHCP Roles
386(1)
Acting as a DHCP Server
386(1)
Acting as a DHCP Relay
387(1)
Acting as a DHCP Client
388(1)
Troubleshooting DHCP
389(1)
Foundation Summary
390(1)
Q&A
391(2)
Part VI BGP
393(64)
BGP Concepts
395(16)
``Do I Know This Already?'' Quiz
395(4)
Foundation Topics
399(8)
Introduction to BGP
399(1)
The Context for BGP
399(1)
BGP Route Stability
399(1)
BGP Operation Basics
399(2)
BGP Record Keeping
401(1)
BGP and Hierarchy
401(1)
When to Use BGP
402(1)
Connecting to the Internet with BGP
402(1)
Redundant Connections to the Internet---Multihoming
402(1)
Receiving Routing Information from the Internet
403(2)
Synchronization
405(1)
BGP States
405(2)
Foundation Summary
407(2)
Q&A
409(2)
BGP Neighbors
411(26)
``Do I Know This Already?'' Quiz
411(4)
Foundation Topics
415(9)
Basic BGP Configuration Commands
415(1)
Enabling BGP
415(1)
Identifying Neighbors and Defining Peer Groups
415(3)
Source IP Address
418(1)
Forcing the Next-Hop Address
419(1)
Defining the Networks to Be Advertised
420(1)
Aggregating Routes
420(1)
Authentication
421(1)
Managing and Verifying the BGP Configuration
421(1)
Resetting Neighbors
422(2)
Foundation Summary
424(2)
Q&A
426(1)
Scenarios
427(5)
Scenario 15-1
427(1)
Scenario 15-2
428(1)
Scenario 15-3
429(3)
Scenario Answers
432(5)
Scenario 15-1 Answers
432(1)
Scenario 15-2 Answers
433(1)
Scenario 15-3 Answers
434(3)
Controlling BGP Route Selection
437(20)
``Do I Know This Already?'' Quiz
437(5)
Foundation Topics
442(9)
BGP Attributes
442(1)
Controlling BGP Path Selection
443(1)
Using the Weight Attribute
444(1)
Using the Local-Preference Attribute
444(3)
Using the MED Attribute
447(1)
Verifying the Configuration of Attributes
448(3)
Foundation Summary
451(2)
Q&A
453(1)
Scenarios
454(1)
Scenario 16-1
454(1)
Scenario Answers
455(2)
Scenario 16-1 Answers
455(2)
Part VII Multicasting
457(58)
What Is Multicasting?
459(18)
``Do I Know This Already?'' Quiz
459(4)
Foundation Topics
463(11)
IP Styles of Addressing
463(1)
Unicasts
463(1)
Broadcasts
463(1)
Multicasts
464(1)
Video over IP Scenario
465(3)
Multicast Addressing
468(1)
Multicast MAC Addressing
468(3)
Multicast IP Addressing
471(1)
Current Multicast Use
472(1)
Multicast Applications
472(1)
Multicast Issues
473(1)
Foundation Summary
474(1)
Q&A
475(2)
IGMP
477(16)
``Do I Know This Already?'' Quiz
477(4)
Foundation Topics
481(8)
Data Link Layer Support for Multicast
481(1)
Understanding IGMP
482(1)
IGMPv1
482(1)
IGMPv2
483(1)
IGMPv2 Features
483(1)
IGMPv2 Operation
484(1)
IGMPv3
484(1)
Determining the Current IGMP Version
485(1)
Configuring IGMP
485(1)
IGMP Groups
486(1)
IGMP Snooping
487(2)
Foundation Summary
489(2)
Q&A
491(2)
Configuring Multicast
493(22)
``Do I Know This Already?'' Quiz
493(5)
Foundation Topics
498(13)
The Central Multicast Problem
498(1)
Routing Multicast Traffic
498(1)
Reverse Path Forwarding
499(1)
Multicast Trees
499(1)
Distribution Trees
500(1)
Dense and Sparse Multicast Routing Protocols
500(1)
PIM
500(1)
PIM Dense Mode
501(1)
PIM Sparse Mode
502(2)
PIM Sparse-Dense Mode
504(1)
PIM Version 1
504(1)
PIM Version 2
505(1)
Enabling PIM Sparse-Dense Mode
505(1)
Setting Up Multicast Networking
506(1)
Enabling Multicast Routing
506(1)
Turning on PIM
506(1)
Configuring RPs
506(1)
Verifying Routes
507(1)
Verifying Neighbors
508(1)
Verifying Rendezvous Points
509(1)
Verifying Multicast Routing
510(1)
Foundation Summary
511(2)
Q&A
513(2)
Part VIII IPv6
515(56)
Introduction to IPv6 and IPv6 Addressing
517(26)
``Do I Know This Already?'' Quiz
517(4)
Foundation Topics
521(14)
Introduction to IPv6
521(1)
The Need for a Larger Address Space
521(1)
IPv6 Features
522(1)
The IPv6 Packet Header
523(2)
Checksum
525(1)
Fragmentation
525(1)
Flow Label
526(1)
IPv6 Addressing
526(1)
Representing IPv6 Addresses
526(1)
Types of IPv6 Addresses
526(1)
IPv6 Interface Identifiers
527(1)
IPv6 Unicast Addresses
528(1)
IPv6 Global Aggregatable Unicast Addresses
528(1)
IPv6 Link-Local Unicast Addresses
529(1)
IPv6 Anycast Addresses
530(1)
IPv6 Multicast Addresses
531(1)
IPv6 Address Assignment
532(1)
Stateless Autoconfiguration
532(1)
DHCPv6 and Stateless DHCPv6
533(1)
IPv6 Mobility
533(2)
Foundation Summary
535(3)
Q&A
538(1)
Scenarios
539(4)
Scenario 20-1
539(1)
Scenario 20-1 Answers
540(3)
IPv6 Routing Protocols, Configuration, and Transitioning from IPv4
543(28)
``Do I Know This Already?'' Quiz
543(4)
Foundation Topics
547(17)
IPv6 Routing Overview
547(1)
Static Routes
547(1)
RIPng
548(1)
EIGRP for IPv6
548(1)
ISIS for IPv6
548(1)
MP-BGP4 for IPv6
548(1)
OSPFv3
548(1)
OSPFv2 and OSPFv3 Similarities
548(1)
OSPFv2 and OSPFv3 Differences
549(1)
OSPFv3 LSA Types
550(1)
Configuring and Verifying IPv6 and OSPFv3
551(1)
IPv6 Configuration
551(1)
OSPFv3 Configuration
552(2)
Verifying IPv6 and OSPFv3 Configuration
554(1)
shcav ipv6 route, clear ipv6, and ping ipv6 Commands
554(1)
show ipv6 interface Command
555(1)
show ipv6 ospf interface Command
555(1)
show ipv6 ospf Command
556(1)
show ipv6 ospf neighbor Command
557(1)
show ipv6 ospf database Command
557(2)
Transitioning from IPv4 to IPv6
559(1)
Dual Stack
559(1)
Tunneling'
560(1)
Manual Tunnels
560(1)
IPv6-to-IPv4 (6-W-4) Tunnels
561(1)
Teredo
562(1)
ISATAP
562(1)
Translation
563(1)
Foundation Summary
564(3)
Q&A
567(1)
Scenarios
568(3)
Scenario 21-1
568(1)
Scenario 21-1 Answers
569(2)
Appendix A Answers to
Chapter ``Do I Know This Already?'' Quizzes and Q&A Sections		 571(47)
Index 618
Foreword xxi
Introduction xxii
Part I Remote Connectivity Best Practices
3(162)
Describing Network Requirements
5(28)
``Do I Know This Already?'' Quiz
5(4)
Foundation Topics
9(1)
Describing Network Requirements
9(1)
Intelligent Information Network
9(2)
SONA
11(4)
Networked Infrastructure Layer
13(1)
Interactive Services Layer
13(2)
Application Layer
15(1)
Cisco Network Models
15(12)
Cisco Hierarchical Network Model
16(1)
Campus Network Architecture
17(2)
Branch Network Architecture
19(2)
Data Center Architecture
21(2)
Enterprise Edge Architecture
23(1)
Teleworker Architecture
24(1)
WAN/MAN Architecture
25(2)
Remote Connection Requirements in a Converged Network
27(3)
Central Site
27(1)
Branch Office
27(1)
SOHO Site
28(1)
Integrated Services for Secure Remote Access
28(2)
Foundation Summary
30(1)
Q&A
31(2)
Topologies for Teleworker Connectivity
33(16)
``Do I Know This Already?'' Quiz
33(3)
Foundation Topics
36(1)
Facilitating Remote Connections
36(4)
UN and the Teleworker
36(1)
Enterprise Architecture Framework
37(1)
Remote Connection Options
38(1)
Traditional Layer 2 Connections
38(1)
Service Provider MPLS VPN
39(1)
Site-to-Site VPN over Public Internet
39(1)
Challenges of Connecting Teleworkers
40(6)
Infrastructure Options
41(1)
Infrastructure Services
42(1)
Teleworker Components
43(2)
Traditional Teleworker versus Business-Ready Teleworker
45(1)
Foundation Summary
46(1)
Q&A
47(2)
Using Cable to Connect to a Central Site
49(26)
``Do I Know This Already?'' Quiz
49(5)
Foundation Topics
54(1)
Cable Access Technologies
54(5)
Cable Technology Terminology
54(2)
Cable System Standards
56(1)
Cable System Components
56(2)
Cable Features
58(1)
Cable System Benefits
59(1)
Radio Frequency Signals
59(3)
Digital Signals over RF Channels
61(1)
Data over Cable
62(4)
Hybrid Fiber-Coaxial Networks
63(1)
Data Transmission
64(2)
Cable Technology Issues
66(1)
Provisioning Cable Modems
67(3)
Foundation Summary
70(2)
Q&A
72(3)
Using DSL to Connect to a Central Site
75(34)
``Do I Know This Already?'' Quiz
75(6)
Foundation Topics
81(1)
DSL Features
81(4)
POTS Coexistence
83(2)
DSL Limitations
85(2)
DSL Variants
87(2)
Asymmetric DSL Types
87(1)
Symmetric DSL Types
88(1)
ADSL Basics
89(1)
ADSL Modulation
89(4)
CAP
90(1)
DMT
91(2)
Data Transmission over ADSL
93(3)
RFC 1483/2684 Bridging
94(1)
PPP Background
95(1)
PPP over Ethernet
96(5)
Discovery Phase
97(2)
PPP Session Phase
99(1)
PPPoE Session Variables
99(1)
Optimizing PPPoE MTU
100(1)
PPP over ATM
101(3)
Foundation Summary
104(2)
Q&A
106(3)
Configuring DSL Access with PPPoE
109(18)
``Do I Know This Already?'' Quiz
109(4)
Foundation Topics
113(1)
Configure a Cisco Router as a PPPoE Client
113(1)
Configure an Ethernet/ATM Interface for PPPoE
114(1)
Configure the PPPoE DSL Dialer Interface
115(1)
Configure Port Address Translation'
116(2)
Configure DHCP for DSL Router Users
118(1)
Configure Static Default Route on a DSL Router
119(1)
The Overall CPE Router Configuration
120(3)
Foundation Summary
123(1)
Q&A
124(3)
Configuring DSL Access with PPPoA
127(18)
``Do I Know This Already?'' Quiz
127(3)
Foundation Topics
130(1)
Configure a Cisco Router as a PPPoA Client
130(4)
PPP over AAL5 Connections
131(1)
VCMultiplexed PPP over AAL5
132(1)
LLC Encapsulated PPP over AAL5
132(2)
Cisco PPPoA
134(1)
Configure an ATM Interface for PPPoA
134(1)
Configure the PPPoA DSL Dialer and Virtual-Template Interfaces
135(1)
Configure Additional PPPoA Elements
136(1)
The Overall CPE Router Configuration
136(5)
Foundation Summary
141(1)
Q&A
142(3)
Verifying and Troubleshooting ADSL Configurations
145(20)
``Do I Know This Already?'' Quiz
145(4)
Foundation Topics
149(1)
DSL Connection Troubleshooting
149(1)
Layers of Trouble to Shoot
149(1)
Isolating Physical Layer Issues
150(6)
Layer 1 Anatomy
151(1)
ADSL Physical Connectivity
151(1)
Where to Begin
152(2)
Playing with Colors
154(1)
Tangled Wires
154(1)
Keeping the Head on Straight
154(1)
DSL Operating Mode
155(1)
Isolating Data Link Layer Issues
156(5)
PPP Negotiation
157(4)
Foundation Summary
161(1)
Q&A
162(3)
Part II Implementing Frame Mode MPLS
165(84)
The MPLS Conceptual Model
167(18)
``Do I Know This Already?'' Quiz
167(3)
Foundation Topics
170(1)
Introducing MPLS Networks
170(9)
Traditional WAN Connections
170(4)
MPLS WAN Connectivity
174(1)
MPLS Terminology
175(1)
MPLS Features
176(1)
MPLS Concepts
177(2)
Router Switching Mechanisms
179(2)
Standard IP Switching
179(1)
CEF Switching
180(1)
Foundation Summary
181(1)
Q&A
182(3)
MPLS Architecture
185(22)
``Do I Know This Already?'' Quiz
185(4)
Foundation Topics
189(1)
MPLS Components
189(1)
MPLS Labels
190(4)
Label Stacks
192(1)
Frame Mode MPLS
193(1)
Label Switching Routers
194(1)
Label Allocation in Frame Mode MPLS Networks
195(4)
UB, LFIB, and FIB
195(4)
Label Distribution
199(4)
Packet Propagation
200(1)
Interim Packet Propagation
201(1)
Further Label Allocation
201(2)
Foundation Summary
203(1)
Q&A
204(3)
Configuring Frame Mode MPLS
207(18)
``Do I Know This Already?'' Quiz
207(3)
Foundation Topics
210(1)
Configuring CEF
211(3)
Configuring MPLS on a Frame Mode Interface
214(3)
Configuring MTU Size
217(4)
Foundation Summary
221(1)
Q&A
222(3)
MPLS VPN Technologies
225(24)
``Do I Know This Already?'' Quiz
225(4)
Foundation Topics
229(1)
MPLS VPN Architecture
229(1)
Traditional VPNs
230(2)
Layer 1 Overlay
230(1)
Layer 2 Overlay
231(1)
Layer 3 Overlay
232(1)
Peer-to-Peer VPNs
232(4)
VPN Benefits
234(1)
VPN Drawbacks
234(2)
MPLS VPNs
236(9)
MPLS VPN Terminology
237(1)
CE Router Architecture
237(1)
PE Router Architecture
238(1)
P Router Architecture
239(1)
Route Distinguishers
239(3)
Route Targets
242(1)
End-to-End Routing Update Flow
242(1)
MPLS VPN Packet Forwarding
243(1)
MPLS VPN PHP
244(1)
Foundation Summary
245(1)
Q&A
246(3)
Part III IPsecVPNs
249(180)
IPsec Overview
251(24)
``Do I Know This Already?'' Quiz
251(5)
Foundation Topics
256(1)
IPsec
256(7)
IPsec Features
257(1)
IPsec Protocols
258(1)
IKE
258(1)
ESP
258(1)
AH
259(1)
IPsec Modes
259(2)
IPsec Headers
261(1)
Peer Authentication
262(1)
Internet Key Exchange (IKE)
263(3)
IKE Protocols
263(1)
IKE Phases
263(1)
IKE Modes
264(1)
IKE Main Mode
264(1)
IKE Aggressive Mode
264(1)
IKE Quick Mode
265(1)
Other IKE Functions
265(1)
Encryption Algorithms
266(4)
Symmetric Encryption
267(1)
Asymmetric Encryption
267(3)
Public Key Infrastructure
270(2)
Foundation Summary
272(1)
Q&A
273(2)
Site-to-Site VPN Operations
275(52)
``Do I Know This Already?'' Quiz
275(7)
Foundation Topics
282(1)
Site-to-Site VPN Overview
282(1)
Creating a Site-to-Site IPsec VPN
283(10)
Step 1: Specify Interesting Traffic
284(1)
Step 2: IKE Phase 1
284(2)
IKE Transform Sets
286(1)
Diffie-Hellman Key Exchange
287(1)
Peer Authentication
288(1)
Step 3: IKE Phase 2
288(1)
IPsec Transform Sets
289(2)
Security Associations
291(1)
SA Lifetime
292(1)
Step 4: Secure Data Transfer
292(1)
Step 5: IPsec Tunnel Termination
292(1)
Site-to-Site IPsec Configuration Steps
293(7)
Step 1: Configure the ISAKMP Policy
293(2)
Step 2: Configure the IPsec Transform Sets
295(2)
Step 3: Configure the Crypto ACL
297(1)
Step 4: Configure the Crypto Map
297(1)
Step 5: Apply the Crypto Map to the Interface
298(1)
Step 6: Configure the Interface ACL
299(1)
Security Device Manager Features and Interface
300(3)
Configuring a Site-to-Site VPN in SDM
303(11)
Site-to-Site VPN Wizard
305(1)
Quick Setup
306(1)
Step-by-Step Setup
307(7)
Testing the IPsec VPN Tunnel
314(1)
Monitoring the IPsec VPN Tunnel
314(3)
Foundation Summary
317(6)
Q&A
323(4)
GRE Tunneling over IPsec
327(26)
``Do I Know This Already?'' Quiz
327(5)
Foundation Topics
332(1)
GRE Characteristics
332(1)
GRE Header
333(2)
Basic GRE Configuration
335(1)
Secure GRE Tunnels
336(3)
Configure GRE over IPsec Using SDM
339(8)
Launch the GRE over IPsec Wizard
339(1)
Step 1: Create the GRE Tunneh
340(1)
Step 2: Create a Backup GRE Tunnel
341(1)
Steps 3-5: IPsec VPN Information
342(1)
Step 6: Routing Information
343(3)
Step 7: Validate the GRE over IPsec Configuration
346(1)
Foundation Summary
347(3)
Q&A
350(3)
IPsec High Availability Options
353(22)
``Do I Know This Already?'' Quiz
353(5)
Foundation Topics
358(1)
Sources of Failures
358(1)
Failure Mitigation
358(1)
Failover Strategies
359(9)
IPsec Stateless Failover
360(1)
Dead Peer Detection
360(2)
IGP Within a GRE over IPsec Tunnel
362(1)
HSRP
363(3)
IPsec Stateful Failover
366(2)
WAN Backed Up by an IPsec VPN
368(2)
Foundation Summary
370(3)
Q&A
373(2)
Configuring Cisco Easy VPN
375(36)
``Do I Know This Already?'' Quiz
375(4)
Foundation Topics
379(1)
Cisco Easy VPN Components
379(3)
Easy VPN Remote
379(2)
Easy VPN Server Requirements
381(1)
Easy VPN Connection Establishment
382(3)
IKE Phase 1
383(1)
Establishing an ISAKMPSA
384(1)
SA Proposal Acceptance
384(1)
Easy VPN User Authentication
384(1)
Mode Configuration
385(1)
Reverse Route Injection
385(1)
IPsec Quick Mode
385(1)
Easy VPN Server Configuration
385(11)
User Configuration
388(1)
Easy VPN Server Wizard
389(7)
Monitoring the Easy VPN Server
396(2)
Troubleshooting the Easy VPN Server
398(9)
Foundation Summary
407(1)
Q&A
408(3)
Implementing the Cisco VPN Client
411(18)
``Do I Know This Already?'' Quiz
411(3)
Foundation Topics
414(1)
Cisco VPN Client Installation and Configuration Overview
414(1)
Cisco VPN Client Installation
414(4)
Cisco VPN Client Configuration
418(7)
Connection Entries
419(1)
Authentication Tab
419(1)
Transport Tab
420(2)
Backup Servers Tab
422(1)
Dial-Up Tab
422(1)
Finish the Connection Configuration
423(2)
Foundation Summary
425(1)
Q&A
426(3)
Part IV Device Hardening
429(160)
Cisco Device Hardening
431(28)
``Do I Know This Already?'' Quiz
431(4)
Foundation Topics
435(1)
Router Vulnerability
435(6)
Vulnerable Router Services
436(1)
Unnecessary Services and Interfaces
436(2)
Common Management Services
438(1)
Path Integrity Mechanisms
439(1)
Probes and Scans
439(1)
Terminal Access Security
440(1)
Gratuitous and Proxy ARP
440(1)
Using AutoSecure to Secure a Router
441(2)
Using SDM to Secure a Router
443(9)
SDM Security Audit Wizard
444(3)
SDM One-Step Lockdown Wizard
447(1)
AutoSecure Default Configurations
448(2)
SDM One-Step Lockdown Default Configurations
450(2)
Foundation Summary
452(4)
Q&A
456(3)
Securing Administrative Access
459(32)
``Do I Know This Already?'' Quiz
459(7)
Foundation Topics
466(1)
Router Access
466(1)
Password Considerations
467(1)
Set Login Limitations
468(3)
Setup Mode
471(1)
CLI Passwords
472(1)
Additional Line Protections
473(1)
Password Length Restrictions
474(1)
Password Encryption
475(1)
Create Banners
476(1)
Provide Individual Logins
477(1)
Create Multiple Privilege Levels
478(2)
Role-Based CLI
480(3)
Prevent Physical Router Compromise
483(2)
Foundation Summary
485(3)
Q&A
488(3)
Using AAA to Scale Access Control
491(28)
``Do I Know This Already?'' Quiz
491(4)
Foundation Topics
495(1)
AAA Components
495(1)
AAA Access Modes
495(1)
Understanding the TACACS+ and RADIUS Protocols
496(2)
UDP Versus TCP
496(1)
Packet Encryption
497(1)
Authentication and Authorization
497(1)
Multiprotocol Support
497(1)
Router Management
497(1)
Interoperability
498(1)
Configuring AAA Using the CLI
498(6)
RADIUS Configuration
498(1)
TACACS+ Configuration
499(1)
AAA-Related Commands
499(1)
aaa new-model Command
499(1)
radius-server host Command
499(1)
tacacs-server host Command
500(1)
radius-server key and tacacs-server key Commands
501(1)
username root password Command
501(1)
aaa authentication ppp Command
501(1)
aaa authorization Command
502(1)
aaa accounting Command
503(1)
Configuring AAA Using SDM
504(6)
Using Debugging for AAA
510(4)
debug aaa authentication Command
511(1)
debug aaa authorization Command
511(1)
debug aaa accounting Command
512(1)
debug radius Command
512(1)
debug tacacs Command
513(1)
Foundation Summary
514(2)
Q&A
516(3)
Cisco IOS Threat Defense Features
519(17)
``Do I Know This Already?'' Quiz
519(4)
Foundation Topics
523(1)
Layered Device Structure
523(1)
Firewall Technology Basics
524(4)
Packet Filtering
525(1)
Application Layer Gateway
526(1)
Stateful Packet Filtering
526(2)
Cisco IOS Firewall Feature Set
528(1)
Cisco IOS Firewall
528(1)
Authentication Proxy
529(1)
Cisco IOS IPS
529(1)
Cisco IOS Firewall Operation
529(1)
Cisco IOS Firewall Packet Inspection and Proxy Firewalls
530(2)
Foundation Summary
532(2)
Q&A
534(2)
Implementing Cisco IOS Firewalls
536(27)
``Do I Know This Already?'' Quiz
536(4)
Foundation Topics
540(1)
Configure a Cisco IOS Firewall Using the CLI
540(4)
Step 1: Choose an Interface and Packet Direction to Inspect
540(1)
Step 2: Configure an IP A CLfor the Interface
540(1)
Step 3: Define the Inspection Rules
541(1)
Step 4: Apply the Inspection Rules and the ACL to the Interface
542(1)
Step 5: Verify the Configuration
543(1)
Configure a Basic Firewall Using SDM
544(3)
Configure an Advanced Firewall Using SDM
547(10)
Foundation Summary
557(3)
Q&A
560(3)
Implementing Cisco IDS and IPS
563(26)
``Do I Know This Already?'' Quiz
563(4)
Foundation Topics
567(1)
IDS and IPS Functions and Operations
567(1)
Categories of IDS and IPS
568(2)
IDS and IPS Signatures
570(1)
Signature Reaction
571(1)
Cisco IOS IPS Configuration
571(5)
SDM Configuration
576(7)
Foundation Summary
583(4)
Q&A
587(2)
Appendix A Answers to the ``Do I Know This Already?'' Quizzes and Q&A Sections 589(41)
Index 630
Foreword xxiv
Introduction xxv
Part I Overview and Design of a Campus Network
3(52)
Campus Network Overview
5(22)
``Do I Know This Already?'' Quiz
5(4)
Switching Functionality
9(4)
Layer 2 Switching
10(1)
Layer 3 Routing
11(1)
Layer 3 Switching
11(1)
Layer 4 Switching
12(1)
Multilayer Switching
12(1)
Campus Network Models
13(7)
Shared Network Model
13(2)
LAN Segmentation Model
15(3)
Network Traffic Models
18(1)
Predictable Network Model
19(1)
Hierarchical Network Design
20(7)
Access Layer
21(1)
Distribution Layer
21(1)
Core Layer
22(5)
Modular Network Design
27(28)
``Do I Know This Already?'' Quiz
27(4)
Modular Network Design
31(10)
Switch Block
32(1)
Sizing a Switch Block
33(2)
Core Block
35(1)
Collapsed Core
36(1)
Dual Core
37(1)
Core Size in a Campus Network
38(1)
Other Building Blocks
39(1)
Server Farm Block
39(1)
Network Management Block
40(1)
Enterprise Edge Block
40(1)
Service Provider Edge Block
41(1)
Can I Use Layer 2 Distribution Switches?
41(1)
Evaluating an Existing Network
42(13)
Discovering the Network Topology
43(4)
Migrating to a Hierarchical Design
47(8)
Part II Building a Campus Network
55(230)
Switch Operation
57(24)
``Do I Know This Already?'' Quiz
57(4)
Layer 2 Switch Operation
61(4)
Transparent Bridging
61(2)
Follow That Frame!
63(2)
Multilayer Switch Operation
65(4)
Types of Multilayer Switching
65(1)
Follow That Packet!
66(2)
Multilayer Switching Exceptions
68(1)
Tables Used in Switching
69(5)
Content Addressable Memory
69(1)
Ternary Content Addressable Memory
70(1)
TCAM Structure
70(2)
TCAM Example
72(1)
Port Operations in TCAM
73(1)
Troubleshooting Switching Tables
74(7)
CAM Table Operation
74(1)
TCAM Operation
75(6)
Switch Port Configuration
81(28)
``Do I Know This Already?'' Quiz
81(4)
Ethernet Concepts
85(7)
Ethernet (10Mbps)
85(1)
Fast Ethernet
86(1)
Full-Duplex Fast Ethernet
87(2)
Gigabit Ethernet
89(1)
10-Gigabit Ethernet
90(2)
Connecting Switch Block Devices
92(2)
Console Port Cables/Connectors
92(1)
Ethernet Port Cables and Connectors
92(1)
Gigabit Ethernet Port Cables and Connectors
93(1)
Switch Port Configuration
94(15)
Selecting Ports to Configure
94(2)
Identifying Ports
96(1)
Port Speed
96(1)
Port Duplex Mode
97(1)
Managing Error Conditions on a Switch Port
97(1)
Detecting Error Conditions
98(1)
Automatically Recover from Error Conditions
99(1)
Enable and Use the Switch Port
99(1)
Troubleshooting Port Connectivity
100(1)
Looking for the Port State
100(1)
Looking for Speed and Duplex Mismatches
100(9)
VLANs and Trunks
109(26)
``Do I Know This Already?'' Quiz
109(4)
Virtual LANs
113(6)
VLAN Membership
114(1)
Static VLANs
114(1)
Configuring Static VLANs
115(2)
Dynamic VLANs
117(1)
Deploying VLANs
117(1)
End-to-End VLANs
118(1)
Local VLANs
118(1)
VLAN Trunks
119(5)
VLAN Frame Identification
121(1)
Inter-Switch Link Protocol
121(1)
IEEE 802.1Q Protocol
122(1)
Dynamic Trunking Protocol
123(1)
VLAN Trunk Configuration
124(11)
VLAN Trunk Configuration
124(2)
Trunk Configuration Example
126(2)
Troubleshooting VLANs and Trunks
128(7)
VLAN Trunking Protocol
135(24)
``Do I Know This Already?'' Quiz
135(4)
VLAN Trunking Protocol
139(5)
VTP Domains
139(1)
VTP Modes
139(1)
VTP Advertisements
140(4)
VTP Configuration
144(5)
Configuring a VTP Management Domain
145(1)
Configuring the VTP Mode
145(1)
Configuring the VTP Version
146(2)
VTP Configuration Example
148(1)
VTP Status
148(1)
VTP Pruning
149(3)
Enabling VTP Pruning
151(1)
Troubleshooting VTP
152(7)
Aggregating Switch Links
159(22)
``Do I Know This Already?'' Quiz
159(5)
Switch Port Aggregation with EtherChannel
164(5)
Bundling Ports with EtherChannel
165(1)
Distributing Traffic in EtherChannel
165(2)
Configuring EtherChannel Load Balancing
167(2)
EtherChannel Negotiation Protocols
169(1)
Port Aggregation Protocol
169(1)
Link Aggregation Control Protocol
169(1)
EtherChannel Configuration
170(2)
Configuring a PAgP EtherChannel
170(1)
Configuring a LACP EtherChannel
171(1)
Troubleshooting an EtherChannel
172(9)
Traditional Spanning Tree Protocol
181(34)
``Do I Know This Already?'' Quiz
181(4)
IEEE 802.1D Overview
185(21)
Bridging Loops
185(4)
Preventing Loops with Spanning Tree Protocol
189(1)
Spanning-Tree Communication: Bridge Protocol Data Units
189(2)
Electing a Root Bridge
191(1)
Electing Root Ports
192(3)
Electing Designated Ports
195(2)
STP States
197(2)
STP Timers
199(1)
Topology Changes
200(1)
Direct Topology Changes
201(1)
Indirect Topology Changes
202(2)
Insignificant Topology Changes
204(2)
Types of STP
206(9)
Common Spanning Tree
206(1)
Per-VLAN Spanning Tree
206(1)
Per-VLAN Spanning Tree Plus
207(8)
Spanning Tree Configuration
215(28)
``Do I Know This Already?'' Quiz
215(4)
STP Root Bridge
219(10)
Root Bridge Placement
219(4)
Root Bridge Configuration
223(3)
Spanning-Tree Customization
226(1)
Tuning the Root Path Cost
227(1)
Tuning the Port ID
228(1)
Tuning Spanning-Tree Convergence
229(3)
Modifying STP Timers
230(1)
Manually Configuring STP Timers
230(1)
Automatically Configuring STP Timers
231(1)
Redundant Link Convergence
232(5)
PortFast: Access-Layer Nodes
233(1)
UplinkFast: Access-Layer Uplinks
234(2)
BackboneFast: Redundant Backbone Paths
236(1)
Troubleshooting STP
237(6)
Protecting the Spanning Tree Protocol Topology
243(16)
``Do I Know This Already?'' Quiz
243(4)
Protecting Against Unexpected BPDUs
247(3)
Root Guard
247(1)
BPDU Guard
248(2)
Protecting Against Sudden Loss of BPDUs
250(4)
Loop Guard
250(1)
UDLD
251(3)
Using BPDU Filtering to Disable STP on a Port
254(1)
Troubleshooting STP Protection
254(5)
Advanced Spanning Tree Protocol
259(26)
``Do I Know This Already?'' Quiz
259(4)
Rapid Spanning Tree Protocol
263(7)
RSTP Port Behavior
263(2)
BPDUs in RSTP
265(1)
RSTP Convergence
265(1)
Port Types
266(1)
Synchronization
267(2)
Topology Changes and RSTP
269(1)
RSTP Configuration
270(1)
Rapid Per-VLAN Spanning Tree Protocol
270(2)
Multiple Spanning Tree Protocol
272(13)
MST Overview
274(1)
MST Regions
274(1)
Spanning Tree Instances Within MST
275(1)
1ST Instances
275(1)
MST Instances
275(2)
MST Configuration
277(8)
Part III Layer 3 Switching
285(66)
Multilayer Switching
287(26)
``Do I Know This Already?'' Quiz
287(4)
InterVLAN Routing
291(4)
Types of Interfaces
292(1)
Configuring InterVLAN Routing
292(1)
Layer 2 Port Configuration
292(1)
Layer 3 Port Configuration
293(1)
SVI Port Configuration
294(1)
Multilayer Switching with CEF
295(9)
Traditional MLS Overview
295(1)
CEF Overview
295(1)
Forwarding Information Base
296(3)
Adjacency Table
299(3)
Packet Rewrite
302(1)
Configuring CEF
303(1)
Fallback Bridging
303(1)
Verifying Multilayer Switching
304(9)
Verifying InterVLAN Routing
304(3)
Verifying CEF
307(1)
Verifying Fallback Bridging
308(5)
Router, Supervisor, and Power Redundancy
313(38)
``Do I Know This Already?'' Quiz
313(4)
Router Redundancy in Multilayer Switching
317(21)
Packet Forwarding Review
317(1)
Hot Standby Router Protocol
318(1)
HSRP Router Election
318(3)
Conceding the Election
321(1)
HSRP Gateway Addressing
322(2)
Load Balancing with HSRP
324(3)
Virtual Router Redundancy Protocol
327(3)
Gateway Load Balancing Protocol
330(1)
Active Virtual Gateway
330(1)
Active Virtual Forwarder
331(2)
GLBP Load Balancing
333(1)
Enabling GLBP
334(4)
Verifying Gateway Redundancy
338(1)
Redundancy Within a Switch Chassis
339(12)
Redundant Switch Supervisors
339(1)
Configuring the Redundancy Mode
340(2)
Configuring Supervisor Synchronization
342(1)
Non-Stop Forwarding
343(1)
Redundant Power Supplies
343(8)
Part IV Campus Network Services
351(78)
IP Telephony
353(32)
``Do I Know This Already?'' Quiz
353(4)
Power over Ethernet (PoE)
357(4)
How Power over Ethernet Works
357(1)
Detecting a Powered Device
358(1)
Supplying Power to a Device
359(1)
Configuring Power over Ethernet
360(1)
Verifying Power over Ethernet
360(1)
Voice VLANs
361(5)
Voice VLAN Configuration
362(2)
Verifying Voice VLAN Operation
364(2)
Voice QoS
366(3)
QoS Overview
366(1)
Best-Effort Delivery
367(1)
Integrated Services Model
368(1)
Differentiated Services Model
368(1)
DiffServ QoS
369(16)
Layer 2 QoS Classification
369(1)
Layer 3 QoS Classification with DSCP
370(2)
Implementing QoS for Voice
372(2)
Configuring a Trust Boundary
374(1)
Using Auto-QoS to Simplify a Configuration
375(3)
Verifying Voice QoS
378(7)
Securing Switch Access
385(24)
``Do I Know This Already?'' Quiz
385(4)
Port Security
389(3)
Port-Based Authentication
392(3)
802.1x Configuration
393(1)
802.1x Port-Based Authentication Example
394(1)
Mitigating Spoofing Attacks
395(6)
DHCP Snooping
395(2)
IP Source Guard
397(2)
Dynamic ARP Inspection
399(2)
Best Practices for Securing Switches
401(8)
Securing with VLANs
409(20)
``Do I Know This Already?'' Quiz
409(4)
VLAN Access Lists
413(1)
VACL Configuration
413(1)
Private VLANs
414(6)
Private VLAN Configuration
416(1)
Configure the Private VLANs
417(1)
Associate Ports with Private VLANs
417(2)
Associate Secondary VLANs to a Primary VLAN SVI
419(1)
Securing VLAN Trunks
420(9)
Switch Spoofing
420(2)
VLAN Hopping
422(7)
Part V Wireless LANs
429(104)
Wireless LAN Overview
431(40)
``Do I Know This Already?'' Quiz
431(4)
Wireless LAN Basics
435(3)
Comparing Wireless and Wired LANs
435(1)
Avoiding Collisions in a WLAN
436(2)
WLAN Building Blocks
438(7)
Access Point Operation
441(1)
Wireless LAN Cells
442(3)
An Introduction to Wireless LAN RF
445(14)
Basic RF Operation
445(2)
RF Characteristics
447(1)
Reflection
447(1)
Refraction
448(1)
Absorption
448(1)
Scattering
449(1)
Diffraction
449(1)
Fresnel lanes
450(2)
RF Signal Strength Terminology
452(2)
Signal Loss
454(1)
Signal Gain
455(1)
Wireless Path Performance
456(1)
WLAN Antennas
457(1)
Omnidirectional Antennas
457(1)
Semi-Directional Antennas
458(1)
Highly Directional Antennas
458(1)
WLAN Standards
459(12)
Regulatory Agencies
459(1)
WLAN Frame Types and Sizes
460(1)
802.11b
460(1)
802.11b Channels
461(1)
802.11b Data Rates
462(1)
802.11g
463(1)
802.11a
463(1)
Additional 802.11 Standards
464(7)
Wireless Architecture and Design
471(26)
``Do I Know This Already?'' Quiz
471(4)
WLAN Security
475(6)
Legacy Security
476(1)
EAP-Based Security Methods
477(1)
LEAP
478(1)
EAP-TLS
478(1)
PEAP
479(1)
EAP-FAST
479(1)
WPA
479(1)
WPA2
480(1)
Wireless Client Operation
481(1)
AP Association and Roaming
482(5)
The Roaming Process
484(2)
Roaming Implications
486(1)
Cell Layout and Channel Usage
487(10)
Sizing AP Cells
488(1)
WLAN Channel Layout
489(8)
Cisco Unified Wireless Network
497(36)
``Do I Know This Already?'' Quiz
497(4)
Traditional WLAN Architecture
501(2)
Cisco Unified Wireless Network Architecture
503(5)
WLC Functions
506(2)
Lightweight AP Operation
508(3)
Traffic Patterns in a Cisco Unified Wireless Network
509(2)
Lightweight AP Association and Roaming
511(7)
Intra-Controller Roaming
513(1)
Inter-Controller Roaming
514(4)
Mobility Groups
518(1)
Basic Wireless LAN Configuration
518(15)
WLC Configuration
519(2)
Initial WLC Configuration
521(1)
Further WLC Configuration
522(2)
LAP Configuration
524(1)
Supplying Power to an LAP
525(1)
Switch Port Configuration for LAP
525(1)
Initial LAP Configuration
526(7)
Part VI Scenarios for Final Preparation
533(20)
Scenarios for Final Preparation
535(18)
Scenario 1: Trunking and DTP
535(1)
Scenario 2: VLANs, Trunking, and VTP
536(1)
Scenario 3: EtherChannels
537(1)
Scenario 4: Traditional STP
538(1)
Scenario 5: Advanced STP
539(1)
Scenario 6: Router Redundancy with HSRP, VRRP, and GLBP
540(1)
Scenario 7: IP Telephony in a Switched Network
541(1)
Scenario 8: Securing Access and Managing Traffic in a Switched Network
541(1)
Scenario 9: Implementing a Wireless LAN
542(2)
Scenario 1 Answers
544(1)
Scenario 2 Answers
544(1)
Scenario 3 Answers
545(1)
Scenario 4 Answers
545(2)
Scenario 5 Answers
547(1)
Scenario 6 Answers
547(1)
Scenario 7 Answers
548(1)
Scenario 8 Answers
549(2)
Scenario 9 Answers
551(2)
Part VII Appendix
553(2)
Appendix A Answers to
Chapter `Do I Know This Already?' Quizzes and Q&A Sections
555(55)
Chapter 1
555(2)
``Do I Know This Already?''
555(1)
Q&A
555(2)
Chapter 2
557(2)
``Do I Know This Already?''
557(1)
Q&A
558(1)
Chapter 3
559(3)
``Do I Know This Already?''
559(1)
Q&A
560(2)
Chapter 4
562(5)
``Do I Know This Already?''
562(1)
Q&A
563(4)
Chapter 5
567(3)
``Do I Know This Already?''
567(1)
Q&A
567(3)
Chapter 6
570(3)
``Do I Know This Already?''
570(1)
Q&A
570(3)
Chapter 7
573(4)
``Do I Know This Already?''
573(1)
Q&A
573(4)
Chapter 8
577(4)
``Do I Know This Already?''
577(1)
Q&A
577(4)
Chapter 9
581(5)
``Do I Know This Already?''
581(1)
Q&A
582(4)
Chapter 10
586(3)
``Do I Know This Already?''
586(1)
Q&A
587(2)
Chapter 11
589(3)
``Do I Know This Already?''
589(1)
Q&A
589(3)
Chapter 12
592(2)
``Do I Know This Already?''
592(1)
Q&A
592(2)
Chapter 13
594(3)
``Do I Know This Already?''
594(1)
Q&A
595(2)
Chapter 14
597(2)
``Do I Know This Already?''
597(1)
Q&A
597(2)
Chapter 15
599(2)
``Do I Know This Already'?''
599(1)
Q&A
600(1)
Chapter 16
601(2)
``Do I Know This Already?''
601(1)
Q&A
602(1)
Chapter 17
603(3)
``Do I Know This Already?''
603(1)
Q&A
604(2)
Chapter 18
606(2)
``Do I Know This Already?''
606(1)
Q&A
607(1)
Chapter 19
608(2)
``Do I Know This Already?''
608(1)
Q&A
609(1)
Index 610
Foreword xvii
Introduction xviii
Part I Voice over IP
3(52)
Cisco VoIP Implementations
5(50)
``Do I Know This Already?'' Quiz
5(5)
Foundation Topics
10(1)
Introduction to VoIP Networks
10(9)
Benefits of Packet Telephony Networks
10(1)
Packet Telephony Components
11(2)
Analog Interfaces
13(1)
Digital Interfaces
14(1)
Stages of a Phone Call
15(1)
Distributed Versus Centralized Call Control
16(3)
Digitizing and Packetizing Voice
19(8)
Basic Voice Encoding: Converting Analog to Digital
19(1)
Basic Voice Encoding: Converting Digital to Analog
20(1)
The Nyquist Theorem
21(1)
Quantization
22(2)
Compression Bandwidth Requirements and Their Comparative Qualities
24(1)
Digital Signal Processors
25(2)
Encapsulating Voice Packets
27(7)
End-to-End Delivery of Voice
27(3)
Protocols Used in Voice Encapsulation
30(2)
Reducing Header Overhead
32(2)
Bandwidth Calculation
34(8)
Impact of Voice Samples and Packet Size on Bandwidth
34(3)
Data Link Overhead
37(1)
Security and Tunneling Overhead
37(2)
Calculating the Total Bandwidth for a VoIP Call
39(2)
Effects of VAD on Bandwidth
41(1)
Implementing VoIP Support in an Enterprise Network
42(8)
Enterprise Voice Implementations
42(2)
Voice Gateway Functions on a Cisco Router
44(1)
Cisco Unified CallManager Functions
45(1)
Enterprise IP Telephony Deployment Models
46(1)
Single-Site Model
46(1)
Multisite with Centralized Call Processing Model
46(1)
Multisite with Distributed Call Processing Model
47(1)
Clustering over WAN Model
48(1)
Identifying Voice Commands in IOS Configurations
48(1)
Call Admission Control (CAC)
49(1)
Foundation Summary
50(2)
Q&A
52(3)
Part II Quality of Service
55(174)
IP Quality of Service
57(36)
``Do I Know This Already?'' Quiz
57(5)
Foundation Topics
62(1)
Introduction to QoS
62(10)
Converged Network Issues Related to QoS
62(1)
Available Bandwidth
63(1)
End-to-End Delay
64(1)
Delay Variation
65(1)
Packet Loss
66(2)
Definition of QoS and the Three Steps to Implementing It
68(1)
Implementing QoS
69(3)
Identifying and Comparing QoS Models
72(4)
Best-Effort Model
72(1)
Integrated Services Model
73(1)
Differentiated Services Model
74(2)
QoS Implementation Methods
76(13)
Legacy Command-Line Interface (CLI)
76(1)
Modular QoS Command-Line Interface (MQC)
76(3)
AutoQoS
79(2)
Router and Security Device Manager (SDM) QoS Wizard
81(8)
Foundation Summary
89(2)
Q&A
91(2)
Classification, Marking, and NBAR
93(30)
``Do I Know This Already?'' Quiz
93(4)
Foundation Topics
97(1)
Classification and Marking
97(3)
Layer 2 QoS: CoS on 802.1Q/P Ethernet Frame
98(1)
Layer 2 QoS: DE and CLP on Frame Relay and ATM (Cells)
99(1)
Layer 2 1/2 QoS: MPLS EXP Field
100(1)
The DiffServ Model, Differentiated Services Code Point (DSCP), and Per-Hop Behavior (PHB)
100(6)
IP Precedence and DSCP
102(4)
QoS Service Class
106(2)
Trust Boundaries
108(2)
Network Based Application Recognition (NBAR)
110(2)
Cisco IOS Commands to Configure NBAR
112(6)
Foundation Summary
118(2)
Q&A
120(3)
Congestion Management and Queuing
123(26)
``Do I Know This Already?'' Quiz
123(4)
Foundation Topics
127(1)
Introduction to Congestion Management and Queuing
127(3)
First-In-First-Out, Priority Queuing, Round-Robin, and Weighted Round-Robin Queuing
130(2)
Weighted Fair Queuing
132(6)
WFQ Classification and Scheduling
133(2)
WFQ Insertion and Drop Policy
135(1)
Benefits, and Drawbacks of WFQ
135(1)
Configuring and Monitoring WFQ
135(3)
Class-Based Weighted Fair Queuing
138(4)
Classification, Scheduling, and Bandwidth Guarantee
139(1)
Benefits and Drawbacks of CBWFQ
140(1)
Configuring and Monitoring CBWFQ
141(1)
Low-Latency Queuing
142(4)
Benefits of LLQ
144(1)
Configuring and Monitoring LLQ
144(2)
Foundation Summary
146(1)
Q&A
147(2)
Congestion Avoidance, Policing, Shaping, and Link Efficiency Mechanisms
149(28)
``Do I Know This Already?'' Quiz
149(4)
Foundation Topics
153(1)
Congestion Avoidance
153(10)
Tail Drop and Its Limitations
153(1)
Random Early Detection
154(2)
Weighted Random Early Detection
156(2)
Class-Based Weighted Random Early Detection
158(1)
Configuring CBWRED
158(5)
Traffic Shaping and Policing
163(4)
Measuring Traffic Rates
165(2)
Cisco IOS Policing and Shaping Mechanisms
167(1)
Link Efficiency Mechanisms
167(5)
Layer 2 Payload Compression
168(1)
Header Compression
169(2)
Link Fragmentation and Interleaving
171(1)
Applying Link Efficiency Mechanisms
171(1)
Foundation Summary
172(3)
Q&A
175(2)
Implementing QoS Pre-Classify and Deploying End-to-End QoS
177(24)
``Do I Know This Already?'' Quiz
177(3)
Foundation Topics
180(1)
Implementing QoS Pre-Classify
180(5)
Virtual Private Networks (VPN)
180(1)
QoS Pre- Classify Applications
181(2)
QoS Pre-Classification Deployment Options
183(2)
Deploying End-to-End QoS
185(9)
QoS Service Level Agreements SLAs)
186(2)
Enterprise Campus QoS Implementations
188(2)
WAN Edge QoS Implementations
190(2)
Control Plane Policing (CoPP)
192(2)
Foundation Summary
194(4)
Q&A
198(3)
Implementing AutoQoS
201(28)
``Do I Know This Already?'' Quiz
201(4)
Foundation Topics
205(1)
Introducing AutoQoS
205(2)
Implementing and Verifying AutoQoS
207(8)
Two-Step Deployment of AutoQoS Enterprise on Routers
209(1)
Deploying AutoQoS VoIP on IOS-Based Catalyst Switches
210(2)
Verifying AutoQoS on Cisco Routers and IOS-Based Catalyst Switches
212(3)
AutoQoS Shortcomings and Remedies
215(7)
Automation with Cisco AutoQoS
215(3)
Common AutoQoS Problems
218(1)
Interpreting and Modifying AutoQoS Configurations
219(3)
Foundation Summary
222(5)
Q&A
227(2)
Part III Wireless LAN
229(90)
Wireless LAN QoS Implementation
231(24)
``Do I Know This Already?'' Quiz
231(4)
Foundation Topics
235(1)
The Need for Wireless LAN QoS
235(4)
WLAN QoS Description
237(1)
Split MAC Architecture and Light Weight Access Point
238(1)
Current Wireless LAN QoS Implementation
239(4)
Configuring Wireless LAN QoS
243(4)
Foundation Summary
247(5)
Q&A
252(3)
Introducing >802.1x and Configuring Encryption and Authentication on Lightweight Access Points
255(32)
``Do I Know This Already?'' Quiz
255(3)
Foundation Topics
258(1)
Overview of WLAN Security
258(2)
WLAN Security Issues
258(1)
Evolution of WLAN Security Solutions
259(1)
802.1x and EAP Authentication Protocols
260(12)
EAP Authentication Protocols
262(1)
Cisco LEAP
262(2)
EAT-FAST
264(2)
EAP-TLS
266(1)
PEAP
267(2)
WPA, 802.11i, and WPA2
269(3)
Configuring Encryption and Authentication on Lightweight Access Points
272(9)
Open Authentication
272(1)
Static WEP Authentication
273(1)
WPA Preshared Key
274(2)
Web Authentication
276(2)
802.1x Authentication
278(3)
Foundation Summary
281(4)
Q&A
285(2)
WLAN Management
287(32)
``Do I Know This Already?'' Quiz
287(4)
Foundation Topics
291(1)
The Need for WLAN Management
291(4)
Cisco Unified Wireless Networks
291(1)
Cisco WLAN Implementation
292(2)
WLAN Components
294(1)
Cisco Works Wireless LAN Solution Engine
295(4)
WLSE Software Features
295(1)
WLSE Key Benefits
296(1)
CiscoWorks WLSE and WLSE Express
296(1)
Simplified WLSE Express Setup
297(1)
WLSE Configuration Templates
298(1)
WLSE IDS Features
298(1)
WLSE Summary
298(1)
Cisco Wireless Control System
299(15)
WCS Location Tracking Options
300(1)
WCS Base Software Features
300(1)
WCS Location Software Features
301(1)
WCS Location + 2700 Series Wireless Location Appliance Features
301(1)
WCS System Features
301(1)
Cisco WCS User Interface
302(1)
Cisco WCS System Requirements
302(1)
WCS Summary Pages
303(1)
Wireless Location Appliance
304(1)
Wireless Location Appliance Architecture
305(1)
Wireless Location Appliance Applications
305(1)
WCS Configuration Examples
306(1)
WCS Login Steps
306(1)
Changing the Root Password
306(1)
Adding a Wireless LAN Controller
307(1)
Configuring Access Points
308(1)
WCS Map
309(1)
Adding a Campus Map
309(1)
Adding a New Building
310(2)
Rogue Access Point Detection
312(1)
Rogue Access Point Alarms
312(1)
Rogue Access Point Location
313(1)
Foundation Summary
314(3)
Q&A
317(2)
Part IV Appendix
319(35)
Appendix A Answers to the ``Do I Know This Already?'' Quizzes and Q&A Sections
321(33)
Index 354


Brent Stewart, CCNP, CCDP, is a certified Cisco Systems instructor and teaches at Global Knowledge.

 

David Hucaby, CCIE No. 4594, is a Lead Network Engineer for the University of Kentucky.

 

Brian Morgan, CCIE No. 4865, is a Director for Paranet Solutions, a nationwide consulting firm.

 

Neil Lovering, CCIE No. 1772, works as a systems engineer for Cisco Systems.



 

Amir Ranjbar, CCIE No. 8669, is an instructor and senior network architect for Global Knowledge, Cisco's largest training partner.