ccnp® complete study guide - download.e-bookshelf.de · ccnp complete study guide reflects our...
TRANSCRIPT
CCNP®Complete Study Guide
Wade Edwards, et al.
SYBEX®
San Francisco • London
CCNP
®
Complete
Study Guide
Wade Edwards, CCIE, Terry Jack, CCIE,Todd Lammle, CCNP, Robert Padjen, CCNP,Arthur Pfund, CCIE, Toby Skandier, CCNP,
Carl Timm, CCIE
4421.book Page i Tuesday, February 15, 2005 5:33 PM
Associate Publisher: Neil EddeAcquisitions and Developmental Editor: Maureen AdamsProduction Editor: Mae LumTechnical Editor: Craig VazquezCopyeditor: Sarah LemaireCompositor: Craig J. Woods, Happenstance Type-O-RamaGraphic Illustrator: Happenstance Type-O-RamaCD Coordinator: Dan MummertCD Technician: Kevin LyProofreaders: Jim Brook, Candace English, Jennifer Larsen, Nancy RiddioughIndexer: Nancy GuentherBook Designers: Bill Gibson, Judy FungCover Designer: Archer DesignCover Illustrator/Photographer: Photodisc and Victor Arre
Copyright © 2005 SYBEX Inc., 1151 Marina Village Parkway, Alameda, CA 94501. World rights reserved. No part of this publication may be stored in a retrieval system, transmitted, or reproduced in any way, including but not limited to photocopy, photograph, magnetic, or other record, without the prior agreement and written per-mission of the publisher.
Portions of this book were published under the titles:
CCNP: Building Scalable Cisco Internetworks Study Guide
© 2004 SYBEX Inc.,
CCNP: Building Cisco Multilayer Switched Networks Study Guide
© 2004 SYBEX Inc.,
CCNP: Building Cisco Remote Access Networks Study Guide
© 2004 SYBEX Inc., and
CCNP: Cisco Internetwork Troubleshooting Study Guide © 2004 SYBEX Inc.
Library of Congress Card Number: 2005920775
ISBN: 0-7821-4421-7
SYBEX and the SYBEX logo are either registered trademarks or trademarks of SYBEX Inc. in the United States and/or other countries.
Screen reproductions produced with FullShot 99. FullShot 99 © 1991-1999 Inbit Incorporated. All rights reserved.
FullShot is a trademark of Inbit Incorporated.
The CD interface was created using Macromedia Director, COPYRIGHT 1994, 1997-1999 Macromedia Inc. For more information on Macromedia and Macromedia Director, visit http://www.macromedia.com.
This study guide and/or material is not sponsored by, endorsed by or affiliated with Cisco Systems, Inc. Cisco®, Cisco Systems®, CCDA™, CCNA™, CCDP™, CCSP™, CCIP™, BSCI™, CCNP™, CCIE™, CCSI™, the Cisco Systems logo and the CCIE logo are trademarks or registered trademarks of Cisco Systems, Inc. in the United States and certain other countries. All other trademarks are trademarks of their respective owners.
TRADEMARKS: SYBEX has attempted throughout this book to distinguish proprietary trademarks from descriptive terms by following the capitalization style used by the manufacturer.
The author and publisher have made their best efforts to prepare this book, and the content is based upon final release software whenever possible. Portions of the manuscript may be based upon pre-release versions supplied by software manufacturer(s). The author and the publisher make no representation or warranties of any kind with regard to the completeness or accuracy of the contents herein and accept no liability of any kind including but not limited to performance, merchantability, fitness for any particular purpose, or any losses or damages of any kind caused or alleged to be caused directly or indirectly from this book.
Manufactured in the United States of America
10 9 8 7 6 5 4 3 2 1
4421.book Page ii Tuesday, February 15, 2005 5:33 PM
To Our Valued Readers:
Thank you for looking to Sybex for your CCNP exam prep needs. Cisco developed the CCNP certification to validate expertise in implementing and managing Cisco internetworking solu-tions, and it is currently one of the most highly sought after IT certifications. Just as Cisco is committed to establishing measurable standards for certifying those professionals who work in the field of internetworking, Sybex is committed to providing those professionals with the information they need to excel.
We at Sybex are proud of our reputation for providing certification candidates with the practical knowledge and skills needed to succeed in the highly competitive IT marketplace. This four-in-one CCNP Complete Study Guide reflects our commitment to provide CCNP candidates with the most up-to-date, accurate, and economical instructional material on the market.
The authors and the editors have worked hard to ensure that the book you hold in your hands is comprehensive, in-depth, and pedagogically sound. We’re confident that this book will exceed the demanding standards of the certification marketplace and help you, the CCNP certification candidate, succeed in your endeavors.
As always, your feedback is important to us. If you believe you’ve identified an error in the book, please send a detailed e-mail to [email protected]. And if you have general comments or suggestions, feel free to drop me a line directly at [email protected]. At Sybex, we’re con-tinually striving to meet the needs of individuals preparing for certification exams.
Good luck in pursuit of your CCNP certification!
Neil EddePublisher—CertificationSybex, Inc.
4421.book Page iii Tuesday, February 15, 2005 5:33 PM
Software License Agreement: Terms and Conditions
The media and/or any online materials accompanying this book that are available now or in the future contain programs and/or text files (the “Software”) to be used in connection with the book. SYBEX hereby grants to you a license to use the Software, subject to the terms that follow. Your purchase, acceptance, or use of the Soft-ware will constitute your acceptance of such terms.The Software compilation is the property of SYBEX unless otherwise indicated and is protected by copyright to SYBEX or other copyright owner(s) as indicated in the media files (the “Owner(s)”). You are hereby granted a single-user license to use the Software for your personal, noncommercial use only. You may not repro-duce, sell, distribute, publish, circulate, or commercially exploit the Software, or any portion thereof, without the written consent of SYBEX and the specific copyright owner(s) of any component software included on this media.In the event that the Software or components include specific license requirements or end-user agreements, statements of condition, disclaimers, limitations or war-ranties (“End-User License”), those End-User Licenses supersede the terms and conditions herein as to that par-ticular Software component. Your purchase, accep-tance, or use of the Software will constitute your acceptance of such End-User Licenses.By purchase, use or acceptance of the Software you fur-ther agree to comply with all export laws and regula-tions of the United States as such laws and regulations may exist from time to time.
Software Support
Components of the supplemental Software and any offers associated with them may be supported by the specific Owner(s) of that material, but they are not sup-ported by SYBEX. Information regarding any available support may be obtained from the Owner(s) using the information provided in the appropriate read.me files or listed elsewhere on the media.Should the manufacturer(s) or other Owner(s) cease to offer support or decline to honor any offer, SYBEX bears no responsibility. This notice concerning support for the Software is provided for your information only. SYBEX is not the agent or principal of the Owner(s), and SYBEX is in no way responsible for providing any support for the Software, nor is it liable or responsible for any support provided, or not provided, by the Owner(s).
Warranty
SYBEX warrants the enclosed media to be free of phys-ical defects for a period of ninety (90) days after pur-chase. The Software is not available from SYBEX in any other form or media than that enclosed herein or posted to
www.sybex.com
. If you discover a defect in the media
during this warranty period, you may obtain a replace-ment of identical format at no charge by sending the defective media, postage prepaid, with proof of pur-chase to:
SYBEX Inc.Product Support Department1151 Marina Village ParkwayAlameda, CA 94501Web:
http://www.sybex.com
After the 90-day period, you can obtain replacement media of identical format by sending us the defective disk, proof of purchase, and a check or money order for $10, payable to SYBEX.
Disclaimer
SYBEX makes no warranty or representation, either expressed or implied, with respect to the Software or its contents, quality, performance, merchantability, or fit-ness for a particular purpose. In no event will SYBEX, its distributors, or dealers be liable to you or any other party for direct, indirect, special, incidental, consequen-tial, or other damages arising out of the use of or inabil-ity to use the Software or its contents even if advised of the possibility of such damage. In the event that the Soft-ware includes an online update feature, SYBEX further disclaims any obligation to provide this feature for any specific duration other than the initial posting.The exclusion of implied warranties is not permitted by some states. Therefore, the above exclusion may not apply to you. This warranty provides you with specific legal rights; there may be other rights that you may have that vary from state to state. The pricing of the book with the Software by SYBEX reflects the allocation of risk and limitations on liability contained in this agree-ment of Terms and Conditions.
Shareware Distribution
This Software may contain various programs that are distributed as shareware. Copyright laws apply to both shareware and ordinary commercial software, and the copyright Owner(s) retains all rights. If you try a share-ware program and continue using it, you are expected to register it. Individual programs differ on details of trial periods, registration, and payment. Please observe the requirements stated in appropriate files.
Copy Protection
The Software in whole or in part may or may not be copy-protected or encrypted. However, in all cases, reselling or redistributing these files without authoriza-tion is expressly forbidden except as specifically pro-vided for by the Owner(s) therein.
4421.book Page iv Tuesday, February 15, 2005 5:33 PM
Acknowledgments
We would like to thank Neil Edde and Maureen Adams for giving us the opportunity to update this Study Guide. We would also like to take a moment to thank everyone else involved in the creation of this book, including Production Editor Mae Lum; Technical Editor Craig Vazquez; Copyeditor Sarah Lemaire; Proofreaders Jim Brook, Candace English, Jennifer Larsen, and Nancy Riddiough; Indexer Nancy Guenther; and Dan Mummert and Kevin Ly of the CD group.
4421.book Page v Tuesday, February 15, 2005 5:33 PM
Contents at a Glance
Introduction xxix
Part I Building Scalable Cisco Internetworks (BSCI) 1
Chapter 1
Routing Principles 3
Chapter 2
IP Addressing 37
Chapter 3
Network Address Translation 75
Chapter 4
IGRP and EIGRP 99
Chapter 5
OSPF Operation in a Single Area 141
Chapter 6
Interconnecting OSPF Areas 175
Chapter 7
Integrated IS-IS 205
Chapter 8
Border Gateway Protocol 235
Chapter 9
Advanced Border Gateway Protocol 283
Chapter 10
Route Optimization 323
Chapter 11
Design Considerations 357
Part II Building Cisco Multilayer Switched Networks (BCMSN) 377
Chapter 12
The Campus Network 379
Chapter 13
Connecting the Switch Block 413
Chapter 14
VLANs, Trunks, and VTP 445
Chapter 15
Layer 2 Switching and the Spanning Tree Protocol (STP) 481
Chapter 16
Using Spanning Tree with VLANs 501
Chapter 17
Inter-VLAN Routing 537
Chapter 18
Multilayer Switching (MLS) 553
Chapter 19
Understanding and Configuring Multicast Operation 585
Chapter 20
Quality of Service (QoS) 637
Chapter 21
Catalyst Switch Technologies 677
4421.book Page vi Tuesday, February 15, 2005 5:33 PM
Contents at a Glance
vii
Part III Building Cisco Remote Access Networks (BCRAN) 703
Chapter 22
Cisco Solutions for Remote Access 705
Chapter 23
Asynchronous Connections 745
Chapter 24
Point-to-Point Protocol 763
Chapter 25
Using Microsoft Win-dows 95/98/2000/XP 797
Chapter 26
Integrated Services Digital Network (ISDN) 815
Chapter 27
Remote Access with Digital Subscriber Line 865
Chapter 28
Remote Access with Cable Modems and Virtual Private Networks 877
Chapter 29
Frame Relay 887
Chapter 30
Queuing and Compression 915
Chapter 31
Network Address Translation and Port Address Translation 941
Chapter 32
Centralized Security in Remote Access Networks 967
Part IV Cisco Internetwork Troubleshooting (CIT) 985
Chapter 33
Troubleshooting Methodology 987
Chapter 34
Network Documentation 1001
Chapter 35
End-System Documentation and Troubleshooting 1023
Chapter 36
Protocol Attributes 1053
Chapter 37
Cisco Diagnostic Commands and TCP/IP Troubleshooting 1081
Chapter 38
TCP/IP Routing Protocol Troubleshooting 1137
Chapter 39
Troubleshooting Serial Line and Frame Relay Connectivity 1177
Chapter 40
Troubleshooting ISDN 1203
Chapter 41
Troubleshooting Switched Ethernet 1235
Chapter 42
Applying Cisco’s Diagnostic Tools 1283
Index 1327
4421.book Page vii Tuesday, February 15, 2005 5:33 PM
Contents
Introduction xxix
Part I Building Scalable Cisco Internetworks (BSCI) 1
Chapter 1 Routing Principles 3
Components of Routing Data 4Routing Tables 5Populating the Routing Table 6Reaching the Destination 20
Convergence 23RIP Convergence 23IGRP Convergence 25EIGRP Convergence 27Link-State Convergence 28
Verifying and Testing a Route 29Verifying Routes 29Testing and Troubleshooting Routes 30
Summary 34Exam Essentials 34
Chapter 2 IP Addressing 37
Review of IPv4 Addressing 38IP Terminology 39The Hierarchical IP Addressing Scheme 40
Extending IP Addresses 45Variable-Length Subnet Masks 46Classless Interdomain Routing 54Route Summarization 56
Decimal-to-Binary Conversion Chart 66An Overview of IPv6 Addressing 66
IPv6 Address Format 67IPv6 Address Types 68
Summary 73Exam Essentials 73
Chapter 3 Network Address Translation 75
Understanding Network Address Translation 76NAT Terminology 77NAT Operations 82
Configuring NAT 88Configuring Static NAT 89
4421.book Page viii Tuesday, February 15, 2005 5:33 PM
Contents
ix
Configuring Dynamic NAT 91Configuring NAT Using Overloading 92Configuring TCP Load Distribution 93Configuring NAT for Overlapping Addresses 94Verifying and Troubleshooting the NAT Configuration 95
Summary 97Exam Essentials 98
Chapter 4 IGRP and EIGRP 99
Scalability Features of Routing Protocols 100Distance-Vector Protocol Scalability Issues 101Scalability Limitations of Link-State Routing Protocols 102
Interior Gateway Routing Protocol 102IGRP Features and Operation 103IGRP Configuration 111Verifying and Troubleshooting IGRP 114
Enhanced Interior Gateway Routing Protocol 118Route Tagging 119Neighbor Relationships 119Route Calculation 120EIGRP Metrics 125Redistribution for EIGRP 128Configuring EIGRP 128Verifying and Troubleshooting EIGRP 133
Summary 139Exam Essentials 140
Chapter 5 OSPF Operation in a Single Area 141
Open Shortest Path First 142OSPF Terminology 143OSPF Operation 145
NBMA Overview 155NBMA Environments 155
Broadcast 156Non-Broadcast 157Point-to-Point 158Point-to-Multipoint 158
Configuring OSPF 159Discovering the Network with OSPF 159Configuring OSPF—Single Area 163Configuring OSPF—Single Area (NBMA Environment) 166Verifying OSPF Configuration 170
Summary 173Exam Essentials 174
4421.book Page ix Tuesday, February 15, 2005 5:33 PM
x
Contents
Chapter 6 Interconnecting OSPF Areas 175
OSPF Scalability 176Categories of Multi-Area Components 177
OSPF Router Roles 177Link-State Advertisements 179OSPF Area Types 181
Basic Multi-Area Configuration 182RouterA 183RouterB 183RouterC 183Configuring Multi-Area OSPF 184
Stub Area Configuration 184RouterB 185RouterC 186RouterD 186Configuring OSPF for a Stub Area 186
Totally Stubby Area Configuration 187RouterB 187RouterC 188RouterD 188Configuring OSPF for a Totally Stubby Area 189
Not-So-Stubby Area Configuration 189RouterA 190RouterB 190RouterC 190RouterD 191Configuring OSPF for a Not-So-Stubby Area 191
OSPF Virtual Links 193RouterA 194RouterB 195RouterC 195
Verifying and Troubleshooting OSPF 196Route Information 196Link-State Database Information 197Routing Protocol Information 198Viewing Neighbor Information 200Viewing OSPF Packets 202
Summary 202Exam Essentials 203
Chapter 7 Integrated IS-IS 205
Integrated Intermediate System to Intermediate System 206Integrated IS-IS Operation 208
IS-IS Terminology 208IS-IS Areas 208
4421.book Page x Tuesday, February 15, 2005 5:33 PM
Contents
xi
Network Entity Titles 211Neighbor and Adjacency Initialization 212Designated Router 213IS-IS PDUs 215LSP Flooding 217SPF Algorithm 217Network Types 218
Configuring IS-IS 219Verifying and Troubleshooting IS-IS 225
Route Information 225Link-State Database Information 226Routing Protocol Information 228Viewing Neighbor Information 229Viewing SPF Information 230
Summary 232Exam Essentials 232
Chapter 8 Border Gateway Protocol 235
Border Gateway Protocol 236BGP Terminology 237
BGP Operation 238Message Header Format 239OPEN Message 240UPDATE Message 242KEEPALIVE Message 247NOTIFICATION Message 247Neighbor Negotiation 249Route Selection 252BGP Synchronization 256Route Aggregation 259
When and When Not to Use BGP 259Configuring BGP 260
Minimal BGP Configuration 260iBGP and eBGP Configuration 262eBGP Multihop Configuration 266Injecting Routes into BGP 268
Verifying and Troubleshooting the Operation of BGP 272Route Information 273Viewing Neighbor Information 274Debugging BGP Information 276
Summary 280Exam Essentials 281
4421.book Page xi Tuesday, February 15, 2005 5:33 PM
xii
Contents
Chapter 9 Advanced Border Gateway Protocol 283
Overcoming Scalability Limitations of iBGP 284Route Reflection 285Configuring Route Reflection for iBGP 288Confederations 293Configuring Confederations 296
BGP Filters 300Distribute Lists 301Prefix Lists 302Route Maps 306
Communities 309Peer Groups 311Multi-homing 316Resolving Next-Hop Issues 318Route Aggregation 319Summary 320Exam Essentials 320
Chapter 10 Route Optimization 323
Filtering 324Access Groups 324Distribute Lists 326Route Maps 327
Policy-Based Routing 328Source-Based Policies 329Type of Traffic Policies 330Type of Service Policies 331
Verifying and Troubleshooting Policy-Based Routing Operation 333
Redistribution 336Classless to Classful Redistribution 338Filtering with Redistribution 338
Configuring Redistribution 338RIP 338IGRP 340EIGRP 341OSPF 341IS-IS 343Connected Interfaces, Static Routes, and Default Routes 345Classless to Classful Redistribution 349Filtering with Redistribution 351
Summarization 353EIGRP 353OSPF 354IS-IS 355
4421.book Page xii Tuesday, February 15, 2005 5:33 PM
Contents
xiii
Summary 355Exam Essentials 356
Chapter 11 Design Considerations 357
Three-Layer Hierarchical Design Model 358Access Layer 358Distribution Layer 362Core Layer 363
IP Address Assignment 364Considering Routing Protocols in Network Design 368
OSPF 369EIGRP 370IS-IS 371BGP 372
Summary 374Exam Essentials 374
Part II Building Cisco Multilayer Switched Networks (BCMSN) 377
Chapter 12 The Campus Network 379
Understanding Campus Internetworks 381Looking Back at Traditional Campus Networks 381
Performance Problems and Solutions 382The 80/20 Rule 384
Introducing the New Campus Model 386Network Services 387
Using Switching Technologies 388Open Systems Interconnection (OSI) Model 388Layer 2 Switching 391Routing 391Layer 3 Switching 392Layer 4 Switching 393Multilayer Switching (MLS) 393
Understanding the Cisco Hierarchical Model 394Core Layer 396Distribution Layer 397Access Layer 397
Using Cisco Catalyst Products 398Access Layer Switches 398Distribution Layer Switches 399Core Layer Switches 400
Applying the Building Blocks 400
4421.book Page xiii Tuesday, February 15, 2005 5:33 PM
xiv
Contents
Switch Block 401Core Block 401Scaling Layer 2 Backbones 404Scaling Layer 3 Backbones 406
SAFE 407Summary 410Exam Essentials 410
Chapter 13 Connecting the Switch Block 413
Understanding Cable Media 414The Background of IEEE Ethernet 415LAN Segmentation Using Switches 416
Using Ethernet Media in Your Network 41710BaseT 417FastEthernet 417Gigabit Ethernet 420
Connecting and Logging In to a Switch 423Cabling the Switch Block Devices 424Cisco IOS- and Set-Based Commands 426
Summary 441Exam Essentials 442
Chapter 14 VLANs, Trunks, and VTP 445
Understanding the Design Benefits of Virtual LANs 446Broadcast Control 447Security 448Flexibility and Scalability 448The Collapsed Backbone and the VLAN 449
Scaling the Switch Block 450Defining VLAN Boundaries 451Assigning VLAN Memberships 452Configuring Static VLANs 452
Identifying VLANs 457Frame Tagging 458VLAN Identification Methods 458
Trunking 461Configuring Trunk Ports 461Clearing VLANs from Trunk Links 463Verifying Trunk Links 464
Using VLAN Trunk Protocol (VTP) 465VTP Modes of Operation 466VTP Advertisements 468Configuring VTP 470Adding to a VTP Domain 475VTP Pruning 475
4421.book Page xiv Tuesday, February 15, 2005 5:33 PM
Contents
xv
Auxiliary VLANs 477802.1Q Tunneling 477Summary 478Exam Essentials 478
Chapter 15 Layer 2 Switching and the Spanning Tree Protocol (STP) 481
Layer 2 LAN Switching 482Comparing Bridges to Switches 482Three Switch Functions at Layer 2 483
Spanning Tree Operation 487Selecting the Best Path 488Selecting the Designated Port 491Spanning Tree Port States 492Spanning Tree Example 493
LAN Switch Types 494Store-and-Forward 495Cut-Through (Real Time) 495FragmentFree (Modified Cut-Through) 496
Configuring Spanning Tree 496Summary 499Exam Essentials 499
Chapter 16 Using Spanning Tree with VLANs 501
Creating VLAN Standards 502Per-VLAN Spanning Tree (PVST) 503Common Spanning Tree (CST) 504Per-VLAN Spanning Tree
+
(PVST
+
) 504Multiple Spanning Tree (MST) 505
Scaling the Spanning Tree Protocol 505Determining the Root 506Configuring the Root 506Setting the Port Cost 510Setting the Port Priority 513Changing the STP Timers 517
Using Redundant Links with STP 519Parallel Fast EtherChannel Links 520Port Aggregation Protocol (PAgP) 526Load Balancing and Redundancy 526PortFast 527UplinkFast 529BackboneFast 532Rapid Spanning Tree Protocol 533
Summary 534Exam Essentials 534
4421.book Page xv Tuesday, February 15, 2005 5:33 PM
xvi
Contents
Chapter 17 Inter-VLAN Routing 537
Routing Between VLANs 538Multiple Links 540A Single Trunk Link 541An Internal Route Processor 541Internal Routing on an IOS-Based Switch 542
Using ISL and 802.1Q Routing 542Configuring ISL/802.1Q with an External Router 543Configuring ISL/802.1Q on an Internal Route Processor 545Configuring VLANs on an Internal Route Processor 546Configuring Internal Routing on an IOS-Based Switch 549
Summary 551Exam Essentials 551
Chapter 18 Multilayer Switching (MLS) 553
Understanding the Fundamentals of MLS 554MLS Requirements 556MLS Procedures 557Disabling MLS 562
Configuring MLS-RP 564Enabling MLS 564VTP Domain Assignments 565VLAN Assignments 566Interface Configurations 567MSA Management Interface 568Verifying the MLS Configuration 568Access Control Lists (ACLs) 570
Configuring the MLS Switch Engine 570Enabling MLS on the MLS-SE 571Configuring Flow Masks 571Using Cache Entries 572Displaying the MLS Cache Entries 574Removing MLS Cache Entries 575
Using Acceptable MLS Topologies 575Cisco Express Forwarding (CEF) 577
The Trouble with CEF and Layer 3 Switching 577Legacy Routing and Layer 3 Switching 578
Summary 582Exam Essentials 583
Chapter 19 Understanding and Configuring Multicast Operation 585
Multicast Overview 587Unicast 587
4421.book Page xvi Tuesday, February 15, 2005 5:33 PM
Contents xvii
Broadcast 588Multicast 589
Using Multicast Addressing 590Mapping IP Multicast to Ethernet 591Layer 3 to Layer 2 Overlap 594
Managing Multicast in an Internetwork 595Subscribing and Maintaining Groups 596Internet Group Management Protocol
Version 1 (IGMPv1) 596Internet Group Management Protocol
Version 2 (IGMPv2) 599Internet Group Management Protocol
Version 3 (IGMPv3) 600Cisco Group Management Protocol (CGMP) 601IGMP Snooping 603
Routing Multicast Traffic 604Distribution Trees 605Managing Multicast Delivery 609
Planning and Preparing for Using IP Multicast 619End-to-End IP Multicast 620
Configuring IP Multicast Routing 620Enabling IP Multicast Routing 621Enabling PIM on an Interface 622Configuring a Rendezvous Point 625Configuring TTL 628Joining a Multicast Group 629Changing the IGMP Version 631Enabling CGMP and IGMP Snooping 631
Summary 634Exam Essentials 634
Chapter 20 Quality of Service (QoS) 637
Understanding Application Needs 638E-mail 639WWW Traffic 639Voice over Ethernet 640
Understanding the Fundamentals of QoS 642Best Efforts Networks 642
QoS Options 646The Differentiated Services Model 647IEEE 802.1p 649Applying the QoS Model 650Prioritizing Traffic Classes 650Queuing Mechanisms 651
4421.book Page xvii Tuesday, February 15, 2005 5:33 PM
xviii Contents
Configuring QoS on Cisco Switches 653Queuing Mechanisms 658
Redundancy in Switched Networks 663Hot Standby Router Protocol 663Virtual Router Redundancy Protocol 671Gateway Load Balancing Protocol 671Transparent Ethernet 673
Summary 674Exam Essentials 675
Chapter 21 Catalyst Switch Technologies 677
The Switching Process 678Switch Architecture and Components 679Bridging Table Operation 682Memory 683Software 686
Switches: The Current Range 6882950 Series Switches 6893550 Series Switches 6914000 Series Switches 6936500 Series Switches 695
Debugging, Management, and System Testing 697The Cisco Cluster Management Suite (CMS) 697Debugging 697System Testing 698
Summary 700Exam Essentials 700
Part III Building Cisco Remote Access Networks (BCRAN) 703
Chapter 22 Cisco Solutions for Remote Access 705
What Is Remote Access? 706WAN Connection Types 707WAN Encapsulation Protocols 717Selecting a WAN Protocol 720
Choosing Remote Connection Cisco Products 726Fixed Interfaces 727Modular Interfaces 728Product Selection Tools 728
Cabling and Assembling the WAN 729Internetworking Overview and Remote
Access Interface Options 729
4421.book Page xviii Tuesday, February 15, 2005 5:33 PM
Contents xix
Identifying Company Site Equipment 732Verifying a Network Installation 739
Summary 742Exam Essentials 743
Chapter 23 Asynchronous Connections 745
Understanding Asynchronous Modems 746Signaling and Cabling 749Modulation Standards 751
Configuring Asynchronous Modem Connections 753Automatic Configuration 754Manual Configuration 758
Summary 761Exam Essentials 761
Chapter 24 Point-to-Point Protocol 763
PPP Overview and Architecture 764The Flag Field 765The Address Field 766The Control Field 766The Protocol Field 766The Information Field 768The Frame Check Sequence (FCS) Field 768
Configuring Access Servers 768Configuring PPP 768Dedicated or Interactive PPP 768Interface Addressing Options for Local Devices 769
PAP and CHAP Authentication 776Password Authentication Protocol (PAP) 776Challenge Handshake Authentication Protocol (CHAP) 777
PPP Callback 779PPP Compression and Multilink 782
Compression Configuration 783Multilink Configuration 784
Verifying and Troubleshooting PPP 786The debug ppp authentication Command 787The debug ppp negotiation Command 787The debug ppp packet Command 791
Summary 794Exam Essentials 795
Chapter 25 Using Microsoft Windows 95/98/2000/XP 797
Reasons to Use Dial-Up Networking 798Configuring Dial-Up Networking with Windows 95/98 799
4421.book Page xix Tuesday, February 15, 2005 5:33 PM
xx Contents
Configuring a Dial-Up Connection Client 800Dial-Up Networking Application 800Make New Connection Wizard 800Connection Properties 803
Setting Additional Configuration Options 810Locking DTE Speed 811Launching Terminal Windows 811
Verifying a Dial-Up Connection 812Summary 813Exam Essentials 813
Chapter 26 Integrated Services Digital Network (ISDN) 815
What Is Integrated Services Digital Network (ISDN)? 817ISDN Line Options 818
Basic Rate Interface (BRI) 819Primary Rate Interface (PRI) 821
ISDN Function Groups 822ISDN Reference Points 823ISDN Protocols 825LAPD Frames 825Layer 2 Negotiation 828ISDN Call Setup and Teardown 831ISDN Configuration 834Using a Legacy Interface 835Using a Dialer Interface 837Authentication 838
Password Authentication Protocol (PAP) 839Challenge Handshake Authentication Protocol (CHAP) 840
Dial-on-Demand Routing (DDR) 843Configuring DDR 844Using Optional Commands 846Using DDR with Access Lists 847Verifying the ISDN Operation 848
Dial Backup 848Setting Up Dial Backup 849Testing the Backup 851
Bandwidth on Demand 857Channelized T-1/E-1 (PRI) 859
Configuring ISDN PRI 860Configuring E-1 861
Summary 862Exam Essentials 863
4421.book Page xx Tuesday, February 15, 2005 5:33 PM
Contents xxi
Chapter 27 Remote Access with Digital Subscriber Line 865
What Is Digital Subscriber Line? 866The Different Flavors of DSL 867
Asymmetric Digital Subscriber Line 867G.lite 869High Bit-Rate DSL 869Symmetric DSL 869ISDN DSL 869Very-High Data Rate DSL 870
Cisco DSL Routers 871Configuring DSL 872Troubleshooting DSL 874Summary 875Exam Essentials 875
Chapter 28 Remote Access with Cable Modems and Virtual Private Networks 877
What Is a Cable Modem? 878DOCSIS 879
Cisco’s Cable Modem Product Line 880Cisco Cable Manager 881Virtual Private Networks 881
IPSec 881Summary 886Exam Essentials 886
Chapter 29 Frame Relay 887
Understanding Frame Relay 888What Is Frame Relay? 888A Brief History of Frame Relay 889
Frame Relay Virtual Circuits 889Switched Virtual Circuits 890Permanent Virtual Circuits 891
Data Link Connection Identifier (DLCI) 891DCLI Mapping 892
Frame Relay Local Management Interface (LMI) 894Configuring Frame Relay 895Frame Relay Congestion Control 896
Factors Affecting Performance 896Congestion Handling by Frame Relay Switches 897Congestion Handling by Routers 898
Point-to-Point and Multipoint Interfaces 899Verifying Frame Relay 902
The show interface Command 902
4421.book Page xxi Tuesday, February 15, 2005 5:33 PM
xxii Contents
The show frame-relay pvc Command 903The show frame-relay map Command 904The show frame-relay lmi Command 904The debug frame-relay lmi Command 905
Frame Relay Switching 906Frame Relay Switching Commands 907
Frame Relay Traffic Shaping 909Using Traffic-Shaping Techniques 909Configuring Traffic Shaping 910
Summary 911Exam Essentials 913
Chapter 30 Queuing and Compression 915
Queuing 916Traffic Prioritization 917Queuing Policy 917
IOS Queuing Options 918Weighted Fair Queuing 919Priority Queuing 922Custom Queuing 925
Cisco’s Newer Queuing Technologies 932Low Latency Queuing 932Class-Based Weighted Fair Queuing 933Committed Access Rate 933
Compression 934TCP Header Compression 935Payload Compression 936Link Compression 936Compression Considerations 937Viewing Compression Information 937
Summary 938Exam Essentials 939
Chapter 31 Network Address Translation and Port Address Translation 941
Understanding Network Address Translation (NAT) 943NAT Terminology 943How NAT Works 944Advantages of NAT 945Disadvantages of NAT 946NAT Traffic Types 946
Performing NAT Operations 947Translating Inside Local Addresses 948Overloading Inside Global Addresses 949
4421.book Page xxii Tuesday, February 15, 2005 5:33 PM
Contents xxiii
Using TCP Load Distribution 950Overlapping Networks 951
Configuring NAT 952Configuring Static NAT 953Configuring Dynamic NAT, Inside Global
Address Overloading, and TCP Load Distribution 954Configuring NAT to Perform Overlapping
Address Translation 956Verifying NAT Configuration 957Troubleshooting NAT 958Clearing NAT Translation Entries 959
Using Port Address Translation (PAT) 960Disadvantages of PAT 960Configuring PAT 961Monitoring PAT 963
Summary 964Exam Essentials 964
Chapter 32 Centralized Security in Remote Access Networks 967
Security Terminology 968Cisco Access Control Solutions 969
CiscoSecure 970Authentication, Authorization, and Accounting 970
How AAA Works 971Router Access Modes 972
Character-Mode Connections 972Packet-Mode Connections 973
AAA Configuration 974Authentication Configuration 975Authorization Configuration 977Accounting Configuration 980
Virtual Profiles 982Summary 983Exam Essentials 983
Part IV Cisco Internetwork Troubleshooting (CIT) 985
Chapter 33 Troubleshooting Methodology 987
The Complexity of Internetworks 988Cisco Troubleshooting Model 990
Step 1: Gather Symptoms 992Step 2: Isolate the Problem 994Step 3: Correct the Problem 995Document the Changes 998
4421.book Page xxiii Tuesday, February 15, 2005 5:33 PM
xxiv Contents
Troubleshooting by Layer 998Bottom-Up Troubleshooting Approach 998Top-Down Troubleshooting Approach 999Divide-and-Conquer Troubleshooting Approach 999
Summary 999Exam Essentials 1000
Chapter 34 Network Documentation 1001
The Network Baseline 1002Network Configuration Table 1003
Router Network Configuration Table 1005Switch Network Configuration Table 1009
Network Topology Diagrams 1015Components of a Network Topology Diagram 1015Creating a Network Topology Diagram 1017
Summary 1021Exam Essentials 1021
Chapter 35 End-System Documentation and Troubleshooting 1023
End-System Network Configuration Table 1024Creating an End-System Network Configuration Table 1025
End-System Network Topology Diagram 1032Creating an End-System Network Topology Diagram 1034
Troubleshooting End-System Problems 1035End-System Troubleshooting Commands 1036
Summary 1050Exam Essentials 1050
Chapter 36 Protocol Attributes 1053
The OSI Reference Model 1054Global Protocol Classifications 1057
Connection-Oriented Protocols 1057Connectionless Protocols 1061
Layer 2: Data Link Layer Protocols and Applications 1062Ethernet/IEEE 802.3 1063Point-to-Point Protocol (PPP) 1065Synchronous Data Link Control (SDLC) 1065Frame Relay 1068Integrated Services Digital Network (ISDN) 1069
Layers 3 and 4: IP Routed Protocols 1070Internet Protocol (IP) 1071Internet Control Message Protocol (ICMP) 1076Transmission Control Protocol (TCP) 1077User Datagram Protocol (UDP) 1078
4421.book Page xxiv Tuesday, February 15, 2005 5:33 PM
Contents xxv
Summary 1079Exam Essentials 1080
Chapter 37 Cisco Diagnostic Commands and TCP/IP Troubleshooting 1081
Troubleshooting Commands 1082show Commands 1082debug Commands 1105logging Commands 1112Executing a Router Core Dump 1114ping Commands 1116traceroute Command 1120
LAN Connectivity Problems 1124Obtaining an IP Address 1124ARP 1127Sample TCP Connection 1128
IP Access Lists 1129Standard Access Lists 1130Extended Access Lists 1132Named Access Lists 1133
Summary 1135Exam Essentials 1136
Chapter 38 TCP/IP Routing Protocol Troubleshooting 1137
Default Gateways 1138Static and Dynamic Routing 1141Troubleshooting RIP 1142
RIP-1 and RIP-2 1143show Commands 1143debug Commands 1143Typical RIP Problems 1144
Troubleshooting IGRP 1144IGRP Features and Operation 1144show Commands 1145debug Commands 1145Typical IGRP Problems 1146
Troubleshooting EIGRP 1146Neighbor Formation 1147show Commands 1151debug Commands 1151Typical EIGRP Problems 1152
Troubleshooting OSPF 1153Neighbor and Adjacency Formation 1154OSPF Area Types 1155
4421.book Page xxv Tuesday, February 15, 2005 5:33 PM
xxvi Contents
show Commands 1157debug Commands 1158Typical OSPF Problems 1160
Troubleshooting BGP 1161Neighbor Relationship 1161eBGP versus iBGP 1161show Commands 1162debug Commands 1162Typical BGP Problems 1164
Redistribution of Routing Protocols 1165Dealing with Routing Metrics 1165Distribute Lists 1168Route Maps 1169
TCP/IP Symptoms and Problems: Summary Sheet 1172TCP/IP Problems and Action Plans: Summary Sheet 1173Summary 1174Exam Essentials 1175
Chapter 39 Troubleshooting Serial Line and Frame Relay Connectivity 1177
Troubleshooting Serial Lines 1178HDLC Encapsulation 1179show interface serial Command 1180show controllers Command 1184show buffers Command 1186debug serial interface Command 1187CSU/DSU Loopback Tests 1189Serial Line Summary 1190
Troubleshooting Frame Relay 1193Frame Relay show Commands 1194Frame Relay debug Commands 1198Frame Relay Summary 1200
Summary 1201Exam Essentials 1202
Chapter 40 Troubleshooting ISDN 1203
ISDN Fundamentals 1204Common ISDN Problems 1205
Misconfigured Routers 1205Physical Layer Connections 1210
Misconfigured Phone Switches 1213Troubleshooting Layer 2 1213Troubleshooting Layer 3 1216Switch Types 1217
4421.book Page xxvi Tuesday, February 15, 2005 5:33 PM
Contents xxvii
ISDN Troubleshooting Commands 1218ping 1219clear interface bri n 1219show interface bri n 1220show interface bri n 1 2 1221show controller bri 1221show isdn status 1222show dialer 1223show ppp multilink 1224
Debugging ISDN 1224debug bri 1225debug isdn q921 1226debug dialer 1227debug isdn q931 1228debug ppp negotiation 1229debug ppp packet 1232
Summary 1233Exam Essentials 1233
Chapter 41 Troubleshooting Switched Ethernet 1235
Switches, Bridges, and Hubs 1236Catalyst Troubleshooting Tools 1238
Catalyst Command-Line Interfaces 1238Hybrid Mode Catalyst CLI 1238RMON 1261Indicator Lights 1262
Controlling Recurring Paths with Spanning Tree 1262Troubleshooting Spanning Tree Problems 1263
Virtual LANs 1265Inter-Switch Link (ISL) 1265802.1Q Trunking 1268VLAN Trunking Protocol (VTP) 1268
Cabling Issues 1269Cable Problems 1269Crossover Cables 1271
Troubleshooting Switched Connections 1272The Switched Port Analyzer 1272The Multilayer Switch Feature Card and Catalyst Routing 1273VLANs across Routers and Switches 1275VLAN Design Issues and Troubleshooting 1277
Hybrid/Native Command Conversion 1279Summary 1280Exam Essentials 1281
4421.book Page xxvii Tuesday, February 15, 2005 5:33 PM
xxviii Contents
Chapter 42 Applying Cisco’s Diagnostic Tools 1283
Identifying and Resolving Generic Router Problems 1284Scenario #1 1284Scenario #2 1296Scenario #3 1307
Troubleshooting Ethernet Problems 1312Scenario #1 1313Scenario #2 1317
Opening a Case with the Technical Assistance Center 1324Summary 1324Exam Essentials 1325
Index 1327
4421.book Page xxviii Tuesday, February 15, 2005 5:33 PM
Introduction
This book is intended to help you continue on your exciting new path toward obtaining your CCNP certification. Before reading this book, it is important to have at least read the
CCNA: Cisco Certi-fied Network Associate Study Guide
,
5th Edition
(Sybex, 2005). You can take the CCNP tests in any order, but you should have passed the CCNA exam before pursuing your CCNP. Many ques-tions in the Building Cisco Remote Access Networks (BCRAN) exam are built on the CCNA mate-rial. However, we have done everything possible to make sure that you can pass the BCRAN exam by reading this book and practicing with Cisco routers.
Cisco Systems’ Place in Networking
Cisco Systems has become an unrivaled worldwide leader in networking for the Internet. Its net-working solutions can easily connect users who work from diverse devices on disparate networks. Cisco products make it simple for people to access and transfer information without regard to dif-ferences in time, place, or platform.
Cisco Systems’ big picture is that it provides end-to-end networking solutions that customers can use to build an efficient, unified information infrastructure of their own or to connect to someone else’s. This is an important piece in the Internet/networking-industry puzzle because a common architecture that delivers consistent network services to all users is now a functional imperative. Because Cisco Systems offers such a broad range of networking and Internet ser-vices and capabilities, users needing regular access to their local network or the Internet can do so unhindered, making Cisco’s wares indispensable.
Cisco answers this need with a wide range of hardware products that form information net-works using the Cisco Internetwork Operating System (IOS) software. This software provides network services, paving the way for networked technical support and professional services to maintain and optimize all network operations.
Along with the Cisco IOS, one of the services Cisco created to help support the vast amount of hardware it has engineered is the Cisco Certified Internetworking Expert (CCIE) program, which was designed specifically to equip people to effectively manage the vast quantity of installed Cisco networks. The business plan is simple: If you want to sell more Cisco equipment and have more Cisco networks installed, ensure that the networks you installed run properly.
However, having a fabulous product line isn’t all it takes to guarantee the huge success that Cisco enjoys—lots of companies with great products are now defunct. If you have complicated products designed to solve complicated problems, you need knowledgeable people who are fully capable of installing, managing, and troubleshooting them. That part isn’t easy, so Cisco began the CCIE pro-gram to equip people to support these complicated networks. This program, known colloquially as the Doctorate of Networking, has also been very successful, primarily due to its extreme difficulty. Cisco continuously monitors the program, changing it as it sees fit, to make sure that it remains per-tinent and accurately reflects the demands of today’s internetworking business environments.
Building on the highly successful CCIE program, Cisco Career Certifications permit you to become certified at various levels of technical proficiency, spanning the disciplines of network design and support. So, whether you’re beginning a career, changing careers, securing your present position, or seeking to refine and promote your position, this is the book for you!
4421.book Page xxix Tuesday, February 15, 2005 5:33 PM